last executing test programs: 2m4.573881863s ago: executing program 2 (id=448): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0) sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f00000006c0)=ANY=[@ANYBLOB='8\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000040200f2c8dc1b00000018000180140002007379005f74756e0000000000000000000c000280"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0) 2m4.51070323s ago: executing program 2 (id=449): socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) openat$autofs(0xffffff9c, 0x0, 0x40800, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) socket$netlink(0x10, 0x3, 0xc) sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a14000000000a000000000000000000000000000014000000060a0000000000000000000008000000140000001100010000000000000000000000000a"], 0x50}}, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) r2 = dup(r1) write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c) socket$inet(0x2, 0x1, 0x0) r3 = socket$inet6(0xa, 0x806, 0x0) bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e23, 0x80000001}, 0x1c) listen(r3, 0x3) r4 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) bind$netrom(r4, &(0x7f0000000000)={{0x6, @rose}, [@bcast, @default, @netrom, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default]}, 0x48) connect$inet(0xffffffffffffffff, &(0x7f0000772000)={0x2, 0x4e23}, 0x10) r5 = accept4(r3, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000c80)=[{{&(0x7f0000000200)=@in6={0xa, 0x0, 0x0, @dev}, 0x80, &(0x7f00000008c0)=[{&(0x7f00000002c0)=""/106, 0x6a}, {&(0x7f0000000540)=""/172, 0xac}, {&(0x7f0000000600)=""/239, 0xef}, {&(0x7f00000003c0)=""/36, 0x24}, {&(0x7f0000000700)=""/142, 0x8e}, {&(0x7f00000007c0)=""/185, 0xb9}, {&(0x7f0000000440)=""/84, 0x54}, {&(0x7f0000000900)=""/23, 0x17}], 0x8}, 0x4}, {{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000940)=""/210, 0xd2}, {&(0x7f0000000cc0)=""/227, 0xe3}], 0x2, &(0x7f0000000b80)=""/245, 0xf5}, 0x4}], 0x2, 0x0, 0x0) sendmmsg(r5, &(0x7f0000001500), 0x588, 0x3000000) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="600000000206050000000000000000000000000005000400000000000900020073797a3200000000140007800800064000006a000800084000005fdc0500050002"], 0x60}}, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) 2m3.51006618s ago: executing program 2 (id=453): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e088641100050000215721ac141440e0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0xa888, 0x0, 0x4000}, 0x48) 2m3.440618463s ago: executing program 2 (id=454): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0) r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901) close(r2) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000100)={0x0, 0x0, 0xd, 0x1, 0x200, &(0x7f0000000cc0)="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"}) syz_open_dev$tty1(0xc, 0x4, 0x1) (async) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) (async) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0) (async) open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) (async) move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) (async) open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901) (async) close(r2) (async) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000100)={0x0, 0x0, 0xd, 0x1, 0x200, &(0x7f0000000cc0)="1ae19337aa151f36ae49bb3f8cb95c5bf840d4f1e55efaaf098d47a70eb36a7309000000000000000f4743f490c585108c1331c7749299a25a705f5096cb268cbc6070d680e1be250700000000000000472471ff550c0010000007f3c7b61abe4162256004ea8ca5e5b5f379c6eb3257eda08f7e6959090000004d13184d382747e035b4722525e00ade86b4c6d1e157c75d15c1f961ebc0a64d7f2a73f8979fcecacaa64f9b9069ebcc1d5b471edbc4f6c7f1b98ae74e909aa6f25b7fa77bf9cd4ed36d5c53dc519d11c3cc1c22a3b86cf3c645413f4afbcea0c99ded703699d2bb6a4a663b99b6069da5aaf64785a5887c31261d4b9e57ee07000000def6f255ca26108f11f02047d47f2d0fec30f7e92482f71496e184214a4e0c5fdc48b0af0c0478940016d8f0990a0e1090fd515380aae83c5eaeed338701574b64200a16ef2811fadcf1e0f49a514df529061e09ce45e3da03a03fe9b4a6bcfa7d04594e4f6d0714b5e14ea127ab37d64a5e0db630cd4f4a2e6c985a542ff20a9b2193f265f93a258a88dd6c9d6a926dd23d32425849c5d9210007660a617f22133b6cb5087f4c6057942aa18193172bd995fa70a1f949b196f2e2a3c175858575713be5ee3f7f4dcecc98123f9ded3afdebe13d79a7f7fcb2469ae0ac503111401612df7ee995f74fb97a63bf62d61f78c062f959119ab50c1f706a930121ebcd53ccb93d158186ed360750ca8e728150d988844b9a5cff46591ccaff416e5a8c25f9555da5ca6fdf75b86ea6171b046b856168f403b5253a5cc393430a09a4489a0895571e597ac8846f945ffb372a88d3a2b463dc961416c80c55773f917020751ed51cfd73c1e06fbadd156d56bedc117af95d242d6d07002ce34dccd6005e944afa92b22ec9a698469c6edc06caa2cfcd61912607d459b4c28ebea9745bcd4697d75c9601fd333d3cd797963a3c71b7cc5fdc756da8d97207936e5f53b53b732533c2722e03002293517966611602f297de6ff5408777b7a93c45cee3ee5c5601a4e94266b295ea7a86812a7ab8896ec5ea1b12643e1844b185734528399e62bceb8700cc6cd491e4a4430d0a3ba329a5a2fa170fd0b1cc4ba8cd35df2cd7344aa8a9f3432b96fb889c02f484f63520cc3466a3c2903d45f176931b2db18dba54991a9553cedb7f585786388d4042dbae1c95b769e3d4e036e8afea0a04c04f542b152ca1fd1f8efee60425c5a122fd1b90e98635284abd9f217d9e19cb2a64b354c9d79509cc47d7305114990148a7291cb0fe2d1c773a6664b66ae04aa62c534d072ae54c2ca0d5962cc58945d8924abfc4d5af922462507430d8f2c17479a6678b0b3700000000000000000000000600000000000000000000f80000000000000000000000000000000000000000005593e85f00"}) (async) 2m3.337374178s ago: executing program 2 (id=455): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000030000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000480)='mm_page_alloc\x00', r2}, 0x10) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2100, 0x0, 0x0, 0x0, 0x2}, 0x4c) 2m2.24118507s ago: executing program 2 (id=458): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="380000006800010000000000000000000a0000000000fc00100008800c0001000000002000000000060007000800000008000500", @ANYRES32=r1], 0x38}}, 0x0) 2m2.160853645s ago: executing program 32 (id=458): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="380000006800010000000000000000000a0000000000fc00100008800c0001000000002000000000060007000800000008000500", @ANYRES32=r1], 0x38}}, 0x0) 3.358194326s ago: executing program 1 (id=1342): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x21, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x1}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="8689d46205a34100bf2bbe11a5ce7839edaf02afe39ead95913e9c4f8cf31440006769ebdf12cfacae8e8c03f5db079da7d9ecda75e2a7d49d5cbcb370c4d789390a328ba42c9c60cf2154d1b659aa709e8980a522cfb72f23ad87fb7019706ccae98cfe7c4fd23e8297b8cabc46ede1ac3da78f1b488c6357e7edfcd417df6660af20a54ecdcb02f689ae15ee655d4b7b1ea733e88ee9f53669388dff487c1c49953f3bc142112bd4b582b29b35d43962ed245c2cd5d5df40a3e0ed6beaf3b641e84b0f0dfa121a9efe05269f9f4a0e9bcbf43c7a90a711", 0xd8, 0x0, 0x0, 0x0) r0 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$L2TP_CMD_SESSION_DELETE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0100000000000000000003"], 0x24}, 0x1, 0x0, 0x0, 0x40850}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r5, &(0x7f0000000240)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @mcast1}, 0x1c) sendmmsg$inet6(r5, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x700) 2.459512563s ago: executing program 1 (id=1349): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="8689d46205a34100bf2bbe11a5ce7839edaf02afe39ead95913e9c4f8cf31440006769ebdf12cfacae8e8c03f5db079da7d9ecda75e2a7d49d5cbcb370c4d789390a328ba42c9c60cf2154d1b659aa709e8980a522cfb72f23ad87fb7019706ccae98cfe7c4fd23e8297b8cabc46ede1ac3da78f1b488c6357e7edfcd417df6660af20a54ecdcb02f689ae15ee655d4b7b1ea733e88ee9f53669388dff487c1c49953f3bc142112bd4b582b29b35d43962ed245c2cd5d5df40a3e0ed6beaf3b641e84b0f0dfa121a9efe05269f9f4a0e9bcbf43c7a90a711", 0xd8, 0x0, 0x0, 0x0) r0 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$L2TP_CMD_SESSION_DELETE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0100000000000000000003"], 0x24}, 0x1, 0x0, 0x0, 0x50}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00') preadv(r5, &(0x7f0000000240)=[{&(0x7f00000004c0)=""/152, 0x98}], 0x1, 0x0, 0x0) r6 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r6, 0x107, 0x14, &(0x7f0000000180)=0xffffffff, 0x4) socket$nl_sock_diag(0x10, 0x3, 0x4) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000001280)={'wlan0\x00', 0x0}) sendto$packet(r6, &(0x7f00000000c0)="3f030e0033e6120306001e0089e9aaa911d7c2290f0086dd1327c9167c64114a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe94f, 0x0, &(0x7f0000000540)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @multicast}, 0x14) bind$tipc(0xffffffffffffffff, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10) recvmmsg(0xffffffffffffffff, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f0000003e00)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0) r8 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r8, &(0x7f0000000240)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) connect$inet6(r8, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) sendmmsg$inet6(r8, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171, 0x0, 0x0, 0x6000}}], 0x400000000000172, 0x700) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) 2.160086693s ago: executing program 3 (id=1353): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x3c, 0x10, 0x401, 0x0, 0xfc, {0x0, 0x0, 0x0, 0x0, 0x32b}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @geneve={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GENEVE_PORT={0x6, 0x5, 0x4e20}]}}}]}, 0x3c}}, 0x0) 2.158764686s ago: executing program 3 (id=1354): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(twofish)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) r1 = creat(&(0x7f0000000200)='./file0\x00', 0x20) close(r1) socket$inet6_mptcp(0xa, 0x1, 0x106) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x402, 0x0) mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000400)=ANY=[@ANYBLOB="b000000008021100000108021100000008c2e180530010000000feff0000"], 0x1e) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00001f0000), 0x1000002, 0x0) r4 = dup(r3) r5 = open(&(0x7f0000000000)='./bus\x00', 0x244542, 0x2) ftruncate(r5, 0xee72) sendfile(r4, r5, 0x0, 0x8000fffffffe) r6 = fcntl$dupfd(r4, 0x0, r5) clock_nanosleep(0xfffffff2, 0x225c17d03, &(0x7f0000000400), 0x0) r7 = dup3(r3, r6, 0x80000) ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000040)=0x19) r8 = accept4(r0, 0x0, 0x0, 0x0) recvmsg$kcm(r8, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000680)=""/233, 0xe9}], 0x1}, 0x0) sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[], 0x5c}}, 0x20048880) sendmsg$alg(r8, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) 1.769851993s ago: executing program 4 (id=1355): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d0f65acc0d06d1a1434e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622e03b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab0300817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c690220b87b20581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd713089856f756436303767d2e24f29e5dad9796edb697a8ad004eea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014751c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff22dc518afc9ffc2cc788bee1b47683db01a2f9398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa407e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae526aca54183fb01c73f979ca9857399537f5831808b0dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a0c93d47018c12e7ba8188a22e8b15c3e233db00002e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e4845535a8b90dfae158b94f50adab188dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b4896c7aabf4df517d90bdc01e73835d50200a90800c66ee2b1ad76dff9f9003f07000099d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987595ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e547f7ad33850d9feccd0111a2e3700845dee734fe7da3770845cf442d488afd80e17000000000000000000000000000000000000000000000000000005202000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a12489c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db08407081c6281e2d8429a8639034a75f4c7df3ea8fc2018d07af14915f29b719f54926fc32468f65bd06b4092140faed0c329be610c3082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b4c8787361f3289f86ae826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce1d9bc7ef3e3f40c14089c82759106f422582b42e3e8484ea5a6ad9aa520000afe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da357f9e93ce055019c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c672b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d6fccbecfae5553d9950d48c774eaa35b24fce69a20d8bc410d9f48bf7eac90529cd6af061c9e53addddc620ce73c5d177e3d097159f2768636fc10276c6a0adc57483b3f7083f66b87ef296ee85e9bb70a3009a5d30f479e293a3302e11350ea857b37e76ca2f50378e4092ce2c574ad278b9b7b717c571afb2077b019fd9d89efd59b41f051ec5a8ff87ecc8df917a1e386d849fcd10e2f9ca52e02339c2f4666b0c545e25f1cd62421c28d25994be0cff7271a0dee38d7ac4ac736b090e1d29f981fd9086e4000000000000646174b55d251f7f8ca5ccc22a5efb33b237eff5597a3c3a5f3a9bb54abb40e54593e1a7ce4cfa17b3c3fe91c06363496341eae20dcc59b6179b32ddddef5c34000096a54c0c571a91878f61f74912e2299e5501d4d6943bfd74c856511726f0ac8f7d17f1c6b4451c1bcdc6b6e1700e4cd87709d97afc5423c96fa981873d4369b04bbf1fb9f68f17991540868e408201ad1a74179e489aa61f021a437a3fa935588be2068f7ff9b253106326fde795e530b93626cc68e06e602198724249b4445eef08401cd1a3e266db41474e69902e4d8f5da4e94cc36794258fd4032de7ab36bc24c5efd5c8495c1ccd580033c55725f2d60354f8ad5914a0155eaa743350ddb388f486b6de0549ef3b1b3c3b7d4d3a830ff39885776119408029be3788dd8422b1ab7b4c9d5b7d8682fd759c713108e1bdfc64b9121bbf07099def5c0ce3c861ae4b5cad8bba5a0b6059b9ef90c2f96a59320309e25df89484522bb1d6eaa92164f9e4042cb689a45a898354c17b08705205a9189772bcbcb6414e44b33a2470d3bc16f761c33f565b9da5e7991ad8482579cc1b16c1fcec815a5482ae8b1779c5e339971a6ec1217bcfd1ef24284de8a0a9f068f297037d6478c2434a9a18dcc6c7c791e444a79d7ce37f9cf2826b47ad8ca6a2fa254aa02cd098026798a6d336348af0fc11fa2809a5ebbe17ca4d0f889d518f64ee50f562b5fdb1f76d4a7fe14701f8ed0c6a55d66a6efea3e449e6b478abc5b196dd5308cb20c4e2a0bd702651bb39f10523102dcd8ece692159028f314e0d6bfa400475c6699fdc40efe0948e3cef7419a7f113134e5ee20fd87c4521ccfbd32d6f147f743d30866bdd86ca8bf0c7bcc475f4ed53517aaa51f1c151d859a7f0b53abd332c84bdad313e82ac3777a6f7f649ff8a25f6dfe09cb29213896b49a825257bf143e9fa3bbd47009e66fe5705b3ef2b40a182e408c680727d64e00e1ce508f8fd64ac6c84ccc28fc333067de63b9bb5daaa12ce60ee3779ded79651be69d2a413cd948a873dd7ad7017b150828cf100d3df8537f22aff58343c9ee966fceb594bbe10b911427f76a25a219be2f85287b7f83d323a30991067ad1369792166062085ff20c5fb9f6e4f78dd09c7d2d6ca3c8a5d0d26ccbe576f44a1bc94194817"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e088641100050000210021ac141440e0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0xa405, 0x0, 0x4000}, 0x48) 1.769617344s ago: executing program 4 (id=1356): sched_setscheduler(0x0, 0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$FBIOPUTCMAP(0xffffffffffffffff, 0x4605, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00'}) sendmsg$nl_route_sched(r0, 0x0, 0x0) 1.709698952s ago: executing program 4 (id=1357): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x21, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x1}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="8689d46205a34100bf2bbe11a5ce7839edaf02afe39ead95913e9c4f8cf31440006769ebdf12cfacae8e8c03f5db079da7d9ecda75e2a7d49d5cbcb370c4d789390a328ba42c9c60cf2154d1b659aa709e8980a522cfb72f23ad87fb7019706ccae98cfe7c4fd23e8297b8cabc46ede1ac3da78f1b488c6357e7edfcd417df6660af20a54ecdcb02f689ae15ee655d4b7b1ea733e88ee9f53669388dff487c1c49953f3bc142112bd4b582b29b35d43962ed245c2cd5d5df40a3e0ed6beaf3b641e84b0f0dfa121a9efe05269f9f4a0e9bcbf43c7a90a711", 0xd8, 0x0, 0x0, 0x0) r0 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$L2TP_CMD_SESSION_DELETE(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0100000000000000000003"], 0x24}, 0x1, 0x0, 0x0, 0x40850}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r5, &(0x7f0000000240)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @mcast1}, 0x1c) sendmmsg$inet6(r5, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x700) 1.498185042s ago: executing program 1 (id=1358): openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x400, 0x70bd2c, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x5, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x4) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"]) chdir(&(0x7f0000000100)='./file0\x00') mkdirat(0xffffffffffffffff, &(0x7f0000000540)='./file0\x00', 0xeb) mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@uuid_auto}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@uuid_off}]}) chdir(&(0x7f0000000140)='./bus\x00') openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x145842, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0) r3 = syz_io_uring_setup(0x117, &(0x7f0000000100), &(0x7f0000000280)=0x0, &(0x7f0000000200)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc}) io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='pids.events\x00', 0x26e1, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000580081044e81f782db44b904021d0800090002", 0x17}], 0x1}, 0x0) 1.209995038s ago: executing program 1 (id=1359): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="050000000b0000000a0000000900000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00$'], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000000040), &(0x7f0000001680), 0x8000, r0}, 0x38) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) r1 = socket$inet6(0xa, 0x1, 0xc2) splice(r0, &(0x7f0000000040)=0x9, r1, &(0x7f0000000140)=0x1, 0x0, 0x2) r2 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4) connect$inet(r2, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4) sendmmsg$inet(r2, &(0x7f0000000940)=[{{0x0, 0x0, &(0x7f0000002c00)=[{&(0x7f0000000680)="b2", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000002d80)="15", 0x1}, {&(0x7f0000000580)="3e0a63d574ef02d5e8eb77eb29b35ca7d42b28911f5bf53633fc40a247ae8e2975422b01f9ff515a406f0aa52783ca332af80640b78f238d024f5c36cb11c2ca6937c112db35a5b54bf6c7d644e0e8fb06dc196628d68200958ae393a7685e89ea225eaf4130bc471ecec9c883236d543746f847b52ab3bacf1fe155ceacd4efe8599f757118f7f15cc61eef52d37eab492ecd103baa1374d5690240697ca0eeeb01c99907f9f3407e108f875f0405dc9bae2887e8a2ecc8973affa949fcf4951a9d02aabc5cc321d1635bccf1b55eb4b708000000f4ff00"/226, 0xe2}], 0x2}}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000380)="e1", 0x1}, {&(0x7f0000000780)="09273e8ab8682fd967be6ee2b880bffd9f97d427041c2c55d3b6c1a6af32a067f3ea8269929301eb2e6868d2227ece85bf103632e93ef427ef431b289925aebf5997565439124d4cf02b905efe82e1478455b0d3918b73413eeec0fead379ff5b6b78e48a7143ef9412c9a644530d9d1c6ef791a65b2b7390f03ca4f18", 0x7d}, {&(0x7f0000000800)="75a416f04383bea8064d1fcda35c5b15ce99671b783be087ac5e615b4c090b", 0x1f}], 0x3}}], 0x3, 0xf000080) setsockopt$sock_int(r2, 0x1, 0x20, &(0x7f0000000000), 0x4) bpf$MAP_UPDATE_BATCH(0x19, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x38) 1.20950354s ago: executing program 0 (id=1360): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0) r1 = dup(r0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f00000004c0)={0x2, 0x0, [{0x491, 0x0, 0x4000000}, {0x8c6, 0x0, 0x10000}]}) mkdir(&(0x7f00000020c0)='./file0\x00', 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r1, 0x84, 0xf, &(0x7f00000002c0)={0x0, @in={{0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0xfffff0ca, 0x7, 0x3, 0x0, 0xe}, &(0x7f0000000380)=0x98) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f00000003c0)={r3, 0x4}, 0x8) r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x4000}}) read$FUSE(r4, &(0x7f0000006840)={0x2020, 0x0, 0x0, 0x0}, 0x2020) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x3, {0x5, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, {0x0, 0x2000000000, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x4, 0x2000, 0x7, r5, 0x0, 0xf0ee, 0xffffffff}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) mount$nfs(&(0x7f00000000c0)='+\x00', &(0x7f0000000140)='./file1\x00', &(0x7f00000001c0), 0x12, &(0x7f0000000200)={[{'mountinfo\x00'}, {'net/sctp\x00'}, {}, {'f'}, {'net/sctp\x00'}, {'mountinfo\x00'}, {'net/sctp\x00'}], [{@uid_gt={'uid>', r5}}, {@permit_directio}, {@permit_directio}, {@uid_lt={'uid<', 0xee01}}]}) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='net/sctp\x00') r7 = open_tree(r6, &(0x7f0000000640)='\x00', 0x89901) move_mount(r7, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_GET(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000000000001c00000018000180140002006e657464657673696d30000000"], 0x2c}}, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='net/sctp\x00') syz_init_net_socket$ax25(0x3, 0x3, 0x8) r10 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00') r11 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r12 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, 0x930, 0x300000f, 0x12, r11, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r12, 0x20, &(0x7f0000000a80)="3dfeb167f3ccc51b8ec0ba896a6d39292279e90f7abfdaee0f52b8a3554c9122ce1f6ed327282ad8c2d74bb1a770183e755b9f37cc301f5392a0e4831635410fe4b2a8e6bdb04d5d", 0x1f00, 0x48) syz_memcpy_off$KVM_EXIT_HYPERCALL(r12, 0x20, &(0x7f0000000400)="3a029a2999c20161d7a7aa41e5392c02a5417774acee9cdb7a90e04e33c64f3ac0fb7d26e1e3868e79713a0373d7c8fb0be18eb516616a129ad8bb53d604529bb9d94332453f2c6a", 0x0, 0x48) r13 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x4) sendfile(r13, r10, 0x0, 0x80000000) 1.119338444s ago: executing program 0 (id=1361): r0 = socket$netlink(0x10, 0x3, 0x0) syz_open_dev$sndctrl(0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = socket$netlink(0x10, 0x3, 0xb) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000340)=ANY=[@ANYBLOB="54000000100003052bbd7000249d020000000000", @ANYRES32=0x0, @ANYBLOB="1544010001800000240012800b0001006d61637365630000140002800500060001000000050007000100000008000500", @ANYRES32=r1], 0x54}}, 0x0) 1.058277947s ago: executing program 1 (id=1362): r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000140)='^', 0x34000, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10) listen(r0, 0xda90) r1 = accept4(r0, 0x0, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000000)=0x1, 0x4) bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) listen(r2, 0xfff) syz_emit_ethernet(0x4a, &(0x7f0000000840)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10}}}}}}}, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000540)='cpuset.effective_mems\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r3, 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f0000000400), &(0x7f00000000c0)=0x8) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0) r4 = gettid() r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0) read(r5, &(0x7f0000000200)=""/209, 0xd1) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r5, 0x4040534e, &(0x7f0000000080)={0x335, @time={0xffffffff, 0xfffffffe}}) tkill(r4, 0x7) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r5, 0xc0305302, &(0x7f0000000480)) inotify_add_watch(r3, &(0x7f0000000000)='./file0\x00', 0x100) 1.056177411s ago: executing program 0 (id=1363): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x21, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x1}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="8689d46205a34100bf2bbe11a5ce7839edaf02afe39ead95913e9c4f8cf31440006769ebdf12cfacae8e8c03f5db079da7d9ecda75e2a7d49d5cbcb370c4d789390a328ba42c9c60cf2154d1b659aa709e8980a522cfb72f23ad87fb7019706ccae98cfe7c4fd23e8297b8cabc46ede1ac3da78f1b488c6357e7edfcd417df6660af20a54ecdcb02f689ae15ee655d4b7b1ea733e88ee9f53669388dff487c1c49953f3bc142112bd4b582b29b35d43962ed245c2cd5d5df40a3e0ed6beaf3b641e84b0f0dfa121a9efe05269f9f4a0e9bcbf43c7a90a711", 0xd8, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00') preadv(r3, &(0x7f0000000240)=[{&(0x7f00000004c0)=""/152, 0x98}], 0x1, 0x0, 0x0) r4 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r4, 0x107, 0x14, &(0x7f0000000180)=0xffffffff, 0x4) socket$nl_sock_diag(0x10, 0x3, 0x4) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001280)={'wlan0\x00', 0x0}) sendto$packet(r4, &(0x7f00000000c0)="3f030e0033e6120306001e0089e9aaa911d7c2290f0086dd1327c9167c64114a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe94f, 0x0, &(0x7f0000000540)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @multicast}, 0x14) bind$tipc(0xffffffffffffffff, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10) recvmmsg(0xffffffffffffffff, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f0000003e00)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0) r6 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r6, &(0x7f0000000240)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @mcast1}, 0x1c) sendmmsg$inet6(r6, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x700) 819.420051ms ago: executing program 4 (id=1364): syz_emit_ethernet(0xa6, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x70, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "ffffffffff6080ff00000000"}]}}}}}}, 0x0) 750.143362ms ago: executing program 4 (id=1365): sched_setscheduler(0x0, 0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$FBIOPUTCMAP(0xffffffffffffffff, 0x4605, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00'}) sendmsg$nl_route_sched(r0, 0x0, 0x0) 749.832236ms ago: executing program 3 (id=1366): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x88200, 0x0) ioctl$TCXONC(r0, 0x540a, 0x2) r1 = syz_io_uring_setup(0x10f, &(0x7f0000000140)={0x0, 