last executing test programs: 3.379905723s ago: executing program 0 (id=512): r0 = syz_usb_connect(0x0, 0x4d, &(0x7f00000007c0)=ANY=[@ANYBLOB="12010000735aca105e042107c4900102030109023b00010000000009040000000e010000052406000105240300000d240f0100000000000000000006"], 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000001a80)={0x24, 0x0, &(0x7f00000008c0)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0}, 0x0) 2.787244642s ago: executing program 1 (id=517): r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "90737f0000fffffffffffffbff95647fffffeb"}) r1 = dup(r0) ioctl$TCSETAF(r1, 0x5408, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x82f6, 0xff, "0800000000000002"}) readv(r1, &(0x7f0000000c40)=[{&(0x7f0000000240)=""/64, 0x40}], 0x1) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000100)=0xff) 2.618484359s ago: executing program 1 (id=518): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x7, 0x3, &(0x7f0000000640)=ANY=[@ANYRESOCT], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10) bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) fadvise64(r0, 0x8, 0x4000000, 0x7) ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, &(0x7f0000000000)=0x8000000) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) getuid() getresuid(&(0x7f0000000300), &(0x7f0000000340), &(0x7f00000003c0)) stat(&(0x7f00000000c0)='./file0/file0/..\x00', 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) timer_create(0xfffffffd, 0x0, &(0x7f0000000040)) timer_settime(0x0, 0x0, &(0x7f0000000100)={{}, {0x77359400}}, &(0x7f0000000200)) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) symlink(&(0x7f0000000000)='.\x00', &(0x7f0000000140)='./file0/file0/..\x00') umount2(&(0x7f0000000180)='./file0/file0/..\x00', 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) unshare(0x68060200) ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00') setgroups(0x0, 0x0) lseek(r2, 0x9, 0x0) 1.308528908s ago: executing program 0 (id=521): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) 1.180070732s ago: executing program 1 (id=522): socket$inet(0x2, 0x2000080001, 0x84) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x118, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8}, @TCA_RATE={0x6, 0x5, {0x9d}}, @filter_kind_options=@f_fw={{0x7}, {0xdc, 0x2, [@TCA_FW_CLASSID={0x8}, @TCA_FW_INDEV={0x14, 0x3, 'batadv_slave_1\x00'}, @TCA_FW_INDEV={0x14, 0x3, 'veth0_to_bond\x00'}, @TCA_FW_CLASSID={0x8}, @TCA_FW_POLICE={0xc, 0x2, [@TCA_POLICE_AVRATE={0x8}]}, @TCA_FW_CLASSID={0x8}, @TCA_FW_INDEV={0x14, 0x3, 'pimreg1\x00'}, @TCA_FW_ACT={0x78, 0x4, [@m_simple={0x74, 0x0, 0x0, 0x0, {{0xb}, {0x34, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18}, @TCA_DEF_PARMS={0x18}]}, {0x16, 0x6, "4609dc63a7e2c1e8d8f3947bfe64049bafc1"}, {0xc}, {0xc}}}]}]}}]}, 0x118}}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x7e}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41, 0xb00}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) socket$netlink(0x10, 0x3, 0x4) 1.084653513s ago: executing program 1 (id=524): pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r1 = socket$inet6(0xa, 0x3, 0xff) r2 = socket$inet6(0xa, 0x80003, 0xff) setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000fcb000), 0x4) setsockopt$inet6_int(r1, 0x29, 0x16, &(0x7f0000fcb000), 0x4) socket$inet6(0xa, 0x3, 0xff) close_range(r0, 0xffffffffffffffff, 0x0) 1.079596631s ago: executing program 2 (id=525): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x118}, 0x0) 976.885186ms ago: executing program 2 (id=526): socket(0x0, 0x0, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000480)={'syztnl1\x00', &(0x7f0000000500)={'syztnl1\x00', 0x0, 0x2f, 0x0, 0x3, 0x9, 0x31, @remote, @private1={0xfc, 0x1, '\x00', 0x1}, 0x7800, 0x8000, 0xf8, 0xfc7}}) 975.106578ms ago: executing program 1 (id=527): sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r3, 0xaf01, 0x0) r4 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r4, &(0x7f0000000080)={0x28, 0x0, 0x0, @local, 0x2}, 0x10) r5 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, 0x0) ioctl$VHOST_SET_LOG_FD(r3, 0x4004af07, &(0x7f0000000240)=r5) ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f0000000040)={0x1, r5}) ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/53, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74}) ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0}, 0x90) mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) socket$inet(0x2, 0x0, 0x0) 834.915999ms ago: executing program 2 (id=531): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x1, 0x9, 0x5, 0x7}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)="1885665a5e773056050261440ba28d689671a527e1", &(0x7f00000004c0), 0x3f, r0}, 0x38) ioctl$sock_netrom_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x24}}, 0x0) bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000280)={r0, &(0x7f0000000300), &(0x7f0000000200)=""/35}, 0x20) 830.280458ms ago: executing program 2 (id=533): r0 = socket(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) ioctl$sock_SIOCGSKNS(r1, 0x894c, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="5400000010000100"/20, @ANYRES32=r2, @ANYBLOB="7240146c00000000340012800c0001006d6163766c616e00240002800800070010000000100009"], 0x54}}, 0x0) 673.45873ms ago: executing program 2 (id=534): r0 = socket$inet6(0xa, 0x800000000000002, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000fc0), 0xffffffffffffffff) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_GET(r4, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001100)={&(0x7f0000000f00)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01f3ffffff00000000001300000018000180140002"], 0x2c}}, 0x0) sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000180)={&(0x7f00000003c0)={0x88, r5, 0x8, 0x70bd28, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0x8}, @ETHTOOL_A_LINKINFO_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0xbb}]}, 0x88}, 0x1, 0x0, 0x0, 0x2400401c}, 0x1) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x2}) ioctl$TUNSETLINK(r3, 0x400454cd, 0x339) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast}) close(r3) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000300)={'wg2\x00', 0x0}) sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000fedbdf25010000005c00088058000080240002003c664342825197eaaeca90c380863a7d5d2a2769eed5ba346502fb42deba130806000500010000000400098024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff08000100", @ANYRES32=r7, @ANYBLOB="367e321f3b3fe1c90860ed88ca876de09a50d0c26df5d8bae6787b4618e4e3e519b4ca790d726bdce546ea5f0000000000"], 0x78}}, 0x0) 627.449522ms ago: executing program 0 (id=535): unshare(0x20000400) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.events.local\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0) r1 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4) 625.543874ms ago: executing program 0 (id=537): r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000001380), 0x109201, 0x0) ioctl$F2FS_IOC_RESIZE_FS(r0, 0x5452, &(0x7f0000000000)) 546.952639ms ago: executing program 0 (id=539): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000940)={0x26, 'hash\x00', 0x0, 0x0, 'vmac64(aes-generic)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000440)='\x00'/16, 0x10) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmsg$TIPC_CMD_SHOW_LINK_STATS(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={0x0}, 0x1, 0x0, 0x0, 0x40005}, 0x10) 546.745528ms ago: executing program 2 (id=540): r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f00000005c0)=@raw={'raw\x00', 0x4001, 0x8000000, 0x238, 0xf8, 0x720d, 0x148, 0xf8, 0x148, 0x1c8, 0x240, 0x240, 0x1c8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@remote, @empty, 0x0, 0x0, 'wlan1\x00', 'ip6erspan0\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @dev}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x298) sendto$inet(r0, 0x0, 0x0, 0x24000080, 0x0, 0x0) r1 = dup(r0) ioctl$TCSETSF(r1, 0x5404, 0x0) sendmsg$TEAM_CMD_PORT_LIST_GET(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20000824}, 0x1) 433.422026ms ago: executing program 0 (id=543): r0 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000440)={'vxcan0\x00', 0x0}) bind$can_j1939(r0, &(0x7f0000000200)={0x1d, r1, 0x4}, 0x18) r2 = socket$unix(0x1, 0x1, 0x0) recvmmsg$unix(r2, &(0x7f0000002c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0xc}}], 0x0, 0x0, 0x0) ioctl$KDSETKEYCODE(r3, 0x5451, 0x0) sendmsg$NFT_MSG_GETOBJ_RESET(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x94, 0x15, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x3}, [@NFTA_OBJ_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_USERDATA={0x5a, 0x8, "61618c49e7eb9c618eb9312bc5df5227fc5c1bc7df2c6ddf1201cc0d3e8f18ef8c7c2bb06b474dcf838ff2ae6c5a5d6f6550e48bc2b3487d46130d6d96944c6ef1e4a3aae682b0bd9b380cecf62a6510cc486255c1f2"}]}, 0x94}, 0x1, 0x0, 0x0, 0x10}, 0x20000) r4 = socket$inet_sctp(0x2, 0x5, 0x84) r5 = socket$rds(0x15, 0x5, 0x0) r6 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close(r6) socket$inet_sctp(0x2, 0x5, 0x84) listen(r6, 0x1) recvmmsg(r5, &(0x7f0000004a00)=[{{&(0x7f0000000580)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff}}, 0x80, 0x0}}], 0x1, 0x40000301, 0x0) r8 = dup3(r4, r7, 0x0) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r8, 0x84, 0x75, &(0x7f0000000540), &(0x7f0000002600)=0x8) sendmsg$TIPC_NL_KEY_FLUSH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="41af58"], 0x14}, 0x1, 0x0, 0x0, 0x4040}, 0x5) 365.761897ms ago: executing program 3 (id=545): r0 = openat$uhid(0xffffff9c, &(0x7f0000000100), 0x802, 0x0) close_range(r0, r0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) getsockname$packet(r0, 0x0, &(0x7f0000001cc0)) 287.234192ms ago: executing program 3 (id=546): r0 = fsopen(&(0x7f0000000080)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) close(r1) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) read$midi(r1, 0x0, 0x0) 219.83606ms ago: executing program 3 (id=547): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000140), 0x2, 0x0) write$cgroup_freezer_state(r1, &(0x7f0000000040)='THAWED\x00', 0x1) 149.627774ms ago: executing program 3 (id=548): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x6, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040), &(0x7f00000004c0), 0xce, r0}, 0x38) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x31) bpf$MAP_CREATE(0x2000000000000000, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 69.59281ms ago: executing program 3 (id=549): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0xb, &(0x7f0000000240)=@framed={{}, [@printk={@d, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xb0}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x90) 69.281856ms ago: executing program 3 (id=550): r0 = socket$unix(0x1, 0x5, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4000) r1 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c) listen(r1, 0x80080400) accept(r1, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0) r2 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r2, &(0x7f0000e5c000)={0x2, 0x4e20, @remote}, 0x10) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x10001) 0s ago: executing program 1 (id=551): bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x81, 0x7}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1, r0}, 0xc) kernel console output (not intermixed with test programs): udit(1724917501.584:130): avc: denied { create } for pid=5389 comm="syz.1.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 61.127138][ T5334] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.127149][ T5334] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 61.145993][ T5334] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.156301][ T5334] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 61.167434][ T5334] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.171882][ T5334] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.176727][ T5334] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.180772][ T5334] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.273424][ T5392] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2'. [ 61.317361][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.320850][ T39] audit: type=1400 audit(1724917501.774:131): avc: denied { prog_load } for pid=5394 comm="syz.2.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 61.328532][ T39] audit: type=1400 audit(1724917501.774:132): avc: denied { bpf } for pid=5394 comm="syz.2.3" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 61.333921][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.358912][ T39] audit: type=1400 audit(1724917501.814:133): avc: denied { read write } for pid=5394 comm="syz.2.3" name="swradio4" dev="devtmpfs" ino=954 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 61.370491][ T39] audit: type=1400 audit(1724917501.814:134): avc: denied { open } for pid=5394 comm="syz.2.3" path="/dev/swradio4" dev="devtmpfs" ino=954 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 61.384585][ T39] audit: type=1400 audit(1724917501.844:135): avc: denied { ioctl } for pid=5394 comm="syz.2.3" path="/dev/swradio4" dev="devtmpfs" ino=954 ioctlcmd=0x5665 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 61.465105][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.480583][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.481257][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 61.487121][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 61.529090][ T39] audit: type=1400 audit(1724917501.984:136): avc: denied { create } for pid=5397 comm="syz.0.5" anonclass=[userfaultfd] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 61.549742][ T39] audit: type=1400 audit(1724917502.004:137): avc: denied { ioctl } for pid=5397 comm="syz.0.5" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=6512 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 61.584350][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 61.585424][ T39] audit: type=1400 audit(1724917502.044:138): avc: denied { create } for pid=5394 comm="syz.2.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 61.616561][ T39] audit: type=1400 audit(1724917502.064:139): avc: denied { write } for pid=5394 comm="syz.2.