last executing test programs: 30.65652209s ago: executing program 1 (id=2109): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b00000000", @ANYRES32=r3, @ANYBLOB="fe000000000000001c0012000c000100626f6e6400"], 0x3c}}, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = socket$packet(0x11, 0x3, 0x300) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x20}}, 0x0) r6 = socket(0x1, 0x803, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001900)=@newlink={0x4c, 0x10, 0xf11, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x104}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r7}, @IFLA_MASTER={0x8, 0xa, r7}]}, 0x4c}}, 0x0) 30.514980701s ago: executing program 1 (id=2114): connect$bt_sco(0xffffffffffffffff, &(0x7f0000000000), 0x8) r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) r2 = openat$cgroup_procs(r1, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0) open_by_handle_at(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="0c00000001"], 0x260040) socket$inet_sctp(0x2, 0x1, 0x84) 30.472003326s ago: executing program 1 (id=2116): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0) write$binfmt_script(r2, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/34, @ANYRES32=0x41424344], 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000002900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x34, 0x2, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x6}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x3}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x4044000}, 0x8000) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10) ioctl$KVM_RUN(r3, 0xae80, 0x0) 30.366908975s ago: executing program 1 (id=2121): mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x2081c80, 0x0) open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0/file0\x00', 0x9801) mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00') r1 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0) sendfile(r1, r0, 0x0, 0x80000000) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r2, 0xc08c5336, 0x0) socket$inet_mptcp(0x2, 0x1, 0x106) creat(&(0x7f0000000000)='./file0\x00', 0x11d) 30.366557597s ago: executing program 1 (id=2123): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0x1c0) r0 = landlock_create_ruleset(&(0x7f00000000c0)={0x100}, 0x18, 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x200000, 0x0) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, &(0x7f0000000140)={0x100, r1}, 0x0) prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) landlock_restrict_self(r0, 0x0) mknodat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file1\x00', 0x81c0, 0x0) unlinkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1\x00', 0x0) mknodat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x81c0, 0x0) r2 = landlock_create_ruleset(&(0x7f0000000240)={0x20}, 0x18, 0x0) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='./file0/file0\x00', 0x200000, 0x0) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r2, 0x1, &(0x7f00000002c0)={0x20, r3}, 0x0) landlock_restrict_self(r2, 0x0) mknodat(0xffffffffffffff9c, &(0x7f0000000300)='./file0/file0/file0\x00', 0x81c0, 0xff8c) unlinkat(0xffffffffffffff9c, &(0x7f0000000340)='./file0/file0/file0\x00', 0x0) mknodat(0xffffffffffffff9c, &(0x7f0000000380)='./file0/file1\x00', 0x81c0, 0x0) unlinkat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0/file1\x00', 0x0) 30.20702825s ago: executing program 1 (id=2125): r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f00000005c0)={0x53, 0x6, 0x6, 0xfe, @buffer={0x0, 0x2c, &(0x7f0000000140)=""/44}, &(0x7f00000001c0)="9eb07acda0b2", 0x0, 0x200008, 0x0, 0x0, 0x0}) 30.196969598s ago: executing program 32 (id=2125): r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f00000005c0)={0x53, 0x6, 0x6, 0xfe, @buffer={0x0, 0x2c, &(0x7f0000000140)=""/44}, &(0x7f00000001c0)="9eb07acda0b2", 0x0, 0x200008, 0x0, 0x0, 0x0}) 5.347018325s ago: executing program 4 (id=2645): syz_80211_join_ibss(&(0x7f00000000c0)='wlan0\x00', &(0x7f0000000100)=@default_ibss_ssid, 0x6, 0x0) syz_80211_join_ibss(&(0x7f0000000140)='wlan0\x00', &(0x7f0000000180)=@default_ap_ssid, 0x6, 0x1) r0 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0x10, 0x0) syz_80211_join_ibss(&(0x7f00000001c0)='wlan1\x00', &(0x7f0000000200)=@default_ibss_ssid, 0x6, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000240)={'wlan1\x00'}) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) r1 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_GET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="100000000114a7", @ANYRES8], 0x10}, 0x1, 0x0, 0x0, 0x40080}, 0x0) recvmsg$can_raw(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) pipe2$watch_queue(&(0x7f0000000280), 0x80) 5.284726049s ago: executing program 4 (id=2648): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d3120900"], 0x0) write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/34, @ANYRES32=0x41424344], 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000002900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x2c, 0x2, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x6}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4044000}, 0x8000) ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000140)={0x100, 0x640, 0x0, &(0x7f0000000500)}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10) ioctl$KVM_RUN(r3, 0xae80, 0x0) 5.016602428s ago: executing program 2 (id=2658): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0) sendmsg$NLBL_CALIPSO_C_LISTALL(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x24004052) write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0) syz_emit_ethernet(0x4a, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000002900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x3c, 0x2, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x6}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4044000}, 0x8000) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10) ioctl$KVM_RUN(r3, 0xae80, 0x0) 4.93278416s ago: executing program 4 (id=2659): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b00000000", @ANYRES32=r3, @ANYBLOB="fe000000000000001c0012000c000100626f6e6400"], 0x3c}}, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = socket$packet(0x11, 0x3, 0x300) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="200000001000250800170000000000000a000000", @ANYRES32=r6, @ANYBLOB="01"], 0x20}}, 0x0) r7 = socket(0x1, 0x803, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001900)=@newlink={0x44, 0x10, 0xf11, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x104}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_MASTER={0x8, 0xa, r8}]}, 0x44}}, 0x0) 4.75887545s ago: executing program 4 (id=2664): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e9"], 0x0) write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/34, @ANYRES32=0x41424344], 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000002900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x34, 0x2, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x6}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x3}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x4044000}, 0x8000) ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000140)={0x100, 0x640, 0x0, &(0x7f0000000500)}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10) ioctl$KVM_RUN(r3, 0xae80, 0x0) 4.144901946s ago: executing program 3 (id=2678): r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, 0x0, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(serpent))\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="0404"], 0xd) syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="0403"], 0x14) syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) syz_emit_ethernet(0x4e, &(0x7f0000000080)={@local, @remote, @val={@val={0x88a8, 0x0, 0x1, 0x4}}, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "7a9d07", 0x10, 0x21, 0x0, @private0, @local, {[], {{0x0, 0x4e20, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "dba20d", 0x0, "05a012"}}}}}}}, 0x0) 3.986999061s ago: executing program 3 (id=2680): r0 = socket$nl_generic(0x10, 0x3, 0x10) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) ppoll(&(0x7f0000000080)=[{r0}], 0x1, &(0x7f0000000140)={r1, r2+10000000}, &(0x7f0000000180)={[0x5]}, 0x8) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0) sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001440)={0x1c, r4, 0x1, 0x0, 0x0, {{0x8}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) 3.885239274s ago: executing program 2 (id=2683): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x4004090) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$alg(0x26, 0x5, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f00000000c0)={0xc}) bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) r2 = accept4(r1, 0x0, 0x0, 0x80800) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x321400, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000340)=0x4000000f) sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b000000", @ANYRES32=r5, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0) 3.796221887s ago: executing program 2 (id=2686): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b00000000", @ANYRES32=r3, @ANYBLOB="fe000000000000001c0012000c000100626f6e6400"], 0x3c}}, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = socket$packet(0x11, 0x3, 0x300) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="200000001000250800170000000000000a000000", @ANYRES32=r6, @ANYBLOB="01"], 0x20}}, 0x0) r7 = socket(0x1, 0x803, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001900)=@newlink={0x30, 0x10, 0xf11, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x104}, [@IFLA_LINK={0x8, 0x5, r8}, @IFLA_MASTER={0x8, 0xa, r8}]}, 0x30}}, 0x0) 3.745467162s ago: executing program 2 (id=2689): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000740), 0xffffffffffffffff) sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)={0x30, r2, 0x325, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x1c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x15, 0x1, @l2={'eth', 0x3a, 'veth0_to_hsr\x00'}}]}]}, 0x30}}, 0x0) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4) sendmmsg$inet(r0, &(0x7f0000000f40)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000006c0)="ed", 0x1}, {&(0x7f0000000200)="b5", 0x1}, {&(0x7f0000000340)='.', 0x1}, {&(0x7f0000000140)='U', 0x1}, {&(0x7f0000000180)="f3", 0x1}], 0x5}}, {{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000580)="f1", 0x1}, {&(0x7f0000000c80)='a', 0x1}, {&(0x7f0000000b40)='M', 0x1}, {&(0x7f0000000d80)='o', 0x1}, {&(0x7f0000000e80)='\b', 0x1}], 0x5}, 0x70040000}, {{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000000)="488804198fa0af59ca6052d8a2", 0xd}, {&(0x7f00000007c0)="a1", 0x1}, {&(0x7f0000000800)='s', 0x1}, {&(0x7f00000009c0)='\\', 0x1}], 0x4}}, {{0x0, 0x0, &(0x7f0000000dc0)=[{&(0x7f0000000440)="88", 0x1}, {&(0x7f0000000840)="e5", 0x1}, {&(0x7f0000001040)="96", 0x1}], 0x3}}], 0x4, 0x4048841) syz_80211_join_ibss(&(0x7f00000000c0)='wlan0\x00', &(0x7f0000000100)=@default_ibss_ssid, 0x6, 0x0) 3.690140706s ago: executing program 4 (id=2690): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0) write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe800000000000000000", @ANYRES32=0x41424344], 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000002900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x28, 0x2, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x6}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x4044000}, 0x8000) ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000140)={0x100, 0x640, &(0x7f0000000240), &(0x7f0000000500)}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10) ioctl$KVM_RUN(r3, 0xae80, 0x0) 3.635467652s ago: executing program 2 (id=2692): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0) sendmsg$NLBL_CALIPSO_C_LISTALL(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x24004052) write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0) syz_emit_ethernet(0x4a, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000002900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x3c, 0x2, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x6}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4044000}, 0x8000) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10) ioctl$KVM_RUN(r3, 0xae80, 0x0) 3.21630761s ago: executing program 0 (id=2695): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e"], 0x0) write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/34, @ANYRES32=0x41424344], 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000002900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x2c, 0x2, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x6}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4044000}, 0x8000) ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000140)={0x100, 0x640, 0x0, &(0x7f0000000500)}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10) ioctl$KVM_RUN(r3, 0xae80, 0x0) 3.115969945s ago: executing program 3 (id=2696): r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, 0x0, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(serpent))\x00'}, 0x58) syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="0404"], 0xd) syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="0403"], 0x14) syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) syz_emit_ethernet(0x4e, &(0x7f0000000080)={@local, @remote, @val={@val={0x88a8, 0x0, 0x1, 0x4}}, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "7a9d07", 0x10, 0x21, 0x0, @private0, @local, {[], {{0x0, 0x4e20, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "dba20d", 0x0, "05a012"}}}}}}}, 0x0) 3.11566524s ago: executing program 0 (id=2697): ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1000}}, './file0\x00'}) r1 = gettid() r2 = socket(0x2, 0x80805, 0x0) sendmmsg$inet(r2, &(0x7f00000003c0)=[{{&(0x7f0000000000)={0x2, 0x0, @rand_addr=0x64010100}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000180)="e1", 0x1}], 0x1}}], 0x1, 0x0) r3 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000240)={0x6, 0x101, 0x206, 0x2, 0x754d, 0x6, 0x9, 0xf, r4}, 0x20) sigaltstack(&(0x7f0000001040)={&(0x7f0000001580)=""/4110, 0x80000001, 0xfffffffffffffefd}, 0x0) rt_sigqueueinfo(r1, 0x21, &(0x7f00000002c0)) r5 = syz_open_dev$tty1(0xc, 0x4, 0x1) r6 = syz_open_dev$loop(&(0x7f0000000100), 0xd79, 0x0) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0) write$binfmt_elf32(r7, &(0x7f0000002100)={{0x7f, 0x45, 0x4c, 0x46, 0x7, 0x2, 0x0, 0x2, 0x4, 0x2, 0x3e, 0xfffffffc, 0x194, 0x38, 0x1fb, 0x800, 0x4, 0x20, 0x4, 0x0, 0x44, 0x5b6a}, [{0x60000000, 0xb, 0x5, 0x40, 0x5, 0xfffffff3, 0x10, 0x1}, {0x3, 0xfffffffc, 0x8001, 0x6, 0x1, 0x8, 0xc66567d, 0x1fa9}, {0x60000001, 0x7, 0x3, 0x4, 0x6, 0x4, 0x4, 0x4}, {0x7, 0x7, 0x4de, 0xffffffff, 0x8, 0x6, 0x3, 0x857}], "3f491130be9b35140d751b47e81bd7a501253ef9b3f66596ab4a19893ea69029a36a2b5331d5659bbc666e6c1c1488516b94ce7239bccb73e43fd5cad30ba2e3c8ada905e71b9088824620ec9d53942e84213df72735aa993b4ef313e1d0054b189276001836fec136dab0682d7fac1cec95775e78049570f4070200b0aa2cdfb886bd9a70655f61ddd2ce557437c58790e1c96a5f201fc383798a68e73e5afa5936915a600cc0279fb08d31c24ac31940e57fc64b0a22f3f61227462cffd8f626b749fda5ab1f087de040fa883a88f75af34c8a0b83d55b9a7b95797001c49b8d3dccfbb9ef1babe01da8c3fb0a3d5d79b2ff11c1acdff38bc88c1fcc00ff9ce70f6657572e75a603bee95d7493b46a4d00817f91eb07a91d62246c4be22c73472e08466336f1e925b1fa495b6658e07c788595ea57864e75fc9839fb47cd199bc8f42d1bb755", ['\x00']}, 0x2ff) ioctl$LOOP_CONFIGURE(r6, 0x4c0a, &(0x7f00000002c0)={r7, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00"}}) r8 = dup(r5) write$UHID_INPUT(r8, &(0x7f0000002080)={0xf, {"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", 0x1000}}, 0x1006) socket$nl_netfilter(0x10, 0x3, 0xc) write$P9_RLOPEN(r0, &(0x7f0000000040)={0x18, 0xd, 0x1, {{0x60, 0x0, 0x8}, 0x6c9}}, 0x18) mkdir(&(0x7f0000000580)='./file0\x00', 0x0) lsetxattr$security_evm(&(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), &(0x7f0000000300)=@sha1={0x1, "825b02922a154f35c922ef7fe6d8d6adfb4967db"}, 0x15, 0x1) 3.109645863s ago: executing program 3 (id=2698): r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0) write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000140)={0x100, 0x640, 0x0, &(0x7f0000000500)}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10) ioctl$KVM_RUN(r3, 0xae80, 0x0) 3.066679403s ago: executing program 0 (id=2699): r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0xc2d41, 0x0) syz_usb_connect$hid(0x6, 0x36, &(0x7f0000000180)=ANY=[], 0x0) (async) r1 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) (async) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0) (async) prlimit64(0x0, 0xc, &(0x7f0000000140)={0x8001, 0x7fffffffffffffff}, 0x0) (async) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) (async) openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async) r5 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0) (async) r6 = userfaultfd(0x80801) ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x10c}) (async) ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1}) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000000)="1eb3bf65654102f4af4d221c8bd458d1e7cbdaf3657d0f34e790c85bdba7931791f6d15c3e681411f7a496c0dace6a3c242f5b016f64b4ef8a9cedaf6bec340dee49474360b24cb8", 0x0, 0x48) (async) ioctl$UFFDIO_WAKE(r6, 0x8010aa02, &(0x7f00000000c0)={&(0x7f0000ffb000/0x3000)=nil, 0x3000}) (async) read(r1, &(0x7f0000001140)=""/212, 0xd4) (async) ioctl$SNAPSHOT_ATOMIC_RESTORE(r0, 0x3304) 2.876462561s ago: executing program 3 (id=2700): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000180), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000400)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_SET_HARDIF(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000100)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000f000000000000010000", @ANYRES32=r2], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x40004840) 2.87594104s ago: executing program 3 (id=2701): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x1e1f00, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CAP_MAX_VCPU_ID(r2, 0x4068aea3, &(0x7f0000000000)={0x80, 0x0, 0x4}) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x1ff}, [@map_idx={0x18, 0x6, 0x5, 0x0, 0x2}, @initr0={0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x9}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x12, &(0x7f00000000c0)=""/18, 0x41100, 0x18, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x3, 0x5}, 0x8, 0x10, &(0x7f0000000200)={0x1, 0xf, 0x7ff}, 0x10, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000240)=[{0x2, 0x2, 0x6, 0xc}, {0x3, 0x1, 0x7, 0x9}, {0x0, 0x5, 0x9, 0x1}], 0x10, 0x8, @void, @value}, 0x94) r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000002cc0), 0x100, 0x0) ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000002d00)=0x1c) r5 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) write$binfmt_misc(r6, &(0x7f0000000040), 0xe09) ioctl$LOOP_CONFIGURE(r5, 0x4c0a, &(0x7f00000002c0)={r6, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00"}}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='ext4_nfs_commit_metadata\x00', r3, 0x0, 0x9f}, 0x18) r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) syz_usb_disconnect(0xffffffffffffffff) r8 = syz_pidfd_open(r7, 0x0) process_mrelease(r8, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x8, 0xf, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000008000000bf0910000000000035090100700000000600000003000000bf98000000000000760800000000000085000000ba000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 2.806866552s ago: executing program 0 (id=2702): r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0) write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/34, @ANYRES32=0x41424344], 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000002900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x34, 