last executing test programs: 2.200938757s ago: executing program 1 (id=1473): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) r4 = socket$can_j1939(0x1d, 0x2, 0x7) setsockopt$SO_J1939_FILTER(r4, 0x6b, 0x1, &(0x7f0000000340)=[{0x3, 0x1, {0x2}, {0x1, 0x0, 0x3}, 0xfe, 0x2}, {0x0, 0x2, {0x1, 0x1, 0x1}, {0x1, 0xf0}, 0xfe, 0x1}], 0x38) socket$nl_generic(0x11, 0x3, 0x10) r5 = socket$alg(0x26, 0x5, 0x0) bind$alg(r5, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-sse2\x00'}, 0x58) setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440) r6 = accept4(r5, 0x0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x1f, 0x2, &(0x7f0000000200)=ANY=[@ANYBLOB="850000007f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) sendmmsg$alg(r6, &(0x7f0000004140)=[{0x8dffffff, 0x0, &(0x7f0000000600)=[{&(0x7f00000001c0)="14", 0x1}, {&(0x7f0000000280)="3b942cdf3dbb4d708446209c8a7a9893c711167b6aee1ac4a8cc59d92a394f460b20f21b9add9e84d2dba9e6df8034c449e64138a4aea2a8df6d35031bd3263f", 0x7fffefff}], 0x2}], 0x1, 0x0) r7 = mq_open(&(0x7f000084dff0)='!selinuxselinux\x00', 0x6e93ebbbcc0884f2, 0x2c, &(0x7f0000000300)={0x0, 0x1, 0x3}) mq_timedsend(r7, 0x0, 0x0, 0x0, 0x0) mq_timedsend(r7, 0x0, 0x0, 0x0, 0x0) mq_timedreceive(r7, &(0x7f0000000180)=""/204, 0xcc, 0x0, 0x0) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000040)={0x0, 0x1, 0xd, 0x2, 0x3}) 1.547838386s ago: executing program 0 (id=1478): pipe(0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x11000) io_setup(0x3ff, 0x0) rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0) io_submit(0x0, 0x20000000000001c3, &(0x7f0000000140)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="4e8fc38e71", 0x5}]) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000580)=[@in6={0xa, 0x4e21, 0x8, @rand_addr=' \x01\x00', 0xd}]}, &(0x7f0000000440)=0xc) 1.508878576s ago: executing program 3 (id=1479): mkdir(&(0x7f0000000400)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x11) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0) ioctl$UI_END_FF_ERASE(r0, 0x400c55cb, &(0x7f0000000040)={0x10, 0xbc7a, 0x59}) r1 = syz_open_procfs(0x0, &(0x7f0000000100)='fdinfo/3\x00') r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) getsockopt$sock_buf(r2, 0x1, 0x1c, 0x0, &(0x7f0000000040)) preadv(r1, &(0x7f0000000180)=[{&(0x7f0000000000)=""/150, 0x96}], 0x1, 0x0, 0x0) r3 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000000)='source', &(0x7f0000000100)='0,.:/', 0x0) chdir(&(0x7f00000003c0)='./bus\x00') r4 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000900)=@mangle={'mangle\x00', 0x44, 0x6, 0x430, 0x0, 0x2c0, 0x208, 0x0, 0x128, 0x39c, 0x39c, 0x39c, 0x39c, 0x39c, 0x6, 0x0, {[{{@ip={@broadcast, @dev={0xac, 0x14, 0x14, 0x19}, 0x0, 0x0, 'geneve1\x00', 'ip6gre0\x00', {}, {0xff}, 0x62}, 0x0, 0x70, 0x94}, @TTL={0x24}}, {{@uncond, 0x0, 0x70, 0x94}, @inet=@DSCP={0x24, 'DSCP\x00', 0x0, {0xb}}}, {{@ip={@local, @local, 0x0, 0x0, 'sit0\x00', 'macvtap0\x00', {}, {}, 0x0, 0x2}, 0x0, 0xbc, 0xe0, 0x0, {}, [@common=@unspec=@addrtype1={{0x28}, {0xe46, 0x87, 0x9}}, @inet=@rpfilter={{0x24}, {0x2}}]}, @TTL={0x24, 'TTL\x00', 0x0, {0x0, 0x8}}}, {{@uncond, 0x0, 0x70, 0xb8}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0xffffffff, 'syz1\x00'}}}, {{@ip={@local, @private=0xa010101, 0xffffffff, 0xff, 'hsr0\x00', 'vcan0\x00', {0xff}, {}, 0x89}, 0x0, 0xb8, 0xdc, 0x0, {}, [@inet=@rpfilter={{0x24}, {0x2}}, @inet=@rpfilter={{0x24}, {0xe}}]}, @TTL={0x24, 'TTL\x00', 0x0, {0x3}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x48c) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0) r7 = dup2(r6, r6) ioctl$UI_ABS_SETUP(r7, 0x401c5504, &(0x7f00000006c0)={0x0, {0x40000, 0xc, 0x3f000000, 0x2}}) ioctl$UI_SET_EVBIT(r6, 0x40045564, 0x3) write$uinput_user_dev(r6, &(0x7f0000000240)={'syz1\x00', {}, 0x10, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x20000401, 0x0, 0x0, 0x0, 0x0, 0x200, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xfffffffd, 0x3, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0xfffffff7, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x8010000, 0x0, 0x0, 0x0, 0x7, 0x1, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff8, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0xfffffffc], [0x245827e9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x3, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0xfffffffe, 0xa65, 0x0, 0x9, 0x0, 0x1, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x10001, 0xfffffffd, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2], [0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x2, 0x8, 0x4, 0x313, 0x0, 0x0, 0x0, 0x0, 0x8, 0x5, 0x0, 0x7, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x40000000, 0x10000, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x401]}, 0x45c) setsockopt$sock_attach_bpf(r5, 0x1, 0xa, &(0x7f0000000180), 0x4) recvmsg$unix(r5, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x3) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x2000, 0x0) mount(&(0x7f0000000140)=@filename='./bus\x00', &(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='ramfs\x00', 0x1900420, &(0x7f0000000280)='$\x00') 1.508522369s ago: executing program 0 (id=1480): socket$xdp(0x2c, 0x3, 0x0) r0 = syz_io_uring_setup(0x231, &(0x7f0000000180)={0x0, 0xdd68, 0x10100}, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, 0x0) io_uring_enter(r0, 0x7a98, 0x0, 0x0, 0x0, 0x0) 1.503783938s ago: executing program 3 (id=1481): socket$inet_udp(0x2, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0) syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="1c0000005e007f029e3b470d649b72ab25399cd956c07dead6a93690", 0x1c}], 0x1}, 0x0) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) r4 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f00000001c0)='\x00', &(0x7f0000000240)='{}k%@\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0) r5 = gettid() fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000080)=""/3, 0x3}], 0x1) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=ANY=[@ANYBLOB="440fdd544f9b0176aeeef844967f4cbb2a56842c683bd04fcb9b85331f3e5d78605f7e72a5dcdbd67196ca41d2aea01e4bb568a09730c70000000500674d363d207a4b9194175a14bc040ef5a5a34989b90decd8d5df4acf3b486829fadaf16d47268ec47f6e0c60c8cf5e4da2824c50185a2dc218846279", @ANYRES16=r0, @ANYRESDEC], 0x7c}}, 0x10) ioctl$USBDEVFS_FREE_STREAMS(0xffffffffffffffff, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="020023022301020905"]) tkill(r5, 0xb) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x2}}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x1d}]}}, 0x0, 0x42, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) sendmsg$NFT_BATCH(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a4c000000060a01040000000000000000020000002c000480280001800b0001006c6f6f6b757000001800028008000240000000000900010073797a32000000000900020073797a010000000000000000000000000a"], 0x74}}, 0x0) 1.503660194s ago: executing program 0 (id=1482): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x2000000000000376, 0x0, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0xb6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x9, 0x5, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) r0 = openat$uhid(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0) write$UHID_CREATE(r0, &(0x7f0000000500)={0x0, {'syz1\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000180)=""/30, 0x1e, 0x0, 0x0, 0x3, 0x0, 0xa0}}, 0x11c) syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x0) 1.344544672s ago: executing program 1 (id=1483): mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) socket$pppoe(0x18, 0x1, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x1, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r5 = openat$cgroup_ro(r4, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00') lseek(r5, 0x5, 0x1) r6 = openat$kvm(0xffffffffffffff9c, 0x0, 0x42280, 0x0) close(r3) ioctl$KVM_CHECK_EXTENSION(r6, 0xae01, 0x1) ioctl$KVM_SET_MEMORY_ATTRIBUTES(r3, 0x4020aed2, &(0x7f0000000040)={0xffff1000, 0x0, 0x8}) ioctl$KVM_SET_MEMORY_ATTRIBUTES(r3, 0x4020aed2, &(0x7f0000000080)={0xf000, 0x8d000, 0x8}) r7 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) read$alg(r7, &(0x7f0000000240)=""/4096, 0xfffffdef) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x10) r8 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00') pread64(r8, &(0x7f000001a240)=""/102400, 0x19000, 0x100008) r9 = io_uring_setup(0x79af, &(0x7f0000000100)={0x0, 0xaa00, 0x2}) sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f0000001280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001240)={&(0x7f0000000200)={0x34, 0x0, 0x100, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x9}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x4040801}, 0x80) io_uring_register$IORING_REGISTER_IOWQ_AFF(r9, 0x11, &(0x7f0000000040)="d25b49eaa837aca70b55963d847cb9cdc64c6cb78f6fd498cd9bba2a17c0e17da219082fa57699f4f249087bddafb95f5df23a60cbb6a1633839a9d2ada455c0ba8f8d191df1879e6e9b66eb51a57735e48c743fa4", 0x55) 1.342285634s ago: executing program 0 (id=1491): syz_open_procfs(0x0, &(0x7f0000000080)='net/vlan/vlan0\x00') r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x8923, &(0x7f0000000040)={'vlan0\x00', 0x40}) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb01001800000000000010000000000000000002f900001b00"], 0x0, 0x1a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x6a) r4 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000480)='cgroup.threads\x00', 0x2, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) r5 = getpgrp(0x0) kcmp$KCMP_EPOLL_TFD(r5, r5, 0x7, 0xffffffffffffffff, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x1000}) statx(0xffffffffffffff9c, &(0x7f0000004000)='./file0\x00', 0x6000, 0x2, &(0x7f0000004040)) fstat(r4, &(0x7f0000004140)) r6 = syz_open_dev$vbi(&(0x7f00000000c0), 0x0, 0x2) ioctl$VIDIOC_S_PARM(r6, 0xc0cc5616, &(0x7f0000000200)={0x6, @output={0x0, 0x1, {0x401}, 0x9, 0x7}}) lstat(&(0x7f00000041c0)='./file0\x00', &(0x7f0000004200)) getresuid(&(0x7f0000004280), &(0x7f00000042c0), &(0x7f0000004300)) 1.211123825s ago: executing program 2 (id=1484): r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x28241, 0x0) write$dsp(r0, &(0x7f00000003c0)="a6e62083213cf46ff5eef6331c7bd8999b151e2c4f9322b79af7812c79e44259f6bbb36cc7d64801cb1e1c8ebae865e6d03142002d2b5f364c19109b442a590a15c0a5f3a486e4cdce0e39cfb93585bc5dc8f601396dc8892d4f52169daf0b2e4093fcbaf6db2303a6c1677215dde38e58ee9611640317dc8d94cf5eeffff07e724670f131380ea86cdbe415bb1afc61b58b8698a7bd217fe44786fd56606b87479650a4504dad186ea97f0cde5073d0ae818c679967d30e84e7590cf9ee3d8ac40a3da9fc23d90ba15b75387a125f2ce8991c58d7971f4fd9550ed80ad05b33cca08b6e76d44cc9803af0648231cedd0102b516e79a00441f760dfc3ff0ca69d0ab1541d4fc6ea772aad6fb3126b1be39f44cc7e7ea923c1822f3c035ad13e3d36e0093cb3fed92447855d628a66d2fcc5b8a6e4f6c43cf737489ee9ff15371df1d3bec9807e81b4b70e66eb1cce99557eaea2ebbc9015357dc472852490f23b1f0ac215574f1977402e0e96d6dc0c607ee7f881e29", 0x176) ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0) socket(0x10, 0x80002, 0x0) (async) r1 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x3, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100)}], 0x492492492492856, 0x0) ioctl$AUTOFS_IOC_FAIL(r1, 0x9361, 0x10) ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000100)=0x3) ioctl$SNDCTL_DSP_RESET(r0, 0x5000, 0x0) (async) ioctl$SNDCTL_DSP_RESET(r0, 0x5000, 0x0) 1.101031338s ago: executing program 2 (id=1485): openat$nullb(0xffffffffffffff9c, 0x0, 0x4000000004002, 0x0) r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, 0x930, 0x300000f, 0x12, r0, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000a80)="3dfeb167f3ccc51b8ec0ba896a6d39292279e90f7abfdaee0f52b8a3554c9122ce1f6ed327282ad8c2d74bb1a770183e755b9f37cc301f5392a0e4831635410fe4b2a8e6bdb04d5d", 0x1f00, 0x48) (fail_nth: 1) 980.101591ms ago: executing program 2 (id=1486): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f00000000c0)=@abs={0x1, 0x0, 0x4e24}, 0x6e) bind$unix(r1, &(0x7f0000000280)=@abs={0x1, 0x0, 0x4e24}, 0x6e) r3 = socket$nl_route(0x10, 0x3, 0x0) faccessat2(0xffffffffffffffff, 0x0, 0x3, 0x880) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'macvtap0\x00'}) ioctl$ifreq_SIOCGIFINDEX_wireguard(r3, 0x8933, &(0x7f0000000240)={'wg2\x00'}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000300)=@newlink={0x4c, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10, 0x1001}, [@IFLA_CARRIER={0x0, 0x21, 0x5}]}, 0x4c}}, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', 0x0}) sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv4_newaddr={0x48, 0x14, 0x509, 0x0, 0x25dfdbfd, {0x2, 0x1f, 0xc0, 0xcb, r7}, [@IFA_TARGET_NETNSID={0x8}, @IFA_LOCAL={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x2e}}, @IFA_TARGET_NETNSID={0x8, 0xa, 0xffffffff}, @IFA_RT_PRIORITY={0x8}, @IFA_TARGET_NETNSID={0x8, 0xa, 0x1}, @IFA_RT_PRIORITY={0x8, 0x9, 0x103}]}, 0x48}, 0x1, 0x0, 0x0, 0x14}, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'}) sendmsg$nl_route(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0x70}}, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r8, 0xffffffffffffffff, 0x2d, 0x0, @val=@netfilter={0x2, 0x0, 0x6, 0x1}}, 0x20) sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000001800dd8d000000001500020000000c0016800600060000000000"], 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x0) socket$nl_route(0x10, 0x3, 0x0) (async) socket$unix(0x1, 0x5, 0x0) (async) socket$unix(0x1, 0x5, 0x0) (async) bind$unix(r2, &(0x7f00000000c0)=@abs={0x1, 0x0, 0x4e24}, 0x6e) (async) bind$unix(r1, &(0x7f0000000280)=@abs={0x1, 0x0, 0x4e24}, 0x6e) (async) socket$nl_route(0x10, 0x3, 0x0) (async) faccessat2(0xffffffffffffffff, 0x0, 0x3, 0x880) (async) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'macvtap0\x00'}) (async) ioctl$ifreq_SIOCGIFINDEX_wireguard(r3, 0x8933, &(0x7f0000000240)={'wg2\x00'}) (async) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000300)=@newlink={0x4c, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10, 0x1001}, [@IFLA_CARRIER={0x0, 0x21, 0x5}]}, 0x4c}}, 0x0) (async) socket$nl_route(0x10, 0x3, 0x0) (async) socket$nl_route(0x10, 0x3, 0x0) (async) socket$nl_route(0x10, 0x3, 0x0) (async) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'}) (async) sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv4_newaddr={0x48, 0x14, 0x509, 0x0, 0x25dfdbfd, {0x2, 0x1f, 0xc0, 0xcb, r7}, [@IFA_TARGET_NETNSID={0x8}, @IFA_LOCAL={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x2e}}, @IFA_TARGET_NETNSID={0x8, 0xa, 0xffffffff}, @IFA_RT_PRIORITY={0x8}, @IFA_TARGET_NETNSID={0x8, 0xa, 0x1}, @IFA_RT_PRIORITY={0x8, 0x9, 0x103}]}, 0x48}, 0x1, 0x0, 0x0, 0x14}, 0x0) (async) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'}) (async) sendmsg$nl_route(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0x70}}, 0x0) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r8, 0xffffffffffffffff, 0x2d, 0x0, @val=@netfilter={0x2, 0x0, 0x6, 0x1}}, 0x20) (async) sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000001800dd8d000000001500020000000c0016800600060000000000"], 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x0) (async) 979.917624ms ago: executing program 2 (id=1487): r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x10, 0xa702) mmap(&(0x7f0000371000/0x5000)=nil, 0x5000, 0x0, 0x11, r0, 0x0) openat$nullb(0xffffffffffffff9c, 0x0, 0x4000000004002, 0x0) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) r3 = mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, r2, 0x4, 0x11, r1, 0x0) clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000100)={0x6, 0x1000, 0x1, 0x1, 0xffffffff, 0x81, 0x4, 0x7fffffffffffffff}, &(0x7f0000000140)={0x9, 0xa, 0x3, 0x8, 0x5, 0x4, 0x2008000000}, &(0x7f0000000180)={0x2, 0xfff, 0x1, 0x3ff, 0x5, 0x5, 0x0, 0x3c00}, &(0x7f0000000200)={r4, r5+10000000}, &(0x7f0000000280)={&(0x7f0000000240)={[0x5, 0x9]}, 0x8}) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000018000000080000094192772", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000001eb77c0000000000000000000000000400", @ANYRES32, @ANYBLOB], 0x48) sendto$inet6(r1, &(0x7f0000000300)="9daa88de5a7b670b383bdeb04a1e9848456a762fc31cf4169dade37e1ca90f2a0a9cdc089e553996e29dd0b5dd417655514d34eefd3a9ead2e2c9151e165b5524d990c0cfa70b21e6c5ea50bbefd9247c824028999b0a2cb4e9c12092cc39ba444c26226463d362cbe9abbd066fb43ad1c7fabea55faac800d1d856e09cac15101c9f70e0850e85f9541bcbc44f369d53f9a06bd63423f3200299127baeb5bcde666ff787a05e16adbcc891dd7a5d50267", 0xb1, 0x20000080, &(0x7f00000003c0)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}, 0x9df5}, 0x1c) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]}, &(0x7f0000000080)=0x10) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f00000000c0)={r6, 0x5}, 0x8) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000a80)="3dfeb167f3ccc51b8ec0ba896a6d39292279e90f7abfdaee0f52b8a3554c9122ce1f6ed327282ad8c2d74bb1a770183e755b9f37cc301f5392a0e4831635410fe4b2a8e6bdb04d5d", 0x1f00, 0x48) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000002c0)={0xaa, 0x408}) 979.616919ms ago: executing program 2 (id=1488): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000c80)=@deltfilter={0x440, 0x2d, 0x8, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xb, 0x5}, {0xd, 0x10}, {0xa, 0x3}}, [@TCA_RATE={0x6, 0x5, {0xb, 0xe}}, @filter_kind_options=@f_fw={{0x7}, {0x40c, 0x2, [@TCA_FW_POLICE={0x408, 0x2, [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x7, 0x6, 0xfffffff9, 0x2, 0x10, 0x9, 0x3, 0x4, 0x3, 0xa, 0x4071, 0x4, 0x80000000, 0x1ff, 0x6, 0x9, 0x8, 0xd, 0x7, 0xfffffffb, 0x1, 0x3, 0x7f, 0x400, 0x9, 0x20, 0x65d, 0x1, 0x8, 0x9, 0x2, 0x81, 0x9, 0x5, 0x7, 0x5, 0xa, 0x6, 0x6, 0x101, 0x100, 0x9, 0x0, 0x81, 0xe, 0x1000, 0x5, 0x6, 0x9, 0x69be, 0x6, 0x1, 0xffffffff, 0x6, 0x6, 0xc4, 0x3, 0xffec, 0x7, 0x8, 0x8, 0xe7c0, 0x3, 0x4, 0xff, 0x80000000, 0xffffffb8, 0xa69f, 0x1, 0x3, 0x2, 0xa, 0x4, 0xe, 0x20200, 0x6, 0xf, 0x0, 0x3, 0x6a, 0x9, 0xe4, 0x80000000, 0xffffffff, 0x4, 0x0, 0x4, 0x5, 0xffff0001, 0x3d8, 0x0, 0x8001, 0x101, 0x40, 0xfffffffe, 0xae6, 0x6, 0x6, 0x0, 0xfffffff9, 0xd3b8, 0x2, 0xf, 0x0, 0x0, 0x4a, 0xda, 0x8, 0x0, 0x1, 0x0, 0x680, 0x4, 0x10000, 0x7, 0x7, 0x3, 0xe, 0x4, 0xcf715c4, 0x1, 0xc00, 0xffffffff, 0x6, 0x1, 0x7, 0x2, 0xffff65c6, 0x444, 0x1, 0x80, 0x3, 0x5, 0x2, 0x7f, 0x3, 0x10006, 0x9, 0x7, 0xb, 0xc, 0x4, 0x7, 0x40, 0x1, 0x1, 0x1, 0x3, 0x9, 0xe02c, 0x10001, 0xff, 0x8, 0xa, 0x5, 0x2, 0xa2, 0x2, 0x9, 0x6, 0x4, 0xfffffff8, 0xb, 0xfffffffc, 0x5, 0x101, 0x1, 0x2f0c, 0x1000, 0x8, 0x3, 0x6, 0x9, 0x9, 0x4e, 0x8, 0x10001, 0x6, 0x4, 0x1a, 0x8, 0x4, 0x101, 0x200, 0x3ff, 0x9, 0x9, 0x9, 0x3, 0x7, 0x7, 0x427a, 0x6, 0x4, 0x4, 0x9, 0x3, 0x7, 0xe, 0x10001, 0x8, 0x4, 0x3, 0x7fff, 0x80000000, 0xc60, 0x8001, 0x753da2a3, 0x7, 0x2, 0xa2, 0x1, 0x6, 0x80000000, 0x8, 0x7c, 0x7, 0x4, 0x6, 0x0, 0x1eb, 0x8, 0x8, 0x1, 0x0, 0x1, 0x2, 0xfe, 0x1, 0x9, 0xff, 0x1, 0x40, 0x1, 0x5, 0x7, 0x7b, 0xfff, 0x5, 0x0, 0x1, 0xffffff81, 0x7ff, 0x6, 0x3, 0x7, 0x5, 0x7fffffff, 0x9, 0x0, 0x2, 0x1ff, 0x0, 0x1, 0x5, 0x2c42d56b]}]}]}}]}, 0x440}, 0x1, 0x0, 0x0, 0x804}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4138ae84, &(0x7f0000000c40)=@x86={0x3, 0xf, 0x0, 0x0, 0x5, 0x4d, 0xfe, 0x6, 0x1, 0x4, 0x8, 0x0, 0x0, 0x5, 0x80000, 0x9, 0xff, 0x9, 0x5, '\x00', 0x5, 0xe732}) 933.17385ms ago: executing program 1 (id=1489): pipe(0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x11000) io_setup(0x3ff, 0x0) rseq(0x0, 0x0, 0x0, 0x0) io_submit(0x0, 0x20000000000001c3, &(0x7f0000000140)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="4e8fc38e71", 0x5}]) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000580)=[@in6={0xa, 0x4e21, 0x8, @rand_addr=' \x01\x00', 0xd}]}, &(0x7f0000000440)=0xc) 902.79442ms ago: executing program 1 (id=1490): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) socket$inet6(0xa, 0x6, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) poll(&(0x7f0000000100)=[{r1, 0x3328}], 0x1, 0x2) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) bpf$LINK_GET_FD_BY_ID(0x1e, 0x0, 0x0) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) r5 = socket$inet6(0xa, 0x3, 0x7) connect$inet6(r5, 0x0, 0x0) r6 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZE(r6, 0x5609, &(0x7f0000000000)={0x5, 0x6, 0x5}) sendmmsg(r5, &(0x7f0000000480), 0x2e9, 0xffd8) r7 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'veth1_virt_wifi\x00', 