last executing test programs: 4.004570157s ago: executing program 0 (id=1490): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(0x0, 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0) accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x800) r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) r3 = socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x14) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r5 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r4, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba35000000000000000700ff020000000000000000000000000001000000000000000000000000000000000000000000000000860090780000000000000000000000000000ee3f000000002b036f8c006e75021d683910c3090b3188a7c747eb2278a273c1b80029442911892704"], 0xfdef) writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1) writev(r3, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1) r6 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) setsockopt$inet_msfilter(r6, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a010000000004"], 0x57) setsockopt$inet_mreqsrc(r2, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc) dup(r1) ioctl$BTRFS_IOC_DEFRAG(r1, 0x50009402, 0x0) r7 = msgget$private(0x0, 0x0) msgsnd(r7, &(0x7f00000005c0)=ANY=[@ANYBLOB="02"], 0x8, 0x0) 3.544622801s ago: executing program 0 (id=1492): unshare(0x62040200) gettid() ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0) syz_usb_connect(0x0, 0x34, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x92, 0xdf, 0x55, 0x10, 0x5ac, 0x9226, 0xb289, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x22, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0xe9, 0x0, 0x0, [], [{{0x9, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [@generic={0x7, 0x5, "d77b5d2898"}]}}]}}]}}]}}, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x2c) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x6, 0x1b, &(0x7f0000001800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000ff0000008500000017000000180100002020690000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000072000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0xfca804a0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) r2 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000140), 0x40, 0x0) ioperm(0x7, 0x5, 0xa) select(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x1000000, 0x4000}) ioctl$FBIOBLANK(r2, 0x4611, 0x0) 3.364563161s ago: executing program 1 (id=1494): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r2 = dup(r1) write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c) sched_setaffinity(0x0, 0x0, 0x0) r3 = syz_open_dev$MSR(0x0, 0x0, 0x0) read$msr(r3, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1b, 0x13, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x78, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, @void, @value}, 0x94) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x104) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={r0, 0x58, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000019480)={0x8, 0x2, &(0x7f0000019440)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x3}], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r5 = socket$phonet_pipe(0x23, 0x5, 0x2) connect$phonet_pipe(r5, &(0x7f0000000200), 0x10) r6 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0) socket$kcm(0x10, 0x2, 0x0) r7 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0) dup3(r6, r7, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) madvise(&(0x7f0000d38000/0x3000)=nil, 0x3000, 0xe) mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000) r8 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$inet(r8, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10) connect$inet(r8, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10) writev(r8, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000380)=[{0x6, 0xae, 0x0, 0x7ffc0000}]}) shutdown(r8, 0x1) recvmmsg(r8, &(0x7f0000003e40), 0x0, 0x40000121, 0x0) 3.295511879s ago: executing program 2 (id=1495): ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000000)={0x3b0b8c4c8ec3f24b, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f00000003c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000040)}) r1 = syz_open_dev$sndctrl(&(0x7f0000000e00), 0x0, 0x0) r2 = syz_open_dev$sg(&(0x7f0000000080), 0xf9ba, 0x14b082) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000580)={0x53, 0x0, 0x6, 0x4, @buffer={0x0, 0x1004, &(0x7f00000018c0)=""/4100}, &(0x7f0000000440)="1518a79105f1", 0x0, 0x84, 0x0, 0x0, 0x0}) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc1105511, &(0x7f00000000c0)={{0xc, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x0, [0x0, 0x0, 0x7ffc, 0x0, 0x9, 0x100000000, 0x0, 0x4, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x8, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x100000000, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffd, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0xfffffffe, 0x0, 0x80000, 0xfffffdfffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xd89, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xdf9cd90, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xbb, 0x0, 0x0, 0x0, 0x0, 0x4000000000000, 0x7ffffffd, 0x0, 0x0, 0xffffffffffff2328, 0xffffffffffffffff, 0x8, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4, 0x0, 0x0, 0x3ff, 0x1, 0x2]}) 3.202816236s ago: executing program 2 (id=1497): socket$inet6_tcp(0xa, 0x1, 0x0) syz_init_net_socket$x25(0x9, 0x5, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0) syz_open_dev$dri(0x0, 0x1, 0x0) syz_open_dev$dri(0x0, 0x1, 0x0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x804}, 0x0) syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='tracefs\x00', 0x0, 0x0) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x2204c3b, &(0x7f0000000180)=ANY=[@ANYBLOB='gid=', @ANYRESHEX=0x0, @ANYBLOB='\x00\x00']) socket$nl_generic(0x10, 0x3, 0x10) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x20082, 0x0) 3.200805141s ago: executing program 3 (id=1498): r0 = socket$kcm(0x10, 0x2, 0x10) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x85, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x4e23, 0x76, @private1={0xfc, 0x1, '\x00', 0x81}, 0x7fbfffff}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf8}, &(0x7f00000001c0)=0x9c) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020023000b02d25a806f8c6394f95e24fc60040f030047000000053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x9, 0xa, [{}, {0x10}]}}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000040), 0x4) syz_open_dev$tty1(0xc, 0x4, 0x1) mount$bind(&(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x11080, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8b24, &(0x7f0000000000)={'wlan0\x00'}) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) r5 = socket(0x10, 0x803, 0x0) sendto(r5, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c40)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0904000000000000000002000000400004803c0001800a00010072616e67650000002c000280080001400012000008000240000000030c00048005000100690000000c00038005000100430000000900010073797a30000000000900020073797a32"], 0x94}}, 0x0) recvmmsg(r5, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f00000006c0)=""/113, 0x71}, {&(0x7f0000000280)=""/77, 0x4d}, {&(0x7f0000001fc0)=""/4111, 0x100f}, {&(0x7f0000000400)=""/92, 0x5c}, {&(0x7f0000000540)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000007c0)=""/147, 0x93}, {&(0x7f0000000340)=""/17, 0x11}], 0x8, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400}) unshare(0x28030600) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x48) socket(0x11, 0x3, 0x0) 2.858508926s ago: executing program 1 (id=1499): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="0000000000000000b70500000800000085000000a50000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) fcntl$setown(r0, 0x8, r1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) r4 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r4, 0x0, 0x1, &(0x7f0000000000)=0xcfc37d7ce62f0304, 0x4) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) mkdir(&(0x7f00000004c0)='./bus\x00', 0x0) r5 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c) r6 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000240)={'syz_tun\x00', 0x0}) bind$packet(r6, &(0x7f0000000300)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @remote}, 0x14) r8 = socket$packet(0x11, 0x3, 0x300) bind$packet(r8, &(0x7f0000000180)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @remote}, 0x14) r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ptype\x00') preadv(r9, &(0x7f0000000000)=[{&(0x7f0000000480)=""/187, 0xbb}], 0x1, 0x4c, 0x0) 2.011009235s ago: executing program 2 (id=1500): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0) accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x800) r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) r3 = socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x14) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r5 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r4, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba35000000000000000700ff020000000000000000000000000001000000000000000000000000000000000000000000000000860090780000000000000000000000000000ee3f000000002b036f8c006e75021d683910c3090b3188a7c747eb2278a273c1b80029442911892704"], 0xfdef) writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1) writev(r3, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1) r6 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) setsockopt$inet_msfilter(r6, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a010000000004"], 0x57) setsockopt$inet_mreqsrc(r2, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc) dup(r1) ioctl$BTRFS_IOC_DEFRAG(r1, 0x50009402, 0x0) r7 = msgget$private(0x0, 0x0) msgsnd(r7, &(0x7f00000005c0)=ANY=[@ANYBLOB="02"], 0x8, 0x0) 1.924463275s ago: executing program 1 (id=1501): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000740), 0x8202, 0x0) mmap$binder(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x11, r1, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x106, 0x6}}, 0x20) write$RDMA_USER_CM_CMD_JOIN_MCAST(r1, &(0x7f0000000300)={0x16, 0x98, 0xfa00, {&(0x7f0000000080), 0x1, r2, 0x10, 0x37ce1a2d7c7a58a6, @ib={0x1b, 0xf800, 0x4, {"ce37e8b540e650a0a207f5d7ee8b552a"}, 0x4, 0x4, 0x6}}}, 0xa0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x111}}, 0x20) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)=@newtaction={0x6c, 0x30, 0x48b, 0x1000, 0x0, {}, [{0x58, 0x1, [@m_nat={0x54, 0x1, 0x0, 0x0, {{0x8}, {0xffffffffffffffd9, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x9, 0xfc000000, 0x7, 0x4, 0xfffffffd}, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xffffffff}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000200)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast2, 0xfffffffc}, {0xa, 0x0, 0x0, @remote}, r3}}, 0x48) syz_extract_tcp_res(0x0, 0x7, 0x8) syz_extract_tcp_res$synack(&(0x7f0000000000), 0x1, 0x0) socket$key(0xf, 0x3, 0x2) 1.924200534s ago: executing program 1 (id=1502): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYBLOB="0000000000000000b70500000800000085000000a500"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) fcntl$setown(r0, 0x8, r1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) r4 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r4, 0x0, 0x1, &(0x7f0000000000)=0xcfc37d7ce62f0304, 0x4) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) mkdir(&(0x7f00000004c0)='./bus\x00', 0x0) r5 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c) r6 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000240)={'syz_tun\x00', 0x0}) bind$packet(r6, &(0x7f0000000300)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @remote}, 0x14) r8 = socket$packet(0x11, 0x3, 0x300) bind$packet(r8, &(0x7f0000000180)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @remote}, 0x14) r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ptype\x00') preadv(r9, &(0x7f0000000000)=[{&(0x7f0000000480)=""/187, 0xbb}], 0x1, 0x4c, 0x0) 1.685403164s ago: executing program 2 (id=1503): r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) r1 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0x0, [{0x0, 0x8}, {}, {}, {0x5}, {0x20000}, {0xfffffffa, 0x6}, {}, {0x3}], 0x0, 0x0, 0x8, 0x0, 0x1}}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000080), 0x208e24b) lseek(r2, 0x0, 0x4) socket$caif_stream(0x25, 0x1, 0x2) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) ioctl$sock_inet_SIOCDELRT(r1, 0x890c, &(0x7f00000000c0)={0x0, {0x2, 0x4e24, @multicast2}, {0x2, 0x4e22, @loopback}, {0x2, 0x4e21, @local}, 0x62, 0x0, 0x0, 0x0, 0x6, 0x0, 0x3, 0xffff, 0x36c}) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) openat$audio(0xffffffffffffff9c, 0x0, 0x2000, 0x0) connect$ax25(r0, &(0x7f0000000040)={{0x3, @null}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast]}, 0x48) socket$inet6_tcp(0xa, 0x1, 0x0) openat$nvram(0xffffff9c, &(0x7f0000000240), 0xeeabf9780b3d0a77, 0x0) r4 = fsopen(&(0x7f0000000040)='afs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000000)='source', &(0x7f0000000200)='#\n$)-.\x02\xcc\xd7\xb2f\xcdY\xb9\xc7\x9d\xb2a\r\xd7\xef\xc5\x112s\x88\n\x13:\xd6\xfa\xd5?\xc7\xfd&\x8d*\xbb|&#\xe9\xa3\'\x91>C\x1bV\x87\xeb\xfe\xda\x89\xb7}@\x8f\x97\x18\xce\x92\xc9\xa8\x1c\x9d\\C\xfeI%\xae\x8fKHq\x89\x83\xbb\x9dC\xd6Hy\xfao\x04\xa4\xb6\x88\xdb\xa1b\xae\xa7\x87\xcc\xc7\xa4\xdc\n=/o\xf3\x96\xaf\b1\x1b48\bu\x01\xab\x90Q\xe8r\xe7\r\'-06,\xff\x84x\'+\xd5\xd4?[e\x19\xa3\\J\xe9\x8a\xb9\xe495\x12B\x06\xe5\x8f\x83Vb\xf1\xbc\xb9E\x1a\x9bH$\x1f^\x9dX\xd0\xca\xcc\xc9\x86\xaa\xd0\x9c\xc0\x82\xabE\xcc{\xcd\xd3\xdb\x97v\x9c\xbd%fN1\xd4[\xa0\x0f\xdd.\x15\xf1)\xd6\xd8\x1cb\xc5\xd9=c\xb5<|+K*\x9f\x01u\xb0\xe4\x98_', 0xfeffffff00000000) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x7, 0x4, &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f00000005c0)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x1}, 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x4, 0x3}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94) r5 = syz_open_dev$mouse(&(0x7f0000000080), 0x8, 0x200080) connect$l2tp(r5, &(0x7f0000000180)={0x2, 0x0, @remote, 0x2}, 0x10) r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, 0x0) 1.570724112s ago: executing program 3 (id=1504): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0) read$char_usb(r0, &(0x7f00000001c0)=""/4068, 0xfe4) openat$procfs(0xffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) syz_emit_vhci(&(0x7f0000007000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x0, 0x12}, @l2cap_cid_signaling={{0xe}, [@l2cap_disconn_rsp={{0x7, 0xbb, 0x4}, {0x2, 0xcba3}}, @l2cap_cmd_rej_unk={{0x1, 0x3, 0x2}, {0x2}}]}}, 0x17) 1.459362451s ago: executing program 0 (id=1505): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000080), 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000280)={0x3, 0x0, 0x0, 0x0, 0x7fffffff}) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000280)={0x0, 0x2, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = shmget$private(0x0, 0x2000, 0x2, &(0x7f0000000000/0x2000)=nil) shmctl$IPC_INFO(r2, 0x3, &(0x7f0000000300)=""/162) socket$inet6(0xa, 0x6, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"]) chdir(&(0x7f0000000100)='./file0\x00') mkdir(0x0, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) mkdirat(0xffffffffffffff9c, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) r3 = socket$alg(0x26, 0x5, 0x0) close(0x3) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000100)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha512\x00'}, 0x58) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, 0x0, 0x0) open(&(0x7f0000000140)='./file0\x00', 0x2c0001, 0x128) chdir(&(0x7f0000000140)='./bus\x00') mknodat$loop(0xffffffffffffffff, 0x0, 0x0, 0x0) rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000280)='./file0\x00') syz_open_procfs(0x0, &(0x7f00000001c0)='net/softnet_stat\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0) 1.459049343s ago: executing program 3 (id=1506): ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000000)={0x3b0b8c4c8ec3f24b, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f00000003c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000040)}) r1 = syz_open_dev$sndctrl(&(0x7f0000000e00), 0x0, 0x0) r2 = syz_open_dev$sg(&(0x7f0000000080), 0xf9ba, 0x14b082) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000580)={0x53, 0x0, 0x6, 0x4, @buffer={0x0, 0x1004, &(0x7f00000018c0)=""/4100}, &(0x7f0000000440)="1518a79105f1", 0x0, 0x84, 0x0, 0x0, 0x0}) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc1105511, &(0x7f00000000c0)={{0xc, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x0, [0x0, 0x0, 0x7ffc, 0x0, 0x9, 0x100000000, 0x0, 0x4, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x8, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x100000000, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffd, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0xfffffffe, 0x0, 0x80000, 0xfffffdfffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xd89, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xdf9cd90, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xbb, 0x0, 0x0, 0x0, 0x0, 0x4000000000000, 0x7ffffffd, 0x0, 0x0, 0xffffffffffff2328, 0xffffffffffffffff, 0x8, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4, 0x0, 0x0, 0x3ff, 0x1, 0x2]}) 1.458516186s ago: executing program 3 (id=1507): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@ipv4_newroute={0x3c, 0x18, 0x35f32a6dfa748ddd, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x1}, @RTA_ENCAP={0x18, 0x16, 0x0, 0x1, @SEG6_IPTUNNEL_SRH={0x14}}]}, 0x3c}}, 0x0) (async) r1 = socket$kcm(0x10, 0x2, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r2, 0x84, 0x4, &(0x7f0000000100)=0xfffffffb, 0x4) bind$inet6(r2, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async) r3 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000300)={0xffffffffffffffff}, 0x4) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000340)=@o_path={&(0x7f00000002c0)='./file0\x00', r3, 0x4000, r1}, 0x14) (async) sendto$inet6(r2, &(0x7f0000847fff)='X', 0x34000, 0xe0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r4 = epoll_create1(0x0) ppoll(&(0x7f0000000080)=[{r4, 0xc011}], 0x1, 0x0, 0x0, 0x0) ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r1, 0x8982, &(0x7f00000005c0)={0x6, 'gre0\x00', {0x2}, 0x200}) (async) r5 = openat$nmem0(0xffffff9c, &(0x7f0000000580), 0x40, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000540)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x13c, 0x13c, 0x4, [@type_tag={0x5, 0x0, 0x0, 0x12, 0x2}, @fwd={0x10}, @union={0x8, 0x7, 0x0, 0x5, 0x1, 0x43, [{0x10, 0x0, 0xc}, {0xa, 0x4, 0x5}, {0xe, 0x2, 0x8}, {0x8, 0x0, 0x3}, {0xc, 0x2, 0x97}, {0x2, 0x4, 0x6}, {0x5, 0x2, 0x607b336f}]}, @enum64={0x2, 0x9, 0x0, 0x13, 0x0, 0xc, [{0xc, 0x3, 0x3}, {0x2, 0xfffffffb, 0xffff}, {0xa, 0x2, 0x80000001}, {0x6, 0x8, 0x24}, {0xd, 0x3, 0x3}, {0x9, 0x0, 0xfffffff0}, {0xb, 0x6, 0xfff}, {0x9, 0x1, 0x81}, {0x3, 0xf, 0x2}]}, @volatile={0x9, 0x0, 0x0, 0x9, 0x3}, @enum64={0x5, 0x2, 0x0, 0x13, 0x1, 0x1, [{0x4, 0x77a40000}, {0x7, 0x7, 0x8000}]}, @var={0x4, 0x0, 0x0, 0xe, 0x2, 0x1}, @func={0x3, 0x0, 0x0, 0xc, 0x1}]}, {0x0, [0x61, 0x30]}}, &(0x7f0000000500)=""/57, 0x158, 0x39, 0x1, 0x8, 0x10000, @value=r5}, 0x28) (async) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000200)={0x0}, &(0x7f0000000240)=0xc) sched_setscheduler(r6, 0x0, &(0x7f0000000280)=0x4) (async) r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder1\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r7, &(0x7f00000000c0)={0x10000001}) (async) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="d6540708714871d9b82b66f1443671976e50d0588835a36d2281356daedc4773c68ea56d45e0ba7bc30d7c04067f646b9fb993162709baff313c40e578eb2f2377b80c1fff9a732b1ee5d4a00ce423718c41fdc21a33f295b209fff720a38fdc6eb8bc9149a63f0249ae41fd717a76029a305f54e140d91e273c9968f4bc0103c88e1376026795f6328b89d300b5cb566d0083bbb842ff55e1557a737204d8272107a426b736ce7ebe46621d6174d135c654e59e38e51070a3c260", 0xbb}, {&(0x7f0000000100)="f0668ce20510fb6d628502edafae052f2dd524587b16a8e358799e6899b686bbab45ba1a464f8c2e7b2a11855f35dc126c9462c6eff84540182126a5160026d87d683e2de31a58fda360665216b2644b5fad6e79ca3af6e7f3f730afb99bd9305df3a48d22c8ca1bda5edce3c21e7d3c57f4cdef084225bcdd9302df72ff", 0x7e}, {&(0x7f0000000180)="8db1567992afbbf9", 0x8}], 0x3, 0x0, 0x0, 0x4a0f0000}, 0x90) 1.301036334s ago: executing program 0 (id=1508): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r2 = dup(r1) write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c) sched_setaffinity(0x0, 0x0, 0x0) r3 = syz_open_dev$MSR(0x0, 0x0, 0x0) read$msr(r3, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1b, 0x13, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x78, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, @void, @value}, 0x94) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x104) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={r0, 0x58, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000019480)={0x8, 0x2, &(0x7f0000019440)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x3}], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', r4, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r5 = socket$phonet_pipe(0x23, 0x5, 0x2) connect$phonet_pipe(r5, &(0x7f0000000200), 0x10) r6 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0) socket$kcm(0x10, 0x2, 0x0) r7 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0) dup3(r6, r7, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) madvise(&(0x7f0000d38000/0x3000)=nil, 0x3000, 0xe) mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000) r8 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$inet(r8, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10) connect$inet(r8, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10) writev(r8, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000380)=[{0x6, 0xae, 0x0, 0x7ffc0000}]}) shutdown(r8, 0x1) recvmmsg(r8, &(0x7f0000003e40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000035c0)=""/241, 0xf1}}, {{&(0x7f0000000540)=@un=@abs, 0x80, &(0x7f0000003780)=[{&(0x7f0000003740)=""/4, 0x4}], 0x1, &(0x7f00000037c0)=""/236, 0xec}}, {{0x0, 0x0, &(0x7f0000003bc0)=[{0x0}, {&(0x7f0000003a00)=""/190, 0xbe}, {&(0x7f0000003ac0)=""/131, 0x83}, {0x0}], 0x4, &(0x7f0000003c00)=""/65, 0x41}}], 0x3, 0x40000121, 0x0) 1.002139186s ago: executing program 1 (id=1509): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="0000000000000000b70500000800000085000000a50000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) fcntl$setown(r0, 0x8, r1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) r4 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r4, 0x0, 0x1, &(0x7f0000000000)=0xcfc37d7ce62f0304, 0x4) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) mkdir(&(0x7f00000004c0)='./bus\x00', 0x0) r5 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c) r6 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000240)={'syz_tun\x00', 0x0}) bind$packet(r6, &(0x7f0000000300)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @remote}, 0x14) r8 = socket$packet(0x11, 0x3, 0x300) bind$packet(r8, &(0x7f0000000180)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @remote}, 0x14) r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ptype\x00') preadv(r9, &(0x7f0000000000)=[{&(0x7f0000000480)=""/187, 0xbb}], 0x1, 0x4c, 0x0) 414.384866ms ago: executing program 3 (id=1510): ioperm(0x0, 0x40, 0x80) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000020000000000000f9ffff0b8500000007000000850000000f00000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) unshare(0x20000400) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000440)='./file1\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f00000001c0)='./bus\x00') fsync(0xffffffffffffffff) 326.877333ms ago: executing program 2 (id=1511): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0) accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x800) r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) r3 = socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x14) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r5 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r4, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba35000000000000000700ff020000000000000000000000000001000000000000000000000000000000000000000000000000860090780000000000000000000000000000ee3f000000002b036f8c006e75021d683910c3090b3188a7c747eb2278a273c1b80029442911892704"], 