0x2, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x6}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x3}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x4044000}, 0x8000) ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000140)={0x100, 0x640, 0x0, &(0x7f0000000500)}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10) ioctl$KVM_RUN(r3, 0xae80, 0x0) 6.718175ms ago: executing program 4 (id=2703): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x600}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) recvmsg(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000080)=@l2tp={0x2, 0x0, @local}, 0x80, &(0x7f0000000240)=[{&(0x7f0000000100)=""/249, 0xf9}, {&(0x7f0000000200)=""/39, 0x27}], 0x2, &(0x7f0000000280)}, 0x40010060) setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x5}, 0x8) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x94}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) unshare(0x40020000) 5.14152ms ago: executing program 0 (id=2704): socket$alg(0x26, 0x5, 0x0) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="0404"], 0xd) syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="0403"], 0x14) syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) syz_emit_ethernet(0x4e, &(0x7f0000000080)={@local, @remote, @val={@val={0x88a8, 0x0, 0x1, 0x4}}, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "7a9d07", 0x10, 0x21, 0x0, @private0, @local, {[], {{0x0, 0x4e20, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "dba20d", 0x0, "05a012"}}}}}}}, 0x0) 374.111µs ago: executing program 2 (id=2705): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e"], 0x0) write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/34, @ANYRES32=0x41424344], 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000002900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x2c, 0x2, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0x6}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4044000}, 0x8000) ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f0000000140)={0x100, 0x640, 0x0, &(0x7f0000000500)}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10) ioctl$KVM_RUN(r3, 0xae80, 0x0) 0s ago: executing program 0 (id=2706): unshare(0x4c020000) r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$IOMMU_GET_HW_INFO(r0, 0x3b8a, &(0x7f00000001c0)={0x28, 0x0, 0x0, 0x0, 0x0}) r1 = open(&(0x7f0000000000)='./file0\x00', 0x224481, 0x4) close_range(r1, 0xffffffffffffffff, 0x0) kernel console output (not intermixed with test programs): x720 [ 85.034738][ T8455] ? tomoyo_path_number_perm+0x235/0x590 [ 85.034752][ T8455] tomoyo_path_number_perm+0x248/0x590 [ 85.034765][ T8455] ? tomoyo_path_number_perm+0x235/0x590 [ 85.034779][ T8455] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 85.034803][ T8455] ? __pfx_lock_release+0x10/0x10 [ 85.034817][ T8455] ? trace_lock_acquire+0x14e/0x1f0 [ 85.034830][ T8455] ? lock_acquire+0x2f/0xb0 [ 85.034843][ T8455] ? __fget_files+0x40/0x3a0 [ 85.034856][ T8455] ? __fget_files+0x206/0x3a0 [ 85.034867][ T8455] security_file_ioctl+0x9b/0x240 [ 85.034882][ T8455] __x64_sys_ioctl+0xb7/0x200 [ 85.034898][ T8455] do_syscall_64+0xcd/0x250 [ 85.034912][ T8455] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 85.034933][ T8455] RIP: 0033:0x7fc1f158d169 [ 85.034941][ T8455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 85.034952][ T8455] RSP: 002b:00007fc1f2348038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 85.034963][ T8455] RAX: ffffffffffffffda RBX: 00007fc1f17a5fa0 RCX: 00007fc1f158d169 [ 85.034969][ T8455] RDX: 0000400000000180 RSI: 000000008208ae63 RDI: 0000000000000004 [ 85.034975][ T8455] RBP: 00007fc1f2348090 R08: 0000000000000000 R09: 0000000000000000 [ 85.034981][ T8455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 85.034986][ T8455] R13: 0000000000000000 R14: 00007fc1f17a5fa0 R15: 00007ffd7b159458 [ 85.034998][ T8455] [ 85.035006][ T8455] ERROR: Out of memory at tomoyo_realpath_from_path. [ 85.038912][ T8454] vlan3: entered promiscuous mode [ 85.105667][ T8454] bond9: (slave vlan3): Opening slave failed [ 85.239266][ T8460] vlan3: entered promiscuous mode [ 85.241349][ T8460] bond4: (slave vlan3): Opening slave failed [ 85.433292][ T8482] validate_nla: 3 callbacks suppressed [ 85.433309][ T8482] netlink: 'syz.1.973': attribute type 1 has an invalid length. [ 85.454990][ T8482] vlan3: entered promiscuous mode [ 85.457070][ T8482] bond5: (slave vlan3): Opening slave failed [ 85.745974][ T8501] netlink: 12 bytes leftover after parsing attributes in process `syz.1.979'. [ 86.037472][ T8503] FAULT_INJECTION: forcing a failure. [ 86.037472][ T8503] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 86.042883][ T8503] CPU: 0 UID: 0 PID: 8503 Comm: syz.3.980 Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0 [ 86.042910][ T8503] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 86.042921][ T8503] Call Trace: [ 86.042926][ T8503] [ 86.042933][ T8503] dump_stack_lvl+0x16c/0x1f0 [ 86.042959][ T8503] should_fail_ex+0x50a/0x650 [ 86.042988][ T8503] _copy_to_user+0x32/0xd0 [ 86.043008][ T8503] simple_read_from_buffer+0xd0/0x160 [ 86.043036][ T8503] proc_fail_nth_read+0x198/0x270 [ 86.043061][ T8503] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 86.043087][ T8503] ? rw_verify_area+0xcf/0x680 [ 86.043109][ T8503] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 86.043131][ T8503] vfs_read+0x1df/0xbf0 [ 86.043155][ T8503] ? __fget_files+0x1fc/0x3a0 [ 86.043172][ T8503] ? __pfx___mutex_lock+0x10/0x10 [ 86.043193][ T8503] ? __pfx_vfs_read+0x10/0x10 [ 86.043225][ T8503] ? __fget_files+0x206/0x3a0 [ 86.043248][ T8503] ksys_read+0x12b/0x250 [ 86.043272][ T8503] ? __pfx_ksys_read+0x10/0x10 [ 86.043305][ T8503] do_syscall_64+0xcd/0x250 [ 86.043327][ T8503] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.043359][ T8503] RIP: 0033:0x7fb7bed8bb7c [ 86.043373][ T8503] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 86.043389][ T8503] RSP: 002b:00007fb7bfbe6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 86.043405][ T8503] RAX: ffffffffffffffda RBX: 00007fb7befa5fa0 RCX: 00007fb7bed8bb7c [ 86.043417][ T8503] RDX: 000000000000000f RSI: 00007fb7bfbe60a0 RDI: 0000000000000003 [ 86.043426][ T8503] RBP: 00007fb7bfbe6090 R08: 0000000000000000 R09: 0000000000000000 [ 86.043436][ T8503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 86.043446][ T8503] R13: 0000000000000000 R14: 00007fb7befa5fa0 R15: 00007ffe66e43628 [ 86.043469][ T8503] [ 86.201825][ T8512] netlink: 'syz.2.984': attribute type 1 has an invalid length. [ 86.215544][ T8512] vlan3: entered promiscuous mode [ 86.217604][ T8512] bond10: (slave vlan3): Opening slave failed [ 86.303962][ T8521] netlink: 'syz.2.987': attribute type 1 has an invalid length. [ 86.334376][ T8521] vlan3: entered promiscuous mode [ 86.337153][ T8521] bond11: (slave vlan3): Opening slave failed [ 86.736813][ T8560] netlink: 'syz.0.999': attribute type 1 has an invalid length. [ 86.764905][ T8560] vlan2: entered promiscuous mode [ 86.767896][ T8560] bond11: (slave vlan2): Opening slave failed [ 86.944116][ T8568] overlayfs: failed to clone upperpath [ 87.061858][ T8573] overlayfs: failed to clone upperpath [ 87.157058][ T8579] netlink: 'syz.0.1007': attribute type 1 has an invalid length. [ 87.177794][ T8579] vlan2: entered promiscuous mode [ 87.184319][ T8579] bond12: (slave vlan2): Opening slave failed [ 87.295698][ T8591] Failed to initialize the IGMP autojoin socket (err -2) [ 87.338298][ T8593] program syz.1.1011 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 87.347388][ T8593] program syz.1.1011 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 87.452887][ T8601] netlink: zone id is out of range [ 87.454510][ T8601] netlink: zone id is out of range [ 87.456024][ T8601] netlink: zone id is out of range [ 87.457678][ T8601] netlink: zone id is out of range [ 87.459469][ T8601] netlink: zone id is out of range [ 87.462494][ T8601] netlink: zone id is out of range [ 87.464068][ T8601] netlink: zone id is out of range [ 87.465595][ T8601] netlink: zone id is out of range [ 87.467119][ T8601] netlink: zone id is out of range [ 87.468682][ T8601] netlink: zone id is out of range [ 87.504082][ T8607] FAULT_INJECTION: forcing a failure. [ 87.504082][ T8607] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 87.507989][ T8607] CPU: 1 UID: 0 PID: 8607 Comm: syz.1.1017 Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0 [ 87.508003][ T8607] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 87.508010][ T8607] Call Trace: [ 87.508014][ T8607] [ 87.508018][ T8607] dump_stack_lvl+0x16c/0x1f0 [ 87.508045][ T8607] should_fail_ex+0x50a/0x650 [ 87.508066][ T8607] _copy_from_iter+0x2a1/0x1560 [ 87.508078][ T8607] ? trace_lock_acquire+0x14e/0x1f0 [ 87.508090][ T8607] ? __alloc_skb+0x1fe/0x380 [ 87.508104][ T8607] ? __pfx__copy_from_iter+0x10/0x10 [ 87.508113][ T8607] ? __virt_addr_valid+0x1a4/0x590 [ 87.508127][ T8607] ? __virt_addr_valid+0x5e/0x590 [ 87.508160][ T8607] ? __phys_addr_symbol+0x30/0x80 [ 87.508174][ T8607] ? __check_object_size+0x488/0x710 [ 87.508204][ T8607] netlink_sendmsg+0x813/0xd70 [ 87.508228][ T8607] ? __pfx_netlink_sendmsg+0x10/0x10 [ 87.508255][ T8607] ____sys_sendmsg+0xaaf/0xc90 [ 87.508270][ T8607] ? copy_msghdr_from_user+0x10b/0x160 [ 87.508284][ T8607] ? __pfx_____sys_sendmsg+0x10/0x10 [ 87.508300][ T8607] ___sys_sendmsg+0x135/0x1e0 [ 87.508315][ T8607] ? __pfx____sys_sendmsg+0x10/0x10 [ 87.508334][ T8607] ? __pfx_lock_release+0x10/0x10 [ 87.508348][ T8607] ? trace_lock_acquire+0x14e/0x1f0 [ 87.508363][ T8607] ? __fget_files+0x206/0x3a0 [ 87.508376][ T8607] __sys_sendmsg+0x16e/0x220 [ 87.508390][ T8607] ? __pfx___sys_sendmsg+0x10/0x10 [ 87.508411][ T8607] do_syscall_64+0xcd/0x250 [ 87.508431][ T8607] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 87.508446][ T8607] RIP: 0033:0x7fc1f158d169 [ 87.508455][ T8607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 87.508468][ T8607] RSP: 002b:00007fc1f2348038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 87.508478][ T8607] RAX: ffffffffffffffda RBX: 00007fc1f17a5fa0 RCX: 00007fc1f158d169 [ 87.508485][ T8607] RDX: 0000000000000000 RSI: 0000400000000280 RDI: 0000000000000003 [ 87.508490][ T8607] RBP: 00007fc1f2348090 R08: 0000000000000000 R09: 0000000000000000 [ 87.508496][ T8607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 87.508502][ T8607] R13: 0000000000000000 R14: 00007fc1f17a5fa0 R15: 00007ffd7b159458 [ 87.508516][ T8607] [ 87.704935][ T8620] netlink: 'syz.2.1021': attribute type 10 has an invalid length. [ 87.712315][ T8620] team0: Device hsr_slave_0 failed to register rx_handler [ 87.720781][ T8620] veth1: entered promiscuous mode [ 87.805262][ T8629] /dev/sg0: Can't lookup blockdev [ 87.882562][ T8635] 8021q: adding VLAN 0 to HW filter on device bond12 [ 87.888327][ T8635] vlan3: entered promiscuous mode [ 87.894123][ T8635] bond12: entered promiscuous mode [ 87.899293][ T8635] bond12: left promiscuous mode [ 88.157588][ T8642] kvm_pr_unimpl_wrmsr: 25 callbacks suppressed [ 88.157602][ T8642] kvm: kvm [8641]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x807 [ 88.169889][ T8642] kvm: kvm [8641]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x831 [ 88.176167][ T8642] kvm: kvm [8641]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x845 [ 88.182223][ T8642] kvm: kvm [8641]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x855 [ 88.405913][ T8649] sg_write: data in/out 808464396/251 bytes for SCSI command 0x0-- guessing data in; [ 88.405913][ T8649] program syz.3.1030 not setting count and/or reply_len properly [ 88.567106][ T8658] overlayfs: disabling nfs_export due to verity=on [ 88.569093][ T8658] overlayfs: failed to clone upperpath [ 88.699235][ T8667] 8021q: adding VLAN 0 to HW filter on device bond13 [ 88.706916][ T8667] vlan2: entered promiscuous mode [ 88.709381][ T8667] bond13: entered promiscuous mode [ 88.724306][ T8667] bond13: left promiscuous mode [ 88.863628][ T8680] netlink: 'syz.0.1042': attribute type 10 has an invalid length. [ 88.866001][ T8680] netdevsim netdevsim0 netdevsim0: left allmulticast mode [ 88.874181][ T8680] netdevsim netdevsim0 netdevsim0: entered allmulticast mode [ 88.878236][ T8680] team0: Port device netdevsim0 added [ 88.915975][ T8685] netlink: 'syz.0.1044': attribute type 12 has an invalid length. [ 89.042895][ T8693] netlink: 'syz.1.1048': attribute type 10 has an invalid length. [ 89.045991][ T8693] macvlan0: entered allmulticast mode [ 89.050409][ T8693] veth1_vlan: entered allmulticast mode [ 89.055645][ T8693] bond0: (slave macvlan0): Enslaving as an active interface with an up link [ 89.115943][ T8699] netlink: 'syz.1.1051': attribute type 10 has an invalid length. [ 89.126646][ T8703] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1053'. [ 89.259248][ T39] kauditd_printk_skb: 9 callbacks suppressed [ 89.259262][ T39] audit: type=1326 audit(1740611071.534:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8719 comm="syz.2.1061" exe="/syz-executor" sig=31 arch=c000003e syscall=317 compat=0 ip=0x7f9cd1f8d169 code=0x0 [ 89.264227][ T8721] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 89.277085][ T39] audit: type=1400 audit(1740611071.554:526): avc: denied { setopt } for pid=8722 comm="syz.0.1062" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 89.349957][ T8730] 8021q: adding VLAN 0 to HW filter on device bond14 [ 89.357997][ T8730] vlan2: entered promiscuous mode [ 89.360548][ T8730] bond14: entered promiscuous mode [ 89.366168][ T8730] bond14: left promiscuous mode [ 89.518109][ T8741] program syz.1.1070 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 89.525782][ T39] audit: type=1400 audit(1740611071.804:527): avc: denied { connect } for pid=8740 comm="syz.1.1070" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 89.533839][ T39] audit: type=1400 audit(1740611071.804:528): avc: denied { getopt } for pid=8740 comm="syz.1.1070" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 89.687542][ T8749] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1073'. [ 89.692741][ T8749] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1073'. [ 89.708498][ T8751] mac80211_hwsim hwsim8 wlan1: left allmulticast mode [ 89.712016][ T8751] mac80211_hwsim hwsim8 wlan1: entered allmulticast mode [ 89.716796][ T8751] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 89.798204][ T8759] netlink: 124 bytes leftover after parsing attributes in process `syz.0.1078'. [ 89.801296][ T8759] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1078'. [ 90.071479][ T39] audit: type=1400 audit(1740611072.354:529): avc: denied { read } for pid=8781 comm="syz.1.1085" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 90.080580][ T39] audit: type=1400 audit(1740611072.354:530): avc: denied { open } for pid=8781 comm="syz.1.1085" path="/dev/autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 90.090849][ T39] audit: type=1400 audit(1740611072.354:531): avc: denied { ioctl } for pid=8781 comm="syz.1.1085" path="/dev/autofs" dev="devtmpfs" ino=104 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 90.186716][ T39] audit: type=1400 audit(1740611072.464:532): avc: denied { create } for pid=8796 comm="syz.2.1093" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 90.203635][ T39] audit: type=1400 audit(1740611072.464:533): avc: denied { getopt } for pid=8796 comm="syz.2.1093" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 90.214982][ T39] audit: type=1400 audit(1740611072.494:534): avc: denied { create } for pid=8800 comm="syz.2.1094" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1 [ 90.341353][ T8803] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1095'. [ 90.409491][ T8822] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1101'. [ 90.419574][ T8818] vlan3: entered promiscuous mode [ 90.424851][ T8818] bond13: (slave vlan3): Opening slave failed [ 90.522163][ T8832] Failed to initialize the IGMP autojoin socket (err -2) [ 90.526423][ T8831] Failed to initialize the IGMP autojoin socket (err -2) [ 90.529581][ T8840] FAULT_INJECTION: forcing a failure. [ 90.529581][ T8840] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 90.536038][ T8840] CPU: 2 UID: 0 PID: 8840 Comm: syz.2.1106 Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0 [ 90.536059][ T8840] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 90.536068][ T8840] Call Trace: [ 90.536072][ T8840] [ 90.536076][ T8840] dump_stack_lvl+0x16c/0x1f0 [ 90.536093][ T8840] should_fail_ex+0x50a/0x650 [ 90.536136][ T8840] _copy_to_iter+0x2a1/0x1560 [ 90.536150][ T8840] ? trace_lock_acquire+0x14e/0x1f0 [ 90.536164][ T8840] ? __pfx__copy_to_iter+0x10/0x10 [ 90.536173][ T8840] ? __virt_addr_valid+0x1a4/0x590 [ 90.536186][ T8840] ? __virt_addr_valid+0x5e/0x590 [ 90.536198][ T8840] ? __phys_addr_symbol+0x30/0x80 [ 90.536208][ T8840] ? __check_object_size+0x488/0x710 [ 90.536222][ T8840] hash_recvmsg+0x3bc/0x8d0 [ 90.536240][ T8840] sock_recvmsg+0x1f6/0x250 [ 90.536252][ T8840] __sys_recvfrom+0x204/0x310 [ 90.536266][ T8840] ? __pfx___sys_recvfrom+0x10/0x10 [ 90.536278][ T8840] ? reacquire_held_locks+0x20b/0x4c0 [ 90.536292][ T8840] ? do_user_addr_fault+0xdc7/0x13f0 [ 90.536316][ T8840] ? xfd_validate_state+0x5d/0x180 [ 90.536331][ T8840] ? rcu_is_watching+0x12/0xc0 [ 90.536344][ T8840] __x64_sys_recvfrom+0xe0/0x1c0 [ 90.536357][ T8840] ? do_syscall_64+0x91/0x250 [ 90.536369][ T8840] ? lockdep_hardirqs_on+0x7c/0x110 [ 90.536381][ T8840] do_syscall_64+0xcd/0x250 [ 90.536394][ T8840] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 90.536408][ T8840] RIP: 0033:0x7f9cd1f8ef34 [ 90.536418][ T8840] Code: 89 4c 24 1c e8 ed 5f 02 00 44 8b 54 24 1c 8b 3c 24 45 31 c9 89 c5 48 8b 54 24 10 48 8b 74 24 08 45 31 c0 b8 2d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 04 24 e8 39 60 02 00 48 8b 04 [ 90.536428][ T8840] RSP: 002b:00007f9cd2d8ced0 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 90.536438][ T8840] RAX: ffffffffffffffda RBX: 00007f9cd2d8cfc0 RCX: 00007f9cd1f8ef34 [ 90.536444][ T8840] RDX: 0000000000001000 RSI: 00007f9cd2d8d010 RDI: 0000000000000004 [ 90.536450][ T8840] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 90.536456][ T8840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 90.536461][ T8840] R13: 00007f9cd2d8cf68 R14: 00007f9cd2d8d010 R15: 0000000000000000 [ 90.536473][ T8840] [ 90.548037][ T8842] validate_nla: 4 callbacks suppressed [ 90.548052][ T8842] netlink: 'syz.0.1107': attribute type 7 has an invalid length. [ 90.580404][ T8845] netlink: 'syz.2.1108': attribute type 1 has an invalid length. [ 90.663786][ T8852] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1110'. [ 90.666532][ T8852] IPVS: Unknown mcast interface: vcan0 [ 90.670507][ T8854] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1110'. [ 90.681005][ T8854] IPVS: Unknown mcast interface: vcan0 [ 90.778149][ T8867] netlink: 'syz.1.1116': attribute type 10 has an invalid length. [ 90.801618][ T8870] netlink: 'syz.3.1117': attribute type 1 has an invalid length. [ 90.820526][ T8863] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1114'. [ 90.824382][ T8863] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1114'. [ 90.843779][ T8863] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1114'. [ 90.846463][ T8863] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1114'. [ 90.850298][ T8876] lo: entered allmulticast mode [ 90.857179][ T8876] tunl0: entered allmulticast mode [ 90.862378][ T8876] gre0: entered allmulticast mode [ 90.876172][ T8876] gretap0: entered allmulticast mode [ 90.879505][ T8882] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1121'. [ 90.885633][ T8876] erspan0: entered allmulticast mode [ 90.888586][ T8876] ip_vti0: entered allmulticast mode [ 90.894397][ T8863] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1114'. [ 90.897019][ T8863] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1114'. [ 90.900206][ T8876] ip6_vti0: entered allmulticast mode [ 90.905811][ T8876] sit0: entered