last executing test programs: 14.579938428s ago: executing program 3 (id=3234): socket$igmp6(0xa, 0x3, 0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r4 = socket$l2tp6(0xa, 0x2, 0x73) bind$inet6(r4, 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x53, 0x202, 0x1, 0xc}) bpf$PROG_LOAD(0x5, 0x0, 0x0) r5 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff) r6 = add_key$user(&(0x7f0000000380), &(0x7f0000000000)={'syz', 0x0}, &(0x7f0000000580)='X', 0x1, 0xfffffffffffffffe) r7 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000080)={r6, r7, r5}, 0x0, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00') r8 = socket(0x1, 0x803, 0x0) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x10000, 0x100}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9}, {0x4}}}, @IFLA_MASTER={0x8, 0x3, r9}]}, 0x3c}}, 0x24000840) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) r10 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r10, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x8, 0x0, 0x80}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 13.700725361s ago: executing program 3 (id=3238): socket$igmp6(0xa, 0x3, 0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r2 = socket$l2tp6(0xa, 0x2, 0x73) bind$inet6(r2, 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x53, 0x202, 0x1, 0xc}) bpf$PROG_LOAD(0x5, 0x0, 0x0) r3 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff) r4 = add_key$user(&(0x7f0000000380), &(0x7f0000000000)={'syz', 0x0}, &(0x7f0000000580)='X', 0x1, 0xfffffffffffffffe) r5 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000080)={r4, r5, r3}, 0x0, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00') r6 = socket(0x1, 0x803, 0x0) getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x10000, 0x100}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9}, {0x4}}}, @IFLA_MASTER={0x8, 0x3, r7}]}, 0x3c}}, 0x24000840) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x8, 0x0, 0x80}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 13.296297622s ago: executing program 3 (id=3241): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x4206, r0) tkill(r0, 0x12) ptrace(0x4208, r0) ptrace$cont(0x20, r0, 0x6, 0x101) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) waitid(0x2, 0x0, 0x0, 0x61000006, 0x0) 12.968820414s ago: executing program 3 (id=3243): mkdir(&(0x7f0000000580)='./file0\x00', 0x92) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x185093, 0x0) mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) mount$tmpfs(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x20000, 0x0) move_mount(r0, &(0x7f0000008080)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x152) 12.968146759s ago: executing program 3 (id=3245): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10) syslog(0x2, &(0x7f00000004c0)=""/164, 0xa4) openat(0xffffffffffffff9c, 0x0, 0x143042, 0x20) 12.770354747s ago: executing program 3 (id=3247): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) r2 = socket$rds(0x15, 0x5, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, 0x0, 0x0) bind$inet6(0xffffffffffffffff, 0x0, 0x0) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e1e}, 0x2) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r5 = syz_open_dev$vim2m(&(0x7f0000000280), 0x1800, 0x2) ppoll(&(0x7f0000000300)=[{r5, 0x2007}], 0x1, 0x0, 0x0, 0x0) sendmsg(r4, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r6 = openat$dsp(0xffffffffffffff9c, 0x0, 0x42, 0x0) write$dsp(r6, &(0x7f0000000200)="00398e465e5bc09254a9afcbe49567c300c4c0", 0x13) socket$kcm(0x2d, 0x2, 0x0) syz_usb_connect(0x0, 0x24, 0x0, 0x0) r7 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r7, 0xc004500a, &(0x7f0000000080)) ioctl$SNDCTL_DSP_SPEED(r7, 0xc0045002, &(0x7f0000000040)=0xdfe5) write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000500)={0xa00, 0x18, 0xfa00, {0x100000000000000, 0x0}}, 0xfc36) r8 = openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r8, 0xae01, 0x1) bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10) sendmsg$rds(r2, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0) setsockopt$RDS_CANCEL_SENT_TO(r2, 0x114, 0x1, &(0x7f0000000100), 0x10) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000002c0)=[{{&(0x7f0000004540)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x80, &(0x7f0000000240)=[{&(0x7f00000045c0)=""/254, 0xfe}], 0x1}, 0x1}], 0x1, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1700000107000000000000000010000000000000", @ANYRES32, @ANYBLOB='*\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000100"/28], 0x50) 12.655715156s ago: executing program 32 (id=3247): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) r2 = socket$rds(0x15, 0x5, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, 0x0, 0x0) bind$inet6(0xffffffffffffffff, 0x0, 0x0) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e1e}, 0x2) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r5 = syz_open_dev$vim2m(&(0x7f0000000280), 0x1800, 0x2) ppoll(&(0x7f0000000300)=[{r5, 0x2007}], 0x1, 0x0, 0x0, 0x0) sendmsg(r4, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r6 = openat$dsp(0xffffffffffffff9c, 0x0, 0x42, 0x0) write$dsp(r6, &(0x7f0000000200)="00398e465e5bc09254a9afcbe49567c300c4c0", 0x13) socket$kcm(0x2d, 0x2, 0x0) syz_usb_connect(0x0, 0x24, 0x0, 0x0) r7 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r7, 0xc004500a, &(0x7f0000000080)) ioctl$SNDCTL_DSP_SPEED(r7, 0xc0045002, &(0x7f0000000040)=0xdfe5) write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000500)={0xa00, 0x18, 0xfa00, {0x100000000000000, 0x0}}, 0xfc36) r8 = openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r8, 0xae01, 0x1) bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10) sendmsg$rds(r2, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0) setsockopt$RDS_CANCEL_SENT_TO(r2, 0x114, 0x1, &(0x7f0000000100), 0x10) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000002c0)=[{{&(0x7f0000004540)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x80, &(0x7f0000000240)=[{&(0x7f00000045c0)=""/254, 0xfe}], 0x1}, 0x1}], 0x1, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1700000107000000000000000010000000000000", @ANYRES32, @ANYBLOB='*\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000100"/28], 0x50) 4.348522266s ago: executing program 4 (id=3313): mkdir(&(0x7f0000000100)='./file0\x00', 0x0) mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x0, 0x0) chdir(&(0x7f0000000000)='./file0\x00') r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000700000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='ext4_es_lookup_extent_enter\x00', r0}, 0x10) bpf$OBJ_PIN_PROG(0x6, &(0x7f00000000c0)=@generic={&(0x7f0000000080)='./file0\x00', r1}, 0x18) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000400)=@generic={&(0x7f0000000280)='./file0\x00', 0x0, 0x8}, 0x18) 4.20036067s ago: executing program 4 (id=3314): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x210000000013, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10) rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8) setpriority(0x0, 0x0, 0x10000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) ioperm(0x9, 0x2, 0x8000000000000001) 4.200181746s ago: executing program 4 (id=3315): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10, 0x1, {0x0, 0xfffffffe, 0x4}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8001}, 0x20008850) sendmsg$nl_route_sched(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000013c0)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd28, 0xfffff000, {0x0, 0x0, 0x0, r3, {0xf000, 0xffff}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0x14, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0x17, 0xc}}, @TCA_MATCHALL_FLAGS={0x8}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x200c8000) 4.050577223s ago: executing program 4 (id=3316): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x183081, 0x0) close(r1) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000500)={'syzkaller0\x00', @link_local}) write$cgroup_subtree(r0, &(0x7f0000000380)=ANY=[@ANYBLOB="8fedcb5d07081196f37538e486dd6372ce22667f2c"], 0x280) 2.331661941s ago: executing program 4 (id=3327): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x5, @ipv4={'\x00', '\xff\xff', @empty}, 0x4}, 0x1c) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x659, @empty, 0xff}, 0x1c) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000100), 0x4) r1 = fcntl$dupfd(r0, 0x406, r0) write$cgroup_pid(r1, 0x0, 0x0) read$FUSE(r1, &(0x7f0000002600)={0x2020}, 0x203f) 2.267897456s ago: executing program 4 (id=3329): syz_usb_connect(0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x300000000000000, 0x0, 0x4004}, 0x0) r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_PORT_GET(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x38, r3, 0x1, 0x0, 0x0, {0x54}, [{{@pci={{0x8}, {0x11}}, {0x8}}}]}, 0x38}}, 0x0) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f00000001c0)={0x0}) ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_FD(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000200)={r5}) r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r7 = socket$kcm(0x10, 0x2, 0x0) open_by_handle_at(r7, &(0x7f0000000540)=@nfs={0x90, 0x24, {0xcfed, 0x100, 0x0, 0x80, "89a9fa62a990e471a4757fd7716a05eebd81e9d85f5ad8eaa294d1bd61380e0b38374dcabb480ee956cf6351466ffdcaba817434712aef991f4c706e3a2513213883d2d8456a4795ce8e66181daf0488df7b737b33a63d581bd10c48917857649f79cdb083c776e3db4de203d70af5948b9bae83efa84afe5b8e7257c0d5c930"}}, 0x3) sendmsg$inet(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000000)="1700000015006b05c84e21000ab16d6e230675f8020000", 0x17}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000001a40)=@raw={'raw\x00', 0x8, 0x3, 0x310, 0x0, 0xe138, 0x198, 0x0, 0x198, 0x278, 0x358, 0x358, 0x278, 0x358, 0x3, 0x0, {[{{@ip={@broadcast, @loopback, 0x0, 0x0, 'netdevsim0\x00', 'veth0_to_bond\x00'}, 0x0, 0x130, 0x198, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'fsm\x00', "0d0080ff0000050000000404fff0cf81dfd28c89544e14cd3e01dd24289831867846c88621039b284c3ff45c42995560a99952bed40cf5a8c1df6cdbdb7e2378d5afd35f4c16827f55b3af494e39e8fb330200000000000032b6a99a8d87298e88a94cb519f5c17631af916a0002000000000000000000000000000000000049", 0x4}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x98, 0xe0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x370) r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1) r9 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0) r10 = dup(r9) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r10, 0x2000) madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17) open_by_handle_at(r6, &(0x7f0000000240)=ANY=[@ANYBLOB="280000004e000010cc000000000000000180e127d6fb000000822d0cfc0000000000000000000000ff7fffffffffd70e8cb3974479ee000000000636b6428b85551445fd5b3dc47e68ade701be286e7aa4613038a31f386ac23e87fadc61"], 0x10000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x9) ioctl$KVM_PRE_FAULT_MEMORY(r8, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000}) 1.952445359s ago: executing program 1 (id=3342): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x2300, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001040)=@newtfilter={0x5c, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r3, {0x8, 0xfff3}, {}, {0xa, 0xfff3}}, [@filter_kind_options=@f_flower={{0xb}, {0x2c, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x10, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x2}]}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x18, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x100c}]}]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x22044028}, 0x0) 1.738200843s ago: executing program 1 (id=3346): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_GUEST_DEBUG_x86(r2, 0x4048ae9b, &(0x7f00000000c0)={0x60003, 0x0, {[0x6, 0x0, 0x80, 0xf000000, 0x8001, 0xffffffffffffffff, 0x9, 0xe]}}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000780)={0x2, 0x0, @ioapic={0xffff1000, 0x7, 0x22, 0x7ff, 0x0, [{0x40, 0xfa, 0x4d, '\x00', 0xff}, {0x9, 0x5, 0x3, '\x00', 0xf1}, {0x2, 0x6, 0x3, '\x00', 0x6}, {0xeb, 0x9, 0x22, '\x00', 0x2}, {0xf7, 0x6, 0x10, '\x00', 0x1}, {0x3, 0x4, 0x7, '\x00', 0xff}, {0x10, 0x81, 0x9, '\x00', 0x7}, {0x80, 0x3, 0xc, '\x00', 0x6}, {0x40, 0x65, 0x4, '\x00', 0x3}, {0x1, 0xfe, 0x4, '\x00', 0x7}, {0x3, 0x5, 0x2, '\x00', 0xff}, {0x0, 0x7, 0x6, '\x00', 0x42}, {0x5, 0x6, 0xff, '\x00', 0x1}, {0xc, 0x37, 0x9, '\x00', 0x6}, {0xcc, 0xd1, 0x0, '\x00', 0x15}, {0xa2, 0x1, 0xa7, '\x00', 0x3}, {0x80, 0x7, 0x2, '\x00', 0xe}, {0xa5, 0x4, 0x5, '\x00', 0x6}, {0x42, 0x9d, 0x8, '\x00', 0xf}, {0x1, 0x1, 0x11, '\x00', 0x50}, {0x9, 0x3, 0x2, '\x00', 0x5}, {0x4, 0x7, 0x0, '\x00', 0x2}, {0x9, 0x0, 0x5, '\x00', 0x3d}, {0x4, 0x4, 0x1, '\x00', 0x4}]}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1.268900464s ago: executing program 1 (id=3350): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r2, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.160193522s ago: executing program 1 (id=3352): mkdir(&(0x7f0000000140)='./file1\x00', 0x1bb) mount(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f00000002c0)='tmpfs\x00', 0x8, &(0x7f0000000300)='usrquota') chdir(&(0x7f0000000280)='./file1\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0xfffffecc) quotactl_fd$Q_SETQUOTA(r0, 0xffffffff80000800, 0x0, &(0x7f00000003c0)={0x0, 0x5, 0x1000, 0x476, 0x0, 0x7f, 0x3, 0xffffffffffffffff, 0x6}) fchown(r0, 0xee01, 0x0) 1.010462967s ago: executing program 0 (id=3353): r0 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r0, &(0x7f00000003c0)={0x10, 0x0, 0x1, 0x2ffffffff}, 0xc) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c) listen(r1, 0xfffffffc) r2 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) 904.684597ms ago: executing program 1 (id=3354): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000) r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000600)=ANY=[@ANYBLOB="0201000000000010ac05418200000000000109022400010000000009040000110300000009210000000122050009058103"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000140)=ANY=[@ANYBLOB="000008000000080482"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) ioctl$EVIOCSKEYCODE_V2(r1, 0x40284504, &(0x7f0000000080)={0x73, 0x18, 0x4, 0x0, "d80004000000000000957f00003d4a100a000000000020020661e6e66b8b37ff"}) 560.638485ms ago: executing program 2 (id=3360): r0 = userfaultfd(0x801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2}) ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005cf000/0x4000)=nil, 0x400000, 0x2, 0x2}) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) r1 = syz_open_procfs(0x0, &(0x7f0000000580)='smaps_rollup\x00') preadv(r1, &(0x7f0000000140)=[{&(0x7f0000000040)=""/7, 0x7}], 0x1, 0xe7, 0xf) 370.130601ms ago: executing program 2 (id=3361): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(aes))\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000340)="71e67a15cdf0311cfcf33a52a7d86bd1", 0x10) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) io_setup(0x42, &(0x7f0000000100)=0x0) io_submit(r2, 0x1, &(0x7f0000000580)=[&(0x7f0000000200)={0x1000000, 0x0, 0x700000000000000, 0x0, 0x0, r1, &(0x7f0000000000)="b1", 0x1, 0x0, 0x0, 0x2}]) sendmmsg$alg(r1, &(0x7f00000043c0)=[{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000005c0)='-', 0x1}], 0x1, &(0x7f00000000c0)=[@op={0x10, 0x117, 0x3, 0x1}], 0x10, 0x20040090}], 0x1, 0x0) 198.649737ms ago: executing program 2 (id=3362): r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000000)=0x17) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0xfffffffffffffffe, 0x9, 0x1fc, 0x0, 0x10000, 0xba8, 0xd, 0x1000, 0x4, 0x2, 0x3, 0xffffffff, 0x4, 0x2, 0xffffffffffffffff, 0x7fff], 0xdddd3000, 0x211380}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 197.86767ms ago: executing program 1 (id=3363): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$rxrpc(0x21, 0x2, 0xa) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) connect$bt_l2cap(r2, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe) r3 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$sock_bt_hidp_HIDPCONNADD(r3, 0x400448c8, &(0x7f0000000340)={r2, r2, 0x8, 0x0, 0x0, 0x9, 0x1, 0xc45, 0x1012, 0xc7, 0x2, 0x7, 'syz0\x00'}) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000180)={@private2, 0x800, 0x0, 0x2, 0x1}, 0x20) socket$nl_route(0x10, 0x3, 0x0) r4 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r4, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="020d8000100000000000000000000000080012000200020000000000000000000600320003000000000020000000000010003300000000000000000000000000fc0200"/80], 0x80}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8b37, &(0x7f0000000000)={'wlan1\x00'}) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000040)={0x58, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x3}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x3}]}, 0x58}, 0x1, 0x0, 0x0, 0x24000000}, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) 197.747878ms ago: executing program 2 (id=3364): r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) write$binfmt_misc(r0, &(0x7f0000000240), 0xfffffecc) r1 = syz_open_dev$vcsa(&(0x7f0000000300), 0x1, 0x102) bind$inet(0xffffffffffffffff, 0x0, 0x0) mkdirat(0xffffffffffffff9c, 0x0, 0x0) getpid() write$vga_arbiter(r1, &(0x7f0000000000)=@unlock_all, 0xb) 140.309795ms ago: executing program 0 (id=3365): unshare(0x8030180) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000040)=0x90000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000000)={@local}) ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r1, 0x7a8, &(0x7f0000000540)={{@hyper, 0x2}, @hyper, 0x0, 0x0, 0x5e}) ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(0xffffffffffffffff, 0x7a8, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 140.123427ms ago: executing program 2 (id=3366): r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xa0000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x0, 0x1}) r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000080)=0xb0000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000000)={@hyper, 0x1}) ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r1, 0x7a5, &(0x7f00000000c0)={{@my=0x0}, 0x1}) 139.647234ms ago: executing program 0 (id=3367): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mkdir(&(0x7f0000000100)='./file1\x00', 0x13b) mkdir(&(0x7f0000000040)='./bus\x00', 0x34) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) chdir(&(0x7f0000000140)='./bus\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) lseek(r0, 0x2, 0x0) getdents64(r0, 0x0, 0x0) 139.299683ms ago: executing program 2 (id=3368): socket$igmp6(0xa, 0x3, 0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r4 = socket$l2tp6(0xa, 0x2, 0x73) bind$inet6(r4, 