0xfdef) writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1) writev(r3, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1) r6 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) setsockopt$inet_msfilter(r6, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a010000000004"], 0x57) setsockopt$inet_mreqsrc(r2, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc) dup(r1) ioctl$BTRFS_IOC_DEFRAG(r1, 0x50009402, 0x0) r7 = msgget$private(0x0, 0x0) msgsnd(r7, &(0x7f00000005c0)=ANY=[@ANYBLOB="02"], 0x8, 0x0) 326.411106ms ago: executing program 3 (id=1512): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @broadcast}) write$tun(r0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1c000800010000000000140002004500003400000000008490783fffffffac1414aa00004e23", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="84fe00409078001c0e03020006518838060000002febf30176c4cb8644e156afdf0e2040f8bc31ff8f750454fe11406526210ed0f08b9e37ec57fd592d2caf44b5a94d157aff766bb623bd82cb400a0f053400000000"], 0x42) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = openat$drirender128(0xffffff9c, &(0x7f0000000080), 0x400000, 0x0) ioctl$DRM_IOCTL_ADD_MAP(r2, 0xc0186415, &(0x7f00000000c0)={&(0x7f0000ffd000/0x2000)=nil, 0x4964d62d, 0x5, 0x70}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r3) sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000b40)=ANY=[@ANYBLOB="7b1fba07e1356cfc06300d004c70d0d9ce1e4bb1dc52316ee0455889cac7463d32295f36f005000000552f52f9af3894a0506ca4bcbd1bb41d7915d2a5084127154b8daeeea81701cc4de527635866d44c2120ac73f50d6bb700000000142cf69234595c3afcbcb69eaf08113f84c441a38bbe7de5a1e8ee1c4084933fd419ed82780543ac507f5a6ebcc288de5b58d15c926f665aef5fae93f8e4d98b674a16", @ANYRES16=r4, @ANYBLOB="010000000000fdffffff0200000004006c0008005700a90400006703330030880400080211000001080211000000b96195fb314155001800c3c002002f000100ddd1e548a7ad1fc81db54ea7ca34f9ab25c3da9c2c78a584af8eb8fc7db9b5cea710e8a928242a80a4e504aa60f9ebda215e9443621166e517115933a00574269b630d07db122b9831d2425881d27f1ecf69e866d8e2d2506f35e69cf521752c719ece83801178167d0cc054816baf67f0f73968a28f46339ad7f1eeb7db3068616c07a662c0a49a844827b1c0e108ea875a782dc8caf141fde2b9512bedaddfc24dd3f1d8529cb562862643651483ee00019a668228473685286bd081fbca072f0a2443cb4caa8fa44ee4b9d27e8e1a1f5553ddb573518dcbfc33b599126fa2c71ef5b7cdebb64da66a4c8c7da139d2f319b5ca11a70a36c61c78d5b478f6b37c2a9dccd715be61984192417e47b534722f4f2492a6e5c62b428ffbb579a9b52d74ee2a1ad77a042e0e9ec7ac10903f330374a7ae4cc9f8373f4e4058c47cb28b45e7a414e3700211fc136c571cb9af0216597418b0e90cedb497cc9cb4fabe5b0f5f3ecb78f5f2b7dca89ecb3306ef6bf5c388a4dfebf7fe03698b41b1c5e257aef173d3719738fbd1dd833b57eaac3e0b56b9b5139a08b2ebeab7c9f1ac03cb42885710305e38292cba62e1051617e4a7b55b9af2514d1f3e1af4e54f59f4851a3401fe8172bcbe8226fbaa8b9a68d69eacf6a7831c78031a1fd816ab4988d5663bc6a9822fc3a18c2d057eb4902cced25b0b374822aea64eefc1b106378d413f024a708c9f8263b4958c272210dd6072a5b8bae30d39948e66abdf4d36595b7e12a5f157e19948bd022e23d502a44311b4d4380fff6050483e043f66d6f332b1ea7abe44c463b4d218ac560d4885803cafc016bfa04ec78d789015ad944abd0794e0cd9f5a957ecbc648dabe98f83bdd432884aab359625399da17d7141de8b22484d1fca96363771bd323779b1102dab988a8912e7218a0add7bbf8b3191d8152e6e5dc6134be6ad5985b946aa4245ba7806545dd89308f52a3e49b64b82e7117fe12a1a0aac95bd547935d27aa7a34995964ab765e56640cf7a20e385f50912bcb442ac3fc27c29e05c1b59d302c08a764e814cc7adbe54001641da625f7c09acf48f20c6373afb208d1f3c3684981f5b50b52e4b06094562c3411a1bc1d355c09c7c70c121c80ca35a1f90584f16433bc54154ee1d071d0ebf4f85c11fc0004006c000400870004008e00"], 0x394}}, 0x84) shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x4000) socket$nl_netfilter(0x10, 0x3, 0xc) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r6 = dup(r5) write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c) r7 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x8, 0x0, 0x0, 0x0, r6}, &(0x7f0000000180), &(0x7f00000001c0)) capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000040)) r8 = syz_open_procfs(0x0, &(0x7f0000000080)='net/protocols\x00') read$FUSE(r8, &(0x7f0000003240)={0x2020, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1b11) setgid(r9) io_uring_enter(r7, 0xd0, 0x3ffc, 0x0, 0x0, 0x0) syz_open_procfs(r10, &(0x7f0000000440)='net/raw\x00') r11 = socket(0x9, 0x6, 0x6) connect$inet6(r11, 0x0, 0x0) r12 = add_key$user(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)='R', 0x1, 0xfffffffffffffffd) r13 = add_key$user(&(0x7f0000000480), &(0x7f00000001c0)={'syz', 0x1}, &(0x7f0000000580)="a83862d4d5d87c0c2a5b1e39a086661b60ec4b280613d5c3912cb05e31f981583728d889aa9bf8b4e4a085ccc57008ba04000000000000001619f7f4a7dd75bbe91cf5e7bc54e7285c259ee10c7804325439f8088795414dc6e89fa4b27d31e1e4ca9894809850a3d0e37cc28443be91579cf777211e572d6710c90500fc3741ec5d08ab0c8f7701f0421fd27255c3eac6134ba42616699e8f479d79e5d594eba3fa4c545c1bddedeaa0b5708563175556b40fec7bea131c688f66a2c1", 0xbd, 0xfffffffffffffffe) r14 = add_key$user(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0), 0x0, 0xfffffffffffffffe) keyctl$dh_compute(0x17, &(0x7f0000000100)={r12, r13, r14}, 0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)={'blake2s-224\x00'}}) 318.048219ms ago: executing program 0 (id=1513): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(0x0, 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0) accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x800) r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) r3 = socket$netlink(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x14) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r5 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r4, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba35000000000000000700ff020000000000000000000000000001000000000000000000000000000000000000000000000000860090780000000000000000000000000000ee3f000000002b036f8c006e75021d683910c3090b3188a7c747eb2278a273c1b80029442911892704"], 0xfdef) writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1) writev(r3, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1) r6 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) setsockopt$inet_msfilter(r6, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a010000000004"], 0x57) setsockopt$inet_mreqsrc(r2, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc) dup(r1) ioctl$BTRFS_IOC_DEFRAG(r1, 0x50009402, 0x0) r7 = msgget$private(0x0, 0x0) msgsnd(r7, &(0x7f00000005c0)=ANY=[@ANYBLOB="02"], 0x8, 0x0) 15.813395ms ago: executing program 1 (id=1514): r0 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e21, 0x2000, @ipv4={'\x00', '\xff\xff', @remote}, 0xffffffff}, 0x1c) sendmmsg$inet6(r0, 0x0, 0x0, 0x4000300) r1 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000340)="e8", 0x1}, {0x0, 0x2000000}], 0x2) write$6lowpan_control(r1, &(0x7f0000000000)='connect aa:aa:aa:aa:aa:11 0', 0x1b) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/profiling', 0x149a82, 0x0) write$cgroup_int(r2, &(0x7f0000000000)=0xfe8e, 0x12) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) setxattr$security_capability(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240), &(0x7f0000000280)=@v2, 0x14, 0x0) creat(&(0x7f0000000500)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, 0x0, 0x0) openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0) mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x2000004, &(0x7f00000003c0)=ANY=[@ANYBLOB]) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=@ipv6_deladdrlabel={0x38, 0x49, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x6}, [@IFAL_ADDRESS={0x14, 0x1, @private2}, @IFAL_LABEL={0x8, 0x2, 0x4}]}, 0x38}}, 0x0) r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r5 = dup(r4) r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_ifreq(r6, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7}) ioctl$sock_netdev_private(r6, 0x8949, &(0x7f0000000000)) write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c) ioctl(0xffffffffffffffff, 0x8936, 0x0) 4.672747ms ago: executing program 0 (id=1515): syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000680)=ANY=[@ANYBLOB="b7000000010003c3bfa30000000000000703000020feffff720af0fff8ffffff71a4f0ff0000000065040200000000ff2d400500000000003400000001ed00007b030000000000001d440000000000007a0a00fe00ffffffdb03000000000000b5000000000000009500000000000000023bc065b78111c6dfa041b63af4a3912435f1a864a710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e51815548000000000000000275daf51efd601b6bf01c8e8b1b526375ee4dd6fcd82e4fee5bef7af9aa0d7f300c095199fe3ff3128e599b0eaebbdbd732c9cc00eec36574a8f6456e2ccae25ea21714eca8cf5d803e04d83b46e21557c0afc646cb7790b3e6440c2fbdb00a3e35208b0bb0d2cd829e654400e2400000000000000800643a98d9ec21ead2ed51b104d4d91af25b845b9f75dd08d123deda8ebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987af1714e72ba7616536fd9aa58f2477184b6a89adaf17b0baf587aef370a2d426a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d64364c82770c8204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee7d26b34381fcb59b854e9d5a17f4720082f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67051d355d84ce97bb0c6b4a595e487efbb2d71cde2c10f0bc6980fe78683ac5c0c31032599ddd71063be9261eee52216d009f4c52048ef8c126aeef5f510a8f1aded94a129e4aec6e8d9ab06faffc3a15d96c2ea3e2e04cfe031ed3afa84c401f0ece6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d38df9ba60248d9a0d61282dfb15eb6841bb64a1b3045024a982f3c48153baae2c4e7bf37548c7f1a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c3560811ea6c3560a43364d402ccdd9069bd50b994fd6a34ee18022a579dfc0229cc0dc9881610270928eaeb883418f562ae00003ea96d10f172c0374d6eed826407000000000000004a9c5a90ff59d54d1f92ecc48899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f5c0b000000000000eedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea52acb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d851680f6f2f9a6a8906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f4ca2195234648e0a1ca50db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa19faf67256b56a41fd355b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145eb6dc5f6a9037d2283c42efc54fa84323a3304f41ff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538c6ee6ba65893ff1f928ba7554ba583fef3ec7932f5954f31a878e2fae6691df8b4b7ecd27ce82f7df3e7d1daac43738612e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f62e96753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e96735600000554f327a353511ccedde99493c31ac05a7b57f03ca91a01ba2c60ca99e8ebc15ecb4d91675767999d146aef7799738b292fd64bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d40460780000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120968308c31db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd0000000069ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c204bbec8d722824c0ebca8db1ea4a003fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b393cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9e0600f86909bc90addb7b9aee813df534aac4b32fd691b8068cd849904568916694d461b76a58d88cf0f520310a1e9fdc18cdbef2662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a000000000000000000000000000006acc19808d7cf29bc974b0ea92499a419aa095e203c1bafbb9b9a7c2bca3f0a18ee4952f2d325a56390578f12205db653a536f0100e0eda300a43a13bd1b9f3322405d1efd78e578dc6b3fb84f3738a4b6caa84feda91f3edb32231ec75300000000000087efa51c5d95ecba4e50e529d1e8c89600e809dc3d0a2f65579e23457949a50f2d0455cf79a43746979f99f6a1527f004f1e37a3926937e84fb478199dc1020f4beb98b88b5e7885e9a617aa6c8e10d4202c5afeb06e2f9115558ea12f92d7ae633d44086b3f03b20d546fa66a72e38207c9d20035ab63de71a30f1240de52536941242d23896ab74a3c6670fdc49c14f34fc4eadd6db8d80eba439772bf60a1db1829f1a57d3f18f4edaeb5d37918e6fddcd821da67a0785585a4443440dc65600e64a6a2744c46570e8f46da1ab990ca053cbfe801000000000000000000000000000000d55d7182af2ea5f8d0ad495e3eb9421963a5a683c3dcb2d300aa3b2cfe946d2348c35f5d67d68ac07c8f84b3679e77c2e629ecec7c12c35d6b6971b8ae13cc00956d2227db60c0a461ed2b3ecfb16d19037c8c88c91dda1f904fbbc864e95ad43d6dd6d5eadbcea25682ba4b91e14c3fbfdfd1d680aa1af102d97681656bf56ff0674237ce097d39008cc3257778de878bcd37467386f993be6d20c93a7791e7f2a155ce379b4cda2500108052aeb9bd03ff6d4c5dbda9ff485d6576a492d436d52edcd420e7deaa4343a0add3941ae7c5f58af43866ca64750f43e583ca1ceb3a805e46beef9dca77a4edcbb42aa0caf0bbd6cec72d85540293cb4849b0610800000000000000000000000000000000f9814d5f6c8673c143ff2f901e71b8818665b56f7a03afe3d900007656859db4cb06aaaf9f02cfab5b9e61cc00e8e19429921b8df4c4c53bddea4cc48737842952ff08aeac15685df194ca89da8cf6d29a2be9779181fd5d105af5786094d9130f5826b18b9667b971a994f3fd069629a1052f441e96884f90c91f4a974242aabfc8adbadc9ca27955b5c90f0bd9a46ed044272383d3768871a9c8cfd7948aea445c55684351002ed4a4af45341de8e5e1f33624bd2ec1591dd00bbe05000000f89a928662e9b9449db34394fc5e946fadaee576e28ac0feab4e3585ed43d206218f524083840a78b7236bb7f5e42b5376642f8ad4028d4ead407240e7467d1b37afe20690d7672c7e926fded95cf805516ad836eb730619a05af36fb28329d6feb33219cc9164461a8ba3afd5949b9a6046c53663df30a049414089c1ae8f3476236b05dde8dda4843a62c591f8d2b1a62d0db8dc826219bd87398b33e140792297d023ef52de2e75b9dbbfb8712ccc15c69cfb4c6c1bc2ae74621e536b9d3f09a15dada1561a8192d65cc59d7ed5a6bd61000000000000000000000000000000000000000000000000000000000000000000000000f637782e317d492b2392fd0ea81397a80227f271bad21d688af35a2bd02c15d20f3d62a50e20260642c25f304c8034a5f4d8e45e701dbd84294d1096e715662b8223e10e98c4c38451fc5c702084e3fa9b184e0d0fba44acf3ddfdb2043288fa6b67fa762c8b75d4478756ef240f2b314e4d77a3afb4fcec92248327004d1dac7ac87a6f8cb04d82acc307d60e4713bd9a8f29091d3048c669a5f5439e0a906ce098d177b9579882586511cfe6a23e57c44d1654899f077b5636e4181f3de6b814bedcac5290ad8018bbe4424edc6d9b0e61b404bb7a2d4883bbc200de8332029cbc04a0bc521718348071ec6288906347dcd62b75c72ce26424630ff7bb"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0xe0000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='net/ip6_flowlabel\x00') ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@textreal={0x8, &(0x7f0000000280)="f283d6f8660f10b200980fc75c000f38c972813ef20f0666b9320900000f32640f79615a0f20c06635000000200f22c04f8301c251c25151", 0x38}], 0x1, 0x55, 0x0, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(twofish)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000000)="2c385aa3d49100dc6626c892b6bc", 0xe) accept4(r2, 0x0, 0x0, 0x80000) r3 = socket$inet6_mptcp(0xa, 0x1, 0x106) sendto$inet6(r3, 0x0, 0x0, 0x24000000, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev, 0x8}, 0x1c) recvmsg(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000002c0)=""/106, 0x6a}], 0x1}, 0x2) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1, 0x31, r3, 0x8871b000) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e23, 0x937, @ipv4={'\x00', '\xff\xff', @local}, 0x7f}, 0x1c) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000140)) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x8}]}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2004cb, 0x0, 0x0, 0x0, 0x0, 0x8961, 0x0, 0x5], 0x0, 0x200}) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)) ioctl$KVM_RUN(r4, 0xae80, 0x0) 0s ago: executing program 2 (id=1516): ptrace(0x10, 0x1) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x6, 0x0, 0x0, 0x0, 0x8000000009917, 0x400000000000fffd}, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) mremap(&(0x7f000054e000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f000022c000/0x3000)=nil) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10) r1 = socket(0x11, 0x2, 0x0) setsockopt(r1, 0x107, 0x1, &(0x7f00000001c0)="010000000000060000071a80010061cc", 0x10) r2 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001200)={0x10, 0x1418, 0x1}, 0x10}}, 0x10) close(r1) connect$unix(r1, &(0x7f000057eff8)=@file={0x1, './bus\x00'}, 0x6e) connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @host}, 0x10) r3 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000000)=0x15) ioctl$TCFLSH(r3, 0x40204706, 0x20000000) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r4 = openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VIDIOC_G_EXT_CTRLS(r4, 0xc0185647, &(0x7f0000000080)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000200)={0x50cbfc20ad1a4d3, 0x0, '\x00', @p_u16=0x0}}) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYRESOCT=r4, @ANYRES32=0x0, @ANYBLOB="ac1414aa00000000000000001400000000000000000000000200000000000000000000001c000000000000000000000008000000", @ANYRES16=r3, @ANYBLOB="7f0000017f000001000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="7f000001ac141400000000001c00000000000000000000004700000044aa00210a2101"], 0x230}, 0x0) r5 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003e000b05d25a806c8c6f94f90324fc60100005000a000248053582c137153e37000c0980fc0b10000300", 0x33fe0}], 0x1}, 0x0) r6 = io_uring_setup(0x3eae, &(0x7f0000000080)={0x0, 0xd796, 0x0, 0x1000, 0xd5}) io_uring_register$IORING_REGISTER_BUFFERS(r6, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a) sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0) kernel console output (not intermixed with test programs): 896016][ T8537] $)-.ײfYǝa2s [ 162.896016][ T8537] ' [ 163.181664][ T8546] netlink: 'syz.0.630': attribute type 4 has an invalid length. [ 163.194589][ T8546] netlink: 'syz.0.630': attribute type 4 has an invalid length. [ 163.754099][ T8558] netlink: 20 bytes leftover after parsing attributes in process `syz.3.635'. [ 164.108393][ T8566] netlink: 'syz.1.638': attribute type 4 has an invalid length. [ 164.266164][ T8570] sp0: Synchronizing with TNC [ 165.078411][ T8582] netlink: 32 bytes leftover after parsing attributes in process `syz.3.642'. [ 165.222785][ T8589] netlink: 40 bytes leftover after parsing attributes in process `syz.2.644'. [ 165.749636][ T8602] netlink: 'syz.2.648': attribute type 4 has an invalid length. [ 165.756994][ T8602] netlink: 'syz.2.648': attribute type 4 has an invalid length. [ 165.773677][ T8605] netlink: 'syz.0.649': attribute type 4 has an invalid length. [ 165.780274][ T8605] netlink: 'syz.0.649': attribute type 4 has an invalid length. [ 165.841088][ T8607] netlink: 32 bytes leftover after parsing attributes in process `syz.1.650'. [ 165.966087][ T8609] netlink: 32 bytes leftover after parsing attributes in process `syz.1.651'. [ 166.901440][ T39] kauditd_printk_skb: 32 callbacks suppressed [ 166.901451][ T39] audit: type=1326 audit(1732296050.235:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="syz.3.652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 166.910735][ T39] audit: type=1326 audit(1732296050.245:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="syz.3.652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 166.919233][ T39] audit: type=1326 audit(1732296050.245:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="syz.3.652" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 166.925076][ T39] audit: type=1326 audit(1732296050.245:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="syz.3.652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 166.932474][ T39] audit: type=1326 audit(1732296050.245:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8611 comm="syz.3.652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 167.152829][ T39] audit: type=1326 audit(1732296050.485:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8621 comm="syz.0.655" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 167.164016][ T39] audit: type=1326 audit(1732296050.485:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8621 comm="syz.0.655" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 167.173259][ T39] audit: type=1326 audit(1732296050.505:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8621 comm="syz.0.655" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 167.179936][ T39] audit: type=1326 audit(1732296050.505:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8621 comm="syz.0.655" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 167.186938][ T39] audit: type=1326 audit(1732296050.505:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8621 comm="syz.0.655" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 168.409705][ T8653] netlink: 'syz.0.664': attribute type 4 has an invalid length. [ 168.421707][ T8653] netlink: 'syz.0.664': attribute type 4 has an invalid length. [ 168.812662][ T8661] netlink: 32 bytes leftover after parsing attributes in process `syz.2.668'. [ 169.062602][ T8670] netlink: 'syz.1.670': attribute type 4 has an invalid length. [ 169.099810][ T8670] netlink: 'syz.1.670': attribute type 4 has an invalid length. [ 170.456055][ T8706] sp0: Synchronizing with TNC [ 170.951925][ T8716] sp0: Synchronizing with TNC [ 171.111770][ T8717] sp0: Synchronizing with TNC [ 171.219494][ T8723] netlink: 216 bytes leftover after parsing attributes in process `syz.3.684'. [ 171.222001][ T8723] netlink: 216 bytes leftover after parsing attributes in process `syz.3.684'. [ 171.246066][ T8721] netlink: 'syz.1.683': attribute type 4 has an invalid length. [ 171.274651][ T8721] netlink: 'syz.1.683': attribute type 4 has an invalid length. [ 171.412032][ T8725] netlink: 216 bytes leftover after parsing attributes in process `syz.0.685'. [ 171.415986][ T8725] netlink: 216 bytes leftover after parsing attributes in process `syz.0.685'. [ 173.253063][ T39] kauditd_printk_skb: 41 callbacks suppressed [ 173.253073][ T39] audit: type=1326 audit(1732296056.585:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8748 comm="syz.2.691" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 173.305094][ T39] audit: type=1326 audit(1732296056.605:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8748 comm="syz.2.691" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 173.310874][ T39] audit: type=1326 audit(1732296056.645:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8748 comm="syz.2.691" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 173.318900][ T39] audit: type=1326 audit(1732296056.645:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8748 comm="syz.2.691" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 173.324471][ T39] audit: type=1326 audit(1732296056.645:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8748 comm="syz.2.691" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 173.330439][ T39] audit: type=1326 audit(1732296056.655:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8748 comm="syz.2.691" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 173.335945][ T39] audit: type=1326 audit(1732296056.655:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8748 comm="syz.2.691" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 173.856672][ T8753] netlink: 32 bytes leftover after parsing attributes in process `syz.1.692'. [ 174.257417][ T8760] netlink: 'syz.1.694': attribute type 4 has an invalid length. [ 174.290895][ T8760] netlink: 'syz.1.694': attribute type 4 has an invalid length. [ 175.085651][ T8773] sp0: Synchronizing with TNC [ 175.274282][ T8776] overlay: Unknown parameter 'obj_role' [ 175.275775][ T8778] netlink: 216 bytes leftover after parsing attributes in process `syz.0.699'. [ 175.275801][ T8778] netlink: 216 bytes leftover after parsing attributes in process `syz.0.699'. [ 177.809423][ T8787] netlink: 'syz.2.701': attribute type 4 has an invalid length. [ 177.830238][ T8787] netlink: 'syz.2.701': attribute type 4 has an invalid length. [ 177.978170][ T39] audit: type=1326 audit(1732296061.315:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8788 comm="syz.3.702" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 177.985075][ T39] audit: type=1326 audit(1732296061.315:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8788 comm="syz.3.702" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 177.991816][ T39] audit: type=1326 audit(1732296061.315:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8788 comm="syz.3.702" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 178.652202][ T8796] netlink: 'syz.1.703': attribute type 4 has an invalid length. [ 178.662342][ T8796] netlink: 'syz.1.703': attribute type 4 has an invalid length. [ 178.899793][ T8802] netlink: 32 bytes leftover after parsing attributes in process `syz.0.706'. [ 179.005347][ T39] kauditd_printk_skb: 5 callbacks suppressed [ 179.005358][ T39] audit: type=1326 audit(1732296062.345:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8797 comm="syz.3.704" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 179.013572][ T39] audit: type=1326 audit(1732296062.345:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8797 comm="syz.3.704" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 179.022904][ T39] audit: type=1326 audit(1732296062.355:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8797 comm="syz.3.704" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 179.028642][ T39] audit: type=1326 audit(1732296062.355:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8797 comm="syz.3.704" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 179.035162][ T39] audit: type=1326 audit(1732296062.355:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8797 comm="syz.3.704" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 179.311008][ T8816] netlink: 'syz.1.709': attribute type 4 has an invalid length. [ 179.338584][ T8816] netlink: 'syz.1.709': attribute type 4 has an invalid length. [ 179.359794][ T8817] netlink: 'syz.3.710': attribute type 4 has an invalid length. [ 179.390569][ T8817] netlink: 'syz.3.710': attribute type 4 has an invalid length. [ 180.237750][ T39] audit: type=1326 audit(1732296063.575:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8823 comm="syz.2.