0x0}) r9 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8b05, &(0x7f0000000040)={'wlan0\x00'}) sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=@dellink={0x20, 0x11, 0x101, 0x70bd2c, 0xfffffffe, {0x0, 0x0, 0x0, r8}}, 0x20}}, 0x880) 897.793328ms ago: executing program 2 (id=1492): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) r4 = socket$can_j1939(0x1d, 0x2, 0x7) setsockopt$SO_J1939_FILTER(r4, 0x6b, 0x1, &(0x7f0000000340)=[{0x3, 0x1, {0x2}, {0x1, 0x0, 0x3}, 0xfe, 0x2}, {0x0, 0x2, {0x1, 0x1, 0x1}, {0x1, 0xf0}, 0xfe, 0x1}], 0x38) socket$nl_generic(0x11, 0x3, 0x10) r5 = socket$alg(0x26, 0x5, 0x0) bind$alg(r5, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-sse2\x00'}, 0x58) setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440) r6 = accept4(r5, 0x0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x1f, 0x2, &(0x7f0000000200)=ANY=[@ANYBLOB="850000007f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) sendmmsg$alg(r6, &(0x7f0000004140)=[{0x8dffffff, 0x0, &(0x7f0000000600)=[{&(0x7f00000001c0)="14", 0x1}, {&(0x7f0000000280)="3b942cdf3dbb4d708446209c8a7a9893c711167b6aee1ac4a8cc59d92a394f460b20f21b9add9e84d2dba9e6df8034c449e64138a4aea2a8df6d35031bd3263f", 0x7fffefff}], 0x2}], 0x1, 0x0) r7 = mq_open(&(0x7f000084dff0)='!selinuxselinux\x00', 0x6e93ebbbcc0884f2, 0x2c, &(0x7f0000000300)={0x0, 0x1, 0x3}) mq_timedsend(r7, 0x0, 0x0, 0x0, 0x0) mq_timedsend(r7, 0x0, 0x0, 0x0, 0x0) mq_timedreceive(r7, &(0x7f0000000180)=""/204, 0xcc, 0x0, 0x0) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000040)={0x0, 0x1, 0xd, 0x2, 0x3}) 598.275532ms ago: executing program 3 (id=1493): quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0) 492.668522ms ago: executing program 3 (id=1494): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000c80)=@deltfilter={0x440, 0x2d, 0x8, 0x70bd2b, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xb, 0x5}, {0xd, 0x10}, {0xa, 0x3}}, [@TCA_RATE={0x6, 0x5, {0xb, 0xe}}, @filter_kind_options=@f_fw={{0x7}, {0x40c, 0x2, [@TCA_FW_POLICE={0x408, 0x2, [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x7, 0x6, 0xfffffff9, 0x2, 0x10, 0x9, 0x3, 0x4, 0x3, 0xa, 0x4071, 0x4, 0x80000000, 0x1ff, 0x6, 0x9, 0x8, 0xd, 0x7, 0xfffffffb, 0x1, 0x3, 0x7f, 0x400, 0x9, 0x20, 0x65d, 0x1, 0x8, 0x9, 0x2, 0x81, 0x9, 0x5, 0x7, 0x5, 0xa, 0x6, 0x6, 0x101, 0x100, 0x9, 0x0, 0x81, 0xe, 0x1000, 0x5, 0x6, 0x9, 0x69be, 0x6, 0x1, 0xffffffff, 0x6, 0x6, 0xc4, 0x3, 0xffec, 0x7, 0x8, 0x8, 0xe7c0, 0x3, 0x4, 0xff, 0x80000000, 0xffffffb8, 0xa69f, 0x1, 0x3, 0x2, 0xa, 0x4, 0xe, 0x20200, 0x6, 0xf, 0x0, 0x3, 0x6a, 0x9, 0xe4, 0x80000000, 0xffffffff, 0x4, 0x0, 0x4, 0x5, 0xffff0001, 0x3d8, 0x0, 0x8001, 0x101, 0x40, 0xfffffffe, 0xae6, 0x6, 0x6, 0x0, 0xfffffff9, 0xd3b8, 0x2, 0xf, 0x0, 0x0, 0x4a, 0xda, 0x8, 0x0, 0x1, 0x0, 0x680, 0x4, 0x10000, 0x7, 0x7, 0x3, 0xe, 0x4, 0xcf715c4, 0x1, 0xc00, 0xffffffff, 0x6, 0x1, 0x7, 0x2, 0xffff65c6, 0x444, 0x1, 0x80, 0x3, 0x5, 0x2, 0x7f, 0x3, 0x10006, 0x9, 0x7, 0xb, 0xc, 0x4, 0x7, 0x40, 0x1, 0x1, 0x1, 0x3, 0x9, 0xe02c, 0x10001, 0xff, 0x8, 0xa, 0x5, 0x2, 0xa2, 0x2, 0x9, 0x6, 0x4, 0xfffffff8, 0xb, 0xfffffffc, 0x5, 0x101, 0x1, 0x2f0c, 0x1000, 0x8, 0x3, 0x6, 0x9, 0x9, 0x4e, 0x8, 0x10001, 0x6, 0x4, 0x1a, 0x8, 0x4, 0x101, 0x200, 0x3ff, 0x9, 0x9, 0x9, 0x3, 0x7, 0x7, 0x427a, 0x6, 0x4, 0x4, 0x9, 0x3, 0x7, 0xe, 0x10001, 0x8, 0x4, 0x3, 0x7fff, 0x80000000, 0xc60, 0x8001, 0x753da2a3, 0x7, 0x2, 0xa2, 0x1, 0x6, 0x80000000, 0x8, 0x7c, 0x7, 0x4, 0x6, 0x0, 0x1eb, 0x8, 0x8, 0x1, 0x0, 0x1, 0x2, 0xfe, 0x1, 0x9, 0xff, 0x1, 0x40, 0x1, 0x5, 0x7, 0x7b, 0xfff, 0x5, 0x0, 0x1, 0xffffff81, 0x7ff, 0x6, 0x3, 0x7, 0x5, 0x7fffffff, 0x9, 0x0, 0x2, 0x1ff, 0x0, 0x1, 0x5, 0x2c42d56b]}]}]}}]}, 0x440}, 0x1, 0x0, 0x0, 0x804}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4138ae84, &(0x7f0000000c40)=@x86={0x3, 0xf, 0x0, 0x0, 0x5, 0x4d, 0xfe, 0x6, 0x1, 0x4, 0x8, 0x0, 0x0, 0x5, 0x80000, 0x9, 0xff, 0x9, 0x5, '\x00', 0x5, 0xe732}) (fail_nth: 1) 411.265074ms ago: executing program 0 (id=1495): pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) write(r1, &(0x7f0000000340), 0x11000) io_setup(0x3ff, &(0x7f0000000500)=0x0) io_submit(r2, 0x1, &(0x7f0000000140)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0x0, r1, &(0x7f0000000080)}]) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 410.990902ms ago: executing program 3 (id=1496): mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) socket$pppoe(0x18, 0x1, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x1, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r5 = openat$cgroup_ro(r4, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00') lseek(r5, 0x5, 0x1) r6 = openat$kvm(0xffffffffffffff9c, 0x0, 0x42280, 0x0) close(r3) ioctl$KVM_CHECK_EXTENSION(r6, 0xae01, 0x1) ioctl$KVM_SET_MEMORY_ATTRIBUTES(r3, 0x4020aed2, &(0x7f0000000040)={0xffff1000, 0x0, 0x8}) ioctl$KVM_SET_MEMORY_ATTRIBUTES(r3, 0x4020aed2, &(0x7f0000000080)={0xf000, 0x8d000, 0x8}) r7 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) read$alg(r7, &(0x7f0000000240)=""/4096, 0xfffffdef) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x10) r8 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00') pread64(r8, &(0x7f000001a240)=""/102400, 0x19000, 0x100008) r9 = io_uring_setup(0x79af, &(0x7f0000000100)={0x0, 0xaa00, 0x2}) sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f0000001280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001240)={&(0x7f0000000200)={0x34, 0x0, 0x100, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x9}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x4040801}, 0x80) io_uring_register$IORING_REGISTER_IOWQ_AFF(r9, 0x11, &(0x7f0000000040)="d25b49eaa837aca70b55963d847cb9cdc64c6cb78f6fd498cd9bba2a17c0e17da219082fa57699f4f249087bddafb95f5df23a60cbb6a1633839a9d2ada455c0ba8f8d191df1879e6e9b66eb51a57735e48c743fa4", 0x55) 230.998354ms ago: executing program 0 (id=1497): r0 = socket$inet6_dccp(0xa, 0x6, 0x0) connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @remote, 0x7}, 0x1c) r1 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x6}, 0x4) madvise(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x14) r2 = socket$kcm(0x10, 0x2, 0x4) sendmsg$kcm(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="39000000140081ae50003c00fbff008311001f9f660fcf0e5a05acb612f691f3bd3508abca1be6eeb89c44ebb37358582bb8b7d553b4e92155", 0x39}], 0x1}, 0x0) ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0x891c) setreuid(0xee01, 0x0) r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) r4 = dup(r3) write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c) r5 = fsopen(0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x29, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180100000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r6 = socket(0x21, 0x2, 0x10000000000002) connect$rxrpc(r6, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @multicast2}}, 0x3a) sendmmsg(r6, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[{0x10, 0x110, 0x1}], 0x10, 0xe000}, 0x5}], 0x1, 0x0) recvmmsg(r6, &(0x7f0000002940)=[{{0x0, 0x0, 0x0}}], 0xf000, 0x10002, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWSETELEM={0x38, 0xe, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x4}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x1}]}], {0x14, 0x10}}, 0xbc}, 0x1, 0x0, 0x0, 0x44000}, 0x0) shutdown(r0, 0x200000000000000) 196.859765ms ago: executing program 3 (id=1498): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x0, 0x4, &(0x7f00000004c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x66, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff90, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) r1 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r1, 0x84, 0x1c, &(0x7f0000000100), &(0x7f0000000140)=0x4) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r0}, 0x10) getsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x112, 0xe, 0x0, &(0x7f0000000080)) syz_open_dev$vbi(&(0x7f0000000640), 0x3, 0x2) r2 = syz_io_uring_setup(0x24b9, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=0x0, &(0x7f00000002c0)=0x0) syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x200}}) r5 = socket(0x2, 0x3, 0x6) setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000200)=0x4dd8, 0x4) sendto$inet(r5, 0x0, 0x0, 0xdfedac7253303320, &(0x7f0000000600)={0x2, 0x0, @remote}, 0x10) recvmmsg(r5, &(0x7f0000004b40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=""/43, 0x2b}, 0xadf}], 0x1, 0x10000, 0x0) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000440)={0x0, 0x1, 0xffff}, &(0x7f0000000700)=0x8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000540)={r6, @in={{0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x2, 0x9, 0x17a, 0x2, 0x20, 0x4, 0x2}, &(0x7f00000006c0)=0x9c) io_uring_enter(r2, 0x353, 0x0, 0x0, 0x0, 0x0) r7 = syz_io_uring_setup(0x278, &(0x7f0000000340)={0x0, 0x0, 0x13580}, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) syz_io_uring_submit(r8, r9, &(0x7f00000001c0)=@IORING_OP_SEND={0x1a, 0x1b, 0x0, 0xffffffffffffffff, 0x0, 0x0}) io_uring_enter(r7, 0x53, 0x103, 0x1, 0x0, 0x0) ioctl$VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000080)={0x10000, 0xa18}) syz_open_dev$loop(&(0x7f0000000000), 0x400000, 0x0) r10 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000000080)={r10, 0x300, {0x0, 0x0, 0x0, 0x10000000000, 0x0, 0x0, 0x2, 0xf, 0x0, "4874ef0904271a78949178fd825b775b5e55210c4037a557f88c97b6097ea4e9fdd1d167064e969100ff97aa6b42687995845c8c3ce42e76d6db19d5f4f5f283", "eba9d749fdc2dedff9641c2773c54efce1fa87820dae06070446988b8770438b12e6b80c265fdce83841f0f230d1f4fe7b5ba021316c17fb5112d7d0f278e48a", "993216b316a23f839af552fb85026e43c8ad3e80603200a6c188ec22bd7c4549", [0xfffffffffffffffd, 0xe]}}) r11 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r12 = syz_open_procfs(0x0, &(0x7f0000000740)='mountinfo\x00') preadv(r12, &(0x7f0000000680)=[{&(0x7f0000000080)=""/96, 0x60}], 0x1, 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r11, 0x40186f40, 0x0) io_setup(0x3ff, &(0x7f0000000500)=0x0) io_uring_register$IORING_REGISTER_BUFFERS(r10, 0x0, &(0x7f0000000780), 0x0) io_destroy(r13) 562.568µs ago: executing program 1 (id=1499): pipe(0x0) write(0xffffffffffffffff, &(0x7f0000000340), 0x11000) io_setup(0x3ff, 0x0) rseq(0x0, 0x0, 0x0, 0x0) io_submit(0x0, 0x20000000000001c3, &(0x7f0000000140)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="4e8fc38e71", 0x5}]) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000580)=[@in6={0xa, 0x4e21, 0x8, @rand_addr=' \x01\x00', 0xd}]}, &(0x7f0000000440)=0xc) 0s ago: executing program 1 (id=1500): r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x632240) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, 0x0) r3 = creat(&(0x7f0000000080)='./file0\x00', 0x0) close(r3) r4 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000500)=[0x0], 0x0, 0x0, 0x0, 0x1}) r6 = socket$inet6(0xa, 0x3, 0x7) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r6, 0x29, 0x20, 0x0, 0x0) setsockopt$inet6_int(r6, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x4380000, @remote}, 0x1c) ioctl$DRM_IOCTL_MODE_GETCRTC(r3, 0xc06864a1, &(0x7f0000000300)={0x0, 0xfffffffffffffe7a, r5, 0x0}) ioctl$DRM_IOCTL_MODE_GETFB2(r3, 0xc06864ce, &(0x7f0000000600)={r7, 0x0, 0x0, 0x0, 0x0, [0x0]}) ioctl$DRM_IOCTL_MODE_ADDFB2(r3, 0xc06864b8, &(0x7f00000001c0)={0x0, 0xae, 0x3ff, 0x34325241, 0x0, [r8], [0x2b8]}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000000)={0x7fff, 0x8, 0x100}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f00000001c0)={0x15, 0x1, 0x3}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) kernel console output (not intermixed with test programs): 2142][T10122] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 158.285171][T10122] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 158.288199][T10122] [ 159.281155][ T1450] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 159.432512][ T1450] usb 5-1: config index 0 descriptor too short (expected 28009, got 36) [ 159.435703][ T1450] usb 5-1: config 116 has too many interfaces: 105, using maximum allowed: 32 [ 159.439026][ T1450] usb 5-1: config 116 has an invalid descriptor of length 48, skipping remainder of the config [ 159.443490][ T1450] usb 5-1: config 116 has 0 interfaces, different from the descriptor's value: 105 [ 159.447061][ T1450] usb 5-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 159.450496][ T1450] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 159.725080][ T1450] usb 5-1: string descriptor 0 read error: -71 [ 159.731204][ T1450] usb 5-1: USB disconnect, device number 10 [ 159.747111][ T35] usb 7-1: USB disconnect, device number 7 [ 159.750488][ T35] ldusb 7-1:0.55: LD USB Device #0 now disconnected [ 160.257752][T10160] bridge0: adding interface bridge0 with same address as a received packet (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 160.269090][T10160] bridge0: port 3(gretap1) entered disabled state [ 160.271065][T10160] bridge0: port 2(bridge_slave_1) entered disabled state [ 160.273156][T10160] bridge0: port 1(bridge_slave_0) entered disabled state [ 160.275915][T10160] bridge0: entered allmulticast mode [ 160.755115][T10197] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1158'. [ 160.757500][T10195] FAULT_INJECTION: forcing a failure. [ 160.757500][T10195] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 160.761037][T10197] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 160.764314][T10197] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 160.766008][T10195] CPU: 1 UID: 0 PID: 10195 Comm: syz.2.1160 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 160.766871][T10197] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 160.772073][T10195] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 160.772088][T10195] Call Trace: [ 160.772094][T10195] [ 160.772101][T10195] dump_stack_lvl+0x16c/0x1f0 [ 160.772128][T10195] should_fail_ex+0x497/0x5b0 [ 160.772161][T10195] __kvm_read_guest_page+0x16b/0x210 [ 160.772190][T10195] kvm_fetch_guest_virt+0x128/0x1a0 [ 160.775750][T10197] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 160.779189][T10195] __do_insn_fetch_bytes+0x506/0x730 [ 160.792358][T10195] ? __pfx___do_insn_fetch_bytes+0x10/0x10 [ 160.794071][T10195] ? __pfx_emulator_get_segment+0x10/0x10 [ 160.795779][T10195] ? vmx_segment_access_rights.isra.0+0xbc/0xe0 [ 160.797596][T10195] x86_decode_insn+0x1888/0x55d0 [ 160.799101][T10195] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 160.800629][T10197] sg_write: data in/out 1828745297/60 bytes for SCSI command 0x0-- guessing data in; [ 160.800629][T10197] program syz.0.1158 not setting count and/or reply_len properly [ 160.800813][T10195] ? __pfx_x86_decode_insn+0x10/0x10 [ 160.809030][T10195] ? init_decode_cache+0xd/0x210 [ 160.811067][T10195] ? kvm_vm_ioctl_set_msr_filter+0x2c0/0x990 [ 160.813239][T10195] ? __pfx_init_emulate_ctxt+0x10/0x10 [ 160.814857][T10195] x86_emulate_instruction+0x975/0x1a50 [ 160.816478][T10195] ? vmx_segment_cache_test_set+0x14b/0x400 [ 160.818304][T10195] handle_ud+0x104/0x2c0 [ 160.820031][T10195] ? __pfx_handle_ud+0x10/0x10 [ 160.822012][T10195] ? clear_bhb_loop+0x35/0x90 [ 160.823978][T10195] ? __vmx_complete_interrupts+0x111/0x4e0 [ 160.826387][T10195] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 160.828785][T10195] handle_exception_nmi+0x83e/0x1410 [ 160.830949][T10195] ? trace_lock_acquire+0x14e/0x1f0 [ 160.833076][T10195] ? __pfx_handle_exception_nmi+0x10/0x10 [ 160.835354][T10195] vmx_handle_exit+0x733/0x1f70 [ 160.837366][T10195] vcpu_run+0x2aaf/0x4c00 [ 160.839075][T10195] ? x86_emulate_instruction+0x153/0x1a50 [ 160.841121][T10195] ? __pfx_vcpu_run+0x10/0x10 [ 160.843003][T10195] ? rcu_is_watching+0x12/0xc0 [ 160.844967][T10195] ? trace_irq_enable.constprop.0+0xea/0x140 [ 160.847332][T10195] ? complete_emulated_mmio+0x272/0x640 [ 160.849472][T10195] ? kvm_arch_vcpu_ioctl_run+0x44a/0x1740 [ 160.851730][T10195] kvm_arch_vcpu_ioctl_run+0x44a/0x1740 [ 160.853494][T10195] kvm_vcpu_ioctl+0x6ce/0x1520 [ 160.854903][T10195] ? tomoyo_path_number_perm+0x46d/0x5b0 [ 160.856542][T10195] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 160.858124][T10195] ? tomoyo_path_number_perm+0x190/0x5b0 [ 160.860432][T10195] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 160.862859][T10195] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 160.864583][T10195] ? do_vfs_ioctl+0x513/0x1950 [ 160.866016][T10195] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 160.867483][T10195] ? preempt_count_add+0x76/0x150 [ 160.869009][T10195] ? __pfx_lock_release+0x10/0x10 [ 160.870505][T10195] ? trace_lock_acquire+0x14e/0x1f0 [ 160.872025][T10195] kvm_vcpu_compat_ioctl+0x210/0x3f0 [ 160.873572][T10195] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 160.875272][T10195] ? __fget_files+0x206/0x3a0 [ 160.876652][T10195] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 160.878498][T10195] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 160.880540][T10195] __do_fast_syscall_32+0x73/0x120 [ 160.882686][T10195] do_fast_syscall_32+0x32/0x80 [ 160.884532][T10195] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 160.886439][T10195] RIP: 0023:0xf706e579 [ 160.887625][T10195] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 160.893236][T10195] RSP: 002b:00000000f506055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 160.895668][T10195] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000000ae80 [ 160.897954][T10195] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 160.901120][T10195] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 160.904317][T10195] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 160.906721][T10195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 160.909045][T10195] [ 160.971588][T10204] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1157'. [ 161.055126][T10206] FAULT_INJECTION: forcing a failure. [ 161.055126][T10206] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 161.059053][T10206] CPU: 1 UID: 0 PID: 10206 Comm: syz.3.1162 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 161.059068][T10206] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 161.059075][T10206] Call Trace: [ 161.066997][T10206] [ 161.067865][T10206] dump_stack_lvl+0x16c/0x1f0 [ 161.069285][T10206] should_fail_ex+0x497/0x5b0 [ 161.070668][T10206] __kvm_read_guest_page+0x16b/0x210 [ 161.072275][T10206] kvm_fetch_guest_virt+0x128/0x1a0 [ 161.073811][T10206] __do_insn_fetch_bytes+0x506/0x730 [ 161.075359][T10206] ? __pfx___do_insn_fetch_bytes+0x10/0x10 [ 161.077037][T10206] ? __pfx_kvm_tdp_mmu_map+0x10/0x10 [ 161.078582][T10206] x86_decode_insn+0x1888/0x55d0 [ 161.080048][T10206] ? __pfx_lock_release+0x10/0x10 [ 161.081517][T10206] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 161.083239][T10206] ? __pfx_x86_decode_insn+0x10/0x10 [ 161.084772][T10206] ? init_decode_cache+0xd/0x210 [ 161.086229][T10206] ? kvm_vm_ioctl_set_msr_filter+0x2c0/0x990 [ 161.087962][T10206] ? __pfx_init_emulate_ctxt+0x10/0x10 [ 161.089590][T10206] ? __pfx_kvm_mmu_do_page_fault+0x10/0x10 [ 161.091295][T10206] ? rcu_is_watching+0x12/0xc0 [ 161.092702][T10206] x86_emulate_instruction+0x975/0x1a50 [ 161.094315][T10206] ? is_bpf_text_address+0x30/0x1a0 [ 161.095855][T10206] ? lock_acquire+0x2f/0xb0 [ 161.097176][T10206] kvm_mmu_page_fault+0xb44/0x1bb0 [ 161.098689][T10206] ? __kernel_text_address+0xd/0x40 [ 161.100319][T10206] ? unwind_get_return_address+0x59/0xa0 [ 161.102078][T10206] ? kvm_multiple_exception+0x57c/0xb40 [ 161.103866][T10206] ? __pfx_kvm_mmu_page_fault+0x10/0x10 [ 161.105662][T10206] ? kvm_requeue_exception+0x26/0x30 [ 161.107224][T10206] ? __vmx_complete_interrupts+0x496/0x4e0 [ 161.108976][T10206] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 161.110717][T10206] ? vmx_vcpu_run+0x14b7/0x2a50 [ 161.112157][T10206] handle_ept_violation+0x25a/0x640 [ 161.113687][T10206] ? __pfx_handle_ept_violation+0x10/0x10 [ 161.115412][T10206] vmx_handle_exit+0x733/0x1f70 [ 161.116840][T10206] vcpu_run+0x2aaf/0x4c00 [ 161.118128][T10206] ? __pfx_vcpu_run+0x10/0x10 [ 161.119534][T10206] ? rcu_is_watching+0x12/0xc0 [ 161.120934][T10206] ? trace_lock_acquire+0x14e/0x1f0 [ 161.122463][T10206] ? trace_irq_enable.constprop.0+0xea/0x140 [ 161.124217][T10206] ? kvm_arch_vcpu_ioctl_run+0x150/0x1740 [ 161.125915][T10206] ? lock_acquire+0x2f/0xb0 [ 