last executing test programs: 1.561042392s ago: executing program 1 (id=21349): r0 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86) ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305828, &(0x7f0000000240)={0x17c04, 0xffffffffffffffff, 0x7, 0x600000c, 0x0, 0x3}) write$FUSE_STATFS(r0, &(0x7f0000000340)={0x60, 0xfffffffffffffff5, 0x0, {{0x3, 0x6, 0x9, 0x6, 0x2, 0x8, 0x7fff, 0x3b}}}, 0x60) 1.005332443s ago: executing program 3 (id=21368): r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000000)=0x3) ppoll(&(0x7f0000000040)=[{r0, 0x1}], 0x1, 0x0, 0x0, 0x0) 854.268117ms ago: executing program 1 (id=21370): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='mpol=prefer:', @ANYRESDEC=0x0]) umount2(&(0x7f00000001c0)='./file0\x00', 0x2) 389.902333ms ago: executing program 0 (id=21380): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000080)='devpts\x00', 0x898a, 0x0) umount2(&(0x7f00000001c0)='./file0/../file0/../file0\x00', 0x5) 363.817659ms ago: executing program 1 (id=21381): r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000180)={@private2, 0x800, 0x0, 0x2, 0x1}, 0x20) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@mcast2, 0x800, 0x0, 0x2, 0x0, 0x0, 0x8c}, 0x20) 358.594771ms ago: executing program 2 (id=21382): sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000000100000008000100040000002c00048005000300010000000500030080ffffff05000300016900000500030080ffffff05000300050000000800020003"], 0x50}}, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f00000000c0)=""/24, &(0x7f0000000340)=0x18) 296.470903ms ago: executing program 0 (id=21383): r0 = socket$nl_generic(0x11, 0x3, 0x10) syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @random="a538ae464632", @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast1}, {0x11, 0x0, 0x0, @multicast1}}}}}, 0x0) sendmsg(r0, &(0x7f0000000640)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f0800", 0x36}], 0x2, 0x0, 0x0, 0x11000000}, 0x0) 296.250049ms ago: executing program 2 (id=21384): r0 = add_key$user(&(0x7f0000000000), &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000080)="01", 0x1, 0xffffffffffffffff) r1 = add_key$user(&(0x7f0000000140), &(0x7f00000007c0)={'syz', 0x0}, &(0x7f0000000980)="f40fc24077021c9b084c60ffc26fd06301176d36c2f546f10626db12b9e78d629870bb26edb4a5e1cc09ed8c58ca4fe84b94a7b70000000000000000002945ffebbfea11dd3d0df936a10285ecc1ad2243d878dde6cfd6ea08d5abcb00bb35436929ddabce530b63fab525337057438cf64a506d54d5c83e3e593d1d53ad0e6a44168fe8cfc6ad98b653d80636e4ddc1f2ab58762b57f5b606a43e50874c90143034142cd5f7bd9b4dd8b57fbccb69ba4376b97b7feb75b9138dde818a3c6b96", 0xc0, 0xfffffffffffffffb) keyctl$dh_compute(0x17, &(0x7f00000000c0)={r0, r1, r0}, &(0x7f0000003f00)=""/4099, 0x1003, 0x0) 296.012283ms ago: executing program 1 (id=21385): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x200, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'das16m1\x00', [0x4f27, 0x7, 0x1, 0x16, 0x5, 0x5, 0x8, 0x3, 0xa, 0xfd, 0x2, 0x1, 0x1, 0x1, 0x6, 0x101, 0xfffffffe, 0x7f, 0x3, 0x40000003, 0x89, 0xca9f, 0x3, 0x20001e58, 0xb, 0xe66, 0x3, 0x8, 0x4085, 0x0, 0xfffffff8]}) 235.182648ms ago: executing program 2 (id=21386): r0 = epoll_create1(0x0) r1 = socket(0x1, 0x80802, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0xb000000c}) 234.63985ms ago: executing program 1 (id=21387): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x5, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000004830000000000000fa40000007010000080020007500feff0000820095"], &(0x7f0000000100)='GPL\x00', 0x8}, 0x94) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x18, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 170.842749ms ago: executing program 0 (id=21388): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c) listen(r0, 0x1003) 170.601831ms ago: executing program 3 (id=21389): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x40}) ioctl$GIO_UNIMAP(r0, 0x4b66, &(0x7f0000000000)={0xfffffc64, 0x0}) 163.789264ms ago: executing program 1 (id=21390): syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}}) 132.503887ms ago: executing program 2 (id=21391): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) write(r0, &(0x7f0000000000)="0a000000010021", 0x7) 132.115647ms ago: executing program 0 (id=21392): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f913", 0x11}], 0x1}, 0x0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x8081}, 0x4008092) 99.733781ms ago: executing program 3 (id=21393): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) write(r0, &(0x7f0000000340)="07000000010040", 0x7) 98.82556ms ago: executing program 0 (id=21394): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @payload={{0xc}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_LEN={0x8, 0x4, 0x1, 0x0, 0x3000000}]}}}]}]}], {0x14}}, 0x74}}, 0x0) 93.352873ms ago: executing program 2 (id=21395): r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) fcntl$setstatus(r0, 0x4, 0x2c00) write$FUSE_NOTIFY_RESEND(r0, &(0x7f0000002140)={0x14}, 0x14) 92.531114ms ago: executing program 3 (id=21396): r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_ifreq(r0, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x4}) ioctl$sock_netdev_private(r0, 0x89f4, &(0x7f0000000000)) 11.266834ms ago: executing program 2 (id=21397): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = signalfd(0xffffffffffffffff, &(0x7f0000000240)={[0xfffffffd, 0x1]}, 0x8) read(r0, &(0x7f0000000cc0)=""/384, 0x180) 10.582355ms ago: executing program 3 (id=21398): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000808500000070000000850000005000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10) pipe(&(0x7f0000019480)) 3.768359ms ago: executing program 0 (id=21399): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x80000000}, 0x19a) write(r0, &(0x7f0000000200)="240000001a005f0400f9f407000904018020200000000000000000000800020000000000", 0x24) 0s ago: executing program 3 (id=21400): r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000100)=0x1000000, 0x4) setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4) kernel console output (not intermixed with test programs): T40] audit: type=1326 audit(369.368:19635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8009 comm="syz.3.16503" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 369.404895][ T40] audit: type=1326 audit(369.368:19636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8009 comm="syz.3.16503" exe="/syz-executor" sig=0 arch=40000003 syscall=282 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 369.411827][ T40] audit: type=1326 audit(369.368:19637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8009 comm="syz.3.16503" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 369.418464][ T40] audit: type=1326 audit(369.368:19638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8009 comm="syz.3.16503" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 369.445899][ T8025] netlink: 'syz.0.16508': attribute type 23 has an invalid length. [ 369.821589][ T8089] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 369.889852][ T8097] netlink: 'syz.0.16542': attribute type 1 has an invalid length. [ 370.008259][ T8108] netlink: 256 bytes leftover after parsing attributes in process `syz.0.16544'. [ 370.377475][ T8136] netlink: 256 bytes leftover after parsing attributes in process `syz.3.16557'. [ 370.830870][ T8188] ALSA: seq fatal error: cannot create timer (-22) [ 371.781586][ T8275] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16624'. [ 372.006511][ T8298] netlink: 35 bytes leftover after parsing attributes in process `syz.2.16634'. [ 372.130824][ T8310] netlink: 'syz.0.16639': attribute type 83 has an invalid length. [ 372.818716][ T8376] syz.1.16670 (8376): drop_caches: 4 [ 372.963694][ T8384] netlink: 16 bytes leftover after parsing attributes in process `syz.3.16672'. [ 373.722953][ T8401] can0: slcan on ttyS3. [ 373.871499][ T8400] can0 (unregistered): slcan off ttyS3. [ 373.962971][ T8421] vivid-007: disconnect [ 373.972627][ T8420] vivid-007: reconnect [ 373.993629][ T40] kauditd_printk_skb: 9 callbacks suppressed [ 373.993641][ T40] audit: type=1400 audit(373.998:19648): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=8424 comm="syz.1.16694" [ 374.154298][ T8445] netlink: 'syz.0.16704': attribute type 3 has an invalid length. [ 374.453737][ T8485] x_tables: ip_tables: HMARK.0 target: invalid size 64 (kernel) != (user) 72 [ 374.693480][ T8508] netlink: 52 bytes leftover after parsing attributes in process `syz.3.16735'. [ 374.693501][ T8508] tipc: Invalid UDP bearer configuration [ 374.693518][ T8508] tipc: Enabling of bearer rejected, failed to enable media [ 375.413717][ T8581] CIFS mount error: No usable UNC path provided in device string! [ 375.413717][ T8581] [ 375.417042][ T8581] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 375.839502][ T8618] netlink: 'syz.3.16785': attribute type 2 has an invalid length. [ 375.843514][ T8618] netlink: 244 bytes leftover after parsing attributes in process `syz.3.16785'. [ 376.230028][ T8650] netlink: 'syz.0.16802': attribute type 4 has an invalid length. [ 376.588854][ T8684] xt_bpf: check failed: parse error [ 376.641372][ T8692] netlink: 44 bytes leftover after parsing attributes in process `syz.1.16822'. [ 376.645005][ T8692] netlink: 'syz.1.16822': attribute type 6 has an invalid length. [ 376.647589][ T8692] netlink: 'syz.1.16822': attribute type 5 has an invalid length. [ 376.650052][ T8692] netlink: 'syz.1.16822': attribute type 4 has an invalid length. [ 376.736192][ T8702] overlayfs: workdir and upperdir must be separate subtrees [ 376.850067][ T8709] netlink: 48 bytes leftover after parsing attributes in process `syz.2.16830'. [ 377.173614][ T8737] netlink: 36 bytes leftover after parsing attributes in process `syz.0.16844'. [ 377.545439][ T8780] netlink: 'syz.1.16865': attribute type 11 has an invalid length. [ 377.548862][ T8780] netlink: 199788 bytes leftover after parsing attributes in process `syz.1.16865'. [ 377.818589][ T8815] lo: Caught tx_queue_len zero misconfig [ 377.821368][ T8815] sch_tbf: burst 274 is lower than device lo mtu (39799) ! [ 378.255046][ T8862] tmpfs: Cannot change global quota limit on remount [ 378.858308][ T8920] comedi comedi3: mpc624: I/O port conflict (0x4f2b,16) [ 379.034194][ T8941] sp0: Synchronizing with TNC [ 379.708142][ T9021] syz_tun: refused to change device tx_queue_len [ 379.726247][ T9023] comedi comedi3: 8255: I/O port conflict (0x40404f26,4) [ 379.728421][ T9023] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 379.730586][ T9023] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 379.732545][ T9023] comedi comedi3: 8255: I/O port conflict (0xc,4) [ 379.734559][ T9023] comedi comedi3: 8255: I/O port conflict (0x9,4) [ 379.736640][ T9023] comedi comedi3: 8255: I/O port conflict (0xfff,4) [ 379.738659][ T9023] comedi comedi3: 8255: I/O port conflict (0x5c95238c,4) [ 379.741603][ T9023] comedi comedi3: 8255: I/O port conflict (0xa,4) [ 379.744339][ T9023] comedi comedi3: 8255: I/O port conflict (0x3bf,4) [ 379.746952][ T9023] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 379.749066][ T9023] comedi comedi3: 8255: I/O port conflict (0x20000001,4) [ 379.752840][ T9023] comedi comedi3: 8255: I/O port conflict (0x400e1c8,4) [ 379.755436][ T9023] comedi comedi3: 8255: I/O port conflict (0x6,4) [ 379.757842][ T9023] comedi comedi3: 8255: I/O port conflict (0x7,4) [ 379.761302][ T9023] comedi comedi3: 8255: I/O port conflict (0x6,4) [ 379.763591][ T9023] comedi comedi3: 8255: I/O port conflict (0x6,4) [ 379.765858][ T9023] comedi comedi3: 8255: I/O port conflict (0x4,4) [ 379.768139][ T9023] comedi comedi3: 8255: I/O port conflict (0xb,4) [ 379.770253][ T9023] comedi comedi3: 8255: I/O port conflict (0x10,4) [ 379.772801][ T9023] comedi comedi3: 8255: I/O port conflict (0x3,4) [ 379.775176][ T9023] comedi comedi3: 8255: I/O port conflict (0xef,4) [ 379.802257][ T9029] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 379.884621][ T9039] netlink: 28 bytes leftover after parsing attributes in process `syz.0.16990'. [ 379.923952][ T9047] netlink: 48 bytes leftover after parsing attributes in process `syz.0.16992'. [ 380.348815][ T9071] xt_l2tp: missing protocol rule (udp|l2tpip) [ 380.732957][ T9108] netlink: 20 bytes leftover after parsing attributes in process `syz.3.17019'. [ 380.735649][ T9108] dummy0: Caught tx_queue_len zero misconfig [ 380.824357][ T9114] netlink: 4 bytes leftover after parsing attributes in process `syz.0.17024'. [ 380.834560][ T9114] macvtap1: entered promiscuous mode [ 380.836979][ T9114] mac80211_hwsim hwsim3 wlan1: entered promiscuous mode [ 380.901482][ T9114] mac80211_hwsim hwsim3 wlan1: left promiscuous mode [ 380.979840][ T9131] netlink: 4 bytes leftover after parsing attributes in process `syz.3.17032'. [ 381.251754][ T40] audit: type=1326 audit(381.258:19649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9152 comm="syz.0.17043" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704d579 code=0x0 [ 381.359695][ T9169] netlink: 'syz.3.17050': attribute type 6 has an invalid length. [ 381.363635][ T9169] netlink: 'syz.3.17050': attribute type 6 has an invalid length. [ 381.392501][ T9173] netlink: 4 bytes leftover after parsing attributes in process `syz.2.17052'. [ 381.402259][ T9173] macvtap1: entered promiscuous mode [ 381.404458][ T9173] mac80211_hwsim hwsim21 wlan1: entered promiscuous mode [ 381.471131][ T9173] mac80211_hwsim hwsim21 wlan1: left promiscuous mode [ 382.214161][ T9195] vlan4: entered allmulticast mode [ 382.215745][ T9195] dummy0: entered allmulticast mode [ 382.351429][ T2300] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 382.512459][ T2300] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 382.516643][ T2300] usb 5-1: config 0 interface 0 has no altsetting 0 [ 382.522161][ T2300] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 382.525909][ T2300] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 382.529419][ T2300] usb 5-1: Product: syz [ 382.531339][ T2300] usb 5-1: Manufacturer: syz [ 382.533374][ T2300] usb 5-1: SerialNumber: syz [ 382.537660][ T2300] usb 5-1: config 0 descriptor?? [ 382.546252][ T2300] usb 5-1: selecting invalid altsetting 0 [ 382.551123][ T9216] syz.2.17072 (9216) used greatest stack depth: 19704 bytes left [ 382.757112][ T6153] usb 5-1: USB disconnect, device number 15 [ 383.116002][ T9262] comedi comedi0: dt2815: I/O port conflict (0x4f27,2) [ 383.158898][ T9267] autofs: Bad value for 'fd' [ 383.198395][ T9272] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method [ 383.584166][ T1416] ieee802154 phy1 wpan1: encryption failed: -22 [ 383.687863][ T9311] netlink: 4 bytes leftover after parsing attributes in process `syz.2.17119'. [ 384.478638][ T9376] xt_nfacct: accounting object `\$9ZM#mU|^c\F9YⳈ' does not exist [ 384.616794][ T9396] genirq: Flags mismatch irq 4. 