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 180.244902][ T39] audit: type=1326 audit(1732296063.575:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8823 comm="syz.2.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 180.252299][ T39] audit: type=1326 audit(1732296063.585:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8823 comm="syz.2.712" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 180.260046][ T39] audit: type=1326 audit(1732296063.585:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8823 comm="syz.2.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 180.269262][ T39] audit: type=1326 audit(1732296063.585:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8823 comm="syz.2.712" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 181.013096][ T8841] netlink: 'syz.2.717': attribute type 4 has an invalid length. [ 181.067335][ T8843] netlink: 'syz.2.717': attribute type 4 has an invalid length. [ 181.674061][ T8861] netlink: 'syz.3.721': attribute type 4 has an invalid length. [ 181.706115][ T8861] netlink: 'syz.3.721': attribute type 4 has an invalid length. [ 183.124698][ T8900] sp0: Synchronizing with TNC [ 184.028994][ T8924] netlink: 'syz.3.740': attribute type 4 has an invalid length. [ 184.064928][ T8924] netlink: 'syz.3.740': attribute type 4 has an invalid length. [ 184.082987][ T39] kauditd_printk_skb: 17 callbacks suppressed [ 184.083003][ T39] audit: type=1326 audit(1732296067.415:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8921 comm="syz.0.742" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 184.091293][ T39] audit: type=1326 audit(1732296067.425:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8921 comm="syz.0.742" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 184.097973][ T8930] ax25_connect(): syz.1.739 uses autobind, please contact jreuter@yaina.de [ 184.098072][ T39] audit: type=1326 audit(1732296067.435:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8921 comm="syz.0.742" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 184.104641][ T8930] kAFS: unable to lookup cell ' [ 184.104641][ T8930] $)-.ײfYǝa2s [ 184.104641][ T8930] ' [ 184.126147][ T39] audit: type=1326 audit(1732296067.435:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8921 comm="syz.0.742" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 184.145789][ T39] audit: type=1326 audit(1732296067.435:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8921 comm="syz.0.742" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 185.326053][ T8946] netlink: 'syz.0.745': attribute type 4 has an invalid length. [ 185.332434][ T8946] netlink: 'syz.0.745': attribute type 4 has an invalid length. [ 185.413513][ T39] audit: type=1326 audit(1732296068.745:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.3.744" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 185.419229][ T39] audit: type=1326 audit(1732296068.745:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.3.744" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 185.424837][ T39] audit: type=1326 audit(1732296068.755:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.3.744" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 185.430505][ T39] audit: type=1326 audit(1732296068.755:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.3.744" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 185.438292][ T39] audit: type=1326 audit(1732296068.765:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8937 comm="syz.3.744" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 185.710703][ T8954] netlink: 'syz.1.748': attribute type 4 has an invalid length. [ 185.717743][ T8954] netlink: 'syz.1.748': attribute type 4 has an invalid length. [ 185.943551][ T8957] netlink: 'syz.2.749': attribute type 4 has an invalid length. [ 185.952251][ T8957] netlink: 'syz.2.749': attribute type 4 has an invalid length. [ 187.218104][ T8972] netlink: 'syz.0.755': attribute type 4 has an invalid length. [ 187.228769][ T8972] netlink: 'syz.0.755': attribute type 4 has an invalid length. [ 187.431307][ T8982] i2c i2c-1: Invalid block write size 34 [ 187.604338][ T8990] netlink: 'syz.1.760': attribute type 4 has an invalid length. [ 187.634468][ T8990] netlink: 'syz.1.760': attribute type 4 has an invalid length. [ 189.671472][ T9028] netlink: 32 bytes leftover after parsing attributes in process `syz.2.769'. [ 189.972464][ T9037] i2c i2c-1: Invalid block write size 34 [ 190.180405][ T39] kauditd_printk_skb: 10 callbacks suppressed [ 190.180563][ T39] audit: type=1326 audit(1732296073.515:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9035 comm="syz.1.773" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 190.188528][ T39] audit: type=1326 audit(1732296073.515:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9035 comm="syz.1.773" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 190.199453][ T39] audit: type=1326 audit(1732296073.515:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9035 comm="syz.1.773" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 190.218736][ T39] audit: type=1326 audit(1732296073.515:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9035 comm="syz.1.773" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 190.231850][ T39] audit: type=1326 audit(1732296073.515:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9035 comm="syz.1.773" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 190.540160][ T9054] netlink: 'syz.1.778': attribute type 4 has an invalid length. [ 190.563271][ T9054] netlink: 'syz.1.778': attribute type 4 has an invalid length. [ 191.339169][ T39] audit: type=1326 audit(1732296074.675:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9067 comm="syz.3.782" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 191.354861][ T39] audit: type=1326 audit(1732296074.685:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9067 comm="syz.3.782" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 191.360974][ T39] audit: type=1326 audit(1732296074.685:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9067 comm="syz.3.782" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 191.366964][ T39] audit: type=1326 audit(1732296074.685:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9067 comm="syz.3.782" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 191.372475][ T39] audit: type=1326 audit(1732296074.685:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9067 comm="syz.3.782" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 191.411318][ T9075] netlink: 'syz.2.783': attribute type 4 has an invalid length. [ 191.466381][ T9077] netlink: 32 bytes leftover after parsing attributes in process `syz.3.784'. [ 191.470271][ T9075] netlink: 'syz.2.783': attribute type 4 has an invalid length. [ 191.969109][ T9088] netlink: 216 bytes leftover after parsing attributes in process `syz.3.789'. [ 191.971624][ T9088] netlink: 216 bytes leftover after parsing attributes in process `syz.3.789'. [ 192.701948][ T9097] netlink: 'syz.0.790': attribute type 4 has an invalid length. [ 192.724898][ T9097] netlink: 'syz.0.790': attribute type 4 has an invalid length. [ 192.831833][ T9100] netlink: 'syz.1.791': attribute type 4 has an invalid length. [ 192.846890][ T9100] netlink: 'syz.1.791': attribute type 4 has an invalid length. [ 193.586674][ T1409] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.588419][ T1409] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.412658][ T9123] i2c i2c-1: Invalid block write size 34 [ 195.621716][ T9141] sp0: Synchronizing with TNC [ 195.986215][ T39] kauditd_printk_skb: 21 callbacks suppressed [ 195.986227][ T39] audit: type=1326 audit(1732296079.275:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9137 comm="syz.0.803" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 195.993321][ T39] audit: type=1326 audit(1732296079.275:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9137 comm="syz.0.803" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 195.999110][ T39] audit: type=1326 audit(1732296079.275:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9137 comm="syz.0.803" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 196.004622][ T39] audit: type=1326 audit(1732296079.285:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9137 comm="syz.0.803" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 196.010535][ T39] audit: type=1326 audit(1732296079.295:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9137 comm="syz.0.803" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 196.016226][ T39] audit: type=1326 audit(1732296079.295:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9137 comm="syz.0.803" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 196.022366][ T39] audit: type=1326 audit(1732296079.335:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9143 comm="syz.1.804" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 196.029065][ T39] audit: type=1326 audit(1732296079.335:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9143 comm="syz.1.804" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 196.034925][ T39] audit: type=1326 audit(1732296079.335:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9143 comm="syz.1.804" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 196.050618][ T39] audit: type=1326 audit(1732296079.335:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9143 comm="syz.1.804" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 196.417436][ T9149] netlink: 'syz.0.805': attribute type 4 has an invalid length. [ 196.430110][ T9149] netlink: 'syz.0.805': attribute type 4 has an invalid length. [ 196.629792][ T9159] netlink: 216 bytes leftover after parsing attributes in process `syz.2.809'. [ 196.632146][ T9159] netlink: 216 bytes leftover after parsing attributes in process `syz.2.809'. [ 197.770434][ T9169] netlink: 'syz.3.810': attribute type 4 has an invalid length. [ 197.783570][ T9169] netlink: 'syz.3.810': attribute type 4 has an invalid length. [ 198.719884][ T9192] netlink: 24 bytes leftover after parsing attributes in process `syz.0.813'. [ 199.159497][ T9203] ax25_connect(): syz.0.815 uses autobind, please contact jreuter@yaina.de [ 199.163152][ T9203] kAFS: unable to lookup cell ' [ 199.163152][ T9203] $)-.ײfYǝa2s [ 199.163152][ T9203] ' [ 200.105120][ T9212] ax25_connect(): syz.2.819 uses autobind, please contact jreuter@yaina.de [ 200.112916][ T9212] kAFS: unable to lookup cell ' [ 200.112916][ T9212] $)-.ײfYǝa2s [ 200.112916][ T9212] ' [ 200.395841][ T9224] netlink: 'syz.3.821': attribute type 4 has an invalid length. [ 200.439303][ T9224] netlink: 'syz.3.821': attribute type 4 has an invalid length. [ 201.995634][ T39] kauditd_printk_skb: 42 callbacks suppressed [ 201.995645][ T39] audit: type=1326 audit(1732296085.325:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9253 comm="syz.3.831" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 202.004521][ T39] audit: type=1326 audit(1732296085.325:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9253 comm="syz.3.831" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 202.011923][ T39] audit: type=1326 audit(1732296085.345:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9253 comm="syz.3.831" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 202.035997][ T39] audit: type=1326 audit(1732296085.345:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9253 comm="syz.3.831" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 202.042696][ T39] audit: type=1326 audit(1732296085.345:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9253 comm="syz.3.831" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 202.052560][ T39] audit: type=1326 audit(1732296085.355:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9246 comm="syz.1.829" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 202.059213][ T39] audit: type=1326 audit(1732296085.355:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9246 comm="syz.1.829" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 202.065412][ T39] audit: type=1326 audit(1732296085.355:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9246 comm="syz.1.829" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 202.071312][ T39] audit: type=1326 audit(1732296085.355:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9246 comm="syz.1.829" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 202.084627][ T39] audit: type=1326 audit(1732296085.355:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9246 comm="syz.1.829" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 202.221191][ T9262] netlink: 'syz.0.832': attribute type 4 has an invalid length. [ 202.255436][ T9262] netlink: 'syz.0.832': attribute type 4 has an invalid length. [ 203.680336][ T9305] netlink: 'syz.3.843': attribute type 4 has an invalid length. [ 203.713438][ T9305] netlink: 'syz.3.843': attribute type 4 has an invalid length. [ 203.759610][ T9313] netlink: 216 bytes leftover after parsing attributes in process `syz.2.847'. [ 203.762008][ T9313] netlink: 216 bytes leftover after parsing attributes in process `syz.2.847'. [ 203.918551][ T9315] netlink: 'syz.0.848': attribute type 4 has an invalid length. [ 203.929775][ T9315] netlink: 'syz.0.848': attribute type 4 has an invalid length. [ 205.099457][ T9327] netlink: 'syz.0.850': attribute type 4 has an invalid length. [ 205.110469][ T9327] netlink: 'syz.0.850': attribute type 4 has an invalid length. [ 205.298527][ T9329] FAULT_INJECTION: forcing a failure. [ 205.298527][ T9329] name failslab, interval 1, probability 0, space 0, times 0 [ 205.302263][ T9329] CPU: 2 UID: 0 PID: 9329 Comm: syz.3.851 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 205.304914][ T9329] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 205.307975][ T9329] Call Trace: [ 205.309203][ T9329] [ 205.310057][ T9329] dump_stack_lvl+0x16c/0x1f0 [ 205.311297][ T9329] should_fail_ex+0x497/0x5b0 [ 205.312648][ T9329] ? fs_reclaim_acquire+0xae/0x150 [ 205.314013][ T9329] should_failslab+0xc2/0x120 [ 205.315253][ T9329] kmem_cache_alloc_node_noprof+0x71/0x310 [ 205.317032][ T9329] ? __alloc_skb+0x2b3/0x380 [ 205.318689][ T9329] __alloc_skb+0x2b3/0x380 [ 205.320316][ T9329] ? __pfx___alloc_skb+0x10/0x10 [ 205.322028][ T9329] ? lock_acquire+0x2f/0xb0 [ 205.323716][ T9329] netlink_alloc_large_skb+0x69/0x130 [ 205.325669][ T9329] netlink_sendmsg+0x689/0xd70 [ 205.327358][ T9329] ? __pfx_netlink_sendmsg+0x10/0x10 [ 205.329084][ T9329] ____sys_sendmsg+0x9ae/0xb40 [ 205.330476][ T9329] ? __pfx_____sys_sendmsg+0x10/0x10 [ 205.331877][ T9329] ? get_compat_msghdr+0x11b/0x170 [ 205.333637][ T9329] ___sys_sendmsg+0x135/0x1e0 [ 205.335052][ T9329] ? __pfx____sys_sendmsg+0x10/0x10 [ 205.336648][ T9329] ? __pfx_lock_release+0x10/0x10 [ 205.338435][ T9329] ? trace_lock_acquire+0x14a/0x1d0 [ 205.340247][ T9329] ? __fget_files+0x206/0x3a0 [ 205.341791][ T9329] __sys_sendmsg+0x16e/0x220 [ 205.343251][ T9329] ? __pfx___sys_sendmsg+0x10/0x10 [ 205.344644][ T9329] __do_fast_syscall_32+0x73/0x120 [ 205.346010][ T9329] do_fast_syscall_32+0x32/0x80 [ 205.347516][ T9329] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 205.349210][ T9329] RIP: 0023:0xf7fbf579 [ 205.350304][ T9329] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 205.355442][ T9329] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 205.357974][ T9329] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000040 [ 205.360791][ T9329] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 205.363354][ T9329] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 205.365568][ T9329] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 205.367986][ T9329] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 205.370859][ T9329] [ 205.420203][ T9335] netlink: 216 bytes leftover after parsing attributes in process `syz.3.853'. [ 205.423208][ T9335] netlink: 216 bytes leftover after parsing attributes in process `syz.3.853'. [ 205.448481][ T9333] i2c i2c-1: Invalid block write size 34 [ 205.568639][ T9343] netlink: 24 bytes leftover after parsing attributes in process `syz.1.857'. [ 206.881816][ T9356] netlink: 'syz.1.860': attribute type 4 has an invalid length. [ 206.948104][ T9356] netlink: 'syz.1.860': attribute type 4 has an invalid length. [ 207.090431][ T39] kauditd_printk_skb: 12 callbacks suppressed [ 207.090444][ T39] audit: type=1326 audit(1732296090.425:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9358 comm="syz.2.861" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 207.099983][ T39] audit: type=1326 audit(1732296090.435:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9358 comm="syz.2.861" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 207.106870][ T39] audit: type=1326 audit(1732296090.445:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9358 comm="syz.2.861" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 207.112617][ T39] audit: type=1326 audit(1732296090.445:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9358 comm="syz.2.861" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 207.124961][ T39] audit: type=1326 audit(1732296090.445:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9358 comm="syz.2.861" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 207.357129][ T9369] i2c i2c-1: Invalid block write size 34 [ 207.431039][ T9375] netlink: 24 bytes leftover after parsing attributes in process `syz.2.866'. [ 208.293624][ T9398] netlink: 216 bytes leftover after parsing attributes in process `syz.1.871'. [ 208.299281][ T9398] netlink: 216 bytes leftover after parsing attributes in process `syz.1.871'. [ 208.478957][ T39] audit: type=1326 audit(1732296091.805:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9392 comm="syz.0.869" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 208.487132][ T39] audit: type=1326 audit(1732296091.805:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9392 comm="syz.0.869" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 208.492733][ T39] audit: type=1326 audit(1732296091.805:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9392 comm="syz.0.869" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 208.498900][ T39] audit: type=1326 audit(1732296091.805:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9392 comm="syz.0.869" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 208.510944][ T39] audit: type=1326 audit(1732296091.825:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9392 comm="syz.0.869" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 209.270889][ T9414] validate_nla: 2 callbacks suppressed [ 209.270901][ T9414] netlink: 'syz.2.876': attribute type 4 has an invalid length. [ 209.356832][ T9412] netlink: 'syz.2.876': attribute type 4 has an invalid length. [ 209.816145][ T9432] ax25_connect(): syz.3.886 uses autobind, please contact jreuter@yaina.de [ 209.827487][ T9432] kAFS: unable to lookup cell ' [ 209.827487][ T9432] $)-.ײfYǝa2s [ 209.827487][ T9432] ' [ 209.939803][ T9437] netlink: 216 bytes leftover after parsing attributes in process `syz.2.881'. [ 209.943053][ T9437] netlink: 216 bytes leftover after parsing attributes in process `syz.2.881'. [ 210.604502][ T9452] netlink: 216 bytes leftover after parsing attributes in process `syz.1.885'. [ 210.607393][ T9452] netlink: 216 bytes leftover after parsing attributes in process `syz.1.885'. [ 211.302719][ T9461] netlink: 'syz.0.888': attribute type 4 has an invalid length. [ 211.321236][ T9461] netlink: 'syz.0.888': attribute type 4 has an invalid length. [ 211.334513][ T9462] netlink: 'syz.3.887': attribute type 4 has an invalid length. [ 211.345994][ T9462] netlink: 'syz.3.887': attribute type 4 has an invalid length. [ 212.566459][ T9480] netlink: 32 bytes leftover after parsing attributes in process `syz.0.891'. [ 212.575813][ T39] kauditd_printk_skb: 32 callbacks suppressed [ 212.575823][ T39] audit: type=1326 audit(1732296095.915:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9473 comm="syz.3.890" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 212.594830][ T39] audit: type=1326 audit(1732296095.915:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9473 comm="syz.3.890" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 212.600425][ T39] audit: type=1326 audit(1732296095.915:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9473 comm="syz.3.890" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 212.629734][ T39] audit: type=1326 audit(1732296095.915:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9473 comm="syz.3.890" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 212.639410][ T39] audit: type=1326 audit(1732296095.915:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9473 comm="syz.3.890" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 212.707424][ T39] audit: type=1326 audit(1732296096.045:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9475 comm="syz.1.899" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 212.718068][ T39] audit: type=1326 audit(1732296096.045:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9475 comm="syz.1.899" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 212.731384][ T39] audit: type=1326 audit(1732296096.045:775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9475 comm="syz.1.899" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 212.739034][ T39] audit: type=1326 audit(1732296096.045:776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9475 comm="syz.1.899" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 212.750139][ T39] audit: type=1326 audit(1732296096.045:777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9475 comm="syz.1.899" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 212.869989][ T9488] netlink: 'syz.0.892': attribute type 4 has an invalid length. [ 212.878344][ T9488] netlink: 'syz.0.892': attribute type 4 has an invalid length. [ 213.072182][ T9495] netlink: 'syz.1.895': attribute type 4 has an invalid length. [ 213.126527][ T9495] netlink: 'syz.1.895': attribute type 4 has an invalid length. [ 214.229701][ T9514] netlink: 216 bytes leftover after parsing attributes in process `syz.0.903'. [ 214.232864][ T9514] netlink: 216 bytes leftover after parsing attributes in process `syz.0.903'. [ 215.602959][ T9526] netlink: 216 bytes leftover after parsing attributes in process `syz.1.906'. [ 215.605459][ T9526] netlink: 216 bytes leftover after parsing attributes in process `syz.1.906'. [ 216.049927][ T9538] validate_nla: 4 callbacks suppressed [ 216.050053][ T9538] netlink: 'syz.3.909': attribute type 4 has an invalid length. [ 216.071045][ T9538] netlink: 'syz.3.909': attribute type 4 has an invalid length. [ 216.208248][ T9542] netlink: 32 bytes leftover after parsing attributes in process `syz.2.911'. [ 216.346254][ T9544] netlink: 216 bytes leftover after parsing attributes in process `syz.2.912'. [ 216.349294][ T9544] netlink: 216 bytes leftover after parsing attributes in process `syz.2.912'. [ 216.548118][ T9547] netlink: 216 bytes leftover after parsing attributes in process `syz.0.913'. [ 216.551058][ T9547] netlink: 216 bytes leftover after parsing attributes in process `syz.0.913'. [ 217.681971][ T39] kauditd_printk_skb: 25 callbacks suppressed [ 217.681988][ T39] audit: type=1326 audit(1732296101.015:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.3.916" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 217.694699][ T39] audit: type=1326 audit(1732296101.025:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.3.916" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 217.706081][ T39] audit: type=1326 audit(1732296101.025:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.3.916" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 217.712940][ T39] audit: type=1326 audit(1732296101.025:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.3.916" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 217.719984][ T39] audit: type=1326 audit(1732296101.025:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.3.916" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 217.727189][ T39] audit: type=1326 audit(1732296101.035:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.3.916" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 217.735225][ T39] audit: type=1326 audit(1732296101.035:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.3.916" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 217.742673][ T39] audit: type=1326 audit(1732296101.035:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.3.916" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 217.834653][ T39] audit: type=1326 audit(1732296101.165:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9558 comm="syz.0.917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 217.840894][ T39] audit: type=1326 audit(1732296101.165:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9558 comm="syz.0.917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 217.899955][ T9568] netlink: 'syz.2.919': attribute type 4 has an invalid length. [ 217.929877][ T9568] netlink: 'syz.2.919': attribute type 4 has an invalid length. [ 217.955397][ T9570] netlink: 32 bytes leftover after parsing attributes in process `syz.0.920'. [ 218.152761][ T9576] netlink: 216 bytes leftover after parsing attributes in process `syz.0.923'. [ 218.155062][ T9576] netlink: 216 bytes leftover after parsing attributes in process `syz.0.923'. [ 219.349762][ T9596] netlink: 'syz.0.928': attribute type 4 has an invalid length. [ 219.402408][ T9596] netlink: 'syz.0.928': attribute type 4 has an invalid length. [ 219.612468][ T9598] ax25_connect(): syz.3.930 uses autobind, please contact jreuter@yaina.de [ 219.615690][ T9598] kAFS: unable to lookup cell ' [ 219.615690][ T9598] $)-.