161.127259][T10206] ? kvm_arch_vcpu_ioctl_run+0x44a/0x1740 [ 161.128966][T10206] kvm_arch_vcpu_ioctl_run+0x44a/0x1740 [ 161.130616][T10206] kvm_vcpu_ioctl+0x6ce/0x1520 [ 161.132015][T10206] ? tomoyo_path_number_perm+0x46d/0x5b0 [ 161.133666][T10206] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 161.135190][T10206] ? tomoyo_path_number_perm+0x190/0x5b0 [ 161.136830][T10206] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 161.138566][T10206] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 161.140301][T10206] ? do_vfs_ioctl+0x513/0x1950 [ 161.141702][T10206] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 161.143176][T10206] ? preempt_count_add+0x76/0x150 [ 161.144690][T10206] ? __pfx_lock_release+0x10/0x10 [ 161.146182][T10206] ? trace_lock_acquire+0x14e/0x1f0 [ 161.147704][T10206] kvm_vcpu_compat_ioctl+0x210/0x3f0 [ 161.149268][T10206] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 161.150977][T10206] ? __fget_files+0x206/0x3a0 [ 161.152389][T10206] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 161.154099][T10206] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 161.155670][T10206] __do_fast_syscall_32+0x73/0x120 [ 161.157166][T10206] do_fast_syscall_32+0x32/0x80 [ 161.158609][T10206] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 161.160444][T10206] RIP: 0023:0xf7f71579 [ 161.161603][T10206] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 161.167215][T10206] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 161.169730][T10206] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80 [ 161.172025][T10206] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 161.174312][T10206] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 161.176649][T10206] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 161.178942][T10206] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 161.181198][T10206] [ 161.718311][T10230] process 'syz.3.1167' launched '/dev/fd/11' with NULL argv: empty string added [ 161.901195][ T1450] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 162.051096][ T1450] usb 6-1: Using ep0 maxpacket: 8 [ 162.054440][ T1450] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 162.058286][ T1450] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 162.062220][ T1450] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 162.066700][ T1450] usb 6-1: config 0 descriptor?? [ 162.069991][ T1450] iowarrior 6-1:0.0: no interrupt-in endpoint found [ 162.487553][T10256] FAULT_INJECTION: forcing a failure. [ 162.487553][T10256] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 162.492287][T10256] CPU: 3 UID: 0 PID: 10256 Comm: syz.2.1177 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 162.495615][T10256] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 162.498875][T10256] Call Trace: [ 162.499871][T10256] [ 162.500767][T10256] dump_stack_lvl+0x16c/0x1f0 [ 162.502188][T10256] should_fail_ex+0x497/0x5b0 [ 162.503589][T10256] _copy_from_user+0x2e/0xd0 [ 162.504996][T10256] do_ipv6_setsockopt+0x1a8e/0x4660 [ 162.506596][T10256] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 162.508232][T10256] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 162.509832][T10256] ? kstrtouint+0xde/0x130 [ 162.511177][T10256] ? __pfx_kstrtouint+0x10/0x10 [ 162.512625][T10256] ? rcu_is_watching+0x12/0xc0 [ 162.514053][T10256] ? lock_release+0x4e2/0x6f0 [ 162.515465][T10256] ? get_pid_task+0xfc/0x250 [ 162.516846][T10256] ? __pfx_lock_release+0x10/0x10 [ 162.518339][T10256] ? trace_lock_acquire+0x14e/0x1f0 [ 162.519844][T10256] ? get_pid_task+0x35/0x250 [ 162.521208][T10256] ? __pfx___might_resched+0x10/0x10 [ 162.522769][T10256] ? lock_release+0x4e2/0x6f0 [ 162.524158][T10256] ? ksys_write+0x12b/0x250 [ 162.525518][T10256] ? aa_sk_perm+0x2f5/0xb20 [ 162.526888][T10256] ? ipv6_setsockopt+0xcb/0x170 [ 162.528328][T10256] ipv6_setsockopt+0xcb/0x170 [ 162.529728][T10256] udpv6_setsockopt+0x7d/0xd0 [ 162.531123][T10256] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 162.532883][T10256] do_sock_setsockopt+0x222/0x480 [ 162.534366][T10256] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 162.536012][T10256] ? __fget_files+0x40/0x3a0 [ 162.537375][T10256] ? lock_acquire+0x2f/0xb0 [ 162.538741][T10256] __sys_setsockopt+0x1a0/0x230 [ 162.540194][T10256] __ia32_sys_setsockopt+0xbc/0x160 [ 162.541743][T10256] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 162.543665][T10256] __do_fast_syscall_32+0x73/0x120 [ 162.545270][T10256] do_fast_syscall_32+0x32/0x80 [ 162.546738][T10256] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 162.548613][T10256] RIP: 0023:0xf706e579 [ 162.549842][T10256] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 162.555620][T10256] RSP: 002b:00000000f506055c EFLAGS: 00000296 ORIG_RAX: 000000000000016e [ 162.558111][T10256] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000029 [ 162.560457][T10256] RDX: 0000000000000039 RSI: 0000000020000300 RDI: 0000000000000028 [ 162.562706][T10256] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 162.565023][T10256] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 162.567348][T10256] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 162.569667][T10256] [ 162.628087][ T2305] usb 6-1: USB disconnect, device number 9 [ 163.092890][T10280] ip_tunnel: non-ECT from 172.30.0.3 with TOS=0x2 [ 163.096881][T10281] ip_tunnel: non-ECT from 172.30.0.3 with TOS=0x2 [ 163.811998][T10318] tipc: Enabled bearer , priority 0 [ 164.327719][ T9] hid-generic 0000:0000:0003.000C: unknown main item tag 0x6 [ 164.329896][ T9] hid-generic 0000:0000:0003.000C: unknown main item tag 0x2 [ 164.332855][ T9] hid-generic 0000:0000:0003.000C: unknown main item tag 0x3 [ 164.334981][ T9] hid-generic 0000:0000:0003.000C: unknown main item tag 0x2 [ 164.337152][ T9] hid-generic 0000:0000:0003.000C: unknown main item tag 0x7 [ 164.339291][ T9] hid-generic 0000:0000:0003.000C: unknown main item tag 0x2 [ 164.341654][ T9] hid-generic 0000:0000:0003.000C: unknown main item tag 0x3 [ 164.343832][ T9] hid-generic 0000:0000:0003.000C: unknown main item tag 0x2 [ 164.346526][ T9] hid-generic 0000:0000:0003.000C: unknown main item tag 0x7 [ 164.348715][ T9] hid-generic 0000:0000:0003.000C: unknown main item tag 0x7 [ 164.351888][ T9] hid-generic 0000:0000:0003.000C: hidraw1: HID v0.00 Device [syz1] on syz0 [ 164.422337][T10328] netlink: 'syz.0.1199': attribute type 3 has an invalid length. [ 164.430602][ T39] audit: type=1800 audit(2000000074.549:74): pid=10329 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1199" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0 [ 164.951057][ T1450] tipc: Node number set to 4278255617 [ 164.951155][ T9] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 165.121108][ T9] usb 6-1: Using ep0 maxpacket: 32 [ 165.124002][ T9] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 165.128315][ T9] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 165.131056][ T9] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 165.133397][ T9] usb 6-1: Product: syz [ 165.134644][ T9] usb 6-1: Manufacturer: syz [ 165.136062][ T9] usb 6-1: SerialNumber: syz [ 165.138052][ T9] usb 6-1: config 0 descriptor?? [ 165.139901][T10346] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 165.692737][T10381] FAULT_INJECTION: forcing a failure. [ 165.692737][T10381] name failslab, interval 1, probability 0, space 0, times 0 [ 165.696258][T10381] CPU: 3 UID: 0 PID: 10381 Comm: syz.0.1215 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 165.699220][T10381] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 165.702130][T10381] Call Trace: [ 165.703055][T10381] [ 165.703916][T10381] dump_stack_lvl+0x16c/0x1f0 [ 165.705215][T10381] should_fail_ex+0x497/0x5b0 [ 165.706523][T10381] ? fs_reclaim_acquire+0xae/0x150 [ 165.707913][T10381] should_failslab+0xc2/0x120 [ 165.709218][T10381] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 165.710831][T10381] ? __alloc_skb+0x2b3/0x380 [ 165.712148][T10381] __alloc_skb+0x2b3/0x380 [ 165.713396][T10381] ? __pfx___alloc_skb+0x10/0x10 [ 165.714812][T10381] ? lock_acquire+0x2f/0xb0 [ 165.716080][T10381] netlink_alloc_large_skb+0x69/0x130 [ 165.717553][T10381] netlink_sendmsg+0x689/0xd70 [ 165.718897][T10381] ? __pfx_netlink_sendmsg+0x10/0x10 [ 165.720337][T10381] ____sys_sendmsg+0x9ae/0xb40 [ 165.721654][T10381] ? __pfx_____sys_sendmsg+0x10/0x10 [ 165.723084][T10381] ? get_compat_msghdr+0x11b/0x170 [ 165.724523][T10381] ? rcu_is_watching+0x12/0xc0 [ 165.725882][T10381] ? lock_release+0x4e2/0x6f0 [ 165.727177][T10381] ? get_pid_task+0xfc/0x250 [ 165.728612][T10381] ___sys_sendmsg+0x135/0x1e0 [ 165.730456][T10381] ? get_pid_task+0x35/0x250 [ 165.732317][T10381] ? __pfx____sys_sendmsg+0x10/0x10 [ 165.734063][T10381] ? lock_release+0x4e2/0x6f0 [ 165.735342][T10381] ? __pfx_lock_release+0x10/0x10 [ 165.736689][T10381] ? trace_lock_acquire+0x14e/0x1f0 [ 165.738157][T10381] ? __fget_files+0x206/0x3a0 [ 165.739437][T10381] __sys_sendmsg+0x16e/0x220 [ 165.740711][T10381] ? __pfx___sys_sendmsg+0x10/0x10 [ 165.742318][T10381] ? rcu_is_watching+0x12/0xc0 [ 165.744029][T10381] __do_fast_syscall_32+0x73/0x120 [ 165.746019][T10381] do_fast_syscall_32+0x32/0x80 [ 165.747895][T10381] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 165.750305][T10381] RIP: 0023:0xf7f8f579 [ 165.751855][T10381] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 165.757285][T10381] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 165.759579][T10381] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000500 [ 165.761699][T10381] RDX: 0000000000040000 RSI: 0000000000000000 RDI: 0000000000000000 [ 165.763874][T10381] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 165.766095][T10381] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 165.768301][T10381] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 165.770496][T10381] [ 165.791543][T10383] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 165.793378][T10383] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 165.795439][T10384] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(6) [ 165.797863][T10384] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 165.800644][T10383] vhci_hcd vhci_hcd.0: Device attached [ 165.801233][T10384] vhci_hcd vhci_hcd.0: Device attached [ 165.925209][T10386] vhci_hcd: connection closed [ 165.925478][ T1174] vhci_hcd: stop threads [ 165.930020][T10385] vhci_hcd: connection closed [ 165.932380][ T1174] vhci_hcd: release socket [ 165.935806][ T1174] vhci_hcd: disconnect device [ 165.937670][ T1174] vhci_hcd: stop threads [ 165.939199][ T1174] vhci_hcd: release socket [ 165.940876][ T1174] vhci_hcd: disconnect device [ 165.959723][T10395] FAULT_INJECTION: forcing a failure. [ 165.959723][T10395] name failslab, interval 1, probability 0, space 0, times 0 [ 165.963778][T10395] CPU: 3 UID: 0 PID: 10395 Comm: syz.0.1218 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 165.966785][T10395] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 165.969786][T10395] Call Trace: [ 165.970711][T10395] [ 165.971537][T10395] dump_stack_lvl+0x16c/0x1f0 [ 165.972849][T10395] should_fail_ex+0x497/0x5b0 [ 165.974178][T10395] should_failslab+0xc2/0x120 [ 165.975490][T10395] __kmalloc_cache_noprof+0x68/0x420 [ 165.976951][T10395] ? __pfx_sctp_get_port_local+0x10/0x10 [ 165.978502][T10395] ? lock_acquire+0x2f/0xb0 [ 165.979809][T10395] ? sctp_bind_addr_match+0x43/0x300 [ 165.981072][ T1450] vhci_hcd: vhci_device speed not set [ 165.981312][T10395] sctp_add_bind_addr+0x9d/0x3e0 [ 165.984289][T10395] sctp_do_bind+0x2d6/0x700 [ 165.985624][T10395] sctp_connect_new_asoc+0x5ff/0x790 [ 165.987150][T10395] ? lock_release+0x4e2/0x6f0 [ 165.988505][T10395] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 165.990200][T10395] ? rcu_is_watching+0x12/0xc0 [ 165.991680][T10395] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 165.993304][T10395] sctp_sendmsg+0x162a/0x1f10 [ 165.994686][T10395] ? __pfx_sctp_sendmsg+0x10/0x10 [ 165.996148][T10395] ? __pfx_aa_sk_perm+0x10/0x10 [ 165.997561][T10395] ? __pfx_sctp_sendmsg+0x10/0x10 [ 165.999032][T10395] inet_sendmsg+0x119/0x140 [ 166.000344][T10395] __sys_sendto+0x42a/0x4f0 [ 166.001788][T10395] ? __pfx___sys_sendto+0x10/0x10 [ 166.003253][T10395] ? ksys_write+0x1ba/0x250 [ 166.004566][T10395] ? __pfx_ksys_write+0x10/0x10 [ 166.005982][T10395] __ia32_sys_sendto+0xdd/0x1b0 [ 166.007397][T10395] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 166.009271][T10395] __do_fast_syscall_32+0x73/0x120 [ 166.010761][T10395] do_fast_syscall_32+0x32/0x80 [ 166.012189][T10395] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 166.014027][T10395] RIP: 0023:0xf7f8f579 [ 166.015209][T10395] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 166.020697][T10395] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000171 [ 166.023091][T10395] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000040 [ 166.025359][T10395] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000020000100 [ 166.027628][T10395] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000 [ 166.029901][T10395] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 166.032185][T10395] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 166.034454][T10395] [ 167.661092][ T9] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 167.811410][ T9] usb 8-1: Using ep0 maxpacket: 16 [ 167.814023][ T9] usb 8-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0 [ 167.816857][ T9] usb 8-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7 [ 167.820011][ T9] usb 8-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0 [ 167.822916][ T9] usb 8-1: config 0 interface 0 has no altsetting 0 [ 167.826428][ T9] usb 8-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 167.829117][ T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 167.832133][ T9] usb 8-1: Product: syz [ 167.836172][ T9] usb 8-1: Manufacturer: syz [ 167.838788][ T9] usb 8-1: SerialNumber: syz [ 167.842832][ T5977] usb 6-1: USB disconnect, device number 10 [ 167.845828][ T9] usb 8-1: config 0 descriptor?? [ 168.072425][T10418] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 168.075304][T10418] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 168.091781][T10418] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 168.098658][T10418] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 168.124172][ T9] usb 8-1: Can not set alternate setting to 1, error: -71 [ 168.126200][ T9] synaptics_usb 8-1:0.0: probe with driver synaptics_usb failed with error -71 [ 168.132730][ T9] usb 8-1: USB disconnect, device number 3 [ 168.390492][T10446] overlay: Unknown parameter '/' [ 168.419799][T10442] FAULT_INJECTION: forcing a failure. [ 168.419799][T10442] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 168.424003][T10442] CPU: 3 UID: 0 PID: 10442 Comm: syz.2.1230 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 168.427418][T10442] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 168.430601][T10442] Call Trace: [ 168.431605][T10442] [ 168.432511][T10442] dump_stack_lvl+0x16c/0x1f0 [ 168.433919][T10442] should_fail_ex+0x497/0x5b0 [ 168.435332][T10442] ? fs_reclaim_acquire+0xae/0x150 [ 168.436890][T10442] should_fail_alloc_page+0xe7/0x130 [ 168.438525][T10442] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 168.440324][T10442] ? finish_task_switch.isra.0+0x212/0xcc0 [ 168.442086][T10442] __alloc_pages_noprof+0x190/0x25b0 [ 168.443675][T10442] ? rcu_is_watching+0x12/0xc0 [ 168.445125][T10442] ? trace_irq_enable.constprop.0+0xea/0x140 [ 168.446954][T10442] ? finish_task_switch.isra.0+0x2e8/0xcc0 [ 168.448937][T10442] ? __switch_to+0x749/0x1190 [ 168.450873][T10442] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 168.453165][T10442] ? __pfx_smp_call_function_single+0x10/0x10 [ 168.454940][T10442] ? __pfx___loaded_vmcs_clear+0x10/0x10 [ 168.456598][T10442] ? __pfx___schedule+0x10/0x10 [ 168.458056][T10442] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 168.460137][T10442] ? policy_nodemask+0xea/0x4e0 [ 168.461626][T10442] alloc_pages_mpol_noprof+0x2c8/0x620 [ 168.463233][T10442] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 168.465055][T10442] ? rcu_is_watching+0x12/0xc0 [ 168.466499][T10442] ? trace_irq_enable.constprop.0+0xea/0x140 [ 168.468414][T10442] ? rcu_is_watching+0x12/0xc0 [ 168.470379][T10442] folio_alloc_mpol_noprof+0x36/0xd0 [ 168.472548][T10442] shmem_alloc_folio+0x135/0x160 [ 168.474561][T10442] shmem_alloc_and_add_folio+0x48b/0xc00 [ 168.476735][T10442] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 168.478699][T10442] ? shmem_allowable_huge_orders+0xd0/0x410 [ 168.480423][T10442] shmem_get_folio_gfp+0x689/0x1530 [ 168.481958][T10442] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 168.483553][T10442] ? rcu_is_watching+0x12/0xc0 [ 168.484994][T10442] shmem_fault+0x200/0xae0 [ 168.486363][T10442] ? __pfx_sched_clock_cpu+0x10/0x10 [ 168.487942][T10442] ? __pfx_shmem_fault+0x10/0x10 [ 168.489972][T10442] ? kvm_arch_vcpu_load+0x4ba/0x980 [ 168.492119][T10442] ? trace_lock_acquire+0x14e/0x1f0 [ 168.493898][T10442] ? rcu_is_watching+0x12/0xc0 [ 168.495306][T10442] ? rcu_is_watching+0x12/0xc0 [ 168.496702][T10442] ? __pfx_filemap_map_pages+0x10/0x10 [ 168.498324][T10442] __do_fault+0x10a/0x490 [ 168.499608][T10442] ? __pfx_filemap_map_pages+0x10/0x10 [ 168.501185][T10442] do_pte_missing+0x1a8/0x3e00 [ 168.502653][T10442] ? ___pte_offset_map+0x1b9/0x540 [ 168.504626][T10442] __handle_mm_fault+0x103c/0x2a40 [ 168.506722][T10442] ? __pfx___schedule+0x10/0x10 [ 168.508722][T10442] ? __pfx___handle_mm_fault+0x10/0x10 [ 168.510957][T10442] ? __pfx_lock_release+0x10/0x10 [ 168.513029][T10442] ? __pfx___pte_offset_map_lock+0x10/0x10 [ 168.515438][T10442] handle_mm_fault+0x3fa/0xaa0 [ 168.517434][T10442] __get_user_pages+0x8d9/0x3b50 [ 168.519477][T10442] ? __pfx___get_user_pages+0x10/0x10 [ 168.521719][T10442] ? down_read_killable+0xcc/0x380 [ 168.523821][T10442] ? __pfx_down_read_killable+0x10/0x10 [ 168.526309][T10442] get_user_pages_unlocked+0x1c2/0x780 [ 168.528578][T10442] ? __pfx_get_user_pages_unlocked+0x10/0x10 [ 168.531046][T10442] ? get_user_pages_fast_only+0xaf/0x100 [ 168.533355][T10442] ? __pfx_get_user_pages_fast_only+0x10/0x10 [ 168.535875][T10442] ? __pfx___might_resched+0x10/0x10 [ 168.538039][T10442] hva_to_pfn+0x8be/0xc20 [ 168.539821][T10442] ? rcu_is_watching+0x12/0xc0 [ 168.541801][T10442] ? __pfx_hva_to_pfn+0x10/0x10 [ 168.543798][T10442] ? __schedule+0x3d6c/0x5ad0 [ 168.545747][T10442] ? __schedule+0xe60/0x5ad0 [ 168.547649][T10442] ? __schedule+0x3d6c/0x5ad0 [ 168.549600][T10442] kvm_follow_pfn+0x29f/0x3f0 [ 168.551543][T10442] __kvm_faultin_pfn+0x11c/0x1a0 [ 168.553596][T10442] ? __pfx___kvm_faultin_pfn+0x10/0x10 [ 168.555872][T10442] ? kvm_irq_has_notifier+0x65/0x230 [ 168.558039][T10442] vmx_set_apic_access_page_addr+0x530/0x900 [ 168.560462][T10442] ? preempt_schedule_thunk+0x1a/0x30 [ 168.562514][T10442] ? __pfx_vmx_set_apic_access_page_addr+0x10/0x10 [ 168.564866][T10442] ? preempt_schedule_common+0x44/0xc0 [ 168.566866][T10442] ? preempt_schedule_thunk+0x1a/0x30 [ 168.568951][T10442] vcpu_run+0x370f/0x4c00 [ 168.570740][T10442] ? __pfx_vcpu_run+0x10/0x10 [ 168.572672][T10442] ? rcu_is_watching+0x12/0xc0 [ 168.574641][T10442] ? trace_lock_acquire+0x14e/0x1f0 [ 168.576697][T10442] ? trace_irq_enable.constprop.0+0xea/0x140 [ 168.579038][T10442] ? kvm_arch_vcpu_ioctl_run+0x150/0x1740 [ 168.581206][T10442] ? lock_acquire+0x2f/0xb0 [ 168.583024][T10442] ? kvm_arch_vcpu_ioctl_run+0x44a/0x1740 [ 168.585280][T10442] kvm_arch_vcpu_ioctl_run+0x44a/0x1740 [ 168.587542][T10442] kvm_vcpu_ioctl+0x6ce/0x1520 [ 168.589434][T10442] ? tomoyo_path_number_perm+0x46d/0x5b0 [ 168.591681][T10442] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 168.593762][T10442] ? tomoyo_path_number_perm+0x190/0x5b0 [ 168.596046][T10442] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 168.598440][T10442] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 168.600774][T10442] ? do_vfs_ioctl+0x513/0x1950 [ 168.602721][T10442] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 168.604720][T10442] ? preempt_count_add+0x76/0x150 [ 168.606789][T10442] ? __pfx_lock_release+0x10/0x10 [ 168.608726][T10442] ? trace_lock_acquire+0x14e/0x1f0 [ 168.610617][T10442] kvm_vcpu_compat_ioctl+0x210/0x3f0 [ 168.612218][T10442] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 