allmulticast mode [ 90.917465][ T8876] ip6tnl0: entered allmulticast mode [ 90.922219][ T8876] ip6gre0: entered allmulticast mode [ 90.931088][ T8876] syz_tun: entered allmulticast mode [ 90.937809][ T8876] ip6gretap0: entered allmulticast mode [ 90.945618][ T8876] bridge0: port 2(bridge_slave_1) entered disabled state [ 90.947872][ T8876] bridge0: port 1(bridge_slave_0) entered disabled state [ 90.950287][ T8876] bridge0: entered allmulticast mode [ 90.956067][ T8876] vcan0: entered allmulticast mode [ 90.963157][ T8876] bond0: entered allmulticast mode [ 90.965097][ T8876] bond_slave_0: entered allmulticast mode [ 90.966918][ T8876] bond_slave_1: entered allmulticast mode [ 90.968634][ T8876] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode [ 90.977896][ T8876] team0: entered allmulticast mode [ 90.979438][ T8876] team_slave_0: entered allmulticast mode [ 90.981479][ T8876] team_slave_1: entered allmulticast mode [ 90.986235][ T8876] dummy0: entered allmulticast mode [ 90.989109][ T8876] nlmon0: entered allmulticast mode [ 90.991774][ T8876] caif0: entered allmulticast mode [ 90.995440][ T8876] batadv0: entered allmulticast mode [ 91.001063][ T8876] vxcan0: entered allmulticast mode [ 91.004270][ T8876] vxcan1: entered allmulticast mode [ 91.008421][ T8876] veth0: entered allmulticast mode [ 91.013811][ T8876] veth1: entered allmulticast mode [ 91.023375][ T8876] wg0: entered allmulticast mode [ 91.029189][ T8876] wg1: entered allmulticast mode [ 91.037900][ T8876] wg2: entered allmulticast mode [ 91.046868][ T8876] veth0_to_bridge: entered allmulticast mode [ 91.065654][ T8876] veth1_to_bridge: entered allmulticast mode [ 91.072250][ T8876] veth0_to_bond: entered allmulticast mode [ 91.083419][ T8876] veth1_to_bond: entered allmulticast mode [ 91.088986][ T8876] veth0_to_team: entered allmulticast mode [ 91.103388][ T8876] veth1_to_team: entered allmulticast mode [ 91.113555][ T8876] veth0_to_batadv: entered allmulticast mode [ 91.122312][ T8876] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 91.126312][ T8876] batadv_slave_0: entered allmulticast mode [ 91.134666][ T8876] veth1_to_batadv: entered allmulticast mode [ 91.140535][ T8876] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 91.145313][ T8876] batadv_slave_1: entered allmulticast mode [ 91.150976][ T8876] xfrm0: entered allmulticast mode [ 91.156306][ T8876] veth0_to_hsr: entered allmulticast mode [ 91.162218][ T8876] hsr_slave_0: entered allmulticast mode [ 91.169297][ T8876] veth1_to_hsr: entered allmulticast mode [ 91.172960][ T8876] hsr_slave_1: entered allmulticast mode [ 91.181277][ T8876] hsr0: entered allmulticast mode [ 91.186413][ T8876] veth1_virt_wifi: entered allmulticast mode [ 91.191436][ T8876] veth0_virt_wifi: entered allmulticast mode [ 91.197293][ T8876] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 91.202208][ T8876] veth1_vlan: entered allmulticast mode [ 91.210090][ T8876] veth0_vlan: entered allmulticast mode [ 91.217329][ T8876] vlan1: entered allmulticast mode [ 91.222739][ T8876] macvlan0: entered allmulticast mode [ 91.228946][ T8876] macvlan1: entered allmulticast mode [ 91.235940][ T8876] ipvlan0: entered allmulticast mode [ 91.237854][ T8876] ipvlan1: entered allmulticast mode [ 91.241061][ T8876] veth1_macvtap: entered allmulticast mode [ 91.245292][ T8876] veth0_macvtap: entered allmulticast mode [ 91.252652][ T8876] macvtap0: entered allmulticast mode [ 91.258721][ T8876] macsec0: entered allmulticast mode [ 91.264296][ T8876] geneve0: entered allmulticast mode [ 91.272399][ T8876] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.275461][ T8876] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.278337][ T8876] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.281804][ T8876] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.284992][ T8876] geneve1: entered allmulticast mode [ 91.290093][ T8876] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 91.296253][ T8876] netdevsim netdevsim3 netdevsim1: entered allmulticast mode [ 91.301570][ T8876] netdevsim netdevsim3 netdevsim2: entered allmulticast mode [ 91.308999][ T8876] netdevsim netdevsim3 netdevsim3: entered allmulticast mode [ 91.321666][ T8876] mac80211_hwsim hwsim4 wlan0: entered allmulticast mode [ 91.328554][ T8876] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 91.331372][ T8876] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 91.334141][ T8876] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 91.336780][ T8876] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 91.340123][ T8876] vxlan0: left promiscuous mode [ 91.341934][ T8876] vxlan0: entered allmulticast mode [ 91.347321][ T8876] veth2: entered allmulticast mode [ 91.349153][ T8876] veth3: entered allmulticast mode [ 91.351427][ T8876] syztnl0: entered allmulticast mode [ 91.353172][ T8876] macvlan2: entered allmulticast mode [ 91.360047][ T8876] mac80211_hwsim hwsim5 syzkaller0: entered allmulticast mode [ 91.365025][ T8876] bond1: entered allmulticast mode [ 91.366658][ T8876] ip6gretap1: entered allmulticast mode [ 91.371079][ T8876] bond2: entered allmulticast mode [ 91.374100][ T8876] bond3: entered allmulticast mode [ 91.375652][ T8876] bond4: entered allmulticast mode [ 91.377258][ T8876] bond5: entered allmulticast mode [ 91.407375][ T8907] netlink: 'syz.0.1129': attribute type 10 has an invalid length. [ 91.438903][ T8911] netlink: 'syz.1.1131': attribute type 12 has an invalid length. [ 91.462562][ T8915] netlink: 'syz.3.1133': attribute type 1 has an invalid length. [ 91.579021][ T8932] netlink: 'syz.3.1141': attribute type 10 has an invalid length. [ 91.639774][ T8941] can0: slcan on ptm0. [ 91.726021][ T8947] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1147'. [ 91.729262][ T8947] netlink: 'syz.3.1147': attribute type 7 has an invalid length. [ 91.734797][ T8947] netlink: 'syz.3.1147': attribute type 8 has an invalid length. [ 91.738064][ T8947] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1147'. [ 91.744819][ T8947] bond0: entered promiscuous mode [ 91.746922][ T8947] bond_slave_0: entered promiscuous mode [ 91.749352][ T8947] bond_slave_1: entered promiscuous mode [ 91.752033][ T8940] can0 (unregistered): slcan off ptm0. [ 91.752127][ T8947] mac80211_hwsim hwsim5 wlan1: entered promiscuous mode [ 91.758151][ T8947] bond0: left promiscuous mode [ 91.760193][ T8947] bond_slave_0: left promiscuous mode [ 91.762889][ T8947] bond_slave_1: left promiscuous mode [ 91.765249][ T8947] mac80211_hwsim hwsim5 wlan1: left promiscuous mode [ 91.850086][ T8945] kvm: kvm [8944]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000 [ 91.862649][ T8962] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1152'. [ 91.891093][ T8945] kvm: kvm [8944]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 91.918538][ T8945] kvm: kvm [8944]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x187) = 0x4000 [ 91.933008][ T8945] kvm: kvm [8944]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x11e) = 0xbe706111 [ 92.533294][ T9004] sp0: Synchronizing with TNC [ 92.539325][ T9004] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=5132 sclass=netlink_tcpdiag_socket pid=9004 comm=syz.1.1169 [ 92.555078][ T9003] [U] ` [ 92.660870][ T6704] usb 8-1: new full-speed USB device number 4 using dummy_hcd [ 92.821278][ T6704] usb 8-1: too many configurations: 64, using maximum allowed: 8 [ 92.825239][ T6704] usb 8-1: unable to read config index 0 descriptor/start: -61 [ 92.827534][ T6704] usb 8-1: can't read configurations, error -61 [ 92.960927][ T6704] usb 8-1: new full-speed USB device number 5 using dummy_hcd [ 93.040649][ T9025] kvm: kvm [9024]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x897 [ 93.065686][ T9045] cgroup: Invalid name [ 93.080118][ T9042] 8021q: adding VLAN 0 to HW filter on device bond7 [ 93.089288][ T9025] kvm: kvm [9024]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x8f4 [ 93.091444][ T9042] vlan3: entered promiscuous mode [ 93.094654][ T9042] bond7: entered promiscuous mode [ 93.101005][ T9042] bond7: left promiscuous mode [ 93.108927][ T9047] mmap: syz.0.1185 (9047) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 93.132152][ T6704] usb 8-1: too many configurations: 64, using maximum allowed: 8 [ 93.136156][ T6704] usb 8-1: unable to read config index 0 descriptor/start: -61 [ 93.138308][ T6704] usb 8-1: can't read configurations, error -61 [ 93.143482][ T6704] usb usb8-port1: attempt power cycle [ 93.168680][ T9025] kvm_intel: kvm [9024]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x1e [ 93.409608][ T9070] team0: Device ipip0 is of different type [ 93.480370][ T9073] netdevsim netdevsim0 netdevsim0: left allmulticast mode [ 93.486613][ T9073] team0: Port device netdevsim0 removed [ 93.489560][ T9073] netdevsim netdevsim0 netdevsim0: entered allmulticast mode [ 93.490961][ T6704] usb 8-1: new full-speed USB device number 6 using dummy_hcd [ 93.492149][ T9073] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 93.522009][ T6704] usb 8-1: too many configurations: 64, using maximum allowed: 8 [ 93.526390][ T6704] usb 8-1: unable to read config index 0 descriptor/start: -61 [ 93.528630][ T6704] usb 8-1: can't read configurations, error -61 [ 93.586383][ T9081] batadv_slave_1: entered promiscuous mode [ 93.670950][ T6704] usb 8-1: new full-speed USB device number 7 using dummy_hcd [ 93.702458][ T6704] usb 8-1: too many configurations: 64, using maximum allowed: 8 [ 93.707097][ T6704] usb 8-1: unable to read config index 0 descriptor/start: -61 [ 93.709357][ T6704] usb 8-1: can't read configurations, error -61 [ 93.711432][ T6704] usb usb8-port1: unable to enumerate USB device [ 93.741072][ T9085] CIFS: Unable to determine destination address [ 94.357311][ T39] kauditd_printk_skb: 17 callbacks suppressed [ 94.357322][ T39] audit: type=1400 audit(1740611076.634:552): avc: denied { create } for pid=9107 comm="syz.2.1211" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 94.364933][ T39] audit: type=1400 audit(1740611076.634:553): avc: denied { ioctl } for pid=9107 comm="syz.2.1211" path="socket:[29000]" dev="sockfs" ino=29000 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 94.517355][ T39] audit: type=1400 audit(1740611076.794:554): avc: denied { watch } for pid=9119 comm="syz.1.1214" path="pipe:[31929]" dev="pipefs" ino=31929 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 94.520385][ T9120] SELinux: Context system_u:object_r:lib_t:s0 is not valid (left unmapped). [ 94.528432][ T39] audit: type=1400 audit(1740611076.794:555): avc: denied { relabelfrom } for pid=9119 comm="syz.1.1214" name="" dev="pipefs" ino=31930 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 94.537240][ T39] audit: type=1400 audit(1740611076.814:556): avc: denied { relabelto } for pid=9119 comm="syz.1.1214" name="" dev="pipefs" ino=31930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=fifo_file permissive=1 trawcon="system_u:object_r:lib_t:s0" [ 94.666779][ T9136] capability: warning: `syz.2.1221' uses deprecated v2 capabilities in a way that may be insecure [ 94.671716][ T9136] 9pnet_fd: p9_fd_create_tcp (9136): problem creating socket [ 95.086118][ T9166] batadv_slave_1: entered promiscuous mode [ 95.092466][ T9165] batadv_slave_1: left promiscuous mode [ 95.225837][ T9175] vxlan0: entered promiscuous mode [ 95.702683][ T39] audit: type=1400 audit(1740611077.984:557): avc: denied { mounton } for pid=9196 comm="syz.3.1246" path="/syzcgroup/unified/syz3" dev="cgroup2" ino=67 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1 [ 95.829609][ T39] audit: type=1400 audit(1740611078.104:558): avc: denied { setopt } for pid=9207 comm="syz.2.1251" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 95.835401][ T39] audit: type=1400 audit(1740611078.104:559): avc: denied { connect } for pid=9207 comm="syz.2.1251" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 96.070158][ T9222] 8021q: adding VLAN 0 to HW filter on device bond16 [ 96.090853][ T6704] usb 6-1: new full-speed USB device number 3 using dummy_hcd [ 96.243198][ T6704] usb 6-1: not running at top speed; connect to a high speed hub [ 96.246791][ T6704] usb 6-1: config 5 has an invalid interface number: 74 but max is 1 [ 96.249022][ T6704] usb 6-1: config 5 has an invalid descriptor of length 0, skipping remainder of the config [ 96.254014][ T6704] usb 6-1: config 5 has 1 interface, different from the descriptor's value: 2 [ 96.256956][ T6704] usb 6-1: config 5 has no interface number 0 [ 96.259006][ T6704] usb 6-1: config 5 interface 74 altsetting 5 endpoint 0xA has invalid maxpacket 1024, setting to 64 [ 96.263568][ T6704] usb 6-1: config 5 interface 74 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 96.267899][ T6704] usb 6-1: config 5 interface 74 has no altsetting 0 [ 96.272603][ T6704] usb 6-1: New USB device found, idVendor=2100, idProduct=9e62, bcdDevice=10.58 [ 96.275740][ T6704] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 96.278260][ T6704] usb 6-1: Product: 嚰ཻⳣ뼁뢾砫띰㺏⳵Ӌﷰ㍜뺳﹥닄걫✲輹餩큁傪⩮坅륬湉⑝ₙ駸얧磥꒍皂菇峂ᔔ恃仧낔锂觇尝켵ⲿ⺄瀇呩᭸ꭖ柾䅃閸Җ矧쒰f筿툩毻❇ལ虪돕瓬橞䨬㮽퐤뱮얳몘㏒꾏匝謰辚駏蠸猰ࣩ嗗ᳰ桖蔵ꅻ冯妁Ꟃ킍挭빨ಮ੅魌৑酃≇豆ˠ넭橎Ꝿᢻࣧൖ괁ᗩ筲ⴚꡔ [ 96.288720][ T6704] usb 6-1: Manufacturer: ␉ [ 96.290073][ T6704] usb 6-1: SerialNumber: syz [ 96.376090][ T39] audit: type=1400 audit(1740611078.654:560): avc: denied { ioctl } for pid=9243 comm="syz.2.1264" path="socket:[30577]" dev="sockfs" ino=30577 ioctlcmd=0x9439 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 96.500529][ T39] audit: type=1400 audit(1740611078.774:561): avc: denied { getopt } for pid=9252 comm="syz.0.1268" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 96.508151][ T6704] ftdi_sio 6-1:5.74: FTDI USB Serial Device converter detected [ 96.511747][ T6704] ftdi_sio ttyUSB0: unknown device type: 0x1058 [ 96.708552][ T35] usb 6-1: USB disconnect, device number 3 [ 96.711786][ T35] ftdi_sio 6-1:5.74: device disconnected [ 96.788781][ T9262] __nla_validate_parse: 14 callbacks suppressed [ 96.788794][ T9262] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1271'. [ 96.847520][ T9271] program syz.3.1274 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 96.910947][ T9277] 8021q: adding VLAN 0 to HW filter on device bond6 [ 97.650746][ T5979] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 97.655329][ T9325] sock: sock_timestamping_bind_phc: sock not bind to device [ 97.659533][ T9325] tipc: Failed to remove unknown binding: 66,1,1/10398378:2378811178/2378811180 [ 97.662515][ T9325] tipc: Failed to remove unknown binding: 66,1,1/10398378:2378811178/2378811180 [ 97.712247][ T9329] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1295'. [ 97.812317][ T5979] usb 6-1: Using ep0 maxpacket: 32 [ 97.815105][ T5979] usb 6-1: config 0 has an invalid interface number: 51 but max is 0 [ 97.817407][ T5979] usb 6-1: config 0 has no interface number 0 [ 97.820791][ T5979] usb 6-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 97.823460][ T5979] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 97.825932][ T5979] usb 6-1: Product: syz [ 97.827206][ T5979] usb 6-1: Manufacturer: syz [ 97.828646][ T5979] usb 6-1: SerialNumber: syz [ 97.833494][ T5979] usb 6-1: config 0 descriptor?? [ 97.837581][ T5979] quatech2 6-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 97.881412][ T9341] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1300'. [ 97.975271][ T9347] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1303'. [ 98.157565][ T5979] usb 6-1: qt2_attach - failed to power on unit: -71 [ 98.159711][ T5979] quatech2 6-1:0.51: probe with driver quatech2 failed with error -71 [ 98.163515][ T5979] usb 6-1: USB disconnect, device number 4 [ 98.238076][ T9375] delete_channel: no stack [ 98.332857][ T5302] Bluetooth: hci2: ACL packet for unknown connection handle 201 [ 98.350387][ T9382] net_ratelimit: 1 callbacks suppressed [ 98.350398][ T9382] openvswitch: netlink: IP tunnel TTL not specified. [ 98.714076][ T9412] bond2: entered allmulticast mode [ 98.721408][ T9412] bond3: entered allmulticast mode [ 98.723677][ T9412] ip6gretap1: entered allmulticast mode [ 98.732913][ T9412] bond4: entered allmulticast mode [ 98.736160][ T9412] bond5: entered allmulticast mode [ 98.748023][ T9412] bond6: entered allmulticast mode [ 98.750919][ T9412] bond7: entered allmulticast mode [ 98.762590][ T9412] bond8: entered allmulticast mode [ 98.765501][ T9412] bond9: entered allmulticast mode [ 98.767916][ T9412] sit1: entered allmulticast mode [ 98.770228][ T9412] bond10: entered allmulticast mode [ 98.773259][ T9412] bond11: entered allmulticast mode [ 98.775591][ T9412] bond12: entered allmulticast mode [ 98.779563][ T9412] bond13: entered allmulticast mode [ 98.784113][ T9412] bond14: entered allmulticast mode [ 98.786863][ T9412] bond15: entered allmulticast mode [ 98.791626][ T9412] bridge1: entered allmulticast mode [ 98.799846][ T9412] bond16: entered allmulticast mode [ 98.802599][ T9412] bond17: entered allmulticast mode [ 99.002618][ T9430] validate_nla: 2 callbacks suppressed [ 99.002630][ T9430] netlink: 'syz.0.1337': attribute type 1 has an invalid length. [ 99.013007][ T9431] lo: entered allmulticast mode [ 99.018947][ T9431] tunl0: entered allmulticast mode [ 99.023355][ T9431] gre0: entered allmulticast mode [ 99.035710][ T9431] gretap0: entered allmulticast mode [ 99.043370][ T9431] erspan0: entered allmulticast mode [ 99.047733][ T9431] ip_vti0: entered allmulticast mode [ 99.051268][ T9431] ip6_vti0: entered allmulticast mode [ 99.053878][ T9431] sit0: entered allmulticast mode [ 99.056770][ T9431] ip6tnl0: entered allmulticast mode [ 99.059261][ T9431] ip6gre0: entered allmulticast mode [ 99.075523][ T9431] syz_tun: entered allmulticast mode [ 99.083692][ T9431] ip6gretap0: entered allmulticast mode [ 99.088264][ T9431] bridge0: entered allmulticast mode [ 99.093491][ T9431] vcan0: entered allmulticast mode [ 99.102896][ T9431] tipc: Resetting bearer [ 99.104760][ T9431] team0: entered allmulticast mode [ 99.106187][ T9431] vlan0: entered allmulticast mode [ 99.107590][ T9431] veth0_vlan: entered allmulticast mode [ 99.111368][ T9431] dummy0: entered allmulticast mode [ 99.117591][ T9431] nlmon0: entered allmulticast mode [ 99.123380][ T9431] caif0: entered allmulticast mode [ 99.125278][ T9431] batadv0: entered allmulticast mode [ 99.131764][ T9431] veth0: entered allmulticast mode [ 99.136798][ T9431] veth1: entered allmulticast mode [ 99.141472][ T9431] wg0: entered allmulticast mode [ 99.146050][ T9431] wg1: entered allmulticast mode [ 99.150740][ T9431] wg2: entered allmulticast mode [ 99.155973][ T9431] veth0_to_bridge: entered allmulticast mode [ 99.161231][ T9431] bridge_slave_0: entered allmulticast mode [ 99.165008][ T9431] veth1_to_bridge: entered allmulticast mode [ 99.167817][ T9431] bridge_slave_1: entered allmulticast mode [ 99.170884][ T9431] veth0_to_bond: entered allmulticast mode [ 99.173473][ T9431] bond_slave_0: entered allmulticast mode [ 99.176131][ T9431] veth1_to_bond: entered allmulticast mode [ 99.179030][ T9431] bond_slave_1: entered allmulticast mode [ 99.182838][ T9431] veth0_to_team: entered allmulticast mode [ 99.187812][ T9431] team_slave_0: entered allmulticast mode [ 99.190779][ T9431] veth1_to_team: entered allmulticast mode [ 99.196060][ T9431] team_slave_1: entered allmulticast mode [ 99.199043][ T9431] veth0_to_batadv: entered allmulticast mode [ 99.206350][ T9431] batadv_slave_0: entered allmulticast mode [ 99.213099][ T9431] veth1_to_batadv: entered allmulticast mode [ 99.217562][ T9431] batadv_slave_1: left promiscuous mode [ 99.219151][ T9431] batadv_slave_1: entered allmulticast mode [ 99.222212][ T9431] xfrm0: entered allmulticast mode [ 99.228291][ T9431] veth0_to_hsr: entered allmulticast mode [ 99.232905][ T9431] hsr_slave_0: entered allmulticast mode [ 99.238954][ T9431] veth1_to_hsr: entered allmulticast mode [ 99.243938][ T9431] hsr_slave_1: entered allmulticast mode [ 99.246881][ T9431] hsr0: entered allmulticast mode [ 99.257002][ T9431] veth1_virt_wifi: entered allmulticast