last executing test programs: 6.204511573s ago: executing program 0 (id=5812): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r2 = socket$can_j1939(0x1d, 0x2, 0x7) r3 = socket$nl_route(0x10, 0x3, 0x0) readv(r2, 0x0, 0x0) setsockopt$sock_int(r2, 0x1, 0x6, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, 0x0) bind$can_j1939(r2, &(0x7f0000000240)={0x1d, 0x0, 0x0, {0x0, 0x0, 0x4}}, 0x18) sendmmsg(r2, 0x0, 0x0, 0x0) 5.984210112s ago: executing program 0 (id=5813): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="180100001700000000000000a54b0000850000007500000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000000c0)='signal_generate\x00', r0}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000200)='sys_enter\x00', r0}, 0x2b) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00') preadv(r1, 0x0, 0x0, 0x3a, 0x0) 5.895750407s ago: executing program 0 (id=5815): bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100003020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f00000003c0)=@filter={'filter\x00', 0x42, 0x4, 0x2c0, 0xffffffff, 0x0, 0x98, 0x98, 0xffffffff, 0xffffffff, 0x98, 0x98, 0x2e0, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x3e020000, 0x70, 0x98, 0x0, {0x88000000}}, @REJECT={0x28}}, {{@uncond, 0x0, 0x98, 0xf8, 0x0, {0x122}, [@common=@inet=@dscp={{0x28}}]}, @common=@SET={0x60}}, {{@uncond, 0x0, 0x70, 0x98}, @REJECT={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x320) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xe, 0x0, &(0x7f00000002c0)="b9ff03076003008cb89e08f086dd", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) read$FUSE(0xffffffffffffffff, 0x0, 0x0) inotify_init() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xffffffffffffff16) syz_open_procfs(0x0, 0x0) openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='cpuacct.usage_percpu\x00', 0x275a, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) fsopen(0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000) sched_setaffinity(0x0, 0x0, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = socket(0x10, 0x3, 0x0) write(r2, &(0x7f0000000280)="240000001a005f0014f9e407000904000a00000074000000000e000008001b0006000000", 0x24) 2.604428514s ago: executing program 0 (id=5853): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r0}, 0x10) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 2.454176107s ago: executing program 0 (id=5855): syz_emit_ethernet(0x3e, 0x0, 0x0) r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f00000002c0)={@flat=@binder={0x73622a85, 0x0, 0x0, 0x2}, @flat, @ptr={0x70742a85, 0x0, 0x0}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}, 0x40}], 0x0, 0x0, 0x0}) 2.415172031s ago: executing program 0 (id=5856): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x7}, 0x48) bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000000)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1}, 0x48) socketpair(0x0, 0x0, 0x0, 0x0) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000600)={{r0}, 0x0, 0x0}, 0x20) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x100, 0x100, 0x9, 0x1, 0x1}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000000), 0xcff5, r1}, 0x38) bpf$MAP_LOOKUP_BATCH(0x1b, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000500), 0x0, 0x2, r1}, 0x38) bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x12, 0x8, 0x4, 0x7cb4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x48) 1.505189184s ago: executing program 1 (id=5872): r0 = openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x0) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) dup3(r1, r0, 0x0) ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, 0x0) 1.505113077s ago: executing program 3 (id=5873): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, 0x0) 1.405695674s ago: executing program 3 (id=5874): r0 = openat$vsock(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)={0x14}, 0x14}}, 0x0) 1.405413614s ago: executing program 3 (id=5875): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = memfd_secret(0x0) close_range(r1, 0xffffffffffffffff, 0x0) socket$netlink(0x10, 0x3, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuacct.stat\x00', 0x26e1, 0x0) close(r2) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)) sendmsg$nl_xfrm(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[], 0x33fe0}}, 0x0) sendmsg$NET_DM_CMD_STOP(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0) timer_create(0x0, &(0x7f0000000180)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000040)=0x0) timer_settime(r3, 0x0, &(0x7f0000000300)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0) pwritev2(0xffffffffffffffff, &(0x7f0000000540)=[{&(0x7f0000000300)="032d4fe6dad3dad7f08601f56f0831a3060ce7899e9beccd92208c4f20ece8ea21c501ecb9b192aa6be82d486043ff5c6addb411143b312bdf90e742eef87cf286b481682f6e325132ac13c1", 0x4c}], 0x1, 0x0, 0x0, 0x0) 1.345643035s ago: executing program 1 (id=5876): r0 = gettid() timer_create(0x0, &(0x7f0000000100)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x77359400}, {0x0, 0x989680}}, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) write$binfmt_script(r2, &(0x7f0000000340), 0xffffff46) dup3(r2, r1, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) write$P9_RAUTH(r1, &(0x7f0000000100)={0x3f}, 0x28) close(r1) socket$unix(0x1, 0x1, 0x0) 1.225177639s ago: executing program 3 (id=5879): getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000080)={0x0, 0x79, "b9680bf265eb96b56ee8479c7f96492a85504ddd30e688c938d4b6b556390e02cec8fd485c5075432cb47814fef0ab8d68a5ad2bbe6bd901ae437a5f3ab908ea498371413ce2508cc636881e76561979161fb756112c93a6ab05e191149bc597dbf2d12e2d1661f558afd20e8fd257f8f583fd6a72261d6b91"}, 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close(r0) socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r0, 0x84, 0x1c, 0x0, 0x0) 1.145465103s ago: executing program 3 (id=5882): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='cpuacct.stat\x00', 0x26e1, 0x0) close(r0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) close(r1) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r2, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x4, 0x8, 0xb}, 0x48) bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)={@map=r4, r3, 0x7}, 0x10) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r4, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r2}, 0x20) sendmmsg(r1, &(0x7f0000002f40)=[{{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000140)="e43d04fd2170bd50125ffa6d1e179f98984b2c72ca3bffd4871a112972963a9b524958b63a1619122acc32a1e1c81a85", 0x30}, {&(0x7f0000000480)="149d044c07e578f48f6e7fb65172a61b0316e20d92e71c834e31de4335c697b4f63ff06e8ef72792bc9e4d188015c40f05384741eea7303566305add", 0x3c}], 0x2}}, {{0x0, 0x0, &(0x7f0000000e00)=[{&(0x7f0000001140)="2cd30c74459fd7f3868040d841d76b181fd9307ab6160bd199a50b64e09d2a5950fd97de7cca2e06d14a95362b04715a1e666884f00b754fad3ad29f4366148e8225d6b51c6eeb3707e5c2c09b866c08712ab96b3bfb9eca390527d3bd24b8ac8fbefb0646220dda67b50fefa28662fef769962f3c93b3839bb04a79ed46426bc4a3849806a1e8fb0038997c4088a27caf953ce6c52507d307e8b78d70c3feb2c0b6bbac1a346a689f033de570e01bcfa23ae90b294f254f8671ce0d6832a3fcbf48fa9618bf49edec47ba1e0725e5d8ad32a746e05ead482c38b34d52efff0858932471f0be04f67222eca8dbea65c41eff6ea0b0eb0bd45fa2e8ddb2fc5dd17904238a5864e80225a6e6e67212c9f8cc445025d9da9a7f26f2b03a8b4696e093a6581a06fc6506e98d900acbb20a4ef7f3751ac72b3c9168eea221ed96bd1365e973ae45f5b7c1d89223d999beda3d2b4fe38a2e371336afa01cb78112fdf7997803d0f73dabb24076edb16315ebf5a90171314e8fcdfec74b46c83fa3481e0c575e78bac158ac4f4e368233f5da9b11c9df11c6f2a12bde1759d93d6cfe3a435d16063905f0e187de92e714b59243c86caeb1958a46fdeb76fa49dc24a7fa3a43287d282593cb7121bf9fc89b9acb5096636390a511fd0bab546c3bd7bb1b5f80aba51dcf2891029838b9fbf350bb56e696b943c011dbc18d58cdef23738f84b792832aad2924eb32f4016f83ef722b2e55c74d9daaf2a8a6aac0c365470710a3a6f881b060b82f5c6392a8ac82a5b7d3b8d2ea36d7d4fb", 0x239}], 0x1}}], 0x2, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[], 0x33fe0}}, 0x0) 1.145373988s ago: executing program 1 (id=5883): r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000180), 0x8, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, 0x0) 1.027270189s ago: executing program 1 (id=5884): r0 = fsopen(&(0x7f0000000000)='tmpfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) fsopen(&(0x7f0000000000)='ramfs\x00', 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) write$FUSE_NOTIFY_RETRIEVE(r1, &(0x7f0000000340)={0x30, 0x5, 0x0, {0x0, 0x3, 0x7, 0x800}}, 0x30) 1.026880945s ago: executing program 3 (id=5886): mlockall(0x3) mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil) mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f0000ff5000/0x3000)=nil) mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil) r0 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000000)) ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f00000000c0)={0x60, 0x0, &(0x7f0000779000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, 0x0}) 965.374888ms ago: executing program 1 (id=5887): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LIST_IFACE(r0, &(0x7f0000005180)={0x0, 0x0, &(0x7f0000005140)={0x0}}, 0x24004091) 895.811676ms ago: executing program 1 (id=5889): r0 = openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x0) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) dup3(r1, r0, 0x0) ioctl$VHOST_VDPA_GET_VRING_NUM(r0, 0x8002af76, 0x0) 824.98316ms ago: executing program 2 (id=5890): socketpair(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_genetlink_get_family_id$gtp(&(0x7f0000000000), r1) sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0) 715.615605ms ago: executing program 2 (id=5892): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x32b}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gtp={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GTP_FD0={0x8, 0x1, @udp=r1}, @IFLA_GTP_FD1={0x8}]}}}]}, 0x40}}, 0x0) 535.684786ms ago: executing program 2 (id=5893): r0 = io_uring_setup(0x177f, &(0x7f00000002c0)) r1 = socket(0x2b, 0x1, 0x1) sendmmsg$inet6(r1, &(0x7f0000001c80)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x0, @dev, 0x8}, 0x1c, 0x0}}], 0x1, 0x20048041) sendmsg$TIPC_CMD_SET_LINK_TOL(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, 0x0) ioctl$BLKGETSIZE(0xffffffffffffffff, 0x1260, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_TDLS_MGMT(0xffffffffffffffff, 0x0, 0x0) 215.461213ms ago: executing program 2 (id=5894): r0 = openat$procfs(0xffffff9c, &(0x7f0000000580)='/proc/cgroups\x00', 0x0, 0x0) close(r0) socket$nl_generic(0x10, 0x3, 0x10) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14}, 0x14}}, 0x0) 124.456987ms ago: executing program 2 (id=5895): r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000400)='.pending_reads\x00', 0x2141, 0x0) close(r0) openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, 0x0) 0s ago: executing program 2 (id=5896): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000080)='cpuset.mems\x00', 0x2, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000200), 0x3af4701e) sendfile(r1, r2, 0x0, 0x7ffff000) kernel console output (not intermixed with test programs): 226.606816][T24014] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c03864bc [ 1226.610164][T24014] RDX: 0000000020000180 RSI: 0000000000000000 RDI: 0000000000000000 [ 1226.613469][T24014] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1226.616758][T24014] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1226.620080][T24014] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1226.623375][T24014] [ 1226.624746][ C3] vkms_vblank_simulate: vblank timer overrun [ 1226.648147][T24017] IPVS: sync thread started: state = MASTER, mcast_ifn = wlan0, syncid = 1, id = 0 [ 1226.930300][T24028] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5327'. [ 1226.999230][T24030] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5328'. [ 1227.009856][T24031] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5325'. [ 1227.014164][T24030] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5328'. [ 1227.018351][T24031] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5325'. [ 1227.077193][ T39] kauditd_printk_skb: 7 callbacks suppressed [ 1227.077208][ T39] audit: type=1326 audit(1724967668.893:101585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24003 comm="syz.1.5320" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7fc00000 [ 1227.152298][ T39] audit: type=1326 audit(1724967668.893:101586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24003 comm="syz.1.5320" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf746e579 code=0x7fc00000 [ 1227.195843][ T39] audit: type=1326 audit(1724967668.893:101587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24003 comm="syz.1.5320" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7fc00000 [ 1227.201618][T24031] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5325'. [ 1227.214260][T24031] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5325'. [ 1227.255860][ T39] audit: type=1326 audit(1724967668.893:101588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24003 comm="syz.1.5320" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7fc00000 [ 1227.281282][ T39] audit: type=1326 audit(1724967668.893:101589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24003 comm="syz.1.5320" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7fc00000 [ 1227.311482][ T39] audit: type=1326 audit(1724967668.893:101590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24003 comm="syz.1.5320" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7fc00000 [ 1227.343003][ T39] audit: type=1326 audit(1724967668.893:101591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24003 comm="syz.1.5320" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7fc00000 [ 1227.371587][ T39] audit: type=1326 audit(1724967668.893:101592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24003 comm="syz.1.5320" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7fc00000 [ 1227.383395][ T39] audit: type=1326 audit(1724967668.893:101593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24003 comm="syz.1.5320" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7fc00000 [ 1227.402978][ T39] audit: type=1326 audit(1724967668.893:101594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24003 comm="syz.1.5320" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7fc00000 [ 1227.809429][T24040] FAULT_INJECTION: forcing a failure. [ 1227.809429][T24040] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1227.818781][T24040] CPU: 3 UID: 0 PID: 24040 Comm: syz.3.5331 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1227.823466][T24040] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1227.828252][T24040] Call Trace: [ 1227.829805][T24040] [ 1227.831312][T24040] dump_stack_lvl+0x16c/0x1f0 [ 1227.833482][T24040] should_fail_ex+0x497/0x5b0 [ 1227.835449][T24040] _copy_from_iter+0x27a/0xfc0 [ 1227.837597][T24040] ? __pfx__copy_from_iter+0x10/0x10 [ 1227.839490][T24040] ? trace_kmem_cache_alloc+0x2d/0xe0 [ 1227.841891][T24040] ? __virt_addr_valid+0x5e/0x590 [ 1227.844096][T24040] ? const_folio_flags.constprop.0+0x56/0x150 [ 1227.846801][T24040] ? __phys_addr_symbol+0x30/0x80 [ 1227.849052][T24040] ? __check_object_size+0x497/0x720 [ 1227.851665][T24040] netlink_sendmsg+0x813/0xd70 [ 1227.853803][T24040] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1227.856158][T24040] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1227.858630][T24040] ____sys_sendmsg+0x9b4/0xb50 [ 1227.861300][T24040] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1227.863743][T24040] ? get_compat_msghdr+0x11b/0x170 [ 1227.866050][T24040] ? __pfx___lock_acquire+0x10/0x10 [ 1227.868411][T24040] ___sys_sendmsg+0x135/0x1e0 [ 1227.870722][T24040] ? __pfx____sys_sendmsg+0x10/0x10 [ 1227.873074][T24040] ? ksys_write+0x21c/0x260 [ 1227.875167][T24040] ? __fget_light+0x173/0x210 [ 1227.877335][T24040] __sys_sendmsg+0x117/0x1f0 [ 1227.879658][T24040] ? __pfx___sys_sendmsg+0x10/0x10 [ 1227.882274][T24040] __do_fast_syscall_32+0x73/0x120 [ 1227.884326][T24040] do_fast_syscall_32+0x32/0x80 [ 1227.886252][T24040] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1227.888243][T24040] RIP: 0023:0xf73ee579 [ 1227.889694][T24040] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1227.900748][T24040] RSP: 002b:00000000f56f656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 1227.903949][T24040] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000 [ 1227.906965][T24040] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1227.909689][T24040] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1227.912064][T24040] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1227.914749][T24040] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1227.917851][T24040] [ 1227.919119][ C3] vkms_vblank_simulate: vblank timer overrun [ 1228.272415][T24052] IPVS: sync thread started: state = MASTER, mcast_ifn = wlan0, syncid = 1, id = 0 [ 1229.399232][T24084] kAFS: unable to lookup cell '/' [ 1229.770161][T24098] net_ratelimit: 41 callbacks suppressed [ 1229.770176][T24098] dccp_v6_rcv: dropped packet with invalid checksum [ 1230.675189][T24111] __nla_validate_parse: 9 callbacks suppressed [ 1230.675205][T24111] netlink: 25 bytes leftover after parsing attributes in process `syz.2.5352'. [ 1230.691989][T24111] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5352'. [ 1230.696686][T24111] openvswitch: netlink: Missing key (keys=200040, expected=2000) [ 1230.702501][T24111] tmpfs: Bad value for 'mpol' [ 1231.322348][T24121] UBIFS error (pid: 24121): cannot open "./file0", error -22 [ 1232.007394][T24125] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5357'. [ 1232.016288][T24125] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5357'. [ 1233.386607][T24144] trusted_key: encrypted_key: keylen parameter is missing [ 1233.392586][ T39] kauditd_printk_skb: 57 callbacks suppressed [ 1233.392600][ T39] audit: type=1326 audit(1724967675.213:101652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24143 comm="syz.0.5363" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 1233.398019][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.408916][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.411829][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.414924][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.417951][ T39] audit: type=1326 audit(1724967675.213:101653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24143 