168.613992][T10442] ? __fget_files+0x206/0x3a0 [ 168.615418][T10442] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 168.617187][T10442] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 168.618903][T10442] __do_fast_syscall_32+0x73/0x120 [ 168.620442][T10442] do_fast_syscall_32+0x32/0x80 [ 168.622082][T10442] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 168.623963][T10442] RIP: 0023:0xf706e579 [ 168.625190][T10442] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 168.630907][T10442] RSP: 002b:00000000f506055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 168.633432][T10442] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000000ae80 [ 168.635764][T10442] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 168.638127][T10442] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 168.640472][T10442] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 168.642843][T10442] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 168.645208][T10442] [ 168.898114][T10456] input input16: cannot allocate more than FF_MAX_EFFECTS effects [ 169.190405][T10468] netlink: 'syz.3.1235': attribute type 10 has an invalid length. [ 169.218563][T10468] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 169.661047][ T2305] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 169.818881][ T2305] usb 5-1: Using ep0 maxpacket: 8 [ 169.821810][ T2305] usb 5-1: config 0 has an invalid descriptor of length 48, skipping remainder of the config [ 169.824756][ T2305] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 169.827880][ T2305] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 169.830638][ T2305] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 169.833741][ T2305] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 169.837413][ T2305] usb 5-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 169.839969][ T2305] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 169.843029][ T2305] usb 5-1: config 0 descriptor?? [ 169.860331][T10488] FAULT_INJECTION: forcing a failure. [ 169.860331][T10488] name failslab, interval 1, probability 0, space 0, times 0 [ 169.864314][T10488] CPU: 0 UID: 0 PID: 10488 Comm: syz.1.1243 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 169.867305][T10488] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 169.870376][T10488] Call Trace: [ 169.871454][T10488] [ 169.872319][T10488] dump_stack_lvl+0x16c/0x1f0 [ 169.873742][T10488] should_fail_ex+0x497/0x5b0 [ 169.875117][T10488] ? fs_reclaim_acquire+0xae/0x150 [ 169.876621][T10488] should_failslab+0xc2/0x120 [ 169.877997][T10488] __kmalloc_cache_noprof+0x68/0x420 [ 169.879550][T10488] ? kasan_save_track+0x14/0x30 [ 169.880956][T10488] snd_pcm_oss_change_params_locked+0x242/0x3a50 [ 169.882831][T10488] ? snd_pcm_oss_write+0x482/0xa00 [ 169.884324][T10488] ? rcu_is_watching+0x12/0xc0 [ 169.885733][T10488] ? trace_contention_end+0xee/0x140 [ 169.887221][T10488] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 169.889118][T10488] ? snd_pcm_oss_write+0x482/0xa00 [ 169.890597][T10488] ? get_pid_task+0xfc/0x250 [ 169.891946][T10488] ? __pfx_lock_release+0x10/0x10 [ 169.893434][T10488] ? lock_acquire+0x2f/0xb0 [ 169.894768][T10488] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 169.896450][T10488] snd_pcm_oss_write+0x4a3/0xa00 [ 169.897846][T10488] ? security_file_permission+0x71/0x210 [ 169.899571][T10488] ? rw_verify_area+0xd0/0x700 [ 169.900920][T10488] ? __pfx_snd_pcm_oss_write+0x10/0x10 [ 169.902543][T10488] vfs_write+0x24c/0x1150 [ 169.903771][T10488] ? __fget_files+0x1fc/0x3a0 [ 169.905128][T10488] ? __pfx_lock_release+0x10/0x10 [ 169.906587][T10488] ? __pfx_vfs_write+0x10/0x10 [ 169.907974][T10488] ? __fget_files+0x40/0x3a0 [ 169.909317][T10488] ? lock_acquire+0x2f/0xb0 [ 169.910601][T10488] ? __fget_files+0x40/0x3a0 [ 169.911931][T10488] ? __fget_files+0x206/0x3a0 [ 169.913335][T10488] ksys_write+0x12b/0x250 [ 169.914612][T10488] ? __pfx_ksys_write+0x10/0x10 [ 169.916021][T10488] ? rcu_is_watching+0x12/0xc0 [ 169.917350][T10488] __do_fast_syscall_32+0x73/0x120 [ 169.918843][T10488] do_fast_syscall_32+0x32/0x80 [ 169.920256][T10488] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 169.922096][T10488] RIP: 0023:0xf705e579 [ 169.923322][T10488] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 169.928881][T10488] RSP: 002b:00000000f505055c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 169.931308][T10488] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000500 [ 169.933646][T10488] RDX: 000000000000fdbc RSI: 0000000000000000 RDI: 0000000000000000 [ 169.935937][T10488] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 169.938249][T10488] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 169.940500][T10488] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 169.942771][T10488] [ 169.958656][T10492] input input17: cannot allocate more than FF_MAX_EFFECTS effects [ 170.050000][ T2305] usb 5-1: USB disconnect, device number 11 [ 170.320193][ T5298] Bluetooth: hci3: unexpected event for opcode 0x2029 [ 170.321784][T10511] dummy0: entered promiscuous mode [ 170.324486][T10511] dummy0: left promiscuous mode [ 170.637317][T10525] FAULT_INJECTION: forcing a failure. [ 170.637317][T10525] name failslab, interval 1, probability 0, space 0, times 0 [ 170.640849][T10525] CPU: 0 UID: 0 PID: 10525 Comm: syz.0.1255 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 170.643737][T10525] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 170.646651][T10525] Call Trace: [ 170.647570][T10525] [ 170.648369][T10525] dump_stack_lvl+0x16c/0x1f0 [ 170.649718][T10525] should_fail_ex+0x497/0x5b0 [ 170.651086][T10525] ? fs_reclaim_acquire+0xae/0x150 [ 170.652502][T10525] should_failslab+0xc2/0x120 [ 170.653784][T10525] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 170.655592][T10525] ? __alloc_skb+0x2b3/0x380 [ 170.656950][T10525] __alloc_skb+0x2b3/0x380 [ 170.658336][T10525] ? __pfx___alloc_skb+0x10/0x10 [ 170.659785][T10525] ? is_bpf_text_address+0x30/0x1a0 [ 170.661295][T10525] ? lock_acquire+0x2f/0xb0 [ 170.662683][T10525] ? is_bpf_text_address+0x30/0x1a0 [ 170.664118][T10525] ? bpf_ksym_find+0x124/0x1c0 [ 170.665460][T10525] ? aa_label_sk_perm+0x19d/0x5a0 [ 170.666933][T10525] alloc_skb_with_frags+0xe4/0x850 [ 170.668494][T10525] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 170.670052][T10525] sock_alloc_send_pskb+0x7f1/0x980 [ 170.671561][T10525] ? lock_release+0x4e2/0x6f0 [ 170.673147][T10525] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 170.674856][T10525] ? lock_release+0x4e2/0x6f0 [ 170.676210][T10525] ? aa_file_perm+0x4c6/0xfe0 [ 170.677622][T10525] ? __pfx_lock_release+0x10/0x10 [ 170.679111][T10525] ? __pfx___might_resched+0x10/0x10 [ 170.680622][T10525] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 170.682335][T10525] hci_sock_sendmsg+0x1c8/0x25e0 [ 170.683807][T10525] ? aa_file_perm+0x4d5/0xfe0 [ 170.685205][T10525] ? __pfx_aa_sk_perm+0x10/0x10 [ 170.686630][T10525] ? __pfx_hci_sock_sendmsg+0x10/0x10 [ 170.688245][T10525] sock_write_iter+0x4fe/0x5b0 [ 170.689642][T10525] ? __pfx_sock_write_iter+0x10/0x10 [ 170.691175][T10525] ? bpf_lsm_file_permission+0x9/0x10 [ 170.692932][T10525] ? security_file_permission+0x71/0x210 [ 170.694591][T10525] vfs_write+0x5ae/0x1150 [ 170.695861][T10525] ? __pfx_sock_write_iter+0x10/0x10 [ 170.697474][T10525] ? __pfx_vfs_write+0x10/0x10 [ 170.698871][T10525] ? __fget_files+0x40/0x3a0 [ 170.700203][T10525] ksys_write+0x207/0x250 [ 170.701511][T10525] ? __pfx_ksys_write+0x10/0x10 [ 170.703030][T10525] ? rcu_is_watching+0x12/0xc0 [ 170.704548][T10525] __do_fast_syscall_32+0x73/0x120 [ 170.706094][T10525] do_fast_syscall_32+0x32/0x80 [ 170.707499][T10525] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 170.709308][T10525] RIP: 0023:0xf7f8f579 [ 170.710479][T10525] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 170.716123][T10525] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 170.718511][T10525] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000040 [ 170.720706][T10525] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000000000000 [ 170.723056][T10525] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 170.725375][T10525] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 170.727636][T10525] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 170.729890][T10525] [ 170.846602][T10537] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 170.899928][T10537] kvm: pic: level sensitive irq not supported [ 170.900900][T10537] kvm: pic: non byte read [ 170.907169][T10537] kvm: pic: level sensitive irq not supported [ 170.907774][T10537] kvm: pic: non byte read [ 171.721901][ T25] IPVS: starting estimator thread 0... [ 171.749395][T10567] FAULT_INJECTION: forcing a failure. [ 171.749395][T10567] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 171.749412][T10567] CPU: 3 UID: 0 PID: 10567 Comm: syz.0.1267 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 171.749425][T10567] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 171.749432][T10567] Call Trace: [ 171.749443][T10567] [ 171.749446][T10567] dump_stack_lvl+0x16c/0x1f0 [ 171.749475][T10567] should_fail_ex+0x497/0x5b0 [ 171.749494][T10567] _copy_to_iter+0x4a5/0x1400 [ 171.749510][T10567] ? __pfx__copy_to_iter+0x10/0x10 [ 171.749523][T10567] ? __virt_addr_valid+0x1a4/0x590 [ 171.749557][T10567] ? __virt_addr_valid+0x5e/0x590 [ 171.749572][T10567] ? __phys_addr_symbol+0x30/0x80 [ 171.749584][T10567] ? __check_object_size+0x488/0x710 [ 171.749600][T10567] simple_copy_to_iter+0x4f/0x80 [ 171.749614][T10567] __skb_datagram_iter+0x122/0x8c0 [ 171.749625][T10567] ? __pfx_simple_copy_to_iter+0x10/0x10 [ 171.749637][T10567] ? skb_recv_datagram+0x89/0xc0 [ 171.749649][T10567] ? rcu_is_watching+0x12/0xc0 [ 171.749662][T10567] skb_copy_datagram_iter+0x40/0x50 [ 171.749674][T10567] rawv6_recvmsg+0x4d9/0xda0 [ 171.749687][T10567] ? __pfx_rawv6_recvmsg+0x10/0x10 [ 171.749697][T10567] ? aa_sk_perm+0x2f5/0xb20 [ 171.749714][T10567] sock_common_recvmsg+0xea/0x1a0 [ 171.749724][T10567] ? __pfx_sock_common_recvmsg+0x10/0x10 [ 171.749734][T10567] ? _kstrtoull+0x146/0x200 [ 171.749745][T10567] sock_recvmsg+0x1f6/0x250 [ 171.749756][T10567] ____sys_recvmsg+0x219/0x6b0 [ 171.749767][T10567] ? __pfx_____sys_recvmsg+0x10/0x10 [ 171.749780][T10567] ? lock_acquire+0x2f/0xb0 [ 171.749789][T10567] ? rcu_is_watching+0x12/0xc0 [ 171.749802][T10567] ___sys_recvmsg+0x115/0x1a0 [ 171.749815][T10567] ? __pfx____sys_recvmsg+0x10/0x10 [ 171.749829][T10567] ? lock_release+0x4e2/0x6f0 [ 171.749837][T10567] ? __fget_files+0x1fc/0x3a0 [ 171.749849][T10567] ? trace_lock_acquire+0x14e/0x1f0 [ 171.749864][T10567] ? __fget_files+0x206/0x3a0 [ 171.749876][T10567] __sys_recvmsg+0x16b/0x220 [ 171.749890][T10567] ? __pfx___sys_recvmsg+0x10/0x10 [ 171.749907][T10567] ? rcu_is_watching+0x12/0xc0 [ 171.749919][T10567] __do_fast_syscall_32+0x73/0x120 [ 171.749933][T10567] do_fast_syscall_32+0x32/0x80 [ 171.749946][T10567] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 171.749961][T10567] RIP: 0023:0xf7f8f579 [ 171.749969][T10567] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 171.749979][T10567] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000174 [ 171.749996][T10567] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000240 [ 171.750002][T10567] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 171.750008][T10567] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 171.750014][T10567] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 171.750020][T10567] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 171.750029][T10567] [ 171.784231][T10570] FAULT_INJECTION: forcing a failure. [ 171.784231][T10570] name failslab, interval 1, probability 0, space 0, times 0 [ 171.831088][T10564] IPVS: using max 63 ests per chain, 151200 per kthread [ 171.833153][T10570] CPU: 1 UID: 0 PID: 10570 Comm: syz.0.1268 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 171.856434][T10570] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 171.856444][T10570] Call Trace: [ 171.856448][T10570] [ 171.856453][T10570] dump_stack_lvl+0x16c/0x1f0 [ 171.856470][T10570] should_fail_ex+0x497/0x5b0 [ 171.856483][T10570] ? fs_reclaim_acquire+0xae/0x150 [ 171.856495][T10570] should_failslab+0xc2/0x120 [ 171.856510][T10570] __kmalloc_noprof+0xce/0x4f0 [ 171.856528][T10570] ? memcg_list_lru_alloc+0x29f/0x730 [ 171.870055][T10570] memcg_list_lru_alloc+0x29f/0x730 [ 171.870071][T10570] ? __pfx_memcg_list_lru_alloc+0x10/0x10 [ 171.870082][T10570] ? get_mem_cgroup_from_objcg+0x183/0x330 [ 171.870095][T10570] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 171.870107][T10570] __memcg_slab_post_alloc_hook+0x12c/0x9b0 [ 171.870122][T10570] ? kasan_save_track+0x14/0x30 [ 171.870136][T10570] kmem_cache_alloc_lru_noprof+0x30d/0x3b0 [ 171.870149][T10570] ? alloc_inode+0xbf/0x230 [ 171.870164][T10570] alloc_inode+0xbf/0x230 [ 171.870177][T10570] alloc_anon_inode+0x28/0x3e0 [ 171.870188][T10570] ? do_raw_spin_unlock+0x172/0x230 [ 171.870201][T10570] secretmem_file_create.constprop.0+0x9a/0x310 [ 171.870216][T10570] ? __pfx_secretmem_file_create.constprop.0+0x10/0x10 [ 171.870232][T10570] __ia32_sys_memfd_secret+0xc5/0x1a0 [ 171.870246][T10570] __do_fast_syscall_32+0x73/0x120 [ 171.870260][T10570] do_fast_syscall_32+0x32/0x80 [ 171.870273][T10570] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 171.870290][T10570] RIP: 0023:0xf7f8f579 [ 171.870300][T10570] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 171.870310][T10570] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 00000000000001bf [ 171.870321][T10570] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000 [ 171.870327][T10570] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 171.870333][T10570] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 171.870339][T10570] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 171.870345][T10570] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 171.870354][T10570] [ 172.005311][T10565] FAULT_INJECTION: forcing a failure. [ 172.005311][T10565] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 172.010204][T10565] CPU: 3 UID: 0 PID: 10565 Comm: syz.2.1265 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 172.014054][T10565] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 172.017222][T10565] Call Trace: [ 172.018268][T10565] [ 172.019144][T10565] dump_stack_lvl+0x16c/0x1f0 [ 172.020528][T10565] should_fail_ex+0x497/0x5b0 [ 172.021999][T10565] _copy_from_iter+0x29b/0x1400 [ 172.023448][T10565] ? trace_lock_acquire+0x14e/0x1f0 [ 172.025048][T10565] ? __virt_addr_valid+0x1a4/0x590 [ 172.026545][T10565] ? __pfx__copy_from_iter+0x10/0x10 [ 172.028087][T10565] ? __virt_addr_valid+0x1a4/0x590 [ 172.029582][T10565] ? __virt_addr_valid+0x5e/0x590 [ 172.031031][T10565] ? __phys_addr_symbol+0x30/0x80 [ 172.032545][T10565] ? __check_object_size+0x488/0x710 [ 172.034077][T10565] file_tty_write.constprop.0+0x48d/0x9a0 [ 172.035915][T10565] vfs_write+0x5ae/0x1150 [ 172.037528][T10565] ? __pfx_tty_write+0x10/0x10 [ 172.039363][T10565] ? __pfx_vfs_write+0x10/0x10 [ 172.041183][T10565] ? __fget_files+0x40/0x3a0 [ 172.042933][T10565] ksys_write+0x12b/0x250 [ 172.044598][T10565] ? __pfx_ksys_write+0x10/0x10 [ 172.046579][T10565] ? rcu_is_watching+0x12/0xc0 [ 172.048525][T10565] __do_fast_syscall_32+0x73/0x120 [ 172.050564][T10565] do_fast_syscall_32+0x32/0x80 [ 172.052506][T10565] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 172.055000][T10565] RIP: 0023:0xf706e579 [ 172.056593][T10565] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 172.064042][T10565] RSP: 002b:00000000f503f55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 172.067307][T10565] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020001980 [ 172.070402][T10565] RDX: 0000000000001006 RSI: 0000000000000000 RDI: 0000000000000000 [ 172.073587][T10565] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 172.075871][T10565] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 172.078164][T10565] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 172.080390][T10565] [ 172.100084][T10575] lo speed is unknown, defaulting to 1000 [ 173.382147][ T39] audit: type=1326 audit(2000000083.509:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10610 comm="syz.0.1279" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f8f579 code=0x0 [ 173.420126][T10613] FAULT_INJECTION: forcing a failure. [ 173.420126][T10613] name failslab, interval 1, probability 0, space 0, times 0 [ 173.424922][T10613] CPU: 0 UID: 0 PID: 10613 Comm: syz.2.1280 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 173.428890][T10613] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 173.432170][T10613] Call Trace: [ 173.433493][T10613] [ 173.434674][T10613] dump_stack_lvl+0x16c/0x1f0 [ 173.436578][T10613] should_fail_ex+0x497/0x5b0 [ 173.438244][T10613] ? fs_reclaim_acquire+0xae/0x150 [ 173.439801][T10613] should_failslab+0xc2/0x120 [ 173.441358][T10613] __kmalloc_noprof+0xce/0x4f0 [ 173.442736][T10613] ? tomoyo_realpath_from_path+0xbf/0x710 [ 173.444930][T10613] tomoyo_realpath_from_path+0xbf/0x710 [ 173.447183][T10613] ? tomoyo_path_number_perm+0x235/0x5b0 [ 173.449391][T10613] tomoyo_path_number_perm+0x248/0x5b0 [ 173.451563][T10613] ? tomoyo_path_number_perm+0x235/0x5b0 [ 173.453165][T10613] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 173.454989][T10613] ? rcu_is_watching+0x12/0xc0 [ 173.456452][T10613] ? preempt_count_add+0x76/0x150 [ 173.457927][T10613] ? __pfx_lock_release+0x10/0x10 [ 173.459419][T10613] ? trace_lock_acquire+0x14e/0x1f0 [ 173.461121][T10613] ? __fget_files+0x40/0x3a0 [ 173.462870][T10613] ? lock_acquire+0x2f/0xb0 [ 173.464154][T10613] ? __fget_files+0x40/0x3a0 [ 173.465486][T10613] ? __fget_files+0x206/0x3a0 [ 173.466859][T10613] security_file_ioctl_compat+0x9b/0x240 [ 173.468941][T10613] __do_compat_sys_ioctl+0x4e/0x2c0 [ 173.470902][T10613] __do_fast_syscall_32+0x73/0x120 [ 173.472884][T10613] do_fast_syscall_32+0x32/0x80 [ 173.474777][T10613] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 173.477214][T10613] RIP: 0023:0xf706e579 [ 173.478792][T10613] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 173.486045][T10613] RSP: 002b:00000000f506055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 173.488886][T10613] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005393 [ 173.491132][T10613] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 173.493844][T10613] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 173.496492][T10613] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 173.499463][T10613] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 173.502432][T10613] [ 173.504033][T10613] ERROR: Out of memory at tomoyo_realpath_from_path. [ 174.269745][T10663] FAULT_INJECTION: forcing a failure. [ 174.269745][T10663] name failslab, interval 1, probability 0, space 0, times 0 [ 174.273678][T10663] CPU: 1 UID: 0 PID: 10663 Comm: syz.0.1296 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 174.276377][T10663] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 174.279071][T10663] Call Trace: [ 174.279959][T10663] [ 174.280714][T10663] dump_stack_lvl+0x16c/0x1f0 [ 174.281909][T10663] should_fail_ex+0x497/0x5b0 [ 174.283109][T10663] ? fs_reclaim_acquire+0xae/0x150 [ 174.284412][T10663] should_failslab+0xc2/0x120 [ 174.285643][T10663] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 174.287076][T10663] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 174.288586][T10663] ? getname_flags.part.0+0x4c/0x550 [ 174.289957][T10663] ? __check_object_size+0xad/0x710 [ 174.291283][T10663] getname_flags.part.0+0x4c/0x550 [ 174.292569][T10663] getname+0x8d/0xe0 [ 174.293579][T10663] path_removexattrat+0x3a2/0x5d0 [ 174.294828][T10663] ? __pfx_path_removexattrat+0x10/0x10 [ 174.296240][T10663] ? ksys_write+0x1ba/0x250 [ 174.297401][T10663] ? __pfx_ksys_write+0x10/0x10 [ 174.298635][T10663] __ia32_sys_removexattr+0x59/0x80 [ 174.299943][T10663] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 174.301595][T10663] __do_fast_syscall_32+0x73/0x120 [ 174.302882][T10663] do_fast_syscall_32+0x32/0x80 [ 174.304152][T10663] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 174.305761][T10663] RIP: 0023:0xf7f8f579 [ 174.306825][T10663] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 