ײfYǝa2s [ 219.615690][ T9598] ' [ 221.097948][ T9629] __nla_validate_parse: 3 callbacks suppressed [ 221.097960][ T9629] netlink: 24 bytes leftover after parsing attributes in process `syz.3.938'. [ 221.399845][ T9641] netlink: 32 bytes leftover after parsing attributes in process `syz.0.942'. [ 221.402971][ T9643] 9pnet_virtio: no channels available for device syz [ 221.408531][ T9643] netlink: 32 bytes leftover after parsing attributes in process `syz.3.943'. [ 221.669124][ T9649] ax25_connect(): syz.1.947 uses autobind, please contact jreuter@yaina.de [ 221.679841][ T9649] kAFS: unable to lookup cell ' [ 221.679841][ T9649] $)-.ײfYǝa2s [ 221.679841][ T9649] ' [ 221.695670][ T9662] FAULT_INJECTION: forcing a failure. [ 221.695670][ T9662] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 221.701087][ T9662] CPU: 0 UID: 0 PID: 9662 Comm: syz.3.949 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 221.703850][ T9662] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 221.706716][ T9662] Call Trace: [ 221.707632][ T9662] [ 221.708431][ T9662] dump_stack_lvl+0x16c/0x1f0 [ 221.709738][ T9662] should_fail_ex+0x497/0x5b0 [ 221.711005][ T9662] _copy_from_user+0x2e/0xd0 [ 221.712250][ T9662] kstrtouint_from_user+0xd7/0x1c0 [ 221.713637][ T9662] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 221.715170][ T9662] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 221.716676][ T9662] proc_fail_nth_write+0x84/0x250 [ 221.718052][ T9662] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 221.719715][ T9662] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 221.721283][ T9662] vfs_write+0x24c/0x1150 [ 221.722485][ T9662] ? __fget_files+0x1fc/0x3a0 [ 221.723763][ T9662] ? __pfx___mutex_lock+0x10/0x10 [ 221.725119][ T9662] ? __pfx_vfs_write+0x10/0x10 [ 221.726404][ T9662] ? __fget_files+0x206/0x3a0 [ 221.727675][ T9662] ksys_write+0x12b/0x250 [ 221.728816][ T9662] ? __pfx_ksys_write+0x10/0x10 [ 221.730176][ T9662] __do_fast_syscall_32+0x73/0x120 [ 221.731522][ T9662] do_fast_syscall_32+0x32/0x80 [ 221.732791][ T9662] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 221.734450][ T9662] RIP: 0023:0xf7fbf579 [ 221.735516][ T9662] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 221.740427][ T9662] RSP: 002b:00000000f5125590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 221.742538][ T9662] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5125620 [ 221.744542][ T9662] RDX: 0000000000000001 RSI: 00000000f744dff4 RDI: 0000000000000000 [ 221.746564][ T9662] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 221.748571][ T9662] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 221.750545][ T9662] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 221.752593][ T9662] [ 222.640772][ T9683] trusted_key: syz.2.953 sent an empty control message without MSG_MORE. [ 222.782792][ T9688] netlink: 32 bytes leftover after parsing attributes in process `syz.0.955'. [ 222.811215][ T9690] 9pnet_virtio: no channels available for device syz [ 222.831540][ T9690] netlink: 32 bytes leftover after parsing attributes in process `syz.1.954'. [ 222.978777][ T9695] i2c i2c-1: Invalid block write size 34 [ 223.117214][ T9706] FAULT_INJECTION: forcing a failure. [ 223.117214][ T9706] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 223.120694][ T9706] CPU: 1 UID: 0 PID: 9706 Comm: syz.1.960 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 223.123359][ T9706] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 223.126237][ T9706] Call Trace: [ 223.127118][ T9706] [ 223.127922][ T9706] dump_stack_lvl+0x16c/0x1f0 [ 223.129182][ T9706] should_fail_ex+0x497/0x5b0 [ 223.130423][ T9706] _copy_from_user+0x2e/0xd0 [ 223.131650][ T9706] memdup_user+0x71/0xd0 [ 223.132771][ T9706] strndup_user+0x78/0xe0 [ 223.133920][ T9706] __ia32_sys_mount+0x138/0x310 [ 223.135199][ T9706] ? __pfx___ia32_sys_mount+0x10/0x10 [ 223.136604][ T9706] __do_fast_syscall_32+0x73/0x120 [ 223.137984][ T9706] do_fast_syscall_32+0x32/0x80 [ 223.139314][ T9706] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 223.140960][ T9706] RIP: 0023:0xf745e579 [ 223.142051][ T9706] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 223.147108][ T9706] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015 [ 223.149320][ T9706] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 0000000020000000 [ 223.151368][ T9706] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 0000000020000340 [ 223.153441][ T9706] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 223.155489][ T9706] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 223.157552][ T9706] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 223.159635][ T9706] [ 223.160504][ C1] vkms_vblank_simulate: vblank timer overrun [ 223.237059][ T39] kauditd_printk_skb: 21 callbacks suppressed [ 223.237072][ T39] audit: type=1326 audit(1732296106.575:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9700 comm="syz.0.958" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 223.249403][ T39] audit: type=1326 audit(1732296106.575:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9700 comm="syz.0.958" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 223.256915][ T39] audit: type=1326 audit(1732296106.585:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9700 comm="syz.0.958" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 223.264358][ T39] audit: type=1326 audit(1732296106.585:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9700 comm="syz.0.958" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 223.272524][ T39] audit: type=1326 audit(1732296106.585:838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9700 comm="syz.0.958" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 223.656429][ T9714] netlink: 32 bytes leftover after parsing attributes in process `syz.3.963'. [ 223.906470][ T9723] netlink: 32 bytes leftover after parsing attributes in process `syz.3.964'. [ 224.140344][ T9725] netlink: 24 bytes leftover after parsing attributes in process `syz.3.965'. [ 224.209534][ T39] audit: type=1326 audit(1732296107.545:839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.2.962" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 224.217817][ T39] audit: type=1326 audit(1732296107.555:840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.2.962" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 224.227919][ T39] audit: type=1326 audit(1732296107.565:841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.2.962" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 224.233950][ T39] audit: type=1326 audit(1732296107.565:842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.2.962" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 224.252266][ T39] audit: type=1326 audit(1732296107.565:843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9716 comm="syz.2.962" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 224.261048][ T9735] i2c i2c-1: Invalid block write size 34 [ 224.326517][ T9736] netlink: 'syz.1.968': attribute type 4 has an invalid length. [ 224.408772][ T9736] netlink: 'syz.1.968': attribute type 4 has an invalid length. [ 225.594055][ T9760] ax25_connect(): syz.3.976 uses autobind, please contact jreuter@yaina.de [ 225.598663][ T9760] kAFS: unable to lookup cell ' [ 225.598663][ T9760] $)-.ײfYǝa2s [ 225.598663][ T9760] ' [ 225.638470][ T9773] i2c i2c-1: Invalid block write size 34 [ 225.748792][ T9779] i2c i2c-1: Invalid block write size 34 [ 226.261621][ T9795] netlink: 24 bytes leftover after parsing attributes in process `syz.0.983'. [ 226.313682][ T9799] FAULT_INJECTION: forcing a failure. [ 226.313682][ T9799] name failslab, interval 1, probability 0, space 0, times 0 [ 226.317128][ T9799] CPU: 0 UID: 0 PID: 9799 Comm: syz.0.984 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 226.319738][ T9799] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 226.322522][ T9799] Call Trace: [ 226.323410][ T9799] [ 226.324193][ T9799] dump_stack_lvl+0x16c/0x1f0 [ 226.325436][ T9799] should_fail_ex+0x497/0x5b0 [ 226.326686][ T9799] ? __pfx___ip_dev_find+0x10/0x10 [ 226.328054][ T9799] ? __pfx___lock_acquire+0x10/0x10 [ 226.329424][ T9799] should_failslab+0xc2/0x120 [ 226.330649][ T9799] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 226.332048][ T9799] ? dst_alloc+0x99/0x1a0 [ 226.333193][ T9799] dst_alloc+0x99/0x1a0 [ 226.334289][ T9799] rt_dst_alloc+0x35/0x3a0 [ 226.335444][ T9799] ip_route_output_key_hash_rcu+0x8a5/0x2770 [ 226.337005][ T9799] ? check_noncircular+0x335/0x400 [ 226.338374][ T9799] ip_route_output_key_hash+0x138/0x2e0 [ 226.339801][ T9799] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 226.341392][ T9799] ? __pfx_lock_release+0x10/0x10 [ 226.342692][ T9799] ? trace_lock_acquire+0x14a/0x1d0 [ 226.343996][ T9799] ? __page_table_check_zero+0x2d7/0x360 [ 226.345279][ T9799] ip_route_output_flow+0x27/0x150 [ 226.346580][ T9799] udp_sendmsg+0x1b92/0x29b0 [ 226.347818][ T9799] ? __pfx_ip_generic_getfrag+0x10/0x10 [ 226.349163][ T9799] ? __pfx_udp_sendmsg+0x10/0x10 [ 226.350494][ T9799] ? __pfx_mark_lock+0x10/0x10 [ 226.351758][ T9799] ? __pfx___might_resched+0x10/0x10 [ 226.353125][ T9799] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 226.354666][ T9799] ? aa_sk_perm+0x2f5/0xb20 [ 226.355860][ T9799] ? __import_iovec+0x1f2/0x6d0 [ 226.357141][ T9799] ? __pfx_udp_sendmsg+0x10/0x10 [ 226.358444][ T9799] inet_sendmsg+0x105/0x140 [ 226.359638][ T9799] ____sys_sendmsg+0x907/0xb40 [ 226.360899][ T9799] ? __pfx_____sys_sendmsg+0x10/0x10 [ 226.362291][ T9799] ? get_compat_msghdr+0x11b/0x170 [ 226.363648][ T9799] ___sys_sendmsg+0x135/0x1e0 [ 226.364892][ T9799] ? __pfx____sys_sendmsg+0x10/0x10 [ 226.366267][ T9799] ? trace_lock_acquire+0x14a/0x1d0 [ 226.367654][ T9799] __sys_sendmmsg+0x2fa/0x420 [ 226.368900][ T9799] ? __pfx___sys_sendmmsg+0x10/0x10 [ 226.370281][ T9799] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 226.371856][ T9799] ? fput+0x67/0x440 [ 226.372894][ T9799] ? ksys_write+0x1ba/0x250 [ 226.374100][ T9799] ? __pfx_ksys_write+0x10/0x10 [ 226.375382][ T9799] __ia32_compat_sys_sendmmsg+0x9d/0x100 [ 226.376851][ T9799] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 226.378561][ T9799] __do_fast_syscall_32+0x73/0x120 [ 226.379900][ T9799] do_fast_syscall_32+0x32/0x80 [ 226.381180][ T9799] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 226.382824][ T9799] RIP: 0023:0xf7fe5579 [ 226.383892][ T9799] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 226.388870][ T9799] RSP: 002b:00000000f516655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159 [ 226.390847][ T9799] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001b80 [ 226.392812][ T9799] RDX: 0000000000000002 RSI: 00000000040400c4 RDI: 0000000000000000 [ 226.394868][ T9799] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 226.396917][ T9799] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 226.398966][ T9799] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 226.401026][ T9799] [ 226.708875][ T9805] FAULT_INJECTION: forcing a failure. [ 226.708875][ T9805] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 226.712029][ T9805] CPU: 3 UID: 0 PID: 9805 Comm: syz.0.985 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 226.714631][ T9805] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 226.717388][ T9805] Call Trace: [ 226.718254][ T9805] [ 226.719016][ T9805] dump_stack_lvl+0x16c/0x1f0 [ 226.720192][ T9805] should_fail_ex+0x497/0x5b0 [ 226.721392][ T9805] copy_fpstate_to_sigframe+0x858/0xaf0 [ 226.722794][ T9805] ? __pfx_copy_fpstate_to_sigframe+0x10/0x10 [ 226.724315][ T9805] ? lock_acquire+0x2f/0xb0 [ 226.725481][ T9805] ? posixtimer_deliver_signal+0x1ad/0x650 [ 226.726968][ T9805] ? posixtimer_deliver_signal+0x1ad/0x650 [ 226.728476][ T9805] ? find_held_lock+0x2d/0x110 [ 226.729699][ T9805] get_sigframe+0x4aa/0x9c0 [ 226.730841][ T9805] ? __pfx_get_sigframe+0x10/0x10 [ 226.732095][ T9805] ? _raw_spin_unlock_irq+0x23/0x50 [ 226.733410][ T9805] ? siginfo_layout+0x177/0x290 [ 226.734616][ T9805] ia32_setup_rt_frame+0xe4/0xb30 [ 226.735908][ T9805] ? __pfx___sys_recvfrom+0x10/0x10 [ 226.737199][ T9805] ? __pfx_ia32_setup_rt_frame+0x10/0x10 [ 226.738672][ T9805] arch_do_signal_or_restart+0x47b/0x7e0 [ 226.740160][ T9805] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 226.741805][ T9805] ? ksys_write+0x1ba/0x250 [ 226.743023][ T9805] syscall_exit_to_user_mode+0x150/0x2a0 [ 226.744449][ T9805] __do_fast_syscall_32+0x80/0x120 [ 226.745921][ T9805] do_fast_syscall_32+0x32/0x80 [ 226.747312][ T9805] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 226.749007][ T9805] RIP: 0023:0xf7fe5577 [ 226.750083][ T9805] Code: 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 [ 226.754962][ T9805] RSP: 002b:00000000f514555c EFLAGS: 00000296 ORIG_RAX: 0000000000000173 [ 226.757133][ T9805] RAX: 0000000000000173 RBX: 0000000000000006 RCX: 00000000200000c0 [ 226.759149][ T9805] RDX: 0000000000000068 RSI: 0000000000010002 RDI: 0000000000000000 [ 226.761208][ T9805] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 226.763267][ T9805] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 226.765260][ T9805] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 226.767246][ T9805] [ 226.827880][ T9810] netlink: 'syz.1.986': attribute type 4 has an invalid length. [ 226.832449][ T9810] netlink: 'syz.1.986': attribute type 4 has an invalid length. [ 227.138992][ T9821] Illegal XDP return value 9821 on prog (id 123) dev N/A, expect packet loss! [ 227.160415][ T9823] netlink: 'syz.2.991': attribute type 9 has an invalid length. [ 227.162644][ T9823] netlink: 132 bytes leftover after parsing attributes in process `syz.2.991'. [ 227.323206][ T9828] FAULT_INJECTION: forcing a failure. [ 227.323206][ T9828] name failslab, interval 1, probability 0, space 0, times 0 [ 227.327187][ T9828] CPU: 0 UID: 0 PID: 9828 Comm: syz.2.992 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 227.330215][ T9828] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 227.332959][ T9828] Call Trace: [ 227.333850][ T9828] [ 227.334631][ T9828] dump_stack_lvl+0x16c/0x1f0 [ 227.335841][ T9828] should_fail_ex+0x497/0x5b0 [ 227.337067][ T9828] ? fs_reclaim_acquire+0xae/0x150 [ 227.338765][ T9828] should_failslab+0xc2/0x120 [ 227.340444][ T9828] kmem_cache_alloc_node_noprof+0x71/0x310 [ 227.342493][ T9828] ? __alloc_skb+0x2b3/0x380 [ 227.344165][ T9828] __alloc_skb+0x2b3/0x380 [ 227.345551][ T9828] ? __pfx___alloc_skb+0x10/0x10 [ 227.347053][ T9828] ? lock_acquire+0x2f/0xb0 [ 227.348288][ T9828] netlink_alloc_large_skb+0x69/0x130 [ 227.349605][ T9828] netlink_sendmsg+0x689/0xd70 [ 227.350768][ T9828] ? __pfx_netlink_sendmsg+0x10/0x10 [ 227.352059][ T9828] ____sys_sendmsg+0x9ae/0xb40 [ 227.353237][ T9828] ? __pfx_____sys_sendmsg+0x10/0x10 [ 227.354817][ T9828] ? get_compat_msghdr+0x11b/0x170 [ 227.356517][ T9828] ___sys_sendmsg+0x135/0x1e0 [ 227.358221][ T9828] ? __pfx____sys_sendmsg+0x10/0x10 [ 227.360094][ T9828] ? __pfx_lock_release+0x10/0x10 [ 227.362076][ T9828] ? trace_lock_acquire+0x14a/0x1d0 [ 227.363770][ T9828] ? __fget_files+0x206/0x3a0 [ 227.364960][ T9828] __sys_sendmsg+0x16e/0x220 [ 227.366223][ T9828] ? __pfx___sys_sendmsg+0x10/0x10 [ 227.367533][ T9828] __do_fast_syscall_32+0x73/0x120 [ 227.368924][ T9828] do_fast_syscall_32+0x32/0x80 [ 227.370304][ T9828] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 227.372517][ T9828] RIP: 0023:0xf73ee579 [ 227.373944][ T9828] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 227.379209][ T9828] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 227.381866][ T9828] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000040 [ 227.384408][ T9828] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 227.386431][ T9828] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 227.388469][ T9828] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 227.390452][ T9828] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 227.392467][ T9828] [ 227.766372][ T9844] netlink: 134652 bytes leftover after parsing attributes in process `syz.3.998'. [ 227.768690][ T9844] openvswitch: netlink: Message has 76 unknown bytes. [ 228.101906][ T9859] FAULT_INJECTION: forcing a failure. [ 228.101906][ T9859] name failslab, interval 1, probability 0, space 0, times 0 [ 228.109833][ T9859] CPU: 2 UID: 0 PID: 9859 Comm: syz.3.999 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 228.112399][ T9859] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 228.115077][ T9859] Call Trace: [ 228.115917][ T9859] [ 228.116644][ T9859] dump_stack_lvl+0x16c/0x1f0 [ 228.117803][ T9859] should_fail_ex+0x497/0x5b0 [ 228.118989][ T9859] ? fs_reclaim_acquire+0xae/0x150 [ 228.120249][ T9859] should_failslab+0xc2/0x120 [ 228.121425][ T9859] kmem_cache_alloc_node_noprof+0x71/0x310 [ 228.122895][ T9859] ? __alloc_skb+0x2b3/0x380 [ 228.124089][ T9859] __alloc_skb+0x2b3/0x380 [ 228.125250][ T9859] ? __pfx___alloc_skb+0x10/0x10 [ 228.126478][ T9859] ? lock_acquire+0x2f/0xb0 [ 228.127637][ T9859] netlink_alloc_large_skb+0x69/0x130 [ 228.128961][ T9859] netlink_sendmsg+0x689/0xd70 [ 228.130154][ T9859] ? __pfx_netlink_sendmsg+0x10/0x10 [ 228.131514][ T9859] ____sys_sendmsg+0x9ae/0xb40 [ 228.132769][ T9859] ? __pfx_____sys_sendmsg+0x10/0x10 [ 228.134061][ T9859] ? get_compat_msghdr+0x11b/0x170 [ 228.135344][ T9859] ___sys_sendmsg+0x135/0x1e0 [ 228.136517][ T9859] ? __pfx____sys_sendmsg+0x10/0x10 [ 228.137856][ T9859] ? __pfx_lock_release+0x10/0x10 [ 228.139137][ T9859] ? trace_lock_acquire+0x14a/0x1d0 [ 228.140468][ T9859] ? __fget_files+0x206/0x3a0 [ 228.141650][ T9859] __sys_sendmsg+0x16e/0x220 [ 228.142734][ T9859] ? __pfx___sys_sendmsg+0x10/0x10 [ 228.143974][ T9859] __do_fast_syscall_32+0x73/0x120 [ 228.145295][ T9859] do_fast_syscall_32+0x32/0x80 [ 228.146500][ T9859] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 228.148096][ T9859] RIP: 0023:0xf7fbf579 [ 228.149152][ T9859] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 228.153804][ T9859] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 228.155858][ T9859] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200001c0 [ 228.157803][ T9859] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 228.159709][ T9859] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 228.161651][ T9859] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 228.163562][ T9859] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 228.165469][ T9859] [ 228.171976][ T9853] ax25_connect(): syz.0.997 uses autobind, please contact jreuter@yaina.de [ 228.178638][ T9853] kAFS: unable to lookup cell ' [ 228.178638][ T9853] $)-.ײfYǝa2s [ 228.178638][ T9853] ' [ 228.959812][ T9871] netlink: 'syz.2.1001': attribute type 4 has an invalid length. [ 229.039760][ T9871] netlink: 'syz.2.1001': attribute type 4 has an invalid length. [ 229.545469][ T9894] netlink: 216 bytes leftover after parsing attributes in process `syz.0.1007'. [ 229.548031][ T9894] netlink: 216 bytes leftover after parsing attributes in process `syz.0.1007'. [ 229.821278][ T9898] netlink: 'syz.1.1008': attribute type 4 has an invalid length. [ 229.836181][ T9898] netlink: 'syz.1.1008': attribute type 4 has an invalid length. [ 230.599833][ T9907] netlink: 'syz.3.1011': attribute type 4 has an invalid length. [ 230.657053][ T9907] netlink: 'syz.3.1011': attribute type 4 has an invalid length. [ 231.125325][ T39] kauditd_printk_skb: 15 callbacks suppressed [ 231.125382][ T39] audit: type=1326 audit(1732296114.455:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.1.1012" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 231.132877][ T39] audit: type=1326 audit(1732296114.465:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.1.1012" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 231.138406][ T39] audit: type=1326 audit(1732296114.465:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.1.1012" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 231.143873][ T39] audit: type=1326 audit(1732296114.465:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.1.1012" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 231.149918][ T39] audit: type=1326 audit(1732296114.465:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.1.1012" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 231.211997][ T9922] netlink: 216 bytes leftover after parsing attributes in process `syz.1.1016'. [ 231.214275][ T9922] netlink: 216 bytes leftover after parsing attributes in process `syz.1.1016'. [ 232.345418][ T39] audit: type=1326 audit(1732296115.685:864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9937 comm="syz.2.1020" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 232.353235][ T39] audit: type=1326 audit(1732296115.685:865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9937 comm="syz.2.1020" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 232.359234][ T39] audit: type=1326 audit(1732296115.695:866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9937 comm="syz.2.1020" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 232.378560][ T39] audit: type=1326 audit(1732296115.695:867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9937 comm="syz.2.1020" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 232.397123][ T9942] netlink: 216 bytes leftover after parsing attributes in process `syz.1.1021'. [ 232.399557][ T9942] netlink: 216 bytes leftover after parsing attributes in process `syz.1.1021'. [ 233.121348][ T39] audit: type=1326 audit(1732296116.455:868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9952 comm="syz.0.1025" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 233.182899][ T9960] bridge0: port 2(bridge_slave_1) entered disabled state [ 233.185637][ T9960] bridge0: port 1(bridge_slave_0) entered disabled state [ 233.189836][ T9960] bridge0: entered allmulticast mode [ 233.213486][ T9960] bridge0: port 2(bridge_slave_1) entered blocking state [ 233.216015][ T9960] bridge0: port 2(bridge_slave_1) entered forwarding state [ 233.220251][ T9960] bridge0: port 1(bridge_slave_0) entered blocking state [ 233.222786][ T9960] bridge0: port 1(bridge_slave_0) entered forwarding state [ 233.225775][ T9960] bridge0: entered promiscuous mode [ 233.529511][ T9965] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1028'. [ 233.679160][ T9970] netlink: 'syz.3.1029': attribute type 4 has an invalid length. [ 233.692025][ T9970] netlink: 'syz.3.1029': attribute type 4 