last executing test programs: 1.000575688s ago: executing program 0 (id=2711): socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) getsockname$packet(r1, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newlink={0x17c, 0x10, 0x801, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, 0xb}, [@IFLA_AF_SPEC={0x15c, 0x1a, 0x0, 0x1, [@AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @local}]}, @AF_INET={0xfffffecf, 0x2, 0x0, 0x1, {0x2c, 0x1, 0x0, 0x1, [{0x8}, {0x8}, {0x8}, {0x8}, {0x8}]}}, @AF_INET={0x18, 0x2, 0x0, 0x1, {0x14, 0x1, 0x0, 0x1, [{0x8, 0xd}, {0x8, 0x0, 0x0, 0x0, 0x38}]}}, @AF_INET6={0x40, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x14, 0x7, @dev={0xfe, 0x80, '\x00', 0x3a}}]}, @AF_INET={0x28, 0x2, 0x0, 0x1, {0x24, 0x1, 0x0, 0x1, [{0x8}, {0x8}, {0x8, 0x0, 0x0, 0x0, 0x40000}, {0x8}]}}, @AF_MPLS={0x4}, @AF_INET6={0x88, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_ADDR_GEN_MODE={0x5}, @IFLA_INET6_ADDR_GEN_MODE={0x5}, @IFLA_INET6_TOKEN={0x14, 0x7, @dev={0xfe, 0x80, '\x00', 0x27}}, @IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x14, 0x7, @empty}, @IFLA_INET6_TOKEN={0x14, 0x7, @dev}, @IFLA_INET6_ADDR_GEN_MODE={0x5}, @IFLA_INET6_ADDR_GEN_MODE={0x5}]}, @AF_MPLS={0x4}]}]}, 0x17c}}, 0x0) 939.483988ms ago: executing program 0 (id=2712): add_key$fscrypt_v1(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000005c0)='syz_tun\x00', 0x10) sendto$inet(r0, 0x0, 0x0, 0x20000844, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10) syz_emit_ethernet(0x39, &(0x7f0000000200)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2b, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x10}, {'2M&'}}}}}}, 0x0) 938.962854ms ago: executing program 0 (id=2714): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@delpolicy={0x4e, 0x27, 0x1, 0x0, 0x0, {{@in=@dev={0xac, 0x14, 0x14, 0x42}, @in6=@remote}}}, 0x50}, 0x1, 0x0, 0x0, 0x40084}, 0x4804) 938.621254ms ago: executing program 0 (id=2717): r0 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r2 = dup(r1) write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd74) syz_io_uring_setup(0x497, &(0x7f0000000400)={0x0, 0x7079, 0xf4, 0x4, 0x288}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@ipv4_newrule={0x30, 0x20, 0x301, 0x1, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10019}, [@FRA_GENERIC_POLICY=@FRA_OIFNAME={0x14, 0x11, 'veth1_to_bridge\x00'}]}, 0x30}}, 0x0) r7 = openat$dsp(0xffffffffffffff9c, 0x0, 0x80042, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) pipe(0x0) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1000, 0x0) r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) close_range(r8, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x24f9, 0x0, 0x0, 0x0) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) ioctl$KVM_SET_CPUID2(r11, 0x4048aecb, &(0x7f0000000680)=ANY=[@ANYRES8=r0, @ANYRESDEC=r10, @ANYRESDEC, @ANYBLOB="b954d4f5f5066044444632f400eaf1c31a5eb5b1864335a2bf77084ee1ad06a3a9258dd088c83ed38bfeb235df097d5c74e5f00e4587f300c28b3d2b4df26a994483def991b624f5ab77eea02ccadfc93ffa9c1044e1cb9b266e10f74e662f4a8167a6135ba8fcf93bf6cb590b0dcf53f4689c0271f743c794a56aabedcdd5aabdb7a1c137902beeb9d3f67679886fbac5e3bfaa44d960b1f12797efcbfe4ddc433439510184bfd8447977b5b366f61d48a2dba42e21000f5417a4f412803256e71eafaa1ee7ad9093ff01ddd058860e9b3a5bed1cf27f548f79e74af77dff62", @ANYBLOB="6b5abe9c53bef2ae2c65b4eeb5824ab2914f8ba6e811bf73d3dc357dad7aed5f9fa00a0c02705dd653ad30c2ca8b089eedc75f2bf2864b6a9157c5c2a5656edfd22583d0f329c653caef6974c9792ca38e32dd5698e2c91230fc119082a27450f7f06fda9b829ce1f8848bb811b3e71225935d97581cae0278e754847b7181a9430c1b8e46f3f7084235ee2f33682874cbb231183f3935fb415026ee2148498aebe5c39649bebb5661f2481d535b587673c4935d9cbb8dedb4e0d5b05e6cbc480defd3389c3fa6", @ANYRES64=0x0, @ANYRESHEX=r7]) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0x13, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500001100002020200600000000000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000072000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) 791.355354ms ago: executing program 3 (id=2722): r0 = io_uring_setup(0xc34, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x2}) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) ioctl$int_in(r1, 0x40000000af01, 0x0) ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f00000007c0)) r2 = socket$packet(0x11, 0x3, 0x300) r3 = dup(0xffffffffffffffff) r4 = fcntl$dupfd(r1, 0x406, r2) ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000100)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/251, 0x0, 0x4000}) ioctl$VHOST_NET_SET_BACKEND(r4, 0x4008af30, &(0x7f0000000080)={0x0, r3}) close_range(r0, 0xffffffffffffffff, 0x0) 631.517776ms ago: executing program 3 (id=2723): mount$overlay(0x0, 0x0, 0x0, 0x20a4000, &(0x7f0000000200)={[], [{@defcontext={'defcontext', 0x3d, 'sysadm_u'}}]}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_MSRS(r2, 0x5000aea5, &(0x7f0000000000)=ANY=[]) 580.631934ms ago: executing program 0 (id=2726): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="580000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="2b03000000000000300012800b00010067656e6576650000200002800800", @ANYRES32], 0x58}}, 0x0) 579.178831ms ago: executing program 0 (id=2728): unshare(0x2c060000) unshare(0x24020400) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000c00)={0xa, 0x1, 0x2, @empty, 0x344}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20004002, &(0x7f0000b63fe4)={0xa, 0x2, 0x80000000}, 0x1c) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0) io_setup(0x1, &(0x7f0000000b80)=0x0) io_submit(r3, 0x2, &(0x7f0000000900)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x6, 0x9, 0xffffffffffffffff, 0x0, 0x0, 0x8, 0xffff000000000000, 0x2, r2}]) syz_io_uring_setup(0x110, &(0x7f0000000300)={0x0, 0x200016c9, 0xc27, 0xfffffffd, 0x2a}, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) io_getevents(0x0, 0x0, 0x3, &(0x7f0000000180)=[{}, {}, {}], &(0x7f0000000280)={0x77359400}) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0) socket$inet_sctp(0x2, 0x5, 0x84) socket$inet6_sctp(0xa, 0x5, 0x84) r7 = socket$inet(0x2, 0x3, 0x2) getsockopt$inet_buf(r7, 0x0, 0x29, 0x0, &(0x7f0000000100)) sendmsg$NFC_CMD_VENDOR(r6, 0x0, 0x0) 578.773752ms ago: executing program 3 (id=2730): mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount(0x0, 0x0, &(0x7f0000000080)='sysfs\x00', 0x0, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f0000000140)='./bus\x00') rename(&(0x7f0000000400)='./bus\x00', &(0x7f0000000f00)='./file0\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0) mknod(&(0x7f0000000000)='./file1/file3\x00', 0x1, 0x43) renameat2(0xffffffffffffff9c, &(0x7f0000002200)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000021c0)='./file1/file3\x00', 0x2) 521.165491ms ago: executing program 3 (id=2732): mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f0000000140)='./bus\x00') rename(&(0x7f0000000400)='./bus\x00', &(0x7f0000000f00)='./file0\x00') 520.992235ms ago: executing program 3 (id=2733): r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, 0x0) r1 = dup(0xffffffffffffffff) getsockname$packet(r1, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newlink={0x17c, 0x10, 0x801, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, 0xb}, [@IFLA_AF_SPEC={0x15c, 0x1a, 0x0, 0x1, [@AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @local}]}, @AF_INET={0xfffffecf, 0x2, 0x0, 0x1, {0x2c, 0x1, 0x0, 0x1, [{0x8}, {0x8}, {0x8}, {0x8}, {0x8}]}}, @AF_INET={0x18, 0x2, 0x0, 0x1, {0x14, 0x1, 0x0, 0x1, [{0x8, 0xd}, {0x8, 0x0, 0x0, 0x0, 0x38}]}}, @AF_INET6={0x40, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x14, 0x7, @dev={0xfe, 0x80, '\x00', 0x3a}}]}, @AF_INET={0x28, 0x2, 0x0, 0x1, {0x24, 0x1, 0x0, 0x1, [{0x8}, {0x8}, {0x8, 0x0, 0x0, 0x0, 0x40000}, {0x8}]}}, @AF_MPLS={0x4}, @AF_INET6={0x88, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_ADDR_GEN_MODE={0x5}, @IFLA_INET6_ADDR_GEN_MODE={0x5}, @IFLA_INET6_TOKEN={0x14, 0x7, @dev={0xfe, 0x80, '\x00', 0x27}}, @IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x14, 0x7, @empty}, @IFLA_INET6_TOKEN={0x14, 0x7, @dev}, @IFLA_INET6_ADDR_GEN_MODE={0x5}, @IFLA_INET6_ADDR_GEN_MODE={0x5}]}, @AF_MPLS={0x4}]}]}, 0x17c}}, 0x0) 469.042101ms ago: executing program 3 (id=2734): syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESDEC], 0x0) syz_open_dev$char_usb(0xc, 0xb4, 0x0) syz_open_dev$char_usb(0xc, 0xb4, 0x80000000) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 290.90661ms ago: executing program 1 (id=2742): mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f0000000140)='./bus\x00') rename(&(0x7f0000000400)='./bus\x00', &(0x7f0000000f00)='./file0\x00') 230.453974ms ago: executing program 1 (id=2746): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x10, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 230.329037ms ago: executing program 1 (id=2747): add_key$fscrypt_v1(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x67) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f00000005c0)='syz_tun\x00', 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x20000844, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10) syz_emit_ethernet(0x39, &(0x7f0000000200)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2b, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x10}, {'2M&'}}}}}}, 0x0) 166.205155ms ago: executing program 1 (id=2748): mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0) mkdir(0x0, 