last executing test programs: 4.141044151s ago: executing program 1 (id=3674): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = getpid() sched_setscheduler(r1, 0x2, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r2, 0x0, 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x220) move_mount(r2, &(0x7f0000000280)='./file0\x00', r2, &(0x7f0000000200)='.\x00', 0x200) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x3, &(0x7f0000000680)=@framed={{0x18, 0x8}, [], {0x95, 0x0, 0x7000}}, &(0x7f0000000000)='GPL\x00', 0x4}, 0x90) mkdirat(0xffffffffffffff9c, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f0000000040)=[{0x2, 0x0, 0x8, 0x10}]}) 3.921054469s ago: executing program 0 (id=3677): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(des3_ede)\x00'}, 0x58) accept4(r2, 0x0, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000240)={0x1, &(0x7f00000000c0)=[{0x16}]}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) unshare(0x22020400) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0) 3.826426567s ago: executing program 1 (id=3679): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-asm\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10) openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) recvmmsg(r1, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0) 3.151173164s ago: executing program 3 (id=3682): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_CQM(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x20, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_CQM={0x4}]}, 0x20}}, 0x0) 3.150985032s ago: executing program 3 (id=3683): r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) r1 = socket$unix(0x1, 0x2, 0x0) connect$unix(r1, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) sendmmsg(r1, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x0) connect$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) ppoll(&(0x7f0000000200)=[{r1, 0x14}], 0x1, 0x0, 0x0, 0x0) connect$unix(r0, &(0x7f0000000000)=@file={0x0, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) 2.940886675s ago: executing program 0 (id=3685): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000100900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000010000000000000000000a28000000000a0101804bc9555e1affd5020000000900010001797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000000009000300737975320000000014000000110001"], 0x7c}}, 0x0) 2.94072114s ago: executing program 0 (id=3686): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r0, 0x89f5, &(0x7f00000004c0)={'sit0\x00', 0x0}) 2.871380748s ago: executing program 0 (id=3687): socket$pptp(0x18, 0x1, 0x2) syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb00000001090224"], 0x0) r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x211000, 0x1000}, 0x20) setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000440)) setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4) setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4) bind$xdp(r0, &(0x7f00000001c0)={0x2c, 0x12}, 0x10) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f00000000c0)={0xd000, 0x0, 0x2, 0xffffffffffffffff, 0x5}) poll(&(0x7f0000000000), 0x20000000000000ea, 0x7) 2.240603906s ago: executing program 3 (id=3688): bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000340)={@cgroup, 0xffffffffffffffff, 0x33}, 0x20) syz_open_dev$midi(0x0, 0x10000000000002, 0x2040) shutdown(0xffffffffffffffff, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) r1 = socket$kcm(0x10, 0x2, 0x4) close(r1) socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00c00e}, 0x4004010) r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffd89, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) fchdir(r3) getdents64(0xffffffffffffffff, &(0x7f00000001c0)=""/166, 0xa6) getdents(0xffffffffffffffff, &(0x7f00000000c0)=""/175, 0xaf) 1.59499354s ago: executing program 0 (id=3689): syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0xfff, 0x7, 0x1004}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, 0x0, &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0) r3 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0) fchdir(r3) r4 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) write$binfmt_script(r4, &(0x7f0000000080)={'#! ', './file0'}, 0xb) close(r4) execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 1.391281074s ago: executing program 1 (id=3690): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_COMPAT_GET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)={0x1c, 0x0, 0xb, 0x101, 0x0, 0x0, {0x3}, [@NFTA_COMPAT_NAME={0x7, 0x1, '-}\x00'}]}, 0x1c}}, 0x0) 1.33027918s ago: executing program 3 (id=3691): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba0700000000ebffffff0000f7ffff00"}) r1 = syz_open_pts(r0, 0x0) r2 = dup3(r1, r0, 0x0) read$watch_queue(r2, &(0x7f0000000e00)=""/4096, 0x1000) 1.330033584s ago: executing program 1 (id=3692): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0xde02}) preadv(r1, &(0x7f0000000400)=[{&(0x7f00000004c0)=""/248, 0xf8}], 0x1, 0x0, 0xc) 1.101115296s ago: executing program 2 (id=3693): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x40000000000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_pidfd_open(r0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r3, 0x0, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$sock_int(r4, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0x4) setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4) connect$inet(r4, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10) setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4) sendmmsg$inet(r4, &(0x7f0000000d40)=[{{0x0, 0x0, &(0x7f0000002c00)}}, {{0x0, 0x0, &(0x7f0000002f00)=[{&(0x7f0000000540)="679512f062b8d965651edd4c06c901784e56aa174403ad4134742b71d211c6a85d8bc563c27f754fc2af5351f2f41e867c71c19837f2feba7862e511a47c446cd11c960f018962a53f6cf31a1123ff8092c9ff560701bfc579fa80f9149acafe2a225fed70d9173f0243a55be3c4028da556cf126da9c1b9b8f8e11356", 0x7d}, {&(0x7f0000000e80)='S', 0x1}], 0x2}}, {{0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000003200)="8c", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000001100)=[{&(0x7f0000000380)="01", 0x1}, {&(0x7f00000012c0)="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", 0xd41}, {&(0x7f0000000a00)=',', 0x1}, {&(0x7f00000022c0)='Z', 0x1}, {&(0x7f00000005c0)="f5364e548c550000000000000000000000009c20aa8f88f2a2e98330e3799522896ebfddd4848b9deeecae27e7d77317facda9ee98b10c68444b7c094658bed24fd6766444ba58941c4d2a2cea03546fa8d215c3547d076a9543f841b2add236c19bdcf172a69ab70a7df1ad7ebc55e947f2c7a7a356fd68dbce155d2e22d72a5a65dbc16f7103ee6d06748b2ddf2799d94bfbcf1140285facb31bce2fba7fe3617478337692b1236f", 0xa9}, {&(0x7f0000002380)='L', 0x1}], 0x6}}], 0x4, 0xf000000) setsockopt$sock_int(r4, 0x1, 0x20, &(0x7f0000000000)=0x7fffffff, 0x4) syz_open_dev$evdev(0x0, 0x0, 0x0) 931.368608ms ago: executing program 3 (id=3694): unshare(0x42000000) syz_usb_connect(0x0, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x41, &(0x7f0000000700)={'nat\x00', 0x4, "dea50c52"}, &(0x7f0000001740)=0x2c) 330.163302ms ago: executing program 3 (id=3695): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0) getpid() io_setup(0x3ff, &(0x7f0000000500)=0x0) io_submit(r1, 0x0, &(0x7f0000000140)) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0) poll(&(0x7f00000001c0), 0x0, 0x0) 329.954359ms ago: executing program 1 (id=3696): r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000023c0)={0x0, 0x0, &(0x7f0000002580)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r0, 0xc02064b9, &(0x7f0000000680)={0x0, 0x0, 0x0, r2}) 267.304322ms ago: executing program 1 (id=3697): socket$pptp(0x18, 0x1, 0x2) syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb00000001090224"], 0x0) r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x211000, 0x1000}, 0x20) setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'ipvlan1\x00', 0x0}) setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4) setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4) bind$xdp(r0, &(0x7f00000001c0)={0x2c, 0x12, r1}, 0x10) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f00000000c0)={0xd000, 0x0, 0x2, 0xffffffffffffffff, 0x5}) poll(&(0x7f0000000000), 0x20000000000000ea, 0x7) 171.384641ms ago: executing program 2 (id=3698): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), r0) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000340)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r1, &(0x7f000000a5c0)={0x0, 0x0, &(0x7f000000a580)={&(0x7f000000a500)={0x30, r2, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_SEC_LEVEL={0x14, 0x2d, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x6}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x9}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x24000800) 171.047627ms ago: executing program 0 (id=3699): bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000340)={@cgroup, 0xffffffffffffffff, 0x33}, 0x20) syz_open_dev$midi(0x0, 0x10000000000002, 0x2040) shutdown(0xffffffffffffffff, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) r1 = socket$kcm(0x10, 0x2, 0x4) close(r1) socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00c00e}, 0x4004010) r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffd89, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) fchdir(r3) getdents64(0xffffffffffffffff, &(0x7f00000001c0)=""/166, 0xa6) getdents(0xffffffffffffffff, &(0x7f00000000c0)=""/175, 0xaf) 108.874409ms ago: executing program 2 (id=3700): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), r0) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000340)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r1, &(0x7f000000a5c0)={0x0, 0x0, &(0x7f000000a580)={&(0x7f000000a500)={0x1c, r2, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x24000800) 108.621681ms ago: executing program 2 (id=3701): mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x2000005, 0x3032, 0xffffffffffffffff, 0x0) r0 = socket$rds(0x15, 0x5, 0x0) bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(r0, &(0x7f0000000000)={&(0x7f0000000040)={0x2, 0x0, @private=0xa010100}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f0000000300)=[{&(0x7f0000002640)=""/102389, 0x18ff5}], 0x1, 0x1903d}}], 0x48}, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000200)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-ssse3\x00'}, 0x58) r2 = accept4(r1, 0x0, 0x0, 0x0) sendmmsg$inet(r2, &(0x7f0000000a00)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000037c0)="d3", 0x1}], 0x1}}], 0x1, 0x0) 272.987µs ago: executing program 2 (id=3702): r0 = socket$unix(0x1, 0x5, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)={0x28, r1, 0x1, 0x70bd2a, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TX_RATES={0xc, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x8, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x4, 0x4}]}]}]}, 0x28}}, 0x0) 0s ago: executing program 2 (id=3703): sendmsg$NLBL_UNLABEL_C_STATICADDDEF(0xffffffffffffffff, 0x0, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="0401020028000b05d25a806f8c6394f90524fc600d0003", 0x17}], 0x1}, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000001000090400"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\n\x00'], 0x5c}}, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4808000010001fff3a4ee9bfd5c3a3696c40af0b", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e"], 0x3}}, 0x0) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0x4ffe2, 0x0) kernel console output (not intermixed with test programs): 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 478.429827][T14276] RSP: 002b:00007fbf91d62038 EFLAGS: 00000246 ORIG_RAX: 0000000000000130 [ 478.433553][T14276] RAX: ffffffffffffffda RBX: 00007fbf91135f80 RCX: 00007fbf90f7cef9 [ 478.437021][T14276] RDX: 0000000000650000 RSI: 0000000020000180 RDI: 0000000000000007 [ 478.440455][T14276] RBP: 00007fbf91d62090 R08: 0000000000000000 R09: 0000000000000000 [ 478.443646][T14276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 478.446783][T14276] R13: 0000000000000000 R14: 00007fbf91135f80 R15: 00007ffe5658dbc8 [ 478.450089][T14276] [ 478.693638][ T39] audit: type=1400 audit(1725763682.535:895): avc: denied { mounton } for pid=14281 comm="syz.2.2570" path="/523/file0" dev="gadgetfs" ino=56357 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=dir permissive=1 [ 478.767607][T14288] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 478.783323][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 479.571216][ T831] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 479.821616][T12965] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 479.940073][ T58] usb 7-1: new high-speed USB device number 14 using dummy_hcd [ 480.141174][ T58] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 480.145159][ T58] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 480.149499][ T58] usb 7-1: Product: syz [ 480.151300][ T58] usb 7-1: Manufacturer: syz [ 480.153251][ T58] usb 7-1: SerialNumber: syz [ 480.160547][ T58] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 480.257904][ T58] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 480.374575][T14316] input: syz1 as /devices/virtual/input/input75 [ 480.498140][T14325] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2583'. [ 480.513720][T14325] syzkaller1: entered promiscuous mode [ 480.516256][T14325] syzkaller1: entered allmulticast mode [ 480.770963][ T7276] usb 7-1: USB disconnect, device number 14 [ 480.855523][T12965] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 481.007568][ T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 481.330216][ T58] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive [ 481.333665][ T58] ath9k_htc: Failed to initialize the device [ 481.359133][ T7276] usb 7-1: ath9k_htc: USB layer deinitialized [ 481.365410][T14343] FAULT_INJECTION: forcing a failure. [ 481.365410][T14343] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 481.374261][T14343] CPU: 0 UID: 0 PID: 14343 Comm: syz.3.2588 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 481.378838][T14343] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 481.383279][T14343] Call Trace: [ 481.384423][T14343] [ 481.385437][T14343] dump_stack_lvl+0x16c/0x1f0 [ 481.387262][T14343] should_fail_ex+0x497/0x5b0 [ 481.389342][T14343] _copy_from_user+0x30/0xf0 [ 481.391393][T14343] copy_mount_options+0x76/0x190 [ 481.393556][T14343] __x64_sys_mount+0x1ad/0x320 [ 481.395638][T14343] ? __pfx___x64_sys_mount+0x10/0x10 [ 481.397981][T14343] do_syscall_64+0xcd/0x250 [ 481.399920][T14343] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 481.402551][T14343] RIP: 0033:0x7f95d997cef9 [ 481.404524][T14343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 481.412740][T14343] RSP: 002b:00007f95da6a4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 481.416254][T14343] RAX: ffffffffffffffda RBX: 00007f95d9b36058 RCX: 00007f95d997cef9 [ 481.419415][T14343] RDX: 0000000020000040 RSI: 0000000020000380 RDI: 0000000000000000 [ 481.422929][T14343] RBP: 00007f95da6a4090 R08: 0000000020000400 R09: 0000000000000000 [ 481.425933][T14343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 481.428997][T14343] R13: 0000000000000000 R14: 00007f95d9b36058 R15: 00007ffd26a89638 [ 481.432129][T14343] [ 481.461515][T14343] No control pipe specified [ 481.540656][T14354] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2592'. [ 481.561471][T14354] syzkaller1: entered promiscuous mode [ 481.563965][T14354] syzkaller1: entered allmulticast mode [ 481.892893][T12965] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 482.317287][T14379] FAULT_INJECTION: forcing a failure. [ 482.317287][T14379] name failslab, interval 1, probability 0, space 0, times 0 [ 482.323509][T14379] CPU: 2 UID: 0 PID: 14379 Comm: syz.3.2600 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 482.328388][T14379] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 482.333298][T14379] Call Trace: [ 482.334773][T14379] [ 482.336060][T14379] dump_stack_lvl+0x16c/0x1f0 [ 482.337707][T14379] should_fail_ex+0x497/0x5b0 [ 482.339522][T14379] ? fs_reclaim_acquire+0xae/0x160 [ 482.341641][T14379] should_failslab+0xc2/0x120 [ 482.343632][T14379] kmem_cache_alloc_node_noprof+0x71/0x310 [ 482.345769][T14379] ? __alloc_skb+0x2b1/0x380 [ 482.347829][T14379] __alloc_skb+0x2b1/0x380 [ 482.349719][T14379] ? __pfx___alloc_skb+0x10/0x10 [ 482.351675][T14379] ? if_nlmsg_size+0x451/0xa60 [ 482.353625][T14379] rtmsg_ifinfo_build_skb+0x81/0x280 [ 482.355821][T14379] rtnetlink_event+0xf3/0x1f0 [ 482.357751][T14379] notifier_call_chain+0xb9/0x410 [ 482.359724][T14379] ? __pfx_rtnetlink_event+0x10/0x10 [ 482.361919][T14379] call_netdevice_notifiers_info+0xbe/0x140 [ 482.364071][T14379] dev_set_mac_address+0x370/0x4a0 [ 482.365782][T14379] ? __pfx_dev_set_mac_address+0x10/0x10 [ 482.367669][T14379] ? __pfx_down_write+0x10/0x10 [ 482.369367][T14379] ? full_name_hash+0xbc/0x110 [ 482.371062][T14379] dev_set_mac_address_user+0x30/0x50 [ 482.373146][T14379] dev_ifsioc+0xb71/0x10b0 [ 482.375031][T14379] ? __pfx_dev_ifsioc+0x10/0x10 [ 482.377095][T14379] ? dev_ioctl+0x213/0x10c0 [ 482.378719][T14379] ? __pfx___mutex_lock+0x10/0x10 [ 482.380755][T14379] ? __pfx_lock_release+0x10/0x10 [ 482.382892][T14379] ? full_name_hash+0xbc/0x110 [ 482.384709][T14379] dev_ioctl+0x224/0x10c0 [ 482.386565][T14379] sock_do_ioctl+0x19e/0x280 [ 482.388541][T14379] ? __pfx_sock_do_ioctl+0x10/0x10 [ 482.390633][T14379] ? ioctl_has_perm.constprop.0.isra.0+0x2f9/0x470 [ 482.392670][T14379] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 482.395509][T14379] sock_ioctl+0x22e/0x6c0 [ 482.397206][T14379] ? __pfx_sock_ioctl+0x10/0x10 [ 482.399189][T14379] ? selinux_file_ioctl+0x180/0x270 [ 482.401455][T14379] ? selinux_file_ioctl+0xb4/0x270 [ 482.403712][T14379] ? __pfx_sock_ioctl+0x10/0x10 [ 482.405854][T14379] __x64_sys_ioctl+0x193/0x220 [ 482.407996][T14379] do_syscall_64+0xcd/0x250 [ 482.410080][T14379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 482.412669][T14379] RIP: 0033:0x7f95d997cef9 [ 482.414626][T14379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 482.422976][T14379] RSP: 002b:00007f95da6c5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 482.426741][T14379] RAX: ffffffffffffffda RBX: 00007f95d9b35f80 RCX: 00007f95d997cef9 [ 482.430193][T14379] RDX: 0000000020000000 RSI: 0000000000008924 RDI: 0000000000000004 [ 482.433646][T14379] RBP: 00007f95da6c5090 R08: 0000000000000000 R09: 0000000000000000 [ 482.437082][T14379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 482.440487][T14379] R13: 0000000000000000 R14: 00007f95d9b35f80 R15: 00007ffd26a89638 [ 482.443905][T14379] [ 482.520162][T14384] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2602'. [ 482.556086][T14384] syzkaller1: entered promiscuous mode [ 482.559830][T14384] syzkaller1: entered allmulticast mode [ 482.616789][ T5407] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 482.755228][T14388] FAULT_INJECTION: forcing a failure. [ 482.755228][T14388] name failslab, interval 1, probability 0, space 0, times 0 [ 482.771937][T14388] CPU: 0 UID: 0 PID: 14388 Comm: syz.2.2603 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 482.776712][T14388] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 482.781486][T14388] Call Trace: [ 482.783028][T14388] [ 482.784379][T14388] dump_stack_lvl+0x16c/0x1f0 [ 482.786531][T14388] should_fail_ex+0x497/0x5b0 [ 482.788658][T14388] ? fs_reclaim_acquire+0xae/0x160 [ 482.790981][T14388] should_failslab+0xc2/0x120 [ 482.793077][T14388] __kmalloc_noprof+0xcb/0x400 [ 482.795254][T14388] ? d_absolute_path+0x137/0x1b0 [ 482.797494][T14388] tomoyo_encode2+0x100/0x3e0 [ 482.799620][T14388] tomoyo_encode+0x29/0x50 [ 482.801616][T14388] tomoyo_realpath_from_path+0x19d/0x720 [ 482.804114][T14388] tomoyo_path_number_perm+0x245/0x590 [ 482.806538][T14388] ? tomoyo_path_number_perm+0x232/0x590 [ 482.809082][T14388] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 482.811809][T14388] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 482.814616][T14388] ? __fget_files+0x256/0x400 [ 482.816692][T14388] security_file_ioctl+0x75/0xc0 [ 482.818895][T14388] __x64_sys_ioctl+0xbb/0x220 [ 482.821004][T14388] do_syscall_64+0xcd/0x250 [ 482.823060][T14388] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 482.825669][T14388] RIP: 0033:0x7fbf90f7cef9 [ 482.827673][T14388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 482.836159][T14388] RSP: 002b:00007fbf91d62038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 482.839701][T14388] RAX: ffffffffffffffda RBX: 00007fbf91135f80 RCX: 00007fbf90f7cef9 [ 482.842795][T14388] RDX: 0000000020000000 RSI: 0000000040045612 RDI: 000000000000000b [ 482.846269][T14388] RBP: 00007fbf91d62090 R08: 0000000000000000 R09: 0000000000000000 [ 482.849773][T14388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 482.853263][T14388] R13: 0000000000000000 R14: 00007fbf91135f80 R15: 00007ffe5658dbc8 [ 482.856601][T14388] [ 482.866813][T14388] ERROR: Out of memory at tomoyo_realpath_from_path. [ 482.937949][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 483.357366][T14428] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2612'. [ 483.384334][T14428] syzkaller1: entered promiscuous mode [ 483.394168][T14428] syzkaller1: entered allmulticast mode [ 483.471937][ T39] audit: type=1400 audit(1725763687.315:896): avc: denied { map } for pid=14433 comm="syz.0.2614" path="socket:[54923]" dev="sockfs" ino=54923 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 483.495120][ T39] audit: type=1400 audit(1725763687.315:897): avc: denied { read } for pid=14433 comm="syz.0.2614" path="socket:[54923]" dev="sockfs" ino=54923 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 483.649771][T14429] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14429 comm=syz.1.2608 [ 483.972419][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 484.625067][T14478] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2619'. [ 484.907461][T14493] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2624'. [ 484.920157][T14493] syzkaller1: entered promiscuous mode [ 484.922891][T14493] syzkaller1: entered allmulticast mode [ 485.015838][T12965] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 485.575040][T14519] input: syz1 as /devices/virtual/input/input76 [ 485.656820][ T5407] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 486.052029][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 486.414269][T14534] input: syz1 as /devices/virtual/input/input77 [ 486.767389][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 486.896642][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 486.919402][T14539] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2635'. [ 487.028451][T14547] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 487.105311][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 487.443381][T14560] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2640'. [ 487.832646][T14573] Context (ID=0x0) not attached to queue pair (handle=0x4d4:0x0) [ 487.932209][T14575] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2647'. [ 488.056638][ T39] audit: type=1400 audit(1725763691.895:898): avc: denied { setopt } for pid=14580 comm="syz.3.2649" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 488.070259][ T39] audit: type=1400 audit(1725763691.905:899): avc: denied { connect } for pid=14580 comm="syz.3.2649" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 488.079609][ T39] audit: type=1400 audit(1725763691.905:900): avc: denied { write } for pid=14580 comm="syz.3.2649" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 488.108537][T14589] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 488.132683][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 488.632735][T14603] Context (ID=0x0) not attached to queue pair (handle=0x4d8:0x0) [ 488.863288][T14616] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2658'. [ 488.867665][T14614] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2657'. [ 489.167318][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 489.290554][T14627] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 489.339939][T14633] Bluetooth: MGMT ver 1.23 [ 489.525386][T14638] Context (ID=0x0) not attached to queue pair (handle=0x4d4:0x0) [ 489.641333][T14644] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2667'. [ 489.763813][T14655] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 489.940317][T14665] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2671'. [ 489.976849][ T64] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 489.981776][ T5407] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 489.986332][ T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 490.027555][T14668] Context (ID=0x0) not attached to queue pair (handle=0x4d4:0x0) [ 490.148221][T14674] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 490.223968][ T211] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 490.228301][ T5407] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 490.246994][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 490.452122][T14683] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2679'. [ 490.607738][ T211] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 490.611981][ T5497] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 490.615937][ T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 490.990344][T14702] Context (ID=0x0) not attached to queue pair (handle=0x4d4:0x0) [ 491.078957][T14706] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2685'. [ 491.127927][T14707] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 491.421638][T14718] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2689'. [ 491.723643][T14734] Context (ID=0x0) not attached to queue pair (handle=0x4d6:0x0) [ 491.935785][T14743] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2697'. [ 492.098012][T14752] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 492.368813][T14758] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2701'. [ 492.970748][T14776] input: syz1 as /devices/virtual/input/input78 [ 493.218729][T14783] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 493.708240][T14793] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2713'. [ 493.778782][T14796] FAULT_INJECTION: forcing a failure. [ 493.778782][T14796] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 493.785471][T14796] CPU: 0 UID: 0 PID: 14796 Comm: syz.1.2714 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 493.790472][T14796] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 493.795528][T14796] Call Trace: [ 493.797103][T14796] [ 493.798522][T14796] dump_stack_lvl+0x16c/0x1f0 [ 493.800811][T14796] should_fail_ex+0x497/0x5b0 [ 493.803113][T14796] _copy_to_user+0x30/0xc0 [ 493.805237][T14796] ucma_query_path+0x5c3/0x800 [ 493.807411][T14796] ? ucma_query+0xf4/0x1f0 [ 493.809563][T14796] ? __pfx_lock_release+0x10/0x10 [ 493.811848][T14796] ? __pfx_ucma_query_path+0x10/0x10 [ 493.814204][T14796] ? __pfx___mutex_lock+0x10/0x10 [ 493.816556][T14796] ? do_raw_spin_unlock+0x172/0x230 [ 493.818767][T14796] ? __pfx_ucma_get_ctx+0x10/0x10 [ 493.820963][T14796] ucma_query+0x18e/0x1f0 [ 493.822695][T14796] ? __pfx_ucma_query+0x10/0x10 [ 493.824692][T14796] ? __pfx_ucma_query+0x10/0x10 [ 493.826648][T14796] ucma_write+0x205/0x340 [ 493.828256][T14796] ? __pfx_ucma_write+0x10/0x10 [ 493.829977][T14796] ? security_file_permission+0x98/0xc0 [ 493.832006][T14796] ? __pfx_ucma_write+0x10/0x10 [ 493.833791][T14796] vfs_write+0x29a/0x1140 [ 493.835492][T14796] ? __pfx_vfs_write+0x10/0x10 [ 493.837489][T14796] ? __fget_files+0x256/0x400 [ 493.839327][T14796] ? __fget_light+0x173/0x210 [ 493.841277][T14796] ksys_write+0x1f8/0x260 [ 493.843005][T14796] ? __pfx_ksys_write+0x10/0x10 [ 493.844933][T14796] do_syscall_64+0xcd/0x250 [ 493.846771][T14796] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 493.849037][T14796] RIP: 0033:0x7f8fe217cef9 [ 493.850779][T14796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 493.858367][T14796] RSP: 002b:00007f8fe1bff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 493.861496][T14796] RAX: ffffffffffffffda RBX: 00007f8fe2335f80 RCX: 00007f8fe217cef9 [ 493.864595][T14796] RDX: 0000000000000018 RSI: 00000000200000c0 RDI: 0000000000000003 [ 493.867785][T14796] RBP: 00007f8fe1bff090 R08: 0000000000000000 R09: 0000000000000000 [ 493.870882][T14796] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 493.873707][T14796] R13: 0000000000000000 R14: 00007f8fe2335f80 R15: 00007fff90cc0de8 [ 493.876774][T14796] [ 494.162221][T14808] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 494.451352][ T58] net_ratelimit: 4 callbacks suppressed [ 494.451369][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 494.563631][ T39] audit: type=1400 audit(1725763698.405:901): avc: denied { read } for pid=14809 comm="syz.3.2719" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1 [ 494.576958][ T39] audit: type=1400 audit(1725763698.405:902): avc: denied { watch } for pid=14809 comm="syz.3.2719" path="/542/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1 [ 495.071095][T14828] random: crng reseeded on system resumption [ 495.374085][T14834] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2724'. [ 495.488170][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 495.728522][ T40] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 495.732161][ T64] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 495.735617][ T64] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 495.740762][ T7276] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 495.746997][ T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 495.750742][ T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 495.979182][T14848] batadv0: mtu less than device minimum [ 496.446933][ T5407] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 496.920178][T14865] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2733'. [ 496.939249][T14865] syzkaller1: entered promiscuous mode [ 496.941597][T14865] syzkaller1: entered allmulticast mode [ 497.121165][T14870] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2734'. [ 497.859145][T14887] FAULT_INJECTION: forcing a failure. [ 497.859145][T14887] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 497.864550][T14887] CPU: 0 UID: 0 PID: 14887 Comm: syz.1.2741 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 497.868395][T14887] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 497.872975][T14887] Call Trace: [ 497.874485][T14887] [ 497.875808][T14887] dump_stack_lvl+0x16c/0x1f0 [ 497.877918][T14887] should_fail_ex+0x497/0x5b0 [ 497.880030][T14887] _copy_from_user+0x30/0xf0 [ 497.882070][T14887] bpf_test_init.isra.0+0xf1/0x150 [ 497.884227][T14887] bpf_prog_test_run_xdp+0x4f6/0x1530 [ 497.886318][T14887] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 497.888877][T14887] ? fput+0x32/0x390 [ 497.890540][T14887] ? __bpf_prog_get+0xa0/0x2f0 [ 497.892516][T14887] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 497.894708][T14887] __sys_bpf+0x10d2/0x4a00 [ 497.896229][T14887] ? ksys_write+0x21c/0x260 [ 497.897807][T14887] ? reacquire_held_locks+0x4b0/0x4c0 [ 497.899703][T14887] ? __pfx___sys_bpf+0x10/0x10 [ 497.901323][T14887] ? vfs_write+0x14d/0x1140 [ 497.902887][T14887] ? __mutex_unlock_slowpath+0x164/0x650 [ 497.904873][T14887] ? fput+0x32/0x390 [ 497.906382][T14887] ? ksys_write+0x1ab/0x260 [ 497.908138][T14887] ? __pfx_ksys_write+0x10/0x10 [ 497.910058][T14887] __x64_sys_bpf+0x78/0xc0 [ 497.911982][T14887] ? lockdep_hardirqs_on+0x7c/0x110 [ 497.914168][T14887] do_syscall_64+0xcd/0x250 [ 497.915942][T14887] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 497.918169][T14887] RIP: 0033:0x7f8fe217cef9 [ 497.919923][T14887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 497.926716][T14887] RSP: 002b:00007f8fe1bff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 497.930675][T14887] RAX: ffffffffffffffda RBX: 00007f8fe2335f80 RCX: 00007f8fe217cef9 [ 497.934183][T14887] RDX: 0000000000000050 RSI: 00000000200000c0 RDI: 000000000000000a [ 497.937631][T14887] RBP: 00007f8fe1bff090 R08: 0000000000000000 R09: 0000000000000000 [ 497.941309][T14887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 497.944743][T14887] R13: 0000000000000000 R14: 00007f8fe2335f80 R15: 00007fff90cc0de8 [ 497.948180][T14887] [ 498.028423][T14892] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2743'. [ 498.042252][T14892] syzkaller1: entered promiscuous mode [ 498.044381][T14892] syzkaller1: entered allmulticast mode [ 498.198367][T14896] input: syz1 as /devices/virtual/input/input79 [ 498.549139][T14902] FAULT_INJECTION: forcing a failure. [ 498.549139][T14902] name failslab, interval 1, probability 0, space 0, times 0 [ 498.554134][T14902] CPU: 2 UID: 0 PID: 14902 Comm: syz.2.2746 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 498.557776][T14902] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 498.561656][T14902] Call Trace: [ 498.562797][T14902] [ 498.563791][T14902] dump_stack_lvl+0x16c/0x1f0 [ 498.565814][T14902] should_fail_ex+0x497/0x5b0 [ 498.567515][T14902] ? fs_reclaim_acquire+0xae/0x160 [ 498.569417][T14902] should_failslab+0xc2/0x120 [ 498.571500][T14902] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 498.573614][T14902] ? security_file_alloc+0x41/0x260 [ 498.575813][T14902] security_file_alloc+0x41/0x260 [ 498.577562][T14902] init_file+0x99/0x260 [ 498.579216][T14902] alloc_empty_file+0x91/0x1e0 [ 498.581333][T14902] path_openat+0xe0/0x2d20 [ 498.583304][T14902] ? hlock_class+0x4e/0x130 [ 498.584874][T14902] ? __lock_acquire+0x1620/0x3cb0 [ 498.586586][T14902] ? __pfx_path_openat+0x10/0x10 [ 498.588508][T14902] ? __pfx___lock_acquire+0x10/0x10 [ 498.590444][T14902] ? find_held_lock+0x2d/0x110 [ 498.592453][T14902] do_filp_open+0x1dc/0x430 [ 498.594250][T14902] ? __pfx_do_filp_open+0x10/0x10 [ 498.596166][T14902] ? find_held_lock+0x2d/0x110 [ 498.598238][T14902] ? _raw_spin_unlock+0x28/0x50 [ 498.600409][T14902] ? alloc_fd+0x2d7/0x6c0 [ 498.602355][T14902] do_sys_openat2+0x17a/0x1e0 [ 498.604285][T14902] ? __pfx_do_sys_openat2+0x10/0x10 [ 498.605483][T14903] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2744'. [ 498.606286][T14902] __x64_sys_openat+0x175/0x210 [ 498.606318][T14902] ? __pfx___x64_sys_openat+0x10/0x10 [ 498.606366][T14902] ? ksys_write+0x1ab/0x260 [ 498.606392][T14902] do_syscall_64+0xcd/0x250 [ 498.606418][T14902] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 498.606437][T14902] RIP: 0033:0x7fbf90f7cef9 [ 498.606453][T14902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 498.606470][T14902] RSP: 002b:00007fbf91d41038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 498.606489][T14902] RAX: ffffffffffffffda RBX: 00007fbf91136058 RCX: 00007fbf90f7cef9 [ 498.606502][T14902] RDX: 00000000000a8c01 RSI: 00000000200018c0 RDI: ffffffffffffff9c [ 498.606513][T14902] RBP: 00007fbf91d41090 R08: 0000000000000000 R09: 0000000000000000 [ 498.606524][T14902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 498.645972][T14902] R13: 0000000000000000 R14: 00007fbf91136058 R15: 00007ffe5658dbc8 [ 498.649385][T14902] [ 498.827939][T14910] FAULT_INJECTION: forcing a failure. [ 498.827939][T14910] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 498.869054][T14910] CPU: 1 UID: 0 PID: 14910 Comm: syz.3.2749 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 498.873678][T14910] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 498.878270][T14910] Call Trace: [ 498.879751][T14910] [ 498.881037][T14910] dump_stack_lvl+0x16c/0x1f0 [ 498.883128][T14910] should_fail_ex+0x497/0x5b0 [ 498.885186][T14910] _copy_from_user+0x30/0xf0 [ 498.887203][T14910] copy_msghdr_from_user+0x99/0x160 [ 498.889468][T14910] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 498.892002][T14910] ? find_held_lock+0x2d/0x110 [ 498.894085][T14910] ? __pfx___lock_acquire+0x10/0x10 [ 498.896363][T14910] ___sys_sendmsg+0xff/0x1e0 [ 498.898413][T14910] ? __pfx____sys_sendmsg+0x10/0x10 [ 498.900695][T14910] ? ksys_write+0x21c/0x260 [ 498.902681][T14910] ? __fget_light+0x173/0x210 [ 498.904748][T14910] __sys_sendmsg+0x117/0x1f0 [ 498.906825][T14910] ? __pfx___sys_sendmsg+0x10/0x10 [ 498.909102][T14910] do_syscall_64+0xcd/0x250 [ 498.911048][T14910] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 498.913247][T14910] RIP: 0033:0x7f95d997cef9 [ 498.915140][T14910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 498.922298][T14910] RSP: 002b:00007f95da6c5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 498.925206][T14910] RAX: ffffffffffffffda RBX: 00007f95d9b35f80 RCX: 00007f95d997cef9 [ 498.927997][T14910] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003 [ 498.931093][T14910] RBP: 00007f95da6c5090 R08: 0000000000000000 R09: 0000000000000000 [ 498.934442][T14910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 498.937845][T14910] R13: 0000000000000000 R14: 00007f95d9b35f80 R15: 00007ffd26a89638 [ 498.940880][T14910] [ 498.942201][ C1] vkms_vblank_simulate: vblank timer overrun [ 499.496650][ T831] net_ratelimit: 3 callbacks suppressed [ 499.496666][ T831] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 499.505371][T14923] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2752'. [ 499.526327][T14923] syzkaller1: entered promiscuous mode [ 499.529687][T14923] syzkaller1: entered allmulticast mode [ 499.853802][T14931] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2755'. [ 499.896534][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 500.235681][ T39] audit: type=1400 audit(1725763704.065:903): avc: denied { getopt } for pid=14937 comm="syz.2.2758" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 500.245443][ T39] audit: type=1400 audit(1725763704.085:904): avc: denied { bind } for pid=14935 comm="syz.1.2757" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 500.253695][ T39] audit: type=1400 audit(1725763704.085:905): avc: denied { connect } for pid=14935 comm="syz.1.2757" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 500.511591][T14953] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2762'. [ 500.531066][T14953] syzkaller1: entered promiscuous mode [ 500.533655][T14953] syzkaller1: entered allmulticast mode [ 500.732878][T14958] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2764'. [ 500.850598][ T1145] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 500.855068][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 500.864466][ T7276] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 500.926891][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 501.166596][ T5359] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 501.283693][T14973] FAULT_INJECTION: forcing a failure. [ 501.283693][T14973] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 501.290555][T14973] CPU: 2 UID: 0 PID: 14973 Comm: syz.0.2768 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 501.294738][T14973] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 501.299062][T14973] Call Trace: [ 501.300398][T14973] [ 501.301607][T14973] dump_stack_lvl+0x16c/0x1f0 [ 501.303536][T14973] should_fail_ex+0x497/0x5b0 [ 501.305472][T14973] _copy_to_user+0x30/0xc0 [ 501.307457][T14973] simple_read_from_buffer+0xd0/0x160 [ 501.309798][T14973] proc_fail_nth_read+0x19e/0x280 [ 501.311846][T14973] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 501.314031][T14973] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 501.316429][T14973] vfs_read+0x1d4/0xbd0 [ 501.318212][T14973] ? __fdget_pos+0xeb/0x180 [ 501.320171][T14973] ? __pfx_vfs_read+0x10/0x10 [ 501.322263][T14973] ? __pfx___mutex_lock+0x10/0x10 [ 501.324499][T14973] ? __fget_files+0x256/0x400 [ 501.326482][T14973] ksys_read+0x12f/0x260 [ 501.328372][T14973] ? __pfx_ksys_read+0x10/0x10 [ 501.330510][T14973] do_syscall_64+0xcd/0x250 [ 501.332410][T14973] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 501.334546][T14973] RIP: 0033:0x7f3f37b7b93c [ 501.336398][T14973] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 501.343934][T14973] RSP: 002b:00007f3f389b7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 501.347503][T14973] RAX: ffffffffffffffda RBX: 00007f3f37d35f80 RCX: 00007f3f37b7b93c [ 501.350981][T14973] RDX: 000000000000000f RSI: 00007f3f389b70a0 RDI: 0000000000000004 [ 501.354417][T14973] RBP: 00007f3f389b7090 R08: 0000000000000000 R09: 0000000000000000 [ 501.357697][T14973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 501.360989][T14973] R13: 0000000000000000 R14: 00007f3f37d35f80 R15: 00007fffabfb5f58 [ 501.364465][T14973] [ 501.441803][ T39] audit: type=1400 audit(1725763705.285:906): avc: denied { mount } for pid=14974 comm="syz.0.2769" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 501.470552][ T39] audit: type=1400 audit(1725763705.315:907): avc: denied { mounton } for pid=14974 comm="syz.0.2769" path="/599/file0/file0" dev="bpf" ino=60563 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=dir permissive=1 [ 501.557418][ T39] audit: type=1400 audit(1725763705.395:908): avc: denied { link } for pid=14974 comm="syz.0.2769" name="#13" dev="tmpfs" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 501.567553][ T39] audit: type=1400 audit(1725763705.405:909): avc: denied { rename } for pid=14974 comm="syz.0.2769" name="#14" dev="tmpfs" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 501.649894][ T39] audit: type=1400 audit(1725763705.495:910): avc: denied { unmount } for pid=7163 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 501.737745][T14981] FAULT_INJECTION: forcing a failure. [ 501.737745][T14981] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 501.743223][T14981] CPU: 2 UID: 0 PID: 14981 Comm: syz.3.2772 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 501.747905][T14981] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 501.752148][T14981] Call Trace: [ 501.753511][T14981] [ 501.754768][T14981] dump_stack_lvl+0x16c/0x1f0 [ 501.756549][T14981] should_fail_ex+0x497/0x5b0 [ 501.758459][T14981] _copy_to_user+0x30/0xc0 [ 501.760255][T14981] simple_read_from_buffer+0xd0/0x160 [ 501.762482][T14981] proc_fail_nth_read+0x19e/0x280 [ 501.764683][T14981] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 501.767081][T14981] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 501.769435][T14981] vfs_read+0x1d4/0xbd0 [ 501.771644][T14981] ? __fdget_pos+0xeb/0x180 [ 501.773763][T14981] ? __pfx_vfs_read+0x10/0x10 [ 501.775847][T14981] ? __pfx___mutex_lock+0x10/0x10 [ 501.777955][T14981] ? __fget_files+0x256/0x400 [ 501.779836][T14981] ksys_read+0x12f/0x260 [ 501.781979][T14981] ? __pfx_ksys_read+0x10/0x10 [ 501.784546][T14981] do_syscall_64+0xcd/0x250 [ 501.786623][T14981] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 501.789430][T14981] RIP: 0033:0x7f95d997b93c [ 501.791237][T14981] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48 [ 501.799048][T14981] RSP: 002b:00007f95da6c5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 501.802512][T14981] RAX: ffffffffffffffda RBX: 00007f95d9b35f80 RCX: 00007f95d997b93c [ 501.805784][T14981] RDX: 000000000000000f RSI: 00007f95da6c50a0 RDI: 0000000000000004 [ 501.809139][T14981] RBP: 00007f95da6c5090 R08: 0000000000000000 R09: 0000000000000000 [ 501.812413][T14981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 501.815684][T14981] R13: 0000000000000000 R14: 00007f95d9b35f80 R15: 00007ffd26a89638 [ 501.818798][T14981] [ 501.907889][ T66] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 501.914516][ T66] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 501.920667][ T66] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 501.927878][ T66] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 501.932747][ T66] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 501.936747][ T66] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 501.953874][ T5359] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 501.959464][ T5359] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 501.962864][ T5359] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 501.969882][ T5359] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 501.973355][ T5359] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 501.976739][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 501.977412][ T5359] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 502.222983][T14986] chnl_net:caif_netlink_parms(): no params data found [ 502.387715][T14986] bridge0: port 1(bridge_slave_0) entered blocking state [ 502.391313][T14986] bridge0: port 1(bridge_slave_0) entered disabled state [ 502.395011][T14986] bridge_slave_0: entered allmulticast mode [ 502.400670][T14986] bridge_slave_0: entered promiscuous mode [ 502.406963][T14986] bridge0: port 2(bridge_slave_1) entered blocking state [ 502.410160][T14986] bridge0: port 2(bridge_slave_1) entered disabled state [ 502.413766][T14986] bridge_slave_1: entered allmulticast mode [ 502.421272][T14986] bridge_slave_1: entered promiscuous mode [ 502.497241][T14986] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 502.504695][T14986] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 502.527184][ T831] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 502.573919][T14986] team0: Port device team_slave_0 added [ 502.578990][T14986] team0: Port device team_slave_1 added [ 502.642076][T14986] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 502.645187][T14986] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 502.656775][T14986] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 502.661342][T14986] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 502.671516][T14986] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 502.682509][T14986] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 502.846807][T14986] hsr_slave_0: entered promiscuous mode [ 502.850522][T14986] hsr_slave_1: entered promiscuous mode [ 502.853819][T14986] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 502.858468][T14986] Cannot create hsr debugfs directory [ 502.980131][T15022] FAULT_INJECTION: forcing a failure. [ 502.980131][T15022] name failslab, interval 1, probability 0, space 0, times 0 [ 502.985909][T15022] CPU: 3 UID: 0 PID: 15022 Comm: syz.3.2779 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 502.991102][T15022] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 502.996765][T15022] Call Trace: [ 502.998252][T15022] [ 502.999605][T15022] dump_stack_lvl+0x16c/0x1f0 [ 503.001734][T15022] should_fail_ex+0x497/0x5b0 [ 503.004038][T15022] ? fs_reclaim_acquire+0xae/0x160 [ 503.006627][T15022] should_failslab+0xc2/0x120 [ 503.008850][T15022] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 503.011323][T15022] ? security_file_alloc+0x41/0x260 [ 503.013677][T15022] security_file_alloc+0x41/0x260 [ 503.016016][T15022] init_file+0x99/0x260 [ 503.017922][T15022] alloc_empty_file+0x91/0x1e0 [ 503.020089][T15022] path_openat+0xe0/0x2d20 [ 503.022151][T15022] ? hlock_class+0x4e/0x130 [ 503.024258][T15022] ? __lock_acquire+0x1620/0x3cb0 [ 503.026717][T15022] ? __pfx_path_openat+0x10/0x10 [ 503.028964][T15022] ? __pfx___lock_acquire+0x10/0x10 [ 503.031423][T15022] ? find_held_lock+0x2d/0x110 [ 503.033782][T15022] do_filp_open+0x1dc/0x430 [ 503.035887][T15022] ? __pfx_do_filp_open+0x10/0x10 [ 503.038273][T15022] ? find_held_lock+0x2d/0x110 [ 503.040343][T15022] ? _raw_spin_unlock+0x28/0x50 [ 503.042251][T15022] ? alloc_fd+0x2d7/0x6c0 [ 503.044109][T15022] do_sys_openat2+0x17a/0x1e0 [ 503.046264][T15022] ? __pfx_do_sys_openat2+0x10/0x10 [ 503.048627][T15022] __x64_sys_openat+0x175/0x210 [ 503.050837][T15022] ? __pfx___x64_sys_openat+0x10/0x10 [ 503.053179][T15022] ? ksys_write+0x1ab/0x260 [ 503.055210][T15022] do_syscall_64+0xcd/0x250 [ 503.057412][T15022] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.060182][T15022] RIP: 0033:0x7f95d997cef9 [ 503.062171][T15022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 503.069831][T15022] RSP: 002b:00007f95da6a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 503.073069][T15022] RAX: ffffffffffffffda RBX: 00007f95d9b36058 RCX: 00007f95d997cef9 [ 503.076513][T15022] RDX: 0000000000107140 RSI: 0000000020000340 RDI: ffffffffffffff9c [ 503.079987][T15022] RBP: 00007f95da6a4090 R08: 0000000000000000 R09: 0000000000000000 [ 503.083460][T15022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 503.087559][T15022] R13: 0000000000000000 R14: 00007f95d9b36058 R15: 00007ffd26a89638 [ 503.091288][T15022] [ 503.097469][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 503.289711][T14986] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 503.429258][T14986] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 503.543198][T14986] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 503.734151][T14986] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 503.909088][T14986] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 503.915341][T14986] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 503.930012][T14986] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 503.952930][T14986] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 504.055757][ T5359] Bluetooth: hci4: command tx timeout [ 504.055789][T14986] 8021q: adding VLAN 0 to HW filter on device bond0 [ 504.071441][T14986] 8021q: adding VLAN 0 to HW filter on device team0 [ 504.082140][ T40] bridge0: port 1(bridge_slave_0) entered blocking state [ 504.084935][ T40] bridge0: port 1(bridge_slave_0) entered forwarding state [ 504.099381][ T40] bridge0: port 2(bridge_slave_1) entered blocking state [ 504.102442][ T40] bridge0: port 2(bridge_slave_1) entered forwarding state [ 504.146495][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 504.283540][T14986] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 504.322103][T15055] fuse: Unknown parameter 'ff' [ 504.336539][T14986] veth0_vlan: entered promiscuous mode [ 504.345938][T14986] veth1_vlan: entered promiscuous mode [ 504.377029][T14986] veth0_macvtap: entered promiscuous mode [ 504.383747][T14986] veth1_macvtap: entered promiscuous mode [ 504.400469][T14986] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 