last executing test programs: 2.730634645s ago: executing program 2 (id=65): r0 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001440)=ANY=[@ANYBLOB="1c0000005e0021a555"], 0x1c}}, 0x0) openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0x1ab083, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000000), 0x8000, 0x14040) bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8) ioctl$BLKZEROOUT(r1, 0x127f, &(0x7f0000000080)={0x7fff, 0x2}) 2.728896828s ago: executing program 2 (id=67): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000040)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000000)='thermal_zone_trip\x00', r0}, 0x74) (async) r1 = socket(0x10, 0x803, 0x0) r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f0000000080)=0x200000000) (async) r3 = dup2(r2, r2) read$FUSE(r3, &(0x7f0000004d80)={0x2020}, 0x2020) (async, rerun: 32) r4 = socket$unix(0x1, 0x1, 0x0) (rerun: 32) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xc}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0) (async) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=@newtfilter={0x7c, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, r5, {0xf}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_u32={{0x8}, {0x50, 0x2, [@TCA_U32_SEL={0x44, 0x5, {0x5, 0xd, 0x3, 0x4, 0x13, 0x2, 0x6, 0x7ffffffa, [{0x200, 0x500, 0x3, 0x6}, {0x2, 0x2, 0x8001, 0x10}, {0x0, 0x53, 0xa9, 0x1}]}}, @TCA_U32_LINK={0x8, 0x3, 0x80000000}]}}]}, 0x7c}}, 0x24040084) 1.83095159s ago: executing program 2 (id=79): r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0x4, 0x2) r1 = dup2(r0, r0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0xc, &(0x7f0000000100)=ANY=[@ANYBLOB="18020000feffffff0000000000000000850000004100000018010000756c6c2500000000003c20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0x2100, 0x2, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000280)={0x1600, 0x1, 0x0, "adbdee06009e4aeabde9eefaff7a78cda902552f08cef49462c88b6c7451f8e5"}) r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue1\x00', 0x200000}) r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xa8c01) write$sndseq(r4, &(0x7f0000000080)=[{0x1e, 0x0, 0x0, 0xfd, @time, {}, {}, @result}], 0x1c) r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002680), 0x502) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="2400000001040102000000c9fd00fbffffff000008000340000100000500010001"], 0x24}}, 0x0) sendmsg$NFULNL_MSG_CONFIG(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000026c0)=ANY=[@ANYBLOB="1cfcffebc9cf220000239d3c81781622ed2e82e1", @ANYRESHEX, @ANYRESHEX=0x0, @ANYRES16=r1], 0x1c}, 0x1, 0x0, 0x0, 0x48800}, 0x240004d1) write$sndseq(r5, &(0x7f0000000080)=[{0x1e, 0x0, 0xc, 0xfd, @tick=0x8, {}, {}, @raw8={"e345a131be186dac44731a9a"}}], 0x1c) openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000000), 0x169101, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r7 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$VHOST_SET_FEATURES(r7, 0x4008af00, &(0x7f0000000140)=0x200000000) write$vhost_msg_v2(r7, &(0x7f0000000980)={0x2, 0x0, {0x0, 0x4b, 0x0, 0x0, 0x2}}, 0x48) write$vhost_msg_v2(r7, &(0x7f0000002080)={0x2, 0x0, {&(0x7f0000001f80)=""/152, 0x98, 0x0, 0x0, 0x2}}, 0x48) write$vhost_msg_v2(r7, &(0x7f0000000180)={0x2, 0x0, {&(0x7f0000002780)=""/254, 0xfe, 0x0, 0x2, 0x2}}, 0x48) write$vhost_msg_v2(r7, &(0x7f0000000040)={0x2, 0x0, {&(0x7f0000000540)=""/267, 0x10b, 0x0, 0x1, 0x2}}, 0x48) write$vhost_msg_v2(r7, &(0x7f0000000200)={0x2, 0x0, {&(0x7f0000000780)=""/212, 0xfe65, 0x0, 0x3, 0x2}}, 0x48) write$vhost_msg_v2(r7, &(0x7f00000003c0)={0x2, 0x0, {&(0x7f00000002c0)=""/119, 0xfca2, 0x0, 0x0, 0x3}}, 0x48) r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000500)={@cgroup=r8, 0x2b, 0x0, 0x0, &(0x7f00000005c0)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40) r9 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r9, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) r10 = openat$pmem0(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0) readv(r10, &(0x7f00000025c0)=[{&(0x7f00000002c0)=""/4096, 0x1000}, {&(0x7f00000012c0)=""/239, 0xffffffda}, {&(0x7f00000013c0)=""/195, 0xc3}, {&(0x7f0000000100)=""/62, 0x3e}, {&(0x7f00000014c0)=""/4096, 0x1000}, {&(0x7f0000000140)=""/15, 0xf}, {&(0x7f00000024c0)=""/251, 0xfb}, {&(0x7f00000001c0)=""/6, 0x6}, {&(0x7f0000000240)=""/56, 0x38}], 0x9) 1.750907308s ago: executing program 3 (id=82): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000200)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58) (async) sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x0, 0x923, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}]}, 0x1c}}, 0x0) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = dup(r3) ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000080000030100c0"]) (async) r5 = accept4(r0, 0x0, 0x0, 0x0) sendmsg$nl_generic(r5, 0x0, 0x4000090) (async) setsockopt$inet6_MCAST_MSFILTER(r5, 0x29, 0x30, &(0x7f0000000200)={0x7, {{0xa, 0x4e23, 0x5, @rand_addr=' \x01\x00', 0x8}}, 0x1, 0x5, [{{0xa, 0x4e23, 0x3, @local, 0x5}}, {{0xa, 0x4e24, 0xee9, @dev={0xfe, 0x80, '\x00', 0xe}, 0x8001}}, {{0xa, 0x4e23, 0x1, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x401}}, {{0xa, 0x4e22, 0x7fffffff, @private0={0xfc, 0x0, '\x00', 0x1}}}, {{0xa, 0x4e22, 0x9, @rand_addr=' \x01\x00', 0x9}}]}, 0x310) syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0x0) 1.580915345s ago: executing program 3 (id=89): socket$kcm(0x2, 0x1000000000000005, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r2}, 0x10) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) socket$unix(0x1, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='afs_cb_break\x00', r2}, 0x18) socket$nl_route(0x10, 0x3, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x25dfdbff, {}, [@NHA_OIF={0x8}]}, 0x20}}, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000400)={@map=r0, 0x11, 0x1, 0x9, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7, 0x0, &(0x7f00000001c0)=[0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000003c0)=[0x0, 0x0], 0x0}, 0x40) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000004c0)={r1, 0x0, 0x25, 0x1, @val=@tcx={@void, @value=r2, @void, @void, r5}}, 0x1c) bind$x25(r3, &(0x7f0000000100), 0x12) socket$unix(0x1, 0x2, 0x0) socket$unix(0x1, 0x2, 0x0) socket$can_bcm(0x1d, 0x2, 0x2) socket(0x10, 0x3, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) unshare(0x6a040000) mmap(&(0x7f00002ad000/0xc00000)=nil, 0xc00000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) r7 = socket$netlink(0x10, 0x3, 0x0) r8 = gettid() sendmsg$nl_route(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000005f00)=ANY=[@ANYBLOB="2800000010000100"/20, @ANYRES32=r6, @ANYBLOB="6d3082610000000008001300", @ANYRES32=r8], 0x28}, 0x1, 0x0, 0x0, 0x4000004}, 0x0) 1.580540955s ago: executing program 2 (id=90): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000007040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000007000)={0x20}, 0x0}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0) getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000240)) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 5) setrlimit(0xf, &(0x7f0000000000)={0x1, 0x5}) 1.39059917s ago: executing program 2 (id=96): r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301) ioctl$USBDEVFS_SUBMITURB(r0, 0x802c550a, &(0x7f0000000540)=@urb_type_iso={0x0, {0x1, 0x1}, 0x0, 0x0, 0x0, 0xffffffffffffff46, 0x3f, 0x0, 0x1, 0x0, 0x0, 0x0, [{}]}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r3, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4) sendmsg$netlink(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000380)=ANY=[@ANYBLOB="1c0000001e00995e00000000000000000c00000000000000000001"], 0x1c}], 0x1}, 0x0) r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r4, 0x3b81, &(0x7f0000000100)={0xc, 0x0, 0x0}) ioctl$IOMMU_TEST_OP_ADD_RESERVED(r4, 0x3ba0, &(0x7f00000002c0)={0x48, 0x1, r5, 0x0, 0x20003, 0xfffffffffffffffe}) close(r4) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x4, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000000000000000000000a000085000000ad0000009500000000000000b3cd91115eb8e652f2de1652464abeffe45ea5d02a47dd0af49d3cbdb819ac0afe07341685ca0461afbead16a3e9cb460665223ffb26b9fd6339402d71f59771e951e6ffa0e9c6c9a7352c6b"], &(0x7f0000000340)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000000)=@x86={0x5, 0x5, 0x17, 0x0, 0x3, 0xf9, 0x2, 0x79, 0xff, 0x8, 0x1, 0x1, 0x0, 0x8, 0x5, 0x8, 0x72, 0x7, 0xfa, '\x00', 0x3}) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x41, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 1.32032409s ago: executing program 3 (id=99): ioctl$DRM_IOCTL_SET_MASTER(0xffffffffffffffff, 0x641e) (async) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000000)={0x0, 0x80000, 0xffffffffffffffff}) ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{}, {0x0}]}) r2 = syz_open_dev$dri(&(0x7f00000000c0), 0x7, 0x48000) ioctl$DRM_IOCTL_MODE_GET_LEASE(r2, 0xc01064c8, &(0x7f0000000140)={0x4, 0x0, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0]}) (async, rerun: 64) ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r0, 0x8010671f, &(0x7f0000000200)={&(0x7f0000000180)=""/67, 0x43}) (rerun: 64) ioctl$DRM_IOCTL_IRQ_BUSID(r2, 0xc0106403, &(0x7f0000000240)={0x0, 0x401, 0x1, 0x10000}) (async) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x1) r4 = open_tree(r3, &(0x7f00000002c0)='./file0\x00', 0x8001) (async) ioctl$DRM_IOCTL_DMA(r0, 0xc0406429, &(0x7f0000000400)={r1, 0x8, &(0x7f0000000300)=[0x6, 0x10, 0x9, 0xffff, 0x2, 0x1, 0x2, 0x2], &(0x7f0000000340)=[0xe2], 0x2, 0x8, 0x7, &(0x7f0000000380)=[0x5, 0x9, 0x8000, 0x4, 0x9bb, 0x8, 0xfffffffb, 0x2], &(0x7f00000003c0)=[0x400, 0x9, 0x8, 0x6, 0xfff, 0x8, 0x315f]}) sendmsg$IPSET_CMD_FLUSH(r4, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x60, 0x4, 0x6, 0x301, 0x0, 0x0, {0x5, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x60}, 0x1, 0x0, 0x0, 0x20000000}, 0xfd40fc349a1b2dd6) (async) ioctl$F2FS_IOC_FLUSH_DEVICE(r4, 0x4008f50a, &(0x7f0000000580)={0x7, 0x1}) (async) syz_open_dev$radio(&(0x7f00000005c0), 0x3, 0x2) (async) r5 = signalfd4(r4, &(0x7f0000000600)={[0xfffffffffffffff7]}, 0x8, 0x0) ioctl$DRM_IOCTL_RES_CTX(r5, 0xc0106426, &(0x7f0000000680)={0x2, &(0x7f0000000640)=[{}, {}]}) (async) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r5, 0x84, 0x71, &(0x7f00000006c0), 0x8) (async, rerun: 32) ioctl$IOCTL_VMCI_SET_NOTIFY(r4, 0x7cb, &(0x7f0000000700)={0x2, 0x1, 0x10000}) (rerun: 32) r6 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0) ioctl$VIDIOC_S_EXT_CTRLS(r6, 0xc0205648, &(0x7f00000007c0)={0xa30000, 0x37d3, 0x79e8, r4, 0x0, &(0x7f0000000780)={0x9909cd, 0x10000, '\x00', @ptr=0x7}}) (async) setsockopt$IP_VS_SO_SET_EDIT(r4, 0x0, 0x483, &(0x7f0000000800)={0x0, @dev={0xac, 0x14, 0x14, 0x1e}, 0x4e21, 0x4, 'sed\x00', 0x27, 0x8054, 0x59}, 0x2c) r7 = openat$cgroup_ro(r5, &(0x7f0000000840)='memory.numa_stat\x00', 0x0, 0x0) ioctl$FIBMAP(r7, 0x1, &(0x7f0000000880)) (async) syz_open_dev$ttys(0xc, 0x2, 0x0) socket(0x26, 0x4, 0x5) (async) getsockopt$inet_pktinfo(r4, 0x0, 0x8, &(0x7f00000008c0)={0x0, @dev, @multicast2}, &(0x7f0000000900)=0xc) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81f8943c, &(0x7f0000000940)={0x0, ""/256, 0x0}) ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000000b40)={{r8, 0x81, 0x2, 0x9c, 0x5, 0x1, 0x4, 0x4, 0x1, 0x4, 0xffc00000, 0x3, 0x4, 0x6}}) (async) openat$bsg(0xffffffffffffff9c, &(0x7f0000001b40), 0x0, 0x0) (async) ioctl$VT_RELDISP(r7, 0x5605) ioctl$sock_inet_SIOCGIFDSTADDR(0xffffffffffffffff, 0x8917, &(0x7f0000001bc0)={'team_slave_0\x00', {0x2, 0x0, @initdev}}) 1.260898787s ago: executing program 3 (id=100): socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) creat(&(0x7f0000000040)='./file0\x00', 0x140) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r2, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15) write$P9_RLERRORu(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="5300000007000046009d40ed", @ANYRES64], 0x53) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x2004000, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}}) setsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000180)={0x0, 0x9, 0x0, 0x4}, 0x10) syz_usb_connect$cdc_ecm(0x3, 