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f0000000140)='./bus\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0) 165.873017ms ago: executing program 1 (id=2749): syz_open_dev$evdev(0x0, 0x20000, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r1, 0xfffffffc) connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x4e22, @local}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000300000100000014000180060001000200000008000300ac1414aa"], 0x28}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x28, r5, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1a}]}]}, 0x28}}, 0x0) 165.195042ms ago: executing program 1 (id=2751): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe) ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, &(0x7f0000000280)={r0, r0, 0xc, 0x0, 0x0, 0x9, 0x1, 0x458, 0x9, 0x9, 0x2, 0x7, 'syz0\x00'}) syz_open_dev$dri(&(0x7f0000000100), 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) mkdir(0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000f80)=ANY=[@ANYRESDEC=r1, @ANYRESOCT=r2, @ANYRESDEC=r1, @ANYRESHEX=r0, @ANYRES16, @ANYRESOCT], &(0x7f0000000000)='GPL\x00', 0x7, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r3 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000000)={0x407, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0xfffffffd, @remote}}}, 0x104) r4 = getpid() sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001100)={0x18, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x20000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94) write$RDMA_USER_CM_CMD_BIND(0xffffffffffffffff, &(0x7f0000001000)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x6e01deba812464bf, 0x0, @in={0x2, 0x4e24, @local}}}, 0x90) setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000480)=@raw={'raw\x00', 0x8, 0x3, 0x408, 0x0, 0x11, 0x148, 0x14c, 0x10, 0x374, 0x2a8, 0x2a8, 0x374, 0x2a8, 0x7fffffe, 0x0, {[{{@uncond, 0x10, 0x104, 0x14c, 0x1c, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip6gretap0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x8}}}, @common=@unspec=@limit={{0x3c}, {0x6, 0x8, 0x2, 0x12, 0x0, 0x7, 0x3}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x1ff, 0x0, 0x2, 'snmp\x00', {0xff}}}}, {{@ip={@multicast1, @rand_addr=0x64010102, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_batadv\x00'}, 0x0, 0x1c8, 0x228, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_0\x00', {0x459, 0x0, 0x48, 0x0, 0x0, 0x3, 0x2, 0x80, 0x0, 0x18}, {0x91}}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x3, [0x1, 0x3, 0x2, 0x0, 0x2, 0x1]}, {0x1, [0x3, 0x2, 0x1, 0x0, 0x3, 0x5], 0x4}}}}], {{'\x00', 0xc8, 0x70, 0x94}, {0x24}}}}, 0x464) r7 = openat$vimc0(0xffffff9c, &(0x7f0000000140), 0x2, 0x0) sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYRES16=r7], 0x18}, 0x1, 0x0, 0x0, 0x8800}, 0x40) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)={[{@nfs_export_on}, {@upperdir={'upperdir', 0x3d, './file0/file0'}}, {@metacopy_on}], [], 0x2c}) 110.66587ms ago: executing program 2 (id=2752): mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f0000000140)='./bus\x00') rename(&(0x7f0000000400)='./bus\x00', &(0x7f0000000f00)='./file0\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0) mknod(&(0x7f0000000000)='./file1/file3\x00', 0x1, 0x43) renameat2(0xffffffffffffff9c, &(0x7f0000002200)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000021c0)='./file1/file3\x00', 0x2) 110.412362ms ago: executing program 2 (id=2753): r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) getsockname$packet(r2, 0x0, &(0x7f0000000140)) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newlink={0x17c, 0x10, 0x801, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0xb}, [@IFLA_AF_SPEC={0x15c, 0x1a, 0x0, 0x1, [@AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @local}]}, @AF_INET={0xfffffecf, 0x2, 0x0, 0x1, {0x2c, 0x1, 0x0, 0x1, [{0x8}, {0x8}, {0x8}, {0x8}, {0x8}]}}, @AF_INET={0x18, 0x2, 0x0, 0x1, {0x14, 0x1, 0x0, 0x1, [{0x8, 0xd}, {0x8, 0x0, 0x0, 0x0, 0x38}]}}, @AF_INET6={0x40, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x14, 0x7, @dev={0xfe, 0x80, '\x00', 0x3a}}]}, @AF_INET={0x28, 0x2, 0x0, 0x1, {0x24, 0x1, 0x0, 0x1, [{0x8}, {0x8}, {0x8, 0x0, 0x0, 0x0, 0x40000}, {0x8}]}}, @AF_MPLS={0x4}, @AF_INET6={0x88, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_ADDR_GEN_MODE={0x5}, @IFLA_INET6_ADDR_GEN_MODE={0x5}, @IFLA_INET6_TOKEN={0x14, 0x7, @dev={0xfe, 0x80, '\x00', 0x27}}, @IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x14, 0x7, @empty}, @IFLA_INET6_TOKEN={0x14, 0x7, @dev}, @IFLA_INET6_ADDR_GEN_MODE={0x5}, @IFLA_INET6_ADDR_GEN_MODE={0x5}]}, @AF_MPLS={0x4}]}]}, 0x17c}}, 0x0) 51.277906ms ago: executing program 2 (id=2754): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0xffffffff85000014, 0x4, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x50) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x4b) syz_fuse_handle_req(r0, &(0x7f00000042c0), 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0xcdb, 0x2, 0x0, 0x1, 0x7}) 51.014839ms ago: executing program 2 (id=2755): mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f0000000140)='./bus\x00') rename(&(0x7f0000000400)='./bus\x00', &(0x7f0000000f00)='./file0\x00') 639.572µs ago: executing program 2 (id=2756): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x67) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000005c0)='syz_tun\x00', 0x10) sendto$inet(r0, 0x0, 0x0, 0x20000844, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10) syz_emit_ethernet(0x39, &(0x7f0000000200)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2b, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x10}, {'2M&'}}}}}}, 0x0) 0s ago: executing program 2 (id=2757): r0 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r1) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r2, 0xfffffffc) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) kernel console output (not intermixed with test programs): ve=1 [ 109.011676][ T9697] futex_wake_op: syz.2.1205 tries to shift op by -1; fix this program [ 109.072020][ T40] audit: type=1400 audit(108.967:670): avc: denied { read } for pid=9695 comm="syz.2.1205" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 109.102902][ T9713] netlink: 'syz.3.1212': attribute type 39 has an invalid length. [ 109.106251][ T9713] veth0_macvtap: left promiscuous mode [ 109.144767][ T9716] fuse: Bad value for 'fd' [ 109.197286][ T9719] netlink: 'syz.1.1214': attribute type 1 has an invalid length. [ 109.199437][ T9719] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1214'. [ 109.261708][ T9728] loop6: detected capacity change from 0 to 524288000 [ 109.275004][ T9732] overlayfs: missing 'workdir' [ 109.298880][ T9737] batman_adv: batadv0: Local translation table size (120) exceeds maximum packet size (-320); Ignoring new local tt entry: ba:10:00:08:00:00 [ 109.303709][ T40] audit: type=1400 audit(109.207:671): avc: denied { setopt } for pid=9736 comm="syz.3.1221" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 109.313457][ T9728] loop6: detected capacity change from 524288000 to 0 [ 109.356400][ T40] audit: type=1400 audit(109.257:672): avc: denied { search } for pid=9736 comm="syz.3.1221" name="/" dev="configfs" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 109.362226][ T40] audit: type=1400 audit(109.257:673): avc: denied { read } for pid=9736 comm="syz.3.1221" name="/" dev="configfs" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 109.368245][ T40] audit: type=1400 audit(109.257:674): avc: denied { open } for pid=9736 comm="syz.3.1221" path="/" dev="configfs" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 109.611817][ T40] audit: type=1400 audit(109.507:675): avc: denied { ioctl } for pid=9754 comm="syz.3.1226" path="socket:[33537]" dev="sockfs" ino=33537 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 109.694717][ T9759] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1228'. [ 109.716030][ T9761] overlayfs: missing 'lowerdir' [ 109.895007][ T9773] fuse: Bad value for 'fd' [ 109.928847][ T9775] tipc: Enabling of bearer rejected, media not registered [ 110.034529][ T9784] overlayfs: missing 'lowerdir' [ 110.313423][ T9807] overlayfs: missing 'lowerdir' [ 110.473385][ T835] usb 7-1: new low-speed USB device number 11 using dummy_hcd [ 110.614785][ T9839] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 110.617433][ T9839] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 110.624555][ T835] usb 7-1: config 0 has an invalid interface number: 55 but max is 0 [ 110.626843][ T835] usb 7-1: config 0 has no interface number 0 [ 110.628604][ T835] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 110.631537][ T835] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8 [ 110.634644][ T835] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 110.638196][ T835] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10 [ 110.641742][ T835] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8 [ 110.645669][ T835] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 110.649892][ T835] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 110.652381][ T835] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 110.655759][ T835] usb 7-1: config 0 descriptor?? [ 110.658105][ T9804] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 110.660446][ T9804] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 110.664312][ T835] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 110.797061][ T9851] netlink: 'syz.3.1266': attribute