has an invalid length. [ 235.487327][T10007] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1038'. [ 235.520498][T10011] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1039'. [ 235.958018][T10020] FAULT_INJECTION: forcing a failure. [ 235.958018][T10020] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 235.961464][T10020] CPU: 2 UID: 0 PID: 10020 Comm: syz.3.1041 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 235.964152][T10020] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 235.966929][T10020] Call Trace: [ 235.967831][T10020] [ 235.968612][T10020] dump_stack_lvl+0x16c/0x1f0 [ 235.969815][T10020] should_fail_ex+0x497/0x5b0 [ 235.971041][T10020] copy_fpstate_to_sigframe+0x858/0xaf0 [ 235.972492][T10020] ? __pfx_copy_fpstate_to_sigframe+0x10/0x10 [ 235.974078][T10020] ? lock_acquire+0x2f/0xb0 [ 235.975272][T10020] ? posixtimer_deliver_signal+0x1ad/0x650 [ 235.976784][T10020] ? posixtimer_deliver_signal+0x1ad/0x650 [ 235.978315][T10020] ? find_held_lock+0x2d/0x110 [ 235.979567][T10020] get_sigframe+0x4aa/0x9c0 [ 235.980777][T10020] ? __pfx_get_sigframe+0x10/0x10 [ 235.982098][T10020] ? _raw_spin_unlock_irq+0x23/0x50 [ 235.983403][T10020] ? siginfo_layout+0x177/0x290 [ 235.984677][T10020] ia32_setup_rt_frame+0xe4/0xb30 [ 235.985989][T10020] ? __pfx___sys_recvfrom+0x10/0x10 [ 235.987334][T10020] ? __pfx_ia32_setup_rt_frame+0x10/0x10 [ 235.988796][T10020] arch_do_signal_or_restart+0x47b/0x7e0 [ 235.990155][T10020] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 235.991706][T10020] ? ksys_write+0x1ba/0x250 [ 235.992904][T10020] ? __pfx_ksys_write+0x10/0x10 [ 235.994189][T10020] syscall_exit_to_user_mode+0x150/0x2a0 [ 235.995600][T10020] __do_fast_syscall_32+0x80/0x120 [ 235.996948][T10020] do_fast_syscall_32+0x32/0x80 [ 235.998226][T10020] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 235.999852][T10020] RIP: 0023:0xf7fbf577 [ 236.000909][T10020] Code: 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 [ 236.005814][T10020] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000173 [ 236.007962][T10020] RAX: 0000000000000173 RBX: 0000000000000008 RCX: 0000000000000000 [ 236.010002][T10020] RDX: 0000000001000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 236.012034][T10020] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 236.014082][T10020] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 236.016128][T10020] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 236.018186][T10020] [ 236.023629][T10023] i2c i2c-1: Invalid block write size 34 [ 236.372077][T10039] netlink: 216 bytes leftover after parsing attributes in process `syz.0.1045'. [ 236.374515][T10039] netlink: 216 bytes leftover after parsing attributes in process `syz.0.1045'. [ 236.729601][T10059] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1048'. [ 236.994796][ T39] kauditd_printk_skb: 10 callbacks suppressed [ 236.994809][ T39] audit: type=1326 audit(1732296120.325:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10063 comm="syz.3.1049" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 237.002679][ T39] audit: type=1326 audit(1732296120.325:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10063 comm="syz.3.1049" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 237.147990][T10077] i2c i2c-1: Invalid block write size 34 [ 237.175765][T10085] netlink: 'syz.2.1053': attribute type 4 has an invalid length. [ 237.184458][T10085] netlink: 'syz.2.1053': attribute type 4 has an invalid length. [ 237.210676][T10088] netlink: 216 bytes leftover after parsing attributes in process `syz.3.1054'. [ 237.213819][T10088] netlink: 216 bytes leftover after parsing attributes in process `syz.3.1054'. [ 237.567759][T10103] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 237.808215][T10111] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1057'. [ 238.913748][T10143] netlink: 216 bytes leftover after parsing attributes in process `syz.2.1064'. [ 238.916183][T10143] netlink: 216 bytes leftover after parsing attributes in process `syz.2.1064'. [ 238.923626][T10142] netlink: 'syz.3.1063': attribute type 4 has an invalid length. [ 238.974457][T10145] netlink: 'syz.3.1063': attribute type 4 has an invalid length. [ 239.228407][T10157] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1067'. [ 239.297356][T10160] netlink: 216 bytes leftover after parsing attributes in process `syz.1.1068'. [ 239.300524][T10160] netlink: 216 bytes leftover after parsing attributes in process `syz.1.1068'. [ 240.011091][T10186] netlink: 'syz.0.1072': attribute type 9 has an invalid length. [ 240.013910][T10186] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1072'. [ 240.167269][ T39] audit: type=1326 audit(1732296123.505:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10188 comm="syz.2.1073" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 240.173113][ T39] audit: type=1326 audit(1732296123.505:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10188 comm="syz.2.1073" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 240.187944][ T39] audit: type=1326 audit(1732296123.505:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10188 comm="syz.2.1073" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 240.228665][ T39] audit: type=1326 audit(1732296123.505:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10188 comm="syz.2.1073" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 240.258217][ T39] audit: type=1326 audit(1732296123.505:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10188 comm="syz.2.1073" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 240.299761][ T39] audit: type=1326 audit(1732296123.505:886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10188 comm="syz.2.1073" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 240.307351][ T39] audit: type=1326 audit(1732296123.505:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10188 comm="syz.2.1073" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 240.315152][ T39] audit: type=1326 audit(1732296123.505:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10188 comm="syz.2.1073" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 240.400696][T10197] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1076'. [ 240.419265][T10200] FAULT_INJECTION: forcing a failure. [ 240.419265][T10200] name failslab, interval 1, probability 0, space 0, times 0 [ 240.426391][T10200] CPU: 2 UID: 0 PID: 10200 Comm: syz.1.1077 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 240.429183][T10200] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 240.431920][T10200] Call Trace: [ 240.432798][T10200] [ 240.433606][T10200] dump_stack_lvl+0x16c/0x1f0 [ 240.434843][T10200] should_fail_ex+0x497/0x5b0 [ 240.436077][T10200] ? fs_reclaim_acquire+0xae/0x150 [ 240.437431][T10200] should_failslab+0xc2/0x120 [ 240.438675][T10200] kmem_cache_alloc_node_noprof+0x71/0x310 [ 240.440208][T10200] ? __alloc_skb+0x2b3/0x380 [ 240.441456][T10200] __alloc_skb+0x2b3/0x380 [ 240.442645][T10200] ? __pfx___alloc_skb+0x10/0x10 [ 240.443950][T10200] ? lock_acquire+0x2f/0xb0 [ 240.445170][T10200] netlink_alloc_large_skb+0x69/0x130 [ 240.446589][T10200] netlink_sendmsg+0x689/0xd70 [ 240.447866][T10200] ? __pfx_netlink_sendmsg+0x10/0x10 [ 240.449274][T10200] ____sys_sendmsg+0x9ae/0xb40 [ 240.450544][T10200] ? __pfx_____sys_sendmsg+0x10/0x10 [ 240.451929][T10200] ? get_compat_msghdr+0x11b/0x170 [ 240.453298][T10200] ___sys_sendmsg+0x135/0x1e0 [ 240.454547][T10200] ? __pfx____sys_sendmsg+0x10/0x10 [ 240.455831][T10200] ? __pfx_lock_release+0x10/0x10 [ 240.457155][T10200] ? trace_lock_acquire+0x14a/0x1d0 [ 240.458525][T10200] ? __fget_files+0x206/0x3a0 [ 240.459760][T10200] __sys_sendmsg+0x16e/0x220 [ 240.460997][T10200] ? __pfx___sys_sendmsg+0x10/0x10 [ 240.462355][T10200] __do_fast_syscall_32+0x73/0x120 [ 240.463715][T10200] do_fast_syscall_32+0x32/0x80 [ 240.465013][T10200] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 240.466662][T10200] RIP: 0023:0xf745e579 [ 240.467754][T10200] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 240.472780][T10200] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 240.474972][T10200] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000040 [ 240.477056][T10200] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 240.479121][T10200] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 240.481208][T10200] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 240.483279][T10200] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 240.485367][T10200] [ 240.507373][T10202] binder: 10201:10202 ioctl c0306201 20000580 returned -14 [ 240.566011][T10195] netlink: 'syz.0.1075': attribute type 4 has an invalid length. [ 240.607847][T10195] netlink: 'syz.0.1075': attribute type 4 has an invalid length. [ 240.781086][T10216] netlink: 'syz.2.1082': attribute type 4 has an invalid length. [ 240.842679][T10227] netlink: 'syz.2.1082': attribute type 4 has an invalid length. [ 241.635959][T10240] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1087'. [ 241.849137][T10253] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1091'. [ 242.094292][T10259] netlink: 'syz.2.1093': attribute type 4 has an invalid length. [ 242.267121][T10271] usb 2-1: USB disconnect, device number 2 [ 242.308372][T10274] validate_nla: 1 callbacks suppressed [ 242.308384][T10274] netlink: 'syz.1.1096': attribute type 4 has an invalid length. [ 242.359768][T10276] netlink: 'syz.1.1096': attribute type 4 has an invalid length. [ 243.270188][ T39] kauditd_printk_skb: 9 callbacks suppressed [ 243.270199][ T39] audit: type=1400 audit(1732296126.605:898): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=10292 comm="syz.0.1100" [ 243.278130][T10293] __nla_validate_parse: 4 callbacks suppressed [ 243.278140][T10293] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1100'. [ 243.490449][T10300] overlayfs: failed to resolve './file0': -2 [ 243.810143][ T39] audit: type=1326 audit(1732296127.145:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1105" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 243.817398][ T39] audit: type=1326 audit(1732296127.145:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1105" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 243.829603][ T39] audit: type=1326 audit(1732296127.145:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1105" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 243.838680][ T39] audit: type=1326 audit(1732296127.145:902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1105" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 243.848860][ T39] audit: type=1326 audit(1732296127.145:903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1105" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 243.856044][ T39] audit: type=1326 audit(1732296127.145:904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1105" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 243.863037][ T39] audit: type=1326 audit(1732296127.145:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1105" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 243.873108][ T39] audit: type=1326 audit(1732296127.145:906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.1.1105" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 243.954207][T10315] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1107'. [ 244.021421][T10318] netlink: 'syz.1.1108': attribute type 4 has an invalid length. [ 244.030265][T10318] netlink: 'syz.1.1108': attribute type 4 has an invalid length. [ 244.555799][T10329] sg_write: data in/out 11/14 bytes for SCSI command 0x0-- guessing data in; [ 244.555799][T10329] program syz.2.1111 not setting count and/or reply_len properly [ 244.982445][T10338] netlink: 'syz.0.1120': attribute type 4 has an invalid length. [ 244.995914][T10338] netlink: 'syz.0.1120': attribute type 4 has an invalid length. [ 245.273611][T10344] netlink: 'syz.3.1114': attribute type 4 has an invalid length. [ 245.291798][T10344] netlink: 'syz.3.1114': attribute type 4 has an invalid length. [ 245.564008][T10346] i2c i2c-1: Invalid block write size 34 [ 245.863121][T10356] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1117'. [ 246.362377][T10367] FAULT_INJECTION: forcing a failure. [ 246.362377][T10367] name failslab, interval 1, probability 0, space 0, times 0 [ 246.366623][T10367] CPU: 0 UID: 0 PID: 10367 Comm: syz.2.1122 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 246.369371][T10367] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 246.372167][T10367] Call Trace: [ 246.373064][T10367] [ 246.373858][T10367] dump_stack_lvl+0x16c/0x1f0 [ 246.375095][T10367] should_fail_ex+0x497/0x5b0 [ 246.376348][T10367] ? fs_reclaim_acquire+0xae/0x150 [ 246.377709][T10367] should_failslab+0xc2/0x120 [ 246.378977][T10367] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 246.380328][T10367] ? __kvm_mmu_topup_memory_cache+0x18f/0x600 [ 246.381902][T10367] __kvm_mmu_topup_memory_cache+0x18f/0x600 [ 246.383433][T10367] mmu_topup_memory_caches+0x22/0xd0 [ 246.385201][T10367] kvm_mmu_load+0xda/0x20d0 [ 246.386601][T10367] ? kvm_apic_has_interrupt+0xb6/0x190 [ 246.388152][T10367] ? __pfx_kvm_apic_has_interrupt+0x10/0x10 [ 246.389742][T10367] ? vmx_nmi_blocked+0xe1/0x340 [ 246.391019][T10367] ? __pfx_kvm_mmu_load+0x10/0x10 [ 246.392333][T10367] ? kvm_cpu_has_injectable_intr+0x9b/0x1a0 [ 246.393874][T10367] ? kvm_check_and_inject_events+0x57f/0x12e0 [ 246.395424][T10367] vcpu_run+0x2e31/0x4ca0 [ 246.396560][T10367] ? lockdep_hardirqs_on+0x7c/0x110 [ 246.397932][T10367] ? __pfx_vcpu_run+0x10/0x10 [ 246.399142][T10367] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 246.400575][T10367] ? rcu_watching_snap_stopped_since+0x80/0x110 [ 246.402178][T10367] ? trace_lock_acquire+0x14a/0x1d0 [ 246.403537][T10367] ? __local_bh_enable_ip+0xa4/0x120 [ 246.404928][T10367] ? kvm_arch_vcpu_ioctl_run+0x150/0x1740 [ 246.406418][T10367] ? lock_acquire+0x2f/0xb0 [ 246.407822][T10367] ? kvm_arch_vcpu_ioctl_run+0x44a/0x1740 [ 246.409833][T10367] kvm_arch_vcpu_ioctl_run+0x44a/0x1740 [ 246.411298][T10367] kvm_vcpu_ioctl+0x6c7/0x1520 [ 246.412549][T10367] ? tomoyo_path_number_perm+0x46d/0x5b0 [ 246.414022][T10367] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 246.415355][T10367] ? tomoyo_path_number_perm+0x190/0x5b0 [ 246.416819][T10367] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 246.418409][T10367] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 246.419947][T10367] ? do_vfs_ioctl+0x513/0x1950 [ 246.421260][T10367] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 246.422630][T10367] ? __pfx_lock_release+0x10/0x10 [ 246.423946][T10367] ? trace_lock_acquire+0x14a/0x1d0 [ 246.425360][T10367] kvm_vcpu_compat_ioctl+0x210/0x3f0 [ 246.426783][T10367] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 246.428371][T10367] ? __fget_files+0x206/0x3a0 [ 246.430031][T10367] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 246.431638][T10367] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 246.433078][T10367] __do_fast_syscall_32+0x73/0x120 [ 246.434461][T10367] do_fast_syscall_32+0x32/0x80 [ 246.435778][T10367] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 246.437494][T10367] RIP: 0023:0xf73ee579 [ 246.438599][T10367] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 246.443730][T10367] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 246.445979][T10367] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80 [ 246.448110][T10367] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 246.450236][T10367] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 246.452317][T10367] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 246.454433][T10367] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 246.456562][T10367] [ 246.599471][T10372] i2c i2c-1: Invalid block write size 34 [ 246.758833][T10376] netlink: 'syz.2.1125': attribute type 4 has an invalid length. [ 246.772013][T10376] netlink: 'syz.2.1125': attribute type 4 has an invalid length. [ 247.484351][T10398] validate_nla: 2 callbacks suppressed [ 247.484362][T10398] netlink: 'syz.3.1129': attribute type 4 has an invalid length. [ 247.503016][T10398] netlink: 'syz.3.1129': attribute type 4 has an invalid length. [ 247.604690][T10400] FAULT_INJECTION: forcing a failure. [ 247.604690][T10400] name failslab, interval 1, probability 0, space 0, times 0 [ 247.609487][T10400] CPU: 3 UID: 0 PID: 10400 Comm: syz.2.1130 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 247.612099][T10400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 247.614759][T10400] Call Trace: [ 247.615878][T10400] [ 247.616951][T10400] dump_stack_lvl+0x16c/0x1f0 [ 247.618415][T10400] should_fail_ex+0x497/0x5b0 [ 247.619558][T10400] ? fs_reclaim_acquire+0xae/0x150 [ 247.620804][T10400] should_failslab+0xc2/0x120 [ 247.621984][T10400] __kmalloc_cache_noprof+0x6b/0x310 [ 247.623289][T10400] ? hsr_create_self_node+0x27a/0x3d0 [ 247.624598][T10400] ? hsr_add_port+0x216/0x880 [ 247.626146][T10400] ? lockdep_init_map_type+0x16d/0x7d0 [ 247.628099][T10400] hsr_add_port+0x216/0x880 [ 247.629605][T10400] ? do_init_timer+0xc9/0x110 [ 247.630785][T10400] hsr_dev_finalize+0x4ba/0xbf0 [ 247.631993][T10400] hsr_newlink+0x40b/0x8e0 [ 247.633135][T10400] ? __pfx_hsr_newlink+0x10/0x10 [ 247.634456][T10400] ? rtnl_create_link+0xa2e/0xf10 [ 247.636036][T10400] rtnl_newlink+0x11ad/0x1c10 [ 247.637735][T10400] ? __pfx_hsr_newlink+0x10/0x10 [ 247.639043][T10400] ? __pfx_rtnl_newlink+0x10/0x10 [ 247.640308][T10400] ? __pfx___lock_acquire+0x10/0x10 [ 247.641665][T10400] ? kmem_cache_free+0x152/0x4b0 [ 247.643077][T10400] ? aa_get_newest_label+0x376/0x680 [ 247.644354][T10400] ? find_held_lock+0x2d/0x110 [ 247.645822][T10400] ? find_held_lock+0x2d/0x110 [ 247.647513][T10400] ? rtnetlink_rcv_msg+0x93a/0xea0 [ 247.649408][T10400] ? __pfx_lock_release+0x10/0x10 [ 247.650719][T10400] ? trace_lock_acquire+0x14a/0x1d0 [ 247.652014][T10400] ? __pfx_rtnl_newlink+0x10/0x10 [ 247.653262][T10400] rtnetlink_rcv_msg+0x95b/0xea0 [ 247.654618][T10400] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 247.656720][T10400] ? __pfx___dev_queue_xmit+0x10/0x10 [ 247.658488][T10400] netlink_rcv_skb+0x165/0x410 [ 247.659664][T10400] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 247.661002][T10400] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 247.662443][T10400] ? netlink_deliver_tap+0x1ae/0xca0 [ 247.663936][T10400] netlink_unicast+0x53c/0x7f0 [ 247.665314][T10400] ? __pfx_netlink_unicast+0x10/0x10 [ 247.667322][T10400] ? __phys_addr_symbol+0x30/0x80 [ 247.669248][T10400] ? __check_object_size+0x488/0x710 [ 247.670997][T10400] netlink_sendmsg+0x8b8/0xd70 [ 247.672204][T10400] ? __pfx_netlink_sendmsg+0x10/0x10 [ 247.673564][T10400] ____sys_sendmsg+0x9ae/0xb40 [ 247.674741][T10400] ? __pfx_____sys_sendmsg+0x10/0x10 [ 247.676506][T10400] ? get_compat_msghdr+0x11b/0x170 [ 247.678209][T10400] ___sys_sendmsg+0x135/0x1e0 [ 247.679439][T10400] ? __pfx____sys_sendmsg+0x10/0x10 [ 247.680742][T10400] ? __pfx_lock_release+0x10/0x10 [ 247.681927][T10400] ? trace_lock_acquire+0x14a/0x1d0 [ 247.683202][T10400] ? __fget_files+0x206/0x3a0 [ 247.684377][T10400] __sys_sendmsg+0x16e/0x220 [ 247.685858][T10400] ? __pfx___sys_sendmsg+0x10/0x10 [ 247.687730][T10400] __do_fast_syscall_32+0x73/0x120 [ 247.689448][T10400] do_fast_syscall_32+0x32/0x80 [ 247.690708][T10400] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 247.692278][T10400] RIP: 0023:0xf73ee579 [ 247.693293][T10400] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 247.698939][T10400] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 247.701084][T10400] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000040 [ 247.703046][T10400] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 247.705113][T10400] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 247.707972][T10400] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 247.710353][T10400] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 247.712339][T10400] [ 247.813848][T10407] i2c i2c-1: Invalid block write size 34 [ 247.851562][ T6047] IPVS: starting estimator thread 0... [ 247.904371][T10419] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8) [ 247.906158][T10419] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 247.908629][T10419] vhci_hcd vhci_hcd.0: Device attached [ 247.945015][T10414] IPVS: using max 37 ests per chain, 88800 per kthread [ 247.964274][ T39] audit: type=1326 audit(1732296131.295:907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10402 comm="syz.0.1131" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 248.249383][T10428] netlink: 'syz.1.1136': attribute type 4 has an invalid length. [ 248.259696][T10428] netlink: 'syz.1.1136': attribute type 4 has an invalid length. [ 248.471548][T10420] vhci_hcd: connection closed [ 248.474837][ T6027] vhci_hcd: vhci_device speed not set [ 248.478026][ T6346] vhci_hcd: stop threads [ 248.480369][ T6346] vhci_hcd: release socket [ 248.483566][ T6346] vhci_hcd: disconnect device [ 248.534919][ T6027] usb 41-1: new full-speed USB device number 2 using vhci_hcd [ 248.537033][ T6027] usb 41-1: enqueue for inactive port 0 [ 248.614987][ T6027] vhci_hcd: vhci_device speed not set [ 249.131461][T10438] ptrace attach of "/syz-executor exec"[5963] was attempted by "/syz-executor exec"[10438] [ 249.141343][T10439] netlink: 'syz.2.1139': attribute type 4 has an invalid length. [ 249.159169][T10439] netlink: 'syz.2.1139': attribute type 4 has an invalid length. [ 249.642058][T10450] i2c i2c-1: Invalid block write size 34 [ 249.684610][T10453] netlink: 'syz.2.1142': attribute type 4 has an invalid length. [ 249.697546][T10453] netlink: 'syz.2.1142': attribute type 4 has an invalid length. [ 249.857129][T10460] netlink: 'syz.0.1145': attribute type 4 has an invalid length. [ 249.947135][T10460] netlink: 'syz.0.1145': attribute type 4 has an invalid length. [ 250.548091][T10476] vivid-007: disconnect [ 250.650849][T10477] FAULT_INJECTION: forcing a failure. [ 250.650849][T10477] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 250.654502][T10477] CPU: 0 UID: 0 PID: 10477 Comm: syz.3.1149 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 250.657204][T10477] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 250.659910][T10477] Call Trace: [ 250.660781][T10477] [ 250.661548][T10477] dump_stack_lvl+0x16c/0x1f0 [ 250.662701][T10477] should_fail_ex+0x497/0x5b0 [ 250.663903][T10477] _copy_from_user+0x2e/0xd0 [ 250.665118][T10477] copy_from_buffer+0x86/0xb0 [ 250.666344][T10477] copy_uabi_to_xstate+0x26e/0x670 [ 250.667696][T10477] ? __pfx_copy_uabi_to_xstate+0x10/0x10 [ 250.669153][T10477] ? __pfx_lock_release+0x10/0x10 [ 250.670435][T10477] ? trace_lock_acquire+0x14a/0x1d0 [ 250.671742][T10477] ? __fpu_restore_sig+0xc2c/0x1430 [ 250.673070][T10477] ? __local_bh_enable_ip+0xa4/0x120 [ 250.674429][T10477] __fpu_restore_sig+0x1070/0x1430 [ 250.675762][T10477] ? __pfx___fpu_restore_sig+0x10/0x10 [ 250.677202][T10477] ? lock_acquire+0x2f/0xb0 [ 250.678397][T10477] ? __might_fault+0xe3/0x190 [ 250.679763][T10477] fpu__restore_sig+0x113/0x190 [ 250.681081][T10477] ia32_restore_sigcontext+0x40f/0x5d0 [ 250.682525][T10477] ? __pfx_ia32_restore_sigcontext+0x10/0x10 [ 250.684103][T10477] ? __pfx_lock_release+0x10/0x10 [ 250.685481][T10477] ? _raw_spin_unlock_irq+0x23/0x50 [ 250.686841][T10477] ? lockdep_hardirqs_on+0x7c/0x110 [ 250.688217][T10477] __do_compat_sys_rt_sigreturn+0x121/0x1f0 [ 250.689881][T10477] ? __pfx___do_compat_sys_rt_sigreturn+0x10/0x10 [ 250.691634][T10477] do_int80_emulation+0x104/0x200 [ 250.692980][T10477] asm_int80_emulation+0x1a/0x20 [ 250.694281][T10477] RIP: 0023:0xf7fbf577 [ 250.695359][T10477] Code: 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 [ 250.700326][T10477] RSP: 002b:00000000f512555c EFLAGS: 00000296 [ 250.701973][T10477] RAX: 0000000000000003 RBX: 0000000000000009 RCX: 0000000020005740 [ 250.704068][T10477] RDX: 0000000000002020 RSI: 0000000000000000 RDI: 0000000000000000 [ 250.706040][T10477] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 250.708001][T10477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 250.709992][T10477] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 250.711949][T10477] [ 251.316929][T10475] vivid-007: reconnect [ 251.537107][ T39] kauditd_printk_skb: 7 callbacks suppressed [ 251.537188][ T39] audit: type=1326 audit(1732296134.875:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10483 comm="syz.3.1152" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 251.549544][ T39] audit: type=1326 audit(1732296134.875:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10483 comm="syz.3.1152" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 251.557218][ T39] audit: type=1326 audit(1732296134.885:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10483 comm="syz.3.1152" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 251.564489][ T39] audit: type=1326 audit(1732296134.885:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10483 comm="syz.3.1152" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 251.572215][ T39] audit: type=1326 audit(1732296134.885:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10483 comm="syz.3.1152" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 251.582941][ T39] audit: type=1326 audit(1732296134.885:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10483 comm="syz.3.1152" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 251.590333][ T39] audit: type=1326 audit(1732296134.885:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10483 comm="syz.3.1152" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 251.598395][ T39] audit: type=1326 audit(1732296134.885:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10483 comm="syz.3.1152" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 251.769252][T10495] netlink: 216 bytes leftover after parsing attributes in process `syz.1.1156'. [ 251.773613][T10495] netlink: 216 bytes leftover after parsing attributes in process `syz.1.1156'. [ 252.473093][T10524] netlink: 216 bytes leftover after parsing attributes in process `syz.3.1162'. [ 252.475583][T10524] netlink: 216 bytes leftover after parsing attributes in process `syz.3.1162'. [ 253.686136][ T39] audit: type=1326 audit(1732296137.025:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10548 comm="syz.0.1167" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 253.693027][ T39] audit: type=1326 audit(1732296137.025:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10548 comm="syz.0.1167" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 253.926975][T10564] netlink: 216 bytes leftover after parsing attributes in process `syz.3.1171'. [ 253.930222][T10564] netlink: 216 bytes leftover after parsing attributes in process `syz.3.1171'. [ 254.970896][T10583] netlink: 216 bytes leftover after parsing attributes in process `syz.2.1182'. [ 254.976855][T10583] netlink: 216 bytes leftover after parsing attributes in process `syz.2.1182'. [ 255.075307][ T1409] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.097736][ T1409] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.045022][T10598] netlink: 216 bytes leftover after parsing attributes in process `syz.2.1176'. [ 256.047631][T10598] netlink: 216 bytes leftover after parsing attributes in process `syz.2.1176'. [ 256.059158][T10600] syz.1.1178 (10600): attempted to duplicate a private mapping with mremap. This is not supported. [ 256.100086][T10600] nvme_fabrics: missing parameter 'transport=%s' [ 256.102661][T10600] nvme_fabrics: missing parameter 'nqn=%s' [ 256.150233][T10604] netlink: 'syz.3.1177': attribute type 4 has an invalid length. [ 256.169187][T10604] netlink: 'syz.3.1177': attribute type 4 has an invalid length. [ 256.377921][T10610] ax25_connect(): syz.0.1180 uses autobind, please contact jreuter@yaina.de [ 256.398315][T10610] kAFS: unable to lookup cell ' [ 256.398315][T10610] $)-.