174.311752][T10663] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 00000000000000eb [ 174.313844][T10663] RAX: ffffffffffffffda RBX: 0000000020000900 RCX: 0000000020000940 [ 174.315798][T10663] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 174.317799][T10663] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 174.319754][T10663] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 174.321726][T10663] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 174.323696][T10663] [ 174.413440][T10673] FAULT_INJECTION: forcing a failure. [ 174.413440][T10673] name failslab, interval 1, probability 0, space 0, times 0 [ 174.417048][T10673] CPU: 0 UID: 0 PID: 10673 Comm: syz.0.1300 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 174.420127][T10673] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 174.423253][T10673] Call Trace: [ 174.424203][T10673] [ 174.425072][T10673] dump_stack_lvl+0x16c/0x1f0 [ 174.426468][T10673] should_fail_ex+0x497/0x5b0 [ 174.427882][T10673] ? fs_reclaim_acquire+0xae/0x150 [ 174.429360][T10673] should_failslab+0xc2/0x120 [ 174.430737][T10673] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 174.432257][T10673] ? stack_depot_save_flags+0x28/0x9e0 [ 174.433862][T10673] ? alloc_empty_file+0x73/0x1e0 [ 174.435430][T10673] alloc_empty_file+0x73/0x1e0 [ 174.436784][T10673] path_openat+0xe1/0x2d60 [ 174.438122][T10673] ? getname+0x8d/0xe0 [ 174.439329][T10673] ? do_sys_openat2+0x104/0x1e0 [ 174.440741][T10673] ? __ia32_compat_sys_open+0x147/0x1e0 [ 174.442345][T10673] ? __do_fast_syscall_32+0x73/0x120 [ 174.443950][T10673] ? do_fast_syscall_32+0x32/0x80 [ 174.445411][T10673] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 174.447291][T10673] ? __pfx_path_openat+0x10/0x10 [ 174.448754][T10673] do_filp_open+0x20c/0x470 [ 174.450337][T10673] ? __virt_addr_valid+0x2b4/0x590 [ 174.452146][T10673] ? __pfx_do_filp_open+0x10/0x10 [ 174.453886][T10673] ? trace_lock_acquire+0x14e/0x1f0 [ 174.455666][T10673] ? _raw_spin_unlock+0x28/0x50 [ 174.457325][T10673] ? alloc_fd+0x41f/0x760 [ 174.458697][T10673] do_sys_openat2+0x17a/0x1e0 [ 174.460091][T10673] ? __pfx_do_sys_openat2+0x10/0x10 [ 174.461563][T10673] ? __fget_files+0x206/0x3a0 [ 174.462908][T10673] __ia32_compat_sys_open+0x147/0x1e0 [ 174.464452][T10673] ? __pfx___ia32_compat_sys_open+0x10/0x10 [ 174.466154][T10673] ? rcu_is_watching+0x12/0xc0 [ 174.467534][T10673] ? trace_irq_enable.constprop.0+0xea/0x140 [ 174.469309][T10673] __do_fast_syscall_32+0x73/0x120 [ 174.470812][T10673] do_fast_syscall_32+0x32/0x80 [ 174.472239][T10673] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 174.474048][T10673] RIP: 0023:0xf7f8f579 [ 174.475201][T10673] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 174.480866][T10673] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000005 [ 174.483217][T10673] RAX: ffffffffffffffda RBX: 00000000200000c0 RCX: 0000000000000037 [ 174.485453][T10673] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 174.487670][T10673] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 174.489955][T10673] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 174.492206][T10673] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 174.494431][T10673] [ 174.696963][T10687] cgroup: name respecified [ 174.741267][T10696] FAULT_INJECTION: forcing a failure. [ 174.741267][T10696] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 174.745407][T10696] CPU: 1 UID: 0 PID: 10696 Comm: syz.3.1308 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 174.748600][T10696] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 174.752417][T10696] Call Trace: [ 174.753806][T10696] [ 174.754864][T10696] dump_stack_lvl+0x16c/0x1f0 [ 174.756338][T10696] should_fail_ex+0x497/0x5b0 [ 174.757781][T10696] _copy_to_user+0x32/0xd0 [ 174.759276][T10696] simple_read_from_buffer+0xd0/0x160 [ 174.760946][T10696] proc_fail_nth_read+0x198/0x270 [ 174.762374][T10696] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 174.764109][T10696] ? bpf_lsm_file_permission+0x9/0x10 [ 174.766198][T10696] ? security_file_permission+0x71/0x210 [ 174.767746][T10696] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 174.769532][T10696] vfs_read+0x1df/0xbe0 [ 174.770842][T10696] ? __fget_files+0x1fc/0x3a0 [ 174.772355][T10696] ? __pfx___mutex_lock+0x10/0x10 [ 174.773763][T10696] ? __pfx_vfs_read+0x10/0x10 [ 174.775104][T10696] ? __fget_files+0x206/0x3a0 [ 174.776473][T10696] ksys_read+0x12b/0x250 [ 174.777763][T10696] ? __pfx_ksys_read+0x10/0x10 [ 174.779483][T10696] ? rcu_is_watching+0x12/0xc0 [ 174.780886][T10696] __do_fast_syscall_32+0x73/0x120 [ 174.782477][T10696] do_fast_syscall_32+0x32/0x80 [ 174.783901][T10696] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 174.785850][T10696] RIP: 0023:0xf7f71579 [ 174.787103][T10696] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 174.792939][T10696] RSP: 002b:00000000f50c6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 174.795298][T10696] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f50c6620 [ 174.797486][T10696] RDX: 000000000000000f RSI: 00000000f7403ff4 RDI: 0000000000000000 [ 174.799635][T10696] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 174.801807][T10696] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 174.803950][T10696] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 174.806143][T10696] [ 175.078051][T10712] FAULT_INJECTION: forcing a failure. [ 175.078051][T10712] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 175.083135][T10712] CPU: 1 UID: 0 PID: 10712 Comm: syz.2.1312 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 175.086329][T10712] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 175.089422][T10712] Call Trace: [ 175.090362][T10712] [ 175.091407][T10712] dump_stack_lvl+0x16c/0x1f0 [ 175.093217][T10712] should_fail_ex+0x497/0x5b0 [ 175.094871][T10712] _copy_from_user+0x2e/0xd0 [ 175.096128][T10712] do_ipv6_setsockopt+0x99f/0x4660 [ 175.097575][T10712] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 175.099125][T10712] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 175.100665][T10712] ? kstrtouint+0xde/0x130 [ 175.102115][T10712] ? __pfx_kstrtouint+0x10/0x10 [ 175.103459][T10712] ? rcu_is_watching+0x12/0xc0 [ 175.104969][T10712] ? lock_release+0x4e2/0x6f0 [ 175.106724][T10712] ? get_pid_task+0xfc/0x250 [ 175.108310][T10712] ? __pfx_lock_release+0x10/0x10 [ 175.109784][T10712] ? trace_lock_acquire+0x14e/0x1f0 [ 175.112048][T10712] ? get_pid_task+0x35/0x250 [ 175.114007][T10712] ? __pfx___might_resched+0x10/0x10 [ 175.115912][T10712] ? lock_release+0x4e2/0x6f0 [ 175.117247][T10712] ? ksys_write+0x12b/0x250 [ 175.118630][T10712] ? aa_sk_perm+0x2f5/0xb20 [ 175.119883][T10712] ? ipv6_setsockopt+0xcb/0x170 [ 175.121444][T10712] ipv6_setsockopt+0xcb/0x170 [ 175.122957][T10712] udpv6_setsockopt+0x7d/0xd0 [ 175.124254][T10712] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 175.125893][T10712] do_sock_setsockopt+0x222/0x480 [ 175.127358][T10712] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 175.128951][T10712] ? __fget_files+0x40/0x3a0 [ 175.130288][T10712] ? lock_acquire+0x2f/0xb0 [ 175.131676][T10712] __sys_setsockopt+0x1a0/0x230 [ 175.133119][T10712] __ia32_sys_setsockopt+0xbc/0x160 [ 175.134595][T10712] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 175.136379][T10712] __do_fast_syscall_32+0x73/0x120 [ 175.137798][T10712] do_fast_syscall_32+0x32/0x80 [ 175.139154][T10712] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 175.140957][T10712] RIP: 0023:0xf706e579 [ 175.142343][T10712] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 175.147567][T10712] RSP: 002b:00000000f506055c EFLAGS: 00000296 ORIG_RAX: 000000000000016e [ 175.149839][T10712] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000029 [ 175.152228][T10712] RDX: 0000000000000011 RSI: 0000000020000000 RDI: 0000000000000004 [ 175.155308][T10712] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 175.158380][T10712] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 175.161574][T10712] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 175.164652][T10712] [ 175.260754][T10736] FAULT_INJECTION: forcing a failure. [ 175.260754][T10736] name failslab, interval 1, probability 0, space 0, times 0 [ 175.264478][T10736] CPU: 1 UID: 0 PID: 10736 Comm: syz.0.1320 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 175.267500][T10736] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 175.270516][T10736] Call Trace: [ 175.271519][T10736] [ 175.272385][T10736] dump_stack_lvl+0x16c/0x1f0 [ 175.273792][T10736] should_fail_ex+0x497/0x5b0 [ 175.275150][T10736] ? fs_reclaim_acquire+0xae/0x150 [ 175.276616][T10736] should_failslab+0xc2/0x120 [ 175.277980][T10736] __kmalloc_noprof+0xce/0x4f0 [ 175.279343][T10736] ? tomoyo_realpath_from_path+0xbf/0x710 [ 175.280990][T10736] tomoyo_realpath_from_path+0xbf/0x710 [ 175.282607][T10736] ? tomoyo_path_number_perm+0x235/0x5b0 [ 175.284188][T10736] tomoyo_path_number_perm+0x248/0x5b0 [ 175.285758][T10736] ? tomoyo_path_number_perm+0x235/0x5b0 [ 175.287372][T10736] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 175.289122][T10736] ? rcu_is_watching+0x12/0xc0 [ 175.290540][T10736] ? preempt_count_add+0x76/0x150 [ 175.291969][T10736] ? __pfx_lock_release+0x10/0x10 [ 175.293412][T10736] ? trace_lock_acquire+0x14e/0x1f0 [ 175.294919][T10736] ? __fget_files+0x40/0x3a0 [ 175.296208][T10736] ? lock_acquire+0x2f/0xb0 [ 175.297519][T10736] ? __fget_files+0x40/0x3a0 [ 175.298818][T10736] ? __fget_files+0x206/0x3a0 [ 175.300151][T10736] security_file_ioctl_compat+0x9b/0x240 [ 175.301727][T10736] __do_compat_sys_ioctl+0x4e/0x2c0 [ 175.303200][T10736] __do_fast_syscall_32+0x73/0x120 [ 175.304650][T10736] do_fast_syscall_32+0x32/0x80 [ 175.306059][T10736] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 175.307839][T10736] RIP: 0023:0xf7f8f579 [ 175.308951][T10736] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 175.314577][T10736] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 175.316904][T10736] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000006804 [ 175.319056][T10736] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 175.321174][T10736] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 175.323415][T10736] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 175.325650][T10736] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 175.327861][T10736] [ 175.329076][T10736] ERROR: Out of memory at tomoyo_realpath_from_path. [ 175.660283][T10752] netlink: 'syz.0.1323': attribute type 4 has an invalid length. [ 176.230887][ T39] audit: type=1326 audit(2000000086.349:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10762 comm="syz.3.1326" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 176.239131][ T39] audit: type=1326 audit(2000000086.349:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10762 comm="syz.3.1326" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 176.247196][ T39] audit: type=1326 audit(2000000086.359:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10762 comm="syz.3.1326" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 176.255319][ T39] audit: type=1326 audit(2000000086.359:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10762 comm="syz.3.1326" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 176.263159][ T39] audit: type=1326 audit(2000000086.359:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10762 comm="syz.3.1326" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 176.271300][ T39] audit: type=1326 audit(2000000086.359:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10762 comm="syz.3.1326" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 176.279420][ T39] audit: type=1326 audit(2000000086.359:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10762 comm="syz.3.1326" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 176.281171][T10773] netlink: 'syz.3.1330': attribute type 29 has an invalid length. [ 176.287627][ T39] audit: type=1326 audit(2000000086.359:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10762 comm="syz.3.1326" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 176.290003][T10773] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1330'. [ 176.298331][ T39] audit: type=1326 audit(2000000086.359:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10762 comm="syz.3.1326" exe="/syz-executor" sig=0 arch=40000003 syscall=311 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 176.301395][T10774] netlink: 'syz.3.1330': attribute type 29 has an invalid length. [ 176.310876][T10774] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1330'. [ 176.457470][ T35] hid-generic 0000:0000:0003.000D: unknown main item tag 0x6 [ 176.460290][ T35] hid-generic 0000:0000:0003.000D: unknown main item tag 0x2 [ 176.463449][ T35] hid-generic 0000:0000:0003.000D: unknown main item tag 0x3 [ 176.466393][ T35] hid-generic 0000:0000:0003.000D: unknown main item tag 0x2 [ 176.469299][ T35] hid-generic 0000:0000:0003.000D: unknown main item tag 0x7 [ 176.472189][ T35] hid-generic 0000:0000:0003.000D: unknown main item tag 0x2 [ 176.474248][ T35] hid-generic 0000:0000:0003.000D: unknown main item tag 0x3 [ 176.476479][ T35] hid-generic 0000:0000:0003.000D: unknown main item tag 0x2 [ 176.478742][ T35] hid-generic 0000:0000:0003.000D: unknown main item tag 0x7 [ 176.480814][ T35] hid-generic 0000:0000:0003.000D: unknown main item tag 0x7 [ 176.483667][ T35] hid-generic 0000:0000:0003.000D: hidraw1: HID v0.00 Device [syz1] on syz0 [ 176.711052][ T65] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 176.872902][ T65] usb 8-1: config index 0 descriptor too short (expected 28009, got 36) [ 176.875353][ T65] usb 8-1: config 116 has too many interfaces: 105, using maximum allowed: 32 [ 176.877847][ T65] usb 8-1: config 116 has an invalid descriptor of length 48, skipping remainder of the config [ 176.880727][ T65] usb 8-1: config 116 has 0 interfaces, different from the descriptor's value: 105 [ 176.883592][ T65] usb 8-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 176.886209][ T65] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 177.148536][ T65] usb 8-1: string descriptor 0 read error: -71 [ 177.151756][ T65] usb 8-1: USB disconnect, device number 4 [ 178.789020][ T25] hid-generic 0000:0000:0003.000E: unknown main item tag 0x6 [ 178.792191][ T25] hid-generic 0000:0000:0003.000E: unknown main item tag 0x2 [ 178.795043][ T25] hid-generic 0000:0000:0003.000E: unknown main item tag 0x3 [ 178.797149][ T25] hid-generic 0000:0000:0003.000E: unknown main item tag 0x2 [ 178.799478][ T25] hid-generic 0000:0000:0003.000E: unknown main item tag 0x7 [ 178.802071][ T25] hid-generic 0000:0000:0003.000E: unknown main item tag 0x2 [ 178.804941][ T25] hid-generic 0000:0000:0003.000E: unknown main item tag 0x3 [ 178.807432][ T25] hid-generic 0000:0000:0003.000E: unknown main item tag 0x2 [ 178.810059][ T25] hid-generic 0000:0000:0003.000E: unknown main item tag 0x7 [ 178.812916][ T25] hid-generic 0000:0000:0003.000E: unknown main item tag 0x7 [ 178.815457][ T25] hid-generic 0000:0000:0003.000E: hidraw1: HID v0.00 Device [syz1] on syz0 [ 178.901046][ T2305] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 179.051068][ T2305] usb 8-1: Using ep0 maxpacket: 8 [ 179.051139][ T1450] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 179.054098][ T2305] usb 8-1: config 0 has no interfaces? [ 179.057411][ T2305] usb 8-1: New USB device found, idVendor=1395, idProduct=0300, bcdDevice=81.75 [ 179.059983][ T2305] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 179.063478][ T2305] usb 8-1: config 0 descriptor?? [ 179.202497][ T1450] usb 5-1: config index 0 descriptor too short (expected 28009, got 36) [ 179.205837][ T1450] usb 5-1: config 116 has too many interfaces: 105, using maximum allowed: 32 [ 179.209944][ T1450] usb 5-1: config 116 has an invalid descriptor of length 48, skipping remainder of the config [ 179.214357][ T1450] usb 5-1: config 116 has 0 interfaces, different from the descriptor's value: 105 [ 179.218054][ T1450] usb 5-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 179.221819][ T1450] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 179.278122][ T2305] usb 8-1: USB disconnect, device number 5 [ 179.485771][ T1450] usb 5-1: string descriptor 0 read error: -71 [ 179.493372][ T1450] usb 5-1: USB disconnect, device number 12 [ 179.873979][ T1450] hid-generic 0000:0000:0003.000F: unknown main item tag 0x6 [ 179.876541][ T1450] hid-generic 0000:0000:0003.000F: unknown main item tag 0x2 [ 179.904396][ T1450] hid-generic 0000:0000:0003.000F: unknown main item tag 0x3 [ 179.906631][ T1450] hid-generic 0000:0000:0003.000F: unknown main item tag 0x2 [ 179.908710][ T1450] hid-generic 0000:0000:0003.000F: unknown main item tag 0x7 [ 179.910838][ T1450] hid-generic 0000:0000:0003.000F: unknown main item tag 0x2 [ 179.914024][ T1450] hid-generic 0000:0000:0003.000F: unknown main item tag 0x3 [ 179.916832][ T1450] hid-generic 0000:0000:0003.000F: unknown main item tag 0x2 [ 179.919029][ T1450] hid-generic 0000:0000:0003.000F: unknown main item tag 0x7 [ 179.921598][ T1450] hid-generic 0000:0000:0003.000F: unknown main item tag 0x7 [ 179.942076][ T1450] hid-generic 0000:0000:0003.000F: hidraw1: HID v0.00 Device [syz1] on syz0 [ 180.015944][T10862] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1354'. [ 180.022204][T10862] netdevsim netdevsim2 eth0: set [1, 1] type 2 family 0 port 20000 - 0 [ 180.025785][T10862] netdevsim netdevsim2 eth1: set [1, 1] type 2 family 0 port 20000 - 0 [ 180.028853][T10862] netdevsim netdevsim2 eth2: set [1, 1] type 2 family 0 port 20000 - 0 [ 180.032110][T10862] netdevsim netdevsim2 eth3: set [1, 1] type 2 family 0 port 20000 - 0 [ 181.079754][T10884] pimreg: entered allmulticast mode [ 181.913187][ T2305] hid-generic 0000:0000:0003.0010: unknown main item tag 0x6 [ 181.915904][ T2305] hid-generic 0000:0000:0003.0010: unknown main item tag 0x2 [ 181.918697][ T2305] hid-generic 0000:0000:0003.0010: unknown main item tag 0x3 [ 181.922002][ T2305] hid-generic 0000:0000:0003.0010: unknown main item tag 0x2 [ 181.924955][ T2305] hid-generic 0000:0000:0003.0010: unknown main item tag 0x7 [ 181.927550][ T2305] hid-generic 0000:0000:0003.0010: unknown main item tag 0x2 [ 181.930310][ T2305] hid-generic 0000:0000:0003.0010: unknown main item tag 0x3 [ 181.933612][ T2305] hid-generic 0000:0000:0003.0010: unknown main item tag 0x2 [ 181.936544][ T2305] hid-generic 0000:0000:0003.0010: unknown main item tag 0x7 [ 181.939546][ T2305] hid-generic 0000:0000:0003.0010: unknown main item tag 0x7 [ 181.944953][ T2305] hid-generic 0000:0000:0003.0010: hidraw1: HID v0.00 Device [syz1] on syz0 [ 182.127780][T10902] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1365'. [ 182.131642][T10902] IPv6: Can't replace route, no match found [ 182.191067][ T5981] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 182.223600][T10904] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1366'. [ 182.342267][ T5981] usb 7-1: config index 0 descriptor too short (expected 28009, got 36) [ 182.344753][ T5981] usb 7-1: config 116 has too many interfaces: 105, using maximum allowed: 32 [ 182.347457][ T5981] usb 7-1: config 116 has an invalid descriptor of length 48, skipping remainder of the config [ 182.353642][ T5981] usb 7-1: config 116 has 0 interfaces, different from the descriptor's value: 105 [ 182.356581][ T5981] usb 7-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 182.359255][ T5981] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 182.656187][ T5981] usb 7-1: string descriptor 0 read error: -71 [ 182.660017][ T5981] usb 7-1: USB disconnect, device number 8 [ 183.216038][T10935] FAULT_INJECTION: forcing a failure. [ 183.216038][T10935] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 183.219846][T10935] CPU: 0 UID: 0 PID: 10935 Comm: syz.1.1373 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 183.222940][T10935] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 183.226292][T10935] Call Trace: [ 183.227661][T10935] [ 183.228877][T10935] dump_stack_lvl+0x16c/0x1f0 [ 183.230512][T10935] should_fail_ex+0x497/0x5b0 [ 183.231886][T10935] ? fs_reclaim_acquire+0xae/0x150 [ 183.233368][T10935] should_fail_alloc_page+0xe7/0x130 [ 183.234918][T10935] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 