comm="syz.0.5363" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 1233.419412][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.427668][ T39] audit: type=1326 audit(1724967675.213:101654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24143 comm="syz.0.5363" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 1233.431890][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.443491][ T39] audit: type=1326 audit(1724967675.213:101655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24143 comm="syz.0.5363" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 1233.444983][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.456567][ T39] audit: type=1326 audit(1724967675.213:101656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24143 comm="syz.0.5363" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 1233.457561][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.467551][ T39] audit: type=1326 audit(1724967675.213:101657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24143 comm="syz.0.5363" exe="/syz-executor" sig=0 arch=40000003 syscall=333 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 1233.470445][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.479139][ T39] audit: type=1326 audit(1724967675.213:101658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24143 comm="syz.0.5363" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 1233.488625][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.492072][ T39] audit: type=1326 audit(1724967675.213:101659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24143 comm="syz.0.5363" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 1233.495046][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.504780][ T39] audit: type=1326 audit(1724967675.213:101660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24143 comm="syz.0.5363" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 1233.507679][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.524156][ T39] audit: type=1326 audit(1724967675.213:101661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24143 comm="syz.0.5363" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f95579 code=0x7ffc0000 [ 1233.537491][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.540680][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.543808][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.547040][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.550376][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.553461][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.556568][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.559759][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.562817][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.585798][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.597626][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.621611][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.625113][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.629014][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.632671][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.652627][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.657175][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.660817][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.664832][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.668334][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.672270][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.675589][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.678951][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.681827][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.684678][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.687137][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.690029][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.692889][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.696472][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.703334][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.706679][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.710740][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.713682][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.716730][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.720171][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.724832][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.731613][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.735330][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.739787][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.743243][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.746412][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.750133][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.754083][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.758246][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.761902][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.766757][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.770878][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.774416][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.778247][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.781682][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.785925][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.794663][T13783] hid-generic 0000:0000:0000.0038: unknown main item tag 0x0 [ 1233.797614][T13783] hid-generic 0000:0000:0000.0038: item fetching failed at offset 64/66 [ 1233.804951][T13783] hid-generic 0000:0000:0000.0038: probe with driver hid-generic failed with error -22 [ 1233.817400][T24147] FAULT_INJECTION: forcing a failure. [ 1233.817400][T24147] name failslab, interval 1, probability 0, space 0, times 0 [ 1233.825493][T24147] CPU: 0 UID: 0 PID: 24147 Comm: syz.0.5363 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1233.829987][T24147] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1233.834435][T24147] Call Trace: [ 1233.835668][T24147] [ 1233.836688][T24147] dump_stack_lvl+0x16c/0x1f0 [ 1233.838742][T24147] should_fail_ex+0x497/0x5b0 [ 1233.840829][T24147] ? fs_reclaim_acquire+0xae/0x160 [ 1233.842822][T24147] should_failslab+0xc2/0x120 [ 1233.844670][T24147] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 1233.846937][T24147] ? skb_clone+0x190/0x3f0 [ 1233.848825][T24147] skb_clone+0x190/0x3f0 [ 1233.850515][T24147] netlink_broadcast_filtered+0xb11/0xef0 [ 1233.852705][T24147] ? sprintf+0xcd/0x110 [ 1233.854547][T24147] ? __pfx_netlink_broadcast_filtered+0x10/0x10 [ 1233.857270][T24147] netlink_broadcast+0x39/0x50 [ 1233.859902][T24147] kobject_uevent_env+0xacd/0x1670 [ 1233.862280][T24147] device_del+0x623/0x9f0 [ 1233.864165][T24147] ? __pfx_enable_work+0x10/0x10 [ 1233.866359][T24147] ? __pfx_device_del+0x10/0x10 [ 1233.868508][T24147] ? mark_held_locks+0x9f/0xe0 [ 1233.870635][T24147] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1233.873211][T24147] hid_destroy_device+0xe5/0x150 [ 1233.875438][T24147] uhid_char_write+0xbf4/0x1110 [ 1233.877585][T24147] ? rw_verify_area+0x71/0x6c0 [ 1233.879682][T24147] ? __pfx_uhid_char_write+0x10/0x10 [ 1233.881532][T24147] vfs_write+0x29a/0x1140 [ 1233.883431][T24147] ? __pfx_vfs_write+0x10/0x10 [ 1233.885568][T24147] ? __fget_files+0x256/0x400 [ 1233.887642][T24147] ? __fget_light+0x173/0x210 [ 1233.889732][T24147] ksys_write+0x1f8/0x260 [ 1233.891614][T24147] ? __pfx_ksys_write+0x10/0x10 [ 1233.893557][T24147] __do_fast_syscall_32+0x73/0x120 [ 1233.895822][T24147] do_fast_syscall_32+0x32/0x80 [ 1233.897929][T24147] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1233.900746][T24147] RIP: 0023:0xf7f95579 [ 1233.902481][T24147] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1233.910671][T24147] RSP: 002b:00000000f571556c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 1233.914316][T24147] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000200 [ 1233.917755][T24147] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000000 [ 1233.921209][T24147] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1233.924231][T24147] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1233.927634][T24147] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1233.931078][T24147] [ 1234.177565][T24151] kAFS: unparsable volume name [ 1234.264350][T24150] block nbd2: shutting down sockets [ 1234.377349][T24157] 9pnet_fd: Insufficient options for proto=fd [ 1234.491084][T24161] block nbd1: shutting down sockets [ 1234.700659][T24171] input: syz0 as /devices/virtual/input/input41 [ 1235.083315][T24178] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1235.099262][T24178] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1236.013836][T24185] VFS: could not find a valid V7 on nullb0. [ 1236.140096][T24189] 9pnet_fd: Insufficient options for proto=fd [ 1236.955731][T24206] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5382'. [ 1237.091961][T24210] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5380'. [ 1237.313644][T24213] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1237.317509][T24213] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1237.896129][T24221] 9pnet_fd: Insufficient options for proto=fd [ 1238.000360][T24225] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1238.009414][T24225] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1238.209395][T24228] 9pnet_virtio: no channels available for device syz [ 1239.293150][T24239] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5391'. [ 1239.343221][T24241] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5392'. [ 1239.348305][T24241] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5392'. [ 1239.607567][T24250] 9pnet_fd: Insufficient options for proto=fd [ 1242.862795][T24291] 9pnet_fd: Insufficient options for proto=fd [ 1243.101973][T24269] syzkaller0: entered promiscuous mode [ 1243.104292][T24269] syzkaller0: entered allmulticast mode [ 1243.215671][T24293] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1243.220337][T24293] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1243.972485][ T1379] ieee802154 phy0 wpan0: encryption failed: -22 [ 1243.975043][ T1379] ieee802154 phy1 wpan1: encryption failed: -22 [ 1246.573606][T24300] veth0: entered promiscuous mode [ 1246.754687][T24300] veth0: left promiscuous mode [ 1247.883267][T24329] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5412'. [ 1248.121365][T24329] cdrom: dropping to single frame dma [ 1248.851875][T24341] netlink: 'syz.0.5415': attribute type 10 has an invalid length. [ 1248.870949][T24341] bridge0: port 3(team0) entered blocking state [ 1248.877992][T24341] FAULT_INJECTION: forcing a failure. [ 1248.877992][T24341] name failslab, interval 1, probability 0, space 0, times 0 [ 1248.904754][T24341] CPU: 0 UID: 0 PID: 24341 Comm: syz.0.5415 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1248.909533][T24341] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1248.914206][T24341] Call Trace: [ 1248.915317][T24342] input: syz1 as /devices/virtual/input/input42 [ 1248.915678][T24341] [ 1248.915688][T24341] dump_stack_lvl+0x16c/0x1f0 [ 1248.921609][T24341] should_fail_ex+0x497/0x5b0 [ 1248.923698][T24341] ? _printk+0xc8/0x100 [ 1248.925493][T24341] should_failslab+0xc2/0x120 [ 1248.927538][T24341] __kmalloc_noprof+0xcb/0x410 [ 1248.929608][T24341] ? __pfx_switchdev_port_attr_set_deferred+0x10/0x10 [ 1248.932460][T24341] switchdev_deferred_enqueue+0x2b/0x2b0 [ 1248.934797][T24341] switchdev_port_attr_set+0xb5/0x120 [ 1248.937165][T24341] __set_ageing_time+0xc3/0x140 [ 1248.939315][T24341] ? __pfx___set_ageing_time+0x10/0x10 [ 1248.941586][T24341] br_init_port+0x18b/0x250 [ 1248.943568][T24341] br_add_if+0x5e5/0x1b80 [ 1248.945558][T24341] ? __pfx_br_add_slave+0x10/0x10 [ 1248.947712][T24341] do_set_master+0x1bc/0x230 [ 1248.949752][T24341] do_setlink+0xa82/0x3ec0 [ 1248.951647][T24341] ? __wake_up_klogd.part.0+0x99/0xf0 [ 1248.953976][T24341] ? vprintk_emit+0x1a2/0x600 [ 1248.955980][T24341] ? __pfx_do_setlink+0x10/0x10 [ 1248.958096][T24341] ? vprintk+0x86/0xa0 [ 1248.959706][T24341] ? _printk+0xc8/0x100 [ 1248.961500][T24341] ? __pfx__printk+0x10/0x10 [ 1248.963536][T24341] ? ___ratelimit+0x24c/0x580 [ 1248.965676][T24341] ? __pfx____ratelimit+0x10/0x10 [ 1248.967902][T24341] ? __kernel_text_address+0xd/0x40 [ 1248.969964][T24341] ? unwind_get_return_address+0x45/0xe0 [ 1248.972109][T24341] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1248.974329][T24341] ? __nla_validate_parse+0x605/0x2b10 [ 1248.976438][T24341] ? __pfx___nla_validate_parse+0x10/0x10 [ 1248.978640][T24341] ? stack_trace_save+0x95/0xd0 [ 1248.980739][T24341] ? __pfx_stack_trace_save+0x10/0x10 [ 1248.983298][T24341] ? stack_depot_save_flags+0x28/0x900 [ 1248.985745][T24341] ? find_held_lock+0x2d/0x110 [ 1248.987837][T24341] ? __nla_parse+0x40/0x60 [ 1248.989849][T24341] __rtnl_newlink+0xc3a/0x1920 [ 1248.992020][T24341] ? __pfx___rtnl_newlink+0x10/0x10 [ 1248.994344][T24341] rtnl_newlink+0x67/0xa0 [ 1248.996260][T24341] ? __pfx_rtnl_newlink+0x10/0x10 [ 1248.998466][T24341] rtnetlink_rcv_msg+0x3c7/0xea0 [ 1249.000694][T24341] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1249.002817][T24341] ? __pfx___dev_queue_xmit+0x10/0x10 [ 1249.004906][T24341] netlink_rcv_skb+0x165/0x410 [ 1249.007093][T24341] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1249.009493][T24341] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1249.011847][T24341] ? netlink_deliver_tap+0x1ae/0xcf0 [ 1249.014199][T24341] netlink_unicast+0x53c/0x7f0 [ 1249.016320][T24341] ? __pfx_netlink_unicast+0x10/0x10 [ 1249.018648][T24341] ? __phys_addr_symbol+0x30/0x80 [ 1249.020875][T24341] ? __check_object_size+0x497/0x720 [ 1249.023343][T24341] netlink_sendmsg+0x8b8/0xd70 [ 1249.025507][T24341] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1249.027819][T24341] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1249.030025][T24341] ____sys_sendmsg+0x9b4/0xb50 [ 1249.032012][T24341] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1249.033945][T24341] ? get_compat_msghdr+0x11b/0x170 [ 1249.035916][T24341] ? __pfx___lock_acquire+0x10/0x10 [ 1249.037930][T24341] ___sys_sendmsg+0x135/0x1e0 [ 1249.039738][T24341] ? __pfx____sys_sendmsg+0x10/0x10 [ 1249.041911][T24341] ? ksys_write+0x21c/0x260 [ 1249.043841][T24341] ? __fget_light+0x173/0x210 [ 1249.045962][T24341] __sys_sendmsg+0x117/0x1f0 [ 1249.047798][T24341] ? __pfx___sys_sendmsg+0x10/0x10 [ 1249.050061][T24341] __do_fast_syscall_32+0x73/0x120 [ 1249.052089][T24341] do_fast_syscall_32+0x32/0x80 [ 1249.054147][T24341] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1249.056822][T24341] RIP: 0023:0xf7f95579 [ 1249.058688][T24341] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1249.067081][T24341] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 1249.070718][T24341] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200001c0 [ 1249.074116][T24341] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1249.077657][T24341] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1249.080786][T24341] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1249.083982][T24341] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1249.087073][T24341] [ 1249.157057][T24341] team0: failed to offload ageing time [ 1249.163416][T24341] bridge0: port 3(team0) entered disabled state [ 1249.174947][T24341] team0: entered allmulticast mode [ 1249.181879][T24341] team_slave_0: entered allmulticast mode [ 1249.189456][T24341] team_slave_1: entered allmulticast mode [ 1249.200878][T24341] team0: entered promiscuous mode [ 1249.206756][T24341] team_slave_0: entered promiscuous mode [ 1249.211913][T24341] team_slave_1: entered promiscuous mode [ 1250.613987][T24352] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5418'. [ 1250.632194][T24352] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5418'. [ 1250.789526][T24352] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5418'. [ 1250.793365][T24352] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5418'. [ 1250.809852][T24355] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5419'. [ 1250.837960][T24355] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5419'. [ 1250.995573][T24355] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5419'. [ 1251.005236][T24355] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5419'. [ 1254.413233][ T39] kauditd_printk_skb: 6 callbacks suppressed [ 1254.413247][ T39] audit: type=1326 audit(1724967696.233:101668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24365 comm="syz.1.5423" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x0 [ 1255.268780][T24380] 9pnet_virtio: no channels available for device syz [ 1255.296665][T24380] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1255.337950][T24380] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1255.528925][T24386] netlink: 44 bytes leftover after parsing attributes in process `syz.0.5426'. [ 1256.548146][T24393] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5429'. [ 1256.553639][T24393] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5429'. [ 1256.662419][T24393] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5429'. [ 1256.666342][T24393] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5429'. [ 1258.252105][ T58] usb 7-1: new high-speed USB device number 33 using dummy_hcd [ 1258.467931][ T58] usb 7-1: Using ep0 maxpacket: 32 [ 1258.472126][ T58] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1258.476361][ T58] usb 7-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 1258.493198][ T58] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1258.497065][ T58] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1258.507880][ T58] usb 7-1: Product: syz [ 1258.509904][ T58] usb 7-1: Manufacturer: syz [ 1258.512168][ T58] usb 7-1: SerialNumber: syz [ 1258.785998][ T58] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 33 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 1258.873426][T24420] netlink: 48 bytes leftover after parsing attributes in process `syz.1.5437'. [ 1258.878075][T24420] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5437'. [ 1259.014068][ T58] usb 7-1: USB disconnect, device number 33 [ 1259.019246][ T58] usblp0: removed [ 1259.070216][T24418] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1259.074329][T24418] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1259.174825][T24425] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5437'. [ 