type 10 has an invalid length. [ 110.799234][ T9851] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1266'. [ 110.805383][ T9851] IPv4: Oversized IP packet from 127.202.26.0 [ 110.853402][ T9864] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 110.855914][ T9864] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 110.866288][ T9804] ldusb 7-1:0.55: Write buffer overflow, 1 bytes dropped [ 110.869885][ T835] usb 7-1: USB disconnect, device number 11 [ 110.872454][ T835] ldusb 7-1:0.55: LD USB Device #0 now disconnected [ 110.904977][ T9862] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1269'. [ 111.029778][ T9876] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=15 sclass=netlink_xfrm_socket pid=9876 comm=syz.3.1276 [ 111.033756][ T5949] Bluetooth: hci0: SCO packet for unknown connection handle 0 [ 111.034351][ T9876] batman_adv: batadv0: Local translation table size (120) exceeds maximum packet size (-320); Ignoring new local tt entry: ba:10:00:08:00:00 [ 111.104754][ T9884] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 111.107191][ T9884] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 111.156802][ T9891] syz.0.1282: attempt to access beyond end of device [ 111.156802][ T9891] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0 [ 111.161049][ T9891] exFAT-fs (nbd0): unable to read boot sector [ 111.162825][ T9891] exFAT-fs (nbd0): failed to read boot sector [ 111.164853][ T9891] exFAT-fs (nbd0): failed to recognize exfat type [ 111.261173][ T8514] libceph: connect (1)[c::]:6789 error -101 [ 111.263163][ T8514] libceph: mon0 (1)[c::]:6789 connect error [ 111.533938][ T34] libceph: connect (1)[c::]:6789 error -101 [ 111.535693][ T34] libceph: mon0 (1)[c::]:6789 connect error [ 111.962860][ T9898] ceph: No mds server is up or the cluster is laggy [ 112.026125][ T9886] team0 (unregistering): Port device team_slave_0 removed [ 112.031708][ T9886] team0 (unregistering): Port device team_slave_1 removed [ 112.099154][ T9893] pim6reg: entered allmulticast mode [ 112.201310][ T9933] openvswitch: netlink: ERSPAN option length err (len 4096, max 255). [ 112.229587][ T9936] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1297'. [ 112.257795][ T9940] overlayfs: failed to clone upperpath [ 112.445192][ T9960] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 112.594641][ T9964] SELinux: failure in sel_netif_sid_slow(), invalid network interface (0) [ 112.598820][ T9964] SELinux: failure in sel_netif_sid_slow(), invalid network interface (0) [ 112.817936][ T9966] overlayfs: failed to clone upperpath [ 113.283514][ T9998] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1321'. [ 113.374051][T10011] SELinux: failed to load policy [ 113.489884][T10018] FAULT_INJECTION: forcing a failure. [ 113.489884][T10018] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 113.493818][T10018] CPU: 1 UID: 0 PID: 10018 Comm: syz.0.1330 Not tainted 6.14.0-syzkaller-03565-gf6e0150b2003 #0 PREEMPT(full) [ 113.493832][T10018] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 113.493838][T10018] Call Trace: [ 113.493842][T10018] [ 113.493846][T10018] dump_stack_lvl+0x16c/0x1f0 [ 113.493864][T10018] should_fail_ex+0x512/0x640 [ 113.493875][T10018] _copy_from_user+0x2e/0xd0 [ 113.493888][T10018] kvm_arch_vcpu_ioctl+0x3b8/0x4f00 [ 113.493903][T10018] ? stack_trace_save+0x8e/0xc0 [ 113.493915][T10018] ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10 [ 113.493927][T10018] ? __lock_acquire+0xaa4/0x1ba0 [ 113.493942][T10018] ? kasan_save_stack+0x42/0x60 [ 113.493951][T10018] ? kasan_save_stack+0x33/0x60 [ 113.493959][T10018] ? kasan_save_track+0x14/0x30 [ 113.493967][T10018] ? kasan_save_free_info+0x3b/0x60 [ 113.493980][T10018] ? __kasan_slab_free+0x51/0x70 [ 113.493989][T10018] ? kfree+0x2b6/0x4d0 [ 113.494002][T10018] ? tomoyo_path_number_perm+0x470/0x580 [ 113.494017][T10018] ? security_file_ioctl+0x9b/0x240 [ 113.494032][T10018] ? __x64_sys_ioctl+0xb7/0x200 [ 113.494047][T10018] ? __lock_acquire+0xaa4/0x1ba0 [ 113.494062][T10018] ? __mutex_trylock_common+0xe9/0x250 [ 113.494078][T10018] ? __pfx___might_resched+0x10/0x10 [ 113.494091][T10018] ? rcu_is_watching+0x12/0xc0 [ 113.494101][T10018] ? trace_contention_end+0xdd/0x130 [ 113.494115][T10018] ? __mutex_lock+0x1cb/0xb00 [ 113.494130][T10018] ? kvm_vcpu_ioctl+0x27e/0x1680 [ 113.494144][T10018] ? lockdep_hardirqs_on+0x7c/0x110 [ 113.494157][T10018] ? __pfx___mutex_lock+0x10/0x10 [ 113.494175][T10018] ? tomoyo_path_number_perm+0x18d/0x580 [ 113.494190][T10018] ? kvm_vcpu_ioctl+0x1232/0x1680 [ 113.494203][T10018] kvm_vcpu_ioctl+0x1232/0x1680 [ 113.494218][T10018] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 113.494234][T10018] ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450 [ 113.494246][T10018] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 113.494263][T10018] ? selinux_file_ioctl+0x180/0x270 [ 113.494273][T10018] ? selinux_file_ioctl+0xb4/0x270 [ 113.494283][T10018] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 113.494297][T10018] __x64_sys_ioctl+0x190/0x200 [ 113.494311][T10018] do_syscall_64+0xcd/0x260 [ 113.494325][T10018] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 113.494335][T10018] RIP: 0033:0x7fdc0898d169 [ 113.494343][T10018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 113.494352][T10018] RSP: 002b:00007fdc096fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 113.494362][T10018] RAX: ffffffffffffffda RBX: 00007fdc08ba5fa0 RCX: 00007fdc0898d169 [ 113.494368][T10018] RDX: 0000200000000080 RSI: 000000004048aecb RDI: 000000000000000d [ 113.494374][T10018] RBP: 00007fdc096fe090 R08: 0000000000000000 R09: 0000000000000000 [ 113.494380][T10018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 113.494385][T10018] R13: 0000000000000000 R14: 00007fdc08ba5fa0 R15: 00007ffc62fe0608 [ 113.494396][T10018] [ 113.660070][T10030] overlayfs: conflicting options: userxattr,metacopy=on [ 113.797021][T10046] dccp_v6_rcv: dropped packet with invalid checksum [ 113.940735][ T40] kauditd_printk_skb: 4 callbacks suppressed [ 113.940749][ T40] audit: type=1400 audit(113.837:680): avc: denied { kexec_image_load } for pid=10057 comm="syz.3.1344" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1 [ 113.994109][ T40] audit: type=1400 audit(113.887:681): avc: denied { mount } for pid=10057 comm="syz.3.1344" name="/" dev="securityfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=filesystem permissive=1 [ 114.000313][ T40] audit: type=1400 audit(113.897:682): avc: denied { remount } for pid=10057 comm="syz.3.1344" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 114.076364][ T40] audit: type=1400 audit(113.977:683): avc: denied { append } for pid=10064 comm="syz.2.1347" name="pids.current" dev="9p" ino=36831344 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 114.085994][ T40] audit: type=1400 audit(113.987:684): avc: denied { map } for pid=10064 comm="syz.2.1347" path="/332/file0/pids.current" dev="9p" ino=36831344 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 114.144929][T10070] FAULT_INJECTION: forcing a failure. [ 114.144929][T10070] name failslab, interval 1, probability 0, space 0, times 0 [ 114.148532][T10070] CPU: 2 UID: 0 PID: 10070 Comm: syz.0.1349 Not tainted 6.14.0-syzkaller-03565-gf6e0150b2003 #0 PREEMPT(full) [ 114.148546][T10070] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 114.148552][T10070] Call Trace: [ 114.148556][T10070] [ 114.148559][T10070] dump_stack_lvl+0x16c/0x1f0 [ 114.148578][T10070] should_fail_ex+0x512/0x640 [ 114.148588][T10070] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 114.148603][T10070] should_failslab+0xc2/0x120 [ 114.148614][T10070] __kmalloc_cache_noprof+0x6a/0x3e0 [ 114.148629][T10070] ? alloc_pipe_info+0x10e/0x590 [ 114.148641][T10070] alloc_pipe_info+0x10e/0x590 [ 114.148652][T10070] splice_direct_to_actor+0x77d/0xa30 [ 114.148668][T10070] ? __pfx_direct_splice_actor+0x10/0x10 [ 114.148684][T10070] ? inode_has_perm+0x16f/0x1d0 [ 114.148697][T10070] ? file_has_perm+0x27d/0x350 [ 114.148709][T10070] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 114.148724][T10070] ? __pfx_file_has_perm+0x10/0x10 [ 114.148738][T10070] do_splice_direct+0x174/0x240 [ 114.148753][T10070] ? __pfx_do_splice_direct+0x10/0x10 [ 114.148768][T10070] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 114.148783][T10070] ? bpf_lsm_file_permission+0x9/0x10 [ 114.148793][T10070] ? security_file_permission+0x71/0x210 [ 114.148803][T10070] ? rw_verify_area+0xcf/0x680 [ 114.148817][T10070] do_sendfile+0xafd/0xe50 [ 114.148833][T10070] ? __pfx_do_sendfile+0x10/0x10 [ 114.148848][T10070] ? __fget_files+0x20e/0x3c0 [ 114.148859][T10070] __x64_sys_sendfile64+0x1d8/0x220 [ 114.148870][T10070] ? ksys_write+0x1b9/0x240 [ 114.148884][T10070] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 114.148895][T10070] ? rcu_is_watching+0x12/0xc0 [ 114.148908][T10070] do_syscall_64+0xcd/0x260 [ 114.148922][T10070] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.148933][T10070] RIP: 0033:0x7fdc0898d169 [ 114.148940][T10070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 114.148954][T10070] RSP: 002b:00007fdc096fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 114.148964][T10070] RAX: ffffffffffffffda RBX: 00007fdc08ba5fa0 RCX: 00007fdc0898d169 [ 114.148970][T10070] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 114.148975][T10070] RBP: 00007fdc096fe090 R08: 0000000000000000 R09: 0000000000000000 [ 114.148981][T10070] R10: 