00200000 (aio_iiro_16) vs. 00200080 (ttyS0) [ 384.650610][ T9399] team_slave_0: left promiscuous mode [ 384.652845][ T9399] team_slave_1: left promiscuous mode [ 384.654740][ T9399] dummy0: left promiscuous mode [ 384.844267][ T9429] [U] [ 385.280314][ T40] audit: type=1326 audit(385.278:19650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9489 comm="syz.0.17202" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 385.287177][ T40] audit: type=1326 audit(385.288:19651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9489 comm="syz.0.17202" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 385.293969][ T40] audit: type=1326 audit(385.288:19652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9489 comm="syz.0.17202" exe="/syz-executor" sig=0 arch=40000003 syscall=314 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 385.301300][ T40] audit: type=1326 audit(385.288:19653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9489 comm="syz.0.17202" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 385.307727][ T40] audit: type=1326 audit(385.288:19654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9489 comm="syz.0.17202" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 386.060934][ T40] audit: type=1326 audit(386.068:19655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9482 comm="syz.3.17199" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7fc00000 [ 386.364421][ T9576] netlink: 56 bytes leftover after parsing attributes in process `syz.0.17240'. [ 386.421680][ T9586] bridge_slave_0: default FDB implementation only supports local addresses [ 386.467056][ T9599] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_hsr, syncid = 4, id = 0 [ 386.544819][ T9609] input: syz1 as /devices/virtual/input/input43 [ 387.153857][ T9658] program syz.2.17280 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 387.737124][ T9718] netlink: 28 bytes leftover after parsing attributes in process `syz.0.17309'. [ 388.123949][ T9770] [U] : [ 388.125683][ T9770] [U] [ 388.126903][ T9770] [U] [ 388.128110][ T9770] [U] [ 388.129287][ T9770] [U] [ 388.130530][ T9770] [U] [ 388.131722][ T9770] [U] [ 388.132851][ T9770] [U] [ 388.134591][ T9770] [U] [ 388.135504][ T9770] [U] [ 388.136391][ T9770] [U] [ 388.137277][ T9770] [U] [ 388.138157][ T9770] [U] [ 388.139045][ T9770] [U] [ 388.139942][ T9770] [U] [ 388.140847][ T9770] [U] [ 388.142188][ T40] audit: type=1326 audit(388.158:19656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9771 comm="syz.0.17335" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x0 [ 388.142491][ T9770] [U] [ 388.151265][ T9770] [U] [ 388.152207][ T9770] [U] [ 388.153294][ T9770] [U] [ 388.154480][ T9770] [U] [ 388.155682][ T9770] [U] [ 388.156886][ T9770] [U] [ 388.158073][ T9770] [U] [ 388.160622][ T9770] [U] [ 388.161839][ T9770] [U] [ 388.162980][ T9770] [U] [ 388.163934][ T9770] [U] [ 388.164818][ T9770] [U] [ 388.165957][ T9770] [U] [ 388.167079][ T9770] [U] [ 388.167939][ T9770] [U] [ 388.168947][ T9770] [U] [ 388.169849][ T9770] [U] [ 388.171004][ T9770] [U] [ 388.172160][ T9770] [U] [ 388.173180][ T9770] [U] [ 388.174056][ T9770] [U] [ 388.174940][ T9770] [U] [ 388.176014][ T9770] [U] [ 388.180257][ T9770] [U] [ 388.181221][ T9770] [U] [ 388.182561][ T9770] [U] [ 388.183699][ T9770] [U] [ 388.184834][ T9770] [U] [ 388.185782][ T9770] [U] [ 388.186660][ T9770] [U] [ 388.187574][ T9770] [U] [ 388.191732][ T9770] [U] [ 388.192672][ T9770] [U] [ 388.193646][ T9770] [U] [ 388.194784][ T9770] [U] [ 388.195933][ T9770] [U] [ 388.196887][ T9770] [U] [ 388.197762][ T9770] [U] [ 388.198641][ T9770] [U] [ 388.199849][ T9770] [U] [ 388.200995][ T9770] [U] [ 388.202001][ T9770] [U] [ 388.202884][ T9770] [U] [ 388.203790][ T9770] [U] [ 388.204910][ T9770] [U] [ 388.206038][ T9770] [U] [ 388.207171][ T9770] [U] [ 388.209975][ T9770] [U] [ 388.211097][ T9770] [U] [ 388.212235][ T9770] [U] [ 388.213313][ T9770] [U] [ 388.214199][ T9770] [U] [ 388.215080][ T9770] [U] [ 388.216109][ T9770] [U] [ 388.217251][ T9770] [U] [ 388.218710][ T9770] [U] [ 388.219629][ T9770] [U] [ 388.220530][ T9770] [U] [ 388.221604][ T9770] [U] [ 388.222744][ T9770] [U] [ 388.223907][ T9770] [U] [ 388.224942][ T9770] [U] [ 388.225963][ T9770] [U] [ 388.227583][ T9770] [U] [ 388.228809][ T9770] [U] [ 388.229987][ T9770] [U] [ 388.231235][ T9770] [U] [ 388.232325][ T9770] [U] [ 388.233630][ T9770] [U] [ 388.234636][ T9770] [U] [ 388.235815][ T9770] [U] [ 388.237413][ T9770] [U] [ 388.238638][ T9770] [U] [ 388.239925][ T9770] [U] [ 388.241112][ T9770] [U] [ 388.242293][ T9770] [U] [ 388.243495][ T9770] [U] [ 388.244663][ T9770] [U] [ 388.245863][ T9770] [U] [ 388.247414][ T9770] [U] [ 388.248628][ T9770] [U] [ 388.249853][ T9770] [U] [ 388.251039][ T9770] [U] [ 388.252244][ T9770] [U] [ 388.253427][ T9770] [U] [ 388.254633][ T9770] [U] [ 388.255887][ T9770] [U] [ 388.257553][ T9770] [U] [ 388.258752][ T9770] [U] [ 388.260235][ T9770] [U] [ 388.261495][ T9770] [U] [ 388.262668][ T9770] [U] [ 388.263852][ T9770] [U] [ 388.265047][ T9770] [U] [ 388.266238][ T9770] [U] [ 388.267642][ T9770] [U] [ 388.268832][ T9770] [U] [ 388.270031][ T9770] [U] [ 388.271221][ T9770] [U] [ 388.272391][ T9770] [U] [ 388.273528][ T9770] [U] [ 388.274676][ T9770] [U] [ 388.275826][ T9770] [U] [ 388.277125][ T9770] [U] [ 388.278295][ T9770] [U] [ 388.279503][ T9770] [U] [ 388.280612][ T9770] [U] [ 388.281770][ T9770] [U] [ 388.282947][ T9770] [U] [ 388.284120][ T9770] [U] [ 388.307718][ T9768] [U] [ 388.561869][ T9801] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17349'. [ 388.727458][ T9809] random: crng reseeded on system resumption [ 389.485462][ T9851] F2FS-fs: Conflicting test_dummy_encryption options [ 389.628861][ T9873] netlink: 'syz.1.17385': attribute type 2 has an invalid length. [ 389.724741][ T9888] netlink: 8 bytes leftover after parsing attributes in process `syz.0.17392'. [ 389.727979][ T9888] netlink: 12 bytes leftover after parsing attributes in process `syz.0.17392'. [ 389.865258][ T9905] netlink: 'syz.1.17400': attribute type 11 has an invalid length. [ 389.867845][ T9905] netlink: 'syz.1.17400': attribute type 11 has an invalid length. [ 389.870573][ T9905] netlink: 204 bytes leftover after parsing attributes in process `syz.1.17400'. [ 389.999060][ T9919] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null. [ 390.016903][ T9921] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17408'. [ 390.065686][ T9923] team0: Device gtp0 is of different type [ 390.885268][ T9941] vimc link validate: Scaler:src:16x16 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 390.908197][ T9945] netlink: 'syz.3.17419': attribute type 1 has an invalid length. [ 390.911333][ T9945] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 390.981558][ T9954] binder: 9953:9954 ioctl 541b 0 returned -22 [ 391.428910][ T9991] tipc: Enabling of bearer rejected, media not registered [ 392.618269][T10034] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 393.010678][T10068] netlink: 56 bytes leftover after parsing attributes in process `syz.3.17477'. [ 393.272515][T10086] pimreg: entered allmulticast mode [ 393.477505][T10108] netlink: 'syz.1.17497': attribute type 1 has an invalid length. [ 393.607123][T10121] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 393.609798][T10121] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 393.613199][T10121] vhci_hcd vhci_hcd.0: Device attached [ 393.617307][T10125] netlink: 332 bytes leftover after parsing attributes in process `syz.3.17504'. [ 393.618018][T10122] vhci_hcd: connection closed [ 393.620117][T10125] netlink: 332 bytes leftover after parsing attributes in process `syz.3.17504'. [ 393.620490][ T1163] vhci_hcd: stop threads [ 393.626040][ T1163] vhci_hcd: release socket [ 393.627403][ T1163] vhci_hcd: disconnect device [ 394.100979][T10148] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4) [ 394.103913][T10148] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 394.107120][T10148] vhci_hcd vhci_hcd.0: Device attached [ 394.111489][T10150] vhci_hcd: connection closed [ 394.111614][ T1163] vhci_hcd: stop threads [ 394.115264][ T1163] vhci_hcd: release socket [ 394.117075][ T1163] vhci_hcd: disconnect device [ 394.317367][T10165] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 394.390916][T10173] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17526'. [ 394.653782][T10205] netlink: 20 bytes leftover after parsing attributes in process `syz.2.17542'. [ 394.665689][T10209] netlink: 24 bytes leftover after parsing attributes in process `syz.1.17544'. [ 394.698795][T10214] netlink: 'syz.0.17546': attribute type 1 has an invalid length. [ 394.713867][T10217] A link change request failed with some changes committed already. Interface may have been left with an inconsistent configuration, please check. [ 394.890984][T10243] tipc: Enabling of bearer rejected, failed to enable media [ 394.954391][T10256] vlan5: entered promiscuous mode [ 394.956041][T10256] bond0: entered promiscuous mode [ 394.957564][T10256] bond_slave_0: entered promiscuous mode [ 394.959418][T10256] macvlan0: entered promiscuous mode [ 394.987355][T10261] sctp: [Deprecated]: syz.1.17569 (pid 10261) Use of struct sctp_assoc_value in delayed_ack socket option. [ 394.987355][T10261] Use struct sctp_sack_info instead [ 394.995724][T10261] sctp: [Deprecated]: syz.1.17569 (pid 10261) Use of struct sctp_assoc_value in delayed_ack socket option. [ 394.995724][T10261] Use struct sctp_sack_info instead [ 395.102529][T10280] netlink: 32 bytes leftover after parsing attributes in process `syz.3.17578'. [ 395.106227][T10280] netlink: 'syz.3.17578': attribute type 3 has an invalid length. [ 395.779201][T10318] netlink: 96 bytes leftover after parsing attributes in process `syz.3.17601'. [ 395.906065][T10325] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17596'. [ 395.951578][T10329] netlink: 64 bytes leftover after parsing attributes in process `syz.3.17599'. [ 396.249047][T10351] openvswitch: netlink: nsh attribute has unmatched MD type 0. [ 396.251707][T10351] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 397.160125][T10400] CIFS: Unable to determine destination address [ 397.266864][T10407] xt_l2tp: wrong L2TP version: 0 [ 397.544717][T10420] sg_write: data in/out 41084/1 bytes for SCSI command 0x1c-- guessing data in; [ 397.544717][T10420] program syz.0.17642 not setting count and/or reply_len properly [ 398.157622][T10473] __nla_validate_parse: 2 callbacks suppressed [ 398.157633][T10473] netlink: 332 bytes leftover after parsing attributes in process `syz.2.17669'. [ 398.163442][T10473] netlink: 'syz.2.17669': attribute type 9 has an invalid length. [ 398.165900][T10473] netlink: 108 bytes leftover after parsing attributes in process `syz.2.17669'. [ 398.168739][T10473] netlink: 32 bytes leftover after parsing attributes in process `syz.2.17669'. [ 398.469253][T10491] ptrace attach of "/syz-executor exec"[10494] was attempted by "/syz-executor exec"[10491] [ 398.506945][T10499] Invalid source name [ 398.508285][T10499] UBIFS error (pid: 10499): cannot open "./file0", error -22 [ 398.692738][T10520] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17692'. [ 398.708410][T10524] netlink: 4 bytes leftover after parsing attributes in process `syz.2.17694'. [ 398.726098][T10526] netlink: 4 bytes leftover after parsing attributes in process `syz.3.17695'. [ 398.845877][T10542] ALSA: mixer_oss: invalid OSS volume 'Y{UDD ' [ 398.849793][T10542] ALSA: mixer_oss: invalid OSS volume 'ߧ4cT󯆩"m!lT.Π' [ 398.852897][T10542] ALSA: mixer_oss: invalid OSS volume 'lg' [ 398.854752][T10542] ALSA: mixer_oss: invalid OSS volume ')nkKi,rWY\ZV?J`G' [ 398.857693][T10542] ALSA: mixer_oss: invalid OSS volume 'kO0$g{pl{y;_ARW' [ 398.861437][T10542] ALSA: mixer_oss: invalid OSS volume '' [ 398.865401][T10542] ALSA: mixer_oss: invalid OSS volume 'sv Fu{Qby>h%w]' [ 398.868577][T10542] ALSA: mixer_oss: invalid OSS volume 'E= v?@48@hL' [ 398.872214][T10542] ALSA: mixer_oss: invalid OSS volume '+?>3Iq0:iq|UDř' [ 398.875771][T10542] ALSA: mixer_oss: invalid OSS volume 'vӷ*xrN0ܗcAdh' [ 398.878926][T10542] ALSA: mixer_oss: invalid OSS volume 'JM %HJ[~S' [ 398.932574][T10552] : entered promiscuous mode [ 398.997586][T10564] devtmpfs: Cannot disable swap on remount [ 399.142271][T10574] overlay: filesystem on ./file0 is read-only [ 399.377418][T10590] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17727'. [ 399.380478][T10590] netlink: 4 bytes leftover after parsing attributes in process `syz.3.17727'. [ 399.383294][T10590] netlink: 'syz.3.17727': attribute type 13 has an invalid length. [ 399.385819][T10590] netlink: 'syz.3.17727': attribute type 11 has an invalid length. [ 399.586197][T10621] ALSA: mixer_oss: invalid OSS volume '' [ 399.917914][T10670] fuse: blksize only supported for fuseblk [ 400.165800][T10709] tc_dump_action: action bad kind [ 400.273247][T10725] ALSA: mixer_oss: invalid OSS volume '' [ 401.345817][T10819] netlink: 44 bytes leftover after parsing attributes in process `syz.0.17835'. [ 401.348948][T10819] netlink: 43 bytes leftover after parsing attributes in process `syz.0.17835'. [ 401.353373][T10819] netlink: 'syz.0.17835': attribute type 5 has an invalid length. [ 401.684973][T10865] Invalid source name [ 401.686741][T10865] UBIFS error (pid: 10865): cannot open "usrquota", error -22 [ 401.718603][ T40] audit: type=1326 audit(401.718:19657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10868 comm="syz.2.17861" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 401.730089][ T40] audit: type=1326 audit(401.718:19658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10868 comm="syz.2.17861" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 401.744107][ T40] audit: type=1326 audit(401.728:19659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10868 comm="syz.2.17861" exe="/syz-executor" sig=0 arch=40000003 syscall=329 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 401.751313][ T40] audit: type=1326 audit(401.728:19660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10868 comm="syz.2.17861" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 401.759013][ T40] audit: type=1326 audit(401.728:19661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10868 comm="syz.2.17861" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 401.768617][ T40] audit: type=1326 audit(401.728:19662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10868 comm="syz.2.17861" exe="/syz-executor" sig=0 arch=40000003 syscall=256 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 401.777583][ T40] audit: type=1326 audit(401.728:19663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10868 comm="syz.2.17861" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 401.788696][ T40] audit: type=1326 audit(401.728:19664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10868 comm="syz.2.17861" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 401.887294][T10890] [U] R5JCҰ~V6|7KXVZZGR $ [ 403.496309][T10958] netlink: 'syz.0.17903': attribute type 6 has an invalid length. [ 404.059859][T10990] xt_AUDIT: Audit type out of range (valid range: 0..2) [ 404.403287][T11004] netlink: 'syz.3.17925': attribute type 2 has an invalid length. [ 406.059368][T11098] __nla_validate_parse: 3 callbacks suppressed [ 406.059460][T11098] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17969'. [ 406.065486][T11098] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17969'. [ 406.068930][T11098] netlink: 'syz.1.17969': attribute type 19 has an invalid length. [ 406.071899][T11098] netlink: 'syz.1.17969': attribute type 20 has an invalid length. [ 406.214167][T11118] netlink: 8 bytes leftover after parsing attributes in process `syz.2.17978'. [ 406.217143][T11118] netlink: 12 bytes leftover after parsing attributes in process `syz.2.17978'. [ 406.515891][T11169] genirq: Flags mismatch irq 25. 