0x55, &(0x7f0000000040)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x43, 0x1, 0x1, 0x3, 0x20, 0x2, [{{0x9, 0x4, 0x0, 0x2, 0x2, 0x2, 0x6, 0x0, 0x1, {{0x7, 0x24, 0x6, 0x0, 0x0, "f4d0"}, {0x5, 0x24, 0x0, 0x6}, {0xd, 0x24, 0xf, 0x1, 0x2, 0x2, 0xcc4, 0x8}, [@ncm={0x6, 0x24, 0x1a, 0x4}]}, {[], {{0x9, 0x5, 0x82, 0x2, 0x40, 0x2, 0x8, 0x75}}, {{0x9, 0x5, 0x3, 0x2, 0x0, 0xcd, 0x7, 0x3}}}}}]}}]}}, 0x0) setsockopt$MRT_ADD_MFC_PROXY(0xffffffffffffffff, 0x0, 0xd2, &(0x7f0000000040)={@dev={0xac, 0x14, 0x14, 0x19}, @empty, 0x2, "4f6fb4d1af0f724e6118ecfbac0200843af297baebb0efa284da1403011a00", 0x0, 0x4, 0x81, 0x81}, 0x3c) r3 = socket$kcm(0x10, 0x2, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newtaction={0x48, 0x30, 0x53b, 0x0, 0x0, {0x9}, [{0x34, 0x1, [@m_sample={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x4, {0x3}}}}]}]}, 0x48}}, 0x0) sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003f000b05d25a806c8c6394f90324fc60100002000a000300053582c137153e3704020180fc0b09000c00", 0x33fe0}], 0x1}, 0x0) ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000400)={0xf0f020}) 1.25966541s ago: executing program 2 (id=102): syz_usb_connect$hid(0x1, 0xfffffffffffffe61, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x518, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xa0, 0x0, [{{0x9, 0x4, 0x0, 0xfc, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0xfd, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x400, 0x9, 0x0, 0x1d}}, [{{0x9, 0x5, 0x2, 0x3, 0x400, 0x8, 0x7, 0x3}}]}}}]}}]}}, 0x0) 869.441918ms ago: executing program 1 (id=108): socket$kcm(0x2, 0x1000000000000005, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r2}, 0x10) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) socket$unix(0x1, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='afs_cb_break\x00', r2}, 0x18) socket$nl_route(0x10, 0x3, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x25dfdbff, {}, [@NHA_OIF={0x8}]}, 0x20}}, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000400)={@map=r0, 0x11, 0x1, 0x9, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7, 0x0, &(0x7f00000001c0)=[0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000003c0)=[0x0, 0x0], 0x0}, 0x40) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000004c0)={r1, 0x0, 0x25, 0x1, @val=@tcx={@void, @value=r2, @void, @void, r5}}, 0x1c) bind$x25(r3, &(0x7f0000000100), 0x12) socket$unix(0x1, 0x2, 0x0) socket$unix(0x1, 0x2, 0x0) socket$can_bcm(0x1d, 0x2, 0x2) socket(0x10, 0x3, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) unshare(0x6a040000) mmap(&(0x7f00002ad000/0xc00000)=nil, 0xc00000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) r7 = socket$netlink(0x10, 0x3, 0x0) r8 = gettid() sendmsg$nl_route(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000005f00)=ANY=[@ANYBLOB="2800000010000100"/20, @ANYRES32=r6, @ANYBLOB="6d3082610000000008001300", @ANYRES32=r8], 0x28}, 0x1, 0x0, 0x0, 0x4000004}, 0x0) 521.047312ms ago: executing program 0 (id=110): r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000080)={0x800, 0xfffffffffffff0a3, 0xffffffffffffff00}) socket$inet_tcp(0x2, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e21, 0x8f, @remote, 0x6}, 0x1c) r1 = socket$inet6_udp(0xa, 0x2, 0x0) bind$inet6(r1, &(0x7f0000000000)={0xa, 0xe22, 0x0, @private0}, 0x1c) r2 = getpgrp(0xffffffffffffffff) r3 = syz_open_procfs$pagemap(r2, &(0x7f0000000100)) ioctl$PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f00000001c0)={0x60, 0x6, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, 0x9, &(0x7f0000000140), 0x0, 0x7, 0x30, 0x0, 0x22, 0x40}) syz_emit_ethernet(0x7e, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0, @ANYRESDEC=r0], 0x0) 520.897829ms ago: executing program 0 (id=111): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000100), r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r2, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000040)=ANY=[@ANYBLOB="76901a2b0e01775400f8ff", @ANYRES16=r3, @ANYBLOB="01000000000000000000460000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008008e00010000000c008f0000000000000000000c0090000000000000000000"], 0x54}}, 0x0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000001ec0)={0x0, 0x0, &(0x7f0000001e80)={&(0x7f0000000000)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000001000000080001000700000008000200020000002c0004800500030002"], 0x50}}, 0x0) 515.641839ms ago: executing program 1 (id=112): r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) bind$bt_sco(r0, &(0x7f0000000000)={0x1f, @none}, 0x8) setsockopt$bt_BT_VOICE(r0, 0x112, 0x13, 0x0, 0x0) set_mempolicy(0x4005, &(0x7f0000000040)=0x1001, 0x4) r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x103100, 0x0) ioctl$DVD_READ_STRUCT(r1, 0x5392, &(0x7f0000000880)=@physical={0x0, 0x0, [{0x9, 0x9, 0x2, 0x4, 0x6, 0x1, 0x2, 0x2, 0x1, 0x0, 0xfffffff9, 0x188, 0x4}, {0x6, 0x4, 0x8, 0xf, 0x3, 0x0, 0x2, 0x0, 0x1, 0x0, 0x9fd, 0x8, 0x1000}, {0xd, 0x8, 0xa, 0xe, 0x7, 0x0, 0x0, 0xe, 0x5, 0x0, 0x8000, 0x1, 0x4}, {0x3, 0x6, 0x2, 0x7, 0x0, 0x0, 0x0, 0xf, 0x7, 0x1, 0xf83, 0x5, 0x2}]}) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x1000000) 450.261859ms ago: executing program 0 (id=113): r0 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x1, 0x40) ioctl$SNDRV_PCM_IOCTL_HW_PARAMS_OLD(r0, 0xc1004111, &(0x7f0000000140)={0x2, [0x4c, 0x7ff, 0x5], [{0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {0x4}]}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r2 = socket(0x400000000010, 0x3, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1, 0x1000}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettfilter={0x24, 0x2e, 0x121, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, {0x2, 0x9}, {0x4, 0xfff1}, {0x7, 0xc}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000090}, 0x4041080) mount$cgroup(0x0, &(0x7f0000000600)='.\x00', &(0x7f0000000640), 0x2008000, &(0x7f0000000e00)={[{@none}, {}]}) 361.864404ms ago: executing program 1 (id=114): r0 = openat2(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup\x00', &(0x7f0000000100)={0x80000, 0x20, 0x10}, 0x18) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x12, r0, 0x8000000) syz_open_dev$tty1(0xc, 0x4, 0x4) mount(&(0x7f0000000040)=@sr0, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000080)='ufs\x00', 0x204009, 0x0) 361.513608ms ago: executing program 0 (id=115): mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0) r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x1a6c42) ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f0000001ac0)={r0, 0x0, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1c, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "24431a1e77a68e174f000000000000000010e200"}}) r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'dummy0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x24, 0x25, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0xc, 0x10}, {0xffff, 0x10}}}, 0x24}}, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r2, 0x0) cachestat(r2, &(0x7f0000000040)={0xffff, 0x10}, &(0x7f0000000080), 0x0) r5 = dup(r1) write$UHID_INPUT(r5, &(0x7f0000001c00)={0x8, {"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", 0x1000}}, 0xfffffe38) mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r7 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x401) ioctl$SCSI_IOCTL_SEND_COMMAND(r7, 0x1, &(0x7f0000000840)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x007']) syz_clone(0x100, 0x0, 0x0, 0x0, 0x0, 0x0) mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000) 301.09244ms ago: executing program 1 (id=116): bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) 300.498315ms ago: executing program 1 (id=117): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000007040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000007000)={0x20}, 0x0}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0) getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000240)) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 7) setrlimit(0xf, &(0x7f0000000000)={0x1, 0x5}) 209.446536ms ago: executing program 3 (id=118): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={0xffffffffffffffff, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) ioctl$KVM_RUN(r1, 0xae80, 0x0) 177.335463ms ago: executing program 0 (id=119): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a64000000060a0b0400000000000000000200000038000480340001800b0001006e756d67656e00002400028008000440000000000800014000000008080002400000000608000340000000010900010073797a30000000000900020073797a32"], 0x8c}}, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="04226a07"], 0x6d) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0xe) mlock2(&(0x7f0000247000/0x1000)=nil, 0x1000, 0x0) munlockall() madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17) sendmsg$IPSET_CMD_TEST(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000000b060102000000eb0000000007000002"], 0x14}, 0x1, 0x0, 0x0, 0x48}, 0x4800) 111.170084ms ago: executing program 3 (id=120): socket$kcm(0x2, 0x1000000000000005, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r2}, 0x10) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) socket$unix(0x1, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='afs_cb_break\x00', r2}, 0x18) socket$nl_route(0x10, 0x3, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x25dfdbff, {}, [@NHA_OIF={0x8}]}, 0x20}}, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000400)={@map=r0, 0x11, 0x1, 0x9, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7, 0x0, &(0x7f00000001c0)=[0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000003c0)=[0x0, 0x0], 0x0}, 0x40) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000004c0)={r1, 0x0, 0x25, 0x1, @val=@tcx={@void, @value=r2, @void, @void, r5}}, 0x1c) bind$x25(r3, &(0x7f0000000100), 0x12) socket$unix(0x1, 0x2, 0x0) socket$unix(0x1, 0x2, 0x0) socket$can_bcm(0x1d, 0x2, 0x2) socket(0x10, 0x3, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) unshare(0x6a040000) mmap(&(0x7f00002ad000/0xc00000)=nil, 0xc00000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) r7 = socket$netlink(0x10, 0x3, 0x0) r8 = gettid() sendmsg$nl_route(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000005f00)=ANY=[@ANYBLOB="2800000010000100"/20, @ANYRES32=r6, @ANYBLOB="6d3082610000000008001300", @ANYRES32=r8], 0x28}, 0x1, 0x0, 0x0, 0x4000004}, 0x0) 337.858µs ago: executing program 0 (id=121): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000007040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000007000)={0x20}, 0x0}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0) getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000240)) ioctl$KVM_RUN(r2, 0xae80, 0x18) setrlimit(0xf, &(0x7f0000000000)={0x1, 0x5}) 0s ago: executing program 1 (id=122): munmap(&(0x7f0000000000/0x2000)=nil, 0x2000) r0 = socket$can_j1939(0x1d, 0x2, 0x7) setsockopt$SO_J1939_FILTER(r0, 0x6b, 0x1, &(0x7f0000000440)=[{0x1, 0x1, {0x0, 0xff, 0x2}, {0x1, 0xff, 0x4}, 0x2, 0xfd}], 0x20) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000340), 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000100)={0x2, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000180)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000140)=0xb}) sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x2004001) syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0) syz_emit_vhci(&(0x7f0000000340)=ANY=[@ANYBLOB="043e1f0a00"], 0x22) poll(&(0x7f0000000000)=[{r3, 0x2044}], 0x1, 0x400) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000007040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000007000)={0x20}, 0x0}) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$IPVS_CMD_NEW_DAEMON(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01000400000000000000090000003c000380140002007663616e3000000000000000000000000800030000000000080001000100000014000600ff020000000008000000000000000001"], 0x50}}, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0) getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000240)) ioctl$KVM_RUN(r5, 0xae80, 0x0) setrlimit(0xf, &(0x7f0000000000)={0x1, 0x5}) 0s ago: executing program 0 (id=124): syz_open_dev$dri(&(0x7f0000000340), 0x2, 0x40502) (async) r0 = syz_open_dev$dri(&(0x7f0000000340), 0x2, 