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x53, 0x202, 0x1, 0xc}) bpf$PROG_LOAD(0x5, 0x0, 0x0) r5 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff) r6 = add_key$user(&(0x7f0000000380), &(0x7f0000000000)={'syz', 0x0}, &(0x7f0000000580)='X', 0x1, 0xfffffffffffffffe) r7 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000080)={r6, r7, r5}, 0x0, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00') r8 = socket(0x1, 0x803, 0x0) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x10000, 0x100}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9}, {0x4}}}, @IFLA_MASTER={0x8, 0x3, r9}]}, 0x3c}}, 0x24000840) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) r10 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r10, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x8, 0x0, 0x80}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 70.312523ms ago: executing program 0 (id=3369): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r1, &(0x7f0000000000), 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000440)={'vxcan0\x00', 0x0}) sendmsg$can_bcm(r1, &(0x7f00000004c0)={&(0x7f0000000340)={0x1d, r2}, 0x10, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="01000000d6fe682c6100000000000000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000000004"], 0x20000600}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000400)={'vcan0\x00', 0x0}) sendmsg$can_bcm(r1, &(0x7f0000000480)={&(0x7f0000000380)={0x1d, r3, 0x0, 0x4000}, 0x10, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[], 0x80}, 0x1, 0x0, 0x0, 0x4000}, 0x4044001) 249.381µs ago: executing program 0 (id=3370): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0) getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000005c0)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=@delchain={0x24, 0x2e, 0x501, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff2, 0xffff}, {0x0, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0) 0s ago: executing program 0 (id=3371): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000010080)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000680)={{r0}, &(0x7f0000000040), &(0x7f0000000300)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r2}, 0x18) bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50) 0s ago: executing program 4 (id=3372): r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in={0x2, 0x4e21, @loopback}], 0x10) sendmsg$inet_sctp(r0, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000200)="fd", 0x1}], 0x1, 0x0, 0x0, 0x8008044}, 0x881) r1 = dup(r0) setsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f0000000000)=0xb, 0x4) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x106, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000440)={0x0, 0x18, 0xfa00, {0x4, 0x0, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r1, &(0x7f0000000180)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x4}}, 0x29fdf) kernel console output (not intermixed with test programs): syz.2.2011'. [ 766.564198][ T40] audit: type=1326 audit(1758376980.406:13128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16403 comm="syz.2.2011" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 766.574228][ T40] audit: type=1326 audit(1758376980.406:13129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16403 comm="syz.2.2011" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 766.616910][ T40] audit: type=1326 audit(1758376980.406:13130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16403 comm="syz.2.2011" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 766.635647][ T40] audit: type=1326 audit(1758376980.406:13131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16403 comm="syz.2.2011" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 766.645293][ T40] audit: type=1326 audit(1758376980.406:13132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16403 comm="syz.2.2011" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 766.664961][ T40] audit: type=1326 audit(1758376980.406:13133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16403 comm="syz.2.2011" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 766.674352][ T40] audit: type=1326 audit(1758376980.406:13134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16403 comm="syz.2.2011" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 766.708828][ T6471] usb usb44-port1: attempt power cycle [ 767.295154][ T6471] usb usb44-port1: unable to enumerate USB device [ 767.559246][T16417] all (unregistering): Released all slaves [ 767.763049][T16421] lo speed is unknown, defaulting to 1000 [ 767.767242][T16421] lo speed is unknown, defaulting to 1000 [ 767.770546][T16421] lo speed is unknown, defaulting to 1000 [ 767.906416][T16421] lo speed is unknown, defaulting to 1000 [ 768.266066][ T40] kauditd_printk_skb: 74 callbacks suppressed [ 768.266084][ T40] audit: type=1326 audit(1758376982.096:13209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16428 comm="syz.3.2016" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 768.278443][ T40] audit: type=1326 audit(1758376982.096:13210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16428 comm="syz.3.2016" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 768.304718][ T40] audit: type=1326 audit(1758376982.096:13211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16428 comm="syz.3.2016" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 768.334690][ T40] audit: type=1326 audit(1758376982.106:13212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16428 comm="syz.3.2016" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 768.351257][ T40] audit: type=1326 audit(1758376982.106:13213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16428 comm="syz.3.2016" exe="/syz-executor" sig=0 arch=40000003 syscall=133 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 768.394436][ T40] audit: type=1326 audit(1758376982.106:13214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16428 comm="syz.3.2016" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 768.402184][ T40] audit: type=1326 audit(1758376982.106:13215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16428 comm="syz.3.2016" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 768.411569][ T40] audit: type=1326 audit(1758376982.216:13216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16428 comm="syz.3.2016" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 768.418358][ T40] audit: type=1326 audit(1758376982.216:13217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16428 comm="syz.3.2016" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 768.430940][ T40] audit: type=1326 audit(1758376982.266:13218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16428 comm="syz.3.2016" exe="/syz-executor" sig=0 arch=40000003 syscall=103 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 769.002647][T16443] random: crng reseeded on system resumption [ 769.564904][T16454] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 769.574407][T16454] CIFS mount error: No usable UNC path provided in device string! [ 769.574407][T16454] [ 769.578050][T16454] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 769.658657][T16457] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 770.394722][ T5990] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 770.394791][T13339] Bluetooth: hci4: command 0x1003 tx timeout [ 770.730750][T16463] fuse: Unknown parameter 'group_id00000000000000000000' [ 771.134665][ T6058] usb 8-1: new high-speed USB device number 37 using dummy_hcd [ 771.615860][ T6058] usb 8-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config [ 771.619156][ T6058] usb 8-1: config 27 has 0 interfaces, different from the descriptor's value: 1 [ 771.622026][ T6058] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 771.624950][ T6058] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 771.935344][ T6058] usb 8-1: USB disconnect, device number 37 [ 772.139254][T16474] all (unregistering): Released all slaves [ 772.763205][T16483] fuse: Unknown parameter 'group_id00000000000000000000' [ 773.729665][T16482] sz1: rxe_newlink: already configured on lo [ 773.992100][ T40] kauditd_printk_skb: 43 callbacks suppressed [ 773.992114][ T40] audit: type=1326 audit(1758376987.846:13262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16487 comm="syz.3.2029" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 774.017568][ T40] audit: type=1326 audit(1758376987.866:13263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16487 comm="syz.3.2029" exe="/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 774.025155][ T40] audit: type=1326 audit(1758376987.866:13264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16487 comm="syz.3.2029" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 774.032698][ T40] audit: type=1326 audit(1758376987.866:13265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16487 comm="syz.3.2029" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 774.039820][ T40] audit: type=1326 audit(1758376987.866:13266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16487 comm="syz.3.2029" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 774.047779][ T40] audit: type=1326 audit(1758376987.866:13267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16487 comm="syz.3.2029" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 774.054930][ T40] audit: type=1326 audit(1758376987.866:13268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16487 comm="syz.3.2029" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 774.061654][ T40] audit: type=1326 audit(1758376987.866:13269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16487 comm="syz.3.2029" exe="/syz-executor" sig=0 arch=40000003 syscall=14 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 774.068399][ T40] audit: type=1326 audit(1758376987.866:13270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16487 comm="syz.3.2029" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 774.075232][ T40] audit: type=1326 audit(1758376987.866:13271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16487 comm="syz.3.2029" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 775.552153][T16510] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2033'. [ 775.563161][T16510] macvtap0: entered allmulticast mode [ 775.565994][T16510] veth0_macvtap: entered allmulticast mode [ 776.097404][T16523] random: crng reseeded on system resumption [ 776.643053][T16530] all (unregistering): Released all slaves [ 781.047923][ T40] kauditd_printk_skb: 62 callbacks suppressed [ 781.047940][ T40] audit: type=1326 audit(1758376994.906:13334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16599 comm="syz.2.2051" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 781.058767][ T40] audit: type=1326 audit(1758376994.906:13335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16599 comm="syz.2.2051" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 781.068391][ T40] audit: type=1326 audit(1758376994.906:13336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16599 comm="syz.2.2051" exe="/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 781.076513][ T40] audit: type=1326 audit(1758376994.906:13337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16599 comm="syz.2.2051" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 781.084379][ T40] audit: type=1326 audit(1758376994.906:13338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16599 comm="syz.2.2051" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 781.095113][ T40] audit: type=1326 audit(1758376994.906:13339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16599 comm="syz.2.2051" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 781.104188][ T40] audit: type=1326 audit(1758376994.906:13340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16599 comm="syz.2.2051" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 781.111778][ T40] audit: type=1326 audit(1758376994.906:13341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16599 comm="syz.2.2051" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 781.119120][ T40] audit: type=1326 audit(1758376994.906:13342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16599 comm="syz.2.2051" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 781.127712][ T40] audit: type=1326 audit(1758376994.906:13343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16599 comm="syz.2.2051" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 781.626458][T16612] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 781.632634][T16612] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 781.922804][T16619] fuse: Unknown parameter 'group_id00000000000000000000' [ 782.207005][T16628] fuse: Unknown parameter 'group_id00000000000000000000' [ 782.594990][ T6058] usb 8-1: new high-speed USB device number 38 using dummy_hcd [ 782.894784][T16636] random: crng reseeded on system resumption [ 782.916023][ T6058] usb 8-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config [ 782.920085][ T6058] usb 8-1: config 27 has 0 interfaces, different from the descriptor's value: 1 [ 782.923695][ T6058] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 782.927366][ T6058] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 783.146115][ T840] usb 8-1: USB disconnect, device number 38 [ 784.940507][T16652] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.2061'. [ 784.943550][T16652] netlink: zone id is out of range [ 784.945601][T16652] netlink: zone id is out of range [ 784.947469][T16652] netlink: get zone limit has 8 unknown bytes [ 785.110555][T16660] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 785.278790][T16660] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 785.406699][T16660] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 785.504524][T16660] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 785.605188][T16669] fuse: Unknown parameter 'group_id00000000000000000000' [ 785.692626][ T7071] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 785.718018][ T1180] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 785.765509][ T12] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 785.774514][ T12] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 785.939947][T16674] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2064'. [ 786.156100][T16681] netlink: 'syz.1.2066': attribute type 13 has an invalid length. [ 786.158925][T16681] netlink: 'syz.1.2066': attribute type 17 has an invalid length. [ 787.346799][T16681] syz.1.2066: vmalloc error: size 2625536, failed to allocated page array size 5128, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 787.355040][T16681] CPU: 2 UID: 0 PID: 16681 Comm: syz.1.2066 Not tainted syzkaller #0 PREEMPT(full) [ 787.355055][T16681] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 787.355061][T16681] Call Trace: [ 787.355065][T16681] [ 787.355069][T16681] dump_stack_lvl+0x16c/0x1f0 [ 787.355090][T16681] warn_alloc+0x248/0x3a0 [ 787.355105][T16681] ? __pfx_warn_alloc+0x10/0x10 [ 787.355123][T16681] ? pfifo_fast_change_tx_queue_len+0x156/0xbb0 [ 787.355139][T16681] ? __vmalloc_node_noprof+0xad/0xf0 [ 787.355151][T16681] __vmalloc_node_range_noprof+0x101b/0x14b0 [ 787.355166][T16681] ? pfifo_fast_change_tx_queue_len+0x156/0xbb0 [ 787.355184][T16681] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 787.355197][T16681] ? ___kmalloc_large_node+0xed/0x160 [ 787.355216][T16681] __kvmalloc_node_noprof+0x30a/0x620 [ 787.355228][T16681] ? pfifo_fast_change_tx_queue_len+0x156/0xbb0 [ 787.355245][T16681] ? pfifo_fast_change_tx_queue_len+0x156/0xbb0 [ 787.355262][T16681] ? pfifo_fast_change_tx_queue_len+0x156/0xbb0 [ 787.355277][T16681] pfifo_fast_change_tx_queue_len+0x156/0xbb0 [ 787.355298][T16681] ? __pfx_pfifo_fast_change_tx_queue_len+0x10/0x10 [ 787.355312][T16681] ? dev_deactivate+0x15c/0x1c0 [ 787.355331][T16681] ? __pfx_pfifo_fast_change_tx_queue_len+0x10/0x10 [ 787.355345][T16681] dev_qdisc_change_tx_queue_len+0x166/0x380 [ 787.355365][T16681] netif_change_tx_queue_len+0x1a1/0x1e0 [ 787.355382][T16681] ? __pfx_netif_change_tx_queue_len+0x10/0x10 [ 787.355400][T16681] ? netif_change_flags+0x10d/0x160 [ 787.355417][T16681] do_setlink.constprop.0+0xd00/0x4380 [ 787.355439][T16681] ? __pfx_do_setlink.constprop.0+0x10/0x10 [ 787.355455][T16681] ? find_held_lock+0x2b/0x80 [ 787.355468][T16681] ? rcu_is_watching+0x12/0xc0 [ 787.355479][T16681] ? trace_sched_exit_tp+0xd1/0x120 [ 787.355505][T16681] ? __schedule+0x11a3/0x5de0 [ 787.355528][T16681] ? __pfx___schedule+0x10/0x10 [ 787.355542][T16681] ? trace_contention_end+0xdd/0x130 [ 787.355557][T16681] ? __nla_validate_parse+0x600/0x2880 [ 787.355575][T16681] ? irqentry_exit+0x3b/0x90 [ 787.355590][T16681] ? lockdep_hardirqs_on+0x7c/0x110 [ 787.355612][T16681] rtnl_newlink+0x18e0/0x2000 [ 787.355626][T16681] ? __pfx_rtnl_newlink+0x10/0x10 [ 787.355637][T16681] ? __lock_acquire+0xb97/0x1ce0 [ 787.355658][T16681] ? find_held_lock+0x2b/0x80 [ 787.355670][T16681] ? rcu_is_watching+0x12/0xc0 [ 787.355679][T16681] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 787.355694][T16681] ? lockdep_hardirqs_on+0x7c/0x110 [ 787.355709][T16681] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 787.355724][T16681] ? rcu_preempt_deferred_qs_irqrestore+0x500/0xbc0 [ 787.355743][T16681] ? __pfx_rtnl_newlink+0x10/0x10 [ 787.355753][T16681] rtnetlink_rcv_msg+0x95e/0xe90 [ 787.355764][T16681] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 787.355777][T16681] ? __lock_acquire+0x62e/0x1ce0 [ 787.355793][T16681] netlink_rcv_skb+0x155/0x420 [ 787.355812][T16681] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 787.355823][T16681] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 787.355844][T16681] ? netlink_deliver_tap+0x1ae/0xd30 [ 787.355859][T16681] ? is_vmalloc_addr+0x86/0xa0 [ 787.355873][T16681] netlink_unicast+0x5aa/0x870 [ 787.355892][T16681] ? __pfx_netlink_unicast+0x10/0x10 [ 787.355908][T16681] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 787.356023][T16681] netlink_sendmsg+0x8d1/0xdd0 [ 787.356049][T16681] ? __pfx_netlink_sendmsg+0x10/0x10 [ 787.356079][T16681] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 787.356103][T16681] ____sys_sendmsg+0xa95/0xc70 [ 787.356117][T16681] ? __pfx_____sys_sendmsg+0x10/0x10 [ 787.356128][T16681] ? get_compat_msghdr+0x11a/0x170 [ 787.356146][T16681] ? __pfx_futex_wake_mark+0x10/0x10 [ 787.356165][T16681] ___sys_sendmsg+0x134/0x1d0 [ 787.356182][T16681] ? __pfx____sys_sendmsg+0x10/0x10 [ 787.356204][T16681] ? find_held_lock+0x2b/0x80 [ 787.356223][T16681] __sys_sendmsg+0x16d/0x220 [ 787.356240][T16681] ? __pfx___sys_sendmsg+0x10/0x10 [ 787.356255][T16681] ? __ia32_sys_futex_time32+0x1d9/0x460 [ 