last executing test programs: 6.927076131s ago: executing program 0 (id=7363): syz_init_net_socket$rose(0xb, 0x5, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, 0x0) sendfile(0xffffffffffffffff, r2, 0x0, 0x100800001) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) socket$inet_udp(0x2, 0x2, 0x0) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_encrypt_change={{0x8, 0x4}, {0x0, 0xc8}}}, 0x7) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) connect$inet6(r4, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="02c90012000e00050014010a00c4e05ef81b9f5dce0e4d00000700ffff00000700"], 0x17) syz_emit_vhci(&(0x7f0000000400)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x1a8}, "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"}, 0x1ac) syz_emit_vhci(0x0, 0x0) syz_open_dev$usbmon(&(0x7f0000000280), 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0) sched_setscheduler(0x0, 0x3, &(0x7f0000000080)=0x7) openat$pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r7, 0x4004ae99, &(0x7f0000000040)=0x4) 6.233108043s ago: executing program 2 (id=7364): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) mknod(&(0x7f0000000240)='./file0\x00', 0x0, 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id', @ANYRESHEX=r0]) truncate(&(0x7f0000001700)='./file0\x00', 0x1) 6.061607702s ago: executing program 2 (id=7367): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000680), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000140)) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000080)=0x1d) creat(&(0x7f0000000240)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000001900), 0x0) socket$nl_route(0x10, 0x3, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_netfilter(0x10, 0x3, 0xc) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) openat$tun(0xffffffffffffff9c, 0x0, 0x7b0740709918abc0, 0x0) socket$nl_route(0x10, 0x3, 0x0) r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x1, 0x4, [{0x0, 0x2}]}, @enum]}}, &(0x7f0000000080)=""/227, 0x3e, 0xe3, 0x1}, 0x20) bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000240)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x0, '\x00', 0x0, r2, 0x1, 0x1}, 0x48) r3 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r3, &(0x7f0000000040)={0x18, 0x0, {0x4, @broadcast, 'wlan1\x00'}}, 0x1e) sendmmsg(r3, &(0x7f0000003280)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000940)='!A', 0x2}, {&(0x7f0000000500)="34af0994d195c410145827bc0f87a847ca3928e399f618192fad3d5d017257b7c1d60e5f6c36054b7106f9eb69a0b98d64486d4ee6a5ffdcc3b174b12016a1bbe448a7e48faa25c4a72a3559cbeca2e9b81c6fb628e6fb296b6567d7a31fe393b51fee06730bc6de787336af4d412762897555770a5ff9007eafc06336f8be2d2b3e89d4d8a06535e0b86064e551c7924fb60758ee2aadaa416f303eb4cb5b79fa160d1b0a5cbe56df634bc421dcbad57ec38a8b46dccb1631277b9bdb33fa3e73a57b3274655015335405c92800fc8b44ce7aba", 0xd4}, {&(0x7f0000000600)="d9c4d51098f6753682b38343cdeca77b8182f6cd32c635fa47ab4c88ba19278336fc5dc4fbe74487b5e243cb9dd77b6fc782d2667350f7c2131b8bbdd8a9536a003ee94a719306d9472c6974ad59a31c87e3faf762be09", 0x57}], 0x3}}, {{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000a80)="1fa7", 0x2}], 0x1}}, {{&(0x7f0000000300)=@nfc={0x27, 0x0, 0x0, 0x4}, 0x80, &(0x7f0000000ec0), 0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="1000000000000000080100000800110010000000010000000e01000001000000"], 0x20}}, {{&(0x7f0000000a00)=@pptp={0x18, 0x2, {0x0, @local}}, 0x80, &(0x7f0000002c00)=[{&(0x7f0000000380)="5a596589baba253516d731af4173fcad733b2fb29bc9b993ca5950888d7e2d3f11869c1e39e1cc5175c4cf3fd98d1859d8cfa81668dc7e0f3b3fd684cb7145553af56d5d1ade517a3a38b4591f6126aea200cc1e92f4ea0bd3ea7773722a4b27ac28b49ef675dfc5b07eebb9c81d7f71c332556ba64daed108b8c0d639b497ac7d7246e70634ab59c45f35eff40ecaaa2fa0915ee641bbcb637ac0da3d92879767aaa82d0eb048fb228ce2340749020548c65c482ac3cc694166e614f32ad79d", 0xc0}, {&(0x7f00000004c0)="0d0a559ec23cf0588f6a4e04214ca8079ddf74a39674f371341a092f6f2eaf9d6633c4e42a7aeb69616a19ab177cddf7b638787c39fdb41edfa1", 0x3a}, {&(0x7f0000000ac0)="20e46099be32f377badbdb7d02ca962ea4d959308aa66e29608d077c335aa50c5f32b935968abf7bde35e743cbb4789ba45624349769b1152092a222c042b60e30", 0x41}, {&(0x7f0000001140)="ed737cd3ede969ff4ba9b3f4948982056767e3034aa1692e0e55a38fa089b7e8150c875770afeb3ec173a69634654aa3c03e6fa4d42a8300446be26fcd468cb893ac69cf03a759be60489593eb", 0x4d}, {&(0x7f0000001700)="d70edee95ab4b4b03853ed1dc81d437bc2ca46698d8095eb1e6e7eb0e39e247f1aa50da691038a1f22432cb153789622dd5f25104b86378b248856230cfd74042f38b8cc6efbe441b8acbe86f612ba2018b2817eec65189dfdfc30e16c70cdb008de8cbf2ac45477ad632ee52f7cd4be574f8689d7d52d618d02774da2c41e12561ccfce4d2f417e621a8fa8", 0x8c}, {&(0x7f00000017c0)="4c4432428df54ebb0d27f3cd1d41d73fff0851bb5a7b5976fd55983dabfbc4c2fae1105c701d5c7f55a00061298cf5619c0f353949d79960cf46c26a0e4dfa133cc08c9cf9da7c51aaa20a0217cbcf3b53b2cf9f52b1c13879bdefb3b71cd08484848c8fe468a36a5d8e5cc5bb3e765df59511bba50fd92c2430a59ecf8859b5cb6a288819220e0ed3125f028f1e943bd670acd51a5405f308156a952bd9973d1af4f96bbe257dbd523d", 0xaa}, {&(0x7f0000002940)="e3a9e33d708b302dc90c5d703fbb34d39553e57b38db917c2ba4ebd94f8257ee268771a162d37ee5f8ac3f55308493988c159ddc6051d9af4c0cf85cc1af6877ac8bc4fe8124b8c7f0bee9218c649fcd59dcd12867f5de0cbfa5beaccd663bdc50220c8ac1e7c8b6806783d5165763fbccde3e73c4ed7c3545e5bae01700afb989f27afa735e4a59243c3b20e4de41820eed8e1fce03acf425b3166299dcf10ee8a72b9ee32fb6fd86e2f98405471761498404d2dd714a7d889804032d358a570d40051cee35a2b0760bc52a9f446bf6ae9fc34a6911e5a98e78d877cee49a33580b5f1d324d2cd3ba8c3d1d28b5ee", 0xef}, {&(0x7f0000002a40)="7d51e2f70345c94043b57bbc00c991233afe59639d3fe9a87d01bd20118336706276e9da5b34d522cbbdb8d44f202c47dfbc8917c5eb30e054232c3da01f0b6a03336ba83c0b658e975dc4af357736b094b7816df76bb3d62c1b9fed61bcef43aea25da635034e27490ea9e287accbcee100611fc14d07a3e676598bed32ef0b42243c4365b41b990581d14739cf6c9a8e465151ada7fa9a5c674446e6de365db0d249f9e8212e529dc8235c2ce4462cffe53c9ed2f9236732797d28840c7d92f36fd025bcab4b41ef2178d365583989840d2498cbc6", 0xd6}, {&(0x7f0000002b40)="599c6ae1861bd03be62d4aa6bf0cf660662b016df8eb103bd380a35abd42ef471e3a38f3e72d6c471faacf4707500c37df282bccba7254292f208249b50601b900a42e731d9a16a8bf8ae94806e353050b5e82db50f99366f788a57f6a0d0147fb6356a4d779e1134ae51230e7fa3fb367832fccbeb4474073df41c291115997adc759da0f0e74cb88b0ed2c1ce870296abc55dc4465", 0x96}], 0x9, &(0x7f0000000b80)=[{0xec, 0x115, 0x4, "b61d00b04919dcf39bedf1f37c36f8b07913ba60ada4f7bb285e615bef350565dfc5e50976ef982b00fab4f2f61e17adbd936afb5b32f701c1d8e01874292dc32a86c0185567db1baa919fe113ffe0b904d52e8a1cb55698dc3d13cf170678dbcf323777fc48fba0ce10ab92dfae5a4b246b7996caaf4477a4cbfb471745456d837ce579300ad62c977f715851e1fa2b47db8e580a2a4f60cccee949903d273f8d163e772607a06b00d24e0b05e7362f86815e9f3296f52c99bf11a97ea550c97889f0bcdecf086e4e0ee3e57916e0fd89fde2d8ff469711e6eb74375cdc"}, {0x98, 0x110, 0x40, "d1540e1269c7236c33497224ec4e2d15c56671e68aced813b5c74a69f889c2a922da6a505e19fee264e06dd331a1decccd4617a97498cf847ebd93194d34c78dedf8b8b3e53bdc167679c1f85d8f96b3d1e00d960b7869add6189db9d82c0510002a261e0cb470f554a119b7869c68b23586586c8acdebf4e170ae59f9bc4cf7d71850e84db2ab3bccc6bd4d"}, {0x58, 0x11, 0x7, "2a5bc92a6914a82d99d21d99103ba17251caa9e55f6ca9a926bae7a3d1cf0a7f37c56d82f3fd6dea6b35ceb4d8e3c7da500c0c1810d96b08108d98c6a0c2854aa06c31d7d0e464a15118b6"}, {0xc4, 0x1, 0x8, "7210aaa6bdc263992c8f5e72622b90fd2a04b34ed3e5b7692af7a915df1836f7ab178408e92c4339bf60b9a5b4988d8e8b55b241dde5bd82db09fd0d34551069ca72d069651ed1a61bbed30e77f4cfab69d6cea702f077c4782a52e56289d90b81ad9ad8405783ccbf31735a10c5d8e784a6800cbf4aeb8a410272e589ac7e23fa4bcaebe8bdcf805737cb47ad2b15bc98b3f0fcc2d270a69ebbf5aa218a5aa5b2bd511d04e0a6548e15a614211bad53c64e564d2c77"}], 0x2a0}}, {{&(0x7f0000001880)=@ax25={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @null, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default]}, 0x80, &(0x7f0000003200)=[{&(0x7f0000002f80)="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", 0xfe}, {&(0x7f0000000980)="60abadf3de358d1b7a06a312b0d0f26ec24db4fbb5d3d6ef06704cf5672d7f730336d7fee331dabf24213838102d968f1c8c96fbeaa429333728", 0x3a}, {0x0}, {&(0x7f0000003080)="4591a27229023017d34473af48c2815aa1cb9654b6e9a4c8417cf1bd8772dedfbcbd85d309b01d40e1ab9609127e655c20666002e1ce21616f7fcb0d4ff96f5f38dac389d4f6de7234095180e098c933530f2ca2252fa233a1d55d44eb0cb62bd1f57f0153e31c5ae7ef6570f57bf730d99b211f3947c6e70e7bde1416a93f546bd5d4a3f053d06f52070aee", 0x8c}, {&(0x7f0000003140)="d2acaf95691e06768bc88a9245159c4bdbbb54bc87f741b2de3ae115041cebafb8ae097874bcfc4711810e4eacb422a06a41128d7aee8bb2c5193b30d770c9f32bf82557e401656ecaeff50e817652621aa9cbfcdf7be9f3e095b4262c29faf85910ac5b0bf4ee4e59dd28ce8f40c92821445f2ef3e4cd7115c69407af0bf8fb89bc4f3c9e3b09c7e684e6bd2447ca1ed13f", 0x92}], 0x5}}], 0x5, 0x0) r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000000040)={0xc, 0x0, 0x0}) ioctl$IOMMU_IOAS_MAP(r4, 0x3b85, &(0x7f0000000100)={0x28, 0x0, r5, 0x0, &(0x7f0000000180)="9c", 0xfffffc24, 0x6}) ioctl$IOMMU_IOAS_ALLOW_IOVAS(r4, 0x3b82, &(0x7f0000000240)={0x18, r5, 0x1, 0x0, &(0x7f0000000080)=[{0x3cc5, 0x5e97}]}) ioctl$IOMMU_IOAS_MAP$PAGES(r4, 0x3b85, &(0x7f0000000140)={0x28, 0x0, r5, 0x0, &(0x7f0000ffe000/0x1000)=nil, 0x1000}) socket$inet6_udp(0xa, 0x2, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) 4.474812792s ago: executing program 1 (id=7374): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2000000000000074, &(0x7f0000000000)=[{}]}) openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) socket(0x10, 0x3, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0}, &(0x7f00000001c0)=0xc) setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000005c0)={{{@in=@dev={0xac, 0x14, 0x14, 0x12}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x4e20, 0xed, 0x4e22, 0x1ff, 0x2, 0x80, 0x80, 0x1d, 0x0, r0}, {0x3, 0x100000000000000, 0x7, 0xffffffffffffffff, 0x1, 0x2, 0xd8, 0x2}, {0x40, 0xfffffffffffffeff, 0x8000000000000001, 0x81}, 0xff, 0x6e6bb8, 0x1, 0x0, 0x2, 0x1}, {{@in6=@ipv4={'\x00', '\xff\xff', @loopback}, 0x4d2}, 0xa, @in=@loopback, 0x3506, 0x0, 0x3, 0xde, 0x100, 0x10000, 0x8000}}, 0xe4) mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mount(&(0x7f0000000040)=@md0, &(0x7f0000000580)='./file0\x00', &(0x7f0000000000)='pvfs2\x00', 0x0, 0x0) write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c4600000000000000000000000001003e00000000000000000038000000000000000000000000002000000000000000007f8049e30c1e0440"], 0x58) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x8, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, [@alu={0x0, 0x0, 0x1, 0x0, 0x5, 0xc, 0xfffffffffffffff0}, @map_idx={0x18, 0x3, 0x5, 0x0, 0x8}, @generic={0x3, 0x5, 0x5, 0x8, 0x6}, @jmp={0x5, 0x0, 0xa, 0x3, 0xb, 0x720d54ee6c827600, 0x1}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x6}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f00000004c0)='contention_begin\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0) close(r2) ioctl$KVM_GET_NESTED_STATE(r2, 0xc080aebe, &(0x7f0000001580)={{0x0, 0x0, 0x80}}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)) ioctl$VIDIOC_ENUM_FREQ_BANDS(0xffffffffffffffff, 0xc0405665, &(0x7f0000004000)={0x0, 0x2}) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r3, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendto$inet6(r3, &(0x7f0000000080)="e9", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) ioctl$SIOCSIFHWADDR(r2, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="0100"}) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="b400000000000000791090000000000063000018000000009500000000000000f9f364f4a8286bb241139d0ff5717ae08d5c1e560ccd0bfe769ece9747aa7e4bee70a6c24e1747211411a067ea4974aefc5aa75d614dc104b7dfb11dbcaf0cd81e392da8635689c5ff795b48dfc6791955bb44e0998d7342c5f38c47027bc3a6858e62d498993268bd9d99eeaf20dcb387b6"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$KVM_SET_DEBUGREGS(0xffffffffffffffff, 0x4080aea2, &(0x7f0000000000)={[], 0x0, 0x29}) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x61}, 0x48) 4.030204107s ago: executing program 3 (id=7376): pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newqdisc={0x24}, 0x24}}, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) fsopen(&(0x7f0000000100)='nfs\x00', 0x0) r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[@ANYBLOB="9feb01001800000000000000340000003400000003000000010000000200000f0300000002000000000000000200000005000000020000000200000084bfffffff7f800000000f01000000d1005f006f99c711787309fc45d98e5cf9cbfa0c8648d4594f57f6700342d9185cf2f2e3db99acd6ffd9d0461bfa8e4a56cd2b8d47f627d2c0db89cd71601f51a277dca0fbca54b4ff40fe1a086bb3bd22dd7237ae9cea6aa5140236c0378b35d429f31308cb7cd5406f3b5f9c3996dbbd8c61afe05f46047cfb8fa11be378f725ef861cb4498d511703498a8ff1162379f2e19777f8c7bbf552126e4db3477874cc0f7a521284"], &(0x7f0000000100)=""/135, 0x4f, 0x87, 0x1}, 0x20) syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x3, &(0x7f0000000140)=[{0x35, 0x0, 0x0, 0x2}, {0x35, 0x0, 0x0, 0xe12b}, {0x16}]}) r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]}) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7ffff000) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x15, 0x11, &(0x7f0000000600)=ANY=[@ANYBLOB="0b3030001000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002000000850000008200000018270000", @ANYRES32, @ANYBLOB="00000000ffffff7f18120000", @ANYRES32, @ANYBLOB="00f20839f939cf58d0b7134b3fc26100000000000000b7030000000000008500"], &(0x7f00000000c0)='GPL\x00', 0x7, 0x1000, &(0x7f0000003380)=""/4096, 0x41100, 0x28, '\x00', 0x0, 0x1e, r2, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000440)={0x1, 0x1, 0xfffffff5, 0xffffffff}, 0x10, 0x0, 0xffffffffffffffff, 0x2, &(0x7f0000000700)=[r3, 0xffffffffffffffff], &(0x7f0000000740)=[{0x3, 0x2, 0x5}, {0x2, 0x3, 0x1, 0x3}], 0x10, 0x4}, 0x90) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb01001800000000000000680000006800000002000000000000000000000d0a000000000000000000000604"], &(0x7f0000000f40)=""/4089, 0x82, 0xff9, 0x5}, 0x20) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000280)={0x3, &(0x7f0000000240)=[{0x5, 0x33}, {0x7fff, 0x9, 0x80, 0x4}, {0x4, 0x2f, 0x3f, 0xffffffff}]}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f0000000340)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r4, 0xc0182101, &(0x7f0000000180)={r5}) r6 = memfd_create(&(0x7f0000000000)='\x107', 0x0) write$binfmt_elf32(r6, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c4600000000000000000000000001003e0000000012000000003800000000000000a163000000000000000000000000007f8049e30c1e0440"], 0x58) finit_module(r6, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a50000002300000095"], &(0x7f0000000000)='GPL\x00'}, 0x90) ftruncate(0xffffffffffffffff, 0xc17a) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f0000000480)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000080)={r7, 0x3, r4, 0x5}) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cgroup.controllers\x00', 0x275a, 0x0) r8 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='blkio.bfq.dequeue\x00', 0x275a, 0x0) write$binfmt_script(r8, &(0x7f00000016c0), 0x3af4701e) syz_open_dev$tty1(0xc, 0x4, 0x1) 3.463429848s ago: executing program 1 (id=7377): r0 = openat$nmem0(0xffffff9c, &(0x7f0000000000), 0x20000, 0x0) ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000040)) getsockname$packet(r0, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000000c0)=0x14) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000180)={'syztnl2\x00', &(0x7f0000000100)={'ip6tnl0\x00', r1, 0x4, 0x1, 0x3, 0x80000000, 0x1b, @private0, @dev={0xfe, 0x80, '\x00', 0xa}, 0x700, 0x7800, 0x8ec, 0x3712b778}}) ioctl$IOCTL_START_ACCEL_DEV(r0, 0x40096102, &(0x7f00000001c0)={{}, 0x8}) (async) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f0000000280)={'syztnl1\x00', &(0x7f0000000200)={'ip6_vti0\x00', r1, 0x29, 0x0, 0x5, 0x4, 0x51, @mcast1, @mcast1, 0x10, 0x7, 0x4, 0xf3}}) (async) getsockname$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000300)=0x1c) (async) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'virt_wifi0\x00', 0x0}) setsockopt$MRT_DEL_VIF(r0, 0x0, 0xcb, &(0x7f0000000380)={0xffffffffffffffff, 0x8, 0x8, 0xd30f, @vifc_lcl_ifindex=r5, @local}, 0x10) (async) write$P9_RVERSION(r0, &(0x7f00000003c0)={0x15, 0x65, 0xffff, 0x7, 0x8, '9P2000.L'}, 0x15) r6 = socket$vsock_stream(0x28, 0x1, 0x0) accept4$vsock_stream(r6, &(0x7f0000000400)={0x28, 0x0, 0x2711, @hyper}, 0x10, 0x0) ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r0, 0x4068aea3, &(0x7f0000000440)) write$P9_RREADDIR(r0, &(0x7f00000004c0)={0xc5, 0x29, 0x1, {0x4, [{{0x80, 0x1, 0x5}, 0xbde, 0x3, 0x7, './file0'}, {{0x0, 0x1, 0x1}, 0x9, 0x5, 0x7, './file0'}, {{0x1, 0x0, 0x6}, 0x100000001, 0x5, 0x7, './file0'}, {{0x40, 0x2}, 0x6, 0x3, 0x7, './file0'}, {{0x10, 0x1, 0x5}, 0x7, 0x9, 0x7, './file0'}, {{0x8, 0x4, 0x3}, 0x7302, 0x27, 0x7, './file0'}]}}, 0xc5) sendmsg$nl_route(r0, &(0x7f0000000680)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)=@ipv6_newaddrlabel={0x38, 0x48, 0x300, 0x70bd26, 0x25dfdbff, {0xa, 0x0, 0x3f, 0x0, r2, 0x3c00}, [@IFAL_ADDRESS={0x14, 0x1, @mcast1}, @IFAL_LABEL={0x8, 0x2, 0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x20004004}, 0x4800) getpeername$l2tp6(r0, &(0x7f00000006c0)={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000700)=0x20) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000780)={'syztnl2\x00', &(0x7f0000000740)={'syztnl1\x00', r4, 0x700, 0x700, 0x0, 0x40, {{0x8, 0x4, 0x3, 0x6, 0x20, 0x68, 0x0, 0x1, 0x2f, 0x0, @private=0xa010102, @empty, {[@timestamp_prespec={0x44, 0xc, 0x97, 0x3, 0xd, [{@remote, 0x5}]}]}}}}}) syz_kvm_setup_cpu$x86(r0, r0, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000840)=[@textreal={0x8, &(0x7f00000007c0)="66b9800000c00f326635000800000f3064f466b9550800000f32baf80c66b8eec80e8366efbafc0cb80e30eff30fa7d00f15a6ffa0660f388078003e2e0f78262f42f4360f32", 0x46}], 0x1, 0x10, &(0x7f0000000880)=[@vmwrite={0x8, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0x10}], 0x1) (async, rerun: 64) r7 = openat$sequencer2(0xffffff9c, &(0x7f00000008c0), 0x400, 0x0) (rerun: 64) write$sequencer(r7, &(0x7f0000000900)=[@raw={0xc, 0xe, "6b6a70859d6d"}], 0x8) (async) fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0) sendmsg$qrtr(r0, &(0x7f0000001ac0)={&(0x7f0000000940)={0x2a, 0x0, 0x3fff}, 0xc, &(0x7f0000001a80)=[{&(0x7f0000000980)="063a7556545bf3fcecbaa8b135ba8dd84f1252c5cf0799274639161e090a3f777bd497f542391d4d66920191d4f774d532267917ff0c3a11421e17ee7edfe733d437994f99259b5966912e3a36eab3d2496c1f06ae714debb1d87ada961e9d3b78344e9f7326fa564dbacfecc98c461065a31498d1a14dd1205b81331457af8e797c31a4ae2f4f624583cde570e69148376dc6303f4e92681da9a816b813139bca14b1e9639d72513be21c623645b0a4df69d45022cb02f5d0b6fd36bf1c8bf241e838ccbf3c566f569b", 0xca}, {&(0x7f0000000a80)="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", 0x1000}], 0x2, 0x0, 0x0, 0x10}, 0x1c) r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) vmsplice(r8, &(0x7f0000002dc0)=[{&(0x7f0000001b00)="8ceab2d656147c5708215895b3fe680c7cbfbdbd01173d90c3055ac6ec3a8fb5f02b03f4f54586547fa3ab59299d36f3c7a02a4a1fcdc8000a", 0x39}, {&(0x7f0000001b40)="dd92b0fc2652205aa8bf0fd42945d19d3ebcf08f7b9d265b35fe23970f1fec63dc00b36563cd5a1cd5072274b39443358d8196ef771c73e2cb5152935f32cf8f6955a4b97ab5af1a7cd4bb4aa93bc5d676e576e27a1cd30f5a5df94fecf34bc407e3690387c1e3a6b8803aff61501e9116a19e84cace09a37eed89f21a0c3d554b119bfca345597e06b5057890f3b7a7ddef11e7883e145daf78dee0", 0x9c}, {&(0x7f0000001c00)="dad9486cab7b2559ea17724ae20f65402bb734a0cf1e107ca83e4cfaf2160853f8380c41a9d3a228cdcf6cccc9c25ab22fc16c669fc588580c517ab0593774f8e2b0a2fbcc1728812fbe2146cb751a2e4ff0981b42da19e5d5736b973a91c5e06b03fcba99b2c9c8a90d5dbdc0b2f5be9ee117f664f6eb2931271dd986f9e5905bc36e05b7151737d24a78eda55b65c0edcd2b12ef988a1509d5d4af5cfe597fd1c38ee2f90d2c9e256a3ab14d730258ca3316ee", 0xb4}, {&(0x7f0000001cc0)="7507370ba415296772d64a78473dc0cd6fd41563e8d104d39db082748c56d30d565cc8eace1259b87a24763ec2f61ef30870188bbcfcb198b30385b11fe4a71fc09201079a37884be2d619854dd7164137115b12c79427f8c976a2b34011cf31f628ba06b9f28906a0749215065044f108bd036e082ed44fe9dabdb4719e869f0cb5cbed10b775080755db62fbf39f5a894bcb7712044a9bbcc49961caf9c5161520a9cb205ee376a44a15b01e47a2903c252dbcc4a5ae3e", 0xb8}, {&(0x7f0000001d80)="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", 0x1000}, {&(0x7f0000002d80)="54dac89bc99d37b38f3397c7", 0xc}], 0x6, 0x2) r9 = openat$vmci(0xffffff9c, &(0x7f0000002e00), 0x2, 0x0) ioctl$IOCTL_VMCI_INIT_CONTEXT(r9, 0x7a0, &(0x7f0000002e40)={@hyper}) (async, rerun: 64) readv(r0, &(0x7f0000005180)=[{&(0x7f0000002e80)=""/4096, 0x1000}, {&(0x7f0000003e80)=""/4096, 0x1000}, {&(0x7f0000004e80)=""/49, 0x31}, {&(0x7f0000004ec0)=""/205, 0xcd}, {&(0x7f0000004fc0)=""/217, 0xd9}, {&(0x7f00000050c0)=""/155, 0x9b}], 0x6) (async, rerun: 64) recvmsg$can_j1939(r0, &(0x7f0000005500)={&(0x7f00000051c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000005480)=[{&(0x7f0000005240)=""/239, 0xef}, {&(0x7f0000005340)=""/105, 0x69}, {&(0x7f00000053c0)=""/41, 0x29}, {&(0x7f0000005400)=""/78, 0x4e}], 0x4, &(0x7f00000054c0)=""/60, 0x3c}, 0x2) (async) syz_open_dev$sndctrl(&(0x7f0000005540), 0xffff, 0x641) 3.463031753s ago: executing program 2 (id=7378): io_uring_setup(0x1951, &(0x7f0000000000)={0x0, 0x0, 0x202}) mount(0x0, 0x0, 0x0, 0x0, 0x0) syz_emit_ethernet(0x46, 0x0, 0x0) sched_setaffinity(0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000740)={0xffffffffffffffff, 0x0, 0xde, 