0000000100000002 R11: 0000000000000246 R12: 0000000000000001 [ 114.148987][T10070] R13: 0000000000000000 R14: 00007fdc08ba5fa0 R15: 00007ffc62fe0608 [ 114.148997][T10070] [ 114.596039][T10108] FAULT_INJECTION: forcing a failure. [ 114.596039][T10108] name failslab, interval 1, probability 0, space 0, times 0 [ 114.599582][T10108] CPU: 3 UID: 0 PID: 10108 Comm: syz.1.1361 Not tainted 6.14.0-syzkaller-03565-gf6e0150b2003 #0 PREEMPT(full) [ 114.599596][T10108] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 114.599602][T10108] Call Trace: [ 114.599605][T10108] [ 114.599608][T10108] dump_stack_lvl+0x16c/0x1f0 [ 114.599627][T10108] should_fail_ex+0x512/0x640 [ 114.599637][T10108] ? __kmalloc_noprof+0xbf/0x510 [ 114.599648][T10108] ? alloc_pipe_info+0x1ec/0x590 [ 114.599659][T10108] should_failslab+0xc2/0x120 [ 114.599669][T10108] __kmalloc_noprof+0xd2/0x510 [ 114.599680][T10108] alloc_pipe_info+0x1ec/0x590 [ 114.599691][T10108] splice_direct_to_actor+0x77d/0xa30 [ 114.599708][T10108] ? __pfx_direct_splice_actor+0x10/0x10 [ 114.599723][T10108] ? inode_has_perm+0x16f/0x1d0 [ 114.599737][T10108] ? file_has_perm+0x27d/0x350 [ 114.599749][T10108] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 114.599764][T10108] ? __pfx_file_has_perm+0x10/0x10 [ 114.599778][T10108] do_splice_direct+0x174/0x240 [ 114.599793][T10108] ? __pfx_do_splice_direct+0x10/0x10 [ 114.599808][T10108] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 114.599823][T10108] ? bpf_lsm_file_permission+0x9/0x10 [ 114.599833][T10108] ? security_file_permission+0x71/0x210 [ 114.599844][T10108] ? rw_verify_area+0xcf/0x680 [ 114.599875][T10108] do_sendfile+0xafd/0xe50 [ 114.599891][T10108] ? __pfx_do_sendfile+0x10/0x10 [ 114.599905][T10108] ? __fget_files+0x20e/0x3c0 [ 114.599917][T10108] __x64_sys_sendfile64+0x1d8/0x220 [ 114.599927][T10108] ? ksys_write+0x1b9/0x240 [ 114.599942][T10108] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 114.599952][T10108] ? rcu_is_watching+0x12/0xc0 [ 114.599969][T10108] do_syscall_64+0xcd/0x260 [ 114.599983][T10108] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 114.599993][T10108] RIP: 0033:0x7fcce678d169 [ 114.600001][T10108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 114.600011][T10108] RSP: 002b:00007fcce7595038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 114.600021][T10108] RAX: ffffffffffffffda RBX: 00007fcce69a5fa0 RCX: 00007fcce678d169 [ 114.600027][T10108] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 114.600033][T10108] RBP: 00007fcce7595090 R08: 0000000000000000 R09: 0000000000000000 [ 114.600039][T10108] R10: 0000000100000002 R11: 0000000000000246 R12: 0000000000000001 [ 114.600044][T10108] R13: 0000000000000000 R14: 00007fcce69a5fa0 R15: 00007ffff7598bb8 [ 114.600055][T10108] [ 114.692522][ T40] audit: type=1400 audit(114.587:685): avc: denied { name_bind 0x1000000 } for pid=10109 comm="syz.1.1362" path="socket:[39099]" dev="sockfs" ino=39099 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1 [ 114.714054][T10112] xt_recent: Unsupported userspace flags (00000042) [ 114.716645][T10112] overlayfs: failed to resolve './file1': -2 [ 114.744616][T10116] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1365'. [ 114.747194][T10116] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1365'. [ 114.910676][T10127] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1369'. [ 114.933260][T10131] overlayfs: failed to clone upperpath [ 114.969474][T10136] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1373'. [ 114.974883][T10136] Bluetooth: MGMT ver 1.23 [ 115.001130][T10132] syz.1.1370: attempt to access beyond end of device [ 115.001130][T10132] nbd1: rw=0, sector=2, nr_sectors = 2 limit=0 [ 115.007390][T10132] syz.1.1370: attempt to access beyond end of device [ 115.007390][T10132] nbd1: rw=0, sector=16, nr_sectors = 2 limit=0 [ 115.296474][T10157] MTD: Attempt to mount non-MTD device "/dev/nullb0" [ 115.299543][T10157] VFS: Can't find a romfs filesystem on dev nullb0. [ 115.299543][T10157] [ 115.746495][T10193] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1394'. [ 115.794510][ T40] audit: type=1400 audit(115.697:686): avc: denied { getopt } for pid=10192 comm="syz.2.1394" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 115.794678][T10193] overlayfs: missing 'lowerdir' [ 115.874581][ T40] audit: type=1400 audit(115.777:687): avc: denied { getopt } for pid=10201 comm="syz.2.1397" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 116.211996][T10217] xt_policy: input policy not valid in POSTROUTING and OUTPUT [ 116.436060][T10228] veth1_to_bond: entered allmulticast mode [ 116.438123][T10227] veth1_to_bond: left allmulticast mode [ 116.533966][T10234] overlayfs: failed to clone upperpath [ 116.840155][T10261] fuse: Bad value for 'fd' [ 116.871186][ T1187] bridge0: port 2(bridge_slave_1) entered blocking state [ 116.874580][ T1187] bridge0: port 2(bridge_slave_1) entered forwarding state [ 116.934493][T10260] support for cryptoloop has been removed. Use dm-crypt instead. [ 117.033318][ T40] audit: type=1400 audit(116.927:688): avc: denied { mounton } for pid=10284 comm="syz.2.1425" path="/proc/954/task" dev="proc" ino=37697 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1 [ 117.085804][ T40] audit: type=1400 audit(116.987:689): avc: denied { getopt } for pid=10289 comm="syz.0.1427" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 117.249127][T10297] netlink: 136 bytes leftover after parsing attributes in process `syz.1.1430'. [ 117.263518][T10301] overlayfs: failed to resolve './file0/file0': -2 [ 117.306977][T10312] fuse: Bad value for 'user_id' [ 117.308758][T10312] fuse: Bad value for 'user_id' [ 117.698614][T10350] netlink: 'syz.0.1447': attribute type 10 has an invalid length. [ 117.704618][T10350] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 117.803009][T10358] openvswitch: netlink: Missing valid actions attribute. [ 117.805541][T10358] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 117.856655][T10368] syz.2.1454: attempt to access beyond end of device [ 117.856655][T10368] nbd2: rw=0, sector=16, nr_sectors = 1 limit=0 [ 117.860620][T10368] qnx6: unable to read the first superblock [ 117.862403][T10368] syz.2.1454: attempt to access beyond end of device [ 117.862403][T10368] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0 [ 117.867996][T10368] qnx6: unable to read the first superblock [ 117.869765][T10368] qnx6: unable to read the first superblock [ 117.980760][T10382] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1460'. [ 118.033631][T10386] netlink: 'syz.1.1460': attribute type 1 has an invalid length. [ 118.453355][ T5947] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 118.603445][ T5947] usb 6-1: Using ep0 maxpacket: 16 [ 118.606703][ T5947] usb 6-1: config 1 interface 0 altsetting 121 bulk endpoint 0x82 has invalid maxpacket 32 [ 118.610179][ T5947] usb 6-1: config 1 interface 0 altsetting 121 bulk endpoint 0x3 has invalid maxpacket 1023 [ 118.613393][ T5947] usb 6-1: config 1 interface 0 has no altsetting 0 [ 118.616728][ T5947] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 118.619236][ T5947] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 118.621460][ T5947] usb 6-1: Product: syz [ 118.622631][ T5947] usb 6-1: Manufacturer: syz [ 118.624044][ T5947] usb 6-1: SerialNumber: syz [ 118.626855][T10396] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 118.629217][T10396] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 118.834038][T10408] ./cgroup: Can't lookup blockdev [ 119.242147][T10423] netlink: 'syz.3.1473': attribute type 1 has an invalid length. [ 119.361604][ T5947] cdc_ether 6-1:1.0: probe with driver cdc_ether failed with error -71 [ 119.368089][ T5947] usb 6-1: USB disconnect, device number 9 [ 119.394881][T10432] 8021q: adding VLAN 0 to HW filter on device bond12 [ 120.462520][ T40] kauditd_printk_skb: 4 callbacks suppressed [ 120.462531][ T40] audit: type=1400 audit(120.357:694): avc: denied { create } for pid=10475 comm="syz.0.1490" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 120.468830][T10476] bond0: entered promiscuous mode [ 120.469918][ T40] audit: type=1400 audit(120.367:695): avc: denied { write } for pid=10475 comm="syz.0.1490" name="file0" dev="tmpfs" ino=2042 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 120.471696][T10476] bond_slave_0: entered promiscuous mode [ 120.471766][T10476] bond_slave_1: entered promiscuous mode [ 120.477825][ T40] audit: type=1400 audit(120.367:696): avc: denied { open } for pid=10475 comm="syz.0.1490" path="/357/file0" dev="tmpfs" ino=2042 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 120.480204][T10476] batadv0: entered promiscuous mode [ 120.516298][ T40] audit: type=1400 audit(120.417:697): avc: denied { ioctl } for pid=10475 comm="syz.0.1490" path="/357/file0" dev="tmpfs" ino=2042 ioctlcmd=0x4800 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 120.544429][T10477] sctp: [Deprecated]: syz.1.1489 (pid 10477) Use of int in max_burst socket option. [ 120.544429][T10477] Use struct sctp_assoc_value instead [ 120.748120][ T29] hid-generic 0004:0002:1000.0002: unknown main item tag 0x2 [ 120.750354][ T29] hid-generic 0004:0002:1000.0002: unknown main item tag 0x2 [ 120.752490][ T29] hid-generic 0004:0002:1000.0002: item fetching failed at offset 16/98 [ 120.757398][ T29] hid-generic 0004:0002:1000.0002: probe with driver hid-generic failed with error -22 [ 