787.356276][T16681] ? rcu_is_watching+0x12/0xc0 [ 787.356288][T16681] __do_fast_syscall_32+0x7c/0x300 [ 787.356300][T16681] do_fast_syscall_32+0x32/0x80 [ 787.356309][T16681] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 787.356323][T16681] RIP: 0023:0xf708e579 [ 787.356332][T16681] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 787.356354][T16681] RSP: 002b:00000000f545d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 787.356365][T16681] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 0000000080000180 [ 787.356371][T16681] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 787.356377][T16681] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 787.356383][T16681] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 787.356389][T16681] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 787.356403][T16681] [ 787.356497][T16681] Mem-Info: [ 787.546023][T16681] active_anon:8682 inactive_anon:3779 isolated_anon:0 [ 787.546023][T16681] active_file:1032 inactive_file:1707 isolated_file:0 [ 787.546023][T16681] unevictable:1768 dirty:442 writeback:0 [ 787.546023][T16681] slab_reclaimable:6702 slab_unreclaimable:75821 [ 787.546023][T16681] mapped:35120 shmem:13204 pagetables:1290 [ 787.546023][T16681] sec_pagetables:328 bounce:0 [ 787.546023][T16681] kernel_misc_reclaimable:0 [ 787.546023][T16681] free:37061 free_pcp:521 free_cma:0 [ 787.561808][T16681] Node 0 active_anon:6476kB inactive_anon:20kB active_file:20kB inactive_file:4kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:6228kB dirty:4kB writeback:0kB shmem:10324kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:7896kB pagetables:1796kB sec_pagetables:1136kB all_unreclaimable? yes Balloon:0kB [ 787.572793][T16681] Node 1 active_anon:28252kB inactive_anon:15096kB active_file:4108kB inactive_file:6824kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:134252kB dirty:1764kB writeback:0kB shmem:42492kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5308kB pagetables:3364kB sec_pagetables:176kB all_unreclaimable? no Balloon:0kB [ 787.587071][T16681] Node 0 DMA free:2112kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:388kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 787.598606][T16681] lowmem_reserve[]: 0 288 288 288 288 [ 787.601077][T16681] Node 0 DMA32 free:17960kB boost:0kB min:13220kB low:16524kB high:19828kB reserved_highatomic:2048KB free_highatomic:640KB active_anon:6088kB inactive_anon:20kB active_file:20kB inactive_file:4kB unevictable:3536kB writepending:4kB present:1032196kB managed:295080kB mlocked:0kB bounce:0kB free_pcp:512kB local_pcp:140kB free_cma:0kB [ 787.612755][T16681] lowmem_reserve[]: 0 0 0 0 0 [ 787.615172][T16681] Node 1 DMA32 free:128172kB boost:0kB min:47140kB low:58924kB high:70708kB reserved_highatomic:0KB free_highatomic:0KB active_anon:28252kB inactive_anon:14796kB active_file:4108kB inactive_file:6824kB unevictable:3536kB writepending:1764kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:1752kB local_pcp:0kB free_cma:0kB [ 787.626202][T16681] lowmem_reserve[]: 0 0 0 0 0 [ 787.627733][T16681] Node 0 DMA: 30*4kB (UM) 11*8kB (UM) 3*16kB (U) 10*32kB (U) 0*64kB 0*128kB 0*256kB 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 2112kB [ 787.632559][T16681] Node 0 DMA32: 15*4kB (UEH) 28*8kB (EH) 25*16kB (UEH) 22*32kB (UMEH) 65*64kB (UME) 42*128kB (UME) 15*256kB (UM) 6*512kB (MEH) 0*1024kB 0*2048kB 0*4096kB = 17836kB [ 787.638431][T16681] Node 1 DMA32: 1278*4kB (UME) 1277*8kB (UME) 648*16kB (UME) 395*32kB (UME) 194*64kB (UME) 115*128kB (UME) 76*256kB (UME) 37*512kB (UME) 24*1024kB (UM) 0*2048kB 0*4096kB = 128448kB [ 787.644553][T16681] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 787.647925][T16681] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 787.651132][T16681] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 787.654370][T16681] Node 1 hugepages_total=6 hugepages_free=3 hugepages_surp=4 hugepages_size=2048kB [ 787.658822][T16681] 16309 total pagecache pages [ 787.660421][T16681] 370 pages in swap cache [ 787.662296][T16681] Free swap = 50592kB [ 787.664205][T16681] Total swap = 124996kB [ 787.666736][T16681] 524155 pages RAM [ 787.668531][T16681] 0 pages HighMem/MovableOnly [ 787.670589][T16681] 209490 pages reserved [ 787.672829][T16681] 0 pages cma reserved [ 787.676005][T16681] bond0: refused to change device tx_queue_len [ 787.679145][T16681] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 787.942126][T16696] all (unregistering): Released all slaves [ 788.695858][T16708] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2072'. [ 789.664341][T16721] all (unregistering): Released all slaves [ 790.058445][T16746] bridge3: the hash_elasticity option has been deprecated and is always 16 [ 790.061445][T16746] bridge3: entered allmulticast mode [ 791.305087][T16757] all (unregistering): Released all slaves [ 791.329850][T16764] fuse: Unknown parameter 'group_id00000000000000000000' [ 791.802327][T16755] rdma_rxe: rxe_newlink: failed to add lo [ 792.127517][T16762] fuse: Unknown parameter 'group_id00000000000000000000' [ 792.179466][T16767] all (unregistering): Released all slaves [ 792.207061][T16760] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 792.211852][T16760] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 793.337288][T16783] all (unregistering): Released all slaves [ 794.641888][ T40] kauditd_printk_skb: 77 callbacks suppressed [ 794.641899][ T40] audit: type=1326 audit(1758377009.495:13421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16803 comm="syz.3.2092" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 794.657400][ T40] audit: type=1326 audit(1758377009.495:13422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16803 comm="syz.3.2092" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 794.671297][ T40] audit: type=1326 audit(1758377009.505:13423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16803 comm="syz.3.2092" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 794.686496][T14830] Bluetooth: hci4: Frame reassembly failed (-84) [ 794.694815][ T40] audit: type=1326 audit(1758377009.505:13424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16803 comm="syz.3.2092" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 794.701617][ T40] audit: type=1326 audit(1758377009.505:13425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16803 comm="syz.3.2092" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 794.708449][ T40] audit: type=1326 audit(1758377009.515:13426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16803 comm="syz.3.2092" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 794.721071][ T40] audit: type=1326 audit(1758377009.515:13427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16803 comm="syz.3.2092" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 794.734799][ T40] audit: type=1326 audit(1758377009.515:13428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16803 comm="syz.3.2092" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 794.741499][ T40] audit: type=1326 audit(1758377009.515:13429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16803 comm="syz.3.2092" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 794.748917][ T40] audit: type=1326 audit(1758377009.515:13430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16803 comm="syz.3.2092" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 795.505466][T16815] all (unregistering): Released all slaves [ 796.715780][T13339] Bluetooth: hci4: command 0x1003 tx timeout [ 796.719750][ T5990] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 796.761933][T16824] all (unregistering): Released all slaves [ 797.063631][T16835] fuse: Unknown parameter 'group_id00000000000000000000' [ 797.069228][T16835] rdma_rxe: rxe_newlink: failed to add lo [ 797.324940][T16838] fuse: Unknown parameter 'group_id00000000000000000000' [ 797.554745][ T10] usb 8-1: new high-speed USB device number 39 using dummy_hcd [ 797.694700][ T10] usb 8-1: device descriptor read/64, error -71 [ 797.934822][ T10] usb 8-1: new high-speed USB device number 40 using dummy_hcd [ 798.134385][ T10] usb 8-1: device descriptor read/64, error -71 [ 798.245855][ T10] usb usb8-port1: attempt power cycle [ 798.594702][ T10] usb 8-1: new high-speed USB device number 41 using dummy_hcd [ 798.625958][ T10] usb 8-1: device descriptor read/8, error -71 [ 798.864700][ T10] usb 8-1: new high-speed USB device number 42 using dummy_hcd [ 798.886564][ T10] usb 8-1: device descriptor read/8, error -71 [ 798.994887][ T10] usb usb8-port1: unable to enumerate USB device [ 799.109446][T16866] sysfs: cannot create duplicate filename '/class/ieee80211/!' [ 799.112596][T16866] CPU: 1 UID: 0 PID: 16866 Comm: syz.0.2104 Not tainted syzkaller #0 PREEMPT(full) [ 799.112620][T16866] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 799.112631][T16866] Call Trace: [ 799.112639][T16866] [ 799.112646][T16866] dump_stack_lvl+0x16c/0x1f0 [ 799.112679][T16866] sysfs_warn_dup+0x7f/0xa0 [ 799.112700][T16866] sysfs_do_create_link_sd+0x124/0x140 [ 799.112724][T16866] sysfs_create_link+0x61/0xc0 [ 799.112745][T16866] device_add+0x62c/0x1aa0 [ 799.112768][T16866] ? __pfx_device_add+0x10/0x10 [ 799.112786][T16866] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 799.112814][T16866] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 799.112845][T16866] wiphy_register+0x1df4/0x29f0 [ 799.112860][T16866] ? netdev_run_todo+0x864/0x1320 [ 799.112877][T16866] ? __dev_printk+0x1b0/0x270 [ 799.112906][T16866] ? __pfx_wiphy_register+0x10/0x10 [ 799.112930][T16866] ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0 [ 799.112958][T16866] ieee80211_register_hw+0x2546/0x4120 [ 799.112995][T16866] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 799.113024][T16866] ? find_held_lock+0x2b/0x80 [ 799.113042][T16866] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 799.113066][T16866] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 799.113090][T16866] ? __hrtimer_setup+0x176/0x280 [ 799.113118][T16866] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 799.113164][T16866] ? trace_kmalloc+0x2b/0xd0 [ 799.113187][T16866] ? __kmalloc_node_track_caller_noprof+0x23e/0x510 [ 799.113208][T16866] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 799.113226][T16866] ? hwsim_new_radio_nl+0xa0e/0x12c0 [ 799.113246][T16866] ? __asan_memcpy+0x3c/0x60 [ 799.113268][T16866] hwsim_new_radio_nl+0xb51/0x12c0 [ 799.113290][T16866] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 799.113318][T16866] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 799.113339][T16866] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 799.113363][T16866] genl_family_rcv_msg_doit+0x209/0x2f0 [ 799.113383][T16866] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 799.113411][T16866] ? bpf_lsm_capable+0x9/0x10 [ 799.113428][T16866] ? security_capable+0x7e/0x260 [ 799.113449][T16866] ? ns_capable+0xd7/0x110 [ 799.113472][T16866] genl_rcv_msg+0x55c/0x800 [ 799.113494][T16866] ? __pfx_genl_rcv_msg+0x10/0x10 [ 799.113514][T16866] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 799.113545][T16866] netlink_rcv_skb+0x155/0x420 [ 799.113570][T16866] ? __pfx_genl_rcv_msg+0x10/0x10 [ 799.113588][T16866] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 799.113624][T16866] ? netlink_deliver_tap+0x1ae/0xd30 [ 799.113651][T16866] genl_rcv+0x28/0x40 [ 799.113667][T16866] netlink_unicast+0x5aa/0x870 [ 799.113698][T16866] ? __pfx_netlink_unicast+0x10/0x10 [ 799.113723][T16866] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 799.113758][T16866] netlink_sendmsg+0x8d1/0xdd0 [ 799.113789][T16866] ? __pfx_netlink_sendmsg+0x10/0x10 [ 799.113818][T16866] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 799.113843][T16866] ____sys_sendmsg+0xa95/0xc70 [ 799.113869][T16866] ? __pfx_____sys_sendmsg+0x10/0x10 [ 799.113888][T16866] ? get_compat_msghdr+0x11a/0x170 [ 799.113926][T16866] ___sys_sendmsg+0x134/0x1d0 [ 799.113955][T16866] ? __pfx____sys_sendmsg+0x10/0x10 [ 799.113998][T16866] ? find_held_lock+0x2b/0x80 [ 799.114035][T16866] __sys_sendmsg+0x16d/0x220 [ 799.114066][T16866] ? __pfx___sys_sendmsg+0x10/0x10 [ 799.114107][T16866] ? __secure_computing+0x21c/0x320 [ 799.114143][T16866] __do_fast_syscall_32+0x7c/0x300 [ 799.114165][T16866] do_fast_syscall_32+0x32/0x80 [ 799.114182][T16866] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 799.114206][T16866] RIP: 0023:0xf7fb5579 [ 799.114221][T16866] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 799.114237][T16866] RSP: 002b:00000000f547455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 799.114255][T16866] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000040 [ 799.114267][T16866] RDX: 0000000000000310 RSI: 0000000000000000 RDI: 0000000000000000 [ 799.114279][T16866] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 799.114289][T16866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 799.114300][T16866] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 799.114326][T16866] [ 799.980462][T16872] all (unregistering): Released all slaves [ 800.330836][T16881] netlink: 'syz.0.2106': attribute type 27 has an invalid length. [ 800.390227][T16881] bond3: left promiscuous mode [ 800.392295][T16881] bridge0: left allmulticast mode [ 800.395712][T16881] bridge2: left promiscuous mode [ 800.399078][T16881] bridge3: left allmulticast mode [ 800.402203][ T24] lo speed is unknown, defaulting to 1000 [ 800.404242][ T24] syz0: Port: 1 Link DOWN [ 800.667090][T16884] delete_channel: no stack [ 801.607978][T16895] random: crng reseeded on system resumption [ 801.628625][T16895] Restarting kernel threads ... [ 801.631494][T16895] Done restarting kernel threads. [ 801.663553][T16900] /dev/nullb0: Can't lookup blockdev [ 802.533764][T16912] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2115'. [ 802.957446][T16920] fuse: Unknown parameter 'group_id00000000000000000000' [ 803.223674][T16928] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2117'. [ 803.263218][T16928] bridge0: entered promiscuous mode [ 808.161916][T16973] netlink: 'syz.1.2127': attribute type 13 has an invalid length. [ 808.168651][T16975] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2128'. [ 808.248602][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 809.213292][T16982] fuse: Unknown parameter 'group_id00000000000000000000' [ 809.318431][T16986] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 811.116093][T16973] batman_adv: batadv0: Interface activated: dummy0 [ 811.119759][T16973] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 811.209322][T16975] veth0_macvtap: left allmulticast mode [ 811.217044][T16975] macvtap0: left allmulticast mode [ 811.224062][T16975] geneve6: left allmulticast mode [ 811.230450][T16975] bridge0: left allmulticast mode [ 811.244954][ T6058] lo speed is unknown, defaulting to 1000 [ 811.247159][ T6058] syz: Port: 1 Link DOWN [ 812.131889][T17002] could not allocate digest TFM handle sha1-ssse3 [ 812.414729][T17010] all (unregistering): Released all slaves [ 813.111331][ T40] kauditd_printk_skb: 58 callbacks suppressed [ 813.111343][ T40] audit: type=1326 audit(1758377027.965:13489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17019 comm="syz.2.2136" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702e598 code=0x7ffc0000 [ 813.124084][ T40] audit: type=1326 audit(1758377027.975:13490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17019 comm="syz.2.2136" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 813.133354][ T40] audit: type=1326 audit(1758377027.985:13491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17019 comm="syz.2.2136" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 813.143940][ T40] audit: type=1326 audit(1758377027.985:13492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17019 comm="syz.2.2136" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 813.151684][ T40] audit: type=1326 audit(1758377027.995:13493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17019 comm="syz.2.2136" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 813.160590][ T40] audit: type=1326 audit(1758377027.995:13494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17019 comm="syz.2.2136" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 813.180792][ T40] audit: type=1326 audit(1758377028.035:13495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17019 comm="syz.2.2136" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702e598 code=0x7ffc0000 [ 813.190888][ T40] audit: type=1326 audit(1758377028.035:13496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17019 comm="syz.2.2136" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702e598 code=0x7ffc0000 [ 813.209145][ T40] audit: type=1326 audit(1758377028.035:13497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17019 comm="syz.2.2136" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 813.226090][ T40] audit: type=1326 audit(1758377028.035:13498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17019 comm="syz.2.2136" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702e598 code=0x7ffc0000 [ 815.263664][T17055] bridge4: the hash_elasticity option has been deprecated and is always 16 [ 815.267617][T17055] bridge4: entered allmulticast mode [ 815.860011][T17060] fuse: Unknown parameter 'group_id00000000000000000000' [ 815.867483][T17060] rdma_rxe: rxe_newlink: failed to add lo [ 817.408723][T17078] all (unregistering): Released all slaves [ 817.698182][T17086] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2146'. [ 817.721107][T17088] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2147'. [ 817.990299][T17092] syz_tun: entered promiscuous mode [ 817.993348][T17092] batadv_slave_0: entered promiscuous mode [ 817.995930][T17092] batadv_slave_0: left promiscuous mode [ 817.998041][T17092] syz_tun: left promiscuous mode [ 818.057066][T17095] fuse: Unknown parameter 'group_id00000000000000000000' [ 818.078591][T17095] rdma_rxe: rxe_newlink: failed to add lo [ 819.073449][T17107] bridge3: the hash_elasticity option has been deprecated and is always 16 [ 819.076808][T17107] bridge3: entered allmulticast mode [ 819.571006][T17112] netlink: 'syz.0.2153': attribute type 1 has an invalid length. [ 819.587331][T17112] 8021q: adding VLAN 0 to HW filter on device bond5 [ 819.626934][T17112] bond5: (slave veth5): Enslaving as an active interface with a down link [ 819.654767][T17112] bond5: (slave dummy0): making interface the new active one [ 819.657999][T17112] dummy0: entered promiscuous mode [ 819.659858][T17112] bond5: (slave dummy0): Enslaving as an active interface with an up link [ 819.672807][T17112] netlink: 'syz.0.2153': attribute type 10 has an invalid length. [ 819.675826][T17112] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2153'. [ 