last executing test programs: 7.312752095s ago: executing program 3 (id=2565): r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r0, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="10190000121410002abd7000f3dbdf25"], 0x10}, 0x1, 0x0, 0x0, 0x400c0}, 0x24000001) socket$nl_generic(0x10, 0x3, 0x10) getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev, 0x2, 0x1}, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3) ioctl$FS_IOC_GETFSLABEL(r1, 0x400452c8, &(0x7f0000000100)) r2 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000000)={@initdev={0xac, 0x1e, 0x1, 0x0}, @broadcast}, 0xc) socket$netlink(0x10, 0x3, 0x9) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000003b00040008000300", @ANYRES32=r6, @ANYBLOB="2f00330040000000080211000000080211000001505050505050"], 0x4c}}, 0x0) r7 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) readv(r7, &(0x7f0000000200)=[{&(0x7f0000000480)=""/171, 0xab}], 0x1) syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21}, &(0x7f0000000040)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) sched_setscheduler(0x0, 0x5, &(0x7f00000002c0)=0xbc7) readv(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000580)=""/50, 0x32}], 0x1) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r9 = syz_open_dev$evdev(&(0x7f0000000180), 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r9, 0x80104592, &(0x7f0000000380)={0x0, 0x89, 0x3, 0x2, "00205f2024516674462ae400"}) ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="0149000000009500"/24], &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000400)='kfree\x00', r10}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) 6.946344568s ago: executing program 0 (id=2567): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x18, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000100000000000000000000095"], &(0x7f00000000c0)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() process_vm_readv(r2, &(0x7f0000008400)=[{0x0}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) shutdown(r3, 0x0) r4 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x101641) fgetxattr(0xffffffffffffffff, 0x0, &(0x7f0000000240)=""/145, 0x91) openat$loop_ctrl(0xffffff9c, 0x0, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/address_bits', 0x0, 0x44) ioctl$SNDRV_TIMER_IOCTL_STOP(r5, 0x54a1) socket$inet_udp(0x2, 0x2, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x80041285, &(0x7f0000001080)) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r6 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)="d80000001c0081044e81f782db44b904021d080201000000120000a1180002000000000000000e1208000f0100810401a8001600200001400300000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c11503c6bbace8017cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef3d93452a00"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x0, 0x2, 0xc}, 0x48) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100"/13, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000ac0)='rpm_return_int\x00', r7}, 0x10) ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000200)) ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect) 6.646867761s ago: executing program 0 (id=2570): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$kcm(0x2, 0xa, 0x2) epoll_create1(0x0) epoll_create1(0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r3}, 0x10) process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x0, 0x0) tee(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) read(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), 0xffffffffffffffff) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r4, 0x0) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x12, 0x4, 0x4, 0x12}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000a80)={r5, &(0x7f0000000940), &(0x7f0000000a40)=@tcp6=r4}, 0x20) shutdown(r4, 0x0) recvmmsg(r4, &(0x7f0000000280)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000001840)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'caif0\x00', @broadcast}) writev(r0, &(0x7f00000002c0)=[{&(0x7f0000000a40)="2e9b3d0007e03dd65193dfb6c575963f86ddf06712e9232f2f8db0049d90491ceaebfd26d4eef23248000000f858dbb8a19052343f", 0x35}, {&(0x7f0000000200)="c67f0d7df974c298a2", 0x9}], 0x2) 5.19852682s ago: executing program 0 (id=2573): socket$netlink(0x10, 0x3, 0x8000000004) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000400)) ioctl$PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f0000000480)={0x60, 0x1, &(0x7f00001b8000/0x2000)=nil, &(0x7f00007c1000/0x12000)=nil, 0x0, 0x0}) socket(0xa, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, 0x0, &(0x7f0000000000)='GPL\x00'}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x9, 0x0, 0x0, 0x0, 0x71, 0x11, 0x3c}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0xa0}, @exit]}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0xe}, 0x70) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000140), &(0x7f0000000100)=0xfffffffffffffdbc) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', 0x0}) sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x3, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @local}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @remote}}]}, 0x70}, 0x1, 0x7}, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(0xffffffffffffffff, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) listen(r7, 0x1) capset(&(0x7f0000000180)={0x19980330}, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x8000001}) openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="2800000014000905000000000000000002000000", @ANYRES32=r5, @ANYBLOB="08000200e000000108000800440400005ec234a2c720da38d6020fbac7eeea2f6ef48204ddc5a33bf934237446f95a0079d70caea8546e08f0084f967b6f2ff0fe199dffdef637902bb25c51f9516f1db5cf"], 0x28}}, 0x0) 4.027824898s ago: executing program 3 (id=2576): r0 = socket$inet_udplite(0x2, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000001440)={'wlan0\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00'}) socket$inet_udplite(0x2, 0x2, 0x88) r2 = getpid() r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={0x0, r3}, 0x10) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CAP_X86_DISABLE_EXITS(r5, 0x4068aea3, &(0x7f0000000580)={0x8f, 0x0, 0x8}) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) socket$alg(0x26, 0x5, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000180)=ANY=[@ANYRESOCT=r0]) chdir(&(0x7f0000000100)='./file0\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1) rename(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 3.848553921s ago: executing program 1 (id=2577): sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0xc9d7, 0x0, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0) memfd_create(0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) io_uring_setup(0x0, 0x0) pipe2(0x0, 0x0) ioctl$TCSETS(0xffffffffffffffff, 0x5412, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000002c0)={0xc, 0x0, 0x0}) ioctl$IOMMU_VFIO_IOAS$SET(r0, 0x3b88, &(0x7f0000000300)={0xc, r1}) ioctl$IOMMU_VFIO_CHECK_EXTENSION(0xffffffffffffffff, 0x3b65, 0x4) 3.446768203s ago: executing program 1 (id=2578): r0 = creat(&(0x7f0000000280)='./file0\x00', 0x0) close(r0) r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r0, 0xc01864b0, &(0x7f00000001c0)={r2, 0x0, 0x9, 0x0, 0x2000000}) 3.327958015s ago: executing program 1 (id=2579): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x18, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000100000000000000000000095"], &(0x7f00000000c0)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000180)='tlb_flush\x00'}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000340)=""/69, 0x623c41ea}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) shutdown(r2, 0x0) r3 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x101641) fgetxattr(0xffffffffffffffff, 0x0, &(0x7f0000000240)=""/145, 0x91) openat$loop_ctrl(0xffffff9c, 0x0, 0x0, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/address_bits', 0x0, 0x44) ioctl$SNDRV_TIMER_IOCTL_STOP(r4, 0x54a1) socket$inet_udp(0x2, 0x2, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r5, 0x80041285, &(0x7f0000001080)) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r6 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)="d80000001c0081044e81f782db44b904021d080201000000120000a1180002000000000000000e1208000f0100810401a8001600200001400300000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c11503c6bbace8017cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef3d93452a00"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x0, 0x2, 0xc}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100"/13, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200)) ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect) 2.945445195s ago: executing program 0 (id=2582): mkdir(0x0, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='ramfs\x00', 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(&(0x7f00000004c0)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@xino_auto}]}) 2.766200789s ago: executing program 0 (id=2583): rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8) r0 = gettid() r1 = gettid() r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000ff000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) read(0xffffffffffffffff, 0x0, 0x0) tkill(r0, 0x12) tkill(r0, 0x1) tkill(r1, 0x14) r3 = socket$inet_tcp(0x2, 0x1, 0x0) io_setup(0x9, &(0x7f00000000c0)=0x0) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/power/sync_on_suspend', 0x20001, 0x0) io_submit(r4, 0x1, &(0x7f0000000040)=[&(0x7f0000001500)={0x0, 0x0, 0x0, 0x1, 0x0, r5, &(0x7f0000000540)="3955dc4a67fb045ba617c332155ca4fbffffffffffffff85f025d5952235277763ff3d751945363bcf9627eebcc865f84c168463101fb7d673cc2d00000000000000d008a2a9", 0x46}]) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r5, &(0x7f0000000440)="e3c78f6faab745357d2804dd3f3caa5c23081918bce95fd8998a2125d4800a1c18e7ba2f2a77bea5182c6300ad41fcc32ee50e2b5c3cdcfe8bf9e1371d916b6489b7afcbb504483a6f9366baff85b49dcd28c2b04db88059c030a939c7fb6ce05e6a4dabe20cedbcb55cd365c1dc94", &(0x7f00000004c0)=@tcp=r3, 0x2}, 0x20) setsockopt$ARPT_SO_SET_REPLACE(r3, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x4, 0x4, 0x3e8, 0x200, 0x200, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0x0, 0x0, 0x0, 0x0, {@mac=@link_local={0x2}}, {@mac}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'erspan0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {@mac=@link_local}, {@mac=@multicast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438) mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000000, 0x100010, r3, 0xb92e7000) r6 = syz_open_dev$evdev(&(0x7f0000000040), 0x7, 0x20200) ioctl$EVIOCSKEYCODE_V2(r6, 0x40284504, &(0x7f0000000100)={0x2, 0x1e, 0x1, 0x80000000, "ea10a258cf6b0badfc548c780193eaca48ce49f3f9cadca5cec6e9c4aecf62eb"}) prlimit64(0x0, 0x0, &(0x7f0000000000)={0x0, 0x100008b}, 0x0) r7 = syz_open_procfs(0x0, &(0x7f0000000140)='task\x00') bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x11, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r5}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="11000000000000000000250400000e0001006e657464657673696d0000000f0002006e657464657673696d30000008008e00000000000c009b0000000000000000000c0090000000000000000000"], 0x54}}, 0x0) fchdir(r7) mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) r10 = syz_clone(0x0, &(0x7f0000000200), 0x0, 0x0, 0x0, 0x0) syz_open_procfs$namespace(r10, &(0x7f00000000c0)='ns/time\x00') 2.695596661s ago: executing program 2 (id=2584): ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x0, &(0x7f0000130000/0x800000)=nil) preadv(0xffffffffffffffff, &(0x7f0000000240), 0x0, 0x0, 0x0) munmap(&(0x7f00001a2000/0x1000)=nil, 0x1000) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xf, 0x4, 0x8, 0xda, 0x0, 0x1}, 0x48) madvise(&(0x7f000018e000/0x3000)=nil, 0x3000, 0x1) r0 = io_uring_setup(0x3450, &(0x7f0000000080)) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000040)) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) syz_open_dev$mouse(&(0x7f0000000000), 0x0, 0x0) r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) ioctl$BLKZEROOUT(r1, 0x127f, &(0x7f0000000240)={0x0, 0x1000000}) creat(&(0x7f0000000180)='./file0\x00', 0x0) syz_init_net_socket$llc(0x1a, 0x2, 0x0) 2.604926932s ago: executing program 3 (id=2585): pipe(&(0x7f0000000240)) socket$inet_udp(0x2, 0x2, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r0) sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01040000f5ffffffffff2000000009001f00706879310000000005002000050000000c0005"], 0x34}}, 0x0) 2.506431167s ago: executing program 0 (id=2586): pipe2$9p(0x0, 0x0) fsopen(&(0x7f0000000080)='binder\x00', 0x0) connect$can_bcm(0xffffffffffffffff, 0x0, 0x0) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x6, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2d}, 0x90) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r0, r2, 0x25, 0x2}, 0x40) syz_emit_ethernet(0xe, &(0x7f0000000200)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xfffffff7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000032680)=""/102360, 0x18fd8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) socket$inet_udp(0x2, 0x2, 0x0) r4 = socket$inet6_sctp(0xa, 0x801, 0x84) getsockopt$bt_hci(r4, 0x84, 0x7f, &(0x7f00000011c0)=""/4072, &(0x7f0000001180)=0xfe8) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0xe0}}, 0x0) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r5, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x20, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_TX_RATES={0x4}]}, 0x20}}, 0x0) r9 = socket$inet6_mptcp(0xa, 0x1, 0x106) r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="18010000000800000000000000000000850000006d00000095", @ANYRES64=r9, @ANYRESOCT=r9, @ANYRESDEC=r9, @ANYRESDEC=r9, @ANYRES8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='contention_end\x00', r10}, 0x10) r11 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r11, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00\xfdM\xab\x89\xff\xda\xc7dw2\xa1\xb2\xabuQQ\x14\x97\xc9\xfae\xc7\xa1U\xe2\xbe\"\xb9t\xa0\x0e\xfa\xdb\xf1\xa5.\xd87\xc3p\xa5l\xf8vC\xe2\xe8 \xd5-<#\x186\xe1\xbd\xc0\xc3\xb5N(vj\xa7+<:\xc4\xe00\x01\xdd \x82\x83\xed\x0e\xc4\x1d\xac\xef7\b\xd3Z5\\A\'\x18\xa2\xc3\xab\xc7`\xc3\v\xf3L\x9d[Q\x9e\x11@=\xa1\x9b\xdc\xb1\xef\xc3k<\x97L\xa0\xab\xa6\x1ce\xcd\x99\xb3m\xef\x87\xc5i^N\xbd@\x01\xc0\xb2\x88\xc3\xe2\x96T\xa3\xa5\xeb\x0f\xf2f\xb9$\xd2\x140x0}, &(0x7f0000000040)=0x8) r3 = socket(0x2, 0x80805, 0x0) sendmmsg$inet(r3, &(0x7f00000003c0)=[{{&(0x7f0000000000)={0x2, 0x0, @rand_addr=0x64010100}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000180)="e1", 0x1}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r3, 0x84, 0x18, &(0x7f0000000380)={r2}, 0x8) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='xen_mc_extend_args\x00', r0}, 0x10) getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev, 0x0, 0x2}, 0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) ioctl$FS_IOC_GETFSLABEL(r4, 0x400452c8, &(0x7f0000000100)) 2.474296996s ago: executing program 2 (id=2588): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r1}, 0x10) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8100000}, 0x0) write$binfmt_misc(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="15"], 0x6) (fail_nth: 9) 2.235624026s ago: executing program 2 (id=2589): r0 = creat(&(0x7f0000000280)='./file0\x00', 0x0) close(r0) r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000380)=[0x0], 0x0, 0x0, 0x0, 0x1, 0x0, 0x39}) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='io.stat\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f00000000c0)={'#! ', './file0/file0'}, 0x11) mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) r4 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_udp_int(r4, 0x11, 0x0, 0x0, &(0x7f0000000080)=0xfffffffffffffd88) ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r0, 0xc01864b0, &(0x7f00000001c0)={r2, 0x0, 0x9}) 2.208690032s ago: executing program 3 (id=2590): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x18, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000100000000000000000000095"], &(0x7f00000000c0)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000340)=""/69, 0x623c41ea}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) shutdown(r3, 0x0) r4 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x101641) fgetxattr(0xffffffffffffffff, 0x0, &(0x7f0000000240)=""/145, 0x91) openat$loop_ctrl(0xffffff9c, 0x0, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) ioctl$SNDRV_TIMER_IOCTL_STOP(0xffffffffffffffff, 0x54a1) socket$inet_udp(0x2, 0x2, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x80041285, &(0x7f0000001080)) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r5 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)="d80000001c0081044e81f782db44b904021d080201000000120000a1180002000000000000000e1208000f0100810401a8001600200001400300000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c11503c6bbace8017cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef3d93452a00"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x0, 0x2, 0xc}, 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100"/13, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000ac0)='rpm_return_int\x00', r6}, 0x10) ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000200)) ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect) 2.04974984s ago: executing program 2 (id=2591): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) read$FUSE(r0, &(0x7f00000013c0)={0x2020}, 0x2020) 1.888892469s ago: executing program 1 (id=2592): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$kcm(0x2, 0xa, 0x2) epoll_create1(0x0) epoll_create1(0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r3}, 0x10) process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x0, 0x0) tee(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) read(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), 0xffffffffffffffff) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r4, 0x0) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x12, 0x4, 0x4, 0x12}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000a80)={r5, &(0x7f0000000940), &(0x7f0000000a40)=@tcp6=r4}, 0x20) shutdown(r4, 0x0) recvmmsg(r4, &(0x7f0000000280)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000001840)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'caif0\x00', @broadcast}) writev(r0, &(0x7f00000002c0)=[{&(0x7f0000000a40)="2e9b3d0007e03dd65193dfb6c575963f86ddf06712e9232f2f8db0049d90491ceaebfd26d4eef23248000000f858dbb8a19052343f", 0x35}, {&(0x7f0000000200)="c67f0d7df974c298a2", 0x9}], 0x2) 1.817350577s ago: executing program 2 (id=2593): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$kcm(0x2, 0xa, 0x2) epoll_create1(0x0) epoll_create1(0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r3}, 0x10) process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) sched_setscheduler(0x0, 0x0, 0x0) tee(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) read(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), 0xffffffffffffffff) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r4, 0x0) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x12, 0x4, 0x4, 