00200000 (comedi_parport) vs. 00200080 (PCIe PME) [ 407.116553][T11235] netlink: 32 bytes leftover after parsing attributes in process `syz.1.18036'. [ 407.188384][T11242] max out of range [ 407.284615][T11252] netlink: 8 bytes leftover after parsing attributes in process `syz.1.18045'. [ 407.542000][T11268] netlink: 12 bytes leftover after parsing attributes in process `syz.3.18051'. [ 407.609835][T11275] ata1.00: invalid command format 189 [ 407.702209][T11287] fuse: blksize only supported for fuseblk [ 408.200151][T11327] tc_dump_action: action bad kind [ 408.399775][T11345] netlink: 12 bytes leftover after parsing attributes in process `syz.2.18087'. [ 409.299222][T11360] netlink: 'syz.3.18096': attribute type 10 has an invalid length. [ 409.331615][T11360] dummy0: left promiscuous mode [ 409.352182][T11365] netlink: 'syz.3.18096': attribute type 10 has an invalid length. [ 409.382916][T11360] team0: Port device dummy0 added [ 409.542507][T11365] team0: Port device dummy0 removed [ 409.546607][T11365] dummy0: entered promiscuous mode [ 409.549110][T11365] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 409.657021][T11376] binder: 11374:11376 unknown command 4294967282 [ 409.659466][T11376] binder: 11374:11376 ioctl c0306201 80001040 returned -22 [ 409.891531][T11401] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0 [ 409.972998][ T2300] kernel read not supported for file 8753/task/8754/cmdline (pid: 2300 comm: kworker/0:2) [ 410.091701][T11415] tipc: Enabling of bearer rejected, media not registered [ 410.147975][T11423] netlink: 8 bytes leftover after parsing attributes in process `syz.0.18126'. [ 410.151242][T11423] netlink: 'syz.0.18126': attribute type 5 has an invalid length. [ 410.154183][T11423] netlink: 'syz.0.18126': attribute type 8 has an invalid length. [ 410.168995][T11423] netlink: 8 bytes leftover after parsing attributes in process `syz.0.18126'. [ 410.175717][T11423] geneve3: entered promiscuous mode [ 410.177321][T11423] geneve3: entered allmulticast mode [ 410.180874][ T1163] netdevsim netdevsim0 eth0: set [1, 1] type 2 family 0 port 256 - 0 [ 410.184139][ T1163] netdevsim netdevsim0 eth1: set [1, 1] type 2 family 0 port 256 - 0 [ 410.186674][ T1163] netdevsim netdevsim0 eth2: set [1, 1] type 2 family 0 port 256 - 0 [ 410.189109][ T1163] netdevsim netdevsim0 eth3: set [1, 1] type 2 family 0 port 256 - 0 [ 410.873257][ T40] audit: type=1326 audit(416.879:19665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.3.18166" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf701d579 code=0x0 [ 411.410909][T11551] netlink: 'syz.2.18186': attribute type 3 has an invalid length. [ 411.646479][T11575] __nla_validate_parse: 1 callbacks suppressed [ 411.646491][T11575] netlink: 4 bytes leftover after parsing attributes in process `syz.1.18198'. [ 411.888813][ T40] audit: type=1800 audit(417.889:19666): pid=11593 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.18206" name="SYSV00000000" dev="tmpfs" ino=3 res=0 errno=0 [ 412.134722][T11635] netlink: 'syz.3.18226': attribute type 4 has an invalid length. [ 412.137341][T11635] netlink: 17 bytes leftover after parsing attributes in process `syz.3.18226'. [ 412.169537][T11639] ptrace attach of "/syz-executor exec"[6108] was attempted by " \x0cH;'Sde/Ȑ|zPиW\x0bPt5QI0kp;t>?7~՞8)>\x0a.Fv\x5c0CP{\x07ԭ4OT)%DkfCkF 籥;m\x0cv\x0cTʪz5m֢vī'c^تg_\x0bƍ8)c,(qeB㑻SPt4o IHwL#@mUpE^agh~d_9\x07r|GJj+&ҽk(\x07rnE4(#ë\x0b YβB\x0aЦ&R`?L1tիw.M=3|Gsmg4`|\x22{б춋1[{ȯw/B_g6-qyk*o\x0d\x5cc8\x5c [ 412.661800][T11680] sp0: Synchronizing with TNC [ 412.694766][T11679] [U] ` [ 413.163370][T11716] netlink: 4 bytes leftover after parsing attributes in process `syz.0.18264'. [ 413.202499][ T40] audit: type=1326 audit(419.209:19667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11717 comm="syz.0.18265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 413.210522][ T40] audit: type=1326 audit(419.209:19668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11717 comm="syz.0.18265" exe="/syz-executor" sig=0 arch=40000003 syscall=247 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 413.270544][ T40] audit: type=1326 audit(419.279:19669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11717 comm="syz.0.18265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 413.278561][ T40] audit: type=1326 audit(419.279:19670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11717 comm="syz.0.18265" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 413.717262][ T40] audit: type=1326 audit(419.719:19671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11732 comm="syz.2.18272" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 413.725383][ T40] audit: type=1326 audit(419.719:19672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11732 comm="syz.2.18272" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 413.732236][ T40] audit: type=1326 audit(419.719:19673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11732 comm="syz.2.18272" exe="/syz-executor" sig=0 arch=40000003 syscall=299 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 413.740142][ T40] audit: type=1326 audit(419.719:19674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11732 comm="syz.2.18272" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 413.760120][T11735] netlink: 8 bytes leftover after parsing attributes in process `syz.2.18273'. [ 414.013198][T11757] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 414.337136][T11781] netlink: 8 bytes leftover after parsing attributes in process `syz.0.18293'. [ 414.404110][T11786] netlink: 8 bytes leftover after parsing attributes in process `syz.2.18295'. [ 414.406995][T11786] netlink: 4 bytes leftover after parsing attributes in process `syz.2.18295'. [ 414.409799][T11786] netlink: 'syz.2.18295': attribute type 14 has an invalid length. [ 414.414693][T11786] netlink: 'syz.2.18295': attribute type 13 has an invalid length. [ 414.499962][T11794] netlink: 8 bytes leftover after parsing attributes in process `syz.2.18299'. [ 414.593389][T11801] pim6reg: entered allmulticast mode [ 414.599712][T11801] pim6reg: left allmulticast mode [ 415.471315][T11875] netlink: 4 bytes leftover after parsing attributes in process `syz.0.18336'. [ 415.769410][T11891] sp0: Synchronizing with TNC [ 416.219023][T11909] vivid-000: disconnect [ 416.223125][T11907] vivid-000: reconnect [ 416.277708][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 416.277717][ T40] audit: type=1326 audit(422.279:19676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11916 comm="syz.3.18359" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 416.289703][ T40] audit: type=1326 audit(422.279:19677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11916 comm="syz.3.18359" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 416.297635][T11918] syz.3.18359: page allocation failure: order:9, mode:0x40cc0(GFP_KERNEL|__GFP_COMP), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 416.297821][T11918] CPU: 3 UID: 0 PID: 11918 Comm: syz.3.18359 Not tainted syzkaller #0 PREEMPT(full) [ 416.297844][T11918] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 416.297856][T11918] Call Trace: [ 416.297862][T11918] [ 416.297870][T11918] dump_stack_lvl+0x16c/0x1f0 [ 416.297895][T11918] warn_alloc+0x248/0x3a0 [ 416.297917][T11918] ? __pfx_warn_alloc+0x10/0x10 [ 416.297933][T11918] ? psi_memstall_leave+0x1e6/0x2d0 [ 416.297967][T11918] ? __alloc_pages_direct_compact+0x466/0x580 [ 416.297989][T11918] ? __pfx___alloc_pages_direct_compact+0x10/0x10 [ 416.298013][T11918] ? psi_memstall_leave+0x1e6/0x2d0 [ 416.298039][T11918] __alloc_frozen_pages_noprof+0xe9b/0x2470 [ 416.298070][T11918] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 416.298094][T11918] ? bpf_lsm_key_permission+0x9/0x10 [ 416.298114][T11918] ? security_key_permission+0x79/0x240 [ 416.298142][T11918] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 416.298172][T11918] ? keyring_get_key_chunk+0x22d/0x280 [ 416.298192][T11918] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 416.298222][T11918] ? policy_nodemask+0xea/0x4e0 [ 416.298248][T11918] alloc_pages_mpol+0x1fb/0x550 [ 416.298273][T11918] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 416.298304][T11918] ___kmalloc_large_node+0xed/0x160 [ 416.298333][T11918] __kmalloc_large_node_noprof+0x1c/0x70 [ 416.298357][T11918] ? keyring_search_iterator+0xe3/0x570 [ 416.298379][T11918] __kmalloc_noprof.cold+0xc/0x62 [ 416.298405][T11918] ? __lock_acquire+0xb8a/0x1c90 [ 416.298427][T11918] ? dns_resolver_preparse+0x319/0xe00 [ 416.298457][T11918] ? dns_resolver_preparse+0x319/0xe00 [ 416.298480][T11918] dns_resolver_preparse+0x319/0xe00 [ 416.298510][T11918] ? __pfx_dns_resolver_preparse+0x10/0x10 [ 416.298536][T11918] ? __pfx___might_resched+0x10/0x10 [ 416.298560][T11918] ? down_read+0x13d/0x480 [ 416.298584][T11918] ? __pfx_down_read+0x10/0x10 [ 416.298611][T11918] ? __pfx_dns_resolver_preparse+0x10/0x10 [ 416.298638][T11918] __key_create_or_update+0x458/0xe10 [ 416.298660][T11918] ? __pfx___key_create_or_update+0x10/0x10 [ 416.298681][T11918] ? lookup_user_key+0x2ce/0x1300 [ 416.298722][T11918] ? __pfx_lookup_user_key_possessed+0x10/0x10 [ 416.298751][T11918] ? __pfx_keyring_search_iterator+0x10/0x10 [ 416.298775][T11918] key_create_or_update+0x42/0x60 [ 416.298794][T11918] __do_sys_add_key+0x29d/0x470 [ 416.298818][T11918] ? __pfx___do_sys_add_key+0x10/0x10 [ 416.298836][T11918] ? xfd_validate_state+0x61/0x180 [ 416.298862][T11918] ? __secure_computing+0x21c/0x320 [ 416.298887][T11918] __do_fast_syscall_32+0x7c/0x300 [ 416.298910][T11918] do_fast_syscall_32+0x32/0x80 [ 416.298929][T11918] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 416.298982][T11918] RIP: 0023:0xf701d579 [ 416.298998][T11918] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 416.299017][T11918] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 000000000000011e [ 416.299034][T11918] RAX: ffffffffffffffda RBX: 00000000800003c0 RCX: 0000000080000400 [ 416.299046][T11918] RDX: 0000000080000080 RSI: 00000000000fffff RDI: 000000003e9f820d [ 416.299058][T11918] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 416.299069][T11918] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 416.299080][T11918] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 416.299106][T11918] [ 416.299114][T11918] Mem-Info: [ 416.307832][ T40] audit: type=1326 audit(422.289:19678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11916 comm="syz.3.18359" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 416.311486][T11918] active_anon:537 inactive_anon:584 isolated_anon:0 [ 416.311486][T11918] active_file:9467 inactive_file:5213 isolated_file:0 [ 416.311486][T11918] unevictable:1768 dirty:357 writeback:0 [ 416.311486][T11918] slab_reclaimable:6770 slab_unreclaimable:65729 [ 416.311486][T11918] mapped:21871 shmem:1782 pagetables:1643 [ 416.311486][T11918] sec_pagetables:340 bounce:0 [ 416.311486][T11918] kernel_misc_reclaimable:0 [ 416.311486][T11918] free:57306 free_pcp:293 free_cma:0 [ 416.312702][T11918] Node 0 active_anon:108kB inactive_anon:12kB active_file:272kB inactive_file:12kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:92kB dirty:40kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8772kB pagetables:1224kB sec_pagetables:1160kB all_unreclaimable? yes Balloon:0kB [ 416.315093][ T40] audit: type=1326 audit(422.289:19679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11916 comm="syz.3.18359" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 416.316134][T11918] Node 1 active_anon:2040kB inactive_anon:2324kB active_file:37596kB inactive_file:20840kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:87392kB dirty:1388kB writeback:0kB shmem:3592kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4892kB pagetables:5248kB sec_pagetables:200kB all_unreclaimable? no Balloon:0kB [ 416.320553][ T40] audit: type=1326 audit(422.289:19680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11916 comm="syz.3.18359" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 416.322581][T11918] Node 0 [ 416.324302][ T40] audit: type=1326 audit(422.289:19681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11916 comm="syz.3.18359" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 416.487808][T11918] DMA free:2364kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 416.500709][T11918] lowmem_reserve[]: 0 294 294 294 294 [ 416.502481][T11918] Node 0 DMA32 free:19400kB boost:0kB min:13448kB low:16808kB high:20168kB reserved_highatomic:0KB free_highatomic:0KB active_anon:184kB inactive_anon:12kB active_file:272kB inactive_file:12kB unevictable:3536kB writepending:40kB zspages:864kB present:1032196kB managed:301156kB mlocked:0kB bounce:0kB free_pcp:472kB local_pcp:60kB free_cma:0kB [ 416.513513][T11918] lowmem_reserve[]: 0 0 0 0 0 [ 416.515074][T11918] Node 1 DMA32 free:213956kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:3160kB inactive_anon:456kB active_file:3112kB inactive_file:50176kB unevictable:3536kB writepending:1388kB zspages:3796kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:1020kB local_pcp:124kB free_cma:0kB [ 416.525639][T11918] lowmem_reserve[]: 0 0 0 0 0 [ 416.527231][T11918] Node 0 DMA: 51*4kB (U) 16*8kB (U) 5*16kB (U) 3*32kB (U) 1*64kB (U) 0*128kB 1*256kB (U) 1*512kB (U) 1*1024kB (U) 0*2048kB 0*4096kB = 2364kB [ 416.531964][T11918] Node 0 DMA32: 95*4kB (UE) 144*8kB (UME) 80*16kB (UME) 94*32kB (UME) 48*64kB (UME) 29*128kB (UME) 16*256kB (UME) 1*512kB (M) 2*1024kB (UM) 0*2048kB 0*4096kB = 19260kB [ 416.538371][T11918] Node 1 DMA32: 2289*4kB (UME) 1354*8kB (UME) 842*16kB (UME) 568*32kB (UME) 339*64kB (UME) 237*128kB (UME) 215*256kB (UME) 54*512kB (UM) 27*1024kB (UM) 0*2048kB 0*4096kB = 214004kB [ 416.545959][T11918] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 416.549821][T11918] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 416.553974][T11918] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 416.558138][T11918] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 416.562458][T11918] 15810 total pagecache pages [ 416.564630][T11918] 626 pages in swap cache [ 416.566521][T11918] Free swap = 69924kB [ 416.568117][T11918] Total swap = 124996kB [ 416.569761][T11918] 524155 pages RAM [ 416.571524][T11918] 0 pages HighMem/MovableOnly [ 416.573534][T11918] 207971 pages reserved [ 416.575422][T11918] 0 pages cma reserved [ 416.577768][ T40] audit: type=1326 audit(422.589:19682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11916 comm="syz.3.18359" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 416.587245][ T40] audit: type=1326 audit(422.589:19683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11916 comm="syz.3.18359" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 416.657905][T11925] netlink: 32 bytes leftover after parsing attributes in process `syz.3.18362'. [ 416.889452][ T40] audit: type=1326 audit(422.889:19684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11946 comm="syz.3.18373" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 416.898745][ T40] audit: type=1326 audit(422.889:19685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11946 comm="syz.3.18373" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 417.354426][ T2300] kernel read not supported for file /binder/failed_transaction_log (pid: 2300 comm: kworker/0:2) [ 417.524905][T12002] netlink: 'syz.3.18398': attribute type 1 has an invalid length. [ 417.530784][T12000] can0: slcan on pty24. [ 417.680847][T11999] can0 (unregistered): slcan off pty24. [ 417.976332][T12031] batadv_slave_1: entered promiscuous mode [ 418.035255][T12042] netlink: 128 bytes leftover after parsing attributes in process `syz.0.18419'. [ 418.606282][T12109] netlink: 4 bytes leftover after parsing attributes in process `syz.3.18452'. [ 418.725865][T12121] syz.3.18458 (12121) used obsolete PPPIOCDETACH ioctl [ 418.943844][T12146] netlink: 224 bytes leftover after parsing attributes in process `syz.2.18471'. [ 419.723410][T12227] netlink: 212368 bytes leftover after parsing attributes in process `syz.0.18509'. [ 419.759591][T12230] netlink: 64 bytes leftover after parsing attributes in process `syz.1.18511'. [ 419.817977][T12236] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma? [ 419.972033][T12250] tmpfs: Invalid gid '0x00000000ffffffff' [ 420.351513][T12292] bridge0: port 1(veth1_to_bridge) entered blocking state [ 420.354468][T12292] bridge0: port 1(veth1_to_bridge) entered disabled state [ 420.356873][T12292] veth1_to_bridge: entered allmulticast mode [ 420.359585][T12292] veth1_to_bridge: entered promiscuous mode [ 420.397033][T12297] netlink: 'syz.1.18543': attribute type 1 has an invalid length. [ 420.409959][T12299] netlink: 8 bytes leftover after parsing attributes in process `syz.2.18544'. [ 420.434244][T12302] ieee802154 phy1 wpan1: encryption failed: -22 [ 420.611393][ T34] Process accounting resumed [ 420.625947][T12331] Process accounting resumed [ 420.636199][T12333] netlink: 'syz.3.18561': attribute type 5 has an invalid length. [ 420.653932][T12335] hugetlbfs: Bad value 'k' for mount option 'size' [ 420.653932][T12335] [ 421.059926][T12395] netlink: 4 bytes leftover after parsing attributes in process `syz.1.18590'. [ 