0x0, &(0x7f0000000640)="91bdad44d444d485b5c7226dff5a2a3a402bf4cd7bd9ff96e48663dbf7e70efa5b5a5ebcfbb095be499d18e70b126c28706489f89f7f34eb5395c170e921142993921671ce0a24dc5898aa1c53d80e5d8212d7b4f65ff9f801ea87634fcf3e39d8fbfc9d391a34596159d91e451b5ae0de03a44e117fce24d1a99db6cab6d1bfcef36d382ddfbf51eb7ad191f190ae00859245635cf1a87680a0c5db7319f0a1136ce911f9db27902b57bedae09dc1e9b3328263d2884f8f6778d14d4db7b164f2301e6941187f41c9240e33e853d90f57b019890da7ef32d59f45b27bb1", 0x0, 0x0, 0x0, 0xb5, 0x0, &(0x7f00000009c0)="33c33939b78fd0c648075431fbc3079eb164e01cbf9176ce51f9b5e2083846788f404403ac2d91749315f53004a6fe089f3966ec59875e63572eae156027fe7d968671b069ea669a35e287b4f4103c6fccf1bc60b962ae99329a1e22e38667f0b3e241684190a7f731ac7c15297dbdbe97f0793246810ee0aa9e7a7258d75dcef671a1d4c06823e7fdd4a865939f10e1323cb4fd55127b522f3796665a3ef089146d71d50be0ca415214da68c78936fe355e7f5a63", &(0x7f0000000a80), 0x1, 0x0, 0x5}, 0x4c) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r1, &(0x7f00000003c0)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000240)='bridge0\x00', 0x10) write(r1, &(0x7f0000000040)="832a0a65bd8c002b0304000e0580a7b6070d63e286a5cefe", 0x18) preadv(r0, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0) setsockopt$inet_dccp_int(0xffffffffffffffff, 0x21, 0x0, &(0x7f0000000040)=0x9, 0x4) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) writev(0xffffffffffffffff, &(0x7f00000004c0)=[{&(0x7f0000000240)}, {0x0}, {&(0x7f0000000c40)="e03296e9202dfee0705d89d9c1453af493efdda05870b026eed54d89a5790d6752a81059dfa824646fe43049a3bb274e7eecf16ae9fbfb81b9c14280e17ef3a1dcdde828ba66b2b8e1071754aca87bab5acea04471e72f6ded0e7080a70130a0c535f2536102d2e5ab84b931b0bd6c4e2a6c40c736f94da1017053d7615be0b10c0231e668fd31461e713583fad924dbff2d38117a4b662a85ef449ce4d63cbdf86d4216dc8bdc6a267cfd8cb884aad6027d4994d301d74e8c8f6829b3d581f00bd2911ed01d", 0xc6}, {&(0x7f0000000280)="72f0a226ac9fee40e482be0d6c1ee989ded29e89c3f490f1", 0x18}], 0x4) socketpair(0x15, 0x80000, 0x1ff, &(0x7f0000000080)) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) syz_open_dev$vivid(&(0x7f0000000000), 0x1, 0x2) socket$nl_route(0x10, 0x3, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) r2 = syz_io_uring_setup(0x4f64, &(0x7f0000000000), &(0x7f0000ffe000), &(0x7f0000ffe000)) io_uring_register$IORING_REGISTER_BUFFERS2(r2, 0x2, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x20) 3.239365806s ago: executing program 1 (id=7379): r0 = socket$nl_audit(0x10, 0x3, 0x9) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/drivers\x00', 0x0, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) write$rfkill(r3, &(0x7f0000000000)={0x0, 0x0, 0x3, 0x1}, 0x8) r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x4000}}) read$FUSE(r4, &(0x7f0000006840)={0x2020, 0x0, 0x0}, 0x2020) syz_fuse_handle_req(r4, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_INIT(r4, &(0x7f0000004200)={0x50, 0x0, r5}, 0x50) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90}, 0x0, 0x0, 0x0, 0x0}) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x10b}}}, 0x0, 0x0, 0x0, 0x0}) open(&(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0) r6 = syz_io_uring_setup(0x4172, &(0x7f0000000780)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(r6, 0x567, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4) connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4) sendfile(r2, r1, 0x0, 0x4000000000010046) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0x9, &(0x7f0000000680)=ANY=[@ANYBLOB="180800000000000000000000000000008510000005000000850000000f0000005d00000000000000180000000000000000000000000000009500006e1ca9fe200000000000950000"], &(0x7f0000000000)='syzkaller\x00'}, 0x80) 3.004139149s ago: executing program 0 (id=7380): socket(0x26, 0x4, 0x4) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$OBJ_PIN_MAP(0x6, &(0x7f00000000c0)=@generic={0x0, r0}, 0x18) getsockname$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0}, &(0x7f0000000180)=0x14) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r1}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r2}, 0x10) r3 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/5, 0x214000, 0x800}, 0x20) socket$nl_route(0x10, 0x3, 0x0) r4 = socket$inet6(0x10, 0x3, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=@base={0x1, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='kfree_skb\x00', r7}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48) r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000180), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f00000001c0)={'batadv0\x00', 0x0}) getpeername$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000006c0)=0x39) r11 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r11, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_NAT_TYPE={0x8}, @NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_NAT_FLAGS={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xd0}}, 0x0) sendmsg$BATADV_CMD_SET_HARDIF(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)={0x24, r8, 0x201, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r9}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r10}]}, 0x24}}, 0x0) openat$sndtimer(0xffffff9c, &(0x7f0000000200), 0x0) 3.003595301s ago: executing program 3 (id=7381): socket$inet_tcp(0x2, 0x1, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100), 0x42, 0x0) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) read$FUSE(r0, &(0x7f00000077c0)={0x2020, 0x0, 0x0}, 0x2020) ioctl$KVM_CAP_SPLIT_IRQCHIP(0xffffffffffffffff, 0x4068aea3, &(0x7f00000001c0)) socket$netlink(0x10, 0x3, 0x0) sched_setscheduler(0x0, 0x0, 0x0) r2 = getpid() r3 = openat$qat_adf_ctl(0xffffff9c, &(0x7f0000000d00), 0x0, 0x0) ioctl$IOCTL_START_ACCEL_DEV(r3, 0x40096102, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00'}, 0x10) process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) sync() write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x207611a}}, 0x50) syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_fuse_handle_req(r0, &(0x7f0000002140)="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", 0x2000, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)={0x100, 0x0, 0x0, [{{0x3}, {0x0, 0x0, 0x51, 0x0, '.v\x91O\x05\x81\x96\xf5Fl\fZ\xffdp\xbe\x9b\x9e\xce\xe3\xb8\xf4\x84\x87.\x8dUF+Pp\x98x\xdea\xb3\xe9\rek\x82\xd0\xc5Ry}\xae\xe5\x85\xe7\xc7z\xabZ\x99]L\xcf\x13\xfa\xfe\xcf\"\xce\x85\xda\x02\xde\xd19TV\xdft\xe3\x8f*\xe8\x8ei\x88'}}]}, 0x0, 0x0}) r4 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) getdents64(r4, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = socket$inet_dccp(0x2, 0x6, 0x0) setsockopt$IPT_SO_SET_REPLACE(r5, 0x4000000000000, 0x40, &(0x7f0000000480)=@raw={'raw\x00', 0x4001, 0x3, 0x27c, 0x12c, 0x600, 0x148, 0x0, 0x148, 0x1e8, 0x240, 0x240, 0x1e8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@remote, @loopback, 0x0, 0x0, 'ip6gretap0\x00'}, 0x0, 0xcc, 0x12c, 0x0, {}, [@common=@unspec=@time={{0x38}}, @common=@inet=@socket3={{0x24}}]}, @common=@SET={0x60}}, {{@uncond, 0x0, 0x9c, 0xbc, 0x0, {}, [@common=@ah={{0x2c}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x2d8) ioctl$UI_SET_RELBIT(r4, 0x40045566, 0xa) 2.935118008s ago: executing program 1 (id=7382): r0 = socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) r2 = socket$inet6_icmp(0xa, 0x2, 0x3a) finit_module(r2, &(0x7f0000001680)='\x00', 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, 0x0) r4 = syz_open_dev$video(&(0x7f00000000c0), 0x101, 0x0) r5 = open(0x0, 0x0, 0x0) fcntl$notify(r5, 0x402, 0x8000003d) r6 = socket$alg(0x26, 0x5, 0x0) bind$alg(r6, &(0x7f0000001600)={0x26, 'rng\x00', 0x0, 0x0, 'ansi_cprng\x00'}, 0x58) r7 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(r7, &(0x7f00000001c0), 0x0, 0x0, 0x0) preadv(r4, &(0x7f0000000040)=[{&(0x7f00000001c0)=""/219, 0xdb}], 0x1, 0x0, 0x0) r8 = socket$netlink(0x10, 0x3, 0x0) r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0xc}, 0x48) r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r10}, 0x10) r11 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), r11) getsockname$packet(r11, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x3f) sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="3400000010001ff700"/20, @ANYRES32=r12, @ANYBLOB="ff00000000000000140012800b000100626174616476"], 0x34}}, 0x0) r13 = socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(r11, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14) sendmsg$nl_route(r13, &(0x7f0000000080)={0x0, 0x7400, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c0000001000130400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140003006e657464657673696d3000000000000008000a00", @ANYRES32=r14], 0x3c}}, 0x0) close_range(r3, 0xffffffffffffffff, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000) r15 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r15, 0x0) 2.80077063s ago: executing program 0 (id=7383): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"/424, @ANYRES32=0x0, @ANYBLOB="ac1414aa00000000000000001400000000000000000000000200000000000000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="e00000017f000001000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="7f000001ac141400000000001c000900000000000000000007010000440c0001022101"], 0x230}, 0x0) r1 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)}, 0x0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00'}) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0xde02}) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r4) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$SIOCSIFHWADDR(r4, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'}) preadv(r3, &(0x7f0000000400)=[{&(0x7f00000004c0)=""/248, 0xf8}], 0x1, 0x0, 0x0) sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000005c0)={0x118, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x52}}}}, [@NL80211_ATTR_SCAN_SSIDS={0x7c, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}, {0x22, 0x0, @random="7f7999a6707bca89ca7d41ed2dd9595164964902e881ab4f7ac8f8bcae3d"}, {0xa, 0x0, @default_ibss_ssid}, {0x1f, 0x0, @random="2958c46e0d2cf0e56818d8643fa5febf75a059857c2b8edc4c1161"}, {0xa, 0x0, @default_ibss_ssid}, {0xf, 0x0, @random="e928702b5bfc04ac3e25af"}]}, @NL80211_ATTR_SCAN_SSIDS={0x74, 0x2d, 0x0, 0x1, [{0x1e, 0x0, @random="6e9934fec40f8ad720d003ace16dbcd1efceb10b1777ead55b4d"}, {0xa, 0x0, @default_ibss_ssid}, {0x11, 0x0, @random="8e2d646e52369c4597539d3149"}, {0xa, 0x0, @default_ap_ssid}, {0xa, 0x0, @default_ibss_ssid}, {0xa, 0x0, @default_ap_ssid}, {0xa, 0x0, @default_ap_ssid}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=@mgmt_frame=@beacon={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36) r5 = getpid() r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r6, &(0x7f0000000100)={0x1f, 0x0, 0x3}, 0x6) r7 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) write$binfmt_misc(r6, &(0x7f0000000200)=ANY=[@ANYBLOB='4\x00\x00\x00\a', @ANYRES16=r8], 0xd) r9 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendto$packet(r9, &(0x7f0000000000)="4dcdc7c6223e00000000ffff80f3", 0xe, 0x0, &(0x7f0000000080)={0x11, 0x0, r10, 0x1, 0x0, 0x6, @dev}, 0x14) r11 = socket$l2tp(0x2, 0x2, 0x73) sendmsg$unix(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000080)="3fb485ec118f5f64a7cba9ba84b1e3e5865da58535d329801f02290c008e09082521f47a0bf3a0a72631a9ac2f2d84f8e11ee26369d58b4cda519d69168284dc12d260859c65d7d677bf24c262591a0e3975a977d600c8d2652bcfbaae28d7d1035f75b6105c98815775c685da6e77c39a0f5f12119e521cd544327d56e77e1c3a957efb381eebfb5f0ef12b5b8461463cbc3b2f3742a99ea9eb0e368b6c883a80282ba18d7540b58adf1dae3974cc98bc9e2b325fcf6ae72eba237d37d9bb", 0xbf}, {&(0x7f0000000140)="d77f2dcd3c4f08261398f3d8a060e50e8c8d563be562a09a68d43a7c3d580f3c43b8b68c227fee04e676090fb33623cd89104063eebebf80bd3f74ade9", 0x3d}], 0x2, &(0x7f0000000400)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r5, 0x0, r8}}}, @rights={{0x14, 0x1, 0x1, [r9]}}, @rights={{0x14, 0x1, 0x1, [r11]}}], 0x90, 0x4000000}, 0x40800) r12 = ioctl$TUNGETDEVNETNS(r4, 0x54e3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=@RTM_NEWNSID={0x24, 0x58, 0x200, 0x70bd2b, 0x25dfdbfe, {}, [@NETNSA_PID={0x8, 0x2, r5}, @NETNSA_FD={0x8, 0x3, r12}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000010}, 0x0) nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, &(0x7f00000000c0)) syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000340)=@mgmt_frame=@probe_response={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36) 2.5977096s ago: executing program 2 (id=7384): ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(0xffffffffffffffff, 0x8982, 0x0) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'md5-generic\x00'}, 0x5a) r1 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0) r2 = dup(r1) write$UHID_INPUT(r2, &(0x7f0000001040)={0x18, {"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", 0x100d}}, 0xfffffdef) write$proc_mixer(r2, &(0x7f0000000000)=[{'LINE', @void}, {'VOLUME', @val={' \'', 'CD'}}, {'RECLEV', @void}], 0x2d) accept4(r0, 0x0, 0x0, 0x0) unshare(0x20000400) socket$inet_smc(0x2b, 0x1, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) socket$l2tp(0x2, 0x2, 0x73) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) syz_80211_inject_frame(&(0x7f0000000000)=@device_b, &(0x7f0000000180)=ANY=[@ANYBLOB="883909003859d63f6e3de70411000000ffffffffffff5600b800da58dd00007c1d01b7b7875f4767f4b533e6bd8859a2eb88a5ead25cdca950e8453e8fcefe44a8e0498aee41e1"], 0x47) r4 = socket$inet_smc(0x2b, 0x1, 0x0) r5 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_int(r5, 0x0, 0x6, &(0x7f0000001700)=0x5945, 0x4) bind$inet(r4, &(0x7f0000000140)={0x2, 0x4e22, @multicast2}, 0x10) connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) sendto$inet(r4, &(0x7f0000000040)='u', 0xa792a, 0x801, 0x0, 0x0) recvfrom$inet(r4, &(0x7f0000000240)=""/127, 0x7f, 0x4001a021, 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0) syz_80211_inject_frame(&(0x7f0000003080)=@broadcast, &(0x7f0000000100)=@data_frame={@msdu=@type00={{0x0, 0x2, 0x1}, {}, @device_b, @broadcast}, @a_msdu}, 0x18) writev(r4, &(0x7f0000000400)=[{&(0x7f00000000c0)="67a818beb2125fc95e608a1b6b00a6c55851c030ce59945b", 0x18}, {&(0x7f0000000300)}, {0x0}], 0x3) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0xfffc, @dev}], 0x10) syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0x4e7) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000040), 0x0) sendmmsg$inet6(r3, &(0x7f000000cf00)=[{{&(0x7f00000084c0)={0xa, 0xfffc, 0x0, @loopback}, 0x1c, &(0x7f0000008900)=[{&(0x7f0000008500)="88", 0x1}], 0x1}}], 0x1, 0x0) syz_emit_ethernet(0x2d6, &(0x7f0000000440)={@remote, @empty, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "cb4a48", 0x2a0, 0xb6, 0x0, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', {[@dstopts={0x2c, 0x21, '\x00', [@padn={0x1, 0x1, [0x0]}, @generic={0x0, 0xba, "341640e8fc0fd1068217f7bafda31c1d88bb0e50ed95cf447f07a6aa556efb29ef4d0bacc9a1934c72a307ab9d9a6004eac5676b9d3c83fb80234d1ef5e42b5e3f2c7fdc01bbe6acfafb5a96d250f73208aa346b1c2c5f05a09999d19c254f3b5739bccfabeff4ef3d5e08f36b4c2efbe7f2888fb4101c6690ab746281322b84bcffd78eb8afedcf5a8acfcf7d44bd714035aa652f93167d38b5f9799d328dcb967cc6a5db0443685a06de62b75b3cb26753f4fdeec29ef94d19"}, @generic={0x0, 0x47, "98e3504ed8ddbeb308bfa945bc3c269505c9fb2f9903d0b6201c48a5807eea3c36f3ce57d699e615a04f97eafd40d05a80e593cda4e84742bc295fc36fd2411ce79c5b31fc55cd"}]}, @routing={0x32, 0xe, 0x0, 0x7, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @ipv4={'\x00', '\xff\xff', @local}, @local, @private0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @loopback, @private1={0xfc, 0x1, '\x00', 0x1}]}, @srh={0x3c, 0x10, 0x4, 0x8, 0x3, 0x40, 0x8, [@mcast2, @mcast2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev={0xfe, 0x80, '\x00', 0xa}, @mcast2, @mcast1]}, @srh={0x3a, 0xc, 0x4, 0x6, 0x4, 0x68, 0x5, [@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, @private2={0xfc, 0x2, '\x00', 0x1}, @private1, @private0, @remote, @empty]}, @srh={0x33, 0x2, 0x4, 0x1, 0x2, 0x20, 0xd17, [@private2]}, @dstopts={0x3b, 0x0, '\x00', [@jumbo={0xc2, 0x4, 0xb2}]}]}}}}}, 0x0) 1.902189893s ago: executing program 1 (id=7385): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r0}, 0x10) capset(0x0, &(0x7f0000000040)={0x200000}) r1 = getpid() process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) socket$netlink(0x10, 0x3, 0x0) syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2e, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, r0}, 0x90) bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}}, 0x1c) listen(0xffffffffffffffff, 0x8) r2 = syz_io_uring_setup(0x231, &(0x7f0000000180)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) getpid() syz_io_uring_submit(r3, r4, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}) io_uring_enter(r2, 0x7a98, 0x1ec4, 0x5, 0x0, 0x0) 1.447611788s ago: executing program 3 (id=7386): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2000000000000074, &(0x7f0000000000)=[{}]}) openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) socket(0x10, 0x3, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0}, &(0x7f00000001c0)=0xc) setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000005c0)={{{@in=@dev={0xac, 0x14, 0x14, 0x12}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x4e20, 0xed, 0x4e22, 0x1ff, 0x2, 0x80, 0x80, 0x1d, 0x0, r0}, {0x3, 0x100000000000000, 0x7, 0xffffffffffffffff, 0x1, 0x2, 0xd8, 0x2}, {0x40, 0xfffffffffffffeff, 0x8000000000000001, 0x81}, 0xff, 0x6e6bb8, 0x1, 0x0, 0x2, 0x1}, {{@in6=@ipv4={'\x00', '\xff\xff', @loopback}, 0x4d2}, 0xa, @in=@loopback, 0x3506, 0x0, 0x3, 0xde, 0x100, 0x10000, 0x8000}}, 0xe4) mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mount(&(0x7f0000000040)=@md0, &(0x7f0000000580)='./file0\x00', &(0x7f0000000000)='pvfs2\x00', 0x0, 0x0) write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c4600000000000000000000000001003e00000000000000000038000000000000000000000000002000000000000000007f8049e30c1e0440"], 0x58) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x8, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, [@alu={0x0, 0x0, 0x1, 0x0, 0x5, 0xc, 0xfffffffffffffff0}, @map_idx={0x18, 0x3, 0x5, 0x0, 0x8}, @generic={0x3, 0x5, 0x5, 0x8, 0x6}, @jmp={0x5, 0x0, 0xa, 0x3, 0xb, 0x720d54ee6c827600, 0x1}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x6}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f00000004c0)='contention_begin\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0) close(r2) ioctl$KVM_GET_NESTED_STATE(r2, 0xc080aebe, &(0x7f0000001580)={{0x0, 0x0, 0x80}}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)) ioctl$VIDIOC_ENUM_FREQ_BANDS(0xffffffffffffffff, 0xc0405665, &(0x7f0000004000)={0x0, 0x2}) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r3, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendto$inet6(r3, &(0x7f0000000080)="e9", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) ioctl$SIOCSIFHWADDR(r2, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="0100"}) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="b400000000000000791090000000000063000018000000009500000000000000f9f364f4a8286bb241139d0ff5717ae08d5c1e560ccd0bfe769ece9747aa7e4bee70a6c24e1747211411a067ea4974aefc5aa75d614dc104b7dfb11dbcaf0cd81e392da8635689c5ff795b48dfc6791955bb44e0998d7342c5f38c47027bc3a6858e62d498993268bd9d99eeaf20dcb387b6"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$KVM_SET_DEBUGREGS(0xffffffffffffffff, 0x4080aea2, &(0x7f0000000000)={[], 0x0, 0x29}) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x61}, 0x48) 1.281652234s ago: executing program 0 (id=7387): io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(0xffffffffffffffff, 0x10, 0x0, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02020409100000000000004c9e00000002001300027f0000000000000000004105000600200000000a000000000000000005000201080f00e0001f080000000000092000000000000200010020e9ffeeffff0702000098a805000500ea0000000a"], 0x80}}, 0x0) sendmmsg(r0, 0x0, 0x0, 0x0) 1.208131648s ago: executing program 1 (id=7388): syz_init_net_socket$rose(0xb, 0x5, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = syz_open_procfs(0xffffffffffffffff, 0x0) sendfile(0xffffffffffffffff, r1, 0x0, 0x100800001) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) socket$inet_udp(0x2, 0x2, 0x0) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_encrypt_change={{0x8, 0x4}, {0x0, 0xc8}}}, 0x7) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) connect$inet6(r3, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="02c90012000e00050014010a00c4e05ef81b9f5dce0e4d00000700ffff00000700"], 0x17) syz_emit_vhci(&(0x7f0000000400)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x1a8}, "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"}, 0x1ac) syz_emit_vhci(0x0, 0x0) syz_open_dev$usbmon(&(0x7f0000000280), 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0) sched_setscheduler(0x0, 0x3, &(0x7f0000000080)=0x7) openat$pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r6, 0x4004ae99, &(0x7f0000000040)=0x4) 1.120567464s ago: executing program 0 (id=7389): ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000001100)={0xaa, 0x3c8}) ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1}) read(0xffffffffffffffff, &(0x7f00000000c0)=""/4096, 0x1000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4003, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e) ioctl$TCXONC(r0, 0x540a, 0x2) ioctl$TCXONC(r0, 0x540a, 