1259.180156][T24425] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5437'. [ 1260.368229][T24445] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5443'. [ 1261.378864][T24455] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1261.551202][T24457] ip6gretap0 speed is unknown, defaulting to 1000 [ 1261.554926][T24457] ip6gretap0 speed is unknown, defaulting to 1000 [ 1261.577351][T24457] ip6gretap0 speed is unknown, defaulting to 1000 [ 1261.626202][T24457] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 1261.686226][T24457] ip6gretap0 speed is unknown, defaulting to 1000 [ 1261.693419][T24457] ip6gretap0 speed is unknown, defaulting to 1000 [ 1261.704665][T24457] ip6gretap0 speed is unknown, defaulting to 1000 [ 1261.707498][T24457] ip6gretap0 speed is unknown, defaulting to 1000 [ 1261.774202][T24457] ip6gretap0 speed is unknown, defaulting to 1000 [ 1261.779223][T24457] ip6gretap0 speed is unknown, defaulting to 1000 [ 1261.783553][T24457] ip6gretap0 speed is unknown, defaulting to 1000 [ 1261.790431][T24457] ip6gretap0 speed is unknown, defaulting to 1000 [ 1261.849610][T24463] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1261.853306][T24463] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1262.975055][T24471] __nla_validate_parse: 3 callbacks suppressed [ 1262.975071][T24471] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5450'. [ 1263.137508][ T67] Bluetooth: hci5: SCO packet for unknown connection handle 0 [ 1263.417636][T24476] ptm ptm1: ldisc open failed (-12), clearing slot 1 [ 1264.187594][T24482] netlink: 'syz.3.5453': attribute type 4 has an invalid length. [ 1264.246941][T24484] netlink: 'syz.3.5453': attribute type 4 has an invalid length. [ 1265.132722][T24487] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5454'. [ 1265.142078][T24487] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5454'. [ 1265.294812][T24490] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5455'. [ 1265.298737][T24490] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5455'. [ 1265.340275][T24490] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5455'. [ 1265.344421][T24490] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5455'. [ 1266.455572][T24492] fuse: Bad value for 'fd' [ 1266.741918][T24495] sp0: Synchronizing with TNC [ 1266.756453][T24495] netlink: 'syz.2.5457': attribute type 4 has an invalid length. [ 1266.764696][T24495] netlink: 126052 bytes leftover after parsing attributes in process `syz.2.5457'. [ 1266.797824][T24495] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5457'. [ 1268.068163][ T10] usb 5-1: new high-speed USB device number 45 using dummy_hcd [ 1268.247901][ T10] usb 5-1: Using ep0 maxpacket: 16 [ 1268.255697][ T10] usb 5-1: config 0 has no interfaces? [ 1268.261454][ T10] usb 5-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 1268.268962][ T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1268.272493][ T10] usb 5-1: Product: syz [ 1268.274750][ T10] usb 5-1: Manufacturer: syz [ 1268.276946][ T10] usb 5-1: SerialNumber: syz [ 1268.301826][ T10] usb 5-1: config 0 descriptor?? [ 1268.508824][T12531] usb 6-1: new high-speed USB device number 47 using dummy_hcd [ 1268.707835][T12531] usb 6-1: Using ep0 maxpacket: 8 [ 1268.711391][T12531] usb 6-1: config index 0 descriptor too short (expected 301, got 45) [ 1268.715353][T12531] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 1268.720189][T12531] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 1268.724601][T12531] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 1268.742894][T12531] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 1268.753075][T12531] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 1268.757106][T12531] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1268.813659][T24517] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1268.829605][T24517] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1268.951771][ T4540] usb 5-1: USB disconnect, device number 45 [ 1268.982268][T12531] usb 6-1: usb_control_msg returned -32 [ 1268.984671][T12531] usbtmc 6-1:16.0: can't read capabilities [ 1269.866565][T24526] FAULT_INJECTION: forcing a failure. [ 1269.866565][T24526] name failslab, interval 1, probability 0, space 0, times 0 [ 1269.877810][T24526] CPU: 3 UID: 0 PID: 24526 Comm: syz.2.5466 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1269.882613][T24526] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1269.887346][T24526] Call Trace: [ 1269.888818][T24526] [ 1269.890124][T24526] dump_stack_lvl+0x16c/0x1f0 [ 1269.892213][T24526] should_fail_ex+0x497/0x5b0 [ 1269.894299][T24526] ? fs_reclaim_acquire+0xae/0x160 [ 1269.896572][T24526] should_failslab+0xc2/0x120 [ 1269.898685][T24526] __kmalloc_cache_noprof+0x6b/0x310 [ 1269.900984][T24526] ? snd_seq_port_connect+0x61/0x550 [ 1269.903266][T24526] snd_seq_port_connect+0x61/0x550 [ 1269.905548][T24526] ? _raw_read_unlock+0x28/0x50 [ 1269.907616][T24526] ? check_subscription_permission.isra.0+0xf5/0x240 [ 1269.910296][T24526] snd_seq_ioctl_subscribe_port+0x1fe/0x3f0 [ 1269.912531][T24526] ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10 [ 1269.915035][T24526] ? __pfx_lock_release+0x10/0x10 [ 1269.917041][T24526] ? mark_held_locks+0x9f/0xe0 [ 1269.919186][T24526] snd_seq_kernel_client_ctl+0x107/0x1c0 [ 1269.921736][T24526] snd_seq_oss_midi_open+0x5c5/0x6b0 [ 1269.924079][T24526] ? __pfx_snd_seq_oss_midi_open+0x10/0x10 [ 1269.926684][T24526] ? lock_acquire+0x1b1/0x560 [ 1269.928764][T24526] snd_seq_oss_synth_reset+0x484/0x890 [ 1269.931177][T24526] ? __pfx_snd_seq_oss_synth_reset+0x10/0x10 [ 1269.933777][T24526] ? rcu_is_watching+0x12/0xc0 [ 1269.935867][T24526] ? trace_contention_end+0xea/0x140 [ 1269.938215][T24526] snd_seq_oss_reset+0x73/0x290 [ 1269.940408][T24526] snd_seq_oss_ioctl+0xc06/0xd90 [ 1269.942584][T24526] ? __pfx___mutex_lock+0x10/0x10 [ 1269.944915][T24526] ? __pfx_snd_seq_oss_ioctl+0x10/0x10 [ 1269.947322][T24526] ? __fget_files+0x256/0x400 [ 1269.949596][T24526] odev_ioctl+0x9a/0x120 [ 1269.951501][T24526] ? __pfx_odev_ioctl_compat+0x10/0x10 [ 1269.953890][T24526] __do_compat_sys_ioctl+0x2c3/0x330 [ 1269.956329][T24526] __do_fast_syscall_32+0x73/0x120 [ 1269.958631][T24526] do_fast_syscall_32+0x32/0x80 [ 1269.960811][T24526] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1269.963693][T24526] RIP: 0023:0xf7f56579 [ 1269.965476][T24526] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1269.974073][T24526] RSP: 002b:00000000f56d556c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 1269.977761][T24526] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000000005100 [ 1269.981541][T24526] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1269.985136][T24526] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1269.988665][T24526] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1269.991983][T24526] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1269.995433][T24526] [ 1270.945554][ T67] Bluetooth: hci0: SCO packet for unknown connection handle 768 [ 1270.949571][ T67] Bluetooth: hci0: unexpected event 0x09 length: 10 > 3 [ 1270.954825][ T67] Bluetooth: hci0: SCO packet for unknown connection handle 1039 [ 1271.257093][ T4540] usb 6-1: USB disconnect, device number 47 [ 1271.365357][T24534] netlink: 'syz.1.5469': attribute type 2 has an invalid length. [ 1271.549035][T24539] Cannot find set identified by id 0 to match [ 1272.807408][T24555] netlink: 104 bytes leftover after parsing attributes in process `syz.3.5476'. [ 1272.822079][T24555] netlink: 104 bytes leftover after parsing attributes in process `syz.3.5476'. [ 1272.842257][T24555] netlink: 180 bytes leftover after parsing attributes in process `syz.3.5476'. [ 1274.088049][T21225] usb 5-1: new high-speed USB device number 46 using dummy_hcd [ 1274.280291][T21225] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 1274.284130][T21225] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1274.296643][T21225] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 1274.315993][T21225] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1274.327271][T21225] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 1274.332046][T21225] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 1274.335659][T21225] usb 5-1: Product: syz [ 1274.337578][T21225] usb 5-1: Manufacturer: syz [ 1274.360992][T21225] cdc_wdm 5-1:1.0: skipping garbage [ 1274.363394][T21225] cdc_wdm 5-1:1.0: skipping garbage [ 1274.374548][T21225] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 1274.377167][T21225] cdc_wdm 5-1:1.0: Unknown control protocol [ 1274.609102][T21225] usb 5-1: USB disconnect, device number 46 [ 1275.146540][T24594] FAULT_INJECTION: forcing a failure. [ 1275.146540][T24594] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1275.156932][T24595] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5488'. [ 1275.161714][T24594] CPU: 0 UID: 0 PID: 24594 Comm: syz.2.5489 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1275.165436][T24594] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1275.169014][T24594] Call Trace: [ 1275.170169][T24594] [ 1275.171384][T24594] dump_stack_lvl+0x16c/0x1f0 [ 1275.173278][T24594] should_fail_ex+0x497/0x5b0 [ 1275.175092][T24594] _copy_from_user+0x30/0xf0 [ 1275.176896][T24594] vt_compat_ioctl+0x308/0x4e0 [ 1275.178757][T24594] ? __pfx_vt_compat_ioctl+0x10/0x10 [ 1275.180764][T24594] ? __fget_files+0x256/0x400 [ 1275.182581][T24594] ? __pfx_vt_compat_ioctl+0x10/0x10 [ 1275.184650][T24594] tty_compat_ioctl+0x300/0x4f0 [ 1275.186563][T24594] ? __pfx_tty_compat_ioctl+0x10/0x10 [ 1275.188701][T24594] __do_compat_sys_ioctl+0x2c3/0x330 [ 1275.190778][T24594] __do_fast_syscall_32+0x73/0x120 [ 1275.192758][T24594] do_fast_syscall_32+0x32/0x80 [ 1275.194626][T24594] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1275.196654][T24594] RIP: 0023:0xf7f56579 [ 1275.198154][T24594] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1275.205511][T24594] RSP: 002b:00000000f56d556c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 1275.208543][T24594] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000004b72 [ 1275.212856][T24594] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 1275.216588][T24594] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1275.220936][T24594] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1275.224246][T24594] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1275.227625][T24594] [ 1275.228998][T24595] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5488'. [ 1275.525205][T24599] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5488'. [ 1275.553412][T24599] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5488'. [ 1276.588352][T24619] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5494'. [ 1276.592847][T24621] (unnamed net_device) (uninitialized): (slave bond_slave_1): Device is not our slave [ 1276.598003][T24621] (unnamed net_device) (uninitialized): option active_slave: invalid value (bond_slave_1) [ 1276.639491][T24623] FAULT_INJECTION: forcing a failure. [ 1276.639491][T24623] name failslab, interval 1, probability 0, space 0, times 0 [ 1276.645149][T24623] CPU: 1 UID: 0 PID: 24623 Comm: syz.3.5496 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1276.650641][T24623] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1276.655582][T24623] Call Trace: [ 1276.657084][T24623] [ 1276.658411][T24623] dump_stack_lvl+0x16c/0x1f0 [ 1276.660603][T24623] should_fail_ex+0x497/0x5b0 [ 1276.662756][T24623] should_failslab+0xc2/0x120 [ 1276.664902][T24623] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 1276.667645][T24623] ? slab_build_skb+0x46/0x3c0 [ 1276.670526][T24623] slab_build_skb+0x46/0x3c0 [ 1276.672314][T24623] ? sock_init_data_uid+0x7f6/0xa00 [ 1276.674304][T24623] bpf_prog_test_run_skb+0x360/0x2140 [ 1276.676937][T24623] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 1276.680060][T24623] ? fput+0x32/0x390 [ 1276.681903][T24623] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 1276.684348][T24623] __sys_bpf+0x1af6/0x55e0 [ 1276.686759][T24623] ? __pfx___sys_bpf+0x10/0x10 [ 1276.688951][T24623] ? ksys_write+0x12f/0x260 [ 1276.690961][T24623] ? find_held_lock+0x2d/0x110 [ 1276.693092][T24623] ? ksys_write+0x21c/0x260 [ 1276.695108][T24623] ? __pfx_lock_release+0x10/0x10 [ 1276.697293][T24623] ? vfs_write+0x14d/0x1140 [ 1276.699300][T24623] ? __mutex_unlock_slowpath+0x164/0x650 [ 1276.701792][T24623] ? fput+0x32/0x390 [ 1276.703540][T24623] ? ksys_write+0x1ab/0x260 [ 1276.705770][T24623] ? __pfx_ksys_write+0x10/0x10 [ 1276.707658][T24623] __ia32_sys_bpf+0x76/0xe0 [ 1276.709429][T24623] __do_fast_syscall_32+0x73/0x120 [ 1276.711412][T24623] do_fast_syscall_32+0x32/0x80 [ 1276.713292][T24623] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1276.715720][T24623] RIP: 0023:0xf73ee579 [ 1276.717360][T24623] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1276.725161][T24623] RSP: 002b:00000000f56f656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 1276.728332][T24623] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000200008c0 [ 1276.731376][T24623] RDX: 000000000000004c RSI: 0000000000000000 RDI: 0000000000000000 [ 1276.734643][T24623] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1276.738103][T24623] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1276.741435][T24623] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1276.744904][T24623] [ 1276.746399][ C1] vkms_vblank_simulate: vblank timer overrun [ 1277.315450][T24638] netlink: 48 bytes leftover after parsing attributes in process `syz.1.5500'. [ 1277.338769][T24638] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5500'. [ 1277.875485][T24646] __nla_validate_parse: 2 callbacks suppressed [ 1277.875500][T24646] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5501'. [ 1278.325256][T24655] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 1278.672490][T24664] autofs: Bad value for 'fd' [ 1278.786954][ T39] audit: type=1804 audit(1724967720.603:101669): pid=24664 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.5507" name="/newroot/556/bus/bus" dev="overlay" ino=3070 res=1 errno=0 [ 1279.448077][T24671] autofs: Bad value for 'fd' [ 1279.536294][T24669] FAULT_INJECTION: forcing a failure. [ 1279.536294][T24669] name failslab, interval 1, probability 0, space 0, times 0 [ 1279.594850][T24669] CPU: 0 UID: 0 PID: 24669 Comm: syz.1.5508 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1279.600438][T24669] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1279.605241][T24669] Call Trace: [ 1279.606644][T24669] [ 1279.608005][T24669] dump_stack_lvl+0x16c/0x1f0 [ 1279.610235][T24669] should_fail_ex+0x497/0x5b0 [ 1279.612506][T24669] ? fs_reclaim_acquire+0xae/0x160 [ 1279.615133][T24669] should_failslab+0xc2/0x120 [ 1279.617824][T24669] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 1279.621113][T24669] ? alloc_empty_file+0x73/0x1e0 [ 1279.624124][T24669] alloc_empty_file+0x73/0x1e0 [ 1279.626934][T24669] path_openat+0xe0/0x2d20 [ 1279.629808][T24669] ? hlock_class+0x4e/0x130 [ 1279.633021][T24669] ? __lock_acquire+0x1620/0x3cb0 [ 1279.635794][T24669] ? __pfx_path_openat+0x10/0x10 [ 1279.643065][T24669] ? __pfx___lock_acquire+0x10/0x10 [ 1279.645083][T24669] ? find_held_lock+0x2d/0x110 [ 1279.647218][T24669] do_filp_open+0x1dc/0x430 [ 1279.649181][T24669] ? __pfx_do_filp_open+0x10/0x10 [ 1279.655596][T24669] ? _raw_spin_unlock+0x28/0x50 [ 1279.657527][T24669] ? alloc_fd+0x2d7/0x6c0 [ 1279.659400][T24669] do_sys_openat2+0x17a/0x1e0 [ 1279.662322][T24669] ? __pfx_do_sys_openat2+0x10/0x10 [ 1279.664987][T24669] __ia32_compat_sys_open+0x147/0x1e0 [ 1279.667774][T24669] ? __pfx___ia32_compat_sys_open+0x10/0x10 [ 1279.673004][T24669] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 1279.676144][T24669] __do_fast_syscall_32+0x73/0x120 [ 1279.678334][T24669] do_fast_syscall_32+0x32/0x80 [ 1279.680385][T24669] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1279.682994][T24669] RIP: 0023:0xf746e579 [ 1279.684777][T24669] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1279.694957][T24669] RSP: 002b:00000000f575556c EFLAGS: 00000296 ORIG_RAX: 0000000000000005 [ 1279.698812][T24669] RAX: ffffffffffffffda RBX: 0000000020000140 RCX: 0000000000000000 [ 1279.702258][T24669] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1279.705592][T24669] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1279.708931][T24669] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1279.712049][T24669] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1279.715444][T24669] [ 1280.720951][T24683] veth0: entered promiscuous mode [ 1281.514280][T24681] veth0: left promiscuous mode [ 1282.361332][T24716] FAULT_INJECTION: forcing a failure. [ 1282.361332][T24716] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1282.366969][T24716] CPU: 1 UID: 0 PID: 24716 Comm: syz.0.5517 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1282.371580][T24716] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1282.376213][T24716] Call Trace: [ 1282.377365][T24716] [ 1282.378372][T24716] dump_stack_lvl+0x16c/0x1f0 [ 1282.380408][T24716] should_fail_ex+0x497/0x5b0 [ 1282.382528][T24716] ? fs_reclaim_acquire+0xae/0x160 [ 1282.384825][T24716] should_fail_alloc_page+0xe7/0x130 [ 1282.387061][T24716] prepare_alloc_pages.constprop.0+0x16f/0x560 [ 1282.389534][T24716] __alloc_pages_noprof+0x194/0x2460 [ 1282.391808][T24716] ? __pfx_mark_lock+0x10/0x10 [ 1282.393850][T24716] ? lock_acquire+0x1b1/0x560 [ 1282.395863][T24716] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 1282.398226][T24716] ? hlock_class+0x4e/0x130 [ 1282.400153][T24716] ? __lock_acquire+0x1620/0x3cb0 [ 1282.402293][T24716] ? hlock_class+0x4e/0x130 [ 1282.404188][T24716] ? mark_lock+0xb5/0xc60 [ 1282.406053][T24716] ? __lock_acquire+0xbdd/0x3cb0 [ 1282.408150][T24716] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1282.410701][T24716] ? policy_nodemask+0xea/0x4e0 [ 1282.412660][T24716] alloc_pages_mpol_noprof+0x275/0x610 [ 1282.414398][T24716] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 1282.416163][T24716] ? find_held_lock+0x2d/0x110 [ 1282.417763][T24716] folio_alloc_mpol_noprof+0x36/0xd0 [ 1282.419782][T24716] shmem_alloc_folio+0x135/0x160 [ 1282.421834][T24716] shmem_alloc_and_add_folio+0x19c/0xce0 [ 1282.424190][T24716] ? filemap_get_entry+0x1b2/0x3c0 [ 1282.427027][T24716] ? __pfx_filemap_get_entry+0x10/0x10 [ 1282.429571][T24716] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 1282.432212][T24716] ? shmem_allowable_huge_orders+0x2c9/0x340 [ 1282.434795][T24716] shmem_get_folio_gfp+0xa62/0x15e0 [ 1282.437054][T24716] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 1282.439439][T24716] shmem_fault+0x205/0xaf0 [ 1282.441251][T24716] ? __pfx_shmem_fault+0x10/0x10 [ 1282.443028][T24716] ? rcu_read_unlock+0x2d/0xb0 [ 1282.444920][T24716] ? __pfx_lock_release+0x10/0x10 [ 1282.446977][T24716] ? pte_offset_map_nolock+0xfe/0x1c0 [ 1282.449310][T24716] __do_fault+0x10a/0x490 [ 1282.451188][T24716] ? __pfx_filemap_map_pages+0x10/0x10 [ 1282.453459][T24716] __handle_mm_fault+0x3b11/0x5350 [ 1282.455521][T24716] ? no_page_table+0xc7/0x230 [ 1282.457368][T24716] ? __pfx___handle_mm_fault+0x10/0x10 [ 1282.459424][T24716] ? follow_page_pte+0x3dc/0x1cf0 [ 1282.461400][T24716] ? vma_pgtable_walk_end+0x3d/0x70 [ 1282.463445][T24716] handle_mm_fault+0x44e/0x7b0 [ 1282.465367][T24716] __get_user_pages+0x475/0x15c0 [ 1282.467484][T24716] ? __pfx___get_user_pages+0x10/0x10 [ 1282.469731][T24716] ? down_read_killable+0xcc/0x380 [ 1282.471525][T24716] ? __pfx_down_read_killable+0x10/0x10 [ 1282.473366][T24716] __gup_longterm_locked+0x639/0x1b30 [ 1282.475559][T24716] ? __pfx___gup_longterm_locked+0x10/0x10 [ 1282.477702][T24716] ? sanity_check_pinned_pages+0x23/0x1220 [ 1282.480173][T24716] ? gup_fast_fallback+0x1ea4/0x24e0 [ 1282.482475][T24716] ? gup_fast_fallback+0x1eb2/0x24e0 [ 1282.484735][T24716] gup_fast_fallback+0x153d/0x24e0 [ 1282.486969][T24716] ? __pfx_gup_fast_fallback+0x10/0x10 [ 1282.489304][T24716] ? ___kmalloc_large_node+0x127/0x1a0 [ 1282.491658][T24716] ? lockdep_hardirqs_on+0x7c/0x110 [ 1282.493938][T24716] ? rcu_is_watching+0x12/0xc0 [ 1282.496061][T24716] pin_user_pages_fast+0xa8/0x100 [ 1282.498196][T24716] ? __pfx_pin_user_pages_fast+0x10/0x10 [ 1282.500494][T24716] ? __kvmalloc_node_noprof+0x6f/0x1a0 [ 1282.502862][T24716] io_pin_pages+0xae/0x190 [ 1282.504805][T24716] io_sqe_buffer_register+0x124/0x1790 [ 1282.507313][T24716] ? copy_compat_iovec_from_user+0x138/0x180 [ 1282.509944][T24716] ? __pfx_io_sqe_buffer_register+0x10/0x10 [ 1282.512467][T24716] ? iovec_from_user.part.0+0x7e/0x130 [ 1282.514665][T24716] io_sqe_buffers_register+0x360/0x9f0 [ 1282.516984][T24716] ? __pfx_io_sqe_buffers_register+0x10/0x10 [ 1282.519540][T24716] __do_sys_io_uring_register+0xf7f/0x2240 [ 1282.522042][T24716] ? __pfx___do_sys_io_uring_register+0x10/0x10 [ 1282.524677][T24716] ? ksys_write+0x1ab/0x260 [ 1282.526639][T24716] ? __pfx_ksys_write+0x10/0x10 [ 1282.528614][T24716] __do_fast_syscall_32+0x73/0x120 [ 1282.530842][T24716] do_fast_syscall_32+0x32/0x80 [ 1282.532722][T24716] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1282.535387][T24716] RIP: 0023:0xf7f95579 [ 1282.537067][T24716] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1282.545449][T24716] RSP: 002b:00000000f571556c EFLAGS: 00000296 ORIG_RAX: 00000000000001ab [ 1282.549056][T24716] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000000000 [ 1282.552459][T24716] RDX: 00000000200002c0 RSI: 000000000000011a RDI: 0000000000000000 [ 1282.555674][T24716] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1282.558878][T24716] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1282.561661][T24716] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1282.564972][T24716] [ 1282.566451][ C1] vkms_vblank_simulate: vblank timer overrun [ 1283.211128][T24729] nvme_fabrics: unknown parameter or missing value 'õ' in ctrl creation request [ 1283.232391][T24732] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5521'. [ 1283.252508][T24732] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5521'. [ 1283.568577][T24739] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5522'. [ 1283.577341][T24739] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5522'. [ 1283.737964][T24739] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5522'. [ 1283.741448][T24739] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5522'. [ 1283.920248][T24738] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1283.938205][T24738] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1284.624328][ C3] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1284.643829][T24747] FAULT_INJECTION: forcing a failure. [ 1284.643829][T24747] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1284.654113][T24747] CPU: 3 UID: 0 PID: 24747 Comm: syz.0.5525 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1284.658805][T24747] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1284.663642][T24747] Call Trace: [ 1284.665106][T24747] [ 1284.666313][T24747] dump_stack_lvl+0x16c/0x1f0 [ 1284.668421][T24747] should_fail_ex+0x497/0x5b0 [ 1284.670515][T24747] _copy_from_user+0x30/0xf0 [ 1284.672581][T24747] get_compat_msghdr+0xa8/0x170 [ 1284.674684][T24747] ? __pfx_get_compat_msghdr+0x10/0x10 [ 1284.677026][T24747] ? __pfx___lock_acquire+0x10/0x10 [ 1284.679235][T24747] ___sys_sendmsg+0x1b0/0x1e0 [ 1284.681326][T24747] ? __pfx____sys_sendmsg+0x10/0x10 [ 1284.683583][T24747] ? ksys_write+0x21c/0x260 [ 1284.685746][T24747] ? __fget_light+0x173/0x210 [ 1284.687931][T24747] __sys_sendmsg+0x117/0x1f0 [ 1284.689991][T24747] ? __pfx___sys_sendmsg+0x10/0x10 [ 1284.692259][T24747] __do_fast_syscall_32+0x73/0x120 [ 1284.694456][T24747] do_fast_syscall_32+0x32/0x80 [ 1284.696603][T24747] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1284.699370][T24747] RIP: 0023:0xf7f95579 [ 1284.701139][T24747] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1284.709419][T24747] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 1284.712970][T24747] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000240 [ 1284.716275][T24747] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1284.719284][T24747] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1284.722275][T24747] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1284.725276][T24747] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1284.728654][T24747] [ 1284.744049][T24747] 9pnet_fd: Insufficient options for proto=fd [ 1285.255578][T24764] FAULT_INJECTION: forcing a failure. [ 1285.255578][T24764] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1285.276345][T24764] CPU: 1 UID: 0 PID: 24764 Comm: syz.3.5531 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1285.281404][T24764] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1285.286973][T24764] Call Trace: [ 1285.288730][T24764] [ 1285.290336][T24764] dump_stack_lvl+0x16c/0x1f0 [ 1285.292464][T24764] should_fail_ex+0x497/0x5b0 [ 1285.294896][T24764] _copy_to_user+0x30/0xc0 [ 1285.297203][T24764] simple_read_from_buffer+0xd0/0x160 [ 1285.300451][T24764] proc_fail_nth_read+0x19e/0x280 [ 1285.302716][T24764] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1285.305292][T24764] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 1285.307806][T24764] vfs_read+0x1d4/0xbd0 [ 1285.309960][T24764] ? __fdget_pos+0xeb/0x180 [ 1285.312282][T24764] ? semctl_down+0x5c3/0xa00 [ 1285.314541][T24764] ? __pfx_vfs_read+0x10/0x10 [ 1285.316544][T24764] ? __pfx___mutex_lock+0x10/0x10 [ 1285.318980][T24764] ? __fget_files+0x256/0x400 [ 1285.321421][T24764] ksys_read+0x12f/0x260 [ 1285.323326][T24764] ? __pfx_ksys_read+0x10/0x10 [ 1285.325283][T24764] __do_fast_syscall_32+0x73/0x120 [ 1285.327597][T24764] do_fast_syscall_32+0x32/0x80 [ 1285.329641][T24764] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1285.332270][T24764] RIP: 0023:0xf73ee579 [ 1285.334010][T24764] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1285.342995][T24764] RSP: 002b:00000000f56f65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 1285.346799][T24764] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f56f6620 [ 1285.350324][T24764] RDX: 000000000000000f RSI: 00000000f73e0ff4 RDI: 0000000000000000 [ 1285.354217][T24764] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 1285.358182][T24764] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 1285.361434][T24764] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1285.364443][T24764] [ 1285.365847][ C1] vkms_vblank_simulate: vblank timer overrun [ 1287.025289][T11769] Bluetooth: hci0: command 0x0406 tx timeout [ 1287.108819][ C1] vkms_vblank_simulate: vblank timer overrun [ 1287.412296][T24780] veth0: entered promiscuous mode [ 1288.526670][T24797] netlink: 'syz.1.5541': attribute type 10 has an invalid length. [ 1290.255373][T24813] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5547'. [ 1290.286238][T24813] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5547'. [ 1291.854232][T24835] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1291.858767][T24835] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1293.068205][ T58] usb 7-1: new high-speed USB device number 34 using dummy_hcd [ 1293.128426][T24852] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5557'. [ 1293.134141][T24852] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5557'. [ 1293.267946][ T58] usb 7-1: Using ep0 maxpacket: 8 [ 1293.278812][ T58] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 1293.282743][ T58] usb 7-1: config 0 has no interface number 0 [ 1293.285529][ T58] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1293.293118][ T58] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 1293.297342][ T58] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1293.310364][ T58] usb 7-1: config 0 descriptor?? [ 1293.320038][ T58] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 1293.541403][ T58] usb 7-1: USB disconnect, device number 34 [ 1293.558272][ T58] iowarrior 7-1:0.1: I/O-Warror #0 now disconnected [ 1293.572012][T24856] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1293.576330][T24856] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1294.227042][T24873] binder: 24871:24873 ioctl c0306201 0 returned -14 [ 1294.565381][T24882] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5566'. [ 1294.570626][T24882] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5566'. [ 1294.919568][ T8] usb 5-1: new high-speed USB device number 47 using dummy_hcd [ 1295.117867][ T8] usb 5-1: Using ep0 maxpacket: 32 [ 1295.122797][ T8] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 1295.131628][ T8] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 1295.137307][ T8] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 1295.140949][ T8] usb 5-1: Product: syz [ 1295.142926][ T8] usb 5-1: Manufacturer: syz [ 1295.145159][ T8] usb 5-1: SerialNumber: syz [ 1295.163520][ T8] usb 5-1: config 0 descriptor?? [ 1295.166900][T24887] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1295.260917][ T39] audit: type=1326 audit(1724967737.083:101670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24897 comm="syz.1.5573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1295.308492][ T39] audit: type=1326 audit(1724967737.093:101671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24897 comm="syz.1.5573" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1295.321586][ T39] audit: type=1326 audit(1724967737.093:101672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24897 comm="syz.1.5573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1295.331865][ T39] audit: type=1326 audit(1724967737.093:101673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24897 comm="syz.1.5573" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1295.349179][ T39] audit: type=1326 audit(1724967737.093:101674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24897 comm="syz.1.5573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1295.364806][ T39] audit: type=1326 audit(1724967737.103:101675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24897 comm="syz.1.5573" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1295.396313][ T39] audit: type=1326 audit(1724967737.103:101676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24897 comm="syz.1.5573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1295.419262][ T39] audit: type=1326 audit(1724967737.103:101677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24897 comm="syz.1.5573" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1295.428903][ T39] audit: type=1326 audit(1724967737.103:101678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24897 comm="syz.1.5573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1295.438403][ T39] audit: type=1326 audit(1724967737.113:101679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24897 comm="syz.1.5573" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1295.446130][ T8] usb 5-1: USB disconnect, device number 47 [ 1296.237578][T24910] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5576'. [ 1296.243665][T24910] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5576'. [ 1296.307706][T24918] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5577'. [ 1296.312496][T24918] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5577'. [ 1296.391908][T24918] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5577'. [ 1296.395558][T24918] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5577'. [ 1296.530395][T24928] 9pnet_virtio: no channels available for device syz [ 1297.046730][T24930] 9pnet_virtio: no channels available for device syz [ 1297.094353][T24930] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1297.115337][T24930] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1297.191309][T24935] FAULT_INJECTION: forcing a failure. [ 1297.191309][T24935] name failslab, interval 1, probability 0, space 0, times 0 [ 1297.205316][T24935] CPU: 0 UID: 0 PID: 24935 Comm: syz.0.5584 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1297.210189][T24935] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1297.215050][T24935] Call Trace: [ 1297.216559][T24935] [ 1297.217922][T24935] dump_stack_lvl+0x16c/0x1f0 [ 1297.219827][T24935] should_fail_ex+0x497/0x5b0 [ 1297.221696][T24935] ? fs_reclaim_acquire+0xae/0x160 [ 1297.223701][T24935] should_failslab+0xc2/0x120 [ 1297.225558][T24935] __kmalloc_node_track_caller_noprof+0xcf/0x440 [ 1297.228005][T24935] ? vfs_parse_fs_string+0xc4/0x150 [ 1297.230255][T24935] kmemdup_nul+0x34/0xb0 [ 1297.232177][T24935] vfs_parse_fs_string+0xc4/0x150 [ 1297.234442][T24935] ? __pfx_vfs_parse_fs_string+0x10/0x10 [ 1297.236944][T24935] ? __kasan_kmalloc+0xaa/0xb0 [ 1297.239065][T24935] ? shmem_init_fs_context+0x1f7/0x280 [ 1297.241493][T24935] ? bpf_lsm_sb_eat_lsm_opts+0x9/0x10 [ 1297.243881][T24935] shmem_parse_options+0x158/0x230 [ 1297.246132][T24935] path_mount+0xb1c/0x1f10 [ 1297.248073][T24935] ? __pfx_path_mount+0x10/0x10 [ 1297.250170][T24935] ? putname+0x12e/0x170 [ 1297.252027][T24935] ? putname+0x12e/0x170 [ 1297.253814][T24935] __ia32_sys_mount+0x292/0x310 [ 1297.255977][T24935] ? __pfx___ia32_sys_mount+0x10/0x10 [ 1297.258332][T24935] __do_fast_syscall_32+0x73/0x120 [ 1297.260361][T24935] do_fast_syscall_32+0x32/0x80 [ 1297.262292][T24935] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1297.264761][T24935] RIP: 0023:0xf7f95579 [ 1297.266365][T24935] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1297.273884][T24935] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015 [ 1297.277494][T24935] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000080 [ 1297.280555][T24935] RDX: 0000000000000000 RSI: 0000000000080020 RDI: 0000000020000040 [ 1297.283349][T24935] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1297.285987][T24935] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1297.288599][T24935] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1297.291265][T24935] [ 1298.051948][T24948] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1298.055847][T24948] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1298.116697][T24954] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5588'. [ 1298.400649][T24965] 9pnet_virtio: no channels available for device syz [ 1298.733564][T24971] FAULT_INJECTION: forcing a failure. [ 1298.733564][T24971] name failslab, interval 1, probability 0, space 0, times 0 [ 1298.774299][T24971] CPU: 2 UID: 0 PID: 24971 Comm: syz.0.5593 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1298.779035][T24971] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1298.783725][T24971] Call Trace: [ 1298.785235][T24971] [ 1298.786546][T24971] dump_stack_lvl+0x16c/0x1f0 [ 1298.788662][T24971] should_fail_ex+0x497/0x5b0 [ 1298.790804][T24971] ? fs_reclaim_acquire+0xae/0x160 [ 1298.793107][T24971] should_failslab+0xc2/0x120 [ 1298.795312][T24971] kmem_cache_alloc_node_noprof+0x71/0x310 [ 1298.797985][T24971] ? __alloc_skb+0x2b3/0x380 [ 1298.800081][T24971] __alloc_skb+0x2b3/0x380 [ 1298.802102][T24971] ? __pfx___alloc_skb+0x10/0x10 [ 1298.804276][T24971] ? __pfx___might_resched+0x10/0x10 [ 1298.806488][T24971] netlink_alloc_large_skb+0x69/0x130 [ 1298.808577][T24971] netlink_sendmsg+0x689/0xd70 [ 1298.810532][T24971] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1298.812722][T24971] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1298.815032][T24971] ____sys_sendmsg+0x9b4/0xb50 [ 1298.817120][T24971] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1298.819373][T24971] ? get_compat_msghdr+0x11b/0x170 [ 1298.821670][T24971] ? __pfx___lock_acquire+0x10/0x10 [ 1298.823751][T24971] ___sys_sendmsg+0x135/0x1e0 [ 1298.825498][T24971] ? __pfx____sys_sendmsg+0x10/0x10 [ 1298.827197][T24971] ? ksys_write+0x21c/0x260 [ 1298.828868][T24971] ? __fget_light+0x173/0x210 [ 1298.830867][T24971] __sys_sendmsg+0x117/0x1f0 [ 1298.832838][T24971] ? __pfx___sys_sendmsg+0x10/0x10 [ 1298.835129][T24971] __do_fast_syscall_32+0x73/0x120 [ 1298.837415][T24971] do_fast_syscall_32+0x32/0x80 [ 1298.839575][T24971] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1298.842323][T24971] RIP: 0023:0xf7f95579 [ 1298.844046][T24971] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1298.851530][T24971] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 1298.854743][T24971] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000e40 [ 1298.858010][T24971] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1298.861361][T24971] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1298.864232][T24971] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1298.867553][T24971] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1298.870896][T24971] [ 1299.095023][T24981] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5596'. [ 1299.103345][T24981] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5596'. [ 1299.238432][T24981] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5596'. [ 1300.901134][T25014] ip6gretap0 speed is unknown, defaulting to 1000 [ 1300.986592][ C0] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1301.039794][ T39] kauditd_printk_skb: 88 callbacks suppressed [ 1301.039810][ T39] audit: type=1326 audit(1724967742.863:101768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25027 comm="syz.1.5614" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf746e579 code=0x0 [ 1301.707813][T25044] Device name cannot be null; rc = [-22] [ 1303.087992][T25051] FAULT_INJECTION: forcing a failure. [ 1303.087992][T25051] name failslab, interval 1, probability 0, space 0, times 0 [ 1303.098090][T25051] CPU: 2 UID: 0 PID: 25051 Comm: syz.2.5622 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1303.102258][T25051] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1303.106144][T25051] Call Trace: [ 1303.107304][T25051] [ 1303.108569][T25051] dump_stack_lvl+0x16c/0x1f0 [ 1303.110486][T25051] should_fail_ex+0x497/0x5b0 [ 1303.112475][T25051] ? fs_reclaim_acquire+0xae/0x160 [ 1303.114396][T25051] should_failslab+0xc2/0x120 [ 1303.116120][T25051] kmem_cache_alloc_node_noprof+0x71/0x310 [ 1303.118397][T25051] ? __alloc_skb+0x2b3/0x380 [ 1303.120239][T25051] ? security_capable+0x98/0xd0 [ 1303.122177][T25051] __alloc_skb+0x2b3/0x380 [ 1303.123933][T25051] ? __pfx___alloc_skb+0x10/0x10 [ 1303.125901][T25051] ? genl_rcv_msg+0x480/0x800 [ 1303.127759][T25051] ? genl_rcv_msg+0x4bd/0x800 [ 1303.129611][T25051] netlink_ack+0x164/0xb20 [ 1303.131380][T25051] netlink_rcv_skb+0x327/0x410 [ 1303.133252][T25051] ? __pfx_genl_rcv_msg+0x10/0x10 [ 1303.135255][T25051] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1303.137310][T25051] ? down_read+0xc9/0x330 [ 1303.138795][T25051] ? __pfx_down_read+0x10/0x10 [ 1303.140454][T25051] ? netlink_deliver_tap+0x1ae/0xcf0 [ 1303.142694][T25051] genl_rcv+0x28/0x40 [ 1303.144280][T25051] netlink_unicast+0x53c/0x7f0 [ 1303.146260][T25051] ? __pfx_netlink_unicast+0x10/0x10 [ 1303.148379][T25051] ? __phys_addr_symbol+0x30/0x80 [ 1303.150425][T25051] ? __check_object_size+0x497/0x720 [ 1303.152736][T25051] netlink_sendmsg+0x8b8/0xd70 [ 1303.154681][T25051] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1303.156806][T25051] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1303.159058][T25051] ____sys_sendmsg+0x9b4/0xb50 [ 1303.161094][T25051] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1303.163145][T25051] ? get_compat_msghdr+0x11b/0x170 [ 1303.165034][T25051] ? __pfx___lock_acquire+0x10/0x10 [ 1303.167117][T25051] ___sys_sendmsg+0x135/0x1e0 [ 1303.168999][T25051] ? __pfx____sys_sendmsg+0x10/0x10 [ 1303.171153][T25051] ? ksys_write+0x21c/0x260 [ 1303.173000][T25051] ? __fget_light+0x173/0x210 [ 1303.174898][T25051] __sys_sendmsg+0x117/0x1f0 [ 1303.176746][T25051] ? __pfx___sys_sendmsg+0x10/0x10 [ 1303.178766][T25051] __do_fast_syscall_32+0x73/0x120 [ 1303.180773][T25051] do_fast_syscall_32+0x32/0x80 [ 1303.182689][T25051] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1303.185144][T25051] RIP: 0023:0xf7f56579 [ 1303.186724][T25051] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1303.194203][T25051] RSP: 002b:00000000f56f656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 1303.197525][T25051] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000180 [ 1303.200592][T25051] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1303.203618][T25051] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1303.206623][T25051] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1303.209682][T25051] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1303.212861][T25051] [ 1303.579221][T25058] __nla_validate_parse: 4 callbacks suppressed [ 1303.579238][T25058] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5624'. [ 1304.602036][T25063] netlink: 576 bytes leftover after parsing attributes in process `syz.3.5626'. [ 1304.759876][T25075] netlink: 48 bytes leftover after parsing attributes in process `syz.1.5629'. [ 1304.763915][T25075] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5629'. [ 1305.068685][T25077] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5629'. [ 1305.072599][T25077] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5629'. [ 1305.209553][ T39] audit: type=1326 audit(1724967747.013:101769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25078 comm="syz.2.5630" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x0 [ 1305.333648][T25085] netlink: 'syz.3.5632': attribute type 21 has an invalid length. [ 1305.337670][T25085] netlink: 128 bytes leftover after parsing attributes in process `syz.3.5632'. [ 1305.343345][T25085] netlink: 'syz.3.5632': attribute type 4 has an invalid length. [ 1305.346576][T25085] netlink: 'syz.3.5632': attribute type 5 has an invalid length. [ 1305.349904][T25085] netlink: 3 bytes leftover after parsing attributes in process `syz.3.5632'. [ 1305.389058][T25082] netlink: 'syz.0.5631': attribute type 10 has an invalid length. [ 1305.399319][T25082] FAULT_INJECTION: forcing a failure. [ 1305.399319][T25082] name failslab, interval 1, probability 0, space 0, times 0 [ 1305.410011][T25082] CPU: 1 UID: 0 PID: 25082 Comm: syz.0.5631 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1305.414241][T25082] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1305.414906][ T1379] ieee802154 phy0 wpan0: encryption failed: -22 [ 1305.419382][T25082] Call Trace: [ 1305.419394][T25082] [ 1305.419403][T25082] dump_stack_lvl+0x16c/0x1f0 [ 1305.419438][T25082] should_fail_ex+0x497/0x5b0 [ 1305.422300][ T1379] ieee802154 phy1 wpan1: encryption failed: -22 [ 1305.423670][T25082] should_failslab+0xc2/0x120 [ 1305.434673][T25082] kmem_cache_alloc_node_noprof+0x71/0x310 [ 1305.437609][T25082] ? __alloc_skb+0x2b3/0x380 [ 1305.439769][T25082] __alloc_skb+0x2b3/0x380 [ 1305.441730][T25082] ? __pfx___alloc_skb+0x10/0x10 [ 1305.443833][T25082] ? if_nlmsg_size+0x451/0xa60 [ 1305.445932][T25082] rtmsg_ifinfo_build_skb+0x81/0x280 [ 1305.448106][T25082] rtmsg_ifinfo+0x9f/0x1a0 [ 1305.450499][T25082] __dev_notify_flags+0x24e/0x2e0 [ 1305.453160][T25082] ? __pfx___dev_notify_flags+0x10/0x10 [ 1305.455654][T25082] ? __pfx___dev_change_flags+0x10/0x10 [ 1305.457691][T25082] ? __pfx_llist_add_batch+0x10/0x10 [ 1305.459748][T25082] ? console_unlock+0x248/0x290 [ 1305.461966][T25082] dev_change_flags+0x10c/0x160 [ 1305.464185][T25082] do_setlink+0x19dd/0x3ec0 [ 1305.466323][T25082] ? __wake_up_klogd.part.0+0x99/0xf0 [ 1305.468978][T25082] ? vprintk_emit+0x1a2/0x600 [ 1305.471533][T25082] ? __pfx_do_setlink+0x10/0x10 [ 1305.474039][T25082] ? vprintk+0x86/0xa0 [ 1305.475749][T25082] ? _printk+0xc8/0x100 [ 1305.477564][T25082] ? __pfx__printk+0x10/0x10 [ 1305.479849][T25082] ? ___ratelimit+0x24c/0x580 [ 1305.482106][T25082] ? __pfx____ratelimit+0x10/0x10 [ 1305.483806][T25082] ? __kernel_text_address+0xd/0x40 [ 1305.485397][T25082] ? unwind_get_return_address+0x45/0xe0 [ 1305.487170][T25082] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1305.489199][T25082] ? __nla_validate_parse+0x605/0x2b10 [ 1305.490859][T25082] ? __pfx___nla_validate_parse+0x10/0x10 [ 1305.493013][T25082] ? stack_trace_save+0x95/0xd0 [ 1305.495018][T25082] ? __pfx_stack_trace_save+0x10/0x10 [ 1305.497424][T25082] ? hlock_class+0x4e/0x130 [ 1305.499419][T25082] ? stack_depot_save_flags+0x28/0x900 [ 1305.501993][T25082] ? __nla_parse+0x40/0x60 [ 1305.503585][T25082] __rtnl_newlink+0xc3a/0x1920 [ 1305.505036][T25082] ? __pfx___rtnl_newlink+0x10/0x10 [ 1305.506676][T25082] rtnl_newlink+0x67/0xa0 [ 1305.508595][T25082] ? __pfx_rtnl_newlink+0x10/0x10 [ 1305.510857][T25082] rtnetlink_rcv_msg+0x3c7/0xea0 [ 1305.513253][T25082] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1305.515677][T25082] ? __pfx___dev_queue_xmit+0x10/0x10 [ 1305.518360][T25082] netlink_rcv_skb+0x165/0x410 [ 1305.520589][T25082] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 1305.523147][T25082] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 1305.525665][T25082] ? netlink_deliver_tap+0x1ae/0xcf0 [ 1305.528012][T25082] netlink_unicast+0x53c/0x7f0 [ 1305.530152][T25082] ? __pfx_netlink_unicast+0x10/0x10 [ 1305.532646][T25082] ? __phys_addr_symbol+0x30/0x80 [ 1305.534885][T25082] ? __check_object_size+0x497/0x720 [ 1305.537109][T25082] netlink_sendmsg+0x8b8/0xd70 [ 1305.539239][T25082] ? __pfx_netlink_sendmsg+0x10/0x10 [ 1305.541931][T25082] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 1305.544782][T25082] ____sys_sendmsg+0x9b4/0xb50 [ 1305.547267][T25082] ? __pfx_____sys_sendmsg+0x10/0x10 [ 1305.550108][T25082] ? get_compat_msghdr+0x11b/0x170 [ 1305.552483][T25082] ? __pfx___lock_acquire+0x10/0x10 [ 1305.554895][T25082] ___sys_sendmsg+0x135/0x1e0 [ 1305.556961][T25082] ? __pfx____sys_sendmsg+0x10/0x10 [ 1305.559211][T25082] ? ksys_write+0x21c/0x260 [ 1305.561280][T25082] ? __fget_light+0x173/0x210 [ 1305.563403][T25082] __sys_sendmsg+0x117/0x1f0 [ 1305.565501][T25082] ? __pfx___sys_sendmsg+0x10/0x10 [ 1305.568018][T25082] __do_fast_syscall_32+0x73/0x120 [ 1305.571320][T25082] do_fast_syscall_32+0x32/0x80 [ 1305.573971][T25082] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1305.577192][T25082] RIP: 0023:0xf7f95579 [ 1305.579256][T25082] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1305.588799][T25082] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 1305.592924][T25082] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000600 [ 1305.596229][T25082] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1305.599943][T25082] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1305.603322][T25082] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1305.606658][T25082] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1305.610012][T25082] [ 1305.632486][T25082] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1305.643144][T25082] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 1305.848599][T25095] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5634'. [ 1305.857571][T25095] gtp0: entered promiscuous mode [ 1305.859980][T25095] gtp0: entered allmulticast mode [ 1305.943415][T25101] ieee802154 phy0 wpan0: encryption failed: -22 [ 1306.328731][T25115] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5639'. [ 1306.447986][ T67] Bluetooth: hci0: command 0x0406 tx timeout [ 1306.746688][T25109] serio: Serial port ptm1 [ 1307.400983][T25128] FAULT_INJECTION: forcing a failure. [ 1307.400983][T25128] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1307.417528][T25128] CPU: 1 UID: 0 PID: 25128 Comm: syz.0.5643 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1307.423399][T25128] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1307.427843][T25128] Call Trace: [ 1307.429183][T25128] [ 1307.430378][T25128] dump_stack_lvl+0x16c/0x1f0 [ 1307.432247][T25128] should_fail_ex+0x497/0x5b0 [ 1307.434352][T25128] _copy_from_user+0x30/0xf0 [ 1307.436431][T25128] raw_ioctl+0xd57/0x2a50 [ 1307.438472][T25128] ? __pfx_raw_ioctl+0x10/0x10 [ 1307.440925][T25128] ? bpf_lsm_file_ioctl_compat+0x9/0x10 [ 1307.443506][T25128] ? __pfx_raw_ioctl+0x10/0x10 [ 1307.445403][T25128] __do_compat_sys_ioctl+0x2c3/0x330 [ 1307.447443][T25128] __do_fast_syscall_32+0x73/0x120 [ 1307.449508][T25128] do_fast_syscall_32+0x32/0x80 [ 1307.451357][T25128] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1307.453929][T25128] RIP: 0023:0xf7f95579 [ 1307.455521][T25128] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1307.463227][T25128] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 1307.466482][T25128] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080085502 [ 1307.469695][T25128] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 0000000000000000 [ 1307.473017][T25128] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1307.476299][T25128] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1307.479679][T25128] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1307.482784][T25128] [ 1308.058796][T25136] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1308.067920][T25136] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1308.414205][T25145] gtp1: entered promiscuous mode [ 1308.425925][T25145] gtp1: entered allmulticast mode [ 1308.522336][T25147] ieee802154 phy0 wpan0: encryption failed: -22 [ 1309.195419][T25153] tmpfs: Unknown parameter 'grpquotaÀ' [ 1310.672240][T25188] IPVS: length: 8 != 88339128 [ 1310.763602][T25190] __nla_validate_parse: 10 callbacks suppressed [ 1310.763618][T25190] netlink: 288 bytes leftover after parsing attributes in process `syz.0.5660'. [ 1310.849182][T25192] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1310.877291][T25196] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5661'. [ 1310.890216][T25196] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5661'. [ 1311.255645][T25201] ieee802154 phy0 wpan0: encryption failed: -22 [ 1311.578687][T25206] IPVS: length: 8 != 88339128 [ 1311.677953][T25207] FAULT_INJECTION: forcing a failure. [ 1311.677953][T25207] name failslab, interval 1, probability 0, space 0, times 0 [ 1311.683415][T25207] CPU: 0 UID: 0 PID: 25207 Comm: syz.2.5664 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1311.687595][T25207] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1311.691865][T25207] Call Trace: [ 1311.693213][T25207] [ 1311.694386][T25207] dump_stack_lvl+0x16c/0x1f0 [ 1311.696257][T25207] should_fail_ex+0x497/0x5b0 [ 1311.698127][T25207] ? fs_reclaim_acquire+0xae/0x160 [ 1311.700146][T25207] should_failslab+0xc2/0x120 [ 1311.702068][T25207] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 1311.704195][T25207] ? alloc_empty_file+0x73/0x1e0 [ 1311.706273][T25207] ? __lock_acquire+0xbdd/0x3cb0 [ 1311.708236][T25207] alloc_empty_file+0x73/0x1e0 [ 1311.710164][T25207] path_openat+0xe0/0x2d20 [ 1311.711935][T25207] ? hlock_class+0x4e/0x130 [ 1311.713751][T25207] ? __lock_acquire+0x1620/0x3cb0 [ 1311.715752][T25207] ? __pfx_path_openat+0x10/0x10 [ 1311.717723][T25207] ? __pfx___lock_acquire+0x10/0x10 [ 1311.719771][T25207] ? find_held_lock+0x2d/0x110 [ 1311.721666][T25207] do_filp_open+0x1dc/0x430 [ 1311.723437][T25207] ? __pfx_do_filp_open+0x10/0x10 [ 1311.725408][T25207] ? find_held_lock+0x2d/0x110 [ 1311.727203][T25207] ? _raw_spin_unlock+0x28/0x50 [ 1311.728973][T25207] ? alloc_fd+0x2d7/0x6c0 [ 1311.730587][T25207] do_sys_openat2+0x17a/0x1e0 [ 1311.732467][T25207] ? __pfx_do_sys_openat2+0x10/0x10 [ 1311.734538][T25207] __ia32_compat_sys_openat+0x16e/0x210 [ 1311.736736][T25207] ? __pfx___ia32_compat_sys_openat+0x10/0x10 [ 1311.739114][T25207] ? ksys_write+0x1ab/0x260 [ 1311.740540][T25208] REISERFS warning (device nullb0): sh-2021 reiserfs_fill_super: can not find reiserfs on nullb0 [ 1311.740806][T25207] __do_fast_syscall_32+0x73/0x120 [ 1311.740826][T25207] do_fast_syscall_32+0x32/0x80 [ 1311.740839][T25207] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1311.751855][T25207] RIP: 0023:0xf7f56579 [ 1311.753304][T25207] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1311.760365][T25207] RSP: 002b:00000000f56d556c EFLAGS: 00000296 ORIG_RAX: 0000000000000127 [ 1311.763704][T25207] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000080 [ 1311.766541][T25207] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1311.769203][T25207] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1311.771868][T25207] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1311.774858][T25207] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1311.777792][T25207] [ 1312.480526][T25216] syzkaller1: entered promiscuous mode [ 1312.483094][T25216] syzkaller1: entered allmulticast mode [ 1313.011200][T11769] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 1313.017835][T11769] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 1313.022193][T11769] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 1313.031158][T11769] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 1313.036519][T11769] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 1313.043307][T11769] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 1313.096581][T25220] ip6gretap0 speed is unknown, defaulting to 1000 [ 1313.246463][T18190] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1313.323159][T25220] chnl_net:caif_netlink_parms(): no params data found [ 1313.424611][T18190] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1313.805765][T18190] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1313.834567][T25229] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5670'. [ 1313.843236][T25230] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5670'. [ 1313.849945][T25220] bridge0: port 1(bridge_slave_0) entered blocking state [ 1313.853126][T25220] bridge0: port 1(bridge_slave_0) entered disabled state [ 1313.856047][T25220] bridge_slave_0: entered allmulticast mode [ 1313.860555][T25220] bridge_slave_0: entered promiscuous mode [ 1313.866208][T25220] bridge0: port 2(bridge_slave_1) entered blocking state [ 1313.870879][T25220] bridge0: port 2(bridge_slave_1) entered disabled state [ 1313.874664][T25220] bridge_slave_1: entered allmulticast mode [ 1313.879720][T25220] bridge_slave_1: entered promiscuous mode [ 1313.968299][T18190] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1314.014276][T25220] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1314.027120][T25220] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1314.123124][T25220] team0: Port device team_slave_0 added [ 1314.142295][T25220] team0: Port device team_slave_1 added [ 1314.242577][T25238] overlayfs: failed to resolve './file1': -2 [ 1314.286496][T25220] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1314.298627][T25220] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1314.328952][T25220] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1314.371634][T25220] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1314.374721][T25220] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1314.396390][T25220] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1314.714909][T18190] team0: left allmulticast mode [ 1314.717081][T18190] team_slave_0: left allmulticast mode [ 1314.728101][T18190] team_slave_1: left allmulticast mode [ 1314.730541][T18190] team0: left promiscuous mode [ 1314.732657][T18190] team_slave_0: left promiscuous mode [ 1314.735119][T18190] team_slave_1: left promiscuous mode [ 1314.764477][T18190] bridge0: port 3(team0) entered disabled state [ 1314.774813][T18190] bridge_slave_1: left allmulticast mode [ 1314.777408][T18190] bridge_slave_1: left promiscuous mode [ 1314.800923][T18190] bridge0: port 2(bridge_slave_1) entered disabled state [ 1314.805900][T18190] bridge_slave_0: left allmulticast mode [ 1314.808857][T18190] bridge_slave_0: left promiscuous mode [ 