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 61.789260][ T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!! [ 61.869319][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 61.891051][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 61.993293][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 62.179263][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 62.182111][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 62.183986][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 62.193562][ T0] NOHZ tick-stop error: local softirq work is pending, handler #2c2!!! [ 63.059072][ T5340] Bluetooth: hci0: command tx timeout [ 63.059803][ T5337] Bluetooth: hci1: command tx timeout [ 63.139177][ T5337] Bluetooth: hci3: command tx timeout [ 63.139255][ T5340] Bluetooth: hci2: command tx timeout [ 63.476562][ T5421] syz.0.9 uses obsolete (PF_INET,SOCK_PACKET) [ 64.061995][ T5428] netlink: 12 bytes leftover after parsing attributes in process `syz.1.11'. [ 65.149034][ T5340] Bluetooth: hci0: command tx timeout [ 65.149159][ T5337] Bluetooth: hci1: command tx timeout [ 65.219679][ T5337] Bluetooth: hci2: command tx timeout [ 65.220372][ T5340] Bluetooth: hci3: command tx timeout [ 66.269873][ T5446] netlink: 28 bytes leftover after parsing attributes in process `syz.0.16'. [ 66.548512][ T39] kauditd_printk_skb: 19 callbacks suppressed [ 66.548525][ T39] audit: type=1400 audit(1724917507.004:159): avc: denied { read } for pid=5451 comm="syz.2.18" dev="nsfs" ino=4026533173 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 66.585628][ T39] audit: type=1400 audit(1724917507.024:160): avc: denied { open } for pid=5451 comm="syz.2.18" path="net:[4026533173]" dev="nsfs" ino=4026533173 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 67.495414][ T39] audit: type=1400 audit(1724917507.954:161): avc: denied { read } for pid=5458 comm="syz.1.20" name="video3" dev="devtmpfs" ino=880 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1 [ 67.505034][ T39] audit: type=1400 audit(1724917507.954:162): avc: denied { open } for pid=5458 comm="syz.1.20" path="/dev/video3" dev="devtmpfs" ino=880 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1 [ 67.516129][ T39] audit: type=1400 audit(1724917507.974:163): avc: denied { create } for pid=5458 comm="syz.1.20" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 67.683153][ T39] audit: type=1400 audit(1724917508.134:164): avc: denied { create } for pid=5458 comm="syz.1.20" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 67.744520][ T39] audit: type=1400 audit(1724917508.184:165): avc: denied { setopt } for pid=5458 comm="syz.1.20" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 67.839259][ T39] audit: type=1400 audit(1724917508.304:166): avc: denied { create } for pid=5458 comm="syz.1.20" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 67.873378][ T39] audit: type=1400 audit(1724917508.324:167): avc: denied { getopt } for pid=5458 comm="syz.1.20" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 67.885272][ T39] audit: type=1400 audit(1724917508.334:168): avc: denied { read } for pid=5458 comm="syz.1.20" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 67.962524][ T5465] tls_set_device_offload: netdev not found [ 68.926397][ T5484] netlink: 12 bytes leftover after parsing attributes in process `syz.3.24'. [ 69.908869][ T5487] netlink: 4 bytes leftover after parsing attributes in process `syz.0.26'. [ 72.033391][ T1380] ieee802154 phy0 wpan0: encryption failed: -22 [ 72.036259][ T1380] ieee802154 phy1 wpan1: encryption failed: -22 [ 72.144018][ T5502] netlink: 28 bytes leftover after parsing attributes in process `syz.0.29'. [ 74.463709][ T5525] netlink: 28 bytes leftover after parsing attributes in process `syz.1.36'. [ 75.249872][ T39] kauditd_printk_skb: 13 callbacks suppressed [ 75.249886][ T39] audit: type=1400 audit(1724917515.714:182): avc: denied { create } for pid=5529 comm="syz.3.38" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 75.320832][ T5532] tmpfs: Unknown parameter 'ipo' [ 75.334485][ T5532] netlink: 20 bytes leftover after parsing attributes in process `syz.3.38'. [ 75.403160][ T39] audit: type=1400 audit(1724917515.864:183): avc: denied { write } for pid=5529 comm="syz.3.38" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 75.411374][ T39] audit: type=1400 audit(1724917515.864:184): avc: denied { ioctl } for pid=5529 comm="syz.3.38" path="socket:[8596]" dev="sockfs" ino=8596 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 75.426274][ T5537] netlink: 28 bytes leftover after parsing attributes in process `syz.2.39'. [ 77.077711][ T39] audit: type=1400 audit(1724917517.534:185): avc: denied { read } for pid=5550 comm="syz.0.43" name="ppp" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 77.088611][ T39] audit: type=1400 audit(1724917517.534:186): avc: denied { open } for pid=5550 comm="syz.0.43" path="/dev/ppp" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 78.352839][ T5561] netlink: 28 bytes leftover after parsing attributes in process `syz.1.46'. [ 79.018922][ T39] audit: type=1400 audit(1724917519.254:187): avc: denied { read } for pid=5565 comm="syz.2.48" name="card1" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 79.057088][ T39] audit: type=1400 audit(1724917519.304:189): avc: denied { ioctl } for pid=5565 comm="syz.2.48" path="/dev/dri/card1" dev="devtmpfs" ino=638 ioctlcmd=0x640d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 79.067673][ T39] audit: type=1400 audit(1724917519.304:188): avc: denied { open } for pid=5565 comm="syz.2.48" path="/dev/dri/card1" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 79.523542][ T5579] netlink: 28 bytes leftover after parsing attributes in process `syz.2.50'. [ 79.702746][ T5581] netlink: 12 bytes leftover after parsing attributes in process `syz.0.51'. [ 81.437331][ T5594] netlink: 4 bytes leftover after parsing attributes in process `syz.1.53'. [ 81.964495][ T5601] netlink: 28 bytes leftover after parsing attributes in process `syz.0.55'. [ 82.460411][ T831] cfg80211: failed to load regulatory.db [ 86.990587][ T5668] netlink: 12 bytes leftover after parsing attributes in process `syz.1.73'. [ 87.039159][ T5669] netlink: 28 bytes leftover after parsing attributes in process `syz.3.74'. [ 88.399029][ T5676] netlink: 12 bytes leftover after parsing attributes in process `syz.1.76'. [ 89.308490][ T5681] tmpfs: Unknown parameter 'ipo' [ 89.763468][ T5693] netlink: 44 bytes leftover after parsing attributes in process `syz.0.82'. [ 90.653693][ T5702] netlink: 12 bytes leftover after parsing attributes in process `syz.2.84'. [ 90.679492][ T5704] netlink: 12 bytes leftover after parsing attributes in process `syz.1.92'. [ 92.229043][ T39] audit: type=1400 audit(1724917532.674:190): avc: denied { create } for pid=5711 comm="syz.2.86" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 92.240290][ T39] audit: type=1400 audit(1724917532.674:191): avc: denied { setopt } for pid=5711 comm="syz.2.86" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 92.259163][ T39] audit: type=1400 audit(1724917532.674:192): avc: denied { write } for pid=5711 comm="syz.2.86" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 92.318963][ T39] audit: type=1400 audit(1724917532.774:193): avc: denied { read } for pid=5711 comm="syz.2.86" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 92.331743][ T39] audit: type=1400 audit(1724917532.774:194): avc: denied { open } for pid=5711 comm="syz.2.86" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 92.346798][ T39] audit: type=1400 audit(1724917532.774:195): avc: denied { write } for pid=5711 comm="syz.2.86" name="vbi9" dev="devtmpfs" ino=953 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1 [ 93.189255][ T5725] FAULT_INJECTION: forcing a failure. [ 93.189255][ T5725] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 93.201612][ T5725] CPU: 2 UID: 0 PID: 5725 Comm: syz.2.88 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 93.206069][ T5725] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 93.210008][ T5725] Call Trace: [ 93.211292][ T5725] [ 93.212403][ T5725] dump_stack_lvl+0x16c/0x1f0 [ 93.214082][ T5725] should_fail_ex+0x497/0x5b0 [ 93.215732][ T5725] _copy_from_user+0x30/0xf0 [ 93.217389][ T5725] __x64_sys_mq_notify+0xdf/0x180 [ 93.219430][ T5725] ? __pfx___x64_sys_mq_notify+0x10/0x10 [ 93.222091][ T5725] do_syscall_64+0xcd/0x250 [ 93.224197][ T5725] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 93.227034][ T5725] RIP: 0033:0x7fa7ca579ef9 [ 93.229008][ T5725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 93.237436][ T5725] RSP: 002b:00007fa7cb3d4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f4 [ 93.241226][ T5725] RAX: ffffffffffffffda RBX: 00007fa7ca716058 RCX: 00007fa7ca579ef9 [ 93.244536][ T5725] RDX: 0000000000000000 RSI: 0000000020000000 RDI: ffffffffffffffff [ 93.247754][ T5725] RBP: 00007fa7cb3d4090 R08: 0000000000000000 R09: 0000000000000000 [ 93.251380][ T5725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 93.254895][ T5725] R13: 0000000000000001 R14: 00007fa7ca716058 R15: 00007ffc62f39428 [ 93.258301][ T5725] [ 93.731944][ T5732] netlink: 28 bytes leftover after parsing attributes in process `syz.0.90'. [ 96.335322][ T5748] tmpfs: Unknown parameter 'ipo' [ 98.375253][ T5772] netlink: 28 bytes leftover after parsing attributes in process `syz.2.100'. [ 101.246825][ T39] audit: type=1400 audit(1724917541.704:196): avc: denied { write } for pid=5782 comm="syz.2.104" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 101.263767][ T39] audit: type=1400 audit(1724917541.714:197): avc: denied { name_bind } for pid=5782 comm="syz.2.104" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1 [ 101.273804][ T39] audit: type=1400 audit(1724917541.714:198): avc: denied { listen } for pid=5782 comm="syz.2.104" laddr=::1 lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 102.484347][ T5788] tmpfs: Unknown parameter 'ipo' [ 102.634278][ T39] audit: type=1400 audit(1724917543.094:199): avc: denied { read } for pid=5792 comm="syz.3.107" name="binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 102.659378][ T39] audit: type=1400 audit(1724917543.094:200): avc: denied { open } for pid=5792 comm="syz.3.107" path="/dev/binderfs/binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 102.670156][ T39] audit: type=1400 audit(1724917543.104:201): avc: denied { ioctl } for pid=5792 comm="syz.3.107" path="/dev/binderfs/binder0" dev="binder" ino=13 ioctlcmd=0x6201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 102.681367][ T39] audit: type=1400 audit(1724917543.104:202): avc: denied { map } for pid=5792 comm="syz.3.107" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=7008 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 102.704975][ T39] audit: type=1400 audit(1724917543.104:203): avc: denied { read write } for pid=5792 comm="syz.3.107" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=7008 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 102.752091][ T5340] Bluetooth: hci3: Received unexpected HCI Event 0x00 [ 103.009645][ T39] audit: type=1400 audit(1724917543.474:204): avc: denied { create } for pid=5795 comm="syz.3.109" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 103.019327][ T39] audit: type=1400 audit(1724917543.474:205): avc: denied { setopt } for pid=5795 comm="syz.3.109" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 103.335204][ T5807] netlink: 12 bytes leftover after parsing attributes in process `syz.3.110'. [ 104.152867][ T5810] netlink: 32 bytes leftover after parsing attributes in process `syz.0.111'. [ 104.286365][ T5814] netlink: 48 bytes leftover after parsing attributes in process `syz.2.113'. [ 104.287837][ T5810] netlink: 4 bytes leftover after parsing attributes in process `syz.0.111'. [ 104.581257][ T56] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 104.772335][ T56] usb 7-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 104.777966][ T56] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 104.787300][ T56] usb 7-1: config 0 descriptor?? [ 104.875212][ T5824] tmpfs: Unknown parameter 'ipo' [ 105.152031][ T5839] capability: warning: `syz.0.119' uses deprecated v2 capabilities in a way that may be insecure [ 105.285798][ T5840] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 105.422643][ T56] [drm] vendor descriptor length:e0 data:c8 08 df 50 6e f1 34 0b 9c 17 57 [ 105.427734][ T56] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor [ 105.448164][ T56] [drm] Initialized udl 0.0.1 for 7-1:0.0 on minor 3 [ 105.451261][ T56] [drm] Initialized udl on minor 3 [ 105.863306][ T5814] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 106.016840][ T56] udl 7-1:0.0: [drm] *ERROR* Read EDID byte 1 failed err ffffffb9 [ 106.033550][ T56] udl 7-1:0.0: [drm] Cannot find any crtc or sizes [ 106.063097][ T1995] udl 7-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 106.075520][ T1995] udl 7-1:0.0: [drm] Cannot find any crtc or sizes [ 106.109356][ T56] usb 7-1: USB disconnect, device number 2 [ 106.320310][ T5851] netlink: 12 bytes leftover after parsing attributes in process `syz.1.122'. [ 106.607975][ T5855] FAULT_INJECTION: forcing a failure. [ 106.607975][ T5855] name failslab, interval 1, probability 0, space 0, times 1 [ 106.613233][ T5855] CPU: 2 UID: 0 PID: 5855 Comm: syz.3.123 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 106.617066][ T5855] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 106.621388][ T5855] Call Trace: [ 106.622547][ T5855] [ 106.623551][ T5855] dump_stack_lvl+0x16c/0x1f0 [ 106.625186][ T5855] should_fail_ex+0x497/0x5b0 [ 106.626798][ T5855] should_failslab+0xc2/0x120 [ 106.628413][ T5855] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 106.630647][ T5855] ? skb_clone+0x190/0x3f0 [ 106.632402][ T5855] skb_clone+0x190/0x3f0 [ 106.633820][ T5855] netlink_deliver_tap+0xab3/0xd90 [ 106.635995][ T5855] netlink_unicast+0x5e1/0x7f0 [ 106.637902][ T5855] ? __pfx_netlink_unicast+0x10/0x10 [ 106.640070][ T5855] netlink_sendmsg+0x8b8/0xd70 [ 106.642187][ T5855] ? __pfx_netlink_sendmsg+0x10/0x10 [ 106.644379][ T5855] ? __import_iovec+0x1fd/0x6e0 [ 106.646443][ T5855] ____sys_sendmsg+0xab5/0xc90 [ 106.648495][ T5855] ? copy_msghdr_from_user+0x10b/0x160 [ 106.650773][ T5855] ? __pfx_____sys_sendmsg+0x10/0x10 [ 106.652819][ T5855] ? find_held_lock+0x2d/0x110 [ 106.654631][ T5855] ? __pfx___lock_acquire+0x10/0x10 [ 106.656707][ T5855] ___sys_sendmsg+0x135/0x1e0 [ 106.658635][ T5855] ? __pfx____sys_sendmsg+0x10/0x10 [ 106.660634][ T5855] ? ksys_write+0x21c/0x260 [ 106.662345][ T5855] ? __fget_light+0x173/0x210 [ 106.664133][ T5855] __sys_sendmsg+0x117/0x1f0 [ 106.665890][ T5855] ? __pfx___sys_sendmsg+0x10/0x10 [ 106.667788][ T5855] do_syscall_64+0xcd/0x250 [ 106.669630][ T5855] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 106.672082][ T5855] RIP: 0033:0x7f7a71579ef9 [ 106.673910][ T5855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 106.681803][ T5855] RSP: 002b:00007f7a72289038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 106.685254][ T5855] RAX: ffffffffffffffda RBX: 00007f7a71715f80 RCX: 00007f7a71579ef9 [ 106.688518][ T5855] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 106.691611][ T5855] RBP: 00007f7a72289090 R08: 0000000000000000 R09: 0000000000000000 [ 106.694850][ T5855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 106.697960][ T5855] R13: 0000000000000000 R14: 00007f7a71715f80 R15: 00007ffe95fa2588 [ 106.701325][ T5855] [ 106.702762][ C2] vkms_vblank_simulate: vblank timer overrun [ 106.719016][ T39] kauditd_printk_skb: 22 callbacks suppressed [ 106.719027][ T39] audit: type=1326 audit(1724917547.054:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5852 comm="syz.2.124" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa7ca579ef9 code=0x0 [ 106.730374][ T39] audit: type=1326 audit(1724917547.164:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5852 comm="syz.2.124" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa7ca579ef9 code=0x0 [ 106.760362][ T39] audit: type=1326 audit(1724917547.214:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5852 comm="syz.2.124" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa7ca579ef9 code=0x0 [ 106.812422][ T39] audit: type=1326 audit(1724917547.274:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5852 comm="syz.2.124" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa7ca579ef9 code=0x0 [ 106.867945][ T39] audit: type=1326 audit(1724917547.324:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5852 comm="syz.2.124" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa7ca579ef9 code=0x0 [ 106.922957][ T39] audit: type=1326 audit(1724917547.384:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5852 comm="syz.2.124" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa7ca579ef9 code=0x0 [ 106.976427][ T39] audit: type=1326 audit(1724917547.434:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5852 comm="syz.2.124" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa7ca579ef9 code=0x0 [ 107.031035][ T39] audit: type=1326 audit(1724917547.494:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5852 comm="syz.2.124" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa7ca579ef9 code=0x0 [ 107.084747][ T39] audit: type=1326 audit(1724917547.544:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5852 comm="syz.2.124" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa7ca579ef9 code=0x0 [ 107.105211][ T5868] netlink: 44 bytes leftover after parsing attributes in process `syz.3.126'. [ 107.147970][ T39] audit: type=1326 audit(1724917547.604:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5852 comm="syz.2.124" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa7ca579ef9 code=0x0 [ 108.820435][ T5340] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 108.827566][ T5340] Bluetooth: hci2: Injecting HCI hardware error event [ 108.831938][ T5337] Bluetooth: hci2: hardware error 0x00 [ 109.206456][ T5898] netlink: 44 bytes leftover after parsing attributes in process `syz.0.135'. [ 109.262216][ T5902] FAULT_INJECTION: forcing a failure. [ 109.262216][ T5902] name failslab, interval 1, probability 0, space 0, times 0 [ 109.268741][ T5902] CPU: 3 UID: 0 PID: 5902 Comm: syz.0.137 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 109.274195][ T5902] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 109.278997][ T5902] Call Trace: [ 109.280771][ T5902] [ 109.282228][ T5902] dump_stack_lvl+0x16c/0x1f0 [ 109.284358][ T5902] should_fail_ex+0x497/0x5b0 [ 109.286589][ T5902] ? __pfx_lock_acquire+0x10/0x10 [ 109.288985][ T5902] should_failslab+0xc2/0x120 [ 109.291220][ T5902] __kmalloc_node_track_caller_noprof+0xcf/0x430 [ 109.293715][ T5902] ? sidtab_sid2str_get+0x17a/0x680 [ 109.295988][ T5902] kmemdup_noprof+0x29/0x60 [ 109.297870][ T5902] sidtab_sid2str_get+0x17a/0x680 [ 109.299820][ T5902] sidtab_entry_to_string+0x33/0x110 [ 109.302050][ T5902] security_sid_to_context_core+0x35c/0x640 [ 109.304653][ T5902] avc_audit_post_callback+0x10b/0x8c0 [ 109.307170][ T5902] ? __pfx_avc_audit_post_callback+0x10/0x10 [ 109.310009][ T5902] ? audit_log_format+0xe9/0x130 [ 109.312427][ T5902] ? __pfx_avc_audit_post_callback+0x10/0x10 [ 109.315388][ T5902] ? skb_put+0x138/0x1b0 [ 109.317484][ T5902] ? audit_log_n_string+0x251/0x540 [ 109.319755][ T5902] ? audit_log_n_untrustedstring+0xf2/0x100 [ 109.322566][ T5902] ? __pfx_avc_audit_post_callback+0x10/0x10 [ 109.325362][ T5902] common_lsm_audit+0x260/0x2220 [ 109.327659][ T5902] ? __pfx_common_lsm_audit+0x10/0x10 [ 109.330110][ T5902] ? __pfx_lock_release+0x10/0x10 [ 109.332487][ T5902] ? __pfx_avc_node_free+0x10/0x10 [ 109.334815][ T5902] ? rcu_is_watching+0x12/0xc0 [ 109.337174][ T5902] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 109.339857][ T5902] ? lockdep_hardirqs_on+0x7c/0x110 [ 109.342295][ T5902] ? slow_avc_audit+0x17d/0x210 [ 109.344555][ T5902] slow_avc_audit+0x17d/0x210 [ 109.346768][ T5902] ? __pfx_slow_avc_audit+0x10/0x10 [ 109.349170][ T5902] ? avc_denied+0x138/0x180 [ 109.351516][ T5902] ? avc_has_perm_noaudit+0x2f8/0x3a0 [ 109.353956][ T5902] avc_has_perm+0x18d/0x1c0 [ 109.356006][ T5902] ? __pfx_avc_has_perm+0x10/0x10 [ 109.358411][ T5902] ? __pfx___lock_acquire+0x10/0x10 [ 109.360962][ T5902] ? __pfx_mark_lock+0x10/0x10 [ 109.363196][ T5902] sock_has_perm+0x253/0x2f0 [ 109.365389][ T5902] ? __pfx_sock_has_perm+0x10/0x10 [ 109.367931][ T5902] ? __pfx_tomoyo_socket_sendmsg_permission+0x10/0x10 [ 109.371498][ T5902] ? __might_fault+0x13b/0x190 [ 109.373826][ T5902] ? __import_iovec+0x1fd/0x6e0 [ 109.375994][ T5902] security_socket_sendmsg+0x75/0xc0 [ 109.378356][ T5902] ____sys_sendmsg+0x7f2/0xc90 [ 109.380401][ T5902] ? copy_msghdr_from_user+0x10b/0x160 [ 109.382756][ T5902] ? __pfx_____sys_sendmsg+0x10/0x10 [ 109.385462][ T5902] ? find_held_lock+0x2d/0x110 [ 109.387667][ T5902] ? __pfx___lock_acquire+0x10/0x10 [ 109.390050][ T5902] ___sys_sendmsg+0x135/0x1e0 [ 109.392186][ T5902] ? __pfx____sys_sendmsg+0x10/0x10 [ 109.394651][ T5902] ? ksys_write+0x21c/0x260 [ 109.396505][ T5902] ? __fget_light+0x173/0x210 [ 109.398371][ T5902] __sys_sendmsg+0x117/0x1f0 [ 109.400176][ T5902] ? __pfx___sys_sendmsg+0x10/0x10 [ 109.402260][ T5902] do_syscall_64+0xcd/0x250 [ 109.404039][ T5902] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.406570][ T5902] RIP: 0033:0x7f11eed79ef9 [ 109.408306][ T5902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 109.415787][ T5902] RSP: 002b:00007f11efb7e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 109.419153][ T5902] RAX: ffffffffffffffda RBX: 00007f11eef15f80 RCX: 00007f11eed79ef9 [ 109.422232][ T5902] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 109.425258][ T5902] RBP: 00007f11efb7e090 R08: 0000000000000000 R09: 0000000000000000 [ 109.428383][ T5902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 109.432007][ T5902] R13: 0000000000000000 R14: 00007f11eef15f80 R15: 00007ffcd0e65318 [ 109.435483][ T5902] [ 109.563301][ T5908] netlink: 12 bytes leftover after parsing attributes in process `syz.0.138'. [ 110.395876][ T5915] futex_wake_op: syz.2.141 tries to shift op by -1; fix this program [ 110.708973][ T35] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 110.899019][ T35] usb 7-1: Using ep0 maxpacket: 32 [ 110.942095][ T5337] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 110.996735][ T35] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 111.003910][ T35] usb 7-1: New USB device found, idVendor=1e7d, idProduct=3138, bcdDevice= 0.00 [ 111.003925][ T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 111.006097][ T35] usb 7-1: config 0 descriptor?? [ 111.020343][ T35] usbhid 7-1:0.0: couldn't find an input interrupt endpoint [ 111.370366][ T5924] netlink: 12 bytes leftover after parsing attributes in process `syz.0.144'. [ 111.732336][ T1995] usb 7-1: USB disconnect, device number 3 [ 111.770612][ T5927] netlink: 44 bytes leftover after parsing attributes in process `syz.1.145'. [ 113.056872][ T5955] netlink: 12 bytes leftover after parsing attributes in process `syz.1.151'. [ 114.679672][ T5968] netlink: 44 bytes leftover after parsing attributes in process `syz.1.155'. [ 114.858944][ T5973] netlink: 12 bytes leftover after parsing attributes in process `syz.1.163'. [ 115.057096][ T5974] tmpfs: Unknown parameter 'ipo' [ 115.230097][ T5977] netlink: 32 bytes leftover after parsing attributes in process `syz.3.157'. [ 115.263962][ T5977] netlink: 4 bytes leftover after parsing attributes in process `syz.3.157'. [ 115.747881][ T5337] Bluetooth: hci1: Received unexpected HCI Event 0x00 [ 116.259198][ T6004] [U]  [ 116.299578][ T6007] netlink: 44 bytes leftover after parsing attributes in process `syz.1.164'. [ 116.355280][ T39] kauditd_printk_skb: 7 callbacks suppressed [ 116.355294][ T39] audit: type=1400 audit(1724917556.814:245): avc: denied { bind } for pid=6008 comm="syz.1.165" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 116.371424][ T39] audit: type=1400 audit(1724917556.814:246): avc: denied { node_bind } for pid=6008 comm="syz.1.165" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1 [ 116.381090][ T39] audit: type=1400 audit(1724917556.834:247): avc: denied { getopt } for pid=6008 comm="syz.1.165" lport=8 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 116.406539][ T39] audit: type=1400 audit(1724917556.864:248): avc: denied { create } for pid=6008 comm="syz.1.165" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 116.415395][ T39] audit: type=1400 audit(1724917556.864:249): avc: denied { connect } for pid=6008 comm="syz.1.165" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 117.198106][ T6021] netlink: 12 bytes leftover after parsing attributes in process `syz.2.167'. [ 117.209008][ T39] audit: type=1400 audit(1724917557.664:250): avc: denied { accept } for pid=6014 comm="syz.2.167" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 118.311338][ T6032] netlink: 12 bytes leftover after parsing attributes in process `syz.0.172'. [ 118.673845][ T6036] netlink: 44 bytes leftover after parsing attributes in process `syz.1.173'. [ 120.824447][ T39] audit: type=1400 audit(1724917561.284:251): avc: denied { create } for pid=6054 comm="syz.2.180" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 120.833105][ T39] audit: type=1400 audit(1724917561.284:252): avc: denied { write } for pid=6054 comm="syz.2.180" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 120.850569][ T39] audit: type=1400 audit(1724917561.314:253): avc: denied { read write } for pid=6054 comm="syz.2.180" name="fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1 [ 120.861346][ T39] audit: type=1400 audit(1724917561.314:254): avc: denied { open } for pid=6054 comm="syz.2.180" path="/dev/fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1 [ 121.015815][ T6060] [U] VÔ3¸ÂFÙ¾"SÇÁ/ÉÊ4:ÃXTZ“W¡T‘’LWµ«= [ 121.596768][ T39] audit: type=1400 audit(1724917562.054:255): avc: denied { create } for pid=6063 comm="syz.1.181" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 121.604386][ T39] audit: type=1400 audit(1724917562.064:256): avc: denied { connect } for pid=6063 comm="syz.1.181" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 121.612177][ T6066] netlink: 44 bytes leftover after parsing attributes in process `syz.0.182'. [ 121.612964][ T39] audit: type=1400 audit(1724917562.074:257): avc: denied { ioctl } for pid=6063 comm="syz.1.181" path="socket:[10747]" dev="sockfs" ino=10747 ioctlcmd=0x7437 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 121.626515][ T39] audit: type=1400 audit(1724917562.074:258): avc: denied { create } for pid=6063 comm="syz.1.181" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 121.715722][ T39] audit: type=1400 audit(1724917562.174:259): avc: denied { setopt } for pid=6063 comm="syz.1.181" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 121.734167][ T39] audit: type=1400 audit(1724917562.184:260): avc: denied { read } for pid=6063 comm="syz.1.181" name="nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 121.744224][ T6054] [U] J"—E:ÀÆ" [ 121.750099][ T39] audit: type=1400 audit(1724917562.184:261): avc: denied { open } for pid=6063 comm="syz.1.181" path="/dev/nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 121.778163][ T39] audit: type=1400 audit(1724917562.234:262): avc: denied { ioctl } for pid=6063 comm="syz.1.181" path="/dev/ppp" dev="devtmpfs" ino=716 ioctlcmd=0x7438 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 121.802907][ T39] audit: type=1400 audit(1724917562.264:263): avc: denied { unmount } for pid=5326 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 121.914721][ T6074] netlink: 12 bytes leftover after parsing attributes in process `syz.2.184'. [ 121.980993][ T5375] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 122.100883][ T6081] netlink: 28 bytes leftover after parsing attributes in process `syz.1.187'. [ 122.340877][ T5375] usb 5-1: Using ep0 maxpacket: 16 [ 122.482331][ T5375] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 123.216475][ T5375] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 123.231727][ T5375] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 123.235500][ T5375] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 123.245452][ T5375] usb 5-1: config 0 descriptor?? [ 123.675983][ T5375] usbhid 5-1:0.0: can't add hid device: -71 [ 123.684719][ T5375] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 123.693585][ T5375] usb 5-1: USB disconnect, device number 2 [ 123.852382][ T6087] trusted_key: encrypted_key: insufficient parameters specified [ 123.856460][ T6089] netlink: 32 bytes leftover after parsing attributes in process `syz.1.190'. [ 123.938012][ T6091] netlink: 44 bytes leftover after parsing attributes in process `syz.1.191'. [ 125.054304][ T6113] netlink: 28 bytes leftover after parsing attributes in process `syz.1.197'. [ 125.256364][ T6119] netlink: 28 bytes leftover after parsing attributes in process `syz.0.199'. [ 126.325537][ T6122] netlink: 44 bytes leftover after parsing attributes in process `syz.2.200'. [ 127.963967][ T6139] netlink: 28 bytes leftover after parsing attributes in process `syz.3.205'. [ 128.259527][ T6147] netlink: 32 bytes leftover after parsing attributes in process `syz.0.207'. [ 128.459429][ T6151] netlink: 44 bytes leftover after parsing attributes in process `syz.0.209'. [ 129.829005][ T5375] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 130.029389][ T5375] usb 6-1: Using ep0 maxpacket: 8 [ 130.050082][ T5375] usb 6-1: config 0 has no interfaces? [ 130.070393][ T5375] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 130.074212][ T5375] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 130.083389][ T5375] usb 6-1: Product: syz [ 130.085377][ T5375] usb 6-1: Manufacturer: syz [ 130.087432][ T5375] usb 6-1: SerialNumber: syz [ 130.105346][ T5375] usb 6-1: config 0 descriptor?? [ 130.254639][ T6176] trusted_key: encrypted_key: insufficient parameters specified [ 130.436878][ T39] audit: type=1400 audit(1724917570.894:264): avc: denied { connect } for pid=6177 comm="syz.3.217" lport=60 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 130.449077][ T39] audit: type=1400 audit(1724917570.904:265): avc: denied { write } for pid=6177 comm="syz.3.217" laddr=fe80::16 lport=60 faddr=fe80::bb scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 130.611111][ T39] audit: type=1400 audit(1724917571.074:266): avc: denied { ioctl } for pid=6177 comm="syz.3.217" path="/dev/vbi5" dev="devtmpfs" ino=925 ioctlcmd=0x561c scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1 [ 130.611185][ T6178] vivid-002: disconnect [ 130.784096][ T6184] netlink: 12 bytes leftover after parsing attributes in process `syz.0.218'. [ 130.880618][ T5375] usb 6-1: USB disconnect, device number 2 [ 131.112439][ T6192] netlink: 12 bytes leftover after parsing attributes in process `syz.2.220'. [ 131.284007][ T6177] vivid-002: reconnect [ 133.462637][ T1380] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.465537][ T1380] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.518324][ T6224] netlink: 12 bytes leftover after parsing attributes in process `syz.1.228'. [ 133.698584][ T6226] netlink: 68 bytes leftover after parsing attributes in process `syz.0.229'. [ 133.703315][ T6226] netlink: 68 bytes leftover after parsing attributes in process `syz.0.229'. [ 133.955110][ T39] audit: type=1400 audit(1724917574.414:267): avc: denied { sys_module } for pid=6225 comm="syz.0.229" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 133.981466][ T6226] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10) [ 133.983900][ T6226] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 133.988322][ T6226] vhci_hcd vhci_hcd.0: Device attached [ 134.041991][ T6231] vhci_hcd: connection closed [ 134.043497][ T1104] vhci_hcd: stop threads [ 134.047725][ T1104] vhci_hcd: release socket [ 134.052887][ T1104] vhci_hcd: disconnect device [ 134.718980][ T1995] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 134.757200][ T6242] vivid-001: disconnect [ 134.908933][ T1995] usb 8-1: Using ep0 maxpacket: 8 [ 134.912824][ T1995] usb 8-1: config index 0 descriptor too short (expected 301, got 45) [ 134.916461][ T1995] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 134.921106][ T1995] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 134.925171][ T1995] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 134.930325][ T1995] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 134.935928][ T1995] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 134.939939][ T1995] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 135.146449][ T1995] usb 8-1: usb_control_msg returned -32 [ 135.148428][ T1995] usbtmc 8-1:16.0: can't read capabilities [ 135.154997][ T6239] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 135.162523][ T6239] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 135.167486][ T6239] FAULT_INJECTION: forcing a failure. [ 135.167486][ T6239] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 135.173946][ T6239] CPU: 3 UID: 0 PID: 6239 Comm: syz.3.232 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 135.178477][ T6239] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 135.183178][ T6239] Call Trace: [ 135.184579][ T6239] [ 135.185753][ T6239] dump_stack_lvl+0x16c/0x1f0 [ 135.187594][ T6239] should_fail_ex+0x497/0x5b0 [ 135.189453][ T6239] _copy_to_user+0x30/0xc0 [ 135.191212][ T6239] simple_read_from_buffer+0xd0/0x160 [ 135.193456][ T6239] proc_fail_nth_read+0x19e/0x280 [ 135.195605][ T6239] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 135.197982][ T6239] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 135.200335][ T6239] vfs_read+0x1d4/0xbd0 [ 135.202147][ T6239] ? __fdget_pos+0xeb/0x180 [ 135.204155][ T6239] ? __pfx_vfs_read+0x10/0x10 [ 135.206254][ T6239] ? __pfx___mutex_lock+0x10/0x10 [ 135.208409][ T6239] ? __fget_files+0x256/0x400 [ 135.210277][ T6239] ksys_read+0x12f/0x260 [ 135.212001][ T6239] ? __pfx_ksys_read+0x10/0x10 [ 135.214351][ T6239] do_syscall_64+0xcd/0x250 [ 135.216321][ T6239] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 135.218929][ T6239] RIP: 0033:0x7f7a7157893c [ 135.220766][ T6239] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 135.228827][ T6239] RSP: 002b:00007f7a72289030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 135.232380][ T6239] RAX: ffffffffffffffda RBX: 00007f7a71715f80 RCX: 00007f7a7157893c [ 135.235599][ T6239] RDX: 000000000000000f RSI: 00007f7a722890a0 RDI: 0000000000000006 [ 135.238975][ T6239] RBP: 00007f7a72289090 R08: 0000000000000000 R09: 0000000000000000 [ 135.242377][ T6239] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001 [ 135.245722][ T6239] R13: 0000000000000000 R14: 00007f7a71715f80 R15: 00007ffe95fa2588 [ 135.249151][ T6239] [ 135.265726][ T57] usb 8-1: USB disconnect, device number 2 [ 135.472768][ T6240] vivid-001: reconnect [ 136.164165][ T6273] FAULT_INJECTION: forcing a failure. [ 136.164165][ T6273] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 136.173985][ T6273] CPU: 2 UID: 0 PID: 6273 Comm: syz.1.240 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 136.178605][ T6273] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 136.183302][ T6273] Call Trace: [ 136.184807][ T6273] [ 136.186136][ T6273] dump_stack_lvl+0x16c/0x1f0 [ 136.188238][ T6273] should_fail_ex+0x497/0x5b0 [ 136.190365][ T6273] _copy_from_user+0x30/0xf0 [ 136.192457][ T6273] copy_mount_options+0x76/0x190 [ 136.194657][ T6273] __x64_sys_mount+0x1ad/0x320 [ 136.196749][ T6273] ? __pfx___x64_sys_mount+0x10/0x10 [ 136.199009][ T6273] do_syscall_64+0xcd/0x250 [ 136.200970][ T6273] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.203403][ T6273] RIP: 0033:0x7fae15b79ef9 [ 136.205338][ T6273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 136.213255][ T6273] RSP: 002b:00007fae155ff038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 136.216643][ T6273] RAX: ffffffffffffffda RBX: 00007fae15d15f80 RCX: 00007fae15b79ef9 [ 136.219997][ T6273] RDX: 0000000020000680 RSI: 0000000020000180 RDI: 0000000000000000 [ 136.223312][ T6273] RBP: 00007fae155ff090 R08: 0000000020000940 R09: 0000000000000000 [ 136.226086][ T6273] R10: 0000000000200000 R11: 0000000000000246 R12: 0000000000000001 [ 136.229359][ T6273] R13: 0000000000000000 R14: 00007fae15d15f80 R15: 00007ffd793e6c38 [ 136.232813][ T6273] [ 136.250574][ T39] audit: type=1400 audit(1724917576.704:268): avc: denied { mounton } for pid=6272 comm="syz.1.240" path="/56/file0" dev="tmpfs" ino=302 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 137.910486][ T6285] netlink: 12 bytes leftover after parsing attributes in process `syz.2.243'. [ 138.893708][ T39] audit: type=1400 audit(1724917579.354:269): avc: denied { connect } for pid=6294 comm="syz.1.246" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 139.594205][ T39] audit: type=1400 audit(1724917580.054:270): avc: denied { search } for pid=5043 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 139.603903][ T39] audit: type=1400 audit(1724917580.064:271): avc: denied { read } for pid=5043 comm="dhcpcd" name="n71" dev="tmpfs" ino=2613 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 139.616789][ T39] audit: type=1400 audit(1724917580.064:272): avc: denied { open } for pid=5043 comm="dhcpcd" path="/run/udev/data/n71" dev="tmpfs" ino=2613 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 139.626933][ T39] audit: type=1400 audit(1724917580.064:273): avc: denied { getattr } for pid=5043 comm="dhcpcd" path="/run/udev/data/n71" dev="tmpfs" ino=2613 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 139.663098][ T39] audit: type=1400 audit(1724917580.124:274): avc: denied { read } for pid=6312 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=1484 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 139.671654][ T39] audit: type=1400 audit(1724917580.124:275): avc: denied { open } for pid=6312 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1484 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 139.683365][ T39] audit: type=1400 audit(1724917580.124:276): avc: denied { getattr } for pid=6312 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1484 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 139.694370][ T6314] 9pnet_fd: Insufficient options for proto=fd [ 139.697678][ T39] audit: type=1400 audit(1724917580.134:277): avc: denied { write } for pid=6311 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1483 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 140.269722][ T6329] tmpfs: Unknown parameter 'ipo' [ 141.219913][ T6350] netlink: 12 bytes leftover after parsing attributes in process `syz.1.255'. [ 141.699225][ T39] kauditd_printk_skb: 6 callbacks suppressed [ 141.699383][ T39] audit: type=1400 audit(1724917582.154:284): avc: denied { append } for pid=6355 comm="syz.0.256" name="ppp" dev="devtmpfs" ino=716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 141.727536][ T39] audit: type=1400 audit(1724917582.184:285): avc: denied { getopt } for pid=6355 comm="syz.0.256" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 142.186821][ T6362] tmpfs: Unknown parameter 'ipo' [ 142.761684][ T6373] netlink: 12 bytes leftover after parsing attributes in process `syz.3.260'. [ 143.805867][ T39] audit: type=1400 audit(1724917584.264:286): avc: denied { name_connect } for pid=6384 comm="syz.1.263" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1 [ 143.900910][ T39] audit: type=1400 audit(1724917584.364:287): avc: denied { write } for pid=6386 comm="syz.2.264" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 143.901403][ T6387] netlink: 304 bytes leftover after parsing attributes in process `syz.2.264'. [ 143.930589][ T39] audit: type=1400 audit(1724917584.364:288): avc: denied { nlmsg_read } for pid=6386 comm="syz.2.264" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 143.950123][ T39] audit: type=1400 audit(1724917584.404:289): avc: denied { mounton } for pid=6389 comm="syz.0.265" path="/proc/235/task" dev="proc" ino=9989 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1 [ 143.965030][ T39] audit: type=1400 audit(1724917584.424:290): avc: denied { create } for pid=6391 comm="syz.2.266" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 143.965876][ T6390] FAULT_INJECTION: forcing a failure. [ 143.965876][ T6390] name failslab, interval 1, probability 0, space 0, times 0 [ 143.974322][ T39] audit: type=1400 audit(1724917584.424:291): avc: denied { bind } for pid=6391 comm="syz.2.266" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 143.988188][ T39] audit: type=1400 audit(1724917584.434:292): avc: denied { write } for pid=6391 comm="syz.2.266" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 143.989669][ T6385] binder: 6384:6385 ioctl 4018620d 0 returned -22 [ 143.995442][ T6390] CPU: 2 UID: 0 PID: 6390 Comm: syz.0.265 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 144.001736][ T6390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 144.005627][ T6390] Call Trace: [ 144.007129][ T6390] [ 144.008255][ T6390] dump_stack_lvl+0x16c/0x1f0 [ 144.008489][ T6385] PKCS7: Unknown OID: [4] 0.0 [ 144.009842][ T6390] should_fail_ex+0x497/0x5b0 [ 144.009856][ T6390] ? fs_reclaim_acquire+0xae/0x160 [ 144.009866][ T6390] should_failslab+0xc2/0x120 [ 144.009878][ T6390] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 144.009890][ T6390] ? vm_area_dup+0x53/0x2f0 [ 144.009904][ T6390] vm_area_dup+0x53/0x2f0 [ 144.009918][ T6390] __split_vma+0x181/0x11c0 [ 144.012176][ T6385] PKCS7: Only support pkcs7_signedData type [ 144.014065][ T6390] ? __pfx_vma_merge+0x10/0x10 [ 144.014081][ T6390] ? __pfx___split_vma+0x10/0x10 [ 144.018903][ T6394] ======================================================= [ 144.018903][ T6394] WARNING: The mand mount option has been deprecated and [ 144.018903][ T6394] and is ignored by this kernel. Remove the mand [ 144.018903][ T6394] option from the mount to silence this warning. [ 144.018903][ T6394] ======================================================= [ 144.020042][ T6390] ? lock_acquire+0x1b1/0x560 [ 144.034228][ T39] audit: type=1400 audit(1724917584.464:293): avc: denied { connect } for pid=6393 comm="syz.2.267" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 144.043708][ T6390] vma_modify+0x1ec/0x360 [ 144.043747][ T6390] madvise_update_vma+0x18e/0xc10 [ 144.043762][ T6390] ? __pfx_madvise_update_vma+0x10/0x10 [ 144.043776][ T6390] madvise_vma_behavior+0x451/0x18e0 [ 144.060528][ T6390] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 144.063022][ T6390] ? find_vma_prev+0xcd/0x150 [ 144.065109][ T6390] ? __pfx_find_vma_prev+0x10/0x10 [ 144.067504][ T6390] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 144.069960][ T6390] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 144.072307][ T6390] madvise_walk_vmas+0x1cf/0x2c0 [ 144.074373][ T6390] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 144.076663][ T6390] do_madvise+0x310/0x7a0 [ 144.078475][ T6390] ? __pfx_do_madvise+0x10/0x10 [ 144.080522][ T6390] ? ksys_write+0x1ab/0x260 [ 144.082426][ T6390] ? __pfx_ksys_write+0x10/0x10 [ 144.084570][ T6390] __x64_sys_madvise+0xa9/0x110 [ 144.084586][ T6390] ? lockdep_hardirqs_on+0x7c/0x110 [ 144.084600][ T6390] do_syscall_64+0xcd/0x250 [ 144.084613][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 144.084630][ T6390] RIP: 0033:0x7f11eed79ef9 [ 144.084638][ T6390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 144.084648][ T6390] RSP: 002b:00007f11efb7e038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 144.084659][ T6390] RAX: ffffffffffffffda RBX: 00007f11eef15f80 RCX: 00007f11eed79ef9 [ 144.084665][ T6390] RDX: 000000000000000e RSI: 0000000000004000 RDI: 0000000020a93000 [ 144.084671][ T6390] RBP: 00007f11efb7e090 R08: 0000000000000000 R09: 0000000000000000 [ 144.084677][ T6390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 144.084683][ T6390] R13: 0000000000000000 R14: 00007f11eef15f80 R15: 00007ffcd0e65318 [ 144.084691][ T6390] [ 144.225486][ T6404] netlink: 32 bytes leftover after parsing attributes in process `syz.2.270'. [ 144.360243][ T6408] netlink: 12 bytes leftover after parsing attributes in process `syz.1.271'. [ 146.472194][ T6454] [U]  [ 147.327997][ T6462] netlink: 28 bytes leftover after parsing attributes in process `syz.3.282'. [ 147.348019][ T39] kauditd_printk_skb: 12 callbacks suppressed [ 147.348032][ T39] audit: type=1400 audit(1724917587.804:306): avc: denied { write } for pid=6463 comm="syz.2.283" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 147.945164][ T6477] netlink: 12 bytes leftover after parsing attributes in process `syz.1.287'. [ 148.098994][ T6476] tmpfs: Unknown parameter 'ipo' [ 148.185589][ T6481] netlink: 12 bytes leftover after parsing attributes in process `syz.0.288'. [ 149.668667][ T6492] [U]  [ 150.898987][ T6510] FAULT_INJECTION: forcing a failure. [ 150.898987][ T6510] name failslab, interval 1, probability 0, space 0, times 0 [ 150.904620][ T6510] CPU: 2 UID: 0 PID: 6510 Comm: syz.2.295 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 150.909084][ T6510] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 150.913568][ T6510] Call Trace: [ 150.914981][ T6510] [ 150.916258][ T6510] dump_stack_lvl+0x16c/0x1f0 [ 150.918276][ T6510] should_fail_ex+0x497/0x5b0 [ 150.920460][ T6510] should_failslab+0xc2/0x120 [ 150.922115][ T6510] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 150.924125][ T6510] ? skb_clone+0x190/0x3f0 [ 150.925932][ T6510] skb_clone+0x190/0x3f0 [ 150.927602][ T6510] dev_queue_xmit_nit+0x38f/0xba0 [ 150.929810][ T6510] dev_hard_start_xmit+0x56/0x790 [ 150.931758][ T6510] ? __kasan_slab_alloc+0x89/0x90 [ 150.933937][ T6510] __dev_queue_xmit+0x7c7/0x4300 [ 150.936116][ T6510] ? __pfx___dev_queue_xmit+0x10/0x10 [ 150.938071][ T6510] ? __asan_memcpy+0x3c/0x60 [ 150.940090][ T6510] ? __asan_memcpy+0x3c/0x60 [ 150.941947][ T6510] ? __skb_clone+0x570/0x760 [ 150.943957][ T6510] netlink_deliver_tap+0xa7d/0xd90 [ 150.946184][ T6510] netlink_unicast+0x5e1/0x7f0 [ 150.948264][ T6510] ? __pfx_netlink_unicast+0x10/0x10 [ 150.950227][ T6510] netlink_sendmsg+0x8b8/0xd70 [ 150.951947][ T6510] ? __pfx_netlink_sendmsg+0x10/0x10 [ 150.953738][ T6510] ? __import_iovec+0x1fd/0x6e0 [ 150.955520][ T6510] ____sys_sendmsg+0xab5/0xc90 [ 150.957256][ T6510] ? copy_msghdr_from_user+0x10b/0x160 [ 150.959165][ T6510] ? __pfx_____sys_sendmsg+0x10/0x10 [ 150.961210][ T6510] ? find_held_lock+0x2d/0x110 [ 150.963269][ T6510] ? __pfx___lock_acquire+0x10/0x10 [ 150.965246][ T6510] ___sys_sendmsg+0x135/0x1e0 [ 150.967035][ T6510] ? __pfx____sys_sendmsg+0x10/0x10 [ 150.969209][ T6510] ? ksys_write+0x21c/0x260 [ 150.970906][ T6510] ? __fget_light+0x173/0x210 [ 150.972887][ T6510] __sys_sendmsg+0x117/0x1f0 [ 150.974860][ T6510] ? __pfx___sys_sendmsg+0x10/0x10 [ 150.977077][ T6510] do_syscall_64+0xcd/0x250 [ 150.979017][ T6510] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.981344][ T6510] RIP: 0033:0x7fa7ca579ef9 [ 150.983024][ T6510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 150.990121][ T6510] RSP: 002b:00007fa7cb3f5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 150.993607][ T6510] RAX: ffffffffffffffda RBX: 00007fa7ca715f80 RCX: 00007fa7ca579ef9 [ 150.996972][ T6510] RDX: 00000000000000c0 RSI: 0000000020000500 RDI: 0000000000000003 [ 151.000351][ T6510] RBP: 00007fa7cb3f5090 R08: 0000000000000000 R09: 0000000000000000 [ 151.003847][ T6510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 151.007244][ T6510] R13: 0000000000000000 R14: 00007fa7ca715f80 R15: 00007ffc62f39428 [ 151.010687][ T6510] [ 151.096622][ T6512] netlink: 32 bytes leftover after parsing attributes in process `syz.2.296'. [ 151.794508][ T6519] tmpfs: Unknown parameter 'ipo' [ 152.148541][ T6522] netlink: 28 bytes leftover after parsing attributes in process `syz.3.298'. [ 153.715866][ T6545] tmpfs: Unknown parameter 'ipo' [ 154.005151][ T6547] netlink: 32 bytes leftover after parsing attributes in process `syz.0.306'. [ 155.461312][ T6571] netlink: 12 bytes leftover after parsing attributes in process `syz.0.313'. [ 155.908173][ T6568] tmpfs: Unknown parameter 'ipo' [ 156.298574][ T6581] netlink: 32 bytes leftover after parsing attributes in process `syz.2.316'. [ 156.412291][ T6584] netlink: 28 bytes leftover after parsing attributes in process `syz.2.317'. [ 156.509203][ T57] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 156.709646][ T57] usb 8-1: too many configurations: 9, using maximum allowed: 8 [ 156.718952][ T57] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 156.722667][ T57] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 156.727891][ T57] usb 8-1: config 0 interface 0 has no altsetting 0 [ 156.734435][ T57] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 156.737698][ T57] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 156.744769][ T57] usb 8-1: config 0 interface 0 has no altsetting 0 [ 156.751765][ T57] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 156.756202][ T57] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 156.761546][ T57] usb 8-1: config 0 interface 0 has no altsetting 0 [ 156.765287][ T57] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 156.771476][ T57] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 156.776322][ T57] usb 8-1: config 0 interface 0 has no altsetting 0 [ 156.781871][ T57] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 156.785890][ T57] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 156.791209][ T57] usb 8-1: config 0 interface 0 has no altsetting 0 [ 156.795798][ T57] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 156.799777][ T57] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 156.804844][ T57] usb 8-1: config 0 interface 0 has no altsetting 0 [ 156.809358][ T57] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 156.813648][ T57] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 156.819783][ T57] usb 8-1: config 0 interface 0 has no altsetting 0 [ 156.823970][ T57] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 156.828484][ T57] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 156.838973][ T57] usb 8-1: config 0 interface 0 has no altsetting 0 [ 156.861189][ T57] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 156.865137][ T57] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 156.870472][ T57] usb 8-1: Product: syz [ 156.875155][ T57] usb 8-1: Manufacturer: syz [ 156.877288][ T57] usb 8-1: SerialNumber: syz [ 156.885689][ T57] usb 8-1: config 0 descriptor?? [ 156.898698][ T57] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0 [ 157.212158][ C3] usb 8-1: yurex_control_callback - control failed: -71 [ 157.217815][ T57] usb 8-1: USB disconnect, device number 3 [ 157.222135][ T57] yurex 8-1:0.0: USB YUREX #0 now disconnected [ 157.364914][ T6592] tmpfs: Unknown parameter 'ipo' [ 158.267776][ T6606] netlink: 12 bytes leftover after parsing attributes in process `syz.3.323'. [ 158.447037][ T39] audit: type=1400 audit(1724917598.904:307): avc: denied { connect } for pid=6605 comm="syz.2.324" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 158.470996][ T39] audit: type=1400 audit(1724917598.924:308): avc: denied { write } for pid=6605 comm="syz.2.324" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 158.975925][ T6610] netlink: 32 bytes leftover after parsing attributes in process `syz.2.325'. [ 159.603369][ T6621] mkiss: ax0: crc mode is auto. [ 160.394621][ T6639] netlink: 32 bytes leftover after parsing attributes in process `syz.2.334'. [ 161.079112][ T39] audit: type=1400 audit(1724917601.534:309): avc: denied { ioctl } for pid=6641 comm="syz.2.335" path="socket:[12498]" dev="sockfs" ino=12498 ioctlcmd=0x8982 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 161.250221][ T6659] tls_set_device_offload: netdev not found [ 161.258292][ T39] audit: type=1400 audit(1724917601.714:310): avc: denied { mount } for pid=6656 comm="syz.0.338" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 161.259190][ T6655] tls_set_device_offload: netdev not found [ 161.502434][ T6661] x_tables: duplicate underflow at hook 3 [ 161.505067][ T6661] x_tables: duplicate underflow at hook 3 [ 161.507595][ T6661] x_tables: duplicate underflow at hook 3 [ 161.516298][ T6661] x_tables: duplicate underflow at hook 3 [ 161.518752][ T6661] x_tables: duplicate underflow at hook 3 [ 161.521495][ T6661] x_tables: duplicate underflow at hook 3 [ 161.523904][ T6661] x_tables: duplicate underflow at hook 3 [ 161.528466][ T6661] x_tables: duplicate underflow at hook 3 [ 161.537175][ T6661] x_tables: duplicate underflow at hook 3 [ 161.540250][ T6661] x_tables: duplicate underflow at hook 3 [ 161.859764][ T6675] netlink: 32 bytes leftover after parsing attributes in process `syz.0.343'. [ 161.977785][ T6679] FAULT_INJECTION: forcing a failure. [ 161.977785][ T6679] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 161.989023][ T6679] CPU: 1 UID: 0 PID: 6679 Comm: syz.1.345 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 161.994661][ T6679] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 161.999880][ T6679] Call Trace: [ 162.001351][ T6679] [ 162.002651][ T6679] dump_stack_lvl+0x16c/0x1f0 [ 162.004921][ T6679] should_fail_ex+0x497/0x5b0 [ 162.007021][ T6679] _copy_to_user+0x30/0xc0 [ 162.009154][ T6679] do_ipv6_getsockopt+0x2608/0x30f0 [ 162.011541][ T6679] ? avc_has_perm_noaudit+0x119/0x3a0 [ 162.013933][ T6679] ? __pfx_do_ipv6_getsockopt+0x10/0x10 [ 162.016483][ T6679] ? avc_has_perm_noaudit+0x143/0x3a0 [ 162.018945][ T6679] ? avc_has_perm+0x11b/0x1c0 [ 162.021414][ T6679] ? __pfx_avc_has_perm+0x10/0x10 [ 162.023410][ T6679] ? __lock_acquire+0xbdd/0x3cb0 [ 162.025560][ T6679] ? sock_has_perm+0x25a/0x2f0 [ 162.027988][ T6679] ? ipv6_getsockopt+0x169/0x2c0 [ 162.030157][ T6679] ipv6_getsockopt+0x169/0x2c0 [ 162.032520][ T6679] ? __pfx_ipv6_getsockopt+0x10/0x10 [ 162.034680][ T6679] ? find_held_lock+0x2d/0x110 [ 162.036729][ T6679] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 162.039233][ T6672] tmpfs: Unknown parameter 'ipo' [ 162.039471][ T6679] udpv6_getsockopt+0x61/0xb0 [ 162.044051][ T6679] do_sock_getsockopt+0x2e5/0x760 [ 162.052698][ T39] audit: type=1400 audit(1724917602.514:311): avc: denied { rename } for pid=4805 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 162.052795][ T6679] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 162.064198][ T6679] ? __fget_files+0x256/0x400 [ 162.066212][ T6679] ? __fget_light+0x173/0x210 [ 162.066228][ T39] audit: type=1400 audit(1724917602.514:312): avc: denied { unlink } for pid=4805 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 162.068061][ T6679] __sys_getsockopt+0x1a1/0x270 [ 162.077270][ T39] audit: type=1400 audit(1724917602.514:313): avc: denied { create } for pid=4805 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 162.078872][ T6679] ? __pfx___sys_getsockopt+0x10/0x10 [ 162.078894][ T6679] ? fput+0x32/0x390 [ 162.078912][ T6679] ? ksys_write+0x1ab/0x260 [ 162.094639][ T6679] ? __pfx_ksys_write+0x10/0x10 [ 162.096708][ T6679] __x64_sys_getsockopt+0xbd/0x160 [ 162.098650][ T6679] ? do_syscall_64+0x91/0x250 [ 162.100370][ T6679] ? lockdep_hardirqs_on+0x7c/0x110 [ 162.102814][ T6679] do_syscall_64+0xcd/0x250 [ 162.104881][ T6679] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 162.107511][ T6679] RIP: 0033:0x7fae15b79ef9 [ 162.109677][ T6679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 162.118289][ T6679] RSP: 002b:00007fae155ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 162.122113][ T6679] RAX: ffffffffffffffda RBX: 00007fae15d15f80 RCX: 00007fae15b79ef9 [ 162.125398][ T6679] RDX: 000000000000003b RSI: 0000000000000029 RDI: 0000000000000003 [ 162.128777][ T6679] RBP: 00007fae155ff090 R08: 0000000020000380 R09: 0000000000000000 [ 162.132269][ T6679] R10: 9999999999999999 R11: 0000000000000246 R12: 0000000000000001 [ 162.134946][ T6679] R13: 0000000000000000 R14: 00007fae15d15f80 R15: 00007ffd793e6c38 [ 162.137665][ T6679] [ 162.151259][ T39] audit: type=1400 audit(1724917602.604:314): avc: denied { write } for pid=6676 comm="syz.3.344" path="socket:[12254]" dev="sockfs" ino=12254 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 162.201843][ T39] audit: type=1400 audit(1724917602.654:315): avc: denied { setopt } for pid=6676 comm="syz.3.344" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 162.216452][ T39] audit: type=1400 audit(1724917602.654:316): avc: denied { read } for pid=6676 comm="syz.3.344" path="socket:[12254]" dev="sockfs" ino=12254 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 162.300666][ T6692] netlink: 28 bytes leftover after parsing attributes in process `syz.1.348'. [ 163.259726][ T6706] netlink: 40 bytes leftover after parsing attributes in process `syz.3.353'. [ 163.768208][ T6718] tls_set_device_offload: netdev not found [ 163.938676][ T6717] tmpfs: Unknown parameter 'ipo' [ 165.152179][ T39] kauditd_printk_skb: 2 callbacks suppressed [ 165.152194][ T39] audit: type=1400 audit(1724917605.614:319): avc: denied { execute } for pid=6738 comm="syz.2.360" path="/97/cgroup.stat" dev="tmpfs" ino=513 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 165.471787][ T6748] [U]  [ 166.096859][ T6758] FAULT_INJECTION: forcing a failure. [ 166.096859][ T6758] name failslab, interval 1, probability 0, space 0, times 0 [ 166.102037][ T6758] CPU: 3 UID: 0 PID: 6758 Comm: syz.1.366 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 166.106576][ T6758] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 166.111064][ T6758] Call Trace: [ 166.112497][ T6758] [ 166.113739][ T6758] dump_stack_lvl+0x16c/0x1f0 [ 166.115789][ T6758] should_fail_ex+0x497/0x5b0 [ 166.117763][ T6758] should_failslab+0xc2/0x120 [ 166.121457][ T6758] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 166.123725][ T6758] ? skb_clone+0x190/0x3f0 [ 166.125675][ T6758] skb_clone+0x190/0x3f0 [ 166.127510][ T6758] dev_queue_xmit_nit+0x38f/0xba0 [ 166.130090][ T6758] dev_hard_start_xmit+0x56/0x790 [ 166.132416][ T6758] ? __kasan_slab_alloc+0x89/0x90 [ 166.135190][ T6758] __dev_queue_xmit+0x7c7/0x4300 [ 166.137369][ T6758] ? __pfx___dev_queue_xmit+0x10/0x10 [ 166.140143][ T6758] ? __asan_memcpy+0x3c/0x60 [ 166.142218][ T6758] ? __asan_memcpy+0x3c/0x60 [ 166.143911][ T6758] ? __skb_clone+0x570/0x760 [ 166.145698][ T6758] netlink_deliver_tap+0xa7d/0xd90 [ 166.147591][ T6758] netlink_unicast+0x5e1/0x7f0 [ 166.149608][ T6758] ? __pfx_netlink_unicast+0x10/0x10 [ 166.151985][ T6758] netlink_sendmsg+0x8b8/0xd70 [ 166.154056][ T6758] ? __pfx_netlink_sendmsg+0x10/0x10 [ 166.156438][ T6758] ? __import_iovec+0x1fd/0x6e0 [ 166.158474][ T6758] ____sys_sendmsg+0xab5/0xc90 [ 166.160670][ T6758] ? copy_msghdr_from_user+0x10b/0x160 [ 166.165728][ T6758] ? __pfx_____sys_sendmsg+0x10/0x10 [ 166.168373][ T6758] ? find_held_lock+0x2d/0x110 [ 166.170497][ T6758] ? __pfx___lock_acquire+0x10/0x10 [ 166.172909][ T6758] ___sys_sendmsg+0x135/0x1e0 [ 166.175031][ T6758] ? __pfx____sys_sendmsg+0x10/0x10 [ 166.177288][ T6758] ? ksys_write+0x21c/0x260 [ 166.179471][ T6758] ? __fget_light+0x173/0x210 [ 166.181769][ T6758] __sys_sendmsg+0x117/0x1f0 [ 166.184087][ T6758] ? __pfx___sys_sendmsg+0x10/0x10 [ 166.186721][ T6758] do_syscall_64+0xcd/0x250 [ 166.188649][ T6758] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 166.191180][ T6758] RIP: 0033:0x7fae15b79ef9 [ 166.192995][ T6758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 166.200494][ T6758] RSP: 002b:00007fae155ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 166.203926][ T6758] RAX: ffffffffffffffda RBX: 00007fae15d15f80 RCX: 00007fae15b79ef9 [ 166.206777][ T6758] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003 [ 166.209429][ T6758] RBP: 00007fae155ff090 R08: 0000000000000000 R09: 0000000000000000 [ 166.212084][ T6758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 166.214805][ T6758] R13: 0000000000000000 R14: 00007fae15d15f80 R15: 00007ffd793e6c38 [ 166.217696][ T6758] [ 166.283406][ T39] audit: type=1400 audit(1724917606.744:320): avc: denied { setopt } for pid=6762 comm="syz.1.368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 166.299315][ T39] audit: type=1400 audit(1724917606.744:321): avc: denied { getopt } for pid=6762 comm="syz.1.368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 166.552770][ T6767] tls_set_device_offload: netdev not found [ 166.690211][ T39] audit: type=1400 audit(1724917607.154:322): avc: denied { create } for pid=6762 comm="syz.1.368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1 [ 166.716517][ T39] audit: type=1400 audit(1724917607.164:323): avc: denied { write } for pid=6762 comm="syz.1.368" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1 [ 166.939059][ T2790] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 167.138888][ T2790] usb 5-1: Using ep0 maxpacket: 8 [ 167.162185][ T2790] usb 5-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 167.167355][ T2790] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84 [ 167.186495][ T2790] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 167.192430][ T2790] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 167.196749][ T2790] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 167.245963][ T2790] usb 5-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae [ 167.256724][ T2790] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 167.261185][ T2790] usb 5-1: Product: syz [ 167.267058][ T2790] usb 5-1: Manufacturer: syz [ 167.269858][ T2790] usb 5-1: SerialNumber: syz [ 167.279796][ T2790] usb 5-1: config 0 descriptor?? [ 167.302372][ T2790] input: KB Gear Tablet as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input5 [ 167.317672][ T39] audit: type=1400 audit(1724917607.774:324): avc: denied { read } for pid=4808 comm="acpid" name="mouse2" dev="devtmpfs" ino=2430 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 167.364585][ T39] audit: type=1400 audit(1724917607.774:325): avc: denied { open } for pid=4808 comm="acpid" path="/dev/input/mouse2" dev="devtmpfs" ino=2430 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 167.388485][ T39] audit: type=1400 audit(1724917607.814:326): avc: denied { create } for pid=6772 comm="syz.3.370" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 167.554073][ T2790] usb 5-1: USB disconnect, device number 3 [ 167.664268][ T6780] netlink: 12 bytes leftover after parsing attributes in process `syz.2.372'. [ 167.750343][ T6782] mkiss: ax0: crc mode is auto. [ 167.947226][ T39] audit: type=1326 audit(1724917608.404:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6784 comm="syz.1.374" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fae15b79ef9 code=0x0 [ 168.422387][ T6790] netlink: 7 bytes leftover after parsing attributes in process `syz.3.376'. [ 168.462827][ T39] audit: type=1400 audit(1724917608.924:328): avc: denied { ioctl } for pid=6791 comm="syz.0.377" path="/97/file0/memory.events" dev="9p" ino=36575642 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 168.814757][ T6793] netlink: 16 bytes leftover after parsing attributes in process `syz.3.376'. [ 169.394985][ T6807] netlink: 28 bytes leftover after parsing attributes in process `syz.2.381'. [ 169.428751][ C0] vkms_vblank_simulate: vblank timer overrun [ 169.557343][ C0] vkms_vblank_simulate: vblank timer overrun [ 169.708937][ C0] vkms_vblank_simulate: vblank timer overrun [ 169.798821][ C0] vkms_vblank_simulate: vblank timer overrun [ 169.858845][ C0] vkms_vblank_simulate: vblank timer overrun [ 170.324990][ C0] vkms_vblank_simulate: vblank timer overrun [ 170.376580][ C0] vkms_vblank_simulate: vblank timer overrun [ 170.489130][ C0] vkms_vblank_simulate: vblank timer overrun [ 170.774976][ T39] kauditd_printk_skb: 1 callbacks suppressed [ 170.774990][ T39] audit: type=1400 audit(1724917611.234:330): avc: denied { ioctl } for pid=6813 comm="syz.0.384" path="/dev/uinput" dev="devtmpfs" ino=866 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 170.790284][ T6814] input: syz0 as /devices/virtual/input/input6 [ 170.852873][ T39] audit: type=1400 audit(1724917611.314:331): avc: denied { ioctl } for pid=4808 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2439 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 171.040796][ T39] audit: type=1400 audit(1724917611.494:332): avc: denied { setattr } for pid=6822 comm="syz.0.388" name="binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 171.060502][ T6824] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=6824 comm=syz.3.387 [ 171.169465][ T39] audit: type=1400 audit(1724917611.634:333): avc: denied { append } for pid=6826 comm="syz.3.390" name="sg0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 171.202112][ C0] vkms_vblank_simulate: vblank timer overrun [ 171.251575][ T39] audit: type=1400 audit(1724917611.654:334): avc: denied { name_bind } for pid=6826 comm="syz.3.390" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 171.257623][ T6830] fuse: Bad value for 'fd' [ 171.387236][ T6839] tmpfs: Unknown parameter 'ipo' [ 171.455496][ T39] audit: type=1400 audit(1724917611.914:335): avc: denied { bind } for pid=6840 comm="syz.2.395" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 171.471653][ T39] audit: type=1400 audit(1724917611.914:336): avc: denied { write } for pid=6840 comm="syz.2.395" path="socket:[12810]" dev="sockfs" ino=12810 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 171.508160][ T39] audit: type=1400 audit(1724917611.964:337): avc: denied { call } for pid=6822 comm="syz.0.388" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1 [ 171.527016][ T6823] binder: 6822:6823 ioctl c0306201 20000680 returned -14 [ 171.779223][ T39] audit: type=1400 audit(1724917612.234:338): avc: denied { read } for pid=6851 comm="syz.0.398" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 171.798900][ T39] audit: type=1400 audit(1724917612.234:339): avc: denied { open } for pid=6851 comm="syz.0.398" path="/dev/autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 172.056207][ T6865] FAULT_INJECTION: forcing a failure. [ 172.056207][ T6865] name failslab, interval 1, probability 0, space 0, times 0 [ 172.062004][ T6865] CPU: 3 UID: 0 PID: 6865 Comm: syz.2.401 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 172.066440][ T6865] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 172.070851][ T6865] Call Trace: [ 172.072211][ T6865] [ 172.073480][ T6865] dump_stack_lvl+0x16c/0x1f0 [ 172.075518][ T6865] should_fail_ex+0x497/0x5b0 [ 172.077602][ T6865] should_failslab+0xc2/0x120 [ 172.079856][ T6865] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 172.082093][ T6865] ? dst_alloc+0x99/0x1a0 [ 172.084063][ T6865] ? __pfx_ip6_dst_gc+0x10/0x10 [ 172.086222][ T6865] dst_alloc+0x99/0x1a0 [ 172.087988][ T6865] ip6_dst_alloc+0x2c/0x90 [ 172.089916][ T6865] ip6_pol_route+0x956/0x1120 [ 172.092132][ T6865] ? __pfx_ip6_pol_route+0x10/0x10 [ 172.094124][ T6865] ? __pfx___nf_nat_alloc_null_binding+0x10/0x10 [ 172.096732][ T6865] ? __pfx_ip6_pol_route_input+0x10/0x10 [ 172.098956][ T6865] fib6_rule_lookup+0x536/0x720 [ 172.100928][ T6865] ? __pfx_fib6_rule_lookup+0x10/0x10 [ 172.103153][ T6865] ? nf_nat_ipv6_fn+0x103/0x2e0 [ 172.125331][ T6865] ? inet6_ehashfn+0x89/0x510 [ 172.127443][ T6865] ? __pfx_inet6_ehashfn+0x10/0x10 [ 172.141485][ T6865] ip6_route_input+0x663/0xc10 [ 172.143700][ T6865] ? __pfx_ip6_route_input+0x10/0x10 [ 172.146039][ T6865] ? __pfx_lock_release+0x10/0x10 [ 172.148269][ T6865] ? __pfx___inet6_lookup_established+0x10/0x10 [ 172.151311][ T6865] ? tcp_v6_early_demux+0x40a/0xb40 [ 172.153835][ T6865] ip6_rcv_finish_core.constprop.0+0x1a0/0x5d0 [ 172.156746][ T6865] ipv6_rcv+0x1e4/0x680 [ 172.158886][ T6865] ? __pfx_ipv6_rcv+0x10/0x10 [ 172.160976][ T6865] __netif_receive_skb_one_core+0x12e/0x1e0 [ 172.163442][ T6865] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 172.166237][ T6865] ? timekeeping_debug_get_ns+0x334/0x5b0 [ 172.169030][ T6865] __netif_receive_skb+0x1d/0x160 [ 172.171231][ T6865] netif_receive_skb+0x13f/0x7b0 [ 172.173686][ T6865] ? __pfx_netif_receive_skb+0x10/0x10 [ 172.176025][ T6865] ? __pfx___lock_acquire+0x10/0x10 [ 172.178269][ T6865] tun_rx_batched+0x429/0x780 [ 172.180342][ T6865] ? __pfx_tun_rx_batched+0x10/0x10 [ 172.182595][ T6865] ? tun_get_user+0x1d81/0x3c30 [ 172.184743][ T6865] tun_get_user+0x2a5c/0x3c30 [ 172.186791][ T6865] ? __pfx_tun_get_user+0x10/0x10 [ 172.189230][ T6865] ? find_held_lock+0x2d/0x110 [ 172.191519][ T6865] ? __pfx_lock_release+0x10/0x10 [ 172.193784][ T6865] tun_chr_write_iter+0xe8/0x210 [ 172.195957][ T6865] vfs_write+0x6b6/0x1140 [ 172.197999][ T6865] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 172.200568][ T6865] ? __pfx_vfs_write+0x10/0x10 [ 172.202585][ T6865] ? __fget_files+0x256/0x400 [ 172.204367][ T6865] ? __fget_light+0x173/0x210 [ 172.206404][ T6865] ksys_write+0x12f/0x260 [ 172.208239][ T6865] ? __pfx_ksys_write+0x10/0x10 [ 172.210298][ T6865] do_syscall_64+0xcd/0x250 [ 172.212256][ T6865] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 172.214662][ T6865] RIP: 0033:0x7fa7ca5789df [ 172.216535][ T6865] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48 [ 172.224791][ T6865] RSP: 002b:00007fa7cb3f5000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 172.228492][ T6865] RAX: ffffffffffffffda RBX: 00007fa7ca715f80 RCX: 00007fa7ca5789df [ 172.231788][ T6865] RDX: 000000000000008e RSI: 0000000020000140 RDI: 00000000000000c8 [ 172.235209][ T6865] RBP: 00007fa7cb3f5090 R08: 0000000000000000 R09: 0000000000000000 [ 172.238425][ T6865] R10: 000000000000008e R11: 0000000000000293 R12: 0000000000000001 [ 