ײfYǝa2s [ 256.398315][T10610] ' [ 257.250362][ T39] kauditd_printk_skb: 14 callbacks suppressed [ 257.250373][ T39] audit: type=1326 audit(1732296140.585:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10617 comm="syz.2.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 257.261283][ T39] audit: type=1326 audit(1732296140.595:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10617 comm="syz.2.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 257.266963][ T39] audit: type=1326 audit(1732296140.595:941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10617 comm="syz.2.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 257.272566][ T39] audit: type=1326 audit(1732296140.595:942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10617 comm="syz.2.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 257.278536][ T39] audit: type=1326 audit(1732296140.595:943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10617 comm="syz.2.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 257.284014][ T39] audit: type=1326 audit(1732296140.595:944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10617 comm="syz.2.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 257.290279][ T39] audit: type=1326 audit(1732296140.595:945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10617 comm="syz.2.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 257.295989][ T39] audit: type=1326 audit(1732296140.595:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10617 comm="syz.2.1183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 257.736599][ T5971] Bluetooth: hci4: sending frame failed (-49) [ 257.739641][ T5969] Bluetooth: hci4: Opcode 0x1003 failed: -49 [ 258.100950][T10637] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1188'. [ 258.103224][T10637] netlink: 50 bytes leftover after parsing attributes in process `syz.1.1188'. [ 258.105621][T10637] netlink: 50 bytes leftover after parsing attributes in process `syz.1.1188'. [ 258.139234][ T39] audit: type=1326 audit(1732296141.475:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10632 comm="syz.3.1186" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fbf579 code=0x0 [ 258.258822][T10645] netlink: 'syz.0.1190': attribute type 4 has an invalid length. [ 258.261293][T10638] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1186'. [ 258.276871][T10645] netlink: 'syz.0.1190': attribute type 4 has an invalid length. [ 258.329038][ T39] audit: type=1326 audit(1732296141.665:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10643 comm="syz.1.1191" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 258.989995][T10654] loop7: detected capacity change from 0 to 16384 [ 259.124922][T10657] loop7: detected capacity change from 16384 to 16383 [ 259.433220][T10663] ax25_connect(): syz.1.1195 uses autobind, please contact jreuter@yaina.de [ 259.452049][T10663] kAFS: unable to lookup cell ' [ 259.452049][T10663] $)-.ײfYǝa2s [ 259.452049][T10663] ' [ 259.623273][T10671] i2c i2c-1: Invalid block write size 34 [ 259.713348][T10677] nvme_fabrics: missing parameter 'transport=%s' [ 259.715344][T10677] nvme_fabrics: missing parameter 'nqn=%s' [ 259.849632][T10689] Cannot find set identified by id 0 to match [ 260.363185][T10700] netlink: 'syz.3.1205': attribute type 4 has an invalid length. [ 260.398237][T10700] netlink: 'syz.3.1205': attribute type 4 has an invalid length. [ 260.642601][T10703] netlink: 'syz.0.1206': attribute type 4 has an invalid length. [ 260.679379][T10703] netlink: 'syz.0.1206': attribute type 4 has an invalid length. [ 260.755899][T10706] netlink: 'syz.3.1207': attribute type 4 has an invalid length. [ 260.782044][T10706] netlink: 'syz.3.1207': attribute type 4 has an invalid length. [ 261.446527][T10709] netlink: 'syz.1.1208': attribute type 4 has an invalid length. [ 261.462780][T10709] netlink: 'syz.1.1208': attribute type 4 has an invalid length. [ 261.650623][T10713] i2c i2c-1: Invalid block write size 34 [ 261.821675][T10718] netlink: 'syz.2.1211': attribute type 4 has an invalid length. [ 261.848032][T10718] netlink: 'syz.2.1211': attribute type 4 has an invalid length. [ 262.746899][T10736] netlink: 'syz.1.1215': attribute type 4 has an invalid length. [ 262.768443][T10736] netlink: 'syz.1.1215': attribute type 4 has an invalid length. [ 262.973224][T10738] netlink: 'syz.0.1216': attribute type 4 has an invalid length. [ 262.983700][T10738] netlink: 'syz.0.1216': attribute type 4 has an invalid length. [ 263.551928][T10756] netlink: 'syz.2.1221': attribute type 4 has an invalid length. [ 263.600574][T10754] netlink: 'syz.2.1221': attribute type 4 has an invalid length. [ 263.836156][T10762] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1222'. [ 263.844794][T10760] netlink: zone id is out of range [ 263.846163][T10760] netlink: zone id is out of range [ 263.847537][T10760] netlink: set zone limit has 4 unknown bytes [ 264.187999][T10769] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1225'. [ 264.667050][ T39] kauditd_printk_skb: 15 callbacks suppressed [ 264.667066][ T39] audit: type=1326 audit(1732296148.005:964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10775 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 264.703943][ T39] audit: type=1326 audit(1732296148.015:965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10775 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 264.724147][ T39] audit: type=1326 audit(1732296148.015:966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10775 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 264.740454][ T39] audit: type=1326 audit(1732296148.015:967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10775 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 264.750880][ T39] audit: type=1326 audit(1732296148.015:968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10775 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 264.764046][ T39] audit: type=1326 audit(1732296148.015:969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10775 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 264.776440][ T39] audit: type=1326 audit(1732296148.025:970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10775 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 264.781706][ T39] audit: type=1326 audit(1732296148.025:971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10775 comm="syz.3.1228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 265.090277][ T39] audit: type=1326 audit(1732296148.425:972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10788 comm="syz.3.1231" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 265.097169][ T39] audit: type=1326 audit(1732296148.435:973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10788 comm="syz.3.1231" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 265.147940][T10796] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 266.320073][T10827] x_tables: ip_tables: MASQUERADE target: used from hooks INPUT, but only usable from POSTROUTING [ 266.739389][T10831] validate_nla: 6 callbacks suppressed [ 266.739429][T10831] netlink: 'syz.0.1240': attribute type 4 has an invalid length. [ 266.760324][T10831] netlink: 'syz.0.1240': attribute type 4 has an invalid length. [ 266.779583][ T1129] bridge0: port 2(bridge_slave_1) entered disabled state [ 267.274151][T10847] netlink: 'syz.2.1244': attribute type 4 has an invalid length. [ 267.330837][T10847] netlink: 'syz.2.1244': attribute type 4 has an invalid length. [ 267.360815][T10855] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1251'. [ 267.392938][T10855] fuse: Bad value for 'fd' [ 267.902907][T10859] wireguard0: entered promiscuous mode [ 267.904613][T10859] wireguard0: entered allmulticast mode [ 268.058299][T10864] tipc: Resetting bearer [ 268.060765][T10865] netlink: 6 bytes leftover after parsing attributes in process `syz.3.1247'. [ 268.063294][T10864] vlan0: entered promiscuous mode [ 268.070624][T10864] team0: Port device vlan0 added [ 268.368617][T10878] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1253'. [ 268.450816][T10887] FAULT_INJECTION: forcing a failure. [ 268.450816][T10887] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 268.453806][T10887] CPU: 2 UID: 0 PID: 10887 Comm: syz.3.1255 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 268.456228][T10887] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 268.458770][T10887] Call Trace: [ 268.459562][T10887] [ 268.460262][T10887] dump_stack_lvl+0x16c/0x1f0 [ 268.461370][T10887] should_fail_ex+0x497/0x5b0 [ 268.462480][T10887] __fpu_restore_sig+0xf5/0x1430 [ 268.463646][T10887] ? __pfx___fpu_restore_sig+0x10/0x10 [ 268.464939][T10887] ? lock_acquire+0x2f/0xb0 [ 268.466004][T10887] ? __might_fault+0xe3/0x190 [ 268.467145][T10887] fpu__restore_sig+0x113/0x190 [ 268.468292][T10887] ia32_restore_sigcontext+0x40f/0x5d0 [ 268.469586][T10887] ? __pfx_ia32_restore_sigcontext+0x10/0x10 [ 268.470966][T10887] ? __pfx_lock_release+0x10/0x10 [ 268.472154][T10887] ? _raw_spin_unlock_irq+0x23/0x50 [ 268.473384][T10887] ? lockdep_hardirqs_on+0x7c/0x110 [ 268.474510][T10887] __do_compat_sys_rt_sigreturn+0x121/0x1f0 [ 268.475826][T10887] ? __pfx___do_compat_sys_rt_sigreturn+0x10/0x10 [ 268.477370][T10887] do_int80_emulation+0x104/0x200 [ 268.478563][T10887] asm_int80_emulation+0x1a/0x20 [ 268.479738][T10887] RIP: 0023:0xf7fbf577 [ 268.480811][T10887] Code: 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 [ 268.485213][T10887] RSP: 002b:00000000f514655c EFLAGS: 00000296 [ 268.486587][T10887] RAX: 0000000000000091 RBX: 0000000000000008 RCX: 0000000020002140 [ 268.488389][T10887] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000 [ 268.490228][T10887] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 268.492065][T10887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 268.493932][T10887] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 268.495803][T10887] [ 268.496604][ C2] vkms_vblank_simulate: vblank timer overrun [ 269.057604][T10899] wireguard0: entered promiscuous mode [ 269.059232][T10899] wireguard0: entered allmulticast mode [ 269.065347][T10905] ax25_connect(): syz.3.1258 uses autobind, please contact jreuter@yaina.de [ 269.077890][T10905] kAFS: unable to lookup cell ' [ 269.077890][T10905] $)-.ײfYǝa2s [ 269.077890][T10905] ' [ 269.229762][T10914] i2c i2c-1: Invalid block write size 34 [ 269.461828][T10921] netlink: 'syz.1.1263': attribute type 4 has an invalid length. [ 269.482577][T10921] netlink: 'syz.1.1263': attribute type 4 has an invalid length. [ 270.656791][T10941] overlayfs: invalid origin (0000) [ 270.699801][T10941] syzkaller0: entered promiscuous mode [ 270.702035][T10941] syzkaller0: entered allmulticast mode [ 270.725868][ T6346] syzkaller0: tun_net_xmit 48 [ 270.730181][T10941] syzkaller0: tun_chr_ioctl cmd 1074025677 [ 270.731842][T10941] syzkaller0: Linktype set failed because interface is up [ 270.739156][ T6009] IPVS: starting estimator thread 0... [ 270.796535][T10945] i2c i2c-1: Invalid block write size 34 [ 270.835135][T10946] IPVS: using max 37 ests per chain, 88800 per kthread [ 270.863393][T10954] netlink: 'syz.3.1272': attribute type 4 has an invalid length. [ 270.874547][T10954] netlink: 'syz.3.1272': attribute type 4 has an invalid length. [ 270.894085][T10955] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1273'. [ 270.896921][T10955] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1273'. [ 270.905154][T10955] vlan2: entered allmulticast mode [ 272.672327][T10972] bridge0: port 2(bridge_slave_1) entered disabled state [ 272.675700][T10972] bridge0: port 1(bridge_slave_0) entered disabled state [ 272.729834][T10972] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 272.737138][T10972] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 272.802991][T10972] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 272.806257][T10972] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 272.808547][T10972] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 272.810845][T10972] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 272.815559][T10972] netdevsim netdevsim0 netdevsim0: left promiscuous mode [ 272.878521][T10979] ax25_connect(): syz.3.1281 uses autobind, please contact jreuter@yaina.de [ 272.912403][T10979] kAFS: unable to lookup cell ' [ 272.912403][T10979] $)-.ײfYǝa2s [ 272.912403][T10979] ' [ 273.240059][T10986] netlink: 'syz.1.1282': attribute type 4 has an invalid length. [ 273.255599][T10986] netlink: 'syz.1.1282': attribute type 4 has an invalid length. [ 275.450785][T11050] netlink: 'syz.2.1301': attribute type 4 has an invalid length. [ 275.460694][T11050] netlink: 'syz.2.1301': attribute type 4 has an invalid length. [ 275.758237][T11063] netlink: 'syz.2.1303': attribute type 4 has an invalid length. [ 275.761816][T11064] netlink: 'syz.0.1304': attribute type 4 has an invalid length. [ 275.772599][T11064] netlink: 'syz.0.1304': attribute type 4 has an invalid length. [ 275.779737][T11063] netlink: 'syz.2.1303': attribute type 4 has an invalid length. [ 276.025910][ T39] kauditd_printk_skb: 1 callbacks suppressed [ 276.025921][ T39] audit: type=1400 audit(1732296159.365:975): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=26260A3AF6EFF374925873ECE44CF3460B0BA260624F2A08BDBB6D3C92592016EA4E0F401876B1958B3F9AA5153386EED838C49D3A pid=11071 comm="syz.1.1305" [ 276.369756][T11080] virtio-fs: tag <(null)> not found [ 276.413352][T11084] FAULT_INJECTION: forcing a failure. [ 276.413352][T11084] name failslab, interval 1, probability 0, space 0, times 0 [ 276.416759][T11084] CPU: 0 UID: 0 PID: 11084 Comm: syz.0.1308 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 276.419398][T11084] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 276.422194][T11084] Call Trace: [ 276.423052][T11084] [ 276.423790][T11084] dump_stack_lvl+0x16c/0x1f0 [ 276.424986][T11084] should_fail_ex+0x497/0x5b0 [ 276.426224][T11084] ? fs_reclaim_acquire+0xae/0x150 [ 276.427559][T11084] should_failslab+0xc2/0x120 [ 276.428811][T11084] __kmalloc_cache_noprof+0x6b/0x310 [ 276.430164][T11084] ? device_add+0xccf/0x1a70 [ 276.431322][T11084] device_add+0xccf/0x1a70 [ 276.432427][T11084] ? dev_set_name+0xc8/0x100 [ 276.433632][T11084] ? __pfx_dev_set_name+0x10/0x10 [ 276.434900][T11084] ? __pfx_device_add+0x10/0x10 [ 276.436172][T11084] ? __init_waitqueue_head+0xca/0x150 [ 276.437620][T11084] netdev_register_kobject+0x187/0x3f0 [ 276.439012][T11084] register_netdevice+0x1473/0x1e20 [ 276.440302][T11084] ? __pfx_register_netdevice+0x10/0x10 [ 276.441705][T11084] br_dev_newlink+0x27/0x110 [ 276.442851][T11084] rtnl_newlink+0x11ad/0x1c10 [ 276.444039][T11084] ? __pfx_br_dev_newlink+0x10/0x10 [ 276.445462][T11084] ? __pfx_rtnl_newlink+0x10/0x10 [ 276.446825][T11084] ? __pfx___lock_acquire+0x10/0x10 [ 276.448192][T11084] ? hlock_class+0x4e/0x130 [ 276.449408][T11084] ? aa_get_newest_label+0x376/0x680 [ 276.450747][T11084] ? mark_lock+0xb5/0xc60 [ 276.451878][T11084] ? find_held_lock+0x2d/0x110 [ 276.453133][T11084] ? rtnetlink_rcv_msg+0x93a/0xea0 [ 276.454504][T11084] ? __pfx_lock_release+0x10/0x10 [ 276.455882][T11084] ? trace_lock_acquire+0x14a/0x1d0 [ 276.457264][T11084] ? __pfx_rtnl_newlink+0x10/0x10 [ 276.458647][T11084] rtnetlink_rcv_msg+0x95b/0xea0 [ 276.460009][T11084] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 276.461475][T11084] ? __pfx___lock_acquire+0x10/0x10 [ 276.462864][T11084] netlink_rcv_skb+0x165/0x410 [ 276.464137][T11084] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 276.465827][T11084] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 276.467606][T11084] ? netlink_deliver_tap+0x1ae/0xca0 [ 276.469180][T11084] netlink_unicast+0x53c/0x7f0 [ 276.470768][T11084] ? __pfx_netlink_unicast+0x10/0x10 [ 276.472713][T11084] ? __phys_addr_symbol+0x30/0x80 [ 276.474569][T11084] ? __check_object_size+0x488/0x710 [ 276.476454][T11084] netlink_sendmsg+0x8b8/0xd70 [ 276.478187][T11084] ? __pfx_netlink_sendmsg+0x10/0x10 [ 276.480009][T11084] ____sys_sendmsg+0x9ae/0xb40 [ 276.481456][T11084] ? __pfx_____sys_sendmsg+0x10/0x10 [ 276.483240][T11084] ? get_compat_msghdr+0x11b/0x170 [ 276.485069][T11084] ___sys_sendmsg+0x135/0x1e0 [ 276.486738][T11084] ? __pfx____sys_sendmsg+0x10/0x10 [ 276.488699][T11084] ? __pfx_lock_release+0x10/0x10 [ 276.490516][T11084] ? trace_lock_acquire+0x14a/0x1d0 [ 276.492408][T11084] ? __fget_files+0x206/0x3a0 [ 276.494158][T11084] __sys_sendmsg+0x16e/0x220 [ 276.495761][T11084] ? __pfx___sys_sendmsg+0x10/0x10 [ 276.497223][T11084] __do_fast_syscall_32+0x73/0x120 [ 276.498610][T11084] do_fast_syscall_32+0x32/0x80 [ 276.499934][T11084] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 276.501599][T11084] RIP: 0023:0xf7fe5579 [ 276.502672][T11084] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 276.508178][T11084] RSP: 002b:00000000f516655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 276.510545][T11084] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000 [ 276.512633][T11084] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 276.514751][T11084] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 276.516923][T11084] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 276.519008][T11084] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 276.521072][T11084] [ 276.890970][T11095] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1311'. [ 276.963452][T11098] netlink: 'syz.1.1312': attribute type 4 has an invalid length. [ 276.971229][T11098] netlink: 'syz.1.1312': attribute type 4 has an invalid length. [ 277.490336][T11119] kvm: pic: non byte read [ 277.519527][T11124] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1316'. [ 277.522071][T11124] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1316'. [ 277.531552][T11124] vlan2: entered allmulticast mode [ 277.674507][T11128] sctp: [Deprecated]: syz.1.1317 (pid 11128) Use of int in max_burst socket option deprecated. [ 277.674507][T11128] Use struct sctp_assoc_value instead [ 277.967918][T11131] fuse: Bad value for 'fd' [ 278.072873][T11140] bond0: entered promiscuous mode [ 278.074279][T11140] bond_slave_0: entered promiscuous mode [ 278.077467][T11140] bond_slave_1: entered promiscuous mode [ 278.082927][T11140] batadv0: entered promiscuous mode [ 278.089643][T11140] 8021q: adding VLAN 0 to HW filter on device hsr0 [ 278.266508][T11150] validate_nla: 1 callbacks suppressed [ 278.266526][T11150] netlink: 'syz.2.1323': attribute type 4 has an invalid length. [ 278.806756][T11185] netlink: 'syz.2.1324': attribute type 4 has an invalid length. [ 278.832785][T11188] netlink: 'syz.1.1332': attribute type 4 has an invalid length. [ 278.848253][T11188] netlink: 'syz.1.1332': attribute type 4 has an invalid length. [ 278.848744][T11185] netlink: 'syz.2.1324': attribute type 4 has an invalid length. [ 279.160748][T11198] i2c i2c-1: Invalid block write size 34 [ 279.249560][T11210] netlink: 'syz.0.1327': attribute type 4 has an invalid length. [ 279.764561][T11233] netlink: 'syz.3.1333': attribute type 4 has an invalid length. [ 279.776442][T11233] netlink: 'syz.3.1333': attribute type 4 has an invalid length. [ 280.158839][T11240] fuse: Bad value for 'user_id' [ 280.160634][T11240] fuse: Bad value for 'user_id' [ 280.212712][T11246] fuse: Unknown parameter '7|Bq4Hs ݑFP0N9j' [ 280.218829][T11247] bond0: hsr_addr_subst_dest: Unknown node [ 280.221206][T11247] batadv0: hsr_addr_subst_dest: Unknown node [ 280.232504][T11247] bond0: left promiscuous mode [ 280.233833][T11247] bond_slave_0: left promiscuous mode [ 280.235936][T11247] bond_slave_1: left promiscuous mode [ 280.246905][T11247] batadv0: left promiscuous mode [ 280.271108][T11248] netlink: 'syz.3.1335': attribute type 4 has an invalid length. [ 280.278537][T11250] i2c i2c-1: Invalid block write size 34 [ 280.306463][T11248] netlink: 'syz.3.1335': attribute type 4 has an invalid length. [ 280.339680][T11253] FAULT_INJECTION: forcing a failure. [ 280.339680][T11253] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 280.343242][T11253] CPU: 2 UID: 0 PID: 11253 Comm: syz.1.1338 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 280.346346][T11253] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 280.349254][T11253] Call Trace: [ 280.350163][T11253] [ 280.350978][T11253] dump_stack_lvl+0x16c/0x1f0 [ 280.352241][T11253] should_fail_ex+0x497/0x5b0 [ 280.353530][T11253] _copy_from_iter+0x29b/0x1400 [ 280.354813][T11253] ? __pfx__copy_from_iter+0x10/0x10 [ 280.356218][T11253] ? __virt_addr_valid+0x1a4/0x590 [ 280.357607][T11253] ? __virt_addr_valid+0x5e/0x590 [ 280.358973][T11253] ? __phys_addr_symbol+0x30/0x80 [ 280.360356][T11253] ? __check_object_size+0x488/0x710 [ 280.361786][T11253] netlink_sendmsg+0x813/0xd70 [ 280.363100][T11253] ? __pfx_netlink_sendmsg+0x10/0x10 [ 280.364552][T11253] ____sys_sendmsg+0x9ae/0xb40 [ 280.365855][T11253] ? __pfx_____sys_sendmsg+0x10/0x10 [ 280.367282][T11253] ? get_compat_msghdr+0x11b/0x170 [ 280.368837][T11253] ___sys_sendmsg+0x135/0x1e0 [ 280.370164][T11253] ? __pfx____sys_sendmsg+0x10/0x10 [ 280.371558][T11253] ? __pfx_lock_release+0x10/0x10 [ 280.372923][T11253] ? trace_lock_acquire+0x14a/0x1d0 [ 280.374350][T11253] ? __fget_files+0x206/0x3a0 [ 280.375626][T11253] __sys_sendmsg+0x16e/0x220 [ 280.376929][T11253] ? __pfx___sys_sendmsg+0x10/0x10 [ 280.378297][T11253] __do_fast_syscall_32+0x73/0x120 [ 280.379672][T11253] do_fast_syscall_32+0x32/0x80 [ 280.381042][T11253] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 280.382709][T11253] RIP: 0023:0xf745e579 [ 280.383852][T11253] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 280.388998][T11253] RSP: 002b:00000000f510455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 280.391211][T11253] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000200008c0 [ 280.393323][T11253] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 280.395374][T11253] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 280.397375][T11253] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 280.399414][T11253] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 280.401399][T11253] [ 280.402286][ C2] vkms_vblank_simulate: vblank timer overrun [ 280.504853][T11257] FAULT_INJECTION: forcing a failure. [ 280.504853][T11257] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 280.508307][T11257] CPU: 2 UID: 0 PID: 11257 Comm: syz.0.1341 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 280.511004][T11257] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 280.513714][T11257] Call Trace: [ 280.514589][T11257] [ 280.515368][T11257] dump_stack_lvl+0x16c/0x1f0 [ 280.516634][T11257] should_fail_ex+0x497/0x5b0 [ 280.517897][T11257] _copy_from_user+0x2e/0xd0 [ 280.519205][T11257] copy_from_buffer+0x86/0xb0 [ 280.520670][T11257] copy_uabi_to_xstate+0x26e/0x670 [ 280.522019][T11257] ? __pfx_copy_uabi_to_xstate+0x10/0x10 [ 280.523486][T11257] ? __pfx_lock_release+0x10/0x10 [ 280.524822][T11257] ? trace_lock_acquire+0x14a/0x1d0 [ 280.526195][T11257] ? __fpu_restore_sig+0xc2c/0x1430 [ 280.527574][T11257] ? __local_bh_enable_ip+0xa4/0x120 [ 280.528983][T11257] __fpu_restore_sig+0x1070/0x1430 [ 280.530312][T11257] ? __pfx___fpu_restore_sig+0x10/0x10 [ 280.531770][T11257] ? lock_acquire+0x2f/0xb0 [ 280.532968][T11257] ? __might_fault+0xe3/0x190 [ 280.534186][T11257] fpu__restore_sig+0x113/0x190 [ 280.535531][T11257] ia32_restore_sigcontext+0x40f/0x5d0 [ 280.537115][T11257] ? __pfx_ia32_restore_sigcontext+0x10/0x10 [ 280.539051][T11257] ? __pfx_lock_release+0x10/0x10 [ 280.540774][T11257] ? _raw_spin_unlock_irq+0x23/0x50 [ 280.542204][T11257] ? lockdep_hardirqs_on+0x7c/0x110 [ 280.543556][T11257] __do_compat_sys_rt_sigreturn+0x121/0x1f0 [ 280.545089][T11257] ? __pfx___do_compat_sys_rt_sigreturn+0x10/0x10 [ 280.546741][T11257] do_int80_emulation+0x104/0x200 [ 280.548148][T11257] asm_int80_emulation+0x1a/0x20 [ 280.549965][T11257] RIP: 0023:0xf7fe5577 [ 280.551555][T11257] Code: 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 [ 280.558236][T11257] RSP: 002b:00000000f516655c EFLAGS: 00000296 [ 280.560302][T11257] RAX: 0000000000000174 RBX: 0000000000000004 RCX: 0000000020000200 [ 280.562365][T11257] RDX: 0000000000000020 RSI: 0000000000000000 RDI: 0000000000000000 [ 280.564383][T11257] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 280.566410][T11257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 280.568474][T11257] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 280.570523][T11257] [ 280.571343][ C2] vkms_vblank_simulate: vblank timer overrun [ 280.643285][T11265] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1343'. [ 280.748678][T11270] netlink: 92 bytes leftover after parsing attributes in process `syz.0.1344'. [ 280.752905][T11270] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1344'. [ 280.754631][T11271] ax25_connect(): syz.2.1342 uses autobind, please contact jreuter@yaina.de [ 280.774433][T11271] kAFS: unable to lookup cell ' [ 280.774433][T11271] $)-.ײfYǝa2s [ 280.774433][T11271] ' [ 281.235372][T11293] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1352'. [ 281.286369][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.288370][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.295718][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.298228][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.309317][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.317093][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.327739][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.329789][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.331722][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.333643][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.340547][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.346976][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.349354][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.351993][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.354051][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.357248][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.361973][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.364488][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.368459][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.370412][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.372483][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.374502][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.376746][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.378821][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.380922][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.383160][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.386193][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.388165][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.398092][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.400193][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.402138][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.404077][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.409374][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.411872][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.414370][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.417466][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.419958][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.422341][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.424975][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.427077][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.429023][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.430957][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.432888][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.434593][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.436806][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.439269][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.441900][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.444441][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.447108][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.454321][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.456921][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.466538][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.474891][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.482201][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.484303][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.486743][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.489269][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.489299][ T6047] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 281.494207][ T6047] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz0] on syz0 [ 281.828355][T11304] 9pnet_fd: Insufficient options for proto=fd [ 282.267399][T11320] fuse: Unknown parameter '7|Bq4Hs ݑFP0N9j' [ 282.359161][T11324] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1361'. [ 283.364897][ T6047] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 283.436133][T11352] FAULT_INJECTION: forcing a failure. [ 283.436133][T11352] name failslab, interval 1, probability 0, space 0, times 0 [ 283.439594][T11352] CPU: 2 UID: 0 PID: 11352 Comm: syz.2.1368 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 283.442721][T11352] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 283.446277][T11352] Call Trace: [ 283.447167][T11352] [ 283.447970][T11352] dump_stack_lvl+0x16c/0x1f0 [ 283.449221][T11352] should_fail_ex+0x497/0x5b0 [ 283.450552][T11352] ? fs_reclaim_acquire+0xae/0x150 [ 283.452404][T11352] should_failslab+0xc2/0x120 [ 283.453914][T11352] __kmalloc_noprof+0xcb/0x410 [ 283.455390][T11352] ? rcu_is_watching+0x12/0xc0 [ 283.456702][T11352] tomoyo_encode2+0x100/0x3e0 [ 283.457957][T11352] tomoyo_realpath_from_path+0x1a7/0x710 [ 283.459456][T11352] ? tomoyo_path_number_perm+0x235/0x5b0 [ 283.461122][T11352] tomoyo_path_number_perm+0x248/0x5b0 [ 283.462554][T11352] ? tomoyo_path_number_perm+0x235/0x5b0 [ 283.464029][T11352] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 283.465717][T11352] ? __pfx_lock_release+0x10/0x10 [ 283.467209][T11352] ? trace_lock_acquire+0x14a/0x1d0 [ 283.468698][T11352] ? lock_acquire+0x2f/0xb0 [ 283.469962][T11352] ? __fget_files+0x40/0x3a0 [ 283.471212][T11352] ? __fget_files+0x206/0x3a0 [ 283.472462][T11352] security_file_ioctl_compat+0x9b/0x240 [ 283.473963][T11352] __do_compat_sys_ioctl+0x4e/0x2c0 [ 283.475451][T11352] __do_fast_syscall_32+0x73/0x120 [ 283.477724][T11352] do_fast_syscall_32+0x32/0x80 [ 283.479381][T11352] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 283.481066][T11352] RIP: 0023:0xf73ee579 [ 283.482141][T11352] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 283.487284][T11352] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 283.489471][T11352] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000008910 [ 283.491623][T11352] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 283.493666][T11352] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 283.495809][T11352] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 283.497882][T11352] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 283.500057][T11352] [ 283.502622][T11352] ERROR: Out of memory at tomoyo_realpath_from_path. [ 283.514871][ T6047] usb 6-1: Using ep0 maxpacket: 32 [ 283.524781][ T6047] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid maxpacket 12320, setting to 1024 [ 283.528693][ T6047] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 283.533880][ T6047] usb 6-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5 [ 283.537162][ T6047] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 283.540007][ T6047] usb 6-1: Product: syz [ 283.541575][ T6047] usb 6-1: Manufacturer: syz [ 283.543301][ T6047] usb 6-1: SerialNumber: syz [ 283.547310][T11356] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1370'. [ 283.550510][ T6047] usb 6-1: config 0 descriptor?? [ 283.552754][T11348] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 283.558051][ T6047] usb 6-1: Quirk or no altset; falling back to MIDI 1.0 [ 284.598662][T11368] validate_nla: 8 callbacks suppressed [ 284.598673][T11368] netlink: 'syz.0.1371': attribute type 4 has an invalid length. [ 284.617493][T11368] netlink: 'syz.0.1371': attribute type 4 has an invalid length. [ 284.845053][T11372] fuse: Bad value for 'fd' [ 285.031675][ T6027] usb 6-1: USB disconnect, device number 3 [ 285.087306][T11378] netlink: 134640 bytes leftover after parsing attributes in process `syz.3.1375'. [ 285.089778][T11378] openvswitch: netlink: Duplicate key (type 0). [ 285.114932][ T1010] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 285.119932][T11380] netlink: 134640 bytes leftover after parsing attributes in process `syz.3.1376'. [ 285.122500][T11380] openvswitch: netlink: Duplicate key (type 0). [ 285.244876][ T1010] usb 5-1: device descriptor read/64, error -71 [ 285.269036][T11387] netlink: 'syz.3.1378': attribute type 4 has an invalid length. [ 285.274110][T11387] netlink: 'syz.3.1378': attribute type 4 has an invalid length. [ 285.485243][ T1010] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 285.635227][ T1010] usb 5-1: device descriptor read/64, error -71 [ 285.649379][T11396] i2c i2c-1: Invalid block write size 34 [ 285.753412][ T1010] usb usb5-port1: attempt power cycle [ 285.827868][T11403] ax25_connect(): syz.1.1383 uses autobind, please contact jreuter@yaina.de [ 285.841762][T11403] kAFS: unable to lookup cell ' [ 285.841762][T11403] $)-.ײfYǝa2s [ 285.841762][T11403] ' [ 286.062044][T11409] netlink: 'syz.1.1385': attribute type 4 has an invalid length. [ 286.073793][T11409] netlink: 'syz.1.1385': attribute type 4 has an invalid length. [ 286.095220][ T1010] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 286.115228][ T1010] usb 5-1: device descriptor read/8, error -71 [ 286.377460][ T1010] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 286.401087][ T1010] usb 5-1: device descriptor read/8, error -71 [ 286.505025][ T1010] usb usb5-port1: unable to enumerate USB device [ 286.509703][T11415] netlink: 'syz.3.1387': attribute type 4 has an invalid length. [ 286.527638][T11415] netlink: 'syz.3.1387': attribute type 4 has an invalid length. [ 286.618231][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.620228][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.622158][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.624207][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.627438][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.629866][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.631689][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.633811][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.636176][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.638134][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.640077][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.642019][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.644203][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.646988][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.649487][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.651393][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.653307][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.655518][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.657461][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.659457][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.661582][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.663582][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.666755][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.669463][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.671416][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.673357][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.675746][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.677685][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.679608][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.681528][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.683459][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.685690][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.688407][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.690914][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.692831][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.694799][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.696716][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.698629][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.700483][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.702382][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.704297][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.706520][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.709228][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.711888][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.713808][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.715817][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.717751][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.719666][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.721593][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.723520][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.725570][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.727501][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.729430][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.731352][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.733280][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.735311][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.737639][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.740304][ T6027] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 286.746653][ T6027] hid-generic 0000:0000:0000.0004: hidraw0: HID v0.00 Device [syz0] on syz0 [ 287.976180][ T6009] IPVS: starting estimator thread 0... [ 287.994706][T11429] netlink: 'syz.0.1388': attribute type 4 has an invalid length. [ 288.000309][T11429] netlink: 'syz.0.1388': attribute type 4 has an invalid length. [ 288.064909][T11427] IPVS: using max 37 ests per chain, 88800 per kthread [ 288.301213][T11434] i2c i2c-1: Invalid block write size 34 [ 288.490024][T11442] ax25_connect(): syz.1.1393 uses autobind, please contact jreuter@yaina.de [ 288.494033][T11442] kAFS: unable to lookup cell ' [ 288.494033][T11442] $)-.ײfYǝa2s [ 288.494033][T11442] ' [ 288.537901][T11446] fuse: Unknown parameter 'wroup_}/pIŌ7!`"^MSY;II&d3HO͡&ud_4|–Ƴ!!X P8Q%l٨ 6QxH՞' [ 289.719016][T11471] i2c i2c-1: Invalid block write size 34 [ 289.724573][T11472] netlink: 'syz.0.1400': attribute type 4 has an invalid length. [ 289.757014][T11472] netlink: 'syz.0.1400': attribute type 4 has an invalid length. [ 290.333515][T11484] netlink: 'syz.1.1405': attribute type 4 has an invalid length. [ 290.341313][T11484] netlink: 'syz.1.1405': attribute type 4 has an invalid length. [ 290.378556][T11488] netlink: 252 bytes leftover after parsing attributes in process `syz.3.1407'. [ 291.698187][T11517] fuse: Bad value for 'fd' [ 291.921302][T11518] sctp: [Deprecated]: syz.1.1413 (pid 11518) Use of int in max_burst socket option deprecated. [ 291.921302][T11518] Use struct sctp_assoc_value instead [ 292.446313][T11529] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 292.540294][T11534] netlink: 'syz.3.1420': attribute type 4 has an invalid length. [ 292.567448][T11534] netlink: 'syz.3.1420': attribute type 4 has an invalid length. [ 293.279305][T11553] fuse: Bad value for 'fd' [ 293.808758][T11563] FAULT_INJECTION: forcing a failure. [ 293.808758][T11563] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 293.813054][T11563] CPU: 0 UID: 0 PID: 11563 Comm: syz.3.1428 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 293.815460][T11563] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 293.817992][T11563] Call Trace: [ 293.818864][T11563] [ 293.819813][T11563] dump_stack_lvl+0x16c/0x1f0 [ 293.821230][T11563] should_fail_ex+0x497/0x5b0 [ 293.822553][T11563] _copy_to_user+0x32/0xd0 [ 293.823820][T11563] simple_read_from_buffer+0xd0/0x160 [ 293.825135][T11563] proc_fail_nth_read+0x198/0x270 [ 293.826384][T11563] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 293.827702][T11563] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 293.829502][T11563] vfs_read+0x1df/0xbe0 [ 293.830901][T11563] ? __fget_files+0x1fc/0x3a0 [ 293.832350][T11563] ? __pfx___mutex_lock+0x10/0x10 [ 293.833695][T11563] ? __pfx_vfs_read+0x10/0x10 [ 293.834816][T11563] ? __fget_files+0x206/0x3a0 [ 293.835910][T11563] ksys_read+0x12b/0x250 [ 293.836941][T11563] ? __pfx_ksys_read+0x10/0x10 [ 293.838123][T11563] __do_fast_syscall_32+0x73/0x120 [ 293.839335][T11563] do_fast_syscall_32+0x32/0x80 [ 293.840497][T11563] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 293.841978][T11563] RIP: 0023:0xf7fbf579 [ 293.842941][T11563] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 293.847512][T11563] RSP: 002b:00000000f5146590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 293.849543][T11563] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5146620 [ 293.851386][T11563] RDX: 000000000000000f RSI: 00000000f744dff4 RDI: 0000000000000000 [ 293.853235][T11563] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000 [ 293.855110][T11563] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 293.856970][T11563] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 293.858934][T11563] [ 293.966270][T11570] random: crng reseeded on system resumption [ 294.083580][ T39] audit: type=1326 audit(1732296177.415:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11573 comm="syz.2.1432" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 294.091069][ T39] audit: type=1326 audit(1732296177.415:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11573 comm="syz.2.1432" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 294.096896][ T39] audit: type=1326 audit(1732296177.425:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11573 comm="syz.2.1432" exe="/syz-executor" sig=0 arch=40000003 syscall=322 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 294.105011][ T39] audit: type=1326 audit(1732296177.425:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11573 comm="syz.2.1432" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 294.110859][ T39] audit: type=1326 audit(1732296177.425:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11573 comm="syz.2.1432" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 294.117656][ T39] audit: type=1326 audit(1732296177.425:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11573 comm="syz.2.1432" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 294.125948][ T39] audit: type=1326 audit(1732296177.425:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11573 comm="syz.2.1432" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 294.133716][ T39] audit: type=1326 audit(1732296177.425:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11573 comm="syz.2.1432" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 294.143373][ T39] audit: type=1326 audit(1732296177.425:984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11573 comm="syz.2.1432" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 294.150421][ T39] audit: type=1326 audit(1732296177.425:985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11573 comm="syz.2.1432" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf73ee579 code=0x7ffc0000 [ 295.072199][T11593] ata1.00: invalid command format 189 [ 295.858392][T11605] netlink: 'syz.0.1446': attribute type 4 has an invalid length. [ 295.864024][T11605] netlink: 'syz.0.1446': attribute type 4 has an invalid length. [ 296.062744][T11610] fuse: Bad value for 'fd' [ 296.124817][ T6047] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 296.288113][ T6047] usb 7-1: config index 0 descriptor too short (expected 23569, got 27) [ 296.291276][ T6047] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 296.297362][ T6047] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 296.300615][ T6047] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 296.302676][ T6047] usb 7-1: Manufacturer: syz [ 296.331952][ T6047] usb 7-1: config 0 descriptor?? [ 296.394877][ T6047] rc_core: IR keymap rc-hauppauge not found [ 296.396511][ T6047] Registered IR keymap rc-empty [ 296.401202][ T6047] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0 [ 296.405240][ T6047] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input60 [ 296.467180][T11615] netlink: 'syz.1.1441': attribute type 4 has an invalid length. [ 296.477508][T11615] netlink: 'syz.1.1441': attribute type 4 has an invalid length. [ 296.791956][T11624] xt_nat: multiple ranges no longer supported [ 296.794958][T11626] xt_nat: multiple ranges no longer supported [ 297.147314][T11630] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1447'. [ 297.392648][T11642] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1450'. [ 297.395229][T11642] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1450'. [ 297.588656][T11657] FAULT_INJECTION: forcing a failure. [ 297.588656][T11657] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 297.588688][T11657] CPU: 3 UID: 0 PID: 11657 Comm: syz.1.1455 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 297.588708][T11657] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 297.588719][T11657] Call Trace: [ 297.588725][T11657] [ 297.588732][T11657] dump_stack_lvl+0x16c/0x1f0 [ 297.588770][T11657] should_fail_ex+0x497/0x5b0 [ 297.588798][T11657] _copy_from_user+0x2e/0xd0 [ 297.588823][T11657] sctp_setsockopt+0x422/0xb880 [ 297.588849][T11657] ? __pfx_sctp_setsockopt+0x10/0x10 [ 297.588869][T11657] ? __pfx_aa_sk_perm+0x10/0x10 [ 297.588891][T11657] ? sock_common_setsockopt+0x2e/0xf0 [ 297.588910][T11657] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 297.588927][T11657] do_sock_setsockopt+0x222/0x480 [ 297.588954][T11657] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 297.588981][T11657] ? lock_acquire+0x2f/0xb0 [ 297.589008][T11657] __sys_setsockopt+0x1a0/0x230 [ 297.589033][T11657] __ia32_sys_setsockopt+0xbc/0x160 [ 297.589054][T11657] ? lockdep_hardirqs_on+0x7c/0x110 [ 297.589080][T11657] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 297.589098][T11657] __do_fast_syscall_32+0x73/0x120 [ 297.589117][T11657] do_fast_syscall_32+0x32/0x80 [ 297.589135][T11657] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 297.589156][T11657] RIP: 0023:0xf745e579 [ 297.589171][T11657] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 297.589188][T11657] RSP: 002b:00000000f514655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e [ 297.589206][T11657] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000084 [ 297.589218][T11657] RDX: 000000000000007b RSI: 0000000020000040 RDI: 0000000000000008 [ 297.589235][T11657] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 297.589245][T11657] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 297.589255][T11657] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 297.589276][T11657] [ 297.747511][T11664] ax25_connect(): syz.3.1454 uses autobind, please contact jreuter@yaina.de [ 297.757855][T11653] kAFS: unable to lookup cell ' [ 297.757855][T11653] $)-.