421.244091][T12420] netlink: 4 bytes leftover after parsing attributes in process `syz.3.18604'. [ 421.337302][T12438] netlink: 452 bytes leftover after parsing attributes in process `syz.2.18612'. [ 421.438854][ T34] Process accounting resumed [ 421.450924][T12453] Process accounting resumed [ 421.465819][T12458] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present [ 422.414521][T12513] binder: 12511:12513 ioctl 400c620e 80000100 returned -22 [ 423.370063][T12582] __nla_validate_parse: 1 callbacks suppressed [ 423.370080][T12582] netlink: 12 bytes leftover after parsing attributes in process `syz.3.18681'. [ 424.405895][T12686] netlink: 'syz.2.18730': attribute type 2 has an invalid length. [ 424.508394][T12698] No buffer was provided with the request [ 424.515573][T12700] netlink: 16 bytes leftover after parsing attributes in process `syz.3.18737'. [ 425.066769][T12748] ip6gre0: Caught tx_queue_len zero misconfig [ 425.066796][T12748] sch_tbf: burst 0 is lower than device ip6gre0 mtu (39785) ! [ 425.475259][T12762] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4) [ 425.477917][T12762] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 425.481879][T12762] vhci_hcd vhci_hcd.0: Device attached [ 425.488234][T12763] vhci_hcd: connection closed [ 425.490436][ T61] vhci_hcd: stop threads [ 425.494454][ T61] vhci_hcd: release socket [ 425.496557][ T61] vhci_hcd: disconnect device [ 426.159796][T12819] netlink: 4 bytes leftover after parsing attributes in process `syz.2.18792'. [ 426.242557][T12819] veth3: entered promiscuous mode [ 426.573891][T12874] new mount options do not match the existing superblock, will be ignored [ 426.579399][T12874] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 "" [ 426.629400][T12882] sit0: Caught tx_queue_len zero misconfig [ 426.781820][T12902] netlink: 12 bytes leftover after parsing attributes in process `syz.3.18830'. [ 426.784674][T12902] netlink: 'syz.3.18830': attribute type 1 has an invalid length. [ 426.787082][T12902] netlink: 28 bytes leftover after parsing attributes in process `syz.3.18830'. [ 426.985125][T12928] netlink: 'syz.2.18842': attribute type 2 has an invalid length. [ 427.193554][T12956] netlink: 24 bytes leftover after parsing attributes in process `syz.1.18857'. [ 427.646928][T13020] netlink: 4 bytes leftover after parsing attributes in process `syz.0.18887'. [ 427.651575][T13020] netlink: 277 bytes leftover after parsing attributes in process `syz.0.18887'. [ 427.657648][T13020] netlink: 277 bytes leftover after parsing attributes in process `syz.0.18887'. [ 428.468316][T13087] netlink: 216 bytes leftover after parsing attributes in process `syz.2.18919'. [ 428.472641][T13087] netlink: 24 bytes leftover after parsing attributes in process `syz.2.18919'. [ 428.475624][T13087] netlink: 16 bytes leftover after parsing attributes in process `syz.2.18919'. [ 428.527414][T13094] sp0: Synchronizing with TNC [ 428.534012][T13094] sp0: Found TNC [ 428.606752][T13103] netlink: 12 bytes leftover after parsing attributes in process `syz.3.18927'. [ 428.691057][T13111] netlink: 'syz.3.18931': attribute type 4 has an invalid length. [ 428.693492][T13111] netlink: 17 bytes leftover after parsing attributes in process `syz.3.18931'. [ 429.160066][T13170] netlink: 'syz.1.18959': attribute type 4 has an invalid length. [ 429.165944][T13170] netlink: 17 bytes leftover after parsing attributes in process `syz.1.18959'. [ 429.206780][T13176] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 429.239056][T13178] syz.1.18963: page allocation failure: order:10, mode:0x40dc0(GFP_KERNEL|__GFP_ZERO|__GFP_COMP), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 429.252070][T13178] CPU: 1 UID: 0 PID: 13178 Comm: syz.1.18963 Not tainted syzkaller #0 PREEMPT(full) [ 429.252085][T13178] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 429.252092][T13178] Call Trace: [ 429.252096][T13178] [ 429.252100][T13178] dump_stack_lvl+0x16c/0x1f0 [ 429.252118][T13178] warn_alloc+0x248/0x3a0 [ 429.252130][T13178] ? __pfx_warn_alloc+0x10/0x10 [ 429.252140][T13178] ? psi_memstall_leave+0x1e6/0x2d0 [ 429.252153][T13178] ? __alloc_pages_direct_compact+0x466/0x580 [ 429.252166][T13178] ? __pfx___alloc_pages_direct_compact+0x10/0x10 [ 429.252177][T13178] ? psi_memstall_leave+0x1e1/0x2d0 [ 429.252190][T13178] ? psi_memstall_leave+0x1e6/0x2d0 [ 429.252206][T13178] __alloc_frozen_pages_noprof+0xe9b/0x2470 [ 429.252223][T13178] ? __lock_acquire+0x622/0x1c90 [ 429.252237][T13178] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 429.252250][T13178] ? find_held_lock+0x2b/0x80 [ 429.252265][T13178] ? find_held_lock+0x2b/0x80 [ 429.252276][T13178] ? aa_file_perm+0x28f/0x12e0 [ 429.252289][T13178] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 429.252307][T13178] ? policy_nodemask+0xea/0x4e0 [ 429.252321][T13178] alloc_pages_mpol+0x1fb/0x550 [ 429.252335][T13178] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 429.252347][T13178] ? __pfx_aa_file_perm+0x10/0x10 [ 429.252359][T13178] ? stack_trace_save+0x8e/0xc0 [ 429.252370][T13178] ? __pfx_stack_trace_save+0x10/0x10 [ 429.252384][T13178] ___kmalloc_large_node+0xed/0x160 [ 429.252399][T13178] __kmalloc_large_node_noprof+0x1c/0x70 [ 429.252412][T13178] ? kmem_cache_alloc_noprof+0x250/0x6e0 [ 429.252422][T13178] __kmalloc_noprof.cold+0xc/0x62 [ 429.252437][T13178] ? common_file_perm+0x1a9/0x340 [ 429.252446][T13178] ? qrtr_tun_write_iter+0xc1/0x1b0 [ 429.252463][T13178] ? qrtr_tun_write_iter+0xc1/0x1b0 [ 429.252477][T13178] qrtr_tun_write_iter+0xc1/0x1b0 [ 429.252492][T13178] aio_write+0x3b9/0x910 [ 429.252504][T13178] ? __pfx_aio_write+0x10/0x10 [ 429.252514][T13178] ? __lock_acquire+0xb8a/0x1c90 [ 429.252535][T13178] ? __might_fault+0xe3/0x190 [ 429.252544][T13178] ? __might_fault+0x13b/0x190 [ 429.252556][T13178] ? io_submit_one+0x1243/0x1df0 [ 429.252567][T13178] io_submit_one+0x1243/0x1df0 [ 429.252579][T13178] ? __lock_acquire+0xb8a/0x1c90 [ 429.252594][T13178] ? __pfx_io_submit_one+0x10/0x10 [ 429.252610][T13178] ? __might_fault+0xe3/0x190 [ 429.252619][T13178] ? __might_fault+0x13b/0x190 [ 429.252631][T13178] ? __ia32_compat_sys_io_submit+0x1ad/0x3a0 [ 429.252643][T13178] __ia32_compat_sys_io_submit+0x1ad/0x3a0 [ 429.252656][T13178] ? __pfx___ia32_compat_sys_io_submit+0x10/0x10 [ 429.252673][T13178] ? rcu_is_watching+0x12/0xc0 [ 429.252683][T13178] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 429.252698][T13178] __do_fast_syscall_32+0x7c/0x300 [ 429.252712][T13178] do_fast_syscall_32+0x32/0x80 [ 429.252724][T13178] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 429.252736][T13178] RIP: 0023:0xf707d579 [ 429.252745][T13178] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 429.252754][T13178] RSP: 002b:00000000f546d55c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8 [ 429.252764][T13178] RAX: ffffffffffffffda RBX: 00000000f7f82000 RCX: 0000000000000001 [ 429.252770][T13178] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000 [ 429.252776][T13178] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 429.252781][T13178] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 429.252787][T13178] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 429.252799][T13178] [ 429.252803][T13178] Mem-Info: [ 429.349780][T13186] netlink: 8 bytes leftover after parsing attributes in process `syz.0.18967'. [ 429.352076][T13178] active_anon:383 inactive_anon:1049 isolated_anon:0 [ 429.352076][T13178] active_file:741 inactive_file:9541 isolated_file:0 [ 429.352076][T13178] unevictable:1768 dirty:329 writeback:0 [ 429.352076][T13178] slab_reclaimable:6721 slab_unreclaimable:78135 [ 429.352076][T13178] mapped:21953 shmem:1776 pagetables:1724 [ 429.352076][T13178] sec_pagetables:340 bounce:0 [ 429.352076][T13178] kernel_misc_reclaimable:0 [ 429.352076][T13178] free:49423 free_pcp:437 free_cma:0 [ 429.353765][T13186] netlink: 4 bytes leftover after parsing attributes in process `syz.0.18967'. [ 429.356409][T13178] Node 0 active_anon:400kB inactive_anon:8kB active_file:272kB inactive_file:28kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:108kB dirty:16kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8688kB pagetables:1252kB sec_pagetables:1160kB all_unreclaimable? yes Balloon:0kB [ 429.357868][T13186] netlink: 'syz.0.18967': attribute type 7 has an invalid length. [ 429.365679][T13178] Node 1 active_anon:1132kB inactive_anon:4188kB active_file:2692kB inactive_file:38136kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:87704kB dirty:1300kB writeback:0kB shmem:3568kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5068kB pagetables:5644kB sec_pagetables:200kB all_unreclaimable? no Balloon:0kB [ 429.430199][T13178] Node 0 DMA free:2464kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 429.440851][T13178] lowmem_reserve[]: 0 294 294 294 294 [ 429.443248][T13178] Node 0 DMA32 free:16776kB boost:0kB min:13448kB low:16808kB high:20168kB reserved_highatomic:0KB free_highatomic:0KB active_anon:400kB inactive_anon:8kB active_file:272kB inactive_file:28kB unevictable:3536kB writepending:16kB zspages:728kB present:1032196kB managed:301156kB mlocked:0kB bounce:0kB free_pcp:224kB local_pcp:60kB free_cma:0kB [ 429.453439][T13178] lowmem_reserve[]: 0 0 0 0 0 [ 429.455005][T13178] Node 1 DMA32 free:160852kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:1132kB inactive_anon:4188kB active_file:2692kB inactive_file:38136kB unevictable:3536kB writepending:1300kB zspages:3680kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:1984kB local_pcp:128kB free_cma:0kB [ 429.467442][T13178] lowmem_reserve[]: 0 0 0 0 0 [ 429.468972][T13178] Node 0 DMA: 53*4kB (U) 16*8kB (U) 7*16kB (U) 5*32kB (U) 1*64kB (U) 0*128kB 1*256kB (U) 1*512kB (U) 1*1024kB (U) 0*2048kB 0*4096kB = 2468kB [ 429.475102][T13178] Node 0 DMA32: 216*4kB (UME) 139*8kB (UME) 61*16kB (UME) 68*32kB (UME) 36*64kB (ME) 25*128kB (UME) 12*256kB (UME) 2*512kB (M) 2*1024kB (UM) 0*2048kB 0*4096kB = 16776kB [ 429.481333][T13178] Node 1 DMA32: 2081*4kB (UME) 1061*8kB (UME) 728*16kB (UME) 239*32kB (ME) 129*64kB (ME) 92*128kB (ME) 108*256kB (UME) 79*512kB (UM) 31*1024kB (UM) 0*2048kB 0*4096kB = 155980kB [ 429.487176][T13178] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 429.491116][T13178] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 429.494528][T13178] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 429.497733][T13178] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 429.502556][T13178] 13098 total pagecache pages [ 429.504943][T13178] 1029 pages in swap cache [ 429.506941][T13178] Free swap = 70224kB [ 429.509024][T13178] Total swap = 124996kB [ 429.511588][T13178] 524155 pages RAM [ 429.513314][T13178] 0 pages HighMem/MovableOnly [ 429.515288][T13178] 207971 pages reserved [ 429.517044][T13178] 0 pages cma reserved [ 429.747397][T13224] netlink: 72 bytes leftover after parsing attributes in process `syz.3.18984'. [ 429.751133][T13224] netlink: 72 bytes leftover after parsing attributes in process `syz.3.18984'. [ 430.140126][T13273] IPVS: set_ctl: invalid protocol: 58 172.20.20.170:0 [ 430.362900][T13291] tipc: Enabling of bearer rejected, failed to enable media [ 431.186098][T13325] mkiss: ax0: crc mode is auto. [ 432.592162][T13450] program syz.0.19093 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 432.648062][ T40] kauditd_printk_skb: 14 callbacks suppressed [ 432.648072][ T40] audit: type=1326 audit(438.649:19700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13455 comm="syz.1.19096" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 432.662576][ T40] audit: type=1326 audit(438.659:19701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13455 comm="syz.1.19096" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 432.674319][ T40] audit: type=1326 audit(438.659:19702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13455 comm="syz.1.19096" exe="/syz-executor" sig=0 arch=40000003 syscall=327 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 432.685161][ T40] audit: type=1326 audit(438.659:19703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13455 comm="syz.1.19096" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 432.694064][ T40] audit: type=1326 audit(438.659:19704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13455 comm="syz.1.19096" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 432.703702][ T40] audit: type=1326 audit(438.659:19705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13455 comm="syz.1.19096" exe="/syz-executor" sig=0 arch=40000003 syscall=439 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 432.711507][ T40] audit: type=1326 audit(438.659:19706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13455 comm="syz.1.19096" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 432.722096][ T40] audit: type=1326 audit(438.659:19707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13455 comm="syz.1.19096" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 432.732015][ T40] audit: type=1326 audit(438.739:19708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13464 comm="syz.3.19100" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf701d579 code=0x0 [ 432.783714][T13472] binder: 13471:13472 ioctl c018620c 80000280 returned -22 [ 433.018597][T13494] tipc: Enabling of bearer rejected, failed to enable media [ 433.036827][T13497] netlink: 'syz.1.19115': attribute type 11 has an invalid length. [ 433.355048][T13531] program syz.2.19131 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 433.553948][T13545] RDS: rds_bind could not find a transport for fe80::bb, load rds_tcp or rds_rdma? [ 433.828481][T13584] __nla_validate_parse: 6 callbacks suppressed [ 433.828498][T13584] netlink: 4 bytes leftover after parsing attributes in process `syz.2.19156'. [ 433.838272][T13584] netlink: 4 bytes leftover after parsing attributes in process `syz.2.19156'. [ 433.865698][T13588] netlink: 'syz.0.19157': attribute type 12 has an invalid length. [ 433.869726][T13588] netlink: 132 bytes leftover after parsing attributes in process `syz.0.19157'. [ 434.428288][ T40] audit: type=1326 audit(440.429:19709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13633 comm="syz.2.19180" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70ed579 code=0x0 [ 434.566138][T13641] netlink: 'syz.0.19183': attribute type 11 has an invalid length. [ 434.687249][T13652] comedi comedi3: dmm32at: I/O port conflict (0x4f2a,16) [ 434.754261][T13654] netlink: 4 bytes leftover after parsing attributes in process `syz.3.19189'. [ 434.861520][T13664] comedi comedi3: pcmmio: I/O port conflict (0x4f29,32) [ 436.012881][T13748] option changes via remount are deprecated (pid=13745 comm=syz.3.19235) [ 436.048391][T13750] tmpfs: Bad value for 'grpquota_inode_hardlimit' [ 436.266024][T13775] comedi comedi3: aio_iiro_16: I/O port conflict (0x4f27,8) [ 436.433799][T13794] IPVS: sync thread started: state = BACKUP, mcast_ifn = wlan1, syncid = 0, id = 0 [ 436.434673][T13795] IPVS: sync thread started: state = BACKUP, mcast_ifn = wlan1, syncid = 0, id = 1 [ 436.435253][T13796] IPVS: sync thread started: state = BACKUP, mcast_ifn = wlan1, syncid = 0, id = 2 [ 436.446228][T13797] IPVS: sync thread started: state = BACKUP, mcast_ifn = wlan1, syncid = 0, id = 3 [ 436.451974][T13793] IPVS: stopping backup sync thread 13797 ... [ 436.457677][T13793] IPVS: stopping backup sync thread 13796 ... [ 436.467633][T13793] IPVS: stopping backup sync thread 13795 ... [ 436.471745][T13793] IPVS: stopping backup sync thread 13794 ... [ 436.683935][T13819] xt_policy: too many policy elements [ 437.411405][T13845] tipc: Started in network mode [ 437.413730][T13845] tipc: Node identity aaaaaaaaaa32, cluster identity 3865 [ 437.416961][T13845] tipc: Enabled bearer , priority 10 [ 437.486703][T13853] sg_write: data in/out 65499/14 bytes for SCSI command 0x0-- guessing data in; [ 437.486703][T13853] program syz.0.19283 not setting count and/or reply_len properly [ 437.572586][T13861] netlink: 20 bytes leftover after parsing