0x40502) socket$inet6(0xa, 0x3, 0xfcc3) (async) r1 = socket$inet6(0xa, 0x3, 0xfcc3) setsockopt$inet6_opts(r1, 0x29, 0x37, &(0x7f0000000000)=ANY=[], 0x18) setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, 0x0, 0x0) (async) setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, 0x0, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000100)={0x0, 0x1}) r3 = syz_open_dev$sndctrl(&(0x7f0000000280), 0x20000, 0x800) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r3, 0xc0045540, &(0x7f0000000100)) ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc03064ca, &(0x7f0000000000)={&(0x7f0000000040)=[r2], 0x0, 0x200000000005, 0xfffffffffffffea5, 0xc}) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0) r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000e80), 0x2, 0x0) write$RDMA_USER_CM_CMD_LISTEN(r7, &(0x7f0000000ec0)={0x7, 0x8}, 0x10) (async) write$RDMA_USER_CM_CMD_LISTEN(r7, &(0x7f0000000ec0)={0x7, 0x8}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) getsockname$packet(r6, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14) sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r8, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) (async) sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r8, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) r9 = openat$ptp1(0xffffffffffffff9c, &(0x7f0000000080), 0x28200, 0x0) ioctl$PTP_EXTTS_REQUEST(r9, 0x40103d02, &(0x7f00000000c0)={0xfffffff8, 0xa}) (async) ioctl$PTP_EXTTS_REQUEST(r9, 0x40103d02, &(0x7f00000000c0)={0xfffffff8, 0xa}) socket$nl_netfilter(0x10, 0x3, 0xc) (async) r10 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETTABLE(r10, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x3c, 0x1, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0xa}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x40000c0) sendmsg$nl_route_sched(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800) (async) sendmsg$nl_route_sched(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800) r11 = socket$netlink(0x10, 0x3, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x2, &(0x7f0000000200)={0x5, &(0x7f0000000180)=[{0xdd, 0x9, 0x1, 0x800}, {0x6d9d, 0x14, 0x6, 0x8}, {0xf, 0x4d, 0x3, 0x7}, {0x6, 0x35, 0xd, 0x9}, {0x1ffc, 0x7, 0xf4, 0x6}]}) (async) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x2, &(0x7f0000000200)={0x5, &(0x7f0000000180)=[{0xdd, 0x9, 0x1, 0x800}, {0x6d9d, 0x14, 0x6, 0x8}, {0xf, 0x4d, 0x3, 0x7}, {0x6, 0x35, 0xd, 0x9}, {0x1ffc, 0x7, 0xf4, 0x6}]}) socket$nl_route(0x10, 0x3, 0x0) bind$netlink(r11, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@delchain={0x34, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0xffffffffffffff92}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0) kernel console output (not intermixed with test programs): [ 38.148585][ T40] audit: type=1400 audit(1750199434.132:61): avc: denied { siginh } for pid=5842 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 Warning: Permanently added '[localhost]:61286' (ED25519) to the list of known hosts. [ 39.054353][ T40] audit: type=1400 audit(1750199435.052:62): avc: denied { name_bind } for pid=5849 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 39.070621][ T40] audit: type=1400 audit(1750199435.062:63): avc: denied { write } for pid=5850 comm="sh" path="pipe:[5987]" dev="pipefs" ino=5987 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1 [ 39.084788][ T40] audit: type=1400 audit(1750199435.082:64): avc: denied { execute } for pid=5850 comm="sh" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 39.091546][ T40] audit: type=1400 audit(1750199435.082:65): avc: denied { execute_no_trans } for pid=5850 comm="sh" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 41.116625][ T40] audit: type=1400 audit(1750199437.112:66): avc: denied { mounton } for pid=5850 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 41.121388][ T5850] cgroup: Unknown subsys name 'net' [ 41.295152][ T5850] cgroup: Unknown subsys name 'cpuset' [ 41.299075][ T5850] cgroup: Unknown subsys name 'rlimit' [ 41.520491][ T5891] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 42.195746][ T5850] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 45.273960][ T40] kauditd_printk_skb: 13 callbacks suppressed [ 45.273971][ T40] audit: type=1400 audit(1750199441.272:80): avc: denied { execmem } for pid=5931 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 45.453395][ T40] audit: type=1400 audit(1750199441.452:82): avc: denied { create } for pid=5934 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 45.459490][ T40] audit: type=1400 audit(1750199441.452:81): avc: denied { create } for pid=5935 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 45.466189][ T40] audit: type=1400 audit(1750199441.452:83): avc: denied { read write } for pid=5934 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1292 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 45.475068][ T40] audit: type=1400 audit(1750199441.452:84): avc: denied { read write } for pid=5935 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1292 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 45.482541][ T40] audit: type=1400 audit(1750199441.452:85): avc: denied { open } for pid=5934 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1292 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 45.489796][ T40] audit: type=1400 audit(1750199441.452:86): avc: denied { open } for pid=5935 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1292 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 45.493441][ T5944] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 45.497250][ T40] audit: type=1400 audit(1750199441.462:87): avc: denied { ioctl } for pid=5934 comm="syz-executor" path="socket:[2852]" dev="sockfs" ino=2852 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 45.499292][ T5945] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 45.501145][ T5944] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 45.501576][ T5944] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 45.501863][ T5944] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 45.502068][ T5944] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 45.502849][ T5944] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 45.503380][ T5944] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 45.503780][ T5944] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 45.504081][ T5944] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 45.505437][ T5299] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 45.506273][ T5946] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 45.511568][ T5299] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 45.520250][ T40] audit: type=1400 audit(1750199441.462:88): avc: denied { ioctl } for pid=5935 comm="syz-executor" path="socket:[891]" dev="sockfs" ino=891 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 45.522980][ T5299] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 45.524562][ T40] audit: type=1400 audit(1750199441.502:89): avc: denied { read } for pid=5934 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 45.524617][ T5946] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 45.526862][ T5946] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 45.527184][ T5299] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 45.527678][ T5299] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 45.562752][ T5946] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 45.572380][ T5946] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 45.756666][ T5934] chnl_net:caif_netlink_parms(): no params data found [ 45.813425][ T5947] chnl_net:caif_netlink_parms(): no params data found [ 45.823182][ T5940] chnl_net:caif_netlink_parms(): no params data found [ 45.914241][ T5934] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.917042][ T5934] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.919468][ T5934] bridge_slave_0: entered allmulticast mode [ 45.922578][ T5934] bridge_slave_0: entered promiscuous mode [ 45.954297][ T5934] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.956587][ T5934] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.958830][ T5934] bridge_slave_1: entered allmulticast mode [ 45.961530][ T5934] bridge_slave_1: entered promiscuous mode [ 46.037911][ T5947] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.040747][ T5947] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.043817][ T5947] bridge_slave_0: entered allmulticast mode [ 46.046961][ T5947] bridge_slave_0: entered promiscuous mode [ 46.050440][ T5947] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.055109][ T5947] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.057987][ T5947] bridge_slave_1: entered allmulticast mode [ 46.061123][ T5947] bridge_slave_1: entered promiscuous mode [ 46.077033][ T5935] chnl_net:caif_netlink_parms(): no params data found [ 46.087812][ T5934] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.135192][ T5940] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.137429][ T5940] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.140061][ T5940] bridge_slave_0: entered allmulticast mode [ 46.143361][ T5940] bridge_slave_0: entered promiscuous mode [ 46.149563][ T5940] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.151900][ T5940] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.154205][ T5940] bridge_slave_1: entered allmulticast mode [ 46.156773][ T5940] bridge_slave_1: entered promiscuous mode [ 46.160567][ T5934] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.164890][ T5947] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.170020][ T5947] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.247708][ T5940] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.286336][ T5940] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.291109][ T5934] team0: Port device team_slave_0 added [ 46.295272][ T5947] team0: Port device team_slave_0 added [ 46.315404][ T5934] team0: Port device team_slave_1 added [ 46.318242][ T5947] team0: Port device team_slave_1 added [ 46.418400][ T5934] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.420617][ T5934] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.428745][ T5934] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.432799][ T5935] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.435045][ T5935] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.437268][ T5935] bridge_slave_0: entered allmulticast mode [ 46.439831][ T5935] bridge_slave_0: entered promiscuous mode [ 46.445435][ T5940] team0: Port device team_slave_0 added [ 46.447830][ T5935] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.450030][ T5935] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.452526][ T5935] bridge_slave_1: entered allmulticast mode [ 46.455637][ T5935] bridge_slave_1: entered promiscuous mode [ 46.458598][ T5947] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.460840][ T5947] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.468922][ T5947] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.473206][ T5947] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.475382][ T5947] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.484126][ T5947] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.488171][ T5934] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.490393][ T5934] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.498804][ T5934] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.505037][ T5940] team0: Port device team_slave_1 added [ 46.542153][ T5935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.573032][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.575253][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.583445][ T5940] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.588902][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.591588][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.601748][ T5940] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.607052][ T5935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.682300][ T5947] hsr_slave_0: entered promiscuous mode [ 46.684569][ T5947] hsr_slave_1: entered promiscuous mode [ 46.711098][ T5935] team0: Port device team_slave_0 added [ 