120.828689][T10486] 8021q: adding VLAN 0 to HW filter on device bond12 [ 121.314128][ T40] audit: type=1400 audit(121.207:698): avc: denied { unlink } for pid=5944 comm="syz-executor" name="file0" dev="tmpfs" ino=2042 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 121.696287][T10523] fuse: Bad value for 'fd' [ 121.875829][T10542] fuse: Bad value for 'fd' [ 122.072100][ T8514] hid-generic 0004:0002:1000.0003: unknown main item tag 0x2 [ 122.077208][ T8514] hid-generic 0004:0002:1000.0003: unknown main item tag 0x2 [ 122.079309][ T8514] hid-generic 0004:0002:1000.0003: item fetching failed at offset 16/98 [ 122.081760][ T8514] hid-generic 0004:0002:1000.0003: probe with driver hid-generic failed with error -22 [ 122.190212][T10572] 8021q: adding VLAN 0 to HW filter on device bond10 [ 125.189221][T10579] fuse: Bad value for 'fd' [ 125.364571][T10612] fuse: Bad value for 'fd' [ 125.525356][ T40] audit: type=1400 audit(125.427:699): avc: denied { watch_mount } for pid=10624 comm="syz.2.1544" path="/369" dev="tmpfs" ino=2067 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 125.667117][T10645] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1552'. [ 126.113423][ T8514] usb 7-1: new high-speed USB device number 12 using dummy_hcd [ 126.263385][ T8514] usb 7-1: device descriptor read/64, error -71 [ 126.346750][T10701] afs: Unknown parameter 'dynÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿafs' [ 126.447869][T10710] IPVS: persistence engine module ip_vs_pe_" not found [ 126.490778][T10716] SELinux: policydb version -1365823253 does not match my version range 15-34 [ 126.493920][T10716] SELinux: failed to load policy [ 126.496597][T10718] 9pnet_virtio: no channels available for device syz [ 126.498724][ T40] audit: type=1400 audit(126.397:700): avc: denied { mounton } for pid=10715 comm="syz.0.1580" path="/369/bus" dev="9p" ino=36831256 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 126.513572][ T8514] usb 7-1: new high-speed USB device number 13 using dummy_hcd [ 126.643701][ T8514] usb 7-1: device descriptor read/64, error -71 [ 126.753555][ T8514] usb usb7-port1: attempt power cycle [ 127.066034][T10757] bond0: Error: Cannot enslave bond to itself. [ 127.103375][ T8514] usb 7-1: new high-speed USB device number 14 using dummy_hcd [ 127.123903][ T8514] usb 7-1: device descriptor read/8, error -71 [ 127.248424][ T40] audit: type=1400 audit(127.147:701): avc: denied { append } for pid=10767 comm="syz.0.1600" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1 [ 127.255048][ T40] audit: type=1400 audit(127.147:702): avc: denied { map } for pid=10767 comm="syz.0.1600" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1 [ 127.261351][ T40] audit: type=1400 audit(127.147:703): avc: denied { execute } for pid=10767 comm="syz.0.1600" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1 [ 127.293682][T10775] random: crng reseeded on system resumption [ 127.373395][ T8514] usb 7-1: new high-speed USB device number 15 using dummy_hcd [ 127.380705][ T40] audit: type=1400 audit(127.277:704): avc: denied { mounton } for pid=10786 comm="syz.3.1607" path="/423/file0" dev="tmpfs" ino=2356 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 127.393741][ T8514] usb 7-1: device descriptor read/8, error -71 [ 127.464273][ T40] audit: type=1400 audit(127.367:705): avc: denied { module_load } for pid=10792 comm="syz.3.1609" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1 [ 127.503549][ T8514] usb usb7-port1: unable to enumerate USB device [ 127.752685][ T40] audit: type=1400 audit(127.647:706): avc: denied { read } for pid=5338 comm="acpid" name="mouse6" dev="devtmpfs" ino=2889 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1 [ 127.758594][ T40] audit: type=1400 audit(127.647:707): avc: denied { open } for pid=5338 comm="acpid" path="/dev/input/mouse6" dev="devtmpfs" ino=2889 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1 [ 127.766716][ T40] audit: type=1400 audit(127.647:708): avc: denied { ioctl } for pid=5338 comm="acpid" path="/dev/input/mouse6" dev="devtmpfs" ino=2889 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=root:object_r:device_t tclass=file permissive=1 [ 127.793172][T10819] overlayfs: failed to resolve './file1': -2 [ 127.964250][T10833] lo: entered allmulticast mode [ 127.983884][T10831] lo: left allmulticast mode [ 128.211618][T10855] lo speed is unknown, defaulting to 1000 [ 128.332188][T10867] overlayfs: failed to clone upperpath [ 128.805537][T10896] overlayfs: failed to clone upperpath [ 128.819911][T10898] xt_time: unknown flags 0xc [ 128.904452][T10902] CIFS mount error: No usable UNC path provided in device string! [ 128.904452][T10902] [ 128.907981][T10902] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 128.933963][T10905] fuse: Bad value for 'fd' [ 129.035684][T10907] program syz.2.1648 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 129.038778][T10907] ata1.00: non-matching transfer count (32/0) [ 129.180818][T10923] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1654'. [ 129.236489][T10927] xt_hashlimit: size too large, truncated to 1048576 [ 129.311253][T10931] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains [ 129.337967][T10933] siw: device registration error -23 [ 129.660848][T10944] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1660'. [ 129.663425][T10944] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1660'. [ 129.667241][T10944] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 130.177253][T10968] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 130.181584][T10968] netlink: 88 bytes leftover after parsing attributes in process `syz.0.1670'. [ 130.223764][T10968] netlink: 88 bytes leftover after parsing attributes in process `syz.0.1670'. [ 130.227163][T10968] netlink: 88 bytes leftover after parsing attributes in process `syz.0.1670'. [ 130.267949][T10972] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1672'. [ 130.270503][T10972] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1672'. [ 130.281439][T10975] syzkaller1: entered promiscuous mode [ 130.284759][T10975] syzkaller1: entered allmulticast mode [ 130.375044][T10983] kAFS: No cell specified [ 130.472219][T10989] kvm: vcpu 0: requested 704 ns lapic timer period limited to 200000 ns [ 130.665180][T11019] overlayfs: failed to resolve './file0': -2 [ 131.087601][T11039] tipc: Started in network mode [ 131.089104][T11039] tipc: Node identity 080211, cluster identity 4711 [ 131.091136][T11039] tipc: Enabled bearer , priority 0 [ 131.093839][T11039] mac80211_hwsim hwsim2 syzkaller0: entered promiscuous mode [ 131.095986][T11039] mac80211_hwsim hwsim2 syzkaller0: entered allmulticast mode [ 131.099648][T11039] tipc: Resetting bearer [ 131.272476][T11045] overlay: Unknown parameter 'fsmagic' [ 131.404687][ T6532] tipc: Resetting bearer [ 131.645688][T11077] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 [ 131.758235][T11087] netlink: 'syz.0.1713': attribute type 3 has an invalid length. [ 131.760528][T11087] netlink: 'syz.0.1713': attribute type 1 has an invalid length. [ 131.762692][T11087] netlink: 55409 bytes leftover after parsing attributes in process `syz.0.1713'. [ 131.766279][T11087] nbd: couldn't find device at index 63 [ 131.773771][T11089] xt_hashlimit: size too large, truncated to 1048576 [ 131.871838][T11096] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1716'. [ 131.892088][T11098] FAULT_INJECTION: forcing a failure. [ 131.892088][T11098] name failslab, interval 1, probability 0, space 0, times 0 [ 131.895614][T11098] CPU: 3 UID: 0 PID: 11098 Comm: syz.1.1717 Not tainted 6.14.0-syzkaller-03565-gf6e0150b2003 #0 PREEMPT(full) [ 131.895628][T11098] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 131.895635][T11098] Call Trace: [ 131.895638][T11098] [ 131.895642][T11098] dump_stack_lvl+0x16c/0x1f0 [ 131.895675][T11098] should_fail_ex+0x512/0x640 [ 131.895691][T11098] ? fs_reclaim_acquire+0xae/0x150 [ 131.895730][T11098] should_failslab+0xc2/0x120 [ 131.895746][T11098] __kmalloc_cache_noprof+0x6a/0x3e0 [ 131.895770][T11098] ? netfs_alloc_request+0x825/0xbc0 [ 131.895786][T11098] ? netfs_folioq_alloc+0x9e/0x3e0 [ 131.895796][T11098] ? do_raw_spin_unlock+0x172/0x230 [ 131.895813][T11098] netfs_folioq_alloc+0x9e/0x3e0 [ 131.895824][T11098] rolling_buffer_init+0x26/0xb0 [ 131.895834][T11098] netfs_create_write_req+0x10a/0x880 [ 131.895847][T11098] netfs_unbuffered_write_iter_locked+0x12a/0xd40 [ 131.895865][T11098] netfs_unbuffered_write_iter+0x414/0x6d0 [ 131.895882][T11098] v9fs_file_write_iter+0xbf/0x100 [ 131.895898][T11098] vfs_write+0x5ba/0x1180 [ 131.895913][T11098] ? __pfx_v9fs_file_write_iter+0x10/0x10 [ 131.895928][T11098] ? __pfx___mutex_lock+0x10/0x10 [ 131.895942][T11098] ? __pfx_vfs_write+0x10/0x10 [ 131.895963][T11098] ksys_write+0x12a/0x240 [ 131.895978][T11098] ? __pfx_ksys_write+0x10/0x10 [ 131.895991][T11098] ? rcu_is_watching+0x12/0xc0 [ 131.896004][T11098] do_syscall_64+0xcd/0x260 [ 131.896018][T11098] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.896029][T11098] RIP: 0033:0x7fcce678d169 [ 131.896037][T11098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 131.896046][T11098] RSP: 002b:00007fcce7595038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 131.896056][T11098] RAX: ffffffffffffffda RBX: 00007fcce69a5fa0 RCX: 00007fcce678d169 [ 131.896062][T11098] RDX: 0000000000000002 RSI: 0000200000000140 RDI: 0000000000000006 [ 131.896068][T11098] RBP: 00007fcce7595090 