0x12}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000a80)={r5, &(0x7f0000000940), &(0x7f0000000a40)=@tcp6=r4}, 0x20) shutdown(r4, 0x0) recvmmsg(r4, &(0x7f0000000280)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000001840)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'caif0\x00', @broadcast}) writev(r0, &(0x7f00000002c0)=[{&(0x7f0000000a40)="2e9b3d0007e03dd65193dfb6c575963f86ddf06712e9232f2f8db0049d90491ceaebfd26d4eef23248000000f858dbb8a19052343f", 0x35}, {&(0x7f0000000200)="c67f0d7df974c298a2", 0x9}], 0x2) 626.41049ms ago: executing program 3 (id=2594): r0 = socket$inet_udplite(0x2, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000001440)={'wlan0\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00'}) socket$inet_udplite(0x2, 0x2, 0x88) r2 = getpid() r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={0x0, r3}, 0x10) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CAP_X86_DISABLE_EXITS(r5, 0x4068aea3, &(0x7f0000000580)={0x8f, 0x0, 0x8}) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) socket$alg(0x26, 0x5, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000180)=ANY=[@ANYRESOCT=r0]) chdir(&(0x7f0000000100)='./file0\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1) rename(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 401.901812ms ago: executing program 1 (id=2595): rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8) r0 = gettid() r1 = gettid() r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000ff000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) read(0xffffffffffffffff, 0x0, 0x0) tkill(r0, 0x12) tkill(r0, 0x1) tkill(r1, 0x14) r3 = socket$inet_tcp(0x2, 0x1, 0x0) io_setup(0x9, &(0x7f00000000c0)=0x0) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/power/sync_on_suspend', 0x20001, 0x0) io_submit(r4, 0x1, &(0x7f0000000040)=[&(0x7f0000001500)={0x0, 0x0, 0x0, 0x1, 0x0, r5, &(0x7f0000000540)="3955dc4a67fb045ba617c332155ca4fbffffffffffffff85f025d5952235277763ff3d751945363bcf9627eebcc865f84c168463101fb7d673cc2d00000000000000d008a2a9", 0x46}]) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r5, &(0x7f0000000440)="e3c78f6faab745357d2804dd3f3caa5c23081918bce95fd8998a2125d4800a1c18e7ba2f2a77bea5182c6300ad41fcc32ee50e2b5c3cdcfe8bf9e1371d916b6489b7afcbb504483a6f9366baff85b49dcd28c2b04db88059c030a939c7fb6ce05e6a4dabe20cedbcb55cd365c1dc94", &(0x7f00000004c0)=@tcp=r3, 0x2}, 0x20) setsockopt$ARPT_SO_SET_REPLACE(r3, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x4, 0x4, 0x3e8, 0x200, 0x200, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0x0, 0x0, 0x0, 0x0, {@mac=@link_local={0x2}}, {@mac}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'erspan0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {@mac=@link_local}, {@mac=@multicast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438) mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000000, 0x100010, r3, 0xb92e7000) r6 = syz_open_dev$evdev(&(0x7f0000000040), 0x7, 0x20200) ioctl$EVIOCSKEYCODE_V2(r6, 0x40284504, &(0x7f0000000100)={0x2, 0x1e, 0x1, 0x80000000, "ea10a258cf6b0badfc548c780193eaca48ce49f3f9cadca5cec6e9c4aecf62eb"}) prlimit64(0x0, 0x0, &(0x7f0000000000)={0x0, 0x100008b}, 0x0) r7 = syz_open_procfs(0x0, &(0x7f0000000140)='task\x00') bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x11, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r5}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="11000000000000000000250400000e0001006e657464657673696d0000000f0002006e657464657673696d30000008008e00000000000c009b0000000000000000000c0090000000000000000000"], 0x54}}, 0x0) fchdir(r7) mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) r10 = syz_clone(0x0, &(0x7f0000000200), 0x0, 0x0, 0x0, 0x0) syz_open_procfs$namespace(r10, &(0x7f00000000c0)='ns/time\x00') 283.889073ms ago: executing program 2 (id=2596): openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0) r0 = socket$inet6(0xa, 0x800000000000002, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000180)=0x7f, 0x4) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x803, 0x0, @private2, 0x7}, 0x1c) syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x4a202) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bd2) getpgid(0xffffffffffffffff) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0xd, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000080000000000000000000000180100002020702500000000002020207b1af8ff00000000bda004000000000027000000f8ffffffb702000008000000b7030000000000002500f8ff0600000095"], &(0x7f0000000280)='GPL\x00', 0x8}, 0x90) r1 = socket$inet6(0xa, 0x3, 0xff) socket$nl_route(0x10, 0x3, 0x0) r2 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001e00)={'bond0\x00'}) r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000000100)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r3, 0xc0182101, &(0x7f0000000180)={r4}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f00000002c0)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r3, 0x40182103, &(0x7f0000000080)={r5, 0x3, r3, 0x5}) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[], 0x70}}, 0x0) r6 = socket$inet6(0xa, 0x2, 0x3a) r7 = dup(r6) bind$unix(r7, &(0x7f00000001c0)=@abs={0xa, 0x2}, 0x6e) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r8, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYRES16=r1], 0x7c}}, 0x5) r9 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r9, &(0x7f0000001940)={0x0, 0x0, &(0x7f0000001900)={&(0x7f0000000640)=ANY=[@ANYBLOB="d80000000314010000000000000000000900020073797a30000000000800410073697700140033006361696630"], 0xd8}}, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) r10 = socket(0x11, 0x0, 0x0) getsockopt$nfc_llcp(r10, 0x107, 0x17, 0x0, 0x20600000) 0s ago: executing program 1 (id=2597): socket$nl_netfilter(0x10, 0x3, 0xc) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo\x00') getdents(r0, &(0x7f0000000140)=""/168, 0xa8) r1 = socket$inet_smc(0x2b, 0x1, 0x0) getsockopt$IPT_SO_GET_ENTRIES(r1, 0x0, 0x41, 0x0, &(0x7f0000000080)=0x39) unshare(0x68040200) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) socket$netlink(0x10, 0x3, 0x0) r2 = syz_usb_connect$cdc_ecm(0x6, 0x96, &(0x7f0000000200)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x84, 0x1, 0x1, 0x5, 0x21831ff75c45df72, 0x3, [{{0x9, 0x4, 0x0, 0x8, 0x3, 0x2, 0x6, 0x0, 0x6, {{0x7, 0x24, 0x6, 0x0, 0x0, "f873"}, {0x5, 0x24, 0x0, 0x2}, {0xd, 0x24, 0xf, 0x1, 0x5, 0xfffa, 0x4f51}, [@dmm={0x7, 0x24, 0x14, 0x5, 0x6}, @network_terminal={0x7, 0x24, 0xa, 0x4, 0x8, 0x0, 0x7}, @dmm={0x7, 0x24, 0x14, 0xfffa, 0xff}, @country_functional={0xe, 0x24, 0x7, 0x9, 0x3, [0xf9da, 0x1, 0x7, 0x800]}, @mdlm_detail={0xf, 0x24, 0x13, 0xe2, "fb8a679a2dd09e77fa5302"}, @country_functional={0xc, 0x24, 0x7, 0x48, 0xc84, [0x4, 0x7, 0x9]}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x8, 0x7, 0x5, 0x6}}], {{0x9, 0x5, 0x82, 0x2, 0x8, 0x1, 0x3, 0x25}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x1a, 0x7, 0x1}}}}}]}}]}}, &(0x7f0000000640)={0xa, &(0x7f00000002c0)={0xa, 0x6, 0x310, 0x6, 0x4, 0x7, 0x10, 0x9}, 0x2a, &(0x7f00000003c0)={0x5, 0xf, 0x2a, 0x2, [@ptm_cap={0x3}, @generic={0x22, 0x10, 0x1, "278fcd2132e83e6a1ee63e0f77695a2ad732bf7858c3b9e30a4ca00ad6182c"}]}, 0x6, [{0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x44e}}, {0x4, &(0x7f0000000440)=@lang_id={0x4, 0x3, 0x1c0a}}, {0x85, &(0x7f0000000480)=@string={0x85, 0x3, "b003bd7fc55b4dd0766ae467aa56cdedebf4c843f82e66325d5182177baafa647ad791fb1138efad44b4b79859020753eb7007f8af124ac72af47d010a8c0eab7516748f3babcec3c7a9728094650d33cbd581b99c07ba9ff730361b470ae9d0184fbd29de5776a386c4306d5645a4f7f7ad6971c29340d83e1061242a31d8fa51d633"}}, {0x6a, &(0x7f0000000540)=@string={0x6a, 0x3, "2634550ce7477cc40b94607aedcc07bc38649691956908a7accbd249d15c6253e5fd4435d31fe20a656ae0d16d64a5b462e9c9d1d224c1d90a574fac29bf45c653db09b42e4755a6ff91f5e7a91643fe5ecbd85cc558e1561dfc5d2c6957c2bb09afbf5dd4c8fa9a"}}, {0x4, &(0x7f00000005c0)=@lang_id={0x4, 0x3, 0x4ff}}, {0x4, &(0x7f0000000600)=@lang_id={0x4, 0x3, 0x280a}}]}) syz_usb_disconnect(r2) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) getsockopt$IP6T_SO_GET_INFO(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000140)={'raw\x00'}, &(0x7f0000000000)=0x54) kernel console output (not intermixed with test programs): process `syz.1.1834'. [ 358.003403][T11500] hub 9-0:1.0: USB hub found [ 358.011447][T11500] hub 9-0:1.0: 1 port detected [ 358.038900][T11501] hub 9-0:1.0: USB hub found [ 358.041400][T11501] hub 9-0:1.0: 1 port detected [ 358.069071][ T11] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 358.073497][ T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 358.227879][ T5347] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 358.233096][ T5347] Bluetooth: hci4: Injecting HCI hardware error event [ 358.237771][ T5342] Bluetooth: hci4: hardware error 0x00 [ 358.423305][T11504] __nla_validate_parse: 1 callbacks suppressed [ 358.423319][T11504] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1836'. [ 358.441916][T11504] hub 9-0:1.0: USB hub found [ 358.444605][T11504] hub 9-0:1.0: 1 port detected [ 359.624769][T11529] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=11529 comm=syz.1.1844 [ 359.921702][T11543] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1848'. [ 359.933471][T11543] hub 9-0:1.0: USB hub found [ 359.936120][T11543] hub 9-0:1.0: 1 port detected [ 360.008178][T11546] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1849'. [ 360.042080][T11546] hub 9-0:1.0: USB hub found [ 360.045450][T11546] hub 9-0:1.0: 1 port detected [ 360.307646][ T5342] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 361.013916][T11559] af_packet: tpacket_rcv: packet too big, clamped from 66 to 4294967286. macoff=82 [ 361.264423][T11565] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1856'. [ 361.291494][T11565] hub 9-0:1.0: USB hub found [ 361.294065][T11565] hub 9-0:1.0: 1 port detected [ 362.038548][T11572] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1858'. [ 362.055678][T11572] hub 9-0:1.0: USB hub found [ 362.062482][T11572] hub 9-0:1.0: 1 port detected [ 362.286717][T11577] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1859'. [ 362.307093][T11577] hub 9-0:1.0: USB hub found [ 362.310283][T11577] hub 9-0:1.0: 1 port detected [ 363.007402][T11592] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1863'. [ 363.020940][T11592] hub 9-0:1.0: USB hub found [ 363.023094][T11592] hub 9-0:1.0: 1 port detected [ 363.345767][ T39] kauditd_printk_skb: 68 callbacks suppressed [ 363.345783][ T39] audit: type=1326 audit(1722524977.095:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11594 comm="syz.2.1865" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2e999773b9 code=0x0 [ 363.514956][T11599] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1866'. [ 363.549459][T11599] hub 9-0:1.0: USB hub found [ 363.552380][T11599] hub 9-0:1.0: 1 port detected [ 363.830579][T10774] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 363.836858][ T1106] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 363.951712][T11607] vivid-000: disconnect [ 363.954370][T11606] vivid-000: reconnect [ 364.076514][T11610] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1869'. [ 364.089770][T11610] hub 9-0:1.0: USB hub found [ 364.092128][T11610] hub 9-0:1.0: 1 port detected [ 364.407864][T11617] netlink: 160 bytes leftover after parsing attributes in process `syz.0.1870'. [ 364.557282][T11622] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1874'. [ 364.569104][T11622] hub 9-0:1.0: USB hub found [ 364.571218][T11622] hub 9-0:1.0: 1 port detected [ 365.020034][T11630] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1877'. [ 365.092547][T11630] hub 9-0:1.0: USB hub found [ 365.097706][T11630] hub 9-0:1.0: 1 port detected [ 365.381643][T11636] overlayfs: invalid origin (0000) [ 365.390731][T11636] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1879'. [ 365.625323][T11641] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1881'. [ 365.650336][T11641] hub 9-0:1.0: USB hub found [ 365.653256][T11641] hub 9-0:1.0: 1 port detected [ 366.132163][T11652] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1883'. [ 366.144772][T11652] hub 9-0:1.0: USB hub found [ 366.147272][T11652] hub 9-0:1.0: 1 port detected [ 366.245748][T11659] input: syz0 as /devices/virtual/input/input63 [ 366.337324][T11662] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=11662 comm=syz.1.1887 [ 366.393569][T11663] netlink: 160 bytes leftover after parsing attributes in process `syz.2.1885'. [ 366.583032][T11666] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1888'. [ 366.594592][T11666] hub 9-0:1.0: USB hub found [ 366.597326][T11666] hub 9-0:1.0: 1 port detected [ 366.827831][T11671] hub 9-0:1.0: USB hub found [ 366.830287][T11671] hub 9-0:1.0: 1 port detected [ 367.259271][T11681] xt_CONNSECMARK: invalid mode: 0 [ 367.267596][T11681] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0 [ 367.440559][T11688] hub 9-0:1.0: USB hub found [ 367.443346][T11688] hub 9-0:1.0: 1 port detected [ 368.085758][T11701] hub 9-0:1.0: USB hub found [ 368.090909][T11701] hub 9-0:1.0: 1 port detected [ 368.199372][T11703] hub 9-0:1.0: USB hub found [ 368.202046][T11703] hub 9-0:1.0: 1 port detected [ 368.805485][T11714] __nla_validate_parse: 5 callbacks suppressed [ 368.805500][T11714] netlink: 160 bytes leftover after parsing attributes in process `syz.1.1902'. [ 368.877652][T11715] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1903'. [ 368.897865][T11715] hub 9-0:1.0: USB hub found [ 368.900457][T11715] hub 9-0:1.0: 1 port detected [ 369.485089][T11732] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1906'. [ 369.581078][T11732] hub 9-0:1.0: USB hub found [ 369.587181][T11732] hub 9-0:1.0: 1 port detected [ 369.590301][ T11] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 369.597199][ T11] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 369.604122][T11736] netlink: 160 bytes leftover after parsing attributes in process `syz.2.1907'. [ 369.729374][T11741] FAULT_INJECTION: forcing a failure. [ 369.729374][T11741] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 369.735170][T11741] CPU: 0 UID: 0 PID: 11741 Comm: syz.1.1909 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 369.739112][T11741] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 369.743220][T11741] Call Trace: [ 369.744865][T11741] [ 369.746172][T11741] dump_stack_lvl+0x16c/0x1f0 [ 369.748111][T11741] should_fail_ex+0x497/0x5b0 [ 369.750136][T11741] _copy_from_user+0x30/0xf0 [ 369.752126][T11741] input_event_from_user+0x134/0x3b0 [ 369.754293][T11741] ? __pfx_input_event_from_user+0x10/0x10 [ 369.756990][T11741] ? __pfx___might_resched+0x10/0x10 [ 369.759306][T11741] ? input_inject_event+0x193/0x370 [ 369.761297][T11741] evdev_write+0x374/0x750 [ 369.763012][T11741] ? __pfx_evdev_write+0x10/0x10 [ 369.765049][T11741] ? security_file_permission+0x98/0xc0 [ 369.767190][T11741] ? __pfx_evdev_write+0x10/0x10 [ 369.769452][T11741] vfs_write+0x29a/0x1140 [ 369.771266][T11741] ? __pfx_vfs_write+0x10/0x10 [ 369.773195][T11741] ? __fget_files+0x256/0x400 [ 369.775135][T11741] ? __fget_light+0x173/0x210 [ 369.776834][T11741] ksys_write+0x1f8/0x260 [ 369.778615][T11741] ? __pfx_ksys_write+0x10/0x10 [ 369.780640][T11741] do_syscall_64+0xcd/0x250 [ 369.782196][T11741] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 369.784924][T11741] RIP: 0033:0x7fd3257773b9 [ 369.786730][T11741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 369.794115][T11741] RSP: 002b:00007fd3265ff048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 369.797572][T11741] RAX: ffffffffffffffda RBX: 00007fd325906058 RCX: 00007fd3257773b9 [ 369.801310][T11741] RDX: 0000000000000918 RSI: 0000000020000040 RDI: 0000000000000003 [ 369.804868][T11741] RBP: 00007fd3265ff0a0 R08: 0000000000000000 R09: 0000000000000000 [ 369.808164][T11741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 369.811247][T11741] R13: 000000000000006e R14: 00007fd325906058 R15: 00007ffedacb6118 [ 369.815002][T11741] [ 369.872986][ T39] audit: type=1400 audit(1722524983.625:664): avc: denied { mounton } for pid=11742 comm="syz.1.1910" path="/484/file0/bus" dev="ramfs" ino=36183 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1 [ 369.878215][T11743] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 369.885311][T11743] overlayfs: failed to set xattr on upper [ 369.888737][T11743] overlayfs: ...falling back to redirect_dir=nofollow. [ 369.891965][T11743] overlayfs: ...falling back to index=off. [ 369.894459][T11743] overlayfs: ...falling back to uuid=null. [ 370.101500][ T39] audit: type=1400 audit(1722524983.855:665): avc: denied { ioctl } for pid=11744 comm="syz.3.1911" path="socket:[38169]" dev="sockfs" ino=38169 ioctlcmd=0x943c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 370.345623][T11752] input: syz0 as /devices/virtual/input/input64 [ 370.492483][T11754] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1913'. [ 370.508364][T11754] hub 9-0:1.0: USB hub found [ 370.511235][T11754] hub 9-0:1.0: 1 port detected [ 370.838326][ T39] audit: type=1400 audit(1722524984.585:666): avc: denied { module_request } for pid=11759 comm="syz.0.1915" kmod="net-pf-35-proto-5" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 370.975913][T11761] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1915'. [ 371.064423][T11767] FAULT_INJECTION: forcing a failure. [ 371.064423][T11767] name failslab, interval 1, probability 0, space 0, times 0 [ 371.072098][T11767] CPU: 3 UID: 0 PID: 11767 Comm: syz.2.1917 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 371.076624][T11767] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 371.081283][T11767] Call Trace: [ 371.082772][T11767] [ 371.083875][T11767] dump_stack_lvl+0x16c/0x1f0 [ 371.085974][T11767] should_fail_ex+0x497/0x5b0 [ 371.088027][T11767] ? __pfx_lock_acquire+0x10/0x10 [ 371.090223][T11767] should_failslab+0xc2/0x120 [ 371.092389][T11767] __kmalloc_node_track_caller_noprof+0xcf/0x430 [ 371.095132][T11767] ? sidtab_sid2str_get+0x17a/0x680 [ 371.097503][T11767] kmemdup_noprof+0x29/0x60 [ 371.099444][T11767] sidtab_sid2str_get+0x17a/0x680 [ 371.101643][T11767] sidtab_entry_to_string+0x33/0x110 [ 371.103986][T11767] security_sid_to_context_core+0x35c/0x640 [ 371.106630][T11767] avc_audit_post_callback+0x10b/0x8c0 [ 371.108994][T11767] ? __pfx_avc_audit_post_callback+0x10/0x10 [ 371.111329][T11767] ? audit_log_format+0xe9/0x130 [ 371.113068][T11767] ? __pfx_avc_audit_post_callback+0x10/0x10 [ 371.115098][T11767] ? skb_put+0x138/0x1b0 [ 371.116712][T11767] ? audit_log_n_string+0x251/0x540 [ 371.118985][T11767] ? audit_log_n_untrustedstring+0xf2/0x100 [ 371.121471][T11767] ? __pfx_avc_audit_post_callback+0x10/0x10 [ 371.124189][T11767] common_lsm_audit+0x260/0x2220 [ 371.126454][T11767] ? __pfx_common_lsm_audit+0x10/0x10 [ 371.128918][T11767] ? __pfx_lock_release+0x10/0x10 [ 371.130856][T11767] ? __pfx_avc_node_free+0x10/0x10 [ 371.132942][T11767] ? rcu_is_watching+0x12/0xc0 [ 371.134738][T11767] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 371.136796][T11767] ? lockdep_hardirqs_on+0x7c/0x110 [ 371.138756][T11767] ? slow_avc_audit+0x17d/0x210 [ 371.140706][T11767] slow_avc_audit+0x17d/0x210 [ 371.142447][T11767] ? __pfx_slow_avc_audit+0x10/0x10 [ 371.144435][T11767] ? avc_denied+0x138/0x180 [ 371.146424][T11767] ? avc_has_perm_noaudit+0x2f8/0x3a0 [ 371.148767][T11767] avc_has_perm+0x18d/0x1c0 [ 371.150574][T11767] ? __pfx_avc_has_perm+0x10/0x10 [ 371.152733][T11767] sock_has_perm+0x253/0x2f0 [ 371.154611][T11767] ? __pfx_sock_has_perm+0x10/0x10 [ 371.156885][T11767] ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10 [ 371.159809][T11767] ? __import_iovec+0x1fd/0x6e0 [ 371.161704][T11767] security_socket_sendmsg+0x75/0xc0 [ 371.163898][T11767] ____sys_sendmsg+0x7f2/0xc90 [ 371.166053][T11767] ? copy_msghdr_from_user+0x10b/0x160 [ 371.166490][T11770] netlink: 160 bytes leftover after parsing attributes in process `syz.1.1916'. [ 371.168465][T11767] ? __pfx_____sys_sendmsg+0x10/0x10 [ 371.168489][T11767] ? find_held_lock+0x2d/0x110 [ 371.175620][T11767] ? __pfx___lock_acquire+0x10/0x10 [ 371.177881][T11767] ___sys_sendmsg+0x135/0x1e0 [ 371.179893][T11767] ? __pfx____sys_sendmsg+0x10/0x10 [ 371.182121][T11767] ? ksys_write+0x21c/0x260 [ 371.183956][T11767] ? __fget_light+0x173/0x210 [ 371.185672][T11767] __sys_sendmsg+0x117/0x1f0 [ 371.187584][T11767] ? __pfx___sys_sendmsg+0x10/0x10 [ 371.189784][T11767] do_syscall_64+0xcd/0x250 [ 371.191714][T11767] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 371.194214][T11767] RIP: 0033:0x7f2e999773b9 [ 371.196229][T11767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 371.204205][T11767] RSP: 002b:00007f2e9a6a0048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 371.208107][T11767] RAX: ffffffffffffffda RBX: 00007f2e99b05f80 RCX: 00007f2e999773b9 [ 371.212809][T11767] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000004 [ 371.216014][T11767] RBP: 00007f2e9a6a00a0 R08: 0000000000000000 R09: 0000000000000000 [ 371.219234][T11767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 371.222638][T11767] R13: 000000000000000b R14: 00007f2e99b05f80 R15: 00007ffe9bdc9c58 [ 371.225987][T11767] [ 371.229744][ T39] audit: type=1400 audit(1722524984.815:667): avc: denied { write } for pid=11766 comm="syz.2.1917" ssid=147 tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 371.391917][T11775] fuse: Unknown parameter 'Q@[y@i"' [ 371.536105][T11776] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1918'. [ 371.596805][T11776] hub 9-0:1.0: USB hub found [ 371.626817][T11776] hub 9-0:1.0: 1 port detected [ 372.514775][T11789] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1922'. [ 372.538166][T11789] hub 9-0:1.0: USB hub found [ 372.541164][T11789] hub 9-0:1.0: 1 port detected [ 373.829075][T11815] netlink: 160 bytes leftover after parsing attributes in process `syz.0.1928'. [ 373.847502][ T39] audit: type=1400 audit(1722524987.595:668): avc: denied { read } for pid=11805 comm="syz.2.1927" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 373.856374][T11816] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1929'. [ 373.908207][ T39] audit: type=1400 audit(1722524987.665:669): avc: denied { write } for pid=11805 comm="syz.2.1927" path="socket:[38301]" dev="sockfs" ino=38301 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 373.928208][T11816] hub 9-0:1.0: USB hub found [ 373.942410][T11816] hub 9-0:1.0: 1 port detected [ 374.417267][T11823] netlink: 'syz.1.1930': attribute type 4 has an invalid length. [ 374.488617][ T39] audit: type=1400 audit(1722524988.235:670): avc: denied { lock } for pid=11821 comm="syz.1.1930" path="socket:[38310]" dev="sockfs" ino=38310 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1 [ 374.675993][T11828] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1931'. [ 374.685723][T11828] hub 9-0:1.0: USB hub found [ 374.688829][T11828] hub 9-0:1.0: 1 port detected [ 374.710400][ T1117] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 374.899183][T11833] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1933'. [ 374.914610][T11833] hub 9-0:1.0: USB hub found [ 374.917353][T11833] hub 9-0:1.0: 1 port detected [ 375.353746][ T65] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 375.566464][T11838] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1934'. [ 375.813578][ T39] audit: type=1400 audit(1722524989.565:671): avc: denied { connect } for pid=11842 comm="syz.2.1936" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 376.196332][T11857] netlink: 160 bytes leftover after parsing attributes in process `syz.3.1938'. [ 376.361383][T11864] netlink: 160 bytes leftover after parsing attributes in process `syz.0.1939'. [ 376.459527][ T39] audit: type=1400 audit(1722524990.215:672): avc: denied { mounton } for pid=11858 comm="syz.2.1940" path="/511/file0" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1 [ 376.464708][T11862] tmpfs: Bad value for 'mpol' [ 376.973752][T11867] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1941'. [ 376.980165][ T39] audit: type=1400 audit(1722524990.735:673): avc: denied { unmount } for pid=5330 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 377.009043][T11867] hub 9-0:1.0: USB hub found [ 377.011408][T11867] hub 9-0:1.0: 1 port detected [ 377.257928][T11872] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1942'. [ 377.306844][T11872] hub 9-0:1.0: USB hub found [ 377.310809][T11872] hub 9-0:1.0: 1 port detected [ 377.662616][ T39] audit: type=1326 audit(1722524991.415:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11877 comm="syz.0.1945" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f08afb773b9 code=0x0 [ 378.332141][ T39] audit: type=1400 audit(1722524992.085:675): avc: denied { read write } for pid=11887 comm="syz.1.1948" name="nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 378.344803][ T39] audit: type=1400 audit(1722524992.085:676): avc: denied { open } for pid=11887 comm="syz.1.1948" path="/dev/nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 378.355464][ T39] audit: type=1400 audit(1722524992.095:677): avc: denied { map } for pid=11887 comm="syz.1.1948" path="/dev/nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 378.367523][ T39] audit: type=1400 audit(1722524992.095:678): avc: denied { execute } for pid=11887 comm="syz.1.1948" path="/dev/nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 378.570228][T11894] netlink: 160 bytes leftover after parsing attributes in process `syz.2.1949'. [ 378.635400][T11897] hub 9-0:1.0: USB hub found [ 378.644766][T11897] hub 9-0:1.0: 1 port detected [ 379.396163][T11905] __nla_validate_parse: 1 callbacks suppressed [ 379.401087][T11905] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1952'. [ 379.427129][T11905] hub 9-0:1.0: USB hub found [ 379.433473][T11905] hub 9-0:1.0: 1 port detected [ 379.701578][T11910] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1955'. [ 379.758321][ T40] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 379.774310][T11910] hub 9-0:1.0: USB hub found [ 379.778071][T11910] hub 9-0:1.0: 1 port detected [ 380.387779][ T1117] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 381.286127][T11934] netlink: 160 bytes leftover after parsing attributes in process `syz.2.1961'. [ 381.416178][T11944] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1962'. [ 381.442555][T11944] hub 9-0:1.0: USB hub found [ 381.445698][T11944] hub 9-0:1.0: 1 port detected [ 381.469175][ T39] audit: type=1326 audit(1722524995.215:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11941 comm="syz.2.1964" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2e999773b9 code=0x0 [ 381.528874][T11946] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=11946 comm=syz.3.1965 [ 381.739589][T11951] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1966'. [ 381.772354][T11951] hub 9-0:1.0: USB hub found [ 381.775313][T11951] hub 9-0:1.0: 1 port detected [ 382.173420][ T39] audit: type=1400 audit(1722524995.925:680): avc: denied { search } for pid=11960 comm="syz.1.1969" name="/" dev="configfs" ino=3187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 382.397913][ T39] audit: type=1400 audit(1722524996.155:681): avc: denied { listen } for pid=11964 comm="syz.2.1971" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 382.889352][T11992] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1977'. [ 382.898476][T11985] netlink: 160 bytes leftover after parsing attributes in process `syz.3.1972'. [ 382.914823][T11992] hub 9-0:1.0: USB hub found [ 382.920772][T11992] hub 9-0:1.0: 1 port detected [ 383.598822][ T39] audit: type=1400 audit(1722524997.355:682): avc: denied { getopt } for pid=11999 comm="syz.0.1980" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 384.020062][T12006] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1981'. [ 384.118380][T12006] hub 9-0:1.0: USB hub found [ 384.120617][T12006] hub 9-0:1.0: 1 port detected [ 384.312122][ T1382] ieee802154 phy0 wpan0: encryption failed: -22 [ 384.315510][ T1382] ieee802154 phy1 wpan1: encryption failed: -22 [ 384.834183][T12018] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22 [ 384.843920][T12018] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1985'. [ 385.142829][T12030] netlink: 160 bytes leftover after parsing attributes in process `syz.3.1987'. [ 385.410880][T12041] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1989'. [ 385.433410][T12041] hub 9-0:1.0: USB hub found [ 385.445210][T12041] hub 9-0:1.0: 1 port detected [ 385.588071][ T40] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 385.592797][ T65] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 385.831936][T12044] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1990'. [ 385.933705][T12050] overlayfs: missing 'lowerdir' [ 386.256986][ T39] audit: type=1400 audit(1722525000.005:683): avc: denied { map } for pid=12056 comm="syz.0.1994" path="/dev/binderfs/binder0" dev="binder" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 386.268034][T12057] binder: BINDER_SET_CONTEXT_MGR already set [ 386.271419][T12057] binder: 12056:12057 ioctl 4018620d 200001c0 returned -16 [ 386.275656][T12057] binder: 12056:12057 ioctl c0306201 20000480 returned -22 [ 386.281554][ T39] audit: type=1400 audit(1722525000.035:684): avc: denied { create } for pid=12056 comm="syz.0.1994" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1 [ 386.488314][T12061] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1995'. [ 386.507739][T12061] hub 9-0:1.0: USB hub found [ 386.510727][T12061] hub 9-0:1.0: 1 port detected [ 387.248096][T12074] netlink: 160 bytes leftover after parsing attributes in process `syz.0.1999'. [ 387.936149][T12079] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2001'. [ 387.950939][T12079] hub 9-0:1.0: USB hub found [ 387.953907][T12079] hub 9-0:1.0: 1 port detected [ 388.399781][T12094] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2004'. [ 388.437350][T12094] hub 9-0:1.0: USB hub found [ 388.440465][T12094] hub 9-0:1.0: 1 port detected [ 388.476439][T12099] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2006'. [ 388.497133][T12099] hub 9-0:1.0: USB hub found [ 388.500716][T12099] hub 9-0:1.0: 1 port detected [ 388.562260][T12097] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2005'. [ 389.227625][T12104] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22 [ 389.349401][T12114] hub 9-0:1.0: USB hub found [ 389.352050][T12114] hub 9-0:1.0: 1 port detected [ 389.464581][T12118] hub 9-0:1.0: USB hub found [ 389.471405][T12118] hub 9-0:1.0: 1 port detected [ 390.528804][T12133] input: syz0 as /devices/virtual/input/input65 [ 390.637999][ T11] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 390.848845][T12136] __nla_validate_parse: 3 callbacks suppressed [ 390.848885][T12136] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2017'. [ 390.868988][T12136] hub 9-0:1.0: USB hub found [ 390.871483][T12136] hub 9-0:1.0: 1 port detected [ 391.350365][ T1106] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 391.456284][T12157] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2023'. [ 391.476731][T12157] hub 9-0:1.0: USB hub found [ 391.479295][T12157] hub 9-0:1.0: 1 port detected [ 391.544424][T12159] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22 [ 391.556685][T12159] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2024'. [ 391.947059][T12170] netlink: 160 bytes leftover after parsing attributes in process `syz.1.2026'. [ 392.136695][ T65] nci: nci_rf_discover_ntf_packet: unsupported rf_tech_and_mode 0xe6 [ 392.251863][T12198] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2031'. [ 392.261765][T12198] hub 9-0:1.0: USB hub found [ 392.265272][T12198] hub 9-0:1.0: 1 port detected [ 392.364317][ T39] audit: type=1400 audit(1722525006.115:685): avc: denied { ioctl } for pid=12176 comm="syz.0.2028" path="socket:[38882]" dev="sockfs" ino=38882 ioctlcmd=0x8983 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 393.229422][T12231] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2035'. [ 393.252791][T12231] hub 9-0:1.0: USB hub found [ 393.256853][T12231] hub 9-0:1.0: 1 port detected [ 394.002424][T12249] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2043'. [ 394.024216][T12249] hub 9-0:1.0: USB hub found [ 394.027702][T12249] hub 9-0:1.0: 1 port detected [ 394.126636][T12250] netlink: 160 bytes leftover after parsing attributes in process `syz.0.2042'. [ 394.586364][T12262] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2046'. [ 395.581315][T12281] 9pnet_virtio: no channels available for device syz [ 396.094316][T12286] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=12286 comm=syz.1.2054 [ 396.106665][ T39] audit: type=1326 audit(1722525009.855:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12285 comm="syz.1.2054" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd3257773b9 code=0x0 [ 396.314477][T12298] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2056'. [ 396.328147][T12298] hub 9-0:1.0: USB hub found [ 396.331298][T12298] hub 9-0:1.0: 1 port detected [ 396.392442][ T1106] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 396.430342][ T39] audit: type=1326 audit(1722525010.185:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12300 comm="syz.3.2057" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f22485773b9 code=0x0 [ 396.478082][T10774] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 396.787735][T12306] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2058'. [ 396.804613][T12306] hub 9-0:1.0: USB hub found [ 396.807077][T12306] hub 9-0:1.0: 1 port detected [ 397.370896][T12314] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2061'. [ 397.388706][T12314] hub 9-0:1.0: USB hub found [ 397.391480][T12314] hub 9-0:1.0: 1 port detected [ 397.409058][ T39] audit: type=1400 audit(1722525011.165:688): avc: denied { ioctl } for pid=12315 comm="syz.2.2062" path="socket:[40046]" dev="sockfs" ino=40046 ioctlcmd=0x5412 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 397.717130][T12323] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=12323 comm=syz.1.2065 [ 397.725489][ T39] audit: type=1326 audit(1722525011.475:689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12322 comm="syz.1.2065" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd3257773b9 code=0x0 [ 398.063295][T12327] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2066'. [ 398.076903][T12327] hub 9-0:1.0: USB hub found [ 398.079511][T12327] hub 9-0:1.0: 1 port detected [ 398.249132][T12329] FAULT_INJECTION: forcing a failure. [ 398.249132][T12329] name failslab, interval 1, probability 0, space 0, times 0 [ 398.254944][T12329] CPU: 3 UID: 0 PID: 12329 Comm: syz.2.2067 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 398.259676][T12329] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 398.264129][T12329] Call Trace: [ 398.265627][T12329] [ 398.266943][T12329] dump_stack_lvl+0x16c/0x1f0 [ 398.269052][T12329] should_fail_ex+0x497/0x5b0 [ 398.271186][T12329] should_failslab+0xc2/0x120 [ 398.273305][T12329] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 398.275733][T12329] ? skb_clone+0x190/0x3f0 [ 398.277681][T12329] skb_clone+0x190/0x3f0 [ 398.279572][T12329] dev_queue_xmit_nit+0x38f/0xba0 [ 398.281699][T12329] dev_hard_start_xmit+0x56/0x790 [ 398.283665][T12329] ? __kasan_slab_alloc+0x89/0x90 [ 398.285651][T12329] __dev_queue_xmit+0x7c7/0x4300 [ 398.287591][T12329] ? __pfx___dev_queue_xmit+0x10/0x10 [ 398.290002][T12329] ? __asan_memcpy+0x3c/0x60 [ 398.292067][T12329] ? __asan_memcpy+0x3c/0x60 [ 398.294131][T12329] ? __skb_clone+0x570/0x760 [ 398.296242][T12329] netlink_deliver_tap+0xa7d/0xd90 [ 398.298541][T12329] netlink_unicast+0x606/0x830 [ 398.300700][T12329] ? __pfx_netlink_unicast+0x10/0x10 [ 398.303035][T12329] netlink_sendmsg+0x8b8/0xd70 [ 398.305250][T12329] ? __pfx_netlink_sendmsg+0x10/0x10 [ 398.307545][T12329] ? __import_iovec+0x1fd/0x6e0 [ 398.309743][T12329] ____sys_sendmsg+0xab5/0xc90 [ 398.311806][T12329] ? copy_msghdr_from_user+0x10b/0x160 [ 398.313939][T12329] ? __pfx_____sys_sendmsg+0x10/0x10 [ 398.316034][T12329] ? find_held_lock+0x2d/0x110 [ 398.317935][T12329] ? __pfx___lock_acquire+0x10/0x10 [ 398.320988][T12329] ___sys_sendmsg+0x135/0x1e0 [ 398.323130][T12329] ? __pfx____sys_sendmsg+0x10/0x10 [ 398.325456][T12329] ? ksys_write+0x21c/0x260 [ 398.327526][T12329] ? __fget_light+0x173/0x210 [ 398.329684][T12329] __sys_sendmsg+0x117/0x1f0 [ 398.331791][T12329] ? __pfx___sys_sendmsg+0x10/0x10 [ 398.334063][T12329] do_syscall_64+0xcd/0x250 [ 398.336126][T12329] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 398.338804][T12329] RIP: 0033:0x7f2e999773b9 [ 398.340824][T12329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 398.349576][T12329] RSP: 002b:00007f2e9a6a0048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 398.353260][T12329] RAX: ffffffffffffffda RBX: 00007f2e99b05f80 RCX: 00007f2e999773b9 [ 398.356791][T12329] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003 [ 398.360352][T12329] RBP: 00007f2e9a6a00a0 R08: 0000000000000000 R09: 0000000000000000 [ 398.363856][T12329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 398.367018][T12329] R13: 000000000000000b R14: 00007f2e99b05f80 R15: 00007ffe9bdc9c58 [ 398.370116][T12329] [ 398.371518][ C3] vkms_vblank_simulate: vblank timer overrun [ 399.469046][T12363] input: syz0 as /devices/virtual/input/input66 [ 399.515155][T12364] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2074'. [ 399.563043][T12364] hub 9-0:1.0: USB hub found [ 399.577574][T12364] hub 9-0:1.0: 1 port detected [ 400.545944][T12376] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2079'. [ 400.608479][T12376] hub 9-0:1.0: USB hub found [ 400.624159][T12376] hub 9-0:1.0: 1 port detected [ 400.706346][T12383] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2081'. [ 400.734804][T12383] hub 9-0:1.0: USB hub found [ 400.736929][T12383] hub 9-0:1.0: 1 port detected [ 401.353467][T12392] FAULT_INJECTION: forcing a failure. [ 401.353467][T12392] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 401.359689][T12392] CPU: 3 UID: 0 PID: 12392 Comm: syz.0.2085 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 401.364264][T12392] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 401.368742][T12392] Call Trace: [ 401.369872][T12392] [ 401.370875][T12392] dump_stack_lvl+0x16c/0x1f0 [ 401.372477][T12392] should_fail_ex+0x497/0x5b0 [ 401.374268][T12392] _copy_from_iter+0x2a1/0x1150 [ 401.376172][T12392] ? __alloc_skb+0x1fe/0x380 [ 401.378161][T12392] ? __pfx__copy_from_iter+0x10/0x10 [ 401.380447][T12392] ? __virt_addr_valid+0x5e/0x590 [ 401.382599][T12392] ? __phys_addr_symbol+0x30/0x80 [ 401.384501][T12392] ? __check_object_size+0x497/0x720 [ 401.386640][T12392] netlink_sendmsg+0x813/0xd70 [ 401.388619][T12392] ? __pfx_netlink_sendmsg+0x10/0x10 [ 401.390863][T12392] ? __import_iovec+0x1fd/0x6e0 [ 401.393051][T12392] ____sys_sendmsg+0xab5/0xc90 [ 401.395221][T12392] ? copy_msghdr_from_user+0x10b/0x160 [ 401.397636][T12392] ? __pfx_____sys_sendmsg+0x10/0x10 [ 401.399665][T12392] ? find_held_lock+0x2d/0x110 [ 401.401528][T12392] ? __pfx___lock_acquire+0x10/0x10 [ 401.403483][T12392] ___sys_sendmsg+0x135/0x1e0 [ 401.405229][T12392] ? __pfx____sys_sendmsg+0x10/0x10 [ 401.407366][T12392] ? ksys_write+0x21c/0x260 [ 401.409343][T12392] ? __fget_light+0x173/0x210 [ 401.411385][T12392] __sys_sendmsg+0x117/0x1f0 [ 401.413392][T12392] ? __pfx___sys_sendmsg+0x10/0x10 [ 401.415601][T12392] do_syscall_64+0xcd/0x250 [ 401.417600][T12392] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 401.420068][T12392] RIP: 0033:0x7f08afb773b9 [ 401.421924][T12392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 401.429857][T12392] RSP: 002b:00007f08b0a0c048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 401.432771][T12392] RAX: ffffffffffffffda RBX: 00007f08afd05f80 RCX: 00007f08afb773b9 [ 401.435864][T12392] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 401.439022][T12392] RBP: 00007f08b0a0c0a0 R08: 0000000000000000 R09: 0000000000000000 [ 401.442325][T12392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 401.445443][T12392] R13: 000000000000000b R14: 00007f08afd05f80 R15: 00007ffd0d743058 [ 401.448393][T12392] [ 401.518103][ T39] audit: type=1400 audit(1722525015.245:690): avc: denied { ioctl } for pid=12385 comm="syz.2.2083" path="/dev/nullb0" dev="devtmpfs" ino=693 ioctlcmd=0x127f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 401.560154][T12396] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2086'. [ 401.572600][T12396] hub 9-0:1.0: USB hub found [ 401.575039][T12396] hub 9-0:1.0: 1 port detected [ 401.587887][T10774] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 401.848742][T12400] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2087'. [ 401.947299][T12408] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2089'. [ 401.977074][T12408] hub 9-0:1.0: USB hub found [ 401.979427][T12408] hub 9-0:1.0: 1 port detected [ 402.228433][ T1107] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 402.284770][T12411] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2090'. [ 402.323911][T12411] hub 9-0:1.0: USB hub found [ 402.327360][T12411] hub 9-0:1.0: 1 port detected [ 403.530873][T12430] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2093'. [ 403.557155][T12430] hub 9-0:1.0: USB hub found [ 403.569651][T12430] hub 9-0:1.0: 1 port detected [ 404.198422][T12443] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22 [ 404.205225][T12443] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2101'. [ 404.324942][T12451] syzkaller0: entered allmulticast mode [ 404.472809][T12457] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2104'. [ 404.502721][T12457] hub 9-0:1.0: USB hub found [ 404.508917][T12457] hub 9-0:1.0: 1 port detected [ 404.715636][ T39] audit: type=1400 audit(1722525018.425:691): avc: denied { map } for pid=12462 comm="syz.2.2106" path="socket:[36692]" dev="sockfs" ino=36692 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 405.183005][T12469] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2108'. [ 405.218732][T12469] hub 9-0:1.0: USB hub found [ 405.222783][T12469] hub 9-0:1.0: 1 port detected [ 406.354027][T12498] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9) [ 406.357272][T12498] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 406.364172][T12498] vhci_hcd vhci_hcd.0: Device attached [ 406.379595][T12498] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(11) [ 406.382592][T12498] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 406.386070][T12498] vhci_hcd vhci_hcd.0: Device attached [ 406.400582][T12498] vhci_hcd vhci_hcd.0: pdev(1) rhport(2) sockfd(13) [ 406.403607][T12498] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 406.408773][T12498] vhci_hcd vhci_hcd.0: Device attached [ 406.557583][ T5393] vhci_hcd: vhci_device speed not set [ 406.627718][ T5393] usb 15-1: new full-speed USB device number 2 using vhci_hcd [ 406.832705][T12508] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2117'. [ 406.844410][T12508] hub 9-0:1.0: USB hub found [ 406.846986][T12508] hub 9-0:1.0: 1 port detected [ 407.066773][T12513] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2118'. [ 407.090663][T12513] hub 9-0:1.0: USB hub found [ 407.093056][T12513] hub 9-0:1.0: 1 port detected [ 407.120233][T12499] vhci_hcd: connection reset by peer [ 407.120253][T12503] vhci_hcd: connection closed [ 407.127083][T12501] vhci_hcd: connection closed [ 407.135984][T10774] vhci_hcd: stop threads [ 407.148270][T10774] vhci_hcd: release socket [ 407.152734][T10774] vhci_hcd: disconnect device [ 407.157542][T10774] vhci_hcd: stop threads [ 407.159528][T12514] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2119'. [ 407.159658][T10774] vhci_hcd: release socket [ 407.166272][T10774] vhci_hcd: disconnect device [ 407.179012][T10774] vhci_hcd: stop threads [ 407.180942][T10774] vhci_hcd: release socket [ 407.185277][T10774] vhci_hcd: disconnect device [ 407.195192][T12514] hub 9-0:1.0: USB hub found [ 407.198609][T12514] hub 9-0:1.0: 1 port detected [ 407.348635][ T65] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 407.631651][T12517] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2120'. [ 407.659501][T12517] hub 9-0:1.0: USB hub found [ 407.663161][T12517] hub 9-0:1.0: 1 port detected [ 407.899412][T12521] fuse: Bad value for 'fd' [ 407.988360][ T65] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 408.046042][T12530] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2124'. [ 408.075837][T12530] hub 9-0:1.0: USB hub found [ 408.081588][T12530] hub 9-0:1.0: 1 port detected [ 409.268727][T12550] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2128'. [ 409.662950][T12563] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2132'. [ 409.686522][T12563] hub 9-0:1.0: USB hub found [ 409.689390][T12563] hub 9-0:1.0: 1 port detected [ 410.037018][T12571] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2135'. [ 410.075715][T12571] hub 9-0:1.0: USB hub found [ 410.088970][T12571] hub 9-0:1.0: 1 port detected [ 411.351861][T12598] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2143'. [ 411.377576][T12598] hub 9-0:1.0: USB hub found [ 411.385685][T12598] hub 9-0:1.0: 1 port detected [ 411.556967][T12601] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2144'. [ 411.586695][T12601] hub 9-0:1.0: USB hub found [ 411.589382][T12601] hub 9-0:1.0: 1 port detected [ 411.758104][ T5393] vhci_hcd: vhci_device speed not set [ 411.799455][T12606] hub 9-0:1.0: USB hub found [ 411.802750][T12606] hub 9-0:1.0: 1 port detected [ 411.849037][T12607] __nla_validate_parse: 1 callbacks suppressed [ 411.851804][T12607] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2145'. [ 411.862600][T12607] hub 9-0:1.0: USB hub found [ 411.865441][T12607] hub 9-0:1.0: 1 port detected [ 412.983223][T12623] ipt_ECN: cannot use operation on non-tcp rule [ 413.575561][T12638] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2155'. [ 413.581757][T12638] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2155'. [ 413.726977][T12645] netlink: 'syz.1.2157': attribute type 14 has an invalid length. [ 413.748667][ T1107] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 413.749965][T12646] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2158'. [ 413.773140][T12646] hub 9-0:1.0: USB hub found [ 413.778388][T12646] hub 9-0:1.0: 1 port detected [ 414.595893][T12662] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2161'. [ 414.624430][T12662] hub 9-0:1.0: USB hub found [ 414.627110][T12662] hub 9-0:1.0: 1 port detected [ 414.764029][T12666] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2163'. [ 414.774149][T12666] hub 9-0:1.0: USB hub found [ 414.776493][T12666] hub 9-0:1.0: 1 port detected [ 415.648927][ T39] audit: type=1400 audit(1722525029.405:692): avc: denied { getopt } for pid=12673 comm="syz.3.2167" lport=47717 faddr=fc00:: fport=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1 [ 416.499665][T12693] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2170'. [ 416.503486][T12693] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2170'. [ 416.514427][T12692] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2171'. [ 416.523985][T12692] hub 9-0:1.0: USB hub found [ 416.526308][T12692] hub 9-0:1.0: 1 port detected [ 416.558565][T12694] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2169'. [ 416.578072][T12694] hub 9-0:1.0: USB hub found [ 416.581475][T12694] hub 9-0:1.0: 1 port detected [ 416.874350][T12700] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2173'. [ 416.882513][T12700] hub 9-0:1.0: USB hub found [ 416.884677][T12700] hub 9-0:1.0: 1 port detected [ 417.169794][T12705] FAULT_INJECTION: forcing a failure. [ 417.169794][T12705] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 417.175740][T12705] CPU: 3 UID: 0 PID: 12705 Comm: syz.3.2175 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 417.180733][T12705] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 417.185376][T12705] Call Trace: [ 417.186866][T12705] [ 417.188197][T12705] dump_stack_lvl+0x16c/0x1f0 [ 417.190230][T12705] should_fail_ex+0x497/0x5b0 [ 417.192011][T12705] core_sys_select+0x91b/0xb80 [ 417.193892][T12705] ? __pfx_core_sys_select+0x10/0x10 [ 417.195641][T12705] ? ktime_get_ts64+0x106/0x2a0 [ 417.197690][T12705] ? set_user_sigmask+0x217/0x2a0 [ 417.199634][T12705] ? __pfx_set_user_sigmask+0x10/0x10 [ 417.201788][T12705] do_pselect.constprop.0+0x1a0/0x1f0 [ 417.203895][T12705] ? __pfx_do_pselect.constprop.0+0x10/0x10 [ 417.206533][T12705] __x64_sys_pselect6+0x183/0x240 [ 417.208778][T12705] ? __pfx___x64_sys_pselect6+0x10/0x10 [ 417.211182][T12705] do_syscall_64+0xcd/0x250 [ 417.213243][T12705] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 417.215882][T12705] RIP: 0033:0x7f22485773b9 [ 417.217789][T12705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 417.226052][T12705] RSP: 002b:00007f22493b0048 EFLAGS: 00000246 ORIG_RAX: 000000000000010e [ 417.229456][T12705] RAX: ffffffffffffffda RBX: 00007f2248705f80 RCX: 00007f22485773b9 [ 417.232548][T12705] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000040 [ 417.235777][T12705] RBP: 00007f22493b00a0 R08: 0000000020000300 R09: 0000000000000000 [ 417.238703][T12705] R10: 0000000020000380 R11: 0000000000000246 R12: 0000000000000001 [ 417.241549][T12705] R13: 000000000000000b R14: 00007f2248705f80 R15: 00007ffea0dc5858 [ 417.244533][T12705] [ 417.513538][ T39] audit: type=1400 audit(1722525031.265:693): avc: denied { setattr } for pid=12710 comm="syz.3.2177" name="RAWv6" dev="sockfs" ino=41263 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 417.986996][T12728] netlink: 68 bytes leftover after parsing attributes in process `syz.2.2181'. [ 418.158004][T12725] netlink: 'syz.0.2180': attribute type 14 has an invalid length. [ 418.509687][T12734] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2182'. [ 418.526780][T12734] hub 9-0:1.0: USB hub found [ 418.530123][T12734] hub 9-0:1.0: 1 port detected [ 419.215996][T12753] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2187'. [ 419.234447][T12753] hub 9-0:1.0: USB hub found [ 419.237006][T12753] hub 9-0:1.0: 1 port detected [ 419.507663][T12763] FAULT_INJECTION: forcing a failure. [ 419.507663][T12763] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 419.510776][ T1106] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 419.513469][T12763] CPU: 0 UID: 0 PID: 12763 Comm: syz.1.2191 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 419.522037][T12763] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 419.526576][T12763] Call Trace: [ 419.528028][T12763] [ 419.529348][T12763] dump_stack_lvl+0x16c/0x1f0 [ 419.531392][T12763] should_fail_ex+0x497/0x5b0 [ 419.533454][T12763] strncpy_from_user+0x38/0x320 [ 419.535281][T12763] getname_flags.part.0+0x8f/0x550 [ 419.537048][T12763] __x64_sys_unlink+0xb0/0x110 [ 419.538831][T12763] do_syscall_64+0xcd/0x250 [ 419.540640][T12763] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 419.543014][T12763] RIP: 0033:0x7fd3257773b9 [ 419.545085][T12763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 419.552668][T12763] RSP: 002b:00007fd326620048 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 419.555775][T12763] RAX: ffffffffffffffda RBX: 00007fd325905f80 RCX: 00007fd3257773b9 [ 419.558888][T12763] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180 [ 419.562000][T12763] RBP: 00007fd3266200a0 R08: 0000000000000000 R09: 0000000000000000 [ 419.565492][T12763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 419.568885][T12763] R13: 000000000000000b R14: 00007fd325905f80 R15: 00007ffedacb6118 [ 419.572197][T12763] [ 420.252228][T12774] input: syz0 as /devices/virtual/input/input67 [ 420.632038][T12780] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2194'. [ 420.655256][T12780] hub 9-0:1.0: USB hub found [ 420.657121][T12780] hub 9-0:1.0: 1 port detected [ 420.705538][T12781] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2195'. [ 420.727863][T12781] hub 9-0:1.0: USB hub found [ 420.730655][T12781] hub 9-0:1.0: 1 port detected [ 420.947714][T12784] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2196'. [ 420.972623][T12784] hub 9-0:1.0: USB hub found [ 420.978222][T12784] hub 9-0:1.0: 1 port detected [ 421.056711][T12786] usb 1-1: USB disconnect, device number 2 [ 421.165486][T12787] hub 1-0:1.0: USB hub found [ 421.170923][T12787] hub 1-0:1.0: 6 ports detected [ 421.318011][T12789] netlink: 'syz.2.2198': attribute type 1 has an invalid length. [ 421.321349][T12789] netlink: 212908 bytes leftover after parsing attributes in process `syz.2.2198'. [ 421.355861][T12791] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2199'. [ 421.377424][T12791] hub 9-0:1.0: USB hub found [ 421.379892][ T58] usb 1-1: new high-speed USB device number 3 using ehci-pci [ 421.387670][T12791] hub 9-0:1.0: 1 port detected [ 421.473664][ T39] audit: type=1400 audit(1722525035.225:694): avc: denied { rename } for pid=12792 comm="syz.2.2200" name="#21" dev="tmpfs" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 421.567089][T12795] fuse: Bad value for 'fd' [ 421.622736][T12802] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=12802 comm=syz.1.2204 [ 421.635358][ T58] usb 1-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 421.640011][ T58] usb 1-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 421.643551][ T58] usb 1-1: Product: QEMU USB Tablet [ 421.645823][ T58] usb 1-1: Manufacturer: QEMU [ 421.650521][ T58] usb 1-1: SerialNumber: 28754-0000:00:1d.7-1 [ 421.661046][T12805] input: syz0 as /devices/virtual/input/input68 [ 421.714305][ T58] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb1/1-1/1-1:1.0/0003:0627:0001.0005/input/input69 [ 421.805492][ T58] hid-generic 0003:0627:0001.0005: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 422.349686][T12820] fuse: Unknown parameter '0xffffffffffffffff' [ 422.496114][T12834] fuse: Bad value for 'fd' [ 422.587001][T12837] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2212'. [ 422.597876][T12839] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2213'. [ 422.607396][T12839] hub 9-0:1.0: USB hub found [ 422.609624][T12839] hub 9-0:1.0: 1 port detected [ 423.195939][T12852] netlink: 'syz.3.2220': attribute type 10 has an invalid length. [ 423.200374][T12852] netlink: 'syz.3.2220': attribute type 10 has an invalid length. [ 423.203380][T12852] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2220'. [ 423.207147][T12852] team0: entered promiscuous mode [ 423.209324][T12852] team_slave_0: entered promiscuous mode [ 423.211746][T12852] team_slave_1: entered promiscuous mode [ 423.215537][T12852] 8021q: adding VLAN 0 to HW filter on device team0 [ 423.218943][T12852] batman_adv: batadv0: Interface activated: team0 [ 423.221878][T12852] batman_adv: batadv0: Interface deactivated: team0 [ 423.224777][T12852] batman_adv: batadv0: Removing interface: team0 [ 423.229789][T12852] bridge0: port 3(team0) entered blocking state [ 423.232715][T12852] bridge0: port 3(team0) entered disabled state [ 423.235659][T12852] team0: entered allmulticast mode [ 423.238020][T12852] team_slave_0: entered allmulticast mode [ 423.240537][T12852] team_slave_1: entered allmulticast mode [ 423.245365][T12852] bridge0: port 3(team0) entered blocking state [ 423.248328][T12852] bridge0: port 3(team0) entered forwarding state [ 423.259752][T12857] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=12857 comm=syz.2.2221 [ 423.364912][T12864] input: syz0 as /devices/virtual/input/input70 [ 423.386020][T12866] fuse: Bad value for 'fd' [ 423.831945][T12873] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2226'. [ 423.841217][T12873] hub 9-0:1.0: USB hub found [ 423.843689][T12873] hub 9-0:1.0: 1 port detected [ 423.956244][T12875] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22 [ 423.961416][T12875] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2227'. [ 424.240996][T12891] input: syz0 as /devices/virtual/input/input71 [ 424.492196][T12902] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2235'. [ 424.504874][T12902] hub 9-0:1.0: USB hub found [ 424.507404][T12902] hub 9-0:1.0: 1 port detected [ 424.539985][T12904] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2234'. [ 425.072340][T12907] netlink: 160 bytes leftover after parsing attributes in process `syz.0.2236'. [ 425.268543][ T1117] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 425.384326][T12914] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2238'. [ 425.540825][T12914] hub 9-0:1.0: USB hub found [ 425.543725][T12914] hub 9-0:1.0: 1 port detected [ 425.737354][T12917] input: syz0 as /devices/virtual/input/input72 [ 426.380986][T12939] input: syz0 as /devices/virtual/input/input73 [ 426.549086][ T11] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 426.894753][T12948] netlink: 160 bytes leftover after parsing attributes in process `syz.0.2249'. [ 427.354932][T12956] hub 9-0:1.0: USB hub found [ 427.357338][T12956] hub 9-0:1.0: 1 port detected [ 427.581327][T12966] hub 9-0:1.0: USB hub found [ 427.587836][T12966] hub 9-0:1.0: 1 port detected [ 427.591731][T12969] __nla_validate_parse: 2 callbacks suppressed [ 427.591743][T12969] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2255'. [ 427.640953][T12969] hub 9-0:1.0: USB hub found [ 427.643147][T12969] hub 9-0:1.0: 1 port detected [ 427.913158][T12973] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2258'. [ 428.520028][T12988] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2261'. [ 428.718922][T12988] hub 9-0:1.0: USB hub found [ 428.803620][T12988] hub 9-0:1.0: 1 port detected [ 428.969840][T12990] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22 [ 428.992939][T12990] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2262'. [ 429.421214][T13006] input: syz0 as /devices/virtual/input/input74 [ 429.479911][T13005] netlink: 160 bytes leftover after parsing attributes in process `syz.0.2265'. [ 429.845971][T13019] input: syz0 as /devices/virtual/input/input75 [ 430.296319][T13028] netlink: 'syz.0.2273': attribute type 14 has an invalid length. [ 430.568851][T13031] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2274'. [ 431.028180][ T1109] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 431.111452][T13046] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2277'. [ 431.129234][T13046] hub 9-0:1.0: USB hub found [ 431.132414][T13046] hub 9-0:1.0: 1 port detected [ 431.240775][T13048] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=13048 comm=syz.2.2278 [ 431.668751][ T1107] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 432.136349][T13060] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2280'. [ 432.149178][T13061] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2282'. [ 432.156123][T13061] hub 9-0:1.0: USB hub found [ 432.159167][T13061] hub 9-0:1.0: 1 port detected [ 432.258251][T13062] netlink: 160 bytes leftover after parsing attributes in process `syz.1.2281'. [ 432.427338][T13065] hub 9-0:1.0: USB hub found [ 432.430681][T13065] hub 9-0:1.0: 1 port detected [ 432.977318][T13079] __nla_validate_parse: 1 callbacks suppressed [ 432.980267][T13079] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2287'. [ 433.004688][T13079] hub 9-0:1.0: USB hub found [ 433.009856][T13079] hub 9-0:1.0: 1 port detected [ 433.170823][T13085] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2290'. [ 433.195233][T13083] netlink: 'syz.1.2289': attribute type 14 has an invalid length. [ 433.855594][T13095] netlink: 188 bytes leftover after parsing attributes in process `syz.2.2292'. [ 434.294375][T13097] FAULT_INJECTION: forcing a failure. [ 434.294375][T13097] name failslab, interval 1, probability 0, space 0, times 0 [ 434.300114][T13097] CPU: 2 UID: 0 PID: 13097 Comm: syz.1.2294 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 434.304461][T13097] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 434.309201][T13097] Call Trace: [ 434.310410][T13097] [ 434.311532][T13097] dump_stack_lvl+0x16c/0x1f0 [ 434.313559][T13097] should_fail_ex+0x497/0x5b0 [ 434.315660][T13097] ? fs_reclaim_acquire+0xae/0x160 [ 434.317980][T13097] should_failslab+0xc2/0x120 [ 434.320098][T13097] __kmalloc_noprof+0xcb/0x400 [ 434.322215][T13097] tomoyo_encode2+0x100/0x3e0 [ 434.324059][T13097] tomoyo_encode+0x29/0x50 [ 434.325920][T13097] tomoyo_realpath_from_path+0x19d/0x720 [ 434.328237][T13097] ? tomoyo_profile+0x47/0x60 [ 434.330245][T13097] tomoyo_path_number_perm+0x245/0x590 [ 434.332348][T13097] ? tomoyo_path_number_perm+0x232/0x590 [ 434.334363][T13097] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 434.336725][T13097] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 434.339322][T13097] ? __fget_files+0x256/0x400 [ 434.341459][T13097] security_file_ioctl+0x75/0xc0 [ 434.343673][T13097] __x64_sys_ioctl+0xbb/0x220 [ 434.345732][T13097] do_syscall_64+0xcd/0x250 [ 434.347634][T13097] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 434.350241][T13097] RIP: 0033:0x7fd3257773b9 [ 434.352246][T13097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 434.360344][T13097] RSP: 002b:00007fd326620048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 434.363360][T13097] RAX: ffffffffffffffda RBX: 00007fd325905f80 RCX: 00007fd3257773b9 [ 434.366439][T13097] RDX: 0000000020000200 RSI: 00000000000089e2 RDI: 0000000000000004 [ 434.369804][T13097] RBP: 00007fd3266200a0 R08: 0000000000000000 R09: 0000000000000000 [ 434.372895][T13097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 434.375984][T13097] R13: 000000000000000b R14: 00007fd325905f80 R15: 00007ffedacb6118 [ 434.379082][T13097] [ 434.381220][T13097] ERROR: Out of memory at tomoyo_realpath_from_path. [ 434.384600][ T39] audit: type=1400 audit(1722525048.135:695): avc: denied { ioctl } for pid=13096 comm="syz.1.2294" path="socket:[43600]" dev="sockfs" ino=43600 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 434.541451][T13101] cgroup: Need name or subsystem set [ 434.559842][T13103] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2295'. [ 434.579370][T13103] hub 9-0:1.0: USB hub found [ 434.581751][T13103] hub 9-0:1.0: 1 port detected [ 434.634853][T13105] fuse: Bad value for 'fd' [ 434.688773][T13109] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2297'. [ 434.956494][T13125] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2301'. [ 434.973481][T13125] hub 9-0:1.0: USB hub found [ 434.973722][ T39] audit: type=1326 audit(1722525048.725:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13124 comm="syz.1.2302" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd3257773b9 code=0x0 [ 434.976580][T13125] hub 9-0:1.0: 1 port detected [ 436.010913][T13138] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=13138 comm=syz.1.2306 [ 436.126665][T13139] netlink: 188 bytes leftover after parsing attributes in process `syz.2.2304'. [ 436.149335][ T1117] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 436.425756][T13145] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2307'. [ 436.444683][T13145] hub 9-0:1.0: USB hub found [ 436.447857][T13145] hub 9-0:1.0: 1 port detected [ 436.795313][T13152] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2309'. [ 436.840878][T13152] hub 9-0:1.0: USB hub found [ 436.847865][T13152] hub 9-0:1.0: 1 port detected [ 436.928116][T13154] netlink: 'syz.0.2310': attribute type 12 has an invalid length. [ 437.067957][ T39] audit: type=1326 audit(1722525050.825:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13160 comm="syz.0.2313" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f08afb773b9 code=0x0 [ 437.429387][ T1106] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 437.692002][T13174] netlink: 180 bytes leftover after parsing attributes in process `syz.2.2317'. [ 437.973181][T13182] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=13182 comm=syz.0.2320 [ 437.997135][T13185] FAULT_INJECTION: forcing a failure. [ 437.997135][T13185] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 438.003333][T13185] CPU: 0 UID: 0 PID: 13185 Comm: syz.1.2321 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 438.008016][T13184] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2319'. [ 438.008211][T13185] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 438.024513][T13184] hub 9-0:1.0: USB hub found [ 438.029256][T13185] Call Trace: [ 438.029267][T13185] [ 438.029275][T13185] dump_stack_lvl+0x16c/0x1f0 [ 438.029303][T13185] should_fail_ex+0x497/0x5b0 [ 438.029329][T13185] strncpy_from_user+0x38/0x320 [ 438.029352][T13185] getname_flags.part.0+0x8f/0x550 [ 438.029374][T13185] getname+0x8d/0xe0 [ 438.029390][T13185] __x64_sys_execve+0x72/0xb0 [ 438.031722][T13184] hub 9-0:1.0: 1 port detected [ 438.037390][T13185] do_syscall_64+0xcd/0x250 [ 438.055761][T13185] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.058433][T13185] RIP: 0033:0x7fd3257773b9 [ 438.060528][T13185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 438.068727][T13185] RSP: 002b:00007fd3265ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000003b [ 438.072125][T13185] RAX: ffffffffffffffda RBX: 00007fd325906058 RCX: 00007fd3257773b9 [ 438.075303][T13185] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180 [ 438.078515][T13185] RBP: 00007fd3265ff0a0 R08: 0000000000000000 R09: 0000000000000000 [ 438.081779][T13185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 438.084722][T13185] R13: 000000000000006e R14: 00007fd325906058 R15: 00007ffedacb6118 [ 438.087897][T13185] [ 438.089055][ C0] vkms_vblank_simulate: vblank timer overrun [ 438.365039][T13188] FAULT_INJECTION: forcing a failure. [ 438.365039][T13188] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 438.371222][T13188] CPU: 3 UID: 0 PID: 13188 Comm: syz.3.2322 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 438.375967][T13188] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 438.380775][T13188] Call Trace: [ 438.382272][T13188] [ 438.383609][T13188] dump_stack_lvl+0x16c/0x1f0 [ 438.385730][T13188] should_fail_ex+0x497/0x5b0 [ 438.387886][T13188] _copy_to_user+0x30/0xc0 [ 438.389920][T13188] sctp_getsockopt+0x34d8/0x74a0 [ 438.392180][T13188] ? avc_has_perm_noaudit+0x119/0x3a0 [ 438.394489][T13188] ? __pfx_lock_release+0x10/0x10 [ 438.396718][T13188] ? __pfx_mark_lock+0x10/0x10 [ 438.398931][T13188] ? __lock_acquire+0xbdd/0x3cb0 [ 438.401220][T13188] ? __pfx_sctp_getsockopt+0x10/0x10 [ 438.403615][T13188] ? avc_has_perm_noaudit+0x143/0x3a0 [ 438.406057][T13188] ? avc_has_perm+0x11b/0x1c0 [ 438.408203][T13188] ? __pfx_avc_has_perm+0x10/0x10 [ 438.410438][T13188] ? __lock_acquire+0xbdd/0x3cb0 [ 438.412675][T13188] ? sock_has_perm+0x25a/0x2f0 [ 438.414824][T13188] ? __pfx_sock_has_perm+0x10/0x10 [ 438.417150][T13188] ? find_held_lock+0x2d/0x110 [ 438.419319][T13188] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 438.422016][T13188] ? do_sock_getsockopt+0x2e5/0x760 [ 438.424390][T13188] do_sock_getsockopt+0x2e5/0x760 [ 438.426629][T13188] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 438.429077][T13188] ? __fget_files+0x256/0x400 [ 438.431256][T13188] ? __fget_light+0x173/0x210 [ 438.433411][T13188] __sys_getsockopt+0x1a1/0x270 [ 438.435620][T13188] ? __pfx___sys_getsockopt+0x10/0x10 [ 438.438079][T13188] ? fput+0x32/0x390 [ 438.439887][T13188] ? ksys_write+0x1ab/0x260 [ 438.441942][T13188] ? __pfx_ksys_write+0x10/0x10 [ 438.444116][T13188] __x64_sys_getsockopt+0xbd/0x160 [ 438.446385][T13188] ? do_syscall_64+0x91/0x250 [ 438.448517][T13188] ? lockdep_hardirqs_on+0x7c/0x110 [ 438.450866][T13188] do_syscall_64+0xcd/0x250 [ 438.452934][T13188] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.455637][T13188] RIP: 0033:0x7f22485773b9 [ 438.457683][T13188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 438.466255][T13188] RSP: 002b:00007f22493b0048 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 438.470101][T13188] RAX: ffffffffffffffda RBX: 00007f2248705f80 RCX: 00007f22485773b9 [ 438.473589][T13188] RDX: 000000000000007f RSI: 0000000000000084 RDI: 0000000000000004 [ 438.476964][T13188] RBP: 00007f22493b00a0 R08: 0000000020000000 R09: 0000000000000000 [ 438.480434][T13188] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000001 [ 438.483919][T13188] R13: 000000000000000b R14: 00007f2248705f80 R15: 00007ffea0dc5858 [ 438.487433][T13188] [ 438.643531][T13195] overlayfs: upper fs does not support tmpfile. [ 438.841619][T13215] fuse: Unknown parameter '0xffffffffffffffff' [ 438.879155][ T39] audit: type=1326 audit(1722525052.635:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13212 comm="syz.1.2328" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd3257773b9 code=0x0 [ 439.510920][T13225] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2331'. [ 439.537899][T13225] hub 9-0:1.0: USB hub found [ 439.540610][T13225] hub 9-0:1.0: 1 port detected [ 439.842922][T13232] overlayfs: upper fs does not support tmpfile. [ 439.918004][T13241] FAULT_INJECTION: forcing a failure. [ 439.918004][T13241] name failslab, interval 1, probability 0, space 0, times 0 [ 439.925124][T13241] CPU: 0 UID: 0 PID: 13241 Comm: syz.1.2336 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 439.929353][T13241] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 439.933580][T13241] Call Trace: [ 439.934885][T13241] [ 439.936094][T13241] dump_stack_lvl+0x16c/0x1f0 [ 439.938046][T13241] should_fail_ex+0x497/0x5b0 [ 439.940079][T13241] ? fs_reclaim_acquire+0xae/0x160 [ 439.942283][T13241] should_failslab+0xc2/0x120 [ 439.944316][T13241] kmem_cache_alloc_node_noprof+0x71/0x310 [ 439.946776][T13241] ? __alloc_skb+0x2b1/0x380 [ 439.948838][T13241] __alloc_skb+0x2b1/0x380 [ 439.950675][T13241] ? __pfx___alloc_skb+0x10/0x10 [ 439.952747][T13241] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 439.955292][T13241] netlink_alloc_large_skb+0x69/0x130 [ 439.957560][T13241] netlink_sendmsg+0x689/0xd70 [ 439.959680][T13241] ? __pfx_netlink_sendmsg+0x10/0x10 [ 439.961851][T13241] ? __import_iovec+0x1fd/0x6e0 [ 439.963798][T13241] ____sys_sendmsg+0xab5/0xc90 [ 439.965625][T13241] ? copy_msghdr_from_user+0x10b/0x160 [ 439.967779][T13241] ? __pfx_____sys_sendmsg+0x10/0x10 [ 439.969871][T13241] ? find_held_lock+0x2d/0x110 [ 439.970367][T13243] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2337'. [ 439.971761][T13241] ? __pfx___lock_acquire+0x10/0x10 [ 439.977728][T13241] ___sys_sendmsg+0x135/0x1e0 [ 439.979583][T13241] ? __pfx____sys_sendmsg+0x10/0x10 [ 439.981803][T13241] ? ksys_write+0x21c/0x260 [ 439.983559][T13241] ? __fget_light+0x173/0x210 [ 439.985406][T13241] __sys_sendmsg+0x117/0x1f0 [ 439.987216][T13241] ? __pfx___sys_sendmsg+0x10/0x10 [ 439.989246][T13241] do_syscall_64+0xcd/0x250 [ 439.991010][T13241] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 439.993309][T13241] RIP: 0033:0x7fd3257773b9 [ 439.995036][T13241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 440.002429][T13241] RSP: 002b:00007fd326620048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 440.005674][T13241] RAX: ffffffffffffffda RBX: 00007fd325905f80 RCX: 00007fd3257773b9 [ 440.008497][T13241] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000003 [ 440.011158][T13241] RBP: 00007fd3266200a0 R08: 0000000000000000 R09: 0000000000000000 [ 440.013822][T13241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 440.016613][T13241] R13: 000000000000000b R14: 00007fd325905f80 R15: 00007ffedacb6118 [ 440.019705][T13241] [ 440.021048][ C0] vkms_vblank_simulate: vblank timer overrun [ 440.458993][T13256] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22 [ 440.476385][T13256] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2341'. [ 440.644470][T13266] loop0: detected capacity change from 0 to 7 [ 440.664953][T13266] Dev loop0: unable to read RDB block 7 [ 440.668011][T13266] loop0: unable to read partition table [ 440.672027][T13266] loop0: partition table beyond EOD, truncated [ 440.675647][T13266] loop_reread_partitions: partition scan of loop0 (被xڬdƤݡ [ 440.675647][T13266] ) failed (rc=-5) [ 440.698073][ T39] audit: type=1326 audit(1722525054.455:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13262 comm="syz.2.2343" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2e999773b9 code=0x0 [ 441.278696][ T40] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 441.404512][ T4822] Dev loop0: unable to read RDB block 7 [ 441.407232][ T4822] loop0: unable to read partition table [ 441.428049][ T4822] loop0: partition table beyond EOD, truncated [ 441.526193][ T4822] Dev loop0: unable to read RDB block 7 [ 441.530783][ T4822] loop0: unable to read partition table [ 441.533503][ T4822] loop0: partition table beyond EOD, truncated [ 441.623869][ T39] audit: type=1326 audit(1722525055.375:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13280 comm="syz.2.2348" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2e999773b9 code=0x0 [ 441.655666][T13287] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2350'. [ 441.676187][T13287] hub 9-0:1.0: USB hub found [ 441.686026][T13287] hub 9-0:1.0: 1 port detected [ 442.411368][T13297] overlayfs: missing 'lowerdir' [ 442.437499][ T39] audit: type=1400 audit(1722525056.185:701): avc: denied { ioctl } for pid=13296 comm="syz.2.2352" path="socket:[42706]" dev="sockfs" ino=42706 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 442.441337][T13299] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2354'. [ 442.483291][T13297] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 442.487336][T13297] overlayfs: fs on './file0' does not support file handles, falling back to xino=off. [ 442.614189][T13304] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2353'. [ 442.626996][T13304] hub 9-0:1.0: USB hub found [ 442.644900][T13304] hub 9-0:1.0: 1 port detected [ 443.188668][ T40] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 443.604233][ C3] hrtimer: interrupt took 845577 ns [ 443.730895][T13316] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2356'. [ 443.765107][T13316] hub 9-0:1.0: USB hub found [ 443.768179][T13316] hub 9-0:1.0: 1 port detected [ 444.760486][ T39] audit: type=1400 audit(1722525058.515:702): avc: denied { bind } for pid=13329 comm="syz.3.2361" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 444.770817][T13332] netlink: 'syz.2.2362': attribute type 1 has an invalid length. [ 445.009567][T13341] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2364'. [ 445.063047][T13343] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2363'. [ 445.068512][T13342] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2365'. [ 445.082850][T13342] hub 9-0:1.0: USB hub found [ 445.097910][T13342] hub 9-0:1.0: 1 port detected [ 445.205797][T13344] hub 9-0:1.0: USB hub found [ 445.216793][T13344] hub 9-0:1.0: 1 port detected [ 445.750672][ T1382] ieee802154 phy0 wpan0: encryption failed: -22 [ 445.753590][ T1382] ieee802154 phy1 wpan1: encryption failed: -22 [ 445.781632][T13348] netlink: 160 bytes leftover after parsing attributes in process `syz.1.2366'. [ 446.182386][T13351] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22 [ 446.198374][T13351] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2367'. [ 446.223660][ T39] audit: type=1326 audit(1722525059.965:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13353 comm="syz.0.2369" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f08afb773b9 code=0x0 [ 446.564004][T13365] netlink: 160 bytes leftover after parsing attributes in process `syz.2.2370'. [ 447.006418][T13367] Bluetooth: MGMT ver 1.23 [ 447.038623][ T1107] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 447.119410][T13373] FAULT_INJECTION: forcing a failure. [ 447.119410][T13373] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 447.125171][T13373] CPU: 2 UID: 0 PID: 13373 Comm: syz.1.2375 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 447.130163][T13373] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 447.134925][T13373] Call Trace: [ 447.136356][T13373] [ 447.137670][T13373] dump_stack_lvl+0x16c/0x1f0 [ 447.139819][T13373] should_fail_ex+0x497/0x5b0 [ 447.142204][T13373] core_sys_select+0x4cf/0xb80 [ 447.144381][T13373] ? __pfx_core_sys_select+0x10/0x10 [ 447.146727][T13373] ? set_user_sigmask+0x217/0x2a0 [ 447.148884][T13373] ? __pfx_set_user_sigmask+0x10/0x10 [ 447.151246][T13373] ? bpf_trace_run2+0x266/0x590 [ 447.153432][T13373] do_pselect.constprop.0+0x1a0/0x1f0 [ 447.155834][T13373] ? __pfx_do_pselect.constprop.0+0x10/0x10 [ 447.158480][T13373] ? bpf_trace_run2+0x2a6/0x590 [ 447.160695][T13373] ? __pfx_bpf_trace_run2+0x10/0x10 [ 447.163019][T13373] __x64_sys_pselect6+0x183/0x240 [ 447.165364][T13373] ? __pfx___x64_sys_pselect6+0x10/0x10 [ 447.167704][T13373] ? rcu_is_watching+0x12/0xc0 [ 447.169807][T13373] do_syscall_64+0xcd/0x250 [ 447.171786][T13373] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 447.174319][T13373] RIP: 0033:0x7fd3257773b9 [ 447.176246][T13373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 447.184167][T13373] RSP: 002b:00007fd326620048 EFLAGS: 00000246 ORIG_RAX: 000000000000010e [ 447.187259][T13373] RAX: ffffffffffffffda RBX: 00007fd325905f80 RCX: 00007fd3257773b9 [ 447.190648][T13373] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000040 [ 447.194184][T13373] RBP: 00007fd3266200a0 R08: 0000000000000000 R09: 0000000000000000 [ 447.197852][T13373] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000000001 [ 447.201608][T13373] R13: 000000000000000b R14: 00007fd325905f80 R15: 00007ffedacb6118 [ 447.204818][T13373] [ 447.295122][T13374] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2372'. [ 447.321830][T13374] hub 9-0:1.0: USB hub found [ 447.324477][T13374] hub 9-0:1.0: 1 port detected [ 447.396577][T13385] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2377'. [ 447.407394][T13385] hub 9-0:1.0: USB hub found [ 447.415283][T13385] hub 9-0:1.0: 1 port detected [ 447.811127][T13388] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22 [ 447.878055][T13388] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2378'. [ 447.895293][T13390] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22 [ 448.245959][ T39] audit: type=1326 audit(1722525061.995:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13397 comm="syz.3.2382" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f22485773b9 code=0x0 [ 448.407911][ T5392] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 448.607880][ T5392] usb 5-1: Using ep0 maxpacket: 32 [ 448.613697][ T5392] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 448.625321][ T5392] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 448.645619][ T5392] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 448.650213][ T5392] usb 5-1: Product: syz [ 448.658190][ T5392] usb 5-1: Manufacturer: syz [ 448.674663][ T5392] usb 5-1: SerialNumber: syz [ 448.689448][ T5392] usb 5-1: config 0 descriptor?? [ 448.694177][T13396] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 448.958474][T10774] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 448.992925][ T5392] usb 5-1: USB disconnect, device number 13 [ 449.357219][T13417] __nla_validate_parse: 1 callbacks suppressed [ 449.357276][T13417] netlink: 160 bytes leftover after parsing attributes in process `syz.3.2384'. [ 449.358748][T13418] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2386'. [ 449.379093][T13418] hub 9-0:1.0: USB hub found [ 449.382021][T13418] hub 9-0:1.0: 1 port detected [ 449.702832][ T39] audit: type=1326 audit(1722525063.455:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13430 comm="syz.1.2392" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd3257773b9 code=0x0 [ 449.725641][T13432] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2391'. [ 449.745235][T13432] hub 9-0:1.0: USB hub found [ 449.748242][T13432] hub 9-0:1.0: 1 port detected [ 450.254265][T13435] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2393'. [ 450.530025][T13438] FAULT_INJECTION: forcing a failure. [ 450.530025][T13438] name failslab, interval 1, probability 0, space 0, times 0 [ 450.536178][T13438] CPU: 2 UID: 0 PID: 13438 Comm: syz.2.2394 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 450.540605][T13438] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 450.544729][T13438] Call Trace: [ 450.546209][T13438] [ 450.547579][T13438] dump_stack_lvl+0x16c/0x1f0 [ 450.549741][T13438] should_fail_ex+0x497/0x5b0 [ 450.552088][T13438] should_failslab+0xc2/0x120 [ 450.554320][T13438] kmem_cache_alloc_node_noprof+0x71/0x310 [ 450.556804][T13438] ? __alloc_skb+0x2b1/0x380 [ 450.558941][T13438] __alloc_skb+0x2b1/0x380 [ 450.560955][T13438] ? __pfx___alloc_skb+0x10/0x10 [ 450.562760][T13438] ? __alloc_skb+0x1fe/0x380 [ 450.564688][T13438] ? __pfx___alloc_skb+0x10/0x10 [ 450.566443][T13438] create_monitor_ctrl_event+0x3b/0x450 [ 450.568773][T13438] mgmt_cmd_complete+0x2d6/0x540 [ 450.570962][T13438] set_bondable+0x193/0x360 [ 450.573046][T13438] ? __pfx_set_bondable+0x10/0x10 [ 450.575219][T13438] ? do_raw_read_unlock+0x44/0xe0 [ 450.577198][T13438] ? _raw_read_unlock+0x28/0x50 [ 450.579326][T13438] ? __pfx_mgmt_init_hdev+0x10/0x10 [ 450.581614][T13438] hci_sock_sendmsg+0x1528/0x25e0 [ 450.583808][T13438] ? __pfx_hci_sock_sendmsg+0x10/0x10 [ 450.586246][T13438] sock_write_iter+0x50a/0x5c0 [ 450.588409][T13438] ? __pfx_sock_write_iter+0x10/0x10 [ 450.590752][T13438] ? security_file_permission+0x98/0xc0 [ 450.593204][T13438] vfs_write+0x6b6/0x1140 [ 450.595205][T13438] ? __pfx_sock_write_iter+0x10/0x10 [ 450.597386][T13438] ? __pfx_vfs_write+0x10/0x10 [ 450.599346][T13438] ? __fget_files+0x256/0x400 [ 450.601484][T13438] ? __fget_light+0x173/0x210 [ 450.603796][T13438] ksys_write+0x1f8/0x260 [ 450.605707][T13438] ? __pfx_ksys_write+0x10/0x10 [ 450.607987][T13438] ? rcu_is_watching+0x12/0xc0 [ 450.610157][T13438] do_syscall_64+0xcd/0x250 [ 450.611954][T13438] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 450.614316][T13438] RIP: 0033:0x7f2e999773b9 [ 450.616044][T13438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 450.622736][T13438] RSP: 002b:00007f2e9a6a0048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 450.625948][T13438] RAX: ffffffffffffffda RBX: 00007f2e99b05f80 RCX: 00007f2e999773b9 [ 450.629001][T13438] RDX: 0000000000000007 RSI: 0000000020000080 RDI: 000000000000000b [ 450.633269][T13438] RBP: 00007f2e9a6a00a0 R08: 0000000000000000 R09: 0000000000000000 [ 450.637759][T13438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 450.641450][T13438] R13: 000000000000000b R14: 00007f2e99b05f80 R15: 00007ffe9bdc9c58 [ 450.645016][T13438] [ 450.678553][T13444] netlink: 'syz.2.2394': attribute type 10 has an invalid length. [ 450.682185][T13444] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2394'. [ 450.729702][T13444] team0: Port device geneve0 added [ 451.258479][T13455] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2398'. [ 451.304872][T13455] hub 9-0:1.0: USB hub found [ 451.347683][T13455] hub 9-0:1.0: 1 port detected [ 451.545380][T13458] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=13458 comm=syz.0.2399 [ 451.741392][T13463] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=13463 comm=syz.3.2401 [ 452.191459][ T39] audit: type=1326 audit(1722525065.945:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13471 comm="syz.2.2403" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2e999773b9 code=0x0 [ 452.685398][T13482] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2405'. [ 452.733679][T13482] hub 9-0:1.0: USB hub found [ 452.735079][T13484] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2406'. [ 452.737427][T13482] hub 9-0:1.0: 1 port detected [ 452.801455][ T40] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 453.838105][T13501] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2411'. [ 453.857852][T13501] hub 9-0:1.0: USB hub found [ 453.864808][T13501] hub 9-0:1.0: 1 port detected [ 454.069190][ T1117] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 454.526643][T13513] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 454.976631][ T39] audit: type=1400 audit(1722525068.725:707): avc: denied { mount } for pid=13520 comm="syz.1.2415" name="/" dev="autofs" ino=46169 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1 [ 454.994102][ T39] audit: type=1400 audit(1722525068.745:708): avc: denied { setattr } for pid=13520 comm="syz.1.2415" name="udmabuf" dev="devtmpfs" ino=699 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 455.095001][ T39] audit: type=1400 audit(1722525068.845:709): avc: denied { unmount } for pid=5340 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1 [ 455.354910][T13533] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2420'. [ 455.376854][T13533] hub 9-0:1.0: USB hub found [ 455.382031][T13533] hub 9-0:1.0: 1 port detected [ 455.862763][T13543] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2423'. [ 455.924772][T13543] hub 9-0:1.0: USB hub found [ 455.931519][T13543] hub 9-0:1.0: 1 port detected [ 456.614571][ T39] audit: type=1326 audit(1722525070.365:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13551 comm="syz.2.2427" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2e999773b9 code=0x0 [ 456.961410][ T39] audit: type=1400 audit(1722525070.715:711): avc: denied { setopt } for pid=13558 comm="syz.3.2428" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 456.977794][ T39] audit: type=1400 audit(1722525070.715:712): avc: denied { read } for pid=13558 comm="syz.3.2428" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 457.249429][T13563] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2429'. [ 457.512256][T13567] FAULT_INJECTION: forcing a failure. [ 457.512256][T13567] name failslab, interval 1, probability 0, space 0, times 0 [ 457.518211][T13567] CPU: 2 UID: 0 PID: 13567 Comm: syz.1.2431 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 457.522815][T13567] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 457.527459][T13567] Call Trace: [ 457.528975][T13567] [ 457.530238][T13567] dump_stack_lvl+0x16c/0x1f0 [ 457.532295][T13567] should_fail_ex+0x497/0x5b0 [ 457.534363][T13567] ? fs_reclaim_acquire+0xae/0x160 [ 457.536589][T13567] should_failslab+0xc2/0x120 [ 457.538634][T13567] __kmalloc_cache_noprof+0x6b/0x300 [ 457.540910][T13567] ? selinux_sk_alloc_security+0x87/0x210 [ 457.543362][T13567] selinux_sk_alloc_security+0x87/0x210 [ 457.545738][T13567] security_sk_alloc+0x75/0xc0 [ 457.547827][T13567] sk_prot_alloc+0x1c7/0x2a0 [ 457.549826][T13567] sk_alloc+0x36/0xb90 [ 457.551596][T13567] tun_chr_open+0x80/0x5f0 [ 457.553526][T13567] ? __pfx_tun_chr_open+0x10/0x10 [ 457.555678][T13567] misc_open+0x3da/0x4c0 [ 457.557519][T13567] ? __pfx_misc_open+0x10/0x10 [ 457.559803][T13567] chrdev_open+0x26d/0x6f0 [ 457.561762][T13567] ? __pfx_chrdev_open+0x10/0x10 [ 457.563926][T13567] ? security_file_open+0x9d/0x8b0 [ 457.566141][T13567] do_dentry_open+0x91f/0x15f0 [ 457.568182][T13567] ? __pfx_chrdev_open+0x10/0x10 [ 457.570309][T13567] ? inode_permission+0xdd/0x5f0 [ 457.572445][T13567] vfs_open+0x82/0x3f0 [ 457.574211][T13567] ? may_open+0x1f2/0x400 [ 457.576081][T13567] path_openat+0x2141/0x2d20 [ 457.578115][T13567] ? __pfx_path_openat+0x10/0x10 [ 457.580351][T13567] ? __pfx___lock_acquire+0x10/0x10 [ 457.582590][T13567] ? find_held_lock+0x2d/0x110 [ 457.584662][T13567] do_filp_open+0x1dc/0x430 [ 457.586625][T13567] ? __pfx_do_filp_open+0x10/0x10 [ 457.588789][T13567] ? find_held_lock+0x2d/0x110 [ 457.590803][T13567] ? _raw_spin_unlock+0x28/0x50 [ 457.592883][T13567] ? alloc_fd+0x2d7/0x6c0 [ 457.594733][T13567] do_sys_openat2+0x17a/0x1e0 [ 457.596713][T13567] ? __pfx_do_sys_openat2+0x10/0x10 [ 457.599040][T13567] ? bpf_trace_run2+0x2a6/0x590 [ 457.601259][T13567] __x64_sys_openat+0x175/0x210 [ 457.603443][T13567] ? __pfx___x64_sys_openat+0x10/0x10 [ 457.605535][T13567] ? ksys_write+0x1ab/0x260 [ 457.607197][T13567] ? rcu_is_watching+0x12/0xc0 [ 457.609185][T13567] do_syscall_64+0xcd/0x250 [ 457.610801][T13567] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 457.613187][T13567] RIP: 0033:0x7fd3257773b9 [ 457.615104][T13567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 457.623502][T13567] RSP: 002b:00007fd326620048 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 457.626605][T13567] RAX: ffffffffffffffda RBX: 00007fd325905f80 RCX: 00007fd3257773b9 [ 457.629878][T13567] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: ffffffffffffff9c [ 457.633068][T13567] RBP: 00007fd3266200a0 R08: 0000000000000000 R09: 0000000000000000 [ 457.636671][T13567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 457.640198][T13567] R13: 000000000000000b R14: 00007fd325905f80 R15: 00007ffedacb6118 [ 457.643605][T13567] [ 457.941499][ T39] audit: type=1400 audit(1722525071.695:713): avc: denied { bind } for pid=13574 comm="syz.3.2434" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 458.333769][ T5407] IPVS: starting estimator thread 0... [ 458.336823][T13578] IPVS: ovf: UDP 127.0.0.1:0 - no destination available [ 458.427728][T13579] IPVS: using max 19 ests per chain, 45600 per kthread [ 458.612431][T13581] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22 [ 458.624246][T13581] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2436'. [ 458.859084][T13588] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2438'. [ 458.884189][T13588] hub 9-0:1.0: USB hub found [ 458.889626][T13588] hub 9-0:1.0: 1 port detected [ 459.217661][T13592] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2439'. [ 459.266252][T13592] hub 9-0:1.0: USB hub found [ 459.277613][T13592] hub 9-0:1.0: 1 port detected [ 459.828071][ T1106] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 460.133044][T13597] FAULT_INJECTION: forcing a failure. [ 460.133044][T13597] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 460.141172][T13597] CPU: 2 UID: 0 PID: 13597 Comm: syz.2.2441 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 460.145701][T13597] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 460.150410][T13597] Call Trace: [ 460.151880][T13597] [ 460.153174][T13597] dump_stack_lvl+0x16c/0x1f0 [ 460.155361][T13597] should_fail_ex+0x497/0x5b0 [ 460.157506][T13597] _copy_from_user+0x30/0xf0 [ 460.159459][T13597] bpf_prog_load+0x1bc1/0x2660 [ 460.161405][T13597] ? __pfx_bpf_prog_load+0x10/0x10 [ 460.163248][T13597] ? avc_has_perm+0x11b/0x1c0 [ 460.165193][T13597] ? selinux_bpf+0xde/0x130 [ 460.166936][T13597] ? security_bpf+0x8c/0xc0 [ 460.168657][T13597] __sys_bpf+0x8e9/0x4a20 [ 460.170193][T13597] ? __pfx___sys_bpf+0x10/0x10 [ 460.172308][T13597] ? find_held_lock+0x2d/0x110 [ 460.174170][T13597] ? bpf_trace_run2+0x266/0x590 [ 460.176311][T13597] ? __pfx_lock_release+0x10/0x10 [ 460.178533][T13597] ? fput+0x32/0x390 [ 460.180256][T13597] ? ksys_write+0x1ab/0x260 [ 460.182145][T13597] __x64_sys_bpf+0x78/0xc0 [ 460.184092][T13597] do_syscall_64+0xcd/0x250 [ 460.185856][T13597] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 460.188203][T13597] RIP: 0033:0x7f2e999773b9 [ 460.189775][T13597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 460.197183][T13597] RSP: 002b:00007f2e9a6a0048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 460.201090][T13597] RAX: ffffffffffffffda RBX: 00007f2e99b05f80 RCX: 00007f2e999773b9 [ 460.204305][T13597] RDX: 0000000000000090 RSI: 0000000020000380 RDI: 0000000000000005 [ 460.207520][T13597] RBP: 00007f2e9a6a00a0 R08: 0000000000000000 R09: 0000000000000000 [ 460.210983][T13597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 460.214280][T13597] R13: 000000000000000b R14: 00007f2e99b05f80 R15: 00007ffe9bdc9c58 [ 460.217592][T13597] [ 460.402060][T13605] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2442'. [ 460.417002][T13605] hub 9-0:1.0: USB hub found [ 460.419698][T13605] hub 9-0:1.0: 1 port detected [ 460.692487][T13608] overlayfs: missing 'lowerdir' [ 460.705961][T13608] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 460.712228][T13608] overlayfs: fs on './file0' does not support file handles, falling back to xino=off. [ 460.966664][T13609] caif0: entered promiscuous mode [ 460.975378][T13609] caif0: entered allmulticast mode [ 460.976469][T13611] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 460.999803][T13611] CIFS mount error: No usable UNC path provided in device string! [ 460.999803][T13611] [ 461.004593][T13611] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 461.107996][ T40] IPVS: ovf: UDP 127.0.0.1:0 - no destination available [ 461.579709][ T39] audit: type=1326 audit(1722525075.335:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13620 comm="syz.0.2448" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f08afb773b9 code=0x0 [ 461.642527][T13622] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2449'. [ 461.680286][T13622] hub 9-0:1.0: USB hub found [ 461.697617][T13622] hub 9-0:1.0: 1 port detected [ 461.983568][T13633] netlink: 160 bytes leftover after parsing attributes in process `syz.2.2450'. [ 461.990712][T13636] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2451'. [ 462.143628][T13641] overlayfs: missing 'lowerdir' [ 462.175341][T13641] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 462.181436][T13641] overlayfs: fs on './file0' does not support file handles, falling back to xino=off. [ 462.391018][ T40] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 462.591938][T13647] x_tables: ip_tables: TCPMSS target: only valid for protocol 6 [ 463.675575][ T11] IPVS: ovf: UDP 127.0.0.1:0 - no destination available [ 463.775718][T13662] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2457'. [ 463.811838][T13662] hub 9-0:1.0: USB hub found [ 463.812469][T13666] FAULT_INJECTION: forcing a failure. [ 463.812469][T13666] name failslab, interval 1, probability 0, space 0, times 0 [ 463.814270][T13662] hub 9-0:1.0: 1 port detected [ 463.819389][T13666] CPU: 1 UID: 0 PID: 13666 Comm: syz.3.2460 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 463.819415][T13666] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 463.819426][T13666] Call Trace: [ 463.819434][T13666] [ 463.819442][T13666] dump_stack_lvl+0x16c/0x1f0 [ 463.819469][T13666] should_fail_ex+0x497/0x5b0 [ 463.819494][T13666] should_failslab+0xc2/0x120 [ 463.819516][T13666] kmem_cache_alloc_node_noprof+0x71/0x310 [ 463.819538][T13666] ? __alloc_skb+0x2b1/0x380 [ 463.819569][T13666] __alloc_skb+0x2b1/0x380 [ 463.819607][T13666] ? __pfx___alloc_skb+0x10/0x10 [ 463.819626][T13666] ? __alloc_skb+0x1fe/0x380 [ 463.819648][T13666] ? __pfx___alloc_skb+0x10/0x10 [ 463.819670][T13666] ? __pfx___mutex_lock+0x10/0x10 [ 463.819690][T13666] create_monitor_ctrl_event+0x3b/0x450 [ 463.819712][T13666] mgmt_cmd_complete+0x2d6/0x540 [ 463.819730][T13666] get_device_flags+0x246/0x3e0 [ 463.819753][T13666] ? __pfx_get_device_flags+0x10/0x10 [ 463.819776][T13666] ? do_raw_read_unlock+0x44/0xe0 [ 463.819800][T13666] ? _raw_read_unlock+0x28/0x50 [ 463.869468][T13666] ? __pfx_mgmt_init_hdev+0x10/0x10 [ 463.871573][T13666] hci_sock_sendmsg+0x1528/0x25e0 [ 463.873858][T13666] ? __pfx_hci_sock_sendmsg+0x10/0x10 [ 463.876296][T13666] sock_write_iter+0x50a/0x5c0 [ 463.878496][T13666] ? __pfx_sock_write_iter+0x10/0x10 [ 463.880894][T13666] ? security_file_permission+0x98/0xc0 [ 463.883421][T13666] vfs_write+0x6b6/0x1140 [ 463.885399][T13666] ? __pfx_sock_write_iter+0x10/0x10 [ 463.887807][T13666] ? __pfx_vfs_write+0x10/0x10 [ 463.889993][T13666] ? __fget_files+0x256/0x400 [ 463.892106][T13666] ? __fget_light+0x173/0x210 [ 463.894239][T13666] ksys_write+0x1f8/0x260 [ 463.896217][T13666] ? __pfx_ksys_write+0x10/0x10 [ 463.898446][T13666] ? rcu_is_watching+0x12/0xc0 [ 463.900633][T13666] do_syscall_64+0xcd/0x250 [ 463.902700][T13666] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 463.905275][T13666] RIP: 0033:0x7f22485773b9 [ 463.907281][T13666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 463.915860][T13666] RSP: 002b:00007f22493b0048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 463.919650][T13666] RAX: ffffffffffffffda RBX: 00007f2248705f80 RCX: 00007f22485773b9 [ 463.923238][T13666] RDX: 000000000000000d RSI: 0000000020000200 RDI: 0000000000000004 [ 463.926774][T13666] RBP: 00007f22493b00a0 R08: 0000000000000000 R09: 0000000000000000 [ 463.930342][T13666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 463.933916][T13666] R13: 000000000000000b R14: 00007f2248705f80 R15: 00007ffea0dc5858 [ 463.937501][T13666] [ 464.177952][T13672] overlayfs: missing 'lowerdir' [ 