0xfad9}, &(0x7f0000000240)=0x0, &(0x7f00000000c0)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x241}}) io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0) ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0xb) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000040)={0x4f, 0x9, 0x400, 0x100, 0x1e, "96bf4f0000000000000000001000"}) 689.482622ms ago: executing program 4 (id=1367): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r0) r1 = inotify_init() ppoll(&(0x7f0000000040)=[{r1, 0x1}], 0x1, &(0x7f00000001c0), 0x0, 0x0) syz_open_dev$vim2m(&(0x7f0000000a40), 0x9, 0x2) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) sendmsg$IEEE802154_LLSEC_LIST_SECLEVEL(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x0, 0x20, 0x70bd28, 0x25dfdbfb, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x44004}, 0x800) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r2, 0x400448ca, 0x0) bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6) write$bt_hci(r2, &(0x7f0000000080)=ANY=[], 0xc) r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'}) write$sndseq(r3, &(0x7f0000002200)=[{0x84, 0x77, 0x0, 0x0, @time={0x3, 0xee}, {0x0, 0x20}, {}, @raw32={[0x2]}}, {0x0, 0x0, 0x0, 0x83, @time={0x0, 0x80007}, {}, {}, @note={0x81}}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x0, 0x0}}], 0x54) r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xa8c01) write$sndseq(r4, &(0x7f0000000080)=[{0x1e, 0x0, 0x0, 0xfd, @time, {}, {}, @result}], 0x1c) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) openat$vnet(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VHOST_SET_VRING_ERR(0xffffffffffffffff, 0x4008af22, 0x0) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r5}, 0x10) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000400)={0xffffffffffffffff, 0x0, 0x0}, 0x1c) bpf$MAP_CREATE(0x0, 0x0, 0x0) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r6, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) write(r6, &(0x7f0000000340)="23000000010006", 0x7) 689.212314ms ago: executing program 3 (id=1368): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r2, 0x107, 0x14, &(0x7f0000000180)=0x80000000, 0x4) socket$nl_audit(0x10, 0x3, 0x9) r3 = socket$inet_tcp(0x2, 0x1, 0x0) r4 = openat$sndseq(0xffffff9c, &(0x7f0000000180), 0x40) r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r5, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r4, 0xc0a45320, &(0x7f00000000c0)={{0x80, 0x4}, 'port1\x00', 0x786520dbf34c80fe, 0x20a03, 0x20000003, 0x0, 0x0, 0xc, 0x400, 0x0, 0x0, 0x87}) close_range(r3, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macsec0\x00', 0x0}) sendto$packet(r2, &(0x7f0000000080)="ff020002004788ba960000000000", 0xe, 0x0, &(0x7f0000000140)={0x11, 0x0, r6, 0x1, 0x6, 0x6, @multicast}, 0x14) r7 = getuid() sendmsg$nl_xfrm(r0, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)=@newsa={0x18c, 0x10, 0x2, 0x70bd26, 0x25dfdbfe, {{@in=@multicast1, @in=@local, 0x4e22, 0x0, 0x4e24, 0x4, 0x2, 0xa0, 0x0, 0x3b, r6, r7}, {@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x4d5, 0x3c}, @in=@empty, {0x80, 0x3, 0x9, 0x12, 0xb9, 0x4, 0x654, 0x6}, {0x1, 0xa003, 0x200, 0x5}, {0xd9, 0x7, 0xb}, 0x70bd26, 0x3502, 0xa, 0x2, 0x1, 0xa9}, [@proto={0x5, 0x19, 0x6c}, @algo_auth={0x96, 0x1, {{'sha3-224\x00'}, 0x270, "2d9c7a56c77f6003308473e17c854f542aaf3ee389ed8d6db2383d0ee5de893321e63b3878bc2d960e578369fd1c8f65631a4113e919392d0a6bc48c388155227732056751047db3c4a228907190"}}]}, 0x18c}, 0x1, 0x0, 0x0, 0x4000}, 0x800) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a300000000050000000060a010400000000000000000100000008000b400000000028000480240001800b000100736f636b65740000140002800800024000000015080001400000000e0900010073797a30"], 0xc4}}, 0x0) ioctl$BTRFS_IOC_INO_PATHS(r8, 0xc0389423, &(0x7f0000000300)={0x99c, 0x10, [0x100000000, 0x4, 0x400, 0x9], &(0x7f00000002c0)=[0x0, 0x0]}) r9 = socket$inet_smc(0x2b, 0x1, 0x0) getsockopt$ARPT_SO_GET_ENTRIES(r9, 0x6, 0x2a, 0x0, &(0x7f0000000000)) 629.646138ms ago: executing program 3 (id=1369): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000030000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x500d}, 0x4c) 629.346688ms ago: executing program 3 (id=1370): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000d0000000b70000000000000095000000000000003fba6a7d36d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f010c5077da80fb982c1e9400c603146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef7f9606056fe5c34665c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763288d01aa27ae8b09e13e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468082089b302d7bff8f06f7f918d65eae391cb41336023cdcedb5e0125ebbccbddcf10cb2364149215108355ee570f8078be5cab389cd65e7133719acd97cfa107d40224edc5465a932b77e74e712a0d42bc6099ad23000000803a90bce6dc3a13871765df961c2ed3b1006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f40cab87b1586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9f081d6a08000000ea2b1a52496dfcaf99431412fd13f4cec49669e443dcb924cfe5f3185418d60532be9c4d2ec7c32f2095e63c8cdc28f74d043ef8dba2f23b01a9ae44cf945b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142bdda5e6c5d50b83bae616b5054d1e7c13b1355d6f4a8245eaa4997da9c77af40000000000000005f58351d599e9b61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a41326eea31ae4e0f75057df3c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57010000009700ce0b4b8bc22941330000000000000000000300000000000000000000000010008bc0d955f2a83366b99711e6e8861c46495ba585a4b2d02edc3e28dd279a896249ed85b9806f0b6c4a000000002b43dcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad883ef07000000000000006da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff72943327d830689da6b53ffffffff631c7771429d1200000033ed846197fcff5e1c7c3d1d6e3a52872baef9753fffffffffffffe09fec2271fe010cd7bb2366fde4a59429738fcc917a57f94f6c453cea623cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcd41df54cdbd9d10a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce978275d5bc8955778567bc79e13b78249788f11f708008b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822aea68a660e717a04becff0f719107000000000000002d7e927123d8ecbbc55bf404571be54c72d978cf2804107f0238abccd32368e57040906df0042e19000000000000002c06f815312e086dd022c074eb8a322fb0bf47c0a8d154b405a07feaf3dd95f6ef44cd1fe582786105c7df8be4877084d4173731efe895efc71f665c4d75cf2458e35d2c9062ece84c99e061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb2b5e518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad055e4af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457ac0eaaa99bf0bdc14ae358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3fdf242b985bf16b99c9cc0ad1857036f1a985f369191ae954febb3df464bfe0f773ee9afe72f32a2befb89d3777399f5874c553a2ebe9061fe86e669642e09c0e5a3bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f8a9778cb26e22a2a998de5eaeadea10d3cfb41b92ecbb422a40da8daccf080842a486721737390cbf3a74cb2003efb9a101b51ab63e9600040000b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defd83871c5191e10096e7e60fc3541a2c905a1a95e9571bf38aebd15172f94e3245c582909e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f90100000000000000abf9010000007740890200d627e87306703be8672dc84eeadba6a41891c170d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d10a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7ef8c08acaf30235b920500d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69b93e9960ff5f74562adae283d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff85000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a31c72ad53bc19faa5401120000793ac48c1b539c75ab40743b00020000a1f68df75cf43f8ecc8d3726602111b40e761fd210a1920382f14d12ca3c3431ee97471c781d0d1280fb00818654a53b6df4b2c97cc1c98d85fda8f80fe908b65550b4412331d73062197655b7f0469250a5989cef0e10773920ed3ccee42d2c3eb80159da5c002511e6eb93842054cfce2ac306cb6e472db3fd67a49b6855a694a8d359add43907003223a47a7fae4f3748d5a432825bc40a03aaef1c8488d86dc211dd2a3ba71e0f45492ef1f8b65ccb3dcd251a61b152d02c29ca0a3328fa7753a5cddea1acaae55ae8263fb284b7a6ab2a8826c1b948207c498cf4824ab1ea3225a53072423b907c6682f8999e0311da5b8378bc841e1787e3a8128dda381a26cb2b365702ff8a27831375b2ddaa2f56e21169f7ca4fd9655ccd4a584acd244e965a0afedaff7c415ff682a4044b3381cc2df28278c9a6824c52048a7cfabda294925cc0956bffa8e950ff5e49f41ae600d830207bf728cd9807933c3c16d80bbea611a18becc2dc38ca0a6f5740f340b76edcd100fcffff007231dcef58c7b88b5aeedaf9626cb51ce1737c10ab37d4f98a934b0f900e0eb639878a1200629f5503cf679154d27681d7a3744cbcd42af59407c9c8e39c5271868917954e604352ba26171d004f1cb2976fab3fa19c7d3ef9678bff79f5155524f061378f94fb453786c3a6f78b10d383b49e31d1568bd43ee34ce6e6be235aa6207285665c2fba773671da41959f51610963b48930658e2d6125a26085001345b0473240b7e5e91811312c43663e76f711c6529ecdec75c7ea1cf0f8f8fff40247d59bbde2ebb8659197e0f37a71be1b12a182ed7de3acba28561a04b807f7a4647e2ea6d8fb92541d07c3d5e4ba077d3cad9f8ba1919592014c00c8eccb2ca5d48ba7b1c3fb185a4bb79700cf51f818b0c701c8de47d12281a67bdaf4b0c50bee9e8f5936250df2e15c1172e7ea6619f7db330700d1e9e42a035e6fd532f61fbfed9c4a7124a1e38eee50a6bbcd1d4e3f68c3f27dd9a70f1a7c6046237ddfb0b26e197322226367d998010458cd4df10af249ce717f6f45e5176e0ddae3054d7289d4e13ab0912703ee39ce264572b89194fdf7acecc35cf8309d4b680a08eed367dad855fce210f1a7c7222dd360eafb4bef7d58bf83362930af6e3f3f851abdc0003bdf9401b533019e90feb069189100007a82df8d9b5f44ebf9355e7b1b01c9470608d4f306d21004730396a4d6c6d46e1ffac97aa93c36123532a36186575266be4981c847160079421d0137801e553069f8d025c40f287378810defc7f2ed4e15f6af17b21153394f8bcfa6a23a77c8d61c9bbc127a57b8d631f36558d9093dee08bc53d97a8003363421738650a22c8fd87b13026799caf58e59951b125e7f161ca34e2c0dd65a23d01a3cb191e743de07247c7f993cf01166fa2ac1ba02f60550e63a7f50422e478c6b5d87f9bd0567a279a9d85a380db25c43bd0529ad783b9d64aaac1b793afb44b7126e17d2b7c0d6be650de7eeef3f3605af344015d03c3e7819145cb9fe1978c98bf9cf10773db59505ae33708c728844c872dfd2cb0b29008000000000000005ca18cb72f0944d0e4fea0a0abd0285bdaf1b000000c089d640c2facb0d1e6243873ac4b1e1068c45c715b68effb7d58d1f9e726dbf6bd910ca4ce0e075658ede42192cf393a50dcc197b03402fed75083628e5dd38213d353b9049e71f037064b05e73ec00c710f1ffc5737d397d555d1cf8859cc030ea8dc3c6a5b3b6fa1c81707479db1833d593a271253aa11efd936b74784f2fc286814848e92d8ee541bc179813297a0a4cc3c8f80c28701185bea091f32475e859479b734727afc110e1abcff460172fd1b42e3c0e2a4bf94a060069000010000087c7572a1e7596f89e5c3d5e70640c90815f77b7b13d0000000085a1e1e84900000000000000000000000000b422fc160a458ee5a91a2471e6e56fdabec6c73ce8983fc68f0b7cdcdde632e6f54a07620e8aa116ce9e84fc3cd5e8288a333dcebb233da9186796995ba69487d8f77d2f8800f02d690fc70a08b231cad1bdcf3740a95d4dd1cfe0f417f275493cf33b19ffff93dfdaf7eb00b8ad87cdf7c21bab5af8e2bac54ee5597e6508c1158124a538c36f9bb11fea7d8b8c7e954b1bc7811654a6636b33f271d0923e9ecd1b724b8feffadfc23c07000000f0785fb722f346d6a5dffe1884d4d0cd8f00000092c85ed44db68ab800001f00000000406e6ed9b219ad07125381087298e75965d1cc5932ddf9e66351b9332a34bee3e3d562c914c629933f0b8724cf680889ade72558d191d9890c69a718f9018586c5131c8dc8e0379bafda1a0fd2997ff115215ce23dca8db7236c1554cdaaadcce2f31834c1bd1908d8e1b361034db56be76acb7654a195bc3e98df3a5dffd5b0783883ef7da3433110e37f7c7cb7f3800de7f99abf910d6949e062747a9c87dcfcc716d6a9c0ec53b9cffe3cfd1df69a76f373d7f997edb9b80bdea1a99c2a6fbb25e035deadaadd7917ebfedd6304a19491769476208684e343f86b4d55a7dbbb07283cb1e35a138d24ebc5b4f8e35a82d3a7f84cb1e02a5a92b53567088be0b1ca023ccd518c0e0715b1c8760801a419ebd2e26440ff7493019bdb655cc88d72d6d7b6bca5a2e19b63ec52fce43d8c53a8031e64026e0d36b6401064c49a729f11ab377f7132c5232bb80195dd5d43d29646a9378eea0761b7ed9d2172e33ed87c7413c843b180cc00000000006bedf2ed716ca43a941119b96d82b26d9061de240d85ec2cfa462bd52104489bb7a7548d7cc53627031e909c69cb824233975a1ea645de63522407c3a240a37e946f30ebf075ea97846a0a8d2286f3f446b1b99ab83a12ddf8a1c06294eadc3eb3e339591afd5c00000000000000000000000000000000000000000000000000579dad8347a3d16976bb7483840b32db0158fb6c809349333325a7866ca5d3133e33ef1a183cefdb65a79fa71800988c8445029e024822dbcfcab49c3a0aec9bd43e6e14078b260700d849a2aa14c9b593f6dcb1de334c065ecfd65031606e55949c185bcda9fde4f9b46a76b8a24bbcd31b22373eb0473248150cd179405ee1af1183b0c0ce3483dc1d9bf732b0751b78fb211d6706b55960c6431afbc02b3c7e08086573939290bb9e590a3875f02a828b07f1dc7df9c8e5da22dfb9dacbf5529e4e994128d835f85465173ea7bbcc519a0c9798ce8b1b07567e3e07169c8c3e4da8bf725c050000000000000000000000000000000000000000004775abdf0c62728eb55a9e2849a1ce05bed60dfe4cc9fa43f9684297c02382c0a35829be7a86305792a9d2e80ca9e8fc50f31f6e0fa810303da03d8b74b42c1ebaf16bb343256405a3a07229a54de09a97b269cd29e8b2f0b0d46c51a6a93eec37f4bc6e29a8e19120ae050ab682662e9b2cc3263a4aba62b63ca9123a53c0f4bf3c4463b8144c89bf058a0af0ae9fc2b7cdfc4817703e267cddc193637d7fd97646090da37093657643daae3840c7f5c10f93524f7ae4791ec6e9d9722e5f670ccb358e051a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x5a, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x3}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) r2 = socket$nl_generic(0x10, 0x3, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(0xffffffffffffffff, 0x0, 0x24008011) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbefe, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) ppoll(&(0x7f00000001c0)=[{0xffffffffffffffff, 0x40}], 0x1, 0x0, 0x0, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0xb, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0), 0x42, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x10) mount$fuse(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount$afs(&(0x7f00000002c0)=ANY=[@ANYBLOB="237379123e372002869f4f2d7a313a7379"], &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) bpf$BPF_PROG_DETACH(0x1c, &(0x7f00000003c0)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="2f0000000000000000000000100a163db9370cae87f39057a27f808377df6ff79d0e5aab64aa635b73e580fb3d75b77ef6a0816d3cf28b34f9775e701978aa0fac5a64dacd2a356b289b3dd86c593d92f3820d3113bd5a654b8b7ad8a914267e91dc8c1b05d0343995014b2b111dd1130d6b40132a341983446728ccca493949ebdc19341302446ab811f0f46dc8e55acb5c0809fedbc3d2f412c6bf2218be2145573f0ba50cfe3680fe5b9e8c6a7eb9f0f0d3a59627fab0a513c329fbd599e1f5c7afc966197b63d0224b87ef1b9445ae42ecd629aad1c1489906ddc0", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r6) sendmsg$NL80211_CMD_JOIN_IBSS(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="2c005898c802a16526e652b299a3bc85daec80e40749a12beb4e155d1daf82740c99872bdc03ac50b54ced54246f92a768a64fe8d85c4f28401d9abcfd536052a20d33f4b347efbfbccce3e540066fc0017c1531e4f40bd4843251ed1fb76099eb302df4d97243e8a15d1f50df6e0d51a1ea464873e57a3c8389f5b045cda19c1a6583620568219d4665247e454278dc481b1b1844eb17f4cdd83526e6af9197c31de44b951e9577d8458b78cbe4", @ANYRES16=r8, @ANYBLOB="010100000000000000002b00000008000300", @ANYRES32=r7, @ANYBLOB="0400080104003400080026006c090000"], 0x2c}}, 0x0) sendmsg$NL80211_CMD_GET_STATION(r2, &(0x7f0000000680)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000640)={&(0x7f00000006c0)=ANY=[@ANYBLOB="680100003cf273fe494c4ad8d6611960ff", @ANYRES16=r8, @ANYBLOB="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"], 0x168}, 0x1, 0x0, 0x0, 0x40408c0}, 0x40001) 199.976691ms ago: executing program 1 (id=1371): syz_emit_ethernet(0xfffffdf1, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x0) syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), r1) syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1}) io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0) r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00004000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB, @ANYRESDEC=0x0, @ANYBLOB=',\x00']) read$FUSE(r5, &(0x7f0000006840)={0x2020, 0x0, 0x0, 0x0}, 0x2020) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000007c0), &(0x7f0000000800)=0xc) lstat(&(0x7f00000009c0)='./file0\x00', &(0x7f0000000a00)) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$sock_timeval(r7, 0x1, 0x43, &(0x7f0000002040)={0x0, 0xea60}, 0x8) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x3, {0x5, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, {0x0, 0x2000000000, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x4, 0x2000, 0x7, r6, 0x0, 0xf0ee, 0xffffffff}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) socket$nl_route(0x10, 0x3, 0x0) socket$inet6_mptcp(0xa, 0x1, 0x106) r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000140), r1) sendmsg$MPTCP_PM_CMD_ANNOUNCE(r1, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r8, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20044001}, 0x4004811) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x10b, 0x3, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, &(0x7f0000000200)={0x3ff, 0xfffffffffffffffe, 0x0, 0x0, 0x400000100, 0x0, 0x7fffffff, 0x5}, 0x0, 0x0) 382.475µs ago: executing program 0 (id=1372): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="02142000110000000040000000000000030005000000000002000000ffffffff0020000000000000080012000000010000000000000000000600000000000027b20e97a6a9ecae000000ee00000000000000000000000000fc020000000000000000000000000000030006000000000002000000e00000010000000000000000010018"], 0x88}}, 0x0) 142.485µs ago: executing program 0 (id=1373): ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) syz_emit_ethernet(0x52, &(0x7f00000003c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x1c, 0x2c, 0x0, @remote, @local, {[@routing={0x33, 0x0, 0x0, 0xe}], {{0x0, 0x4e23, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffffffffffffff86dd6060626000102c00fe8000000000000000000000000000bbfe8000fffffffffffffff500000000aa11000301"], 0x0) 0s ago: executing program 0 (id=1374): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"]) mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe) mknod$loop(&(0x7f0000000080)='./file0/bus\x00', 0x6210, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.kill\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) ftruncate(r0, 0xc17c) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0) r2 = eventfd(0x8040001) ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2) ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f00000001c0)) ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f00000005c0)={0x1, r2}) ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f00000003c0)={0x0, 0x0, 0x0, &(0x7f0000000080)=""/62, 0x0}) r3 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'syz_tun\x00'}) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0) write$binfmt_aout(r4, &(0x7f00000010c0)=ANY=[], 0x1a3) write$binfmt_misc(r4, &(0x7f0000000040)="0db723740d6678af6874bb74fb7875012c7de0568a8315a6736b7635e00126b713064871082ef63a291542a0bbb266ec7c61a508716f1b1ea80046ef", 0xe5c) r5 = syz_open_dev$loop(&(0x7f0000000000), 0x8, 0x2180) ioctl$LOOP_CONFIGURE(r5, 0x4c0a, &(0x7f00000002c0)={r4, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00"}}) ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/73, &(0x7f0000000880)=""/72}) ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1) write$P9_RREAD(r0, 0x0, 0xb) kernel console output (not intermixed with test programs): rom eth3 [ 114.602907][ T7737] syzkaller0: entered promiscuous mode [ 114.604575][ T7737] syzkaller0: entered allmulticast mode [ 114.620004][ T7681] 8021q: adding VLAN 0 to HW filter on device bond0 [ 114.625863][ T7681] 8021q: adding VLAN 0 to HW filter on device team0 [ 114.639635][ T76] bridge0: port 1(bridge_slave_0) entered blocking state [ 114.641775][ T76] bridge0: port 1(bridge_slave_0) entered forwarding state [ 114.648425][ T76] bridge0: port 2(bridge_slave_1) entered blocking state [ 114.650584][ T76] bridge0: port 2(bridge_slave_1) entered forwarding state [ 114.754280][ T7681] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 114.850641][ T7681] veth0_vlan: entered promiscuous mode [ 114.854557][ T7681] veth1_vlan: entered promiscuous mode [ 114.865051][ T7681] veth0_macvtap: entered promiscuous mode [ 114.868021][ T7681] veth1_macvtap: entered promiscuous mode [ 114.875325][ T7681] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 114.879018][ T7681] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.882717][ T7681] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 114.885673][ T7681] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.888454][ T7681] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 114.891773][ T7681] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.894539][ T7681] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 114.897454][ T7681] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.902237][ T7681] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 114.907794][ T7681] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 114.911092][ T7681] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.913866][ T7681] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 114.916908][ T7681] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.919659][ T7681] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 114.922722][ T7681] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.925527][ T7681] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 114.928440][ T7681] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.932427][ T7681] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 114.936374][ T7681] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.938884][ T7681] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.941710][ T7681] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.944168][ T7681] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.967455][ T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.969754][ T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.980892][ T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.983297][ T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 115.173529][ T7767] netlink: 8 bytes leftover after parsing attributes in process `syz.0.468'. [ 115.283036][ T7766] netlink: 8 bytes leftover after parsing attributes in process `syz.4.467'. [ 115.285690][ T7766] netlink: 8 bytes leftover after parsing attributes in process `syz.4.467'. [ 115.892910][ T5950] Bluetooth: hci3: command tx timeout [ 116.029974][ T7769] bridge0: port 2(bridge_slave_1) entered disabled state [ 116.175551][ T7773] input: syz1 as /devices/virtual/input/input7 [ 116.286673][ T7785] netlink: 20 bytes leftover after parsing attributes in process `syz.4.472'. [ 116.291193][ T7785] No control pipe specified [ 116.309291][ T7777] netlink: 4 bytes leftover after parsing attributes in process `syz.0.469'. [ 116.829857][ T7801] FAULT_INJECTION: forcing a failure. [ 116.829857][ T7801] name failslab, interval 1, probability 0, space 0, times 0 [ 116.833620][ T7801] CPU: 2 UID: 0 PID: 7801 Comm: syz.1.476 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 116.836596][ T7801] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 116.839647][ T7801] Call Trace: [ 116.840598][ T7801] [ 116.841448][ T7801] dump_stack_lvl+0x16c/0x1f0 [ 116.842817][ T7801] should_fail_ex+0x497/0x5b0 [ 116.844150][ T7801] ? fs_reclaim_acquire+0xae/0x150 [ 116.845606][ T7801] should_failslab+0xc2/0x120 [ 116.846921][ T7801] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 116.848544][ T7801] ? __lock_acquire+0x15a9/0x3c40 [ 116.849948][ T7801] ? __alloc_skb+0x2b3/0x380 [ 116.851249][ T7801] __alloc_skb+0x2b3/0x380 [ 116.852498][ T7801] ? __pfx___alloc_skb+0x10/0x10 [ 116.853917][ T7801] netlink_alloc_large_skb+0x69/0x130 [ 116.855430][ T7801] netlink_sendmsg+0x689/0xd70 [ 116.856792][ T7801] ? __pfx_netlink_sendmsg+0x10/0x10 [ 116.858319][ T7801] ____sys_sendmsg+0x9ae/0xb40 [ 116.859716][ T7801] ? __pfx_____sys_sendmsg+0x10/0x10 [ 116.861177][ T7801] ? get_compat_msghdr+0x11b/0x170 [ 116.862619][ T7801] ___sys_sendmsg+0x135/0x1e0 [ 116.863939][ T7801] ? __pfx____sys_sendmsg+0x10/0x10 [ 116.865397][ T7801] ? __pfx_lock_release+0x10/0x10 [ 116.866912][ T7801] ? trace_lock_acquire+0x14e/0x1f0 [ 116.868559][ T7801] ? __fget_files+0x206/0x3a0 [ 116.870077][ T7801] __sys_sendmsg+0x16e/0x220 [ 116.871485][ T7801] ? __pfx___sys_sendmsg+0x10/0x10 [ 116.873400][ T7801] __do_fast_syscall_32+0x73/0x120 [ 116.874896][ T7801] do_fast_syscall_32+0x32/0x80 [ 116.876322][ T7801] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 116.878158][ T7801] RIP: 0023:0xf7ff0579 [ 116.879359][ T7801] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 116.884897][ T7801] RSP: 002b:00000000f512555c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 116.887298][ T7801] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000340 [ 116.889571][ T7801] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 116.891827][ T7801] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 116.894102][ T7801] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 116.896410][ T7801] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 116.898702][ T7801] [ 117.464826][ T7807] syzkaller0: entered promiscuous mode [ 117.466516][ T7807] syzkaller0: entered allmulticast mode [ 117.954150][ T7828] netlink: 'syz.4.485': attribute type 1 has an invalid length. [ 117.959990][ T5950] Bluetooth: hci3: command tx timeout [ 117.990839][ T7817] netlink: 8 bytes leftover after parsing attributes in process `syz.0.480'. [ 117.994737][ T7817] netlink: 8 bytes leftover after parsing attributes in process `syz.0.480'. [ 118.003716][ T7831] netlink: 8 bytes leftover after parsing attributes in process `syz.4.486'. [ 118.009600][ T7831] gretap0: entered promiscuous mode [ 118.095431][ T7834] input: syz0 as /devices/virtual/input/input8 [ 119.303091][ T7859] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 119.305769][ T7859] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 119.309369][ T7859] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 119.397931][ T7872] netlink: 8 bytes leftover after parsing attributes in process `syz.0.498'. [ 119.402805][ T7872] netlink: 8 bytes leftover after parsing attributes in process `syz.0.498'. [ 119.685242][ T7878] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 119.687814][ T7878] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 119.690871][ T7878] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 119.693559][ T7878] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 119.696133][ T7878] geneve2: entered promiscuous mode [ 119.697650][ T7878] geneve2: entered allmulticast mode [ 119.725122][ T7881] netlink: 16 bytes leftover after parsing attributes in process `syz.0.501'. [ 120.602896][ T7901] syzkaller0: entered promiscuous mode [ 120.604565][ T7901] syzkaller0: entered allmulticast mode [ 120.900011][ T7904] SET target dimension over the limit! [ 121.018645][ T7911] vlan1: entered promiscuous mode [ 121.022974][ T7912] netlink: 8 bytes leftover after parsing attributes in process `syz.0.509'. [ 121.025801][ T7912] netlink: 8 bytes leftover after parsing attributes in process `syz.0.509'. [ 121.225225][ T7916] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 121.469588][ T7932] netlink: 16 bytes leftover after parsing attributes in process `syz.3.517'. [ 122.279038][ T7935] netlink: 16 bytes leftover after parsing attributes in process `syz.4.518'. [ 122.289317][ T39] audit: type=1804 audit(1736255870.861:63): pid=7935 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.518" name="/newroot/18/bus/bus" dev="overlay" ino=117 res=1 errno=0 [ 122.292041][ T7935] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 122.298160][ T7935] IPv6: NLM_F_CREATE should be set when creating new route [ 122.300330][ T7935] IPv6: NLM_F_CREATE should be set when creating new route [ 122.521613][ T7946] netlink: 8 bytes leftover after parsing attributes in process `syz.0.522'. [ 122.608490][ T7949] netlink: 8 bytes leftover after parsing attributes in process `syz.4.521'. [ 122.611653][ T7949] netlink: 8 bytes leftover after parsing attributes in process `syz.4.521'. [ 122.648330][ T7955] syzkaller1: entered promiscuous mode [ 122.650068][ T7955] syzkaller1: entered allmulticast mode [ 122.652761][ T7955] random: crng reseeded on system resumption [ 122.754870][ T7952] overlayfs: failed to resolve './file1': -2 [ 122.780404][ T73] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 122.940655][ T73] usb 6-1: Using ep0 maxpacket: 32 [ 123.029368][ T73] usb 6-1: config index 0 descriptor too short (expected 29220, got 36) [ 123.031969][ T73] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 123.034377][ T73] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 123.036917][ T73] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 123.040299][ T73] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 123.043170][ T73] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 123.046914][ T73] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 123.049592][ T73] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 123.055191][ T73] usb 6-1: config 0 descriptor?? [ 123.182383][ T5950] Bluetooth: hci3: command 0x0419 tx timeout [ 123.534070][ T73] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 123.588385][ T7971] syzkaller0: entered promiscuous mode [ 123.590129][ T7971] syzkaller0: entered allmulticast mode [ 123.846863][ T7981] No control pipe specified [ 124.201912][ T7986] program syz.3.531 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 124.313256][ T39] audit: type=1800 audit(1736255872.881:64): pid=7986 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.531" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 125.242346][ T5950] Bluetooth: hci3: command 0x0419 tx timeout [ 125.390461][ T7994] syzkaller0: entered promiscuous mode [ 125.392075][ T7994] syzkaller0: entered allmulticast mode [ 125.481673][ T73] usb 6-1: USB disconnect, device number 4 [ 125.486853][ T73] usblp0: removed [ 125.655802][ T8017] netlink: 16 bytes leftover after parsing attributes in process `syz.1.539'. [ 126.572255][ T8026] netlink: 8 bytes leftover after parsing attributes in process `syz.4.540'. [ 126.574863][ T8026] netlink: 8 bytes leftover after parsing attributes in process `syz.4.540'. [ 126.834845][ T8029] netlink: 'syz.1.541': attribute type 3 has an invalid length. [ 127.330095][ T64] Bluetooth: hci3: command 0x0419 tx timeout [ 127.580087][ T8045] syzkaller0: entered promiscuous mode [ 127.581756][ T8045] syzkaller0: entered allmulticast mode [ 127.940427][ T5985] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 128.012659][ T8054] siw: device registration error -23 [ 128.164388][ T8056] netlink: 16 bytes leftover after parsing attributes in process `syz.4.549'. [ 128.219956][ T5985] usb 6-1: Using ep0 maxpacket: 32 [ 128.256327][ T5985] usb 6-1: config index 0 descriptor too short (expected 29220, got 36) [ 128.258793][ T5985] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 128.261537][ T5985] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 128.264152][ T5985] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 128.266932][ T5985] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 128.269659][ T5985] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 128.273441][ T5985] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 128.275950][ T5985] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 128.279013][ T5985] usb 6-1: config 0 descriptor?? [ 128.562236][ T5985] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 5 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 128.573271][ C3] ata1: illegal qc_active transition (00000000->02000000) [ 128.893623][ T1103] ata1: SATA link up 1.5 Gbps (SStatus 113 SControl 300) [ 128.902467][ T1103] ata1.00: configured for UDMA/100 [ 129.400000][ T64] Bluetooth: hci3: command 0x0419 tx timeout [ 129.444355][ T8070] No control pipe specified [ 129.666154][ T8076] FAULT_INJECTION: forcing a failure. [ 129.666154][ T8076] name failslab, interval 1, probability 0, space 0, times 0 [ 129.669753][ T8076] CPU: 2 UID: 0 PID: 8076 Comm: syz.4.553 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 129.672823][ T8076] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 129.675859][ T8076] Call Trace: [ 129.676817][ T8076] [ 129.677647][ T8076] dump_stack_lvl+0x16c/0x1f0 [ 129.679020][ T8076] should_fail_ex+0x497/0x5b0 [ 129.680361][ T8076] ? fs_reclaim_acquire+0xae/0x150 [ 129.681817][ T8076] should_failslab+0xc2/0x120 [ 129.683231][ T8076] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 129.684755][ T8076] ? lockdep_init_map_type+0x16d/0x7d0 [ 129.686371][ T8076] ? security_inode_alloc+0x3b/0x2b0 [ 129.687900][ T8076] security_inode_alloc+0x3b/0x2b0 [ 129.689352][ T8076] inode_init_always_gfp+0xce4/0x1030 [ 129.690851][ T8076] ? __pfx_fuse_inode_set+0x10/0x10 [ 129.692319][ T8076] alloc_inode+0x82/0x230 [ 129.693582][ T8076] iget5_locked+0x33b/0x3d0 [ 129.694858][ T8076] ? __pfx_fuse_inode_eq+0x10/0x10 [ 129.696290][ T8076] ? __pfx_fuse_inode_set+0x10/0x10 [ 129.697762][ T8076] ? __pfx_iget5_locked+0x10/0x10 [ 129.699176][ T8076] ? mark_held_locks+0x9f/0xe0 [ 129.700647][ T8076] ? kasan_quarantine_put+0x10a/0x240 [ 129.702304][ T8076] ? lockdep_hardirqs_on+0x7c/0x110 [ 129.703781][ T8076] fuse_iget+0x162/0x8c0 [ 129.704981][ T8076] ? __pfx_fuse_iget+0x10/0x10 [ 129.706299][ T8076] ? __fuse_simple_request+0x459/0xcb0 [ 129.707816][ T8076] fuse_lookup_name+0x4b8/0x790 [ 129.709178][ T8076] ? __pfx_fuse_lookup_name+0x10/0x10 [ 129.710634][ T8076] ? __pfx___mutex_lock+0x10/0x10 [ 129.712097][ T8076] ? lock_acquire.part.0+0x11b/0x380 [ 129.713573][ T8076] fuse_lookup+0x1b1/0x430 [ 129.714794][ T8076] ? __pfx_fuse_lookup+0x10/0x10 [ 129.716168][ T8076] ? d_alloc_parallel+0x6b8/0x12b0 [ 129.717607][ T8076] ? __pfx_d_alloc_parallel+0x10/0x10 [ 129.719190][ T8076] fuse_atomic_open+0x2cd/0x470 [ 129.720609][ T8076] ? __pfx_fuse_atomic_open+0x10/0x10 [ 129.722474][ T8076] lookup_open.isra.0+0xc9f/0x14c0 [ 129.723970][ T8076] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 129.725568][ T8076] ? path_openat+0x88a/0x2d60 [ 129.726934][ T8076] ? lookup_fast+0x155/0x540 [ 129.728273][ T8076] path_openat+0x904/0x2d60 [ 129.729606][ T8076] ? __pfx_path_openat+0x10/0x10 [ 129.731046][ T8076] ? __pfx___lock_acquire+0x10/0x10 [ 129.732563][ T8076] ? lock_acquire.part.0+0x11b/0x380 [ 129.734088][ T8076] ? find_held_lock+0x2d/0x110 [ 129.735465][ T8076] do_filp_open+0x20c/0x470 [ 129.736790][ T8076] ? __pfx_do_filp_open+0x10/0x10 [ 129.738235][ T8076] ? find_held_lock+0x2d/0x110 [ 129.739633][ T8076] ? _raw_spin_unlock+0x28/0x50 [ 129.741048][ T8076] ? alloc_fd+0x41f/0x760 [ 129.742316][ T8076] do_sys_openat2+0x17a/0x1e0 [ 129.743710][ T8076] ? __pfx_do_sys_openat2+0x10/0x10 [ 129.745222][ T8076] ? __fget_files+0x206/0x3a0 [ 129.746586][ T8076] __ia32_compat_sys_open+0x147/0x1e0 [ 129.748154][ T8076] ? __pfx___ia32_compat_sys_open+0x10/0x10 [ 129.749879][ T8076] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 129.751837][ T8076] __do_fast_syscall_32+0x73/0x120 [ 129.753345][ T8076] do_fast_syscall_32+0x32/0x80 [ 129.754758][ T8076] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 129.756598][ T8076] RIP: 0023:0xf709e579 [ 129.757781][ T8076] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 129.763286][ T8076] RSP: 002b:00000000f506f55c EFLAGS: 00000296 ORIG_RAX: 0000000000000005 [ 129.765673][ T8076] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000000000 [ 129.767927][ T8076] RDX: 00000000000002e4 RSI: 0000000000000000 RDI: 0000000000000000 [ 129.770173][ T8076] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 129.772924][ T8076] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 129.775475][ T8076] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 129.777760][ T8076] [ 129.779838][ T6053] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 129.894555][ T8082] netlink: 12 bytes leftover after parsing attributes in process `syz.0.556'. [ 129.931454][ T8085] input: syz0 as /devices/virtual/input/input9 [ 129.940841][ T6053] usb 8-1: Using ep0 maxpacket: 8 [ 129.947043][ T6053] usb 8-1: config index 0 descriptor too short (expected 301, got 45) [ 129.949334][ T6053] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 129.952893][ T6053] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 129.955663][ T6053] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 129.959315][ T6053] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 129.963952][ T6053] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 129.966657][ T6053] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 130.047196][ T8088] netlink: 76 bytes leftover after parsing attributes in process `syz.0.558'. [ 130.175984][ T6053] usb 8-1: GET_CAPABILITIES returned 0 [ 130.177570][ T6053] usbtmc 8-1:16.0: can't read capabilities [ 130.293915][ T73] usb 8-1: USB disconnect, device number 4 [ 130.316958][ T8096] netlink: 16 bytes leftover after parsing attributes in process `syz.3.560'. [ 130.903371][ T1327] usb 6-1: USB disconnect, device number 5 [ 130.906054][ T1327] usblp0: removed [ 130.909339][ T8102] No control pipe specified [ 131.480104][ T64] Bluetooth: hci3: command 0x0419 tx timeout [ 132.838392][ T8132] netlink: 8 bytes leftover after parsing attributes in process `syz.3.569'. [ 132.843246][ T8132] netlink: 8 bytes leftover after parsing attributes in process `syz.3.569'. [ 132.930836][ T8136] netlink: 16 bytes leftover after parsing attributes in process `syz.0.571'. [ 133.332593][ T8151] No control pipe specified [ 133.559988][ T64] Bluetooth: hci3: command 0x0419 tx timeout [ 133.610076][ T39] audit: type=1804 audit(1736255882.181:65): pid=8154 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.572" name="/newroot/159/file0/file0" dev="9p" ino=38535726 res=1 errno=0 [ 133.682747][ T8158] netlink: 4 bytes leftover after parsing attributes in process `syz.4.575'. [ 134.879772][ T8194] netlink: 4 bytes leftover after parsing attributes in process `syz.1.584'. [ 134.888779][ T8194] netlink: 4 bytes leftover after parsing attributes in process `syz.1.584'. [ 134.929461][ T8195] No control pipe specified [ 135.041978][ T8204] netlink: 16 bytes leftover after parsing attributes in process `syz.4.587'. [ 135.146166][ T8201] Dead loop on virtual device ipvlan1, fix it urgently! [ 135.946719][ T8201] syz.1.586 (8201) used greatest stack depth: 14088 bytes left [ 135.991448][ T8221] netlink: 16255 bytes leftover after parsing attributes in process `syz.4.591'. [ 136.100967][ T8223] netlink: 8 bytes leftover after parsing attributes in process `syz.4.592'. [ 136.275215][ T8230] FAULT_INJECTION: forcing a failure. [ 136.275215][ T8230] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 136.279204][ T8230] CPU: 3 UID: 0 PID: 8230 Comm: syz.3.593 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 136.282285][ T8230] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 136.285503][ T8230] Call Trace: [ 136.286496][ T8230] [ 136.287375][ T8230] dump_stack_lvl+0x16c/0x1f0 [ 136.288787][ T8230] should_fail_ex+0x497/0x5b0 [ 136.290185][ T8230] _copy_to_user+0x32/0xd0 [ 136.291511][ T8230] simple_read_from_buffer+0xd0/0x160 [ 136.293116][ T8230] proc_fail_nth_read+0x198/0x270 [ 136.294626][ T8230] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 136.296254][ T8230] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 136.297880][ T8230] vfs_read+0x1df/0xbe0 [ 136.299122][ T8230] ? __fget_files+0x1fc/0x3a0 [ 136.300506][ T8230] ? __pfx___mutex_lock+0x10/0x10 [ 136.302010][ T8230] ? __pfx_vfs_read+0x10/0x10 [ 136.303426][ T8230] ? __fget_files+0x206/0x3a0 [ 136.304876][ T8230] ksys_read+0x12b/0x250 [ 136.306142][ T8230] ? __pfx_ksys_read+0x10/0x10 [ 136.307572][ T8230] __do_fast_syscall_32+0x73/0x120 [ 136.309098][ T8230] do_fast_syscall_32+0x32/0x80 [ 136.310544][ T8230] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 136.312398][ T8230] RIP: 0023:0xf7f73579 [ 136.313633][ T8230] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 136.319245][ T8230] RSP: 002b:00000000f50c6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 136.321659][ T8230] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000f50c6620 [ 136.323972][ T8230] RDX: 000000000000000f RSI: 00000000f7403ff4 RDI: 0000000000000000 [ 136.326278][ T8230] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 136.328595][ T8230] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 136.330943][ T8230] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 136.333272][ T8230] [ 136.980203][ T8247] No control pipe specified [ 137.043134][ T8249] netlink: 4 bytes leftover after parsing attributes in process `syz.3.599'. [ 138.146259][ T8274] netlink: 'syz.0.605': attribute type 10 has an invalid length. [ 138.148660][ T8274] team0: left allmulticast mode [ 138.153523][ T8274] team_slave_0: left allmulticast mode [ 138.155355][ T8274] team_slave_1: left allmulticast mode [ 138.157050][ T8274] bridge0: port 3(team0) entered disabled state [ 138.390020][ T57] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 138.496171][ T8283] No control pipe specified [ 138.550107][ T57] usb 6-1: Using ep0 maxpacket: 8 [ 138.557272][ T57] usb 6-1: config 0 has no interfaces? [ 138.559646][ T57] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 138.563117][ T57] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 138.639420][ T57] usb 6-1: config 0 descriptor?? [ 138.792643][ T8291] netlink: 16 bytes leftover after parsing attributes in process `syz.4.611'. [ 138.943297][ T57] usb 6-1: USB disconnect, device number 6 [ 139.883346][ T8325] No control pipe specified [ 140.318471][ T8335] netlink: 16 bytes leftover after parsing attributes in process `syz.4.624'. [ 140.411557][ T8340] 9pnet_fd: Insufficient options for proto=fd [ 140.738884][ T8346] netlink: 'syz.1.627': attribute type 1 has an invalid length. [ 140.793649][ T8346] 8021q: adding VLAN 0 to HW filter on device bond2 [ 140.843742][ T8350] netlink: 8 bytes leftover after parsing attributes in process `syz.0.628'. [ 141.036296][ T8359] Dead loop on virtual device ipvlan1, fix it urgently! [ 141.279637][ T8369] No control pipe specified [ 141.403886][ T8373] openvswitch: netlink: Key 6 has unexpected len 17 expected 2 [ 141.836771][ T8359] syz.1.631 (8359) used greatest stack depth: 12896 bytes left [ 142.032801][ T8402] No control pipe specified [ 142.776144][ T8409] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 142.842454][ T39] audit: type=1804 audit(1736255891.421:66): pid=8422 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.645" name="/newroot/154/file1" dev="fuse" ino=1 res=1 errno=0 [ 142.851246][ T39] audit: type=1800 audit(1736255891.421:67): pid=8422 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.645" name="/" dev="fuse" ino=1 res=0 errno=0 [ 142.858304][ T39] audit: type=1804 audit(1736255891.421:68): pid=8417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.645" name="/newroot/154/file1" dev="fuse" ino=1 res=1 errno=0 [ 142.865931][ T39] audit: type=1804 audit(1736255891.421:69): pid=8417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.645" name="/newroot/154/file1" dev="fuse" ino=1 res=1 errno=0 [ 142.877465][ T39] audit: type=1800 audit(1736255891.421:70): pid=8417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.645" name="/" dev="fuse" ino=1 res=0 errno=0 [ 142.926379][ T8436] FAULT_INJECTION: forcing a failure. [ 142.926379][ T8436] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 142.930142][ T8436] CPU: 0 UID: 0 PID: 8436 Comm: syz.4.652 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 142.933740][ T8436] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 142.937791][ T8436] Call Trace: [ 142.939110][ T8436] [ 142.940261][ T8436] dump_stack_lvl+0x16c/0x1f0 [ 142.942122][ T8436] should_fail_ex+0x497/0x5b0 [ 142.943975][ T8436] _copy_from_iter+0x29b/0x1400 [ 142.945900][ T8436] ? trace_lock_acquire+0x14e/0x1f0 [ 142.947946][ T8436] ? __alloc_skb+0x200/0x380 [ 142.949314][ T8436] ? __pfx__copy_from_iter+0x10/0x10 [ 142.950869][ T8436] ? __virt_addr_valid+0x1a4/0x590 [ 142.952347][ T8436] ? __virt_addr_valid+0x5e/0x590 [ 142.953834][ T8436] ? __phys_addr_symbol+0x30/0x80 [ 142.955286][ T8436] ? __check_object_size+0x488/0x710 [ 142.956838][ T8436] netlink_sendmsg+0x813/0xd70 [ 142.958229][ T8436] ? __pfx_netlink_sendmsg+0x10/0x10 [ 142.959780][ T8436] ____sys_sendmsg+0x9ae/0xb40 [ 142.961366][ T8436] ? __pfx_____sys_sendmsg+0x10/0x10 [ 142.962894][ T8436] ? get_compat_msghdr+0x11b/0x170 [ 142.964376][ T8436] ___sys_sendmsg+0x135/0x1e0 [ 142.965764][ T8436] ? __pfx____sys_sendmsg+0x10/0x10 [ 142.967269][ T8436] ? __pfx_lock_release+0x10/0x10 [ 142.968732][ T8436] ? trace_lock_acquire+0x14e/0x1f0 [ 142.970241][ T8436] ? __fget_files+0x206/0x3a0 [ 142.971633][ T8436] __sys_sendmsg+0x16e/0x220 [ 142.973065][ T8436] ? __pfx___sys_sendmsg+0x10/0x10 [ 142.974559][ T8436] __do_fast_syscall_32+0x73/0x120 [ 142.976042][ T8436] do_fast_syscall_32+0x32/0x80 [ 142.977469][ T8436] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 142.979297][ T8436] RIP: 0023:0xf709e579 [ 142.980520][ T8436] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 142.986002][ T8436] RSP: 002b:00000000f509055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 142.988362][ T8436] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000280 [ 142.990676][ T8436] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 142.993838][ T8436] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 142.996618][ T8436] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 142.998884][ T8436] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 143.001196][ T8436] [ 144.003858][ T56] Dead loop on virtual device ipvlan1, fix it urgently! [ 144.039400][ T8464] ceph: No mds server is up or the cluster is laggy [ 144.171173][ T8469] syzkaller0: entered promiscuous mode [ 144.172800][ T8469] syzkaller0: entered allmulticast mode [ 144.508589][ T8474] No control pipe specified [ 144.533785][ T8477] netlink: 16 bytes leftover after parsing attributes in process `syz.4.663'. [ 144.760083][ T64] Bluetooth: hci3: command 0x0419 tx timeout [ 146.191161][ T8506] syzkaller0: entered promiscuous mode [ 146.192786][ T8506] syzkaller0: entered allmulticast mode [ 146.366983][ T8519] No control pipe specified [ 148.172930][ T8542] netlink: 20 bytes leftover after parsing attributes in process `syz.1.679'. [ 148.306046][ T8551] No control pipe specified [ 148.443389][ T8547] netlink: 8 bytes leftover after parsing attributes in process `syz.4.680'. [ 148.451531][ T8547] netlink: 8 bytes leftover after parsing attributes in process `syz.4.680'. [ 148.912876][ T8559] netlink: 13 bytes leftover after parsing attributes in process `syz.3.684'. [ 149.156593][ T8568] netlink: 16 bytes leftover after parsing attributes in process `syz.4.686'. [ 149.159747][ T8568] netlink: 'syz.4.686': attribute type 1 has an invalid length. [ 149.162283][ T8568] netlink: 'syz.4.686': attribute type 2 has an invalid length. [ 149.281777][ T8573] tipc: Started in network mode [ 149.285478][ T8573] tipc: Node identity ffffffff, cluster identity 4711 [ 149.287671][ T8573] tipc: Node number set to 4294967295 [ 149.313089][ T8574] No control pipe specified [ 149.562729][ T8579] syzkaller0: entered promiscuous mode [ 149.564377][ T8579] syzkaller0: entered allmulticast mode [ 149.603093][ T8581] netlink: 16 bytes leftover after parsing attributes in process `syz.1.690'. [ 151.400925][ T25] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 151.513886][ T8606] overlayfs: invalid origin (0000007900ffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000) [ 151.550146][ T25] usb 6-1: Using ep0 maxpacket: 32 [ 151.553245][ T25] usb 6-1: config index 0 descriptor too short (expected 29220, got 36) [ 151.555795][ T25] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 151.558423][ T25] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 151.569343][ T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 151.572536][ T25] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 151.576183][ T25] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 151.581467][ T25] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 151.584232][ T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 151.588899][ T25] usb 6-1: config 0 descriptor?? [ 151.655290][ T8611] No control pipe specified [ 151.798519][ T25] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 7 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 152.281979][ T8625] netlink: 'syz.4.703': attribute type 1 has an invalid length. [ 152.284775][ T8625] netlink: 224 bytes leftover after parsing attributes in process `syz.4.703'. [ 152.422594][ T8640] netlink: 'syz.3.706': attribute type 1 has an invalid length. [ 152.428321][ T8640] netlink: 224 bytes leftover after parsing attributes in process `syz.3.706'. [ 152.510188][ T8642] vivid-002: disconnect [ 152.708604][ T8650] siw: device registration error -23 [ 153.074323][ T8642] vivid-002: reconnect [ 153.179309][ T8655] No control pipe specified [ 153.368753][ T8661] netlink: 'syz.4.713': attribute type 10 has an invalid length. [ 153.372131][ T8661] bridge0: port 2(bridge_slave_1) entered disabled state [ 153.374375][ T8661] bridge0: port 1(bridge_slave_0) entered disabled state [ 153.382525][ T8661] bridge0: port 2(bridge_slave_1) entered blocking state [ 153.384624][ T8661] bridge0: port 2(bridge_slave_1) entered forwarding state [ 153.386771][ T8661] bridge0: port 1(bridge_slave_0) entered blocking state [ 153.388848][ T8661] bridge0: port 1(bridge_slave_0) entered forwarding state [ 153.398608][ T8661] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 153.497143][ T8674] FAULT_INJECTION: forcing a failure. [ 153.497143][ T8674] name failslab, interval 1, probability 0, space 0, times 0 [ 153.501029][ T8674] CPU: 2 UID: 0 PID: 8674 Comm: syz.4.715 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 153.504061][ T8674] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 153.507185][ T8674] Call Trace: [ 153.508155][ T8674] [ 153.508851][ T8677] netlink: 16 bytes leftover after parsing attributes in process `syz.3.718'. [ 153.509010][ T8674] dump_stack_lvl+0x16c/0x1f0 [ 153.513914][ T8674] should_fail_ex+0x497/0x5b0 [ 153.515276][ T8674] ? fs_reclaim_acquire+0xae/0x150 [ 153.516769][ T8674] should_failslab+0xc2/0x120 [ 153.518598][ T8674] __kmalloc_noprof+0xce/0x4f0 [ 153.520569][ T8674] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 153.522610][ T8674] ? tomoyo_realpath_from_path+0xbf/0x710 [ 153.524239][ T8674] ? rcu_is_watching+0x12/0xc0 [ 153.525624][ T8674] tomoyo_realpath_from_path+0xbf/0x710 [ 153.527310][ T8674] tomoyo_check_open_permission+0x2ad/0x3c0 [ 153.529104][ T8674] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 153.530949][ T8674] ? __pfx___lock_acquire+0x10/0x10 [ 153.532485][ T8674] ? __pfx_hook_file_open+0x10/0x10 [ 153.533983][ T8674] ? lock_acquire+0x2f/0xb0 [ 153.535298][ T8674] tomoyo_file_open+0x6b/0x90 [ 153.536657][ T8674] security_file_open+0x84/0x1e0 [ 153.538528][ T8674] do_dentry_open+0x57e/0x1ea0 [ 153.540493][ T8674] ? inode_permission+0xdd/0x5f0 [ 153.542332][ T8674] vfs_open+0x82/0x3f0 [ 153.543522][ T8674] ? may_open+0x1f2/0x400 [ 153.544794][ T8674] path_openat+0x1e6a/0x2d60 [ 153.546144][ T8674] ? __pfx_path_openat+0x10/0x10 [ 153.547768][ T8674] ? __pfx___lock_acquire+0x10/0x10 [ 153.549729][ T8674] ? lock_acquire.part.0+0x11b/0x380 [ 153.551765][ T8674] ? find_held_lock+0x2d/0x110 [ 153.553166][ T8674] do_filp_open+0x20c/0x470 [ 153.554479][ T8674] ? __pfx_do_filp_open+0x10/0x10 [ 153.555928][ T8674] ? find_held_lock+0x2d/0x110 [ 