504.405050][T14986] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.410034][T14986] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 504.414396][T14986] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.418535][T14986] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 504.422787][T14986] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.427779][T14986] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 504.433056][T14986] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.439723][T14986] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 504.451892][T14986] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 504.456328][T14986] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.461707][T14986] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 504.482458][T14986] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.489417][T14986] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 504.493204][T14986] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.497230][T14986] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 504.502397][T14986] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.509798][T14986] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 504.518643][T14986] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 504.523126][T14986] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 504.527340][T14986] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 504.531449][T14986] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 504.630532][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 504.635480][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 504.663293][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 504.667283][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 504.970098][T15069] input: syz1 as /devices/virtual/input/input81 [ 505.168383][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 505.582213][ T5407] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 505.634497][T15081] FAULT_INJECTION: forcing a failure. [ 505.634497][T15081] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 505.640290][T15081] CPU: 0 UID: 0 PID: 15081 Comm: syz.1.2794 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 505.644270][T15081] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 505.648842][T15081] Call Trace: [ 505.650249][T15081] [ 505.651518][T15081] dump_stack_lvl+0x16c/0x1f0 [ 505.653506][T15081] should_fail_ex+0x497/0x5b0 [ 505.655208][T15081] _copy_from_iter+0x2a1/0x1150 [ 505.657013][T15081] ? __pfx__copy_from_iter+0x10/0x10 [ 505.659240][T15081] ? __virt_addr_valid+0x5e/0x590 [ 505.661321][T15081] ? const_folio_flags.constprop.0+0x56/0x150 [ 505.663842][T15081] ? __phys_addr_symbol+0x30/0x80 [ 505.665916][T15081] ? __check_object_size+0x497/0x720 [ 505.667754][T15081] netlink_sendmsg+0x813/0xd70 [ 505.669753][T15081] ? __pfx_netlink_sendmsg+0x10/0x10 [ 505.672018][T15081] ? __import_iovec+0x1fd/0x6e0 [ 505.674120][T15081] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 505.676427][T15081] ____sys_sendmsg+0xab5/0xc90 [ 505.678310][T15081] ? copy_msghdr_from_user+0x10b/0x160 [ 505.680617][T15081] ? __pfx_____sys_sendmsg+0x10/0x10 [ 505.682787][T15081] ? find_held_lock+0x2d/0x110 [ 505.684739][T15081] ? __pfx___lock_acquire+0x10/0x10 [ 505.687698][T15081] ___sys_sendmsg+0x135/0x1e0 [ 505.689505][T15081] ? __pfx____sys_sendmsg+0x10/0x10 [ 505.691537][T15081] ? ksys_write+0x21c/0x260 [ 505.693267][T15081] ? __fget_light+0x173/0x210 [ 505.695190][T15081] __sys_sendmsg+0x117/0x1f0 [ 505.696989][T15081] ? __pfx___sys_sendmsg+0x10/0x10 [ 505.698963][T15081] do_syscall_64+0xcd/0x250 [ 505.700691][T15081] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 505.702775][T15081] RIP: 0033:0x7f8fe217cef9 [ 505.704512][T15081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 505.711720][T15081] RSP: 002b:00007f8fe1bff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 505.723944][T15081] RAX: ffffffffffffffda RBX: 00007f8fe2335f80 RCX: 00007f8fe217cef9 [ 505.726782][T15081] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 505.729755][T15081] RBP: 00007f8fe1bff090 R08: 0000000000000000 R09: 0000000000000000 [ 505.732652][T15081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 505.735972][T15081] R13: 0000000000000000 R14: 00007f8fe2335f80 R15: 00007fff90cc0de8 [ 505.739362][T15081] [ 505.747372][T15079] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2795'. [ 506.136780][ T5359] Bluetooth: hci4: command tx timeout [ 506.731541][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 507.030066][T15131] fuse: Bad value for 'fd' [ 507.807496][ T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 507.826541][ T8] usb 6-1: new high-speed USB device number 17 using dummy_hcd [ 508.006494][ T8] usb 6-1: Using ep0 maxpacket: 32 [ 508.009796][ T8] usb 6-1: New USB device found, idVendor=0424, idProduct=7505, bcdDevice=32.a8 [ 508.013627][ T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 508.018460][ T8] usb 6-1: config 0 descriptor?? [ 508.021651][ T8] smsc75xx v1.0.0 [ 508.023261][ T8] smsc75xx 6-1:0.0 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 508.027407][ T8] smsc75xx 6-1:0.0: probe with driver smsc75xx failed with error -22 [ 508.206790][ T5359] Bluetooth: hci4: command tx timeout [ 508.226922][ T8] usb 6-1: USB disconnect, device number 17 [ 508.617587][ T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 508.847335][T12965] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 509.906758][T12965] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 510.296623][ T5359] Bluetooth: hci4: command tx timeout [ 510.447630][ T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 510.929386][T12965] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 511.648429][ T5407] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 511.967479][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 513.008509][ T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 514.056770][ T58] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 514.686957][ T5407] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 515.088077][ T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 515.813818][ T66] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 515.818261][ T66] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 515.822635][ T66] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 515.830045][ T66] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 515.835613][ T66] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 515.838959][ T66] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 515.995615][T15297] chnl_net:caif_netlink_parms(): no params data found [ 516.109099][T15297] bridge0: port 1(bridge_slave_0) entered blocking state [ 516.111907][T15297] bridge0: port 1(bridge_slave_0) entered disabled state [ 516.114563][T15297] bridge_slave_0: entered allmulticast mode [ 516.119849][T15297] bridge_slave_0: entered promiscuous mode [ 516.124970][T15297] bridge0: port 2(bridge_slave_1) entered blocking state [ 516.132242][T15297] bridge0: port 2(bridge_slave_1) entered disabled state [ 516.134937][T15297] bridge_slave_1: entered allmulticast mode [ 516.137365][ T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 516.138071][T15297] bridge_slave_1: entered promiscuous mode [ 516.190549][T15297] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 516.198656][T15297] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 516.265486][T15297] team0: Port device team_slave_0 added [ 516.272011][T15297] team0: Port device team_slave_1 added [ 516.324172][T15297] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 516.327170][T15297] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 516.341747][T15297] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 516.347821][T15297] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 516.350896][T15297] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 516.364533][T15297] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 516.418565][T15297] hsr_slave_0: entered promiscuous mode [ 516.421601][T15297] hsr_slave_1: entered promiscuous mode [ 516.424134][T15297] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 516.426914][T15297] Cannot create hsr debugfs directory [ 516.587366][T15297] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 516.696857][T15297] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 516.787494][T15297] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 516.854114][T15297] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 516.983037][T15297] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 516.996735][T15297] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 517.002277][T15297] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 517.007569][T15297] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 517.084102][T15297] 8021q: adding VLAN 0 to HW filter on device bond0 [ 517.099721][T15297] 8021q: adding VLAN 0 to HW filter on device team0 [ 517.107079][ T1145] bridge0: port 1(bridge_slave_0) entered blocking state [ 517.109962][ T1145] bridge0: port 1(bridge_slave_0) entered forwarding state [ 517.116416][ T40] bridge0: port 2(bridge_slave_1) entered blocking state [ 517.118910][ T40] bridge0: port 2(bridge_slave_1) entered forwarding state [ 517.169609][T12965] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 517.294426][T15297] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 517.342704][T15297] veth0_vlan: entered promiscuous mode [ 517.352222][T15297] veth1_vlan: entered promiscuous mode [ 517.375994][T15297] veth0_macvtap: entered promiscuous mode [ 517.383909][T15297] veth1_macvtap: entered promiscuous mode [ 517.401248][T15297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 517.405878][T15297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 517.410968][T15297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 517.415510][T15297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 517.419829][T15297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 517.424366][T15297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 517.428773][T15297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 517.433276][T15297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 517.437667][T15297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 517.442153][T15297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 517.448299][T15297] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 517.458678][T15297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 517.463233][T15297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 517.468272][T15297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 517.472937][T15297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 517.477430][T15297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 517.482188][T15297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 517.490724][T15297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 517.495078][T15297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 517.499054][T15297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 517.502581][T15297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 517.507027][T15297] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 517.513440][T15297] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 517.517733][T15297] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 517.521112][T15297] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 517.524540][T15297] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 517.587302][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 517.590284][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 517.617824][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 517.621311][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 517.731170][ T831] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 517.886862][ T5359] Bluetooth: hci1: command tx timeout [ 518.219203][T12965] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 519.247429][T12965] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 519.966729][ T5359] Bluetooth: hci1: command tx timeout [ 520.047463][ T7276] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 520.291737][T12965] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 520.498881][ C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 520.767632][ T831] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 520.803558][ C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 521.084702][T15437] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 521.340813][T12965] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 521.512676][ T66] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 521.519844][ T66] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 521.524605][ T66] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 521.532542][ T66] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 521.537152][ T66] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 521.539832][ T66] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 521.673959][T15444] chnl_net:caif_netlink_parms(): no params data found [ 521.752503][T15444] bridge0: port 1(bridge_slave_0) entered blocking state [ 521.755076][T15444] bridge0: port 1(bridge_slave_0) entered disabled state [ 521.757689][T15444] bridge_slave_0: entered allmulticast mode [ 521.760685][T15444] bridge_slave_0: entered promiscuous mode [ 521.774840][ T64] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 521.792053][T15444] bridge0: port 2(bridge_slave_1) entered blocking state [ 521.795225][T15444] bridge0: port 2(bridge_slave_1) entered disabled state [ 521.799061][T15444] bridge_slave_1: entered allmulticast mode [ 521.803450][T15444] bridge_slave_1: entered promiscuous mode [ 521.857126][T15444] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 521.864208][T15444] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 521.896122][ T64] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 521.923956][T15444] team0: Port device team_slave_0 added [ 521.929005][T15444] team0: Port device team_slave_1 added [ 521.972228][T15444] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 521.974648][T15444] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 521.989007][T15444] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 521.997247][ T64] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 522.002590][T15444] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 522.004957][T15444] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 522.015654][T15444] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 522.046754][ T5359] Bluetooth: hci1: command tx timeout [ 522.075171][T15444] hsr_slave_0: entered promiscuous mode [ 522.080989][T15444] hsr_slave_1: entered promiscuous mode [ 522.083807][T15444] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 522.088609][T15444] Cannot create hsr debugfs directory [ 522.093229][ T64] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 522.231061][ T39] audit: type=1400 audit(1725763726.075:911): avc: denied { relabelfrom } for pid=15465 comm="syz.1.2937" name="UNIX" dev="sockfs" ino=62789 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1 [ 522.231484][T15466] SELinux: Context system_u:object_r:useradd_exec_t:s0 is not valid (left unmapped). [ 522.249421][ T39] audit: type=1400 audit(1725763726.095:912): avc: denied { relabelto } for pid=15465 comm="syz.1.2937" name="UNIX" dev="sockfs" ino=62789 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=unix_stream_socket permissive=1 trawcon="system_u:object_r:useradd_exec_t:s0" [ 522.272915][ T64] dummy0: left allmulticast mode [ 522.274818][ T64] dummy0: left promiscuous mode [ 522.277882][ T64] bridge0: port 3(dummy0) entered disabled state [ 522.287921][ T64] bridge_slave_1: left allmulticast mode [ 522.290644][ T64] bridge_slave_1: left promiscuous mode [ 522.293486][ T64] bridge0: port 2(bridge_slave_1) entered disabled state [ 522.298888][ T64] bridge_slave_0: left allmulticast mode [ 522.301152][ T64] bridge_slave_0: left promiscuous mode [ 522.303493][ T64] bridge0: port 1(bridge_slave_0) entered disabled state [ 522.752895][ T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 522.759382][ T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 522.766111][ T64] bond0 (unregistering): Released all slaves [ 522.846901][ T64] : left promiscuous mode [ 523.293769][ T64] hsr_slave_0: left promiscuous mode [ 523.297251][ T64] hsr_slave_1: left promiscuous mode [ 523.301164][ T64] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 523.304590][ T64] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 523.315192][ T64] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 523.318008][ T64] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 523.343181][ T64] veth1_macvtap: left promiscuous mode [ 523.345678][ T64] veth0_macvtap: left promiscuous mode [ 523.571568][ T5359] Bluetooth: hci2: command tx timeout [ 524.130340][ T5359] Bluetooth: hci1: command tx timeout [ 524.298539][ T64] team0 (unregistering): Port device team_slave_1 removed [ 524.408023][ T64] team0 (unregistering): Port device team_slave_0 removed [ 525.303811][T15523] warning: checkpointing journal with EXT4_IOC_CHECKPOINT_FLAG_ZEROOUT can be slow [ 525.355614][T15444] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 525.382302][T15444] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 525.392293][T15444] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 525.410433][T15444] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 525.542650][T15444] 8021q: adding VLAN 0 to HW filter on device bond0 [ 525.559298][T15444] 8021q: adding VLAN 0 to HW filter on device team0 [ 525.578483][ T1145] bridge0: port 1(bridge_slave_0) entered blocking state [ 525.581453][ T1145] bridge0: port 1(bridge_slave_0) entered forwarding state [ 525.604227][ T1145] bridge0: port 2(bridge_slave_1) entered blocking state [ 525.607462][ T1145] bridge0: port 2(bridge_slave_1) entered forwarding state [ 525.646738][ T5359] Bluetooth: hci2: command tx timeout [ 525.701171][ T64] IPVS: stop unused estimator thread 0... [ 525.758558][T15444] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 525.800581][T15444] veth0_vlan: entered promiscuous mode [ 525.813389][T15444] veth1_vlan: entered promiscuous mode [ 525.869885][T15444] veth0_macvtap: entered promiscuous mode [ 525.879298][T15444] veth1_macvtap: entered promiscuous mode [ 525.894494][T15444] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 525.899050][T15444] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 525.903115][T15444] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 525.907718][T15444] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 525.912160][T15444] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 525.916212][T15444] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 525.920229][T15444] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 525.924892][T15444] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 525.929137][T15444] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 525.933731][T15444] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 525.939950][T15444] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 525.948836][T15444] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 525.953221][T15444] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 525.956734][T15444] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 525.960801][T15444] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 525.965090][T15444] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 525.969393][T15444] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 525.973187][T15444] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 525.976952][T15444] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 525.981600][T15444] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 525.986032][T15444] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 525.991393][T15444] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 526.000199][T15444] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 526.004184][T15444] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 526.008373][T15444] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 526.012175][T15444] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 526.080970][ T1145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 526.084230][ T1145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 526.113239][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 526.116796][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 527.132404][ T39] audit: type=1400 audit(1725763730.975:913): avc: denied { getopt } for pid=15562 comm="syz.3.2973" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 527.736726][ T5359] Bluetooth: hci2: command tx timeout [ 528.238750][ C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:2. Sending cookies. [ 529.809455][ T5359] Bluetooth: hci2: command tx timeout [ 530.893064][ T39] audit: type=1400 audit(1725763734.735:914): avc: denied { ioctl } for pid=15664 comm="syz.1.3015" path="socket:[63285]" dev="sockfs" ino=63285 ioctlcmd=0x5450 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 535.246511][T15758] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3052'. [ 535.561104][T15768] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 535.641498][ T39] audit: type=1326 audit(1725763739.485:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15775 comm="syz.1.3061" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fe217cef9 code=0x7ffc0000 [ 535.652003][ T39] audit: type=1326 audit(1725763739.485:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15775 comm="syz.1.3061" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fe217cef9 code=0x7ffc0000 [ 535.661697][ T39] audit: type=1326 audit(1725763739.485:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15775 comm="syz.1.3061" exe="/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f8fe217cef9 code=0x7ffc0000 [ 535.671588][ T39] audit: type=1326 audit(1725763739.485:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15775 comm="syz.1.3061" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fe217cef9 code=0x7ffc0000 [ 535.681256][ T39] audit: type=1326 audit(1725763739.485:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15775 comm="syz.1.3061" exe="/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f8fe217cef9 code=0x7ffc0000 [ 535.691931][ T39] audit: type=1326 audit(1725763739.485:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15775 comm="syz.1.3061" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fe217cef9 code=0x7ffc0000 [ 535.700827][ T39] audit: type=1326 audit(1725763739.485:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15775 comm="syz.1.3061" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fe217cef9 code=0x7ffc0000 [ 535.709086][ T39] audit: type=1326 audit(1725763739.485:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15775 comm="syz.1.3061" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f8fe217cef9 code=0x7ffc0000 [ 535.718182][ T39] audit: type=1326 audit(1725763739.485:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15775 comm="syz.1.3061" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fe217cef9 code=0x7ffc0000 [ 535.817752][T15787] SELinux: Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 535.983079][ T39] kauditd_printk_skb: 8 callbacks suppressed [ 535.983095][ T39] audit: type=1107 audit(1725763739.825:932): pid=15810 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=':/(=7f;}ȒTyg' [ 536.039561][ T39] audit: type=1326 audit(1725763739.885:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15814 comm="syz.3.3080" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f839777cef9 code=0x7ffc0000 [ 536.051068][ T39] audit: type=1326 audit(1725763739.885:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15814 comm="syz.3.3080" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f839777cef9 code=0x7ffc0000 [ 536.062767][ T39] audit: type=1326 audit(1725763739.895:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15814 comm="syz.3.3080" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f839777cef9 code=0x7ffc0000 [ 536.080107][ T39] audit: type=1326 audit(1725763739.895:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15814 comm="syz.3.3080" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f839777cef9 code=0x7ffc0000 [ 536.091537][ T39] audit: type=1326 audit(1725763739.895:937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15814 comm="syz.3.3080" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f839777cef9 code=0x7ffc0000 [ 536.102415][ T39] audit: type=1326 audit(1725763739.895:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15814 comm="syz.3.3080" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f839777cef9 code=0x7ffc0000 [ 536.116462][ T39] audit: type=1326 audit(1725763739.895:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15814 comm="syz.3.3080" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f839777cef9 code=0x7ffc0000 [ 536.126971][ T39] audit: type=1326 audit(1725763739.895:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15814 comm="syz.3.3080" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f839777cef9 code=0x7ffc0000 [ 536.137072][ T39] audit: type=1326 audit(1725763739.915:941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15814 comm="syz.3.3080" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f839777cef9 code=0x7ffc0000 [ 536.424357][T15849] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 536.428819][T15849] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 536.611879][T15867] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3103'. [ 536.621316][T15867] geneve2: entered promiscuous mode [ 536.831718][T15883] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3106'. [ 536.842858][T15883] geneve2: entered promiscuous mode [ 537.117899][T15903] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3115'. [ 537.147594][T15903] syzkaller1: entered promiscuous mode [ 537.150137][T15903] syzkaller1: entered allmulticast mode [ 537.328116][T15916] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3121'. [ 537.361907][T15918] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3123'. [ 537.366049][T15918] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3123'. [ 537.453975][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.464763][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.470094][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.473285][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.476182][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.482259][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.485441][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x2 [ 537.491495][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.495143][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.499498][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.502824][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.505754][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.509639][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.512849][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.515441][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.519190][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.525506][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.528916][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.532094][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.535682][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.539584][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.542944][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.546442][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.549574][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.552771][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.555696][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.558504][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.560973][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.564027][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.567773][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.571436][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.574704][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.578253][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.581557][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.584690][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.591795][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.595068][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.598660][T15340] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0 [ 537.612627][T15340] hid-generic 0000:0000:0000.0011: hidraw1: HID v0.00 Device [syz0] on syz0 [ 537.817943][T15963] bridge0: port 3(gretap0) entered blocking state [ 537.820961][T15963] bridge0: port 3(gretap0) entered disabled state [ 537.824158][T15963] gretap0: entered allmulticast mode [ 537.828339][T15963] gretap0: entered promiscuous mode [ 537.832438][T15963] bridge0: port 3(gretap0) entered blocking state [ 537.835446][T15963] bridge0: port 3(gretap0) entered forwarding state [ 537.954852][T15978] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3149'. [ 537.960322][T15978] netlink: 'syz.1.3149': attribute type 10 has an invalid length. [ 537.984211][T15978] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 538.188518][T15997] netlink: 'syz.3.3157': attribute type 1 has an invalid length. [ 538.191340][T15997] netlink: 168864 bytes leftover after parsing attributes in process `syz.3.3157'. [ 538.227835][T15999] input: syz0 as /devices/virtual/input/input82 [ 538.460214][T15340] usb 6-1: new high-speed USB device number 18 using dummy_hcd [ 538.668793][T15340] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 538.672303][T15340] usb 6-1: config 0 has no interfaces? [ 538.674146][T15340] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 538.677390][T15340] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 538.681324][T15340] usb 6-1: config 0 descriptor?? [ 538.921251][T15340] usb 6-1: USB disconnect, device number 18 [ 539.718699][T16032] loop0: detected capacity change from 0 to 524288000 [ 539.986773][ T57] usb 7-1: new high-speed USB device number 15 using dummy_hcd [ 540.179088][ T57] usb 7-1: config index 0 descriptor too short (expected 30506, got 77) [ 540.188703][ T57] usb 7-1: config 250 has too many interfaces: 186, using maximum allowed: 32 [ 540.206625][ T57] usb 7-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config [ 540.210998][ T57] usb 7-1: config 250 has 0 interfaces, different from the descriptor's value: 186 [ 540.221372][ T57] usb 7-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 540.224668][T16039] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3179'. [ 540.225272][ T57] usb 7-1: New USB device strings: Mfr=230, Product=1, SerialNumber=3 [ 540.236481][ T57] usb 7-1: Product: syz [ 540.238347][ T57] usb 7-1: Manufacturer: syz [ 540.240399][ T57] usb 7-1: SerialNumber: syz [ 540.460714][T16030] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 540.474955][T16030] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 540.901653][T16056] bridge0: port 2(bridge_slave_1) entered disabled state [ 540.905404][T16056] bridge0: port 1(bridge_slave_0) entered disabled state [ 540.946998][T16056] bridge_slave_1: left allmulticast mode [ 540.949438][T16056] bridge_slave_1: left promiscuous mode [ 540.952039][T16056] bridge0: port 2(bridge_slave_1) entered disabled state [ 540.961183][T16056] bridge_slave_0: left allmulticast mode [ 540.965650][T16056] bridge_slave_0: left promiscuous mode [ 540.968674][T16056] bridge0: port 1(bridge_slave_0) entered disabled state [ 541.363188][T16076] netlink: 'syz.0.3187': attribute type 29 has an invalid length. [ 541.367802][T16076] netlink: 'syz.0.3187': attribute type 29 has an invalid length. [ 542.722194][ T57] usb 7-1: USB disconnect, device number 15 [ 542.745710][ T39] kauditd_printk_skb: 51 callbacks suppressed [ 542.745726][ T39] audit: type=1400 audit(1725763746.585:993): avc: denied { watch watch_reads } for pid=16071 comm="syz.1.3184" path="/proc/1145/net/udplite6" dev="proc" ino=4026533670 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1 [ 544.495791][ T57] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 544.666522][ T57] usb 5-1: device descriptor read/64, error -71 [ 544.774202][T16121] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3202'. [ 544.901020][T16122] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3202'. [ 544.956480][ T57] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 545.116645][ T57] usb 5-1: device descriptor read/64, error -71 [ 545.243350][ T57] usb usb5-port1: attempt power cycle [ 545.789804][ T57] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 545.826844][ T57] usb 5-1: device descriptor read/8, error -71 [ 545.832502][ T39] audit: type=1400 audit(1725763749.675:994): avc: denied { read } for pid=16127 comm="syz.1.3204" name="usbmon0" dev="devtmpfs" ino=723 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 545.842734][ T39] audit: type=1400 audit(1725763749.675:995): avc: denied { open } for pid=16127 comm="syz.1.3204" path="/dev/usbmon0" dev="devtmpfs" ino=723 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 546.096552][ T57] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 546.129057][ T57] usb 5-1: device descriptor read/8, error -71 [ 546.246881][ T57] usb usb5-port1: unable to enumerate USB device [ 546.266467][T15340] usb 6-1: new high-speed USB device number 19 using dummy_hcd [ 546.448765][T15340] usb 6-1: config 0 has no interfaces? [ 546.452809][T15340] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 546.456948][T15340] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 546.460474][T15340] usb 6-1: Product: syz [ 546.462436][T15340] usb 6-1: Manufacturer: syz [ 546.464443][T15340] usb 6-1: SerialNumber: syz [ 546.471091][T15340] usb 6-1: config 0 descriptor?? [ 549.689430][T15340] usb 6-1: USB disconnect, device number 19 [ 550.796609][ T58] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 550.999200][ T58] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 551.004067][ T58] usb 5-1: config 0 has no interfaces? [ 551.007096][ T58] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 551.012128][ T58] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 551.018601][ T58] usb 5-1: config 0 descriptor?? [ 551.274942][ T58] usb 5-1: USB disconnect, device number 16 [ 552.536660][T12965] usb 7-1: new high-speed USB device number 16 using dummy_hcd [ 552.766788][T12965] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 552.770933][T12965] usb 7-1: config 0 has no interfaces? [ 552.773348][T12965] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 552.778022][T12965] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 552.783093][T12965] usb 7-1: config 0 descriptor?? [ 552.905259][T16341] Cannot find set identified by id 0 to match [ 553.119112][T11890] usb 7-1: USB disconnect, device number 16 [ 553.515445][T16352] syz.1.3295: attempt to access beyond end of device [ 553.515445][T16352] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 553.649369][T16358] dummy0: entered promiscuous mode [ 553.652891][T16358] dummy0: left promiscuous mode [ 553.947583][ T39] audit: type=1400 audit(1725763757.795:996): avc: denied { append } for pid=16379 comm="syz.2.3306" name="nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 554.004357][T16386] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3310'. [ 555.123112][ T39] audit: type=1326 audit(1725763758.965:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16423 comm="syz.2.3326" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f695a37cef9 code=0x0 [ 556.120446][T16444] netlink: 'syz.3.3332': attribute type 1 has an invalid length. [ 556.142587][T16444] bond1: entered promiscuous mode [ 556.150828][T16444] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3332'. [ 556.158846][T16444] bond1: left promiscuous mode [ 556.161389][T16444] 8021q: adding VLAN 0 to HW filter on device bond1 [ 556.246732][T15340] usb 6-1: new full-speed USB device number 20 using dummy_hcd [ 556.458446][T16439] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 556.464732][T16439] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 556.586165][T16461] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 556.588928][ T39] audit: type=1400 audit(1725763760.435:998): avc: denied { create } for pid=16459 comm="syz.3.3338" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 556.598480][T16461] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 556.606652][ T39] audit: type=1400 audit(1725763760.445:999): avc: denied { write } for pid=16459 comm="syz.3.3338" name="file0" dev="tmpfs" ino=529 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 556.621770][ T39] audit: type=1400 audit(1725763760.445:1000): avc: denied { open } for pid=16459 comm="syz.3.3338" path="/98/file0" dev="tmpfs" ino=529 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 556.631186][ T39] audit: type=1400 audit(1725763760.445:1001): avc: denied { ioctl } for pid=16459 comm="syz.3.3338" path="/98/file0" dev="tmpfs" ino=529 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 556.640705][ T39] audit: type=1400 audit(1725763760.465:1002): avc: denied { unlink } for pid=15444 comm="syz-executor" name="file0" dev="tmpfs" ino=529 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 556.700734][T15340] usb 6-1: unable to get BOS descriptor or descriptor too short [ 556.705829][T15340] usb 6-1: unable to read config index 0 descriptor/start: -71 [ 556.710262][T15340] usb 6-1: can't read configurations, error -71 [ 557.396437][T12965] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 557.590735][T12965] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 557.595202][T12965] usb 5-1: config 0 has no interfaces? [ 557.597995][T12965] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 557.601755][T12965] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 557.612349][T12965] usb 5-1: config 0 descriptor?? [ 557.702205][T16483] vivid-003: ================= START STATUS ================= [ 557.705529][T16483] vivid-003: Radio HW Seek Mode: Bounded [ 557.733476][T16483] vivid-003: Radio Programmable HW Seek: false [ 557.746632][T16483] vivid-003: RDS Rx I/O Mode: Block I/O [ 557.764879][T16483] vivid-003: Generate RBDS Instead of RDS: false [ 557.776444][T16483] vivid-003: RDS Reception: true [ 557.851415][T12965] usb 5-1: USB disconnect, device number 17 [ 557.939061][T16483] vivid-003: RDS Program Type: 0 inactive [ 557.957019][T16483] vivid-003: RDS PS Name: inactive [ 557.957053][T16483] vivid-003: RDS Radio Text: inactive [ 557.957077][T16483] vivid-003: RDS Traffic Announcement: false inactive [ 557.957103][T16483] vivid-003: RDS Traffic Program: false inactive [ 557.957128][T16483] vivid-003: RDS Music: false inactive [ 557.957153][T16483] vivid-003: ================== END STATUS ================== [ 558.649276][T16441] syz.2.3331: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1 [ 558.657653][T16441] CPU: 2 UID: 0 PID: 16441 Comm: syz.2.3331 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 558.662135][T16441] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 558.666568][T16441] Call Trace: [ 558.668020][T16441] [ 558.669282][T16441] dump_stack_lvl+0x16c/0x1f0 [ 558.671281][T16441] warn_alloc+0x24d/0x3a0 [ 558.673152][T16441] ? __pfx_warn_alloc+0x10/0x10 [ 558.675387][T16441] ? __get_vm_area_node+0x190/0x2d0 [ 558.677758][T16441] ? __get_vm_area_node+0x1bc/0x2d0 [ 558.680148][T16441] __vmalloc_node_range_noprof+0xfe8/0x14e0 [ 558.682832][T16441] ? hash_netiface_create+0x3ea/0x1250 [ 558.685274][T16441] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 558.688165][T16441] ? __get_vm_area_node+0x190/0x2d0 [ 558.690700][T16441] ? __get_vm_area_node+0x1bc/0x2d0 [ 558.693032][T16441] __vmalloc_node_range_noprof+0xc6b/0x14e0 [ 558.695690][T16441] ? hash_netiface_create+0x3ea/0x1250 [ 558.698136][T16441] ? hash_netiface_create+0x3ea/0x1250 [ 558.700551][T16441] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 558.702953][T16441] ? trace_kmalloc+0x2d/0xe0 [ 558.704545][T16441] ? __kmalloc_node_noprof.cold+0x5a/0x5f [ 558.706537][T16441] ? hash_netiface_create+0x3ea/0x1250 [ 558.708410][T16441] __kvmalloc_node_noprof+0x14f/0x1a0 [ 558.710262][T16441] ? hash_netiface_create+0x3ea/0x1250 [ 558.712119][T16441] hash_netiface_create+0x3ea/0x1250 [ 558.714184][T16441] ? __nla_validate+0xb/0x50 [ 558.716157][T16441] ? __pfx_hash_netiface_create+0x10/0x10 [ 558.718295][T16441] ip_set_create+0x7cb/0x14d0 [ 558.719922][T16441] ? __pfx_ip_set_create+0x10/0x10 [ 558.721671][T16441] nfnetlink_rcv_msg+0x9c3/0x11e0 [ 558.723575][T16441] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 558.725548][T16441] ? find_held_lock+0x2d/0x110 [ 558.727481][T16441] ? avc_has_perm_noaudit+0x143/0x3a0 [ 558.729844][T16441] netlink_rcv_skb+0x16b/0x440 [ 558.731828][T16441] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 558.734156][T16441] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 558.736464][T16441] ? bpf_lsm_capable+0x9/0x10 [ 558.738792][T16441] ? security_capable+0x98/0xd0 [ 558.740798][T16441] ? ns_capable+0xd7/0x110 [ 558.742492][T16441] nfnetlink_rcv+0x1b4/0x430 [ 558.744316][T16441] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 558.746386][T16441] ? netlink_deliver_tap+0x1ae/0xd90 [ 558.748563][T16441] netlink_unicast+0x53c/0x7f0 [ 558.750457][T16441] ? __pfx_netlink_unicast+0x10/0x10 [ 558.752748][T16441] netlink_sendmsg+0x8b8/0xd70 [ 558.754610][T16441] ? __pfx_netlink_sendmsg+0x10/0x10 [ 558.756661][T16441] ? __import_iovec+0x1fd/0x6e0 [ 558.758530][T16441] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 558.760680][T16441] ____sys_sendmsg+0xab5/0xc90 [ 558.762517][T16441] ? copy_msghdr_from_user+0x10b/0x160 [ 558.764632][T16441] ? __pfx_____sys_sendmsg+0x10/0x10 [ 558.766723][T16441] ? __pfx___futex_wait+0x10/0x10 [ 558.768406][T16441] ? __pfx___lock_acquire+0x10/0x10 [ 558.770488][T16441] ? try_to_wake_up+0x14b/0x13e0 [ 558.772346][T16441] ___sys_sendmsg+0x135/0x1e0 [ 558.774229][T16441] ? __pfx____sys_sendmsg+0x10/0x10 [ 558.776366][T16441] ? __fget_light+0x173/0x210 [ 558.778489][T16441] __sys_sendmsg+0x117/0x1f0 [ 558.780562][T16441] ? __pfx___sys_sendmsg+0x10/0x10 [ 558.782829][T16441] ? __x64_sys_futex+0x1e1/0x4c0 [ 558.784970][T16441] do_syscall_64+0xcd/0x250 [ 558.787088][T16441] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 558.789361][T16441] RIP: 0033:0x7f695a37cef9 [ 558.791312][T16441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 558.799589][T16441] RSP: 002b:00007f695b1f1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 558.803188][T16441] RAX: ffffffffffffffda RBX: 00007f695a535f80 RCX: 00007f695a37cef9 [ 558.806559][T16441] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 558.809866][T16441] RBP: 00007f695a3ef046 R08: 0000000000000000 R09: 0000000000000000 [ 558.813056][T16441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 558.816239][T16441] R13: 0000000000000000 R14: 00007f695a535f80 R15: 00007ffe1798a068 [ 558.819495][T16441] [ 558.822940][T16441] Mem-Info: [ 558.825075][T16441] active_anon:8404 inactive_anon:0 isolated_anon:0 [ 558.825075][T16441] active_file:2309 inactive_file:53926 isolated_file:0 [ 558.825075][T16441] unevictable:4403 dirty:143 writeback:0 [ 558.825075][T16441] slab_reclaimable:9646 slab_unreclaimable:75777 [ 558.825075][T16441] mapped:18410 shmem:2307 pagetables:766 [ 558.825075][T16441] sec_pagetables:327 bounce:0 [ 558.825075][T16441] kernel_misc_reclaimable:0 [ 558.825075][T16441] free:437169 free_pcp:12004 free_cma:0 [ 558.850693][T16441] Node 0 active_anon:35104kB inactive_anon:0kB active_file:9236kB inactive_file:215680kB unevictable:14324kB isolated(anon):0kB isolated(file):0kB mapped:73624kB dirty:572kB writeback:0kB shmem:5692kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11216kB pagetables:3064kB sec_pagetables:1308kB all_unreclaimable? no [ 558.864692][T16441] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:24kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 558.879422][T16441] Node 0 DMA free:15288kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:72kB local_pcp:0kB free_cma:0kB [ 558.891301][T16441] lowmem_reserve[]: 0 1218 0 0 0 [ 558.893541][T16441] Node 0 DMA32 free:133668kB boost:0kB min:27696kB low:34620kB high:41544kB reserved_highatomic:0KB active_anon:36468kB inactive_anon:0kB active_file:9236kB inactive_file:215680kB unevictable:17920kB writepending:572kB present:2080628kB managed:1275300kB mlocked:14384kB bounce:0kB free_pcp:8200kB local_pcp:3908kB free_cma:0kB [ 558.906448][T16441] lowmem_reserve[]: 0 0 0 0 0 [ 558.908612][T16441] Node 1 Normal free:1597764kB boost:0kB min:39540kB low:49424kB high:59308kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:24kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:35188kB local_pcp:9424kB free_cma:0kB [ 558.921310][T16441] lowmem_reserve[]: 0 0 0 0 0 [ 558.923440][T16441] Node 0 DMA: 0*4kB 1*8kB (U) 1*16kB (U) 1*32kB (U) 0*64kB 1*128kB (U) 1*256kB (U) 1*512kB (U) 2*1024kB (U) 0*2048kB 3*4096kB (U) = 15288kB [ 558.930785][T16441] Node 0 DMA32: 4*4kB (E) 93*8kB (UME) 40*16kB (UME) 339*32kB (ME) 296*64kB (ME) 54*128kB (UME) 33*256kB (ME) 21*512kB (ME) 22*1024kB (UM) 11*2048kB (UM) 6*4096kB (U) = 126936kB [ 558.943835][T16441] Node 1 Normal: 21*4kB (UM) 26*8kB (UM) 28*16kB (UM) 25*32kB (UM) 23*64kB (UM) 15*128kB (UM) 6*256kB (U) 6*512kB (UM) 5*1024kB (U) 3*2048kB (UM) 385*4096kB (UM) = 1597764kB [ 558.951455][T16441] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 558.955189][T16441] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 558.959471][T16441] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 558.962961][T16441] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 558.966472][T16441] 59057 total pagecache pages [ 558.968544][T16441] 0 pages in swap cache [ 558.970343][T16441] Free swap = 124208kB [ 558.972120][T16441] Total swap = 124996kB [ 558.973933][T16441] 1048443 pages RAM [ 558.975524][T16441] 0 pages HighMem/MovableOnly [ 558.978642][T16441] 280297 pages reserved [ 558.980566][T16441] 0 pages cma reserved [ 559.866625][ T9] usb 6-1: new high-speed USB device number 22 using dummy_hcd [ 560.255752][T16541] 9pnet_fd: Insufficient options for proto=fd [ 560.319314][ T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 560.323763][ T9] usb 6-1: config 0 has no interfaces? [ 560.326198][ T9] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 560.333500][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 560.345531][ T9] usb 6-1: config 0 descriptor?? [ 560.586005][ T9] usb 6-1: USB disconnect, device number 22 [ 560.910106][T16547] netlink: 80 bytes leftover after parsing attributes in process `syz.0.3367'. [ 560.962321][ T5388] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=5388 comm=kworker/1:4 [ 563.044562][T16564] veth0_to_bridge: entered promiscuous mode [ 563.047463][T16564] veth0_to_bridge: left promiscuous mode [ 563.858402][T16595] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3385'. [ 563.866503][ T9] usb 6-1: new high-speed USB device number 23 using dummy_hcd [ 564.051211][ T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 564.055956][ T9] usb 6-1: config 0 has no interfaces? [ 564.058706][ T9] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 564.062769][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 564.075406][ T9] usb 6-1: config 0 descriptor?? [ 564.171984][T16604] kvm: pic: non byte read [ 564.174980][T16604] kvm: pic: level sensitive irq not supported [ 564.175339][T16604] kvm: pic: non byte read [ 564.184628][T16604] kvm: pic: non byte read [ 564.189995][T16604] kvm: pic: non byte read [ 564.193112][T16604] kvm: pic: non byte read [ 564.208306][T16604] kvm: pic: non byte read [ 564.218378][T16604] kvm: pic: non byte read [ 564.221469][T16604] kvm: pic: non byte read [ 564.224521][T16604] kvm: pic: non byte read [ 564.229215][T16604] kvm: pic: non byte read [ 564.319554][T15340] usb 6-1: USB disconnect, device number 23 [ 564.666094][T16615] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3392'. [ 565.936463][ T9] usb 6-1: new high-speed USB device number 24 using dummy_hcd [ 566.457627][T16658] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 566.463709][ T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 566.471542][ T9] usb 6-1: config 0 has no interfaces? [ 566.473831][ T9] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 566.483769][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 566.494755][ T9] usb 6-1: config 0 descriptor?? [ 566.781715][ T9] usb 6-1: USB disconnect, device number 24 [ 568.540541][T16711] random: crng reseeded on system resumption [ 568.710197][ T39] audit: type=1400 audit(1725763772.555:1003): avc: denied { accept } for pid=16717 comm="syz.1.3433" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1 [ 571.632980][T16727] Process accounting resumed [ 572.886668][ T9] usb 6-1: new high-speed USB device number 25 using dummy_hcd [ 573.089937][ T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 573.096775][ T9] usb 6-1: config 0 has no interfaces? [ 573.098883][ T9] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 573.102875][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 573.107821][ T9] usb 6-1: config 0 descriptor?? [ 573.372670][ T9] usb 6-1: USB disconnect, device number 25 [ 574.258765][T16806] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 574.572993][T16809] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3466'. [ 574.640938][T16814] picdev_read: 5 callbacks suppressed [ 574.640955][T16814] kvm: pic: non byte read [ 574.651250][T16814] kvm: pic: non byte read [ 574.655422][T16814] kvm: pic: non byte read [ 574.658332][T16814] kvm: pic: non byte read [ 574.661977][T16814] kvm: pic: non byte read [ 574.664442][T16814] kvm: pic: non byte read [ 574.670549][T16814] kvm: pic: level sensitive irq not supported [ 574.670824][T16814] kvm: pic: non byte read [ 574.677277][T16814] kvm: pic: non byte read [ 574.684157][T16814] kvm: pic: non byte read [ 574.688719][T16814] kvm: pic: non byte read [ 574.691862][T16814] kvm: pic: level sensitive irq not supported [ 574.693330][T16814] kvm: pic: single mode not supported [ 574.696444][T16814] kvm: pic: level sensitive irq not supported [ 574.701208][T16814] kvm: pic: level sensitive irq not supported [ 575.796455][ T8] usb 6-1: new high-speed USB device number 26 using dummy_hcd [ 575.999624][ T8] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 576.006334][ T8] usb 6-1: config 0 has no interfaces? [ 576.012536][ T8] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 576.022740][ T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 576.036748][ T8] usb 6-1: config 0 descriptor?? [ 577.143864][ T8] usb 6-1: USB disconnect, device number 26 [ 578.279653][T16831] warn_alloc: 1 callbacks suppressed [ 578.279670][T16831] syz.0.3472: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1 [ 578.290317][T16831] CPU: 1 UID: 0 PID: 16831 Comm: syz.0.3472 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 578.294870][T16831] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 578.299267][T16831] Call Trace: [ 578.300762][T16831] [ 578.302066][T16831] dump_stack_lvl+0x16c/0x1f0 [ 578.304046][T16831] warn_alloc+0x24d/0x3a0 [ 578.305827][T16831] ? __pfx_warn_alloc+0x10/0x10 [ 578.307728][T16831] ? __get_vm_area_node+0x190/0x2d0 [ 578.309902][T16831] ? __get_vm_area_node+0x1bc/0x2d0 [ 578.311693][T16831] __vmalloc_node_range_noprof+0xfe8/0x14e0 [ 578.314170][T16831] ? hash_netiface_create+0x3ea/0x1250 [ 578.316558][T16831] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 578.319229][T16831] ? __get_vm_area_node+0x190/0x2d0 [ 578.321405][T16831] ? __get_vm_area_node+0x1bc/0x2d0 [ 578.323596][T16831] __vmalloc_node_range_noprof+0xc6b/0x14e0 [ 578.326033][T16831] ? hash_netiface_create+0x3ea/0x1250 [ 578.328135][T16831] ? hash_netiface_create+0x3ea/0x1250 [ 578.330341][T16831] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 578.332768][T16831] ? trace_kmalloc+0x2d/0xe0 [ 578.334493][T16831] ? __kmalloc_node_noprof.cold+0x5a/0x5f [ 578.336420][T16831] ? hash_netiface_create+0x3ea/0x1250 [ 578.338283][T16831] __kvmalloc_node_noprof+0x14f/0x1a0 [ 578.340699][T16831] ? hash_netiface_create+0x3ea/0x1250 [ 578.343115][T16831] hash_netiface_create+0x3ea/0x1250 [ 578.345447][T16831] ? __nla_validate+0xb/0x50 [ 578.347576][T16831] ? __pfx_hash_netiface_create+0x10/0x10 [ 578.350131][T16831] ip_set_create+0x7cb/0x14d0 [ 578.352242][T16831] ? __pfx_ip_set_create+0x10/0x10 [ 578.354726][T16831] nfnetlink_rcv_msg+0x9c3/0x11e0 [ 578.356995][T16831] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 578.359518][T16831] ? find_held_lock+0x2d/0x110 [ 578.361747][T16831] ? avc_has_perm_noaudit+0x143/0x3a0 [ 578.364193][T16831] netlink_rcv_skb+0x16b/0x440 [ 578.366403][T16831] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 578.368923][T16831] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 578.371298][T16831] ? bpf_lsm_capable+0x9/0x10 [ 578.373460][T16831] ? security_capable+0x98/0xd0 [ 578.375751][T16831] ? ns_capable+0xd7/0x110 [ 578.377784][T16831] nfnetlink_rcv+0x1b4/0x430 [ 578.379856][T16831] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 578.382174][T16831] ? netlink_deliver_tap+0x1ae/0xd90 [ 578.384637][T16831] netlink_unicast+0x53c/0x7f0 [ 578.386869][T16831] ? __pfx_netlink_unicast+0x10/0x10 [ 578.389298][T16831] netlink_sendmsg+0x8b8/0xd70 [ 578.391498][T16831] ? __pfx_netlink_sendmsg+0x10/0x10 [ 578.393911][T16831] ? __import_iovec+0x1fd/0x6e0 [ 578.396073][T16831] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 578.398325][T16831] ____sys_sendmsg+0xab5/0xc90 [ 578.400272][T16831] ? copy_msghdr_from_user+0x10b/0x160 [ 578.402506][T16831] ? __pfx_____sys_sendmsg+0x10/0x10 [ 578.404801][T16831] ? __pfx___futex_wait+0x10/0x10 [ 578.407171][T16831] ? __pfx___lock_acquire+0x10/0x10 [ 578.409512][T16831] ? try_to_wake_up+0x14b/0x13e0 [ 578.411667][T16831] ___sys_sendmsg+0x135/0x1e0 [ 578.413717][T16831] ? __pfx____sys_sendmsg+0x10/0x10 [ 578.416039][T16831] ? __fget_light+0x173/0x210 [ 578.417768][T16831] __sys_sendmsg+0x117/0x1f0 [ 578.419816][T16831] ? __pfx___sys_sendmsg+0x10/0x10 [ 578.422131][T16831] ? __x64_sys_futex+0x1e1/0x4c0 [ 578.424342][T16831] do_syscall_64+0xcd/0x250 [ 578.426371][T16831] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 578.428884][T16831] RIP: 0033:0x7f6a2117cef9 [ 578.430864][T16831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 578.439114][T16831] RSP: 002b:00007f6a2200c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 578.442521][T16831] RAX: ffffffffffffffda RBX: 00007f6a21335f80 RCX: 00007f6a2117cef9 [ 578.445221][T16831] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003 [ 578.447983][T16831] RBP: 00007f6a211ef046 R08: 0000000000000000 R09: 0000000000000000 [ 578.450705][T16831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 578.453350][T16831] R13: 0000000000000000 R14: 00007f6a21335f80 R15: 00007ffd305aff18 [ 578.455987][T16831] [ 578.458707][T16831] Mem-Info: [ 578.459703][T16831] active_anon:7949 inactive_anon:5 isolated_anon:0 [ 578.459703][T16831] active_file:1475 inactive_file:52480 isolated_file:0 [ 578.459703][T16831] unevictable:1768 dirty:224 writeback:0 [ 578.459703][T16831] slab_reclaimable:9590 slab_unreclaimable:74923 [ 578.459703][T16831] mapped:17980 shmem:2292 pagetables:776 [ 578.459703][T16831] sec_pagetables:327 bounce:0 [ 578.459703][T16831] kernel_misc_reclaimable:0 [ 578.459703][T16831] free:440714 free_pcp:14617 free_cma:0 [ 578.474500][T16831] Node 0 active_anon:31748kB inactive_anon:20kB active_file:5900kB inactive_file:209896kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:71904kB dirty:896kB writeback:0kB shmem:5632kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11056kB pagetables:3004kB sec_pagetables:1308kB all_unreclaimable? no [ 578.485452][T16831] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:24kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 578.495513][T16831] Node 0 DMA free:15244kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:116kB local_pcp:116kB free_cma:0kB [ 578.504617][T16831] lowmem_reserve[]: 0 1218 0 0 0 [ 578.506312][T16831] Node 0 DMA32 free:148864kB boost:0kB min:27696kB low:34620kB high:41544kB reserved_highatomic:0KB active_anon:31748kB inactive_anon:20kB active_file:5900kB inactive_file:209896kB unevictable:3536kB writepending:896kB present:2080628kB managed:1275300kB mlocked:0kB bounce:0kB free_pcp:23980kB local_pcp:4976kB free_cma:0kB [ 578.516609][T16831] lowmem_reserve[]: 0 0 0 0 0 [ 578.518242][T16831] Node 1 Normal free:1598200kB boost:0kB min:39540kB low:49424kB high:59308kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:24kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:34760kB local_pcp:11764kB free_cma:0kB [ 578.527915][T16831] lowmem_reserve[]: 0 0 0 0 0 [ 578.529564][T16831] Node 0 DMA: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 0*64kB 1*128kB (U) 1*256kB (U) 1*512kB (U) 2*1024kB (U) 2*2048kB (U) 2*4096kB (U) = 15256kB [ 578.534324][T16831] Node 0 DMA32: 768*4kB (ME) 842*8kB (UME) 346*16kB (UME) 485*32kB (UME) 239*64kB (UME) 44*128kB (UME) 23*256kB (UME) 26*512kB (UME) 18*1024kB (UM) 13*2048kB (UM) 8*4096kB (U) = 148816kB [ 578.540532][T16831] Node 1 Normal: 21*4kB (UM) 26*8kB (UM) 29*16kB (UM) 28*32kB (UM) 22*64kB (UM) 14*128kB (UM) 5*256kB (U) 6*512kB (UM) 6*1024kB (U) 3*2048kB (UM) 385*4096kB (UM) = 1598452kB [ 578.546270][T16831] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 578.549975][T16831] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 578.553102][T16831] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 578.556269][T16831] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 578.559436][T16831] 56261 total pagecache pages [ 578.561050][T16831] 26 pages in swap cache [ 578.562487][T16831] Free swap = 123952kB [ 578.563881][T16831] Total swap = 124996kB [ 578.565283][T16831] 1048443 pages RAM [ 578.566692][T16831] 0 pages HighMem/MovableOnly [ 578.568290][T16831] 280297 pages reserved [ 578.569695][T16831] 0 pages cma reserved [ 578.715570][T16831] syz.0.3472 (16831) used greatest stack depth: 18488 bytes left [ 578.756477][T12965] usb 7-1: new high-speed USB device number 17 using dummy_hcd [ 578.892844][ T39] audit: type=1400 audit(1725763782.735:1004): avc: denied { getopt } for pid=16898 comm="syz.3.3497" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 578.938790][T12965] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 578.943186][T12965] usb 7-1: config 0 has no interfaces? [ 578.949777][T12965] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 578.953749][T12965] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 578.974875][T12965] usb 7-1: config 0 descriptor?? [ 579.246149][T12965] usb 7-1: USB disconnect, device number 17 [ 579.279789][T16914] ptrace attach of "/syz-executor exec"[15444] was attempted by "/syz-executor exec"[16914] [ 580.005356][T16935] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3511'. [ 580.336522][T12965] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 580.518747][T12965] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 580.523215][T12965] usb 5-1: config 0 has no interfaces? [ 580.525527][T12965] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 580.528755][T12965] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 580.533940][T12965] usb 5-1: config 0 descriptor?? [ 580.818988][ T35] usb 5-1: USB disconnect, device number 18 [ 581.208237][T16949] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3515'. [ 581.403188][T16956] xt_CT: You must specify a L4 protocol and not use inversions on it [ 581.458959][T16959] tipc: Failed to remove unknown binding: 66,1,1/0:1316717174/1316717176 [ 581.462890][T16959] tipc: Failed to remove unknown binding: 66,1,1/0:1316717174/1316717176 [ 582.482561][T16976] x_tables: ip_tables: udplite match: only valid for protocol 136 [ 582.976482][ T25] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 583.158251][ T25] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 583.161838][ T25] usb 5-1: config 0 has no interfaces? [ 583.163564][ T25] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 583.166301][ T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 583.172360][ T25] usb 5-1: config 0 descriptor?? [ 583.582656][ T35] usb 5-1: USB disconnect, device number 19 [ 585.307295][T17025] binder: 17018:17025 ioctl c0306201 0 returned -14 [ 585.683823][T17037] input: syz0 as /devices/virtual/input/input84 [ 586.333837][T17063] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3557'. [ 586.368849][T17065] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3558'. [ 586.379093][T17065] batman_adv: batadv1: Adding interface: netdevsim0 [ 586.381330][T17065] batman_adv: batadv1: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 586.390717][T17065] batman_adv: batadv1: Interface activated: netdevsim0 [ 586.577928][T17073] fuse: Bad value for 'fd' [ 587.621453][T17091] erspan0: entered promiscuous mode [ 588.526579][ T35] usb 7-1: new high-speed USB device number 18 using dummy_hcd [ 588.625037][T17107] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in; [ 588.625037][T17107] program syz.3.3574 not setting count and/or reply_len properly [ 588.719282][ T35] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 588.724028][ T35] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21 [ 588.729790][ T35] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 588.734282][ T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 588.743327][ T35] usb 7-1: config 0 descriptor?? [ 588.748600][ T35] usbhid 7-1:0.0: couldn't find an input interrupt endpoint [ 589.242055][ T39] audit: type=1400 audit(1725763793.085:1005): avc: denied { execute } for pid=17101 comm="syz.2.3571" name="file0" dev="ramfs" ino=71069 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1 [ 589.457909][ T39] audit: type=1400 audit(1725763793.085:1006): avc: denied { execute_no_trans } for pid=17101 comm="syz.2.3571" path="/158/file0/file0" dev="ramfs" ino=71069 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1 [ 589.883927][T17126] lo speed is unknown, defaulting to 1000 [ 589.887755][T17126] lo speed is unknown, defaulting to 1000 [ 589.891156][T17126] lo speed is unknown, defaulting to 1000 [ 589.903893][T17126] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 589.925758][T17126] lo speed is unknown, defaulting to 1000 [ 589.929769][T17126] lo speed is unknown, defaulting to 1000 [ 589.933712][T17126] lo speed is unknown, defaulting to 1000 [ 589.940507][T17126] lo speed is unknown, defaulting to 1000 [ 589.945402][T17126] lo speed is unknown, defaulting to 1000 [ 589.949461][T17126] lo speed is unknown, defaulting to 1000 [ 591.327395][T15340] usb 7-1: USB disconnect, device number 18 [ 591.740355][ T5847] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=5847 comm=kworker/2:4 [ 593.832668][T17201] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3609'. [ 594.149308][ T25] usb 7-1: new high-speed USB device number 19 using dummy_hcd [ 594.338490][ T25] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 594.350512][ T25] usb 7-1: config 0 has no interfaces? [ 594.356692][ T25] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 594.363482][ T25] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 594.382062][ T25] usb 7-1: config 0 descriptor?? [ 594.510430][T17223] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3616'. [ 594.685119][T17223] hsr_slave_1 (unregistering): left promiscuous mode [ 594.697897][ T57] usb 7-1: USB disconnect, device number 19 [ 595.435375][T17259] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3631'. [ 596.079062][ T39] audit: type=1400 audit(1725763799.915:1007): avc: denied { recv } for pid=0 comm="swapper/1" saddr=fe80::2 daddr=ff02::1 netif=eth0 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1 [ 596.166608][ T9] usb 6-1: new high-speed USB device number 27 using dummy_hcd [ 596.366764][ T5359] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 596.371010][ T5359] Bluetooth: hci1: Injecting HCI hardware error event [ 596.378224][ T66] Bluetooth: hci1: hardware error 0x00 [ 596.385329][ T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 596.406271][ T9] usb 6-1: config 0 has no interfaces? [ 596.408872][ T9] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 596.562213][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 596.586423][ T9] usb 6-1: config 0 descriptor?? [ 596.661472][ T39] audit: type=1400 audit(1725763800.505:1008): avc: denied { listen } for pid=17289 comm="syz.2.3641" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 596.674864][ T39] audit: type=1400 audit(1725763800.515:1009): avc: denied { read } for pid=17289 comm="syz.2.3641" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 596.929061][ T9] usb 6-1: USB disconnect, device number 27 [ 597.384831][ T39] audit: type=1400 audit(1725763801.225:1010): avc: denied { write } for pid=17304 comm="syz.3.3646" lport=40658 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1 [ 597.395678][ T39] audit: type=1400 audit(1725763801.225:1011): avc: denied { setopt } for pid=17304 comm="syz.3.3646" lport=40658 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1 [ 597.482373][ T39] audit: type=1400 audit(1725763801.325:1012): avc: denied { write } for pid=17308 comm="syz.1.3648" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 597.491380][ T39] audit: type=1400 audit(1725763801.325:1013): avc: denied { ioctl } for pid=17308 comm="syz.1.3648" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 ioctlcmd=0x587d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 598.446671][ T66] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 599.266469][ T9] usb 5-1: new high-speed USB device number 20 using dummy_hcd [ 599.624168][T17330] EXT4-fs (sda1): shut down requested (2) [ 599.627726][T17330] Aborting journal on device sda1-8. [ 599.645694][ T39] audit: type=1400 audit(1725763803.485:1014): avc: denied { setattr } for pid=17323 comm="syz.3.3652" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 599.680007][T17332] random: crng reseeded on system resumption [ 599.765602][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 600.046493][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 600.056457][ T9] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 600.068898][ T9] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 600.075836][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 600.098246][ T9] usb 5-1: config 