ײfYǝa2s [ 297.757855][T11653] ' [ 298.871853][ T25] usb 7-1: USB disconnect, device number 3 [ 300.156011][T11700] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1463'. [ 300.929032][T11719] netlink: 'syz.3.1469': attribute type 4 has an invalid length. [ 300.934639][T11719] netlink: 'syz.3.1469': attribute type 4 has an invalid length. [ 300.988545][T11722] netlink: 'syz.0.1470': attribute type 4 has an invalid length. [ 300.993886][T11722] netlink: 'syz.0.1470': attribute type 4 has an invalid length. [ 301.329431][T11727] ax25_connect(): syz.3.1471 uses autobind, please contact jreuter@yaina.de [ 301.333459][T11727] kAFS: unable to lookup cell ' [ 301.333459][T11727] $)-.ײfYǝa2s [ 301.333459][T11727] ' [ 301.401326][T11731] netlink: 'syz.0.1473': attribute type 4 has an invalid length. [ 301.409543][T11731] netlink: 'syz.0.1473': attribute type 4 has an invalid length. [ 302.914419][ T39] kauditd_printk_skb: 32 callbacks suppressed [ 302.914477][ T39] audit: type=1326 audit(1732296186.245:1018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11740 comm="syz.0.1476" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 302.923404][ T39] audit: type=1326 audit(1732296186.245:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11740 comm="syz.0.1476" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 302.929651][ T39] audit: type=1326 audit(1732296186.255:1020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11740 comm="syz.0.1476" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 302.935982][ T39] audit: type=1326 audit(1732296186.255:1021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11740 comm="syz.0.1476" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 302.942167][ T39] audit: type=1326 audit(1732296186.255:1022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11740 comm="syz.0.1476" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 302.952143][ T39] audit: type=1326 audit(1732296186.255:1023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11740 comm="syz.0.1476" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 302.959372][ T39] audit: type=1326 audit(1732296186.255:1024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11740 comm="syz.0.1476" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 302.965395][ T39] audit: type=1326 audit(1732296186.255:1025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11740 comm="syz.0.1476" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 303.094285][T11757] netlink: 'syz.1.1479': attribute type 4 has an invalid length. [ 303.108318][T11757] netlink: 'syz.1.1479': attribute type 4 has an invalid length. [ 303.199842][T11763] input: syz0 as /devices/virtual/input/input61 [ 303.206395][T11763] FAULT_INJECTION: forcing a failure. [ 303.206395][T11763] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 303.210121][T11763] CPU: 2 UID: 0 PID: 11763 Comm: syz.0.1480 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 303.212903][T11763] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 303.215710][T11763] Call Trace: [ 303.216599][T11763] [ 303.217381][T11763] dump_stack_lvl+0x16c/0x1f0 [ 303.218619][T11763] should_fail_ex+0x497/0x5b0 [ 303.220150][T11763] _copy_from_user+0x2e/0xd0 [ 303.221864][T11763] input_event_from_user+0x22d/0x3b0 [ 303.223751][T11763] ? __pfx_input_event_from_user+0x10/0x10 [ 303.225839][T11763] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 303.227979][T11763] ? input_event+0x8e/0xa0 [ 303.229616][T11763] uinput_write+0xbb6/0x12b0 [ 303.231288][T11763] ? __pfx_uinput_write+0x10/0x10 [ 303.233117][T11763] ? bpf_lsm_file_permission+0x9/0x10 [ 303.235063][T11763] ? security_file_permission+0x71/0x210 [ 303.237075][T11763] ? __pfx_uinput_write+0x10/0x10 [ 303.238528][T11763] vfs_write+0x24c/0x1150 [ 303.239685][T11763] ? __fget_files+0x1fc/0x3a0 [ 303.241564][T11763] ? __pfx_lock_release+0x10/0x10 [ 303.242930][T11763] ? trace_lock_acquire+0x14a/0x1d0 [ 303.244286][T11763] ? __pfx_vfs_write+0x10/0x10 [ 303.245500][T11763] ? lock_acquire+0x2f/0xb0 [ 303.246651][T11763] ? __fget_files+0x40/0x3a0 [ 303.247884][T11763] ? __fget_files+0x206/0x3a0 [ 303.249135][T11763] ksys_write+0x207/0x250 [ 303.250238][T11763] ? __pfx_ksys_write+0x10/0x10 [ 303.251669][T11763] __do_fast_syscall_32+0x73/0x120 [ 303.253145][T11763] do_fast_syscall_32+0x32/0x80 [ 303.254384][T11763] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 303.255998][T11763] RIP: 0023:0xf7fe5579 [ 303.257077][T11763] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 303.261973][T11763] RSP: 002b:00000000f512455c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 303.264215][T11763] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020000000 [ 303.266368][T11763] RDX: 000000000000fe4f RSI: 0000000000000000 RDI: 0000000000000000 [ 303.268433][T11763] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 303.270567][T11763] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 303.272640][T11763] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 303.274679][T11763] [ 304.166310][ T39] audit: type=1326 audit(1732296187.505:1026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11779 comm="syz.3.1485" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 304.185047][ T39] audit: type=1326 audit(1732296187.515:1027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11779 comm="syz.3.1485" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fbf579 code=0x7ffc0000 [ 304.873426][T11799] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1489'. [ 304.880161][T11799] FAULT_INJECTION: forcing a failure. [ 304.880161][T11799] name failslab, interval 1, probability 0, space 0, times 0 [ 304.883751][T11799] CPU: 1 UID: 0 PID: 11799 Comm: syz.1.1489 Not tainted 6.12.0-syzkaller-07749-g28eb75e178d3 #0 [ 304.886894][T11799] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 304.889788][T11799] Call Trace: [ 304.890669][T11799] [ 304.891433][T11799] dump_stack_lvl+0x16c/0x1f0 [ 304.892656][T11799] should_fail_ex+0x497/0x5b0 [ 304.894090][T11799] ? fs_reclaim_acquire+0xae/0x150 [ 304.895927][T11799] should_failslab+0xc2/0x120 [ 304.897656][T11799] __kmalloc_cache_noprof+0x6b/0x310 [ 304.899268][T11799] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 304.900719][T11799] ? nf_nat_masq_schedule.part.0+0x276/0x600 [ 304.902182][T11799] nf_nat_masq_schedule.part.0+0x276/0x600 [ 304.903719][T11799] ? __pfx_inet_cmp+0x10/0x10 [ 304.905017][T11799] ? __pfx_nf_nat_masq_schedule.part.0+0x10/0x10 [ 304.906585][T11799] masq_inet_event+0x250/0x2a0 [ 304.907783][T11799] ? __pfx_masq_inet_event+0x10/0x10 [ 304.909077][T11799] ? neigh_ifdown+0x1e/0x30 [ 304.910216][T11799] ? ieee80211_ifa_changed+0xe3/0x6a0 [ 304.911546][T11799] notifier_call_chain+0xb9/0x410 [ 304.912787][T11799] ? __pfx_masq_inet_event+0x10/0x10 [ 304.914436][T11799] blocking_notifier_call_chain+0x69/0xa0 [ 304.916449][T11799] __inet_del_ifa+0x3dd/0xf40 [ 304.918084][T11799] devinet_ioctl+0x1364/0x1f40 [ 304.919350][T11799] ? __pfx_devinet_ioctl+0x10/0x10 [ 304.920649][T11799] ? _copy_from_user+0x59/0xd0 [ 304.921900][T11799] inet_ioctl+0x3aa/0x3f0 [ 304.923031][T11799] ? __pfx_inet_ioctl+0x10/0x10 [ 304.924543][T11799] ? find_held_lock+0x2d/0x110 [ 304.925874][T11799] ? tomoyo_path_number_perm+0x298/0x5b0 [ 304.927343][T11799] ? __pfx_lock_release+0x10/0x10 [ 304.928679][T11799] ? tomoyo_path_number_perm+0x190/0x5b0 [ 304.930126][T11799] sock_do_ioctl+0x116/0x280 [ 304.931326][T11799] ? __pfx_sock_do_ioctl+0x10/0x10 [ 304.932675][T11799] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 304.934336][T11799] compat_sock_ioctl+0x318/0x7e0 [ 304.936143][T11799] ? __pfx_compat_sock_ioctl+0x10/0x10 [ 304.938145][T11799] ? __fget_files+0x206/0x3a0 [ 304.939538][T11799] ? __pfx_compat_sock_ioctl+0x10/0x10 [ 304.940963][T11799] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 304.942334][T11799] __do_fast_syscall_32+0x73/0x120 [ 304.943640][T11799] do_fast_syscall_32+0x32/0x80 [ 304.945083][T11799] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 304.946708][T11799] RIP: 0023:0xf745e579 [ 304.947810][T11799] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 304.952768][T11799] RSP: 002b:00000000f512555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 304.955560][T11799] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000000008916 [ 304.958420][T11799] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 304.961167][T11799] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 304.963265][T11799] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 304.965496][T11799] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 304.967565][T11799] [ 304.968529][ C1] vkms_vblank_simulate: vblank timer overrun [ 305.030740][T11803] netlink: 'syz.0.1490': attribute type 4 has an invalid length. [ 305.037999][T11803] netlink: 'syz.0.1490': attribute type 4 has an invalid length. [ 305.588289][T11806] ax25_connect(): syz.2.1491 uses autobind, please contact jreuter@yaina.de [ 305.591128][T11806] kAFS: unable to lookup cell ' [ 305.591128][T11806] $)-.ײfYǝa2s [ 305.591128][T11806] ' [ 305.730747][T11812] netfs: Duplicate cookie detected [ 305.732281][T11812] netfs: O-cookie c=00000006 [fl=4008 na=0 nA=0 s=-] [ 305.734017][T11812] netfs: O-cookie V=00000004 [9p,syz,] [ 305.735545][T11812] netfs: O-key=[8] '65003e0200000000' [ 305.736940][T11812] netfs: N-cookie c=00000009 [fl=8 na=0 nA=0 s=-] [ 305.738602][T11812] netfs: N-cookie V=00000004 [9p,syz,] [ 305.740065][T11812] netfs: N-key=[8] '65003e0200000000' [ 305.795877][ T6030] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 306.164846][ T6030] usb 5-1: Using ep0 maxpacket: 16 [ 306.247032][ T6030] usb 5-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 306.249907][ T6030] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87 [ 306.264841][ T6030] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 152, changing to 11 [ 306.268188][ T6030] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 8285, setting to 1024 [ 306.271307][ T6030] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 306.336239][ T6030] usb 5-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89 [ 306.338627][ T6030] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 306.345173][ T6030] usb 5-1: Product: syz [ 306.346294][ T6030] usb 5-1: Manufacturer: syz [ 306.347534][ T6030] usb 5-1: SerialNumber: syz [ 306.367976][ T6030] usb 5-1: config 0 descriptor?? [ 306.876319][ T6030] appledisplay 5-1:0.0: Error while getting initial brightness: -110 [ 306.880084][ T6030] appledisplay 5-1:0.0: probe with driver appledisplay failed with error -110 [ 306.896941][ T6030] usb 5-1: USB disconnect, device number 11 [ 307.049272][T11837] netlink: 'syz.2.1500': attribute type 4 has an invalid length. [ 307.103327][T11838] netlink: 'syz.2.1500': attribute type 4 has an invalid length. [ 307.635380][T11855] ax25_connect(): syz.2.1503 uses autobind, please contact jreuter@yaina.de [ 307.659041][T11855] kAFS: unable to lookup cell ' [ 307.659041][T11855] $)-.ײfYǝa2s [ 307.659041][T11855] ' [ 307.675842][T11855] binder: 11844:11855 ioctl 4018620d 0 returned -22 [ 308.672435][ T39] kauditd_printk_skb: 8 callbacks suppressed [ 308.672451][ T39] audit: type=1326 audit(1732296192.005:1036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11861 comm="syz.0.1508" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 308.682816][ T39] audit: type=1326 audit(1732296192.005:1037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11861 comm="syz.0.1508" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 308.690440][ T39] audit: type=1326 audit(1732296192.015:1038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11861 comm="syz.0.1508" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 308.697108][ T39] audit: type=1326 audit(1732296192.015:1039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11861 comm="syz.0.1508" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 308.703691][ T39] audit: type=1326 audit(1732296192.015:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11861 comm="syz.0.1508" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000 [ 308.733807][T11873] syzkaller1: entered promiscuous mode [ 308.735516][T11873] syzkaller1: entered allmulticast mode [ 308.799568][T11875] netlink: 'syz.0.1513': attribute type 4 has an invalid length. [ 308.801644][T11877] netlink: 'syz.2.1511': attribute type 4 has an invalid length. [ 308.816689][T11877] netlink: 'syz.2.1511': attribute type 4 has an invalid length. [ 308.829778][T11875] netlink: 'syz.0.1513': attribute type 4 has an invalid length. [ 308.877951][T11878] could not allocate digest TFM handle blake2s-224 [ 309.050178][T11883] kernel profiling enabled (shift: 63) [ 309.051767][T11883] profiling shift: 63 too large [ 309.075712][T11888] ptrace attach of "/syz-executor exec"[5967] was attempted by "/syz-executor exec"[11888] [ 309.094067][T11888] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.1516'. [ 309.215973][ T6708] e1000 0000:00:06.0 eth0: Reset adapter [ 309.325108][ T6708] e1000 0000:00:06.0 eth0: Reset adapter [ 309.362971][T11901] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1518'. [ 309.465285][ T6708] e1000 0000:00:06.0 eth0: Reset adapter [ 309.710998][T11914] ax25_connect(): syz.1.1519 uses autobind, please contact jreuter@yaina.de [ 309.714197][T11914] kAFS: unable to lookup cell ' [ 309.714197][T11914] $)-.ײfYǝa2s [ 309.714197][T11914] ' [ 309.719546][T11914] binder: 11908:11914 ioctl 4018620d 0 returned -22 [ 310.442396][T11934] bridge0: port 2(bridge_slave_1) entered disabled state [ 310.480037][T11938] netlink: 'syz.0.1524': attribute type 4 has an invalid length. [ 310.483515][T11938] netlink: 'syz.0.1524': attribute type 4 has an invalid length. [ 311.577333][ T6027] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX [ 316.460608][ T1409] ieee802154 phy0 wpan0: encryption failed: -22 [ 316.462301][ T1409] ieee802154 phy1 wpan1: encryption failed: -22 [ 377.897134][ T1409] ieee802154 phy0 wpan0: encryption failed: -22 [ 377.898768][ T1409] ieee802154 phy1 wpan1: encryption failed: -22 [ 439.337614][ T1409] ieee802154 phy0 wpan0: encryption failed: -22 [ 439.339607][ T1409] ieee802154 phy1 wpan1: encryption failed: -22 [ 454.532173][ C2] ICMPv6: NA: 52:54:00:12:34:57 advertised our address fec0::6dc6:e057:3405:23fd on eth0! [ 455.536357][ C2] ICMPv6: NA: 52:54:00:12:34:57 advertised our address fec0::6dc6:e057:3405:23fd on eth0! [ 456.543494][ C2] ICMPv6: NA: 52:54:00:12:34:57 advertised our address fec0::6dc6:e057:3405:23fd on eth0! [ 500.776326][ T1409] ieee802154 phy0 wpan0: encryption failed: -22 [ 500.778023][ T1409] ieee802154 phy1 wpan1: encryption failed: -22 [ 562.218664][ T1409] ieee802154 phy0 wpan0: encryption failed: -22 [ 562.220223][ T1409] ieee802154 phy1 wpan1: encryption failed: -22 VM DIAGNOSIS: 17:28:12 Registers: info registers vcpu 0 CPU#0 RAX=0000000000f6b697 RBX=0000000000000000 RCX=ffffffff8b155a79 RDX=0000000000000000 RSI=ffffffff8b4cd3c0 RDI=ffffffff8bb05e20 RBP=fffffbfff1b52f00 RSP=ffffffff8da07e20 R8 =0000000000000001 R9 =ffffed1005687035 R10=ffff88802b4381ab R11=0000000000000000 R12=0000000000000000 R13=ffffffff8da97800 R14=ffffffff901cd1d0 R15=0000000000000000 RIP=ffffffff8b156e5f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b400000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000556c3a869680 CR3=000000000db7e000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f73fdff4 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000001442cc3 RBX=0000000000000001 RCX=ffffffff8b155a79 RDX=0000000000000000 RSI=ffffffff8b4cd3c0 RDI=ffffffff8bb05e20 RBP=ffffed10036ee910 RSP=ffffc90000477e08 R8 =0000000000000001 R9 =ffffed10056a7035 R10=ffff88802b5381ab R11=0000000000000000 R12=0000000000000001 R13=ffff88801b774880 R14=ffffffff901cd1d0 R15=0000000000000000 RIP=ffffffff8b156e5f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b500000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000556c3a869680 CR3=000000000db7e000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000004040003 Opmask01=0000000000000000 Opmask02=000000000fffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c20dc39dafa0b47b 38c24254d63bc27b ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 15117786c2654516 ccf9cc6624dfd220 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c8acab1db29d23ca 07bb25560b7a506a ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 50748523d5af214a 783db7fd9d0f7a8a ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 00000000000000b4 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000034 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5507e85b9a9fb94f 522d8e9ab7aa3994 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 57ba8780bf14c1a2 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a76d2fc5f77e4446 86cc8ac1c5a93a8c ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0127c8f000000000 3ff0531669a2a62f ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 68b484c88206ea04 1ae13448219014a6 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 419b62b86600c3a5 9dadafacd0c6fb53 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f73616500000004 0000000800000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a56444057001346 4c51445156004050 4050545f494a5751 4b4a46051f560000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f74656e2f30316d 697377682f6d6973 77685f3131323038 63616d2f6c617574 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c6175747269762f 736563697665642f 0000000000000041 000000326e616c77 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000556c0bc71233 73656d5f70636864 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 725f0f12f46d2661 72610f6dfa6b737f 6567757f7bf77fff 7f7f7d7f75777965 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 0000726565666965 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 00006d5f65636864 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2b313423342c ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020 info registers vcpu 2 CPU#2 RAX=0000000000000000 RBX=0000000000000000 RCX=0000000000000002 RDX=ffffffff969a7aa8 RSI=1ffff11003cb25e3 RDI=ffffffff8ddba848 RBP=0000000000000000 RSP=ffffc900006bf960 R8 =0000000000000001 R9 =0000000000000001 R10=ffffffff901cd1d7 R11=0000000000000002 R12=ffffffff8ddba840 R13=ffff88801e592440 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff816a3ba2 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000556c3a868600 CR3=000000000db7e000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000062003 Opmask01=0000000000100000 Opmask02=000000000fffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 af496b03144573ea b2a5c062d340200a ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3693b2e02127193e 2395bd4a4d4fa536 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a994774620f39af 96095f8fef6b800d ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b5519bfa4bdf5add a6c5ff1dc24b4085 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 00000000000000b4 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000034 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1d8334dd14377515 a5f225fd5cbf8d62 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 de5b3c63f2325d4b 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 df2e06d51b7da990 fe3a2f0105b5855f ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 64754b2a00000000 da286aa5c6b80a14 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 9136891d2386e415 504221ae7779a683 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 88bf8075e7fc57b8 7e9bca29bb0ff739 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 50422064656e7761 7073203a73250050 5241006e65706f5f 667062203a732500 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 50420541404b5244 5556051f56000050 5241004b40554a5f 435547051f560000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000005581 0500010e00000000 306572673670692f 74656e2f6c617574 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001001 3030303030303230 00316e6170772f74 656e2f317968702f ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000556c0bc71233 73656d5f70636864 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 725f0f12f46d2661 72610f6dfa6b737f 6567757f7bf77fff 7f7f7d7f75777965 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 0000726565666965 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 00006d5f65636864 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2b313423342c ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020 info registers vcpu 3 CPU#3 RAX=0000000000548173 RBX=0000000000000003 RCX=ffffffff8b155a79 RDX=0000000000000000 RSI=ffffffff8b4cd3c0 RDI=ffffffff8bb05e20 RBP=ffffed100376f488 RSP=ffffc90000497e08 R8 =0000000000000001 R9 =ffffed10056e7035 R10=ffff88802b7381ab R11=0000000000000001 R12=0000000000000003 R13=ffff88801bb7a440 R14=ffffffff901cd1d0 R15=0000000000000000 RIP=ffffffff8b156e5f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000556c3a868600 CR3=0000000049036000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000004040003 Opmask01=0000000000000000 Opmask02=000000000fffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 82838391ebe3aa15 5a6a709aeab47662 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 334d54c6796c68ed 404f3e595425f665 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 9e21d0fb1bd3b6ce 9cb7e624b408f8b2 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 278529335218654e 946596cb098113a4 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000280 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c8beb16cee6b9b4f e12eb5abb4f01437 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b5311b330bcb5594 16f47e2618d493f9 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ef39f8defce6843b 0930ba2a5ab35fce ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 329171972aa03039 bc138933dfa8d113 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 cbcafce2f8b6d2b1 72ce30f834daefc8 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 dcf8b9701f43c9bc f17fe94480131533 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f73616500000004 0000005d00000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a56444057001346 4c51445156004050 4050545f494a5751 4b4a46051f560000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f74656e2f30316d 697377682f6d6973 77685f3131323038 63616d2f6c617574 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c6175747269762f 736563697665642f 0000000000000041 000000326e616c77 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000556c0bc71233 73656d5f70636864 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 725f0f12f46d2661 72610f6dfa6b737f 6567757f7bf77fff 7f7f7d7f75777965 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 0000726565666965 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 00006d5f65636864 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2b313423342c ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020