mode [ 99.262478][ T9431] veth0_virt_wifi: entered allmulticast mode [ 99.265892][ T9431] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 99.294955][ T9431] vlan0: left promiscuous mode [ 99.296409][ T9431] vlan1: entered allmulticast mode [ 99.300137][ T9431] macvlan1: entered allmulticast mode [ 99.302987][ T9431] ipvlan0: entered allmulticast mode [ 99.304614][ T9431] ipvlan1: entered allmulticast mode [ 99.307340][ T9431] veth1_macvtap: entered allmulticast mode [ 99.310178][ T9431] veth0_macvtap: entered allmulticast mode [ 99.323415][ T9431] macvtap0: entered allmulticast mode [ 99.326038][ T9431] macsec0: entered allmulticast mode [ 99.332924][ T9431] geneve0: entered allmulticast mode [ 99.338712][ T9431] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.343942][ T9431] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.346515][ T9431] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.348994][ T9431] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.351956][ T9431] geneve1: entered allmulticast mode [ 99.356644][ T9431] netdevsim netdevsim1 netdevsim0: entered allmulticast mode [ 99.361628][ T9431] netdevsim netdevsim1 netdevsim1: entered allmulticast mode [ 99.368516][ T9431] netdevsim netdevsim1 netdevsim2: entered allmulticast mode [ 99.374315][ T9431] netdevsim netdevsim1 netdevsim3: entered allmulticast mode [ 99.386372][ T9431] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode [ 99.391452][ T9431] gre1: entered allmulticast mode [ 99.411870][ T9431] mac80211_hwsim hwsim3 syzkaller0: entered allmulticast mode [ 99.422452][ T9431] bond1: entered allmulticast mode [ 99.425597][ T9431] ip6gretap1: entered allmulticast mode [ 99.435052][ T9431] bond2: entered allmulticast mode [ 99.437775][ T9431] bond3: entered allmulticast mode [ 99.439456][ T9431] bond4: entered allmulticast mode [ 99.441359][ T9431] bond5: entered allmulticast mode [ 99.443474][ T9431] bond6: entered allmulticast mode [ 99.445753][ T9431] bond7: entered allmulticast mode [ 99.449185][ T9435] 8021q: adding VLAN 0 to HW filter on device bond18 [ 99.453100][ T9436] lo: entered allmulticast mode [ 99.455899][ T9436] tunl0: entered allmulticast mode [ 99.458277][ T9436] gre0: entered allmulticast mode [ 99.480418][ T9436] gretap0: entered allmulticast mode [ 99.493944][ T9436] erspan0: entered allmulticast mode [ 99.498526][ T9436] ip_vti0: entered allmulticast mode [ 99.506855][ T9436] ip6_vti0: entered allmulticast mode [ 99.510587][ T9436] sit0: entered allmulticast mode [ 99.524353][ T9436] ip6tnl0: entered allmulticast mode [ 99.533488][ T9436] ip6gre0: entered allmulticast mode [ 99.553263][ T9436] bridge0: port 1(syz_tun) entered disabled state [ 99.556884][ T9436] ip6gretap0: entered allmulticast mode [ 99.567231][ T9436] bridge0: entered allmulticast mode [ 99.571666][ T9436] vcan0: entered allmulticast mode [ 99.577685][ T9436] bond0: entered allmulticast mode [ 99.579601][ T9436] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode [ 99.587753][ T9436] team0: entered allmulticast mode [ 99.593697][ T9436] batman_adv: batadv0: Interface deactivated: dummy0 [ 99.596888][ T9436] dummy0: entered allmulticast mode [ 99.603607][ T9436] nlmon0: entered allmulticast mode [ 99.607733][ T9436] caif0: entered allmulticast mode [ 99.611383][ T9436] batadv0: entered allmulticast mode [ 99.615813][ T9436] vxcan0: entered allmulticast mode [ 99.618120][ T9436] vxcan1: entered allmulticast mode [ 99.626266][ T9436] veth0: entered allmulticast mode [ 99.633930][ T9436] veth1: left promiscuous mode [ 99.635447][ T9436] veth1: entered allmulticast mode [ 99.643252][ T9436] wg0: entered allmulticast mode [ 99.650153][ T9436] wg1: entered allmulticast mode [ 99.658303][ T9436] wg2: entered allmulticast mode [ 99.664757][ T9436] veth0_to_bridge: entered allmulticast mode [ 99.668835][ T9436] bridge_slave_0: entered allmulticast mode [ 99.681764][ T9436] veth1_to_bridge: entered allmulticast mode [ 99.689198][ T9436] bridge_slave_1: entered allmulticast mode [ 99.706878][ T9436] veth0_to_bond: entered allmulticast mode [ 99.710769][ T9436] bond_slave_0: entered allmulticast mode [ 99.714455][ T9436] veth1_to_bond: entered allmulticast mode [ 99.719301][ T9453] kvm: kvm [9452]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x14 [ 99.719508][ T9436] bond_slave_1: entered allmulticast mode [ 99.724244][ T9436] veth0_to_team: entered allmulticast mode [ 99.729227][ T9436] team_slave_0: entered allmulticast mode [ 99.731734][ T9436] veth1_to_team: entered allmulticast mode [ 99.736099][ T9436] team_slave_1: entered allmulticast mode [ 99.739286][ T9436] veth0_to_batadv: entered allmulticast mode [ 99.747425][ T9436] batadv_slave_0: entered allmulticast mode [ 99.754609][ T9436] veth1_to_batadv: entered allmulticast mode [ 99.762448][ T9436] batadv_slave_1: entered allmulticast mode [ 99.766655][ T9436] xfrm0: entered allmulticast mode [ 99.772340][ T9436] veth0_to_hsr: entered allmulticast mode [ 99.775970][ T9436] hsr_slave_0: entered allmulticast mode [ 99.778830][ T9436] veth1_to_hsr: entered allmulticast mode [ 99.783375][ T9436] hsr_slave_1: entered allmulticast mode [ 99.786275][ T9436] hsr0: entered allmulticast mode [ 99.790862][ T9436] veth1_virt_wifi: entered allmulticast mode [ 99.796199][ T9436] veth0_virt_wifi: entered allmulticast mode [ 99.806460][ T9436] veth1_vlan: entered allmulticast mode [ 99.822959][ T9436] vlan0: entered allmulticast mode [ 99.828160][ T9436] vlan1: entered allmulticast mode [ 99.831055][ T9436] macvlan0: entered allmulticast mode [ 99.837252][ T9436] macvlan1: entered allmulticast mode [ 99.842346][ T9436] ipvlan0: entered allmulticast mode [ 99.844210][ T9436] ipvlan1: entered allmulticast mode [ 99.847117][ T9436] veth1_macvtap: entered allmulticast mode [ 99.849800][ T9436] veth0_macvtap: entered allmulticast mode [ 99.858415][ T9436] macvtap0: entered allmulticast mode [ 99.865373][ T9436] macsec0: entered allmulticast mode [ 99.871574][ T9436] geneve0: entered allmulticast mode [ 99.876464][ T9436] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.880974][ T9436] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.884295][ T9436] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.886843][ T9436] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.889622][ T9436] geneve1: entered allmulticast mode [ 99.896557][ T9436] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 99.901942][ T9436] netdevsim netdevsim2 netdevsim1: entered allmulticast mode [ 99.907016][ T9436] netdevsim netdevsim2 netdevsim2: entered allmulticast mode [ 99.920899][ T9436] netdevsim netdevsim2 netdevsim3: entered allmulticast mode [ 99.930320][ T9436] mac80211_hwsim hwsim6 wlan0: entered allmulticast mode [ 99.938464][ T9436] bond1: entered allmulticast mode [ 99.942840][ T9436] bond3: entered allmulticast mode [ 99.951536][ T9436] bond4: left promiscuous mode [ 99.953007][ T9436] ip6gretap1: left promiscuous mode [ 99.957341][ T9436] vlan2: left promiscuous mode [ 99.960149][ T9436] mac80211_hwsim hwsim9 syzkaller0: entered allmulticast mode [ 99.962534][ T9436] bond5: entered allmulticast mode [ 99.964264][ T9436] ip6gretap2: entered allmulticast mode [ 99.968383][ T9436] bond6: entered allmulticast mode [ 99.970293][ T9436] veth2: entered allmulticast mode [ 99.974150][ T9436] veth3: entered allmulticast mode [ 99.977530][ T9436] ipvlan2: left promiscuous mode [ 99.979034][ T9436] ipvlan2: entered allmulticast mode [ 99.982595][ T9436] bond7: entered allmulticast mode [ 99.984548][ T9436] bond8: entered allmulticast mode [ 99.986978][ T9436] bond9: entered allmulticast mode [ 99.988624][ T9436] bond10: entered allmulticast mode [ 99.990235][ T9436] bond11: entered allmulticast mode [ 99.995665][ T9436] bond12: entered allmulticast mode [ 99.999409][ T9436] bond13: entered allmulticast mode [ 100.001102][ T9436] bond14: entered allmulticast mode [ 100.002650][ T9436] bond15: entered allmulticast mode [ 100.006395][ T9437] vlan0: entered promiscuous mode [ 100.008473][ T9437] bond18: entered promiscuous mode [ 100.013565][ T9437] bond18: left promiscuous mode [ 100.106863][ T39] kauditd_printk_skb: 6 callbacks suppressed [ 100.106873][ T39] audit: type=1400 audit(1740611082.384:568): avc: denied { listen } for pid=9461 comm="syz.2.1345" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 100.125047][ T39] audit: type=1400 audit(1740611082.394:569): avc: denied { write } for pid=9461 comm="syz.2.1345" name="rt6_stats" dev="proc" ino=4026532992 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1 [ 100.611908][ T9479] kvm: kvm [9478]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0xb46d [ 100.644183][ T9479] kvm: kvm [9478]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0xa2d5 [ 100.657785][ T9479] kvm: kvm [9478]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x6385 [ 100.665883][ T9487] syz.1.1353 (9487): /proc/9486/oom_adj is deprecated, please use /proc/9486/oom_score_adj instead. [ 100.670356][ T39] audit: type=1400 audit(1740611082.944:570): avc: denied { setattr } for pid=9489 comm="syz.3.1354" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 100.670362][ T9479] kvm: kvm [9478]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x45e7 [ 100.674094][ T9479] kvm: kvm [9478]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x46fa [ 100.697974][ T39] audit: type=1800 audit(1740611082.974:571): pid=9492 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.3.1355" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 100.700500][ T9479] kvm_intel: kvm [9478]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0xac55 [ 100.708997][ T9479] kvm_intel: kvm [9478]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x54c1 [ 100.710483][ T9492] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1355'. [ 100.716084][ T9479] kvm: kvm [9478]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x4de4 [ 100.717220][ T9492] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9492 comm=syz.3.1355 [ 100.727801][ T9479] kvm: kvm [9478]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x7af8 [ 100.953702][ T9504] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1360'. [ 100.998252][ T39] audit: type=1400 audit(1740611083.274:572): avc: denied { create } for pid=9506 comm="syz.3.1362" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 101.007505][ T39] audit: type=1400 audit(1740611083.284:573): avc: denied { setopt } for pid=9506 comm="syz.3.1362" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 101.017399][ T39] audit: type=1400 audit(1740611083.294:574): avc: denied { bind } for pid=9506 comm="syz.3.1362" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 101.356140][ T9535] virtio-fs: tag <(null)> not found [ 101.466858][ T39] audit: type=1804 audit(1740611083.744:575): pid=9548 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.1378" name="/newroot/334/file0" dev="tmpfs" ino=1839 res=1 errno=0 [ 101.478313][ T39] audit: type=1804 audit(1740611083.744:576): pid=9548 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.2.1378" name="/newroot/334/file0" dev="tmpfs" ino=1839 res=1 errno=0 [ 101.553159][ T9557] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1383'. [ 101.603417][ T9561] SELinux: syz.3.1384 (9561) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 101.616245][ T9561] CIFS: Unable to determine destination address [ 101.812288][ T9589] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1397'. [ 101.814890][ T9589] nbd: must specify a device to reconfigure [ 101.882411][ T9599] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1400'. [ 101.939410][ T5944] libceph: mon0 (1)[c::]:6789 connect error [ 101.971103][ T9603] ceph: No mds server is up or the cluster is laggy [ 102.116264][ T9609] kvm: kvm [9608]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0xb46d [ 102.145927][ T9609] kvm: kvm [9608]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0xa2d5 [ 102.177606][ T9624] overlayfs: failed to clone upperpath [ 102.200868][ T9609] kvm_intel: kvm [9608]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0xac55 [ 102.202828][ T9624] netlink: 'syz.0.1408': attribute type 15 has an invalid length. [ 102.205255][ T9609] kvm_intel: kvm [9608]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x54c1 [ 102.205690][ T9624] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1408'. [ 102.499085][ T9646] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1416'. [ 102.788167][ T9671] unknown channel width for channel at 909000KHz? [ 102.790345][ T39] audit: type=1400 audit(1740611085.064:577): avc: denied { watch_with_perm } for pid=9670 comm="syz.3.1428" path="/278/bus" dev="tmpfs" ino=1521 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 102.825965][ T9680] syz.3.1431 uses old SIOCAX25GETINFO [ 103.337100][ T9715] random: crng reseeded on system resumption [ 103.975409][ T5944] libceph: mon0 (1)[c::]:6789 connect error [ 104.021759][ T9760] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1460'. [ 104.230545][ T9783] input: syz1 as /devices/virtual/input/input7 [ 104.242894][ T9783] tipc: Failed to remove unknown binding: 66,1,1/0:2952121798/2952121800 [ 104.245416][ T9783] tipc: Failed to remove unknown binding: 66,1,1/0:2952121798/2952121800 [ 104.248846][ T5944] libceph: mon0 (1)[c::]:6789 connect error [ 104.454622][ T9796] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 104.762066][ T5944] libceph: mon0 (1)[c::]:6789 connect error [ 104.794242][ T9754] ceph: No mds server is up or the cluster is laggy [ 104.951186][ T5302] Bluetooth: hci3: unexpected event for opcode 0x080f [ 105.030169][ T9820] netlink: 'syz.1.1483': attribute type 4 has an invalid length. [ 105.033044][ T9820] netlink: 17 bytes leftover after parsing attributes in process `syz.1.1483'. [ 105.091417][ T9824] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1485'. [ 105.384052][ T9846] Failed to initialize the IGMP autojoin socket (err -2) [ 105.386541][ T9847] openvswitch: netlink: Duplicate or invalid key (type 0). [ 105.388667][ T9847] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 105.450043][ T39] kauditd_printk_skb: 11 callbacks suppressed [ 105.450055][ T39] audit: type=1400 audit(1740611087.724:589): avc: denied { getopt } for pid=9852 comm="syz.1.1497" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 105.488553][ T9856] tipc: Can't bind to reserved service type 2 [ 105.573631][ T39] audit: type=1400 audit(1740611087.854:590): avc: denied { getopt } for pid=9870 comm="syz.0.1504" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 105.587322][ T39] audit: type=1400 audit(1740611087.864:591): avc: denied { unmount } for pid=9874 comm="syz.3.1506" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 105.711952][ T39] audit: type=1400 audit(1740611087.994:592): avc: denied { mount } for pid=9882 comm="syz.2.1509" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 105.723884][ T39] audit: type=1400 audit(1740611088.004:593): avc: denied { unmount } for pid=5943 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 105.750009][ T9892] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1511'. [ 105.770162][ T39] audit: type=1400 audit(1740611088.044:594): avc: denied { setattr } for pid=9895 comm="syz.3.1515" name="/" dev="9p" ino=36050062 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 105.921774][ T9914] overlayfs: failed to clone upperpath [ 105.969569][ T39] audit: type=1400 audit(1740611088.244:595): avc: denied { accept } for pid=9916 comm="syz.1.1523" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 106.107401][ T9924] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1526'. [ 106.215136][ T9926] kvm_pr_unimpl_wrmsr: 5 callbacks suppressed [ 106.215150][ T9926] kvm: kvm [9925]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 106.458548][ T9936] netlink: 'syz.0.1530': attribute type 10 has an invalid length. [ 106.462323][ T9936] team0: Device hsr_slave_0 failed to register rx_handler [ 106.487001][ T9936] veth1: entered promiscuous mode [ 106.489131][ T9936] veth1: left allmulticast mode [ 106.857525][ T9960] Failed to initialize the IGMP autojoin socket (err -2) [ 106.978662][ T9970] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1543'. [ 107.185735][ T9998] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1557'. [ 107.740584][T10041] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1572'. [ 107.941628][T10047] netlink: 'syz.1.1574': attribute type 10 has an invalid length. [ 107.944152][T10047] netdevsim netdevsim1 netdevsim0: left allmulticast mode [ 107.947677][T10047] netdevsim netdevsim1 netdevsim0: entered allmulticast mode [ 107.950248][T10047] team0: Port device netdevsim0 added [ 108.048662][ T39] audit: type=1400 audit(1740611090.324:596): avc: denied { setopt } for pid=10055 comm="syz.0.1575" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 108.096727][T10063] ref_ctr increment failed for inode: 0x830 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff888050b3bc00 [ 108.100309][ T39] audit: type=1804 audit(1740611090.374:597): pid=10063 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.1578" name="/newroot/379/file0" dev="tmpfs" ino=2096 res=1 errno=0 [ 108.504812][T10103] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1592'. [ 108.547921][T10108] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 108.669877][T10115] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1598'. [ 108.728176][T10125] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1602'. [ 108.877321][ T39] audit: type=1400 audit(1740611091.154:598): avc: denied { shutdown } for pid=10139 comm="syz.3.1608" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 108.954734][T10151] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1612'. [ 108.988331][T10154] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1613'. [ 109.060817][ T6704] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 109.190838][ T6704] usb 6-1: device descriptor read/64, error -71 [ 109.293477][T10175] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=64784 sclass=netlink_route_socket pid=10175 comm=syz.0.1620 [ 109.363021][T10184] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1624'. [ 109.430842][ T6704] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 109.461436][T10195] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 109.580918][ T6704] usb 6-1: device descriptor read/64, error -71 [ 109.687754][T10217] vivid-000: disconnect [ 109.693771][T10217] loop2: detected capacity change from 0 to 524287999 [ 109.700961][ T6704] usb usb6-port1: attempt power cycle [ 109.733401][T10216] vivid-000: reconnect [ 109.767452][T10224] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1641'. [ 110.020075][T10256] 8021q: adding VLAN 0 to HW filter on device bond8 [ 110.032472][T10256] vlan0: entered promiscuous mode [ 110.036573][T10256] bond8: entered promiscuous mode [ 110.049885][ T6704] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 110.055507][T10256] bond8: left promiscuous mode [ 110.086503][ T6704] usb 6-1: device descriptor read/8, error -71 [ 110.300869][T10278] netlink: 'syz.2.1661': attribute type 10 has an invalid length. [ 110.303161][T10278] batadv0: left allmulticast mode [ 110.306862][T10278] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 110.310137][T10278] batadv0: entered allmulticast mode [ 110.312714][T10278] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 110.320799][ T6704] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 110.329272][T10278] syz.2.1661 (10278) used greatest stack depth: 20656 bytes left [ 110.343052][ T6704] usb 6-1: device descriptor read/8, error -71 [ 110.405070][T10294] tipc: Failed to remove unknown binding: 66,1,1/1633771873:3040257045/3040257047 [ 110.407587][T10294] tipc: Failed to remove unknown binding: 66,1,1/1633771873:3040257045/3040257047 [ 110.459245][ T6704] usb usb6-port1: unable to enumerate USB device [ 110.477056][T10310] netlink: 'syz.0.1674': attribute