172.241708][ T6865] R13: 0000000000000001 R14: 00007fa7ca715f80 R15: 00007ffc62f39428 [ 172.244995][ T6865] [ 172.254202][ T57] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 172.440791][ T57] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 172.446898][ T57] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 172.455589][ T57] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 172.463641][ T57] usb 8-1: New USB device found, idVendor=172f, idProduct=0038, bcdDevice= 0.00 [ 172.467600][ T57] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 172.474368][ T57] usb 8-1: config 0 descriptor?? [ 172.982445][ T57] waltop 0003:172F:0038.0002: unknown main item tag 0xe [ 173.013972][ T57] waltop 0003:172F:0038.0002: item fetching failed at offset 4/5 [ 173.027910][ T57] waltop 0003:172F:0038.0002: probe with driver waltop failed with error -22 [ 173.157781][ T6886] tmpfs: Unknown parameter 'ipo' [ 174.306536][ T6892] tmpfs: Unknown parameter 'ipo' [ 174.705416][ T5391] usb 8-1: USB disconnect, device number 4 [ 174.829984][ T6902] FAULT_INJECTION: forcing a failure. [ 174.829984][ T6902] name failslab, interval 1, probability 0, space 0, times 0 [ 174.836336][ T6902] CPU: 1 UID: 0 PID: 6902 Comm: syz.3.409 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 174.841130][ T6902] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 174.846250][ T6902] Call Trace: [ 174.848188][ T6902] [ 174.849790][ T6902] dump_stack_lvl+0x16c/0x1f0 [ 174.852169][ T6902] should_fail_ex+0x497/0x5b0 [ 174.854506][ T6902] ? fs_reclaim_acquire+0xae/0x160 [ 174.856807][ T6902] should_failslab+0xc2/0x120 [ 174.858888][ T6902] __kmalloc_cache_noprof+0x6b/0x300 [ 174.861189][ T6902] ? copy_mount_options+0x55/0x190 [ 174.863947][ T6902] copy_mount_options+0x55/0x190 [ 174.866232][ T6902] __x64_sys_mount+0x1ad/0x320 [ 174.868703][ T6902] ? __pfx___x64_sys_mount+0x10/0x10 [ 174.871020][ T6902] do_syscall_64+0xcd/0x250 [ 174.872936][ T6902] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 174.875590][ T6902] RIP: 0033:0x7f7a71579ef9 [ 174.877766][ T6902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 174.887255][ T6902] RSP: 002b:00007f7a72289038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 174.891573][ T6902] RAX: ffffffffffffffda RBX: 00007f7a71715f80 RCX: 00007f7a71579ef9 [ 174.895325][ T6902] RDX: 0000000020000080 RSI: 0000000020000300 RDI: 0000000000000000 [ 174.898430][ T6902] RBP: 00007f7a72289090 R08: 0000000020000780 R09: 0000000000000000 [ 174.901293][ T6902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 174.904194][ T6902] R13: 0000000000000000 R14: 00007f7a71715f80 R15: 00007ffe95fa2588 [ 174.907493][ T6902] [ 176.005501][ T39] kauditd_printk_skb: 11 callbacks suppressed [ 176.005515][ T39] audit: type=1400 audit(1724917616.464:351): avc: denied { setopt } for pid=6915 comm="syz.3.412" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 176.016152][ T39] audit: type=1400 audit(1724917616.464:352): avc: denied { open } for pid=6915 comm="syz.3.412" path="/dev/ptyqb" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1 [ 176.025812][ T39] audit: type=1400 audit(1724917616.484:353): avc: denied { ioctl } for pid=6915 comm="syz.3.412" path="/dev/ptyqb" dev="devtmpfs" ino=140 ioctlcmd=0x5457 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1 [ 176.036051][ T39] audit: type=1400 audit(1724917616.484:354): avc: denied { checkpoint_restore } for pid=6915 comm="syz.3.412" capability=40 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 176.554892][ T6927] 9pnet_fd: p9_fd_create_unix (6927): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 176.806171][ T6929] tls_set_device_offload: netdev not found [ 178.166028][ T6946] netlink: 12 bytes leftover after parsing attributes in process `syz.3.419'. [ 178.499128][ T5337] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 178.503824][ T5337] Bluetooth: hci1: Injecting HCI hardware error event [ 178.508288][ T5337] Bluetooth: hci1: hardware error 0x00 [ 178.659389][ T39] audit: type=1400 audit(1724917619.124:355): avc: denied { read } for pid=6953 comm="syz.2.423" path="socket:[13616]" dev="sockfs" ino=13616 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 178.722294][ T6956] @: renamed from vlan0 (while UP) [ 178.868515][ T39] audit: type=1400 audit(1724917619.324:356): avc: denied { execute } for pid=6962 comm="syz.2.426" path=2F6D656D66643A25202864656C6574656429 dev="hugetlbfs" ino=12962 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 179.289581][ T5433] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 179.471217][ T5433] usb 5-1: too many configurations: 9, using maximum allowed: 8 [ 179.483364][ T5433] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 179.488198][ T5433] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 179.494233][ T5433] usb 5-1: config 0 interface 0 has no altsetting 0 [ 179.498839][ T5433] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 179.503201][ T5433] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 179.509596][ T5433] usb 5-1: config 0 interface 0 has no altsetting 0 [ 179.514087][ T5433] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 179.518397][ T5433] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 179.524533][ T5433] usb 5-1: config 0 interface 0 has no altsetting 0 [ 179.533351][ T5433] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 179.537419][ T5433] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 179.578873][ T5433] usb 5-1: config 0 interface 0 has no altsetting 0 [ 179.583606][ T5433] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 179.587091][ T5433] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 179.591550][ T5433] usb 5-1: config 0 interface 0 has no altsetting 0 [ 179.596406][ T5433] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 179.601713][ T5433] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 179.607920][ T5433] usb 5-1: config 0 interface 0 has no altsetting 0 [ 179.614005][ T5433] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 179.618289][ T5433] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 179.623962][ T5433] usb 5-1: config 0 interface 0 has no altsetting 0 [ 179.628331][ T5433] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 179.633368][ T5433] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 179.638658][ T5433] usb 5-1: config 0 interface 0 has no altsetting 0 [ 179.647659][ T5433] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 179.652849][ T5433] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 179.656767][ T5433] usb 5-1: Product: syz [ 179.658938][ T5433] usb 5-1: Manufacturer: syz [ 179.660909][ T5433] usb 5-1: SerialNumber: syz [ 179.665664][ T5433] usb 5-1: config 0 descriptor?? [ 179.672978][ T5433] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0 [ 179.929254][ T56] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 179.934532][ T6974] FAULT_INJECTION: forcing a failure. [ 179.934532][ T6974] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 179.943754][ T6974] CPU: 3 UID: 0 PID: 6974 Comm: syz.2.429 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 179.948628][ T6974] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 179.954243][ T6974] Call Trace: [ 179.955723][ T6974] [ 179.957034][ T6974] dump_stack_lvl+0x16c/0x1f0 [ 179.959388][ T6974] should_fail_ex+0x497/0x5b0 [ 179.961710][ T6974] _copy_to_user+0x30/0xc0 [ 179.963599][ T6974] simple_read_from_buffer+0xd0/0x160 [ 179.966175][ T6974] proc_fail_nth_read+0x19e/0x280 [ 179.968410][ T6974] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 179.970775][ T6974] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 179.973150][ T6974] vfs_read+0x1d4/0xbd0 [ 179.974922][ T6974] ? __fdget_pos+0xeb/0x180 [ 179.976998][ T6974] ? __pfx_vfs_read+0x10/0x10 [ 179.979096][ T6974] ? __pfx___mutex_lock+0x10/0x10 [ 179.981274][ T6974] ? __fget_files+0x256/0x400 [ 179.983296][ T6974] ksys_read+0x12f/0x260 [ 179.985243][ T6974] ? __pfx_ksys_read+0x10/0x10 [ 179.987410][ T6974] ? syscall_user_dispatch+0x7a/0x130 [ 179.988752][ T1995] usb 5-1: USB disconnect, device number 4 [ 179.989884][ T6974] do_syscall_64+0xcd/0x250 [ 179.994354][ T6974] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 179.996773][ T6974] RIP: 0033:0x7fa7ca57893c [ 179.998663][ T6974] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 180.005745][ T6974] RSP: 002b:00007fa7cb3f5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 180.008737][ T6974] RAX: ffffffffffffffda RBX: 00007fa7ca715f80 RCX: 00007fa7ca57893c [ 180.012306][ T6974] RDX: 000000000000000f RSI: 00007fa7cb3f50a0 RDI: 0000000000000003 [ 180.015779][ T6974] RBP: 00007fa7cb3f5090 R08: 0000000000000000 R09: 0000000000000000 [ 180.019349][ T6974] R10: 0000000000002020 R11: 0000000000000246 R12: 0000000000000001 [ 180.022806][ T6974] R13: 0000000000000000 R14: 00007fa7ca715f80 R15: 00007ffc62f39428 [ 180.025869][ T6974] [ 180.027537][ C3] usb 5-1: yurex_control_callback - control failed: -71 [ 180.034022][ T1995] yurex 5-1:0.0: USB YUREX #0 now disconnected [ 180.164531][ T56] usb 8-1: too many configurations: 9, using maximum allowed: 8 [ 180.169678][ T56] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 180.173383][ T56] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 180.177985][ T56] usb 8-1: config 0 interface 0 has no altsetting 0 [ 180.182323][ T56] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 180.185971][ T56] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 180.190411][ T56] usb 8-1: config 0 interface 0 has no altsetting 0 [ 180.194585][ T56] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 180.198129][ T56] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 180.202843][ T56] usb 8-1: config 0 interface 0 has no altsetting 0 [ 180.206702][ T56] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 180.210874][ T56] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 180.215628][ T56] usb 8-1: config 0 interface 0 has no altsetting 0 [ 180.219848][ T56] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 180.223523][ T56] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 180.228007][ T56] usb 8-1: config 0 interface 0 has no altsetting 0 [ 180.232004][ T56] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 180.235707][ T56] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 180.245073][ T56] usb 8-1: config 0 interface 0 has no altsetting 0 [ 180.249553][ T56] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 180.253456][ T56] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 180.258105][ T56] usb 8-1: config 0 interface 0 has no altsetting 0 [ 180.262544][ T56] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 180.267025][ T56] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 180.274323][ T56] usb 8-1: config 0 interface 0 has no altsetting 0 [ 180.279691][ T56] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 180.283800][ T56] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 180.287273][ T56] usb 8-1: Product: syz [ 180.289238][ T56] usb 8-1: Manufacturer: syz [ 180.291554][ T56] usb 8-1: SerialNumber: syz [ 180.295520][ T56] usb 8-1: config 0 descriptor?? [ 180.301867][ T56] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0 [ 180.441011][ T6983] netlink: 4 bytes leftover after parsing attributes in process `syz.1.432'. [ 180.454128][ T6983] bond_slave_0: entered promiscuous mode [ 180.456699][ T6983] bond_slave_1: entered promiscuous mode [ 180.459745][ T6983] macvtap1: entered promiscuous mode [ 180.462175][ T6983] bond0: entered promiscuous mode [ 180.491879][ T6983] macvtap1: entered allmulticast mode [ 180.494351][ T6983] bond0: entered allmulticast mode [ 180.503040][ T6983] bond_slave_0: entered allmulticast mode [ 180.505469][ T6983] bond_slave_1: entered allmulticast mode [ 180.511313][ T6983] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 180.516002][ T6985] netlink: 4 bytes leftover after parsing attributes in process `syz.1.432'. [ 180.523984][ T6985] bond0: left allmulticast mode [ 180.526194][ T6985] bond_slave_0: left allmulticast mode [ 180.529039][ T6985] bond_slave_1: left allmulticast mode [ 180.531337][ T6985] bond0: left promiscuous mode [ 180.534184][ T6985] bond_slave_0: left promiscuous mode [ 180.536625][ T6985] bond_slave_1: left promiscuous mode [ 180.539545][ T6985] macvtap1: left promiscuous mode [ 180.541744][ T6985] macvtap1: left allmulticast mode [ 180.549890][ T6987] FAULT_INJECTION: forcing a failure. [ 180.549890][ T6987] name failslab, interval 1, probability 0, space 0, times 0 [ 180.555351][ T6987] CPU: 0 UID: 0 PID: 6987 Comm: syz.2.433 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 180.559905][ T6987] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 180.564622][ T6987] Call Trace: [ 180.566051][ T6987] [ 180.567288][ T6987] dump_stack_lvl+0x16c/0x1f0 [ 180.569307][ T6987] should_fail_ex+0x497/0x5b0 [ 180.571284][ T6987] should_failslab+0xc2/0x120 [ 180.573056][ T6987] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 180.575053][ T6987] ? skb_clone+0x190/0x3f0 [ 180.576749][ T6987] skb_clone+0x190/0x3f0 [ 180.578324][ T6987] dev_queue_xmit_nit+0x38f/0xba0 [ 180.579076][ T5337] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 180.580344][ T6987] dev_hard_start_xmit+0x56/0x790 [ 180.580374][ T6987] ? __kasan_slab_alloc+0x89/0x90 [ 180.580390][ T6987] __dev_queue_xmit+0x7c7/0x4300 [ 180.580409][ T6987] ? __pfx___dev_queue_xmit+0x10/0x10 [ 180.592558][ T6987] ? __asan_memcpy+0x3c/0x60 [ 180.594502][ T6987] ? __asan_memcpy+0x3c/0x60 [ 180.596476][ T6987] ? __skb_clone+0x570/0x760 [ 180.598549][ T6987] netlink_deliver_tap+0xa7d/0xd90 [ 180.600711][ T6987] netlink_unicast+0x5e1/0x7f0 [ 180.602748][ T6987] ? __pfx_netlink_unicast+0x10/0x10 [ 180.605100][ T6987] netlink_sendmsg+0x8b8/0xd70 [ 180.607204][ T6987] ? __pfx_netlink_sendmsg+0x10/0x10 [ 180.609457][ T6987] ? __import_iovec+0x1fd/0x6e0 [ 180.611575][ T6987] ____sys_sendmsg+0xab5/0xc90 [ 180.613790][ T6987] ? copy_msghdr_from_user+0x10b/0x160 [ 180.615976][ T6987] ? __pfx_____sys_sendmsg+0x10/0x10 [ 180.617998][ T6987] ? find_held_lock+0x2d/0x110 [ 180.619535][ T6987] ? __pfx___lock_acquire+0x10/0x10 [ 180.621476][ T6987] ___sys_sendmsg+0x135/0x1e0 [ 180.622861][ T6987] ? __pfx____sys_sendmsg+0x10/0x10 [ 180.624626][ T6987] ? ksys_write+0x21c/0x260 [ 180.625746][ C2] usb 8-1: yurex_control_callback - control failed: -71 [ 180.626382][ T6987] ? __fget_light+0x173/0x210 [ 180.626651][ T5387] usb 8-1: USB disconnect, device number 5 [ 180.633072][ T6987] __sys_sendmsg+0x117/0x1f0 [ 180.634779][ T6987] ? __pfx___sys_sendmsg+0x10/0x10 [ 180.636695][ T6987] do_syscall_64+0xcd/0x250 [ 180.638431][ T6987] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.640980][ T6987] RIP: 0033:0x7fa7ca579ef9 [ 180.642817][ T6987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.644253][ T5387] yurex 8-1:0.0: USB YUREX #0 now disconnected [ 180.666678][ T6987] RSP: 002b:00007fa7cb3f5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 180.666702][ T6987] RAX: ffffffffffffffda RBX: 00007fa7ca715f80 RCX: 00007fa7ca579ef9 [ 180.666709][ T6987] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003 [ 180.666715][ T6987] RBP: 00007fa7cb3f5090 R08: 0000000000000000 R09: 0000000000000000 [ 180.666721][ T6987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 180.666727][ T6987] R13: 0000000000000000 R14: 00007fa7ca715f80 R15: 00007ffc62f39428 [ 180.666735][ T6987] [ 180.739458][ T39] audit: type=1400 audit(1724917621.194:357): avc: denied { write } for pid=6990 comm="syz.2.434" name="random" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1 [ 180.856865][ T6999] FAULT_INJECTION: forcing a failure. [ 180.856865][ T6999] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 180.862892][ T6999] CPU: 0 UID: 0 PID: 6999 Comm: syz.1.438 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 180.868374][ T6999] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 180.874121][ T6999] Call Trace: [ 180.875944][ T6999] [ 180.877471][ T6999] dump_stack_lvl+0x16c/0x1f0 [ 180.879661][ T6999] should_fail_ex+0x497/0x5b0 [ 180.882060][ T6999] _copy_from_user+0x30/0xf0 [ 180.884302][ T6999] __sys_bpf+0x21c/0x4a00 [ 180.886271][ T6999] ? ksys_write+0x21c/0x260 [ 180.888379][ T6999] ? reacquire_held_locks+0x480/0x4c0 [ 180.891167][ T6999] ? __pfx___sys_bpf+0x10/0x10 [ 180.893571][ T6999] ? vfs_write+0x14d/0x1140 [ 180.895906][ T6999] ? __mutex_unlock_slowpath+0x164/0x650 [ 180.898560][ T6999] ? fput+0x32/0x390 [ 180.900479][ T6999] ? ksys_write+0x1ab/0x260 [ 180.902494][ T6999] ? __pfx_ksys_write+0x10/0x10 [ 180.904595][ T6999] __x64_sys_bpf+0x78/0xc0 [ 180.906685][ T6999] ? lockdep_hardirqs_on+0x7c/0x110 [ 180.909024][ T6999] do_syscall_64+0xcd/0x250 [ 180.911112][ T6999] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.913870][ T6999] RIP: 0033:0x7fae15b79ef9 [ 180.915856][ T6999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.923522][ T6999] RSP: 002b:00007fae155ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 180.927348][ T6999] RAX: ffffffffffffffda RBX: 00007fae15d15f80 RCX: 00007fae15b79ef9 [ 180.931108][ T6999] RDX: 0000000000000020 RSI: 0000000020000340 RDI: 0000000000000012 [ 180.934432][ T6999] RBP: 00007fae155ff090 R08: 0000000000000000 R09: 0000000000000000 [ 180.937712][ T6999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 180.940936][ T6999] R13: 0000000000000001 R14: 00007fae15d15f80 R15: 00007ffd793e6c38 [ 180.944625][ T6999] [ 180.954985][ T39] audit: type=1400 audit(1724917621.414:358): avc: denied { setopt } for pid=7004 comm="syz.2.441" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 180.965522][ T39] audit: type=1400 audit(1724917621.414:359): avc: denied { bind } for pid=7004 comm="syz.2.441" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 181.034715][ T39] audit: type=1400 audit(1724917621.494:360): avc: denied { create } for pid=7004 comm="syz.2.441" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 181.274814][ T7019] tls_set_device_offload: netdev not found [ 181.407434][ T39] audit: type=1400 audit(1724917621.864:361): avc: denied { create } for pid=7005 comm="syz.0.442" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 181.505301][ T39] audit: type=1326 audit(1724917621.964:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7005 comm="syz.0.442" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f11eed79ef9 code=0x0 [ 181.565285][ T39] audit: type=1400 audit(1724917622.024:363): avc: denied { getopt } for pid=7021 comm="syz.3.444" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 181.607003][ T7025] FAULT_INJECTION: forcing a failure. [ 181.607003][ T7025] name failslab, interval 1, probability 0, space 0, times 0 [ 181.613789][ T7025] CPU: 3 UID: 0 PID: 7025 Comm: syz.3.445 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 181.618656][ T7025] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 181.624133][ T7025] Call Trace: [ 181.625808][ T7025] [ 181.627378][ T7025] dump_stack_lvl+0x16c/0x1f0 [ 181.629725][ T7025] should_fail_ex+0x497/0x5b0 [ 181.632564][ T7025] ? fs_reclaim_acquire+0xae/0x160 [ 181.635643][ T7025] should_failslab+0xc2/0x120 [ 181.637857][ T7025] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 181.640893][ T7025] ? ptlock_alloc+0x1f/0x70 [ 181.643949][ T7025] ptlock_alloc+0x1f/0x70 [ 181.646515][ T7025] pte_alloc_one+0x74/0x370 [ 181.648705][ T7025] __pte_alloc+0x6e/0x3a0 [ 181.650607][ T7025] ? __pfx___pte_alloc+0x10/0x10 [ 181.652884][ T7025] ? _raw_spin_unlock+0x28/0x50 [ 181.655161][ T7025] ? __pmd_alloc+0x35e/0x820 [ 181.657269][ T7025] __handle_mm_fault+0x4ce4/0x55b0 [ 181.660363][ T7025] ? __pfx_mt_find+0x10/0x10 [ 181.663074][ T7025] ? hlock_class+0x4e/0x130 [ 181.665520][ T7025] ? __pfx___handle_mm_fault+0x10/0x10 [ 181.668596][ T7025] ? find_vma+0xc0/0x140 [ 181.671024][ T7025] ? __pfx_find_vma+0x10/0x10 [ 181.673336][ T7025] handle_mm_fault+0x44e/0x7b0 [ 181.675707][ T7025] ? __pkru_allows_pkey+0x52/0xb0 [ 181.678073][ T7025] do_user_addr_fault+0x7a3/0x13f0 [ 181.680713][ T7025] exc_page_fault+0x5c/0xc0 [ 181.683109][ T7025] asm_exc_page_fault+0x26/0x30 [ 181.685682][ T7025] RIP: 0010:__put_user_4+0x11/0x20 [ 181.688202][ T7025] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 [ 181.696915][ T7025] RSP: 0018:ffffc90003577bc8 EFLAGS: 00050206 [ 181.699661][ T7025] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000020000000 [ 181.703324][ T7025] RDX: ffff888022cba440 RSI: ffffffff8ab072da RDI: ffffffff8bb09c00 [ 181.707119][ T7025] RBP: 0000000020000000 R08: 0000000000000000 R09: fffffbfff2025f5b [ 181.710964][ T7025] R10: ffffffff9012fadf R11: 0000000000000000 R12: 1ffff920006aef7b [ 181.715651][ T7025] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000020000000 [ 181.720675][ T7025] ? smc_ioctl+0x2ea/0x9b0 [ 181.723672][ T7025] smc_ioctl+0x2f5/0x9b0 [ 181.725785][ T7025] ? __pfx_smc_ioctl+0x10/0x10 [ 181.728082][ T7025] sock_do_ioctl+0x116/0x280 [ 181.730779][ T7025] ? __pfx_sock_do_ioctl+0x10/0x10 [ 181.733390][ T7025] ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x470 [ 181.736848][ T7025] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 181.740270][ T7025] sock_ioctl+0x22e/0x6c0 [ 181.742322][ T7025] ? __pfx_sock_ioctl+0x10/0x10 [ 181.744352][ T7025] ? selinux_file_ioctl+0x180/0x270 [ 181.746870][ T7025] ? selinux_file_ioctl+0xb4/0x270 [ 181.749311][ T7025] ? __pfx_sock_ioctl+0x10/0x10 [ 181.751606][ T7025] __x64_sys_ioctl+0x193/0x220 [ 181.754175][ T7025] do_syscall_64+0xcd/0x250 [ 181.756762][ T7025] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.760232][ T7025] RIP: 0033:0x7f7a71579ef9 [ 181.763213][ T7025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.773083][ T7025] RSP: 002b:00007f7a72289038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 181.773182][ T7025] RAX: ffffffffffffffda RBX: 00007f7a71715f80 RCX: 00007f7a71579ef9 [ 181.773194][ T7025] RDX: 0000000020000000 RSI: 0000000000005411 RDI: 0000000000000003 [ 181.773206][ T7025] RBP: 00007f7a72289090 R08: 0000000000000000 R09: 0000000000000000 [ 181.773218][ T7025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 181.794481][ T7025] R13: 0000000000000000 R14: 00007f7a71715f80 R15: 00007ffe95fa2588 [ 181.798534][ T7025] [ 181.800820][ T5337] Bluetooth: hci0: command 0x0406 tx timeout [ 181.857916][ T39] audit: type=1400 audit(1724917622.314:364): avc: denied { read write } for pid=7027 comm="syz.3.446" name="raw-gadget" dev="devtmpfs" ino=763 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 181.870671][ T39] audit: type=1400 audit(1724917622.324:365): avc: denied { open } for pid=7027 comm="syz.3.446" path="/dev/raw-gadget" dev="devtmpfs" ino=763 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 181.881270][ T39] audit: type=1400 audit(1724917622.334:366): avc: denied { ioctl } for pid=7027 comm="syz.3.446" path="/dev/raw-gadget" dev="devtmpfs" ino=763 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 182.016476][ T7030] netlink: 160 bytes leftover after parsing attributes in process `syz.2.447'. [ 182.148963][ T2790] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 182.244896][ T39] audit: type=1400 audit(1724917622.704:367): avc: denied { sqpoll } for pid=7041 comm="syz.2.453" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 182.339767][ T2790] usb 8-1: too many configurations: 9, using maximum allowed: 8 [ 182.344226][ T2790] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 182.348222][ T2790] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 182.350141][ T39] audit: type=1400 audit(1724917622.814:368): avc: denied { ioctl } for pid=7041 comm="syz.2.453" path="/dev/nullb0" dev="devtmpfs" ino=693 ioctlcmd=0x1267 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 182.353009][ T2790] usb 8-1: config 0 interface 0 has no altsetting 0 [ 182.379259][ T2790] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 182.383034][ T2790] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 182.388356][ T2790] usb 8-1: config 0 interface 0 has no altsetting 0 [ 182.393330][ T2790] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 182.399245][ T2790] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 182.405281][ T2790] usb 8-1: config 0 interface 0 has no altsetting 0 [ 182.410370][ T2790] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 182.418459][ T2790] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 182.424539][ T2790] usb 8-1: config 0 interface 0 has no altsetting 0 [ 182.429228][ T2790] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 182.433808][ T2790] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 182.438557][ T2790] usb 8-1: config 0 interface 0 has no altsetting 0 [ 182.442710][ T2790] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 182.446865][ T2790] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 182.452280][ T2790] usb 8-1: config 0 interface 0 has no altsetting 0 [ 182.456953][ T2790] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 182.461606][ T2790] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 182.466289][ T2790] usb 8-1: config 0 interface 0 has no altsetting 0 [ 182.475423][ T2790] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 182.481563][ T2790] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 182.486794][ T2790] usb 8-1: config 0 interface 0 has no altsetting 0 [ 182.493124][ T2790] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 182.497454][ T2790] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 182.530824][ T2790] usb 8-1: Product: syz [ 182.533027][ T2790] usb 8-1: Manufacturer: syz [ 182.535510][ T2790] usb 8-1: SerialNumber: syz [ 182.541896][ T2790] usb 8-1: config 0 descriptor?? [ 182.550151][ T2790] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0 [ 182.585694][ T5391] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 182.855630][ C3] usb 8-1: yurex_control_callback - control failed: -71 [ 182.856021][ T1995] usb 8-1: USB disconnect, device number 6 [ 182.868821][ T1995] yurex 8-1:0.0: USB YUREX #0 now disconnected [ 183.655387][ T5391] usb 6-1: Using ep0 maxpacket: 8 [ 183.663851][ T5391] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 183.669132][ T5391] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 183.673732][ T5391] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 183.678038][ T5391] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 183.684724][ T5391] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 183.689257][ T5391] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 183.988964][ T5391] usb 6-1: GET_CAPABILITIES returned 0 [ 184.001021][ T5391] usbtmc 6-1:16.0: can't read capabilities [ 184.004850][ T39] audit: type=1400 audit(1724917624.464:369): avc: denied { name_bind } for pid=7063 comm="syz.2.458" src=768 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1 [ 184.217286][ C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 184.222956][ C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 184.226713][ C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 184.230685][ C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 184.234496][ C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 184.237650][ C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 184.241020][ C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 184.249269][ C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 184.253195][ C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 184.257339][ C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 184.261108][ C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 184.265019][ C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 184.268321][ C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 184.272470][ C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 184.276118][ C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 184.279853][ C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 184.305756][ T56] usb 6-1: USB disconnect, device number 3 [ 184.432441][ T7040] netlink: 8 bytes leftover after parsing attributes in process `syz.1.452'. [ 184.818891][ T5387] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 185.037420][ T5387] usb 7-1: too many configurations: 9, using maximum allowed: 8 [ 185.073284][ T5387] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 185.076426][ T5387] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 185.082738][ T5387] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.094354][ T5387] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 185.100795][ T5387] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 185.119715][ T5387] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.133605][ T5387] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 185.140123][ T5387] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 185.161271][ T5387] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.236435][ T5387] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 185.240314][ T5387] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 185.245137][ T5387] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.249547][ T5387] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 185.253315][ T5387] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 185.257611][ T5387] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.272490][ T5387] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 185.276429][ T5387] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 185.281230][ T5387] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.288064][ T5387] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 185.298948][ T5387] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 185.318931][ T5387] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.324086][ T5387] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 185.327962][ T5387] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 185.348857][ T5387] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.362266][ T5387] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 185.365731][ T5387] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 185.369502][ T5387] usb 7-1: Product: syz [ 185.371488][ T5387] usb 7-1: Manufacturer: syz [ 185.373670][ T5387] usb 7-1: SerialNumber: syz [ 185.403319][ T5387] usb 7-1: config 0 descriptor?? [ 185.421941][ T5387] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0 [ 185.714761][ C1] usb 7-1: yurex_control_callback - control failed: -71 [ 185.716827][ T56] usb 7-1: USB disconnect, device number 4 [ 185.728837][ T56] yurex 7-1:0.0: USB YUREX #0 now disconnected [ 187.245029][ T39] kauditd_printk_skb: 1 callbacks suppressed [ 187.245043][ T39] audit: type=1400 audit(1724917627.704:371): avc: denied { create } for pid=7104 comm="syz.0.472" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 187.567371][ T39] audit: type=1400 audit(1724917628.024:372): avc: denied { create } for pid=7102 comm="syz.2.471" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 187.630113][ T39] audit: type=1400 audit(1724917628.094:373): avc: denied { write } for pid=7102 comm="syz.2.471" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 188.192493][ T5359] infiniband syz1: ib_query_port failed (-19) [ 188.196530][ T7103] infiniband syz1: set down [ 188.200400][ T7103] infiniband syz1: added syzkaller0 [ 188.267048][ T7103] RDS/IB: syz1: added [ 188.271469][ T7103] smc: adding ib device syz1 with port count 1 [ 188.273797][ T7103] smc: ib device syz1 port 1 has pnetid [ 188.284195][ T7103] smc: removing ib device syz1 [ 188.306668][ C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 188.495131][ T39] audit: type=1400 audit(1724917628.954:374): avc: denied { create } for pid=7126 comm="syz.3.479" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 188.507561][ T39] audit: type=1400 audit(1724917628.964:375): avc: denied { write } for pid=7126 comm="syz.3.479" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 188.540351][ T39] audit: type=1400 audit(1724917629.004:376): avc: denied { connect } for pid=7123 comm="syz.0.478" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 188.628427][ T7103] rdma_rxe: rxe_newlink: failed to add syzkaller0 [ 188.709420][ T39] audit: type=1400 audit(1724917629.144:377): avc: denied { ioctl } for pid=7131 comm="syz.1.481" path="/dev/sg0" dev="devtmpfs" ino=707 ioctlcmd=0x2270 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 188.798557][ T7136] syz.3.483[7136] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 188.798864][ T7136] syz.3.483[7136] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 189.531019][ T39] audit: type=1400 audit(1724917629.994:378): avc: denied { ioctl } for pid=7147 comm="syz.0.487" path="socket:[14660]" dev="sockfs" ino=14660 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 189.841691][ T7156] tipc: Started in network mode [ 189.843626][ T7156] tipc: Node identity ac1414aa, cluster identity 4711 [ 189.846854][ T7156] tipc: Enabled bearer , priority 10 [ 190.674886][ T39] audit: type=1400 audit(1724917631.134:379): avc: denied { getattr } for pid=7169 comm="syz.1.494" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=13219 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 190.686924][ T39] audit: type=1400 audit(1724917631.134:380): avc: denied { read } for pid=7169 comm="syz.1.494" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 190.985581][ T1995] tipc: Node number set to 2886997162 [ 191.472500][ T2790] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 191.660412][ T2790] usb 8-1: config 0 has an invalid interface number: 199 but