1314.811689][T18190] bridge0: port 1(bridge_slave_0) entered disabled state [ 1315.100676][ T67] Bluetooth: hci7: command tx timeout [ 1315.256823][T25261] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1315.267854][T25261] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1315.816459][T18190] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1315.824134][T18190] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1315.834983][T18190] bond0 (unregistering): (slave batadv0): Releasing backup interface [ 1315.846160][T18190] bond0 (unregistering): Released all slaves [ 1315.882049][T25220] hsr_slave_0: entered promiscuous mode [ 1315.896524][T25220] hsr_slave_1: entered promiscuous mode [ 1315.909051][T25220] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1315.912331][T25220] Cannot create hsr debugfs directory [ 1315.974295][T25259] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5678'. [ 1315.979129][T25262] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5678'. [ 1316.079369][T18190] tipc: Disabling bearer [ 1316.081916][T18190] tipc: Left network mode [ 1316.192213][T18190] IPVS: stopping master sync thread 24017 ... [ 1316.223311][T25285] ip6gretap0 speed is unknown, defaulting to 1000 [ 1316.778332][ T39] audit: type=1326 audit(1724967758.593:101770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25298 comm="syz.1.5688" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1316.797892][ T39] audit: type=1326 audit(1724967758.593:101771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25298 comm="syz.1.5688" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1316.808169][T18190] hsr_slave_0: left promiscuous mode [ 1316.815677][ T39] audit: type=1326 audit(1724967758.593:101772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25298 comm="syz.1.5688" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1316.825503][T18190] hsr_slave_1: left promiscuous mode [ 1316.827874][ T39] audit: type=1326 audit(1724967758.603:101773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25298 comm="syz.1.5688" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1316.837038][T18190] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1316.846711][ T39] audit: type=1326 audit(1724967758.603:101774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25298 comm="syz.1.5688" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1316.847870][T18190] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1316.858960][ T39] audit: type=1326 audit(1724967758.603:101775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25298 comm="syz.1.5688" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1316.859014][ T39] audit: type=1326 audit(1724967758.603:101776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25298 comm="syz.1.5688" exe="/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1316.887933][ T39] audit: type=1326 audit(1724967758.603:101777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25298 comm="syz.1.5688" exe="/syz-executor" sig=0 arch=40000003 syscall=362 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1316.897111][ T39] audit: type=1326 audit(1724967758.603:101778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25298 comm="syz.1.5688" exe="/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1316.909121][T18190] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1316.912384][T18190] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1316.912438][ T39] audit: type=1326 audit(1724967758.603:101779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25298 comm="syz.1.5688" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 1317.035683][T18190] veth1_macvtap: left promiscuous mode [ 1317.048068][T18190] veth0_macvtap: left promiscuous mode [ 1317.051721][T18190] veth1_vlan: left promiscuous mode [ 1317.054049][T18190] veth0_vlan: left promiscuous mode [ 1317.178225][ T67] Bluetooth: hci7: command tx timeout [ 1317.189876][T25304] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1317.193320][T25304] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1318.687050][T18190] team0 (unregistering): Port device team_slave_1 removed [ 1318.815609][T18190] team0 (unregistering): Port device team_slave_0 removed [ 1319.257904][ T67] Bluetooth: hci7: command tx timeout [ 1319.677718][T25300] netlink: 'syz.1.5688': attribute type 1 has an invalid length. [ 1319.681967][T25300] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR [ 1319.721445][T25301] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1 [ 1319.757883][T25302] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5688'. [ 1319.772422][T25311] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5690'. [ 1319.776544][T25312] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5690'. [ 1320.087066][T25220] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1320.093486][T25319] overlayfs: missing 'lowerdir' [ 1320.111062][T25220] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1320.120055][T25220] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1320.140566][T25220] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1320.204686][T18190] IPVS: stop unused estimator thread 0... [ 1320.259775][T25323] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5694'. [ 1320.277403][T25220] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1320.314306][T25220] 8021q: adding VLAN 0 to HW filter on device team0 [ 1320.321522][ T1102] bridge0: port 1(bridge_slave_0) entered blocking state [ 1320.324281][ T1102] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1320.333037][T25324] fuse: blksize only supported for fuseblk [ 1320.337829][ T1218] bridge0: port 2(bridge_slave_1) entered blocking state [ 1320.340725][ T1218] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1320.342007][T25324] 9pnet_fd: p9_fd_create_tcp (25324): problem connecting socket to 127.0.0.1 [ 1320.438043][T21424] usb 6-1: new high-speed USB device number 48 using dummy_hcd [ 1320.627914][T21424] usb 6-1: Using ep0 maxpacket: 8 [ 1320.631965][T21424] usb 6-1: config index 0 descriptor too short (expected 301, got 45) [ 1320.635136][T21424] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 1320.647113][T21424] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 1320.654242][T25220] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1320.657836][T21424] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 1320.661609][T21424] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 1320.666533][T21424] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 1320.670751][T21424] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1320.703075][T25220] veth0_vlan: entered promiscuous mode [ 1320.714893][T25220] veth1_vlan: entered promiscuous mode [ 1320.747440][T25220] veth0_macvtap: entered promiscuous mode [ 1320.752976][T25220] veth1_macvtap: entered promiscuous mode [ 1320.765550][T25220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1320.770141][T25220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.773425][T25220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1320.776996][T25220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.781943][T25220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1320.786222][T25220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.790733][T25220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1320.795154][T25220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.799845][T25220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1320.804252][T25220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.809249][T25220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1320.813669][T25220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.818474][T25220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1320.822882][T25220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.829124][T25220] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1320.838755][T25220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1320.843172][T25220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.847290][T25220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1320.853026][T25220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.857455][T25220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1320.862139][T25220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.866267][T25220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1320.870985][T25220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.875116][T25220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1320.879837][T25220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.883960][T25220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1320.888711][T25220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.892846][T25220] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1320.893147][T21424] usb 6-1: usb_control_msg returned -32 [ 1320.897181][T25220] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1320.899545][T25220] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1320.910016][T21424] usbtmc 6-1:16.0: can't read capabilities [ 1320.916787][T25220] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1320.920611][T25220] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1320.924386][T25220] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1320.929985][T25220] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1320.987248][ T269] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1320.990980][ T269] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1321.008869][ T269] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1321.011836][ T269] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1321.340590][ T67] Bluetooth: hci7: command tx timeout [ 1321.959099][T25343] IPVS: rr: TCP [::]:0 - no destination available [ 1321.967246][T25343] netlink: 'syz.1.5693': attribute type 7 has an invalid length. [ 1321.991708][T25345] ip6gretap0 speed is unknown, defaulting to 1000 [ 1323.018487][ C0] IPVS: rr: TCP [::]:0 - no destination available [ 1323.298951][T21424] usb 6-1: USB disconnect, device number 48 [ 1323.368249][T25360] fuse: Unknown parameter 'grou00000000000000000000' [ 1324.041666][T25368] netlink: 48 bytes leftover after parsing attributes in process `syz.1.5706'. [ 1324.047735][T25368] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5706'. [ 1324.223698][T25370] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5706'. [ 1324.227149][T25370] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5706'. [ 1324.760619][T25378] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5708'. [ 1324.764615][T25378] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5708'. [ 1324.971491][T25380] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5708'. [ 1324.974808][T25380] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5708'. [ 1326.656645][T25398] tipc: Started in network mode [ 1326.662541][T25398] tipc: Node identity f7, cluster identity 4711 [ 1326.669390][T25398] tipc: Node number set to 247 [ 1326.895002][T11769] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 1326.903582][T11769] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 1326.908411][T11769] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 1326.918344][T11769] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 1326.929865][T11769] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 1326.933612][T11769] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 1327.013175][T25401] ip6gretap0 speed is unknown, defaulting to 1000 [ 1327.107379][T25406] tun0: tun_chr_ioctl cmd 1074025677 [ 1327.118271][T25406] tun0: linktype set to 776 [ 1327.301828][T25401] chnl_net:caif_netlink_parms(): no params data found [ 1327.430633][T25413] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4) [ 1327.432901][T25413] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 1327.436414][T25413] vhci_hcd vhci_hcd.0: Device attached [ 1327.444040][T25420] vhci_hcd: connection closed [ 1327.454964][ T1102] vhci_hcd: stop threads [ 1327.463752][ T1102] vhci_hcd: release socket [ 1327.465662][ T1102] vhci_hcd: disconnect device [ 1327.529099][T25401] bridge0: port 1(bridge_slave_0) entered blocking state [ 1327.532654][T25401] bridge0: port 1(bridge_slave_0) entered disabled state [ 1327.535966][T25401] bridge_slave_0: entered allmulticast mode [ 1327.541017][T25401] bridge_slave_0: entered promiscuous mode [ 1327.546197][T25401] bridge0: port 2(bridge_slave_1) entered blocking state [ 1327.548963][T25401] bridge0: port 2(bridge_slave_1) entered disabled state [ 1327.551821][T25401] bridge_slave_1: entered allmulticast mode [ 1327.555087][T25401] bridge_slave_1: entered promiscuous mode [ 1327.630517][T25401] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1327.637467][T25401] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1327.713226][T25401] team0: Port device team_slave_0 added [ 1327.719552][T25401] team0: Port device team_slave_1 added [ 1327.780474][T25401] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1327.783314][T25401] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1327.796924][T25401] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1327.809275][T25401] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1327.811987][T25401] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1327.825716][T25401] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1327.923867][T25401] hsr_slave_0: entered promiscuous mode [ 1327.927344][T25401] hsr_slave_1: entered promiscuous mode [ 1327.933737][T25401] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1327.936763][T25401] Cannot create hsr debugfs directory [ 1328.253608][T25401] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1328.268400][T25401] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1328.524343][T25401] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1328.546816][T25401] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1328.693326][T25401] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1328.707883][T25401] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1328.819011][T25401] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1328.823665][T25401] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1329.008151][T11769] Bluetooth: hci5: command tx timeout [ 1329.082238][T25401] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1329.096925][T25401] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1329.115607][T25401] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1329.132777][T25401] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1329.305273][T25401] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1329.348418][T25401] 8021q: adding VLAN 0 to HW filter on device team0 [ 1329.362344][ T1218] bridge0: port 1(bridge_slave_0) entered blocking state [ 1329.365152][ T1218] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1329.396507][ T269] bridge0: port 2(bridge_slave_1) entered blocking state [ 1329.399767][ T269] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1329.793287][T25445] netlink: 168 bytes leftover after parsing attributes in process `syz.0.5726'. [ 1329.803743][T25445] netlink: 168 bytes leftover after parsing attributes in process `syz.0.5726'. [ 1329.885854][T25448] netlink: 56 bytes leftover after parsing attributes in process `syz.3.5727'. [ 1329.900155][T25448] netlink: 56 bytes leftover after parsing attributes in process `syz.3.5727'. [ 1329.909233][T25401] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1329.996304][T25401] veth0_vlan: entered promiscuous mode [ 1330.007498][T25401] veth1_vlan: entered promiscuous mode [ 1330.093123][T25401] veth0_macvtap: entered promiscuous mode [ 1330.119549][T25401] veth1_macvtap: entered promiscuous mode [ 1330.183523][T25401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1330.207462][T25401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.212442][T25401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1330.222512][T25401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.228368][T25401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1330.233306][T25401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.238140][T25401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1330.242940][T25401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.247257][T25401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1330.262014][T25401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.266388][T25401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1330.277532][T25401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.294522][T25401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1330.340309][T25401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.391956][T25401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1330.405275][T25401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.419862][T25401] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1330.446546][T25401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1330.453002][T25401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.456970][T25401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1330.461680][T25401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.476735][T25401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1330.481642][T25401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.486263][T25401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1330.493440][T25401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.498859][T25401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1330.503819][T25401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.508713][T25401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1330.513841][T25401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.518173][T25401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1330.537985][T25401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.541932][T25401] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1330.546176][T25401] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.589150][T25401] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1330.605811][T25401] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1330.626385][T25401] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1330.631487][T25401] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1330.648885][T25401] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1330.951803][ T269] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1330.955717][ T269] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1331.064817][ T269] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1331.074109][ T269] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1331.088048][T11769] Bluetooth: hci5: command tx timeout [ 1331.281646][T25466] FAULT_INJECTION: forcing a failure. [ 1331.281646][T25466] name failslab, interval 1, probability 0, space 0, times 0 [ 1331.296366][T25466] CPU: 0 UID: 0 PID: 25466 Comm: syz.2.5713 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1331.301343][T25466] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1331.306098][T25466] Call Trace: [ 1331.307569][T25466] [ 1331.308880][T25466] dump_stack_lvl+0x16c/0x1f0 [ 1331.310851][T25466] should_fail_ex+0x497/0x5b0 [ 1331.312843][T25466] ? fs_reclaim_acquire+0xae/0x160 [ 1331.314921][T25466] should_failslab+0xc2/0x120 [ 1331.316949][T25466] __kmalloc_noprof+0xcb/0x410 [ 1331.319029][T25466] p9_fcall_init+0x97/0x260 [ 1331.329020][T25466] p9_tag_alloc+0x17a/0x870 [ 1331.331046][T25466] ? __pfx_p9_tag_alloc+0x10/0x10 [ 1331.333291][T25466] ? __lock_acquire+0x1620/0x3cb0 [ 1331.337413][T25466] ? hlock_class+0x4e/0x130 [ 1331.339360][T25466] p9_client_prepare_req+0x19f/0x4d0 [ 1331.341614][T25466] ? __pfx_p9_client_prepare_req+0x10/0x10 [ 1331.346165][T25466] ? hlock_class+0x4e/0x130 [ 1331.348136][T25466] ? mark_lock+0xb5/0xc60 [ 1331.359496][T25466] ? __pfx___lock_acquire+0x10/0x10 [ 1331.361646][T25466] ? __pfx_v9fs_xattr_handler_get+0x10/0x10 [ 1331.364074][T25466] p9_client_rpc+0x1c3/0xc10 [ 1331.366037][T25466] ? __pfx_p9_client_rpc+0x10/0x10 [ 1331.368390][T25466] ? p9_fid_create+0x26a/0x470 [ 1331.370098][T25466] ? __pfx_lock_release+0x10/0x10 [ 1331.372101][T25466] ? __pfx_v9fs_xattr_handler_get+0x10/0x10 [ 1331.374535][T25466] ? mark_held_locks+0x9f/0xe0 [ 1331.376546][T25466] ? rcu_is_watching+0x12/0xc0 [ 1331.378525][T25466] ? trace_9p_fid_ref+0x174/0x1f0 [ 1331.380661][T25466] ? __pfx_v9fs_xattr_handler_get+0x10/0x10 [ 1331.383152][T25466] p9_client_xattrwalk+0xc0/0x290 [ 1331.385456][T25466] ? __pfx_v9fs_xattr_handler_get+0x10/0x10 [ 1331.387524][T25466] v9fs_fid_xattr_get+0x108/0x300 [ 1331.389579][T25466] ? __pfx_v9fs_fid_xattr_get+0x10/0x10 [ 1331.392069][T25466] ? __pfx_v9fs_fid_find+0x10/0x10 [ 1331.394378][T25466] ? mark_lock+0xb5/0xc60 [ 1331.396292][T25466] ? v9fs_fid_lookup+0xe9/0xec0 [ 1331.398271][T25466] v9fs_xattr_handler_get+0x6b/0x120 [ 1331.400396][T25466] __vfs_getxattr+0x13b/0x1a0 [ 1331.402198][T25466] ? __pfx___vfs_getxattr+0x10/0x10 [ 1331.404342][T25466] cap_inode_need_killpriv+0x40/0x60 [ 1331.406570][T25466] security_inode_need_killpriv+0x65/0xb0 [ 1331.409280][T25466] file_remove_privs_flags+0x3a6/0x5d0 [ 1331.411606][T25466] ? __pfx_file_remove_privs_flags+0x10/0x10 [ 1331.413985][T25466] ? netfs_block_o_direct+0xb1/0x3b0 [ 1331.416346][T25466] ? generic_write_check_limits+0x1fd/0x290 [ 1331.419024][T25466] ? generic_write_checks+0x322/0x490 [ 1331.421455][T25466] ? __pfx_generic_write_checks+0x10/0x10 [ 1331.423620][T25466] netfs_buffered_write_iter_locked+0xb3/0x2c0 [ 1331.426189][T25466] netfs_file_write_iter+0x1e0/0x470 [ 1331.428424][T25466] v9fs_file_write_iter+0xa1/0x100 [ 1331.430536][T25466] aio_write+0x3c1/0x8e0 [ 1331.432472][T25466] ? __pfx_aio_write+0x10/0x10 [ 1331.434576][T25466] ? find_held_lock+0x2d/0x110 [ 1331.436618][T25466] ? __pfx___might_resched+0x10/0x10 [ 1331.438880][T25466] ? io_submit_one+0x124e/0x1db0 [ 1331.441073][T25466] io_submit_one+0x124e/0x1db0 [ 1331.443071][T25466] ? __pfx_io_submit_one+0x10/0x10 [ 1331.445243][T25466] ? __might_fault+0x13b/0x190 [ 1331.447473][T25466] ? __pfx___might_resched+0x10/0x10 [ 1331.449904][T25466] ? __ia32_compat_sys_io_submit+0x1af/0x390 [ 1331.452519][T25466] __ia32_compat_sys_io_submit+0x1af/0x390 [ 1331.454530][T25466] ? __pfx___ia32_compat_sys_io_submit+0x10/0x10 [ 1331.456646][T25466] __do_fast_syscall_32+0x73/0x120 [ 1331.458376][T25466] do_fast_syscall_32+0x32/0x80 [ 1331.459822][T25466] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1331.461925][T25466] RIP: 0023:0xf73de579 [ 1331.463481][T25466] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1331.471288][T25466] RSP: 002b:00000000f56e656c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8 [ 1331.474538][T25466] RAX: ffffffffffffffda RBX: 00000000f56be000 RCX: 000000000000140b [ 1331.477885][T25466] RDX: 0000000020000700 RSI: 0000000000000000 RDI: 0000000000000000 [ 1331.481350][T25466] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1331.484911][T25466] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1331.487947][T25466] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1331.490813][T25466] [ 1331.596332][T25465] affs: No valid root block on device nbd3 [ 1332.688472][T25483] ip6gretap0 speed is unknown, defaulting to 1000 [ 1332.864376][T25485] "syz.0.5735" (25485) uses obsolete ecb(arc4) skcipher [ 1333.051666][T25495] netlink: 56 bytes leftover after parsing attributes in process `syz.3.5737'. [ 1333.063849][T25495] netlink: 56 bytes leftover after parsing attributes in process `syz.3.5737'. [ 1333.168251][T11769] Bluetooth: hci5: command tx timeout [ 1335.176169][T25532] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5750'. [ 1335.200271][T25534] netlink: 92 bytes leftover after parsing attributes in process `syz.2.5751'. [ 1335.204105][T25534] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5751'. [ 1335.208005][T25534] netlink: 40 bytes leftover after parsing attributes in process `syz.2.5751'. [ 1335.248511][T11769] Bluetooth: hci5: command tx timeout [ 1335.588120][ T5384] usb 5-1: new high-speed USB device number 48 using dummy_hcd [ 1335.768014][ T5384] usb 5-1: Using ep0 maxpacket: 16 [ 1335.772170][ T5384] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1335.776143][ T5384] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 1335.782179][ T5384] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 1335.786070][ T5384] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1335.792101][ T5384] usb 5-1: config 0 descriptor?? [ 1335.797473][ T5384] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 1337.202896][ T833] usb 5-1: USB disconnect, device number 48 [ 1337.275316][T11769] Bluetooth: hci7: ACL packet for unknown connection handle 2738 [ 1338.863493][T25622] binder: 25621:25622 ioctl 4018620d 0 returned -22 [ 1338.879038][T14044] usb 7-1: new high-speed USB device number 35 using dummy_hcd [ 1338.946581][T25623] bridge2: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 1339.078063][T14044] usb 7-1: Using ep0 maxpacket: 32 [ 1339.084464][T14044] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 1339.094960][T14044] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1339.099327][T14044] usb 7-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1339.110141][T14044] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1339.113819][T14044] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1339.117076][T14044] usb 7-1: Product: syz [ 1339.125023][T14044] usb 7-1: Manufacturer: syz [ 1339.127070][T14044] usb 7-1: SerialNumber: syz [ 1339.726530][T14044] usb 7-1: 2:1 : UAC_AS_GENERAL descriptor not found [ 1339.777619][T14044] usb 7-1: USB disconnect, device number 35 [ 1341.488658][T11769] Bluetooth: hci7: Controller not accepting commands anymore: ncmd = 0 [ 1341.492821][T11769] Bluetooth: hci7: Injecting HCI hardware error event [ 1341.498810][ T67] Bluetooth: hci7: hardware error 0x00 [ 1342.913405][ T58] usb 5-1: new high-speed USB device number 49 using dummy_hcd [ 1343.120970][ T58] usb 5-1: Using ep0 maxpacket: 32 [ 1343.125091][ T58] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1343.131225][ T58] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1343.135716][ T58] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 1343.157882][ T58] usb 5-1: New USB device found, idVendor=048d, idProduct=8595, bcdDevice= 0.00 [ 1343.162073][ T58] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1343.176441][ T58] usb 5-1: config 0 descriptor?? [ 1343.568067][ T67] Bluetooth: hci7: Opcode 0x0c03 failed: -110 [ 1343.612158][ T58] itetech 0003:048D:8595.0039: unknown main item tag 0x0 [ 1343.617685][ T58] itetech 0003:048D:8595.0039: unknown main item tag 0x0 [ 1343.627459][ T58] itetech 0003:048D:8595.0039: unknown main item tag 0x0 [ 1343.631086][ T58] itetech 0003:048D:8595.0039: unknown main item tag 0x0 [ 1343.634336][ T58] itetech 0003:048D:8595.0039: unknown main item tag 0x0 [ 1343.650402][ T58] itetech 0003:048D:8595.0039: hidraw1: USB HID v0.00 Device [HID 048d:8595] on usb-dummy_hcd.0-1/input0 [ 1343.888894][ T58] usb 5-1: USB disconnect, device number 49 [ 1344.652836][ T39] kauditd_printk_skb: 31 callbacks suppressed [ 1344.652853][ T39] audit: type=1326 audit(1724967786.473:101811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25680 comm="syz.0.5812" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 1344.684060][ T39] audit: type=1326 audit(1724967786.473:101812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25680 comm="syz.0.5812" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 1344.696245][ T39] audit: type=1326 audit(1724967786.483:101813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25680 comm="syz.0.5812" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 1344.714347][ T39] audit: type=1326 audit(1724967786.483:101814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25680 comm="syz.0.5812" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 1344.725667][ T39] audit: type=1326 audit(1724967786.483:101815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25680 comm="syz.0.5812" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 1344.735296][ T39] audit: type=1326 audit(1724967786.493:101816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25680 comm="syz.0.5812" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 1344.745357][ T39] audit: type=1326 audit(1724967786.493:101817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25680 comm="syz.0.5812" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 1344.754526][ T39] audit: type=1326 audit(1724967786.493:101818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25680 comm="syz.0.5812" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 1344.771357][ T39] audit: type=1326 audit(1724967786.493:101819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25680 comm="syz.0.5812" exe="/syz-executor" sig=0 arch=40000003 syscall=145 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 1344.782344][ T39] audit: type=1326 audit(1724967786.493:101820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25680 comm="syz.0.5812" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f85579 code=0x7ffc0000 [ 1345.055716][T25697] netlink: 'syz.0.5815': attribute type 27 has an invalid length. [ 1345.591004][T25710] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5822'. [ 1345.658943][T25706] block device autoloading is deprecated and will be removed. [ 1345.680401][T25706] syz.2.5820: attempt to access beyond end of device [ 1345.680401][T25706] loop0: rw=2048, sector=18446744073709551608, nr_sectors = 8 limit=0 [ 1346.016365][T25725] gtp0: entered promiscuous mode [ 1346.021796][T25725] gtp0: entered allmulticast mode [ 1346.422374][T25741] gtp1: entered promiscuous mode [ 1346.424775][T25741] gtp1: entered allmulticast mode [ 1347.257909][ T833] usb 7-1: new high-speed USB device number 36 using dummy_hcd [ 1347.467879][ T833] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1347.472713][ T833] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1347.509101][ T833] usb 7-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 1347.513456][ T833] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 1347.517438][ T833] usb 7-1: SerialNumber: syz [ 1347.744818][T25767] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5846'. [ 1347.760277][ T833] usb 7-1: 0:2 : does not exist [ 1347.793890][ T833] usb 7-1: 5:0: failed to get current value for ch 1 (-22) [ 1347.842222][ T833] usb 7-1: USB disconnect, device number 36 [ 1349.278192][T25822] kvm: user requested TSC rate below hardware speed [ 1350.111631][T25868] gtp0: entered promiscuous mode [ 1350.114048][T25868] gtp0: entered allmulticast mode [ 1350.425470][T11769] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 1350.432965][T11769] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 1350.440793][T11769] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 1350.449249][T11769] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 1350.453071][T11769] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 1350.455875][T11769] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 1350.649540][T25872] ip6gretap0 speed is unknown, defaulting to 1000 [ 1350.961325][T25872] chnl_net:caif_netlink_parms(): no params data found [ 1350.993599][T25791] [ 1350.995232][T25791] ====================================================== [ 1350.998406][T25791] WARNING: possible circular locking dependency detected [ 1351.003392][T25791] 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 Not tainted [ 1351.019942][T25791] ------------------------------------------------------ [ 1351.023268][T25791] syz.0.5856/25791 is trying to acquire lock: [ 1351.025974][T25791] ffff88807ffdace0 (&pgdat->kswapd_wait){..-.}-{2:2}, at: __wake_up+0x1c/0x60 [ 1351.029959][T25791] [ 1351.029959][T25791] but task is already holding lock: [ 1351.033324][T25791] ffff88806d9551f8 (&trie->lock){-.-.}-{2:2}, at: trie_update_elem+0xc7/0xdb0 [ 1351.037254][T25791] [ 1351.037254][T25791] which lock already depends on the new lock. [ 1351.037254][T25791] [ 1351.043000][T25791] [ 1351.043000][T25791] the existing dependency chain (in reverse order) is: [ 1351.047460][T25791] [ 1351.047460][T25791] -> #3 (&trie->lock){-.-.}-{2:2}: [ 1351.051527][T25791] _raw_spin_lock_irqsave+0x3a/0x60 [ 1351.054392][T25791] trie_delete_elem+0xb0/0x820 [ 1351.058564][T25791] 0xffffffffa0001b22 [ 1351.061112][T25791] bpf_trace_run4+0x245/0x5a0 [ 1351.063310][T25791] __traceiter_sched_switch+0x6c/0xc0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 1351.065880][T25791] __schedule+0x17cf/0x5490 [ 1351.068330][T25791] schedule+0xe7/0x350 [ 1351.070558][T25791] futex_wait_queue+0xfc/0x1f0 [ 1351.072981][T25791] __futex_wait+0x291/0x3c0 [ 1351.075479][T25791] futex_wait+0xe9/0x380 [ 1351.077626][T25791] do_futex+0x22b/0x350 [ 1351.079762][T25791] __ia32_sys_futex_time32+0x1da/0x460 [ 1351.082493][T25791] __do_fast_syscall_32+0x73/0x120 [ 1351.085082][T25791] do_fast_syscall_32+0x32/0x80 [ 1351.087338][T25791] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1351.090751][T25791] [ 1351.090751][T25791] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 1351.093963][T25791] _raw_spin_lock_nested+0x31/0x40 [ 1351.096104][T25791] raw_spin_rq_lock_nested+0x29/0x130 [ 1351.098429][T25791] task_fork_fair+0x73/0x250 [ 1351.100747][T25791] sched_cgroup_fork+0x3cf/0x510 [ 1351.103303][T25791] copy_process+0x4710/0x6f50 [ 1351.105792][T25791] kernel_clone+0xfd/0x960 [ 1351.107884][T25791] user_mode_thread+0xb4/0xf0 [ 1351.110250][T25791] rest_init+0x23/0x2b0 [ 1351.112097][T25791] start_kernel+0x3df/0x4c0 [ 1351.114188][T25791] x86_64_start_reservations+0x18/0x30 [ 1351.116463][T25791] x86_64_start_kernel+0xb2/0xc0 [ 1351.118426][T25791] common_startup_64+0x13e/0x148 [ 1351.120771][T25791] [ 1351.120771][T25791] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 1351.123839][T25791] _raw_spin_lock_irqsave+0x3a/0x60 [ 1351.126426][T25791] try_to_wake_up+0x9a/0x13e0 [ 1351.128708][T25791] autoremove_wake_function+0x16/0x150 [ 1351.131650][T25791] __wake_up_common+0x131/0x1e0 [ 1351.134198][T25791] __wake_up+0x31/0x60 [ 1351.136495][T25791] wakeup_kswapd+0x45e/0x640 [ 1351.139455][T25791] get_page_from_freelist+0x9bb/0x2e50 [ 1351.142111][T25791] __alloc_pages_noprof+0x22b/0x2460 [ 1351.144574][T25791] alloc_pages_mpol_noprof+0x275/0x610 [ 1351.147067][T25791] folio_alloc_noprof+0x1e/0xc0 [ 1351.149347][T25791] filemap_alloc_folio_noprof+0x3ba/0x490 [ 1351.151963][T25791] page_cache_ra_unbounded+0x1c8/0x5a0 [ 1351.154606][T25791] page_cache_ra_order+0x6b5/0xb80 [ 1351.157401][T25791] page_cache_async_ra+0x5cb/0x820 [ 1351.159994][T25791] filemap_get_pages+0x357/0x1830 [ 1351.162544][T25791] filemap_read+0x3af/0xd10 [ 1351.165008][T25791] generic_file_read_iter+0x350/0x460 [ 1351.168312][T25791] ext4_file_read_iter+0x1dc/0x6c0 [ 1351.171605][T25791] __kernel_read+0x3ec/0xb50 [ 1351.174628][T25791] integrity_kernel_read+0x7f/0xb0 [ 1351.177069][T25791] ima_calc_file_hash_tfm+0x2cf/0x3e0 [ 1351.179619][T25791] ima_calc_file_hash+0x1c6/0x4a0 [ 1351.182074][T25791] ima_collect_measurement+0x8b3/0xa20 [ 1351.184816][T25791] process_measurement+0x1289/0x23a0 [ 1351.187652][T25791] ima_file_check+0xc1/0x110 [ 1351.190035][T25791] security_file_post_open+0x6d/0xc0 [ 1351.192758][T25791] path_openat+0x76d/0x2d20 [ 1351.194903][T25791] do_filp_open+0x1dc/0x430 [ 1351.197056][T25791] file_open_name+0x2a4/0x450 [ 1351.199282][T25791] __do_sys_swapon+0x7ad/0x3e60 [ 1351.202042][T25791] __do_fast_syscall_32+0x73/0x120 [ 1351.204568][T25791] do_fast_syscall_32+0x32/0x80 [ 1351.207081][T25791] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1351.209997][T25791] [ 1351.209997][T25791] -> #0 (&pgdat->kswapd_wait){..-.}-{2:2}: [ 1351.213292][T25791] __lock_acquire+0x24ed/0x3cb0 [ 1351.215548][T25791] lock_acquire+0x1b1/0x560 [ 1351.217770][T25791] _raw_spin_lock_irqsave+0x3a/0x60 [ 1351.220307][T25791] __wake_up+0x1c/0x60 [ 1351.222379][T25791] wakeup_kswapd+0x45e/0x640 [ 1351.224505][T25791] wake_all_kswapds+0x182/0x2e0 [ 1351.226858][T25791] __alloc_pages_noprof+0x100f/0x2460 [ 1351.229516][T25791] alloc_slab_page+0x4e/0xf0 [ 1351.232213][T25791] new_slab+0x84/0x260 [ 1351.234285][T25791] ___slab_alloc+0xdac/0x1870 [ 1351.236580][T25791] __slab_alloc.constprop.0+0x56/0xb0 [ 1351.239213][T25791] __kmalloc_node_noprof+0x367/0x440 [ 1351.242235][T25791] bpf_map_kmalloc_node+0x98/0x4a0 [ 1351.245075][T25791] trie_update_elem+0x1ef/0xdb0 [ 1351.247829][T25791] bpf_map_update_value+0x2c1/0x6c0 [ 1351.250125][T25791] generic_map_update_batch+0x454/0x5f0 [ 1351.252841][T25791] bpf_map_do_batch+0x615/0x6e0 [ 1351.255275][T25791] __sys_bpf+0x151b/0x55e0 [ 1351.257294][T25791] __ia32_sys_bpf+0x76/0xe0 [ 1351.259649][T25791] __do_fast_syscall_32+0x73/0x120 [ 1351.262148][T25791] do_fast_syscall_32+0x32/0x80 [ 1351.264521][T25791] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1351.267547][T25791] [ 1351.267547][T25791] other info that might help us debug this: [ 1351.267547][T25791] [ 1351.272849][T25791] Chain exists of: [ 1351.272849][T25791] &pgdat->kswapd_wait --> &rq->__lock --> &trie->lock [ 1351.272849][T25791] [ 1351.278501][T25791] Possible unsafe locking scenario: [ 1351.278501][T25791] [ 1351.281944][T25791] CPU0 CPU1 [ 1351.284401][T25791] ---- ---- [ 1351.286744][T25791] lock(&trie->lock); [ 1351.288563][T25791] lock(&rq->__lock); [ 1351.291456][T25791] lock(&trie->lock); [ 1351.294197][T25791] lock(&pgdat->kswapd_wait); [ 1351.296095][T25791] [ 1351.296095][T25791] *** DEADLOCK *** [ 1351.296095][T25791] [ 1351.299748][T25791] 2 locks held by syz.0.5856/25791: [ 1351.302038][T25791] #0: ffffffff8ddb94a0 (rcu_read_lock){....