type 2 has an invalid length. [ 110.477425][T10304] bond0: (slave vlan3): Opening slave failed [ 110.491038][T10308] netlink: 'syz.0.1674': attribute type 2 has an invalid length. [ 110.659679][T10337] trusted_key: encrypted_key: master key parameter is missing [ 110.936003][T10369] openvswitch: netlink: Tunnel attr 6 has unexpected len 16 expected 0 [ 110.944038][T10365] 9pnet_virtio: no channels available for device syz [ 111.222353][T10395] overlay: Bad value for 'workdir' [ 111.338730][T10409] ptrace attach of "/syz-executor exec"[5939] was attempted by ""[10409] [ 111.440342][T10417] macsec0: entered promiscuous mode [ 111.441941][T10417] macsec0: left allmulticast mode [ 111.802578][T10454] loop6: detected capacity change from 0 to 524156927 [ 111.807194][ T45] loop: Write error at byte offset 67108865, length 4096. [ 111.809760][ T45] loop: Write error at byte offset 67108865, length 4096. [ 111.813197][ C0] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 2 prio class 0 [ 111.816147][ C0] Buffer I/O error on dev loop6, logical block 0, lost async page write [ 111.818566][ C0] Buffer I/O error on dev loop6, logical block 1, lost async page write [ 111.821110][ T45] loop: Write error at byte offset 67108865, length 4096. [ 111.824706][ C0] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0 [ 111.828201][ C0] Buffer I/O error on dev loop6, logical block 0, lost async page write [ 111.839782][ T45] loop: Write error at byte offset 67112961, length 4096. [ 111.842671][ C1] I/O error, dev loop6, sector 8 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0 [ 111.845210][ C1] Buffer I/O error on dev loop6, logical block 1, lost async page write [ 111.911382][ T39] kauditd_printk_skb: 8 callbacks suppressed [ 111.911392][ T39] audit: type=1400 audit(1740611094.194:607): avc: denied { write } for pid=10463 comm="syz.2.1729" name="card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 112.126975][T10481] __nla_validate_parse: 9 callbacks suppressed [ 112.126986][T10481] netlink: 172 bytes leftover after parsing attributes in process `syz.3.1734'. [ 112.238672][T10488] netlink: 'syz.3.1737': attribute type 33 has an invalid length. [ 112.240986][T10488] team0: left allmulticast mode [ 112.266234][T10490] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1739'. [ 112.347614][T10486] kvm: kvm [10485]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0xb4b [ 112.363543][T10486] kvm: kvm [10485]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x3d0 [ 112.617442][T10518] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1749'. [ 112.622202][ T39] audit: type=1400 audit(1740611094.904:608): avc: denied { append } for pid=10517 comm="syz.2.1749" name="event0" dev="devtmpfs" ino=941 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 112.645658][T10520] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1750'. [ 112.667895][ T39] audit: type=1400 audit(1740611094.944:609): avc: denied { create } for pid=10521 comm="syz.2.1752" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 112.831863][T10540] fuse: Bad value for 'fd' [ 112.905929][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.909557][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.012116][ T39] audit: type=1400 audit(1740611095.294:610): avc: denied { ioctl } for pid=10555 comm="syz.2.1763" path="/dev/ptyq8" dev="devtmpfs" ino=135 ioctlcmd=0x5438 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1 [ 113.492919][T10596] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1774'. [ 113.523275][T10600] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0 [ 113.540892][ T39] audit: type=1400 audit(1740611095.814:611): avc: denied { read write } for pid=10599 comm="syz.1.1776" name="file0" dev="tmpfs" ino=1835 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 113.548662][ T39] audit: type=1400 audit(1740611095.814:612): avc: denied { open } for pid=10599 comm="syz.1.1776" path="/330/file0" dev="tmpfs" ino=1835 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 113.556373][ T39] audit: type=1400 audit(1740611095.814:613): avc: denied { ioctl } for pid=10599 comm="syz.1.1776" path="/330/file0" dev="tmpfs" ino=1835 ioctlcmd=0x5627 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 113.565581][ T39] audit: type=1400 audit(1740611095.844:614): avc: denied { write } for pid=5333 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 113.571604][ T39] audit: type=1400 audit(1740611095.844:615): avc: denied { remove_name } for pid=5333 comm="syslogd" name="messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 113.579861][ T39] audit: type=1400 audit(1740611095.844:616): avc: denied { add_name } for pid=5333 comm="syslogd" name="messages.0" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 113.751270][T10619] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1783'. [ 113.759960][T10607] kvm: kvm [10606]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0xb4b [ 113.778316][T10607] kvm: kvm [10606]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x3d0 [ 113.798451][T10621] netlink: 'syz.3.1784': attribute type 10 has an invalid length. [ 113.804567][T10621] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 113.914778][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.917025][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.062689][T10644] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1793'. [ 114.161107][ T5302] Bluetooth: hci2: unexpected event for opcode 0x2028 [ 114.260180][T10663] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1800'. [ 114.266609][T10663] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1800'. [ 114.320418][T10663] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1800'. [ 114.831926][T10710] openvswitch: netlink: Flow key attr not present in new flow. [ 115.004978][ T5302] Bluetooth: hci1: ACL packet for unknown connection handle 200 [ 115.038037][T10737] overlayfs: failed to clone lowerpath [ 115.530923][ T45] wlan1: Trigger new scan to find an IBSS to join [ 115.712691][ T5302] Bluetooth: hci2: unexpected event for opcode 0x041c [ 115.716177][T10807] ICMPv6: NDISC: Failed to initialize the control socket (err -2) [ 115.764924][T10810] bridge0: port 2(bond9) entered blocking state [ 115.766815][T10810] bridge0: port 2(bond9) entered disabled state [ 115.771166][T10810] bond9: entered promiscuous mode [ 115.802449][T10812] CIFS: Unable to determine destination address [ 116.210216][T10858] IPv6: NLM_F_CREATE should be specified when creating new route [ 116.390816][ T9445] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 116.533132][ T65] wlan1: Selected IBSS BSSID 50:50:50:50:50:50 based on configured SSID [ 116.540985][ T9445] usb 7-1: Using ep0 maxpacket: 8 [ 116.549588][ T9445] usb 7-1: config 0 has no interfaces? [ 116.551448][ T9445] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 116.554498][ T9445] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.562875][ T9445] usb 7-1: config 0 descriptor?? [ 116.769438][T10847] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 116.774336][T10847] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 116.787439][ T9445] usb 7-1: USB disconnect, device number 4 [ 117.046620][T10901] vlan0: entered promiscuous mode [ 117.048777][T10901] bond10: (slave vlan0): Opening slave failed [ 117.168687][ T39] kauditd_printk_skb: 9 callbacks suppressed [ 117.168698][ T39] audit: type=1400 audit(1740613659.447:626): avc: denied { shutdown } for pid=10908 comm="syz.0.1896" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 117.177390][ T39] audit: type=1400 audit(1740613659.457:627): avc: denied { write } for pid=10908 comm="syz.0.1896" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 117.232920][T10916] team0: entered allmulticast mode [ 117.264556][T10916] bond6: entered allmulticast mode [ 117.267238][T10916] bond7: entered allmulticast mode [ 117.272227][T10916] bond8: entered allmulticast mode [ 117.275082][T10916] erspan1: entered allmulticast mode [ 117.276927][T10916] gre1: entered allmulticast mode [ 117.285287][T10916] bond9: entered allmulticast mode [ 117.286883][T10916] bond10: entered allmulticast mode [ 117.342738][T10924] __nla_validate_parse: 17 callbacks suppressed [ 117.342751][T10924] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1903'. [ 117.348658][T10926] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1910'. [ 117.383180][ T65] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.386394][ T65] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.398312][T10931] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1913'. [ 117.416132][T10933] ICMPv6: NDISC: Failed to initialize the control socket (err -2) [ 117.465836][T10937] netlink: 200 bytes leftover after parsing attributes in process `syz.3.1905'. [ 117.471270][T10918] kvm: kvm [10917]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x6d75 [ 117.474098][T10918] kvm: kvm [10917]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x186) = 0x2d75 [ 117.500164][T10940] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1908'. [ 117.500202][T10918] kvm_intel: kvm [10917]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x7a75 [ 117.507004][T10918] kvm: kvm [10917]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x614c [ 117.510442][T10918] kvm: kvm [10917]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x186) = 0x214c [ 117.515918][T10940] vlan0: entered promiscuous mode [ 117.518718][T10940] bond19: (slave vlan0): Opening slave failed [ 117.609987][T10948] fuse: Invalid rootmode [ 117.686963][T10935] kvm: kvm [10934]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x6d75 [ 117.689698][T10935] kvm: kvm [10934]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x186) = 0x2d75 [ 117.714752][T10935] kvm_intel: kvm [10934]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x7a75 [ 117.718872][T10935] kvm: kvm [10934]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x614c [ 117.721563][T10935] kvm: kvm [10934]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x186) = 0x214c [ 117.742780][T10962] veth1: left promiscuous mode [ 117.744730][T10962] veth1: entered allmulticast mode [ 117.747066][T10962] macsec0: left promiscuous mode [ 117.748918][T10962] macsec0: entered allmulticast mode [ 117.763181][T10962] bond18: entered allmulticast mode [ 117.765806][T10962] gre1: entered allmulticast mode [ 117.767764][T10962] bond19: entered allmulticast mode [ 117.806666][ T12] wlan0: Selected IBSS BSSID 50:50:50:50:50:50 based on configured SSID [ 118.205237][T10976] netlink: 'syz.1.1921': attribute type 10 has an invalid length. [ 118.208060][T10976] netdevsim netdevsim1 netdevsim0: left allmulticast mode [ 118.213642][T10976] team0: Port device netdevsim0 removed [ 118.216766][T10976] netdevsim netdevsim1 netdevsim0: entered allmulticast mode [ 118.219129][T10976] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 118.356070][ T39] audit: type=1800 audit(1740613660.637:628): pid=10989 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.0.1927" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 118.364784][T10989] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1927'. [ 118.376929][ T5302] Bluetooth: hci3: ACL packet for unknown connection handle 200 [ 118.381118][T10989] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10989 comm=syz.0.1927 [ 118.423130][T10996] netlink: 'syz.3.1932': attribute type 1 has an invalid length. [ 118.439171][ T39] audit: type=1400 audit(1740613660.717:629): avc: denied { create } for pid=11001 comm="syz.2.1933" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 118.445470][ T39] audit: type=1400 audit(1740613660.717:630): avc: denied { bind } for pid=11001 comm="syz.2.1933" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 118.461258][T10996] 8021q: adding VLAN 0 to HW filter on device bond11 [ 118.467602][T10996] vlan0: entered promiscuous mode [ 118.471216][T10996] bond11: entered promiscuous mode [ 118.475259][T10996] bond11: left promiscuous mode [ 118.479322][T11006] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1937'. [ 118.508462][T11006] vlan3: entered promiscuous mode [ 118.510339][T11006] bond16: (slave vlan3): Opening slave failed [ 118.555600][T11016] netlink: 'syz.0.1940': attribute type 1 has an invalid length. [ 118.570512][T11016] 8021q: adding VLAN 0 to HW filter on device bond20 [ 118.688250][T11032] tipc: Failed to remove unknown binding: 66,1,1/0:49581753/49581755 [ 118.694579][T11032] tipc: Failed to remove unknown binding: 66,1,1/0:49581753/49581755 [ 118.743753][T11041] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1950'. [ 118.765304][ T39] audit: type=1400 audit(1740613661.047:631): avc: denied { map } for pid=11036 comm="syz.1.1949" path="pipe:[6406]" dev="pipefs" ino=6406 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 118.820636][T11055] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1956'. [ 119.079578][T11085] openvswitch: netlink: Actions may not be safe on all matching packets [ 119.084693][T11086] ICMPv6: NDISC: Failed to initialize the control socket (err -2) [ 119.221784][ T39] audit: type=1400 audit(1740613661.507:632): avc: denied { sqpoll } for pid=11048 comm="syz.1.1954" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 119.284980][ T39] audit: type=1400 audit(1740613661.567:633): avc: denied { lock } for pid=11102 comm="syz.3.1976" path="socket:[41770]" dev="sockfs" ino=41770 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 119.322429][T11110] netlink: 'syz.3.1979': attribute type 3 has an invalid length. [ 119.326660][T11110] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1979'. [ 119.345758][ T39] audit: type=1400 audit(1740613661.627:634): avc: denied { getopt } for pid=11112 comm="syz.1.1980" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 119.448680][T11120] vlan3: entered promiscuous mode [ 119.452645][T11120] bond8: (slave vlan3): Opening slave failed [ 119.494278][T11123] ICMPv6: NDISC: Failed to initialize the control socket (err -2) [ 119.574183][ T39] audit: type=1400 audit(1740613661.857:635): avc: denied { write } for pid=11126 comm="syz.1.1985" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 119.721225][T11142] input: syz1 as /devices/virtual/input/input9 [ 119.735809][T11144] vlan0: entered promiscuous mode [ 119.738225][T11144] bond12: (slave vlan0): Opening slave failed [ 119.772262][ T5302] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 119.775305][ T5302] Bluetooth: hci2: Injecting HCI hardware error event [ 119.779084][ T5302] Bluetooth: hci2: hardware error 0x00 [ 119.832940][T11154] tipc: Enabled bearer , priority 10 [ 119.915408][T11176] SELinux: policydb string does not match my string SE Linux [ 119.918036][T11176] SELinux: failed to load policy [ 120.029382][T11189] vlan3: entered promiscuous mode [ 120.032518][T11189] bond17: (slave vlan3): Opening slave failed [ 120.111887][ T65] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.114978][ T65] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.332142][ T6704] usb 6-1: new low-speed USB device number 9 using dummy_hcd [ 120.354807][T11217] netlink: 'syz.3.2022': attribute type 1 has an invalid length. [ 120.372238][T11217] 8021q: adding VLAN 0 to HW filter on device bond13 [ 120.411697][T11222] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 [ 120.460909][ T6704] usb 6-1: device descriptor read/64, error -71 [ 120.621684][ T5938] Bluetooth: hci2: unexpected event 0x03 length: 17 > 11 [ 120.621706][ T5938] Bluetooth: hci2: Invalid handle: 0x4000 > 0x0eff [ 120.700836][ T6704] usb 6-1: new low-speed USB device number 10 using dummy_hcd [ 120.830829][ T6704] usb 6-1: device descriptor read/64, error -71 [ 120.940941][ T6704] usb usb6-port1: attempt power cycle [ 121.151470][T11254] netlink: 'syz.0.2033': attribute type 1 has an invalid length. [ 121.173928][T11254] vlan0: entered promiscuous mode [ 121.176140][T11254] bond21: (slave vlan0): Opening slave failed [ 121.285512][ T6704] usb 6-1: new low-speed USB device number 11 using dummy_hcd [ 121.304407][ T6704] usb 6-1: device descriptor read/8, error -71 [ 121.329493][T11270] ICMPv6: NDISC: Failed to initialize the control socket (err -2) [ 121.347653][T11273] ICMPv6: NDISC: Failed to initialize the control socket (err -2) [ 121.540981][ T6704] usb 6-1: new low-speed USB device number 12 using dummy_hcd [ 121.546846][T11290] netlink: 'syz.3.2048': attribute type 1 has an invalid length. [ 121.563077][ T6704] usb 6-1: device descriptor read/8, error -71 [ 121.564580][T11290] vlan0: entered promiscuous mode [ 121.568672][T11290] bond14: (slave vlan0): Opening slave failed [ 121.613771][T11295] CIFS: Unable to determine destination address [ 121.674941][ T6704] usb usb6-port1: unable to enumerate USB device [ 121.701662][T11302] netlink: 'syz.0.2053': attribute type 10 has an invalid length. [ 121.722180][T11305] fuse: Bad value for 'fd' [ 121.758311][T11310] netlink: 'syz.0.2058': attribute type 1 has an invalid length. [ 121.799063][T11314] vlan0: entered promiscuous mode [ 121.801685][T11314] bond22: (slave vlan0): Opening slave failed [ 121.825890][T11303] kvm: kvm [11301]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x87 [ 121.848198][T11303] kvm: kvm [11301]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x8f9 [ 121.851661][ T5302] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 121.930392][T11323] tipc: Failed to remove unknown binding: 66,1,1/10398378:2408464548/2408464550 [ 121.933388][T11323] tipc: Failed to remove unknown binding: 66,1,1/10398378:2408464548/2408464550 [ 122.010517][T11328] netlink: 'syz.0.2064': attribute type 10 has an invalid length. [ 122.111958][T11332] vlan0: entered promiscuous mode [ 122.113955][T11332] bond15: (slave vlan0): Opening slave failed [ 122.200482][T11347] vlan0: entered promiscuous mode [ 122.203116][T11347] bond23: (slave vlan0): Opening slave failed [ 122.690254][T11382] syz.2.2084: attempt to access beyond end of device [ 122.690254][T11382] nbd2: rw=0, sector=0, nr_sectors = 2 limit=0 [ 122.695751][T11382] befs: (nbd2): unable to read superblock [ 122.800890][ T39] kauditd_printk_skb: 6 callbacks suppressed [ 122.800905][ T39] audit: type=1400 audit(1740613665.077:642): avc: denied { setopt } for pid=11389 comm="syz.0.2089" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 122.841152][T11394] vlan0: entered promiscuous mode [ 122.843722][T11394] bond24: (slave vlan0): Opening slave failed [ 122.953741][T11392] kvm: kvm [11391]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x87 [ 122.976027][T11392] kvm: kvm [11391]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x8f9 [ 123.124214][ T39] audit: type=1400 audit(1740613665.407:643): avc: denied { nlmsg_write } for pid=11411 comm="syz.0.2098" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 123.164607][T11414] __nla_validate_parse: 12 callbacks suppressed [ 123.164619][T11414] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2099'. [ 123.197162][T11414] vlan0: entered promiscuous mode [ 123.200238][T11414] bond25: (slave vlan0): Opening slave failed [ 123.212645][T11416] vlan3: entered promiscuous mode [ 123.215630][T11416] bond9: (slave vlan3): Opening slave failed [ 123.314959][ T39] audit: type=1400 audit(1740613665.597:644): avc: denied { nlmsg_write } for pid=11423 comm="syz.1.2103" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 123.350425][ T39] audit: type=1804 audit(1740613665.627:645): pid=11427 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.2105" name="/newroot/374/file0" dev="tmpfs" ino=2078 res=1 errno=0 [ 123.367343][ T39] audit: type=1804 audit(1740613665.627:646): pid=11427 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.2105" name="/newroot/374/file0" dev="tmpfs" ino=2078 res=1 errno=0 [ 123.386703][ T39] audit: type=1804 audit(1740613665.627:647): pid=11427 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.2105" name="/newroot/374/file0" dev="tmpfs" ino=2078 res=1 errno=0 [ 