153.557458][ T8674] ? _raw_spin_unlock+0x28/0x50 [ 153.559375][ T8674] ? alloc_fd+0x41f/0x760 [ 153.561073][ T8674] do_sys_openat2+0x17a/0x1e0 [ 153.562931][ T8674] ? __pfx_do_sys_openat2+0x10/0x10 [ 153.564969][ T8674] ? __fget_files+0x206/0x3a0 [ 153.566806][ T8674] __ia32_compat_sys_open+0x147/0x1e0 [ 153.568899][ T8674] ? __pfx___ia32_compat_sys_open+0x10/0x10 [ 153.571210][ T8674] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 153.573796][ T8674] __do_fast_syscall_32+0x73/0x120 [ 153.575805][ T8674] do_fast_syscall_32+0x32/0x80 [ 153.577721][ T8674] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 153.580182][ T8674] RIP: 0023:0xf709e579 [ 153.581808][ T8674] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 153.587416][ T8674] RSP: 002b:00000000f506f55c EFLAGS: 00000296 ORIG_RAX: 0000000000000005 [ 153.589799][ T8674] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000000000000 [ 153.592068][ T8674] RDX: 00000000000002e4 RSI: 0000000000000000 RDI: 0000000000000000 [ 153.594337][ T8674] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 153.596602][ T8674] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 153.598902][ T8674] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 153.601178][ T8674] [ 153.602828][ T8674] ERROR: Out of memory at tomoyo_realpath_from_path. [ 153.605392][ T8674] orangefs_devreq_open: device cannot be opened in blocking mode [ 154.117164][ T8696] netlink: 'syz.0.723': attribute type 10 has an invalid length. [ 154.214758][ T30] usb 6-1: USB disconnect, device number 7 [ 154.217980][ T30] usblp0: removed [ 154.236955][ T8702] Cannot find map_set index 0 as target [ 154.281055][ T39] audit: type=1326 audit(1736255902.861:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8704 comm="syz.4.726" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 154.290932][ T39] audit: type=1326 audit(1736255902.861:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8704 comm="syz.4.726" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 154.297560][ T39] audit: type=1326 audit(1736255902.861:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8704 comm="syz.4.726" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 154.316129][ T39] audit: type=1326 audit(1736255902.861:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8704 comm="syz.4.726" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 154.323375][ T39] audit: type=1326 audit(1736255902.861:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8704 comm="syz.4.726" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 154.335862][ T39] audit: type=1326 audit(1736255902.861:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8704 comm="syz.4.726" exe="/syz-executor" sig=0 arch=40000003 syscall=156 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 154.357852][ T39] audit: type=1326 audit(1736255902.861:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8704 comm="syz.4.726" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 154.382214][ T39] audit: type=1326 audit(1736255902.861:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8704 comm="syz.4.726" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 154.393627][ T8708] No control pipe specified [ 154.395030][ T39] audit: type=1326 audit(1736255902.861:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8704 comm="syz.4.726" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 154.473112][ T39] audit: type=1326 audit(1736255902.861:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8704 comm="syz.4.726" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 154.785529][ T8723] netfs: Couldn't get user pages (rc=-14) [ 155.099776][ T8729] netlink: 20 bytes leftover after parsing attributes in process `syz.1.734'. [ 155.246451][ T8732] netlink: 'syz.4.735': attribute type 10 has an invalid length. [ 155.249690][ T8734] netlink: 16 bytes leftover after parsing attributes in process `syz.1.736'. [ 155.253821][ T8732] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 155.257527][ T8732] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 155.430013][ T30] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 155.650111][ T8745] FAULT_INJECTION: forcing a failure. [ 155.650111][ T8745] name failslab, interval 1, probability 0, space 0, times 0 [ 155.655419][ T8745] CPU: 2 UID: 0 PID: 8745 Comm: syz.3.738 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 155.659504][ T8745] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 155.663633][ T8745] Call Trace: [ 155.664952][ T8745] [ 155.666083][ T8745] dump_stack_lvl+0x16c/0x1f0 [ 155.667961][ T8745] should_fail_ex+0x497/0x5b0 [ 155.669831][ T8745] ? fs_reclaim_acquire+0xae/0x150 [ 155.671819][ T8745] should_failslab+0xc2/0x120 [ 155.673705][ T8745] __kmalloc_noprof+0xce/0x4f0 [ 155.675574][ T8745] ? __pfx___mutex_lock+0x10/0x10 [ 155.677468][ T8745] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 155.680277][ T8745] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 155.683020][ T8745] genl_start+0x18e/0x960 [ 155.684740][ T8745] __netlink_dump_start+0x615/0x980 [ 155.686790][ T8745] genl_family_rcv_msg_dumpit+0x1e1/0x2e0 [ 155.689023][ T8745] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 155.690048][ T30] usb 5-1: Using ep0 maxpacket: 32 [ 155.691464][ T8745] ? __pfx_genl_get_cmd+0x10/0x10 [ 155.695536][ T8745] ? __pfx_genl_start+0x10/0x10 [ 155.697478][ T8745] ? __pfx_genl_dumpit+0x10/0x10 [ 155.699426][ T8745] ? __pfx_genl_done+0x10/0x10 [ 155.701303][ T8745] ? __radix_tree_lookup+0x21f/0x2c0 [ 155.703363][ T8745] genl_rcv_msg+0x470/0x800 [ 155.704159][ T30] usb 5-1: config index 0 descriptor too short (expected 29220, got 36) [ 155.705128][ T8745] ? __pfx_genl_rcv_msg+0x10/0x10 [ 155.705152][ T8745] ? __pfx_ethnl_phy_start+0x10/0x10 [ 155.708355][ T30] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 155.710211][ T8745] ? __pfx_ethnl_phy_dumpit+0x10/0x10 [ 155.710235][ T8745] ? __pfx_ethnl_phy_done+0x10/0x10 [ 155.710269][ T8745] netlink_rcv_skb+0x165/0x410 [ 155.710296][ T8745] ? __pfx_genl_rcv_msg+0x10/0x10 [ 155.710320][ T8745] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 155.712392][ T30] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 155.715624][ T8745] ? down_read+0xc9/0x330 [ 155.715651][ T8745] ? __pfx_down_read+0x10/0x10 [ 155.717788][ T30] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 155.719733][ T8745] ? netlink_deliver_tap+0x1ae/0xca0 [ 155.719758][ T8745] genl_rcv+0x28/0x40 [ 155.721809][ T30] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 155.723563][ T8745] netlink_unicast+0x53c/0x7f0 [ 155.723589][ T8745] ? __pfx_netlink_unicast+0x10/0x10 [ 155.725729][ T30] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 155.728652][ T8745] ? __phys_addr_symbol+0x30/0x80 [ 155.728677][ T8745] ? __check_object_size+0x488/0x710 [ 155.730529][ T30] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 155.731820][ T8745] netlink_sendmsg+0x8b8/0xd70 [ 155.731848][ T8745] ? __pfx_netlink_sendmsg+0x10/0x10 [ 155.735514][ T30] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 155.737235][ T8745] ____sys_sendmsg+0x9ae/0xb40 [ 155.737264][ T8745] ? __pfx_____sys_sendmsg+0x10/0x10 [ 155.742034][ T30] usb 5-1: config 0 descriptor?? [ 155.743145][ T8745] ? get_compat_msghdr+0x11b/0x170 [ 155.743165][ T8745] ___sys_sendmsg+0x135/0x1e0 [ 155.743181][ T8745] ? __pfx____sys_sendmsg+0x10/0x10 [ 155.770417][ T8745] ? __pfx_lock_release+0x10/0x10 [ 155.772267][ T8745] ? trace_lock_acquire+0x14e/0x1f0 [ 155.774314][ T8745] ? __fget_files+0x206/0x3a0 [ 155.776017][ T8745] __sys_sendmsg+0x16e/0x220 [ 155.777685][ T8745] ? __pfx___sys_sendmsg+0x10/0x10 [ 155.779439][ T8745] __do_fast_syscall_32+0x73/0x120 [ 155.781456][ T8745] do_fast_syscall_32+0x32/0x80 [ 155.783232][ T8745] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 155.785497][ T8745] RIP: 0023:0xf7f73579 [ 155.786773][ T8745] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 155.792922][ T8745] RSP: 002b:00000000f50a555c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 155.795788][ T8745] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000700 [ 155.798240][ T8745] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 155.800945][ T8745] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 155.803437][ T8745] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 155.806083][ T8745] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 155.808596][ T8745] [ 156.041622][ T30] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 5 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 156.207430][ T8748] syzkaller0: entered promiscuous mode [ 156.209081][ T8748] syzkaller0: entered allmulticast mode [ 157.224467][ T8757] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection. [ 158.371522][ T9] usb 5-1: USB disconnect, device number 5 [ 158.374268][ T9] usblp0: removed [ 158.406210][ T8783] netlink: 16 bytes leftover after parsing attributes in process `syz.0.748'. [ 158.457033][ T8785] netlink: 187320 bytes leftover after parsing attributes in process `syz.4.749'. [ 158.460006][ T8785] netlink: zone id is out of range [ 158.461598][ T8785] netlink: zone id is out of range [ 158.463245][ T8785] netlink: zone id is out of range [ 158.464769][ T8785] netlink: zone id is out of range [ 158.466433][ T8785] netlink: zone id is out of range [ 158.468116][ T8785] netlink: zone id is out of range [ 158.473105][ T8785] netlink: zone id is out of range [ 158.474648][ T8785] netlink: zone id is out of range [ 158.476161][ T8785] netlink: zone id is out of range [ 158.477826][ T8785] netlink: zone id is out of range [ 158.626053][ T8794] netlink: 80 bytes leftover after parsing attributes in process `syz.1.747'. [ 158.812785][ T8800] netlink: 16 bytes leftover after parsing attributes in process `syz.3.752'. [ 159.351054][ T8811] netlink: 'syz.0.755': attribute type 5 has an invalid length. [ 159.357696][ T8811] netlink: 16 bytes leftover after parsing attributes in process `syz.0.755'. [ 159.670221][ T5985] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 159.747389][ T8820] RDS: rds_bind could not find a transport for ::ffff:100.1.1.1, load rds_tcp or rds_rdma? [ 159.749401][ T8821] netlink: 16 bytes leftover after parsing attributes in process `syz.4.759'. [ 159.829975][ T5985] usb 5-1: Using ep0 maxpacket: 32 [ 159.838704][ T5985] usb 5-1: config index 0 descriptor too short (expected 29220, got 36) [ 159.841365][ T5985] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 159.843939][ T5985] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 159.846527][ T5985] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 159.849302][ T5985] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 159.853103][ T5985] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 159.856902][ T5985] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 159.859466][ T5985] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 159.867496][ T5985] usb 5-1: config 0 descriptor?? [ 160.191900][ T5985] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 6 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 160.396915][ T8835] netlink: 'syz.1.764': attribute type 10 has an invalid length. [ 160.680067][ T5950] Bluetooth: hci3: command 0x0419 tx timeout [ 160.785435][ T39] kauditd_printk_skb: 52 callbacks suppressed [ 160.785446][ T39] audit: type=1800 audit(1736255909.361:133): pid=8856 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.769" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0 [ 160.796099][ T8856] warning: `syz.1.769' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 161.287721][ T8885] FAULT_INJECTION: forcing a failure. [ 161.287721][ T8885] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 161.291560][ T8885] CPU: 2 UID: 0 PID: 8885 Comm: syz.3.781 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 161.294648][ T8885] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 161.297694][ T8885] Call Trace: [ 161.298660][ T8885] [ 161.299537][ T8885] dump_stack_lvl+0x16c/0x1f0 [ 161.300912][ T8885] should_fail_ex+0x497/0x5b0 [ 161.302268][ T8885] _copy_from_iter+0x29b/0x1400 [ 161.303679][ T8885] ? trace_lock_acquire+0x14e/0x1f0 [ 161.305182][ T8885] ? __alloc_skb+0x200/0x380 [ 161.306516][ T8885] ? __pfx__copy_from_iter+0x10/0x10 [ 161.308022][ T8885] ? __virt_addr_valid+0x1a4/0x590 [ 161.309569][ T8885] ? __virt_addr_valid+0x5e/0x590 [ 161.310967][ T8885] ? __phys_addr_symbol+0x30/0x80 [ 161.312460][ T8885] ? __check_object_size+0x488/0x710 [ 161.313997][ T8885] netlink_sendmsg+0x813/0xd70 [ 161.315421][ T8885] ? __pfx_netlink_sendmsg+0x10/0x10 [ 161.316950][ T8885] ____sys_sendmsg+0x9ae/0xb40 [ 161.318322][ T8885] ? __pfx_____sys_sendmsg+0x10/0x10 [ 161.319846][ T8885] ? get_compat_msghdr+0x11b/0x170 [ 161.321327][ T8885] ___sys_sendmsg+0x135/0x1e0 [ 161.322675][ T8885] ? __pfx____sys_sendmsg+0x10/0x10 [ 161.324179][ T8885] ? __pfx_lock_release+0x10/0x10 [ 161.325615][ T8885] ? trace_lock_acquire+0x14e/0x1f0 [ 161.327104][ T8885] ? __fget_files+0x206/0x3a0 [ 161.328469][ T8885] __sys_sendmsg+0x16e/0x220 [ 161.329812][ T8885] ? __pfx___sys_sendmsg+0x10/0x10 [ 161.331294][ T8885] __do_fast_syscall_32+0x73/0x120 [ 161.332770][ T8885] do_fast_syscall_32+0x32/0x80 [ 161.334173][ T8885] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 161.335996][ T8885] RIP: 0023:0xf7f73579 [ 161.337165][ T8885] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 161.342563][ T8885] RSP: 002b:00000000f50a555c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 161.344915][ T8885] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000340 [ 161.347150][ T8885] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 161.349391][ T8885] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 161.351624][ T8885] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 161.353892][ T8885] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 161.356174][ T8885] [ 161.590319][ T8889] netlink: 24 bytes leftover after parsing attributes in process `syz.3.783'. [ 161.713850][ T8895] netlink: 4 bytes leftover after parsing attributes in process `syz.3.785'. [ 161.743368][ T8895] netlink: 'syz.3.785': attribute type 2 has an invalid length. [ 161.831187][ T8897] FAULT_INJECTION: forcing a failure. [ 161.831187][ T8897] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 161.834999][ T8897] CPU: 1 UID: 0 PID: 8897 Comm: syz.4.786 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 161.838007][ T8897] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 161.841109][ T8897] Call Trace: [ 161.842074][ T8897] [ 161.842974][ T8897] dump_stack_lvl+0x16c/0x1f0 [ 161.844434][ T8897] should_fail_ex+0x497/0x5b0 [ 161.845743][ T8897] _copy_to_user+0x32/0xd0 [ 161.847048][ T8897] simple_read_from_buffer+0xd0/0x160 [ 161.848603][ T8897] proc_fail_nth_read+0x198/0x270 [ 161.850060][ T8897] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 161.851659][ T8897] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 161.853280][ T8897] vfs_read+0x1df/0xbe0 [ 161.854487][ T8897] ? __fget_files+0x1fc/0x3a0 [ 161.855850][ T8897] ? __pfx___mutex_lock+0x10/0x10 [ 161.857283][ T8897] ? __pfx_vfs_read+0x10/0x10 [ 161.858649][ T8897] ? __fget_files+0x206/0x3a0 [ 161.860048][ T8897] ksys_read+0x12b/0x250 [ 161.861284][ T8897] ? __pfx_ksys_read+0x10/0x10 [ 161.862691][ T8897] __do_fast_syscall_32+0x73/0x120 [ 161.864171][ T8897] do_fast_syscall_32+0x32/0x80 [ 161.865532][ T8897] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 161.867339][ T8897] RIP: 0023:0xf709e579 [ 161.868537][ T8897] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 161.873981][ T8897] RSP: 002b:00000000f5090590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 161.876385][ T8897] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5090620 [ 161.878579][ T8897] RDX: 000000000000000f RSI: 00000000f73d3ff4 RDI: 0000000000000000 [ 161.880823][ T8897] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 161.883058][ T8897] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 161.885246][ T8897] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 161.887498][ T8897] [ 162.231734][ T8913] netlink: 8 bytes leftover after parsing attributes in process `syz.4.789'. [ 162.234288][ T8913] netlink: 8 bytes leftover after parsing attributes in process `syz.4.789'. [ 162.511997][ T8919] No control pipe specified [ 162.541448][ T5307] usb 5-1: USB disconnect, device number 6 [ 162.550733][ T5307] usblp0: removed [ 162.566275][ T8922] netlink: 16 bytes leftover after parsing attributes in process `syz.0.792'. [ 162.569239][ T8922] netlink: 'syz.0.792': attribute type 1 has an invalid length. [ 162.571456][ T8922] netlink: 'syz.0.792': attribute type 2 has an invalid length. [ 162.628107][ T39] audit: type=1326 audit(1736255911.201:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8923 comm="syz.0.793" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x0 [ 162.761797][ T8935] netlink: 44 bytes leftover after parsing attributes in process `syz.1.795'. [ 162.764450][ T8934] netlink: 44 bytes leftover after parsing attributes in process `syz.1.795'. [ 162.794762][ T8937] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 162.797478][ T8937] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 162.807207][ T8937] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 162.809992][ T8937] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 162.812688][ T8937] geneve2: entered promiscuous mode [ 162.814271][ T8937] geneve2: entered allmulticast mode [ 162.956613][ T8947] netlink: 16 bytes leftover after parsing attributes in process `syz.3.801'. [ 162.960963][ T8947] netlink: 'syz.3.801': attribute type 1 has an invalid length. [ 162.963777][ T8947] netlink: 'syz.3.801': attribute type 2 has an invalid length. [ 163.150059][ T56] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 163.299968][ T56] usb 6-1: Using ep0 maxpacket: 32 [ 163.303406][ T56] usb 6-1: config index 0 descriptor too short (expected 29220, got 36) [ 163.306578][ T56] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 163.309791][ T56] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 163.313423][ T56] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 163.317096][ T56] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 163.320913][ T56] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 163.325908][ T56] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 163.329393][ T56] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 163.333892][ T56] usb 6-1: config 0 descriptor?? [ 163.478448][ T8957] vlan3: entered promiscuous mode [ 163.542553][ T56] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 8 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 163.869278][ T8967] syzkaller0: entered promiscuous mode [ 163.870968][ T8967] syzkaller0: entered allmulticast mode [ 165.398068][ T8980] netlink: 8 bytes leftover after parsing attributes in process `syz.0.813'. [ 165.405160][ T8993] can0: slcan on ttyS3. [ 165.745161][ T8989] can0 (unregistered): slcan off ttyS3. [ 165.977556][ T5307] usb 6-1: USB disconnect, device number 8 [ 165.993002][ T5307] usblp0: removed [ 166.034187][ T9011] netlink: 8 bytes leftover after parsing attributes in process `syz.3.822'. [ 166.045555][ T9009] trusted_key: syz.1.821 sent an empty control message without MSG_MORE. [ 166.053309][ T9009] ALSA: mixer_oss: invalid index 80000 [ 166.108802][ T9014] fuse: Bad value for 'rootmode' [ 166.459351][ T9021] syzkaller0: entered promiscuous mode [ 166.461650][ T9021] syzkaller0: entered allmulticast mode [ 166.653843][ T9026] netlink: 88 bytes leftover after parsing attributes in process `syz.4.826'. [ 168.040788][ C3] net_ratelimit: 2 callbacks suppressed [ 168.040799][ C3] Dead loop on virtual device ipvlan1, fix it urgently! [ 168.160074][ T5307] usb 9-1: new high-speed USB device number 2 using dummy_hcd [ 168.282632][ T39] audit: type=1326 audit(1736255916.861:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9031 comm="syz.0.828" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7fc00000 [ 168.322154][ T9047] netlink: 'syz.0.834': attribute type 10 has an invalid length. [ 168.325012][ T9047] bridge0: port 1(bridge_slave_0) entered disabled state [ 168.330243][ T9047] bridge0: port 1(bridge_slave_0) entered blocking state [ 168.332375][ T9047] bridge0: port 1(bridge_slave_0) entered forwarding state [ 168.335512][ T9047] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 168.341706][ T5307] usb 9-1: Using ep0 maxpacket: 32 [ 168.353018][ T5307] usb 9-1: config index 0 descriptor too short (expected 29220, got 36) [ 168.355380][ T5307] usb 9-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 168.357828][ T5307] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 168.362321][ T5307] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 168.365078][ T5307] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 168.367885][ T5307] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 168.372022][ T5307] usb 9-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 168.374641][ T5307] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 168.378061][ T5307] usb 9-1: config 0 descriptor?? [ 168.391272][ T9049] netlink: 44 bytes leftover after parsing attributes in process `syz.0.835'. [ 168.394093][ T9049] netlink: 43 bytes leftover after parsing attributes in process `syz.0.835'. [ 168.396671][ T9049] netlink: 'syz.0.835': attribute type 6 has an invalid length. [ 168.399017][ T9049] netlink: 'syz.0.835': attribute type 5 has an invalid length. [ 168.402264][ T9049] netlink: 43 bytes leftover after parsing attributes in process `syz.0.835'. [ 168.488192][ T9053] netlink: 20 bytes leftover after parsing attributes in process `syz.3.837'. [ 168.585014][ T5307] usblp 9-1:0.0: usblp0: USB Bidirectional printer dev 2 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 168.635070][ T9061] netlink: 12 bytes leftover after parsing attributes in process `syz.3.839'. [ 169.136283][ T9079] overlayfs: missing 'workdir' [ 169.526087][ T9088] netlink: 32 bytes leftover after parsing attributes in process `syz.1.846'. [ 170.112493][ T9100] netlink: 36 bytes leftover after parsing attributes in process `syz.0.847'. [ 170.118454][ T9100] No control pipe specified [ 170.253052][ T9103] No control pipe specified [ 170.502185][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies. [ 171.063548][ T5983] usb 9-1: USB disconnect, device number 2 [ 171.066310][ T5983] usblp0: removed [ 171.096297][ T9128] netlink: 'syz.0.866': attribute type 10 has an invalid length. [ 171.100279][ T9128] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.104862][ T9128] bond0: (slave bridge0): Releasing backup interface [ 171.110193][ T9128] bridge0: port 1(bridge_slave_0) entered blocking state [ 171.113141][ T9128] bridge0: port 1(bridge_slave_0) entered forwarding state [ 171.123878][ T9128] bridge0: entered promiscuous mode [ 171.128034][ T9128] team0: Port device bridge0 added [ 171.188494][ T9133] tmpfs: Bad value for 'mpol' [ 171.192621][ T9136] tmpfs: Bad value for 'mpol' [ 171.264486][ T9137] No control pipe specified [ 171.273930][ T9138] Invalid ELF header type: 3 != 1 [ 171.376500][ T9149] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !寿$ûÌÌULÙvy¸ÚØ¢…D£øUDŒw˜}z [ 171.492562][ T9150] netlink: 8 bytes leftover after parsing attributes in process `syz.0.861'. [ 171.498776][ T9150] netlink: 44 bytes leftover after parsing attributes in process `syz.0.861'. [ 171.868793][ T9155] No control pipe specified [ 172.182231][ T9162] netlink: 4 bytes leftover after parsing attributes in process `syz.3.869'. [ 172.220626][ T9164] overlayfs: conflicting lowerdir path [ 172.311670][ T9170] binder: BINDER_SET_CONTEXT_MGR already set [ 172.313859][ T9170] binder: 9169:9170 ioctl 4018620d 20000040 returned -16 [ 172.360663][ T5983] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 172.699994][ T5983] usb 9-1: Using ep0 maxpacket: 32 [ 172.705863][ T5983] usb 9-1: config index 0 descriptor too short (expected 29220, got 36) [ 172.708294][ T5983] usb 9-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 172.713414][ T5983] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 172.716205][ T5983] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 172.719049][ T5983] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 172.722457][ T5983] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 172.726483][ T5983] usb 9-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 172.729097][ T5983] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 172.736332][ T5983] usb 9-1: config 0 descriptor?? [ 172.845229][ T9196] No control pipe specified [ 172.873453][ T9202] bridge0: entered promiscuous mode [ 172.894039][ T9200] bridge0: left promiscuous mode [ 172.943150][ T5983] usblp 9-1:0.0: usblp0: USB Bidirectional printer dev 3 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 173.148157][ T9210] netlink: 4 bytes leftover after parsing attributes in process `syz.3.885'. [ 173.152628][ T9210] bridge_slave_1: left allmulticast mode [ 173.155021][ T9210] bridge_slave_1: left promiscuous mode [ 173.158166][ T9210] bridge0: port 2(bridge_slave_1) entered disabled state [ 173.168864][ T9210] bridge_slave_0: left allmulticast mode [ 173.171227][ T9210] bridge_slave_0: left promiscuous mode [ 173.175560][ T9210] bridge0: port 1(bridge_slave_0) entered disabled state [ 173.623259][ T9233] No control pipe specified [ 174.113768][ T9239] netlink: 'syz.3.896': attribute type 1 has an invalid length. [ 174.125010][ T9242] sg_write: data in/out 61916/251 bytes for SCSI command 0x15-- guessing data in; [ 174.125010][ T9242] program syz.0.897 not setting count and/or reply_len properly [ 174.131018][ T9239] 8021q: adding VLAN 0 to HW filter on device bond2 [ 174.219460][ T9250] netlink: 156 bytes leftover after parsing attributes in process `syz.0.898'. [ 174.424084][ T9252] Dead loop on virtual device ipvlan1, fix it urgently! [ 174.557734][ T9260] FAULT_INJECTION: forcing a failure. [ 174.557734][ T9260] name failslab, interval 1, probability 0, space 0, times 0 [ 174.562499][ T9260] CPU: 0 UID: 0 PID: 9260 Comm: syz.1.904 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 174.565526][ T9260] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 174.569519][ T9260] Call Trace: [ 174.570779][ T9260] [ 174.571899][ T9260] dump_stack_lvl+0x16c/0x1f0 [ 174.573692][ T9260] should_fail_ex+0x497/0x5b0 [ 174.575468][ T9260] ? fs_reclaim_acquire+0xae/0x150 [ 174.577403][ T9260] should_failslab+0xc2/0x120 [ 174.579188][ T9260] __kmalloc_cache_noprof+0x68/0x420 [ 174.581271][ T9260] rtnl_newlink+0x108/0x1d70 [ 174.582629][ T9260] ? hlock_class+0x4e/0x130 [ 174.583966][ T9260] ? __lock_acquire+0xcc5/0x3c40 [ 174.585520][ T9260] ? __pfx_rtnl_newlink+0x10/0x10 [ 174.587438][ T9260] ? __pfx___lock_acquire+0x10/0x10 [ 174.589395][ T9260] ? kmem_cache_free+0x152/0x4c0 [ 174.591248][ T9260] ? aa_get_newest_label+0x376/0x680 [ 174.593247][ T9260] ? find_held_lock+0x2d/0x110 [ 174.595046][ T9260] ? find_held_lock+0x2d/0x110 [ 174.596855][ T9260] ? rtnetlink_rcv_msg+0x93a/0xea0 [ 174.598757][ T9260] ? __pfx_lock_release+0x10/0x10 [ 174.600679][ T9260] ? trace_lock_acquire+0x14e/0x1f0 [ 174.602634][ T9260] ? __pfx_rtnl_newlink+0x10/0x10 [ 174.604534][ T9260] rtnetlink_rcv_msg+0x95b/0xea0 [ 174.606374][ T9260] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 174.607973][ T9260] ? __pfx___dev_queue_xmit+0x10/0x10 [ 174.609544][ T9260] netlink_rcv_skb+0x165/0x410 [ 174.610927][ T9260] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 174.612506][ T9260] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 174.614040][ T9260] ? netlink_deliver_tap+0x1ae/0xca0 [ 174.615565][ T9260] netlink_unicast+0x53c/0x7f0 [ 174.616965][ T9260] ? __pfx_netlink_unicast+0x10/0x10 [ 174.618497][ T9260] ? __phys_addr_symbol+0x30/0x80 [ 174.619969][ T9260] ? __check_object_size+0x488/0x710 [ 174.621524][ T9260] netlink_sendmsg+0x8b8/0xd70 [ 174.622917][ T9260] ? __pfx_netlink_sendmsg+0x10/0x10 [ 174.624452][ T9260] ____sys_sendmsg+0x9ae/0xb40 [ 174.625837][ T9260] ? __pfx_____sys_sendmsg+0x10/0x10 [ 174.627363][ T9260] ? get_compat_msghdr+0x11b/0x170 [ 174.628854][ T9260] ___sys_sendmsg+0x135/0x1e0 [ 174.630310][ T9260] ? __pfx____sys_sendmsg+0x10/0x10 [ 174.631822][ T9260] ? __pfx_lock_release+0x10/0x10 [ 174.633283][ T9260] ? trace_lock_acquire+0x14e/0x1f0 [ 174.634791][ T9260] ? __fget_files+0x206/0x3a0 [ 174.636186][ T9260] __sys_sendmsg+0x16e/0x220 [ 174.637530][ T9260] ? __pfx___sys_sendmsg+0x10/0x10 [ 174.639007][ T9260] __do_fast_syscall_32+0x73/0x120 [ 174.640935][ T9260] do_fast_syscall_32+0x32/0x80 [ 174.642760][ T9260] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 174.645152][ T9260] RIP: 0023:0xf7ff0579 [ 174.646487][ T9260] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 174.651969][ T9260] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 174.654400][ T9260] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000280 [ 174.656676][ T9260] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 174.658680][ T9260] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 174.660742][ T9260] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 174.663032][ T9260] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 174.665315][ T9260] [ 174.666255][ C0] vkms_vblank_simulate: vblank timer overrun [ 174.788126][ T9265] No control pipe specified [ 175.068216][ T9252] syz.3.900 (9252) used greatest stack depth: 12880 bytes left [ 175.126465][ T9277] openvswitch: netlink: Key type 34 is out of range max 32 [ 175.200874][ T6053] usb 9-1: USB disconnect, device number 3 [ 175.203705][ T6053] usblp0: removed [ 175.716345][ T9298] netlink: 28 bytes leftover after parsing attributes in process `syz.3.916'. [ 175.719026][ T9298] netlink: 28 bytes leftover after parsing attributes in process `syz.3.916'. [ 176.535622][ T9324] FAULT_INJECTION: forcing a failure. [ 176.535622][ T9324] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 176.539401][ T9324] CPU: 3 UID: 0 PID: 9324 Comm: syz.0.925 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 176.542431][ T9324] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 176.545627][ T9324] Call Trace: [ 176.546603][ T9324] [ 176.547471][ T9324] dump_stack_lvl+0x16c/0x1f0 [ 176.548863][ T9324] should_fail_ex+0x497/0x5b0 [ 176.550229][ T9324] _copy_from_user+0x2e/0xd0 [ 176.551573][ T9324] __sys_bpf+0x215/0x57a0 [ 176.552887][ T9324] ? __pfx_lock_release+0x10/0x10 [ 176.554371][ T9324] ? __pfx___sys_bpf+0x10/0x10 [ 176.555787][ T9324] ? vfs_write+0x306/0x1150 [ 176.557141][ T9324] ? __mutex_unlock_slowpath+0x164/0x690 [ 176.558797][ T9324] ? fput+0x67/0x440 [ 176.559942][ T9324] ? ksys_write+0x1ba/0x250 [ 176.561404][ T9324] ? __pfx_ksys_write+0x10/0x10 [ 176.562852][ T9324] __ia32_sys_bpf+0x76/0xe0 [ 176.564199][ T9324] __do_fast_syscall_32+0x73/0x120 [ 176.565682][ T9324] do_fast_syscall_32+0x32/0x80 [ 176.567145][ T9324] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 176.569174][ T9324] RIP: 0023:0xf70ee579 [ 176.570351][ T9324] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 176.575848][ T9324] RSP: 002b:00000000f50e055c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 176.578232][ T9324] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000840 [ 176.580524][ T9324] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000 [ 176.582704][ T9324] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 176.584894][ T9324] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 176.587161][ T9324] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 176.589436][ T9324] [ 177.574996][ T9344] sock: sock_set_timeout: `syz.0.932' (pid 9344) tries to set negative timeout [ 177.864279][ T9352] xt_HMARK: proto mask must be zero with L3 mode [ 177.962279][ T9355] bond0: entered promiscuous mode [ 177.964269][ T9355] bond_slave_0: entered promiscuous mode [ 177.966485][ T9355] bond_slave_1: entered promiscuous mode [ 178.047280][ T9358] netlink: 4 bytes leftover after parsing attributes in process `syz.4.935'. [ 178.108899][ T9359] netlink: zone id is out of range [ 178.111188][ T9359] netlink: zone id is out of range [ 178.112774][ T9359] netlink: del zone limit has 4 unknown bytes [ 179.421399][ T9395] netlink: 'syz.0.947': attribute type 1 has an invalid length. [ 179.423723][ T9395] netlink: 224 bytes leftover after parsing attributes in process `syz.0.947'. [ 179.543572][ T9399] netlink: 8 bytes leftover after parsing attributes in process `syz.4.948'. [ 180.529090][ T9415] loop9: detected capacity change from 0 to 8 [ 180.533332][ T9415] loop9: [CUMANA/ADFS] p1 [ADFS] p1 [ 180.535491][ T9415] loop9: partition table partially beyond EOD, truncated [ 180.538525][ T9415] loop9: p1 size 81768186 extends beyond EOD, truncated [ 180.960065][ T5985] usb 9-1: new high-speed USB device number 4 using dummy_hcd [ 181.010510][ T9433] netlink: 32 bytes leftover after parsing attributes in process `syz.0.959'. [ 181.035196][ T9437] netlink: 8 bytes leftover after parsing attributes in process `syz.1.960'. [ 181.481176][ T5985] usb 9-1: Using ep0 maxpacket: 32 [ 181.810527][ T5985] usb 9-1: config index 0 descriptor too short (expected 29220, got 36) [ 181.812942][ T5985] usb 9-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 181.815401][ T5985] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 181.817960][ T5985] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 181.830017][ T5985] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 181.832791][ T5985] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 181.836367][ T5985] usb 9-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 181.838937][ T5985] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 181.855064][ T5985] usb 9-1: config 0 descriptor?? [ 182.147009][ T5985] usblp 9-1:0.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 182.766073][ T9460] netlink: 20 bytes leftover after parsing attributes in process `syz.0.964'. [ 183.400377][ C1] Dead loop on virtual device ipvlan1, fix it urgently! [ 183.572060][ T9473] syzkaller0: entered promiscuous mode [ 183.573776][ T9473] syzkaller0: entered allmulticast mode [ 183.655200][ T9480] netlink: 4 bytes leftover after parsing attributes in process `syz.3.971'. [ 183.701873][ T5985] usb 9-1: USB disconnect, device number 4 [ 183.704519][ T5985] usblp0: removed [ 183.735017][ T9489] netlink: 20 bytes leftover after parsing attributes in process `syz.4.974'. [ 183.898434][ T9508] af_packet: tpacket_rcv: packet too big, clamped from 32 to 4294967272. macoff=96 [ 183.903752][ T9508] netlink: 4 bytes leftover after parsing attributes in process `syz.1.980'. [ 183.930785][ T9511] netlink: 24 bytes leftover after parsing attributes in process `syz.1.982'. [ 185.042601][ T9517] netlink: 16 bytes leftover after parsing attributes in process `syz.0.984'. [ 185.250793][ T6326] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 185.400344][ T6326] usb 6-1: Using ep0 maxpacket: 32 [ 185.431892][ T6326] usb 6-1: config index 0 descriptor too short (expected 29220, got 36) [ 185.445161][ T6326] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 185.448374][ T6326] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 185.453906][ T6326] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 185.456728][ T6326] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 185.459751][ T6326] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 185.463901][ T6326] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 185.466476][ T6326] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 185.472336][ T6326] usb 6-1: config 0 descriptor?? [ 185.682308][ T6326] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 9 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 186.173423][ T9532] random: crng reseeded on system resumption [ 186.271829][ T9532] ebtables: wrong size: *len 120, entries_size 48, replsz 48 [ 187.170263][ T9549] syzkaller0: entered promiscuous mode [ 187.171808][ T9549] syzkaller0: entered allmulticast mode [ 187.662156][ T9557] netlink: 8 bytes leftover after parsing attributes in process `syz.4.995'. [ 187.731012][ T9561] nfs: Unknown parameter '' [ 188.534553][ C3] Dead loop on virtual device ipvlan1, fix it urgently! [ 189.567026][ T5982] usb 6-1: USB disconnect, device number 9 [ 189.570148][ T5982] usblp0: removed [ 189.576124][ T9581] No control pipe specified [ 190.325027][ T9597] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1006'. [ 190.342250][ T39] audit: type=1804 audit(1736255938.921:136): pid=9597 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1006" name="/newroot/255/bus/bus" dev="overlay" ino=1411 res=1 errno=0 [ 190.350746][ T9597] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 190.352873][ T9597] IPv6: NLM_F_CREATE should be set when creating new route [ 190.354851][ T9597] IPv6: NLM_F_CREATE should be set when creating new route [ 190.390503][ T9598] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1013'. [ 190.398670][ T9598] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1013'. [ 190.403361][ T9598] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1013'. [ 190.663957][ T9606] syzkaller0: entered promiscuous mode [ 190.665565][ T9606] syzkaller0: entered allmulticast mode [ 190.919991][ T5983] usb 5-1: new full-speed USB device number 7 using dummy_hcd [ 191.022567][ T9613] No control pipe specified [ 191.082135][ T5983] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 191.085006][ T5983] usb 5-1: config 0 has no interfaces? [ 191.086540][ T5983] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8 [ 191.089055][ T5983] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 191.094164][ T5983] usb 5-1: config 0 descriptor?? [ 191.255657][ T9615] trusted_key: encrypted_key: master key parameter '3èîöíÄwƒë [ 191.255657][ T9615] u,ºeŸ“8Gœ' is invalid [ 191.366575][ T6326] usb 5-1: USB disconnect, device number 7 [ 191.448733][ T39] audit: type=1804 audit(1736255940.021:137): pid=9617 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1011" name="/newroot/139/file0/file0" dev="9p" ino=38535726 res=1 errno=0 [ 191.928127][ T9624] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1012'. [ 192.310719][ T9636] tmpfs: Unknown parameter 'mp/l' [ 193.116859][ T9648] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1019'. [ 193.120071][ T9648] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1019'. [ 193.311944][ T9653] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 193.526072][ T9667] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1027'. [ 193.724109][ T9672] syzkaller0: entered promiscuous mode [ 193.726123][ T9672] syzkaller0: entered allmulticast mode [ 194.009628][ T9668] netlink: 172 bytes leftover after parsing attributes in process `syz.4.1024'. [ 194.018418][ T9668] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1024'. [ 194.324673][ T9686] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 195.241810][ T5950] Bluetooth: hci3: command 0x0419 tx timeout [ 195.361266][ T9701] SET target dimension over the limit! [ 195.536227][ T9704] __nla_validate_parse: 1 callbacks suppressed [ 195.536239][ T9704] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1034'. [ 195.543633][ T9704] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1034'. [ 195.647117][ T9710] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1037'. [ 195.714776][ T9708] can0: slcan on ttyS3. [ 195.979556][ T9718] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 196.140427][ T9692] can0 (unregistered): slcan off ttyS3. [ 196.370183][ T9725] No control pipe specified [ 196.706066][ T9732] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1043'. [ 196.787464][ T9736] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1045'. [ 197.140212][ T9746] syzkaller0: entered promiscuous mode [ 197.141777][ T9746] syzkaller0: entered allmulticast mode [ 197.562736][ T9751] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 198.853048][ T9807] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1065'. [ 198.996121][ T9810] siw: device registration error -23 [ 199.198544][ T9814] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1067'. [ 199.307556][ T9820] netlink: 'syz.3.1070': attribute type 10 has an invalid length. [ 199.561266][ T5950] Bluetooth: hci3: command 0x0419 tx timeout [ 200.244646][ T9848] syzkaller0: entered promiscuous mode [ 200.246256][ T9848] syzkaller0: entered allmulticast mode [ 200.483273][ T9861] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1084'. [ 201.386756][ T9868] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1086'. [ 202.183434][ T9880] mmap: syz.1.1090 (9880) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 202.249026][ T9884] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1091'. [ 202.780132][ T9892] FAULT_INJECTION: forcing a failure. [ 202.780132][ T9892] name failslab, interval 1, probability 0, space 0, times 0 [ 202.783341][ T9892] CPU: 0 UID: 0 PID: 9892 Comm: syz.4.1093 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 202.786071][ T9892] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 202.788938][ T9892] Call Trace: [ 202.789813][ T9892] [ 202.790580][ T9892] dump_stack_lvl+0x16c/0x1f0 [ 202.791805][ T9892] should_fail_ex+0x497/0x5b0 [ 202.793024][ T9892] ? __pfx_lock_release+0x10/0x10 [ 202.794319][ T9892] should_failslab+0xc2/0x120 [ 202.795531][ T9892] __kmalloc_cache_noprof+0x68/0x420 [ 202.796905][ T9892] __hw_addr_add_ex+0x310/0x700 [ 202.798203][ T9892] dev_addr_init+0x13b/0x230 [ 202.799407][ T9892] ? __pfx_dev_addr_init+0x10/0x10 [ 202.800732][ T9892] alloc_netdev_mqs+0x330/0x1320 [ 202.801970][ T9892] ? __pfx_vlan_setup+0x10/0x10 [ 202.803148][ T9892] rtnl_create_link+0xbed/0xf10 [ 202.804404][ T9892] rtnl_newlink+0x14e6/0x1d70 [ 202.805618][ T9892] ? __pfx_rtnl_newlink+0x10/0x10 [ 202.806906][ T9892] ? __pfx___lock_acquire+0x10/0x10 [ 202.808256][ T9892] ? kmem_cache_free+0x152/0x4c0 [ 202.809525][ T9892] ? aa_get_newest_label+0x376/0x680 [ 202.810877][ T9892] ? find_held_lock+0x2d/0x110 [ 202.812133][ T9892] ? find_held_lock+0x2d/0x110 [ 202.813361][ T9892] ? rtnetlink_rcv_msg+0x93a/0xea0 [ 202.814674][ T9892] ? __pfx_lock_release+0x10/0x10 [ 202.815949][ T9892] ? trace_lock_acquire+0x14e/0x1f0 [ 202.817237][ T9892] ? __pfx_rtnl_newlink+0x10/0x10 [ 202.818570][ T9892] rtnetlink_rcv_msg+0x95b/0xea0 [ 202.819836][ T9892] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 202.821215][ T9892] ? __pfx___dev_queue_xmit+0x10/0x10 [ 202.822631][ T9892] netlink_rcv_skb+0x165/0x410 [ 202.823867][ T9892] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 202.825273][ T9892] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 202.826632][ T9892] ? netlink_deliver_tap+0x1ae/0xca0 [ 202.827990][ T9892] netlink_unicast+0x53c/0x7f0 [ 202.829214][ T9892] ? __pfx_netlink_unicast+0x10/0x10 [ 202.830568][ T9892] ? __phys_addr_symbol+0x30/0x80 [ 202.831859][ T9892] ? __check_object_size+0x488/0x710 [ 202.833215][ T9892] netlink_sendmsg+0x8b8/0xd70 [ 202.834455][ T9892] ? __pfx_netlink_sendmsg+0x10/0x10 [ 202.835816][ T9892] ____sys_sendmsg+0x9ae/0xb40 [ 202.837053][ T9892] ? __pfx_____sys_sendmsg+0x10/0x10 [ 202.838560][ T9892] ? get_compat_msghdr+0x11b/0x170 [ 202.839871][ T9892] ___sys_sendmsg+0x135/0x1e0 [ 202.841098][ T9892] ? __pfx____sys_sendmsg+0x10/0x10 [ 202.842441][ T9892] ? __pfx_lock_release+0x10/0x10 [ 202.843735][ T9892] ? trace_lock_acquire+0x14e/0x1f0 [ 202.844922][ T9892] ? __fget_files+0x206/0x3a0 [ 202.845968][ T9892] __sys_sendmsg+0x16e/0x220 [ 202.846985][ T9892] ? __pfx___sys_sendmsg+0x10/0x10 [ 202.848134][ T9892] __do_fast_syscall_32+0x73/0x120 [ 202.849434][ T9892] do_fast_syscall_32+0x32/0x80 [ 202.850691][ T9892] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 202.852334][ T9892] RIP: 0023:0xf709e579 [ 202.853376][ T9892] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 202.858261][ T9892] RSP: 002b:00000000f509055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 202.860385][ T9892] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000280 [ 202.862360][ T9892] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 202.864271][ T9892] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 202.866265][ T9892] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 202.868278][ T9892] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 202.870290][ T9892] [ 202.909050][ T9894] sch_tbf: burst 274 is lower than device lo mtu (65550) ! [ 203.017982][ T9907] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1100'. [ 203.020392][ T9907] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1100'. [ 203.023578][ T9907] netlink: 'syz.4.1100': attribute type 10 has an invalid length. [ 203.025617][ T9907] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1100'. [ 203.028123][ T9907] team0: entered promiscuous mode [ 203.029427][ T9907] team_slave_0: entered promiscuous mode [ 203.031646][ T9907] team_slave_1: entered promiscuous mode [ 203.033162][ T9907] team0: entered allmulticast mode [ 203.034473][ T9907] team_slave_0: entered allmulticast mode [ 203.035936][ T9907] team_slave_1: entered allmulticast mode [ 203.037710][ T9907] bridge0: port 3(team0) entered blocking state [ 203.039376][ T9907] bridge0: port 3(team0) entered disabled state [ 203.042416][ T9907] bridge0: port 3(team0) entered blocking state [ 203.044070][ T9907] bridge0: port 3(team0) entered forwarding state [ 203.172360][ T9921] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1105'. [ 203.230380][ T25] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 203.600072][ T25] usb 6-1: Using ep0 maxpacket: 32 [ 203.602810][ T25] usb 6-1: config index 0 descriptor too short (expected 29220, got 36) [ 203.605264][ T25] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 203.608489][ T25] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 203.611959][ T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 203.615434][ T25] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 203.618947][ T25] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 203.623646][ T25] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 203.626926][ T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 203.631774][ T25] usb 6-1: config 0 descriptor?? [ 203.838515][ T25] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 10 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 205.289488][ T9969] openvswitch: netlink: IP tunnel dst address not specified [ 205.325553][ T9972] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1119'. [ 205.415195][ T9980] netlink: 'syz.0.1121': attribute type 1 has an invalid length. [ 205.463929][ T1327] Dead loop on virtual device ipvlan1, fix it urgently! [ 205.523787][ T9984] SET target dimension over the limit! [ 205.989472][ T73] usb 6-1: USB disconnect, device number 10 [ 205.992281][ T73] usblp0: removed [ 206.281944][ T1327] Dead loop on virtual device ipvlan1, fix it urgently! [ 206.857379][T10020] can0: slcan on ttyS3. [ 206.883612][T10022] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1135'. [ 206.974537][T10032] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1140'. [ 207.200045][ T25] usb 9-1: new high-speed USB device number 5 using dummy_hcd [ 207.220743][T10017] can0 (unregistered): slcan off ttyS3. [ 207.350092][ T25] usb 9-1: Using ep0 maxpacket: 32 [ 207.428844][ T25] usb 9-1: config index 0 descriptor too short (expected 29220, got 36) [ 207.431951][ T25] usb 9-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 207.435089][ T25] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 207.437709][ T25] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 207.440731][ T25] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 207.443505][ T25] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 207.447174][ T25] usb 9-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 207.449828][ T25] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 207.453190][ T25] usb 9-1: config 0 descriptor?? [ 207.459171][ T39] audit: type=1326 audit(1736255956.031:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10037 comm="syz.3.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 207.466515][ T39] audit: type=1326 audit(1736255956.031:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10037 comm="syz.3.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 207.473759][ T39] audit: type=1326 audit(1736255956.031:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10037 comm="syz.3.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 207.482750][ T39] audit: type=1326 audit(1736255956.031:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10037 comm="syz.3.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 207.489168][ T39] audit: type=1326 audit(1736255956.031:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10037 comm="syz.3.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 207.496148][ T39] audit: type=1326 audit(1736255956.041:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10037 comm="syz.3.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 207.503519][ T39] audit: type=1326 audit(1736255956.041:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10037 comm="syz.3.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 207.509764][ T39] audit: type=1326 audit(1736255956.041:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10037 comm="syz.3.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 207.516091][ T39] audit: type=1326 audit(1736255956.041:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10037 comm="syz.3.