464.211839][T13672] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 464.217092][T13672] overlayfs: fs on './file0' does not support file handles, falling back to xino=off. [ 464.730467][ T39] audit: type=1326 audit(1722525078.475:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13674 comm="syz.2.2463" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2e999773b9 code=0x0 [ 464.878223][T13681] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2464'. [ 464.879445][T13683] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=256 sclass=netlink_route_socket pid=13683 comm=syz.3.2466 [ 464.904132][T13681] hub 9-0:1.0: USB hub found [ 464.907996][T13681] hub 9-0:1.0: 1 port detected [ 464.948555][ T11] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 464.996011][ T39] audit: type=1400 audit(1722525078.745:716): avc: denied { create } for pid=13682 comm="syz.3.2466" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 465.632340][T13691] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2468'. [ 465.649840][T13691] hub 9-0:1.0: USB hub found [ 465.652836][T13691] hub 9-0:1.0: 1 port detected [ 466.139497][T13695] caif0: entered promiscuous mode [ 466.142613][T13695] caif0: entered allmulticast mode [ 466.506894][T13706] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2471'. [ 466.584343][T13706] hub 9-0:1.0: USB hub found [ 466.588205][T13706] hub 9-0:1.0: 1 port detected [ 466.868391][ T40] IPVS: ovf: UDP 127.0.0.1:0 - no destination available [ 467.428985][ T39] audit: type=1400 audit(1722525081.185:717): avc: denied { sqpoll } for pid=13722 comm="syz.2.2476" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 467.435504][T13723] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22 [ 467.453596][T13723] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2476'. [ 467.511575][T13725] netlink: 160 bytes leftover after parsing attributes in process `syz.1.2474'. [ 467.595696][ T39] audit: type=1400 audit(1722525081.345:718): avc: denied { read } for pid=13728 comm="syz.2.2477" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 467.684423][T13729] nvme_fabrics: missing parameter 'transport=%s' [ 467.699236][T13729] nvme_fabrics: missing parameter 'nqn=%s' [ 467.998693][T13743] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2479'. [ 468.014115][T13745] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2480'. [ 468.051289][T13745] hub 9-0:1.0: USB hub found [ 468.055622][T13745] hub 9-0:1.0: 1 port detected [ 468.149792][ T1107] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 468.750026][T13757] input: syz0 as /devices/virtual/input/input78 [ 469.271769][T13762] 9pnet_fd: Insufficient options for proto=fd [ 469.446284][ T11] IPVS: ovf: UDP 127.0.0.1:0 - no destination available [ 469.828302][ T39] audit: type=1326 audit(1722525083.565:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13769 comm="syz.1.2486" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd3257773b9 code=0x0 [ 469.882619][T13772] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2487'. [ 469.886817][T13772] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2487'. [ 469.896057][T13772] FAULT_INJECTION: forcing a failure. [ 469.896057][T13772] name failslab, interval 1, probability 0, space 0, times 0 [ 469.903527][T13772] CPU: 2 UID: 0 PID: 13772 Comm: syz.3.2487 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 469.908081][T13772] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 469.912738][T13772] Call Trace: [ 469.914160][T13772] [ 469.915434][T13772] dump_stack_lvl+0x16c/0x1f0 [ 469.917459][T13772] should_fail_ex+0x497/0x5b0 [ 469.919501][T13772] ? fs_reclaim_acquire+0xae/0x160 [ 469.921671][T13772] should_failslab+0xc2/0x120 [ 469.923698][T13772] __kmalloc_node_noprof+0xd1/0x430 [ 469.925913][T13772] ? __kvmalloc_node_noprof+0x9d/0x1a0 [ 469.928226][T13772] ? __nf_unregister_net_hook+0x2d5/0x680 [ 469.930618][T13772] __kvmalloc_node_noprof+0x9d/0x1a0 [ 469.932847][T13772] __nf_hook_entries_try_shrink+0x15f/0x400 [ 469.935329][T13772] __nf_unregister_net_hook+0x2e5/0x680 [ 469.937686][T13772] nf_unregister_net_hook+0xb8/0x110 [ 469.939948][T13772] __nf_tables_unregister_hook+0x1a3/0x220 [ 469.942396][T13772] nf_tables_abort+0x24f6/0x3710 [ 469.944523][T13772] ? __pfx_nf_tables_abort+0x10/0x10 [ 469.946760][T13772] ? kasan_quarantine_put+0x10a/0x240 [ 469.949036][T13772] ? kfree+0x12a/0x3b0 [ 469.950761][T13772] ? nfnetlink_rcv_batch+0x13f3/0x24e0 [ 469.953054][T13772] nfnetlink_rcv_batch+0x1101/0x24e0 [ 469.955277][T13772] ? __pfx_nfnetlink_rcv_batch+0x10/0x10 [ 469.957581][T13772] ? find_held_lock+0x2d/0x110 [ 469.959625][T13772] ? avc_has_perm_noaudit+0x119/0x3a0 [ 469.961887][T13772] ? avc_has_perm_noaudit+0x143/0x3a0 [ 469.964163][T13772] ? __nla_parse+0x40/0x60 [ 469.966090][T13772] nfnetlink_rcv+0x3c3/0x430 [ 469.968065][T13772] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 469.970243][T13772] netlink_unicast+0x544/0x830 [ 469.972288][T13772] ? __pfx_netlink_unicast+0x10/0x10 [ 469.974514][T13772] netlink_sendmsg+0x8b8/0xd70 [ 469.976601][T13772] ? __pfx_netlink_sendmsg+0x10/0x10 [ 469.978591][T13772] ? __import_iovec+0x1fd/0x6e0 [ 469.980441][T13772] ____sys_sendmsg+0xab5/0xc90 [ 469.982243][T13772] ? copy_msghdr_from_user+0x10b/0x160 [ 469.984465][T13772] ? __pfx_____sys_sendmsg+0x10/0x10 [ 469.986703][T13772] ? __pfx___lock_acquire+0x10/0x10 [ 469.988932][T13772] ? __bpf_get_stack+0x2ac/0x700 [ 469.991031][T13772] ___sys_sendmsg+0x135/0x1e0 [ 469.993075][T13772] ? __pfx____sys_sendmsg+0x10/0x10 [ 469.995349][T13772] ? __fget_light+0x173/0x210 [ 469.997403][T13772] __sys_sendmsg+0x117/0x1f0 [ 469.999385][T13772] ? __pfx___sys_sendmsg+0x10/0x10 [ 470.001439][T13772] ? bpf_trace_run2+0x2a6/0x590 [ 470.003368][T13772] ? __pfx_bpf_trace_run2+0x10/0x10 [ 470.005417][T13772] ? rcu_is_watching+0x12/0xc0 [ 470.007366][T13772] do_syscall_64+0xcd/0x250 [ 470.009320][T13772] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 470.011849][T13772] RIP: 0033:0x7f22485773b9 [ 470.013739][T13772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 470.021786][T13772] RSP: 002b:00007f22493b0048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 470.025179][T13772] RAX: ffffffffffffffda RBX: 00007f2248705f80 RCX: 00007f22485773b9 [ 470.028310][T13772] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 470.031645][T13772] RBP: 00007f22493b00a0 R08: 0000000000000000 R09: 0000000000000000 [ 470.034994][T13772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 470.038320][T13772] R13: 000000000000000b R14: 00007f2248705f80 R15: 00007ffea0dc5858 [ 470.041660][T13772] [ 470.052373][ T40] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 470.378427][T13777] syz.3.2488: attempt to access beyond end of device [ 470.378427][T13777] loop3: rw=0, sector=64, nr_sectors = 1 limit=0 [ 470.384554][T13777] syz.3.2488: attempt to access beyond end of device [ 470.384554][T13777] loop3: rw=0, sector=256, nr_sectors = 1 limit=0 [ 470.390143][T13777] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 470.394642][T13777] syz.3.2488: attempt to access beyond end of device [ 470.394642][T13777] loop3: rw=0, sector=512, nr_sectors = 1 limit=0 [ 470.400506][T13777] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512 [ 470.404469][T13777] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 470.408017][T13777] UDF-fs: Scanning with blocksize 512 failed [ 470.412935][T13777] syz.3.2488: attempt to access beyond end of device [ 470.412935][T13777] loop3: rw=0, sector=64, nr_sectors = 2 limit=0 [ 470.420449][T13777] syz.3.2488: attempt to access beyond end of device [ 470.420449][T13777] loop3: rw=0, sector=512, nr_sectors = 2 limit=0 [ 470.426139][T13777] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 470.431040][T13777] syz.3.2488: attempt to access beyond end of device [ 470.431040][T13777] loop3: rw=0, sector=1024, nr_sectors = 2 limit=0 [ 470.436073][T13777] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512 [ 470.441499][T13777] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 470.444673][T13777] UDF-fs: Scanning with blocksize 1024 failed [ 470.448712][T13777] syz.3.2488: attempt to access beyond end of device [ 470.448712][T13777] loop3: rw=0, sector=64, nr_sectors = 4 limit=0 [ 470.453993][T13777] syz.3.2488: attempt to access beyond end of device [ 470.453993][T13777] loop3: rw=0, sector=1024, nr_sectors = 4 limit=0 [ 470.460481][T13777] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 470.465140][T13777] syz.3.2488: attempt to access beyond end of device [ 470.465140][T13777] loop3: rw=0, sector=2048, nr_sectors = 4 limit=0 [ 470.472934][T13777] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512 [ 470.477355][T13777] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 470.484113][T13777] UDF-fs: Scanning with blocksize 2048 failed [ 470.490315][T13777] syz.3.2488: attempt to access beyond end of device [ 470.490315][T13777] loop3: rw=0, sector=64, nr_sectors = 8 limit=0 [ 470.497010][T13777] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 470.505310][T13777] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512 [ 470.511141][T13777] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 470.514784][T13777] UDF-fs: Scanning with blocksize 4096 failed [ 470.518254][T13777] UDF-fs: warning (device loop3): udf_fill_super: No partition found (1) [ 470.789348][T13784] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2490'. [ 470.805353][T13784] hub 9-0:1.0: USB hub found [ 470.808001][T13784] hub 9-0:1.0: 1 port detected [ 470.941363][T13787] netlink: 160 bytes leftover after parsing attributes in process `syz.1.2489'. [ 471.910035][T13798] Driver unsupported XDP return value 0 on prog (id 1440) dev N/A, expect packet loss! [ 471.989463][ T40] IPVS: ovf: UDP 127.0.0.1:0 - no destination available [ 471.996284][T13796] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2492'. [ 472.160080][T13805] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2494'. [ 472.195247][T13805] hub 9-0:1.0: USB hub found [ 472.197132][T13805] hub 9-0:1.0: 1 port detected [ 472.619877][ T39] audit: type=1326 audit(1722525086.375:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13810 comm="syz.3.2497" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f22485773b9 code=0x0 [ 473.141146][ T39] audit: type=1400 audit(1722525086.895:721): avc: denied { setattr } for pid=13817 comm="syz.2.2499" name="/" dev="9p" ino=36701607 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 473.268048][ T40] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 473.302959][T13824] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2500'. [ 473.333549][T13824] hub 9-0:1.0: USB hub found [ 473.338657][T13824] hub 9-0:1.0: 1 port detected [ 474.072097][ T39] audit: type=1400 audit(1722525087.825:722): avc: denied { unmount } for pid=5329 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1 [ 475.137710][ T39] audit: type=1400 audit(1722525088.875:723): avc: denied { map } for pid=13847 comm="syz.0.2507" path="/dev/radio1" dev="devtmpfs" ino=902 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1 [ 475.188004][ T1106] IPVS: ovf: UDP 127.0.0.1:0 - no destination available [ 475.597738][T13868] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2512'. [ 475.629520][T13868] hub 9-0:1.0: USB hub found [ 475.634417][T13868] hub 9-0:1.0: 1 port detected [ 475.838990][ T1117] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 476.697503][ T39] audit: type=1400 audit(1722525090.435:724): avc: denied { setopt } for pid=13871 comm="syz.2.2513" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 476.782915][T13885] overlayfs: failed to resolve './file1': -2 [ 476.791100][T13882] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2514'. [ 477.029537][ T1106] IPVS: ovf: UDP 127.0.0.1:0 - no destination available [ 477.880517][T13911] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2521'. [ 477.920604][T13913] syz.1.2522: vmalloc error: size 17179873280, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 477.929435][T13913] CPU: 1 UID: 0 PID: 13913 Comm: syz.1.2522 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 477.934907][T13913] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 477.940257][T13913] Call Trace: [ 477.941920][T13913] [ 477.943218][T13913] dump_stack_lvl+0x16c/0x1f0 [ 477.945745][T13913] warn_alloc+0x24d/0x3a0 [ 477.947932][T13913] ? __pfx_warn_alloc+0x10/0x10 [ 477.949996][T13913] ? hlock_class+0x4e/0x130 [ 477.952178][T13913] ? stack_depot_save_flags+0x28/0x8f0 [ 477.954998][T13913] ? kasan_save_stack+0x42/0x60 [ 477.957603][T13913] ? kasan_save_stack+0x33/0x60 [ 477.960166][T13913] ? kasan_save_track+0x14/0x30 [ 477.963182][T13913] ? __kasan_kmalloc+0xaa/0xb0 [ 477.965496][T13913] ? xskq_create+0x52/0x1d0 [ 477.967513][T13913] ? xsk_setsockopt+0x757/0xa10 [ 477.969655][T13913] ? __sys_setsockopt+0x1a4/0x270 [ 477.972425][T13913] ? __x64_sys_setsockopt+0xbd/0x160 [ 477.974708][T13913] ? do_syscall_64+0xcd/0x250 [ 477.977297][T13913] __vmalloc_node_range_noprof+0x10b8/0x1520 [ 477.980048][T13913] ? xskq_create+0xfb/0x1d0 [ 477.982079][T13913] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 477.984875][T13913] ? xskq_create+0xfb/0x1d0 [ 477.987091][T13913] vmalloc_user_noprof+0x6b/0x90 [ 477.989230][T13913] ? xskq_create+0xfb/0x1d0 [ 477.991193][T13913] xskq_create+0xfb/0x1d0 [ 477.993037][T13913] xsk_setsockopt+0x757/0xa10 [ 477.995104][T13913] ? __pfx_xsk_setsockopt+0x10/0x10 [ 477.997319][T13913] ? find_held_lock+0x2d/0x110 [ 477.999407][T13913] ? selinux_socket_setsockopt+0x6a/0x80 [ 478.001813][T13913] ? __pfx_xsk_setsockopt+0x10/0x10 [ 478.005655][T13913] do_sock_setsockopt+0x222/0x480 [ 478.008093][T13913] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 478.010712][T13913] ? __fget_light+0x173/0x210 [ 478.012831][T13913] __sys_setsockopt+0x1a4/0x270 [ 478.020760][T13913] ? __pfx___sys_setsockopt+0x10/0x10 [ 478.023506][T13913] __x64_sys_setsockopt+0xbd/0x160 [ 478.026267][T13913] ? syscall_trace_enter+0x1ce/0x240 [ 478.028872][T13913] do_syscall_64+0xcd/0x250 [ 478.030823][T13913] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 478.033320][T13913] RIP: 0033:0x7fd3257773b9 [ 478.035601][T13913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 478.044010][T13913] RSP: 002b:00007fd326620048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 478.047594][T13913] RAX: ffffffffffffffda RBX: 00007fd325905f80 RCX: 00007fd3257773b9 [ 478.050748][T13913] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000006 [ 478.054637][T13913] RBP: 00007fd3257e48e6 R08: 0000000000000004 R09: 0000000000000000 [ 478.058107][T13913] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000 [ 478.061620][T13913] R13: 000000000000000b R14: 00007fd325905f80 R15: 00007ffedacb6118 [ 478.065737][T13913] [ 478.075035][T13913] Mem-Info: [ 478.083236][T13913] active_anon:9415 inactive_anon:0 isolated_anon:0 [ 478.083236][T13913] active_file:5428 inactive_file:47701 isolated_file:0 [ 478.083236][T13913] unevictable:1768 dirty:363 writeback:0 [ 478.083236][T13913] slab_reclaimable:10406 slab_unreclaimable:72737 [ 478.083236][T13913] mapped:22594 shmem:2275 pagetables:1082 [ 478.083236][T13913] sec_pagetables:319 bounce:0 [ 478.083236][T13913] kernel_misc_reclaimable:0 [ 478.083236][T13913] free:504687 free_pcp:1874 free_cma:0 [ 478.103063][T13913] Node 0 active_anon:37908kB inactive_anon:0kB active_file:21712kB inactive_file:190724kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:90376kB dirty:1448kB writeback:0kB shmem:5564kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11920kB pagetables:4328kB sec_pagetables:1276kB all_unreclaimable? no [ 478.118055][T13913] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:80kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 478.139865][T13913] Node 0 DMA free:15360kB boost:0kB min:328kB low:408kB high:488kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 478.156511][T13913] lowmem_reserve[]: 0 1313 0 0 0 [ 478.161332][T13913] Node 0 DMA32 free:360004kB boost:0kB min:28924kB low:36152kB high:43380kB reserved_highatomic:0KB active_anon:39768kB inactive_anon:0kB active_file:21712kB inactive_file:190724kB unevictable:3536kB writepending:1448kB present:2080628kB managed:1372140kB mlocked:0kB bounce:0kB free_pcp:7252kB local_pcp:632kB free_cma:0kB [ 478.181516][T13913] lowmem_reserve[]: 0 0 0 0 0 [ 478.184213][T13913] Node 1 Normal free:1640904kB boost:0kB min:38324kB low:47904kB high:57484kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:80kB unevictable:3536kB writepending:4kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:716kB local_pcp:0kB free_cma:0kB [ 478.203916][T13913] lowmem_reserve[]: 0 0 0 0 0 [ 478.206038][T13913] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 478.213369][T13913] Node 0 DMA32: 0*4kB 19*8kB (ME) 15*16kB (UME) 336*32kB (UME) 290*64kB (UME) 48*128kB (UME) 33*256kB (UME) 16*512kB (UME) 10*1024kB (UME) 8*2048kB (UM) 68*4096kB (UM) = 357640kB [ 478.222293][T13913] Node 1 Normal: 2*4kB (UM) 2*8kB (UM) 3*16kB (M) 12*32kB (UM) 12*64kB (UM) 8*128kB (UM) 5*256kB (U) 6*512kB (UM) 2*1024kB (U) 3*2048kB (UM) 397*4096kB (M) = 1640904kB [ 478.230764][T13913] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 478.234591][T13913] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 478.238863][T13913] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 478.243840][T13913] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 478.248663][T13913] 55406 total pagecache pages [ 478.250426][T13913] 0 pages in swap cache [ 478.251972][T13913] Free swap = 124348kB [ 478.253545][T13913] Total swap = 124996kB [ 478.255447][T13913] 1048443 pages RAM [ 478.257071][T13913] 0 pages HighMem/MovableOnly [ 478.260030][T13913] 256087 pages reserved [ 478.261853][T13913] 0 pages cma reserved [ 478.488949][ T39] audit: type=1400 audit(1722525092.235:725): avc: denied { connect } for pid=13927 comm="syz.3.2526" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 478.491407][T13928] fuse: Invalid rootmode [ 478.835101][T13938] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2528'. [ 479.032931][ T1106] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 479.113502][T13951] veth0_vlan: entered allmulticast mode [ 479.190900][T13948] : renamed from vlan0 [ 479.273556][ T39] audit: type=1400 audit(1722525093.025:726): avc: denied { unmount } for pid=9595 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 479.421578][ T11] Ignoring NSS change in VHT Operating Mode Notification from 08:02:11:00:00:00 with invalid nss 2 [ 479.531424][T13960] netlink: 'syz.0.2532': attribute type 5 has an invalid length. [ 479.781521][T13970] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2536'. [ 479.798479][T13971] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2535'. [ 479.827245][T13971] hub 9-0:1.0: USB hub found [ 479.834206][T13971] hub 9-0:1.0: 1 port detected [ 479.881500][T13970] hub 9-0:1.0: USB hub found [ 479.884596][T13970] hub 9-0:1.0: 1 port detected [ 480.317804][ T1106] IPVS: ovf: UDP 127.0.0.1:0 - no destination available [ 481.090854][T13983] veth0_vlan: entered allmulticast mode [ 481.202659][T13983] : renamed from vlan0 [ 481.400058][ T39] audit: type=1400 audit(1722525095.155:727): avc: denied { map } for pid=13992 