0x1) ppoll(&(0x7f0000000140)=[{r0}], 0x1, 0x0, 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)) openat$kvm(0xffffffffffffff9c, &(0x7f0000000740), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) dup(r1) mkdir(&(0x7f0000000000)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) 974.173914ms ago: executing program 2 (id=7390): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000140)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) r1 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/5, 0x214000, 0x800}, 0x20) (fail_nth: 7) 438.299858ms ago: executing program 2 (id=7391): r0 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRES64=0x0], 0x0) r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) write$char_usb(r2, 0x0, 0x0) write$char_usb(r1, 0x0, 0x0) syz_usb_disconnect(r0) socket$packet(0x11, 0x0, 0x300) socket$key(0xf, 0x3, 0x2) socket$key(0xf, 0x3, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$unix(0x1, 0x2, 0x0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) socket$unix(0x1, 0x1, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0) socket(0x840000000002, 0x3, 0x100) io_uring_setup(0x30d3, &(0x7f0000000000)) r3 = syz_io_uring_setup(0x94c, &(0x7f0000000240)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index}) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200)) write$UHID_CREATE2(r6, &(0x7f00000001c0)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r6, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) io_uring_enter(r3, 0x2d3e, 0x0, 0x0, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) bind$alg(0xffffffffffffffff, 0x0, 0x0) accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) 437.913543ms ago: executing program 3 (id=7392): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2000000000000074, &(0x7f0000000000)=[{}]}) openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0) close(r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)) setsockopt(0xffffffffffffffff, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) ioctl$SIOCSIFHWADDR(r0, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="0100"}) 224.677614ms ago: executing program 3 (id=7393): r0 = socket(0x10, 0x3, 0x0) sendto$inet6(r0, &(0x7f0000000080)="7800000018002507b9409b14ffff0b7a0204be040202fe056402040c5c0009003f0006010a000000370085a168d0bf46d32345653600648d270012000a00000049935ade4a460c89b6ec0cff3959547f509058ba86c902007a00004a32000400160008000a0000000000e000e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x0) socket$kcm(0x21, 0x2, 0x2) r1 = syz_open_dev$vim2m(&(0x7f0000000040), 0x0, 0x2) r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0) r3 = eventfd(0x0) ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000140)={0x1, r3}) r4 = eventfd(0xfffffffa) ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r4}) r5 = socket$inet(0x2, 0x2, 0x1) sendmsg$inet(r5, &(0x7f0000000040)={&(0x7f0000000000), 0x10, &(0x7f0000000880)=[{&(0x7f0000000140)="08001ebbb07d586e", 0x8}], 0x1, 0x0, 0x0, 0xe0000000}, 0x20040804) r6 = epoll_create1(0x0) r7 = socket(0x1e, 0x805, 0x0) listen(r7, 0x0) r8 = socket(0x1e, 0x805, 0x0) listen(r8, 0x0) r9 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000380)={'bridge0\x00'}) setsockopt$inet_tcp_TCP_ULP(r9, 0x6, 0x1f, &(0x7f0000000000), 0xfffffffffffffefb) accept4(r8, 0x0, 0x0, 0x0) r10 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb) request_key(&(0x7f0000000240)='encrypted\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000280)='\x00\xa8\xd8~3[q\x1f\x80\xc8\xcd\xd0\xa6\xd2G\xbb}\x1b\xd40\xb7\x1c^T\xb9\xeb\xda1\a]2F\x02\x8f\x0f\xb9K\x06S\xae\xac\x8d\xa89\xf9A\xe85\x93\xd8\xa0L8\x87\x16\xc8\xd7:\xeb\x19\xb1\xb7\xf4\x8c\xa0\xf6\xee\xdf\xf0\x11Y\x81p\xa3b\x8dvHf\xea\xe9\xe5\xce\xcb\x05\xef\x82\x8cYXo\x0e\xa2\b\x1c\xeb;J\x81c\x91[\x8a\x81O\x93g\xd9\xaf\x97\x99\t\xe6?#\x85', r10) add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, r10) r11 = socket$netlink(0x10, 0x3, 0x8) epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r11, &(0x7f0000000080)={0x10000001}) ioctl$vim2m_VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000000)={0xf0f045}) r12 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r12, 0x1, r1, &(0x7f0000000080)={0x2011}) epoll_ctl$EPOLL_CTL_ADD(r12, 0x1, r0, &(0x7f0000000100)={0x70000013}) 65.553622ms ago: executing program 0 (id=7394): socket$inet6(0xa, 0x1, 0x100) (fail_nth: 7) 0s ago: executing program 3 (id=7395): r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/sloppy_sctp\x00', 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000240)={'gre0\x00', &(0x7f00000001c0)={'syztnl1\x00', 0x0, 0x1, 0x7800, 0x378, 0xfffffff9, {{0x12, 0x4, 0x2, 0x1, 0x48, 0x65, 0x0, 0x2, 0x29, 0x0, @multicast2, @rand_addr=0x64010101, {[@end, @timestamp_addr={0x44, 0x2c, 0x90, 0x1, 0xf, [{@remote}, {@dev={0xac, 0x14, 0x14, 0xf}, 0xc}, {@remote, 0x81}, {@private=0xa010100, 0x10001}, {@private=0xa010102, 0x61d7}]}, @ra={0x94, 0x4, 0x1}]}}}}}) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)=@deltclass={0x30, 0x29, 0x100, 0x70bd2a, 0x25dfdbff, {0x0, 0x0, 0x0, r1, {0x6, 0x13}, {0x9, 0x2}, {0xfffe, 0x3}}, [@tclass_kind_options=@c_prio={0x9}]}, 0x30}, 0x1, 0x0, 0x0, 0x40080}, 0x844) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x18}, [@ldst={0x4}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48) getsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000040), &(0x7f0000000100)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x487, &(0x7f0000000140)={{0x87, @empty, 0x4e24, 0x2, 'none\x00', 0x15, 0x3, 0x51}, {@local, 0x4e22, 0x1, 0x3, 0xffffffff, 0xcfe3}}, 0x44) prlimit64(0x0, 0xe, 0x0, 0x0) r3 = getpid() sched_setscheduler(r3, 0x2, 0x0) r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_GETPLANE(r4, 0xc02064b6, &(0x7f00000003c0)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_SETCRTC(r4, 0xc06864a2, &(0x7f0000000400)={0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "b4bc323ef77d1f000071849800000000dfff00"}}) kernel console output (not intermixed with test programs): 70 [ 1816.625971][T30895] ? __pfx___lock_acquire+0x10/0x10 [ 1816.628195][T30895] ___sys_sendmsg+0x135/0x1e0 [ 1816.630197][T30895] ? __pfx____sys_sendmsg+0x10/0x10 [ 1816.632394][T30895] ? ksys_write+0x21c/0x260 [ 1816.634281][T30895] ? __fget_light+0x173/0x210 [ 1816.636395][T30895] __sys_sendmsg+0x117/0x1f0 [ 1816.638475][T30895] ? __pfx___sys_sendmsg+0x10/0x10 [ 1816.640771][T30895] __do_fast_syscall_32+0x73/0x120 [ 1816.642956][T30895] do_fast_syscall_32+0x32/0x80 [ 1816.645175][T30895] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1816.647946][T30895] RIP: 0023:0xf746e579 [ 1816.649720][T30895] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1816.657915][T30895] RSP: 002b:00000000f5d8657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 1816.661459][T30895] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000040 [ 1816.664644][T30895] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1816.667957][T30895] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1816.671137][T30895] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1816.674463][T30895] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1816.677668][T30895] [ 1817.090989][T30909] FAULT_INJECTION: forcing a failure. [ 1817.090989][T30909] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1817.096592][T30909] CPU: 2 PID: 30909 Comm: syz.1.6619 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1817.100644][T30909] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1817.105084][T30909] Call Trace: [ 1817.106532][T30909] [ 1817.107857][T30909] dump_stack_lvl+0x16c/0x1f0 [ 1817.109938][T30909] should_fail_ex+0x497/0x5b0 [ 1817.111888][T30909] _copy_from_iter+0x27a/0xfb0 [ 1817.113533][T30909] ? __alloc_skb+0x200/0x380 [ 1817.115273][T30909] ? __pfx__copy_from_iter+0x10/0x10 [ 1817.117435][T30909] ? __virt_addr_valid+0x5e/0x590 [ 1817.119626][T30909] ? __phys_addr_symbol+0x30/0x80 [ 1817.122044][T30909] ? __check_object_size+0x48e/0x720 [ 1817.123944][T30909] netlink_sendmsg+0x813/0xd70 [ 1817.125815][T30909] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1817.127717][T30909] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1817.129298][T30909] ____sys_sendmsg+0x9b4/0xb50 [ 1817.130859][T30909] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1817.132655][T30909] ? get_compat_msghdr+0x11b/0x170 [ 1817.134346][T30909] ? __pfx___lock_acquire+0x10/0x10 [ 1817.136311][T30909] ___sys_sendmsg+0x135/0x1e0 [ 1817.138320][T30909] ? __pfx____sys_sendmsg+0x10/0x10 [ 1817.140547][T30909] ? ksys_write+0x21c/0x260 [ 1817.142586][T30909] ? __fget_light+0x173/0x210 [ 1817.144731][T30909] __sys_sendmsg+0x117/0x1f0 [ 1817.146741][T30909] ? __pfx___sys_sendmsg+0x10/0x10 [ 1817.148995][T30909] __do_fast_syscall_32+0x73/0x120 [ 1817.151296][T30909] do_fast_syscall_32+0x32/0x80 [ 1817.153413][T30909] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1817.155919][T30909] RIP: 0023:0xf7f61579 [ 1817.157447][T30909] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1817.166857][T30909] RSP: 002b:00000000f5d1657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 1817.170535][T30909] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000040 [ 1817.174141][T30909] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1817.177570][T30909] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1817.181155][T30909] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1817.185116][T30909] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1817.188531][T30909] [ 1817.228782][T30903] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 1818.057036][T30924] netlink: 'syz.0.6626': attribute type 4 has an invalid length. [ 1818.280954][T30934] netlink: 'syz.2.6629': attribute type 11 has an invalid length. [ 1818.284624][T30934] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.6629'. [ 1818.407616][T30936] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1818.478448][T30936] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1818.649332][T30938] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6632'. [ 1818.677760][T30938] netlink: 56 bytes leftover after parsing attributes in process `syz.3.6632'. [ 1818.697827][T30938] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6632'. [ 1819.595816][T30962] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6638'. [ 1820.187004][T30953] orangefs_mount: mount request failed with -4 [ 1820.242649][T30966] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 1820.245447][T30966] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 1820.277808][T30966] vhci_hcd vhci_hcd.0: Device attached [ 1820.376353][T30967] vhci_hcd: connection closed [ 1820.383552][ T11] vhci_hcd: stop threads [ 1820.387606][ T11] vhci_hcd: release socket [ 1820.389346][ T11] vhci_hcd: disconnect device [ 1821.602064][T30993] netlink: 'syz.0.6647': attribute type 11 has an invalid length. [ 1821.613831][T30993] netlink: 199544 bytes leftover after parsing attributes in process `syz.0.6647'. [ 1821.735446][T30994] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1821.767320][T30994] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1823.510851][T31020] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1823.613443][T31020] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1823.673376][T31020] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1823.756338][T31009] pim6reg1: entered allmulticast mode [ 1824.033362][T31009] fuse: Unknown parameter 'fd0x000000000000000c' [ 1824.862729][T31041] 9pnet_virtio: no channels available for device syz [ 1824.911993][T31044] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6663'. [ 1825.191136][T31049] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6661'. [ 1825.200655][T31050] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6662'. [ 1825.845213][T31068] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1825.878517][T31068] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1825.918435][T31068] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1829.507528][T31108] netlink: 'syz.3.6683': attribute type 4 has an invalid length. [ 1829.526946][T31109] pim6reg1: entered allmulticast mode [ 1829.556927][T31109] fuse: Unknown parameter 'fd0x000000000000000d' [ 1830.307660][T31116] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1830.558844][T31121] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1830.673946][T31124] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1830.816587][T31128] netlink: 48 bytes leftover after parsing attributes in process `syz.0.6687'. [ 1831.295861][ T8] usb 5-1: new high-speed USB device number 47 using dummy_hcd [ 1831.518523][ T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1831.524204][ T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1831.528398][ T8] usb 5-1: New USB device found, idVendor=17ef, idProduct=6067, bcdDevice= 0.00 [ 1831.534741][ T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1831.554658][ T8] usb 5-1: config 0 descriptor?? [ 1831.778167][ T8] usbhid 5-1:0.0: can't add hid device: -71 [ 1831.780915][ T8] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 1831.785983][ T8] usb 5-1: USB disconnect, device number 47 [ 1833.167120][T31151] netlink: 'syz.2.6694': attribute type 1 has an invalid length. [ 1833.210200][T31149] pim6reg1: entered allmulticast mode [ 1833.244650][T31149] fuse: Unknown parameter 'fd0x000000000000000d' [ 1834.216380][T31173] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1834.514961][T31179] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1834.609933][T21021] usb 7-1: new high-speed USB device number 44 using dummy_hcd [ 1834.641247][T31181] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1834.713882][T31182] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6702'. [ 1834.815228][T21021] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1834.819847][T21021] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1834.824187][T21021] usb 7-1: New USB device found, idVendor=17ef, idProduct=6067, bcdDevice= 0.00 [ 1834.828058][T21021] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1834.833157][T21021] usb 7-1: config 0 descriptor?? [ 1835.067443][T21021] usbhid 7-1:0.0: can't add hid device: -71 [ 1835.072861][T21021] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 1835.086698][T21021] usb 7-1: USB disconnect, device number 44 [ 1835.480099][T31189] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6704'. [ 1836.136843][T31202] netlink: 830 bytes leftover after parsing attributes in process `syz.2.6710'. [ 1836.890382][T31217] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1837.099764][T31221] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1837.192088][T31224] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1837.908073][ T5215] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1837.924025][ T5215] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1837.941223][ T5215] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1837.946551][ T5215] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1837.953664][ T5215] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1837.958068][ T5215] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1837.991693][ T5213] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1837.995939][ T5213] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1838.003502][ T5213] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1838.010291][ T5215] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1838.015172][ T5215] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1838.030793][ T5213] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1838.390277][T31235] chnl_net:caif_netlink_parms(): no params data found [ 1838.738917][T31235] bridge0: port 1(bridge_slave_0) entered blocking state [ 1838.753396][T31235] bridge0: port 1(bridge_slave_0) entered disabled state [ 1838.756822][T31235] bridge_slave_0: entered allmulticast mode [ 1838.762528][T31235] bridge_slave_0: entered promiscuous mode [ 1838.775066][T31235] bridge0: port 2(bridge_slave_1) entered blocking state [ 1838.778465][T31235] bridge0: port 2(bridge_slave_1) entered disabled state [ 1838.794640][T31235] bridge_slave_1: entered allmulticast mode [ 1838.798584][T31235] bridge_slave_1: entered promiscuous mode [ 1839.010264][T31235] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1839.041781][T31235] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1839.322190][ T1088] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1839.366671][T31235] team0: Port device team_slave_0 added [ 1839.380987][T31235] team0: Port device team_slave_1 added [ 1839.565793][ T1088] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1839.575274][T31235] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1839.580920][T31235] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1839.602320][T31235] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1839.612180][T31235] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1839.626228][T31235] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1839.659324][T31235] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1839.695192][ T1088] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1839.817359][T31267] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1839.821370][T31267] Bluetooth: hci0: Error when powering off device on rfkill (-4) [ 1839.843967][T31274] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6726'. [ 1839.931875][T31235] hsr_slave_0: entered promiscuous mode [ 1839.948473][T31235] hsr_slave_1: entered promiscuous mode [ 1839.963209][T31235] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1839.981658][T31235] Cannot create hsr debugfs directory [ 1840.013818][ T1088] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1840.435100][T31281] pim6reg1: entered allmulticast mode [ 1840.470768][T31281] fuse: Unknown parameter 'fd0x000000000000000c' [ 1840.570998][ T40] audit: type=1326 audit(1721213903.422:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31287 comm="syz.3.6730" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x0 [ 1840.683368][ T1088] bridge_slave_1: left allmulticast mode [ 1840.698035][ T1088] bridge_slave_1: left promiscuous mode [ 1840.700615][ T1088] bridge0: port 2(bridge_slave_1) entered disabled state [ 1840.727721][ T1088] bridge_slave_0: left allmulticast mode [ 1840.742579][ T1088] bridge_slave_0: left promiscuous mode [ 1840.746070][ T1088] bridge0: port 1(bridge_slave_0) entered disabled state [ 1840.937989][ T40] audit: type=1326 audit(1721213903.759:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31291 comm="syz.1.6731" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x0 [ 1841.928571][ T1088] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1841.967855][ T1088] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1841.983275][ T1088] bond0 (unregistering): Released all slaves [ 1842.616481][ T1088] hsr_slave_0: left promiscuous mode [ 1842.649765][ T1088] hsr_slave_1: left promiscuous mode [ 1842.681563][ T1088] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1842.684687][ T1088] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1842.694255][ T1088] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1842.697305][ T1088] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1842.946989][ T1088] veth1_macvtap: left promiscuous mode [ 1842.951448][ T1088] veth0_macvtap: left promiscuous mode [ 1842.954301][ T1088] veth1_vlan: left promiscuous mode [ 1842.956741][ T1088] veth0_vlan: left promiscuous mode [ 1843.304240][T31305] ptrace attach of "/syz-executor exec"[31304] was attempted by "/syz-executor exec"[31305] [ 1844.752049][ T1088] team0 (unregistering): Port device team_slave_1 removed [ 1844.990793][ T1088] team0 (unregistering): Port device team_slave_0 removed [ 1846.635146][T31235] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1846.651573][T31235] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1846.660387][T31235] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1846.676542][T31235] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1846.825165][T31235] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1846.864232][T31235] 8021q: adding VLAN 0 to HW filter on device team0 [ 1846.876272][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 1846.879790][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1846.932323][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 1846.935606][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1847.140154][T31316] pim6reg1: entered allmulticast mode [ 1847.164137][T31316] fuse: Unknown parameter 'fd0x000000000000000c' [ 1847.284900][T31235] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1847.368905][T31235] veth0_vlan: entered promiscuous mode [ 1847.400268][T31235] veth1_vlan: entered promiscuous mode [ 1847.468336][T31235] veth0_macvtap: entered promiscuous mode [ 1847.479018][T31235] veth1_macvtap: entered promiscuous mode [ 