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=41 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 207.522926][ T39] audit: type=1326 audit(1736255956.041:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10037 comm="syz.3.1141" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 207.658671][ T25] usblp 9-1:0.0: usblp0: USB Bidirectional printer dev 5 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 208.274444][T10059] netlink: 'syz.0.1146': attribute type 9 has an invalid length. [ 209.073584][T10067] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 209.208375][T10078] FAULT_INJECTION: forcing a failure. [ 209.208375][T10078] name failslab, interval 1, probability 0, space 0, times 0 [ 209.213298][T10078] CPU: 3 UID: 0 PID: 10078 Comm: syz.1.1154 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 209.217256][T10078] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 209.221266][T10078] Call Trace: [ 209.222515][T10078] [ 209.223627][T10078] dump_stack_lvl+0x16c/0x1f0 [ 209.225346][T10078] should_fail_ex+0x497/0x5b0 [ 209.227110][T10078] ? fs_reclaim_acquire+0xae/0x150 [ 209.228617][T10078] should_failslab+0xc2/0x120 [ 209.230383][T10078] __kmalloc_noprof+0xce/0x4f0 [ 209.232214][T10078] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 209.234920][T10078] ? lockdep_hardirqs_on+0x7c/0x110 [ 209.236871][T10078] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 209.239509][T10078] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 209.241864][T10078] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 209.243964][T10078] ? genl_get_cmd+0x195/0x580 [ 209.245733][T10078] ? bpf_lsm_capable+0x9/0x10 [ 209.247488][T10078] ? security_capable+0x7e/0x260 [ 209.249361][T10078] ? ns_capable+0xd7/0x110 [ 209.251050][T10078] genl_rcv_msg+0x565/0x800 [ 209.252796][T10078] ? __pfx_genl_rcv_msg+0x10/0x10 [ 209.254686][T10078] ? __pfx_ethnl_act_cable_test_tdr+0x10/0x10 [ 209.256969][T10078] netlink_rcv_skb+0x165/0x410 [ 209.258770][T10078] ? __pfx_genl_rcv_msg+0x10/0x10 [ 209.260460][T10078] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 209.262261][T10078] ? down_read+0xc9/0x330 [ 209.263521][T10078] ? __pfx_down_read+0x10/0x10 [ 209.265030][T10078] ? netlink_deliver_tap+0x1ae/0xca0 [ 209.266995][T10078] genl_rcv+0x28/0x40 [ 209.268457][T10078] netlink_unicast+0x53c/0x7f0 [ 209.270208][T10078] ? __pfx_netlink_unicast+0x10/0x10 [ 209.271741][T10078] ? __phys_addr_symbol+0x30/0x80 [ 209.273652][T10078] ? __check_object_size+0x488/0x710 [ 209.275629][T10078] netlink_sendmsg+0x8b8/0xd70 [ 209.277374][T10078] ? __pfx_netlink_sendmsg+0x10/0x10 [ 209.278971][T10078] ____sys_sendmsg+0x9ae/0xb40 [ 209.280361][T10078] ? __pfx_____sys_sendmsg+0x10/0x10 [ 209.282336][T10078] ? get_compat_msghdr+0x11b/0x170 [ 209.284221][T10078] ___sys_sendmsg+0x135/0x1e0 [ 209.285552][T10078] ? __pfx____sys_sendmsg+0x10/0x10 [ 209.287404][T10078] ? __pfx_lock_release+0x10/0x10 [ 209.289209][T10078] ? trace_lock_acquire+0x14e/0x1f0 [ 209.291119][T10078] ? __fget_files+0x206/0x3a0 [ 209.292815][T10078] __sys_sendmsg+0x16e/0x220 [ 209.294118][T10078] ? __pfx___sys_sendmsg+0x10/0x10 [ 209.295983][T10078] __do_fast_syscall_32+0x73/0x120 [ 209.297450][T10078] do_fast_syscall_32+0x32/0x80 [ 209.299244][T10078] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 209.301705][T10078] RIP: 0023:0xf7ff0579 [ 209.303034][T10078] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 209.309849][T10078] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 209.312772][T10078] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020001540 [ 209.315599][T10078] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 209.318324][T10078] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 209.320880][T10078] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 209.323726][T10078] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 209.326623][T10078] [ 209.983293][ T30] usb 9-1: USB disconnect, device number 5 [ 209.985972][ T30] usblp0: removed [ 210.013826][T10098] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1158'. [ 210.065015][T10098] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1158'. [ 211.150064][ T5985] usb 9-1: new full-speed USB device number 6 using dummy_hcd [ 211.313052][ T5985] usb 9-1: config 0 has an invalid interface number: 55 but max is 0 [ 211.315387][ T5985] usb 9-1: config 0 has no interface number 0 [ 211.319589][ T5985] usb 9-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 211.322792][ T5985] usb 9-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 211.326115][ T5985] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10 [ 211.329462][ T5985] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 64 [ 211.332735][ T5985] usb 9-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 211.336535][ T5985] usb 9-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 211.339260][ T5985] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 211.344532][ T5985] usb 9-1: config 0 descriptor?? [ 211.346794][T10114] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 211.354089][ T5985] ldusb 9-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 211.472138][T10124] FAULT_INJECTION: forcing a failure. [ 211.472138][T10124] name failslab, interval 1, probability 0, space 0, times 0 [ 211.475852][T10124] CPU: 2 UID: 0 PID: 10124 Comm: syz.0.1168 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 211.478948][T10124] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 211.482308][T10124] Call Trace: [ 211.483316][T10124] [ 211.484217][T10124] dump_stack_lvl+0x16c/0x1f0 [ 211.485600][T10124] should_fail_ex+0x497/0x5b0 [ 211.487005][T10124] ? fs_reclaim_acquire+0xae/0x150 [ 211.488554][T10124] should_failslab+0xc2/0x120 [ 211.489954][T10124] __kmalloc_node_noprof+0xd1/0x520 [ 211.491493][T10124] ? __kvmalloc_node_noprof+0xad/0x1a0 [ 211.493121][T10124] __kvmalloc_node_noprof+0xad/0x1a0 [ 211.494694][T10124] alloc_netdev_mqs+0xab1/0x1320 [ 211.496168][T10124] ? __pfx_vlan_setup+0x10/0x10 [ 211.497600][T10124] rtnl_create_link+0xbed/0xf10 [ 211.499061][T10124] rtnl_newlink+0x14e6/0x1d70 [ 211.500621][T10124] ? __pfx_rtnl_newlink+0x10/0x10 [ 211.502122][T10124] ? __pfx___lock_acquire+0x10/0x10 [ 211.503643][T10124] ? kmem_cache_free+0x152/0x4c0 [ 211.505134][T10124] ? aa_get_newest_label+0x376/0x680 [ 211.506674][T10124] ? find_held_lock+0x2d/0x110 [ 211.508080][T10124] ? find_held_lock+0x2d/0x110 [ 211.509548][T10124] ? rtnetlink_rcv_msg+0x93a/0xea0 [ 211.511039][T10124] ? __pfx_lock_release+0x10/0x10 [ 211.512536][T10124] ? trace_lock_acquire+0x14e/0x1f0 [ 211.514042][T10124] ? __pfx_rtnl_newlink+0x10/0x10 [ 211.515488][T10124] rtnetlink_rcv_msg+0x95b/0xea0 [ 211.516907][T10124] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 211.518466][T10124] ? __pfx___dev_queue_xmit+0x10/0x10 [ 211.520004][T10124] netlink_rcv_skb+0x165/0x410 [ 211.521370][T10124] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 211.522937][T10124] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 211.524460][T10124] ? netlink_deliver_tap+0x1ae/0xca0 [ 211.525966][T10124] netlink_unicast+0x53c/0x7f0 [ 211.527340][T10124] ? __pfx_netlink_unicast+0x10/0x10 [ 211.528860][T10124] ? __phys_addr_symbol+0x30/0x80 [ 211.530300][T10124] ? __check_object_size+0x488/0x710 [ 211.531824][T10124] netlink_sendmsg+0x8b8/0xd70 [ 211.533215][T10124] ? __pfx_netlink_sendmsg+0x10/0x10 [ 211.534737][T10124] ____sys_sendmsg+0x9ae/0xb40 [ 211.536117][T10124] ? __pfx_____sys_sendmsg+0x10/0x10 [ 211.537625][T10124] ? get_compat_msghdr+0x11b/0x170 [ 211.539103][T10124] ___sys_sendmsg+0x135/0x1e0 [ 211.540463][T10124] ? __pfx____sys_sendmsg+0x10/0x10 [ 211.541950][T10124] ? __pfx_lock_release+0x10/0x10 [ 211.543394][T10124] ? trace_lock_acquire+0x14e/0x1f0 [ 211.544898][T10124] ? __fget_files+0x206/0x3a0 [ 211.546260][T10124] __sys_sendmsg+0x16e/0x220 [ 211.547594][T10124] ? __pfx___sys_sendmsg+0x10/0x10 [ 211.549077][T10124] __do_fast_syscall_32+0x73/0x120 [ 211.550549][T10124] do_fast_syscall_32+0x32/0x80 [ 211.551951][T10124] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 211.553768][T10124] RIP: 0023:0xf70ee579 [ 211.554940][T10124] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 211.560408][T10124] RSP: 002b:00000000f50e055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 211.562799][T10124] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000280 [ 211.565049][T10124] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 211.567299][T10124] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 211.569554][T10124] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 211.571870][T10124] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 211.574127][T10124] [ 211.773907][T10131] fuseblk: Bad value for 'max_read' [ 212.701319][T10141] vivid-007: disconnect [ 212.886037][T10143] overlay: Unknown parameter '/' [ 213.533549][T10140] vivid-007: reconnect [ 213.723612][ T5985] usb 9-1: USB disconnect, device number 6 [ 213.726689][ T5985] ldusb 9-1:0.55: LD USB Device #0 now disconnected [ 214.194160][T10171] sch_tbf: burst 274 is lower than device lo mtu (65550) ! [ 214.274615][T10174] sch_tbf: burst 274 is lower than device lo mtu (65550) ! [ 214.328272][T10175] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1183'. [ 214.474626][T10177] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1187'. [ 215.001083][T10181] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1188'. [ 215.568117][T10195] orangefs_devreq_open: device cannot be opened in blocking mode [ 215.911238][T10210] sch_tbf: burst 274 is lower than device lo mtu (65550) ! [ 216.076467][T10212] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 216.546108][T10220] netlink: 'syz.0.1201': attribute type 10 has an invalid length. [ 216.548873][T10220] bridge0: port 1(bridge_slave_0) entered disabled state [ 216.554280][T10220] bridge0: left promiscuous mode [ 216.558309][T10220] team0: Port device bridge0 removed [ 216.560935][T10220] bridge0: port 1(bridge_slave_0) entered blocking state [ 216.562987][T10220] bridge0: port 1(bridge_slave_0) entered forwarding state [ 216.565734][T10220] bridge0: entered promiscuous mode [ 216.567666][T10220] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 216.636349][T10236] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1205'. [ 216.724949][T10242] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 216.794167][T10246] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 216.800561][T10246] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 216.805512][T10246] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 217.454239][T10264] MTD: Attempt to mount non-MTD device "/dev/nbd3" [ 217.458525][T10264] cramfs: wrong magic [ 217.699021][T10271] sch_tbf: burst 274 is lower than device lo mtu (65550) ! [ 217.863407][T10274] fuse: Bad value for 'fd' [ 218.175574][ T39] kauditd_printk_skb: 4 callbacks suppressed [ 218.175585][ T39] audit: type=1326 audit(1736255966.751:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10284 comm="syz.1.1222" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 218.184076][ T39] audit: type=1326 audit(1736255966.761:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10284 comm="syz.1.1222" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 218.190487][ T39] audit: type=1326 audit(1736255966.761:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10284 comm="syz.1.1222" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 218.198648][ T39] audit: type=1326 audit(1736255966.761:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10284 comm="syz.1.1222" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 218.205079][ T39] audit: type=1326 audit(1736255966.761:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10284 comm="syz.1.1222" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 218.213834][ T39] audit: type=1326 audit(1736255966.761:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10284 comm="syz.1.1222" exe="/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 218.221935][ T39] audit: type=1326 audit(1736255966.761:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10284 comm="syz.1.1222" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 218.228262][ T39] audit: type=1326 audit(1736255966.761:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10284 comm="syz.1.1222" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 218.234572][ T39] audit: type=1326 audit(1736255966.761:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10284 comm="syz.1.1222" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 218.241317][ T39] audit: type=1326 audit(1736255966.761:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10284 comm="syz.1.1222" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 218.341303][T10289] can0: slcan on ttyS3. [ 218.553514][T10292] netlink: 'syz.0.1223': attribute type 1 has an invalid length. [ 218.555899][T10292] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1223'. [ 218.638665][T10292] team_slave_0: left promiscuous mode [ 218.650134][T10292] team0 (unregistering): Port device team_slave_0 removed [ 218.652947][T10292] team_slave_1: left promiscuous mode [ 218.657619][T10292] team0 (unregistering): Port device team_slave_1 removed [ 219.010143][T10279] can0 (unregistered): slcan off ttyS3. [ 219.425349][T10320] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1233'. [ 219.547442][T10318] syzkaller0: entered promiscuous mode [ 219.549062][T10318] syzkaller0: entered allmulticast mode [ 220.310185][ T30] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 220.373544][T10336] FAULT_INJECTION: forcing a failure. [ 220.373544][T10336] name failslab, interval 1, probability 0, space 0, times 0 [ 220.376278][T10329] syz.4.1235 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 220.377094][T10336] CPU: 2 UID: 0 PID: 10336 Comm: syz.3.1237 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 220.383292][T10336] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 220.386842][T10336] Call Trace: [ 220.388025][T10336] [ 220.388859][T10336] dump_stack_lvl+0x16c/0x1f0 [ 220.390196][T10336] should_fail_ex+0x497/0x5b0 [ 220.391510][T10336] ? fs_reclaim_acquire+0xae/0x150 [ 220.392988][T10336] should_failslab+0xc2/0x120 [ 220.394354][T10336] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 220.396022][T10336] ? __alloc_skb+0x2b3/0x380 [ 220.397380][T10336] ? bpf_lsm_capable+0x9/0x10 [ 220.398767][T10336] __alloc_skb+0x2b3/0x380 [ 220.400084][T10336] ? __pfx___alloc_skb+0x10/0x10 [ 220.401536][T10336] ? genl_rcv_msg+0x470/0x800 [ 220.402916][T10336] ? genl_rcv_msg+0x4bd/0x800 [ 220.404287][T10336] netlink_ack+0x164/0xb20 [ 220.405581][T10336] netlink_rcv_skb+0x327/0x410 [ 220.406961][T10336] ? __pfx_genl_rcv_msg+0x10/0x10 [ 220.408431][T10336] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 220.409945][T10336] ? down_read+0xc9/0x330 [ 220.411183][T10336] ? __pfx_down_read+0x10/0x10 [ 220.412567][T10336] ? netlink_deliver_tap+0x1ae/0xca0 [ 220.414072][T10336] genl_rcv+0x28/0x40 [ 220.415224][T10336] netlink_unicast+0x53c/0x7f0 [ 220.416603][T10336] ? __pfx_netlink_unicast+0x10/0x10 [ 220.418123][T10336] ? __phys_addr_symbol+0x30/0x80 [ 220.419600][T10336] ? __check_object_size+0x488/0x710 [ 220.421142][T10336] netlink_sendmsg+0x8b8/0xd70 [ 220.422552][T10336] ? __pfx_netlink_sendmsg+0x10/0x10 [ 220.424094][T10336] ____sys_sendmsg+0x9ae/0xb40 [ 220.425483][T10336] ? __pfx_____sys_sendmsg+0x10/0x10 [ 220.427000][T10336] ? get_compat_msghdr+0x11b/0x170 [ 220.428480][T10336] ___sys_sendmsg+0x135/0x1e0 [ 220.429829][T10336] ? __pfx____sys_sendmsg+0x10/0x10 [ 220.431320][T10336] ? __pfx_lock_release+0x10/0x10 [ 220.432797][T10336] ? trace_lock_acquire+0x14e/0x1f0 [ 220.434269][T10336] ? __fget_files+0x206/0x3a0 [ 220.435633][T10336] __sys_sendmsg+0x16e/0x220 [ 220.436964][T10336] ? __pfx___sys_sendmsg+0x10/0x10 [ 220.438454][T10336] __do_fast_syscall_32+0x73/0x120 [ 220.439925][T10336] do_fast_syscall_32+0x32/0x80 [ 220.441310][T10336] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 220.443157][T10336] RIP: 0023:0xf7f73579 [ 220.444362][T10336] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 220.449827][T10336] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 220.452187][T10336] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020001540 [ 220.454419][T10336] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 220.456682][T10336] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 220.458926][T10336] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 220.461179][T10336] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 220.463432][T10336] [ 220.837162][ T30] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 220.844511][ T30] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 220.852286][ T30] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 220.855092][ T30] usb 5-1: config 1 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 220.872748][ T30] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 220.879415][ T30] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 220.886862][ T30] usb 5-1: Product: syz [ 220.888200][ T30] usb 5-1: Manufacturer: syz [ 221.097817][T10349] FAULT_INJECTION: forcing a failure. [ 221.097817][T10349] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 221.101666][T10349] CPU: 3 UID: 0 PID: 10349 Comm: syz.4.1240 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 221.104741][T10349] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 221.107854][T10349] Call Trace: [ 221.108834][T10349] [ 221.109701][T10349] dump_stack_lvl+0x16c/0x1f0 [ 221.111079][T10349] should_fail_ex+0x497/0x5b0 [ 221.112496][T10349] _copy_to_user+0x32/0xd0 [ 221.113815][T10349] simple_read_from_buffer+0xd0/0x160 [ 221.115288][T10349] proc_fail_nth_read+0x198/0x270 [ 221.116713][T10349] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 221.118334][T10349] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 221.119954][T10349] vfs_read+0x1df/0xbe0 [ 221.121179][T10349] ? __fget_files+0x1fc/0x3a0 [ 221.122574][T10349] ? __pfx___mutex_lock+0x10/0x10 [ 221.124051][T10349] ? __pfx_vfs_read+0x10/0x10 [ 221.125429][T10349] ? __fget_files+0x206/0x3a0 [ 221.126802][T10349] ksys_read+0x12b/0x250 [ 221.128046][T10349] ? __pfx_ksys_read+0x10/0x10 [ 221.129461][T10349] __do_fast_syscall_32+0x73/0x120 [ 221.130953][T10349] do_fast_syscall_32+0x32/0x80 [ 221.132415][T10349] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 221.134249][T10349] RIP: 0023:0xf709e579 [ 221.135440][T10349] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 221.140988][T10349] RSP: 002b:00000000f504e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 221.143412][T10349] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000f504e620 [ 221.145681][T10349] RDX: 000000000000000f RSI: 00000000f73d3ff4 RDI: 0000000000000000 [ 221.147946][T10349] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 221.150198][T10349] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 221.152474][T10349] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 221.154740][T10349] [ 221.277046][ T30] cdc_wdm 5-1:1.0: skipping garbage [ 221.282326][ T30] cdc_wdm 5-1:1.0: skipping garbage [ 221.284009][ T30] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22 [ 221.556295][ T73] usb 5-1: USB disconnect, device number 8 [ 221.690170][T10352] 9pnet_virtio: no channels available for device syz [ 222.043081][T10359] netlink: 'syz.4.1244': attribute type 1 has an invalid length. [ 222.064515][T10359] 8021q: adding VLAN 0 to HW filter on device bond1 [ 222.350223][ T73] usb 9-1: new high-speed USB device number 7 using dummy_hcd [ 222.513896][ T73] usb 9-1: Using ep0 maxpacket: 32 [ 222.517443][ T73] usb 9-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config [ 222.521562][ T73] usb 9-1: config 7 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 222.525748][ T73] usb 9-1: config 7 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 222.530963][ T73] usb 9-1: config 7 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 222.535869][ T73] usb 9-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00 [ 222.539417][ T73] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 222.886437][T10376] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1250'. [ 223.550432][T10385] netlink: 88 bytes leftover after parsing attributes in process `syz.1.1251'. [ 223.762530][ T73] usbhid 9-1:7.0: can't add hid device: -71 [ 223.764677][ T73] usbhid 9-1:7.0: probe with driver usbhid failed with error -71 [ 223.777712][ T73] usb 9-1: USB disconnect, device number 7 [ 223.880661][T10407] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1261'. [ 223.909339][T10411] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1263'. [ 223.915472][T10408] ata1.00: invalid command format 189 [ 223.922017][T10408] xfs: Unknown parameter 'discard [ 223.922017][T10408] vxcan0 001414AC 00000000 0001 0 0 0 00FFFFFF 0 0 0 [ 223.922017][T10408] vxcan1 001414AC 00000000 0001 0 0 0 00FFFFFF 0 0 0 [ 223.922017][T10408] xfrm0 001414AC 00000000 0001 0 0 0 00FFFFF' [ 224.346709][ T39] kauditd_printk_skb: 35 callbacks suppressed [ 224.346720][ T39] audit: type=1326 audit(1736255972.921:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10428 comm="syz.3.1267" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 224.359956][ T39] audit: type=1326 audit(1736255972.921:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10428 comm="syz.3.1267" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 224.366152][ T39] audit: type=1326 audit(1736255972.931:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10428 comm="syz.3.1267" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 224.373454][ T39] audit: type=1326 audit(1736255972.931:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10428 comm="syz.3.1267" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 224.380856][ T39] audit: type=1326 audit(1736255972.931:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10428 comm="syz.3.1267" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 224.387193][ T39] audit: type=1326 audit(1736255972.931:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10428 comm="syz.3.1267" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 224.394123][ T39] audit: type=1326 audit(1736255972.931:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10428 comm="syz.3.1267" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 224.401331][ T39] audit: type=1326 audit(1736255972.931:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10428 comm="syz.3.1267" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 224.407664][ T39] audit: type=1326 audit(1736255972.931:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10428 comm="syz.3.1267" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 224.414503][ T39] audit: type=1326 audit(1736255972.951:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10428 comm="syz.3.1267" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f73579 code=0x7ffc0000 [ 224.685206][T10442] bond0: (slave bond_slave_0): Releasing backup interface [ 224.690888][T10442] bond0: (slave bond_slave_1): Releasing backup interface [ 224.722134][T10442] team0: Port device team_slave_0 removed [ 224.729622][T10442] team0: Port device team_slave_1 removed [ 224.732050][T10442] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 224.734758][T10442] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 224.737678][T10442] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 224.777716][T10442] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 224.784637][T10442] geneve2: left allmulticast mode [ 224.821453][ T6053] Dead loop on virtual device ipvlan1, fix it urgently! [ 224.909244][T10461] FAULT_INJECTION: forcing a failure. [ 224.909244][T10461] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 224.917576][T10461] CPU: 2 UID: 0 PID: 10461 Comm: syz.1.1278 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 224.920702][T10461] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 224.923764][T10461] Call Trace: [ 224.924731][T10461] [ 224.925592][T10461] dump_stack_lvl+0x16c/0x1f0 [ 224.927027][T10461] should_fail_ex+0x497/0x5b0 [ 224.928423][T10461] _copy_from_user+0x2e/0xd0 [ 224.929774][T10461] move_addr_to_kernel+0x68/0x160 [ 224.931267][T10461] __sys_bind+0x11c/0x260 [ 224.932548][T10461] ? __pfx___sys_bind+0x10/0x10 [ 224.933951][T10461] ? preempt_schedule_thunk+0x1a/0x30 [ 224.935494][T10461] ? __pfx_ksys_write+0x10/0x10 [ 224.936917][T10461] __ia32_sys_bind+0x71/0xb0 [ 224.938272][T10461] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 224.940182][T10461] __do_fast_syscall_32+0x73/0x120 [ 224.941679][T10461] do_fast_syscall_32+0x32/0x80 [ 224.943107][T10461] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 224.944935][T10461] RIP: 0023:0xf7ff0579 [ 224.946114][T10461] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 224.951613][T10461] RSP: 002b:00000000f512555c EFLAGS: 00000296 ORIG_RAX: 0000000000000169 [ 224.954000][T10461] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 0000000020000000 [ 224.956266][T10461] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000 [ 224.958559][T10461] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 224.960851][T10461] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 224.963117][T10461] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 224.965387][T10461] [ 225.000237][T10459] No control pipe specified [ 225.000987][T10461] No control pipe specified [ 225.081043][ T6053] Dead loop on virtual device ipvlan1, fix it urgently! [ 225.101594][T10470] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1283'. [ 225.128852][T10472] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1284'. [ 225.184780][T10474] netlink: 'syz.3.1285': attribute type 27 has an invalid length. [ 225.291048][T10474] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 225.293792][T10474] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 225.296564][T10474] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 225.300650][T10474] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 225.311820][T10474] netdevsim netdevsim3 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0 [ 225.315222][T10474] netdevsim netdevsim3 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0 [ 225.318332][T10474] netdevsim netdevsim3 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0 [ 225.321829][T10474] netdevsim netdevsim3 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0 [ 225.325164][T10474] geneve2: left promiscuous mode [ 225.327348][T10474] vlan1: left promiscuous mode [ 225.338320][T10474] netlink: 136 bytes leftover after parsing attributes in process `syz.3.1285'. [ 225.353932][T10474] 8021q: adding VLAN 0 to HW filter on device bond0 [ 225.356667][T10474] 8021q: adding VLAN 0 to HW filter on device team0 [ 225.370642][T10474] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 225.543271][T10483] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 225.909679][T10497] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1289'. [ 225.913712][T10497] bridge_slave_1: left allmulticast mode [ 225.916096][T10497] bridge_slave_1: left promiscuous mode [ 225.918714][T10497] bridge0: port 2(bridge_slave_1) entered disabled state [ 225.930006][T10497] bridge_slave_0: left allmulticast mode [ 225.931780][T10497] bridge_slave_0: left promiscuous mode [ 225.933727][T10497] bridge0: port 1(bridge_slave_0) entered disabled state [ 225.957756][T10497] bond0: (slave bridge0): Releasing backup interface [ 225.986327][T10497] bridge0 (unregistering): left promiscuous mode [ 226.051740][T10504] SET target dimension over the limit! [ 226.057884][T10502] sch_tbf: burst 274 is lower than device lo mtu (65550) ! [ 226.308254][T10520] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1300'. [ 226.655603][T10524] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1301'. [ 227.741134][T10558] fuse: Bad value for 'fd' [ 227.787412][T10563] netlink: 'syz.4.1312': attribute type 1 has an invalid length. [ 227.789744][T10563] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1312'. [ 227.802094][T10563] bridge0: port 3(team0) entered disabled state [ 227.891248][T10563] bridge0: port 3(team0) entered disabled state [ 227.894240][T10563] team_slave_0: left promiscuous mode [ 227.895885][T10563] team_slave_0: left allmulticast mode [ 227.912901][T10563] team0 (unregistering): Port device team_slave_0 removed [ 227.916005][T10563] team_slave_1: left promiscuous mode [ 227.918363][T10563] team_slave_1: left allmulticast mode [ 227.925220][T10563] team0 (unregistering): Port device team_slave_1 removed [ 228.095202][T10569] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1314'. [ 228.192936][T10572] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1315'. [ 228.732162][T10578] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1317'. [ 229.143443][T10582] sch_tbf: burst 274 is lower than device lo mtu (65550) ! [ 230.063925][T10604] fuse: Bad value for 'fd' [ 230.446606][T10611] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1328'. [ 231.297454][T10633] sch_tbf: burst 274 is lower than device lo mtu (65550) ! [ 231.941619][T10649] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1339'. [ 232.315701][T10662] netlink: 'syz.3.1341': attribute type 1 has an invalid length. [ 232.325199][T10662] 8021q: adding VLAN 0 to HW filter on device bond3 [ 232.327259][T10665] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1342'. [ 233.221791][T10692] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1349'. [ 233.337206][T10696] FAULT_INJECTION: forcing a failure. [ 233.337206][T10696] name failslab, interval 1, probability 0, space 0, times 0 [ 233.340796][T10689] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1348'. [ 233.342129][T10696] CPU: 2 UID: 0 PID: 10696 Comm: syz.3.1351 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 233.349124][T10696] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 233.353307][T10696] Call Trace: [ 233.354610][T10696] [ 233.355782][T10696] dump_stack_lvl+0x16c/0x1f0 [ 233.357616][T10696] should_fail_ex+0x497/0x5b0 [ 233.359446][T10696] ? fs_reclaim_acquire+0xae/0x150 [ 233.361384][T10696] should_failslab+0xc2/0x120 [ 233.363217][T10696] __kmalloc_noprof+0xce/0x4f0 [ 233.365067][T10696] ? tomoyo_encode2+0x100/0x3e0 [ 233.366939][T10696] tomoyo_encode2+0x100/0x3e0 [ 233.368740][T10696] tomoyo_realpath_from_path+0x1a7/0x710 [ 233.370975][T10696] ? tomoyo_path_number_perm+0x235/0x5b0 [ 233.373167][T10696] tomoyo_path_number_perm+0x248/0x5b0 [ 233.375258][T10696] ? tomoyo_path_number_perm+0x235/0x5b0 [ 233.377006][T10696] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 233.378698][T10696] ? __pfx_lock_release+0x10/0x10 [ 233.380117][T10696] ? trace_lock_acquire+0x14e/0x1f0 [ 233.381578][T10696] ? lock_acquire+0x2f/0xb0 [ 233.382841][T10696] ? __fget_files+0x40/0x3a0 [ 233.384131][T10696] ? __fget_files+0x206/0x3a0 [ 233.385459][T10696] security_file_ioctl_compat+0x9b/0x240 [ 233.387031][T10696] __do_compat_sys_ioctl+0x4e/0x2c0 [ 233.388498][T10696] __do_fast_syscall_32+0x73/0x120 [ 233.389904][T10696] do_fast_syscall_32+0x32/0x80 [ 233.391252][T10696] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 233.392992][T10696] RIP: 0023:0xf7f73579 [ 233.394120][T10696] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 233.399291][T10696] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 233.401532][T10696] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c028aa05 [ 233.403696][T10696] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000 [ 233.405821][T10696] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 233.407933][T10696] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 233.410094][T10696] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 233.412305][T10696] [ 233.417641][T10696] ERROR: Out of memory at tomoyo_realpath_from_path. [ 233.453936][T10700] gfs2: gfs2 mount does not exist [ 233.662999][T10710] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 233.934619][T10717] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1357'. [ 234.154582][T10720] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 234.529461][T10731] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1361'. [ 235.331794][T10756] kAFS: unable to lookup cell 'sy>7 †ŸO-z1' [ 235.727804][T10767] netfs: Couldn't get user pages (rc=-14) [ 235.730381][T10767] loop8: detected capacity change from 0 to 18014398509481983 ** 1 printk messages dropped ** [ 235.749932][ C0] BUG: TASK stack guard page was hit at ffffc900001cfff8 (stack is ffffc900001d0000..ffffc900001d8000) [ 235.749945][ C0] Oops: stack guard page: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 235.749966][ C0] CPU: 0 UID: 0 PID: 11 Comm: kworker/u32:0 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0 [ 235.749976][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 235.749982][ C0] Workqueue: loop8 loop_workfn [ 235.749999][ C0] RIP: 0010:get_next_lpos+0x12/0xd0 [ 235.750013][ C0] Code: 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 41 57 41 56 41 55 49 89 f5 41 54 55 48 89 fd 53 89 d3 89 6b 1f 00 4e 8d 34 2b 48 89 ea 48 b8 00 00 00 00 00 fc ff df [ 235.750021][ C0] RSP: 0018:ffffc900001d0000 EFLAGS: 00010093 [ 235.750028][ C0] RAX: 0000000000000000 RBX: 0000000000000058 RCX: ffffffff8179f88c [ 235.750033][ C0] RDX: 0000000000000058 RSI: 0000000000015d28 RDI: ffffffff8dcc8250 [ 235.750038][ C0] RBP: ffffffff8dcc8250 R08: 0000000000000000 R09: fffffbfff1b9904c [ 235.750044][ C0] R10: ffffffff8dcc8267 R11: 0000000000000003 R12: ffffffff8dd95d88 [ 235.750049][ C0] R13: 0000000000015d28 R14: ffffffff8dcc8250 R15: 00000000000013c8 [ 235.750055][ C0] FS: 0000000000000000(0000) GS:ffff88802b400000(0000) knlGS:0000000000000000 [ 235.750074][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 235.750082][ C0] CR2: ffffc900001cfff8 CR3: 000000004b7c2000 CR4: 0000000000352ef0 [ 235.750088][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 235.750093][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 235.750098][ C0] Call Trace: [ 235.750100][ C0] <#DF> [ 235.750104][ C0] ? die+0x31/0x80 [ 235.750113][ C0] ? handle_stack_overflow+0xa4/0xe0 [ 235.750126][ C0] ? get_stack_info_noinstr+0x18/0x120 [ 235.750139][ C0] ? exc_double_fault+0x120/0x1b0 [ 235.750151][ C0] ? asm_exc_double_fault+0x23/0x30 [ 235.750163][ C0] ? data_alloc+0xbc/0x4a0 [ 235.750171][ C0] ? get_next_lpos+0x12/0xd0 [ 235.750182][ C0] [ 235.750185][ C0] [ 235.750188][ C0] data_alloc+0x10f/0x4a0 [ 235.750196][ C0] ? __pfx_data_alloc+0x10/0x10 [ 235.750203][ C0] ? __pfx_desc_make_final+0x10/0x10 [ 235.750214][ C0] prb_reserve+0xa8b/0xf00 [ 235.750223][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 235.750232][ C0] ? __pfx_prb_reserve+0x10/0x10 [ 235.750239][ C0] ? vsnprintf+0x40f/0x1870 [ 235.750250][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 235.750258][ C0] ? printk_parse_prefix+0x66/0x250 [ 235.750268][ C0] vprintk_store+0x4ca/0xc30 [ 235.750278][ C0] ? __pfx_vprintk_store+0x10/0x10 [ 235.750288][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.750297][ C0] ? unwind_get_return_address+0x59/0xa0 [ 235.750307][ C0] ? mark_lock+0xb5/0xc60 [ 235.750319][ C0] ? this_cpu_in_panic+0x5c/0x80 [ 235.750328][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 235.750336][ C0] vprintk_emit+0x160/0x6f0 [ 235.750346][ C0] ? __pfx_vprintk_emit+0x10/0x10 [ 235.750355][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.750363][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.750371][ C0] vprintk+0x7f/0xa0 [ 235.750381][ C0] _printk+0xc8/0x100 [ 235.750389][ C0] ? __pfx__printk+0x10/0x10 [ 235.750396][ C0] ? __pfx_mark_lock+0x10/0x10 [ 235.750409][ C0] ? panic+0x233/0x800 [ 235.750420][ C0] panic+0x255/0x800 [ 235.750430][ C0] ? __pfx_panic+0x10/0x10 [ 235.750440][ C0] ? hlock_class+0x4e/0x130 [ 235.750450][ C0] ? hlock_class+0x4e/0x130 [ 235.750464][ C0] ? __lock_acquire+0xcc5/0x3c40 [ 235.750473][ C0] __schedule+0x5148/0x5ad0 [ 235.750482][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 235.750490][ C0] ? lock_acquire.part.0+0x11b/0x380 [ 235.750498][ C0] ? find_held_lock+0x2d/0x110 [ 235.750508][ C0] ? __pfx___schedule+0x10/0x10 [ 235.750516][ C0] ? schedule+0x298/0x350 [ 235.750524][ C0] ? __pfx_lock_release+0x10/0x10 [ 235.750531][ C0] ? trace_lock_acquire+0x14e/0x1f0 [ 235.750542][ C0] ? lock_acquire+0x2f/0xb0 [ 235.750549][ C0] ? schedule+0x1fd/0x350 [ 235.750557][ C0] schedule+0xe7/0x350 [ 235.750565][ C0] p9_virtio_zc_request+0xfe3/0x1460 [ 235.750576][ C0] ? __pfx_p9_virtio_zc_request+0x10/0x10 [ 235.750585][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.750595][ C0] ? trace_9p_protocol_dump+0x19e/0x220 [ 235.750607][ C0] ? __pfx_autoremove_wake_function+0x10/0x10 [ 235.750621][ C0] ? __pfx_p9_client_prepare_req+0x10/0x10 [ 235.750633][ C0] p9_client_zc_rpc.constprop.0+0x29a/0x880 [ 235.750645][ C0] ? __pfx_p9_client_zc_rpc.constprop.0+0x10/0x10 [ 235.750656][ C0] ? kasan_save_stack+0x42/0x60 [ 235.750667][ C0] ? kmem_cache_free+0x31d/0x4c0 [ 235.750678][ C0] ? p9_req_put+0x1c6/0x250 [ 235.750687][ C0] ? p9_client_read_once+0x3bd/0x820 [ 235.750697][ C0] ? p9_client_read+0x13f/0x1b0 [ 235.750708][ C0] ? v9fs_issue_read+0x115/0x340 [ 235.750719][ C0] ? netfs_retry_reads+0x1508/0x1d40 [ 235.750727][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.750734][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.750742][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.750749][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.750757][ C0] ? hlock_class+0x4e/0x130 [ 235.750766][ C0] ? __pfx_p9_virtio_zc_request+0x10/0x10 [ 235.750775][ C0] p9_client_read_once+0x443/0x820 [ 235.750787][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.750797][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.750804][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.750812][ C0] ? netfs_retry_reads+0x159a/0x1d40 [ 235.750820][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.750828][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.750835][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.750842][ C0] ? netfs_retry_reads+0x159a/0x1d40 [ 235.750850][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.750857][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.750865][ C0] ? netfs_retry_reads+0x159a/0x1d40 [ 235.750873][ C0] p9_client_read+0x13f/0x1b0 [ 235.750884][ C0] v9fs_issue_read+0x115/0x340 [ 235.750894][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.750904][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.750917][ C0] netfs_retry_reads+0x1508/0x1d40 [ 235.750927][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.750938][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.750946][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.750954][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.750967][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.750980][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.750995][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751005][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.751012][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.751022][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.751034][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.751041][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.751051][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.751062][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.751070][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.751079][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751088][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.751100][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.751112][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751122][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.751129][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.751138][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.751151][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.751159][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.751168][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.751179][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.751187][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.751195][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751204][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.751218][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.751230][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751240][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.751248][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.751257][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.751270][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.751278][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.751287][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.751298][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.751306][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.751315][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751324][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.751336][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.751348][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751358][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.751365][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.751375][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.751387][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.751395][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.751404][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.751415][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.751423][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.751431][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751441][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.751452][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.751468][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751478][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.751485][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.751495][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.751508][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.751516][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.751525][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.751536][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.751544][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.751553][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751562][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.751608][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.751621][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751631][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.751638][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.751648][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.751660][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.751668][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.751678][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.751689][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.751697][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.751704][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751714][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.751726][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.751738][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751747][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.751755][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.751764][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.751777][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.751785][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.751794][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.751805][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.751813][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.751822][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751831][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.751843][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.751855][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751865][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.751872][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.751882][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.751894][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.751902][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.751911][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.751922][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.751930][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.751938][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751947][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.751959][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.751971][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.751981][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.751988][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.751998][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752010][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.752018][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.752028][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.752038][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.752046][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.752054][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.752064][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752076][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.752088][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.752097][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.752104][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.752114][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752126][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.752134][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.752144][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.752155][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.752163][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.752171][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.752180][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752192][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.752204][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.752214][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.752221][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.752231][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752243][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.752251][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.752261][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.752272][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.752279][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.752288][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.752297][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752309][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.752321][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.752330][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.752337][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.752347][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752359][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.752367][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.752377][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.752388][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.752396][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.752404][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.752413][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752425][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.752437][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.752447][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.752454][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.752469][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752481][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.752489][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.752499][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.752510][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.752518][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.752526][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.752535][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752547][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.752559][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.752568][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.752575][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.752585][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752597][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.752605][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.752615][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.752626][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.752634][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.752641][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.752651][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752663][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.752675][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.752685][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.752692][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.752701][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752714][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.752721][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.752731][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.752742][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.752750][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.752758][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.752767][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752779][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.752791][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.752801][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.752808][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.752818][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752830][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.752838][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.752847][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.752858][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.752866][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.752874][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.752883][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752895][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.752907][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.752917][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.752924][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.752934][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.752946][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.752954][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.752963][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.752974][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.752982][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.752991][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753000][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753012][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.753023][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753033][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.753040][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.753050][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753062][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.753070][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.753080][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.753091][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.753099][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.753107][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753116][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753128][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.753140][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753150][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.753158][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.753167][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753179][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.753187][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