attributes in process `syz.1.19287'. [ 438.042540][T13922] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 438.051811][T13922] @0: renamed from bond_slave_1 (while UP) [ 438.218716][T13947] netlink: 7 bytes leftover after parsing attributes in process `syz.1.19328'. [ 438.410617][ T843] tipc: Node number set to 10005162 [ 438.464167][T13982] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 438.548931][ T40] kauditd_printk_skb: 17 callbacks suppressed [ 438.548946][ T40] audit: type=1326 audit(444.549:19727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13989 comm="syz.0.19349" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 438.570777][ T40] audit: type=1326 audit(444.559:19728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13989 comm="syz.0.19349" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 438.577791][ T40] audit: type=1326 audit(444.559:19729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13989 comm="syz.0.19349" exe="/syz-executor" sig=0 arch=40000003 syscall=178 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 438.588721][ T40] audit: type=1326 audit(444.559:19730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13989 comm="syz.0.19349" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 438.596957][ T40] audit: type=1326 audit(444.559:19731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13989 comm="syz.0.19349" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 439.075041][T14065] ip6tnl2: entered promiscuous mode [ 439.077369][T14065] ip6tnl2: entered allmulticast mode [ 439.080866][T14065] team0: Device ip6tnl2 is of different type [ 439.127795][T14072] IPVS: stopping backup sync thread 9599 ... [ 439.211585][T14073] IPVS: sync thread started: state = BACKUP, mcast_ifn = wlan1, syncid = 0, id = 0 [ 439.348845][T14086] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 439.430161][T14098] IPVS: stopping backup sync thread 25858 ... [ 439.447233][T14101] netlink: 4 bytes leftover after parsing attributes in process `syz.1.19400'. [ 439.522233][T14110] tipc: Enabled bearer , priority 0 [ 440.071048][T14160] CUSE: unknown device info "KJ H+ۤ2LhnL1`Ccn80(3նi>f_ٮ,<_eF" [ 440.075614][T14160] CUSE: unknown device info "3ܟ,̘" [ 440.076275][T14162] netlink: 'syz.3.19429': attribute type 10 has an invalid length. [ 440.078046][T14160] CUSE: unknown device info "J2S Z !e/J+-na4D|G$5O~q [ 440.078046][T14160] fzXSAxjTǔw xRɐQ(hҏj pVdY0|M?2JIv^R@" [ 440.078067][T14160] CUSE: unknown device info "!To}ݝ&|L+Uoϲ"FstV:׌E gJ<@c4TMM|" [ 440.083362][T14162] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 440.092208][T14160] CUSE: DEVNAME unspecified [ 440.097787][T14162] batadv0: entered promiscuous mode [ 440.104484][T14162] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 440.135545][T14162] netlink: 'syz.3.19429': attribute type 10 has an invalid length. [ 440.138134][T14162] netlink: 40 bytes leftover after parsing attributes in process `syz.3.19429'. [ 440.142038][T14162] batadv0: entered allmulticast mode [ 440.181976][T14162] bond0: (slave batadv0): Releasing backup interface [ 440.224285][T14162] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check. [ 440.373645][T14181] IPVS: persistence engine module ip_vs_pe_s not found [ 440.798662][ T843] hid_parser_main: 8 callbacks suppressed [ 440.798680][ T843] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 440.806017][ T843] hid-generic 0000:0000:0000.0006: hidraw0: HID v0.00 Device [syz0] on syz0 [ 440.893762][T14244] vivid-007: disconnect [ 440.897780][T14236] vivid-007: reconnect [ 441.105887][T12543] kernel write not supported for file /dsp1 (pid: 12543 comm: kworker/1:0) [ 441.275117][T14277] skbuff: bad partial csum: csum=65535/127 headroom=178 headlen=65664 [ 441.299359][ T40] audit: type=1326 audit(447.299:19732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14281 comm="syz.1.19486" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 441.306594][ T40] audit: type=1326 audit(447.299:19733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14281 comm="syz.1.19486" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 441.315494][ T40] audit: type=1326 audit(447.309:19734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14281 comm="syz.1.19486" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 441.323684][ T40] audit: type=1326 audit(447.309:19735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14281 comm="syz.1.19486" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 441.333067][ T40] audit: type=1326 audit(447.309:19736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14281 comm="syz.1.19486" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 441.863224][T14320] netlink: 32 bytes leftover after parsing attributes in process `syz.0.19504'. [ 441.881896][T14322] netlink: 'syz.2.19506': attribute type 32 has an invalid length. [ 441.885053][T14322] netlink: 8 bytes leftover after parsing attributes in process `syz.2.19506'. [ 441.899729][T14322] bond10: Setting coupled_control to off (0) [ 442.583667][T14376] macsec2: entered allmulticast mode [ 442.585923][T14376] bridge0: entered allmulticast mode [ 444.386211][T14460] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 444.389057][T14460] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 444.392788][T14460] vhci_hcd vhci_hcd.0: Device attached [ 444.403096][T14461] vhci_hcd: connection closed [ 444.403694][ T535] vhci_hcd: stop threads [ 444.407599][ T535] vhci_hcd: release socket [ 444.409570][ T535] vhci_hcd: disconnect device [ 444.697010][T14474] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 445.010795][T14501] netlink: 'syz.3.19590': attribute type 30 has an invalid length. [ 445.024285][ T1416] ieee802154 phy1 wpan1: encryption failed: -22 [ 445.575750][T14558] ieee802154 phy1 wpan1: encryption failed: -22 [ 446.453332][ T40] kauditd_printk_skb: 3 callbacks suppressed [ 446.453343][ T40] audit: type=1326 audit(452.459:19740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14618 comm="syz.0.19647" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 446.464379][ T40] audit: type=1326 audit(452.459:19741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14618 comm="syz.0.19647" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 446.475662][ T40] audit: type=1326 audit(452.459:19742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14618 comm="syz.0.19647" exe="/syz-executor" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 446.483531][ T40] audit: type=1326 audit(452.459:19743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14618 comm="syz.0.19647" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 446.486718][T14623] random: crng reseeded on system resumption [ 446.493114][ T40] audit: type=1326 audit(452.459:19744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14618 comm="syz.0.19647" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 446.493152][ T40] audit: type=1326 audit(452.459:19745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14618 comm="syz.0.19647" exe="/syz-executor" sig=0 arch=40000003 syscall=337 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 446.493187][ T40] audit: type=1326 audit(452.459:19746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14618 comm="syz.0.19647" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 446.835471][T14651] comedi comedi3: 8255: I/O port conflict (0x4f27,4) [ 446.837875][T14651] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 446.840088][T14651] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 446.844019][T14651] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 446.846092][T14651] comedi comedi3: 8255: I/O port conflict (0xfff,4) [ 446.848177][T14651] comedi comedi3: 8255: I/O port conflict (0x5c952399,4) [ 446.850960][T14651] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 446.852887][T14651] comedi comedi3: 8255: I/O port conflict (0x3ff,4) [ 446.855105][T14651] comedi comedi3: 8255: I/O port conflict (0x20802,4) [ 446.857710][T14651] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 446.860243][T14651] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 446.862995][T14651] comedi comedi3: 8255: I/O port conflict (0x9,4) [ 446.865303][T14651] comedi comedi3: 8255: I/O port conflict (0x6,4) [ 446.867540][T14651] comedi comedi3: 8255: I/O port conflict (0x4,4) [ 446.869633][T14651] comedi comedi3: 8255: I/O port conflict (0x3,4) [ 446.872666][T14651] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 446.874728][T14651] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffd,4) [ 446.877055][T14651] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 446.879104][T14651] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffff5,4) [ 446.881525][T14651] comedi comedi3: 8255: I/O port conflict (0xffffffffffffeadb,4) [ 446.884049][T14651] comedi comedi3: 8255: I/O port conflict (0x3,4) [ 446.886090][T14651] comedi comedi3: 8255: I/O port conflict (0x8,4) [ 446.888027][T14651] comedi comedi3: 8255: I/O port conflict (0x4,4) [ 446.890189][T14651] comedi comedi3: 8255: I/O port conflict (0x8000000,4) [ 446.892933][T14651] comedi comedi3: 8255: I/O port conflict (0xffffffffdffffffa,4) [ 447.039989][T14664] netlink: 'syz.1.19669': attribute type 2 has an invalid length. [ 447.241032][T12543] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 447.391060][T12543] usb 5-1: Using ep0 maxpacket: 8 [ 447.394708][T12543] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 447.398074][T12543] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 447.403970][T12543] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 447.409439][T12543] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 447.415768][T12543] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 447.423564][T12543] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 447.427080][T12543] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 447.432827][T12543] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 447.438051][T12543] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 447.443150][T12543] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 447.448392][T12543] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 447.451210][T12543] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 447.455964][T12543] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 447.460044][T12543] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 447.464642][T12543] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 447.473807][T12543] usb 5-1: string descriptor 0 read error: -22 [ 447.475872][T14689] [U] 1WT`8H$09\ [ 447.476551][T12543] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 447.478120][T14689] [U] ;2}UGVĥ#O9ե>-ߴSݢP [ 447.485263][T12543] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 447.494049][T12543] adutux 5-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 447.642891][ T34] libceph: connect (1)[c::]:6789 error -1 [ 447.644989][ T34] libceph: mon0 (1)[c::]:6789 connect error [ 447.701568][T12543] usb 5-1: USB disconnect, device number 16 [ 447.911147][ T34] libceph: connect (1)[c::]:6789 error -1 [ 447.913284][ T34] libceph: mon0 (1)[c::]:6789 connect error [ 448.264175][T14730] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported [ 448.284261][ T2300] kernel write not supported for file /input/event1 (pid: 2300 comm: kworker/0:2) [ 448.314104][T14736] overlayfs: conflicting options: nfs_export=on,index=off [ 448.323869][T14738] random: crng reseeded on system resumption [ 448.333949][T14738] Restarting kernel threads ... [ 448.337036][T14738] Done restarting kernel threads. [ 448.423868][ T34] libceph: connect (1)[c::]:6789 error -1 [ 448.425935][ T34] libceph: mon0 (1)[c::]:6789 connect error [ 448.472311][T14702] ceph: No mds server is up or the cluster is laggy [ 448.761643][T14774] netlink: 'syz.2.19718': attribute type 178 has an invalid length. [ 448.880839][T14795] netlink: 28 bytes leftover after parsing attributes in process `syz.3.19730'. [ 448.920088][T14801] netlink: zone id is out of range [ 448.921836][T14800] netlink: 24 bytes leftover after parsing attributes in process `syz.3.19732'. [ 449.297956][T14833] sp0: Synchronizing with TNC [ 449.305325][T14833] sp0: Found TNC [ 449.350307][T14835] netlink: 'syz.0.19749': attribute type 11 has an invalid length. [ 449.352974][T14835] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.19749'. [ 449.682385][T14867] use of bytesused == 0 is deprecated and will be removed in the future, [ 449.686238][T14867] use the actual size instead. [ 449.961913][T14893] rtc_cmos 00:05: Alarms can be up to one day in the future [ 450.114320][T14913] netlink: 40 bytes leftover after parsing attributes in process `syz.1.19788'. [ 450.528168][T14973] bpf: Bad value for 'gid' [ 450.636036][T14989] netlink: 'syz.1.19822': attribute type 10 has an invalid length. [ 451.613719][ T34] kernel write not supported for file /uhid (pid: 34 comm: kworker/3:0) [ 451.883937][ T40] audit: type=1326 audit(457.889:19747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15052 comm="syz.1.19854" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 451.894291][ T40] audit: type=1326 audit(457.889:19748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15052 comm="syz.1.19854" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 451.904594][ T40] audit: type=1326 audit(457.889:19749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15052 comm="syz.1.19854" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 451.913444][ T40] audit: type=1326 audit(457.889:19750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15052 comm="syz.1.19854" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 451.920890][ T40] audit: type=1326 audit(457.889:19751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15052 comm="syz.1.19854" exe="/syz-executor" sig=0 arch=40000003 syscall=356 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 451.928410][ T40] audit: type=1326 audit(457.889:19752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15052 comm="syz.1.19854" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 451.938234][ T40] audit: type=1326 audit(457.889:19753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15052 comm="syz.1.19854" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 451.946656][ T40] audit: type=1326 audit(457.889:19754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15052 comm="syz.1.19854" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 451.956208][ T40] audit: type=1326 audit(457.889:19755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15052 comm="syz.1.19854" exe="/syz-executor" sig=0 arch=40000003 syscall=94 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 451.963469][ T40] audit: type=1326 audit(457.889:19756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15052 comm="syz.1.19854" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 452.192166][T15051] smc: removing net device wlan1 with user defined pnetid SYZ1 [ 453.111421][T15130] netlink: 12 bytes leftover after parsing attributes in process `syz.1.19891'. [ 453.188675][T15137] netlink: 8 bytes leftover after parsing attributes in process `syz.3.19894'. [ 453.350657][T15156] vlan0: entered promiscuous mode [ 453.352896][T15156] bridge0: entered promiscuous mode [ 453.401201][T15164] ieee802154 phy1 wpan1: encryption failed: -126 [ 453.536139][ C2] vkms_vblank_simulate: vblank timer overrun [ 453.611387][T15184] netlink: 4 bytes leftover after parsing attributes in process `syz.1.19917'. [ 453.656475][T15193] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 453.689982][T15197] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 453.714530][T15200] program syz.2.19922 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 453.911286][ T34] usb 5-1: new full-speed USB device number 17 using dummy_hcd [ 453.979411][T15231] CUSE: DEVNAME unspecified [ 454.055203][T15243] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 454.063706][ T34] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 