46.729074][ T5934] hsr_slave_0: entered promiscuous mode [ 46.731322][ T5934] hsr_slave_1: entered promiscuous mode [ 46.733488][ T5934] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 46.735960][ T5934] Cannot create hsr debugfs directory [ 46.739564][ T5935] team0: Port device team_slave_1 added [ 46.887374][ T5940] hsr_slave_0: entered promiscuous mode [ 46.889616][ T5940] hsr_slave_1: entered promiscuous mode [ 46.891651][ T5940] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 46.894082][ T5940] Cannot create hsr debugfs directory [ 46.915392][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.918068][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.926760][ T5935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.930923][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.933219][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.942646][ T5935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.121396][ T5935] hsr_slave_0: entered promiscuous mode [ 47.124822][ T5935] hsr_slave_1: entered promiscuous mode [ 47.127509][ T5935] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 47.129991][ T5935] Cannot create hsr debugfs directory [ 47.263486][ T5947] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 47.287532][ T5947] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 47.295038][ T5947] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 47.315659][ T5947] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 47.341712][ T5934] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 47.350974][ T5934] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 47.355299][ T5934] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 47.364307][ T5934] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 47.394830][ T5940] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 47.399956][ T5940] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 47.405376][ T5940] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 47.409560][ T5940] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 47.495234][ T5935] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 47.499436][ T5935] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 47.505569][ T5935] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 47.510839][ T5935] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 47.541516][ T5947] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.553405][ T63] Bluetooth: hci2: command tx timeout [ 47.553537][ T5946] Bluetooth: hci3: command tx timeout [ 47.554974][ T5937] Bluetooth: hci1: command tx timeout [ 47.582785][ T5947] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.591305][ T5940] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.599175][ T5934] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.603680][ T1149] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.606160][ T1149] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.629936][ T5940] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.637992][ T5934] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.641973][ T1149] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.642352][ T5946] Bluetooth: hci0: command tx timeout [ 47.644317][ T1149] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.661750][ T1149] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.664096][ T1149] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.669115][ T1149] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.671364][ T1149] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.675249][ T1149] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.677456][ T1149] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.680932][ T1149] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.683366][ T1149] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.748220][ T5935] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.778027][ T5935] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.789146][ T60] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.791416][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.800644][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.803697][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.864518][ T5940] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.888316][ T5934] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.901671][ T5940] veth0_vlan: entered promiscuous mode [ 47.914085][ T5940] veth1_vlan: entered promiscuous mode [ 47.921210][ T5947] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.939068][ T5940] veth0_macvtap: entered promiscuous mode [ 47.949803][ T5940] veth1_macvtap: entered promiscuous mode [ 47.962927][ T5934] veth0_vlan: entered promiscuous mode [ 47.969831][ T5947] veth0_vlan: entered promiscuous mode [ 47.978746][ T5947] veth1_vlan: entered promiscuous mode [ 47.984357][ T5935] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 47.987908][ T5934] veth1_vlan: entered promiscuous mode [ 47.995009][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.006602][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.019782][ T5940] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.023090][ T5940] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.025803][ T5940] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.028526][ T5940] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.041806][ T5947] veth0_macvtap: entered promiscuous mode [ 48.049158][ T5947] veth1_macvtap: entered promiscuous mode [ 48.059188][ T5934] veth0_macvtap: entered promiscuous mode [ 48.071938][ T5934] veth1_macvtap: entered promiscuous mode [ 48.083826][ T5947] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.094195][ T5935] veth0_vlan: entered promiscuous mode [ 48.103689][ T5934] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.107811][ T5947] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.123182][ T5935] veth1_vlan: entered promiscuous mode [ 48.126425][ T5934] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.129797][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.130888][ T5947] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.134974][ T5947] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.137329][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.139966][ T5947] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.145585][ T5947] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.153797][ T5934] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.156522][ T5934] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.159195][ T5934] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.161905][ T5934] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.188382][ T1149] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.191009][ T1149] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.217978][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.220539][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.226276][ T5935] veth0_macvtap: entered promiscuous mode [ 48.236743][ T5940] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 48.237454][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.244947][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.249288][ T5935] veth1_macvtap: entered promiscuous mode [ 48.273721][ T1149] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.276236][ T1149] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.278828][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.287821][ T6021] netlink: 666 bytes leftover after parsing attributes in process `syz.1.2'. [ 48.295044][ T1149] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.297329][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.297509][ T1149] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.307864][ T5935] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.310675][ T5935] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.314285][ T5935] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.317000][ T5935] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.325615][ T6021] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2'. [ 48.365337][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.367821][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.387269][ T73] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.389820][ T73] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.453586][ T6037] /dev/sg0: Can't lookup blockdev [ 48.458377][ T6037] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6'. [ 48.466783][ T6025] Zero length message leads to an empty skb [ 48.486784][ T6040] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 48.568161][ T6050] overlay: Unknown parameter 'dont_appraise' [ 48.591764][ T6056] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12'. [ 48.595434][ T6056] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12'. [ 48.660196][ T6069] netlink: 20 bytes leftover after parsing attributes in process `syz.2.16'. [ 48.683551][ T6048] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10'. [ 48.699058][ T6071] Invalid ELF header magic: != ELF [ 48.719831][ T6071] block device autoloading is deprecated and will be removed. [ 48.723746][ T6071] syz.3.17: attempt to access beyond end of device [ 48.723746][ T6071] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 48.790046][ T6081] input: syz1 as /devices/virtual/input/input5 [ 48.803855][ T837] IPVS: starting estimator thread 0... [ 48.869743][ T6089] Cannot find del_set index 4 as target [ 48.892247][ T6083] IPVS: using max 42 ests per chain, 100800 per kthread [ 49.216931][ T6118] overlay: filesystem on ./bus is read-only [ 49.498174][ T6137] FAULT_INJECTION: forcing a failure. [ 49.498174][ T6137] name failslab, interval 1, probability 0, space 0, times 1 [ 49.503073][ T6137] CPU: 1 UID: 0 PID: 6137 Comm: syz.0.41 Not tainted 6.16.0-rc2-syzkaller-00045-g4663747812d1 #0 PREEMPT(full) [ 49.503088][ T6137] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 49.503095][ T6137] Call Trace: [ 49.503099][ T6137] [ 49.503103][ T6137] dump_stack_lvl+0x16c/0x1f0 [ 49.503123][ T6137] should_fail_ex+0x512/0x640 [ 49.503146][ T6137] ? fs_reclaim_acquire+0xae/0x150 [ 49.503159][ T6137] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 49.503174][ T6137] should_failslab+0xc2/0x120 [ 49.503190][ T6137] __kmalloc_noprof+0xd2/0x510 [ 49.503207][ T6137] tomoyo_realpath_from_path+0xc2/0x6e0 [ 49.503223][ T6137] ? tomoyo_profile+0x47/0x60 [ 49.503242][ T6137] tomoyo_path_number_perm+0x245/0x580 [ 49.503254][ T6137] ? tomoyo_path_number_perm+0x237/0x580 [ 49.503268][ T6137] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 49.503282][ T6137] ? find_held_lock+0x2b/0x80 [ 49.503308][ T6137] ? find_held_lock+0x2b/0x80 [ 49.503320][ T6137] ? hook_file_ioctl_common+0x145/0x410 [ 49.503333][ T6137] ? __fget_files+0x20e/0x3c0 [ 49.503351][ T6137] security_file_ioctl+0x9b/0x240 [ 49.503367][ T6137] __x64_sys_ioctl+0xb7/0x210 [ 49.503380][ T6137] do_syscall_64+0xcd/0x4c0 [ 49.503398][ T6137] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 49.503409][ T6137] RIP: 0033:0x7f373f18e929 [ 49.503417][ T6137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 49.503427][ T6137] RSP: 002b:00007f374006f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 49.503437][ T6137] RAX: ffffffffffffffda RBX: 00007f373f3b5fa0 RCX: 00007f373f18e929 [ 49.503444][ T6137] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 49.503450][ T6137] RBP: 00007f374006f090 R08: 0000000000000000 R09: 0000000000000000 [ 49.503456][ T6137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 49.503462][ T6137] R13: 0000000000000000 R14: 00007f373f3b5fa0 R15: 00007fffabf11a38 [ 49.503475][ T6137] [ 49.503479][ T6137] ERROR: Out of memory at tomoyo_realpath_from_path. [ 49.632217][ T5946] Bluetooth: hci3: command tx timeout [ 49.632367][ T63] Bluetooth: hci2: command tx timeout [ 49.632928][ T837] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 49.661942][ T6144] netlink: 10 bytes leftover after parsing attributes in process `syz.1.43'. [ 49.712221][ T63] Bluetooth: hci0: command tx timeout [ 49.784658][ T837] usb 7-1: config 0 has no interfaces? [ 49.786411][ T837] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 49.789295][ T837] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 49.796228][ T837] usb 7-1: config 0 descriptor?? [ 49.815622][ T6153] IPVS: sync thread started: state = MASTER, mcast_ifn = wlan1, syncid = 0, id = 0 [ 50.003200][ T837] usb 7-1: USB disconnect, device number 2 [ 50.384580][ T40] kauditd_printk_skb: 110 callbacks suppressed [ 50.384595][ T40] audit: type=1400 audit(1750199446.382:200): avc: denied { setopt } for pid=6154 comm="syz.3.47" lport=20002 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 50.427425][ T40] audit: type=1400 audit(1750199446.422:201): avc: denied { mount } for pid=6154 comm="syz.3.47" name="/" dev="pipefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 50.469621][ T40] audit: type=1400 audit(1750199446.462:202): avc: denied { read write } for pid=6157 comm="syz.3.48" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 50.471518][ T6158] loop6: detected capacity change from 0 to 524287999 [ 50.476830][ T40] audit: type=1400 audit(1750199446.462:203): avc: denied { open } for pid=6157 comm="syz.3.48" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 50.487598][ T40] audit: type=1400 audit(1750199446.462:204): avc: denied { append } for pid=6157 comm="syz.3.48" name="loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 50.496114][ T40] audit: type=1400 audit(1750199446.482:205): avc: denied { map } for pid=6157 comm="syz.3.48" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 50.504693][ T40] audit: type=1400 audit(1750199446.482:206): avc: denied { execute } for pid=6157 comm="syz.3.48" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 50.543147][ T40] audit: type=1400 audit(1750199446.542:207): avc: denied { read } for pid=6159 comm="syz.2.49" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 50.551243][ T40] audit: type=1400 audit(1750199446.542:208): avc: denied { open } for pid=6159 comm="syz.2.49" path="/dev/autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 50.555996][ T6158] program syz.3.48 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 50.568286][ T40] audit: type=1400 audit(1750199446.542:209): avc: denied { ioctl } for pid=6159 comm="syz.2.49" path="/dev/autofs" dev="devtmpfs" ino=104 ioctlcmd=0x9377 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 50.619809][ T6169] xt_hashlimit: overflow, rate too high: 0 [ 50.672597][ T6171] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 50.813132][ T6186] IPVS: length: 184 != 219219306264 [ 50.937045][ T6209] tun0: tun_chr_ioctl cmd 1074025675 [ 50.938861][ T6209] tun0: persist enabled [ 50.940329][ T6209] tun0: tun_chr_ioctl cmd 1074025675 [ 50.942021][ T6209] tun0: persist enabled [ 50.944090][ T6209] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27210 sclass=netlink_route_socket pid=6209 comm=syz.2.62 [ 50.969830][ T6214] Bluetooth: MGMT ver 1.23 [ 50.976330][ T6214] netlink: 8 bytes leftover after parsing attributes in process `syz.3.64'. [ 50.979322][ T6214] netlink: 244 bytes leftover after parsing attributes in process `syz.3.64'. [ 50.983796][ T6214] team0: No ports can be present during mode change [ 50.986656][ T6214] tipc: Started in network mode [ 50.988384][ T6214] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711 [ 50.990658][ T6214] tipc: Enabled bearer , priority 0 [ 51.063952][ T6229] FAULT_INJECTION: forcing a failure. [ 51.063952][ T6229] name failslab, interval 1, probability 0, space 0, times 0 [ 51.067983][ T6229] CPU: 1 UID: 0 PID: 6229 Comm: syz.3.68 Not tainted 6.16.0-rc2-syzkaller-00045-g4663747812d1 #0 PREEMPT(full) [ 51.068003][ T6229] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 51.068010][ T6229] Call Trace: [ 51.068014][ T6229] [ 51.068018][ T6229] dump_stack_lvl+0x16c/0x1f0 [ 51.068038][ T6229] should_fail_ex+0x512/0x640 [ 51.068053][ T6229] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 51.068067][ T6229] should_failslab+0xc2/0x120 [ 51.068083][ T6229] __kmalloc_cache_noprof+0x6a/0x3e0 [ 51.068095][ T6229] ? __pfx___might_resched+0x10/0x10 [ 51.068109][ T6229] ? vhost_task_create+0xe5/0x2e0 [ 51.068119][ T6229] ? rcu_is_watching+0x12/0xc0 [ 51.068132][ T6229] ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 51.068149][ T6229] ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 51.068168][ T6229] vhost_task_create+0xe5/0x2e0 [ 51.068177][ T6229] ? __pfx_vhost_task_create+0x10/0x10 [ 51.068192][ T6229] ? __pfx_vhost_task_fn+0x10/0x10 [ 51.068208][ T6229] kvm_mmu_post_init_vm+0x1b7/0x370 [ 51.068223][ T6229] kvm_arch_vcpu_ioctl_run+0x66/0x18c0 [ 51.068236][ T6229] ? kvm_vcpu_ioctl+0x14c6/0x1690 [ 51.068252][ T6229] kvm_vcpu_ioctl+0x5eb/0x1690 [ 51.068266][ T6229] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 51.068282][ T6229] ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540 [ 51.068299][ T6229] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 51.068319][ T6229] ? hook_file_ioctl_common+0x145/0x410 [ 51.068334][ T6229] ? selinux_file_ioctl+0x180/0x270 [ 51.068348][ T6229] ? selinux_file_ioctl+0xb4/0x270 [ 51.068363][ T6229] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 51.068376][ T6229] __x64_sys_ioctl+0x18b/0x210 [ 51.068390][ T6229] do_syscall_64+0xcd/0x4c0 [ 51.068407][ T6229] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 51.068418][ T6229] RIP: 0033:0x7f807818e929 [ 51.068427][ T6229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 51.068437][ T6229] RSP: 002b:00007f8078f79038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 51.068447][ T6229] RAX: ffffffffffffffda RBX: 00007f80783b5fa0 RCX: 00007f807818e929 [ 51.068453][ T6229] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 51.068459][ T6229] RBP: 00007f8078f79090 R08: 0000000000000000 R09: 0000000000000000 [ 51.068465][ T6229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 51.068471][ T6229] R13: 0000000000000000 R14: 00007f80783b5fa0 R15: 00007ffc2b39b498 [ 51.068484][ T6229] [ 51.212072][ T6234] Invalid source name [ 51.213519][ T6234] UBIFS error (pid: 6234): cannot open "./file0", error -22 [ 51.510020][ T6256] IPVS: length: 70 != 8 [ 51.512262][ T6256] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 51.514510][ T6256] IPv6: NLM_F_CREATE should be set when creating new route [ 51.517893][ T6256] lo: entered allmulticast mode [ 51.521558][ T6256] tunl0: entered allmulticast mode [ 51.524133][ T6256] gre0: entered allmulticast mode [ 51.529578][ T6256] gretap0: entered allmulticast mode [ 51.535639][ T6256] erspan0: entered allmulticast mode [ 51.539039][ T6256] ip_vti0: entered allmulticast mode [ 51.542065][ T6256] ip6_vti0: entered allmulticast mode [ 51.545320][ T6256] sit0: entered allmulticast mode [ 51.550051][ T6256] ip6tnl0: entered allmulticast mode [ 51.554068][ T6256] ip6gre0: entered allmulticast mode [ 51.557016][ T6256] syz_tun: entered allmulticast mode [ 51.561874][ T6256] ip6gretap0: entered allmulticast mode [ 51.565923][ T6256] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.568503][ T6256] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.572905][ T6256] bridge0: entered allmulticast mode [ 51.576243][ T6256] vcan0: entered allmulticast mode [ 51.579580][ T6256] bond0: entered allmulticast mode [ 51.581515][ T6256] bond_slave_0: entered allmulticast mode [ 51.584139][ T6256] bond_slave_1: entered allmulticast mode [ 51.587435][ T6256] tipc: Resetting bearer [ 51.590515][ T6256] team0: entered allmulticast mode [ 51.592050][ T6256] team_slave_0: entered allmulticast mode [ 51.595168][ T6256] team_slave_1: entered allmulticast mode [ 51.598907][ T6256] dummy0: entered allmulticast mode [ 51.603232][ T6256] caif0: entered allmulticast mode [ 51.604957][ T6256] batadv0: entered allmulticast mode [ 51.608259][ T6256] vxcan0: entered allmulticast mode [ 51.610633][ T6256] vxcan1: entered allmulticast mode [ 51.613109][ T6256] veth0: entered allmulticast mode [ 51.616489][ T6256] veth1: entered allmulticast mode [ 51.620739][ T6256] wg0: entered allmulticast mode [ 51.624079][ T6256] wg1: entered allmulticast mode [ 51.626963][ T6256] wg2: entered allmulticast mode [ 51.629778][ T6256] veth0_to_bridge: entered allmulticast mode [ 51.635053][ T6256] veth1_to_bridge: entered allmulticast mode [ 51.643924][ T6256] veth0_to_bond: entered allmulticast mode [ 51.647939][ T6256] veth1_to_bond: entered allmulticast mode [ 51.652691][ T6256] veth0_to_team: entered allmulticast mode [ 51.657539][ T6256] veth1_to_team: entered allmulticast mode [ 51.664264][ T6256] veth0_to_batadv: entered allmulticast mode [ 51.667347][ T6256] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 51.670056][ T6256] batadv_slave_0: entered allmulticast mode [ 51.673665][ T6256] veth1_to_batadv: entered allmulticast mode [ 51.677027][ T6256] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 51.680288][ T6256] batadv_slave_1: entered allmulticast mode [ 51.684034][ T6256] xfrm0: entered allmulticast mode [ 51.687004][ T6256] veth0_to_hsr: entered allmulticast mode [ 51.689943][ T6256] hsr_slave_0: entered allmulticast mode [ 51.692886][ T6256] veth1_to_hsr: entered allmulticast mode [ 51.695824][ T6256] hsr_slave_1: entered allmulticast mode [ 51.699610][ T6256] hsr0: entered allmulticast mode [ 51.703895][ T6256] veth1_virt_wifi: entered allmulticast mode [ 51.707320][ T6256] veth0_virt_wifi: entered allmulticast mode [ 51.710385][ T6256] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 51.712197][ T63] Bluetooth: hci2: command tx timeout [ 51.712230][ T5946] Bluetooth: hci3: command tx timeout [ 51.713414][ T6256] veth1_vlan: entered allmulticast mode [ 51.721908][ T6256] veth0_vlan: entered allmulticast mode [ 51.728382][ T6256] vlan0: entered allmulticast mode [ 51.730442][ T6256] vlan1: entered allmulticast mode [ 51.733665][ T6256] macvlan0: entered allmulticast mode [ 51.738290][ T6256] macvlan1: entered allmulticast mode [ 51.741978][ T6256] ipvlan0: entered allmulticast mode [ 51.744722][ T6256] ipvlan1: entered allmulticast mode [ 51.747535][ T6256] veth1_macvtap: entered allmulticast mode [ 51.749013][ T6262] FAULT_INJECTION: forcing a failure. [ 51.749013][ T6262] name failslab, interval 1, probability 0, space 0, times 0 [ 51.751551][ T6256] veth0_macvtap: entered allmulticast mode [ 51.754482][ T6262] CPU: 0 UID: 0 PID: 6262 Comm: syz.1.78 Not tainted 6.16.0-rc2-syzkaller-00045-g4663747812d1 #0 PREEMPT(full) [ 51.754498][ T6262] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 51.754505][ T6262] Call Trace: [ 51.754508][ T6262] [ 51.754513][ T6262] dump_stack_lvl+0x16c/0x1f0 [ 51.754532][ T6262] should_fail_ex+0x512/0x640 [ 51.754547][ T6262] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 51.754563][ T6262] should_failslab+0xc2/0x120 [ 51.754579][ T6262] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 51.754593][ T6262] ? copy_process+0x4b6/0x76a0 [ 51.754610][ T6262] copy_process+0x4b6/0x76a0 [ 51.754629][ T6262] ? __pfx_copy_process+0x10/0x10 [ 51.754645][ T6262] ? lockdep_init_map_type+0x5c/0x280 [ 51.754664][ T6262] ? lockdep_init_map_type+0x5c/0x280 [ 51.754681][ T6262] ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 51.754698][ T6262] ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 51.754717][ T6262] vhost_task_create+0x1d2/0x2e0 [ 51.754727][ T6262] ? __pfx_vhost_task_create+0x10/0x10 [ 51.754741][ T6262] ? __pfx_vhost_task_fn+0x10/0x10 [ 51.754758][ T6262] kvm_mmu_post_init_vm+0x1b7/0x370 [ 51.754772][ T6262] kvm_arch_vcpu_ioctl_run+0x66/0x18c0 [ 51.754786][ T6262] ? kvm_vcpu_ioctl+0x14c6/0x1690 [ 51.754801][ T6262] kvm_vcpu_ioctl+0x5eb/0x1690 [ 51.754839][ T6262] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 51.754858][ T6262] ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540 [ 51.754875][ T6262] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 51.754895][ T6262] ? hook_file_ioctl_common+0x145/0x410 [ 51.754909][ T6262] ? selinux_file_ioctl+0x180/0x270 [ 51.754923][ T6262] ? selinux_file_ioctl+0xb4/0x270 [ 51.754938][ T6262] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 51.754951][ T6262] __x64_sys_ioctl+0x18b/0x210 [ 51.754965][ T6262] do_syscall_64+0xcd/0x4c0 [ 51.754982][ T6262] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 51.754993][ T6262] RIP: 0033:0x7fb8ba78e929 [ 51.755001][ T6262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 