819.680673][T17112] bond5: (slave dummy0): Releasing active interface [ 820.347883][T17122] all (unregistering): Released all slaves [ 820.684475][T17125] all (unregistering): Released all slaves [ 821.410285][T17133] overlayfs: failed to clone upperpath [ 824.323900][ T40] kauditd_printk_skb: 698 callbacks suppressed [ 824.323914][ T40] audit: type=1326 audit(1758377039.175:14197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17134 comm="syz.0.2158" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb5598 code=0x7ffc0000 [ 824.372370][ T40] audit: type=1326 audit(1758377039.175:14198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17134 comm="syz.0.2158" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb5579 code=0x7ffc0000 [ 824.382423][ T40] audit: type=1326 audit(1758377039.175:14199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17134 comm="syz.0.2158" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb5598 code=0x7ffc0000 [ 824.392594][ T40] audit: type=1326 audit(1758377039.175:14200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17134 comm="syz.0.2158" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb5579 code=0x7ffc0000 [ 824.401431][ T40] audit: type=1326 audit(1758377039.175:14201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17134 comm="syz.0.2158" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb5598 code=0x7ffc0000 [ 824.410283][ T40] audit: type=1326 audit(1758377039.175:14202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17134 comm="syz.0.2158" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb5598 code=0x7ffc0000 [ 824.420439][ T40] audit: type=1326 audit(1758377039.175:14203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17134 comm="syz.0.2158" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb5579 code=0x7ffc0000 [ 824.430602][ T40] audit: type=1326 audit(1758377039.185:14204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17134 comm="syz.0.2158" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb5598 code=0x7ffc0000 [ 824.439331][ T40] audit: type=1326 audit(1758377039.185:14205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17134 comm="syz.0.2158" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb5598 code=0x7ffc0000 [ 824.448278][ T40] audit: type=1326 audit(1758377039.185:14206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17134 comm="syz.0.2158" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb5579 code=0x7ffc0000 [ 824.507527][T17170] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2167'. [ 825.279015][T17170] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 825.281816][T17170] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 825.284119][T17170] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 825.288319][T17170] comedi comedi3: 8255: I/O port conflict (0xfff,4) [ 825.290655][T17170] comedi comedi3: 8255: I/O port conflict (0x5c952399,4) [ 825.293165][T17170] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 825.295427][T17170] comedi comedi3: 8255: I/O port conflict (0x3ff,4) [ 825.297873][T17170] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 825.300186][T17170] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 825.302478][T17170] comedi comedi3: 8255: I/O port conflict (0x9,4) [ 825.305445][T17170] comedi comedi3: 8255: I/O port conflict (0x6,4) [ 825.307608][T17170] comedi comedi3: 8255: I/O port conflict (0x4,4) [ 825.309880][T17170] comedi comedi3: 8255: I/O port conflict (0x3,4) [ 825.312185][T17170] comedi comedi3: 8255: I/O port conflict (0xffffffff80000089,4) [ 825.314739][T17170] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffd,4) [ 825.575177][T17175] all (unregistering): Released all slaves [ 825.987673][T17182] all (unregistering): Released all slaves [ 826.300254][T17198] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2172'. [ 828.059420][T17221] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2174'. [ 828.197475][T17227] fuse: Unknown parameter 'group_id00000000000000000000' [ 828.360078][T17227] rdma_rxe: rxe_newlink: failed to add lo [ 828.783758][T17240] netlink: 'syz.1.2178': attribute type 27 has an invalid length. [ 828.910821][T17240] batman_adv: batadv0: Interface deactivated: dummy0 [ 828.939147][T17240] bridge0: left promiscuous mode [ 828.954413][T17244] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 828.955149][ T840] lo speed is unknown, defaulting to 1000 [ 828.959832][ T840] sz1: Port: 1 Link DOWN [ 828.968945][T17244] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 828.989389][T17242] 8021q: adding VLAN 0 to HW filter on device bond0 [ 828.995308][T17242] batman_adv: batadv0: Interface activated: dummy0 [ 828.999960][T17242] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 829.019646][ T840] lo speed is unknown, defaulting to 1000 [ 829.023409][T17243] lo speed is unknown, defaulting to 1000 [ 829.027659][T17243] sz1: Port: 1 Link ACTIVE [ 829.564115][T17253] bridge4: the hash_elasticity option has been deprecated and is always 16 [ 829.567067][T17253] bridge4: entered allmulticast mode [ 830.359991][T17259] sctp: [Deprecated]: syz.2.2182 (pid 17259) Use of int in max_burst socket option deprecated. [ 830.359991][T17259] Use struct sctp_assoc_value instead [ 832.305408][T17295] netlink: 'syz.2.2186': attribute type 1 has an invalid length. [ 832.348603][T17295] bond4: (slave gretap1): making interface the new active one [ 832.352421][T17295] bond4: (slave gretap1): Enslaving as an active interface with an up link [ 832.885256][T17305] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 833.051702][T17303] all (unregistering): Released all slaves [ 833.626422][T17316] overlayfs: failed to clone upperpath [ 833.807639][T17320] fuse: Unknown parameter 'group_id00000000000000000000' [ 833.810659][T17320] rdma_rxe: rxe_newlink: failed to add lo [ 834.100810][ T40] kauditd_printk_skb: 669 callbacks suppressed [ 834.100825][ T40] audit: type=1804 audit(1758377048.955:14876): pid=17316 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2190" name="bus" dev="tmpfs" ino=3038 res=1 errno=0 [ 834.104682][ T6058] usb 8-1: new high-speed USB device number 43 using dummy_hcd [ 834.254826][ T6058] usb 8-1: device descriptor read/64, error -71 [ 834.494664][ T6058] usb 8-1: new high-speed USB device number 44 using dummy_hcd [ 834.624692][ T6058] usb 8-1: device descriptor read/64, error -71 [ 834.756109][ T6058] usb usb8-port1: attempt power cycle [ 835.094971][ T6058] usb 8-1: new high-speed USB device number 45 using dummy_hcd [ 835.215574][ T6058] usb 8-1: device descriptor read/8, error -71 [ 835.454689][ T6058] usb 8-1: new high-speed USB device number 46 using dummy_hcd [ 835.475801][ T6058] usb 8-1: device descriptor read/8, error -71 [ 835.585130][ T6058] usb usb8-port1: unable to enumerate USB device [ 836.035217][T17343] ptrace attach of "/syz-executor exec"[5973] was attempted by " \x0cH;'Sde/Ȑ|zPиW\x0bPt5QI0kp;t>?7~՞8)>\x0a.Fv\x5c0CP{\x07ԭ4OT)%DkfCkF 籥;m\x0cv\x0cTʪz5m֢vī'c^تg_\x0bƍ8)c,(qeB㑻SPt4o IHwL#@mUpE^agh~d_9\x07r|GJj+&ҽk(\x07rnE4(#ë\x0b YβB\x0aЦ&R`?L1tիw.M=3|Gsmg4`|\x22{б춋1[{ȯw/B_g6-qyk*o\x0d\x5cc8\x5c [ 837.582207][T17351] all (unregistering): Released all slaves [ 837.789024][T17366] wireguard0: entered promiscuous mode [ 837.790834][T17366] wireguard0: entered allmulticast mode [ 838.099207][T17370] bridge6: the hash_elasticity option has been deprecated and is always 16 [ 838.109512][T17370] bridge6: entered allmulticast mode [ 838.543913][T17378] netlink: 84 bytes leftover after parsing attributes in process `syz.0.2204'. [ 838.581816][T17377] all (unregistering): Released all slaves [ 839.221900][T17391] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2206'. [ 839.410732][T17389] fuse: Unknown parameter 'group_id00000000000000000000' [ 839.415213][T17389] rdma_rxe: rxe_newlink: failed to add lo [ 839.834738][ T34] usb 8-1: new high-speed USB device number 47 using dummy_hcd [ 839.984798][ T34] usb 8-1: device descriptor read/64, error -71 [ 840.047250][T17243] lo speed is unknown, defaulting to 1000 [ 840.049088][T17243] sz1: Port: 1 Link DOWN [ 840.050535][T17243] lo speed is unknown, defaulting to 1000 [ 840.234723][ T34] usb 8-1: new high-speed USB device number 48 using dummy_hcd [ 840.375544][ T34] usb 8-1: device descriptor read/64, error -71 [ 840.485190][ T34] usb usb8-port1: attempt power cycle [ 840.824711][ T34] usb 8-1: new high-speed USB device number 49 using dummy_hcd [ 840.845478][ T34] usb 8-1: device descriptor read/8, error -71 [ 841.094689][ T34] usb 8-1: new high-speed USB device number 50 using dummy_hcd [ 841.117812][ T34] usb 8-1: device descriptor read/8, error -71 [ 841.235166][ T34] usb usb8-port1: unable to enumerate USB device [ 841.428146][T17418] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2215'. [ 841.431088][T17418] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2215'. [ 841.669475][T17420] lo speed is unknown, defaulting to 1000 [ 841.672065][T17420] lo speed is unknown, defaulting to 1000 [ 841.674847][T17420] lo speed is unknown, defaulting to 1000 [ 841.782114][T17420] lo speed is unknown, defaulting to 1000 [ 842.037100][T17424] all (unregistering): Released all slaves [ 843.498020][T17454] ptrace attach of "/syz-executor exec"[5983] was attempted by " \x0cH;'Sde/Ȑ|zPиW\x0bPt5QI0kp;t>?7~՞8)>\x0a.Fv\x5c0CP{\x07ԭ4OT)%DkfCkF 籥;m\x0cv\x0cTʪz5m֢vī'c^تg_\x0bƍ8)c,(qeB㑻SPt4o IHwL#@mUpE^agh~d_9\x07r|GJj+&ҽk(\x07rnE4(#ë\x0b YβB\x0aЦ&R`?L1tիw.M=3|Gsmg4`|\x22{б춋1[{ȯw/B_g6-qyk*o\x0d\x5cc8\x5c [ 844.569637][T17465] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2226'. [ 844.597425][ C1] vkms_vblank_simulate: vblank timer overrun [ 844.602657][T17465] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2226'. [ 844.795598][T17466] lo speed is unknown, defaulting to 1000 [ 844.798330][T17466] lo speed is unknown, defaulting to 1000 [ 844.800702][T17466] lo speed is unknown, defaulting to 1000 [ 844.877341][T17466] lo speed is unknown, defaulting to 1000 [ 845.043152][T17461] all (unregistering): Released all slaves [ 845.416405][T17480] fuse: Unknown parameter 'group_id00000000000000000000' [ 845.424684][T17480] rdma_rxe: rxe_newlink: failed to add lo [ 845.844842][ T6471] usb 8-1: new high-speed USB device number 51 using dummy_hcd [ 845.974960][ T6471] usb 8-1: device descriptor read/64, error -71 [ 846.174415][T17486] all (unregistering): Released all slaves [ 846.234824][ T6471] usb 8-1: new high-speed USB device number 52 using dummy_hcd [ 846.505640][ T6471] usb 8-1: device descriptor read/64, error -71 [ 846.688349][ T6471] usb usb8-port1: attempt power cycle [ 847.025020][ T6471] usb 8-1: new high-speed USB device number 53 using dummy_hcd [ 847.057217][ T6471] usb 8-1: device descriptor read/8, error -71 [ 847.304715][ T6471] usb 8-1: new high-speed USB device number 54 using dummy_hcd [ 847.326374][ T6471] usb 8-1: device descriptor read/8, error -71 [ 847.436336][ T6471] usb usb8-port1: unable to enumerate USB device [ 847.768721][T17512] all (unregistering): Released all slaves [ 849.042623][T17529] all (unregistering): Released all slaves [ 849.968036][T17540] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2246'. [ 850.947989][T17551] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2248'. [ 851.066533][T17550] wireguard0: entered promiscuous mode [ 851.068681][T17550] wireguard0: entered allmulticast mode [ 851.253204][T17551] wireguard0: entered promiscuous mode [ 851.256058][T17551] wireguard0: entered allmulticast mode [ 852.165084][ T24] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 852.305992][T17568] fuse: Unknown parameter 'group_id00000000000000000000' [ 852.385963][T17568] rdma_rxe: rxe_newlink: failed to add lo [ 856.565202][T17644] wireguard0: entered promiscuous mode [ 856.567522][T17644] wireguard0: entered allmulticast mode [ 858.850427][ T40] audit: type=1326 audit(1758377073.705:14877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17707 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 859.005786][ T40] audit: type=1326 audit(1758377073.865:14878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17707 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 859.155607][ T40] audit: type=1326 audit(1758377074.015:14879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17707 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 859.155656][ T40] audit: type=1326 audit(1758377074.015:14880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17707 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 859.155691][ T40] audit: type=1326 audit(1758377074.015:14881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17707 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 859.227049][T17716] netlink: 84 bytes leftover after parsing attributes in process `syz.3.2290'. [ 859.312993][ T40] audit: type=1326 audit(1758377074.165:14882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17707 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 859.313619][ T40] audit: type=1326 audit(1758377074.165:14883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17707 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 859.315030][ T40] audit: type=1326 audit(1758377074.175:14884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17707 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 859.316990][ T40] audit: type=1326 audit(1758377074.175:14885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17707 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 859.317421][ T40] audit: type=1326 audit(1758377074.175:14886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17707 comm="syz.2.2289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 860.494149][T17757] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 860.527464][T17757] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 861.700083][T17776] netlink: 84 bytes leftover after parsing attributes in process `syz.1.2306'. [ 861.886735][T17792] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 862.790349][T17782] all (unregistering): Released all slaves [ 864.323368][T17830] all (unregistering): Released all slaves [ 864.636572][T17264] usb 8-1: new high-speed USB device number 55 using dummy_hcd [ 864.745053][T17841] netlink: 13 bytes leftover after parsing attributes in process `syz.0.2332'. [ 864.748611][T17841] netlink: 13 bytes leftover after parsing attributes in process `syz.0.2332'. [ 864.811853][T17264] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 864.826855][T17264] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 864.830690][T17264] usb 8-1: Product: syz [ 864.832064][T17264] usb 8-1: Manufacturer: syz [ 864.833488][T17264] usb 8-1: SerialNumber: syz [ 864.864869][T17264] usb 8-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 865.157784][T17264] usb 8-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 865.579228][ T6057] usb 8-1: USB disconnect, device number 55 [ 865.923283][T17877] all (unregistering): Released all slaves [ 866.244704][T17264] ath9k_htc 8-1:1.0: ath9k_htc: Target is unresponsive [ 866.248619][T17264] ath9k_htc: Failed to initialize the device [ 866.253059][ T6057] usb 8-1: ath9k_htc: USB layer deinitialized [ 869.675995][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 870.169846][T17940] netlink: 'syz.1.2366': attribute type 4 has an invalid length. [ 870.172616][T17940] netlink: 152 bytes leftover after parsing attributes in process `syz.1.2366'. [ 870.176648][T17940] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 870.316531][T17945] dvmrp1: entered allmulticast mode [ 871.463523][T17951] fuse: Unknown parameter 'group_id00000000000000000000' [ 871.469444][T17951] rdma_rxe: rxe_newlink: failed to add lo [ 872.276136][T17974] all (unregistering): Released all slaves [ 872.957893][T17989] bond0: Error: Cannot enslave bond to itself. [ 873.781120][T18004] netlink: 'syz.2.2386': attribute type 6 has an invalid length. [ 873.827645][T18006] CIFS: VFS: Malformed UNC in devname [ 873.998869][ T40] kauditd_printk_skb: 34 callbacks suppressed [ 873.998882][ T40] audit: type=1326 audit(1758377088.855:14921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18012 comm="syz.2.2391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 874.010166][ T40] audit: type=1326 audit(1758377088.855:14922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18012 comm="syz.2.2391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 874.017781][ T40] audit: type=1326 audit(1758377088.855:14923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18012 comm="syz.2.2391" exe="/syz-executor" sig=0 arch=40000003 syscall=440 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 874.024409][ T40] audit: type=1326 audit(1758377088.855:14924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18012 comm="syz.2.2391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 874.032171][ T40] audit: type=1326 audit(1758377088.855:14925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18012 comm="syz.2.2391" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 874.152702][T18011] all (unregistering): Released all slaves [ 875.075235][T18080] netlink: 84 bytes leftover after parsing attributes in process `syz.0.2416'. [ 875.858859][T18079] Bluetooth: hci0: Opcode 0x0401 failed: -4 [ 875.940094][T18071] all (unregistering): Released all slaves [ 876.671192][T18112] netlink: 'syz.0.2432': attribute type 10 has an invalid length. [ 877.106680][T18095] fuse: Unknown parameter 'group_id00000000000000000000' [ 877.118828][T18095] rdma_rxe: rxe_newlink: failed to add lo [ 878.077841][T18134] all (unregistering): Released all slaves [ 879.576569][T18184] all (unregistering): Released all slaves [ 879.874298][ T5974] usb 8-1: new high-speed USB device number 56 using dummy_hcd [ 880.094699][ T5974] usb 8-1: Using ep0 maxpacket: 8 [ 880.102197][ T5974] usb 8-1: config 179 has an invalid interface number: 65 but max is 0 [ 880.106532][ T5974] usb 8-1: config 179 has no interface number 0 [ 880.108781][ T5974] usb 8-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9 [ 880.112596][ T5974] usb 8-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024 [ 880.117706][ T5974] usb 8-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 880.121446][ T5974] usb 8-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0 [ 880.125068][ T5974] usb 8-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 880.129507][ T5974] usb 8-1: config 179 interface 65 has no altsetting 0 [ 880.131966][ T5974] usb 8-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 880.136028][ T5974] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 880.222866][ T5974] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:179.65/input/input24 [ 880.426734][ T34] usb 8-1: USB disconnect, device number 56 [ 880.429312][ C1] xpad 8-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 881.150581][T18281] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2500'. [ 881.947095][T18289] all (unregistering): Released all slaves [ 882.333179][T18295] all (unregistering): Released all slaves [ 882.439570][T18310] fuse: Unknown parameter 'group_id00000000000000000000' [ 882.449303][T18310] rdma_rxe: rxe_newlink: failed to add lo [ 883.320184][T18334] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2520'. [ 883.323022][T18334] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2520'. [ 883.556114][T18335] all (unregistering): Released all slaves [ 884.433082][T18345] tipc: Enabling of bearer rejected, failed to enable media [ 884.518633][T18340] all (unregistering): Released all slaves [ 884.958111][T18358] all (unregistering): Released all slaves [ 885.746858][T18414] fuse: Unknown parameter 'group_id00000000000000000000' [ 885.752617][T18414] rdma_rxe: rxe_newlink: failed to add lo [ 886.788629][T18463] x_tables: ip_tables: udp match: only valid for protocol 17 [ 887.158388][T18489] dvmrp1: left allmulticast mode [ 887.264245][T18485] all (unregistering): Released all slaves [ 887.568168][T18518] netlink: 1 bytes leftover after parsing attributes in process `syz.1.2591'. [ 887.571206][T18518] xt_policy: neither incoming nor outgoing policy selected [ 888.180979][T18541] tipc: Cannot configure node identity twice [ 888.644929][T18545] all (unregistering): Released all slaves [ 888.848538][T18550] all (unregistering): Released all slaves [ 889.658441][T18561] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2605'. [ 889.730353][T18559] all (unregistering): Released all slaves [ 890.401521][T18577] all (unregistering): Released all slaves [ 893.003422][T18630] all (unregistering): Released all slaves [ 893.005631][T18649] fuse: Unknown parameter 'group_id00000000000000000000' [ 893.012473][T18649] rdma_rxe: rxe_newlink: failed to add lo [ 893.535092][T18645] all (unregistering): Released all slaves [ 893.705371][T18670] netlink: 128 bytes leftover after parsing attributes in process `syz.1.2643'. [ 893.786507][T18675] tipc: Started in network mode [ 893.788639][T18675] tipc: Node identity ac14140f, cluster identity 4711 [ 893.791743][T18675] tipc: New replicast peer: 255.255.255.255 [ 893.794174][T18675] tipc: Enabled bearer , priority 10 [ 893.985559][T18673] all (unregistering): Released all slaves [ 894.120151][T18692] syzkaller0: tun_chr_ioctl cmd 1074025676 [ 894.122669][T18692] syzkaller0: owner set to 0 [ 894.594753][ T24] usb 8-1: new high-speed USB device number 57 using dummy_hcd [ 894.752972][T18699] all (unregistering): Released all slaves [ 894.755485][ T24] usb 8-1: Using ep0 maxpacket: 8 [ 894.756895][ T24] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 894.759532][ T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 894.762984][ T24] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 894.774864][ T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 894.779553][ T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 894.794333][ T24] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 894.796775][ T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 894.800229][ T24] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 894.803823][ T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 894.807496][ T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 894.811967][ T24] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 894.814302][ T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 894.817976][ T24] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 894.821610][ T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 894.825176][ T24] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 894.831048][ T24] usb 8-1: string descriptor 0 read error: -22 [ 894.833043][ T24] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 894.836166][ T24] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 894.848020][ T24] adutux 8-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 894.915718][T17264] tipc: Node number set to 2886997007 [ 895.079394][ T24] usb 8-1: USB disconnect, device number 57 [ 895.138612][T18709] 9pnet_fd: Insufficient options for proto=fd [ 895.196430][T18712] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2658'. [ 895.235538][T18718] syz.1.2660: page allocation failure: order:10, mode:0x40dc0(GFP_KERNEL|__GFP_ZERO|__GFP_COMP), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 895.240080][T18718] CPU: 0 UID: 0 PID: 18718 Comm: syz.1.2660 Not tainted syzkaller #0 PREEMPT(full) [ 895.240096][T18718] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 895.240104][T18718] Call Trace: [ 895.240108][T18718] [ 895.240114][T18718] dump_stack_lvl+0x16c/0x1f0 [ 895.240135][T18718] warn_alloc+0x248/0x3a0 [ 895.240150][T18718] ? __pfx_warn_alloc+0x10/0x10 [ 895.240163][T18718] ? psi_memstall_leave+0x1e6/0x2d0 [ 895.240178][T18718] ? __alloc_pages_direct_compact+0x466/0x580 [ 895.240196][T18718] ? __pfx___alloc_pages_direct_compact+0x10/0x10 [ 895.240208][T18718] ? psi_memstall_leave+0x1e1/0x2d0 [ 895.240222][T18718] ? psi_memstall_leave+0x1e6/0x2d0 [ 895.240238][T18718] __alloc_frozen_pages_noprof+0xea2/0x23f0 [ 895.240260][T18718] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 895.240287][T18718] ? find_held_lock+0x2b/0x80 [ 895.240302][T18718] ? find_held_lock+0x2b/0x80 [ 895.240313][T18718] ? aa_file_perm+0x28f/0x12e0 [ 895.240331][T18718] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 895.240349][T18718] ? policy_nodemask+0xea/0x4e0 [ 895.240365][T18718] alloc_pages_mpol+0x1fb/0x550 [ 895.240382][T18718] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 895.240397][T18718] ? stack_trace_save+0x8e/0xc0 [ 895.240409][T18718] ? __pfx_stack_trace_save+0x10/0x10 [ 895.240423][T18718] ? qrtr_tun_write_iter+0xc1/0x1b0 [ 895.240436][T18718] ___kmalloc_large_node+0xed/0x160 [ 895.240454][T18718] ? qrtr_tun_write_iter+0xc1/0x1b0 [ 895.240466][T18718] __kmalloc_large_node_noprof+0x1c/0x70 [ 895.240484][T18718] __kmalloc_noprof.cold+0xc/0x61 [ 895.240500][T18718] ? common_file_perm+0x1a9/0x340 [ 895.240515][T18718] ? bpf_lsm_file_permission+0x9/0x10 [ 895.240533][T18718] qrtr_tun_write_iter+0xc1/0x1b0 [ 895.240548][T18718] aio_write+0x3b6/0x910 [ 895.240561][T18718] ? __pfx_aio_write+0x10/0x10 [ 895.240573][T18718] ? __lock_acquire+0xb97/0x1ce0 [ 895.240596][T18718] ? __might_fault+0xe3/0x190 [ 895.240608][T18718] ? __might_fault+0x13b/0x190 [ 895.240623][T18718] ? io_submit_one+0x1243/0x1df0 [ 895.240635][T18718] io_submit_one+0x1243/0x1df0 [ 895.240649][T18718] ? __lock_acquire+0xb97/0x1ce0 [ 895.240665][T18718] ? __pfx_io_submit_one+0x10/0x10 [ 895.240683][T18718] ? __might_fault+0xe3/0x190 [ 895.240694][T18718] ? __might_fault+0x13b/0x190 [ 895.240710][T18718] ? __ia32_compat_sys_io_submit+0x1ad/0x3a0 [ 895.240723][T18718] __ia32_compat_sys_io_submit+0x1ad/0x3a0 [ 895.240738][T18718] ? __pfx___ia32_compat_sys_io_submit+0x10/0x10 [ 895.240757][T18718] ? rcu_is_watching+0x12/0xc0 [ 895.240768][T18718] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 895.240788][T18718] __do_fast_syscall_32+0x7c/0x300 [ 895.240799][T18718] do_fast_syscall_32+0x32/0x80 [ 895.240809][T18718] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 895.240823][T18718] RIP: 0023:0xf708e579 [ 895.240832][T18718] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 895.240842][T18718] RSP: 002b:00000000f547e55c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8 [ 895.240853][T18718] RAX: ffffffffffffffda RBX: 00000000f7f7d000 RCX: 00000000000000e7 [ 895.240859][T18718] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000 [ 895.240865][T18718] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 895.240871][T18718] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 895.240877][T18718] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 895.240891][T18718] [ 895.240909][T18718] Mem-Info: [ 895.354016][T18718] active_anon:3552 inactive_anon:3573 isolated_anon:0 [ 895.354016][T18718] active_file:1802 inactive_file:509 isolated_file:0 [ 895.354016][T18718] unevictable:1789 dirty:13 writeback:9 [ 895.354016][T18718] slab_reclaimable:6718 slab_unreclaimable:74826 [ 895.354016][T18718] mapped:22844 shmem:7699 pagetables:1600 [ 895.354016][T18718] sec_pagetables:347 bounce:0 [ 895.354016][T18718] kernel_misc_reclaimable:0 [ 895.354016][T18718] free:22077 free_pcp:925 free_cma:0 [ 895.368049][T18718] Node 0 active_anon:2312kB inactive_anon:1108kB active_file:200kB inactive_file:56kB unevictable:3620kB isolated(anon):0kB isolated(file):0kB mapped:2196kB dirty:52kB writeback:0kB shmem:7088kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:7824kB pagetables:2088kB sec_pagetables:1148kB all_unreclaimable? no Balloon:0kB [ 895.377545][T18718] Node 1 active_anon:14188kB inactive_anon:10936kB active_file:7252kB inactive_file:1856kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:91280kB dirty:60kB writeback:0kB shmem:23836kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5664kB pagetables:4356kB sec_pagetables:240kB all_unreclaimable? no Balloon:0kB [ 895.389862][T18718] Node 0 DMA free:2028kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:220kB local_pcp:0kB free_cma:0kB [ 895.401411][T18718] lowmem_reserve[]: 0 288 288 288 288 [ 895.403893][T18718] Node 0 DMA32 free:15132kB boost:0kB min:13220kB low:16524kB high:19828kB reserved_highatomic:2048KB free_highatomic:256KB active_anon:3172kB inactive_anon:516kB active_file:108kB inactive_file:132kB unevictable:3620kB writepending:0kB present:1032196kB managed:295080kB mlocked:84kB bounce:0kB free_pcp:2124kB local_pcp:28kB free_cma:0kB [ 895.416609][T18718] lowmem_reserve[]: 0 0 0 0 0 [ 895.418578][T18718] Node 1 DMA32 free:69048kB boost:0kB min:47140kB low:58924kB high:70708kB reserved_highatomic:2048KB free_highatomic:136KB active_anon:10464kB inactive_anon:16140kB active_file:720kB inactive_file:7640kB unevictable:3536kB writepending:16kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:2328kB local_pcp:296kB free_cma:0kB [ 895.431786][T18718] lowmem_reserve[]: 0 0 0 0 0 [ 895.434901][T18718] Node 0 DMA: 1*4kB (M) 2*8kB (UM) 0*16kB 6*32kB (U) 2*64kB (M) 1*128kB (M) 0*256kB 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 2004kB [ 895.440566][T18718] Node 0 DMA32: 76*4kB (MEH) 46*8kB (UMEH) 73*16kB (UEH) 24*32kB (UMEH) 68*64kB (UM) 32*128kB (UM) 7*256kB (UM) 5*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 15408kB [ 895.451277][T18718] Node 1 DMA32: 203*4kB (UM) 304*8kB (UMEH) 357*16kB (UME) 154*32kB (UME) 134*64kB (UME) 69*128kB (UMEH) 27*256kB (UME) 32*512kB (UME) 11*1024kB (UM) 0*2048kB 0*4096kB = 65852kB [ 895.459843][T18718] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 895.464110][T18718] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 895.469006][T18718] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 895.472813][T18718] Node 1 hugepages_total=6 hugepages_free=3 hugepages_surp=4 hugepages_size=2048kB [ 895.477309][T18718] 11412 total pagecache pages [ 895.479530][T18718] 722 pages in swap cache [ 895.481840][T18718] Free swap = 0kB [ 895.484173][T18718] Total swap = 124996kB [ 895.488745][T18718] 524155 pages RAM [ 895.491078][T18718] 0 pages HighMem/MovableOnly [ 895.493349][T18718] 209490 pages reserved [ 895.495384][T18718] 0 pages cma reserved [ 896.068202][T18742] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 896.071360][T18742] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 896.153088][T18721] all (unregistering): Released all slaves [ 896.813117][T18753] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 896.816208][T18753] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 897.367082][ T40] audit: type=1800 audit(1758377112.215:14926): pid=18775 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2685" name="nullb0" dev="tmpfs" ino=653 res=0 errno=0 [ 897.501068][T18768] all (unregistering): Released all slaves [ 897.516003][T18790] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2691'. [ 897.520945][T18790] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2691'. [ 897.524856][T18790] netlink: 'syz.0.2691': attribute type 20 has an invalid length. [ 898.182933][ T24] kernel write not supported for file /dsp (pid: 24 comm: kworker/2:0) [ 898.397851][T18819] syz.3.2703 (18819): drop_caches: 2 [ 898.399787][T18819] syz.3.2703 (18819): drop_caches: 2 [ 898.406758][T18819] syz.3.2703 (18819): drop_caches: 2 [ 898.654915][T18818] all (unregistering): Released all slaves [ 898.804711][ T34] usb 8-1: new high-speed USB device number 58 using dummy_hcd [ 898.965543][ T34] usb 8-1: unable to get BOS descriptor or descriptor too short [ 898.969267][ T34] usb 8-1: config 6 has an invalid interface number: 200 but max is 0 [ 898.971898][ T34] usb 8-1: config 6 has no interface number 0 [ 898.973966][ T34] usb 8-1: config 6 interface 200 has no altsetting 0 [ 898.978612][ T34] usb 8-1: New USB device found, idVendor=05d8, idProduct=810c, bcdDevice=18.5f [ 898.982273][ T34] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 898.985143][ T34] usb 8-1: Product: syz [ 898.986559][ T34] usb 8-1: Manufacturer: syz [ 898.988139][ T34] usb 8-1: SerialNumber: syz [ 899.422540][ T34] dvb-usb: found a 'Artec T14 - USB2.0 DVB-T' in warm state. [ 899.451193][T18868] all (unregistering): Released all slaves [ 899.622556][ T34] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 899.626207][ T34] dvbdev: DVB: registering new adapter (Artec T14 - USB2.0 DVB-T) [ 899.629595][ T34] usb 8-1: media controller created [ 899.640134][ T34] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 899.821283][ T34] dvb-usb: bulk message failed: -71 (6/0) [ 899.824734][ T34] dvb-usb: bulk message failed: -71 (6/0) [ 899.827842][ T34] dvb-usb: no frontend was attached by 'Artec T14 - USB2.0 DVB-T' [ 899.832543][ T34] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb8/8-1/input/input25 [ 899.838630][ T34] dvb-usb: schedule remote query interval to 150 msecs. [ 899.841689][ T34] dvb-usb: Artec T14 - USB2.0 DVB-T successfully initialized and connected. [ 899.858617][ T34] usb 8-1: USB disconnect, device number 58 [ 899.883722][ T34] dvb-usb: Artec T14 - USB2.0 DVB-T successfully deinitialized and disconnected. [ 900.251065][T18878] all (unregistering): Released all slaves [ 900.431288][T18888] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2730'. [ 900.772381][T18897] all (unregistering): Released all slaves [ 900.991098][T18900] all (unregistering): Released all slaves [ 901.654709][ T6058] usb 8-1: new high-speed USB device number 59 using dummy_hcd [ 901.806244][ T6058] usb 8-1: config index 0 descriptor too short (expected 23569, got 27) [ 901.809003][ T6058] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 901.812999][ T6058] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 901.817189][ T6058] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 901.819694][ T6058] usb 8-1: Manufacturer: syz [ 901.824740][ T6058] usb 8-1: config 0 descriptor?? [ 901.874435][T18924] all (unregistering): Released all slaves [ 901.941782][T18936] 9pnet_fd: Insufficient options for proto=fd [ 902.004696][ T6058] rc_core: IR keymap rc-hauppauge not found [ 902.007689][ T6058] Registered IR keymap rc-empty [ 902.012212][ T6058] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0 [ 902.019029][ T6058] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input26 [ 902.049467][T17264] usb 8-1: USB disconnect, device number 59 [ 902.073359][T18949] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 902.142024][T18957] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2758'. [ 902.263479][T18969] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2764'. [ 902.355401][T18981] openvswitch: netlink: Multiple metadata blocks provided [ 903.016582][T19024] fuse: Unknown parameter 'group_id00000000000000000000' [ 903.021882][T19024] rdma_rxe: rxe_newlink: failed to add lo [ 903.072693][T19028] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2788'. [ 903.072709][T19028] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2788'. [ 903.072725][T19028] netlink: 'syz.2.2788': attribute type 15 has an invalid length. [ 903.324778][ T6058] usb 8-1: new high-speed USB device number 60 using dummy_hcd [ 903.480893][ T6058] usb 8-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config [ 903.490456][ T6058] usb 8-1: config 27 has 0 interfaces, different from the descriptor's value: 1 [ 903.494464][ T6058] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 903.498823][ T6058] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 903.729492][ T24] usb 8-1: USB disconnect, device number 60 [ 903.777337][T19078] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2811'. [ 903.879639][T19087] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2814'. [ 903.888819][T19087] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2814'. [ 904.035632][T19079] all (unregistering): Released all slaves [ 904.354895][T19092] all (unregistering): Released all slaves [ 904.479621][T19103] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2820'. [ 904.759583][T19129] lo: entered promiscuous mode [ 904.769131][T19129] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 904.774893][ T34] lo speed is unknown, defaulting to 1000 [ 904.776751][ T34] sz1: Port: 1 Link ACTIVE [ 904.778350][ T34] lo speed is unknown, defaulting to 1000 [ 905.258948][T19154] all (unregistering): Released all slaves [ 906.523442][ T24] hid-generic 0003:0004:0000.0008: unknown main item tag 0x0 [ 906.526912][ T24] hid-generic 0003:0004:0000.0008: unknown main item tag 0x0 [ 906.528540][T19207] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 906.531122][ T24] hid-generic 0003:0004:0000.0008: unknown main item tag 0x0 [ 906.532726][T19207] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 906.534701][ T24] hid-generic 0003:0004:0000.0008: unknown main item tag 0x0 [ 906.539326][ T24] hid-generic 0003:0004:0000.0008: unknown main item tag 0x0 [ 906.541755][ T24] hid-generic 0003:0004:0000.0008: unknown main item tag 0x0 [ 906.544201][ T24] hid-generic 0003:0004:0000.0008: unknown main item tag 0x0 [ 906.546848][ T24] hid-generic 0003:0004:0000.0008: unknown main item tag 0x0 [ 906.549237][ T24] hid-generic 0003:0004:0000.0008: unknown main item tag 0x0 [ 906.551537][ T24] hid-generic 0003:0004:0000.0008: unknown main item tag 0x0 [ 906.565002][ T24] hid-generic 0003:0004:0000.0008: hidraw1: USB HID v0.00 Device [syz0] on syz1 [ 906.668399][T19209] fido_id[19209]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 907.282810][T19259] batadv_slave_0: entered promiscuous mode [ 907.287358][T19258] batadv_slave_0: left promiscuous mode [ 907.528587][T19269] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 907.612608][T19275] binder: 19274:19275 ioctl c018620c 80000080 returned -1 [ 907.914633][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 908.019742][T19283] all (unregistering): Released all slaves [ 908.954711][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 909.226884][T19330] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2913'. [ 909.231388][T19330] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2913'. [ 910.004633][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 911.034649][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 911.050544][T19379] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2930'. [ 911.604518][T19405] all (unregistering): Released all slaves [ 912.055308][T19432] netlink: 112 bytes leftover after parsing attributes in process `syz.1.2952'. [ 912.074634][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 912.268576][T19450] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.2961' sets config #0 [ 912.612310][T19454] all (unregistering): Released all slaves [ 913.051241][T19468] all (unregistering): Released all slaves [ 913.114652][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 913.122490][T19480] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2972'. [ 913.363282][T19485] overlayfs: failed to clone upperpath [ 913.468344][T19491] 9pnet_fd: Insufficient options for proto=fd [ 913.639500][T19501] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 913.647597][T19501] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 913.933943][T19515] syzkaller1: entered promiscuous mode [ 913.935834][T19515] syzkaller1: entered allmulticast mode [ 914.164674][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 914.512865][T19534] tap0: tun_chr_ioctl cmd 1074025675 [ 914.515454][T19534] tap0: persist enabled [ 914.517953][T19534] tap0: tun_chr_ioctl cmd 1074025675 [ 914.520156][T19534] tap0: persist disabled [ 914.623441][T19543] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 914.628115][T19543] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 914.959821][T19555] usb usb8: usbfs: process 19555 (syz.1.3003) did not claim interface 0 before use [ 915.194648][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 915.334825][T19562] fuse: Unknown parameter 'group_id00000000000000000000' [ 915.405840][T19552] rdma_rxe: rxe_newlink: failed to add lo [ 916.005158][T19586] all (unregistering): Released all slaves [ 916.098006][T19587] all (unregistering): Released all slaves [ 916.244744][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 916.647967][T19597] input: syz0 as /devices/virtual/input/input27 [ 917.274712][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 918.040716][T19637] "syz.3.3033" (19637) uses obsolete ecb(arc4) skcipher [ 918.123578][T19631] all (unregistering): Released all slaves [ 918.314783][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 918.494673][ T5974] usb 8-1: new high-speed USB device number 61 using dummy_hcd [ 918.646043][ T5974] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 918.649580][ T5974] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 918.653002][ T5974] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 918.657016][ T5974] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 918.660876][T19656] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3039'. [ 918.663299][T19654] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 918.663920][T19656] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3039'. [ 918.672650][ T5974] usb 8-1: Quirk or no altset; falling back to MIDI 1.0 [ 918.872239][ T5974] usb 8-1: USB disconnect, device number 61 [ 919.364654][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 919.597032][T19689] all (unregistering): Released all slaves [ 920.144292][T19719] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3062'. [ 920.394691][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 921.434624][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 921.451804][T19750] all (unregistering): Released all slaves [ 921.683361][T19759] overlayfs: failed to clone upperpath [ 921.687615][T19759] overlayfs: failed to clone upperpath [ 922.424970][T19795] all (unregistering): Released all slaves [ 922.484677][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 922.999004][T19821] overlayfs: failed to clone lowerpath [ 923.251410][T19834] netlink: 'syz.3.3098': attribute type 10 has an invalid length. [ 923.514751][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 923.535066][T19851] netlink: 'syz.1.3104': attribute type 2 has an invalid length. [ 923.542218][T19851] netlink: 532 bytes leftover after parsing attributes in process `syz.1.3104'. [ 923.607011][T19828] all (unregistering): Released all slaves [ 923.727587][T19851] batman_adv: batadv0: Interface deactivated: dummy0 [ 923.749557][T19851] batman_adv: batadv0: Removing interface: dummy0 [ 923.970165][T19852] all (unregistering): Released all slaves [ 924.077980][T19848] all (unregistering): Released all slaves [ 924.179648][T19871] "syz.3.3110" (19871) uses obsolete ecb(arc4) skcipher [ 924.252402][T19876] input: syz0 as /devices/virtual/input/input28 [ 924.302439][T19879] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3113'. [ 924.550037][T19877] all (unregistering): Released all slaves [ 924.554849][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 925.604751][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 926.042540][T19951] overlayfs: failed to clone upperpath [ 926.364697][ T5974] usb 8-1: new high-speed USB device number 62 using dummy_hcd [ 926.592712][ T5974] usb 8-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 926.595659][ T5974] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 926.598409][ T5974] usb 8-1: Product: syz [ 926.599723][ T5974] usb 8-1: Manufacturer: syz [ 926.601202][ T5974] usb 8-1: SerialNumber: syz [ 926.604034][ T5974] usb 8-1: config 0 descriptor?? [ 926.634720][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 926.833847][ T5974] usb 8-1: USB disconnect, device number 62 [ 927.340442][T19987] all (unregistering): Released all slaves [ 927.674633][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 927.750993][T19998] all (unregistering): Released all slaves [ 927.930646][T20002] all (unregistering): Released all slaves [ 928.499700][T20027] 9pnet_fd: p9_fd_create_tcp (20027): problem connecting socket to 127.0.0.1 [ 928.554332][T20032] loop6: detected capacity change from 0 to 2560 [ 928.565865][T20032] Buffer I/O error on dev loop6, logical block 0, async page read [ 928.569627][T20032] Buffer I/O error on dev loop6, logical block 0, async page read [ 928.573093][T20032] Buffer I/O error on dev loop6, logical block 0, async page read [ 928.573656][T20034] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3169'. [ 928.579298][T20032] Buffer I/O error on dev loop6, logical block 0, async page read [ 928.582922][T20032] Buffer I/O error on dev loop6, logical block 0, async page read [ 928.588237][T20032] Buffer I/O error on dev loop6, logical block 0, async page read [ 928.591696][T20032] Buffer I/O error on dev loop6, logical block 0, async page read [ 928.599482][T20032] Buffer I/O error on dev loop6, logical block 0, async page read [ 928.602920][T20032] ldm_validate_partition_table(): Disk read failed. [ 928.606814][T20032] Buffer I/O error on dev loop6, logical block 0, async page read [ 928.611300][T20032] Buffer I/O error on dev loop6, logical block 0, async page read [ 928.615225][T20032] Dev loop6: unable to read RDB block 0 [ 928.617655][T20037] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0xc800 phys_seg 128 prio class 2 [ 928.618112][T20032] loop6: unable to read partition table [ 928.621491][T20037] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0xc800 phys_seg 128 prio class 2 [ 928.624126][T20032] loop_reread_partitions: partition scan of loop6 (3 ) failed (rc=-5) [ 928.633521][T20037] I/O error, dev loop6, sector 1008 op 0x1:(WRITE) flags 0xc800 phys_seg 128 prio class 2 [ 928.637737][T20037] I/O error, dev loop6, sector 1008 op 0x1:(WRITE) flags 0xc800 phys_seg 128 prio class 2 [ 928.642368][T20037] I/O error, dev loop6, sector 2016 op 0x1:(WRITE) flags 0x8800 phys_seg 3 prio class 2 [ 928.645610][T20037] I/O error, dev loop6, sector 2016 op 0x1:(WRITE) flags 0x8800 phys_seg 3 prio class 2 [ 928.648852][T20037] I/O error, dev loop6, sector 2032 op 0x1:(WRITE) flags 0x8800 phys_seg 67 prio class 2 [ 928.651989][T20037] I/O error, dev loop6, sector 2032 op 0x1:(WRITE) flags 0x8800 phys_seg 67 prio class 2 [ 928.724751][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 929.050899][T20046] all (unregistering): Released all slaves [ 929.232501][T20072] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 929.237069][T20072] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 929.754794][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 929.788996][T20107] syzkaller1: entered promiscuous mode [ 929.791127][T20107] syzkaller1: entered allmulticast mode [ 929.896166][T17264] usb 8-1: new low-speed USB device number 63 using dummy_hcd [ 930.057120][T17264] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 930.059516][T17264] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 930.062927][T17264] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 930.073663][T17264] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 930.078103][T17264] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 930.082584][T17264] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 930.085702][T17264] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 930.094060][T17264] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 930.097977][T17264] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 930.101832][T17264] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 930.106300][T17264] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 930.108612][T17264] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 930.111956][T17264] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 930.115622][T17264] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 930.119020][T17264] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 930.125231][T17264] usb 8-1: string descriptor 0 read error: -22 [ 930.127231][T17264] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 930.130012][T17264] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 930.167602][T17264] adutux 8-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 930.362664][T17264] usb 8-1: USB disconnect, device number 63 [ 930.513585][T20127] all (unregistering): Released all slaves [ 930.794665][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 930.891072][T20137] input: syz0 as /devices/virtual/input/input29 [ 930.893230][T20137] input: failed to attach handler leds to device input29, error: -6 [ 931.117698][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 931.316737][T20162] Bluetooth: MGMT ver 1.23 [ 931.528581][T20172] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3220'. [ 931.834731][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 932.558392][T20191] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 932.825965][T20193] all (unregistering): Released all slaves [ 932.874670][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 933.548723][T20211] all (unregistering): Released all slaves [ 933.601636][T20212] all (unregistering): Released all slaves [ 933.914732][ C1] IPVS: ovf: UDP 224.0.0.2:0 - no destination available [ 934.297473][T20224] all (unregistering): Released all slaves [ 935.223897][T20246] all (unregistering): Released all slaves [ 935.358287][T13339] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 935.368264][T13339] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 935.373172][T13339] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 935.379324][T13339] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 935.383722][T13339] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 935.403629][ T5990] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 935.406429][ T5990] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 935.409191][ T5990] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 935.412891][ T5990] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 935.415473][ T5990] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 935.525729][T20261] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3251'. [ 935.580645][T20250] lo speed is unknown, defaulting to 1000 [ 935.583181][T20250] lo speed is unknown, defaulting to 1000 [ 935.585952][T20250] lo speed is unknown, defaulting to 1000 [ 935.660136][T20250] lo speed is unknown, defaulting to 1000 [ 935.741242][T20250] chnl_net:caif_netlink_parms(): no params data found [ 935.794135][T20281] tipc: Cannot configure node identity twice [ 935.866901][T20250] bridge0: port 1(bridge_slave_0) entered blocking state [ 935.870047][T20250] bridge0: port 1(bridge_slave_0) entered disabled state [ 935.873360][T20250] bridge_slave_0: entered allmulticast mode [ 935.878468][T20250] bridge_slave_0: entered promiscuous mode [ 935.883887][T20250] bridge0: port 2(bridge_slave_1) entered blocking state [ 935.887164][T20250] bridge0: port 2(bridge_slave_1) entered disabled state [ 935.890318][T20250] bridge_slave_1: entered allmulticast mode [ 935.894288][T20250] bridge_slave_1: entered promiscuous mode [ 935.952128][T20250] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 935.960866][T20250] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 936.004255][T20250] team0: Port device team_slave_0 added [ 936.008327][T20250] team0: Port device team_slave_1 added [ 936.042544][T20250] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 936.045631][T20250] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 936.053788][T20250] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 936.058292][T20250] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 936.060579][T20250] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 936.068685][T20250] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 936.110307][T20250] hsr_slave_0: entered promiscuous mode [ 936.113272][T20250] hsr_slave_1: entered promiscuous mode [ 936.116944][T20250] debugfs: 'hsr0' already exists in 'hsr' [ 936.118782][T20250] Cannot create hsr debugfs directory [ 936.250849][T20250] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 936.257084][T20250] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 936.261371][T20250] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 936.268789][T20250] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 936.325258][T20250] 8021q: adding VLAN 0 to HW filter on device bond0 [ 936.337438][T20302] netlink: 'syz.0.3259': attribute type 1 has an invalid length. [ 936.352673][T20302] bond7: entered promiscuous mode [ 936.354637][T20302] 8021q: adding VLAN 0 to HW filter on device bond7 [ 936.358864][T20250] 8021q: adding VLAN 0 to HW filter on device team0 [ 936.373747][ T80] bridge0: port 1(bridge_slave_0) entered blocking state [ 936.376840][ T80] bridge0: port 1(bridge_slave_0) entered forwarding state [ 936.385812][T20302] bond7: (slave bridge5): making interface the new active one [ 936.388210][T20302] bridge5: entered promiscuous mode [ 936.391295][T20302] bond7: (slave bridge5): Enslaving as an active interface with an up link [ 936.399895][ T80] bridge0: port 2(bridge_slave_1) entered blocking state [ 936.402256][ T80] bridge0: port 2(bridge_slave_1) entered forwarding state [ 936.558712][T20250] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 936.701941][T20250] veth0_vlan: entered promiscuous mode [ 936.707327][T20250] veth1_vlan: entered promiscuous mode [ 936.721557][T20250] veth0_macvtap: entered promiscuous mode [ 936.725299][T20250] veth1_macvtap: entered promiscuous mode [ 936.734102][T20250] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 936.746478][T20250] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 936.753669][T14830] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 936.757482][T14830] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 936.760241][T14830] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 936.765310][T14830] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 936.808472][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 936.811270][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 936.837670][ T7071] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 936.840312][ T7071] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 937.335020][T20324] all (unregistering): Released all slaves [ 937.421732][T20337] all (unregistering): Released all slaves [ 937.445112][T13339] Bluetooth: hci3: command tx timeout [ 937.590715][T20345] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 937.595092][T20345] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 937.802942][T20349] policy can only be matched on NF_INET_PRE_ROUTING [ 937.802960][T20349] unable to load match [ 938.857580][T20360] all (unregistering): Released all slaves [ 939.070338][T20373] overlayfs: failed to clone upperpath [ 939.266196][T20362] all (unregistering): Released all slaves [ 939.514715][T13339] Bluetooth: hci3: command tx timeout [ 939.704969][T20388] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 939.708602][T20388] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 940.342583][T20400] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3288'. [ 940.367925][T20400] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3288'. [ 940.735996][T20407] all (unregistering): Released all slaves [ 941.046720][T20414] all (unregistering): Released all slaves [ 941.341054][T20430] overlayfs: failed to decode file handle (len=4, type=248, flags=0, err=-22) [ 941.384896][T20304] usb 9-1: new high-speed USB device number 2 using dummy_hcd [ 941.556774][T20304] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 941.561164][T20304] usb 9-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 941.565334][T20304] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 941.569057][T20304] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 941.575335][T20304] usb 9-1: config 0 descriptor?? [ 941.595376][T13339] Bluetooth: hci3: command tx timeout [ 941.884268][T20439] all (unregistering): Released all slaves [ 941.911303][T20436] all (unregistering): Released all slaves [ 942.018295][T20304] usb 9-1: USB disconnect, device number 2 [ 943.423691][T20473] all (unregistering): Released all slaves [ 943.684702][T13339] Bluetooth: hci3: command tx