123.398023][ T39] audit: type=1804 audit(1740613665.627:648): pid=11427 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.2105" name="/newroot/374/file0" dev="tmpfs" ino=2078 res=1 errno=0 [ 123.404794][ T39] audit: type=1804 audit(1740613665.637:649): pid=11427 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.2105" name="/newroot/374/file0" dev="tmpfs" ino=2078 res=1 errno=0 [ 123.411783][ T39] audit: type=1804 audit(1740613665.637:650): pid=11427 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.2105" name="/newroot/374/file0" dev="tmpfs" ino=2078 res=1 errno=0 [ 123.418774][ T39] audit: type=1804 audit(1740613665.637:651): pid=11427 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.2105" name="/newroot/374/file0" dev="tmpfs" ino=2078 res=1 errno=0 [ 123.468981][T11440] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2109'. [ 123.480518][T11445] validate_nla: 7 callbacks suppressed [ 123.480530][T11445] netlink: 'syz.0.2111': attribute type 1 has an invalid length. [ 123.482773][T11440] vlan3: entered promiscuous mode [ 123.486711][T11440] bond10: (slave vlan3): Opening slave failed [ 123.513425][T11445] vlan0: entered promiscuous mode [ 123.515384][T11445] bond26: (slave vlan0): Opening slave failed [ 123.707056][T11471] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2119'. [ 123.710030][T11471] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2119'. [ 123.805413][T11474] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2124'. [ 123.819025][T11474] vlan3: entered promiscuous mode [ 123.822996][T11474] bond18: (slave vlan3): Opening slave failed [ 123.938857][T11478] netlink: 'syz.2.2127': attribute type 1 has an invalid length. [ 123.983925][T11478] vlan3: entered promiscuous mode [ 123.986228][T11478] bond19: (slave vlan3): Opening slave failed [ 124.031429][ T5938] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 124.035092][ T5938] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 124.038104][ T5938] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 124.043161][ T5938] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 124.046134][ T5938] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 124.048244][ T5938] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 124.066739][T11480] ICMPv6: NDISC: Failed to initialize the control socket (err -2) [ 124.091106][ T65] bond0: (slave netdevsim0): Releasing backup interface [ 124.094851][ T65] netdevsim netdevsim1 netdevsim0 (unregistering): left allmulticast mode [ 124.232869][ T65] bond1 (unregistering): (slave ip6gretap1): Releasing backup interface [ 124.582723][ T65] bond0 (unregistering): (slave macvlan0): Releasing backup interface [ 124.585874][ T65] bond0 (unregistering): Released all slaves [ 124.656349][ T65] bond1 (unregistering): Released all slaves [ 124.726033][ T65] bond2 (unregistering): Released all slaves [ 124.730362][ T65] bond3 (unregistering): Released all slaves [ 124.734909][ T65] bond4 (unregistering): Released all slaves [ 124.740295][ T65] bond5 (unregistering): Released all slaves [ 124.745229][ T65] bond6 (unregistering): Released all slaves [ 124.840812][ T65] bond7 (unregistering): Released all slaves [ 124.847468][ T65] bond8 (unregistering): Released all slaves [ 124.854264][ T65] bond9 (unregistering): Released all slaves [ 124.861222][ T65] bond10 (unregistering): Released all slaves [ 124.965672][T11480] chnl_net:caif_netlink_parms(): no params data found [ 124.996462][ T65] tipc: Disabling bearer [ 125.012941][ T65] tipc: Disabling bearer [ 125.026702][ T65] tipc: Left network mode [ 125.047841][T11509] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2130'. [ 125.183427][T11522] ICMPv6: NDISC: Failed to initialize the control socket (err -2) [ 125.234060][T11480] bridge0: port 1(bridge_slave_0) entered blocking state [ 125.236203][T11480] bridge0: port 1(bridge_slave_0) entered disabled state [ 125.238237][T11480] bridge_slave_0: entered allmulticast mode [ 125.242714][T11480] bridge_slave_0: entered promiscuous mode [ 125.245647][T11480] bridge0: port 2(bridge_slave_1) entered blocking state [ 125.247839][T11480] bridge0: port 2(bridge_slave_1) entered disabled state [ 125.250017][T11480] bridge_slave_1: entered allmulticast mode [ 125.252625][T11480] bridge_slave_1: entered promiscuous mode [ 125.358101][ T65] hsr_slave_0: left promiscuous mode [ 125.360048][ T65] hsr_slave_1: left promiscuous mode [ 125.533406][ T65] team0 (unregistering): Port device vlan0 removed [ 125.645982][T11531] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2137'. [ 125.698026][T11534] netlink: 'syz.3.2139': attribute type 10 has an invalid length. [ 126.026271][T11538] netlink: 'syz.2.2140': attribute type 3 has an invalid length. [ 126.029155][T11538] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2140'. [ 126.101233][ T5938] Bluetooth: hci3: command tx timeout [ 126.448829][T11540] netlink: 'syz.0.2141': attribute type 1 has an invalid length. [ 126.691560][T11480] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 126.701523][T11480] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 126.759802][T11541] vlan0: entered promiscuous mode [ 126.763385][T11541] bond27: (slave vlan0): Opening slave failed [ 126.825005][T11480] team0: Port device team_slave_0 added [ 126.838796][T11480] team0: Port device team_slave_1 added [ 126.872039][T11558] netlink: 'syz.0.2145': attribute type 1 has an invalid length. [ 126.941701][T11480] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 126.949878][T11480] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 126.958243][T11480] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 126.964155][T11480] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 126.975424][T11480] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 126.987625][T11480] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 126.997763][T11564] 8021q: adding VLAN 0 to HW filter on device bond28 [ 127.078804][T11569] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2148'. [ 127.216947][T11569] hsr_slave_1 (unregistering): left promiscuous mode [ 127.222201][T11480] hsr_slave_0: entered promiscuous mode [ 127.224697][T11480] hsr_slave_1: entered promiscuous mode [ 127.363885][T11583] fuse: Unknown parameter 'f@l ' [ 127.377513][T11585] netlink: 'syz.2.2154': attribute type 1 has an invalid length. [ 127.410149][T11587] set match dimension is over the limit! [ 127.415981][T11585] 8021q: adding VLAN 0 to HW filter on device bond20 [ 127.450658][T11480] netdevsim netdevsim4 netdevsim0: renamed from eth6 [ 127.463963][T11480] netdevsim netdevsim4 netdevsim1: renamed from eth7 [ 127.475988][T11480] netdevsim netdevsim4 netdevsim2: renamed from eth8 [ 127.485916][T11480] netdevsim netdevsim4 netdevsim3: renamed from eth9 [ 127.605978][T11601] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2161'. [ 127.608602][T11480] 8021q: adding VLAN 0 to HW filter on device team0 [ 127.718682][T11601] hsr_slave_1 (unregistering): left promiscuous mode [ 127.728760][ T1145] bridge0: port 1(bridge_slave_0) entered blocking state [ 127.732921][ T1145] bridge0: port 1(bridge_slave_0) entered forwarding state [ 127.744806][ T1145] bridge0: port 2(bridge_slave_1) entered blocking state [ 127.747678][ T1145] bridge0: port 2(bridge_slave_1) entered forwarding state [ 127.893616][T11480] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 127.913230][T11611] netlink: 'syz.3.2163': attribute type 10 has an invalid length. [ 128.047290][T11480] veth0_vlan: entered promiscuous mode [ 128.058768][T11480] veth1_vlan: entered promiscuous mode [ 128.104623][T11480] veth0_macvtap: entered promiscuous mode [ 128.116030][T11480] veth1_macvtap: entered promiscuous mode [ 128.156900][T11480] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 128.168149][T11480] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 128.171361][ T5938] Bluetooth: hci3: command tx timeout [ 128.182403][T11480] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.184805][T11480] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.187143][T11480] netdevsim netdevsim1 eth4: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.189493][T11480] netdevsim netdevsim1 eth5: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.193184][T11480] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.195785][T11480] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.200818][T11480] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.203437][T11480] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.214323][T11480] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check. [ 128.225861][T11480] wireguard: wg0: Could not create IPv6 socket [ 128.232409][T11480] wireguard: wg1: Could not create IPv6 socket [ 128.232985][T11633] netlink: 'syz.0.2170': attribute type 1 has an invalid length. [ 128.236753][T11480] wireguard: wg2: Could not create IPv6 socket [ 128.254385][T11633] 8021q: adding VLAN 0 to HW filter on device bond29 [ 128.266378][T11633] vlan0: entered promiscuous mode [ 128.268509][T11633] bond29: entered promiscuous mode [ 128.274474][T11633] bond29: left promiscuous mode [ 128.293578][ T76] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 128.295985][ T76] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 128.312467][ T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 128.314854][ T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 128.333876][ T39] kauditd_printk_skb: 36 callbacks suppressed [ 128.333891][ T39] audit: type=1400 audit(1740613670.617:688): avc: denied { mounton } for pid=11480 comm="syz-executor" path="/syzkaller.Jpw3Mk/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 128.348198][ T39] audit: type=1400 audit(1740613670.627:689): avc: denied { mount } for pid=11480 comm="syz-executor" name="/" dev="gadgetfs" ino=6932 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 128.364523][ T39] audit: type=1400 audit(1740613670.647:690): avc: denied { mounton } for pid=11480 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 128.461345][T11645] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2173'. [ 128.466978][T11645] vlan2: entered promiscuous mode [ 128.664335][T11673] input: syz1 as /devices/virtual/input/input10 [ 128.802523][T11694] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2186'. [ 128.832496][T11694] vlan3: entered promiscuous mode [ 128.841053][T11694] bond21: (slave vlan3): Opening slave failed [ 129.263118][T11751] netlink: 'syz.0.2197': attribute type 3 has an invalid length. [ 129.297384][T11755] bad cache= option: none [ 129.297384][T11755] [ 129.299570][T11755] CIFS: VFS: bad cache= option: none [ 129.327935][T11761] netlink: 'syz.0.2200': attribute type 1 has an invalid length. [ 129.884595][T11816] netlink: 'syz.2.2211': attribute type 1 has an invalid length. [ 129.886838][T11817] netlink: 'syz.3.2210': attribute type 1 has an invalid length. [ 130.091731][T11849] netlink: 'syz.3.2217': attribute type 10 has an invalid length. [ 130.148210][T11859] netlink: 'syz.3.2222': attribute type 1 has an invalid length. [ 130.261164][ T5938] Bluetooth: hci3: command tx timeout [ 130.339847][ T5651] wireguard: wg0: Could not create IPv6 socket [ 130.385221][T11891] ICMPv6: NDISC: Failed to initialize the control socket (err -2) [ 130.389676][T11893] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2228'. [ 130.438173][ T5651] wireguard: wg1: Could not create IPv6 socket [ 130.448519][ T39] audit: type=1400 audit(1740613672.727:691): avc: denied { map } for pid=11896 comm="syz.0.2230" path="socket:[47171]" dev="sockfs" ino=47171 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 130.541787][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 130.549007][T11914] netlink: 'syz.0.2234': attribute type 1 has an invalid length. [ 130.552508][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 130.564639][ T5651] wireguard: wg2: Could not create IPv6 socket [ 130.706639][T11934] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2240'. [ 130.798577][T11947] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 130.804043][T11947] openvswitch: netlink: ERSPAN option length err (len 4096, max 255). [ 130.875999][T11954] netlink: 'syz.3.2244': attribute type 1 has an invalid length. [ 130.915160][T11959] netlink: 'syz.3.2245': attribute type 1 has an invalid length. [ 130.975513][T11966] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2247'. [ 131.066854][T11978] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2250'. [ 131.082898][T11978] vlan2: entered promiscuous mode [ 131.113056][T11984] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2251'. [ 131.197726][T11998] netlink: 'syz.2.2256': attribute type 1 has an invalid length. [ 131.373471][T12012] kvm: kvm [12011]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x1a [ 131.380144][T12012] kvm: kvm [12011]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x833 [ 131.427328][T12012] kvm: kvm [12011]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x8df [ 131.445543][ T39] audit: type=1400 audit(1740613673.727:692): avc: denied { create } for pid=12029 comm="syz.4.2263" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1 [ 131.454458][ T39] audit: type=1400 audit(1740613673.727:693): avc: denied { bind } for pid=12029 comm="syz.4.2263" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1 [ 131.484497][T12012] kvm: kvm [12011]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x9cf [ 131.491308][T12035] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2264'. [ 131.504982][T12035] vlan2: entered promiscuous mode [ 131.557193][T12012] kvm: kvm [12011]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x362 [ 131.560392][T12012] kvm: kvm [12011]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xb65 [ 131.570371][T12012] kvm: kvm [12011]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xb95 [ 131.573909][T12012] kvm: kvm [12011]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xb99 [ 131.577107][ T39] audit: type=1400 audit(1740613673.857:694): avc: denied { block_suspend } for pid=12046 comm="syz.0.2267" capability=36 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 131.597679][T12012] kvm: kvm [12011]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xc1b [ 131.617622][T12012] kvm: kvm [12011]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0xc7f [ 131.827678][T12077] vlan0: entered promiscuous mode [ 131.829413][T12077] vlan0: entered allmulticast mode [ 131.956964][T12094] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2277'. [ 131.964428][T12096] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2278'. [ 131.986473][T12096] vlan3: entered promiscuous mode [ 131.989049][T12096] bond23: (slave vlan3): Opening slave failed [ 132.340912][ T5938] Bluetooth: hci3: command tx timeout [ 132.445942][ T39] audit: type=1400 audit(1740613674.727:695): avc: denied { sys_chroot } for pid=12152 comm="dhcpcd" capability=18 scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1 [ 132.454380][ T39] audit: type=1400 audit(1740613674.727:696): avc: denied { setgid } for pid=12152 comm="dhcpcd" capability=6 scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1 [ 132.468926][ T39] audit: type=1400 audit(1740613674.727:697): avc: denied { setrlimit } for pid=12152 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=process permissive=1 [ 132.576201][ T1416] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.578066][ T1416] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.845566][T12190] input: syz1 as /devices/virtual/input/input15 [ 133.344408][T12223] vlan3: entered promiscuous mode [ 133.346629][T12223] bond25: (slave vlan3): Opening slave failed [ 133.464309][T12242] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 133.469675][T12242] openvswitch: netlink: ERSPAN option length err (len 4096, max 255). [ 133.551316][T12254] openvswitch: netlink: Unexpected mask (mask=240, allowed=10048) [ 133.780637][T12280] __nla_validate_parse: 7 callbacks suppressed [ 133.780648][T12280] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2333'. [ 133.816692][T12280] vlan3: entered promiscuous mode [ 133.818544][T12280] bond26: (slave vlan3): Opening slave failed [ 134.596777][T12352] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2349'. [ 134.599993][T12352] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2349'. [ 134.834109][ T39] kauditd_printk_skb: 1 callbacks suppressed [ 134.834124][ T39] audit: type=1400 audit(1740613677.117:699): avc: denied { ioctl } for pid=12374 comm="syz.4.2350" path="/dev/cachefiles" dev="devtmpfs" ino=4 ioctlcmd=0x3b82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1 [ 134.842849][T12375] bridge0: port 1(bridge_slave_0) entered disabled state [ 134.901166][T12379] ICMPv6: NDISC: Failed to initialize the control socket (err -2) [ 134.968971][T12386] validate_nla: 10 callbacks suppressed [ 134.968984][T12386] netlink: 'syz.2.2353': attribute type 1 has an invalid length. [ 134.998062][T12386] 8021q: adding VLAN 0 to HW filter on device bond27 [ 134.998116][ T39] audit: type=1400 audit(1740613677.277:700): avc: denied { unmount } for pid=11480 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1 [ 135.015966][T12386] vlan3: entered promiscuous mode [ 135.018706][T12386] bond27: entered promiscuous mode [ 135.036809][T12386] bond27: left promiscuous mode [ 135.052929][T12392] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2354'. [ 135.194582][T12405] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2357'. [ 135.204371][T12405] vlan2: entered promiscuous mode [ 135.428120][T12425] vlan2: entered promiscuous mode [ 135.674315][T12457] vlan2: entered promiscuous mode [ 136.007623][T12485] netlink: 1752 bytes leftover after parsing attributes in process `syz.3.2375'. [ 136.090787][ T5938] Bluetooth: hci1: command 0x040f tx timeout [ 136.385340][T12469] kvm_pr_unimpl_wrmsr: 78 callbacks suppressed [ 136.385361][T12469] kvm: kvm [12468]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x3b3 [ 136.399399][T12469] kvm: kvm [12468]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x3b3 [ 136.411386][T12469] kvm: kvm [12468]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x3b3 [ 136.422189][T12469] kvm: kvm [12468]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x3b3 [ 136.435749][T12469] kvm: kvm [12468]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x3b3 [ 136.447104][T12469] kvm: kvm [12468]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x3b3 [ 136.467036][T12469] kvm: kvm [12468]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x3b3 [ 136.487115][T12469] kvm: kvm [12468]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x3b3 [ 136.499855][T12469] kvm: kvm [12468]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x3b3 [ 136.508330][T12469] kvm: kvm [12468]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x3b3 [ 136.673277][T12555] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2392'. [ 136.689340][T12555] vlan0: entered promiscuous mode [ 136.692164][T12555] bond19: (slave vlan0): Opening slave failed [ 136.929392][T12578] : entered promiscuous mode [ 136.959775][T12582] sit0: entered promiscuous mode [ 136.961347][T12582] sit0: left allmulticast mode [ 136.962800][T12582] netlink: 'syz.3.2397': attribute type 1 has an invalid length. [ 136.965053][T12582] netlink: 1 bytes leftover after parsing attributes in process `syz.3.2397'. [ 137.677930][T12650] vlan2: entered promiscuous mode [ 137.780050][T12660] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2412'. [ 138.170842][ T5938] Bluetooth: hci1: command 0x040f tx timeout [ 138.180959][T12702] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2422'. [ 138.573802][T12737] netlink: 'syz.2.2428': attribute type 4 has an invalid length. [ 138.618678][T12742] ICMPv6: NDISC: Failed to initialize the control socket (err -2) [ 138.780776][T12755] 8021q: adding VLAN 0 to HW filter on device bond32 [ 138.791760][T12759] fuse: Unknown parameter './file0' [ 