183.236717][T10935] __alloc_pages_noprof+0x190/0x25b0 [ 183.238264][T10935] ? arch_stack_walk+0x74/0x100 [ 183.239673][T10935] ? unwind_next_frame+0xe5d/0x20c0 [ 183.241173][T10935] ? unwind_next_frame+0xe5d/0x20c0 [ 183.242689][T10935] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 183.244331][T10935] ? unwind_next_frame+0xe5d/0x20c0 [ 183.246021][T10935] ? kvm_vm_compat_ioctl+0x399/0x440 [ 183.248200][T10935] ? rcu_is_watching+0x12/0xc0 [ 183.250056][T10935] ? lock_release+0x4e2/0x6f0 [ 183.251429][T10935] ? is_bpf_text_address+0x8a/0x1a0 [ 183.252948][T10935] ? __pfx_lock_release+0x10/0x10 [ 183.254423][T10935] ? trace_lock_acquire+0x14e/0x1f0 [ 183.255971][T10935] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 183.257692][T10935] ? policy_nodemask+0xea/0x4e0 [ 183.259112][T10935] alloc_pages_mpol_noprof+0x2c8/0x620 [ 183.260685][T10935] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 183.262549][T10935] ? page_ext_put+0x3e/0xd0 [ 183.263924][T10935] ? __kernel_text_address+0xd/0x40 [ 183.265458][T10935] ? unwind_get_return_address+0x59/0xa0 [ 183.267736][T10935] ? arch_stack_walk+0xa7/0x100 [ 183.269676][T10935] folio_alloc_mpol_noprof+0x36/0xd0 [ 183.271202][T10935] vma_alloc_folio_noprof+0xee/0x1b0 [ 183.272731][T10935] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 183.274438][T10935] ? trace_lock_acquire+0x14e/0x1f0 [ 183.275984][T10935] ? rcu_is_watching+0x12/0xc0 [ 183.277375][T10935] do_pte_missing+0x2017/0x3e00 [ 183.278791][T10935] __handle_mm_fault+0x103c/0x2a40 [ 183.280269][T10935] ? __pfx___handle_mm_fault+0x10/0x10 [ 183.281840][T10935] ? lock_release+0x4e2/0x6f0 [ 183.283200][T10935] ? follow_page_pte+0x3c3/0x1b20 [ 183.284665][T10935] ? __pfx_lock_release+0x10/0x10 [ 183.286434][T10935] ? __pfx___pte_offset_map_lock+0x10/0x10 [ 183.288809][T10935] ? follow_page_pte+0x3f7/0x1b20 [ 183.290539][T10935] handle_mm_fault+0x3fa/0xaa0 [ 183.291951][T10935] __get_user_pages+0x8d9/0x3b50 [ 183.293397][T10935] ? __pfx___get_user_pages+0x10/0x10 [ 183.294954][T10935] ? down_read_killable+0xcc/0x380 [ 183.296453][T10935] ? __pfx_down_read_killable+0x10/0x10 [ 183.298044][T10935] ? rcu_is_watching+0x12/0xc0 [ 183.299421][T10935] get_user_pages_unlocked+0x1c2/0x780 [ 183.300970][T10935] ? __pfx_get_user_pages_unlocked+0x10/0x10 [ 183.302710][T10935] ? get_user_pages_fast_only+0xaf/0x100 [ 183.304323][T10935] ? __pfx_get_user_pages_fast_only+0x10/0x10 [ 183.306238][T10935] ? __pfx___might_resched+0x10/0x10 [ 183.307779][T10935] ? lock_release+0x4e2/0x6f0 [ 183.309146][T10935] ? is_bpf_text_address+0x8a/0x1a0 [ 183.310671][T10935] hva_to_pfn+0x8be/0xc20 [ 183.311979][T10935] ? lock_acquire+0x2f/0xb0 [ 183.313308][T10935] ? bpf_ksym_find+0x124/0x1c0 [ 183.314706][T10935] ? __pfx_hva_to_pfn+0x10/0x10 [ 183.316370][T10935] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 183.318173][T10935] ? rcu_is_watching+0x12/0xc0 [ 183.319562][T10935] ? lock_release+0x4e2/0x6f0 [ 183.320928][T10935] ? mmu_try_to_unsync_pages+0x2a1/0x800 [ 183.322560][T10935] ? rcu_is_watching+0x12/0xc0 [ 183.323947][T10935] ? lock_release+0x4e2/0x6f0 [ 183.325322][T10935] ? xa_load+0x14a/0x2c0 [ 183.326770][T10935] ? __pfx_lock_release+0x10/0x10 [ 183.328236][T10935] kvm_follow_pfn+0x29f/0x3f0 [ 183.329613][T10935] __kvm_faultin_pfn+0x11c/0x1a0 [ 183.331046][T10935] ? __pfx___kvm_faultin_pfn+0x10/0x10 [ 183.332631][T10935] ? __pfx_xa_load+0x10/0x10 [ 183.333984][T10935] kvm_mmu_faultin_pfn+0x469/0x1f30 [ 183.335534][T10935] ? __pfx_kvm_mmu_faultin_pfn+0x10/0x10 [ 183.337188][T10935] ? __pfx_lock_release+0x10/0x10 [ 183.338659][T10935] ? __kvm_mmu_topup_memory_cache+0x330/0x600 [ 183.340423][T10935] ? put_page+0xdb/0x280 [ 183.341670][T10935] kvm_tdp_page_fault+0x182/0x3d0 [ 183.343141][T10935] kvm_mmu_do_page_fault+0x58d/0x690 [ 183.344665][T10935] ? __pfx_kvm_mmu_do_page_fault+0x10/0x10 [ 183.346762][T10935] ? rcu_is_watching+0x12/0xc0 [ 183.348739][T10935] ? is_bpf_text_address+0x30/0x1a0 [ 183.350549][T10935] ? lock_acquire+0x2f/0xb0 [ 183.351865][T10935] ? is_bpf_text_address+0x30/0x1a0 [ 183.353382][T10935] kvm_mmu_page_fault+0x20f/0x1bb0 [ 183.354873][T10935] ? __kernel_text_address+0xd/0x40 [ 183.356544][T10935] ? unwind_get_return_address+0x59/0xa0 [ 183.358178][T10935] ? kvm_multiple_exception+0x57c/0xb40 [ 183.359779][T10935] ? __pfx_kvm_mmu_page_fault+0x10/0x10 [ 183.361382][T10935] ? kvm_requeue_exception+0x26/0x30 [ 183.362913][T10935] ? __vmx_complete_interrupts+0x496/0x4e0 [ 183.364605][T10935] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 183.366917][T10935] ? vmx_vcpu_run+0x14b7/0x2a50 [ 183.368929][T10935] handle_ept_violation+0x25a/0x640 [ 183.370722][T10935] ? __pfx_handle_ept_violation+0x10/0x10 [ 183.372378][T10935] vmx_handle_exit+0x733/0x1f70 [ 183.373793][T10935] vcpu_run+0x2aaf/0x4c00 [ 183.375075][T10935] ? __pfx_vcpu_run+0x10/0x10 [ 183.376745][T10935] ? rcu_is_watching+0x12/0xc0 [ 183.378152][T10935] ? trace_lock_acquire+0x14e/0x1f0 [ 183.379660][T10935] ? trace_irq_enable.constprop.0+0xea/0x140 [ 183.381398][T10935] ? kvm_arch_vcpu_ioctl_run+0x150/0x1740 [ 183.383051][T10935] ? lock_acquire+0x2f/0xb0 [ 183.384384][T10935] ? kvm_arch_vcpu_ioctl_run+0x44a/0x1740 [ 183.386310][T10935] kvm_arch_vcpu_ioctl_run+0x44a/0x1740 [ 183.388582][T10935] kvm_vcpu_ioctl+0x6ce/0x1520 [ 183.390334][T10935] ? tomoyo_path_number_perm+0x46d/0x5b0 [ 183.391966][T10935] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 183.393485][T10935] ? tomoyo_path_number_perm+0x190/0x5b0 [ 183.395136][T10935] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 183.396948][T10935] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 183.398668][T10935] ? do_vfs_ioctl+0x513/0x1950 [ 183.400055][T10935] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 183.401522][T10935] ? preempt_count_add+0x76/0x150 [ 183.402986][T10935] ? __pfx_lock_release+0x10/0x10 [ 183.404441][T10935] ? trace_lock_acquire+0x14e/0x1f0 [ 183.406232][T10935] kvm_vcpu_compat_ioctl+0x210/0x3f0 [ 183.408392][T10935] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 183.410462][T10935] ? __fget_files+0x206/0x3a0 [ 183.411827][T10935] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 183.413530][T10935] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 183.415060][T10935] __do_fast_syscall_32+0x73/0x120 [ 183.416592][T10935] do_fast_syscall_32+0x32/0x80 [ 183.418018][T10935] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 183.419848][T10935] RIP: 0023:0xf705e579 [ 183.421042][T10935] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 183.427042][T10935] RSP: 002b:00000000f505055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 183.430275][T10935] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80 [ 183.432561][T10935] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 183.434701][T10935] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 183.437032][T10935] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 183.439319][T10935] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 183.441614][T10935] [ 183.478726][T10943] FAULT_INJECTION: forcing a failure. [ 183.478726][T10943] name failslab, interval 1, probability 0, space 0, times 0 [ 183.484613][T10943] CPU: 0 UID: 0 PID: 10943 Comm: syz.0.1376 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 183.487953][T10943] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 183.491003][T10943] Call Trace: [ 183.491978][T10943] [ 183.492831][T10943] dump_stack_lvl+0x16c/0x1f0 [ 183.494201][T10943] should_fail_ex+0x497/0x5b0 [ 183.495610][T10943] ? fs_reclaim_acquire+0xae/0x150 [ 183.497073][T10943] should_failslab+0xc2/0x120 [ 183.498428][T10943] __kmalloc_noprof+0xce/0x4f0 [ 183.499777][T10943] ? tomoyo_realpath_from_path+0xbf/0x710 [ 183.501393][T10943] tomoyo_realpath_from_path+0xbf/0x710 [ 183.502979][T10943] ? tomoyo_path_number_perm+0x235/0x5b0 [ 183.504574][T10943] tomoyo_path_number_perm+0x248/0x5b0 [ 183.506447][T10943] ? tomoyo_path_number_perm+0x235/0x5b0 [ 183.508703][T10943] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 183.510717][T10943] ? rcu_is_watching+0x12/0xc0 [ 183.512105][T10943] ? preempt_count_add+0x76/0x150 [ 183.513552][T10943] ? __pfx_lock_release+0x10/0x10 [ 183.514985][T10943] ? trace_lock_acquire+0x14e/0x1f0 [ 183.516507][T10943] ? __fget_files+0x40/0x3a0 [ 183.517842][T10943] ? lock_acquire+0x2f/0xb0 [ 183.519147][T10943] ? __fget_files+0x40/0x3a0 [ 183.520476][T10943] ? __fget_files+0x206/0x3a0 [ 183.521829][T10943] security_file_ioctl_compat+0x9b/0x240 [ 183.523423][T10943] __do_compat_sys_ioctl+0x4e/0x2c0 [ 183.524906][T10943] __do_fast_syscall_32+0x73/0x120 [ 183.526776][T10943] do_fast_syscall_32+0x32/0x80 [ 183.528739][T10943] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 183.530836][T10943] RIP: 0023:0xf7f8f579 [ 183.532013][T10943] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 183.537725][T10943] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 183.540068][T10943] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000008982 [ 183.542499][T10943] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 183.544708][T10943] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 183.547529][T10943] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 183.550617][T10943] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 183.552952][T10943] [ 183.555191][T10943] ERROR: Out of memory at tomoyo_realpath_from_path. [ 183.690346][T10951] FAULT_INJECTION: forcing a failure. [ 183.690346][T10951] name failslab, interval 1, probability 0, space 0, times 0 [ 183.694065][T10951] CPU: 1 UID: 0 PID: 10951 Comm: syz.0.1378 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 183.697248][T10951] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 183.700318][T10951] Call Trace: [ 183.701310][T10951] [ 183.702181][T10951] dump_stack_lvl+0x16c/0x1f0 [ 183.703551][T10951] should_fail_ex+0x497/0x5b0 [ 183.704933][T10951] ? fs_reclaim_acquire+0xae/0x150 [ 183.706423][T10951] should_failslab+0xc2/0x120 [ 183.707789][T10951] __kmalloc_noprof+0xce/0x4f0 [ 183.709187][T10951] ? d_absolute_path+0x137/0x1b0 [ 183.710629][T10951] ? tomoyo_encode2+0x100/0x3e0 [ 183.712075][T10951] tomoyo_encode2+0x100/0x3e0 [ 183.713447][T10951] tomoyo_realpath_from_path+0x1a7/0x710 [ 183.715106][T10951] tomoyo_path_number_perm+0x248/0x5b0 [ 183.716687][T10951] ? tomoyo_path_number_perm+0x235/0x5b0 [ 183.718333][T10951] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 183.720068][T10951] ? rcu_is_watching+0x12/0xc0 [ 183.721466][T10951] ? preempt_count_add+0x76/0x150 [ 183.722934][T10951] ? __pfx_lock_release+0x10/0x10 [ 183.724412][T10951] ? trace_lock_acquire+0x14e/0x1f0 [ 183.725942][T10951] ? __fget_files+0x40/0x3a0 [ 183.727284][T10951] ? lock_acquire+0x2f/0xb0 [ 183.728637][T10951] ? __fget_files+0x40/0x3a0 [ 183.729979][T10951] ? __fget_files+0x206/0x3a0 [ 183.731343][T10951] security_file_ioctl_compat+0x9b/0x240 [ 183.732959][T10951] __do_compat_sys_ioctl+0x4e/0x2c0 [ 183.734476][T10951] __do_fast_syscall_32+0x73/0x120 [ 183.735975][T10951] do_fast_syscall_32+0x32/0x80 [ 183.737383][T10951] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 183.739204][T10951] RIP: 0023:0xf7f8f579 [ 183.740379][T10951] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 183.745907][T10951] RSP: 002b:00000000f507155c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 183.748298][T10951] RAX: ffffffffffffffda RBX: 000000000000000d RCX: 00000000c01064b5 [ 183.750563][T10951] RDX: 0000000020000140 RSI: 0000000000000000 RDI: 0000000000000000 [ 183.752888][T10951] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 183.755169][T10951] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 183.757441][T10951] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 183.759709][T10951] [ 183.794117][T10951] ERROR: Out of memory at tomoyo_realpath_from_path. [ 184.468463][T10961] FAULT_INJECTION: forcing a failure. [ 184.468463][T10961] name failslab, interval 1, probability 0, space 0, times 0 [ 184.472424][T10961] CPU: 3 UID: 0 PID: 10961 Comm: syz.1.1381 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 184.475662][T10961] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 184.478691][T10961] Call Trace: [ 184.479643][T10961] [ 184.480473][T10961] dump_stack_lvl+0x16c/0x1f0 [ 184.481859][T10961] should_fail_ex+0x497/0x5b0 [ 184.483201][T10961] ? fs_reclaim_acquire+0xae/0x150 [ 184.484626][T10961] should_failslab+0xc2/0x120 [ 184.485972][T10961] kmem_cache_alloc_lru_noprof+0x73/0x3b0 [ 184.487570][T10961] ? __d_alloc+0x35/0x8c0 [ 184.488816][T10961] __d_alloc+0x35/0x8c0 [ 184.490030][T10961] d_alloc+0x4a/0x1e0 [ 184.491182][T10961] lookup_one_qstr_excl+0xcb/0x190 [ 184.492582][T10961] ? mnt_want_write+0x161/0x450 [ 184.493933][T10961] filename_create+0x1ed/0x530 [ 184.495214][T10961] ? __pfx_filename_create+0x10/0x10 [ 184.496595][T10961] ? __phys_addr_symbol+0x30/0x80 [ 184.497960][T10961] ? __check_object_size+0x488/0x710 [ 184.499428][T10961] do_mkdirat+0xab/0x3a0 [ 184.500578][T10961] ? __pfx_do_mkdirat+0x10/0x10 [ 184.501925][T10961] ? getname_flags.part.0+0x1c5/0x550 [ 184.503399][T10961] __ia32_sys_mkdirat+0x82/0xb0 [ 184.504732][T10961] __do_fast_syscall_32+0x73/0x120 [ 184.506156][T10961] do_fast_syscall_32+0x32/0x80 [ 184.507544][T10961] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 184.509345][T10961] RIP: 0023:0xf705e579 [ 184.510520][T10961] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 184.515995][T10961] RSP: 002b:00000000f505055c EFLAGS: 00000296 ORIG_RAX: 0000000000000128 [ 184.518378][T10961] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000340 [ 184.520621][T10961] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 184.522870][T10961] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 184.525133][T10961] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 184.527478][T10961] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 184.529749][T10961] [ 184.530691][ C3] vkms_vblank_simulate: vblank timer overrun [ 185.014446][ T65] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 185.161068][ T65] usb 5-1: Using ep0 maxpacket: 16 [ 185.164241][ T65] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 185.167467][ T65] usb 5-1: New USB device found, idVendor=0471, idProduct=0327, bcdDevice=61.a4 [ 185.170848][ T65] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 185.175239][ T65] usb 5-1: config 0 descriptor?? [ 185.397874][T10972] FAULT_INJECTION: forcing a failure. [ 185.397874][T10972] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 185.407484][T10972] CPU: 3 UID: 0 PID: 10972 Comm: syz.0.1385 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 185.410582][T10972] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 185.413727][T10972] Call Trace: [ 185.414735][T10972] [ 185.415604][T10972] dump_stack_lvl+0x16c/0x1f0 [ 185.416996][T10972] should_fail_ex+0x497/0x5b0 [ 185.418540][T10972] __kvm_read_guest_page+0x16b/0x210 [ 185.420138][T10972] kvm_fetch_guest_virt+0x128/0x1a0 [ 185.421968][T10972] __do_insn_fetch_bytes+0x506/0x730 [ 185.424562][T10972] ? __pfx___do_insn_fetch_bytes+0x10/0x10 [ 185.426769][T10972] ? __pfx_kvm_tdp_mmu_map+0x10/0x10 [ 185.428955][T10972] x86_decode_insn+0x1888/0x55d0 [ 185.430921][T10972] ? __pfx_lock_release+0x10/0x10 [ 185.430934][T10972] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 185.430946][T10972] ? __pfx_x86_decode_insn+0x10/0x10 [ 185.430961][T10972] ? init_decode_cache+0xd/0x210 [ 185.430975][T10972] ? kvm_vm_ioctl_set_msr_filter+0x2c0/0x990 [ 185.430988][T10972] ? __pfx_init_emulate_ctxt+0x10/0x10 [ 185.431002][T10972] ? __pfx_kvm_mmu_do_page_fault+0x10/0x10 [ 185.431015][T10972] ? rcu_is_watching+0x12/0xc0 [ 185.431029][T10972] x86_emulate_instruction+0x975/0x1a50 [ 185.431043][T10972] ? is_bpf_text_address+0x30/0x1a0 [ 185.431058][T10972] ? lock_acquire+0x2f/0xb0 [ 185.431068][T10972] kvm_mmu_page_fault+0xb44/0x1bb0 [ 185.431081][T10972] ? __kernel_text_address+0xd/0x40 [ 185.431091][T10972] ? unwind_get_return_address+0x59/0xa0 [ 185.431103][T10972] ? kvm_multiple_exception+0x57c/0xb40 [ 185.431122][T10972] ? __pfx_kvm_mmu_page_fault+0x10/0x10 [ 185.431136][T10972] ? kvm_requeue_exception+0x26/0x30 [ 185.431151][T10972] ? __vmx_complete_interrupts+0x496/0x4e0 [ 185.431164][T10972] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 185.431175][T10972] ? vmx_vcpu_run+0x14b7/0x2a50 [ 185.431188][T10972] handle_ept_violation+0x25a/0x640 [ 185.431201][T10972] ? __pfx_handle_ept_violation+0x10/0x10 [ 185.431217][T10972] vmx_handle_exit+0x733/0x1f70 [ 185.431233][T10972] vcpu_run+0x2aaf/0x4c00 [ 185.431248][T10972] ? __pfx_vcpu_run+0x10/0x10 [ 185.431261][T10972] ? rcu_is_watching+0x12/0xc0 [ 185.431273][T10972] ? trace_lock_acquire+0x14e/0x1f0 [ 185.431285][T10972] ? trace_irq_enable.constprop.0+0xea/0x140 [ 185.431296][T10972] ? kvm_arch_vcpu_ioctl_run+0x150/0x1740 [ 185.431311][T10972] ? lock_acquire+0x2f/0xb0 [ 185.431320][T10972] ? kvm_arch_vcpu_ioctl_run+0x44a/0x1740 [ 185.431334][T10972] kvm_arch_vcpu_ioctl_run+0x44a/0x1740 [ 185.431350][T10972] kvm_vcpu_ioctl+0x6ce/0x1520 [ 185.431359][T10972] ? tomoyo_path_number_perm+0x46d/0x5b0 [ 185.431376][T10972] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 185.431385][T10972] ? tomoyo_path_number_perm+0x190/0x5b0 [ 185.431401][T10972] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 185.431416][T10972] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 185.431426][T10972] ? do_vfs_ioctl+0x513/0x1950 [ 185.431437][T10972] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 185.431446][T10972] ? preempt_count_add+0x76/0x150 [ 185.431463][T10972] ? __pfx_lock_release+0x10/0x10 [ 185.431472][T10972] ? trace_lock_acquire+0x14e/0x1f0 [ 185.431485][T10972] kvm_vcpu_compat_ioctl+0x210/0x3f0 [ 185.431495][T10972] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 185.431505][T10972] ? __fget_files+0x206/0x3a0 [ 185.431518][T10972] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 185.431528][T10972] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 185.431538][T10972] __do_fast_syscall_32+0x73/0x120 [ 185.431552][T10972] do_fast_syscall_32+0x32/0x80 [ 185.431565][T10972] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 185.431581][T10972] RIP: 0023:0xf7f8f579 [ 185.431589][T10972] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 185.431599][T10972] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 185.431609][T10972] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000000ae80 [ 185.431616][T10972] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 185.431622][T10972] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 185.431628][T10972] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 185.431634][T10972] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 185.431642][T10972] [ 185.497133][ T65] usb 5-1: USB disconnect, device number 13 [ 185.726577][ T39] kauditd_printk_skb: 59 callbacks suppressed [ 185.726587][ T39] audit: type=1326 audit(2000000095.849:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11000 comm="syz.3.1391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 185.727420][ T5298] Bluetooth: hci1: unexpected event for opcode 0x2043 [ 185.728388][ T39] audit: type=1326 audit(2000000095.849:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11000 comm="syz.3.1391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 185.743798][ T39] audit: type=1326 audit(2000000095.849:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11000 comm="syz.3.1391" exe="/syz-executor" sig=0 arch=40000003 syscall=231 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 185.752096][ T39] audit: type=1326 audit(2000000095.849:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11000 comm="syz.3.1391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 185.759399][ T39] audit: type=1326 audit(2000000095.849:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11000 comm="syz.3.1391" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 185.770201][ T39] audit: type=1326 audit(2000000095.849:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11000 comm="syz.3.1391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 185.778760][ T39] audit: type=1326 audit(2000000095.849:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11000 