.753197][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.753208][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.753216][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.753224][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753234][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753246][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.753258][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753267][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.753275][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.753285][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753297][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.753305][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.753315][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.753326][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.753334][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.753342][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753351][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753363][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.753375][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753385][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.753392][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.753402][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753414][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.753422][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.753431][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.753442][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.753450][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.753462][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753471][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753483][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.753495][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753505][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.753512][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.753522][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753534][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.753542][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.753552][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.753563][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.753571][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.753579][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753589][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753601][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.753613][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753623][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.753630][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.753640][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753652][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.753660][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.753670][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.753681][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.753689][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.753697][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753707][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753719][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.753731][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753741][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.753748][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.753758][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753770][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.753778][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.753787][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.753798][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.753806][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.753814][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753823][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753835][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.753847][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753857][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.753864][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.753874][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753886][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.753893][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.753903][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.753914][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.753922][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.753930][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753940][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.753952][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.753964][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.753974][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.753981][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.753991][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754003][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.754011][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.754020][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.754031][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.754039][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.754047][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754057][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754069][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.754081][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754091][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.754098][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.754108][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754120][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.754128][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.754138][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.754149][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.754157][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.754165][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754175][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754187][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.754199][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754208][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.754216][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.754225][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754238][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.754245][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.754255][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.754266][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.754274][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.754282][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754294][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754306][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.754318][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754328][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.754335][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.754344][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754357][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.754364][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.754374][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.754385][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.754393][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.754402][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754411][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754423][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.754435][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754445][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.754452][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.754465][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754477][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.754485][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.754495][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.754506][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.754514][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.754522][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754531][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754543][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.754555][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754565][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.754572][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.754582][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754594][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.754602][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.754612][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.754623][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.754631][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.754639][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754648][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754660][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.754672][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754682][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.754689][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.754699][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754711][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.754718][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.754728][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.754739][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.754747][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.754755][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754764][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754776][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.754788][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754798][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.754805][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.754815][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754827][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.754835][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.754845][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.754856][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.754864][ C0] ? netfs_rreq_terminated+0xe5/0x110 [ 235.754872][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754881][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754893][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.754905][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754915][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.754922][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.754932][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.754944][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.754952][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.754962][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.754973][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.754980][ C0] ? netfs_rreq_assess+0x5d3/0x870 [ 235.754988][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.754998][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.755010][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.755022][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.755032][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.755039][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.755048][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.755061][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.755069][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.755078][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.755089][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.755097][ C0] ? v9fs_file_read_iter+0xbf/0x100 [ 235.755114][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.755128][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.755146][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.755163][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.755178][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.755189][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.755205][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.755225][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.755239][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.755256][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.755275][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.755286][ C0] ? loop_process_work+0xa65/0x2000 [ 235.755307][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.755321][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.755339][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.755359][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.755377][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.755390][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.755407][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.755429][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.755444][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.755469][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.755489][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.755505][ C0] ? ret_from_fork+0x45/0x80 [ 235.755521][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.755538][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.755560][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.755602][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.755619][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.755632][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.755651][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.755675][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.755692][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.755711][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.755731][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.755749][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.755766][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.755790][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.755812][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.755829][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.755841][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.755857][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.755877][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.755891][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.755908][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.755927][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.755943][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.755959][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.755978][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.755997][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.756012][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.756024][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.756040][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.756059][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.756072][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.756089][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.756107][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.756122][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.756137][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.756156][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.756175][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.756192][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.756203][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.756219][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.756241][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.756256][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.756275][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.756295][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.756311][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.756328][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.756351][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.756373][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.756392][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.756405][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.756423][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.756447][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.756469][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.756489][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.756508][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.756526][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.756544][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.756567][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.756590][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.756606][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.756619][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.756637][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.756659][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.756674][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.756694][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.756714][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.756730][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.756748][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.756771][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.756792][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.756810][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.756823][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.756842][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.756867][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.756882][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.756900][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.756921][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.756939][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.756957][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.756980][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.757004][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.757024][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.757037][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.757055][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.757077][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.757093][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.757112][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.757133][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.757150][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.757167][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.757191][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.757213][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.757231][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.757245][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.757264][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.757287][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.757302][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.757322][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.757342][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.757359][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.757377][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.757401][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.757424][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.757441][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.757459][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.757478][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.757500][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.757516][ C0] netfs_retry_reads+0x159a/0x1d40 [ 235.757534][ C0] ? __pfx_p9_client_read_once+0x10/0x10 [ 235.757555][ C0] ? __pfx_netfs_retry_reads+0x10/0x10 [ 235.757571][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.757588][ C0] ? trace_netfs_sreq_ref+0x1af/0x230 [ 235.757611][ C0] ? netfs_put_subrequest+0x112/0x4d0 [ 235.757634][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.757653][ C0] netfs_rreq_assess+0x5d3/0x870 [ 235.757666][ C0] ? __pfx_v9fs_issue_read+0x10/0x10 [ 235.757685][ C0] ? __pfx___might_resched+0x10/0x10 [ 235.757702][ C0] netfs_rreq_terminated+0xe5/0x110 [ 235.757718][ C0] netfs_unbuffered_read_iter_locked+0x12e1/0x19a0 [ 235.757743][ C0] ? __pfx_lo_rw_aio_complete+0x10/0x10 [ 235.757768][ C0] netfs_unbuffered_read_iter+0xc5/0x100 [ 235.757792][ C0] v9fs_file_read_iter+0xbf/0x100 [ 235.757811][ C0] lo_rw_aio.isra.0+0x90a/0xcc0 [ 235.757837][ C0] ? __pfx_lo_rw_aio.isra.0+0x10/0x10 [ 235.757857][ C0] ? kthread_associate_blkcg+0x3df/0x7a0 [ 235.757882][ C0] ? kthread_associate_blkcg+0x218/0x7a0 [ 235.757902][ C0] loop_process_work+0xa65/0x2000 [ 235.757928][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 235.757944][ C0] ? lock_acquire+0x2f/0xb0 [ 235.757958][ C0] ? __pfx_loop_process_work+0x10/0x10 [ 235.757983][ C0] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 235.757998][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.758017][ C0] ? trace_lock_acquire+0x14e/0x1f0 [ 235.758036][ C0] ? process_one_work+0x8bb/0x1b30 [ 235.758050][ C0] ? lock_acquire+0x2f/0xb0 [ 235.758076][ C0] ? process_one_work+0x8bb/0x1b30 [ 235.758092][ C0] process_one_work+0x958/0x1b30 [ 235.758109][ C0] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 235.758124][ C0] ? __pfx_process_one_work+0x10/0x10 [ 235.758137][ C0] ? rcu_is_watching+0x12/0xc0 [ 235.758157][ C0] ? assign_work+0x1a0/0x250 [ 235.758180][ C0] worker_thread+0x6c8/0xf00 [ 235.758200][ C0] ? __pfx_worker_thread+0x10/0x10 [ 235.758214][ C0] kthread+0x2c1/0x3a0 [ 235.758231][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 235.758246][ C0] ? __pfx_kthread+0x10/0x10 [ 235.758264][ C0] ret_from_fork+0x45/0x80 [ 235.758277][ C0] ? __pfx_kthread+0x10/0x10 [ 235.758294][ C0] ret_from_fork_asm+0x1a/0x30 [ 235.758320][ C0] [ 235.758325][ C0] Modules linked in: [ 235.758336][ C0] ---[ end trace 0000000000000000 ]--- [ 235.758343][ C0] RIP: 0010:get_next_lpos+0x12/0xd0 [ 235.758367][ C0] Code: 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 41 57 41 56 41 55 49 89 f5 41 54 55 48 89 fd 53 89 d3 89 6b 1f 00 4e 8d 34 2b 48 89 ea 48 b8 00 00 00 00 00 fc ff df [ 235.758381][ C0] RSP: 0018:ffffc900001d0000 EFLAGS: 00010093 [ 235.758393][ C0] RAX: 0000000000000000 RBX: 0000000000000058 RCX: ffffffff8179f88c [ 235.758403][ C0] RDX: 0000000000000058 RSI: 0000000000015d28 RDI: ffffffff8dcc8250 [ 235.758412][ C0] RBP: ffffffff8dcc8250 R08: 0000000000000000 R09: fffffbfff1b9904c [ 235.758422][ C0] R10: ffffffff8dcc8267 R11: 0000000000000003 R12: ffffffff8dd95d88 [ 235.758432][ C0] R13: 0000000000015d28 R14: ffffffff8dcc8250 R15: 00000000000013c8 [ 235.758442][ C0] FS: 0000000000000000(0000) GS:ffff88802b400000(0000) knlGS:0000000000000000 [ 235.758479][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 235.758490][ C0] CR2: ffffc900001cfff8 CR3: 000000004b7c2000 CR4: 0000000000352ef0 [ 235.758501][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 235.758510][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 235.758521][ C0] Kernel panic - not syncing: Fatal exception in interrupt [ 235.759200][ C0] Kernel Offset: disabled VM DIAGNOSIS: 13:19:44 Registers: info registers vcpu 0 CPU#0 RAX=000000000000005b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff851449b5 RDI=ffffffff9a668200 RBP=ffffffff9a6681c0 RSP=fffffe000000caa0 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6b726f776b203a43 R12=0000000000000000 R13=000000000000005b R14=ffffffff85144950 R15=0000000000000000 RIP=ffffffff851449df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b400000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=ffffc900001cfff8 CR3=000000004b7c2000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff813eb2f0 RDX=ffff88801cee4880 RSI=ffffffff813eb338 RDI=ffffffff9330be20 RBP=0000000000000001 RSP=ffffc900005a0fd0 R8 =0000000000000001 R9 =fffffbfff26617c4 R10=ffffffff9330be27 R11=ffffc900005a0ff8 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff813eb339 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b500000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f6502bef4b8 CR3=0000000058b2e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff813eb2f0 RDX=ffff88801cef8000 RSI=ffffffff813eb338 RDI=ffffffff9330be20 RBP=0000000000000002 RSP=ffffc90000548fd0 R8 =0000000000000001 R9 =fffffbfff26617c4 R10=ffffffff9330be27 R11=ffffc90000548ff8 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff813eb339 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f05bb67a440 CR3=0000000062cc8000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff813eb2f0 RDX=ffff88801cefa440 RSI=ffffffff813eb338 RDI=ffffffff9330be20 RBP=0000000000000003 RSP=ffffc900005f8fd0 R8 =0000000000000001 R9 =fffffbfff26617c4 R10=ffffffff9330be27 R11=ffffc900005f8ff8 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff813eb339 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000000c3f9173 CR3=0000000067e00000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c400000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000