454.066777][ T34] usb 5-1: config 0 interface 0 has no altsetting 0 [ 454.072248][ T34] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 454.077139][ T34] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 454.080932][ T34] usb 5-1: Product: syz [ 454.082355][ T34] usb 5-1: Manufacturer: syz [ 454.084167][ T34] usb 5-1: SerialNumber: syz [ 454.089189][ T34] usb 5-1: config 0 descriptor?? [ 454.093907][ T34] usb 5-1: selecting invalid altsetting 0 [ 454.308325][ T1333] usb 5-1: USB disconnect, device number 17 [ 455.021372][T15261] netlink: 32 bytes leftover after parsing attributes in process `syz.2.19955'. [ 455.315182][T15305] netlink: 'syz.0.19977': attribute type 23 has an invalid length. [ 455.375996][T15311] ip6t_rpfilter: only valid in 'raw' or 'mangle' table, not '' [ 455.443401][T15319] IPVS: dh: FWM 3 0x00000003 - no destination available [ 456.403903][T15402] comedi comedi3: pcl711: I/O port conflict (0x4f2f,16) [ 456.594957][T15419] random: crng reseeded on system resumption [ 456.864735][T15446] rtc_cmos 00:05: Alarms can be up to one day in the future [ 456.887393][T15450] netlink: 'syz.1.20046': attribute type 1 has an invalid length. [ 456.892629][T15450] netlink: 'syz.1.20046': attribute type 3 has an invalid length. [ 456.896020][T15450] netlink: 172 bytes leftover after parsing attributes in process `syz.1.20046'. [ 456.899601][T15450] NCSI netlink: No device for ifindex 813332851 [ 457.085289][T15478] netlink: 16 bytes leftover after parsing attributes in process `syz.2.20060'. [ 457.090854][T15478] netlink: 12 bytes leftover after parsing attributes in process `syz.2.20060'. [ 457.094685][T15478] netlink: 12 bytes leftover after parsing attributes in process `syz.2.20060'. [ 457.195451][ T40] kauditd_printk_skb: 9 callbacks suppressed [ 457.195467][ T40] audit: type=1326 audit(463.199:19766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15487 comm="syz.2.20065" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70ed579 code=0x0 [ 457.341654][T15501] netlink: 16 bytes leftover after parsing attributes in process `syz.3.20071'. [ 457.346748][T15501] netlink: 12 bytes leftover after parsing attributes in process `syz.3.20071'. [ 457.349682][T15501] netlink: 12 bytes leftover after parsing attributes in process `syz.3.20071'. [ 457.393983][ T2300] kernel read not supported for file /rfkill (pid: 2300 comm: kworker/0:2) [ 457.796437][ T40] audit: type=1326 audit(463.799:19767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15541 comm="syz.0.20091" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 457.805847][ T40] audit: type=1326 audit(463.799:19768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15541 comm="syz.0.20091" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 457.815453][ T40] audit: type=1326 audit(463.799:19769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15541 comm="syz.0.20091" exe="/syz-executor" sig=0 arch=40000003 syscall=395 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 457.824135][ T40] audit: type=1326 audit(463.799:19770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15541 comm="syz.0.20091" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 457.834012][ T40] audit: type=1326 audit(463.799:19771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15541 comm="syz.0.20091" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 457.845780][ T40] audit: type=1326 audit(463.799:19772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15541 comm="syz.0.20091" exe="/syz-executor" sig=0 arch=40000003 syscall=396 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 457.854788][ T40] audit: type=1326 audit(463.809:19773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15541 comm="syz.0.20091" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 457.863973][ T40] audit: type=1326 audit(463.809:19774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15541 comm="syz.0.20091" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 457.923973][ T40] audit: type=1326 audit(463.929:19775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15552 comm="syz.3.20096" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf701d579 code=0x0 [ 458.058648][T15568] x_tables: ip_tables: owner.1 match: invalid size 24 (kernel) != (user) 32 [ 458.208501][T15578] netlink: 8 bytes leftover after parsing attributes in process `syz.0.20108'. [ 458.477533][ T1333] hid-generic 00A0:0006:0003.0007: unknown main item tag 0x0 [ 458.480906][ T1333] hid-generic 00A0:0006:0003.0007: unknown main item tag 0x0 [ 458.484131][ T1333] hid-generic 00A0:0006:0003.0007: unknown main item tag 0x0 [ 458.487323][ T1333] hid-generic 00A0:0006:0003.0007: unknown main item tag 0x0 [ 458.491850][ T1333] hid-generic 00A0:0006:0003.0007: unknown main item tag 0x0 [ 458.494887][ T1333] hid-generic 00A0:0006:0003.0007: unknown main item tag 0x0 [ 458.497987][ T1333] hid-generic 00A0:0006:0003.0007: unknown main item tag 0x0 [ 458.502757][ T1333] hid-generic 00A0:0006:0003.0007: unknown main item tag 0x0 [ 458.505143][ T1333] hid-generic 00A0:0006:0003.0007: unknown main item tag 0x0 [ 458.507621][ T1333] hid-generic 00A0:0006:0003.0007: unknown main item tag 0x0 [ 458.514414][ T1333] hid-generic 00A0:0006:0003.0007: hidraw0: HID v0.05 Device [syz1] on syz0 [ 458.715619][T15621] syz.0.20129 invoked oom-killer: gfp_mask=0x140dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|__GFP_COMP), order=0, oom_score_adj=1000 [ 458.721599][T15621] CPU: 0 UID: 0 PID: 15621 Comm: syz.0.20129 Not tainted syzkaller #0 PREEMPT(full) [ 458.721623][T15621] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 458.721635][T15621] Call Trace: [ 458.721641][T15621] [ 458.721648][T15621] dump_stack_lvl+0x16c/0x1f0 [ 458.721674][T15621] dump_header+0x101/0x930 [ 458.721695][T15621] oom_kill_process+0x272/0xa40 [ 458.721711][T15621] ? oom_cpuset_eligible.isra.0+0x199/0x2d0 [ 458.721742][T15621] out_of_memory+0x1405/0x1700 [ 458.721766][T15621] ? __pfx_out_of_memory+0x10/0x10 [ 458.721792][T15621] __alloc_frozen_pages_noprof+0x1dfa/0x2470 [ 458.721827][T15621] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 458.721856][T15621] ? __lock_acquire+0x622/0x1c90 [ 458.721885][T15621] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 458.721913][T15621] ? cpuset_nodemask_valid_mems_allowed+0x5f/0x80 [ 458.721940][T15621] ? policy_nodemask+0xea/0x4e0 [ 458.721967][T15621] alloc_pages_mpol+0x1fb/0x550 [ 458.721991][T15621] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 458.722024][T15621] folio_alloc_mpol_noprof+0x36/0x2f0 [ 458.722053][T15621] vma_alloc_folio_noprof+0xed/0x1e0 [ 458.722079][T15621] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 458.722113][T15621] do_pte_missing+0x2202/0x3ba0 [ 458.722143][T15621] ? find_held_lock+0x2b/0x80 [ 458.722169][T15621] __handle_mm_fault+0x1556/0x2aa0 [ 458.722205][T15621] ? __pfx___handle_mm_fault+0x10/0x10 [ 458.722233][T15621] ? __pte_offset_map_lock+0x174/0x310 [ 458.722256][T15621] ? find_held_lock+0x2b/0x80 [ 458.722279][T15621] ? follow_page_pte+0x5cf/0x1390 [ 458.722307][T15621] handle_mm_fault+0x589/0xd10 [ 458.722337][T15621] __get_user_pages+0x54e/0x3530 [ 458.722375][T15621] ? __pfx___get_user_pages+0x10/0x10 [ 458.722408][T15621] populate_vma_page_range+0x267/0x3f0 [ 458.722436][T15621] ? __pfx_populate_vma_page_range+0x10/0x10 [ 458.722462][T15621] ? __pfx_find_vma_intersection+0x10/0x10 [ 458.722492][T15621] ? __pfx_apply_vma_lock_flags+0x10/0x10 [ 458.722516][T15621] __mm_populate+0x1d8/0x380 [ 458.722568][T15621] ? __pfx___mm_populate+0x10/0x10 [ 458.722597][T15621] ? up_write+0x1b2/0x520 [ 458.722628][T15621] do_mlock+0x441/0x800 [ 458.722650][T15621] ? __pfx_do_mlock+0x10/0x10 [ 458.722667][T15621] ? __ia32_sys_futex_time32+0x1d9/0x460 [ 458.722693][T15621] ? __ia32_sys_futex_time32+0x2fc/0x460 [ 458.722724][T15621] ? __pfx___ia32_sys_futex_time32+0x10/0x10 [ 458.722762][T15621] __ia32_sys_mlock+0x57/0x80 [ 458.722780][T15621] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 458.722804][T15621] __do_fast_syscall_32+0x7c/0x300 [ 458.722830][T15621] do_fast_syscall_32+0x32/0x80 [ 458.722852][T15621] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 458.722875][T15621] RIP: 0023:0xf704d579 [ 458.722890][T15621] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 458.722906][T15621] RSP: 002b:00000000f543d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000096 [ 458.722923][T15621] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000800000 [ 458.722934][T15621] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 458.722944][T15621] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 458.722953][T15621] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 458.722963][T15621] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 458.722989][T15621] [ 458.722996][T15621] Mem-Info: [ 458.867552][T15621] active_anon:417 inactive_anon:1241 isolated_anon:0 [ 458.867552][T15621] active_file:505 inactive_file:13399 isolated_file:0 [ 458.867552][T15621] unevictable:3161 dirty:49 writeback:0 [ 458.867552][T15621] slab_reclaimable:6735 slab_unreclaimable:66410 [ 458.867552][T15621] mapped:21922 shmem:1789 pagetables:1824 [ 458.867552][T15621] sec_pagetables:340 bounce:0 [ 458.867552][T15621] kernel_misc_reclaimable:0 [ 458.867552][T15621] free:52357 free_pcp:279 free_cma:0 [ 458.885862][T15621] Node 0 active_anon:48kB inactive_anon:48kB active_file:140kB inactive_file:80kB unevictable:9104kB isolated(anon):0kB isolated(file):0kB mapped:76kB dirty:12kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8736kB pagetables:1340kB sec_pagetables:1160kB all_unreclaimable? yes Balloon:0kB [ 458.899265][T15621] Node 0 DMA free:1840kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:408kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:408kB bounce:0kB free_pcp:124kB local_pcp:124kB free_cma:0kB [ 458.912792][T15621] lowmem_reserve[]: 0 294 294 294 294 [ 458.915122][T15621] Node 0 DMA32 free:12948kB boost:0kB min:13448kB low:16808kB high:20168kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:124kB active_file:0kB inactive_file:468kB unevictable:8696kB writepending:12kB zspages:676kB present:1032196kB managed:301156kB mlocked:5160kB bounce:0kB free_pcp:992kB local_pcp:956kB free_cma:0kB [ 458.928192][T15621] lowmem_reserve[]: 0 0 0 0 0 [ 458.930235][T15621] Node 0 DMA: 43*4kB (U) 16*8kB (UM) 8*16kB (UM) 2*32kB (U) 1*64kB (M) 0*128kB 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 1836kB [ 458.936404][T15621] Node 0 DMA32: 177*4kB (UE) 130*8kB (UE) 47*16kB (UE) 44*32kB (UME) 28*64kB (UME) 19*128kB (UE) 9*256kB (UME) 1*512kB (M) 2*1024kB (UM) 0*2048kB 0*4096kB = 12996kB [ 458.943577][T15621] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 458.947676][T15621] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 458.950742][T15621] 16896 total pagecache pages [ 458.952513][T15621] 1212 pages in swap cache [ 458.954208][T15621] Free swap = 70152kB [ 458.955871][T15621] Total swap = 124996kB [ 458.957529][T15621] 524155 pages RAM [ 458.959102][T15621] 0 pages HighMem/MovableOnly [ 458.961124][T15621] 207971 pages reserved [ 458.962789][T15621] 0 pages cma reserved [ 458.964439][T15621] Unreclaimable slab info: [ 458.966929][T15621] Name Used Total [ 458.969673][T15621] pid_3 31KB 31KB [ 458.972639][T15621] pid_2 111KB 181KB [ 458.975032][T15621] bio-360 7KB 7KB [ 458.977334][T15621] bio-424 8KB 8KB [ 458.979923][T15621] bio-440 8KB 8KB [ 458.982485][T15621] bio-536 15KB 15KB [ 458.984938][T15621] afs_inode_cache 92KB 92KB [ 458.987475][T15621] zspage-zswap1 124KB 157KB [ 458.989958][T15621] zs_handle-zswap1 124KB 216KB [ 458.992277][T15621] zswap_entry 355KB 537KB [ 458.994363][T15621] AF_VSOCK 122KB 122KB [ 458.996737][T15621] sw_flow_stats 16KB 16KB [ 458.998910][T15621] sw_flow 61KB 61KB [ 459.001605][T15621] batadv_tt_change_cache 16KB 16KB [ 459.002840][T15644] syz.3.20141: attempt to access beyond end of device [ 459.002840][T15644] mtdblock0: rw=2048, sector=3656, nr_sectors = 8 limit=256 [ 459.004630][T15621] batadv_tl_cache 16KB 16KB [ 459.011727][T15621] ceph_osd_request 63KB 63KB [ 459.011745][T15621] ceph_msg 15KB 15KB [ 459.011761][T15621] IEEE-802.15.4-MAC 125KB 125KB [ 459.018566][T15621] IEEE-802.15.4-RAW 126KB 126KB [ 459.021317][T15621] p9_req_t 31KB 31KB [ 459.023311][T15621] INET6_SMC 29KB 29KB [ 459.025216][T15621] INET_SMC 122KB 122KB [ 459.027507][T15621] SMC6 122KB 122KB [ 459.030793][T15621] SMC 122KB 122KB [ 459.033116][T15621] TIPC 123KB 123KB [ 459.035825][T15621] RDS 123KB 123KB [ 459.038745][T15621] rds_connection 30KB 30KB [ 459.040924][T15621] SCTPv6 120KB 120KB [ 459.042925][T15621] SCTP 122KB 122KB [ 459.044833][T15621] sctp_chunk 85KB 125KB [ 459.046704][T15621] sctp_bind_bucket 16KB 16KB [ 459.048721][T15621] PNPIPE 123KB 123KB [ 459.051396][T15621] PHONET 94KB 94KB [ 459.053796][T15621] L2TP/IPv6 127KB 127KB [ 459.056214][T15621] L2TP/IP 126KB 126KB [ 459.058790][T15621] KCM 124KB 124KB [ 459.061757][T15621] kcm_mux 63KB 63KB [ 459.064305][T15621] RXRPC 128KB 128KB [ 459.066948][T15621] rxrpc_call_jar 286KB 286KB [ 459.069516][T15621] can_gw 8KB 8KB [ 459.072425][T15621] can_receiver 15KB 15KB [ 459.075051][T15621] net_bridge_fdb_entry 23KB 23KB [ 459.077730][T15621] nf-frags 15KB 15KB [ 459.080622][T15621] xfrm6_tunnel_spi 4KB 4KB [ 459.083953][T15621] MPTCPv6 125KB 125KB [ 459.086966][T15621] ip6-frags 23KB 23KB [ 459.089515][T15621] fib6_node 90KB 132KB [ 459.092531][T15621] ip6_dst_cache 172KB 296KB [ 459.095041][T15621] mfc6_cache 4KB 4KB [ 459.097070][T15621] PINGv6 123KB 123KB [ 459.099023][T15621] RAWv6 185KB 185KB [ 459.101116][T15621] UDPLITEv6 126KB 126KB [ 459.103164][T15621] UDPv6 126KB 126KB [ 459.105090][T15621] request_sock_TCPv6 30KB 30KB [ 459.107229][T15621] TCPv6 570KB 698KB [ 459.109501][T15621] nf_conntrack 31KB 31KB [ 459.111925][T15621] wg_peer 148KB 148KB [ 459.113965][T15621] allowedips_node 15KB 15KB [ 459.115754][T15621] ubi_wl_entry_slab 3KB 3KB [ 459.117646][T15621] t10_alua_lu_gp_cache 7KB 7KB [ 459.119665][T15621] scsi_sense_cache 44KB 44KB [ 459.121886][T15621] virtio_scsi_cmd 16KB 16KB [ 459.124228][T15621] bio-136 71KB 92KB [ 459.126720][T15621] io_kiocb 117KB 156KB [ 459.129175][T15621] bio-264 23KB 23KB [ 459.132055][T15621] mqueue_inode_cache 121KB 121KB [ 459.134844][T15621] f2fs_bio_post_read_ctx 23KB 23KB [ 459.137827][T15621] jfs_mp 7KB 7KB [ 459.140423][T15621] orangefs_op_cache 17KB 17KB [ 459.143002][T15621] fuse_request 31KB 31KB [ 459.145574][T15621] cifs_small_rq 16KB 16KB [ 459.148078][T15621] cifs_request 67KB 67KB [ 459.151032][T15621] cifs_mpx_ids 7KB 7KB [ 459.153625][T15621] cifs_io_subrequest 39KB 39KB [ 459.156216][T15621] cifs_io_request 95KB 95KB [ 459.158937][T15621] nfs_commit_data 15KB 15KB [ 459.161331][T15621] nfs_write_data 63KB 63KB [ 459.163680][T15621] ecryptfs_sb_cache 23KB 23KB [ 459.166019][T15621] jbd2_inode 11KB 11KB [ 459.168455][T15621] ext4_system_zone 3KB 3KB [ 459.170943][T15621] ext4_io_end_vec 15KB 15KB [ 459.173247][T15621] kioctx 127KB 127KB [ 459.175590][T15621] aio_kiocb 31KB 31KB [ 459.177909][T15621] userfaultfd_ctx_cache 63KB 63KB [ 459.181083][T15621] fanotify_mark 7KB 7KB [ 459.184025][T15621] dnotify_mark 15KB 15KB [ 459.186856][T15621] dnotify_struct 15KB 15KB [ 459.189276][T15621] fasync_cache 15KB 15KB [ 459.191731][T15621] pid_namespace 32KB 32KB [ 459.194117][T15621] rpc_buffers 31KB 31KB [ 459.196512][T15621] rpc_tasks 7KB 7KB [ 459.198918][T15621] UNIX-STREAM 223KB 223KB [ 459.201405][T15621] UNIX 439KB 701KB [ 459.203776][T15621] ip4-frags 23KB 23KB [ 459.206183][T15621] mfc_cache 8KB 8KB [ 459.208588][T15621] UDP-Lite 123KB 123KB [ 459.211298][T15621] MPTCP 120KB 120KB [ 459.213620][T15621] tcp_bind2_bucket 16KB 16KB [ 459.216047][T15621] tcp_bind_bucket 16KB 16KB [ 459.218425][T15621] inet_peer 16KB 16KB [ 459.220995][T15621] xfrm_dst 39KB 39KB [ 459.223358][T15621] xfrm_state 127KB 127KB [ 459.225716][T15621] ip_fib_trie 28KB 36KB [ 459.228315][T15621] ip_fib_alias 