1847.499674][T31235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1847.510691][T31235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1847.520373][T31235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1847.527075][T31235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1847.532617][T31235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1847.539170][T31235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1847.544728][T31235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1847.551006][T31235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1847.559559][T31235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1847.565460][T31235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1847.571791][T31235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1847.575675][T31235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1847.581251][T31235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1847.585710][T31235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1847.598364][T31235] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1847.614516][T31235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1847.620629][T31235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1847.624996][T31235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1847.629449][T31235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1847.637323][T31235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1847.642907][T31235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1847.647640][T31235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1847.651995][T31235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1847.656597][T31235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1847.661097][T31235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1847.665449][T31235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1847.670133][T31235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1847.675145][T31235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1847.681107][T31235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1847.685391][T31235] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1847.689964][T31235] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1847.699916][T31235] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1847.710611][T31235] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1847.716319][T31235] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1847.724775][T31235] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1847.730913][T31235] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1847.986935][ T1088] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1847.990709][ T1088] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1848.052733][ T1088] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1848.055965][ T1088] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1848.554183][T31336] ptrace attach of "/syz-executor exec"[31338] was attempted by "/syz-executor exec"[31336] [ 1848.587081][T31337] pim6reg1: entered allmulticast mode [ 1848.637589][T31337] fuse: Unknown parameter 'fd0x000000000000000c' [ 1848.680666][T31341] netlink: 64 bytes leftover after parsing attributes in process `syz.0.6743'. [ 1848.687124][T31341] netlink: 60 bytes leftover after parsing attributes in process `syz.0.6743'. [ 1848.901145][T31352] IPVS: set_ctl: invalid protocol: 0 172.20.20.170:0 [ 1848.918945][T31352] netlink: 'syz.1.6748': attribute type 1 has an invalid length. [ 1848.956710][T31352] netlink: 'syz.1.6748': attribute type 10 has an invalid length. [ 1848.991887][T31352] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 1849.308503][T31353] pim6reg1: entered allmulticast mode [ 1849.465740][T31353] fuse: Unknown parameter 'fd0x000000000000000c' [ 1849.625206][T31359] can: request_module (can-proto-5) failed. [ 1849.770212][T31367] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6751'. [ 1849.798759][ T40] audit: type=1326 audit(1721213912.056:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31365 comm="syz.1.6752" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x0 [ 1851.353099][T31390] can: request_module (can-proto-5) failed. [ 1851.516524][T31397] Mount JFS Failure: -22 [ 1852.369496][ T40] audit: type=1326 audit(1721213914.460:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31410 comm="syz.2.6767" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f52579 code=0x0 [ 1852.476601][T31414] IPVS: set_ctl: invalid protocol: 0 172.20.20.170:0 [ 1852.482715][T31414] netlink: 'syz.1.6768': attribute type 1 has an invalid length. [ 1852.520010][T31414] netlink: 'syz.1.6768': attribute type 10 has an invalid length. [ 1854.506405][T31440] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 1855.896393][T31452] No control pipe specified [ 1855.946974][T31457] IPVS: set_ctl: invalid protocol: 0 172.20.20.170:0 [ 1855.995511][T31457] netlink: 'syz.2.6779': attribute type 1 has an invalid length. [ 1856.022572][T31457] netlink: 'syz.2.6779': attribute type 10 has an invalid length. [ 1856.027754][T31457] bond0: (slave wlan1): Opening slave failed [ 1856.138947][T31459] IPVS: set_ctl: invalid protocol: 0 172.20.20.170:0 [ 1856.176089][T31459] netlink: 'syz.2.6781': attribute type 1 has an invalid length. [ 1856.237557][T31459] netlink: 'syz.2.6781': attribute type 10 has an invalid length. [ 1856.252587][T31459] bond0: (slave wlan1): Opening slave failed [ 1856.501040][T31466] FAULT_INJECTION: forcing a failure. [ 1856.501040][T31466] name failslab, interval 1, probability 0, space 0, times 0 [ 1856.555262][T31466] CPU: 1 PID: 31466 Comm: syz.2.6783 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1856.564171][T31466] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1856.570722][T31466] Call Trace: [ 1856.573218][T31466] [ 1856.575071][T31466] dump_stack_lvl+0x16c/0x1f0 [ 1856.578099][T31466] should_fail_ex+0x497/0x5b0 [ 1856.581066][T31466] should_failslab+0x9/0x20 [ 1856.583342][T31466] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 1856.586041][T31466] ? dst_alloc+0x99/0x1a0 [ 1856.588331][T31466] dst_alloc+0x99/0x1a0 [ 1856.590558][T31466] rt_dst_alloc+0x35/0x3a0 [ 1856.592610][T31466] ip_route_output_key_hash_rcu+0x8a5/0x2770 [ 1856.595300][T31466] ip_route_output_key_hash+0x138/0x2e0 [ 1856.597657][T31466] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 1856.600300][T31466] ? crng_make_state+0x27d/0x6d0 [ 1856.602791][T31466] ip_route_output_flow+0x27/0x150 [ 1856.605717][T31466] sctp_v4_get_dst+0x43d/0x12d0 [ 1856.607916][T31466] ? crng_make_state+0x46e/0x6d0 [ 1856.610086][T31466] ? lockdep_hardirqs_on+0x7c/0x110 [ 1856.612603][T31466] ? crng_make_state+0x48e/0x6d0 [ 1856.614788][T31466] ? __pfx_sctp_v4_get_dst+0x10/0x10 [ 1856.617189][T31466] ? sctp_transport_route+0x12e/0x350 [ 1856.619631][T31466] sctp_transport_route+0x12e/0x350 [ 1856.622346][T31466] sctp_assoc_add_peer+0x743/0x14b0 [ 1856.625173][T31466] sctp_connect_new_asoc+0x209/0x790 [ 1856.627615][T31466] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 1856.630091][T31466] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 1856.632649][T31466] sctp_sendmsg+0x162a/0x1f10 [ 1856.634822][T31466] ? __pfx_sctp_sendmsg+0x10/0x10 [ 1856.637183][T31466] ? find_held_lock+0x2d/0x110 [ 1856.640048][T31466] ? __pfx___might_resched+0x10/0x10 [ 1856.642880][T31466] ? __pfx___might_resched+0x10/0x10 [ 1856.645236][T31466] ? __pfx_aa_sk_perm+0x10/0x10 [ 1856.647191][T31466] ? __might_fault+0xe3/0x190 [ 1856.649234][T31466] ? __pfx_sctp_sendmsg+0x10/0x10 [ 1856.651215][T31466] inet_sendmsg+0x119/0x140 [ 1856.653592][T31466] __sys_sendto+0x42c/0x4e0 [ 1856.655530][T31466] ? __pfx___sys_sendto+0x10/0x10 [ 1856.657778][T31466] ? ksys_write+0x1ab/0x260 [ 1856.659658][T31466] ? __pfx_ksys_write+0x10/0x10 [ 1856.661364][T31466] __ia32_sys_sendto+0xdd/0x1b0 [ 1856.663265][T31466] ? lockdep_hardirqs_on+0x7c/0x110 [ 1856.665629][T31466] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 1856.668468][T31466] __do_fast_syscall_32+0x73/0x120 [ 1856.670344][T31466] do_fast_syscall_32+0x32/0x80 [ 1856.672511][T31466] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1856.674876][T31466] RIP: 0023:0xf7f52579 [ 1856.676637][T31466] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1856.684596][T31466] RSP: 002b:00000000f5d0657c EFLAGS: 00000292 ORIG_RAX: 0000000000000171 [ 1856.688446][T31466] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0 [ 1856.692972][T31466] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 00000000200001c0 [ 1856.697458][T31466] RBP: 0000000000000010 R08: 0000000000000000 R09: 0000000000000000 [ 1856.702263][T31466] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1856.706364][T31466] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1856.711085][T31466] [ 1857.676328][T31484] IPVS: set_ctl: invalid protocol: 0 172.20.20.170:0 [ 1857.678023][T31486] netlink: 36 bytes leftover after parsing attributes in process `syz.3.6788'. [ 1857.711315][T31484] netlink: 'syz.1.6790': attribute type 1 has an invalid length. [ 1857.777352][T31484] netlink: 'syz.1.6790': attribute type 10 has an invalid length. [ 1858.650044][T31505] ptrace attach of "/syz-executor exec"[31507] was attempted by "/syz-executor exec"[31505] [ 1858.910693][T31514] netlink: 36 bytes leftover after parsing attributes in process `syz.3.6795'. [ 1860.122426][T31534] netlink: 36 bytes leftover after parsing attributes in process `syz.3.6804'. [ 1860.812430][T31549] netlink: 256 bytes leftover after parsing attributes in process `syz.0.6811'. [ 1861.101605][T31551] No control pipe specified [ 1861.282679][ T40] audit: type=1326 audit(1721213922.794:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31557 comm="syz.0.6813" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x0 [ 1861.757173][T31577] FAULT_INJECTION: forcing a failure. [ 1861.757173][T31577] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1861.762934][T31577] CPU: 3 PID: 31577 Comm: syz.1.6817 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1861.767161][T31577] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1861.771923][T31577] Call Trace: [ 1861.773472][T31577] [ 1861.774866][T31577] dump_stack_lvl+0x16c/0x1f0 [ 1861.776897][T31577] should_fail_ex+0x497/0x5b0 [ 1861.779049][T31577] _copy_from_user+0x30/0xf0 [ 1861.781060][T31577] j1939_sk_setsockopt+0x5b8/0x840 [ 1861.783332][T31577] ? __pfx_j1939_sk_setsockopt+0x10/0x10 [ 1861.785845][T31577] ? bpf_lsm_socket_setsockopt+0x9/0x10 [ 1861.788438][T31577] ? __pfx_j1939_sk_setsockopt+0x10/0x10 [ 1861.790824][T31577] do_sock_setsockopt+0x222/0x480 [ 1861.792975][T31577] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 1861.795332][T31577] ? __fget_light+0x173/0x210 [ 1861.797332][T31577] __sys_setsockopt+0x1a4/0x270 [ 1861.799499][T31577] ? __pfx___sys_setsockopt+0x10/0x10 [ 1861.801831][T31577] ? fput+0x32/0x390 [ 1861.803539][T31577] ? ksys_write+0x1ab/0x260 [ 1861.805552][T31577] ? __pfx_ksys_write+0x10/0x10 [ 1861.807839][T31577] __ia32_sys_setsockopt+0xbc/0x160 [ 1861.810075][T31577] ? lockdep_hardirqs_on+0x7c/0x110 [ 1861.812281][T31577] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 1861.815213][T31577] __do_fast_syscall_32+0x73/0x120 [ 1861.817409][T31577] do_fast_syscall_32+0x32/0x80 [ 1861.817431][T31577] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1861.817453][T31577] RIP: 0023:0xf7f61579 [ 1861.817468][T31577] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1861.817485][T31577] RSP: 002b:00000000f5d1657c EFLAGS: 00000292 ORIG_RAX: 000000000000016e [ 1861.817504][T31577] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000006b [ 1861.817517][T31577] RDX: 0000000000000001 RSI: 0000000020000480 RDI: 00000000000000a0 [ 1861.817529][T31577] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1861.817539][T31577] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1861.817550][T31577] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1861.817583][T31577] [ 1861.948797][T31581] netlink: 36 bytes leftover after parsing attributes in process `syz.1.6818'. [ 1862.663364][ T1356] ieee802154 phy0 wpan0: encryption failed: -22 [ 1862.666345][ T1356] ieee802154 phy1 wpan1: encryption failed: -22 [ 1863.737551][T31603] No control pipe specified [ 1864.279145][T31610] FAULT_INJECTION: forcing a failure. [ 1864.279145][T31610] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1864.287004][T31610] CPU: 1 PID: 31610 Comm: syz.3.6827 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1864.289612][T31608] block device autoloading is deprecated and will be removed. [ 1864.290987][T31610] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1864.291000][T31610] Call Trace: [ 1864.291008][T31610] [ 1864.291016][T31610] dump_stack_lvl+0x16c/0x1f0 [ 1864.298138][T31610] should_fail_ex+0x497/0x5b0 [ 1864.298167][T31610] _copy_to_user+0x30/0xc0 [ 1864.298189][T31610] bpf_test_finish.isra.0+0x551/0x6b0 [ 1864.298215][T31610] ? __pfx_bpf_test_finish.isra.0+0x10/0x10 [ 1864.312164][T31610] ? krealloc_noprof+0xa7/0x100 [ 1864.315480][T31610] bpf_prog_test_run_skb+0x11bb/0x2140 [ 1864.320549][T31610] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 1864.323355][T31610] ? fput+0x32/0x390 [ 1864.325101][T31610] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 1864.328715][T31610] __sys_bpf+0x141f/0x5600 [ 1864.331081][T31610] ? __pfx___sys_bpf+0x10/0x10 [ 1864.333563][T31610] ? ksys_write+0x12f/0x260 [ 1864.335541][T31610] ? find_held_lock+0x2d/0x110 [ 1864.337938][T31610] ? ksys_write+0x21c/0x260 [ 1864.340018][T31610] ? __pfx_lock_release+0x10/0x10 [ 1864.342547][T31610] ? vfs_write+0x14d/0x1140 [ 1864.344458][T31610] ? __mutex_unlock_slowpath+0x164/0x650 [ 1864.346637][T31610] ? fput+0x32/0x390 [ 1864.348232][T31610] ? ksys_write+0x1ab/0x260 [ 1864.349954][T31610] ? __pfx_ksys_write+0x10/0x10 [ 1864.351853][T31610] __ia32_sys_bpf+0x76/0xe0 [ 1864.353839][T31610] __do_fast_syscall_32+0x73/0x120 [ 1864.355893][T31610] do_fast_syscall_32+0x32/0x80 [ 1864.358260][T31610] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1864.361479][T31610] RIP: 0023:0xf7f83579 [ 1864.363699][T31610] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1864.372214][T31610] RSP: 002b:00000000f5d3657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165 [ 1864.376054][T31610] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000200002c0 [ 1864.380101][T31610] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000 [ 1864.384274][T31610] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1864.388105][T31610] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1864.391297][T31610] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1864.394883][T31610] [ 1864.684113][T31616] tipc: Started in network mode [ 1864.686872][T31616] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 1864.714939][T31616] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 1864.720268][T31616] tipc: Enabled bearer , priority 10 [ 1865.078453][T31626] fuse: Bad value for 'rootmode' [ 1865.112046][T31626] Bluetooth: MGMT ver 1.23 [ 1865.164917][T31624] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1865.260925][T31624] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1865.290423][T31624] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1865.484849][ T40] audit: type=1326 audit(1721213926.732:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31629 comm="syz.1.6834" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x0 [ 1865.795413][T31314] tipc: Node number set to 1 [ 1866.177690][T31643] IPVS: set_ctl: invalid protocol: 0 172.20.20.170:0 [ 1866.194272][T31643] netlink: 'syz.3.6837': attribute type 1 has an invalid length. [ 1866.213446][T31643] netlink: 'syz.3.6837': attribute type 10 has an invalid length. [ 1866.217619][T31643] bond0: (slave wlan1): Opening slave failed [ 1866.685581][T31649] tipc: Enabling of bearer rejected, already enabled [ 1866.942535][T31661] FAULT_INJECTION: forcing a failure. [ 1866.942535][T31661] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1866.957747][T31661] CPU: 2 PID: 31661 Comm: syz.3.6843 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1866.962904][T31661] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1866.968003][T31661] Call Trace: [ 1866.969581][T31661] [ 1866.971100][T31661] dump_stack_lvl+0x16c/0x1f0 [ 1866.973381][T31661] should_fail_ex+0x497/0x5b0 [ 1866.975486][T31661] _copy_to_user+0x30/0xc0 [ 1866.977422][T31661] simple_read_from_buffer+0xd0/0x160 [ 1866.979685][T31661] proc_fail_nth_read+0x1b0/0x290 [ 1866.981821][T31661] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1866.984268][T31661] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1866.986940][T31661] vfs_read+0x1d4/0xbd0 [ 1866.988874][T31661] ? __fdget_pos+0xeb/0x180 [ 1866.990870][T31661] ? __pfx_vfs_read+0x10/0x10 [ 1866.993171][T31661] ? __pfx___mutex_lock+0x10/0x10 [ 1866.995496][T31661] ? __fget_files+0x256/0x400 [ 1866.997608][T31661] ksys_read+0x12f/0x260 [ 1866.999360][T31661] ? __pfx_ksys_read+0x10/0x10 [ 1867.001215][T31661] __do_fast_syscall_32+0x73/0x120 [ 1867.003300][T31661] do_fast_syscall_32+0x32/0x80 [ 1867.005355][T31661] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1867.008939][T31661] RIP: 0023:0xf7f83579 [ 1867.011198][T31661] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1867.020038][T31661] RSP: 002b:00000000f5d365b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 1867.023653][T31661] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5d36630 [ 1867.027012][T31661] RDX: 000000000000000f RSI: 00000000f7408ff4 RDI: 0000000000000000 [ 1867.030507][T31661] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 1867.034555][T31661] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 1867.038059][T31661] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1867.041543][T31661] [ 1867.854972][T31670] netlink: 'syz.0.6846': attribute type 10 has an invalid length. [ 1867.858669][T31670] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.6846'. [ 1867.862478][T31670] openvswitch: netlink: Key type 29 is not supported [ 1868.645084][T31691] pim6reg1: entered allmulticast mode [ 1868.658684][T31691] fuse: Unknown parameter 'fd0x000000000000000d' [ 1869.294178][T31701] 9pnet_virtio: no channels available for device syz [ 1869.581960][T31705] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6856'. [ 1870.595011][ T40] audit: type=1326 audit(1721213931.503:902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31716 comm="syz.0.6861" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x0 [ 1871.152069][T31728] IPVS: set_ctl: invalid protocol: 0 172.20.20.170:0 [ 1871.171755][T31728] netlink: 'syz.3.6864': attribute type 1 has an invalid length. [ 1871.176705][T31728] netlink: 'syz.3.6864': attribute type 10 has an invalid length. [ 1871.180655][T31728] bond0: (slave wlan1): Opening slave failed [ 1871.479745][T31732] 9pnet_virtio: no channels available for device syz [ 1871.677536][T31736] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6865'. [ 1873.994179][T31755] program syz.1.6873 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1875.838046][T31791] IPVS: set_ctl: invalid protocol: 0 172.20.20.170:0 [ 1875.842692][T31791] netlink: 'syz.0.6883': attribute type 10 has an invalid length. [ 1875.846640][T31791] bond0: (slave wlan1): Opening slave failed [ 1876.048770][T31783] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6880'. [ 1876.325224][T31799] program syz.0.6885 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1876.433040][T31809] netlink: 'syz.2.6888': attribute type 2 has an invalid length. [ 1876.436807][T31809] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6888'. [ 1876.712725][ T40] audit: type=1326 audit(1721213937.237:903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31810 comm="syz.2.6889" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f52579 code=0x0 [ 1876.916186][T31813] netlink: 'syz.3.6890': attribute type 10 has an invalid length. [ 1876.921145][T31813] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.6890'. [ 1876.944631][T31813] openvswitch: netlink: Key type 29 is not supported [ 1878.724450][T31844] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1878.756994][T31844] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1878.785587][T31844] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1879.396933][T31849] netlink: 'syz.0.6900': attribute type 11 has an invalid length. [ 1879.401961][T31849] netlink: 140 bytes leftover after parsing attributes in process `syz.0.6900'. [ 1879.926940][T31852] pim6reg1: entered allmulticast mode [ 1879.957580][T31852] fuse: Unknown parameter 'fd0x000000000000000d' [ 1881.752574][T31883] No control pipe specified [ 1882.048342][T31900] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6911'. [ 1882.109216][T31895] No control pipe specified [ 1882.118455][T31893] No control pipe specified [ 1882.519281][ T1271] libceph: connect (1)[c::]:6789 error -101 [ 1882.522814][ T1271] libceph: mon0 (1)[c::]:6789 connect error [ 1882.803628][T26338] libceph: connect (1)[c::]:6789 error -101 [ 1882.806379][T26338] libceph: mon0 (1)[c::]:6789 connect error [ 1882.853926][T31916] netlink: 'syz.0.6918': attribute type 2 has an invalid length. [ 1882.888037][ C2] vkms_vblank_simulate: vblank timer overrun [ 1882.920656][ T1271] usb 6-1: new high-speed USB device number 42 using dummy_hcd [ 1883.031608][T31924] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6922'. [ 1883.060887][T31927] netlink: 'syz.0.6923': attribute type 10 has an invalid length. [ 1883.065430][T31927] bond0: (slave wlan1): Opening slave failed [ 1883.113370][ T1271] usb 6-1: Using ep0 maxpacket: 32 [ 1883.118476][ T1271] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1883.125513][ T1271] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 