51.755011][ T6262] RSP: 002b:00007fb8bb633038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 51.755021][ T6262] RAX: ffffffffffffffda RBX: 00007fb8ba9b5fa0 RCX: 00007fb8ba78e929 [ 51.755028][ T6262] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 51.755034][ T6262] RBP: 00007fb8bb633090 R08: 0000000000000000 R09: 0000000000000000 [ 51.755040][ T6262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 51.755046][ T6262] R13: 0000000000000000 R14: 00007fb8ba9b5fa0 R15: 00007ffd27173368 [ 51.755072][ T6262] [ 51.793320][ T63] Bluetooth: hci0: command tx timeout [ 51.848014][ T6256] macvtap0: entered allmulticast mode [ 51.851628][ T6256] macsec0: entered allmulticast mode [ 51.856002][ T6256] geneve0: entered allmulticast mode [ 51.859339][ T6256] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 51.862175][ T6256] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 51.864788][ T6256] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 51.867743][ T6256] geneve1: entered allmulticast mode [ 51.871190][ T6256] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 51.880496][ T6256] netdevsim netdevsim3 netdevsim1: entered allmulticast mode [ 51.884442][ T6256] netdevsim netdevsim3 netdevsim2: entered allmulticast mode [ 51.893553][ T6256] netdevsim netdevsim3 netdevsim3: entered allmulticast mode [ 51.925544][ T6256] mac80211_hwsim hwsim5 wlan0: entered allmulticast mode [ 51.933459][ T6256] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode [ 52.026618][ T24] tipc: Node number set to 11578026 [ 52.080772][ T6286] warning: `syz.1.87' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 52.157322][ T6294] FAULT_INJECTION: forcing a failure. [ 52.157322][ T6294] name failslab, interval 1, probability 0, space 0, times 0 [ 52.160946][ T6294] CPU: 0 UID: 0 PID: 6294 Comm: syz.2.90 Not tainted 6.16.0-rc2-syzkaller-00045-g4663747812d1 #0 PREEMPT(full) [ 52.160960][ T6294] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 52.160967][ T6294] Call Trace: [ 52.160971][ T6294] [ 52.160975][ T6294] dump_stack_lvl+0x16c/0x1f0 [ 52.160994][ T6294] should_fail_ex+0x512/0x640 [ 52.161009][ T6294] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 52.161025][ T6294] should_failslab+0xc2/0x120 [ 52.161041][ T6294] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 52.161055][ T6294] ? copy_process+0x4b6/0x76a0 [ 52.161072][ T6294] copy_process+0x4b6/0x76a0 [ 52.161092][ T6294] ? __pfx_copy_process+0x10/0x10 [ 52.161108][ T6294] ? lockdep_init_map_type+0x5c/0x280 [ 52.161127][ T6294] ? lockdep_init_map_type+0x5c/0x280 [ 52.161144][ T6294] ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 52.161161][ T6294] ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 52.161179][ T6294] vhost_task_create+0x1d2/0x2e0 [ 52.161190][ T6294] ? __pfx_vhost_task_create+0x10/0x10 [ 52.161204][ T6294] ? __pfx_vhost_task_fn+0x10/0x10 [ 52.161221][ T6294] kvm_mmu_post_init_vm+0x1b7/0x370 [ 52.161236][ T6294] kvm_arch_vcpu_ioctl_run+0x66/0x18c0 [ 52.161250][ T6294] ? kvm_vcpu_ioctl+0x14c6/0x1690 [ 52.161265][ T6294] kvm_vcpu_ioctl+0x5eb/0x1690 [ 52.161279][ T6294] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 52.161296][ T6294] ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540 [ 52.161313][ T6294] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 52.161337][ T6294] ? hook_file_ioctl_common+0x145/0x410 [ 52.161351][ T6294] ? selinux_file_ioctl+0x180/0x270 [ 52.161365][ T6294] ? selinux_file_ioctl+0xb4/0x270 [ 52.161380][ T6294] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 52.161394][ T6294] __x64_sys_ioctl+0x18b/0x210 [ 52.161407][ T6294] do_syscall_64+0xcd/0x4c0 [ 52.161424][ T6294] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 52.161435][ T6294] RIP: 0033:0x7fd868d8e929 [ 52.161444][ T6294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 52.161454][ T6294] RSP: 002b:00007fd869b19038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 52.161464][ T6294] RAX: ffffffffffffffda RBX: 00007fd868fb5fa0 RCX: 00007fd868d8e929 [ 52.161471][ T6294] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 52.161477][ T6294] RBP: 00007fd869b19090 R08: 0000000000000000 R09: 0000000000000000 [ 52.161482][ T6294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 52.161488][ T6294] R13: 0000000000000000 R14: 00007fd868fb5fa0 R15: 00007fffc8c29948 [ 52.161502][ T6294] [ 52.236273][ C0] vkms_vblank_simulate: vblank timer overrun [ 52.270936][ T6306] xt_cluster: you have exceeded the maximum number of cluster nodes (4095 > 32) [ 52.306038][ T6310] syz.0.94 uses obsolete (PF_INET,SOCK_PACKET) [ 52.329439][ T6318] usb usb8: usbfs: process 6318 (syz.2.96) did not claim interface 0 before use [ 52.445726][ T6330] 9pnet: p9_errstr2errno: server reported unknown error @ [ 52.479442][ T6339] ======================================================= [ 52.479442][ T6339] WARNING: The mand mount option has been deprecated and [ 52.479442][ T6339] and is ignored by this kernel. Remove the mand [ 52.479442][ T6339] option from the mount to silence this warning. [ 52.479442][ T6339] ======================================================= [ 52.501399][ T6339] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 52.595267][ T6347] FAULT_INJECTION: forcing a failure. [ 52.595267][ T6347] name failslab, interval 1, probability 0, space 0, times 0 [ 52.599391][ T6347] CPU: 0 UID: 0 PID: 6347 Comm: syz.0.105 Not tainted 6.16.0-rc2-syzkaller-00045-g4663747812d1 #0 PREEMPT(full) [ 52.599409][ T6347] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 52.599418][ T6347] Call Trace: [ 52.599425][ T6347] [ 52.599430][ T6347] dump_stack_lvl+0x16c/0x1f0 [ 52.599450][ T6347] should_fail_ex+0x512/0x640 [ 52.599465][ T6347] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 52.599482][ T6347] should_failslab+0xc2/0x120 [ 52.599498][ T6347] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 52.599511][ T6347] ? __pfx___might_resched+0x10/0x10 [ 52.599525][ T6347] ? alloc_vmap_area+0x645/0x29c0 [ 52.599544][ T6347] alloc_vmap_area+0x645/0x29c0 [ 52.599567][ T6347] ? __pfx_alloc_vmap_area+0x10/0x10 [ 52.599593][ T6347] __get_vm_area_node+0x1ca/0x330 [ 52.599607][ T6347] __vmalloc_node_range_noprof+0x271/0x14b0 [ 52.599619][ T6347] ? vhost_task_create+0x1d2/0x2e0 [ 52.599629][ T6347] ? local_lock_release+0x99/0x140 [ 52.599649][ T6347] ? vhost_task_create+0x1d2/0x2e0 [ 52.599659][ T6347] ? rcu_read_unlock+0x17/0x60 [ 52.599677][ T6347] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 52.599688][ T6347] ? __memcg_slab_post_alloc_hook+0x4a0/0x960 [ 52.599710][ T6347] ? vhost_task_create+0x1d2/0x2e0 [ 52.599719][ T6347] __vmalloc_node_noprof+0xad/0xf0 [ 52.599730][ T6347] ? vhost_task_create+0x1d2/0x2e0 [ 52.599742][ T6347] copy_process+0x2c70/0x76a0 [ 52.599762][ T6347] ? __pfx_copy_process+0x10/0x10 [ 52.599778][ T6347] ? lockdep_init_map_type+0x5c/0x280 [ 52.599802][ T6347] ? lockdep_init_map_type+0x5c/0x280 [ 52.599819][ T6347] ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 52.599835][ T6347] ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 52.599862][ T6347] vhost_task_create+0x1d2/0x2e0 [ 52.599873][ T6347] ? __pfx_vhost_task_create+0x10/0x10 [ 52.599887][ T6347] ? __pfx_vhost_task_fn+0x10/0x10 [ 52.599904][ T6347] kvm_mmu_post_init_vm+0x1b7/0x370 [ 52.599919][ T6347] kvm_arch_vcpu_ioctl_run+0x66/0x18c0 [ 52.599933][ T6347] ? kvm_vcpu_ioctl+0x14c6/0x1690 [ 52.599948][ T6347] kvm_vcpu_ioctl+0x5eb/0x1690 [ 52.599963][ T6347] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 52.599979][ T6347] ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540 [ 52.599996][ T6347] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 52.600016][ T6347] ? hook_file_ioctl_common+0x145/0x410 [ 52.600030][ T6347] ? selinux_file_ioctl+0x180/0x270 [ 52.600044][ T6347] ? selinux_file_ioctl+0xb4/0x270 [ 52.600059][ T6347] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 52.600073][ T6347] __x64_sys_ioctl+0x18b/0x210 [ 52.600086][ T6347] do_syscall_64+0xcd/0x4c0 [ 52.600109][ T6347] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 52.600120][ T6347] RIP: 0033:0x7f373f18e929 [ 52.600129][ T6347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 52.600140][ T6347] RSP: 002b:00007f374006f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 52.600150][ T6347] RAX: ffffffffffffffda RBX: 00007f373f3b5fa0 RCX: 00007f373f18e929 [ 52.600157][ T6347] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 52.600163][ T6347] RBP: 00007f374006f090 R08: 0000000000000000 R09: 0000000000000000 [ 52.600169][ T6347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 52.600175][ T6347] R13: 0000000000000000 R14: 00007f373f3b5fa0 R15: 00007fffabf11a38 [ 52.600188][ T6347] [ 52.600306][ T6347] syz.0.105: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) [ 52.683538][ T63] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 52.687536][ T6347] ,cpuset= [ 52.690425][ T63] Bluetooth: hci1: Injecting HCI hardware error event [ 52.698206][ T6347] / [ 52.700741][ T63] Bluetooth: hci1: hardware error 0x00 [ 52.713829][ T6347] ,mems_allowed=0-1 [ 52.729877][ T1027] usb 7-1: new low-speed USB device number 3 using dummy_hcd [ 52.732808][ T6347] [ 52.738779][ T6347] CPU: 0 UID: 0 PID: 6347 Comm: syz.0.105 Not tainted 6.16.0-rc2-syzkaller-00045-g4663747812d1 #0 PREEMPT(full) [ 52.738794][ T6347] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 52.738819][ T6347] Call Trace: [ 52.738825][ T6347] [ 52.738830][ T6347] dump_stack_lvl+0x16c/0x1f0 [ 52.738850][ T6347] warn_alloc+0x248/0x3a0 [ 52.738866][ T6347] ? __pfx_warn_alloc+0x10/0x10 [ 52.738881][ T6347] ? kfree+0x2b4/0x4d0 [ 52.738895][ T6347] ? __get_vm_area_node+0x208/0x330 [ 52.738912][ T6347] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 52.738924][ T6347] ? local_lock_release+0x99/0x140 [ 52.738944][ T6347] ? vhost_task_create+0x1d2/0x2e0 [ 52.738956][ T6347] ? rcu_read_unlock+0x17/0x60 [ 52.738974][ T6347] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 52.738985][ T6347] ? __memcg_slab_post_alloc_hook+0x4a0/0x960 [ 52.739006][ T6347] ? vhost_task_create+0x1d2/0x2e0 [ 52.739016][ T6347] __vmalloc_node_noprof+0xad/0xf0 [ 52.739027][ T6347] ? vhost_task_create+0x1d2/0x2e0 [ 52.739039][ T6347] copy_process+0x2c70/0x76a0 [ 52.739059][ T6347] ? __pfx_copy_process+0x10/0x10 [ 52.739075][ T6347] ? lockdep_init_map_type+0x5c/0x280 [ 52.739098][ T6347] ? lockdep_init_map_type+0x5c/0x280 [ 52.739115][ T6347] ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 52.739132][ T6347] ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 52.739150][ T6347] vhost_task_create+0x1d2/0x2e0 [ 52.739161][ T6347] ? __pfx_vhost_task_create+0x10/0x10 [ 52.739175][ T6347] ? __pfx_vhost_task_fn+0x10/0x10 [ 52.739192][ T6347] kvm_mmu_post_init_vm+0x1b7/0x370 [ 52.739207][ T6347] kvm_arch_vcpu_ioctl_run+0x66/0x18c0 [ 52.739221][ T6347] ? kvm_vcpu_ioctl+0x14c6/0x1690 [ 52.739237][ T6347] kvm_vcpu_ioctl+0x5eb/0x1690 [ 52.739251][ T6347] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 52.739268][ T6347] ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540 [ 52.739286][ T6347] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 52.739306][ T6347] ? hook_file_ioctl_common+0x145/0x410 [ 52.739320][ T6347] ? selinux_file_ioctl+0x180/0x270 [ 52.739334][ T6347] ? selinux_file_ioctl+0xb4/0x270 [ 52.739349][ T6347] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 52.739362][ T6347] __x64_sys_ioctl+0x18b/0x210 [ 52.739376][ T6347] do_syscall_64+0xcd/0x4c0 [ 52.739394][ T6347] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 52.739405][ T6347] RIP: 0033:0x7f373f18e929 [ 52.739414][ T6347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 52.739424][ T6347] RSP: 002b:00007f374006f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 52.739434][ T6347] RAX: ffffffffffffffda RBX: 00007f373f3b5fa0 RCX: 00007f373f18e929 [ 52.739440][ T6347] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 52.739446][ T6347] RBP: 00007f374006f090 R08: 0000000000000000 R09: 0000000000000000 [ 52.739452][ T6347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 52.739458][ T6347] R13: 0000000000000000 R14: 00007f373f3b5fa0 R15: 00007fffabf11a38 [ 52.739471][ T6347] [ 52.739476][ T6347] Mem-Info: [ 