timeout [ 945.594939][T20543] overlayfs: failed to clone upperpath [ 945.694089][T20551] netlink: 'syz.0.3335': attribute type 1 has an invalid length. [ 945.709968][T20554] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3337'. [ 945.746578][T20551] dummy0: left promiscuous mode [ 946.540464][T20587] all (unregistering): Released all slaves [ 946.996504][T20607] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 947.000454][T20607] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 947.658026][T20637] overlayfs: failed to clone upperpath [ 947.877043][T20627] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input30 [ 949.358753][ T5916] sshd-session invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=0 [ 949.363616][ T5916] CPU: 3 UID: 0 PID: 5916 Comm: sshd-session Not tainted syzkaller #0 PREEMPT(full) [ 949.363631][ T5916] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 949.363638][ T5916] Call Trace: [ 949.363642][ T5916] [ 949.363647][ T5916] dump_stack_lvl+0x16c/0x1f0 [ 949.363668][ T5916] dump_header+0x101/0x930 [ 949.363686][ T5916] oom_kill_process+0x272/0xa40 [ 949.363701][ T5916] ? oom_cpuset_eligible.isra.0+0x199/0x2d0 [ 949.363715][ T5916] out_of_memory+0x1405/0x1700 [ 949.363731][ T5916] ? __pfx_out_of_memory+0x10/0x10 [ 949.363749][ T5916] __alloc_frozen_pages_noprof+0x1d53/0x23f0 [ 949.363771][ T5916] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 949.363793][ T5916] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 949.363811][ T5916] ? policy_nodemask+0xea/0x4e0 [ 949.363827][ T5916] alloc_pages_mpol+0x1fb/0x550 [ 949.363842][ T5916] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 949.363855][ T5916] ? _raw_spin_unlock+0x28/0x50 [ 949.363870][ T5916] ? swap_entry_swapped+0x122/0x190 [ 949.363884][ T5916] ? __pfx_swap_entry_swapped+0x10/0x10 [ 949.363900][ T5916] folio_alloc_mpol_noprof+0x36/0x2f0 [ 949.363917][ T5916] __read_swap_cache_async+0x3b6/0x5a0 [ 949.363931][ T5916] ? __pfx___read_swap_cache_async+0x10/0x10 [ 949.363948][ T5916] ? swp_swap_info+0xce/0x130 [ 949.363962][ T5916] ? __pfx_swp_swap_info+0x10/0x10 [ 949.363980][ T5916] swap_cluster_readahead+0x4e1/0x710 [ 949.363995][ T5916] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 949.364015][ T5916] ? get_vma_policy+0x242/0x3c0 [ 949.364031][ T5916] swapin_readahead+0x13a/0xd60 [ 949.364047][ T5916] ? __pfx_swapin_readahead+0x10/0x10 [ 949.364057][ T5916] ? __filemap_get_folio+0x32b/0xc30 [ 949.364075][ T5916] ? swap_cache_get_folio+0x1df/0x450 [ 949.364087][ T5916] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 949.364097][ T5916] ? __pfx_get_swap_device+0x10/0x10 [ 949.364111][ T5916] ? do_swap_page+0x12e/0x6600 [ 949.364129][ T5916] do_swap_page+0x5c7/0x6600 [ 949.364146][ T5916] ? __lock_acquire+0x62e/0x1ce0 [ 949.364165][ T5916] ? __pfx_do_swap_page+0x10/0x10 [ 949.364182][ T5916] ? __pfx_default_wake_function+0x10/0x10 [ 949.364197][ T5916] ? rcu_is_watching+0x12/0xc0 [ 949.364208][ T5916] ? ___pte_offset_map+0x2ad/0x4f0 [ 949.364225][ T5916] __handle_mm_fault+0x1719/0x2a50 [ 949.364238][ T5916] ? mt_find+0x3ef/0xa30 [ 949.364249][ T5916] ? __pfx___handle_mm_fault+0x10/0x10 [ 949.364259][ T5916] ? __pfx_mt_find+0x10/0x10 [ 949.364277][ T5916] ? find_vma+0xbf/0x140 [ 949.364291][ T5916] ? __pfx_find_vma+0x10/0x10 [ 949.364306][ T5916] handle_mm_fault+0x589/0xd10 [ 949.364318][ T5916] ? trace_raw_output_exceptions+0x131/0x150 [ 949.364337][ T5916] do_user_addr_fault+0x7a6/0x1370 [ 949.364355][ T5916] ? rcu_is_watching+0x12/0xc0 [ 949.364367][ T5916] exc_page_fault+0x5c/0xb0 [ 949.364386][ T5916] asm_exc_page_fault+0x26/0x30 [ 949.364401][ T5916] RIP: 0010:__get_user_8+0x14/0x30 [ 949.364421][ T5916] Code: ca e9 50 17 04 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 ba 00 f0 ff ff ff 7f 00 00 48 39 d0 48 0f 47 c2 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00 [ 949.364439][ T5916] RSP: 0000:ffffc90002f6fe38 EFLAGS: 00050283 [ 949.364452][ T5916] RAX: 00007feb6ff92168 RBX: 00007feb6ff92168 RCX: ffffc90002f6fddc [ 949.364463][ T5916] RDX: 00007ffffffff000 RSI: ffffffff81effd47 RDI: ffffffff8c163780 [ 949.364473][ T5916] RBP: ffffc90002f6ff28 R08: 2cfb7b1ab8be5804 R09: 0000000000000001 [ 949.364485][ T5916] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888024128000 [ 949.364494][ T5916] R13: ffffc90002f6ff58 R14: ffff888024128000 R15: ffffc90002f6fea0 [ 949.364508][ T5916] ? __rseq_handle_notify_resume+0x177/0x10e0 [ 949.364526][ T5916] __rseq_handle_notify_resume+0x183/0x10e0 [ 949.364541][ T5916] ? blkcg_maybe_throttle_current+0x650/0xf30 [ 949.364572][ T5916] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 949.364594][ T5916] irqentry_exit_to_user_mode+0x18d/0x290 [ 949.364612][ T5916] asm_exc_page_fault+0x26/0x30 [ 949.364621][ T5916] RIP: 0033:0x55faa70e18f6 [ 949.364634][ T5916] Code: Unable to access opcode bytes at 0x55faa70e18cc. [ 949.364639][ T5916] RSP: 002b:00007ffde52d99f0 EFLAGS: 00010206 [ 949.364647][ T5916] RAX: 0000000000000218 RBX: 0000000000040000 RCX: 00007ffde52d9a00 [ 949.364654][ T5916] RDX: 0000000000000218 RSI: 000055fae2523c20 RDI: 0000000000000004 [ 949.364661][ T5916] RBP: 00007ffde52d9a50 R08: 0000000000000000 R09: 0000000000000000 [ 949.364667][ T5916] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 949.364673][ T5916] R13: 0000000000000004 R14: 000055fae2424620 R15: 0000000000000004 [ 949.364689][ T5916] [ 949.622099][ T5916] Mem-Info: [ 949.668915][ T5916] active_anon:72 inactive_anon:568 isolated_anon:0 [ 949.668915][ T5916] active_file:247 inactive_file:171 isolated_file:0 [ 949.668915][ T5916] unevictable:1772 dirty:0 writeback:0 [ 949.668915][ T5916] slab_reclaimable:6826 slab_unreclaimable:78363 [ 949.668915][ T5916] mapped:20688 shmem:1768 pagetables:1545 [ 949.668915][ T5916] sec_pagetables:348 bounce:0 [ 949.668915][ T5916] kernel_misc_reclaimable:0 [ 949.668915][ T5916] free:15713 free_pcp:120 free_cma:0 [ 949.704657][ T5916] Node 0 active_anon:0kB inactive_anon:504kB active_file:0kB inactive_file:0kB unevictable:3552kB isolated(anon):0kB isolated(file):0kB mapped:332kB dirty:0kB writeback:0kB shmem:4336kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:7632kB pagetables:1540kB sec_pagetables:1148kB all_unreclaimable? yes Balloon:0kB [ 949.734651][ T5916] Node 1 active_anon:56kB inactive_anon:2432kB active_file:652kB inactive_file:2140kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:82820kB dirty:0kB writeback:0kB shmem:2736kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:6252kB pagetables:4640kB sec_pagetables:244kB all_unreclaimable? no Balloon:0kB [ 949.770232][ T5916] Node 0 DMA free:1904kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:24kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 949.804679][ T5916] lowmem_reserve[]: 0 288 288 288 288 [ 949.807032][ T5916] Node 0 DMA32 free:12704kB boost:0kB min:13220kB low:16524kB high:19828kB reserved_highatomic:0KB free_highatomic:0KB active_anon:656kB inactive_anon:0kB active_file:20kB inactive_file:0kB unevictable:3552kB writepending:0kB present:1032196kB managed:295080kB mlocked:16kB bounce:0kB free_pcp:32kB local_pcp:0kB free_cma:0kB [ 949.834672][ T5916] lowmem_reserve[]: 0 0 0 0 0 [ 949.837511][ T5916] Node 1 DMA32 free:47316kB boost:0kB min:47140kB low:58924kB high:70708kB reserved_highatomic:0KB free_highatomic:0KB active_anon:80kB inactive_anon:2628kB active_file:508kB inactive_file:2456kB unevictable:3536kB writepending:0kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:1248kB local_pcp:440kB free_cma:0kB [ 949.864919][ T5916] lowmem_reserve[]: 0 0 0 0 0 [ 949.867263][ T5916] Node 0 DMA: 2*4kB (M) 1*8kB (U) 3*16kB (M) 2*32kB (UM) 2*64kB (M) 1*128kB (M) 0*256kB 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 1920kB [ 949.873481][ T5916] Node 0 DMA32: 199*4kB (UME) 131*8kB (UME) 65*16kB (UME) 72*32kB (UME) 37*64kB (M) 18*128kB (UM) 4*256kB (M) 3*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 12420kB [ 949.894852][ T5916] Node 1 DMA32: 114*4kB (UME) 405*8kB (ME) 310*16kB (UME) 220*32kB (UME) 121*64kB (UME) 76*128kB (UME) 25*256kB (UME) 12*512kB (UM) 1*1024kB (U) 0*2048kB 0*4096kB = 46736kB [ 949.900953][ T5916] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 949.904018][ T5916] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 949.924707][ T5916] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 949.928887][ T5916] Node 1 hugepages_total=5 hugepages_free=3 hugepages_surp=3 hugepages_size=2048kB [ 949.933046][ T5916] 2968 total pagecache pages [ 949.954838][ T5916] 688 pages in swap cache [ 949.956384][ T5916] Free swap = 17072kB [ 949.957777][ T5916] Total swap = 124996kB [ 949.959239][ T5916] 524155 pages RAM [ 949.960519][ T5916] 0 pages HighMem/MovableOnly [ 949.962044][ T5916] 209490 pages reserved [ 949.963346][ T5916] 0 pages cma reserved [ 949.974696][ T5916] Unreclaimable slab info: [ 949.977014][ T5916] Name Used Total [ 949.979684][ T5916] pid_3 23KB 23KB [ 949.982373][ T5916] pid_2 99KB 173KB [ 949.994713][ T5916] bio-360 7KB 7KB [ 949.997304][ T5916] bio-424 8KB 8KB [ 949.999838][ T5916] bio-440 8KB 8KB [ 950.002370][ T5916] bio-536 15KB 15KB [ 950.015000][ T5916] afs_inode_cache 92KB 92KB [ 950.017497][ T5916] zspage-zswap1 173KB 173KB [ 950.020151][ T5916] zs_handle-zswap1 226KB 232KB [ 950.022832][ T5916] zswap_entry 616KB 652KB [ 950.034622][ T5916] AF_VSOCK 122KB 122KB [ 950.036699][ T5916] sw_flow_stats 12KB 12KB [ 950.038608][ T5916] sw_flow 45KB 45KB [ 950.040647][ T5916] batadv_tt_change_cache 16KB 16KB [ 950.042979][ T5916] batadv_tl_cache 16KB 16KB [ 950.046367][ T5916] ceph_osd_request 31KB 31KB [ 950.048899][ T5916] ceph_msg 7KB 7KB [ 950.051327][ T5916] IEEE-802.15.4-MAC 62KB 62KB [ 950.053534][ T5916] IEEE-802.15.4-RAW 31KB 31KB [ 950.056088][ T5916] p9_req_t 95KB 135KB [ 950.058312][ T5916] INET_SMC 122KB 122KB [ 950.065120][ T5916] SMC6 122KB 122KB [ 950.068646][ T5916] SMC 122KB 122KB [ 950.070740][ T5916] TIPC 123KB 123KB [ 950.072643][ T5916] rds_tcp_connection 63KB 63KB [ 950.074854][ T5916] RDS 128KB 128KB [ 950.076887][ T5916] rds_connection 30KB 30KB [ 950.078806][ T5916] SCTPv6 120KB 120KB [ 950.080735][ T5916] SCTP 122KB 122KB [ 950.082654][ T5916] sctp_chunk 117KB 179KB [ 950.084811][ T5916] sctp_bind_bucket 16KB 16KB [ 950.086733][ T5916] PNPIPE 61KB 61KB [ 950.088627][ T5916] PHONET 94KB 94KB [ 950.090701][ T5916] L2TP/IPv6 127KB 127KB [ 950.092567][ T5916] L2TP/IP 126KB 126KB [ 950.094493][ T5916] KCM 93KB 93KB [ 950.096836][ T5916] kcm_mux 47KB 47KB [ 950.098757][ T5916] RXRPC 128KB 128KB [ 950.100674][ T5916] rxrpc_call_jar 318KB 318KB [ 950.102626][ T5916] can_gw 12KB 12KB [ 950.105018][ T5916] can_receiver 15KB 15KB [ 950.107057][ T5916] net_bridge_fdb_entry 74KB 90KB [ 950.109077][ T5916] xfrm6_tunnel_spi 4KB 4KB [ 950.111050][ T5916] MPTCPv6 125KB 125KB [ 950.113043][ T5916] ip6-frags 7KB 7KB [ 950.115348][ T5916] fib6_node 81KB 92KB [ 950.117470][ T5916] ip6_dst_cache 140KB 187KB [ 950.119978][ T5916] mfc6_cache 16KB 16KB [ 950.122650][ T5916] PINGv6 62KB 62KB [ 950.125518][ T5916] RAWv6 217KB 217KB [ 950.128029][ T5916] UDPLITEv6 127KB 127KB [ 950.130559][ T5916] UDPv6 127KB 127KB [ 950.133176][ T5916] tw_sock_TCPv6 15KB 15KB [ 950.136278][ T5916] request_sock_TCPv6 7KB 7KB [ 950.138831][ T5916] TCPv6 475KB 607KB [ 950.141440][ T5916] nf_conntrack 94KB 133KB [ 950.144266][ T5916] wg_peer 118KB 118KB [ 950.147135][ T5916] allowedips_node 15KB 15KB [ 950.149765][ T5916] ubi_wl_entry_slab 3KB 3KB [ 950.152317][ T5916] t10_alua_lu_gp_cache 7KB 7KB [ 950.155430][ T5916] scsi_sense_cache 44KB 44KB [ 950.157959][ T5916] virtio_scsi_cmd 16KB 16KB [ 950.160401][ T5916] bio-136 152KB 156KB [ 950.162849][ T5916] io_kiocb 820KB 859KB [ 950.165434][ T5916] bio-264 31KB 31KB [ 950.168004][ T5916] mqueue_inode_cache 121KB 121KB [ 950.170309][ T5916] f2fs_bio_post_read_ctx 23KB 23KB [ 950.172872][ T5916] jfs_mp 7KB 7KB [ 950.175893][ T5916] fuse_request 95KB 174KB [ 950.178422][ T5916] cifs_small_rq 16KB 16KB [ 950.181079][ T5916] cifs_request 67KB 67KB [ 950.183781][ T5916] cifs_mpx_ids 7KB 7KB [ 950.188173][ T5916] cifs_io_subrequest 39KB 39KB [ 950.190737][ T5916] cifs_io_request 95KB 95KB [ 950.192996][ T5916] nfs_commit_data 15KB 15KB [ 950.195304][ T5916] nfs_write_data 63KB 63KB [ 950.197340][ T5916] ecryptfs_sb_cache 7KB 7KB [ 950.199304][ T5916] jbd2_inode 7KB 7KB [ 950.201656][ T5916] ext4_system_zone 3KB 3KB [ 950.204272][ T5916] ext4_io_end_vec 15KB 15KB [ 950.224657][ T5916] kioctx 127KB 127KB [ 950.226708][ T5916] aio_kiocb 31KB 31KB [ 950.228794][ T5916] userfaultfd_ctx_cache 63KB 63KB [ 950.230929][ T5916] fanotify_mark 7KB 7KB [ 950.233059][ T5916] dnotify_mark 3KB 3KB [ 950.244689][ T5916] dnotify_struct 3KB 3KB [ 950.246707][ T5916] fasync_cache 15KB 15KB [ 950.249223][ T5916] pid_namespace 30KB 30KB [ 950.251165][ T5916] kvm_async_pf 3KB 3KB [ 950.253111][ T5916] kvm_vcpu 123KB 123KB [ 950.260462][ T5916] kvm_mmu_page_header 85KB 85KB [ 950.263872][ T5916] pte_list_desc 55KB 55KB [ 950.270472][ T5916] x86_emulator 120KB 120KB [ 950.272947][ T5916] rpc_buffers 127KB 127KB [ 950.284673][ T5916] rpc_tasks 31KB 31KB [ 950.287060][ T5916] UNIX-STREAM 191KB 191KB [ 950.289600][ T5916] UNIX 510KB 733KB [ 950.292141][ T5916] ip4-frags 118KB 189KB [ 950.297085][ T5916] UDP-Lite 124KB 124KB [ 950.304677][ T5916] MPTCP 120KB 120KB [ 950.307091][ T5916] request_sock_subflow_v4 7KB 7KB [ 950.309666][ T5916] tcp_bind2_bucket 77KB 96KB [ 950.312030][ T5916] tcp_bind_bucket 61KB 80KB [ 950.314426][ T5916] inet_peer 12KB 12KB [ 950.326107][ T5916] xfrm_dst 141KB 212KB [ 950.328649][ T5916] xfrm_state 255KB 382KB [ 950.332020][ T5916] ip_fib_trie 36KB 36KB [ 950.334554][ T5916] ip_fib_alias 77KB 86KB [ 950.349071][ T5916] rtable 57KB 112KB [ 950.351036][ T5916] PING 121KB 121KB [ 950.352921][ T5916] RAW 126KB 126KB [ 950.357865][ T5916] UDP 124KB 124KB [ 950.362295][ T5916] tw_sock_TCP 7KB 7KB [ 950.364312][ T5916] request_sock_TCP 7KB 7KB [ 950.371572][ T5916] TCP 742KB 895KB [ 950.373599][ T5916] hugetlbfs_inode_cache 126KB 126KB [ 950.381918][ T5916] fscache_cookie_jar 30KB 30KB [ 950.384014][ T5916] netfs_subrequest 140KB 179KB [ 950.391626][ T5916] netfs_request 239KB 239KB [ 950.393607][ T5916] bio-280 15KB 15KB [ 950.400984][ T5916] ep_head 16KB 16KB [ 950.403138][ T5916] eventpoll_pwq 27KB 27KB [ 950.408001][ T5916] eventpoll_epi 82KB 82KB [ 950.410086][ T5916] inotify_inode_mark 23KB 23KB [ 950.412025][ T5916] sgpool-128 29KB 29KB [ 950.414032][ T5916] sgpool-64 31KB 31KB [ 950.423988][ T5916] sgpool-32 758KB 913KB [ 950.428360][ T5916] sgpool-16 171KB 234KB [ 950.430531][ T5916] sgpool-8 171KB 195KB [ 950.432604][ T5916] bio_crypt_ctx 7KB 7KB [ 950.442342][ T5916] bio_integrity_data 4KB 4KB [ 950.444084][ T5916] request_queue 255KB 255KB [ 950.450585][ T5916] blkdev_ioc 23KB 23KB [ 950.452514][ T5916] bio-200 1455KB 1488KB [ 950.454431][ T5916] biovec-max 794KB 922KB [ 950.461754][ T5916] biovec-128 31KB 31KB [ 950.463687][ T5916] biovec-64 787KB 945KB [ 950.466926][ T5916] biovec-16 136KB 175KB [ 950.471378][ T5916] khugepaged_mm_slot 15KB 15KB [ 950.473504][ T5916] ksm_mm_slot 12KB 16KB [ 950.480428][ T5916] user_namespace 15KB 15KB [ 950.482569][ T5916] uid_cache 31KB 31KB [ 950.484796][ T5916] iommu_iova_magazine 1116KB 1134KB [ 950.486840][ T5916] iommu_iova 280KB 280KB [ 950.488883][ T5916] dmaengine-unmap-256 30KB 30KB [ 950.490930][ T5916] dmaengine-unmap-128 30KB 30KB [ 950.493144][ T5916] dmaengine-unmap-16 4KB 4KB [ 950.495177][ T5916] dmaengine-unmap-2 4KB 4KB [ 950.497083][ T5916] QIPCRTR 126KB 126KB [ 950.499111][ T5916] audit_buffer 39KB 59KB [ 950.501344][ T5916] skbuff_ext_cache 76KB 116KB [ 950.503698][ T5916] skbuff_small_head 1140KB 1590KB [ 950.507033][ T5916] skbuff_fclone_cache 235KB 312KB [ 950.509047][ T5916] skbuff_head_cache 746KB 843KB [ 950.511150][ T5916] configfs_dir_cache 16KB 16KB [ 950.513274][ T5916] file_lease_cache 23KB 23KB [ 950.515336][ T5916] file_lock_cache 39KB 39KB [ 950.517237][ T5916] file_lock_ctx 15KB 15KB [ 950.519140][ T5916] fsnotify_mark_connector 15KB 15KB [ 950.521192][ T5916] posix_timers_cache 32KB 32KB [ 950.523349][ T5916] taskstats 123KB 123KB [ 950.525359][ T5916] mem_cgroup_per_node 152KB 154KB [ 950.527427][ T5916] mem_cgroup 117KB 117KB [ 950.529466][ T5916] proc_dir_entry 716KB 773KB [ 950.531369][ T5916] pde_opener 15KB 15KB [ 950.533519][ T5916] seq_file 85KB 140KB [ 950.535531][ T5916] sigqueue 66KB 86KB [ 950.537683][ T5916] shmem_inode_cache 8301KB 8469KB [ 950.539578][ T5916] kernfs_iattrs_cache 15KB 15KB [ 950.541541][ T5916] kernfs_node_cache 37698KB 37728KB [ 950.543400][ T5916] mnt_cache 117KB 149KB [ 950.545573][ T5916] bfilp 31KB 31KB [ 950.547531][ T5916] filp 461KB 559KB [ 950.549455][ T5916] names_cache 5988KB 6336KB [ 950.551352][ T5916] net_namespace 190KB 190KB [ 950.553233][ T5916] ima_iint_cache 63KB 63KB [ 950.555225][ T5916] lsm_inode_cache 1499KB 1677KB [ 950.557315][ T5916] lsm_file_cache 133KB 188KB [ 950.559358][ T5916] key_jar 79KB 126KB [ 950.561357][ T5916] uts_namespace 31KB 31KB [ 950.563546][ T5916] nsproxy 15KB 15KB [ 950.575690][ T5916] vm_area_struct 1322KB 1515KB [ 950.577633][ T5916] fs_cache 85KB 96KB [ 950.579536][ T5916] files_cache 331KB 398KB [ 950.581486][ T5916] signal_cache 965KB 1792KB [ 950.583634][ T5916] sighand_cache 1234KB 2194KB [ 950.585868][ T5916] task_struct 4866KB 5192KB [ 950.587831][ T5916] cred 180KB 356KB [ 950.589690][ T5916] anon_vma_chain 348KB 385KB [ 950.591866][ T5916] anon_vma 418KB 454KB [ 950.593942][ T5916] pid 203KB 448KB [ 950.597184][ T5916] Acpi-Operand 224KB 340KB [ 950.599161][ T5916] Acpi-ParseExt 63KB 86KB [ 950.601185][ T5916] Acpi-Parse 47KB 86KB [ 950.603086][ T5916] Acpi-State 66KB 102KB [ 950.609455][ T5916] Acpi-Namespace 52KB 52KB [ 950.611490][ T5916] shared_policy_node 16KB 16KB [ 950.613678][ T5916] numa_policy 15KB 15KB [ 950.626663][ T5916] perf_event 93KB 93KB [ 950.628567][ T5916] trace_event_file 540KB 540KB [ 950.630519][ T5916] ftrace_event_field 1008KB 1008KB [ 950.632442][ T5916] pool_workqueue 1940KB 1952KB [ 950.634354][ T5916] task_group 46KB 46KB [ 950.636512][ T5916] maple_node 1324KB 1608KB [ 950.638449][ T5916] mm_struct 499KB 620KB [ 950.640354][ T5916] vmap_area 326KB 554KB [ 950.642260][ T5916] debug_objects_cache 2622KB 2934KB [ 950.644208][ T5916] page->ptl 199KB 224KB [ 950.651923][ T5916] kmalloc-cg-8k 2544KB 2624KB [ 950.653807][ T5916] kmalloc-cg-4k 14920KB 15040KB [ 950.655846][ T5916] kmalloc-cg-2k 10540KB 10688KB [ 950.657802][ T5916] kmalloc-cg-1k 2210KB 2240KB [ 950.659699][ T5916] kmalloc-cg-512 1044KB 1344KB [ 950.661850][ T5916] kmalloc-cg-256 534KB 552KB [ 950.663874][ T5916] kmalloc-cg-128 242KB 248KB [ 950.674614][ T5916] kmalloc-cg-64 107KB 