max is 1 [ 191.663897][ T2790] usb 8-1: config 0 has no interface number 1 [ 191.666482][ T2790] usb 8-1: config 0 interface 199 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 191.673992][ T2790] usb 8-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 191.679494][ T2790] usb 8-1: New USB device found, idVendor=0002, idProduct=0000, bcdDevice= 0.00 [ 191.683462][ T2790] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 191.686997][ T2790] usb 8-1: SerialNumber: syz [ 191.693700][ T2790] usb 8-1: config 0 descriptor?? [ 191.914252][ T2790] usb 8-1: Found UVC 0.00 device (0002:0000) [ 191.922739][ T2790] usb 8-1: No valid video chain found. [ 191.947235][ T2790] usb 8-1: USB disconnect, device number 7 [ 193.551819][ T1995] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 194.278892][ T1995] usb 5-1: Using ep0 maxpacket: 16 [ 194.286290][ T1995] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 194.297341][ T1995] usb 5-1: New USB device found, idVendor=045e, idProduct=0721, bcdDevice=90.c4 [ 194.300663][ T1995] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 194.303584][ T1995] usb 5-1: Product: syz [ 194.305153][ T1995] usb 5-1: Manufacturer: syz [ 194.306877][ T1995] usb 5-1: SerialNumber: syz [ 194.313141][ T1995] usb 5-1: config 0 descriptor?? [ 194.744903][ T1995] usb 5-1: Found UVC 0.00 device syz (045e:0721) [ 194.748872][ T1995] usb 5-1: No valid video chain found. [ 194.764965][ T1995] usb 5-1: USB disconnect, device number 5 [ 194.915854][ T1380] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.918249][ T1380] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.112127][ T39] kauditd_printk_skb: 3 callbacks suppressed [ 195.112272][ T39] audit: type=1400 audit(1724917635.574:384): avc: denied { ioctl } for pid=7253 comm="syz.3.520" path="socket:[13299]" dev="sockfs" ino=13299 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 195.667998][ T39] audit: type=1400 audit(1724917636.124:385): avc: denied { setopt } for pid=7272 comm="syz.3.528" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 195.693409][ T39] audit: type=1400 audit(1724917636.154:386): avc: denied { ioctl } for pid=7268 comm="syz.2.526" path="socket:[14016]" dev="sockfs" ino=14016 ioctlcmd=0x89f3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 195.804789][ T39] audit: type=1400 audit(1724917636.264:387): avc: denied { listen } for pid=7283 comm="syz.3.532" laddr=::1 lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 195.841912][ T7288] netlink: 'syz.2.533': attribute type 9 has an invalid length. [ 195.844810][ T7288] netlink: 8 bytes leftover after parsing attributes in process `syz.2.533'. [ 195.927902][ T7292] pim6reg1: entered promiscuous mode [ 195.930577][ T7292] pim6reg1: entered allmulticast mode [ 196.080891][ T39] audit: type=1400 audit(1724917636.544:388): avc: denied { setopt } for pid=7301 comm="syz.3.538" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 196.193703][ T39] audit: type=1400 audit(1724917636.654:389): avc: denied { write } for pid=7314 comm="syz.3.542" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 196.249096][ T39] audit: type=1400 audit(1724917636.714:390): avc: denied { read } for pid=7321 comm="syz.0.543" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 196.347730][ T39] audit: type=1400 audit(1724917636.804:391): avc: denied { mount } for pid=7328 comm="syz.3.546" name="/" dev="configfs" ino=3126 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 196.604075][ T39] audit: type=1400 audit(1724917637.064:392): avc: denied { accept } for pid=7336 comm="syz.3.550" lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 196.677724][ T7340] ------------[ cut here ]------------ [ 196.680807][ T7340] WARNING: CPU: 0 PID: 7340 at kernel/bpf/helpers.c:132 bpf_map_lookup_percpu_elem+0xa8/0xc0 [ 196.684574][ T7340] Modules linked in: [ 196.686453][ T7340] CPU: 0 UID: 0 PID: 7340 Comm: syz.1.551 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 196.694143][ T7340] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 196.698128][ T7340] RIP: 0010:bpf_map_lookup_percpu_elem+0xa8/0xc0 [ 196.700738][ T7340] Code: 41 5c 41 5d ff e0 cc 66 90 e8 84 1d e5 ff e8 0f 82 ca ff 31 ff 41 89 c4 89 c6 e8 b3 1f e5 ff 45 85 e4 75 8c e8 69 1d e5 ff 90 <0f> 0b 90 eb 81 48 89 df e8 ab 4a 42 00 eb 93 e8 a4 4a 42 00 eb ae [ 196.708409][ T7340] RSP: 0018:ffffc900032c7a80 EFLAGS: 00010287 [ 196.711057][ T7340] RAX: 000000000000036f RBX: ffff888047373000 RCX: ffffc90003ab9000 [ 196.714519][ T7340] RDX: 0000000000040000 RSI: ffffffff81a558a7 RDI: 0000000000000005 [ 196.717169][ T7340] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 196.719778][ T7340] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 196.722155][ T7340] R13: ffffc900032c7b38 R14: 0000000000000000 R15: 0000000000000000 [ 196.725012][ T7340] FS: 00007fae155ff6c0(0000) GS:ffff88806b000000(0000) knlGS:0000000000000000 [ 196.728100][ T7340] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 196.731463][ T7340] CR2: 000000110c309fdb CR3: 0000000045b9e000 CR4: 0000000000350ef0 [ 196.734771][ T7340] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 196.738544][ T7340] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 196.743264][ T7340] Call Trace: [ 196.744718][ T7340] [ 196.745997][ T7340] ? show_regs+0x8c/0xa0 [ 196.747838][ T7340] ? __warn+0xe5/0x3c0 [ 196.749609][ T7340] ? bpf_map_lookup_percpu_elem+0xa8/0xc0 [ 196.752140][ T7340] ? report_bug+0x3c0/0x580 [ 196.753867][ T7340] ? handle_bug+0x3d/0x70 [ 196.760903][ T7340] ? exc_invalid_op+0x17/0x50 [ 196.762920][ T7340] ? asm_exc_invalid_op+0x1a/0x20 [ 196.765099][ T7340] ? bpf_map_lookup_percpu_elem+0xa7/0xc0 [ 196.767569][ T7340] ? bpf_map_lookup_percpu_elem+0xa8/0xc0 [ 196.769842][ T7340] ? __pfx_bpf_map_lookup_percpu_elem+0x10/0x10 [ 196.772205][ T7340] ___bpf_prog_run+0x3e51/0xabd0 [ 196.774343][ T7340] __bpf_prog_run32+0xc1/0x100 [ 196.776411][ T7340] ? __pfx___bpf_prog_run32+0x10/0x10 [ 196.778693][ T7340] ? __pfx_lock_acquire+0x10/0x10 [ 196.780907][ T7340] ? __pfx_lock_release+0x10/0x10 [ 196.782873][ T7340] ? __pfx___cant_migrate+0x10/0x10 [ 196.785137][ T7340] bpf_prog_test_run_syscall+0x5b7/0x770 [ 196.787533][ T7340] ? __pfx_bpf_prog_test_run_syscall+0x10/0x10 [ 196.790072][ T7340] ? fput+0x32/0x390 [ 196.791579][ T7340] ? __bpf_prog_get+0xa0/0x2f0 [ 196.793622][ T7340] ? __pfx_bpf_prog_test_run_syscall+0x10/0x10 [ 196.796158][ T7340] __sys_bpf+0x10d2/0x4a00 [ 196.798067][ T7340] ? __pfx_futex_wake+0x10/0x10 [ 196.800189][ T7340] ? __pfx___sys_bpf+0x10/0x10 [ 196.801993][ T7340] ? __schedule+0xe3f/0x5490 [ 196.803978][ T7340] ? do_user_addr_fault+0xdc7/0x13f0 [ 196.806244][ T7340] ? reacquire_held_locks+0x20b/0x4c0 [ 196.808507][ T7340] ? do_futex+0x123/0x350 [ 196.810224][ T7340] ? __pfx_do_futex+0x10/0x10 [ 196.812114][ T7340] ? xfd_validate_state+0x5d/0x180 [ 196.814304][ T7340] __x64_sys_bpf+0x78/0xc0 [ 196.816227][ T7340] ? lockdep_hardirqs_on+0x7c/0x110 [ 196.818419][ T7340] do_syscall_64+0xcd/0x250 [ 196.820471][ T7340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.822999][ T7340] RIP: 0033:0x7fae15b79ef9 [ 196.825028][ T7340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.832619][ T7340] RSP: 002b:00007fae155ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 196.835780][ T7340] RAX: ffffffffffffffda RBX: 00007fae15d15f80 RCX: 00007fae15b79ef9 [ 196.839195][ T7340] RDX: 000000000000000c RSI: 00000000200004c0 RDI: 000000000000000a [ 196.842535][ T7340] RBP: 00007fae15be793e R08: 0000000000000000 R09: 0000000000000000 [ 196.845877][ T7340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 196.849292][ T7340] R13: 0000000000000000 R14: 00007fae15d15f80 R15: 00007ffd793e6c38 [ 196.852460][ T7340] [ 196.853845][ T7340] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 196.856974][ T7340] CPU: 0 UID: 0 PID: 7340 Comm: syz.1.551 Not tainted 6.11.0-rc5-syzkaller-00079-g928f79a188aa #0 [ 196.861384][ T7340] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 196.865817][ T7340] Call Trace: [ 196.867284][ T7340] [ 196.868584][ T7340] dump_stack_lvl+0x3d/0x1f0 [ 196.870639][ T7340] panic+0x6dc/0x7c0 [ 196.872330][ T7340] ? __pfx_panic+0x10/0x10 [ 196.873851][ T7340] ? show_trace_log_lvl+0x363/0x500 [ 196.875657][ T7340] ? bpf_map_lookup_percpu_elem+0xa8/0xc0 [ 196.877588][ T7340] check_panic_on_warn+0xab/0xb0 [ 196.879459][ T7340] __warn+0xf1/0x3c0 [ 196.881171][ T7340] ? bpf_map_lookup_percpu_elem+0xa8/0xc0 [ 196.883475][ T7340] report_bug+0x3c0/0x580 [ 196.885374][ T7340] handle_bug+0x3d/0x70 [ 196.887200][ T7340] exc_invalid_op+0x17/0x50 [ 196.889194][ T7340] asm_exc_invalid_op+0x1a/0x20 [ 196.891378][ T7340] RIP: 0010:bpf_map_lookup_percpu_elem+0xa8/0xc0 [ 196.893765][ T7340] Code: 41 5c 41 5d ff e0 cc 66 90 e8 84 1d e5 ff e8 0f 82 ca ff 31 ff 41 89 c4 89 c6 e8 b3 1f e5 ff 45 85 e4 75 8c e8 69 1d e5 ff 90 <0f> 0b 90 eb 81 48 89 df e8 ab 4a 42 00 eb 93 e8 a4 4a 42 00 eb ae [ 196.900853][ T7340] RSP: 0018:ffffc900032c7a80 EFLAGS: 00010287 [ 196.903254][ T7340] RAX: 000000000000036f RBX: ffff888047373000 RCX: ffffc90003ab9000 [ 196.906553][ T7340] RDX: 0000000000040000 RSI: ffffffff81a558a7 RDI: 0000000000000005 [ 196.909890][ T7340] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 196.913039][ T7340] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 196.915991][ T7340] R13: ffffc900032c7b38 R14: 0000000000000000 R15: 0000000000000000 [ 196.918871][ T7340] ? bpf_map_lookup_percpu_elem+0xa7/0xc0 [ 196.921396][ T7340] ? __pfx_bpf_map_lookup_percpu_elem+0x10/0x10 [ 196.924193][ T7340] ___bpf_prog_run+0x3e51/0xabd0 [ 196.926154][ T7340] __bpf_prog_run32+0xc1/0x100 [ 196.928081][ T7340] ? __pfx___bpf_prog_run32+0x10/0x10 [ 196.930081][ T7340] ? __pfx_lock_acquire+0x10/0x10 [ 196.932038][ T7340] ? __pfx_lock_release+0x10/0x10 [ 196.934160][ T7340] ? __pfx___cant_migrate+0x10/0x10 [ 196.936288][ T7340] bpf_prog_test_run_syscall+0x5b7/0x770 [ 196.938761][ T7340] ? __pfx_bpf_prog_test_run_syscall+0x10/0x10 [ 196.941381][ T7340] ? fput+0x32/0x390 [ 196.943134][ T7340] ? __bpf_prog_get+0xa0/0x2f0 [ 196.945291][ T7340] ? __pfx_bpf_prog_test_run_syscall+0x10/0x10 [ 196.948016][ T7340] __sys_bpf+0x10d2/0x4a00 [ 196.949971][ T7340] ? __pfx_futex_wake+0x10/0x10 [ 196.952152][ T7340] ? __pfx___sys_bpf+0x10/0x10 [ 196.954161][ T7340] ? __schedule+0xe3f/0x5490 [ 196.956081][ T7340] ? do_user_addr_fault+0xdc7/0x13f0 [ 196.958405][ T7340] ? reacquire_held_locks+0x20b/0x4c0 [ 196.960730][ T7340] ? do_futex+0x123/0x350 [ 196.962569][ T7340] ? __pfx_do_futex+0x10/0x10 [ 196.964576][ T7340] ? xfd_validate_state+0x5d/0x180 [ 196.966744][ T7340] __x64_sys_bpf+0x78/0xc0 [ 196.968646][ T7340] ? lockdep_hardirqs_on+0x7c/0x110 [ 196.970866][ T7340] do_syscall_64+0xcd/0x250 [ 196.972742][ T7340] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.975178][ T7340] RIP: 0033:0x7fae15b79ef9 [ 196.977028][ T7340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.985122][ T7340] RSP: 002b:00007fae155ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 196.988608][ T7340] RAX: ffffffffffffffda RBX: 00007fae15d15f80 RCX: 00007fae15b79ef9 [ 196.991886][ T7340] RDX: 000000000000000c RSI: 00000000200004c0 RDI: 000000000000000a [ 196.994603][ T7340] RBP: 00007fae15be793e R08: 0000000000000000 R09: 0000000000000000 [ 196.997474][ T7340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 197.000686][ T7340] R13: 0000000000000000 R14: 00007fae15d15f80 R15: 00007ffd793e6c38 [ 197.003766][ T7340] [ 197.005570][ T7340] Kernel Offset: disabled [ 197.007506][ T7340] Rebooting in 86400 seconds.. VM DIAGNOSIS: 07:47:17 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84fe74e5 RDI=ffffffff9519f5a0 RBP=ffffffff9519f560 RSP=ffffc900032c7460 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000030 R14=ffffffff84fe7480 R15=0000000000000000 RIP=ffffffff84fe750f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fae155ff6c0 ffffffff 00c00000 GS =0000 ffff88806b000000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000110c309fdb CR3=0000000045b9e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000208001 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fae15be8762 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fae15be876f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fae15be8769 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fae15be877d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fae15be8803 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fae15be88e1 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fae15ceb488 00007fae15ceb480 00007fae15ceb478 00007fae15ceb450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fae1684d100 00007fae15ceb440 00007fae15ceb458 00007fae15ceb4a0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fae15ceb498 00007fae15ceb490 00007fae15ceb488 00007fae15ceb480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=fffff9400006cee6 RBX=fffff9400006cee7 RCX=ffffffff81d6eb25 RDX=fffff9400006cee7 RSI=0000000000000004 RDI=ffffea0000367734 RBP=fffff9400006cee6 RSP=ffffc900009b71f8 R8 =0000000000000000 R9 =fffff9400006cee6 R10=ffffea0000367737 R11=0000000000000000 R12=ffffea0000367734 R13=ffffea0000367708 R14=00fff00000050119 R15=0000000000000002 RIP=ffffffff81e79d31 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806b100000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b30f11ff8 CR3=000000002ff5a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000306e61637876 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f11eede8762 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f11eede876f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f11eede8769 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f11eede877d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f11eede8803 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f11eede88e1 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e4c94966d0d1346 7d48b3c28be45065 6f5d5a6caef28f83 cf4d476bb02b7c8c ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 f2c1556248cc1065 2af6ec0c389bbdb0 82e6aaa3e4f10004 0000000b000c000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 b3c28be450656f5d 5a6caef28f83cf4d 476bb02b7c8cef18 8f3e0dcc0112df6d ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=1ffffffff26cd697 RBX=ffffffff9366b4a0 RCX=ffffffff81677f7e RDX=1ffffffff28b0bce RSI=0000000000000008 RDI=ffffffff9366b4b8 RBP=dffffc0000000000 RSP=ffffc90003557418 R8 =0000000000000000 R9 =fffffbfff28c5ae0 R10=ffffffff9462d707 R11=0000000000000000 R12=000000000000e102 R13=ffff88804744af48 R14=8f98b00562a57837 R15=ffff88804744a440 RIP=ffffffff81683b5a RFL=00000802 [-O-----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fa7cb3f56c0 ffffffff 00c00000 GS =0000 ffff88806b200000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f6a3c4b5fd3 CR3=00000000221d2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000020000200 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcd0e656b0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f11eede8762 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f11eede876f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f11eede8769 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f11eede877d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f11eede8803 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f11eede88e1 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000007 RBX=1ffff9200001cf56 RCX=0000000000000000 RDX=0000000000000000 RSI=ffffffff8bb09b80 RDI=ffff888017ea2f1c RBP=0000000000000246 RSP=ffffc900000e7aa0 R8 =0000000000000000 R9 =fffffbfff2025f5b R10=ffffffff9012fadf R11=0000000000000000 R12=0000000000000000 R13=0000000000000000 R14=ffffffff8ddb5d20 R15=0000000000000000 RIP=ffffffff81687735 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806b300000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020e5c000 CR3=00000000221d2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=0000000000000fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 ffffffff81f798d2 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7a715e8762 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7a715e876f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7a715e8769 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7a715e877d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7a715e8803 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7a715e88e1 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7a716eb488 00007f7a716eb480 00007f7a716eb478 00007f7a716eb450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7a7224d100 00007f7a716eb440 00007f7a716eb458 00007f7a716eb4a0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f7a716eb498 00007f7a716eb490 00007f7a716eb488 00007f7a716eb480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000