1883.137642][ T1271] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1883.145028][ T1271] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1883.156227][ T1271] usb 6-1: Product: syz [ 1883.159204][ T1271] usb 6-1: Manufacturer: syz [ 1883.162292][ T1271] usb 6-1: SerialNumber: syz [ 1883.349085][T26338] libceph: connect (1)[c::]:6789 error -101 [ 1883.351947][T26338] libceph: mon0 (1)[c::]:6789 connect error [ 1883.370383][T31935] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6924'. [ 1883.404108][ T1271] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 42 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 1883.530547][T31937] FAULT_INJECTION: forcing a failure. [ 1883.530547][T31937] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1883.543088][T31937] CPU: 2 PID: 31937 Comm: syz.2.6927 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1883.547386][T31937] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1883.551323][T31937] Call Trace: [ 1883.552657][T31937] [ 1883.553570][T31937] dump_stack_lvl+0x16c/0x1f0 [ 1883.555232][T31937] should_fail_ex+0x497/0x5b0 [ 1883.557303][T31937] _copy_from_user+0x30/0xf0 [ 1883.558882][T31937] get_compat_msghdr+0xa8/0x170 [ 1883.560717][T31937] ? __pfx_get_compat_msghdr+0x10/0x10 [ 1883.563077][T31937] ? __pfx___lock_acquire+0x10/0x10 [ 1883.566265][T31937] ___sys_sendmsg+0x1b0/0x1e0 [ 1883.568905][T31937] ? __pfx____sys_sendmsg+0x10/0x10 [ 1883.571601][T31937] ? ksys_write+0x21c/0x260 [ 1883.573857][T31937] ? __fget_light+0x173/0x210 [ 1883.576088][T31937] __sys_sendmsg+0x117/0x1f0 [ 1883.578517][T31937] ? __pfx___sys_sendmsg+0x10/0x10 [ 1883.580988][T31937] __do_fast_syscall_32+0x73/0x120 [ 1883.585219][T31937] do_fast_syscall_32+0x32/0x80 [ 1883.587463][T31937] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1883.590685][T31937] RIP: 0023:0xf7f52579 [ 1883.592760][T31937] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1883.602455][T31937] RSP: 002b:00000000f5d0657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 1883.606355][T31937] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000180 [ 1883.609967][T31937] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1883.613866][T31937] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1883.617608][T31937] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1883.621028][T31937] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1883.625605][T31937] [ 1883.627094][ C2] vkms_vblank_simulate: vblank timer overrun [ 1884.015697][T31949] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6930'. [ 1884.298384][T31953] FAULT_INJECTION: forcing a failure. [ 1884.298384][T31953] name failslab, interval 1, probability 0, space 0, times 0 [ 1884.305160][T31953] CPU: 0 PID: 31953 Comm: syz.2.6932 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1884.309311][T31953] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1884.313910][T31953] Call Trace: [ 1884.315450][T31953] [ 1884.316717][T31953] dump_stack_lvl+0x16c/0x1f0 [ 1884.318869][T31953] should_fail_ex+0x497/0x5b0 [ 1884.321012][T31953] should_failslab+0x9/0x20 [ 1884.322996][T31953] kmem_cache_alloc_node_noprof+0x71/0x310 [ 1884.325553][T31953] ? __alloc_skb+0x2b3/0x380 [ 1884.327664][T31953] __alloc_skb+0x2b3/0x380 [ 1884.329702][T31953] ? __pfx___alloc_skb+0x10/0x10 [ 1884.331904][T31953] ? hlock_class+0x4e/0x130 [ 1884.333903][T31953] ? __lock_acquire+0xc00/0x3b30 [ 1884.336142][T31953] ? aa_label_sk_perm+0x165/0x560 [ 1884.338299][T31953] alloc_skb_with_frags+0xe4/0x710 [ 1884.340501][T31953] ? __pfx___lock_acquire+0x10/0x10 [ 1884.342779][T31953] sock_alloc_send_pskb+0x7f1/0x980 [ 1884.344977][T31953] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 1884.347469][T31953] ? __pfx_lock_release+0x10/0x10 [ 1884.350129][T31953] ? __pfx___might_resched+0x10/0x10 [ 1884.352438][T31953] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1884.355531][T31953] hci_sock_sendmsg+0x1c8/0x25e0 [ 1884.357800][T31953] ? __pfx_aa_sk_perm+0x10/0x10 [ 1884.359914][T31953] ? __pfx_hci_sock_sendmsg+0x10/0x10 [ 1884.362550][T31953] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1884.365126][T31953] sock_write_iter+0x50a/0x5c0 [ 1884.367272][T31953] ? __pfx_sock_write_iter+0x10/0x10 [ 1884.369934][T31953] ? bpf_lsm_file_permission+0x9/0x10 [ 1884.372386][T31953] ? security_file_permission+0x98/0xc0 [ 1884.374926][T31953] vfs_write+0x6b6/0x1140 [ 1884.376748][T31953] ? __pfx_sock_write_iter+0x10/0x10 [ 1884.378816][T31953] ? __pfx_vfs_write+0x10/0x10 [ 1884.380904][T31953] ? __fget_files+0x256/0x400 [ 1884.382940][T31953] ? __fget_light+0x173/0x210 [ 1884.385027][T31953] ksys_write+0x1f8/0x260 [ 1884.386813][T31953] ? __pfx_ksys_write+0x10/0x10 [ 1884.388713][T31953] __do_fast_syscall_32+0x73/0x120 [ 1884.390729][T31953] do_fast_syscall_32+0x32/0x80 [ 1884.392857][T31953] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1884.395583][T31953] RIP: 0023:0xf7f52579 [ 1884.397345][T31953] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1884.406302][T31953] RSP: 002b:00000000f5d0657c EFLAGS: 00000292 ORIG_RAX: 0000000000000004 [ 1884.410074][T31953] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000200 [ 1884.413600][T31953] RDX: 000000000000000d RSI: 0000000000000000 RDI: 0000000000000000 [ 1884.416867][T31953] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1884.420147][T31953] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1884.424145][T31953] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1884.428034][T31953] [ 1884.495774][T31955] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6933'. [ 1885.113647][T31968] 9pnet_virtio: no channels available for device syz [ 1885.219766][ T1271] libceph: connect (1)[c::]:6789 error -101 [ 1885.222791][ T1271] libceph: mon0 (1)[c::]:6789 connect error [ 1885.357498][T31971] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6938'. [ 1885.693184][T31904] ceph: No mds server is up or the cluster is laggy [ 1885.797577][ T1271] usb 6-1: USB disconnect, device number 42 [ 1885.802263][ T1271] usblp0: removed [ 1885.964350][T31980] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1885.983328][T31980] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1885.993483][T31980] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1886.452734][T31987] No control pipe specified [ 1887.591578][T31996] pim6reg1: entered allmulticast mode [ 1887.712371][T31996] fuse: Unknown parameter 'fd0x000000000000000d' [ 1888.158590][T32006] FAULT_INJECTION: forcing a failure. [ 1888.158590][T32006] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1888.164706][T32006] CPU: 0 PID: 32006 Comm: syz.0.6948 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1888.168788][T32006] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1888.174042][T32006] Call Trace: [ 1888.175895][T32006] [ 1888.177545][T32006] dump_stack_lvl+0x16c/0x1f0 [ 1888.179913][T32006] should_fail_ex+0x497/0x5b0 [ 1888.182081][T32006] _copy_from_user+0x30/0xf0 [ 1888.184134][T32006] get_compat_msghdr+0xa8/0x170 [ 1888.186294][T32006] ? __pfx_get_compat_msghdr+0x10/0x10 [ 1888.188856][T32006] ? __pfx___lock_acquire+0x10/0x10 [ 1888.191162][T32006] ___sys_sendmsg+0x1b0/0x1e0 [ 1888.193234][T32006] ? __pfx____sys_sendmsg+0x10/0x10 [ 1888.195330][T32006] ? ksys_write+0x21c/0x260 [ 1888.197210][T32006] ? __fget_light+0x173/0x210 [ 1888.199301][T32006] __sys_sendmsg+0x117/0x1f0 [ 1888.201322][T32006] ? __pfx___sys_sendmsg+0x10/0x10 [ 1888.203581][T32006] __do_fast_syscall_32+0x73/0x120 [ 1888.206032][T32006] do_fast_syscall_32+0x32/0x80 [ 1888.208631][T32006] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1888.211781][T32006] RIP: 0023:0xf746e579 [ 1888.213640][T32006] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1888.222118][T32006] RSP: 002b:00000000f5d8657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 1888.225299][T32006] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020001440 [ 1888.228937][T32006] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1888.232464][T32006] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1888.235580][T32006] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1888.238571][T32006] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1888.241644][T32006] [ 1888.243014][ C0] vkms_vblank_simulate: vblank timer overrun [ 1888.322348][T32004] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6947'. [ 1888.707106][ T9] usb 5-1: new high-speed USB device number 48 using dummy_hcd [ 1888.797029][T32017] netlink: 'syz.1.6951': attribute type 11 has an invalid length. [ 1888.801026][T32017] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.6951'. [ 1888.901553][T32022] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1888.907427][ T9] usb 5-1: Using ep0 maxpacket: 32 [ 1888.916539][ T9] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1888.921584][ T9] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 1888.923275][T32022] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1888.929265][ T9] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1888.934971][ T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1888.939152][ T9] usb 5-1: Product: syz [ 1888.941344][ T9] usb 5-1: Manufacturer: syz [ 1888.943094][ T9] usb 5-1: SerialNumber: syz [ 1889.076780][T32026] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6952'. [ 1889.172632][ T9] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 48 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 1889.509115][T32028] FAULT_INJECTION: forcing a failure. [ 1889.509115][T32028] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1889.515377][T32028] CPU: 2 PID: 32028 Comm: syz.2.6954 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1889.520603][T32028] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1889.526031][T32028] Call Trace: [ 1889.527615][T32028] [ 1889.528847][T32028] dump_stack_lvl+0x16c/0x1f0 [ 1889.531090][T32028] should_fail_ex+0x497/0x5b0 [ 1889.534061][T32028] _copy_from_user+0x30/0xf0 [ 1889.536603][T32028] get_compat_msghdr+0xa8/0x170 [ 1889.538824][T32028] ? __pfx_get_compat_msghdr+0x10/0x10 [ 1889.541008][T32028] ? __pfx___lock_acquire+0x10/0x10 [ 1889.543284][T32028] ___sys_sendmsg+0x1b0/0x1e0 [ 1889.545342][T32028] ? __pfx____sys_sendmsg+0x10/0x10 [ 1889.547607][T32028] ? ksys_write+0x21c/0x260 [ 1889.549665][T32028] ? __fget_light+0x173/0x210 [ 1889.551686][T32028] __sys_sendmsg+0x117/0x1f0 [ 1889.553691][T32028] ? __pfx___sys_sendmsg+0x10/0x10 [ 1889.555950][T32028] __do_fast_syscall_32+0x73/0x120 [ 1889.558086][T32028] do_fast_syscall_32+0x32/0x80 [ 1889.560151][T32028] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1889.562758][T32028] RIP: 0023:0xf7f52579 [ 1889.564623][T32028] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1889.576495][T32028] RSP: 002b:00000000f5d0657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 1889.580176][T32028] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000020000140 [ 1889.583342][T32028] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1889.586891][T32028] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1889.590463][T32028] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1889.594419][T32028] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1889.598435][T32028] [ 1890.117540][T32032] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1890.133489][T32032] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1890.148957][T32032] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1891.091669][T32042] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6957'. [ 1891.495256][T32009] ceph: No mds server is up or the cluster is laggy [ 1891.530556][T32045] No control pipe specified [ 1891.592408][T26338] usb 5-1: USB disconnect, device number 48 [ 1891.604321][T26338] usblp0: removed [ 1891.901914][ C1] vcan0: j1939_tp_rxtimer: 0xffff8880285d5000: rx timeout, send abort [ 1891.906012][ C1] vcan0: j1939_tp_rxtimer: 0xffff88801262a400: rx timeout, send abort [ 1891.910260][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff8880285d5000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 1891.916840][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88801262a400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 1891.917895][T32059] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6962'. [ 1892.398802][T32076] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1892.750744][T32099] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1892.850995][T32104] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1892.915499][T32106] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6975'. [ 1892.951329][T32106] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6975'. [ 1893.069140][T32110] No control pipe specified [ 1893.512990][T32095] orangefs_mount: mount request failed with -4 [ 1893.772164][T32115] FAULT_INJECTION: forcing a failure. [ 1893.772164][T32115] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1893.778382][T32115] CPU: 1 PID: 32115 Comm: syz.0.6978 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1893.782982][T32115] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1893.787595][T32115] Call Trace: [ 1893.788973][T32115] [ 1893.790193][T32115] dump_stack_lvl+0x16c/0x1f0 [ 1893.792452][T32115] should_fail_ex+0x497/0x5b0 [ 1893.794462][T32115] _copy_from_user+0x30/0xf0 [ 1893.796660][T32115] get_compat_msghdr+0xa8/0x170 [ 1893.799162][T32115] ? __pfx_get_compat_msghdr+0x10/0x10 [ 1893.801597][T32115] ? __pfx___lock_acquire+0x10/0x10 [ 1893.804264][T32115] ___sys_sendmsg+0x1b0/0x1e0 [ 1893.807351][T32115] ? __pfx____sys_sendmsg+0x10/0x10 [ 1893.810231][T32115] ? ksys_write+0x21c/0x260 [ 1893.813191][T32115] ? __fget_light+0x173/0x210 [ 1893.815206][T32115] __sys_sendmsg+0x117/0x1f0 [ 1893.819666][T32115] ? __pfx___sys_sendmsg+0x10/0x10 [ 1893.822288][T32115] __do_fast_syscall_32+0x73/0x120 [ 1893.826555][T32115] do_fast_syscall_32+0x32/0x80 [ 1893.829137][T32115] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1893.831866][T32115] RIP: 0023:0xf746e579 [ 1893.833701][T32115] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1893.842858][T32115] RSP: 002b:00000000f5d8657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 1893.847360][T32115] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001440 [ 1893.850759][T32115] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1893.854155][T32115] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1893.857588][T32115] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1893.861349][T32115] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1893.864801][T32115] [ 1894.164239][T32135] FAULT_INJECTION: forcing a failure. [ 1894.164239][T32135] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1894.174530][T32135] CPU: 3 PID: 32135 Comm: syz.2.6986 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1894.178909][T32135] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1894.183632][T32135] Call Trace: [ 1894.185145][T32135] [ 1894.186455][T32135] dump_stack_lvl+0x16c/0x1f0 [ 1894.188592][T32135] should_fail_ex+0x497/0x5b0 [ 1894.190690][T32135] _copy_from_user+0x30/0xf0 [ 1894.192809][T32135] get_compat_msghdr+0xa8/0x170 [ 1894.195121][T32135] ? __pfx_get_compat_msghdr+0x10/0x10 [ 1894.197507][T32135] ? __pfx___lock_acquire+0x10/0x10 [ 1894.199798][T32135] ___sys_sendmsg+0x1b0/0x1e0 [ 1894.201873][T32135] ? __pfx____sys_sendmsg+0x10/0x10 [ 1894.204034][T32135] ? ksys_write+0x21c/0x260 [ 1894.206048][T32135] ? __fget_light+0x173/0x210 [ 1894.208176][T32135] __sys_sendmsg+0x117/0x1f0 [ 1894.210452][T32135] ? __pfx___sys_sendmsg+0x10/0x10 [ 1894.212589][T32135] __do_fast_syscall_32+0x73/0x120 [ 1894.214607][T32135] do_fast_syscall_32+0x32/0x80 [ 1894.217603][T32135] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1894.220352][T32135] RIP: 0023:0xf7f52579 [ 1894.222259][T32135] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1894.229979][T32135] RSP: 002b:00000000f5d0657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 1894.233343][T32135] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000 [ 1894.236611][T32135] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1894.240187][T32135] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1894.244759][T32135] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1894.248721][T32135] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1894.252841][T32135] [ 1894.342628][T32140] Mount JFS Failure: -22 [ 1894.344802][T32140] jfs_mount failed w/return code = -22 [ 1895.077607][T32137] orangefs_mount: mount request failed with -4 [ 1895.134339][T32146] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1895.161237][T32146] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1895.177179][T32146] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1895.341558][T32150] No control pipe specified [ 1895.602055][T32152] No control pipe specified [ 1895.648612][T32079] ceph: No mds server is up or the cluster is laggy [ 1896.480982][T32171] team_slave_0: entered promiscuous mode [ 1896.486373][T32171] wlan1: mtu less than device minimum [ 1897.480282][ T5252] libceph: connect (1)[c::]:6789 error -101 [ 1897.483701][ T5252] libceph: mon0 (1)[c::]:6789 connect error [ 1897.764366][ T5251] libceph: connect (1)[c::]:6789 error -101 [ 1897.791455][ T5251] libceph: mon0 (1)[c::]:6789 connect error [ 1897.857290][ T9] usb 7-1: new high-speed USB device number 45 using dummy_hcd [ 1897.987014][T32198] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7002'. [ 1898.069272][ T9] usb 7-1: Using ep0 maxpacket: 32 [ 1898.104421][ T9] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1898.109083][ T9] usb 7-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 1898.117068][ T9] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1898.122016][ T9] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1898.137389][ T9] usb 7-1: Product: syz [ 1898.139107][ T9] usb 7-1: Manufacturer: syz [ 1898.141048][ T9] usb 7-1: SerialNumber: syz [ 1898.326426][ T5252] libceph: connect (1)[c::]:6789 error -101 [ 1898.342066][ T5252] libceph: mon0 (1)[c::]:6789 connect error [ 1898.390237][ T9] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 45 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 1898.678911][T32212] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1898.723404][T32213] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1898.744612][T32212] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1898.773977][T32212] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1898.775840][T32213] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1898.798287][T32213] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1900.206302][ T5252] libceph: connect (1)[c::]:6789 error -101 [ 1900.215013][ T5252] libceph: mon0 (1)[c::]:6789 connect error [ 1900.233576][T32219] netlink: 'syz.0.7009': attribute type 11 has an invalid length. [ 1900.236541][T32219] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.7009'. [ 1900.348731][T32221] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1900.402024][T32221] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1900.638172][T32188] ceph: No mds server is up or the cluster is laggy [ 1900.730677][T21021] usb 7-1: USB disconnect, device number 45 [ 1900.736948][T21021] usblp0: removed [ 1902.473877][T32263] netlink: 104 bytes leftover after parsing attributes in process `syz.1.7021'. [ 1902.485852][T32263] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8) [ 1902.489287][T32263] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 1902.505854][T32263] vhci_hcd vhci_hcd.0: Device attached [ 1902.516220][T32264] vhci_hcd: cannot find the pending unlink 5 [ 1902.633118][T32264] vhci_hcd: connection closed [ 1902.634638][ T1086] vhci_hcd: stop threads [ 1902.652912][ T1086] vhci_hcd: release socket [ 1902.655564][ T1086] vhci_hcd: disconnect device [ 1902.698364][T31314] vhci_hcd: vhci_device speed not set [ 1904.361428][T32277] 9pnet_fd: Insufficient options for proto=fd [ 1904.698845][T32283] 9pnet_fd: Insufficient options for proto=fd [ 1904.786145][T32285] syz.1.7026: attempt to access beyond end of device [ 1904.786145][T32285] md0: rw=0, sector=2, nr_sectors = 2 limit=0 [ 1904.790690][T32285] syz.1.7026: attempt to access beyond end of device [ 1904.790690][T32285] md0: rw=0, sector=0, nr_sectors = 2 limit=0 [ 1904.803868][T32285] syz.1.7026: attempt to access beyond end of device [ 1904.803868][T32285] md0: rw=0, sector=0, nr_sectors = 2 limit=0 [ 1904.814293][T32285] syz.1.7026: attempt to access beyond end of device [ 1904.814293][T32285] md0: rw=0, sector=18, nr_sectors = 2 limit=0 [ 1904.824717][T32285] syz.1.7026: attempt to access beyond end of device [ 1904.824717][T32285] md0: rw=0, sector=30, nr_sectors = 2 limit=0 [ 1904.831257][T32285] syz.1.7026: attempt to access beyond end of device [ 1904.831257][T32285] md0: rw=0, sector=36, nr_sectors = 2 limit=0 [ 1904.841214][T32285] VFS: unable to find oldfs superblock on device md0 [ 1907.326435][T32310] input: syz0 as /devices/virtual/input/input95 [ 1907.366381][T32310] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7033'. [ 1907.689130][T32313] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7034'. [ 1907.711332][T32313] IPVS: Unknown mcast interface: veth0_virt_wifi [ 1908.468266][T32315] orangefs_mount: mount request failed with -4 [ 1908.494504][T32327] bridge0: port 