120KB [ 950.676669][ T5916] kmalloc-cg-32 75KB 176KB [ 950.678567][ T5916] kmalloc-cg-16 45KB 56KB [ 950.680383][ T5916] kmalloc-cg-8 28KB 28KB [ 950.682275][ T5916] kmalloc-cg-192 91KB 116KB [ 950.684187][ T5916] kmalloc-cg-96 34KB 76KB [ 950.704659][ T5916] kmalloc-8k 6128KB 6496KB [ 950.706608][ T5916] kmalloc-4k 17416KB 17496KB [ 950.708524][ T5916] kmalloc-2k 12076KB 13632KB [ 950.710489][ T5916] kmalloc-1k 8818KB 9248KB [ 950.712515][ T5916] kmalloc-512 9116KB 10160KB [ 950.714501][ T5916] kmalloc-256 4996KB 5000KB [ 950.724659][ T5916] kmalloc-128 880KB 1044KB [ 950.726765][ T5916] kmalloc-64 3091KB 3532KB [ 950.734701][ T5916] kmalloc-32 2478KB 2728KB [ 950.736626][ T5916] kmalloc-16 567KB 600KB [ 950.738573][ T5916] kmalloc-8 1607KB 1636KB [ 950.740708][ T5916] kmalloc-192 1922KB 1960KB [ 950.742823][ T5916] kmalloc-96 1902KB 2588KB [ 950.744847][ T5916] kmem_cache_node 224KB 228KB [ 950.746758][ T5916] kmem_cache 195KB 195KB [ 950.748681][ T5916] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/,task=sshd-session,pid=5916,uid=0 [ 950.753723][ T5916] Out of memory (oom_kill_allocating_task): Killed process 5916 (sshd-session) total-vm:15712kB, anon-rss:68kB, file-rss:180kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0 [ 950.962560][T20649] [ 950.963374][T20649] ===================================== [ 950.965139][T20649] WARNING: bad unlock balance detected! [ 950.967107][T20649] syzkaller #0 Not tainted [ 950.968764][T20649] ------------------------------------- [ 950.972592][T20649] syz.4.3372/20649 is trying to release lock (&sighand->siglock) at: [ 950.975099][T20649] [] copy_process+0x6b72/0x7690 [ 950.977546][T20649] but there are no more locks to release! [ 950.979691][T20649] [ 950.979691][T20649] other info that might help us debug this: [ 950.982224][T20649] 1 lock held by syz.4.3372/20649: [ 950.983827][T20649] #0: ffffffff8e61bbd0 (cgroup_threadgroup_rwsem){++++}-{0:0}, at: copy_process+0x4ba7/0x7690 [ 950.987164][T20649] [ 950.987164][T20649] stack backtrace: [ 950.989337][T20649] CPU: 1 UID: 0 PID: 20649 Comm: syz.4.3372 Not tainted syzkaller #0 PREEMPT(full) Connection to localhost closed by remote host. [ 950.989358][T20649] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 950.989369][T20649] Call Trace: [ 950.989377][T20649] [ 950.989386][T20649] dump_stack_lvl+0x116/0x1f0 [ 950.989412][T20649] ? copy_process+0x6b72/0x7690 [ 950.989433][T20649] print_unlock_imbalance_bug+0x11b/0x130 [ 950.989453][T20649] ? copy_process+0x6b72/0x7690 [ 950.989471][T20649] lock_release+0x242/0x2f0 [ 950.989489][T20649] _raw_spin_unlock+0x16/0x50 [ 950.989503][T20649] copy_process+0x6b72/0x7690 [ 950.989519][T20649] ? __pfx_copy_process+0x10/0x10 [ 950.989534][T20649] ? _copy_from_user+0x59/0xd0 [ 950.989546][T20649] kernel_clone+0xfc/0x930 [ 950.989559][T20649] ? __pfx_kernel_clone+0x10/0x10 [ 950.989576][T20649] __do_sys_clone3+0x212/0x290 [ 950.989590][T20649] ? __pfx___do_sys_clone3+0x10/0x10 [ 950.989606][T20649] ? handle_mm_fault+0x2ab/0xd10 [ 950.989619][T20649] ? do_user_addr_fault+0x843/0x1370 [ 950.989638][T20649] do_int80_emulation+0x104/0x3e0 [ 950.989648][T20649] asm_int80_emulation+0x1a/0x20 [ 950.989659][T20649] RIP: 0023:0xf7278380 [ 950.989673][T20649] Code: Unable to access opcode bytes at 0xf7278356. [ 950.989678][T20649] RSP: 002b:00000000ffc1cc34 EFLAGS: 00000286 ORIG_RAX: 00000000000001b3 [ 950.989688][T20649] RAX: ffffffffffffffda RBX: 00000000ffc1cca0 RCX: 0000000000000058 [ 950.989694][T20649] RDX: 00000000f7205c60 RSI: 00000000f54d6b40 RDI: 00000000ffffffd4 [ 950.989701][T20649] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000 [ 950.989707][T20649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 950.989713][T20649] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 950.989724][T20649] [ 951.066306][T20649] ------------[ cut here ]------------ [ 951.068599][T20649] pvqspinlock: lock 0xffff888026099280 has corrupted value 0x0! [ 951.071729][T20649] WARNING: CPU: 1 PID: 20649 at kernel/locking/qspinlock_paravirt.h:504 __pv_queued_spin_unlock_slowpath+0x237/0x330 [ 951.077097][T20649] Modules linked in: [ 951.078786][T20649] CPU: 1 UID: 0 PID: 20649 Comm: syz.4.3372 Not tainted syzkaller #0 PREEMPT(full) [ 951.083174][T20649] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 951.087441][T20649] RIP: 0010:__pv_queued_spin_unlock_slowpath+0x237/0x330 [ 951.090198][T20649] Code: 03 0f b6 14 02 4c 89 e8 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 67 41 8b 55 00 4c 89 ee 48 c7 c7 00 84 ad 8b e8 9a 8b e5 f5 90 <0f> 0b 90 90 e9 64 ff ff ff 90 0f 0b 48 89 df 4c 89 04 24 e8 21 04 [ 951.097151][T20649] RSP: 0000:ffffc9000367f9c8 EFLAGS: 00010286 [ 951.099296][T20649] RAX: 0000000000000000 RBX: ffff888026099280 RCX: ffffffff817a02f8 [ 951.101928][T20649] RDX: ffff888054f24880 RSI: ffffffff817a0305 RDI: 0000000000000001 [ 951.105146][T20649] RBP: ffff888026099288 R08: 0000000000000001 R09: 0000000000000000 [ 951.108041][T20649] R10: 0000000000000000 R11: 6c6e697073717670 R12: ffff888026099290 [ 951.110795][T20649] R13: ffff888026099280 R14: 00000000003d0f00 R15: ffff8880737e4880 [ 951.113935][T20649] FS: 0000000000000000(0000) GS:ffff8880975ba000(0063) knlGS:0000000056db1440 [ 951.117739][T20649] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 951.119909][T20649] CR2: 00007f6603d0c3a0 CR3: 0000000062ca4000 CR4: 0000000000352ef0 [ 951.122818][T20649] Call Trace: [ 951.123896][T20649] [ 951.125187][T20649] __raw_callee_save___pv_queued_spin_unlock_slowpath+0x15/0x30 [ 951.128446][T20649] ? debug_locks_off+0x19/0x80 [ 951.130490][T20649] .slowpath+0x9/0x18 [ 951.132227][T20649] ? debug_locks_off+0x24/0x80 [ 951.134016][T20649] do_raw_spin_unlock+0x172/0x230 [ 951.136028][T20649] _raw_spin_unlock+0x1e/0x50 [ 951.138034][T20649] copy_process+0x6b72/0x7690 [ 951.140224][T20649] ? __pfx_copy_process+0x10/0x10 [ 951.142358][T20649] ? _copy_from_user+0x59/0xd0 [ 951.144247][T20649] kernel_clone+0xfc/0x930 [ 951.146452][T20649] ? __pfx_kernel_clone+0x10/0x10 [ 951.148776][T20649] __do_sys_clone3+0x212/0x290 [ 951.150789][T20649] ? __pfx___do_sys_clone3+0x10/0x10 [ 951.152943][T20649] ? handle_mm_fault+0x2ab/0xd10 [ 951.155525][T20649] ? do_user_addr_fault+0x843/0x1370 [ 951.157810][T20649] do_int80_emulation+0x104/0x3e0 [ 951.159769][T20649] asm_int80_emulation+0x1a/0x20 [ 951.162075][T20649] RIP: 0023:0xf7278380 [ 951.163882][T20649] Code: Unable to access opcode bytes at 0xf7278356. [ 951.167188][T20649] RSP: 002b:00000000ffc1cc34 EFLAGS: 00000286 ORIG_RAX: 00000000000001b3 [ 951.170889][T20649] RAX: ffffffffffffffda RBX: 00000000ffc1cca0 RCX: 0000000000000058 [ 951.174315][T20649] RDX: 00000000f7205c60 RSI: 00000000f54d6b40 RDI: 00000000ffffffd4 [ 951.177891][T20649] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000 [ 951.181374][T20649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 951.185084][T20649] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 951.188376][T20649] [ 951.189712][T20649] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 951.192689][T20649] CPU: 1 UID: 0 PID: 20649 Comm: syz.4.3372 Not tainted syzkaller #0 PREEMPT(full) [ 951.196748][T20649] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 951.201280][T20649] Call Trace: [ 951.202678][T20649] [ 951.203932][T20649] dump_stack_lvl+0x3d/0x1f0 [ 951.205881][T20649] vpanic+0x6e8/0x7a0 [ 951.207561][T20649] ? __pfx_vpanic+0x10/0x10 [ 951.209473][T20649] ? __pv_queued_spin_unlock_slowpath+0x237/0x330 [ 951.212092][T20649] panic+0xca/0xd0 [ 951.213692][T20649] ? __pfx_panic+0x10/0x10 [ 951.215601][T20649] ? check_panic_on_warn+0x1f/0xb0 [ 951.217784][T20649] check_panic_on_warn+0xab/0xb0 [ 951.219857][T20649] __warn+0xf6/0x3c0 [ 951.221473][T20649] ? __pv_queued_spin_unlock_slowpath+0x237/0x330 [ 951.224120][T20649] report_bug+0x3c3/0x580 [ 951.225989][T20649] ? __pv_queued_spin_unlock_slowpath+0x237/0x330 [ 951.228645][T20649] handle_bug+0x184/0x210 [ 951.230503][T20649] exc_invalid_op+0x17/0x50 [ 951.232527][T20649] asm_exc_invalid_op+0x1a/0x20 [ 951.234587][T20649] RIP: 0010:__pv_queued_spin_unlock_slowpath+0x237/0x330 [ 951.237609][T20649] Code: 03 0f b6 14 02 4c 89 e8 83 e0 07 83 c0 03 38 d0 7c 04 84 d2 75 67 41 8b 55 00 4c 89 ee 48 c7 c7 00 84 ad 8b e8 9a 8b e5 f5 90 <0f> 0b 90 90 e9 64 ff ff ff 90 0f 0b 48 89 df 4c 89 04 24 e8 21 04 [ 951.245685][T20649] RSP: 0000:ffffc9000367f9c8 EFLAGS: 00010286 [ 951.248193][T20649] RAX: 0000000000000000 RBX: ffff888026099280 RCX: ffffffff817a02f8 [ 951.251457][T20649] RDX: ffff888054f24880 RSI: ffffffff817a0305 RDI: 0000000000000001 [ 951.254750][T20649] RBP: ffff888026099288 R08: 0000000000000001 R09: 0000000000000000 [ 951.258113][T20649] R10: 0000000000000000 R11: 6c6e697073717670 R12: ffff888026099290 [ 951.261416][T20649] R13: ffff888026099280 R14: 00000000003d0f00 R15: ffff8880737e4880 [ 951.264597][T20649] ? __warn_printk+0x198/0x350 [ 951.266658][T20649] ? __warn_printk+0x1a5/0x350 [ 951.268680][T20649] ? __pv_queued_spin_unlock_slowpath+0x236/0x330 [ 951.271401][T20649] __raw_callee_save___pv_queued_spin_unlock_slowpath+0x15/0x30 [ 951.274574][T20649] ? debug_locks_off+0x19/0x80 [ 951.276588][T20649] .slowpath+0x9/0x18 [ 951.278336][T20649] ? debug_locks_off+0x24/0x80 [ 951.280343][T20649] do_raw_spin_unlock+0x172/0x230 [ 951.282477][T20649] _raw_spin_unlock+0x1e/0x50 [ 951.284497][T20649] copy_process+0x6b72/0x7690 [ 951.286431][T20649] ? __pfx_copy_process+0x10/0x10 [ 951.288228][T20649] ? _copy_from_user+0x59/0xd0 [ 951.289767][T20649] kernel_clone+0xfc/0x930 [ 951.291324][T20649] ? __pfx_kernel_clone+0x10/0x10 [ 951.292919][T20649] __do_sys_clone3+0x212/0x290 [ 951.294493][T20649] ? __pfx___do_sys_clone3+0x10/0x10 [ 951.296319][T20649] ? handle_mm_fault+0x2ab/0xd10 [ 951.298426][T20649] ? do_user_addr_fault+0x843/0x1370 [ 951.300648][T20649] do_int80_emulation+0x104/0x3e0 [ 951.302720][T20649] asm_int80_emulation+0x1a/0x20 [ 951.304781][T20649] RIP: 0023:0xf7278380 [ 951.306519][T20649] Code: Unable to access opcode bytes at 0xf7278356. [ 951.309213][T20649] RSP: 002b:00000000ffc1cc34 EFLAGS: 00000286 ORIG_RAX: 00000000000001b3 [ 951.312722][T20649] RAX: ffffffffffffffda RBX: 00000000ffc1cca0 RCX: 0000000000000058 [ 951.316049][T20649] RDX: 00000000f7205c60 RSI: 00000000f54d6b40 RDI: 00000000ffffffd4 [ 951.319343][T20649] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000 [ 951.322622][T20649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 951.325906][T20649] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 951.329120][T20649] [ 951.330784][T20649] Kernel Offset: disabled [ 951.332149][T20649] Rebooting in 86400 seconds.. VM DIAGNOSIS: 14:06:04 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=ffff88802b33ffc0 RCX=ffffffff81af1301 RDX=ffff88801c36c880 RSI=ffffffff81af12db RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc90026fee7c8 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000 R12=dffffc0000000000 R13=ffffed1005667ff9 R14=0000000000000001 R15=0000000000000001 RIP=ffffffff81af12e2 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f10e2b4f880 ffffffff 00c00000 GS =0000 ffff8880974ba000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f10e2521a00 CR3=000000006bd49000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000f8040100 Opmask01=0000000000000000 Opmask02=000000007ffeffff Opmask03=0000000010400004 Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055d7a9d353d0 000055d7a9d353d0 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055d7a9bdecb0 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055d7a9bca820 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f10e25f1b20 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 ffff000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff0000ff000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff000000000000ff 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737376b2 7373737373730a07 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73001605121f0073 431e161e035c1810 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6568007365747962 20756c3825202020 20202020203a657a 697320656c696600 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 404d005640515c47 0550491d00050505 05050505051f405f 4c560540494c4300 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3533712d63707276 633a3174633a554d 45516e76633a302e 30312d3533712d63 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000000b 0000003a633a553a 302e30310000302e 30312d302e302d2d ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a302e30312d3533 712d63707276703a 5f393030322c3948 43492b3533515f43 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 50647261646e6174 536e703a554d4551 6e76733a302e3072 623a343130322f31 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 302f343064623a31 2b32316f70625f32 2d332e36312e312d 6e61696265642d33 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 322c312c304d2d30 4341420030303000 32383333303d3300 30303838323d0037 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 322c2c2c302c2d30 002c3100302c2d00 322c312c30302c00 30302c00312c002c ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8561e555 RDI=ffffffff9b102780 RBP=ffffffff9b102740 RSP=ffffc9000367f590 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000002d2d2d2d R12=0000000000000000 R13=000000000000002d R14=ffffffff9b102740 R15=ffffffff8561e4f0 RIP=ffffffff8561e57f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880975ba000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ff0370fd120 CR3=0000000062ca4000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=000000000534c002 Opmask01=0000000000000000 Opmask02=00000000ffffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000563af3ca6c50 0000563af3ca6c50 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffca1f0f100 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c737973007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a49565c56005600 0b56000041000b56 000040494a564b4a 460a5340410a000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 61657270203a7061 65725f6d6d203a72 6f727265203a5d36 3039355b6e6f6973 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 303a6a64615f6572 6f63735f6d6f6f20 426b38363a73656c 626174677020303a ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 444955202c426b30 3a7373722d6d656d 6873202c426b3038 313a7373722d656c ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6966202c426b3836 3a7373722d6e6f6e 61202c426b323137 35313a6d762d6c61 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 746f7420296e6f69 737365732d646873 7328203631393520 737365636f727020 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000000 RBX=ffff88802b341d40 RCX=ffffffff81af1301 RDX=ffff888040e98000 RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc900001365a0 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000 R12=dffffc0000000000 R13=ffffed10056683a9 R14=0000000000000001 R15=0000000000000001 RIP=ffffffff81bb03e2 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f10496bac80 ffffffff 00c00000 GS =0000 ffff8880976ba000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f104995438c CR3=0000000028522000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000080000010 Opmask01=0000000000021d1f Opmask02=00000000ffff1fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000007000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1049728cc8 00007f1049964cd0 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000000a ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1049a255f0 00007f1049a37f8c ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1000000010 000000003de00ec6 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffe3771bf8 00007fffe3771c30 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000649 00007f1049a3838d ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1049a255f0 00007fffe3771c30 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e6e6e6e6e6e6e6e 645f0f0a1d41180b ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a41531a01011c4e 5e3d171a1a530b02 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f72726520636269 6c67206c61746146 000000706d74752f 6e75722f7261762f ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 640065676175676e 616c5f626400656c 7075745f62640062 6f6c625f62640065 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4800494b4d594b42 4d405f4e48004940 5c59585f4e48004e 43404e5f4e480049 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 68637461772e6575 6575716b726f7720 35353d6873657268 745f676f64686374 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e2e65726f632e74 656e2e6c74637379 73203034313d6873 657268745f676f64 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e617020343d7372 6f6e696d5f796361 67656c5f6d756e5f 6964656d6f632e69 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 64656d6f63203233 3d78616d5f736462 6e2032333d706f6f 6c5f78616d203233 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7265747369676572 6e755f7665647465 6e2e65726f632e74 656e2e6c74637379 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e2bdf3228df3822 282b2e2fdf37342d 280b0412bfc92435 283232282c31242f ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 24bf242d282b232c 22ee222e312feebf 222e312feebf2435 283232282c31242f ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000001 RBX=ffff88802b341d80 RCX=ffffffff81af1301 RDX=0000000000000001 RSI=0000000000000000 RDI=0000000000000000 RBP=0000000000000003 RSP=ffffc9000103ef20 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000 R12=dffffc0000000000 R13=ffffed10056683b1 R14=0000000000000001 R15=0000000000000001 RIP=ffffffff81bb056c RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880977ba000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000056db14ac CR3=000000000e380000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0b9d8d662c4760a1 8c0c8109b398ac62 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f9e1adcb18f65691 de96fac991429267 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8e5271fb48bc40a3 9950ad3abd56f373 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f7d53a1c780f49c9 dab6af505456f0b5 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000006f80 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0240f8330240f902 010000000240f905 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e82600802ebe0080 d82600800240f909 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 01000000642a0080 0240f84401000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1046008001000000 0100000082f80080 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6d695655bc05bbae 85e7a7e9b8efa411 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 35abddd62173256a a5bdf7697eacb5d3 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000