0 descriptor?? [ 601.136467][ T58] usb 7-1: new high-speed USB device number 20 using dummy_hcd [ 601.320789][ T58] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 601.325126][ T58] usb 7-1: config 0 has no interfaces? [ 601.327765][ T58] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 601.331864][ T58] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 601.338086][ T58] usb 7-1: config 0 descriptor?? [ 601.579305][ T8] usb 7-1: USB disconnect, device number 20 [ 601.771380][T17347] Process accounting paused [ 602.209295][ T9] usbhid 5-1:0.0: can't add hid device: -71 [ 602.211947][ T9] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 602.251265][ T9] usb 5-1: USB disconnect, device number 20 [ 602.260614][ T39] audit: type=1326 audit(1725763806.105:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17385 comm="syz.0.3677" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6a2117cef9 code=0x0 [ 602.550542][T17394] smb3: Unknown parameter '*z' [ 603.536635][ T5388] usb 5-1: new high-speed USB device number 21 using dummy_hcd [ 603.728713][ T5388] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 603.732860][ T5388] usb 5-1: config 0 has no interfaces? [ 603.735185][ T5388] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 603.739182][ T5388] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 603.747137][ T5388] usb 5-1: config 0 descriptor?? [ 603.976569][ T57] usb 5-1: USB disconnect, device number 21 [ 605.208834][T17433] lo speed is unknown, defaulting to 1000 [ 606.118554][T17458] netlink: 'syz.2.3702': attribute type 4 has an invalid length. [ 606.136470][ T9] usb 6-1: new high-speed USB device number 28 using dummy_hcd [ 606.205509][T17461] netlink: 2020 bytes leftover after parsing attributes in process `syz.2.3703'. [ 606.209492][T17461] netlink: 'syz.2.3703': attribute type 1 has an invalid length. [ 606.328121][ T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 606.335887][ T9] usb 6-1: config 0 has no interfaces? [ 606.338506][ T9] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 606.342032][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 606.348456][ T9] usb 6-1: config 0 descriptor?? [ 606.591188][ T44] page: refcount:2 mapcount:0 mapping:0000000000000000 index:0x7a pfn:0x24213 [ 606.592420][ T1106] list_add corruption. next->prev should be prev (ffffe8fefc92fe80), but was ffff8880250bc800. (next=ffff88802fef5000). [ 606.594134][ T44] flags: 0xfff00000020001(locked|reclaim|node=0|zone=1|lastcpupid=0x7ff) [ 606.594152][ T44] raw: 00fff00000020001 ffffc900009c7648 ffffc900009c7648 ffffffff8b5d3362 [ 606.594162][ T44] raw: 000000000000007a 0000000000000002 00000002ffffffff 0000000000000000 [ 606.594168][ T44] page dumped because: VM_BUG_ON_PAGE(!((__builtin_constant_p(PAGE_CLAIMED) && __builtin_constant_p((uintptr_t)(&page->private) != (uintptr_t)((void *)0)) && (uintptr_t)(&page->private) != (uintptr_t)((void *)0) && __builtin_constant_p(*(const unsigned long *)(&page->private))) ? const_test_bit(PAGE_CLAIMED, &page->private) : _test_bit(PAGE_CLAIMED, &page->private))) [ 606.594181][ T44] page_owner tracks the page as allocated [ 606.594186][ T44] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112800(GFP_NOWAIT|__GFP_NORETRY|__GFP_HARDWALL), pid 17438, tgid 17437 (syz.3.3695), ts 606585453284, free_ts 606048974314 [ 606.594202][ T44] post_alloc_hook+0x2d1/0x350 [ 606.594231][ T44] get_page_from_freelist+0x1351/0x2e50 [ 606.594240][ T44] __alloc_pages_noprof+0x22b/0x2460 [ 606.594249][ T44] alloc_pages_mpol_noprof+0x275/0x610 [ 606.594260][ T44] z3fold_zpool_malloc+0x853/0x14f0 [ 606.594270][ T44] zswap_store+0x11b5/0x22b0 [ 606.600446][ T1106] ------------[ cut here ]------------ [ 606.602663][ T44] swap_writepage+0x8a/0x1e0 [ 606.606089][ T1106] kernel BUG at lib/list_debug.c:29! [ 606.606112][ T1106] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 606.609620][ T44] pageout+0x399/0xa10 [ 606.617376][ T9] usb 6-1: USB disconnect, device number 28 [ 606.623651][ T1106] CPU: 3 UID: 0 PID: 1106 Comm: kworker/u32:7 Not tainted 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 606.623674][ T1106] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 606.623686][ T1106] Workqueue: zswap1 compact_page_work [ 606.623708][ T1106] RIP: 0010:__list_add_valid_or_report+0xa9/0x100 [ 606.625870][ T44] shrink_folio_list+0x3145/0x41e0 [ 606.633278][ T1106] Code: fb b0 8b e8 59 68 de fc 90 0f 0b 48 c7 c7 60 fc b0 8b e8 4a 68 de fc 90 0f 0b 48 89 d9 48 c7 c7 c0 fc b0 8b e8 38 68 de fc 90 <0f> 0b 48 89 f1 48 c7 c7 40 fd b0 8b 48 89 de e8 23 68 de fc 90 0f [ 606.633297][ T1106] RSP: 0018:ffffc90005d2fbf8 EFLAGS: 00010286 [ 606.633311][ T1106] RAX: 0000000000000075 RBX: ffff88802fef5000 RCX: ffffffff816c5a79 [ 606.633324][ T1106] RDX: 0000000000000000 RSI: ffffffff816ceeb6 RDI: 0000000000000005 [ 606.635396][ T44] evict_folios+0x6e0/0x1b30 [ 606.637602][ T1106] RBP: ffff888024213000 R08: 0000000000000005 R09: 0000000000000000 [ 606.637615][ T1106] R10: 0000000000000002 R11: 0000000000000293 R12: ffff88802fef5000 [ 606.637626][ T1106] R13: ffff8880242130b0 R14: ffffea00009084c0 R15: ffff888024213008 [ 606.637639][ T1106] FS: 0000000000000000(0000) GS:ffff88806a900000(0000) knlGS:0000000000000000 [ 606.637669][ T1106] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 606.639897][ T44] try_to_shrink_lruvec+0x612/0x9b0 [ 606.642094][ T1106] CR2: 000000110c35107b CR3: 000000004352c000 CR4: 0000000000350ef0 [ 606.644253][ T44] shrink_lruvec+0x2d7/0x2990 [ 606.646157][ T1106] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 606.648295][ T44] shrink_node+0x8a2/0x3980 [ 606.650099][ T1106] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 606.650113][ T1106] Call Trace: [ 606.652084][ T44] do_try_to_free_pages+0x35f/0x1a30 [ 606.655534][ T1106] [ 606.655544][ T1106] ? show_regs+0x8c/0xa0 [ 606.655571][ T1106] ? die+0x36/0xa0 [ 606.655595][ T1106] ? do_trap+0x232/0x430 [ 606.655615][ T1106] ? __list_add_valid_or_report+0xa9/0x100 [ 606.655642][ T1106] ? __list_add_valid_or_report+0xa9/0x100 [ 606.655664][ T1106] ? do_error_trap+0xf4/0x230 [ 606.655684][ T1106] ? __list_add_valid_or_report+0xa9/0x100 [ 606.655710][ T1106] ? handle_invalid_op+0x34/0x40 [ 606.655729][ T1106] ? __list_add_valid_or_report+0xa9/0x100 [ 606.655753][ T1106] ? exc_invalid_op+0x2e/0x50 [ 606.655783][ T1106] ? asm_exc_invalid_op+0x1a/0x20 [ 606.655802][ T1106] ? __wake_up_klogd.part.0+0x99/0xf0 [ 606.655828][ T1106] ? vprintk+0x86/0xa0 [ 606.655844][ T1106] ? __list_add_valid_or_report+0xa9/0x100 [ 606.655869][ T1106] ? __list_add_valid_or_report+0xa8/0x100 [ 606.655892][ T1106] do_compact_page+0x10f2/0x27b0 [ 606.655921][ T1106] process_one_work+0x9c5/0x1b40 [ 606.655952][ T1106] ? __pfx_lock_acquire+0x10/0x10 [ 606.655974][ T1106] ? __pfx_process_one_work+0x10/0x10 [ 606.656003][ T1106] ? assign_work+0x1a0/0x250 [ 606.656025][ T1106] worker_thread+0x6c8/0xed0 [ 606.656055][ T1106] ? __pfx_worker_thread+0x10/0x10 [ 606.656077][ T1106] kthread+0x2c1/0x3a0 [ 606.656096][ T1106] ? _raw_spin_unlock_irq+0x23/0x50 [ 606.656118][ T1106] ? __pfx_kthread+0x10/0x10 [ 606.656135][ T1106] ret_from_fork+0x45/0x80 [ 606.656159][ T1106] ? __pfx_kthread+0x10/0x10 [ 606.656178][ T1106] ret_from_fork_asm+0x1a/0x30 [ 606.656205][ T1106] [ 606.656211][ T1106] Modules linked in: [ 606.656507][ T1106] ---[ end trace 0000000000000000 ]--- [ 606.656518][ T1106] RIP: 0010:__list_add_valid_or_report+0xa9/0x100 [ 606.656546][ T1106] Code: fb b0 8b e8 59 68 de fc 90 0f 0b 48 c7 c7 60 fc b0 8b e8 4a 68 de fc 90 0f 0b 48 89 d9 48 c7 c7 c0 fc b0 8b e8 38 68 de fc 90 <0f> 0b 48 89 f1 48 c7 c7 40 fd b0 8b 48 89 de e8 23 68 de fc 90 0f [ 606.656563][ T1106] RSP: 0018:ffffc90005d2fbf8 EFLAGS: 00010286 [ 606.656578][ T1106] RAX: 0000000000000075 RBX: ffff88802fef5000 RCX: ffffffff816c5a79 [ 606.656591][ T1106] RDX: 0000000000000000 RSI: ffffffff816ceeb6 RDI: 0000000000000005 [ 606.656603][ T1106] RBP: ffff888024213000 R08: 0000000000000005 R09: 0000000000000000 [ 606.656614][ T1106] R10: 0000000000000002 R11: 0000000000000293 R12: ffff88802fef5000 [ 606.656626][ T1106] R13: ffff8880242130b0 R14: ffffea00009084c0 R15: ffff888024213008 [ 606.656639][ T1106] FS: 0000000000000000(0000) GS:ffff88806a900000(0000) knlGS:0000000000000000 [ 606.658919][ T44] try_to_free_mem_cgroup_pages+0x31a/0x7f0 [ 606.658969][ T44] try_charge_memcg+0x356/0xaf0 [ 606.658992][ T44] page last free pid 17455 tgid 17454 stack trace: [ 606.659003][ T44] free_unref_page+0x64a/0xe40 [ 606.659047][ T44] __folio_put+0x31c/0x3e0 [ 606.659061][ T44] free_page_and_swap_cache+0x249/0x2c0 [ 606.659080][ T44] tlb_remove_table_rcu+0x89/0xe0 [ 606.659119][ T44] rcu_core+0x828/0x16b0 [ 606.659161][ T44] handle_softirqs+0x216/0x8f0 [ 606.659179][ T44] irq_exit_rcu+0xbb/0x120 [ 606.659195][ T44] sysvec_apic_timer_interrupt+0x95/0xb0 [ 606.659216][ T44] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 606.659368][ T44] ------------[ cut here ]------------ [ 606.659374][ T44] kernel BUG at mm/z3fold.c:1293! [ 606.659390][ T44] Oops: invalid opcode: 0000 [#2] PREEMPT SMP KASAN NOPTI [ 606.659408][ T44] CPU: 1 UID: 0 PID: 44 Comm: kcompactd0 Tainted: G D 6.11.0-rc6-syzkaller-00326-gd1f2d51b711a #0 [ 606.659431][ T44] Tainted: [D]=DIE [ 606.659437][ T44] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 606.659447][ T44] RIP: 0010:z3fold_page_migrate+0xc37/0x12d0 [ 606.659468][ T44] Code: 34 96 ff 48 c7 c6 60 2d 5d 8b 48 89 ef e8 41 b8 da ff 90 0f 0b e8 49 34 96 ff 48 c7 c6 c0 2d 5d 8b 48 89 ef e8 2a b8 da ff 90 <0f> 0b e8 32 34 96 ff 48 8d bb a0 00 00 00 48 b8 00 00 00 00 00 fc [ 606.659492][ T44] RSP: 0018:ffffc900009c74b0 EFLAGS: 00010293 [ 606.659507][ T44] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 606.659517][ T44] RDX: ffff88801b7ec880 RSI: ffffffff81f59c16 RDI: ffff88801b7eccc4 [ 606.659529][ T44] RBP: ffffea00009084c0 R08: 0000000000000000 R09: 0000000000000000 [ 606.659540][ T44] R10: ffffffff90144c5f R11: 1ffff11005f5d08a R12: ffffea00017655c0 [ 606.659552][ T44] R13: ffffea00009084e8 R14: 0000000000000001 R15: ffffea00009084d8 [ 606.662127][ T1106] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 606.665732][ T44] FS: 0000000000000000(0000) GS:ffff88806a700000(0000) knlGS:0000000000000000 [ 606.670434][ T1106] CR2: 000000110c35107b CR3: 000000004352c000 CR4: 0000000000350ef0 [ 606.672449][ T44] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 606.675287][ T1106] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 606.677267][ T44] CR2: 000000110c37095d CR3: 0000000063536000 CR4: 0000000000350ef0 [ 606.677277][ T44] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 606.677283][ T44] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 606.677289][ T44] Call Trace: [ 606.685632][ T1106] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 606.687752][ T44] [ 606.687759][ T44] ? show_regs+0x8c/0xa0 [ 606.687777][ T44] ? die+0x36/0xa0 [ 606.687790][ T44] ? do_trap+0x232/0x430 [ 606.687802][ T44] ? z3fold_page_migrate+0xc37/0x12d0 [ 606.687814][ T44] ? rcu_is_watching+0x12/0xc0 [ 606.687830][ T44] ? z3fold_page_migrate+0xc37/0x12d0 [ 606.687840][ T44] ? do_error_trap+0xf4/0x230 [ 606.687852][ T44] ? z3fold_page_migrate+0xc37/0x12d0 [ 606.687863][ T44] ? handle_invalid_op+0x34/0x40 [ 606.691117][ T1106] Kernel panic - not syncing: Fatal exception [ 606.695074][ T1106] Kernel Offset: disabled [ 606.949567][ T1106] Rebooting in 86400 seconds.. VM DIAGNOSIS: 02:46:21 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=ffff88806a944b80 RCX=ffffffff817f9bab RDX=ffff88801e6f0000 RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc90000987900 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=ffffed100d528971 R13=0000000000000001 R14=ffff88806a944b88 R15=ffff88806a63ffc0 RIP=ffffffff818bd15b RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000002005c000 CR3=000000000db7c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00327265636e6575 7165732f7665642f ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6a211efe6a ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6a211efe77 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6a211efe71 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6a211efe85 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6a211eff0b ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6a211effe9 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c6cd10088a2d44e 6e25ab2e34f4656c 005f636e79922f73 0000347600002f74 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6a21e6d100 00007f6a212ff440 00007f6a212f0004 0008000f0010000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6a212ff498 00007f6a212ff490 00007f6a212ff488 00007f6a212ff480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 0000000000000000 0000000000000000 00000000000001b4 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=dffffc0000000000 RBX=ffffc900008b0698 RCX=ffffffff813ce424 RDX=1ffffffff2161b8d RSI=ffffffff813cf4b2 RDI=0000000000000006 RBP=0000000000000001 RSP=ffffc900008b0618 R8 =0000000000000006 R9 =ffffffff81d054c9 R10=ffffffff81d054cb R11=ffffc900008b0ff8 R12=ffffffff90b0dc66 R13=ffffffff90b0dc6b R14=000000000002f104 R15=ffffc900008b06cd RIP=ffffffff813cf4c8 RFL=00000a06 [-O---P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000110c37095d CR3=0000000063536000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00327265636e6575 7165732f7665642f ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6a211efe6a ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6a211efe77 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6a211efe71 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6a211efe85 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6a211eff0b ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6a211effe9 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c6cd10088a2d44e 6e25ab2e34f4656c 005f636e79922f73 0000347600002f74 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6a21e6d100 00007f6a212ff440 00007f6a212f0004 0008000f0010000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6a212ff498 00007f6a212ff490 00007f6a212ff488 00007f6a212ff480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 0000000000000000 0000000000000000 00000000000001b4 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000000 RBX=0000000000000080 RCX=ffffffff8a8c3e16 RDX=ffff88802faea440 RSI=ffffffff8c9e3f40 RDI=0000000000000080 RBP=ffff888011fc7350 RSP=ffffc900008587c8 R8 =0000000000000005 R9 =0000000000000001 R10=0000000000000001 R11=ffff88806a829418 R12=0000000000000080 R13=ffff88802b460500 R14=dffffc0000000000 R15=ffffc90000858d20 RIP=ffffffff818bd2fe RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 0000555556355500 ffffffff 00c00000 GS =0000 ffff88806a800000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f8397932000 CR3=000000004352c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f83977efe6a ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f83977efe77 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f83977efe71 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f83977efe85 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f83977eff0b ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f83977effe9 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f83978ff488 00007f83978ff480 00007f83978ff478 00007f83978ff450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f839846d100 00007f83978ff440 00007f83978f0004 0000000b000c000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f83978ff498 00007f83978ff490 00007f83978ff488 00007f83978ff480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 00000000000000a0 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000000 RBX=000000000000004c RCX=ffffffff816cbe71 RDX=ffff888027fc8000 RSI=ffffffff816cbe5f RDI=0000000000000001 RBP=0000000000000001 RSP=ffffc90005d2f8a0 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=6e69203a73706f4f R12=0000000000000200 R13=ffff88801b7ec880 R14=ffffffff8b45e9e0 R15=ffffc90005d2f920 RIP=ffffffff816cbe61 RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a900000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000110c35107b CR3=000000004352c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000004000 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe1798a400 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f695a3efe6a ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f695a3efe77 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f695a3efe71 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f695a3efe85 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f695a3eff0b ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f695a3effe9 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000