2(bridge_slave_1) entered disabled state [ 1908.631846][T32326] No control pipe specified [ 1909.034148][T32338] pim6reg1: entered allmulticast mode [ 1909.724543][T32344] FAULT_INJECTION: forcing a failure. [ 1909.724543][T32344] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1909.741740][T32344] CPU: 0 PID: 32344 Comm: syz.1.7043 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1909.746578][T32344] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1909.751461][T32344] Call Trace: [ 1909.753042][T32344] [ 1909.754354][T32344] dump_stack_lvl+0x16c/0x1f0 [ 1909.756809][T32344] should_fail_ex+0x497/0x5b0 [ 1909.759121][T32344] _copy_from_user+0x30/0xf0 [ 1909.761383][T32344] bpf_test_init.isra.0+0xf1/0x150 [ 1909.763635][T32344] bpf_prog_test_run_xdp+0x4f6/0x1530 [ 1909.766127][T32344] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 1909.768831][T32344] ? fput+0x32/0x390 [ 1909.770758][T32344] ? __bpf_prog_get+0xa0/0x2f0 [ 1909.772787][T32344] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 1909.775170][T32344] __sys_bpf+0x141f/0x5600 [ 1909.777035][T32344] ? __pfx___sys_bpf+0x10/0x10 [ 1909.778921][T32344] ? ksys_write+0x12f/0x260 [ 1909.780929][T32344] ? find_held_lock+0x2d/0x110 [ 1909.782642][T32344] ? ksys_write+0x21c/0x260 [ 1909.784607][T32344] ? __pfx_lock_release+0x10/0x10 [ 1909.786370][T32344] ? vfs_write+0x14d/0x1140 [ 1909.787929][T32344] ? __mutex_unlock_slowpath+0x164/0x650 [ 1909.789990][T32344] ? fput+0x32/0x390 [ 1909.792009][T32344] ? ksys_write+0x1ab/0x260 [ 1909.794455][T32344] ? __pfx_ksys_write+0x10/0x10 [ 1909.798197][T32344] __ia32_sys_bpf+0x76/0xe0 [ 1909.800816][T32344] __do_fast_syscall_32+0x73/0x120 [ 1909.803606][T32344] do_fast_syscall_32+0x32/0x80 [ 1909.805762][T32344] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1909.809102][T32344] RIP: 0023:0xf7f61579 [ 1909.810902][T32344] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1909.819339][T32344] RSP: 002b:00000000f5d1657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165 [ 1909.822947][T32344] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000000 [ 1909.826927][T32344] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000 [ 1909.830586][T32344] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1909.834507][T32344] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1909.838531][T32344] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1909.842957][T32344] [ 1909.983550][T32349] fuse: Bad value for 'group_id' [ 1909.985551][T32349] fuse: Bad value for 'group_id' [ 1912.587861][T32383] fuse: Bad value for 'group_id' [ 1912.590127][T32383] fuse: Bad value for 'group_id' [ 1912.742746][ T40] audit: type=1326 audit(1721213970.930:904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32384 comm="syz.1.7055" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x0 [ 1913.348266][T32397] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check. [ 1913.421627][T32397] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7058'. [ 1913.959653][T32393] orangefs_mount: mount request failed with -4 [ 1914.361751][ T5252] usb 5-1: new high-speed USB device number 49 using dummy_hcd [ 1914.566711][ T5252] usb 5-1: config 0 has no interfaces? [ 1914.576957][ T5252] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 1914.580617][ T5252] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 1914.583874][ T5252] usb 5-1: Manufacturer: syz [ 1914.588440][ T5252] usb 5-1: config 0 descriptor?? [ 1914.616568][T32416] FAULT_INJECTION: forcing a failure. [ 1914.616568][T32416] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1914.626117][T32416] CPU: 3 PID: 32416 Comm: syz.2.7064 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1914.631108][T32416] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1914.636242][T32416] Call Trace: [ 1914.637556][T32416] [ 1914.638717][T32416] dump_stack_lvl+0x16c/0x1f0 [ 1914.640564][T32416] should_fail_ex+0x497/0x5b0 [ 1914.642369][T32416] _copy_to_user+0x30/0xc0 [ 1914.644112][T32416] simple_read_from_buffer+0xd0/0x160 [ 1914.646478][T32416] proc_fail_nth_read+0x1b0/0x290 [ 1914.649260][T32416] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1914.652141][T32416] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1914.654634][T32416] vfs_read+0x1d4/0xbd0 [ 1914.656489][T32416] ? __fdget_pos+0xeb/0x180 [ 1914.658409][T32416] ? __pfx_vfs_read+0x10/0x10 [ 1914.660469][T32416] ? __pfx___mutex_lock+0x10/0x10 [ 1914.662693][T32416] ? __fget_files+0x256/0x400 [ 1914.664634][T32416] ksys_read+0x12f/0x260 [ 1914.666224][T32416] ? __pfx_ksys_read+0x10/0x10 [ 1914.668085][T32416] __do_fast_syscall_32+0x73/0x120 [ 1914.669997][T32416] do_fast_syscall_32+0x32/0x80 [ 1914.671888][T32416] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1914.674632][T32416] RIP: 0023:0xf7f52579 [ 1914.676203][T32416] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1914.684030][T32416] RSP: 002b:00000000f5d065b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 1914.687634][T32416] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5d06630 [ 1914.691142][T32416] RDX: 000000000000000f RSI: 00000000f73d8ff4 RDI: 0000000000000000 [ 1914.694539][T32416] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 1914.697477][T32416] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 1914.700498][T32416] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1914.703530][T32416] [ 1914.854670][T21021] usb 5-1: USB disconnect, device number 49 [ 1915.171880][T32421] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7065'. [ 1917.727447][T32436] orangefs_mount: mount request failed with -4 [ 1917.882599][T32446] Process accounting resumed [ 1918.244479][T32455] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7075'. [ 1918.884604][ T40] audit: type=1326 audit(1721213976.664:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32460 comm="syz.1.7078" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x0 [ 1919.064717][T32466] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1919.105759][T32471] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1919.112306][T32471] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1920.968682][T26338] usb 5-1: new high-speed USB device number 50 using dummy_hcd [ 1921.156255][T32480] orangefs_mount: mount request failed with -4 [ 1921.161041][T26338] usb 5-1: Using ep0 maxpacket: 8 [ 1921.171801][T26338] usb 5-1: New USB device found, idVendor=06cd, idProduct=011c, bcdDevice=d7.cc [ 1921.177853][T26338] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1921.199125][T26338] usb 5-1: config 0 descriptor?? [ 1921.204289][T26338] keyspan 5-1:0.0: Keyspan 1 port adapter converter detected [ 1921.215708][T26338] keyspan 5-1:0.0: found no endpoint descriptor for endpoint 84 [ 1921.223482][T26338] keyspan 5-1:0.0: found no endpoint descriptor for endpoint 81 [ 1921.232169][T26338] keyspan 5-1:0.0: found no endpoint descriptor for endpoint 82 [ 1921.235799][T26338] keyspan 5-1:0.0: found no endpoint descriptor for endpoint 1 [ 1921.239571][T26338] keyspan 5-1:0.0: found no endpoint descriptor for endpoint 2 [ 1921.243511][T26338] keyspan 5-1:0.0: found no endpoint descriptor for endpoint 83 [ 1921.253463][T26338] keyspan 5-1:0.0: found no endpoint descriptor for endpoint 3 [ 1921.259724][T26338] usb 5-1: Keyspan 1 port adapter converter now attached to ttyUSB0 [ 1921.536607][T32493] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1921.616684][T32420] usb 5-1: USB disconnect, device number 50 [ 1921.627468][T32420] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0 [ 1921.632175][T32420] keyspan 5-1:0.0: device disconnected [ 1921.709177][T32493] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1921.760392][T32493] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1922.988424][T32503] pim6reg1: entered allmulticast mode [ 1923.002525][T32503] fuse: Unknown parameter 'fd0x000000000000000d' [ 1923.208721][T32510] netlink: 'syz.3.7090': attribute type 11 has an invalid length. [ 1923.213127][T32510] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.7090'. [ 1923.308507][T32515] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1923.346976][T32515] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1924.179931][T32514] orangefs_mount: mount request failed with -4 [ 1924.915437][T32535] pim6reg1: entered allmulticast mode [ 1924.977999][T32535] fuse: Unknown parameter 'fd0x000000000000000d' [ 1925.559276][T32555] fuse: Bad value for 'fd' [ 1926.181852][ T40] audit: type=1326 audit(1721213983.502:906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32546 comm="syz.0.7102" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7fc00000 [ 1926.191843][ T40] audit: type=1326 audit(1721213983.502:907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32546 comm="syz.0.7102" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf746e579 code=0x7fc00000 [ 1926.201651][ T40] audit: type=1326 audit(1721213983.502:908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32546 comm="syz.0.7102" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7fc00000 [ 1926.211869][ T40] audit: type=1326 audit(1721213983.502:909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32546 comm="syz.0.7102" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7fc00000 [ 1926.230228][ T40] audit: type=1326 audit(1721213983.502:910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32546 comm="syz.0.7102" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7fc00000 [ 1926.240332][ T40] audit: type=1326 audit(1721213983.511:911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32546 comm="syz.0.7102" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7fc00000 [ 1926.612412][T32563] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1926.660635][T32563] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1926.682724][T32563] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1928.216939][T32575] pim6reg1: entered allmulticast mode [ 1928.249226][T32575] fuse: Unknown parameter 'fd0x000000000000000d' [ 1928.327814][ T1356] ieee802154 phy0 wpan0: encryption failed: -22 [ 1928.330707][ T1356] ieee802154 phy1 wpan1: encryption failed: -22 [ 1928.602152][T32588] FAULT_INJECTION: forcing a failure. [ 1928.602152][T32588] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1928.609061][T32588] CPU: 3 PID: 32588 Comm: syz.0.7114 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1928.613283][T32588] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1928.617986][T32588] Call Trace: [ 1928.619490][T32588] [ 1928.620767][T32588] dump_stack_lvl+0x16c/0x1f0 [ 1928.622874][T32588] should_fail_ex+0x497/0x5b0 [ 1928.624975][T32588] _copy_from_user+0x30/0xf0 [ 1928.627079][T32588] __sys_bpf+0x239/0x5600 [ 1928.629048][T32588] ? __pfx___sys_bpf+0x10/0x10 [ 1928.631202][T32588] ? ksys_write+0x12f/0x260 [ 1928.633236][T32588] ? find_held_lock+0x2d/0x110 [ 1928.635517][T32588] ? ksys_write+0x21c/0x260 [ 1928.637628][T32588] ? __pfx_lock_release+0x10/0x10 [ 1928.639907][T32588] ? vfs_write+0x14d/0x1140 [ 1928.642033][T32588] ? __mutex_unlock_slowpath+0x164/0x650 [ 1928.644646][T32588] ? fput+0x32/0x390 [ 1928.646417][T32588] ? ksys_write+0x1ab/0x260 [ 1928.648469][T32588] ? __pfx_ksys_write+0x10/0x10 [ 1928.650661][T32588] __ia32_sys_bpf+0x76/0xe0 [ 1928.652063][T32583] fuse: Bad value for 'fd' [ 1928.652690][T32588] __do_fast_syscall_32+0x73/0x120 [ 1928.652715][T32588] do_fast_syscall_32+0x32/0x80 [ 1928.652733][T32588] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1928.661676][T32588] RIP: 0023:0xf746e579 [ 1928.663307][T32588] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1928.671311][T32588] RSP: 002b:00000000f5d8657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165 [ 1928.674917][T32588] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000840 [ 1928.678201][T32588] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000 [ 1928.681513][T32588] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1928.685089][T32588] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1928.688472][T32588] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1928.691235][T32588] [ 1930.223468][T32604] dlm: plock device version mismatch: kernel (1.2.0), user (1.536871104.0) [ 1931.077533][T32610] pim6reg1: entered allmulticast mode [ 1931.090903][T32610] fuse: Unknown parameter 'fd0x000000000000000d' [ 1932.123951][T32634] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7126'. [ 1932.133522][T32632] 9pnet_virtio: no channels available for device syz [ 1932.512094][ T40] audit: type=1326 audit(1721213989.423:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32638 comm="syz.1.7131" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x0 [ 1932.759022][T32641] pim6reg1: entered allmulticast mode [ 1932.814274][T32643] fuse: Unknown parameter 'fd0x000000000000000d' [ 1934.442466][T32678] FAULT_INJECTION: forcing a failure. [ 1934.442466][T32678] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1934.458869][T32678] CPU: 2 PID: 32678 Comm: syz.3.7140 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1934.463245][T32678] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1934.468674][T32678] Call Trace: [ 1934.470137][T32678] [ 1934.471418][T32678] dump_stack_lvl+0x16c/0x1f0 [ 1934.473414][T32678] should_fail_ex+0x497/0x5b0 [ 1934.475435][T32678] _copy_from_user+0x30/0xf0 [ 1934.477330][T32678] bpf_prog_load+0x1bdd/0x2670 [ 1934.479417][T32678] ? __pfx_bpf_prog_load+0x10/0x10 [ 1934.481494][T32678] ? find_held_lock+0x2d/0x110 [ 1934.483298][T32678] ? security_bpf+0x8c/0xc0 [ 1934.485366][T32678] __sys_bpf+0x9e0/0x5600 [ 1934.487241][T32678] ? __pfx___sys_bpf+0x10/0x10 [ 1934.489399][T32678] ? ksys_write+0x12f/0x260 [ 1934.491902][T32678] ? find_held_lock+0x2d/0x110 [ 1934.494114][T32678] ? ksys_write+0x21c/0x260 [ 1934.496282][T32678] ? __pfx_lock_release+0x10/0x10 [ 1934.498394][T32678] ? vfs_write+0x14d/0x1140 [ 1934.500344][T32678] ? __mutex_unlock_slowpath+0x164/0x650 [ 1934.502736][T32678] ? fput+0x32/0x390 [ 1934.504463][T32678] ? ksys_write+0x1ab/0x260 [ 1934.506382][T32678] ? __pfx_ksys_write+0x10/0x10 [ 1934.508475][T32678] __ia32_sys_bpf+0x76/0xe0 [ 1934.511456][T32678] __do_fast_syscall_32+0x73/0x120 [ 1934.514243][T32678] do_fast_syscall_32+0x32/0x80 [ 1934.516417][T32678] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1934.519768][T32678] RIP: 0023:0xf7f83579 [ 1934.521968][T32678] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1934.531483][T32678] RSP: 002b:00000000f5d3657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165 [ 1934.535020][T32678] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000640 [ 1934.538438][T32678] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000 [ 1934.542524][T32678] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1934.546289][T32678] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1934.549954][T32678] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1934.554223][T32678] [ 1934.818964][T32682] pim6reg1: entered allmulticast mode [ 1934.861959][T32682] fuse: Unknown parameter 'fd0x000000000000000d' [ 1936.865756][T32702] orangefs_mount: mount request failed with -4 [ 1937.524940][T32712] orangefs_mount: mount request failed with -4 [ 1937.667623][T32740] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1937.685249][T32740] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1937.698666][T32740] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1938.781176][T32750] netlink: 'syz.3.7160': attribute type 11 has an invalid length. [ 1938.784548][T32750] netlink: 199544 bytes leftover after parsing attributes in process `syz.3.7160'. [ 1938.891678][T32753] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1938.918748][T32753] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1939.312561][T32757] No control pipe specified [ 1940.611682][ T321] No control pipe specified [ 1941.182140][ T332] netlink: 28 bytes leftover after parsing attributes in process `syz.2.7173'. [ 1941.394321][ T341] netlink: 104 bytes leftover after parsing attributes in process `syz.3.7175'. [ 1941.425764][ T341] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8) [ 1941.428511][ T341] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 1941.453416][ T341] vhci_hcd vhci_hcd.0: Device attached [ 1941.461341][ T344] vhci_hcd: cannot find the pending unlink 5 [ 1941.508345][ T344] vhci_hcd: connection closed [ 1941.508649][ T11] vhci_hcd: stop threads [ 1941.512903][ T11] vhci_hcd: release socket [ 1941.514772][ T11] vhci_hcd: disconnect device [ 1941.557686][ T40] audit: type=1326 audit(1721213997.879:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=348 comm="syz.1.7178" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f61579 code=0x0 [ 1941.607657][ T339] No control pipe specified [ 1941.755297][ T40] audit: type=1326 audit(1721213998.075:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=354 comm="syz.0.7179" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x0 [ 1942.546207][ T368] netlink: 28 bytes leftover after parsing attributes in process `syz.2.7182'. [ 1942.785390][ T370] FAULT_INJECTION: forcing a failure. [ 1942.785390][ T370] name failslab, interval 1, probability 0, space 0, times 0 [ 1942.818026][ T370] CPU: 3 PID: 370 Comm: syz.2.7183 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1942.822660][ T370] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1942.828887][ T370] Call Trace: [ 1942.830392][ T370] [ 1942.831696][ T370] dump_stack_lvl+0x16c/0x1f0 [ 1942.833802][ T370] should_fail_ex+0x497/0x5b0 [ 1942.835891][ T370] should_failslab+0x9/0x20 [ 1942.837993][ T370] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 1942.840685][ T370] ? __kvm_mmu_topup_memory_cache+0x18f/0x600 [ 1942.843316][ T370] __kvm_mmu_topup_memory_cache+0x18f/0x600 [ 1942.846302][ T370] mmu_topup_memory_caches+0x22/0xd0 [ 1942.849215][ T370] kvm_mmu_load+0xda/0x20d0 [ 1942.852032][ T370] ? kvm_apic_has_interrupt+0xb6/0x190 [ 1942.855445][ T370] ? __pfx_kvm_apic_has_interrupt+0x10/0x10 [ 1942.859120][ T370] ? vmx_get_rflags+0x8e/0x1e0 [ 1942.861545][ T370] ? kvm_apic_accept_pic_intr+0xe8/0x1a0 [ 1942.865073][ T370] ? __pfx_kvm_mmu_load+0x10/0x10 [ 1942.867477][ T370] ? kvm_cpu_has_injectable_intr+0x9b/0x1a0 [ 1942.870176][ T370] ? kvm_check_and_inject_events+0x641/0x1000 [ 1942.873434][ T370] vcpu_run+0x3257/0x5150 [ 1942.876410][ T370] ? __pfx___lock_acquire+0x10/0x10 [ 1942.879241][ T370] ? __pfx_vcpu_run+0x10/0x10 [ 1942.881698][ T370] ? __pfx_lock_acquire+0x10/0x10 [ 1942.884739][ T370] ? mark_held_locks+0x9f/0xe0 [ 1942.887711][ T370] ? fpu_swap_kvm_fpstate+0x1c0/0x420 [ 1942.891360][ T370] ? __local_bh_enable_ip+0xa4/0x120 [ 1942.893785][ T370] ? lockdep_hardirqs_on+0x7c/0x110 [ 1942.896204][ T370] ? fpu_swap_kvm_fpstate+0x1c8/0x420 [ 1942.898728][ T370] ? __local_bh_enable_ip+0xa4/0x120 [ 1942.901219][ T370] ? kvm_arch_vcpu_ioctl_run+0x42e/0x1680 [ 1942.904065][ T370] kvm_arch_vcpu_ioctl_run+0x42e/0x1680 [ 1942.906971][ T370] kvm_vcpu_ioctl+0x5a1/0x1090 [ 1942.909498][ T370] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 1942.912220][ T370] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1942.915387][ T370] ? do_vfs_ioctl+0x515/0x1a90 [ 1942.918420][ T370] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 1942.921567][ T370] ? __pfx_lock_release+0x10/0x10 [ 1942.924753][ T370] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 1942.928520][ T370] kvm_vcpu_compat_ioctl+0x216/0x3f0 [ 1942.931893][ T370] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 1942.934992][ T370] ? __fget_files+0x256/0x400 [ 1942.937584][ T370] ? bpf_lsm_file_ioctl_compat+0x9/0x10 [ 1942.940717][ T370] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 1942.947007][ T370] __do_compat_sys_ioctl+0x2c3/0x330 [ 1942.949991][ T370] __do_fast_syscall_32+0x73/0x120 [ 1942.952683][ T370] do_fast_syscall_32+0x32/0x80 [ 1942.955191][ T370] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1942.958620][ T370] RIP: 0023:0xf7f52579 [ 1942.960846][ T370] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1942.971386][ T370] RSP: 002b:00000000f5d0657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036 [ 1942.976303][ T370] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80 [ 1942.980253][ T370] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1942.984984][ T370] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1942.989728][ T370] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1942.993294][ T370] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1942.996658][ T370] [ 1944.350944][ T384] orangefs_mount: mount request failed with -4 [ 1944.436298][ T388] FAULT_INJECTION: forcing a failure. [ 1944.436298][ T388] name failslab, interval 1, probability 0, space 0, times 0 [ 1944.441268][ T388] CPU: 3 PID: 388 Comm: syz.1.7189 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1944.445353][ T388] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1944.450224][ T388] Call Trace: [ 1944.451628][ T388] [ 1944.452894][ T388] dump_stack_lvl+0x16c/0x1f0 [ 1944.454849][ T388] should_fail_ex+0x497/0x5b0 [ 1944.456657][ T388] should_failslab+0x9/0x20 [ 1944.458176][ T388] kmalloc_trace_noprof+0x6b/0x310 [ 1944.459901][ T388] ? rtnl_newlink+0x49/0xa0 [ 1944.461694][ T388] rtnl_newlink+0x49/0xa0 [ 1944.463578][ T388] ? __pfx_rtnl_newlink+0x10/0x10 [ 1944.465854][ T388] rtnetlink_rcv_msg+0x3c7/0xea0 [ 