comm="syz.3.1391" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 185.787771][ T39] audit: type=1326 audit(2000000095.849:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11000 comm="syz.3.1391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 185.796153][ T39] audit: type=1326 audit(2000000095.859:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11000 comm="syz.3.1391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71579 code=0x7ffc0000 [ 185.890736][T11016] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1396'. [ 185.896180][T11016] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1396'. [ 185.985792][T11018] Cannot find set identified by id 0 to match [ 186.019551][T11028] tap0: tun_chr_ioctl cmd 1074025675 [ 186.021604][T11028] tap0: persist disabled [ 186.023274][T11028] tap0: tun_chr_ioctl cmd 1074025675 [ 186.025202][T11028] tap0: persist disabled [ 187.210960][T11088] FAULT_INJECTION: forcing a failure. [ 187.210960][T11088] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 187.214544][T11088] CPU: 2 UID: 0 PID: 11088 Comm: syz.2.1413 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 187.217382][T11088] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 187.221166][T11088] Call Trace: [ 187.222345][T11088] [ 187.223133][T11088] dump_stack_lvl+0x16c/0x1f0 [ 187.224432][T11088] should_fail_ex+0x497/0x5b0 [ 187.225746][T11088] _copy_to_iter+0x4a5/0x1400 [ 187.227011][T11088] ? __pfx__copy_to_iter+0x10/0x10 [ 187.228409][T11088] ? __virt_addr_valid+0x1a4/0x590 [ 187.229832][T11088] ? __virt_addr_valid+0x5e/0x590 [ 187.231232][T11088] ? __phys_addr_symbol+0x30/0x80 [ 187.232665][T11088] ? __check_object_size+0x488/0x710 [ 187.234139][T11088] seq_read_iter+0xd00/0x12b0 [ 187.235481][T11088] seq_read+0x39f/0x4e0 [ 187.236677][T11088] ? __pfx_seq_read+0x10/0x10 [ 187.238010][T11088] ? kstrtouint+0xde/0x130 [ 187.239788][T11088] ? copy_compat_iovec_from_user+0x140/0x180 [ 187.242206][T11088] ? import_ubuf+0x1b6/0x220 [ 187.243666][T11088] ? apparmor_file_permission+0x251/0x400 [ 187.245322][T11088] ? __pfx_seq_read+0x10/0x10 [ 187.246684][T11088] proc_reg_read+0x23d/0x330 [ 187.248028][T11088] ? __pfx_proc_reg_read+0x10/0x10 [ 187.249554][T11088] vfs_readv+0x6bf/0x890 [ 187.250758][T11088] ? __pfx_lock_release+0x10/0x10 [ 187.252332][T11088] ? __pfx_vfs_readv+0x10/0x10 [ 187.253715][T11088] ? __fget_files+0x1fc/0x3a0 [ 187.255072][T11088] ? __pfx_lock_release+0x10/0x10 [ 187.256529][T11088] ? __fget_files+0x206/0x3a0 [ 187.257888][T11088] ? do_preadv+0x1b1/0x270 [ 187.259653][T11088] do_preadv+0x1b1/0x270 [ 187.261368][T11088] ? __pfx_do_preadv+0x10/0x10 [ 187.263313][T11088] ? rcu_is_watching+0x12/0xc0 [ 187.265223][T11088] __do_fast_syscall_32+0x73/0x120 [ 187.267250][T11088] do_fast_syscall_32+0x32/0x80 [ 187.269195][T11088] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 187.271718][T11088] RIP: 0023:0xf706e579 [ 187.273354][T11088] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 187.280931][T11088] RSP: 002b:00000000f506055c EFLAGS: 00000296 ORIG_RAX: 000000000000014d [ 187.284227][T11088] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000840 [ 187.287382][T11088] RDX: 0000000000000001 RSI: 0000000000000180 RDI: 0000000000000000 [ 187.290497][T11088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 187.293516][T11088] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 187.296510][T11088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 187.299560][T11088] [ 187.441821][ T9] hid-generic 0000:0000:0003.0011: unknown main item tag 0x6 [ 187.444057][ T9] hid-generic 0000:0000:0003.0011: unknown main item tag 0x2 [ 187.446241][ T9] hid-generic 0000:0000:0003.0011: unknown main item tag 0x3 [ 187.448429][ T9] hid-generic 0000:0000:0003.0011: unknown main item tag 0x2 [ 187.450653][ T9] hid-generic 0000:0000:0003.0011: unknown main item tag 0x7 [ 187.453326][ T9] hid-generic 0000:0000:0003.0011: unknown main item tag 0x2 [ 187.455486][ T9] hid-generic 0000:0000:0003.0011: unknown main item tag 0x3 [ 187.457584][ T9] hid-generic 0000:0000:0003.0011: unknown main item tag 0x2 [ 187.459958][ T9] hid-generic 0000:0000:0003.0011: unknown main item tag 0x7 [ 187.462668][ T9] hid-generic 0000:0000:0003.0011: unknown main item tag 0x7 [ 187.488008][ T65] hid-generic 0000:0000:0003.0012: unknown main item tag 0x6 [ 187.490240][ T65] hid-generic 0000:0000:0003.0012: unknown main item tag 0x2 [ 187.493089][ T65] hid-generic 0000:0000:0003.0012: unknown main item tag 0x3 [ 187.495258][ T65] hid-generic 0000:0000:0003.0012: unknown main item tag 0x2 [ 187.497382][ T65] hid-generic 0000:0000:0003.0012: unknown main item tag 0x7 [ 187.499684][ T65] hid-generic 0000:0000:0003.0012: unknown main item tag 0x2 [ 187.502179][ T9] hid-generic 0000:0000:0003.0011: hidraw1: HID v0.00 Device [syz1] on syz0 [ 187.502295][ T65] hid-generic 0000:0000:0003.0012: unknown main item tag 0x3 [ 187.508456][ T65] hid-generic 0000:0000:0003.0012: unknown main item tag 0x2 [ 187.510671][ T65] hid-generic 0000:0000:0003.0012: unknown main item tag 0x7 [ 187.513225][ T65] hid-generic 0000:0000:0003.0012: unknown main item tag 0x7 [ 187.516370][ T65] hid-generic 0000:0000:0003.0012: hidraw1: HID v0.00 Device [syz1] on syz0 [ 187.533660][T11116] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1424'. [ 187.576140][ T1450] usb 7-1: new full-speed USB device number 9 using dummy_hcd [ 187.675433][T11120] syzkaller0: entered allmulticast mode [ 187.725687][ T1450] usb 7-1: too many endpoints for config 1 interface 0 altsetting 253: 68, using maximum allowed: 30 [ 187.728831][ T1450] usb 7-1: config 1 interface 0 altsetting 253 has 1 endpoint descriptor, different from the interface descriptor's value: 68 [ 187.732590][ T1450] usb 7-1: config 1 interface 0 has no altsetting 0 [ 187.735828][ T1450] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 187.738436][ T1450] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 187.740821][ T1450] usb 7-1: Product: syz [ 187.741074][ T35] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 187.742908][ T1450] usb 7-1: Manufacturer: syz [ 187.747114][ T1450] usb 7-1: SerialNumber: syz [ 187.892392][ T35] usb 6-1: config index 0 descriptor too short (expected 28009, got 36) [ 187.895150][ T35] usb 6-1: config 116 has too many interfaces: 105, using maximum allowed: 32 [ 187.897685][ T35] usb 6-1: config 116 has an invalid descriptor of length 48, skipping remainder of the config [ 188.127731][ T35] usb 6-1: config 116 has 0 interfaces, different from the descriptor's value: 105 [ 188.131436][ T35] usb 6-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 188.134123][ T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 188.355758][ T1450] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 9 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8 [ 188.356383][T11091] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 188.362322][T11091] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 188.394542][ T35] usb 6-1: string descriptor 0 read error: -71 [ 188.396610][ T35] usb 6-1: USB disconnect, device number 11 [ 188.917690][ C0] usblp0: nonzero write bulk status received: -71 [ 188.920647][ T35] usb 7-1: USB disconnect, device number 9 [ 188.925479][T11144] bond0: up delay (5) is not a multiple of miimon (4), value rounded to 4 ms [ 188.929258][T11144] netlink: 'syz.1.1433': attribute type 10 has an invalid length. [ 188.931256][ T35] usblp0: removed [ 188.932870][T11144] bridge0: port 2(bridge_slave_1) entered blocking state [ 188.936250][T11144] bridge0: port 2(bridge_slave_1) entered listening state [ 188.939024][T11144] bridge0: port 1(bridge_slave_0) entered blocking state [ 188.941723][T11144] bridge0: port 1(bridge_slave_0) entered listening state [ 188.945554][T11144] bond0: (slave bridge0): Enslaving as an active interface with a down link [ 189.078242][T11160] FAULT_INJECTION: forcing a failure. [ 189.078242][T11160] name failslab, interval 1, probability 0, space 0, times 0 [ 189.082312][T11160] CPU: 0 UID: 0 PID: 11160 Comm: syz.3.1438 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 189.085207][T11160] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 189.088130][T11160] Call Trace: [ 189.089058][T11160] [ 189.089883][T11160] dump_stack_lvl+0x16c/0x1f0 [ 189.091132][T11160] should_fail_ex+0x497/0x5b0 [ 189.092424][T11160] ? fs_reclaim_acquire+0xae/0x150 [ 189.093851][T11160] should_failslab+0xc2/0x120 [ 189.095165][T11160] __kmalloc_noprof+0xce/0x4f0 [ 189.096458][T11160] ? d_absolute_path+0x137/0x1b0 [ 189.097799][T11160] ? tomoyo_encode2+0x100/0x3e0 [ 189.099150][T11160] tomoyo_encode2+0x100/0x3e0 [ 189.100409][T11160] tomoyo_realpath_from_path+0x1a7/0x710 [ 189.101959][T11160] tomoyo_path_number_perm+0x248/0x5b0 [ 189.103515][T11160] ? tomoyo_path_number_perm+0x235/0x5b0 [ 189.105157][T11160] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 189.106902][T11160] ? rcu_is_watching+0x12/0xc0 [ 189.108279][T11160] ? preempt_count_add+0x76/0x150 [ 189.109753][T11160] ? __pfx_lock_release+0x10/0x10 [ 189.111195][T11160] ? trace_lock_acquire+0x14e/0x1f0 [ 189.112703][T11160] ? __fget_files+0x40/0x3a0 [ 189.114042][T11160] ? lock_acquire+0x2f/0xb0 [ 189.115350][T11160] ? __fget_files+0x40/0x3a0 [ 189.116678][T11160] ? __fget_files+0x206/0x3a0 [ 189.118039][T11160] security_file_ioctl_compat+0x9b/0x240 [ 189.119658][T11160] __do_compat_sys_ioctl+0x4e/0x2c0 [ 189.121134][T11160] __do_fast_syscall_32+0x73/0x120 [ 189.122694][T11160] do_fast_syscall_32+0x32/0x80 [ 189.124132][T11160] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 189.126032][T11160] RIP: 0023:0xf7f71579 [ 189.127224][T11160] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 189.132893][T11160] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 189.135340][T11160] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c034564b [ 189.137644][T11160] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000 [ 189.140273][T11160] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 189.142633][T11160] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 189.144918][T11160] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 189.147222][T11160] [ 189.148998][T11160] ERROR: Out of memory at tomoyo_realpath_from_path. [ 189.466426][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.468674][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.470868][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.473183][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.475373][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.477597][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.479769][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.482035][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.484182][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.486355][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.488552][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.490707][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.492908][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.495164][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.497331][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.499497][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.501815][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.504113][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.506264][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.508524][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.511739][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.515981][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.520280][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.524924][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.529069][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.533360][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.537605][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.541420][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.545632][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.549854][ T58] hid-generic 0000:0000:0003.0013: unknown main item tag 0x0 [ 189.554595][ T58] hid-generic 0000:0000:0003.0013: hidraw1: HID v0.00 Device [syz1] on syz0 [ 189.570111][ T58] hid-generic 0000:0000:0003.0014: unknown main item tag 0x6 [ 189.578195][ T58] hid-generic 0000:0000:0003.0014: unknown main item tag 0x2 [ 189.581668][ T58] hid-generic 0000:0000:0003.0014: unknown main item tag 0x3 [ 189.586120][ T58] hid-generic 0000:0000:0003.0014: unknown main item tag 0x2 [ 189.592459][ T58] hid-generic 0000:0000:0003.0014: unknown main item tag 0x7 [ 189.594641][ T58] hid-generic 0000:0000:0003.0014: unknown main item tag 0x2 [ 189.596791][ T58] hid-generic 0000:0000:0003.0014: unknown main item tag 0x3 [ 189.598945][ T58] hid-generic 0000:0000:0003.0014: unknown main item tag 0x2 [ 189.601363][ T58] hid-generic 0000:0000:0003.0014: unknown main item tag 0x7 [ 189.603560][ T58] hid-generic 0000:0000:0003.0014: unknown main item tag 0x7 [ 189.606847][ T58] hid-generic 0000:0000:0003.0014: hidraw1: HID v0.00 Device [syz1] on syz0 [ 189.811446][ T5981] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 189.963210][ T5981] usb 5-1: config index 0 descriptor too short (expected 28009, got 36) [ 189.968045][ T5981] usb 5-1: config 116 has too many interfaces: 105, using maximum allowed: 32 [ 189.975971][ T5981] usb 5-1: config 116 has an invalid descriptor of length 48, skipping remainder of the config [ 189.982396][ T5981] usb 5-1: config 116 has 0 interfaces, different from the descriptor's value: 105 [ 189.986900][ T5981] usb 5-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 189.990650][ T5981] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 190.254931][ T5981] usb 5-1: string descriptor 0 read error: -71 [ 190.261189][ T5981] usb 5-1: USB disconnect, device number 14 [ 190.401278][ T35] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 190.434210][T11202] random: crng reseeded on system resumption [ 190.441417][ T11] Bluetooth: hci4: Frame reassembly failed (-84) [ 190.561131][ T35] usb 6-1: Using ep0 maxpacket: 8 [ 190.564565][ T35] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 190.568378][ T35] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 190.572323][ T35] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 190.608627][ T35] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 190.612533][ T35] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 190.615109][ T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 190.772911][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.775125][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.777231][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.779436][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.782253][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.784951][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.787684][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.790373][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.793288][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.796071][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.798792][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.801057][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.803173][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.805681][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.808555][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.811368][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.814263][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.817123][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.819590][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.821783][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.823928][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.826319][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.828622][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.830806][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.833061][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.835575][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.837909][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.840031][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.842178][ T35] usb 6-1: GET_CAPABILITIES returned 0 [ 190.842196][ T35] usbtmc 6-1:16.0: can't read capabilities [ 190.845448][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.847529][ T9] hid-generic 0000:0000:0003.0015: unknown main item tag 0x0 [ 190.850319][ T9] hid-generic 0000:0000:0003.0015: hidraw1: HID v0.00 Device [syz1] on syz0 [ 191.044413][ T9] usb 6-1: USB disconnect, device number 12 [ 192.471094][ T68] Bluetooth: hci4: command 0x1003 tx timeout [ 192.473041][ T5298] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 193.431116][ T5298] Bluetooth: hci3: command 0x0c1a tx timeout [ 193.538792][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.541082][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.543412][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.546037][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.548391][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.550593][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.553327][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.555886][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.558623][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.561051][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.564001][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.567005][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.569741][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.572801][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.575137][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.577322][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.579580][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.582146][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.584329][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.584341][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.584351][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.584361][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.584371][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.584381][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.584391][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.600268][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.648509][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.650671][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.652864][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.655130][ T5981] hid-generic 0000:0000:0003.0016: unknown main item tag 0x0 [ 193.657908][ T5981] hid-generic 0000:0000:0003.0016: hidraw1: HID v0.00 Device [syz1] on syz0 [ 193.682116][ T1412] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.683930][ T1412] ieee802154 phy1 wpan1: encryption failed: -22 [ 193.792472][T11296] netlink: 'syz.2.1474': attribute type 10 has an invalid length. [ 193.799308][T11296] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 194.223415][T11306] netlink: 'syz.0.1477': attribute type 10 has an invalid length. [ 194.230546][T11306] team0: Port device wlan1 added [ 194.305470][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.307849][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.310244][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.313290][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.315713][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.318049][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.320191][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.323110][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.325421][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.327782][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.329957][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.332705][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.334969][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.337162][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.339480][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.342689][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.344880][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.347087][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.349221][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.351511][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.353898][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.356114][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.358320][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.360453][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.363553][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.366139][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.368297][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.370437][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.372685][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.374881][ T35] hid-generic 0000:0000:0003.0017: unknown main item tag 0x0 [ 194.377571][ T35] hid-generic 0000:0000:0003.0017: hidraw1: HID v0.00 Device [syz1] on syz0 [ 194.552682][ T5981] libceph: connect (1)[c::]:6789 error -101 [ 194.555026][ T5981] libceph: mon0 (1)[c::]:6789 connect error [ 194.571504][T11324] ceph: No mds server is up or the cluster is laggy [ 194.574574][T11329] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1481'. [ 194.677353][T11336] FAULT_INJECTION: forcing a failure. [ 194.677353][T11336] name failslab, interval 1, probability 0, space 0, times 0 [ 194.682303][T11336] CPU: 0 UID: 0 PID: 11336 Comm: syz.2.1485 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 194.687265][T11336] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 194.690674][T11336] Call Trace: [ 194.691653][T11336] [ 194.692522][T11336] dump_stack_lvl+0x116/0x1f0 [ 194.694431][T11336] should_fail_ex+0x497/0x5b0 [ 194.697130][T11336] should_failslab+0xc2/0x120 [ 194.699734][T11336] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 194.703042][T11336] ? __send_signal_locked+0x159/0x11a0 [ 194.706105][T11336] ? sig_get_ucounts+0x1c0/0x5b0 [ 194.708889][T11336] __send_signal_locked+0x159/0x11a0 [ 194.711755][T11336] force_sig_info_to_task+0x31d/0x660 [ 194.714480][T11336] force_sig_fault+0xad/0xf0 [ 194.716719][T11336] ? __pfx_force_sig_fault+0x10/0x10 [ 194.718298][T11336] ? __pfx_is_prefetch.constprop.0+0x10/0x10 [ 194.720008][T11336] ? fixup_vdso_exception+0x34b/0x400 [ 194.721578][T11336] __bad_area_nosemaphore+0x30d/0x6a0 [ 194.723313][T11336] ? lock_mm_and_find_vma+0xa6/0x6a0 [ 194.725647][T11336] do_user_addr_fault+0x920/0x13f0 [ 194.727950][T11336] ? trace_irq_disable.constprop.0+0xea/0x140 [ 194.729701][T11336] exc_page_fault+0x5c/0xc0 [ 194.731211][T11336] asm_exc_page_fault+0x26/0x30 [ 194.732638][T11336] RIP: 0023:0xf71b52a6 [ 194.734170][T11336] Code: 03 76 37 f7 c6 03 00 00 00 74 16 a4 49 f7 c6 03 00 00 00 74 0c a4 49 f7 c6 03 00 00 00 74 02 a4 49 50 89 c8 c1 e9 02 83 e0 03 a5 89 c1 f3 a4 58 89 c7 89 d6 8b 44 24 04 c3 d1 e9 73 01 a4 d1 [ 194.739605][T11336] RSP: 002b:00000000f5060548 EFLAGS: 00010246 [ 194.741564][T11336] RAX: 0000000000000000 RBX: 00000000f73a3ff4 RCX: 0000000000000012 [ 194.743934][T11336] RDX: 0000000000001f00 RSI: 0000000020002980 RDI: 0000000000000020 [ 194.747886][T11336] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 194.750125][T11336] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 194.752398][T11336] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 194.755363][T11336] [ 194.773814][T11340] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1486'. [ 194.777410][T11340] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1486'. [ 195.217847][T11361] FAULT_INJECTION: forcing a failure. [ 195.217847][T11361] name failslab, interval 1, probability 0, space 0, times 0 [ 195.222760][T11361] CPU: 2 UID: 0 PID: 11361 Comm: syz.3.1494 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 195.226750][T11361] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 195.230806][T11361] Call Trace: [ 195.232415][T11361] [ 195.233573][T11361] dump_stack_lvl+0x16c/0x1f0 [ 195.235406][T11361] should_fail_ex+0x497/0x5b0 [ 195.237183][T11361] ? fs_reclaim_acquire+0xae/0x150 [ 195.239144][T11361] should_failslab+0xc2/0x120 [ 195.240944][T11361] __kmalloc_noprof+0xce/0x4f0 [ 195.242772][T11361] ? tomoyo_realpath_from_path+0xbf/0x710 [ 195.244918][T11361] tomoyo_realpath_from_path+0xbf/0x710 [ 195.247015][T11361] ? tomoyo_path_number_perm+0x235/0x5b0 [ 195.249219][T11361] tomoyo_path_number_perm+0x248/0x5b0 [ 195.251287][T11361] ? tomoyo_path_number_perm+0x235/0x5b0 [ 195.253483][T11361] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 195.255884][T11361] ? rcu_is_watching+0x12/0xc0 [ 195.257722][T11361] ? preempt_count_add+0x76/0x150 [ 195.259639][T11361] ? __pfx_lock_release+0x10/0x10 [ 195.261629][T11361] ? trace_lock_acquire+0x14e/0x1f0 [ 195.263608][T11361] ? __fget_files+0x40/0x3a0 [ 195.265400][T11361] ? lock_acquire+0x2f/0xb0 [ 195.267132][T11361] ? __fget_files+0x40/0x3a0 [ 195.268894][T11361] ? __fget_files+0x206/0x3a0 [ 195.270696][T11361] security_file_ioctl_compat+0x9b/0x240 [ 195.272826][T11361] __do_compat_sys_ioctl+0x4e/0x2c0 [ 195.274810][T11361] __do_fast_syscall_32+0x73/0x120 [ 195.276769][T11361] do_fast_syscall_32+0x32/0x80 [ 195.278631][T11361] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 195.280998][T11361] RIP: 0023:0xf7f71579 [ 195.282564][T11361] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 195.289727][T11361] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 195.292868][T11361] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004138ae84 [ 195.295860][T11361] RDX: 0000000020000c40 RSI: 0000000000000000 RDI: 0000000000000000 [ 195.298835][T11361] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 195.301800][T11361] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 195.304781][T11361] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 195.307773][T11361] [ 195.309481][T11361] ERROR: Out of memory at tomoyo_realpath_from_path. [ 195.756692][T11357] syz.1.1490 (11357) used greatest stack depth: 21448 bytes left [ 204.551173][ C0] bridge0: port 1(bridge_slave_0) entered learning state [ 204.554082][ C0] bridge0: port 2(bridge_slave_1) entered learning state [ 219.911181][ C3] bridge0: port 2(bridge_slave_1) entered forwarding state [ 219.913789][ C3] bridge0: topology change detected, propagating [ 219.915647][ C3] bridge0: port 1(bridge_slave_0) entered forwarding state [ 219.917672][ C3] bridge0: topology change detected, propagating [ 219.919736][ T11] ------------[ cut here ]------------ [ 219.922086][ T11] RTNL: assertion failed at net/core/dev.c (2017) [ 219.925176][ T11] WARNING: CPU: 0 PID: 11 at net/core/dev.c:2017 call_netdevice_notifiers_info+0x112/0x140 [ 219.928974][ T11] Modules linked in: [ 219.930621][ T11] CPU: 0 UID: 0 PID: 11 Comm: kworker/u32:0 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 219.936006][ T11] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 219.940233][ T11] Workqueue: bond0 bond_mii_monitor [ 219.942452][ T11] RIP: 0010:call_netdevice_notifiers_info+0x112/0x140 [ 219.945144][ T11] Code: 84 ed 75 89 e8 4f 23 9a f8 c6 05 83 7e 06 07 01 90 ba e1 07 00 00 48 c7 c6 40 4b 7b 8c 48 c7 c7 80 4b 7b 8c e8 1f eb 5a f8 90 <0f> 0b 90 90 e9 5a ff ff ff 48 89 df e8 fd 93 fc f8 e9 08 ff ff ff [ 219.952634][ T11] RSP: 0018:ffffc900001d7958 EFLAGS: 00010282 [ 219.955060][ T11] RAX: 0000000000000000 RBX: ffffc900001d79a0 RCX: ffffffff815a17c9 [ 219.958188][ T11] RDX: ffff88801cea2440 RSI: ffffffff815a17d6 RDI: 0000000000000001 [ 219.961381][ T11] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 219.964485][ T11] R10: 0000000000000000 R11: 7361203a4c4e5452 R12: 0000000000000004 [ 219.967609][ T11] R13: ffff8880667f1e40 R14: ffff8880673a86a0 R15: ffffffff8fac4200 [ 219.970736][ T11] FS: 0000000000000000(0000) GS:ffff88802b400000(0000) knlGS:0000000000000000 [ 219.974379][ T11] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 219.977006][ T11] CR2: 00000000f5159fe0 CR3: 000000000db7e000 CR4: 0000000000352ef0 [ 219.980105][ T11] DR0: 0000000000000003 DR1: 0000000000000000 DR2: 0000000000000000 [ 219.983283][ T11] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 219.986403][ T11] Call Trace: [ 219.987747][ T11] [ 219.988931][ T11] ? __warn+0xea/0x3c0 [ 219.990567][ T11] ? call_netdevice_notifiers_info+0x112/0x140 [ 219.993105][ T11] ? report_bug+0x3c0/0x580 [ 219.994955][ T11] ? handle_bug+0x54/0xa0 [ 219.996690][ T11] ? exc_invalid_op+0x17/0x50 [ 219.998588][ T11] ? asm_exc_invalid_op+0x1a/0x20 [ 220.000596][ T11] ? __warn_printk+0x199/0x350 [ 220.002604][ T11] ? __warn_printk+0x1a6/0x350 [ 220.004550][ T11] ? call_netdevice_notifiers_info+0x112/0x140 [ 220.006967][ T11] ? call_netdevice_notifiers_info+0x111/0x140 [ 220.009404][ T11] netdev_state_change+0x115/0x150 [ 220.011533][ T11] ? __pfx_netdev_state_change+0x10/0x10 [ 220.013792][ T11] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 220.016142][ T11] linkwatch_do_dev+0x12b/0x160 [ 220.018103][ T11] linkwatch_sync_dev+0x181/0x210 [ 220.020107][ T11] ? __pfx_ethtool_op_get_link+0x10/0x10 [ 220.022424][ T11] ethtool_op_get_link+0x1d/0x70 [ 220.024484][ T11] bond_check_dev_link+0x197/0x430 [ 220.026535][ T11] ? __pfx_bond_check_dev_link+0x10/0x10 [ 220.028756][ T11] ? __pfx_lock_release+0x10/0x10 [ 220.030767][ T11] ? rcu_is_watching+0x12/0xc0 [ 220.032813][ T11] ? bond_mii_monitor+0x140/0x2d90 [ 220.034903][ T11] ? lock_acquire+0x2f/0xb0 [ 220.036757][ T11] ? bond_mii_monitor+0x140/0x2d90 [ 220.038815][ T11] bond_mii_monitor+0x3c1/0x2d90 [ 220.040790][ T11] ? _raw_spin_unlock_bh+0x30/0x30 [ 220.042935][ T11] ? lock_release+0x4e2/0x6f0 [ 220.044828][ T11] ? __pfx_bond_mii_monitor+0x10/0x10 [ 220.046967][ T11] ? rcu_is_watching+0x12/0xc0 [ 220.048838][ T11] ? lock_acquire+0x2f/0xb0 [ 220.050245][ T11] ? process_one_work+0x8bb/0x1b30 [ 220.051787][ T11] process_one_work+0x958/0x1b30 [ 220.053210][ T11] ? __pfx_process_one_work+0x10/0x10 [ 220.054736][ T11] ? rcu_is_watching+0x12/0xc0 [ 220.056091][ T11] ? assign_work+0x1a0/0x250 [ 220.057428][ T11] worker_thread+0x6c8/0xf00 [ 220.058756][ T11] ? __pfx_worker_thread+0x10/0x10 [ 220.060209][ T11] kthread+0x2c1/0x3a0 [ 220.061450][ T11] ? _raw_spin_unlock_irq+0x23/0x50 [ 220.062938][ T11] ? __pfx_kthread+0x10/0x10 [ 220.064262][ T11] ret_from_fork+0x45/0x80 [ 220.065570][ T11] ? __pfx_kthread+0x10/0x10 [ 220.066893][ T11] ret_from_fork_asm+0x1a/0x30 [ 220.068278][ T11] [ 220.069183][ T11] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 220.071244][ T11] CPU: 0 UID: 0 PID: 11 Comm: kworker/u32:0 Not tainted 6.13.0-rc7-syzkaller-00102-gce69b4019001 #0 [ 220.074267][ T11] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 220.077368][ T11] Workqueue: bond0 bond_mii_monitor [ 220.078702][ T11] Call Trace: [ 220.079547][ T11] [ 220.080407][ T11] dump_stack_lvl+0x3d/0x1f0 [ 220.081800][ T11] panic+0x71d/0x800 [ 220.082933][ T11] ? __pfx_panic+0x10/0x10 [ 220.084211][ T11] ? show_trace_log_lvl+0x29d/0x3d0 [ 220.085697][ T11] ? check_panic_on_warn+0x1f/0xb0 [ 220.087158][ T11] ? call_netdevice_notifiers_info+0x112/0x140 [ 220.088916][ T11] check_panic_on_warn+0xab/0xb0 [ 220.090369][ T11] __warn+0xf6/0x3c0 [ 220.091545][ T11] ? call_netdevice_notifiers_info+0x112/0x140 [ 220.093384][ T11] report_bug+0x3c0/0x580 [ 220.094680][ T11] handle_bug+0x54/0xa0 [ 220.095921][ T11] exc_invalid_op+0x17/0x50 [ 220.097225][ T11] asm_exc_invalid_op+0x1a/0x20 [ 220.098635][ T11] RIP: 0010:call_netdevice_notifiers_info+0x112/0x140 [ 220.100548][ T11] Code: 84 ed 75 89 e8 4f 23 9a f8 c6 05 83 7e 06 07 01 90 ba e1 07 00 00 48 c7 c6 40 4b 7b 8c 48 c7 c7 80 4b 7b 8c e8 1f eb 5a f8 90 <0f> 0b 90 90 e9 5a ff ff ff 48 89 df e8 fd 93 fc f8 e9 08 ff ff ff [ 220.106043][ T11] RSP: 0018:ffffc900001d7958 EFLAGS: 00010282 [ 220.107747][ T11] RAX: 0000000000000000 RBX: ffffc900001d79a0 RCX: ffffffff815a17c9 [ 220.109979][ T11] RDX: ffff88801cea2440 RSI: ffffffff815a17d6 RDI: 0000000000000001 [ 220.112227][ T11] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 220.114463][ T11] R10: 0000000000000000 R11: 7361203a4c4e5452 R12: 0000000000000004 [ 220.116696][ T11] R13: ffff8880667f1e40 R14: ffff8880673a86a0 R15: ffffffff8fac4200 [ 220.118943][ T11] ? __warn_printk+0x199/0x350 [ 220.120317][ T11] ? __warn_printk+0x1a6/0x350 [ 220.121691][ T11] ? call_netdevice_notifiers_info+0x111/0x140 [ 220.123430][ T11] netdev_state_change+0x115/0x150 [ 220.124899][ T11] ? __pfx_netdev_state_change+0x10/0x10 [ 220.126488][ T11] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 220.128175][ T11] linkwatch_do_dev+0x12b/0x160 [ 220.129570][ T11] linkwatch_sync_dev+0x181/0x210 [ 220.131005][ T11] ? __pfx_ethtool_op_get_link+0x10/0x10 [ 220.132600][ T11] ethtool_op_get_link+0x1d/0x70 [ 220.134017][ T11] bond_check_dev_link+0x197/0x430 [ 220.135477][ T11] ? __pfx_bond_check_dev_link+0x10/0x10 [ 220.137063][ T11] ? __pfx_lock_release+0x10/0x10 [ 220.138496][ T11] ? rcu_is_watching+0x12/0xc0 [ 220.139867][ T11] ? bond_mii_monitor+0x140/0x2d90 [ 220.141330][ T11] ? lock_acquire+0x2f/0xb0 [ 220.142622][ T11] ? bond_mii_monitor+0x140/0x2d90 [ 220.144081][ T11] bond_mii_monitor+0x3c1/0x2d90 [ 220.145493][ T11] ? _raw_spin_unlock_bh+0x30/0x30 [ 220.146940][ T11] ? lock_release+0x4e2/0x6f0 [ 220.148287][ T11] ? __pfx_bond_mii_monitor+0x10/0x10 [ 220.149835][ T11] ? rcu_is_watching+0x12/0xc0 [ 220.151201][ T11] ? lock_acquire+0x2f/0xb0 [ 220.152512][ T11] ? process_one_work+0x8bb/0x1b30 [ 220.153965][ T11] process_one_work+0x958/0x1b30 [ 220.155417][ T11] ? __pfx_process_one_work+0x10/0x10 [ 220.156947][ T11] ? rcu_is_watching+0x12/0xc0 [ 220.158319][ T11] ? assign_work+0x1a0/0x250 [ 220.159592][ T11] worker_thread+0x6c8/0xf00 [ 220.160911][ T11] ? __pfx_worker_thread+0x10/0x10 [ 220.162369][ T11] kthread+0x2c1/0x3a0 [ 220.163537][ T11] ? _raw_spin_unlock_irq+0x23/0x50 [ 220.165041][ T11] ? __pfx_kthread+0x10/0x10 [ 220.166365][ T11] ret_from_fork+0x45/0x80 [ 220.167639][ T11] ? __pfx_kthread+0x10/0x10 [ 220.168959][ T11] ret_from_fork_asm+0x1a/0x30 [ 220.170324][ T11] [ 220.171791][ T11] Kernel Offset: disabled [ 220.173025][ T11] Rebooting in 86400 seconds.. VM DIAGNOSIS: 22:32:39 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85145f15 RDI=ffffffff9a66a200 RBP=ffffffff9a66a1c0 RSP=ffffc900001d72b8 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6b726f776b203a43 R12=0000000000000000 R13=0000000000000020 R14=ffffffff85145eb0 R15=0000000000000000 RIP=ffffffff85145f3f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b400000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f5159fe0 CR3=000000000db7e000 CR4=00352ef0 DR0=0000000000000003 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7f910d546ae11872 baab1ae4b238ea84 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 9dce842ab3131412 9289918d8acff13d ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3c52f6944d41be4d 58b5fce1d4449423 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d85f708a6f040fa1 25ac5a18095848cd ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 00000000000000b4 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000034 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e1fb3abc79fa5927 4fa90d8c77b61c26 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 20ca59912b372730 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 37519f190c7c9e64 6e5526da03ccef31 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4d9ac5f200000000 2291d8ebf9e085b8 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6910f9f065007dec f29e9727d4886f35 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 309dc041237a90d9 b5d69044f162065b ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=00000000007b211c RBX=0000000000000001 RCX=ffffffff8b1a8889 RDX=ffffed10056a6fee RSI=ffffffff8bb17240 RDI=ffffffff81703079 RBP=ffffed10039d8910 RSP=ffffc9000047fe08 R8 =0000000000000000 R9 =ffffed10056a6fed R10=ffff88802b537f6b R11=0000000000000000 R12=0000000000000001 R13=ffff88801cec4880 R14=ffffffff901cf6d0 R15=0000000000000000 RIP=ffffffff8b1a9c6f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b500000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00005652861b4680 CR3=000000000db7e000 CR4=00352ef0 DR0=0000000000000003 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000004040003 Opmask01=0000000000000001 Opmask02=00000000ffff3f01 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 525e07679701bb4d f9c9247d947b36d4 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 bd302bd8e7648bef 02e9142168aedd93 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 fb3f8bc8f60dc7be d30ffa87e633f952 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 43f058e473b55d43 3d3bf6e55f3e3002 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 0000000000000060 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000020 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d1987c7c5a553c04 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 bd732e3500000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 46893875dad482a8 b2aad217d5834c37 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000078d1370b ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1d1a5ec08e11f2c5 fa7127002cc1d957 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 829c90d7afed11f9 3868db98274fd13a ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f73616572003663 6974617473006575 6575715f6c6f7274 6e6f63203a732500 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a56444057001346 4c51445156004050 4050545f494a5751 4b4a46051f560000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 772f74656e2f316d 697377682f6d6973 77685f3131323038 63616d2f6c617574 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ab73efa766f894df 00005657c0dde7fa 0000000000000041 00000000316e616c ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 00005652c0900233 73656d5f70636864 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 725f0f50c8b62661 72610f6ffef9737f 65677773f3f57fff 7f7f7d7f75777965 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 0000726565666965 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 00006d5f65636864 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2b313423342c ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020 info registers vcpu 2 CPU#2 RAX=000000000029d23c RBX=0000000000000002 RCX=ffffffff8b1a8889 RDX=ffffed10056c6fee RSI=ffffffff8bb17240 RDI=ffffffff81703079 RBP=ffffed10036e9000 RSP=ffffc9000048fe08 R8 =0000000000000000 R9 =ffffed10056c6fed R10=ffff88802b637f6b R11=0000000000000000 R12=0000000000000002 R13=ffff88801b748000 R14=ffffffff901cf6d0 R15=0000000000000000 RIP=ffffffff8b1a9c6f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00005634030c4000 CR3=000000004a97a000 CR4=00352ef0 DR0=0000000000000003 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f73f3ff4 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=000000000029bbd4 RBX=0000000000000003 RCX=ffffffff8b1a8889 RDX=ffffed10056e6fee RSI=ffffffff8bb17240 RDI=ffffffff81703079 RBP=ffffed10036e9488 RSP=ffffc9000049fe08 R8 =0000000000000000 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000000 R12=0000000000000003 R13=ffff88801b74a440 R14=ffffffff901cf6d0 R15=0000000000000000 RIP=ffffffff8b1a9c6f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007faa8d6fd580 CR3=0000000026024000 CR4=00352ef0 DR0=0000000000000003 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000001 Opmask01=0000000000800000 Opmask02=0000000000000002 Opmask03=0000000000000000 Opmask04=00000000fffffffb Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd5f8e13f0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3430303030303030 30203a5843522035 3030303030303030 3030303030303000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3430303030303030 3020305243522035 3030303030303030 3030303030303000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3030302030303030 3030303030302038 3239322e35393120 20363932300a3030 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3020302020303030 3020303030302030 3233302e24303020 2020333230000020 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 305a59582a573b3c 393b3b5e51573d38 3d333238243f333b 2a2a51343e36003a ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a3a3a3a3a3a3a3a 3a3a3a3a3a3a2a30 524b58554d435845 2a3c33383a3a3a3a ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000