52.782164][ T29] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 52.782778][ T6347] active_anon:7682 inactive_anon:0 isolated_anon:0 [ 52.782778][ T6347] active_file:11925 inactive_file:40574 isolated_file:0 [ 52.782778][ T6347] unevictable:1768 dirty:1868 writeback:0 [ 52.782778][ T6347] slab_reclaimable:11627 slab_unreclaimable:67800 [ 52.782778][ T6347] mapped:24585 shmem:2397 pagetables:1153 [ 52.782778][ T6347] sec_pagetables:296 bounce:0 [ 52.782778][ T6347] kernel_misc_reclaimable:0 [ 52.782778][ T6347] free:448247 free_pcp:33061 free_cma:0 [ 52.853151][ T6347] Node 0 active_anon:30728kB inactive_anon:0kB active_file:47700kB inactive_file:162096kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:98340kB dirty:7436kB writeback:0kB shmem:6052kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12528kB pagetables:4496kB sec_pagetables:1184kB all_unreclaimable? no Balloon:0kB [ 52.863801][ T6347] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:36kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:144kB pagetables:240kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 52.873890][ T6347] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 52.882876][ T6347] lowmem_reserve[]: 0 1235 1235 1235 1235 [ 52.884792][ T6347] Node 0 DMA32 free:179180kB boost:0kB min:27516kB low:34392kB high:41268kB reserved_highatomic:0KB free_highatomic:0KB active_anon:30852kB inactive_anon:0kB active_file:47700kB inactive_file:162096kB unevictable:3536kB writepending:7436kB present:2080628kB managed:1264716kB mlocked:0kB bounce:0kB free_pcp:113840kB local_pcp:33580kB free_cma:0kB [ 52.895012][ T6347] lowmem_reserve[]: 0 0 0 0 0 [ 52.896667][ T6347] Node 1 Normal free:1598984kB boost:0kB min:39720kB low:49648kB high:59576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:3536kB writepending:36kB present:2097152kB managed:1781948kB mlocked:0kB bounce:0kB free_pcp:18192kB local_pcp:4552kB free_cma:0kB [ 52.906345][ T6347] lowmem_reserve[]: 0 0 0 0 0 [ 52.907920][ T6347] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 52.911972][ T6347] Node 0 DMA32: 1005*4kB (UM) 605*8kB (UME) 90*16kB (UM) 230*32kB (UME) 94*64kB (UM) 14*128kB (UM) 12*256kB (UME) 14*512kB (UME) 4*1024kB (UME) 4*2048kB (UM) 32*4096kB (UM) = 179068kB [ 52.912373][ T1027] usb 7-1: Invalid ep0 maxpacket: 64 [ 52.917869][ T6347] Node 1 Normal: 6*4kB (UME) 12*8kB (UE) 25*16kB (UME) 12*32kB (UME) 12*64kB (UME) 11*128kB (UME) 4*256kB (U) 5*512kB (UME) 1*1024kB (U) 1*2048kB (M) 388*4096kB (M) = 1598984kB [ 52.925432][ T6347] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 52.928401][ T6347] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 52.931323][ T6347] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 52.934683][ T6347] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 52.937579][ T6347] 55481 total pagecache pages [ 52.939554][ T6347] 0 pages in swap cache [ 52.941273][ T6347] Free swap = 124996kB [ 52.943020][ T6347] Total swap = 124996kB [ 52.944378][ T6347] 1048443 pages RAM [ 52.945639][ T6347] 0 pages HighMem/MovableOnly [ 52.947167][ T6347] 282937 pages reserved [ 52.948494][ T6347] 0 pages cma reserved [ 52.952408][ T29] usb 8-1: Using ep0 maxpacket: 32 [ 52.961799][ T29] usb 8-1: unable to get BOS descriptor or descriptor too short [ 52.965886][ T29] usb 8-1: unable to read config index 0 descriptor/start: -71 [ 52.968329][ T29] usb 8-1: can't read configurations, error -71 [ 53.042189][ T1027] usb 7-1: new low-speed USB device number 4 using dummy_hcd [ 53.192263][ T1027] usb 7-1: Invalid ep0 maxpacket: 64 [ 53.194182][ T1027] usb usb7-port1: attempt power cycle [ 53.263159][ T6370] cgroup: none used incorrectly [ 53.345309][ T6374] loop6: detected capacity change from 0 to 524287999 [ 53.361405][ T6372] ufs: You didn't specify the type of your ufs filesystem [ 53.361405][ T6372] [ 53.361405][ T6372] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 53.361405][ T6372] [ 53.361405][ T6372] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 53.371990][ T6372] ufs: failed to set blocksize [ 53.425660][ T6377] program syz.0.115 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 53.481989][ T6380] FAULT_INJECTION: forcing a failure. [ 53.481989][ T6380] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 53.487368][ T6380] CPU: 1 UID: 0 PID: 6380 Comm: syz.1.117 Not tainted 6.16.0-rc2-syzkaller-00045-g4663747812d1 #0 PREEMPT(full) [ 53.487385][ T6380] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 53.487391][ T6380] Call Trace: [ 53.487395][ T6380] [ 53.487400][ T6380] dump_stack_lvl+0x16c/0x1f0 [ 53.487421][ T6380] should_fail_ex+0x512/0x640 [ 53.487438][ T6380] should_fail_alloc_page+0xe7/0x130 [ 53.487455][ T6380] prepare_alloc_pages+0x3c2/0x610 [ 53.487469][ T6380] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 53.487484][ T6380] ? stack_trace_save+0x8e/0xc0 [ 53.487498][ T6380] ? __pfx_stack_trace_save+0x10/0x10 [ 53.487512][ T6380] ? stack_depot_save_flags+0x28/0xa40 [ 53.487530][ T6380] ? kasan_save_stack+0x42/0x60 [ 53.487544][ T6380] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 53.487558][ T6380] ? kmem_cache_alloc_node_noprof+0x1d5/0x3b0 [ 53.487572][ T6380] ? __get_vm_area_node+0x1ca/0x330 [ 53.487582][ T6380] ? __vmalloc_node_noprof+0xad/0xf0 [ 53.487592][ T6380] ? copy_process+0x2c70/0x76a0 [ 53.487605][ T6380] ? vhost_task_create+0x1d2/0x2e0 [ 53.487615][ T6380] ? kvm_mmu_post_init_vm+0x1b7/0x370 [ 53.487628][ T6380] ? kvm_arch_vcpu_ioctl_run+0x66/0x18c0 [ 53.487641][ T6380] ? kvm_vcpu_ioctl+0x5eb/0x1690 [ 53.487652][ T6380] ? __x64_sys_ioctl+0x18b/0x210 [ 53.487670][ T6380] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 53.487683][ T6380] ? policy_nodemask+0xea/0x4e0 [ 53.487700][ T6380] alloc_pages_mpol+0x1fb/0x550 [ 53.487716][ T6380] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 53.487735][ T6380] alloc_pages_noprof+0x131/0x390 [ 53.487751][ T6380] get_free_pages_noprof+0x10/0xb0 [ 53.487767][ T6380] kasan_populate_vmalloc+0x89/0x1f0 [ 53.487783][ T6380] alloc_vmap_area+0x959/0x29c0 [ 53.487806][ T6380] ? __pfx_alloc_vmap_area+0x10/0x10 [ 53.487827][ T6380] __get_vm_area_node+0x1ca/0x330 [ 53.487841][ T6380] __vmalloc_node_range_noprof+0x271/0x14b0 [ 53.487852][ T6380] ? vhost_task_create+0x1d2/0x2e0 [ 53.487862][ T6380] ? local_lock_release+0x99/0x140 [ 53.487882][ T6380] ? vhost_task_create+0x1d2/0x2e0 [ 53.487892][ T6380] ? rcu_read_unlock+0x17/0x60 [ 53.487910][ T6380] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 53.487921][ T6380] ? __memcg_slab_post_alloc_hook+0x4a0/0x960 [ 53.487943][ T6380] ? vhost_task_create+0x1d2/0x2e0 [ 53.487952][ T6380] __vmalloc_node_noprof+0xad/0xf0 [ 53.487963][ T6380] ? vhost_task_create+0x1d2/0x2e0 [ 53.487975][ T6380] copy_process+0x2c70/0x76a0 [ 53.487995][ T6380] ? __pfx_copy_process+0x10/0x10 [ 53.488011][ T6380] ? lockdep_init_map_type+0x5c/0x280 [ 53.488029][ T6380] ? lockdep_init_map_type+0x5c/0x280 [ 53.488046][ T6380] ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 53.488062][ T6380] ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 53.488081][ T6380] vhost_task_create+0x1d2/0x2e0 [ 53.488090][ T6380] ? __pfx_vhost_task_create+0x10/0x10 [ 53.488111][ T6380] ? __pfx_vhost_task_fn+0x10/0x10 [ 53.488127][ T6380] kvm_mmu_post_init_vm+0x1b7/0x370 [ 53.488142][ T6380] kvm_arch_vcpu_ioctl_run+0x66/0x18c0 [ 53.488155][ T6380] ? kvm_vcpu_ioctl+0x14c6/0x1690 [ 53.488170][ T6380] kvm_vcpu_ioctl+0x5eb/0x1690 [ 53.488184][ T6380] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 53.488200][ T6380] ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540 [ 53.488218][ T6380] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 53.488238][ T6380] ? hook_file_ioctl_common+0x145/0x410 [ 53.488252][ T6380] ? selinux_file_ioctl+0x180/0x270 [ 53.488266][ T6380] ? selinux_file_ioctl+0xb4/0x270 [ 53.488282][ T6380] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 53.488295][ T6380] __x64_sys_ioctl+0x18b/0x210 [ 53.488308][ T6380] do_syscall_64+0xcd/0x4c0 [ 53.488325][ T6380] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 53.488336][ T6380] RIP: 0033:0x7fb8ba78e929 [ 53.488345][ T6380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 53.488355][ T6380] RSP: 002b:00007fb8bb633038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 53.488365][ T6380] RAX: ffffffffffffffda RBX: 00007fb8ba9b5fa0 RCX: 00007fb8ba78e929 [ 53.488372][ T6380] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 53.488378][ T6380] RBP: 00007fb8bb633090 R08: 0000000000000000 R09: 0000000000000000 [ 53.488384][ T6380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 53.488389][ T6380] R13: 0000000000000000 R14: 00007fb8ba9b5fa0 R15: 00007ffd27173368 [ 53.488403][ T6380] [ 53.542228][ T1027] usb 7-1: new low-speed USB device number 5 using dummy_hcd [ 53.663473][ T1027] usb 7-1: Invalid ep0 maxpacket: 64 [ 53.793018][ T5946] Bluetooth: hci3: command tx timeout [ 53.793186][ T5937] Bluetooth: hci2: command tx timeout [ 53.795057][ T1027] usb 7-1: new low-speed USB device number 6 using dummy_hcd [ 53.808153][ T6395] __nla_validate_parse: 5 callbacks suppressed [ 53.808164][ T6395] netlink: 12 bytes leftover after parsing attributes in process `syz.3.123'. [ 53.813200][ T6395] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 53.823537][ T1027] usb 7-1: Invalid ep0 maxpacket: 64 [ 53.825959][ T1027] usb usb7-port1: unable to enumerate USB device [ 53.830007][ T6397] ------------[ cut here ]------------ [ 53.831800][ T6397] WARNING: CPU: 3 PID: 6397 at mm/page_alloc.c:4935 __alloc_frozen_pages_noprof+0x30b/0x23f0 [ 53.835234][ T6397] Modules linked in: [ 53.837834][ T6397] CPU: 3 UID: 0 PID: 6397 Comm: syz.0.124 Not tainted 6.16.0-rc2-syzkaller-00045-g4663747812d1 #0 PREEMPT(full) [ 53.842355][ T6397] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 53.845722][ T6397] RIP: 0010:__alloc_frozen_pages_noprof+0x30b/0x23f0 [ 53.847831][ T6397] Code: f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc 83 fe 0a 0f 86 0a fe ff ff 80 3d 83 6e 7a 0e 00 75 0b c6 05 7a 6e 7a 0e 01 90 <0f> 0b 90 45 31 f6 eb 81 4d 85 f6 74 22 44 89 fa 89 ee 4c 89 f7 e8 [ 53.854087][ T6397] RSP: 0018:ffffc90007ed7868 EFLAGS: 00010246 [ 53.856016][ T6397] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 53.858496][ T6397] RDX: 0000000000000000 RSI: 0000000000000016 RDI: 0000000000040cc0 [ 53.861023][ T6397] RBP: 00000003fffffa94 R08: 0000000000000005 R09: 0000000000000000 [ 53.863709][ T6397] R10: 00000000fffffea5 R11: 0000000000000001 R12: 0000000000000016 [ 53.866198][ T6397] R13: 1ffff92000fdaf22 R14: 00000003fffffa94 R15: 0000000000000016 [ 53.868684][ T6397] FS: 00007f374006f6c0(0000) GS:ffff8880d6a53000(0000) knlGS:0000000000000000 [ 53.871495][ T6397] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 53.872357][ T5937] Bluetooth: hci0: command tx timeout [ 53.873740][ T6397] CR2: 00007f374004df98 CR3: 00000000580e5000 CR4: 0000000000352ef0 [ 53.877790][ T6397] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 53.880307][ T6397] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 53.882939][ T6397] Call Trace: [ 53.883820][ T6398] netlink: 24 bytes leftover after parsing attributes in process `syz.0.124'. [ 53.883865][ T6401] netlink: 24 bytes leftover after parsing attributes in process `syz.0.124'. [ 53.884010][ T6397] [ 53.884021][ T6397] ? stack_trace_save+0x8e/0xc0 [ 53.892253][ T6397] ? __pfx_stack_trace_save+0x10/0x10 [ 53.893964][ T6397] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 53.896002][ T6397] ? drm_syncobj_array_find+0x35/0x3c0 [ 53.897746][ T6397] __alloc_pages_noprof+0xb/0x1b0 [ 53.899362][ T6397] ___kmalloc_large_node+0x84/0x1e0 [ 53.901031][ T6397] ? drm_syncobj_array_find+0x35/0x3c0 [ 53.902870][ T6397] __kmalloc_large_node_noprof+0x1c/0x70 [ 53.904848][ T6397] __kmalloc_noprof.cold+0xc/0x61 [ 53.906461][ T6397] ? __lock_acquire+0xb8a/0x1c90 [ 53.908061][ T6397] drm_syncobj_array_find+0x35/0x3c0 [ 53.909744][ T6397] drm_syncobj_timeline_wait_ioctl+0x238/0x390 [ 53.911753][ T6397] ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10 [ 53.914068][ T6397] ? find_held_lock+0x2b/0x80 [ 53.915586][ T6397] ? drm_dev_exit+0x41/0x60 [ 53.917048][ T6397] drm_ioctl_kernel+0x1f4/0x3e0 [ 53.918598][ T6397] ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10 [ 53.920747][ T6397] ? __pfx_drm_ioctl_kernel+0x10/0x10 [ 53.922526][ T6397] drm_ioctl+0x5c9/0xc30 [ 53.923887][ T6397] ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10 [ 53.925962][ T6397] ? __pfx_drm_ioctl+0x10/0x10 [ 53.927511][ T6397] ? selinux_file_ioctl+0x180/0x270 [ 53.929200][ T6397] ? selinux_file_ioctl+0xb4/0x270 [ 53.930858][ T6397] ? __pfx_drm_ioctl+0x10/0x10 [ 53.932460][ T6397] __x64_sys_ioctl+0x18b/0x210 [ 53.934006][ T6397] do_syscall_64+0xcd/0x4c0 [ 53.935504][ T6397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 53.937383][ T6397] RIP: 0033:0x7f373f18e929 [ 53.938816][ T6397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 53.944907][ T6397] RSP: 002b:00007f374006f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 53.947545][ T6397] RAX: ffffffffffffffda RBX: 00007f373f3b5fa0 RCX: 00007f373f18e929 [ 53.950032][ T6397] RDX: 0000200000000000 RSI: 00000000c03064ca RDI: 0000000000000004 [ 53.952608][ T6397] RBP: 00007f373f210b39 R08: 0000000000000000 R09: 0000000000000000 [ 53.955110][ T6397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 53.957581][ T6397] R13: 0000000000000000 R14: 00007f373f3b5fa0 R15: 00007fffabf11a38 [ 53.960122][ T6397] [ 53.961134][ T6397] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 53.963434][ T6397] CPU: 3 UID: 0 PID: 6397 Comm: syz.0.124 Not tainted 6.16.0-rc2-syzkaller-00045-g4663747812d1 #0 PREEMPT(full) [ 53.967110][ T6397] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 53.970461][ T6397] Call Trace: [ 53.971548][ T6397] [ 53.972497][ T6397] dump_stack_lvl+0x3d/0x1f0 [ 53.973980][ T6397] panic+0x71c/0x800 [ 53.975253][ T6397] ? __pfx_panic+0x10/0x10 [ 53.976675][ T6397] ? show_trace_log_lvl+0x29b/0x3e0 [ 53.978330][ T6397] ? check_panic_on_warn+0x1f/0xb0 [ 53.980012][ T6397] ? __alloc_frozen_pages_noprof+0x30b/0x23f0 [ 53.981932][ T6397] check_panic_on_warn+0xab/0xb0 [ 53.983493][ T6397] __warn+0xf6/0x3c0 [ 53.984756][ T6397] ? __alloc_frozen_pages_noprof+0x30b/0x23f0 [ 53.986667][ T6397] report_bug+0x3c3/0x580 [ 53.988045][ T6397] ? __alloc_frozen_pages_noprof+0x30b/0x23f0 [ 53.989930][ T6397] handle_bug+0x184/0x210 [ 53.991262][ T6397] exc_invalid_op+0x17/0x50 [ 53.992686][ T6397] asm_exc_invalid_op+0x1a/0x20 [ 53.994249][ T6397] RIP: 0010:__alloc_frozen_pages_noprof+0x30b/0x23f0 [ 53.996307][ T6397] Code: f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc 83 fe 0a 0f 86 0a fe ff ff 80 3d 83 6e 7a 0e 00 75 0b c6 05 7a 6e 7a 0e 01 90 <0f> 0b 90 45 31 f6 eb 81 4d 85 f6 74 22 44 89 fa 89 ee 4c 89 f7 e8 [ 54.002223][ T6397] RSP: 0018:ffffc90007ed7868 EFLAGS: 00010246 [ 54.004104][ T6397] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 54.006627][ T6397] RDX: 0000000000000000 RSI: 0000000000000016 RDI: 0000000000040cc0 [ 54.009066][ T6397] RBP: 00000003fffffa94 R08: 0000000000000005 R09: 0000000000000000 [ 54.011538][ T6397] R10: 00000000fffffea5 R11: 0000000000000001 R12: 0000000000000016 [ 54.013977][ T6397] R13: 1ffff92000fdaf22 R14: 00000003fffffa94 R15: 0000000000000016 [ 54.016402][ T6397] ? stack_trace_save+0x8e/0xc0 [ 54.017935][ T6397] ? __pfx_stack_trace_save+0x10/0x10 [ 54.019641][ T6397] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 54.021674][ T6397] ? drm_syncobj_array_find+0x35/0x3c0 [ 54.023403][ T6397] __alloc_pages_noprof+0xb/0x1b0 [ 54.024993][ T6397] ___kmalloc_large_node+0x84/0x1e0 [ 54.026638][ T6397] ? drm_syncobj_array_find+0x35/0x3c0 [ 54.028364][ T6397] __kmalloc_large_node_noprof+0x1c/0x70 [ 54.030139][ T6397] __kmalloc_noprof.cold+0xc/0x61 [ 54.031788][ T6397] ? __lock_acquire+0xb8a/0x1c90 [ 54.033368][ T6397] drm_syncobj_array_find+0x35/0x3c0 [ 54.035053][ T6397] drm_syncobj_timeline_wait_ioctl+0x238/0x390 [ 54.036996][ T6397] ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10 [ 54.039100][ T6397] ? find_held_lock+0x2b/0x80 [ 54.040606][ T6397] ? drm_dev_exit+0x41/0x60 [ 54.042082][ T6397] drm_ioctl_kernel+0x1f4/0x3e0 [ 54.043686][ T6397] ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10 [ 54.045782][ T6397] ? __pfx_drm_ioctl_kernel+0x10/0x10 [ 54.047489][ T6397] drm_ioctl+0x5c9/0xc30 [ 54.048841][ T6397] ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10 [ 54.050785][ T6397] ? __pfx_drm_ioctl+0x10/0x10 [ 54.052337][ T6397] ? selinux_file_ioctl+0x180/0x270 [ 54.053972][ T6397] ? selinux_file_ioctl+0xb4/0x270 [ 54.055608][ T6397] ? __pfx_drm_ioctl+0x10/0x10 [ 54.057118][ T6397] __x64_sys_ioctl+0x18b/0x210 [ 54.058657][ T6397] do_syscall_64+0xcd/0x4c0 [ 54.060119][ T6397] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 54.061974][ T6397] RIP: 0033:0x7f373f18e929 [ 54.063484][ T6397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 54.069498][ T6397] RSP: 002b:00007f374006f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 54.072150][ T6397] RAX: ffffffffffffffda RBX: 00007f373f3b5fa0 RCX: 00007f373f18e929 [ 54.074623][ T6397] RDX: 0000200000000000 RSI: 00000000c03064ca RDI: 0000000000000004 [ 54.077108][ T6397] RBP: 00007f373f210b39 R08: 0000000000000000 R09: 0000000000000000 [ 54.079586][ T6397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 54.082090][ T6397] R13: 0000000000000000 R14: 00007f373f3b5fa0 R15: 00007fffabf11a38 [ 54.084570][ T6397] [ 54.086246][ T6397] Kernel Offset: disabled [ 54.087637][ T6397] Rebooting in 86400 seconds.. VM DIAGNOSIS: 22:30:49 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000007 RBX=ffff88803b5709c8 RCX=1ffff110055c02aa RDX=0000000000000000 RSI=ffffffff8490cd2e RDI=ffff88802ac7e114 RBP=ffff88802ae01518 RSP=ffffc90004a8f780 R8 =00000000ffffffff R9 =0000000000000000 R10=ffff88803b5709b0 R11=0000000000000001 R12=ffff88802ac7e110 R13=ffff88802c35cf00 R14=0000000000000000 R15=ffff88802ae01738 RIP=ffffffff8490cdbf RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 00007f3b8020c880 ffffffff 00c00000 GS =0000 ffff8880d6753000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00005555730c1808 CR3=000000005406c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000c0800000 Opmask01=0000000000004211 Opmask02=000000007ffeffff Opmask03=0000000000000000 Opmask04=00000000ffffffff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 333a37622f617461 642f766564752f6e ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 000055c19f881580 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3b802227f0 00007f3b802227e0 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff00000000 ff00000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3b7fb52c80 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055c18dc8add0 00706d742e333a37 622f617461642f76 6564752f6e75722f ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 404d005640515c47 0550491d00050505 05050505051f405f 4c560540494c4300 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 0000000000000000 000055c19f881580 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 003a756b733a322e 392d3533712d6370 7276633a3174633a 554d45516e76633a ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 322e392d3533712d 63707276703a2939 3030322c39484349 2b35335128435064 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7261646e6174536e 703a554d45516e76 733a302e3072623a 343130322f31302f ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343064623a312b32 316f70627e322d33 2e36312e312d6e61 696265642d332e36 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323032302c313032 302c394631302c32 4331302c38423130 2c464131302c4541 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000007 RBX=0000000000000005 RCX=00000000b77847d0 RDX=0000000000000000 RSI=00000000c37a3de4 RDI=ffff88803151d438 RBP=ffff88803151c880 RSP=ffffc90005d27938 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001 R12=ffff88803151d370 R13=ffff88803151d438 R14=0000000000000005 R15=0000000000000001 RIP=ffffffff81980a23 RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 000055555ed17500 ffffffff 00c00000 GS =0000 ffff8880d6853000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f807824dc83 CR3=0000000012c64000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=000000000c400000 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6966696e752f7075 6f7267637a79732f ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7a79732f64656966 696e752f70756f72 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8078211b12 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8078211b1f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8078211b19 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8078211b2d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8078211bb3 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f8078211c91 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 69702f732500756c 6c257a79732f6465 6966696e752f7075 6f7267637a79732f ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4c550a5600005049 49005f5c560a4140 4c434c4b500a5550 4a5742465f5c560a ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=ffffffff95d3b960 RBX=0000000000000004 RCX=0000000000000000 RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff9b02abc8 RBP=ffff888028100000 RSP=ffffc90005c878d8 R8 =0000000000000001 R9 =0000000000000001 R10=0000000000000001 R11=0000000000000001 R12=000000009af48701 R13=0000000000000000 R14=0000000000000000 R15=ffffffff9b02abc8 RIP=ffffffff81985847 RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d6953000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000055555ed17808 CR3=000000002f1fb000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000008001 Opmask01=0000000000000400 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=00000000ffffff3f Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe5a5f5d0b 00007ffe5a5f5d0b ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe5a5f6210 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe5a5f6210 0000003000000018 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3935393532382e33 352020205b3e333c 003436203a74656b 63617078616d2000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3335333532322433 3520202051343336 0034362030746561 6361707261672000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f636f6c6c615f5f 20353339343a632e 636f6c6c615f6567 61702f6d6d207461 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3834203130203938 2034362038642037 6620666620666620 6666203861203163 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2037632038342033 6320313020333720 6666206666203066 203130206433203e ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 38343c2035302066 3020383020343220 6334206238206334 2038632039382064 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3420326320393820 6434206163203938 2038342036642039 3820383420376620 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 323a746e65736572 7020426b36333a67 6e69646e65706574 69727720426b3633 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000037 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff855b9f55 RDI=ffffffff9b089360 RBP=ffffffff9b089320 RSP=ffffc90007ed71d0 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001 R12=0000000000000000 R13=0000000000000037 R14=ffffffff9b089320 R15=ffffffff855b9ef0 RIP=ffffffff855b9f7f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 00007f374006f6c0 ffffffff 00c00000 GS =0000 ffff8880d6a53000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f374004df98 CR3=00000000580e5000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fffc0000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f373f211b12 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f373f211b1f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f373f211b19 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f373f211b2d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f373f211bb3 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f373f211c91 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 2323232323232323 2323232323232323 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000003243 6c6f72746e6f632f 646e732f7665642f ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001143 4f4c51574d4c400c 474d500c5546470c ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 0000000000000000 0000000000000000 00000000000000e0 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000