73KB 102KB [ 459.231082][T15621] rtable 63KB 80KB [ 459.233615][T15621] PING 126KB 126KB [ 459.236050][T15621] RAW 159KB 159KB [ 459.238399][T15621] UDP 123KB 123KB [ 459.241061][T15621] tw_sock_TCP 7KB 7KB [ 459.243052][T15621] request_sock_TCP 23KB 23KB [ 459.244947][T15621] TCP 975KB 1115KB [ 459.246852][T15621] hugetlbfs_inode_cache 125KB 125KB [ 459.248879][T15621] fscache_cookie_jar 7KB 7KB [ 459.250900][T15621] netfs_subrequest 46KB 46KB [ 459.252802][T15621] netfs_request 127KB 127KB [ 459.254787][T15621] bio-280 15KB 15KB [ 459.256901][T15621] ep_head 16KB 16KB [ 459.258862][T15621] eventpoll_pwq 23KB 23KB [ 459.260851][T15621] eventpoll_epi 63KB 63KB [ 459.262774][T15621] inotify_inode_mark 39KB 39KB [ 459.264720][T15621] sgpool-128 29KB 29KB [ 459.266692][T15621] sgpool-64 31KB 31KB [ 459.268705][T15621] sgpool-32 189KB 189KB [ 459.271555][T15621] sgpool-16 62KB 62KB [ 459.273598][T15621] sgpool-8 70KB 125KB [ 459.275698][T15621] bio_crypt_ctx 7KB 7KB [ 459.277600][T15621] bio_integrity_data 4KB 4KB [ 459.279586][T15621] request_queue 255KB 255KB [ 459.281558][T15621] blkdev_ioc 23KB 23KB [ 459.283458][T15621] bio-200 135KB 179KB [ 459.286664][T15621] biovec-max 824KB 952KB [ 459.289751][T15621] biovec-64 157KB 252KB [ 459.292358][T15621] biovec-16 46KB 46KB [ 459.294523][T15621] mm_slot 15KB 15KB [ 459.296788][T15621] ksm_mm_slot 16KB 16KB [ 459.298710][T15621] uid_cache 31KB 31KB [ 459.301032][T15621] iommu_iova_magazine 1062KB 1071KB [ 459.303174][T15621] iommu_iova 272KB 272KB [ 459.305051][T15621] dmaengine-unmap-256 30KB 30KB [ 459.306991][T15621] dmaengine-unmap-128 30KB 30KB [ 459.309305][T15621] dmaengine-unmap-16 4KB 4KB [ 459.311571][T15621] dmaengine-unmap-2 4KB 4KB [ 459.313419][T15621] QIPCRTR 125KB 125KB [ 459.315640][T15621] audit_buffer 117KB 136KB [ 459.318173][T15621] skbuff_ext_cache 20KB 20KB [ 459.320762][T15621] skbuff_small_head 2047KB 2114KB [ 459.322784][T15621] skbuff_fclone_cache 375KB 453KB [ 459.324858][T15621] skbuff_head_cache 930KB 953KB [ 459.327031][T15621] configfs_dir_cache 12KB 12KB [ 459.329566][T15621] file_lease_cache 31KB 31KB [ 459.332624][T15621] file_lock_cache 95KB 95KB [ 459.335368][T15621] file_lock_ctx 19KB 19KB [ 459.338178][T15621] fsnotify_mark_connector 23KB 23KB [ 459.340799][T15621] posix_timers_cache 32KB 32KB [ 459.343088][T15621] taskstats 185KB 262KB [ 459.345067][T15621] mem_cgroup_per_node 136KB 154KB [ 459.347525][T15621] mem_cgroup 117KB 117KB [ 459.349731][T15621] proc_dir_entry 716KB 781KB [ 459.351770][T15621] pde_opener 15KB 15KB [ 459.353735][T15621] seq_file 109KB 148KB [ 459.356163][T15621] sigqueue 51KB 70KB [ 459.358723][T15621] shmem_inode_cache 8435KB 8541KB [ 459.361318][T15621] kernfs_iattrs_cache 15KB 15KB [ 459.363878][T15621] kernfs_node_cache 38180KB 38202KB [ 459.366381][T15621] mnt_cache 150KB 165KB [ 459.369154][T15621] filp 452KB 527KB [ 459.371483][T15621] names_cache 9095KB 9311KB [ 459.373979][T15621] net_namespace 136KB 136KB [ 459.376619][T15621] ima_iint_cache 55KB 55KB [ 459.378934][T15621] lsm_inode_cache 1549KB 1740KB [ 459.382247][T15621] lsm_file_cache 142KB 180KB [ 459.384604][T15621] key_jar 39KB 39KB [ 459.387125][T15621] uts_namespace 62KB 62KB [ 459.389560][T15621] nsproxy 15KB 15KB [ 459.392850][T15621] vm_area_struct 1410KB 1492KB [ 459.395400][T15621] fs_cache 76KB 100KB [ 459.397922][T15621] files_cache 314KB 366KB [ 459.400890][T15621] signal_cache 1080KB 1910KB [ 459.403447][T15621] sighand_cache 1334KB 1924KB [ 459.406341][T15621] task_struct 5484KB 5639KB [ 459.409316][T15621] cred 187KB 312KB [ 459.412735][T15621] anon_vma_chain 365KB 385KB [ 459.414871][T15621] anon_vma 420KB 470KB [ 459.417767][T15621] pid 201KB 409KB [ 459.420416][T15621] Acpi-Operand 278KB 388KB [ 459.423027][T15621] Acpi-ParseExt 94KB 122KB [ 459.425523][T15621] Acpi-Parse 78KB 118KB [ 459.427450][T15621] Acpi-State 55KB 94KB [ 459.429331][T15621] Acpi-Namespace 56KB 56KB [ 459.432135][T15621] shared_policy_node 16KB 16KB [ 459.434124][T15621] numa_policy 15KB 15KB [ 459.436154][T15621] perf_event 31KB 31KB [ 459.438177][T15621] trace_event_file 528KB 528KB [ 459.440209][T15621] ftrace_event_field 996KB 996KB [ 459.443064][T15621] pool_workqueue 1932KB 1952KB [ 459.445070][T15621] task_group 46KB 46KB [ 459.447581][T15621] maple_node 912KB 1512KB [ 459.450010][T15621] mm_struct 513KB 709KB [ 459.450043][T15621] vmap_area 1149KB 1394KB [ 459.450086][T15621] debug_objects_cache 2320KB 2459KB [ 459.459249][T15621] page->ptl 298KB 318KB [ 459.459262][T15621] kmalloc-cg-8k 3024KB 3168KB [ 459.459272][T15621] kmalloc-cg-4k 16712KB 16864KB [ 459.459281][T15621] kmalloc-cg-2k 11996KB 12160KB [ 459.470614][T15621] kmalloc-cg-1k 2742KB 3008KB [ 459.470635][T15621] kmalloc-cg-512 1188KB 1328KB [ 459.470651][T15621] kmalloc-cg-256 671KB 752KB [ 459.470668][T15621] kmalloc-cg-128 251KB 292KB [ 459.470684][T15621] kmalloc-cg-64 119KB 196KB [ 459.470706][T15621] kmalloc-cg-32 84KB 160KB [ 459.470719][T15621] kmalloc-cg-16 37KB 52KB [ 459.470733][T15621] kmalloc-cg-8 31KB 36KB [ 459.470747][T15621] kmalloc-cg-192 92KB 120KB [ 459.470761][T15621] kmalloc-cg-96 94KB 112KB [ 459.470795][T15621] kmalloc-8k 4544KB 4736KB [ 459.470814][T15621] kmalloc-4k 15744KB 16832KB [ 459.470832][T15621] kmalloc-2k 12708KB 13440KB [ 459.470864][T15621] kmalloc-1k 8538KB 8992KB [ 459.470889][T15621] kmalloc-512 9361KB 9824KB [ 459.470912][T15621] kmalloc-256 3713KB 3880KB [ 459.470937][T15621] kmalloc-128 943KB 1132KB [ 459.470961][T15621] kmalloc-64 3131KB 3200KB [ 459.471005][T15621] kmalloc-32 2266KB 2600KB [ 459.471021][T15621] kmalloc-16 498KB 532KB [ 459.471039][T15621] kmalloc-8 1559KB 1592KB [ 459.471054][T15621] kmalloc-192 1842KB 1860KB [ 459.471073][T15621] kmalloc-96 1740KB 1824KB [ 459.471085][T15621] kmem_cache_node 219KB 220KB [ 459.471099][T15621] kmem_cache 195KB 195KB [ 459.471112][T15621] oom-kill:constraint=CONSTRAINT_MEMORY_POLICY,nodemask=0,cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz0,task=syz.0.20129,pid=15621,uid=0 [ 459.471784][T15621] Out of memory (oom_kill_allocating_task): Killed process 15620 (syz.0.20129) total-vm:101832kB, anon-rss:5504kB, file-rss:22316kB, shmem-rss:0kB, UID:0 pgtables:120kB oom_score_adj:1000 [ 459.531132][T15677] ALSA: mixer_oss: invalid OSS volume '' [ 461.419888][T15905] comedi comedi3: dt2817: I/O port conflict (0x4f27,5) [ 461.892782][T15943] netlink: 88 bytes leftover after parsing attributes in process `syz.3.20281'. [ 461.896209][T15943] netlink: 24 bytes leftover after parsing attributes in process `syz.3.20281'. [ 461.985003][T15951] netlink: 24 bytes leftover after parsing attributes in process `syz.3.20285'. [ 462.019797][T15953] netlink: 'syz.3.20286': attribute type 3 has an invalid length. [ 462.022729][T15953] netlink: 666 bytes leftover after parsing attributes in process `syz.3.20286'. [ 462.058862][T15959] sg_write: process 9833 (syz.2.20289) changed security contexts after opening file descriptor, this is not allowed. [ 462.145609][T15969] random: crng reseeded on system resumption [ 462.411948][ T40] kauditd_printk_skb: 2 callbacks suppressed [ 462.411958][ T40] audit: type=1326 audit(468.419:19778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15991 comm="syz.0.20305" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 462.412066][ T40] audit: type=1326 audit(468.419:19779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15991 comm="syz.0.20305" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 462.414008][ T40] audit: type=1326 audit(468.419:19780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15991 comm="syz.0.20305" exe="/syz-executor" sig=0 arch=40000003 syscall=120 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 462.421511][ T40] audit: type=1326 audit(468.429:19781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15991 comm="syz.0.20305" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 462.421882][ T40] audit: type=1326 audit(468.429:19782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15995 comm="syz.0.20305" exe="/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 462.430558][ T40] audit: type=1326 audit(468.439:19783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15991 comm="syz.0.20305" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 462.471424][ T40] audit: type=1326 audit(468.459:19784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15991 comm="syz.0.20305" exe="/syz-executor" sig=0 arch=40000003 syscall=284 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 462.580724][ T40] audit: type=1326 audit(468.589:19785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15995 comm="syz.0.20305" exe="/syz-executor" sig=0 arch=40000003 syscall=1 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 462.584639][T16003] macsec1: entered promiscuous mode [ 462.590984][T16003] bridge0: port 2(macsec1) entered blocking state [ 462.591099][T16003] bridge0: port 2(macsec1) entered disabled state [ 462.591182][T16003] macsec1: entered allmulticast mode [ 462.591191][T16003] bridge0: entered allmulticast mode [ 462.592089][ T40] audit: type=1326 audit(468.599:19786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15991 comm="syz.0.20305" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704d598 code=0x7ffc0000 [ 462.592134][ T40] audit: type=1326 audit(468.599:19787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15991 comm="syz.0.20305" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 462.621880][T16003] macsec1: left allmulticast mode [ 462.638463][T16003] bridge0: left allmulticast mode [ 462.739132][T16007] openvswitch: netlink: nsh attribute has 996 unknown bytes. [ 462.739155][T16007] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 462.881335][T16015] nd_bus ndbus0: __nd_ioctl:bus unknown input size cmd: cmd_call field: 1 [ 463.083329][T16031] sp0: Synchronizing with TNC [ 463.089872][T16029] [U] [ 463.107522][T16042] block nbd3: not configured, cannot reconfigure [ 463.155487][T16050] binder_alloc: binder_alloc_mmap_handler: 16049 80ffd000-80fff000 already mapped failed -16 [ 463.565234][T16109] tipc: Enabling of bearer rejected, failed to enable media [ 464.023387][T16155] tipc: Started in network mode [ 464.025007][T16155] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 464.027796][T16155] tipc: Enabling of bearer rejected, failed to enable media [ 464.192511][T16179] netlink: 8 bytes leftover after parsing attributes in process `syz.1.20395'. [ 464.360884][T16193] tipc: MTU too low for tipc bearer [ 464.584202][T16231] netlink: 4 bytes leftover after parsing attributes in process `syz.0.20419'. [ 464.629086][T16237] xt_l2tp: missing protocol rule (udp|l2tpip) [ 464.669211][T16241] netlink: 16 bytes leftover after parsing attributes in process `syz.3.20425'. [ 464.758141][T16254] sp0: Synchronizing with TNC [ 464.765603][T16252] [U] [ 464.924994][T16275] 9pnet_rdma: rdma_create_trans (16275): problem binding to privport: 13 [ 465.029598][T16294] binder: 16293:16294 ioctl c00c620f 80000040 returned -22 [ 465.216433][T16312] netlink: 8 bytes leftover after parsing attributes in process `syz.3.20457'. [ 465.386955][T16328] vivid-002: disconnect [ 465.389874][T16327] vivid-002: reconnect [ 465.873154][T16371] netlink: 40 bytes leftover after parsing attributes in process `syz.1.20487'. [ 465.913990][T16377] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 465.921630][T16377] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 465.990458][T16388] netlink: 16 bytes leftover after parsing attributes in process `syz.0.20497'. [ 466.195137][T16416] ALSA: mixer_oss: invalid OSS volume '' [ 467.568806][T16485] Bluetooth: MGMT ver 1.23 [ 467.932268][T16511] netlink: 8 bytes leftover after parsing attributes in process `syz.2.20553'. [ 468.447315][T16562] netlink: 4 bytes leftover after parsing attributes in process `syz.2.20577'. [ 468.585359][T16582] input input48: cannot allocate more than FF_MAX_EFFECTS effects [ 469.729507][T16696] netlink: 4 bytes leftover after parsing attributes in process `syz.1.20641'. [ 469.881692][T16718] vlan0: entered promiscuous mode [ 469.883506][T16718] macvtap0: entered promiscuous mode [ 470.014478][T16730] block device autoloading is deprecated and will be removed. [ 470.209371][T16752] tipc: Started in network mode [ 470.211261][T16752] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 470.214503][T16752] tipc: Enabling of bearer rejected, failed to enable media [ 470.350322][T16770] tipc: MTU too low for tipc bearer [ 471.802113][T16844] comedi comedi3: das16m1: I/O port conflict (0x4f27,16) [ 471.860644][T16850] devtmpfs: Cannot change global quota limit on remount [ 471.940958][T16860] xt_policy: neither incoming nor outgoing policy selected [ 472.271716][T16906] syz.0.20740: attempt to access beyond end of device [ 472.271716][T16906] mtdblock0: rw=2048, sector=3656, nr_sectors = 8 limit=256 [ 472.388910][T16927] vivid-004: disconnect [ 472.395908][T16926] vivid-004: reconnect [ 472.503598][T16942] netlink: 40 bytes leftover after parsing attributes in process `syz.2.20758'. [ 472.821517][T16970] hugetlbfs: Bad value '' for mount option 'nr_inodes' [ 472.821517][T16970] [ 473.058478][T16992] Invalid source name [ 473.259818][T17012] nd_bus ndbus0: __nd_ioctl:bus unknown input size cmd: cmd_call field: 1 [ 473.355262][T17020] ipvlan2: entered promiscuous mode [ 473.396198][T17022] A link change request failed with some changes committed already. Interface may have been left with an inconsistent configuration, please check. [ 473.852507][T17063] netlink: 'syz.2.20820': attribute type 29 has an invalid length. [ 473.857846][T17063] netlink: 'syz.2.20820': attribute type 29 has an invalid length. [ 473.906284][T17073] netlink: 16 bytes leftover after parsing attributes in process `syz.2.20823'. [ 473.910079][T17073] netlink: 4 bytes leftover after parsing attributes in process `syz.2.20823'. [ 473.955842][ T1163] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 473.959337][ T1163] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 473.973098][ T1163] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 473.987756][ T1163] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 474.154721][ T2300] kernel read not supported for file /mdstat (pid: 2300 comm: kworker/0:2) [ 474.190493][T17112] netlink: 168 bytes leftover after parsing attributes in process `syz.3.20843'. [ 474.515609][T17158] tmpfs: Cannot enable swap on remount if it was disabled on first mount [ 474.609209][T17170] netlink: 8 bytes leftover after parsing attributes in process `syz.3.20870'. [ 474.722062][T17180] netlink: 52 bytes leftover after parsing attributes in process `syz.0.20875'. [ 474.736351][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 474.736370][ T40] audit: type=1326 audit(480.739:19789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17181 comm="syz.3.20876" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf701d579 code=0x0 [ 475.113093][T17208] netlink: zone id is out of range [ 475.512359][T17224] netlink: 91 bytes leftover after parsing attributes in process `syz.2.20896'. [ 475.624609][T17240] usb usb8: usbfs: process 17240 (syz.3.20904) did not claim interface 1 before use [ 477.223855][ T40] audit: type=1800 audit(483.229:19790): pid=17368 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.20962" name="SYSV00000000" dev="hugetlbfs" ino=4 res=0 errno=0 [ 477.597254][ T40] audit: type=1326 audit(483.599:19791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17393 comm="syz.0.20974" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 477.604129][ T40] audit: type=1326 audit(483.599:19792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17393 comm="syz.0.20974" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 477.611355][ T40] audit: type=1326 audit(483.599:19793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17393 comm="syz.0.20974" exe="/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 477.617796][ T40] audit: type=1326 audit(483.599:19794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17393 comm="syz.0.20974" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 477.626775][ T40] audit: type=1326 audit(483.599:19795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17393 comm="syz.0.20974" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000 [ 477.940086][T17427] vxcan1: entered allmulticast mode [ 478.056049][T17440] xt_l2tp: v2 tid > 0xffff: 37482740 [ 478.088245][T17442] netlink: 'syz.0.21000': attribute type 3 has an invalid length. [ 478.091980][T17442] netlink: 'syz.0.21000': attribute type 3 has an invalid length. [ 478.218896][ T1333] kernel write not supported for file /sg0 (pid: 1333 comm: kworker/1:2) [ 478.430829][ T40] audit: type=1326 audit(484.429:19796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17476 comm="syz.3.21016" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x0 [ 478.789816][T17521] xt_policy: neither incoming nor outgoing policy selected [ 479.386850][ T40] audit: type=1326 audit(485.389:19797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17588 comm="syz.3.21070" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 479.396148][ T40] audit: type=1326 audit(485.389:19798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17588 comm="syz.3.21070" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 479.713060][T17622] ipvlan3: entered promiscuous mode [ 479.883454][T17633] loop2: detected capacity change from 0 to 7 [ 479.892648][ C0] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 479.895823][ C0] buffer_io_error: 4 callbacks suppressed [ 479.895835][ C0] Buffer I/O error on dev loop2, logical block 0, async page read [ 479.901960][ C0] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 479.904920][ C0] Buffer I/O error on dev loop2, logical block 0, async page read [ 479.908089][ C3] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 479.911114][ C3] Buffer I/O error on dev loop2, logical block 0, async page read [ 479.913824][ C2] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 479.917715][ C2] Buffer I/O error on dev loop2, logical block 0, async page read [ 479.921468][ C0] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 479.924632][ C0] Buffer I/O error on dev loop2, logical block 0, async page read [ 479.929511][ C0] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 479.933070][ C0] Buffer I/O error on dev loop2, logical block 0, async page read [ 479.936011][ C3] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 479.939035][ C3] Buffer I/O error on dev loop2, logical block 0, async page read [ 479.941895][T17633] ldm_validate_partition_table(): Disk read failed. [ 479.945284][ C2] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 479.949233][ C2] Buffer I/O error on dev loop2, logical block 0, async page read [ 479.953078][ C1] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 479.956621][ C1] Buffer I/O error on dev loop2, logical block 0, async page read [ 479.959937][ C1] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 479.963432][ C1] Buffer I/O error on dev loop2, logical block 0, async page read [ 479.967967][T17633] Dev loop2: unable to read RDB block 0 [ 479.971357][T17633] loop2: unable to read partition table [ 479.973999][T17633] loop2: partition table beyond EOD, truncated [ 479.976691][T17633] loop_reread_partitions: partition scan of loop2 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 480.539009][T17662] netlink: 12 bytes leftover after parsing attributes in process `syz.1.21105'. [ 480.569059][T17665] netlink: 'syz.1.21106': attribute type 5 has an invalid length. [ 480.613165][T17667] netlink: 168 bytes leftover after parsing attributes in process `syz.1.21107'. [ 480.712059][T17679] loop2: detected capacity change from 0 to 7 [ 480.712946][T17679] ldm_validate_partition_table(): Disk read failed. [ 480.713248][T17679] Dev loop2: unable to read RDB block 0 [ 480.713543][T17679] loop2: unable to read partition table [ 480.713632][T17679] loop2: partition table beyond EOD, truncated [ 480.713642][T17679] loop_reread_partitions: partition scan of loop2 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 481.008672][ T1333] kernel write not supported for file /uinput (pid: 1333 comm: kworker/1:2) [ 481.056882][T17736] xt_HMARK: proto mask must be zero with L3 mode [ 481.490184][T17792] ptrace attach of "/syz-executor exec"[6118] was attempted by ""[17792] [ 481.603963][T17804] netlink: 8 bytes leftover after parsing attributes in process `syz.2.21174'. [ 481.936804][T17843] openvswitch: netlink: Missing valid actions attribute. [ 481.939349][T17843] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 482.196763][T17877] netlink: 91 bytes leftover after parsing attributes in process `syz.1.21209'. [ 482.232143][T17882] netlink: 20 bytes leftover after parsing attributes in process `syz.0.21211'. [ 482.737907][T17920] vlan2: entered promiscuous mode [ 482.740034][T17920] syz_tun: entered promiscuous mode [ 483.189102][T17935] devtmpfs: Cannot enable quota on remount [ 483.577797][T17956] vxcan1: entered allmulticast mode [ 483.658049][T17965] tipc: Enabled bearer , priority 10 [ 483.738888][T17975] sg_write: data in/out 124/36 bytes for SCSI command 0x1c-- guessing data in; [ 483.738888][T17975] program syz.3.21253 not setting count and/or reply_len properly [ 483.776476][T17977] mkiss: ax0: crc mode is auto. [ 483.891020][ T2300] kernel write not supported for file /amidi2 (pid: 2300 comm: kworker/0:2) [ 483.982879][T17995] Option ' ' to dns_resolver key: bad/missing value [ 484.127408][T18006] PKCS7: Unknown OID: [5] (bad) [ 484.129480][T18006] PKCS7: Only support pkcs7_signedData type [ 484.347757][T18023] netlink: 'syz.3.21278': attribute type 5 has an invalid length. [ 484.464537][T18042] netlink: 10 bytes leftover after parsing attributes in process `syz.0.21286'. [ 484.790587][ T2300] tipc: Node number set to 1 [ 485.196172][T18091] overlayfs: conflicting lowerdir path [ 485.301290][T18097] comedi comedi3: pcm3724: I/O port conflict (0x5,16) [ 485.337554][T18101] ALSA: seq fatal error: cannot create timer (-19) [ 485.472182][T18124] program syz.1.21326 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 485.844734][T18171] netlink: 'syz.0.21347': attribute type 1 has an invalid length. [ 486.005197][T18185] xt_socket: unknown flags 0x50 [ 486.161722][T18200] veth1_macvtap: left promiscuous mode [ 486.163776][T18200] macsec0: entered promiscuous mode [ 486.165721][T18200] macsec0: entered allmulticast mode [ 486.176347][T18200] veth1_macvtap: entered promiscuous mode [ 486.179188][T18200] veth1_macvtap: entered allmulticast mode [ 486.181733][T18200] macsec0: left promiscuous mode [ 486.183729][T18200] macsec0: left allmulticast mode [ 486.186059][T18200] veth1_macvtap: left allmulticast mode [ 486.556870][T18221] netlink: 4 bytes leftover after parsing attributes in process `syz.2.21371'. [ 487.129710][T18249] comedi comedi3: das16m1: I/O port conflict (0x4f27,16) [ 487.500756][ T1163] [ 487.501806][ T1163] ============================================ [ 487.504412][ T1163] WARNING: possible recursive locking detected [ 487.506995][ T1163] syzkaller #0 Not tainted [ 487.509096][ T1163] -------------------------------------------- [ 487.513832][ T1163] kworker/u32:8/1163 is trying to acquire lock: [ 487.516875][ T1163] ffff88802416f218 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#3){+.-.}-{3:3}, at: __dev_queue_xmit+0x33ff/0x4490 [ 487.522049][ T1163] [ 487.522049][ T1163] but task is already holding lock: [ 487.525104][ T1163] ffff8880277ca258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#3){+.-.}-{3:3}, at: __dev_queue_xmit+0x122b/0x4490 [ 487.530132][ T1163] [ 487.530132][ T1163] other info that might help us debug this: [ 487.533808][ T1163] Possible unsafe locking scenario: [ 487.533808][ T1163] [ 487.537052][ T1163] CPU0 [ 487.538539][ T1163] ---- [ 487.539976][ T1163] lock(dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#3); [ 487.543031][ T1163] lock(dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#3); [ 487.546481][ T1163] [ 487.546481][ T1163] *** DEADLOCK *** [ 487.546481][ T1163] [ 487.550605][ T1163] May be due to missing lock nesting notation [ 487.550605][ T1163] [ 487.554306][ T1163] 8 locks held by kworker/u32:8/1163: [ 487.556584][ T1163] #0: ffff88804ad78148 ((wq_completion)bat_events){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 487.560992][ T1163] #1: ffffc900069e7d00 ((work_completion)(&(&forw_packet_aggr->delayed_work)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 487.566535][ T1163] #2: ffffffff8e3c4540 (rcu_read_lock_bh){....}-{1:3}, at: __dev_queue_xmit+0x276/0x4490 [ 487.570578][ T1163] #3: ffff8880277ca258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#3){+.-.}-{3:3}, at: __dev_queue_xmit+0x122b/0x4490 [ 487.574567][ T1163] #4: ffffffff8e3c45a0 (rcu_read_lock){....}-{1:3}, at: ip_output+0x60/0xa90 [ 487.578264][ T1163] #5: ffffffff8e3c45a0 (rcu_read_lock){....}-{1:3}, at: ip_finish_output2+0x356/0x21a0 [ 487.581298][ T1163] #6: ffffffff8e3c45a0 (rcu_read_lock){....}-{1:3}, at: arp_xmit+0x26/0x2e0 [ 487.584466][ T1163] #7: ffffffff8e3c4540 (rcu_read_lock_bh){....}-{1:3}, at: __dev_queue_xmit+0x276/0x4490 [ 487.587579][ T1163] [ 487.587579][ T1163] stack backtrace: [ 487.590046][ T1163] CPU: 3 UID: 0 PID: 1163 Comm: kworker/u32:8 Not tainted syzkaller #0 PREEMPT(full) [ 487.590069][ T1163] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 487.590082][ T1163] Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet [ 487.590107][ T1163] Call Trace: [ 487.590114][ T1163] [ 487.590121][ T1163] dump_stack_lvl+0x116/0x1f0 [ 487.590143][ T1163] print_deadlock_bug+0x1e9/0x240 [ 487.590166][ T1163] __lock_acquire+0x1106/0x1c90 [ 487.590191][ T1163] lock_acquire+0x179/0x350 [ 487.590218][ T1163] ? __dev_queue_xmit+0x33ff/0x4490 [ 487.590243][ T1163] ? arpt_do_table+0x8be/0x1bd0 [ 487.590260][ T1163] ? __local_bh_enable_ip+0xa4/0x120 [ 487.590306][ T1163] _raw_spin_lock+0x2e/0x40 [ 487.590322][ T1163] ? __dev_queue_xmit+0x33ff/0x4490 [ 487.590344][ T1163] __dev_queue_xmit+0x33ff/0x4490 [ 487.590370][ T1163] ? __pfx_arpt_do_table+0x10/0x10 [ 487.590388][ T1163] ? __pfx___dev_queue_xmit+0x10/0x10 [ 487.590413][ T1163] ? find_held_lock+0x2b/0x80 [ 487.590430][ T1163] ? nf_hook.constprop.0+0x46a/0x760 [ 487.590454][ T1163] ? nf_hook_slow+0x132/0x200 [ 487.590480][ T1163] ? nf_hook.constprop.0+0x474/0x760 [ 487.590505][ T1163] ? __pfx_arp_xmit_finish+0x10/0x10 [ 487.590534][ T1163] arp_xmit+0x106/0x2e0 [ 487.590558][ T1163] arp_send_dst+0x1f9/0x270 [ 487.590583][ T1163] arp_solicit+0x657/0x10a0 [ 487.590608][ T1163] ? __asan_memcpy+0x3c/0x60 [ 487.590626][ T1163] ? __pfx_arp_solicit+0x10/0x10 [ 487.590650][ T1163] ? neigh_probe+0x72/0x110 [ 487.590666][ T1163] ? __pfx_arp_solicit+0x10/0x10 [ 487.590689][ T1163] neigh_probe+0xce/0x110 [ 487.590704][ T1163] __neigh_event_send+0xac5/0x13c0 [ 487.590727][ T1163] neigh_resolve_output+0x56b/0x940 [ 487.590751][ T1163] ip_finish_output2+0x7f8/0x21a0 [ 487.590775][ T1163] ? __pfx_ip_finish_output2+0x10/0x10 [ 487.590794][ T1163] ? __pfx_ip_skb_dst_mtu+0x10/0x10 [ 487.590812][ T1163] ? __pfx_ip_finish_output+0x10/0x10 [ 487.590833][ T1163] __ip_finish_output.part.0+0x1b4/0x350 [ 487.590854][ T1163] ip_output+0x35f/0xa90 [ 487.590873][ T1163] ip_local_out+0x38d/0x4d0 [ 487.590893][ T1163] iptunnel_xmit+0x67a/0xad0 [ 487.590920][ T1163] ip_tunnel_xmit+0x1fd2/0x3850 [ 487.590940][ T1163] ? mark_held_locks+0x49/0x80 [ 487.590955][ T1163] ? __pfx_ip_tunnel_xmit+0x10/0x10 [ 487.590969][ T1163] ? lockdep_hardirqs_on+0x9f/0x110 [ 487.590985][ T1163] ? skb_free_head+0x114/0x210 [ 487.591003][ T1163] __gre_xmit+0x8bb/0xc00 [ 487.591016][ T1163] ? __pfx___gre_xmit+0x10/0x10 [ 487.591028][ T1163] ? __pfx_stack_trace_save+0x10/0x10 [ 487.591042][ T1163] ? __pfx_pskb_expand_head+0x10/0x10 [ 487.591053][ T1163] ? __pfx_netif_skb_features+0x10/0x10 [ 487.591073][ T1163] ? validate_xmit_xfrm+0x432/0x1330 [ 487.591091][ T1163] gre_tap_xmit+0x3b3/0x630 [ 487.591112][ T1163] dev_hard_start_xmit+0x97/0x740 [ 487.591129][ T1163] sch_direct_xmit+0x1b2/0xcf0 [ 487.591148][ T1163] ? lock_acquire+0x179/0x350 [ 487.591164][ T1163] ? __pfx_sch_direct_xmit+0x10/0x10 [ 487.591181][ T1163] ? do_raw_spin_lock+0x220/0x2b0 [ 487.591206][ T1163] __dev_queue_xmit+0x144d/0x4490 [ 487.591224][ T1163] ? rcu_is_watching+0x12/0xc0 [ 487.591236][ T1163] ? __pfx___dev_queue_xmit+0x10/0x10 [ 487.591252][ T1163] ? pskb_expand_head+0x238/0x1030 [ 487.591264][ T1163] ? kmalloc_reserve+0xef/0x2c0 [ 487.591276][ T1163] ? kmalloc_reserve+0x13c/0x2c0 [ 487.591290][ T1163] ? skb_headers_offset_update+0x129/0x260 [ 487.591303][ T1163] ? pskb_expand_head+0x628/0x1030 [ 487.591317][ T1163] ? skb_push+0x9a/0xf0 [ 487.591331][ T1163] batadv_send_skb_packet+0x548/0x6f0 [ 487.591347][ T1163] batadv_iv_send_outstanding_bat_ogm_packet+0x734/0x920 [ 487.591363][ T1163] process_one_work+0x9cf/0x1b70 [ 487.591384][ T1163] ? __pfx_process_one_work+0x10/0x10 [ 487.591404][ T1163] ? assign_work+0x1a0/0x250 [ 487.591426][ T1163] worker_thread+0x6c8/0xf10 [ 487.591451][ T1163] ? __pfx_worker_thread+0x10/0x10 [ 487.591468][ T1163] kthread+0x3c5/0x780 [ 487.591485][ T1163] ? __pfx_kthread+0x10/0x10 [ 487.591501][ T1163] ? rcu_is_watching+0x12/0xc0 [ 487.591513][ T1163] ? __pfx_kthread+0x10/0x10 [ 487.591529][ T1163] ret_from_fork+0x675/0x7d0 [ 487.591547][ T1163] ? __pfx_kthread+0x10/0x10 [ 487.591563][ T1163] ret_from_fork_asm+0x1a/0x30 [ 487.591583][ T1163] VM DIAGNOSIS: 13:46:37 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000001 RBX=0000000000000000 RCX=ffffffff82003562 RDX=fffffbfff1c02cc1 RSI=0000000000000008 RDI=ffffffff8e016600 RBP=ffffffff93a30780 RSP=ffffc90020c97640 R8 =0000000000000001 R9 =fffffbfff1c02cc0 R10=ffffffff8e016607 R11=dffffc0000000000 R12=0000000000000000 R13=0000000000000000 R14=ffff88807ffd7240 R15=ffffffff93a30780 RIP=ffffffff820034e0 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097810000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f738cbec CR3=000000004cbca000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=000000000014a8c4 RBX=0000000000000001 RCX=ffffffff8b5d42a9 RDX=ffffed1005666656 RSI=ffffffff8bf07540 RDI=ffffffff8191d11d RBP=ffffed1003b5f490 RSP=ffffc9000046fde8 R8 =0000000000000000 R9 =ffffed1005666655 R10=ffff88802b3332ab R11=0000000000000000 R12=0000000000000001 R13=ffff88801dafa480 R14=ffffffff908239d0 R15=0000000000000000 RIP=ffffffff8b5d2d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097910000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005576c8f96f40 CR3=00000000716d9000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000003 RBX=ffff88802b542500 RCX=ffffffff81b06901 RDX=ffff8880244d8000 RSI=ffffffff81b068db RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc9000f9d75e8 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=000000000000001e R12=dffffc0000000000 R13=ffffed10056a84a1 R14=0000000000000001 R15=0000000000000003 RIP=ffffffff81bc6d67 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097a10000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f736d4ec CR3=0000000079101000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000006000000000 0000000100000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000006000000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85267d75 RDI=ffffffff9adc2de0 RBP=ffffffff9adc2da0 RSP=ffffc900069e6700 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d R12=0000000000000000 R13=000000000000002d R14=ffffffff9adc2da0 R15=ffffffff85267d10 RIP=ffffffff85267d9f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097b10000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000565ea4c0 CR3=000000000e182000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000006000000000 0000000100000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000006000000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000