138.928692][T12775] __nla_validate_parse: 1 callbacks suppressed [ 138.928703][T12775] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2437'. [ 138.996956][T12783] vlan2: entered promiscuous mode [ 139.285743][T12792] kvm_intel: kvm [12790]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x1d9) = 0x7a75 [ 139.497618][T12816] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2445'. [ 139.542088][T12830] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2449'. [ 139.575026][T12834] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2450'. [ 139.594705][T12834] 8021q: adding VLAN 0 to HW filter on device bond33 [ 139.751390][T12839] kvm: pic: non byte write [ 139.753913][T12839] kvm: pic: non byte write [ 139.756107][T12839] kvm: pic: non byte write [ 140.590562][T12908] fuse: Bad value for 'group_id' [ 140.593474][T12908] fuse: Bad value for 'group_id' [ 140.726980][T12917] netlink: 'syz.2.2458': attribute type 1 has an invalid length. [ 140.750598][T12917] 8021q: adding VLAN 0 to HW filter on device bond28 [ 141.130051][ C1] lapbether: lapb_data_request error - 4 [ 141.134046][ T39] audit: type=1400 audit(1740613683.417:701): avc: denied { setattr } for pid=12946 comm="syz.3.2465" name="" dev="pipefs" ino=50294 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 141.200298][ C1] lapbether: lapb_data_request error - 4 [ 141.203966][ C1] lapbether: lapb_data_request error - 4 [ 141.205790][ C1] lapbether: lapb_data_request error - 4 [ 141.207986][ C1] lapbether: lapb_data_request error - 4 [ 141.210247][ C1] lapbether: lapb_data_request error - 4 [ 141.225851][ T39] audit: type=1400 audit(1740613683.467:702): avc: denied { mounton } for pid=12952 comm="syz.3.2468" path="/590/file0" dev="tmpfs" ino=3235 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 141.303799][T12964] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2471'. [ 141.618693][T13006] netlink: 'syz.4.2479': attribute type 64 has an invalid length. [ 141.622694][T13006] netlink: 'syz.4.2479': attribute type 4 has an invalid length. [ 141.625055][T13006] netlink: 152 bytes leftover after parsing attributes in process `syz.4.2479'. [ 141.629259][ T39] audit: type=1400 audit(1740613683.907:703): avc: denied { setopt } for pid=12990 comm="syz.4.2479" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 141.774887][ C2] lapbether: lapb_data_request error - 4 [ 141.776900][ C2] lapbether: lapb_data_request error - 4 [ 141.799460][ T39] audit: type=1400 audit(1740613684.077:704): avc: denied { search } for pid=5651 comm="dhcpcd" name="netdev:wlan3" dev="debugfs" ino=42987 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 141.896627][T13041] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2494'. [ 141.918304][T13041] 8021q: adding VLAN 0 to HW filter on device bond20 [ 142.032053][T13059] fuse: Bad value for 'fd' [ 142.119518][T13070] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2503'. [ 142.148280][T13070] 8021q: adding VLAN 0 to HW filter on device bond34 [ 142.235719][T13084] ICMPv6: NDISC: Failed to initialize the control socket (err -2) [ 142.335536][T13112] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2509'. [ 142.366636][T13125] fuse: Bad value for 'fd' [ 142.576769][ C0] lapbether: lapb_data_request error - 4 [ 142.578500][ C0] lapbether: lapb_data_request error - 4 [ 142.584723][ C0] lapbether: lapb_data_request error - 4 [ 142.586446][ C0] lapbether: lapb_data_request error - 4 [ 142.588421][ C0] lapbether: lapb_data_request error - 4 [ 142.590109][ C0] lapbether: lapb_data_request error - 4 [ 142.623730][ T39] audit: type=1400 audit(1740613684.907:705): avc: denied { getopt } for pid=13176 comm="syz.0.2519" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 142.640904][ T39] audit: type=1400 audit(1740613684.907:706): avc: denied { getopt } for pid=13176 comm="syz.0.2519" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 142.644130][T13181] 8021q: adding VLAN 0 to HW filter on device bond21 [ 142.651620][T13181] vlan0: entered promiscuous mode [ 142.653767][T13181] bond21: entered promiscuous mode [ 142.682771][T13181] bond21: left promiscuous mode [ 142.744268][T13172] kvm_pr_unimpl_wrmsr: 62 callbacks suppressed [ 142.744282][T13172] kvm: kvm [13170]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 142.749597][T13172] kvm: kvm [13170]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 142.761399][T13172] kvm: kvm [13170]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 142.771986][T13172] kvm: kvm [13170]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 142.776252][T13172] kvm: kvm [13170]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 142.779300][T13172] kvm: kvm [13170]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 142.802050][T13172] kvm: kvm [13170]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 142.805142][T13172] kvm: kvm [13170]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 142.843161][T13172] kvm: kvm [13170]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 142.846158][T13172] kvm: kvm [13170]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 142.942542][ C0] lapbether: lapb_data_request error - 4 [ 142.946316][ C0] lapbether: lapb_data_request error - 4 [ 142.948535][ C0] lapbether: lapb_data_request error - 4 [ 142.950979][ C0] lapbether: lapb_data_request error - 4 [ 142.952766][ C0] lapbether: lapb_data_request error - 4 [ 142.955019][ C0] lapbether: lapb_data_request error - 4 [ 142.956747][ C0] lapbether: lapb_data_request error - 4 [ 143.258739][T13215] 8021q: adding VLAN 0 to HW filter on device bond22 [ 143.264776][T13215] vlan0: entered promiscuous mode [ 143.266833][T13215] bond22: entered promiscuous mode [ 143.283784][T13215] bond22: left promiscuous mode [ 143.416814][T13225] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13225 comm=syz.3.2536 [ 143.579700][ C1] lapbether: lapb_data_request error - 4 [ 143.581725][ C1] lapbether: lapb_data_request error - 4 [ 143.583951][ C1] lapbether: lapb_data_request error - 4 [ 143.585872][ C1] lapbether: lapb_data_request error - 4 [ 143.588719][ C1] lapbether: lapb_data_request error - 4 [ 143.593971][ C1] lapbether: lapb_data_request error - 4 [ 143.595982][ C1] lapbether: lapb_data_request error - 4 [ 143.610530][T13239] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2542'. [ 143.635567][T13239] 8021q: adding VLAN 0 to HW filter on device bond23 [ 143.698906][T13244] 8021q: adding VLAN 0 to HW filter on device bond35 [ 143.704304][T13244] vlan0: entered promiscuous mode [ 143.706398][T13244] bond35: entered promiscuous mode [ 143.712150][T13244] bond35: left promiscuous mode [ 143.731779][T13250] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 143.746601][ T39] audit: type=1400 audit(1740613686.027:707): avc: denied { ioctl } for pid=13246 comm="syz.2.2545" path="socket:[53311]" dev="sockfs" ino=53311 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 144.044435][T13265] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2550'. [ 144.052593][ C0] lapbether: lapb_data_request error - 4 [ 144.060036][ C1] lapbether: lapb_data_request error - 4 [ 144.062189][ C1] lapbether: lapb_data_request error - 4 [ 144.064682][ C1] lapbether: lapb_data_request error - 4 [ 144.066363][ C1] lapbether: lapb_data_request error - 4 [ 144.084408][ C1] lapbether: lapb_data_request error - 4 [ 144.086522][ C1] lapbether: lapb_data_request error - 4 [ 144.102838][T13273] ICMPv6: NDISC: Failed to initialize the control socket (err -2) [ 144.183451][T13283] netlink: 'syz.4.2556': attribute type 1 has an invalid length. [ 144.205227][T13283] vlan2: entered promiscuous mode [ 144.462567][T13316] netlink: 'syz.3.2565': attribute type 1 has an invalid length. [ 144.670127][ C3] lapbether: lapb_data_request error - 4 [ 144.682131][T13342] netlink: 'syz.3.2571': attribute type 1 has an invalid length. [ 144.696115][T13342] 8021q: adding VLAN 0 to HW filter on device bond25 [ 144.701169][T13342] vlan0: entered promiscuous mode [ 144.703170][T13342] bond25: entered promiscuous mode [ 144.720371][T13342] bond25: left promiscuous mode [ 144.759491][ C3] lapbether: lapb_data_request error - 4 [ 144.992471][T13366] netlink: 1624 bytes leftover after parsing attributes in process `syz.0.2576'. [ 145.059070][T13370] netlink: 14 bytes leftover after parsing attributes in process `syz.0.2578'. [ 145.243095][T13377] fuse: Unknown parameter 'grou00000000000000000000' [ 145.257240][T13370] bond0 (unregistering): (slave wlan1): Releasing backup interface [ 145.263141][T13370] mac80211_hwsim hwsim8 wlan1: left allmulticast mode [ 145.270951][T13370] bond0 (unregistering): (slave netdevsim0): Releasing backup interface [ 145.275299][T13370] bond0 (unregistering): Released all slaves [ 145.458415][T13391] netlink: 'syz.2.2583': attribute type 1 has an invalid length. [ 145.488750][T13391] 8021q: adding VLAN 0 to HW filter on device bond29 [ 145.495940][T13391] vlan3: entered promiscuous mode [ 145.499187][T13391] bond29: entered promiscuous mode [ 145.505618][T13391] bond29: left promiscuous mode [ 145.529044][ C3] lapbether: lapb_data_request error - 4 [ 145.532798][ C2] lapbether: lapb_data_request error - 4 [ 145.534645][ C2] lapbether: lapb_data_request error - 4 [ 145.543588][ T39] audit: type=1400 audit(1740613687.827:708): avc: denied { write } for pid=13402 comm="syz.0.2586" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 145.706723][T13416] fuse: Unknown parameter 'group_i00000000000000000000' [ 145.751415][T13421] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2590'. [ 146.258541][T13444] netlink: 'syz.3.2597': attribute type 1 has an invalid length. [ 146.285364][T13444] 8021q: adding VLAN 0 to HW filter on device bond26 [ 146.290144][T13444] vlan0: entered promiscuous mode [ 146.296923][T13444] bond26: entered promiscuous mode [ 146.304551][T13444] bond26: left promiscuous mode [ 146.456145][T13455] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2600'. [ 146.495964][ C2] lapbether: lapb_data_request error - 4 [ 146.499691][ C3] lapbether: lapb_data_request error - 4 [ 146.501547][ C3] lapbether: lapb_data_request error - 4 [ 146.503119][ T5938] Bluetooth: hci1: unexpected event 0x03 length: 17 > 11 [ 146.503252][ C3] lapbether: lapb_data_request error - 4 [ 146.506988][ C3] lapbether: lapb_data_request error - 4 [ 146.508674][ C3] lapbether: lapb_data_request error - 4 [ 146.510317][ C3] lapbether: lapb_data_request error - 4 [ 146.512140][ C3] lapbether: lapb_data_request error - 4 [ 146.516881][ C3] lapbether: lapb_data_request error - 4 [ 146.518588][ C3] lapbether: lapb_data_request error - 4 [ 146.520281][ C3] lapbether: lapb_data_request error - 4 [ 146.663988][T13475] fuse: Unknown parameter 'group_i00000000000000000000' [ 146.772103][ C1] lapbether: lapb_data_request error - 4 [ 146.774223][ C1] lapbether: lapb_data_request error - 4 [ 146.778430][ C1] lapbether: lapb_data_request error - 4 [ 146.865759][T13494] netlink: 'syz.3.2609': attribute type 1 has an invalid length. [ 146.907955][T13494] 8021q: adding VLAN 0 to HW filter on device bond27 [ 146.914512][T13494] vlan0: entered promiscuous mode [ 146.916971][T13494] bond27: entered promiscuous mode [ 146.948897][T13494] bond27: left promiscuous mode [ 146.957984][T13503] input: syz1 as /devices/virtual/input/input17 [ 147.392646][T13542] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2622'. [ 147.557411][T13542] 8021q: adding VLAN 0 to HW filter on device bond0 [ 147.737592][T13569] fuse: Unknown parameter 'group_id00000000000000000000' [ 147.878254][T13531] kvm_pr_unimpl_wrmsr: 22 callbacks suppressed [ 147.878274][T13531] kvm: kvm [13530]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 147.906897][T13531] kvm: kvm [13530]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 147.938958][T13531] kvm: kvm [13530]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 147.969717][T13531] kvm: kvm [13530]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 147.991138][T13531] kvm: kvm [13530]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 148.009795][T13531] kvm: kvm [13530]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 148.044411][ T39] audit: type=1400 audit(1740613690.327:709): avc: denied { ioctl } for pid=13619 comm="syz.0.2632" path="socket:[52842]" dev="sockfs" ino=52842 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 148.167348][T13619] delete_channel: no stack [ 148.269095][T13676] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2634'. [ 148.461822][ C3] lapbether: lapb_data_request error - 4 [ 148.465049][ C3] lapbether: lapb_data_request error - 4 [ 148.467264][ C3] lapbether: lapb_data_request error - 4 [ 148.478396][ C2] lapbether: lapb_data_request error - 4 [ 148.480271][ C2] lapbether: lapb_data_request error - 4 [ 148.482218][ C2] lapbether: lapb_data_request error - 4 [ 148.483925][ C2] lapbether: lapb_data_request error - 4 [ 148.485592][ C2] lapbether: lapb_data_request error - 4 [ 148.487296][ C2] lapbether: lapb_data_request error - 4 [ 148.489809][ C2] lapbether: lapb_data_request error - 4 [ 148.493728][ C2] lapbether: lapb_data_request error - 4 [ 148.495523][ C2] lapbether: lapb_data_request error - 4 [ 148.497775][ C2] lapbether: lapb_data_request error - 4 [ 148.499739][ C2] lapbether: lapb_data_request error - 4 [ 148.572115][ T5938] Bluetooth: hci1: command 0x040f tx timeout [ 148.738361][ T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 148.741756][ T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 148.755948][ T39] audit: type=1400 audit(1740613691.037:710): avc: denied { read } for pid=13715 comm="syz.4.2645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 148.917222][T13734] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2651'. [ 148.961747][ T39] audit: type=1400 audit(1740613691.247:711): avc: denied { read } for pid=13740 comm="syz.0.2654" path="socket:[51767]" dev="sockfs" ino=51767 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 148.979785][T13741] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13741 comm=syz.0.2654 [ 148.984524][ T5651] wireguard: wg0: Could not create IPv6 socket [ 148.989870][T13741] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2654'. [ 148.993877][T13741] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2654'. [ 148.997465][T13740] delete_channel: no stack [ 149.002157][T13743] ICMPv6: NDISC: Failed to initialize the control socket (err -2) [ 149.065144][ T5651] wireguard: wg1: Could not create IPv6 socket [ 149.123471][ T5651] wireguard: wg2: Could not create IPv6 socket [ 149.195152][T13759] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2659'. [ 149.197174][ T1145] bridge0: port 1(bridge_slave_0) entered blocking state [ 149.200249][ T1145] bridge0: port 1(bridge_slave_0) entered forwarding state [ 149.272718][T13752] kvm: kvm [13751]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 149.316280][T13752] kvm: kvm [13751]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 149.370210][T13776] trusted_key: encrypted_key: hex blob is missing [ 149.373048][T13777] trusted_key: encrypted_key: hex blob is missing [ 149.419543][T13752] kvm: kvm [13751]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 149.474869][T13752] kvm: kvm [13751]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000 [ 149.633249][ T39] audit: type=1400 audit(1740613691.917:712): avc: denied { ioctl } for pid=13794 comm="syz.3.2672" path="socket:[51895]" dev="sockfs" ino=51895 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 149.683313][T13798] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2673'. [ 149.751876][T13804] netlink: 1688 bytes leftover after parsing attributes in process `syz.0.2674'. [ 149.766717][T13802] 8021q: adding VLAN 0 to HW filter on device bond28 [ 149.784109][ C1] lapbether: lapb_data_request error - 4 [ 149.805932][ C3] lapbether: lapb_data_request error - 4 [ 149.807719][ C3] lapbether: lapb_data_request error - 4 [ 149.809434][ C3] lapbether: lapb_data_request error - 4 [ 149.811224][ C3] lapbether: lapb_data_request error - 4 [ 149.812924][ C3] lapbether: lapb_data_request error - 4 [ 149.814614][ C3] lapbether: lapb_data_request error - 4 [ 149.816319][ C3] lapbether: lapb_data_request error - 4 [ 150.190957][T13831] netlink: 'syz.0.2684': attribute type 1 has an invalid length. [ 150.230176][T13833] netlink: 1688 bytes leftover after parsing attributes in process `syz.2.2683'. [ 150.279727][T13840] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2686'. [ 150.307514][T13840] 8021q: adding VLAN 0 to HW filter on device bond30 [ 150.574861][ C1] lapbether: lapb_data_request error - 4 [ 150.650832][ T5938] Bluetooth: hci1: command 0x040f tx timeout [ 150.804992][T13867] netlink: 1688 bytes leftover after parsing attributes in process `syz.0.2694'. [ 151.201678][T13891] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2700'. [ 151.416602][T13908] ICMPv6: NDISC: Failed to initialize the control socket (err -2) [ 151.419028][ T5938] Bluetooth: hci1: unexpected event 0x03 length: 17 > 11 [ 151.419046][ T5938] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection [ 151.460156][T13915] ICMPv6: NDISC: Failed to initialize the control socket (err -2) [ 151.471895][ T30] e1000 0000:00:06.0 eth0: Reset adapter [ 151.566768][T13905] e1000e 0000:00:02.0: Some CPU C-states have been disabled in order to enable jumbo frames [ 151.691272][ T30] e1000 0000:00:06.0 eth0: Reset adapter [ 151.795027][ C2] lapbether: lapb_data_request error - 4 [ 151.796871][ C2] lapbether: lapb_data_request error - 4 [ 151.798528][ C2] lapbether: lapb_data_request error - 4 [ 151.800236][ C2] lapbether: lapb_data_request error - 4 [ 151.801976][ C2] lapbether: lapb_data_request error - 4 [ 151.803787][ C2] lapbether: lapb_data_request error - 4 [ 151.805446][ C2] lapbether: lapb_data_request error - 4 [ 151.807138][ C2] lapbether: lapb_data_request error - 4 [ 151.808758][ C2] lapbether: lapb_data_request error - 4 [ 151.810423][ C2] lapbether: lapb_data_request error - 4 [ 151.812192][ C2] lapbether: lapb_data_request error - 4 [ 151.814528][ C2] lapbether: lapb_data_request error - 4 [ 151.816908][ C2] lapbether: lapb_data_request error - 4 [ 151.819070][ C2] lapbether: lapb_data_request error - 4 [ 151.820929][ C2] lapbether: lapb_data_request error - 4 [ 152.064684][ T832] e1000e 0000:00:02.0 eth1: NIC Link is Up 1000 Mbps Full Duplex, Flow Control: Rx/Tx [ 152.458135][ C1] lapbether: lapb_data_request error - 4 [ 152.463943][ C1] lapbether: lapb_data_request error - 4 [ 152.466128][ C1] lapbether: lapb_data_request error - 4 [ 152.468194][ C1] lapbether: lapb_data_request error - 4 [ 152.469996][ C1] lapbether: lapb_data_request error - 4 [ 152.831699][ C2] lapbether: lapb_data_request error - 4 [ 152.833531][ C2] lapbether: lapb_data_request error - 4 [ 152.835333][ C2] lapbether: lapb_data_request error - 4 [ 152.837057][ C2] lapbether: lapb_data_request error - 4 [ 152.839338][ C2] lapbether: lapb_data_request error - 4 [ 152.841342][ C2] lapbether: lapb_data_request error - 4 [ 152.843255][ C2] lapbether: lapb_data_request error - 4 [ 153.186898][ C2] lapbether: lapb_data_request error - 4 [ 153.201472][ C3] lapbether: lapb_data_request error - 4 [ 153.204285][ C3] lapbether: lapb_data_request error - 4 [ 153.207189][ C3] lapbether: lapb_data_request error - 4 [ 153.209788][ C3] lapbether: lapb_data_request error - 4 [ 153.223045][ C3] lapbether: lapb_data_request error - 4 [ 153.225317][ C3] lapbether: lapb_data_request error - 4 [ 153.227525][ C3] lapbether: lapb_data_request error - 4 [ 153.230851][ C3] lapbether: lapb_data_request error - 4 [ 153.457805][ T5938] Bluetooth: hci1: command 0x040f tx timeout [ 153.570209][ C2] lapbether: lapb_data_request error - 4 [ 153.573410][ C2] lapbether: lapb_data_request error - 4 [ 153.575692][ C2] lapbether: lapb_data_request error - 4 [ 153.665698][ C0] lapbether: lapb_data_request error - 4 [ 153.851748][ T6704] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX [ 154.039697][ C1] lapbether: lapb_data_request error - 4 [ 154.099183][ C1] ------------[ cut here ]------------ [ 154.101489][ C1] WARNING: CPU: 1 PID: 5922 at ./include/linux/skbuff.h:5155 e1000_rx_checksum.constprop.0+0x176/0x1e0 [ 154.105800][ C1] Modules linked in: [ 154.107407][ C1] CPU: 1 UID: 0 PID: 5922 Comm: sshd Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0 [ 154.113005][ C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 154.117118][ C1] RIP: 0010:e1000_rx_checksum.constprop.0+0x176/0x1e0 [ 154.119693][ C1] Code: 00 00 00 00 fc ff df 80 3c 02 00 75 76 48 83 85 b0 04 00 00 01 5b 5d 41 5c 41 5d 41 5e 41 5f e9 40 24 33 fb e8 3b 24 33 fb 90 <0f> 0b 90 e9 e7 fe ff ff e8 2d 24 33 fb 48 8d bd a8 04 00 00 48 b8 [ 154.126426][ C1] RSP: 0018:ffffc900006b0a48 EFLAGS: 00010246 [ 154.128303][ C1] RAX: 0000000000000000 RBX: 0000000000000007 RCX: ffffffff8686ba9c [ 154.130552][ C1] RDX: ffff88802b018000 RSI: ffffffff8686bbb5 RDI: 0000000000000001 [ 154.133301][ C1] RBP: ffff888108068d80 R08: 0000000000000001 R09: 0000000000000000 [ 154.136308][ C1] R10: 0000000000000020 R11: 0000000000000003 R12: ffff88804e1daa00 [ 154.139493][ C1] R13: 0000000000000020 R14: ffff88804e1daa80 R15: 0000000000000000 [ 154.142685][ C1] FS: 00007fe68077dd00(0000) GS:ffff88806a700000(0000) knlGS:0000000000000000 [ 154.146187][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 154.148761][ C1] CR2: 00007f5e21a30908 CR3: 0000000025a08000 CR4: 0000000000352ef0 [ 154.151977][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 154.155022][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 154.158215][ C1] Call Trace: [ 154.159613][ C1] [ 154.159933][ C3] lapbether: lapb_data_request error - 4 [ 154.160834][ C1] ? __warn+0xea/0x3c0 [ 154.163298][ C3] lapbether: lapb_data_request error - 4 [ 154.164772][ C1] ? e1000_rx_checksum.constprop.0+0x176/0x1e0 [ 154.169379][ C1] ? report_bug+0x3c0/0x580 [ 154.171281][ C1] ? handle_bug+0x54/0xa0 [ 154.173080][ C1] ? exc_invalid_op+0x17/0x50 [ 154.174983][ C1] ? asm_exc_invalid_op+0x1a/0x20 [ 154.176981][ C1] ? e1000_rx_checksum.constprop.0+0x5c/0x1e0 [ 154.179394][ C1] ? e1000_rx_checksum.constprop.0+0x175/0x1e0 [ 154.181963][ C1] ? e1000_rx_checksum.constprop.0+0x176/0x1e0 [ 154.184363][ C1] ? e1000_rx_checksum.constprop.0+0x175/0x1e0 [ 154.186782][ C1] e1000_clean_jumbo_rx_irq+0xf3e/0x28c0 [ 154.189012][ C1] ? e1000_clean+0xea6/0x2700 [ 154.190957][ C1] ? __pfx_e1000_clean_jumbo_rx_irq+0x10/0x10 [ 154.193378][ C1] e1000_clean+0x9d6/0x2700 [ 154.195230][ C1] ? __pfx_mark_lock+0x10/0x10 [ 154.197162][ C1] ? __pfx_e1000_clean+0x10/0x10 [ 154.199206][ C1] ? hlock_class+0x4e/0x130 [ 154.201026][ C1] ? __lock_acquire+0xcc5/0x3c40 [ 154.202948][ C1] __napi_poll.constprop.0+0xb7/0x550 [ 154.205048][ C1] net_rx_action+0xa94/0x1010 [ 154.207033][ C1] ? __pfx_net_rx_action+0x10/0x10 [ 154.209152][ C1] ? __pfx_mark_lock+0x10/0x10 [ 154.211159][ C1] ? lock_acquire.part.0+0x11b/0x380 [ 154.213346][ C1] ? kvm_sched_clock_read+0x11/0x20 [ 154.215199][ C1] ? sched_clock+0x38/0x60 [ 154.216707][ C1] ? sched_clock_cpu+0x6d/0x4d0 [ 154.218643][ C1] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 154.220827][ C1] ? mark_held_locks+0x9f/0xe0 [ 154.222707][ C1] handle_softirqs+0x213/0x8f0 [ 154.224682][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 154.226473][ C1] ? irqtime_account_irq+0x176/0x2d0 [ 154.228612][ C1] ? __dev_queue_xmit+0x89b/0x43e0 [ 154.230738][ C1] do_softirq+0xb2/0xf0 [ 154.232465][ C1] [ 154.233724][ C1] [ 154.234917][ C1] __local_bh_enable_ip+0x100/0x120 [ 154.237021][ C1] ? __dev_queue_xmit+0x89b/0x43e0 [ 154.239077][ C1] __dev_queue_xmit+0x8b0/0x43e0 [ 154.241095][ C1] ? __pfx___dev_queue_xmit+0x10/0x10 [ 154.243201][ C1] ? __free_zapped_classes+0x2a0/0x320 [ 154.245408][ C1] ? find_held_lock+0x2d/0x110 [ 154.247062][ C1] ? mark_held_locks+0x9f/0xe0 [ 154.248944][ C1] ip_finish_output2+0xc34/0x2180 [ 154.251031][ C1] ? __pfx_ip_finish_output2+0x10/0x10 [ 154.253240][ C1] ? ip_skb_dst_mtu+0x496/0xe90 [ 154.255167][ C1] ? skb_gso_transport_seglen+0x1a5/0x3b0 [ 154.257417][ C1] __ip_finish_output+0x49e/0x950 [ 154.259415][ C1] ip_finish_output+0x35/0x380 [ 154.261383][ C1] ip_output+0x13b/0x2a0 [ 154.263103][ C1] ? __pfx_ip_output+0x10/0x10 [ 154.264792][ C1] __ip_queue_xmit+0x1a8d/0x22d0 [ 154.266286][ C1] ? __pfx_ip_queue_xmit+0x10/0x10 [ 154.267803][ C1] __tcp_transmit_skb+0x2b39/0x3ec0 [ 154.269340][ C1] ? __pfx___tcp_transmit_skb+0x10/0x10 [ 154.271036][ C1] ? __build_skb_around+0x278/0x3b0 [ 154.272601][ C1] tcp_write_xmit+0x12b1/0x8560 [ 154.274090][ C1] ? kfree_skbmem+0x1a4/0x1f0 [ 154.275483][ C1] __tcp_push_pending_frames+0xaf/0x390 [ 154.277020][ C1] tcp_rcv_established+0xd86/0x2140 [ 154.278483][ C1] ? __pfx_tcp_rcv_established+0x10/0x10 [ 154.280128][ C1] ? __pfx_ipv4_dst_check+0x10/0x10 [ 154.281732][ C1] tcp_v4_do_rcv+0x5ca/0xa90 [ 154.283120][ C1] ? __pfx_tcp_v4_do_rcv+0x10/0x10 [ 154.284635][ C1] __release_sock+0x31b/0x400 [ 154.286034][ C1] ? release_sock+0x21/0x220 [ 154.287388][ C1] release_sock+0x5a/0x220 [ 154.288719][ C1] tcp_recvmsg+0x139/0x680 [ 154.290034][ C1] ? __pfx_tcp_recvmsg+0x10/0x10 [ 154.291549][ C1] ? sock_has_perm+0x25a/0x2f0 [ 154.292973][ C1] ? __pfx_avc_has_perm+0x10/0x10 [ 154.294447][ C1] ? __pfx_mark_lock+0x10/0x10 [ 154.295879][ C1] ? __pfx_tcp_recvmsg+0x10/0x10 [ 154.297339][ C1] inet_recvmsg+0x12b/0x6a0 [ 154.298678][ C1] ? __pfx_inet_recvmsg+0x10/0x10 [ 154.300167][ C1] sock_recvmsg+0x1b2/0x250 [ 154.301549][ C1] sock_read_iter+0x2bb/0x3b0 [ 154.302920][ C1] ? __pfx_sock_read_iter+0x10/0x10 [ 154.304510][ C1] ? bpf_lsm_file_permission+0x9/0x10 [ 154.306102][ C1] ? security_file_permission+0x71/0x210 [ 154.307747][ C1] ? rw_verify_area+0xcf/0x680 [ 154.309154][ C1] vfs_read+0xa53/0xbf0 [ 154.310436][ C1] ? __pfx_vfs_read+0x10/0x10 [ 154.311813][ C1] ? __might_fault+0xe3/0x190 [ 154.313183][ C1] ? __might_fault+0xe3/0x190 [ 154.314660][ C1] ? _copy_to_user+0x48/0xd0 [ 154.316027][ C1] ksys_read+0x207/0x250 [ 154.317332][ C1] ? __pfx_ksys_read+0x10/0x10 [ 154.318789][ C1] do_syscall_64+0xcd/0x250 [ 154.320197][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.322023][ C1] RIP: 0033:0x7fe680316b6a [ 154.323354][ C1] Code: 00 3d 00 00 41 00 75 0d 50 48 8d 3d 2d 08 0a 00 e8 ea 7d 01 00 31 c0 e9 07 ff ff ff 64 8b 04 25 18 00 00 00 85 c0 75 1b 0f 05 <48> 3d 00 f0 ff ff 76 6c 48 8b 15 8f a2 0d 00 f7 d8 64 89 02 48 83 [ 154.328917][ C1] RSP: 002b:00007fffdfbafef8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 154.331359][ C1] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe680316b6a [ 154.333770][ C1] RDX: 0000000000040000 RSI: 000055c8485df130 RDI: 0000000000000004 [ 154.336147][ C1] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000 [ 154.338461][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 154.340835][ C1] R13: 00007fffdfbaff60 R14: 000055c8484bb3d0 R15: 00007fffdfbaffd8 [ 154.343153][ C1] [ 154.344170][ C1] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 154.346331][ C1] CPU: 1 UID: 0 PID: 5922 Comm: sshd Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0 [ 154.349294][ C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 154.352424][ C1] Call Trace: [ 154.353448][ C1] [ 154.354314][ C1] dump_stack_lvl+0x3d/0x1f0 [ 154.355724][ C1] panic+0x71d/0x800 [ 154.356888][ C1] ? __pfx_panic+0x10/0x10 [ 154.358205][ C1] ? show_trace_log_lvl+0x29d/0x3d0 [ 154.359776][ C1] ? check_panic_on_warn+0x1f/0xb0 [ 154.361274][ C1] ? e1000_rx_checksum.constprop.0+0x176/0x1e0 [ 154.363093][ C1] check_panic_on_warn+0xab/0xb0 [ 154.364557][ C1] __warn+0xf6/0x3c0 [ 154.365727][ C1] ? e1000_rx_checksum.constprop.0+0x176/0x1e0 [ 154.367499][ C1] report_bug+0x3c0/0x580 [ 154.369043][ C1] handle_bug+0x54/0xa0 [ 154.370302][ C1] exc_invalid_op+0x17/0x50 [ 154.371665][ C1] asm_exc_invalid_op+0x1a/0x20 [ 154.373138][ C1] RIP: 0010:e1000_rx_checksum.constprop.0+0x176/0x1e0 [ 154.375083][ C1] Code: 00 00 00 00 fc ff df 80 3c 02 00 75 76 48 83 85 b0 04 00 00 01 5b 5d 41 5c 41 5d 41 5e 41 5f e9 40 24 33 fb e8 3b 24 33 fb 90 <0f> 0b 90 e9 e7 fe ff ff e8 2d 24 33 fb 48 8d bd a8 04 00 00 48 b8 [ 154.382265][ C1] RSP: 0018:ffffc900006b0a48 EFLAGS: 00010246 [ 154.384543][ C1] RAX: 0000000000000000 RBX: 0000000000000007 RCX: ffffffff8686ba9c [ 154.387330][ C1] RDX: ffff88802b018000 RSI: ffffffff8686bbb5 RDI: 0000000000000001 [ 154.389624][ C1] RBP: ffff888108068d80 R08: 0000000000000001 R09: 0000000000000000 [ 154.391926][ C1] R10: 0000000000000020 R11: 0000000000000003 R12: ffff88804e1daa00 [ 154.394298][ C1] R13: 0000000000000020 R14: ffff88804e1daa80 R15: 0000000000000000 [ 154.396605][ C1] ? e1000_rx_checksum.constprop.0+0x5c/0x1e0 [ 154.398401][ C1] ? e1000_rx_checksum.constprop.0+0x175/0x1e0 [ 154.400195][ C1] ? e1000_rx_checksum.constprop.0+0x175/0x1e0 [ 154.401981][ C1] e1000_clean_jumbo_rx_irq+0xf3e/0x28c0 [ 154.403684][ C1] ? e1000_clean+0xea6/0x2700 [ 154.405254][ C1] ? __pfx_e1000_clean_jumbo_rx_irq+0x10/0x10 [ 154.407366][ C1] e1000_clean+0x9d6/0x2700 [ 154.409097][ C1] ? __pfx_mark_lock+0x10/0x10 [ 154.410898][ C1] ? __pfx_e1000_clean+0x10/0x10 [ 154.412775][ C1] ? hlock_class+0x4e/0x130 [ 154.414477][ C1] ? __lock_acquire+0xcc5/0x3c40 [ 154.416283][ C1] __napi_poll.constprop.0+0xb7/0x550 [ 154.418021][ C1] net_rx_action+0xa94/0x1010 [ 154.419583][ C1] ? __pfx_net_rx_action+0x10/0x10 [ 154.421182][ C1] ? __pfx_mark_lock+0x10/0x10 [ 154.422637][ C1] ? lock_acquire.part.0+0x11b/0x380 [ 154.424242][ C1] ? kvm_sched_clock_read+0x11/0x20 [ 154.425762][ C1] ? sched_clock+0x38/0x60 [ 154.427080][ C1] ? sched_clock_cpu+0x6d/0x4d0 [ 154.428456][ C1] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 154.430069][ C1] ? mark_held_locks+0x9f/0xe0 [ 154.431437][ C1] handle_softirqs+0x213/0x8f0 [ 154.432921][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 154.434502][ C1] ? irqtime_account_irq+0x176/0x2d0 [ 154.436067][ C1] ? __dev_queue_xmit+0x89b/0x43e0 [ 154.437549][ C1] do_softirq+0xb2/0xf0 [ 154.438772][ C1] [ 154.439663][ C1] [ 154.440538][ C1] __local_bh_enable_ip+0x100/0x120 [ 154.442045][ C1] ? __dev_queue_xmit+0x89b/0x43e0 [ 154.443544][ C1] __dev_queue_xmit+0x8b0/0x43e0 [ 154.444990][ C1] ? __pfx___dev_queue_xmit+0x10/0x10 [ 154.446609][ C1] ? __free_zapped_classes+0x2a0/0x320 [ 154.448198][ C1] ? find_held_lock+0x2d/0x110 [ 154.449612][ C1] ? mark_held_locks+0x9f/0xe0 [ 154.450972][ C1] ip_finish_output2+0xc34/0x2180 [ 154.452442][ C1] ? __pfx_ip_finish_output2+0x10/0x10 [ 154.453976][ C1] ? ip_skb_dst_mtu+0x496/0xe90 [ 154.455384][ C1] ? skb_gso_transport_seglen+0x1a5/0x3b0 [ 154.457050][ C1] __ip_finish_output+0x49e/0x950 [ 154.458471][ C1] ip_finish_output+0x35/0x380 [ 154.459833][ C1] ip_output+0x13b/0x2a0 [ 154.461080][ C1] ? __pfx_ip_output+0x10/0x10 [ 154.462479][ C1] __ip_queue_xmit+0x1a8d/0x22d0 [ 154.463969][ C1] ? __pfx_ip_queue_xmit+0x10/0x10 [ 154.465476][ C1] __tcp_transmit_skb+0x2b39/0x3ec0 [ 154.467001][ C1] ? __pfx___tcp_transmit_skb+0x10/0x10 [ 154.468612][ C1] ? __build_skb_around+0x278/0x3b0 [ 154.470107][ C1] tcp_write_xmit+0x12b1/0x8560 [ 154.471545][ C1] ? kfree_skbmem+0x1a4/0x1f0 [ 154.472954][ C1] __tcp_push_pending_frames+0xaf/0x390 [ 154.474565][ C1] tcp_rcv_established+0xd86/0x2140 [ 154.476103][ C1] ? __pfx_tcp_rcv_established+0x10/0x10 [ 154.477730][ C1] ? __pfx_ipv4_dst_check+0x10/0x10 [ 154.479308][ C1] tcp_v4_do_rcv+0x5ca/0xa90 [ 154.480749][ C1] ? __pfx_tcp_v4_do_rcv+0x10/0x10 [ 154.482246][ C1] __release_sock+0x31b/0x400 [ 154.483662][ C1] ? release_sock+0x21/0x220 [ 154.485019][ C1] release_sock+0x5a/0x220 [ 154.486403][ C1] tcp_recvmsg+0x139/0x680 [ 154.487692][ C1] ? __pfx_tcp_recvmsg+0x10/0x10 [ 154.489134][ C1] ? sock_has_perm+0x25a/0x2f0 [ 154.490537][ C1] ? __pfx_avc_has_perm+0x10/0x10 [ 154.492030][ C1] ? __pfx_mark_lock+0x10/0x10 [ 154.493463][ C1] ? __pfx_tcp_recvmsg+0x10/0x10 [ 154.494912][ C1] inet_recvmsg+0x12b/0x6a0 [ 154.496278][ C1] ? __pfx_inet_recvmsg+0x10/0x10 [ 154.497753][ C1] sock_recvmsg+0x1b2/0x250 [ 154.499075][ C1] sock_read_iter+0x2bb/0x3b0 [ 154.500541][ C1] ? __pfx_sock_read_iter+0x10/0x10 [ 154.502086][ C1] ? bpf_lsm_file_permission+0x9/0x10 [ 154.503666][ C1] ? security_file_permission+0x71/0x210 [ 154.505314][ C1] ? rw_verify_area+0xcf/0x680 [ 154.506730][ C1] vfs_read+0xa53/0xbf0 [ 154.507978][ C1] ? __pfx_vfs_read+0x10/0x10 [ 154.509417][ C1] ? __might_fault+0xe3/0x190 [ 154.510805][ C1] ? __might_fault+0xe3/0x190 [ 154.512229][ C1] ? _copy_to_user+0x48/0xd0 [ 154.513614][ C1] ksys_read+0x207/0x250 [ 154.514862][ C1] ? __pfx_ksys_read+0x10/0x10 [ 154.516307][ C1] do_syscall_64+0xcd/0x250 [ 154.517641][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 154.519369][ C1] RIP: 0033:0x7fe680316b6a [ 154.520694][ C1] Code: 00 3d 00 00 41 00 75 0d 50 48 8d 3d 2d 08 0a 00 e8 ea 7d 01 00 31 c0 e9 07 ff ff ff 64 8b 04 25 18 00 00 00 85 c0 75 1b 0f 05 <48> 3d 00 f0 ff ff 76 6c 48 8b 15 8f a2 0d 00 f7 d8 64 89 02 48 83 [ 154.526343][ C1] RSP: 002b:00007fffdfbafef8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 154.528782][ C1] RAX: ffffffffffffffda RBX: 0000000000040000 RCX: 00007fe680316b6a [ 154.531063][ C1] RDX: 0000000000040000 RSI: 000055c8485df130 RDI: 0000000000000004 [ 154.533392][ C1] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000 [ 154.535662][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 154.537964][ C1] R13: 00007fffdfbaff60 R14: 000055c8484bb3d0 R15: 00007fffdfbaffd8 [ 154.540391][ C1] [ 154.541843][ C1] Kernel Offset: disabled [ 154.543182][ C1] Rebooting in 86400 seconds.. VM DIAGNOSIS: 23:05:36 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000001 RBX=ffffffff821cc701 RCX=0000000000000000 RDX=1ffff9200072cedc RSI=0000000000000001 RDI=ffffffff821cc701 RBP=ffffc900039676e0 RSP=ffffc90003967668 R8 =ffffc900039676cc R9 =ffffffff9103e81c R10=ffffc90003967698 R11=0000000000011cf3 R12=ffffffff81a59ae0 R13=ffffc90003967758 R14=0000000000000000 R15=ffff88805a914880 RIP=ffffffff81843f88 RFL=00000296 [--S-AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007fc3fe93c108 CR3=0000000059d20000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000ff00 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff854080f5 RDI=ffffffff9ab80780 RBP=ffffffff9ab80740 RSP=ffffc900006b03c8 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000007 R12=0000000000000000 R13=0000000000000020 R14=ffffffff9ab80740 R15=0000000000000000 RIP=ffffffff8540811f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fe68077dd00 ffffffff 00c00000 GS =0000 ffff88806a700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f5e21a30908 CR3=0000000025a08000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 ZMM17=45c9391119f39d9e 0c223f30e28771e1 45c9391119f39d9e 0c223f30e28771e1 45c9391119f39d9e 0c223f30e28771e1 45c9391119f39d9e 0c223f30e28771e1 ZMM18=f83c079407f43587 492403ac13b5b9e2 f83c079407f43587 492403ac13b5b9e2 f83c079407f43587 492403ac13b5b9e2 f83c079407f43587 492403ac13b5b9e2 ZMM19=9c13000000000000 0000000000000188 9c13000000000000 0000000000000187 9c13000000000000 0000000000000186 9c13000000000000 0000000000000185 ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=0c223f300c223f30 0c223f300c223f30 0c223f300c223f30 0c223f300c223f30 0c223f300c223f30 0c223f300c223f30 0c223f300c223f30 0c223f300c223f30 ZMM22=19f39d9e19f39d9e 19f39d9e19f39d9e 19f39d9e19f39d9e 19f39d9e19f39d9e 19f39d9e19f39d9e 19f39d9e19f39d9e 19f39d9e19f39d9e 19f39d9e19f39d9e ZMM23=45c9391145c93911 45c9391145c93911 45c9391145c93911 45c9391145c93911 45c9391145c93911 45c9391145c93911 45c9391145c93911 45c9391145c93911 ZMM24=13b5b9e213b5b9e2 13b5b9e213b5b9e2 13b5b9e213b5b9e2 13b5b9e213b5b9e2 13b5b9e213b5b9e2 13b5b9e213b5b9e2 13b5b9e213b5b9e2 13b5b9e213b5b9e2 ZMM25=492403ac492403ac 492403ac492403ac 492403ac492403ac 492403ac492403ac 492403ac492403ac 492403ac492403ac 492403ac492403ac 492403ac492403ac ZMM26=07f4358707f43587 07f4358707f43587 07f4358707f43587 07f4358707f43587 07f4358707f43587 07f4358707f43587 07f4358707f43587 07f4358707f43587 ZMM27=f83c0794f83c0794 f83c0794f83c0794 f83c0794f83c0794 f83c0794f83c0794 f83c0794f83c0794 f83c0794f83c0794 f83c0794f83c0794 f83c0794f83c0794 ZMM28=000001900000018f 0000018e0000018d 0000018c0000018b 0000018a00000189 0000018800000187 0000018600000185 0000018400000183 0000018200000181 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=9c1300009c130000 9c1300009c130000 9c1300009c130000 9c1300009c130000 9c1300009c130000 9c1300009c130000 9c1300009c130000 9c1300009c130000 info registers vcpu 2 CPU#2 RAX=dffffc0000000000 RBX=ffffffff86620efc RCX=0000000000000000 RDX=1ffff920000cb0a6 RSI=ffffc90000658908 RDI=ffffffff86620efc RBP=ffffc90000658530 RSP=ffffc900006584b0 R8 =ffffc9000065851c R9 =ffffffff91852b30 R10=ffffc900006584e8 R11=0000000000082d58 R12=ffffffff81a59ae0 R13=ffffc900006585a8 R14=0000000000000000 R15=ffff888020f50000 RIP=ffffffff81843f65 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a800000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000055a3687fa300 CR3=000000000df80000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000c0c004ff Opmask01=0000000000000001 Opmask02=000000003b3f3ffb Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0020262620003a25 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 646970006e69622f 7273752f3a6e6962 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffff0f ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0020262620003a25 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 0000000000ff0000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000ff00ff ffff000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 0000000000ff0000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055a36800662d 000055a36880bd48 000055a36880bd68 6c69665f70006d72 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055a36800662d 000055a36880bd48 000055a36880bd68 6c69665f70006d72 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000558c47004902 0000558c47809248 0000558c47809247 4346495f5f00425d ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055a368801938 0000000000000000 000000000000000f 0000000000885d81 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000000 RBX=ffff88806a7468c0 RCX=ffffffff81add19a RDX=ffff888020e5a440 RSI=ffffffff81add174 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc90000d2f928 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000006 R12=ffffed100d4e8d19 R13=0000000000000001 R14=ffff88806a93fe80 R15=ffff88806a7468c8 RIP=ffffffff81add176 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a900000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000055a368810160 CR3=000000000df80000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000003cc9 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000004040101 Opmask01=0000000001100000 Opmask02=000000000fffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff705466b0 0000003000000010 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff705466b0 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e2e2e2e2e2e2e2e 2e2e2e2e2e2e2e2e ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000ff0000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5548474900000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5548474953004d52 4c4147495300424b 4c56444049405700 4d52455447495300 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000559014855b20 00005590148560a0 0000000000000181 0000336d69737665 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 c24ad6fb2901f375 000055954d85937d 0000000000000051 000000336e616c77 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000559071e3e233 73656d5f70636864 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 725f0f6585683661 72610f7ffb6f737f 656775f373f7ffff 7f7f7d7f75777965 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 0000726565666965 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 00006d5f65636864 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2b313423342c ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020