}-{1:2}, at: bpf_map_update_value+0x24b/0x6c0 [ 1351.306338][T25791] #1: ffff88806d9551f8 (&trie->lock){-.-.}-{2:2}, at: trie_update_elem+0xc7/0xdb0 [ 1351.310350][T25791] [ 1351.310350][T25791] stack backtrace: [ 1351.312935][T25791] CPU: 1 UID: 0 PID: 25791 Comm: syz.0.5856 Not tainted 6.11.0-rc5-syzkaller-00081-gd5d547aa7b51 #0 [ 1351.317267][T25791] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 1351.321341][T25791] Call Trace: [ 1351.322648][T25791] [ 1351.323809][T25791] dump_stack_lvl+0x116/0x1f0 [ 1351.325668][T25791] check_noncircular+0x31a/0x400 [ 1351.327556][T25791] ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10 [ 1351.330130][T25791] ? __pfx_check_noncircular+0x10/0x10 [ 1351.332269][T25791] ? unwind_get_return_address+0x45/0xe0 [ 1351.334559][T25791] ? arch_stack_walk+0x118/0x170 [ 1351.336745][T25791] ? lockdep_lock+0x1b8/0x200 [ 1351.338942][T25791] ? __pfx_lockdep_lock+0x10/0x10 [ 1351.341166][T25791] __lock_acquire+0x24ed/0x3cb0 [ 1351.343387][T25791] ? __pfx___lock_acquire+0x10/0x10 [ 1351.345779][T25791] ? lockdep_unlock+0x11a/0x290 [ 1351.348011][T25791] ? __lock_acquire+0x20f2/0x3cb0 [ 1351.350311][T25791] lock_acquire+0x1b1/0x560 [ 1351.352381][T25791] ? __wake_up+0x1c/0x60 [ 1351.354293][T25791] ? __pfx_lock_acquire+0x10/0x10 [ 1351.356543][T25791] ? __pfx___lock_acquire+0x10/0x10 [ 1351.358811][T25791] ? __next_zones_zonelist+0x8a/0x150 [ 1351.361289][T25791] ? __zone_watermark_ok+0x252/0x4d0 [ 1351.363637][T25791] _raw_spin_lock_irqsave+0x3a/0x60 [ 1351.365949][T25791] ? __wake_up+0x1c/0x60 [ 1351.367856][T25791] __wake_up+0x1c/0x60 [ 1351.369763][T25791] wakeup_kswapd+0x45e/0x640 [ 1351.371808][T25791] wake_all_kswapds+0x182/0x2e0 [ 1351.373995][T25791] __alloc_pages_noprof+0x100f/0x2460 [ 1351.376404][T25791] ? __lock_acquire+0x1620/0x3cb0 [ 1351.378665][T25791] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 1351.381194][T25791] ? __pfx___lock_acquire+0x10/0x10 [ 1351.383519][T25791] ? __pfx_mark_lock+0x10/0x10 [ 1351.385659][T25791] ? stack_trace_save+0x95/0xd0 [ 1351.387770][T25791] ? lock_acquire+0x1b1/0x560 [ 1351.389626][T25791] ? find_held_lock+0x2d/0x110 [ 1351.391509][T25791] ? __slab_alloc.constprop.0+0x56/0xb0 [ 1351.394029][T25791] ? __pfx_lock_release+0x10/0x10 [ 1351.396451][T25791] ? __pfx_lock_release+0x10/0x10 [ 1351.398847][T25791] alloc_slab_page+0x4e/0xf0 [ 1351.400953][T25791] new_slab+0x84/0x260 [ 1351.402774][T25791] ___slab_alloc+0xdac/0x1870 [ 1351.404971][T25791] ? bpf_map_kmalloc_node+0x98/0x4a0 [ 1351.407457][T25791] ? bpf_map_get_memcg.isra.0+0x143/0x5a0 [ 1351.410396][T25791] ? bpf_map_kmalloc_node+0x98/0x4a0 [ 1351.412822][T25791] ? __slab_alloc.constprop.0+0x56/0xb0 [ 1351.415344][T25791] __slab_alloc.constprop.0+0x56/0xb0 [ 1351.417777][T25791] __kmalloc_node_noprof+0x367/0x440 [ 1351.420137][T25791] ? bpf_map_kmalloc_node+0x98/0x4a0 [ 1351.422375][T25791] bpf_map_kmalloc_node+0x98/0x4a0 [ 1351.424414][T25791] trie_update_elem+0x1ef/0xdb0 [ 1351.426585][T25791] ? __pfx___might_resched+0x10/0x10 [ 1351.429196][T25791] bpf_map_update_value+0x2c1/0x6c0 [ 1351.431682][T25791] generic_map_update_batch+0x454/0x5f0 [ 1351.434356][T25791] ? __pfx_generic_map_update_batch+0x10/0x10 [ 1351.437157][T25791] ? __pfx_generic_map_update_batch+0x10/0x10 [ 1351.439872][T25791] bpf_map_do_batch+0x615/0x6e0 [ 1351.442040][T25791] __sys_bpf+0x151b/0x55e0 [ 1351.444218][T25791] ? plist_check_head+0xa3/0x150 [ 1351.446511][T25791] ? __pfx___sys_bpf+0x10/0x10 [ 1351.448734][T25791] ? wake_up_q+0x9e/0x140 [ 1351.450720][T25791] ? do_raw_spin_unlock+0x172/0x230 [ 1351.453105][T25791] ? futex_wake+0x18e/0x4e0 [ 1351.455137][T25791] ? __pfx_futex_wake+0x10/0x10 [ 1351.457344][T25791] ? find_held_lock+0x2d/0x110 [ 1351.459614][T25791] ? do_futex+0x123/0x350 [ 1351.461572][T25791] ? __pfx_do_futex+0x10/0x10 [ 1351.463893][T25791] ? xfd_validate_state+0x5d/0x180 [ 1351.466670][T25791] __ia32_sys_bpf+0x76/0xe0 [ 1351.469016][T25791] __do_fast_syscall_32+0x73/0x120 [ 1351.471508][T25791] do_fast_syscall_32+0x32/0x80 [ 1351.473863][T25791] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1351.476906][T25791] RIP: 0023:0xf7f85579 [ 1351.479125][T25791] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 1351.487922][T25791] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 1351.491631][T25791] RAX: ffffffffffffffda RBX: 000000000000001a RCX: 0000000020000640 [ 1351.495197][T25791] RDX: 0000000000000038 RSI: 0000000000000000 RDI: 0000000000000000 [ 1351.498757][T25791] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1351.502279][T25791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1351.505806][T25791] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1351.509333][T25791] [ 1352.320853][ T1110] bond0 (unregistering): Released all slaves [ 1352.849664][ T1110] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1352.951486][ T1110] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1353.015943][ T1110] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1353.166641][ T1110] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1353.378226][ T1110] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1353.465511][ T1110] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1353.527881][ T1110] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1353.720225][ T1110] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1353.857238][ T1110] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1353.974857][ T1110] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1354.065256][ T1110] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1354.144143][ T1110] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1354.231598][ T1110] bridge_slave_1: left allmulticast mode [ 1354.234106][ T1110] bridge_slave_1: left promiscuous mode [ 1354.236693][ T1110] bridge0: port 2(bridge_slave_1) entered disabled state [ 1354.241667][ T1110] bridge_slave_0: left allmulticast mode [ 1354.244167][ T1110] bridge_slave_0: left promiscuous mode [ 1354.246731][ T1110] bridge0: port 1(bridge_slave_0) entered disabled state [ 1354.254415][ T1110] bridge_slave_1: left allmulticast mode [ 1354.256941][ T1110] bridge_slave_1: left promiscuous mode [ 1354.259537][ T1110] bridge0: port 2(bridge_slave_1) entered disabled state [ 1354.265486][ T1110] bridge_slave_0: left allmulticast mode [ 1354.268228][ T1110] bridge_slave_0: left promiscuous mode [ 1354.270766][ T1110] bridge0: port 1(bridge_slave_0) entered disabled state [ 1354.279919][ T1110] bridge_slave_1: left allmulticast mode [ 1354.282376][ T1110] bridge_slave_1: left promiscuous mode [ 1354.284866][ T1110] bridge0: port 2(bridge_slave_1) entered disabled state [ 1354.291690][ T1110] bridge_slave_0: left allmulticast mode [ 1354.294148][ T1110] bridge_slave_0: left promiscuous mode [ 1354.296722][ T1110] bridge0: port 1(bridge_slave_0) entered disabled state [ 1354.965405][ T1110] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1354.984732][ T1110] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1354.993598][ T1110] bond0 (unregistering): Released all slaves [ 1355.012819][ T1110] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1355.018018][ T1110] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1355.022495][ T1110] bond0 (unregistering): Released all slaves [ 1355.033438][ T1110] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1355.038586][ T1110] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1355.043505][ T1110] bond0 (unregistering): Released all slaves [ 1355.116078][ T1110] : left promiscuous mode [ 1355.197146][ T1110] tipc: Left network mode [ 1355.871784][ T1110] hsr_slave_0: left promiscuous mode [ 1355.874806][ T1110] hsr_slave_1: left promiscuous mode [ 1355.882892][ T1110] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1355.886314][ T1110] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1355.890693][ T1110] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1355.893832][ T1110] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1355.905947][ T1110] hsr_slave_0: left promiscuous mode [ 1355.908924][ T1110] hsr_slave_1: left promiscuous mode [ 1355.911806][ T1110] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1355.914879][ T1110] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1355.918979][ T1110] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1355.922056][ T1110] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1355.929974][ T1110] hsr_slave_0: left promiscuous mode [ 1355.932957][ T1110] hsr_slave_1: left promiscuous mode [ 1355.935873][ T1110] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1355.939298][ T1110] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1355.953120][ T1110] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1355.956302][ T1110] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1355.965143][ T1110] veth1_macvtap: left promiscuous mode [ 1355.967587][ T1110] veth0_macvtap: left promiscuous mode [ 1355.970150][ T1110] veth1_vlan: left promiscuous mode [ 1355.972365][ T1110] veth0_vlan: left promiscuous mode [ 1355.975736][ T1110] veth1_macvtap: left promiscuous mode [ 1355.978469][ T1110] veth0_macvtap: left promiscuous mode [ 1355.980866][ T1110] veth1_vlan: left promiscuous mode [ 1355.983110][ T1110] veth0_vlan: left promiscuous mode [ 1355.986812][ T1110] veth1_macvtap: left promiscuous mode [ 1355.989216][ T1110] veth0_macvtap: left promiscuous mode [ 1355.991650][ T1110] veth1_vlan: left promiscuous mode [ 1355.993739][ T1110] veth0_vlan: left promiscuous mode [ 1356.386609][ T1110] team0 (unregistering): Port device team_slave_1 removed [ 1356.449938][ T1110] team0 (unregistering): Port device team_slave_0 removed [ 1356.879355][ T1110] team0 (unregistering): Port device team_slave_1 removed [ 1356.944670][ T1110] team0 (unregistering): Port device team_slave_0 removed [ 1357.387421][ T1110] team0 (unregistering): Port device team_slave_1 removed [ 1357.451321][ T1110] team0 (unregistering): Port device team_slave_0 removed VM DIAGNOSIS: 21:43:13 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=ffff8880290da600 RCX=ffffffff81d265a6 RDX=ffff88801dad0000 RSI=ffffffff81d1533f RDI=ffff8880290da600 RBP=ffffc9000376fda0 RSP=ffffc9000376fb40 R8 =0000000000000007 R9 =0000000000000000 R10=ffffea0001384e80 R11=0000000000000000 R12=0000000000000018 R13=0000000000000002 R14=ffffc9000376fd88 R15=ffff8880279c96c8 RIP=ffffffff81718cd4 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f92138d8d00 ffffffff 00c00000 GS =0000 ffff88802c000000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000055c3c9eec000 CR3=000000001c744000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=964e25fa964e25fa 964e25fa964e25fa 964e25fa964e25fa 964e25fa964e25fa 964e25fa964e25fa 964e25fa964e25fa 964e25fa964e25fa 964e25fa964e25fa ZMM22=893d8476893d8476 893d8476893d8476 893d8476893d8476 893d8476893d8476 893d8476893d8476 893d8476893d8476 893d8476893d8476 893d8476893d8476 ZMM23=7a12f0df7a12f0df 7a12f0df7a12f0df 7a12f0df7a12f0df 7a12f0df7a12f0df 7a12f0df7a12f0df 7a12f0df7a12f0df 7a12f0df7a12f0df 7a12f0df7a12f0df ZMM24=8470c84a8470c84a 8470c84a8470c84a 8470c84a8470c84a 8470c84a8470c84a 8470c84a8470c84a 8470c84a8470c84a 8470c84a8470c84a 8470c84a8470c84a ZMM25=df9d525fdf9d525f df9d525fdf9d525f df9d525fdf9d525f df9d525fdf9d525f df9d525fdf9d525f df9d525fdf9d525f df9d525fdf9d525f df9d525fdf9d525f ZMM26=8bc1f77c8bc1f77c 8bc1f77c8bc1f77c 8bc1f77c8bc1f77c 8bc1f77c8bc1f77c 8bc1f77c8bc1f77c 8bc1f77c8bc1f77c 8bc1f77c8bc1f77c 8bc1f77c8bc1f77c ZMM27=f16c117cf16c117c f16c117cf16c117c f16c117cf16c117c f16c117cf16c117c f16c117cf16c117c f16c117cf16c117c f16c117cf16c117c f16c117cf16c117c ZMM28=000001800000017f 0000017e0000017d 0000017c0000017b 0000017a00000179 0000017800000177 0000017600000175 0000017400000173 0000017200000171 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=4749000047490000 4749000047490000 4749000047490000 4749000047490000 4749000047490000 4749000047490000 4749000047490000 4749000047490000 info registers vcpu 1 CPU#1 RAX=000000000000005d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84fa7b65 RDI=ffffffff9511c240 RBP=ffffffff9511c200 RSP=ffffc9000f13ec48 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e31312e36 R12=0000000000000000 R13=000000000000005d R14=ffffffff84fa7b00 R15=0000000000000000 RIP=ffffffff84fa7b8f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802c100000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020bd9000 CR3=00000000288dc000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 bac94e39130dac31 4adf05cda250787e ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 dec949e26b98d1b0 6efb12898fc3b039 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e301c2795d8c6d9c f42b1b3614a46f21 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f782799ef908fd18 1c936cdddcbcab4b ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000004080 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000033303332193 000000000333237e ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 164e0000c2060000 008246af243f2da2 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000002420000 033320f000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000333 000000001c689f00 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2059fc5350781df3 1e9d44129334f227 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 53c3d408dee315cf e3acb550c1c66919 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=ffffffff909f0309 RBX=ffffc900037dfae8 RCX=0000000000000000 RDX=0000000000000000 RSI=0000000000000001 RDI=ffffffff909f0308 RBP=0000000000000001 RSP=ffffc900037dfa10 R8 =0000000000000001 R9 =0000000000000004 R10=0000000000000001 R11=0000000000000000 R12=ffffffff909f0306 R13=ffffc900037dfb88 R14=0000000000000001 R15=0000000000000001 RIP=ffffffff813ca96d RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f6ce76cd280 ffffffff 00c00000 GS =0000 ffff88802c200000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f27dc292440 CR3=00000000208a6000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000004 Opmask01=0000000000000000 Opmask02=00000000fffffdff Opmask03=2040000404420020 Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055811fe07790 000055811fe2d990 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055811fe07790 000055811fe2d990 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373737373737373 7373737373737373 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c98335611ef59807 0000558447f3f51e ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 ffffff00000000ff ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000ff00 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 baf046126d86eb74 737326f7348344e5 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373737373737142 7345401e1a000473 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 73202c297325286b 636f6c66206f7420 656c62616e55006e 6f69746974726170 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 302c393230302c38 3230302c37323030 2c36323030003337 3d5145534b534944 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0d11040f0d0d1105 0f0d0d110a0f0d0d 110b0f0d0d000e0a 005145534b534944 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000201 0000000000000000 32706f6f6c2f6b63 6f6c622f6c617574 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000004d 0000558447f35427 0000000000000021 0000000000003833 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00004e4f49544341 0000000000000021 0034003177617264 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a263b383a3a263a 383a3a26493b3a3a 26483b3a3a264b3b 3a0a0a0a007d6c79 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000040000 RBX=0000000020ec7000 RCX=ffffc90036f62000 RDX=0000000000040000 RSI=ffffffff81cfa0f3 RDI=0000000000000005 RBP=0000000021001000 RSP=ffffc900237a7ad0 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000 R12=0000000000200000 R13=0000000020e00200 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff8b201280 RFL=00040046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802c300000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020ec7000 CR3=00000000740fc000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000004 Opmask01=0000000000000000 Opmask02=00000000fffffdff Opmask03=2040000404420020 Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055811fe07790 000055811fe2d990 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055811fe07790 000055811fe2d990 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373737373737373 7373737373737373 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c98335611ef59807 0000558447f3f51e ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 ffffff00000000ff ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000ff00 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 baf046126d86eb74 737326f7348344e5 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373737373737142 7345401e1a000473 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 73202c297325286b 636f6c66206f7420 656c62616e55006e 6f69746974726170 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 302c393230302c38 3230302c37323030 2c36323030003337 3d5145534b534944 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0d11040f0d0d1105 0f0d0d110a0f0d0d 110b0f0d0d000e0a 005145534b534944 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000201 0000000000000000 32706f6f6c2f6b63 6f6c622f6c617574 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000004d 0000558447f35427 0000000000000021 0000000000003833 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00004e4f49544341 0000000000000021 0034003177617264 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a263b383a3a263a 383a3a26493b3a3a 26483b3a3a264b3b 3a0a0a0a007d6c79 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000