1944.468136][ T388] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1944.470481][ T388] ? __pfx___dev_queue_xmit+0x10/0x10 [ 1944.472721][ T388] netlink_rcv_skb+0x165/0x410 [ 1944.474733][ T388] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1944.477112][ T388] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1944.479067][ T388] ? netlink_deliver_tap+0x1ae/0xcf0 [ 1944.480962][ T388] netlink_unicast+0x544/0x830 [ 1944.483132][ T388] ? __pfx_netlink_unicast+0x10/0x10 [ 1944.486587][ T388] ? __phys_addr_symbol+0x30/0x80 [ 1944.488955][ T388] ? __check_object_size+0x48e/0x720 [ 1944.491294][ T388] netlink_sendmsg+0x8b8/0xd70 [ 1944.493515][ T388] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1944.497991][ T388] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1944.500266][ T388] ____sys_sendmsg+0x9b4/0xb50 [ 1944.502227][ T388] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1944.504298][ T388] ? get_compat_msghdr+0x11b/0x170 [ 1944.506423][ T388] ? __pfx___lock_acquire+0x10/0x10 [ 1944.508582][ T388] ___sys_sendmsg+0x135/0x1e0 [ 1944.510449][ T388] ? __pfx____sys_sendmsg+0x10/0x10 [ 1944.512646][ T388] ? ksys_write+0x21c/0x260 [ 1944.514308][ T388] ? __fget_light+0x173/0x210 [ 1944.516196][ T388] __sys_sendmsg+0x117/0x1f0 [ 1944.518183][ T388] ? __pfx___sys_sendmsg+0x10/0x10 [ 1944.520463][ T388] __do_fast_syscall_32+0x73/0x120 [ 1944.522447][ T388] do_fast_syscall_32+0x32/0x80 [ 1944.524337][ T388] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1944.526804][ T388] RIP: 0023:0xf7f61579 [ 1944.528366][ T388] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1944.536919][ T388] RSP: 002b:00000000f5d1657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 1944.540582][ T388] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000140 [ 1944.544105][ T388] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1944.547521][ T388] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1944.551026][ T388] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1944.554632][ T388] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1944.557986][ T388] [ 1944.561019][ T393] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7191'. [ 1945.574821][ T406] No control pipe specified [ 1945.586112][ T40] audit: type=1326 audit(1721214001.658:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=411 comm="syz.2.7197" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f52579 code=0x0 [ 1946.612390][ T429] netlink: 'syz.1.7202': attribute type 11 has an invalid length. [ 1946.615727][ T429] netlink: 199544 bytes leftover after parsing attributes in process `syz.1.7202'. [ 1946.758283][ T430] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1946.812794][ T430] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1947.233285][ T420] orangefs_mount: mount request failed with -4 [ 1949.345996][ T454] No control pipe specified [ 1950.288732][ T485] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1950.305415][ T485] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1950.509305][ T494] FAULT_INJECTION: forcing a failure. [ 1950.509305][ T494] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1950.514932][ T494] CPU: 3 PID: 494 Comm: syz.2.7223 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1950.518947][ T494] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1950.523693][ T494] Call Trace: [ 1950.525127][ T494] [ 1950.526385][ T494] dump_stack_lvl+0x16c/0x1f0 [ 1950.528475][ T494] should_fail_ex+0x497/0x5b0 [ 1950.531124][ T494] _copy_from_user+0x30/0xf0 [ 1950.533469][ T494] video_usercopy+0xc62/0x1500 [ 1950.535794][ T494] ? __pfx___video_do_ioctl+0x10/0x10 [ 1950.538669][ T494] ? __pfx_video_usercopy+0x10/0x10 [ 1950.540871][ T494] v4l2_ioctl+0x1c0/0x260 [ 1950.543364][ T494] v4l2_compat_ioctl32+0x21d/0x2c0 [ 1950.545963][ T494] ? __pfx_v4l2_compat_ioctl32+0x10/0x10 [ 1950.548979][ T494] __do_compat_sys_ioctl+0x2c3/0x330 [ 1950.551585][ T494] __do_fast_syscall_32+0x73/0x120 [ 1950.553724][ T494] do_fast_syscall_32+0x32/0x80 [ 1950.555798][ T494] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1950.558301][ T494] RIP: 0023:0xf7f52579 [ 1950.560514][ T494] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1950.573261][ T494] RSP: 002b:00000000f5d0657c EFLAGS: 00000292 ORIG_RAX: 0000000000000036 [ 1950.578133][ T494] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c02c564a [ 1950.582202][ T494] RDX: 0000000020000540 RSI: 0000000000000000 RDI: 0000000000000000 [ 1950.588063][ T494] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1950.591758][ T494] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1950.595567][ T494] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1950.599460][ T494] [ 1950.696435][ T498] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 1950.930396][ T501] No control pipe specified [ 1951.644059][ T507] fuse: Bad value for 'group_id' [ 1951.657154][ T507] fuse: Bad value for 'group_id' [ 1951.806592][ T514] fuse: Bad value for 'group_id' [ 1951.809679][ T514] fuse: Bad value for 'group_id' [ 1952.635678][ T512] orangefs_mount: mount request failed with -4 [ 1952.935870][ T536] veth1_macvtap: left promiscuous mode [ 1952.939763][ T536] macsec0: entered allmulticast mode [ 1952.972431][ T536] veth1_macvtap: entered promiscuous mode [ 1952.974925][ T536] veth1_macvtap: entered allmulticast mode [ 1953.122147][ T540] input: syz1 as /devices/virtual/input/input100 [ 1953.306310][ T543] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7238'. [ 1953.310683][ T543] block nbd0: must specify backend [ 1953.355540][ T538] No control pipe specified [ 1954.029071][ T559] pim6reg1: entered allmulticast mode [ 1954.044389][ T559] fuse: Unknown parameter 'fd0x000000000000000d' [ 1954.546106][ T571] veth1_macvtap: left promiscuous mode [ 1954.548738][ T571] macsec0: entered allmulticast mode [ 1954.552296][ T556] orangefs_mount: mount request failed with -4 [ 1954.586143][ T571] veth1_macvtap: entered promiscuous mode [ 1954.588848][ T571] veth1_macvtap: entered allmulticast mode [ 1954.852721][ T579] 9pnet_virtio: no channels available for device syz [ 1955.024859][ T586] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7250'. [ 1955.073423][ T587] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7249'. [ 1955.469554][ T589] No control pipe specified [ 1955.476999][ T592] pim6reg1: entered allmulticast mode [ 1955.515798][ T592] fuse: Unknown parameter 'fd0x000000000000000d' [ 1955.769082][ T602] fuse: Bad value for 'group_id' [ 1955.771583][ T602] fuse: Bad value for 'group_id' [ 1957.188352][ T629] No control pipe specified [ 1957.672241][ T628] netlink: 'syz.0.7264': attribute type 2 has an invalid length. [ 1957.675397][ T628] netlink: 105116 bytes leftover after parsing attributes in process `syz.0.7264'. [ 1958.317660][ T643] fuse: Bad value for 'group_id' [ 1958.319893][ T643] fuse: Bad value for 'group_id' [ 1958.442139][ T645] No control pipe specified [ 1959.422642][ T652] orangefs_mount: mount request failed with -4 [ 1959.575714][ T668] pim6reg1: entered allmulticast mode [ 1959.596313][ T668] fuse: Unknown parameter 'fd0x000000000000000d' [ 1959.865266][ T680] fuse: Bad value for 'group_id' [ 1959.867348][ T680] fuse: Bad value for 'group_id' [ 1959.989062][ T40] audit: type=1326 audit(1721214015.127:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=684 comm="syz.1.7279" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f61579 code=0x0 [ 1960.896125][ T693] No control pipe specified [ 1961.674410][ T709] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7284'. [ 1961.731103][ T708] pim6reg1: entered allmulticast mode [ 1961.739658][ T708] fuse: Unknown parameter 'fd0x000000000000000d' [ 1961.767956][ T654] ceph: No mds server is up or the cluster is laggy [ 1961.944617][ T711] 9pnet_fd: Insufficient options for proto=fd [ 1961.975355][ T702] orangefs_mount: mount request failed with -4 [ 1962.185269][ T721] No control pipe specified [ 1963.144677][ T736] fuse: Bad value for 'user_id' [ 1963.147315][ T736] fuse: Bad value for 'user_id' [ 1963.162868][ T737] pim6reg1: entered allmulticast mode [ 1963.173014][ T737] fuse: Unknown parameter 'fd0x000000000000000d' [ 1964.251980][ T746] orangefs_mount: mount request failed with -4 [ 1964.306457][ T748] orangefs_mount: mount request failed with -4 [ 1964.472242][ T761] No control pipe specified [ 1965.575555][ T779] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1965.623806][ T779] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1966.651083][ T785] pim6reg1: entered allmulticast mode [ 1966.666000][ T785] fuse: Unknown parameter 'fd0x000000000000000d' [ 1967.083754][ T788] fuse: Bad value for 'user_id' [ 1967.086193][ T788] fuse: Bad value for 'user_id' [ 1967.430267][ T798] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 1967.465340][ T798] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 1967.489115][ T798] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 1967.541440][ T798] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 1967.566784][ T798] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 1967.572002][ T798] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 1967.595573][ T5215] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 1967.598906][ T5215] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 1967.602305][ T5215] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 1967.607319][ T5215] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 1967.610906][ T5215] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 1967.631770][ T5215] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 1968.213183][ T797] chnl_net:caif_netlink_parms(): no params data found [ 1968.392944][ T804] orangefs_mount: mount request failed with -4 [ 1968.509200][ T797] bridge0: port 1(bridge_slave_0) entered blocking state [ 1968.512504][ T797] bridge0: port 1(bridge_slave_0) entered disabled state [ 1968.515493][ T797] bridge_slave_0: entered allmulticast mode [ 1968.519351][ T797] bridge_slave_0: entered promiscuous mode [ 1968.525083][ T797] bridge0: port 2(bridge_slave_1) entered blocking state [ 1968.528075][ T797] bridge0: port 2(bridge_slave_1) entered disabled state [ 1968.532451][ T797] bridge_slave_1: entered allmulticast mode [ 1968.535987][ T797] bridge_slave_1: entered promiscuous mode [ 1968.587216][ T829] FAULT_INJECTION: forcing a failure. [ 1968.587216][ T829] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1968.596983][ T829] CPU: 1 PID: 829 Comm: syz.3.7315 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1968.602704][ T829] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1968.609552][ T829] Call Trace: [ 1968.611978][ T829] [ 1968.616635][ T829] dump_stack_lvl+0x16c/0x1f0 [ 1968.621879][ T829] should_fail_ex+0x497/0x5b0 [ 1968.624682][ T829] _copy_to_user+0x30/0xc0 [ 1968.627609][ T829] simple_read_from_buffer+0xd0/0x160 [ 1968.630881][ T829] proc_fail_nth_read+0x1b0/0x290 [ 1968.634294][ T829] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1968.637480][ T829] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1968.640863][ T829] vfs_read+0x1d4/0xbd0 [ 1968.644309][ T829] ? __fdget_pos+0xeb/0x180 [ 1968.647369][ T829] ? __pfx_vfs_read+0x10/0x10 [ 1968.649960][ T829] ? __pfx___mutex_lock+0x10/0x10 [ 1968.653119][ T829] ? __fget_files+0x256/0x400 [ 1968.655611][ T829] ksys_read+0x12f/0x260 [ 1968.657880][ T829] ? __pfx_ksys_read+0x10/0x10 [ 1968.660498][ T829] __do_fast_syscall_32+0x73/0x120 [ 1968.663637][ T829] do_fast_syscall_32+0x32/0x80 [ 1968.666847][ T829] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1968.670403][ T829] RIP: 0023:0xf7f83579 [ 1968.673271][ T829] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1968.685886][ T829] RSP: 002b:00000000f5d365b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 1968.690284][ T829] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5d36630 [ 1968.694698][ T829] RDX: 000000000000000f RSI: 00000000f7408ff4 RDI: 0000000000000000 [ 1968.698819][ T829] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 1968.703038][ T829] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 1968.707743][ T829] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1968.712271][ T829] [ 1968.758710][ T797] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1968.780910][ T797] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1968.814546][ T836] fuse: Bad value for 'user_id' [ 1968.817890][ T836] fuse: Bad value for 'user_id' [ 1968.921273][ T840] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1968.958925][ T840] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1969.056335][ T797] team0: Port device team_slave_0 added [ 1969.064102][ T797] team0: Port device team_slave_1 added [ 1969.165898][ T797] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1969.169339][ T797] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1969.179976][ T797] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1969.187973][ T797] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1969.191068][ T797] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1969.212971][ T797] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1969.352204][ T797] hsr_slave_0: entered promiscuous mode [ 1969.398949][ T797] hsr_slave_1: entered promiscuous mode [ 1969.477245][ T797] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1969.480607][ T797] Cannot create hsr debugfs directory [ 1969.777620][ T839] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 1969.779730][ T839] Bluetooth: hci5: Error when powering off device on rfkill (-4) [ 1969.831225][ T5215] Bluetooth: hci5: command tx timeout [ 1969.885280][ T797] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1969.999125][ T797] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1970.100912][ T797] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1970.292715][ T797] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1970.596051][ T797] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1970.617435][ T797] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1970.634310][ T797] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1970.647205][ T797] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1970.792537][ T797] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1970.818730][ T797] 8021q: adding VLAN 0 to HW filter on device team0 [ 1970.828525][T31314] bridge0: port 1(bridge_slave_0) entered blocking state [ 1970.831958][T31314] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1970.883298][T31314] bridge0: port 2(bridge_slave_1) entered blocking state [ 1970.886551][T31314] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1971.085285][ T874] pim6reg1: entered allmulticast mode [ 1971.107226][ T874] fuse: Unknown parameter 'fd0x000000000000000d' [ 1971.380685][ T797] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1971.442954][ T797] veth0_vlan: entered promiscuous mode [ 1971.495702][ T797] veth1_vlan: entered promiscuous mode [ 1971.541981][ T880] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1971.569710][ T797] veth0_macvtap: entered promiscuous mode [ 1971.584149][ T797] veth1_macvtap: entered promiscuous mode [ 1971.595211][ T880] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1971.628779][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1971.643125][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1971.663446][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1971.668271][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1971.672504][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1971.727694][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1971.749037][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1971.753957][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1971.758729][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1971.781131][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1971.795189][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1971.800200][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1971.805969][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1971.813171][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1971.817514][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1971.821956][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1971.857188][ T797] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1971.922421][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1971.927184][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1971.943038][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1971.947904][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1971.976040][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1971.980905][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1971.987317][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1971.996874][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1972.001757][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1972.012005][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1972.016537][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1972.021513][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1972.026066][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1972.036883][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1972.041952][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1972.046885][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1972.057308][ T797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1972.062219][ T797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1972.069349][ T797] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1972.085970][ T797] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1972.090302][ T797] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1972.096708][ T797] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1972.100862][ T797] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1972.243805][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1972.247418][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1972.293028][ T1112] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1972.323352][ T1112] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1972.599303][ T886] 9pnet_virtio: no channels available for device syz [ 1972.648718][ T889] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7331'. [ 1972.741569][ T887] pim6reg1: entered allmulticast mode [ 1972.791372][ T887] fuse: Unknown parameter 'fd0x000000000000000d' [ 1973.053934][ T896] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7309'. [ 1973.199846][ T899] FAULT_INJECTION: forcing a failure. [ 1973.199846][ T899] name failslab, interval 1, probability 0, space 0, times 0 [ 1973.206006][ T899] CPU: 3 PID: 899 Comm: syz.1.7333 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1973.210900][ T899] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1973.216378][ T899] Call Trace: [ 1973.218877][ T899] [ 1973.220795][ T899] dump_stack_lvl+0x16c/0x1f0 [ 1973.225037][ T899] should_fail_ex+0x497/0x5b0 [ 1973.229460][ T899] should_failslab+0x9/0x20 [ 1973.233641][ T899] kmalloc_trace_noprof+0x6b/0x310 [ 1973.238168][ T899] ? __io_uring_add_tctx_node+0x134/0x500 [ 1973.241153][ T899] __io_uring_add_tctx_node+0x134/0x500 [ 1973.244344][ T899] ? __pfx___io_uring_add_tctx_node+0x10/0x10 [ 1973.248017][ T899] ? __fget_files+0x256/0x400 [ 1973.250443][ T899] __io_uring_add_tctx_node_from_submit+0x89/0x130 [ 1973.254841][ T899] __do_sys_io_uring_enter+0xe39/0x1130 [ 1973.258585][ T899] ? __pfx___do_sys_io_uring_enter+0x10/0x10 [ 1973.262197][ T899] ? ksys_write+0x1ab/0x260 [ 1973.264131][ T899] ? __pfx_ksys_write+0x10/0x10 [ 1973.267346][ T899] __do_fast_syscall_32+0x73/0x120 [ 1973.270107][ T899] do_fast_syscall_32+0x32/0x80 [ 1973.273263][ T899] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1973.279542][ T899] RIP: 0023:0xf7f61579 [ 1973.282233][ T899] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1973.294354][ T899] RSP: 002b:00000000f5cf557c EFLAGS: 00000292 ORIG_RAX: 00000000000001aa [ 1973.301248][ T899] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000003f70 [ 1973.306707][ T899] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1973.311974][ T899] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1973.317444][ T899] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1973.323036][ T899] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1973.327342][ T899] [ 1974.757964][ T939] fuse: Unknown parameter 'group_md' [ 1974.763528][ T941] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1974.819865][ T944] FAULT_INJECTION: forcing a failure. [ 1974.819865][ T944] name failslab, interval 1, probability 0, space 0, times 0 [ 1974.836608][ T941] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1974.839548][ T942] pim6reg1: entered allmulticast mode [ 1974.858039][ T942] fuse: Unknown parameter 'fd0x000000000000000d' [ 1974.861005][ T944] CPU: 0 PID: 944 Comm: syz.2.7343 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1974.865226][ T944] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1974.869828][ T944] Call Trace: [ 1974.871165][ T944] [ 1974.872354][ T944] dump_stack_lvl+0x16c/0x1f0 [ 1974.874171][ T944] should_fail_ex+0x497/0x5b0 [ 1974.876259][ T944] should_failslab+0x9/0x20 [ 1974.878291][ T944] kmalloc_node_track_caller_noprof+0xcf/0x440 [ 1974.880863][ T944] ? key_alloc+0x441/0x13a0 [ 1974.882883][ T944] kmemdup_noprof+0x29/0x60 [ 1974.884877][ T944] key_alloc+0x441/0x13a0 [ 1974.886822][ T944] ? rcu_is_watching+0x12/0xc0 [ 1974.888964][ T944] ? __pfx_key_alloc+0x10/0x10 [ 1974.891074][ T944] ? apparmor_cred_prepare+0xad/0x140 [ 1974.893361][ T944] keyring_alloc+0x44/0xc0 [ 1974.895057][ T944] lookup_user_key+0xa34/0x12f0 [ 1974.896883][ T944] ? __pfx_lookup_user_key+0x10/0x10 [ 1974.898918][ T944] ? __pfx_lock_release+0x10/0x10 [ 1974.901027][ T944] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 1974.903710][ T944] __do_sys_add_key+0x25a/0x460 [ 1974.905876][ T944] ? __pfx___do_sys_add_key+0x10/0x10 [ 1974.908241][ T944] ? ksys_write+0x1ab/0x260 [ 1974.910230][ T944] __do_fast_syscall_32+0x73/0x120 [ 1974.912335][ T944] do_fast_syscall_32+0x32/0x80 [ 1974.914202][ T944] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1974.916593][ T944] RIP: 0023:0xf7f52579 [ 1974.918345][ T944] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1974.926591][ T944] RSP: 002b:00000000f5d0657c EFLAGS: 00000292 ORIG_RAX: 000000000000011e [ 1974.930276][ T944] RAX: ffffffffffffffda RBX: 0000000020000140 RCX: 0000000000000000 [ 1974.933547][ T944] RDX: 00000000200001c0 RSI: 0000000000000018 RDI: 00000000fffffffe [ 1974.936602][ T944] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1974.939775][ T944] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1974.943124][ T944] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1974.946405][ T944] [ 1976.293792][ T958] pim6reg1: entered allmulticast mode [ 1976.376972][ T956] fuse: Unknown parameter 'fd0x000000000000000d' [ 1977.380398][ T975] pim6reg1: entered allmulticast mode [ 1977.407315][ T975] fuse: Unknown parameter 'fd0x000000000000000d' [ 1977.581825][ T964] orangefs_mount: mount request failed with -4 [ 1977.999138][ T974] orangefs_mount: mount request failed with -4 [ 1978.416265][ T989] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1978.439815][ T989] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1979.750238][ T1004] (unnamed net_device) (uninitialized): option arp_interval: invalid value (18446744073709551615) [ 1979.755398][ T1004] (unnamed net_device) (uninitialized): option arp_interval: allowed values 0 - 2147483647 [ 1980.302946][ T1016] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7362'. [ 1980.779281][ T1008] orangefs_mount: mount request failed with -4 [ 1980.826249][ T1020] fuse: Unknown parameter 'group_id0x000000000000023e' [ 1980.968170][ T1032] syz.3.7366: attempt to access beyond end of device [ 1980.968170][ T1032] md0: rw=0, sector=6, nr_sectors = 2 limit=0 [ 1981.029053][ T1032] ADFS-fs (md0): error: unable to read block 3, try 0 [ 1981.289762][ T1044] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1981.379875][ T1044] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1981.919813][ T1048] x_tables: duplicate underflow at hook 2 [ 1982.863713][ T1064] fuse: Unknown parameter 'group_id0x000000000000055c' [ 1983.061408][ T40] audit: type=1326 audit(1721214036.707:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1068 comm="syz.3.7376" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f83579 code=0x0 [ 1983.348579][ T1074] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0) [ 1983.428637][ T1058] orangefs_mount: mount request failed with -4 [ 1984.110769][ T1102] QAT: failed to copy from user cfg_data. [ 1984.157139][ T1104] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7382'. [ 1984.252254][ T1104] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 1984.288656][ T1109] batman_adv: batadv1: Adding interface: netdevsim0 [ 1984.291992][ T1109] batman_adv: batadv1: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1984.342607][ T1109] batman_adv: batadv1: Interface activated: netdevsim0 [ 1984.440092][ T1111] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1984.464092][ T1111] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1984.578700][ T1117] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1984.669459][ T1117] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1984.696867][ T1107] x_tables: ip_tables: ah match: only valid for protocol 51 [ 1984.704607][ T1117] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1986.125876][ T1136] FAULT_INJECTION: forcing a failure. [ 1986.125876][ T1136] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1986.175738][ T1136] CPU: 0 PID: 1136 Comm: syz.2.7390 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1986.179800][ T1136] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1986.183914][ T1136] Call Trace: [ 1986.185168][ T1136] [ 1986.186467][ T1136] dump_stack_lvl+0x16c/0x1f0 [ 1986.188368][ T1136] should_fail_ex+0x497/0x5b0 [ 1986.190176][ T1136] ? fs_reclaim_acquire+0xae/0x160 [ 1986.192030][ T1136] __should_fail_alloc_page+0xe7/0x130 [ 1986.194107][ T1136] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 1986.196639][ T1136] ? hlock_class+0x4e/0x130 [ 1986.198454][ T1136] __alloc_pages_noprof+0x194/0x2460 [ 1986.201483][ T1136] ? __pfx_mark_lock+0x10/0x10 [ 1986.203509][ T1136] ? __pfx___lock_acquire+0x10/0x10 [ 1986.205480][ T1136] ? hlock_class+0x4e/0x130 [ 1986.207455][ T1136] ? __lock_acquire+0xc5d/0x3b30 [ 1986.209302][ T1136] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 1986.211465][ T1136] ? __pfx___lock_acquire+0x10/0x10 [ 1986.213483][ T1136] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1986.216152][ T1136] ? policy_nodemask+0xea/0x4e0 [ 1986.218235][ T1136] alloc_pages_mpol_noprof+0x275/0x610 [ 1986.220300][ T1136] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 1986.222448][ T1136] ? find_held_lock+0x2d/0x110 [ 1986.224297][ T1136] vma_alloc_folio_noprof+0xad/0x1f0 [ 1986.226318][ T1136] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 1986.228594][ T1136] ? find_held_lock+0x2d/0x110 [ 1986.230414][ T1136] ? find_held_lock+0x2d/0x110 [ 1986.232222][ T1136] __handle_mm_fault+0x2cc7/0x52a0 [ 1986.234065][ T1136] ? __pfx___handle_mm_fault+0x10/0x10 [ 1986.236381][ T1136] ? follow_page_pte+0x3dc/0x1ce0 [ 1986.238328][ T1136] handle_mm_fault+0x476/0xa00 [ 1986.240303][ T1136] __get_user_pages+0x475/0x15c0 [ 1986.242458][ T1136] ? __pfx___get_user_pages+0x10/0x10 [ 1986.244476][ T1136] __gup_longterm_locked+0x643/0x2790 [ 1986.246465][ T1136] ? __pfx___gup_longterm_locked+0x10/0x10 [ 1986.248816][ T1136] ? bpf_send_signal_common+0x2b5/0x3a0 [ 1986.251378][ T1136] ? find_held_lock+0x2d/0x110 [ 1986.253769][ T1136] ? __mmap_lock_do_trace_acquire_returned+0x346/0x790 [ 1986.257083][ T1136] pin_user_pages+0x13f/0x160 [ 1986.259509][ T1136] ? __pfx_pin_user_pages+0x10/0x10 [ 1986.261622][ T1136] ? __mmap_lock_do_trace_acquire_returned+0x362/0x790 [ 1986.264238][ T1136] xdp_umem_create+0x723/0x1250 [ 1986.266666][ T1136] xsk_setsockopt+0x7e7/0xac0 [ 1986.268496][ T1136] ? aa_sk_perm+0x2f5/0xb40 [ 1986.270310][ T1136] ? __pfx_xsk_setsockopt+0x10/0x10 [ 1986.272549][ T1136] ? __pfx_aa_sk_perm+0x10/0x10 [ 1986.274827][ T1136] ? bpf_lsm_socket_setsockopt+0x9/0x10 [ 1986.276895][ T1136] ? __pfx_xsk_setsockopt+0x10/0x10 [ 1986.278868][ T1136] do_sock_setsockopt+0x222/0x480 [ 1986.280750][ T1136] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 1986.282649][ T1136] ? __fget_light+0x173/0x210 [ 1986.284209][ T1136] __sys_setsockopt+0x1a4/0x270 [ 1986.285810][ T1136] ? __pfx___sys_setsockopt+0x10/0x10 [ 1986.287828][ T1136] ? fput+0x32/0x390 [ 1986.289283][ T1136] ? ksys_write+0x1ab/0x260 [ 1986.290990][ T1136] ? __pfx_ksys_write+0x10/0x10 [ 1986.292787][ T1136] __ia32_sys_setsockopt+0xbc/0x160 [ 1986.294708][ T1136] ? lockdep_hardirqs_on+0x7c/0x110 [ 1986.297065][ T1136] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 1986.299555][ T1136] __do_fast_syscall_32+0x73/0x120 [ 1986.302019][ T1136] do_fast_syscall_32+0x32/0x80 [ 1986.304352][ T1136] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1986.306985][ T1136] RIP: 0023:0xf7f52579 [ 1986.308671][ T1136] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1986.317161][ T1136] RSP: 002b:00000000f5d0657c EFLAGS: 00000292 ORIG_RAX: 000000000000016e [ 1986.321086][ T1136] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000011b [ 1986.324779][ T1136] RDX: 0000000000000004 RSI: 0000000020000080 RDI: 0000000000000020 [ 1986.328265][ T1136] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1986.331337][ T1136] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1986.334657][ T1136] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1986.337955][ T1136] [ 1986.412252][ T1125] orangefs_mount: mount request failed with -4 [ 1986.471374][ T1134] No control pipe specified [ 1986.940445][ T1271] usb 7-1: new high-speed USB device number 46 using dummy_hcd [ 1987.016360][ T1151] FAULT_INJECTION: forcing a failure. [ 1987.016360][ T1151] name failslab, interval 1, probability 0, space 0, times 0 [ 1987.046116][ T1151] CPU: 2 PID: 1151 Comm: syz.0.7394 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1987.050104][ T1151] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1987.054690][ T1151] Call Trace: [ 1987.056006][ T1151] [ 1987.057351][ T1151] dump_stack_lvl+0x16c/0x1f0 [ 1987.059403][ T1151] should_fail_ex+0x497/0x5b0 [ 1987.061429][ T1151] should_failslab+0x9/0x20 [ 1987.063457][ T1151] kmem_cache_alloc_lru_noprof+0x72/0x2f0 [ 1987.065934][ T1151] ? sock_alloc_inode+0x25/0x1c0 [ 1987.067873][ T1151] ? __pfx_sock_alloc_inode+0x10/0x10 [ 1987.070159][ T1151] sock_alloc_inode+0x25/0x1c0 [ 1987.072257][ T1151] alloc_inode+0x5d/0x230 [ 1987.074132][ T1151] sock_alloc+0x40/0x280 [ 1987.075820][ T1151] __sock_create+0xc0/0x800 [ 1987.077691][ T1151] smc_create_clcsk+0x39/0x200 [ 1987.079780][ T1151] ? __pfx_smc_inet_init_sock+0x10/0x10 [ 1987.082148][ T1151] inet6_create+0xb53/0x12e0 [ 1987.084200][ T1151] ? inet6_create+0x5d/0x12e0 [ 1987.086193][ T1151] __sock_create+0x32e/0x800 [ 1987.088249][ T1151] __sys_socket+0x14f/0x260 [ 1987.090262][ T1151] ? __pfx___sys_socket+0x10/0x10 [ 1987.092517][ T1151] ? ksys_write+0x1ab/0x260 [ 1987.094522][ T1151] ? __pfx_ksys_write+0x10/0x10 [ 1987.096783][ T1151] __ia32_sys_socket+0x72/0xb0 [ 1987.098871][ T1151] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 1987.101801][ T1151] __do_fast_syscall_32+0x73/0x120 [ 1987.104159][ T1151] do_fast_syscall_32+0x32/0x80 [ 1987.106508][ T1151] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1987.109245][ T1151] RIP: 0023:0xf748e579 [ 1987.111042][ T1151] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1987.118981][ T1151] RSP: 002b:00000000f5da657c EFLAGS: 00000292 ORIG_RAX: 0000000000000167 [ 1987.122528][ T1151] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000000000001 [ 1987.125919][ T1151] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 1987.129022][ T1151] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1987.132221][ T1151] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1987.135683][ T1151] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1987.139307][ T1151] [ 1987.192973][ T1271] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 1987.196634][ T1271] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1987.205009][ T1271] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 1987.218061][ T1271] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1987.223907][ T1271] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1987.229697][ T1271] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 1987.233602][ T1271] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 1987.235427][ T1151] socket: no more sockets [ 1987.239234][ T1151] ------------[ cut here ]------------ [ 1987.241869][ T1151] refcount_t: underflow; use-after-free. [ 1987.245695][ T1271] usb 7-1: Product: syz [ 1987.246411][ T1151] WARNING: CPU: 2 PID: 1151 at lib/refcount.c:28 refcount_warn_saturate+0x14a/0x210 [ 1987.249171][ T1271] usb 7-1: Manufacturer: syz [ 1987.252444][ T1151] Modules linked in: [ 1987.273951][ T1151] CPU: 2 PID: 1151 Comm: syz.0.7394 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1987.277897][ T1151] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1987.282945][ T1151] RIP: 0010:refcount_warn_saturate+0x14a/0x210 [ 1987.284455][ T1271] cdc_wdm 7-1:1.0: skipping garbage [ 1987.286191][ T1151] Code: ff 89 de e8 a8 d8 0e fd 84 db 0f 85 66 ff ff ff e8 fb dd 0e fd c6 05 a7 4d 4d 0b 01 90 48 c7 c7 c0 b4 8f 8b e8 c7 8c d1 fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 d8 dd 0e fd 0f b6 1d 82 4d 4d 0b 31 [ 1987.289014][ T1271] cdc_wdm 7-1:1.0: skipping garbage [ 1987.297686][ T1151] RSP: 0018:ffffc90004b8fd48 EFLAGS: 00010282 [ 1987.302439][ T1151] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff815146f9 [ 1987.305995][ T1151] RDX: ffff888021eea440 RSI: ffffffff81514706 RDI: 0000000000000001 [ 1987.310056][ T1151] RBP: ffff88805e448080 R08: 0000000000000001 R09: 0000000000000000 [ 1987.313918][ T1151] R10: 0000000000000001 R11: 0000000000000003 R12: 00000000ffffffff [ 1987.318296][ T1151] R13: ffff88805e448080 R14: ffff88805e448013 R15: ffff88805e44800e [ 1987.321769][ T1151] FS: 0000000000000000(0000) GS:ffff88802c200000(0063) knlGS:00000000f5da6b40 [ 1987.325846][ T1151] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 1987.328763][ T1151] CR2: 00000000f5224602 CR3: 000000005a084000 CR4: 0000000000350ef0 [ 1987.330555][ T1271] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device [ 1987.332016][ T1151] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1987.334591][ T1271] cdc_wdm 7-1:1.0: Unknown control protocol [ 1987.338155][ T1151] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1987.338170][ T1151] Call Trace: [ 1987.338177][ T1151] [ 1987.338184][ T1151] ? show_regs+0x8c/0xa0 [ 1987.338212][ T1151] ? __warn+0xe5/0x3c0 [ 1987.338229][ T1151] ? preempt_schedule_notrace+0x62/0xe0 [ 1987.353208][ T1151] ? refcount_warn_saturate+0x14a/0x210 [ 1987.355827][ T1151] ? report_bug+0x3c0/0x580 [ 1987.358209][ T1151] ? handle_bug+0x3d/0x70 [ 1987.360273][ T1151] ? exc_invalid_op+0x17/0x50 [ 1987.362420][ T1151] ? asm_exc_invalid_op+0x1a/0x20 [ 1987.364644][ T1151] ? __warn_printk+0x199/0x350 [ 1987.366731][ T1151] ? __warn_printk+0x1a6/0x350 [ 1987.368919][ T1151] ? refcount_warn_saturate+0x14a/0x210 [ 1987.371485][ T1151] ? refcount_warn_saturate+0x149/0x210 [ 1987.374153][ T1151] sk_common_release+0x2ec/0x420 [ 1987.376502][ T1151] ? __pfx_smc_inet_init_sock+0x10/0x10 [ 1987.379921][ T1151] inet6_create+0xef5/0x12e0 [ 1987.382728][ T1151] ? inet6_create+0x5d/0x12e0 [ 1987.385229][ T1151] __sock_create+0x32e/0x800 [ 1987.387644][ T1151] __sys_socket+0x14f/0x260 [ 1987.389774][ T1151] ? __pfx___sys_socket+0x10/0x10 [ 1987.392169][ T1151] ? ksys_write+0x1ab/0x260 [ 1987.394207][ T1151] ? __pfx_ksys_write+0x10/0x10 [ 1987.396714][ T1151] __ia32_sys_socket+0x72/0xb0 [ 1987.398893][ T1151] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 1987.402081][ T1151] __do_fast_syscall_32+0x73/0x120 [ 1987.404482][ T1151] do_fast_syscall_32+0x32/0x80 [ 1987.406735][ T1151] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1987.409495][ T1151] RIP: 0023:0xf748e579 [ 1987.411297][ T1151] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1987.419749][ T1151] RSP: 002b:00000000f5da657c EFLAGS: 00000292 ORIG_RAX: 0000000000000167 [ 1987.423650][ T1151] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000000000001 [ 1987.426883][ T1151] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 1987.430332][ T1151] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1987.433953][ T1151] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1987.437411][ T1151] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1987.440503][ T1151] [ 1987.441743][ T1151] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1987.444770][ T1151] CPU: 2 PID: 1151 Comm: syz.0.7394 Not tainted 6.10.0-syzkaller-04472-g51835949dda3 #0 [ 1987.448438][ T1151] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1987.452850][ T1151] Call Trace: [ 1987.454872][ T1151] [ 1987.456152][ T1151] dump_stack_lvl+0x3d/0x1f0 [ 1987.458156][ T1151] panic+0x6f5/0x7a0 [ 1987.459904][ T1151] ? __pfx_panic+0x10/0x10 [ 1987.462065][ T1151] ? show_trace_log_lvl+0x363/0x500 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 1987.464680][ T1151] ? check_panic_on_warn+0x1f/0xb0 [ 1987.466863][ T1151] ? refcount_warn_saturate+0x14a/0x210 [ 1987.469110][ T1151] check_panic_on_warn+0xab/0xb0 [ 1987.471261][ T1151] __warn+0xf1/0x3c0 [ 1987.473047][ T1151] ? preempt_schedule_notrace+0x62/0xe0 [ 1987.475547][ T1151] ? refcount_warn_saturate+0x14a/0x210 [ 1987.478004][ T1151] report_bug+0x3c0/0x580 [ 1987.479925][ T1151] handle_bug+0x3d/0x70 [ 1987.481781][ T1151] exc_invalid_op+0x17/0x50 [ 1987.483591][ T1151] asm_exc_invalid_op+0x1a/0x20 [ 1987.485473][ T1151] RIP: 0010:refcount_warn_saturate+0x14a/0x210 [ 1987.487942][ T1151] Code: ff 89 de e8 a8 d8 0e fd 84 db 0f 85 66 ff ff ff e8 fb dd 0e fd c6 05 a7 4d 4d 0b 01 90 48 c7 c7 c0 b4 8f 8b e8 c7 8c d1 fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 d8 dd 0e fd 0f b6 1d 82 4d 4d 0b 31 [ 1987.495874][ T1151] RSP: 0018:ffffc90004b8fd48 EFLAGS: 00010282 [ 1987.498488][ T1151] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff815146f9 [ 1987.501975][ T1151] RDX: ffff888021eea440 RSI: ffffffff81514706 RDI: 0000000000000001 [ 1987.505557][ T1151] RBP: ffff88805e448080 R08: 0000000000000001 R09: 0000000000000000 [ 1987.508844][ T1151] R10: 0000000000000001 R11: 0000000000000003 R12: 00000000ffffffff [ 1987.512265][ T1151] R13: ffff88805e448080 R14: ffff88805e448013 R15: ffff88805e44800e [ 1987.515611][ T1151] ? __warn_printk+0x199/0x350 [ 1987.517507][ T1151] ? __warn_printk+0x1a6/0x350 [ 1987.519404][ T1151] ? refcount_warn_saturate+0x149/0x210 [ 1987.521568][ T1151] sk_common_release+0x2ec/0x420 [ 1987.523329][ T1151] ? __pfx_smc_inet_init_sock+0x10/0x10 [ 1987.525295][ T1151] inet6_create+0xef5/0x12e0 [ 1987.527502][ T1151] ? inet6_create+0x5d/0x12e0 [ 1987.529842][ T1151] __sock_create+0x32e/0x800 [ 1987.532457][ T1151] __sys_socket+0x14f/0x260 [ 1987.534486][ T1151] ? __pfx___sys_socket+0x10/0x10 [ 1987.536447][ T1151] ? ksys_write+0x1ab/0x260 [ 1987.538458][ T1151] ? __pfx_ksys_write+0x10/0x10 [ 1987.540749][ T1151] __ia32_sys_socket+0x72/0xb0 [ 1987.542901][ T1151] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 1987.545941][ T1151] __do_fast_syscall_32+0x73/0x120 [ 1987.548261][ T1151] do_fast_syscall_32+0x32/0x80 [ 1987.550320][ T1151] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1987.553645][ T1151] RIP: 0023:0xf748e579 [ 1987.555698][ T1151] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1987.563934][ T1151] RSP: 002b:00000000f5da657c EFLAGS: 00000292 ORIG_RAX: 0000000000000167 [ 1987.567406][ T1151] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000000000001 [ 1987.570704][ T1151] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 1987.574044][ T1151] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1987.577606][ T1151] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1987.580824][ T1151] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1987.584430][ T1151] [ 1987.586424][ T1151] Kernel Offset: disabled [ 1987.588368][ T1151] Rebooting in 86400 seconds.. VM DIAGNOSIS: 11:01:59 Registers: info registers vcpu 0 CPU#0 RAX=0000000000040000 RBX=0000000000000001 RCX=ffffc90026bb3000 RDX=0000000000040000 RSI=ffffffff847e8569 RDI=0000000000000005 RBP=0000000000000000 RSP=ffffc90004b9f9a0 R8 =0000000000000005 R9 =0000000000000001 R10=0000000000000000 R11=0000000000000000 R12=0000000000000001 R13=0000000000000000 R14=0000000000000008 R15=ffffc90004b9fb40 RIP=ffffffff818e96d8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802c000000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000002000d000 CR3=00000000640c0000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000000 RBX=ffff888057205c80 RCX=0000000000000001 RDX=0000000000000000 RSI=ffffffff8b2cc320 RDI=ffffffff8b900f40 RBP=ffffc90000e57670 RSP=ffffc90000e575f8 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000002 R12=0000000000000004 R13=ffff88802a0c5600 R14=ffff88801c6627b8 R15=0000000000000001 RIP=ffffffff8ae090f4 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802c100000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f459a1b4 CR3=00000000640c0000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000000 RBX=ffff888021eeaf48 RCX=0000000000000000 RDX=1ffff110043dd5ed RSI=0000000000000008 RDI=ffff888021eeaf68 RBP=dffffc0000000000 RSP=ffffc90000540908 R8 =0000000000000004 R9 =fffffbfff2843880 R10=ffffffff9421c407 R11=ffffffff8b2bd820 R12=ffffed10043dd5e3 R13=ffff888021eeaf20 R14=0000000000000001 R15=0000000000000002 RIP=ffffffff816bc539 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802c200000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f5224602 CR3=000000005a084000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=00000000000c00fc RBX=0000000000000001 RCX=0000000000000830 RDX=0000000000000000 RSI=0000000000000008 RDI=00000000000000fc RBP=ffff88802c33fe90 RSP=ffffc900003d78d0 R8 =0000000000000000 R9 =ffffed1005867fd2 R10=ffff88802c33fe97 R11=0000000000000006 R12=ffffffff81827a40 R13=0000000000000003 R14=0000000000000002 R15=ffff88802c33fe80 RIP=ffffffff813b5f55 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802c300000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000000c2edfff CR3=000000000d97a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000