comm="syz.2.2541" path="socket:[45010]" dev="sockfs" ino=45010 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1 [ 481.588786][ T1109] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 481.698495][T13996] netlink: 92 bytes leftover after parsing attributes in process `syz.2.2542'. [ 481.878191][T14004] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2543'. [ 481.982421][T14004] hub 9-0:1.0: USB hub found [ 481.986607][T14004] hub 9-0:1.0: 1 port detected [ 482.209742][T14013] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7) [ 482.212728][T14013] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 482.216339][T14013] vhci_hcd vhci_hcd.0: Device attached [ 482.237749][ T1109] IPVS: ovf: UDP 127.0.0.1:0 - no destination available [ 482.447722][ T59] vhci_hcd: vhci_device speed not set [ 482.517561][ T59] usb 17-1: new full-speed USB device number 2 using vhci_hcd [ 482.661306][T14022] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2547'. [ 482.725323][T14022] hub 9-0:1.0: USB hub found [ 482.731884][T14022] hub 9-0:1.0: 1 port detected [ 482.793496][T14014] vhci_hcd: connection reset by peer [ 482.797993][ T11] vhci_hcd: stop threads [ 482.817805][ T11] vhci_hcd: release socket [ 482.820293][ T11] vhci_hcd: disconnect device [ 483.257686][T14035] caif0: entered promiscuous mode [ 483.260561][T14035] caif0: entered allmulticast mode [ 483.895338][T14042] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2551'. [ 484.052629][T14045] netlink: 9372 bytes leftover after parsing attributes in process `syz.3.2552'. [ 484.084559][T14052] overlayfs: failed to resolve './file1': -2 [ 484.415974][T14069] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2558'. [ 484.478928][T14069] hub 9-0:1.0: USB hub found [ 484.485962][T14069] hub 9-0:1.0: 1 port detected [ 484.695417][T14074] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2556'. [ 484.789245][ T1106] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 484.831140][T14068] fuse: Bad value for 'fd' [ 484.918231][T14077] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2561'. [ 484.963969][T14083] overlayfs: failed to resolve './file0': -2 [ 485.282551][ T39] audit: type=1400 audit(1722525099.035:728): avc: denied { remove_name } for pid=14078 comm="syz.0.2560" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="9p" ino=36701644 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 485.322334][ T39] audit: type=1400 audit(1722525099.035:729): avc: denied { rename } for pid=14078 comm="syz.0.2560" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="9p" ino=36701644 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=fifo_file permissive=1 [ 485.682969][T14091] netlink: 160 bytes leftover after parsing attributes in process `syz.2.2563'. [ 486.078392][ T1107] IPVS: ovf: UDP 127.0.0.1:0 - no destination available [ 486.644534][T14104] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2567'. [ 486.646877][T14103] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2566'. [ 486.698316][T14104] hub 9-0:1.0: USB hub found [ 486.701401][T14104] hub 9-0:1.0: 1 port detected [ 486.998218][T14112] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2569'. [ 487.059235][T14112] hub 9-0:1.0: USB hub found [ 487.063349][T14112] hub 9-0:1.0: 1 port detected [ 487.347935][T10774] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 487.667766][ T59] vhci_hcd: vhci_device speed not set [ 487.998856][ T1106] IPVS: ovf: UDP 127.0.0.1:0 - no destination available [ 488.249113][T14120] overlayfs: failed to resolve './file0': -2 [ 488.290850][T14121] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2571'. [ 488.354275][T14121] hub 9-0:1.0: USB hub found [ 488.360624][T14121] hub 9-0:1.0: 1 port detected [ 489.329199][ T39] audit: type=1400 audit(1722525103.085:730): avc: denied { rename } for pid=14131 comm="syz.2.2575" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="9p" ino=36701638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 489.349158][ T39] audit: type=1400 audit(1722525103.085:731): avc: denied { unlink } for pid=14131 comm="syz.2.2575" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="9p" ino=36701644 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=fifo_file permissive=1 [ 489.908939][T10774] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 490.141160][T14140] 9pnet_virtio: no channels available for device syz [ 490.551160][T14147] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2579'. [ 490.572937][T14147] hub 9-0:1.0: USB hub found [ 490.575810][T14147] hub 9-0:1.0: 1 port detected [ 490.665185][T14155] overlayfs: failed to resolve './file0': -2 [ 491.340157][ T39] audit: type=1400 audit(1722525105.085:732): avc: denied { map } for pid=14172 comm="syz.2.2589" path="/dev/dri/card1" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 491.561774][T14176] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2590'. [ 491.654098][T14176] hub 9-0:1.0: USB hub found [ 491.667940][T14176] hub 9-0:1.0: 1 port detected [ 491.831492][ T65] IPVS: ovf: UDP 127.0.0.1:0 - no destination available [ 492.308667][T14187] caif0: entered promiscuous mode [ 492.311547][T14187] caif0: entered allmulticast mode [ 493.108603][ T65] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 493.525619][T14198] netlink: 160 bytes leftover after parsing attributes in process `syz.2.2596'. [ 493.606338][ C1] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 493.612014][ C1] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 493.616054][ C1] CPU: 1 UID: 0 PID: 14166 Comm: syz.0.2586 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0 [ 493.621337][ T39] audit: type=1400 audit(1722525107.375:733): avc: denied { unlink } for pid=14189 comm="syz.3.2594" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="9p" ino=36701638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 493.621803][ C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 493.621818][ C1] RIP: 0010:__cpu_map_flush+0x48/0x110 [ 493.645653][ C1] Code: fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 d1 00 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b 26 49 8d 6c 24 c0 4c 89 e2 48 c1 ea 03 <80> 3c 02 00 0f 85 a1 00 00 00 49 8b 04 24 4d 39 e6 48 8d 58 c0 74 [ 493.652782][ C1] RSP: 0018:ffffc900008b0c88 EFLAGS: 00010246 [ 493.655276][ C1] RAX: dffffc0000000000 RBX: ffffc9000360f520 RCX: ffffffff88f94f79 [ 493.659293][ C1] RDX: 0000000000000000 RSI: ffffffff81b052a4 RDI: ffffc9000360f560 [ 493.662791][ C1] RBP: ffffffffffffffc1 R08: 0000000000000005 R09: 0000000000000000 [ 493.666930][ C1] R10: 0000000000000000 R11: ffffffff8b4f4160 R12: 0000000000000001 [ 493.670823][ C1] R13: ffff888023630fb0 R14: ffffc9000360f560 R15: ffffc900008b0dd8 [ 493.674362][ C1] FS: 0000000000000000(0000) GS:ffff88806b100000(0000) knlGS:0000000000000000 [ 493.678325][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 493.681551][ C1] CR2: 000001ea0000000b CR3: 00000000552ea000 CR4: 0000000000352ef0 [ 493.685144][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 493.689211][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 493.692536][ C1] Call Trace: [ 493.694060][ C1] [ 493.695424][ C1] ? show_regs+0x8c/0xa0 [ 493.697281][ C1] ? die_addr+0x4f/0xd0 [ 493.699229][ C1] ? exc_general_protection+0x155/0x230 [ 493.702055][ C1] ? asm_exc_general_protection+0x26/0x30 [ 493.704664][ C1] ? xdp_do_check_flushed+0xf9/0x4e0 [ 493.707369][ C1] ? __cpu_map_flush+0x14/0x110 [ 493.709638][ C1] ? __cpu_map_flush+0x48/0x110 [ 493.711984][ C1] ? __cpu_map_flush+0x14/0x110 [ 493.714273][ C1] xdp_do_check_flushed+0x308/0x4e0 [ 493.716623][ C1] __napi_poll.constprop.0+0xd1/0x550 [ 493.718711][ C1] net_rx_action+0xa92/0x1010 [ 493.720666][ C1] ? sched_clock_cpu+0x6d/0x4d0 [ 493.722791][ C1] ? __pfx_net_rx_action+0x10/0x10 [ 493.724921][ C1] ? mark_held_locks+0x9f/0xe0 [ 493.726999][ C1] handle_softirqs+0x216/0x8f0 [ 493.729218][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 493.731614][ C1] irq_exit_rcu+0xbb/0x120 [ 493.733585][ C1] common_interrupt+0xb0/0xd0 [ 493.735569][ C1] [ 493.736825][ C1] [ 493.738050][ C1] asm_common_interrupt+0x26/0x40 [ 493.740181][ C1] RIP: 0010:unmap_page_range+0x83f/0x3c10 [ 493.742163][ C1] Code: 8b 04 24 48 c1 e8 03 42 80 3c 28 00 0f 85 b7 28 00 00 48 8b 04 24 31 ff 48 8b 28 48 89 eb 48 83 e3 9f 48 89 de e8 31 b9 ba ff <48> 85 db 0f 84 3a 05 00 00 e8 f3 bd ba ff 48 8b 44 24 60 80 38 00 [ 493.749682][ C1] RSP: 0018:ffffc9000360f698 EFLAGS: 00000293 [ 493.751885][ C1] RAX: 0000000000000000 RBX: 80000000307e3005 RCX: ffffffff81cfbd2f [ 493.755221][ C1] RDX: ffff88802c26a440 RSI: 0000000000000000 RDI: 0000000000000007 [ 493.758738][ C1] RBP: 80000000307e3025 R08: 0000000000000007 R09: 0000000000000000 [ 493.761657][ C1] R10: 80000000307e3005 R11: 0000000000000000 R12: 000000110c2ba000 [ 493.764569][ C1] R13: dffffc0000000000 R14: 000000110c2ba000 R15: ffffc9000360fab8 [ 493.767710][ C1] ? unmap_page_range+0x83f/0x3c10 [ 493.769471][ C1] ? unmap_page_range+0x83f/0x3c10 [ 493.771491][ C1] ? __pfx_unmap_page_range+0x10/0x10 [ 493.773636][ C1] ? uprobe_munmap+0x20/0x5d0 [ 493.775499][ C1] unmap_single_vma+0x194/0x2b0 [ 493.777223][ C1] unmap_vmas+0x22f/0x490 [ 493.779073][ C1] ? __pfx_unmap_vmas+0x10/0x10 [ 493.781041][ C1] ? __pfx_lock_release+0x10/0x10 [ 493.782960][ C1] ? lru_add_drain_cpu+0x454/0x860 [ 493.784752][ C1] exit_mmap+0x1b8/0xb20 [ 493.786008][ C1] ? __pfx_exit_mmap+0x10/0x10 [ 493.787853][ C1] __mmput+0x12a/0x480 [ 493.789913][ C1] mmput+0x62/0x70 [ 493.791542][ C1] do_exit+0x9bf/0x2bb0 [ 493.793045][ C1] ? get_signal+0x8f2/0x2770 [ 493.795111][ C1] ? __pfx_do_exit+0x10/0x10 [ 493.797108][ C1] ? do_raw_spin_lock+0x12d/0x2c0 [ 493.799205][ C1] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 493.801087][ C1] do_group_exit+0xd3/0x2a0 [ 493.802740][ C1] get_signal+0x25fd/0x2770 [ 493.804715][ C1] ? __pfx_get_signal+0x10/0x10 [ 493.806809][ C1] ? task_work_add+0x1d6/0x370 [ 493.808898][ C1] arch_do_signal_or_restart+0x90/0x7e0 [ 493.811290][ C1] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 493.814140][ C1] ? ksys_read+0x1ab/0x260 [ 493.816161][ C1] ? __pfx_ksys_read+0x10/0x10 [ 493.818244][ C1] syscall_exit_to_user_mode+0x150/0x2a0 [ 493.820575][ C1] do_syscall_64+0xda/0x250 [ 493.822599][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 493.825203][ C1] RIP: 0033:0x7f08afb773b9 [ 493.826917][ C1] Code: Unable to access opcode bytes at 0x7f08afb7738f. [ 493.829586][ C1] RSP: 002b:00007f08b0a0c048 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 493.833275][ C1] RAX: 0000000000018fd8 RBX: 00007f08afd05f80 RCX: 00007f08afb773b9 [ 493.837157][ C1] RDX: 0000000000018fd8 RSI: 0000000020032680 RDI: 0000000000000007 [ 493.840294][ C1] RBP: 00007f08afbe48e6 R08: 0000000000000000 R09: 0000000000000000 [ 493.843344][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 493.846460][ C1] R13: 000000000000000b R14: 00007f08afd05f80 R15: 00007ffd0d743058 [ 493.849907][ C1] [ 493.850997][ C1] Modules linked in: [ 493.852720][ C1] vkms_vblank_simulate: vblank timer overrun [ 493.855413][ C1] ---[ end trace 0000000000000000 ]--- [ 493.857710][ C1] RIP: 0010:__cpu_map_flush+0x48/0x110 [ 493.859977][ C1] Code: fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 d1 00 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b 26 49 8d 6c 24 c0 4c 89 e2 48 c1 ea 03 <80> 3c 02 00 0f 85 a1 00 00 00 49 8b 04 24 4d 39 e6 48 8d 58 c0 74 [ 493.868089][ C1] RSP: 0018:ffffc900008b0c88 EFLAGS: 00010246 [ 493.870795][ C1] RAX: dffffc0000000000 RBX: ffffc9000360f520 RCX: ffffffff88f94f79 [ 493.874227][ C1] RDX: 0000000000000000 RSI: ffffffff81b052a4 RDI: ffffc9000360f560 [ 493.877930][ C1] RBP: ffffffffffffffc1 R08: 0000000000000005 R09: 0000000000000000 [ 493.881352][ C1] R10: 0000000000000000 R11: ffffffff8b4f4160 R12: 0000000000000001 [ 493.884606][ C1] R13: ffff888023630fb0 R14: ffffc9000360f560 R15: ffffc900008b0dd8 [ 493.888238][ C1] FS: 0000000000000000(0000) GS:ffff88806b100000(0000) knlGS:0000000000000000 [ 493.892142][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 493.894995][ C1] CR2: 000001ea0000000b CR3: 00000000552ea000 CR4: 0000000000352ef0 [ 493.898591][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 493.902091][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 493.905388][ C1] Kernel panic - not syncing: Fatal exception in interrupt [ 493.908835][ C1] Kernel Offset: disabled [ 493.910401][ C1] Rebooting in 86400 seconds.. VM DIAGNOSIS: 15:11:47 Registers: info registers vcpu 0 CPU#0 RAX=0000000080000001 RBX=0000000000000002 RCX=ffffffff813ce5c1 RDX=ffff888018eac880 RSI=0000000000000003 RDI=0000000000000001 RBP=ffffffff8b49d740 RSP=ffffc900034bf590 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000005 R11=0000000000000000 R12=0000000000000005 R13=0000000000000001 R14=0000000000000008 R15=ffffc900034bf67d RIP=ffffffff818a749e RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fd3266206c0 ffffffff 00c00000 GS =0000 ffff88806b000000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000100000000 CR3=000000004a818000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000020520001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd32661ffa0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd3257e56c5 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd3257e56d2 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd3257e56cc ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd3257e56e0 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd3257e5766 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fd3257e5844 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2973252865746972 770073252f64252f 6b7361742f666c65 732f636f72702f00 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0c56000d40514c57 520056000a41000a 4e5644510a434940 560a464a57550a00 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000036 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84fe2745 RDI=ffffffff9519a720 RBP=ffffffff9519a6e0 RSP=ffffc900008b0658 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=7973203a6d6d6f43 R12=0000000000000000 R13=0000000000000036 R14=ffffffff84fe26e0 R15=0000000000000000 RIP=ffffffff84fe276f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806b100000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000001ea0000000b CR3=00000000552ea000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2e999e56c5 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2e999e56d2 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2e999e56cc ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2e999e56e0 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2e999e5766 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2e999e5844 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3066696163003300 1400776973004100 0800000000307a79 7300020009000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2e9a63d100 00007f2e99ad5440 00007f2e99ad0004 0008000f0010000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2e99ad5498 00007f2e99ad5490 00007f2e99ad5488 00007f2e99ad5480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 00000000000000a0 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000002 RBX=0000000000000003 RCX=ffffc900256ff000 RDX=0000000000040000 RSI=ffffffff817e4641 RDI=0000000000000005 RBP=dffffc0000000000 RSP=ffffc9000365f258 R8 =0000000000000005 R9 =0000000000000007 R10=0000000000000003 R11=dffffc0000000000 R12=0000000000000008 R13=0000000000000002 R14=0000000000000002 R15=ffff88806b23ffc0 RIP=ffffffff818a7b75 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f22493b06c0 ffffffff 00c00000 GS =0000 ffff88806b200000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020705000 CR3=00000000555dc000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000015 000000000001df8a ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555589b0e424 0000555589b0e420 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555589b0b4a0 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555589b0d633 0000555589b0d4c0 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555589b0e334 0000555589b0e330 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555589b0d900 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0005c00300000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00080005e8030008 0005e00300080005 d80300080005d003 00080005c8030008 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001ffffffffff ffffffd70805f003 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0800520800010800 0a0105a601a80800 000300080006a003 0008000698030000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100040580040180 0800520800010800 0a0105a601a80800 000300080006a003 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0008000698030000 0000000000000000 0000000000000000 000001ffffffffff ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffd70805f003 00080005e8030008 0005e00300080005 d80300080005d003 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00080005c8030008 0005c00300000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=dffffc0000000000 RBX=ffff888055e58000 RCX=ffffe8fefd33edc0 RDX=0000000000000000 RSI=1ffffffff1af656f RDI=ffffffff8d7b2b78 RBP=ffff88806b33edc0 RSP=ffffc90005ab77b8 R8 =ffffc90005ab7a68 R9 =0000000000000000 R10=0000000000000000 R11=000000000009f4f4 R12=ffff88801f260000 R13=0000000000000002 R14=ffff888055e58548 R15=0000607e9203edb8 RIP=ffffffff815c1a67 RFL=00000806 [-O---P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806b300000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000088 CR3=00000000555dc000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000004080 Opmask01=0000000000000000 Opmask02=000000000000ffdf Opmask03=0040000404420020 Opmask04=00000000ffffffff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff73c2c980 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ff000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000ff0000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 ffffffffffffffff ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4bc886711e50de41 73732612c0f11612 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737372a2 7373737373737373 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000281 0000000000000000 44455a494c414954 494e495f43455355 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6f742079617272 6120656c75722079 7261726f706d6574 002a3f005b3f2a00 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a4a51055c445757 440540495057055c 5744574a55484051 000f1a005b1a0f00 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 38bbf5026d23ad32 00005561b384539c 00000000000000a1 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005564e5cbb760 00005564e5cc0020 0000000000000041 0000000000000033 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 327570632f757063 2f6d657473797300 307761726469682f ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fffffffffffffffc 00005d75effffff7 00007ffff7cef5f9 30007ff6fed0e67f ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 264c383a3a264f38 3a3a264e383a3a26 49383a3a2648383a 3a2633383a3a2632 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055640b1f1b00 0000556400306b30 0000000000000021 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00004d5500304500 0000000000000021 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020