R08: 0000000000000000 R09: 0000000000000000 [ 131.896073][T11098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 131.896079][T11098] R13: 0000000000000000 R14: 00007fcce69a5fa0 R15: 00007ffff7598bb8 [ 131.896090][T11098] [ 131.906681][T11100] 9pnet_fd: Insufficient options for proto=fd [ 132.028961][T11115] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1720'. [ 132.040982][T11115] ucma_write: process 1219 (syz.1.1720) changed security contexts after opening file descriptor, this is not allowed. [ 132.132195][T11124] overlayfs: failed to clone upperpath [ 132.135959][ T8514] tipc: Node number set to 134353152 [ 132.182734][T11126] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 132.185469][T11126] overlayfs: missing 'lowerdir' [ 132.187396][T11126] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1728'. [ 132.191849][T11126] 9p: Unknown access argument 18446744073709551615: -34 [ 132.242868][T11127] netlink: 'syz.3.1728': attribute type 15 has an invalid length. [ 132.245744][T11127] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1728'. [ 132.287609][T11129] FAULT_INJECTION: forcing a failure. [ 132.287609][T11129] name failslab, interval 1, probability 0, space 0, times 0 [ 132.291127][T11129] CPU: 2 UID: 0 PID: 11129 Comm: syz.1.1729 Not tainted 6.14.0-syzkaller-03565-gf6e0150b2003 #0 PREEMPT(full) [ 132.291141][T11129] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 132.291147][T11129] Call Trace: [ 132.291150][T11129] [ 132.291155][T11129] dump_stack_lvl+0x16c/0x1f0 [ 132.291172][T11129] should_fail_ex+0x512/0x640 [ 132.291182][T11129] ? __kvmalloc_node_noprof+0x122/0x600 [ 132.291200][T11129] should_failslab+0xc2/0x120 [ 132.291211][T11129] __kvmalloc_node_noprof+0x135/0x600 [ 132.291227][T11129] ? netfs_extract_user_iter+0x164/0x620 [ 132.291245][T11129] ? netfs_extract_user_iter+0x164/0x620 [ 132.291259][T11129] netfs_extract_user_iter+0x164/0x620 [ 132.291276][T11129] ? rcu_is_watching+0x12/0xc0 [ 132.291286][T11129] ? trace_netfs_folioq+0x188/0x210 [ 132.291296][T11129] ? __pfx_netfs_extract_user_iter+0x10/0x10 [ 132.291311][T11129] ? iov_iter_folio_queue+0x3e/0x1f0 [ 132.291322][T11129] ? rolling_buffer_init+0x8a/0xb0 [ 132.291332][T11129] ? netfs_create_write_req+0x511/0x880 [ 132.291345][T11129] netfs_unbuffered_write_iter_locked+0x4cf/0xd40 [ 132.291362][T11129] netfs_unbuffered_write_iter+0x414/0x6d0 [ 132.291380][T11129] v9fs_file_write_iter+0xbf/0x100 [ 132.291396][T11129] vfs_write+0x5ba/0x1180 [ 132.291411][T11129] ? __pfx_v9fs_file_write_iter+0x10/0x10 [ 132.291426][T11129] ? __pfx___mutex_lock+0x10/0x10 [ 132.291440][T11129] ? __pfx_vfs_write+0x10/0x10 [ 132.291461][T11129] ksys_write+0x12a/0x240 [ 132.291475][T11129] ? __pfx_ksys_write+0x10/0x10 [ 132.291489][T11129] ? rcu_is_watching+0x12/0xc0 [ 132.291501][T11129] do_syscall_64+0xcd/0x260 [ 132.291515][T11129] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 132.291526][T11129] RIP: 0033:0x7fcce678d169 [ 132.291534][T11129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 132.291548][T11129] RSP: 002b:00007fcce7595038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 132.291557][T11129] RAX: ffffffffffffffda RBX: 00007fcce69a5fa0 RCX: 00007fcce678d169 [ 132.291564][T11129] RDX: 0000000000000002 RSI: 0000200000000140 RDI: 0000000000000006 [ 132.291569][T11129] RBP: 00007fcce7595090 R08: 0000000000000000 R09: 0000000000000000 [ 132.291575][T11129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 132.291581][T11129] R13: 0000000000000000 R14: 00007fcce69a5fa0 R15: 00007ffff7598bb8 [ 132.291591][T11129] [ 132.291801][T11131] netlink: 'syz.3.1730': attribute type 1 has an invalid length. [ 132.468431][T11146] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1735'. [ 132.794009][T11177] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1549 sclass=netlink_route_socket pid=11177 comm=syz.3.1745 [ 132.798924][ T40] kauditd_printk_skb: 6 callbacks suppressed [ 132.798936][ T40] audit: type=1400 audit(132.697:716): avc: denied { map } for pid=11176 comm="syz.3.1745" path="socket:[46533]" dev="sockfs" ino=46533 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1 [ 132.799075][T11177] netlink: 'syz.3.1745': attribute type 1 has an invalid length. [ 132.800948][ T40] audit: type=1400 audit(132.697:715): avc: denied { mount } for pid=11174 comm="syz.2.1744" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1 [ 132.800970][ T40] audit: type=1400 audit(132.697:717): avc: denied { remount } for pid=11174 comm="syz.2.1744" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1 [ 132.847973][ T40] audit: type=1400 audit(132.747:718): avc: denied { unmount } for pid=5943 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1 [ 132.883105][T11188] lo speed is unknown, defaulting to 1000 [ 133.184024][ T40] audit: type=1400 audit(133.087:719): avc: denied { setopt } for pid=11220 comm="syz.3.1758" lport=38582 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1 [ 133.410172][T11260] bridge0: port 1(bridge_slave_0) entered disabled state [ 133.419376][ T1143] bridge0: port 1(bridge_slave_0) entered blocking state [ 133.421377][ T1143] bridge0: port 1(bridge_slave_0) entered forwarding state [ 133.613145][T11284] openvswitch: netlink: Actions may not be safe on all matching packets [ 133.632116][T11288] gre0: Master is either lo or non-ether device [ 133.754306][T11307] fuse: Bad value for 'fd' [ 133.825570][ T40] audit: type=1400 audit(133.727:720): avc: denied { ioctl } for pid=11310 comm="syz.2.1787" path="socket:[45578]" dev="sockfs" ino=45578 ioctlcmd=0x4947 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 133.833016][ T40] audit: type=1400 audit(133.727:721): avc: denied { shutdown } for pid=11310 comm="syz.2.1787" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 133.913560][ T40] audit: type=1804 audit(133.817:722): pid=11326 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.2.1791" name="/newroot/409/file0" dev="tmpfs" ino=2286 res=1 errno=0 [ 134.135989][T11341] fuse: Bad value for 'user_id' [ 134.137562][T11341] fuse: Bad value for 'user_id' [ 134.236978][T11344] fuse: Bad value for 'fd' [ 134.482602][T11355] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1801'. [ 134.537123][ T40] audit: type=1400 audit(134.437:723): avc: denied { setattr } for pid=11364 comm="syz.0.1804" path="socket:[46876]" dev="sockfs" ino=46876 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 134.567296][T11372] fuse: Bad value for 'fd' [ 134.627488][T11374] ./bus: Can't lookup blockdev [ 134.811750][T11389] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1811'. [ 134.873607][T11395] 9pnet: Could not find request transport: fÖârf¦ô¼€0x0000000000000003 [ 134.961902][T11413] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1821'. [ 134.966185][T11413] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1821'. [ 135.171699][T11452] openvswitch: netlink: IP tunnel dst address not specified [ 135.247872][ T6540] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 135.250051][ T6540] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 135.409436][ T40] audit: type=1400 audit(135.307:724): avc: denied { append } for pid=11480 comm="syz.1.1849" name="qrtr-tun" dev="devtmpfs" ino=1335 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 135.578784][T11500] 9pnet_fd: Insufficient options for proto=fd [ 135.720625][T11522] syz.1.1863: attempt to access beyond end of device [ 135.720625][T11522] nbd1: rw=0, sector=2, nr_sectors = 2 limit=0 [ 135.724513][T11522] vxfs: unable to read disk superblock at 1 [ 135.726756][T11522] syz.1.1863: attempt to access beyond end of device [ 135.726756][T11522] nbd1: rw=0, sector=16, nr_sectors = 2 limit=0 [ 135.730254][T11522] vxfs: unable to read disk superblock at 8 [ 135.731885][T11522] vxfs: can't find superblock. [ 135.734647][T11524] syz.1.1863: attempt to access beyond end of device [ 135.734647][T11524] nbd1: rw=0, sector=2, nr_sectors = 2 limit=0 [ 135.738709][T11524] vxfs: unable to read disk superblock at 1 [ 135.741427][T11524] syz.1.1863: attempt to access beyond end of device [ 135.741427][T11524] nbd1: rw=0, sector=16, nr_sectors = 2 limit=0 [ 135.746470][T11524] vxfs: unable to read disk superblock at 8 [ 135.748772][T11524] vxfs: can't find superblock. [ 136.117052][T11552] xt_CT: You must specify a L4 protocol and not use inversions on it [ 136.162157][ T58] hid-generic 00EC:0003:0000.0004: unknown main item tag 0x0 [ 136.165000][ T58] hid-generic 00EC:0003:0000.0004: unknown main item tag 0x0 [ 136.176474][ T58] hid-generic 00EC:0003:0000.0004: hidraw1: HID v0.00 Device [syz1] on syz1 [ 136.669650][T11598] 9pnet_fd: Insufficient options for proto=fd [ 137.335776][T11617] __nla_validate_parse: 69 callbacks suppressed [ 137.335788][T11617] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1895'. [ 137.438532][T11619] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1896'. [ 137.647954][T11642] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1904'. [ 137.851207][T11673] overlayfs: cannot append lower layer [ 137.851205][ T40] kauditd_printk_skb: 6 callbacks suppressed [ 137.851217][ T40] audit: type=1400 audit(137.747:731): avc: denied { mounton } for pid=11671 comm="syz.0.1918" path="/file0" dev="ramfs" ino=48424 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1 [ 137.950713][T11684] netlink: 'syz.1.1922': attribute type 4 has an invalid length. [ 137.954574][ T40] audit: type=1400 audit(137.857:732): avc: denied { audit_read } for pid=11683 comm="syz.1.1922" capability=37 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 138.012731][T11689] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1924'. [ 138.015410][T11689] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1924'. [ 138.017894][T11689] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1924'. [ 138.020438][T11689] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1924'. [ 138.104296][T11700] netlink: 'syz.1.1929': attribute type 2 has an invalid length. [ 138.106460][T11700] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1929'. [ 138.169656][T11708] lo speed is unknown, defaulting to 1000 [ 138.176427][T11704] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1931'. [ 138.179379][T11704] uprobe: syz.3.1931:11704 failed to unregister, leaking uprobe [ 138.445960][ T5949] Bluetooth: hci3: link tx timeout [ 138.448159][ T5949] Bluetooth: hci3: killing stalled connection 10:aa:aa:aa:aa:aa [ 138.451513][ T5949] Bluetooth: hci3: link tx timeout [ 138.454121][ T5949] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa [ 138.469134][T11732] fuse: Bad value for 'group_id' [ 138.470572][T11732] fuse: Bad value for 'group_id' [ 138.612598][ T10] libceph: connect (1)[c::]:6789 error -101 [ 138.614437][ T10] libceph: mon0 (1)[c::]:6789 connect error [ 138.664458][ T836] libceph: connect (1)[c::]:6789 error -101 [ 138.666231][ T836] libceph: mon0 (1)[c::]:6789 connect error [ 138.847399][T11767] fuse: Bad value for 'group_id' [ 138.849353][T11767] fuse: Bad value for 'group_id' [ 138.872395][T11765] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1950'. [ 138.872462][ T40] audit: type=1400 audit(138.767:733): avc: denied { write } for pid=11763 comm="syz.2.1950" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 138.875182][ T10] libceph: connect (1)[c::]:6789 error -101 [ 138.885564][ T10] libceph: mon0 (1)[c::]:6789 connect error [ 139.004632][ T836] libceph: connect (1)[c::]:6789 error -101 [ 139.007740][ T836] libceph: mon0 (1)[c::]:6789 connect error [ 139.014814][T11776] mkiss: ax0: crc mode is auto. [ 139.111276][T11778] lo speed is unknown, defaulting to 1000 [ 139.117829][T11778] lo speed is unknown, defaulting to 1000 [ 139.120757][T11778] lo speed is unknown, defaulting to 1000 [ 139.275163][T11778] infiniband sz1: set active [ 139.276759][T11778] infiniband sz1: added lo [ 139.300805][ T836] lo speed is unknown, defaulting to 1000 [ 139.309357][T11778] RDS/IB: sz1: added [ 139.310857][T11778] smc: adding ib device sz1 with port count 1 [ 139.312685][T11778] smc: ib device sz1 port 1 has pnetid [ 139.316176][T11778] lo speed is unknown, defaulting to 1000 [ 139.348669][T11778] lo speed is unknown, defaulting to 1000 [ 139.367393][ T836] lo speed is unknown, defaulting to 1000 [ 139.390358][T11778] lo speed is unknown, defaulting to 1000 [ 139.393571][ T10] libceph: connect (1)[c::]:6789 error -101 [ 139.395691][ T10] libceph: mon0 (1)[c::]:6789 connect error [ 139.514850][T11778] lo speed is unknown, defaulting to 1000 [ 139.551207][ T836] libceph: connect (1)[c::]:6789 error -101 [ 139.559227][T11778] lo speed is unknown, defaulting to 1000 [ 139.594103][ T836] libceph: mon0 (1)[c::]:6789 connect error [ 139.715056][T11800] fuse: Bad value for 'group_id' [ 139.716494][T11800] fuse: Bad value for 'group_id' [ 139.748948][ T40] audit: type=1400 audit(139.647:734): avc: denied { append } for pid=11803 comm="syz.2.1962" name="ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 140.043357][ T1492] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 140.213388][ T1492] usb 6-1: Using ep0 maxpacket: 32 [ 140.221762][ T1492] usb 6-1: config 0 has an invalid interface number: 67 but max is 0 [ 140.224085][ T1492] usb 6-1: config 0 has no interface number 0 [ 140.227254][ T1492] usb 6-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 140.229724][ T1492] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 140.231927][ T1492] usb 6-1: Product: syz [ 140.233106][ T1492] usb 6-1: Manufacturer: syz [ 140.234260][ T836] e1000 0000:00:06.0 eth0: Reset adapter [ 140.234606][ T1492] usb 6-1: SerialNumber: syz [ 140.238416][ T1492] usb 6-1: config 0 descriptor?? [ 140.241059][ T1492] smsc95xx v2.0.0 [ 140.242804][ T1492] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 140.245781][ T1492] smsc95xx 6-1:0.67: probe with driver smsc95xx failed with error -22 [ 140.294426][T11838] fuse: Bad value for 'group_id' [ 140.295880][T11838] fuse: Bad value for 'group_id' [ 140.325496][T11843] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 140.344806][ T836] e1000 0000:00:06.0 eth0: Reset adapter [ 140.443751][ T836] e1000 0000:00:06.0 eth0: Reset adapter [ 140.443882][ T40] audit: type=1400 audit(140.337:735): avc: denied { relabelfrom } for pid=11806 comm="syz.1.1963" name="TCP" dev="sockfs" ino=47866 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1 [ 140.444018][T11807] SELinux: Context system_u:object_r:devicekit_power_exec_t:s0 is not valid (left unmapped). [ 140.456692][ T40] audit: type=1400 audit(140.347:736): avc: denied { relabelto } for pid=11806 comm="syz.1.1963" name="TCP" dev="sockfs" ino=47866 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=tcp_socket permissive=1 trawcon="system_u:object_r:devicekit_power_exec_t:s0" [ 140.466260][T11852] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 140.493997][ T29] libceph: connect (1)[c::]:6789 error -101 [ 140.494113][ T5949] Bluetooth: hci3: command 0x0406 tx timeout [ 140.495928][ T29] libceph: mon0 (1)[c::]:6789 connect error [ 140.573725][ T10] libceph: connect (1)[c::]:6789 error -101 [ 140.576175][ T10] libceph: mon0 (1)[c::]:6789 connect error [ 140.625504][ T10] usb 6-1: USB disconnect, device number 10 [ 141.538711][ T29] libceph: connect (1)[c::]:6789 error -101 [ 141.539383][ T10] libceph: connect (1)[c::]:6789 error -101 [ 141.540914][ T29] libceph: mon0 (1)[c::]:6789 connect error [ 141.542573][ T10] libceph: mon0 (1)[c::]:6789 connect error [ 141.569743][T11749] ceph: No mds server is up or the cluster is laggy [ 141.569788][T11744] ceph: No mds server is up or the cluster is laggy [ 142.654407][ T5949] Bluetooth: hci3: command 0x0406 tx timeout [ 142.654502][ T10] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX [ 144.604230][ T40] audit: type=1400 audit(144.507:737): avc: denied { sys_chroot } for pid=11870 comm="dhcpcd" capability=18 scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1 [ 144.610021][ T40] audit: type=1400 audit(144.507:738): avc: denied { setgid } for pid=11870 comm="dhcpcd" capability=6 scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1 [ 144.615535][ T40] audit: type=1400 audit(144.507:739): avc: denied { setgid } for pid=11871 comm="dhcpcd" capability=6 scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=capability permissive=1 [ 144.620967][ T40] audit: type=1400 audit(144.507:740): avc: denied { setrlimit } for pid=11870 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=process permissive=1 [ 144.626149][ T40] audit: type=1400 audit(144.507:741): avc: denied { recv } for pid=0 comm="swapper/1" saddr=10.0.2.2 src=67 daddr=255.255.255.255 dest=68 netif=eth0 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1 [ 150.949354][T11886] openvswitch: netlink: Duplicate key (type 32). [ 150.952338][ T40] audit: type=1400 audit(150.847:742): avc: denied { execmem } for pid=11885 comm="syz.2.1981" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 150.961872][ T40] audit: type=1400 audit(150.857:743): avc: denied { connect } for pid=11884 comm="syz.0.1979" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 151.061723][T11904] __nla_validate_parse: 8 callbacks suppressed [ 151.061735][T11904] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1987'. [ 151.120107][T11908] IPVS: length: 154 != 8 [ 151.222249][ T40] audit: type=1400 audit(151.117:744): avc: denied { mount } for pid=11885 comm="syz.2.1981" name="/" dev="9p" ino=36831256 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 151.872844][ T40] audit: type=1400 audit(151.767:745): avc: denied { unmount } for pid=5943 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 152.476155][ T40] audit: type=1400 audit(152.377:746): avc: denied { write } for pid=11943 comm="syz.1.1999" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 152.672079][T11951] netlink: 892 bytes leftover after parsing attributes in process `syz.2.2002'. [ 152.694293][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 152.696928][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 152.699550][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 152.702033][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 152.704575][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 152.707234][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 152.709821][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 152.712686][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 152.715139][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 152.717653][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 152.730997][T11955] netlink: 892 bytes leftover after parsing attributes in process `syz.2.2002'. [ 152.734754][T11954] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2000'. [ 152.965112][ T40] audit: type=1400 audit(152.867:747): avc: denied { read } for pid=11962 comm="syz.0.2007" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 153.815851][T11977] /dev/sg0: Can't lookup blockdev [ 153.824345][ T836] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 154.117968][ T40] audit: type=1326 audit(154.017:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11987 comm="syz.3.2014" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3ee118d169 code=0x0 [ 154.407093][T12011] batman_adv: batadv0: Adding interface: ip6gretap2 [ 154.408992][T12011] batman_adv: batadv0: The MTU of interface ip6gretap2 is too small (1434) to handle the transport of batman-adv packets. If you experience problems getting traffic through try increasing the MTU to 1500. [ 154.414999][T12011] batman_adv: batadv0: Interface activated: ip6gretap2 [ 167.711868][T12032] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2022'. [ 167.812235][T12049] netlink: 'syz.3.2028': attribute type 10 has an invalid length. [ 167.815081][T12049] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2028'. [ 167.902414][ T40] audit: type=1400 audit(167.797:749): avc: denied { bind } for pid=12053 comm="syz.0.2030" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 168.339540][ T40] audit: type=1400 audit(168.237:750): avc: denied { sendto } for pid=12050 comm="syz.1.2029" saddr=fe80::1c daddr=ff02::2 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1 [ 168.883048][T12095] rtc_cmos 00:05: Alarms can be up to one day in the future [ 168.999400][T12096] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2047'. [ 169.016595][ T40] audit: type=1400 audit(168.887:751): avc: denied { mount } for pid=12091 comm="syz.2.2047" name="/" dev="rpc_pipefs" ino=50342 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1 [ 169.411702][T12100] 9pnet_virtio: no channels available for device syz [ 169.790378][ T40] audit: type=1400 audit(169.687:752): avc: denied { unmount } for pid=5943 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1 [ 169.897461][T12115] 9pnet: p9_errstr2errno: server reported unknown error 184467440 [ 170.129343][T12103] 9pnet_fd: Insufficient options for proto=fd [ 170.413384][ T5295] Bluetooth: hci0: command 0x0c20 tx timeout [ 172.718874][ T40] audit: type=1400 audit(172.617:753): avc: denied { setopt } for pid=12120 comm="syz.1.2056" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 172.867194][ T5949] Bluetooth: hci3: ACL packet for unknown connection handle 200 [ 172.949674][T12131] Invalid option length (1025206) for dns_resolver key [ 173.098389][T12143] loop9: detected capacity change from 0 to 8 [ 173.100791][T12143] loop9: [CUMANA/ADFS] p1 [ADFS] p1 [ 173.102503][T12143] loop9: partition table partially beyond EOD, truncated [ 173.105688][T12143] loop9: p1 size 81768186 extends beyond EOD, truncated [ 173.217074][T12122] loop9: [CUMANA/ADFS] p1 [ADFS] p1 [ 173.219157][T12122] loop9: partition table partially beyond EOD, truncated [ 173.221810][T12122] loop9: p1 size 81768186 extends beyond EOD, truncated [ 173.284356][T12157] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2066'. [ 173.407686][T12160] geneve2: entered promiscuous mode [ 173.409535][T12160] geneve2: entered allmulticast mode [ 173.436796][T12143] loop9: [CUMANA/ADFS] p1 [ADFS] p1 [ 173.438268][T12143] loop9: partition table partially beyond EOD, truncated [ 173.440154][T12143] loop9: p1 size 81768186 extends beyond EOD, truncated [ 173.501457][T12161] team0: No ports can be present during mode change [ 173.761639][T12168] overlayfs: failed to clone lowerpath [ 173.773434][ T1456] usb 7-1: new high-speed USB device number 16 using dummy_hcd [ 173.923439][ T1456] usb 7-1: Using ep0 maxpacket: 16 [ 173.927307][ T1456] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87 [ 173.930499][ T1456] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 173.935297][ T1456] usb 7-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89 [ 173.971513][ T1456] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 173.979990][ T1456] usb 7-1: Product: syz [ 173.981194][ T1456] usb 7-1: Manufacturer: syz [ 173.982444][ T1456] usb 7-1: SerialNumber: syz [ 173.985719][ T1456] usb 7-1: config 0 descriptor?? [ 174.092791][ T40] audit: type=1400 audit(173.987:754): avc: denied { connect } for pid=12183 comm="syz.3.2078" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 174.098366][ T40] audit: type=1400 audit(173.997:755): avc: denied { bind } for pid=12183 comm="syz.3.2078" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 174.189396][ T1456] appledisplay 7-1:0.0: Error while getting initial brightness: -71 [ 174.192035][ T1456] appledisplay 7-1:0.0: probe with driver appledisplay failed with error -71 [ 174.196166][ T1456] usb 7-1: USB disconnect, device number 16 [ 174.314458][T12188] ptrace attach of "/syz-executor exec"[5937] was attempted by ""[12188] [ 174.317433][ T40] audit: type=1400 audit(174.217:756): avc: denied { accept } for pid=12183 comm="syz.3.2078" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 174.333808][ T40] audit: type=1400 audit(174.217:757): avc: denied { getopt } for pid=12189 comm="syz.1.2080" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 174.415521][ T40] audit: type=1400 audit(174.317:758): avc: denied { cmd } for pid=12191 comm="syz.1.2081" path="socket:[49912]" dev="sockfs" ino=49912 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 174.722281][T12200] hub 6-0:1.0: USB hub found [ 174.724404][T12200] hub 6-0:1.0: 1 port detected [ 174.993449][ T9] usb 7-1: new high-speed USB device number 17 using dummy_hcd [ 175.107494][ T40] audit: type=1400 audit(175.007:759): avc: denied { getopt } for pid=12206 comm="syz.3.2086" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 175.148147][ T9] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 175.151016][ T9] usb 7-1: config 0 interface 0 has no altsetting 0 [ 175.156402][ T9] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 175.159059][ T9] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 175.161448][ T9] usb 7-1: Product: syz [ 175.162695][ T9] usb 7-1: Manufacturer: syz [ 175.164305][ T9] usb 7-1: SerialNumber: syz [ 175.167415][ T9] usb 7-1: config 0 descriptor?? [ 175.179326][ T9] usb 7-1: selecting invalid altsetting 0 [ 175.373100][ T24] usb 7-1: USB disconnect, device number 17 [ 176.268413][T12229] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.279375][ T5949] block nbd1: Receive control failed (result -104) [ 176.280235][T12219] block nbd1: shutting down sockets [ 176.438314][T12229] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.638729][T12229] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.794383][T12229] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.953490][T12229] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 176.958083][T12229] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 176.962694][T12229] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 176.967220][T12229] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 177.376004][ T40] audit: type=1400 audit(177.277:760): avc: denied { connect } for pid=12261 comm="syz.1.2103" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 177.422994][T12260] virtio-fs: tag <(null)> not found [ 177.795501][ T40] audit: type=1400 audit(177.687:761): avc: denied { create } for pid=12304 comm="syz.2.2119" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 178.043445][ T40] audit: type=1400 audit(177.927:762): avc: denied { listen } for pid=12304 comm="syz.2.2119" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 178.053382][ T40] audit: type=1400 audit(177.927:763): avc: denied { connect } for pid=12304 comm="syz.2.2119" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 178.375663][T12314] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2120'. [ 178.378292][T12314] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2120'. [ 179.085532][T12331] usb 2-1: USB disconnect, device number 2 [ 179.204847][ T40] kauditd_printk_skb: 5 callbacks suppressed [ 179.204858][ T40] audit: type=1400 audit(179.107:769): avc: denied { write } for pid=12328 comm="syz.3.2127" path="socket:[51546]" dev="sockfs" ino=51546 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 179.548431][T12352] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2135'. [ 179.573189][T12353] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 179.670515][ T40] audit: type=1400 audit(179.567:770): avc: denied { remove_name } for pid=12351 comm="syz.1.2135" name="file0" dev="9p" ino=36831263 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 179.677257][ T40] audit: type=1400 audit(179.567:771): avc: denied { rename } for pid=12351 comm="syz.1.2135" name="file0" dev="9p" ino=36831263 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 179.714812][T12350] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 179.844578][T12350] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 179.996089][T12350] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 180.076124][ T40] audit: type=1400 audit(179.977:772): avc: denied { name_bind } for pid=12364 comm="syz.1.2138" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1 [ 180.109462][T12350] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 180.324304][T12350] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.329439][T12350] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.334783][T12350] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.339368][T12350] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.459741][ T40] audit: type=1400 audit(180.357:773): avc: denied { mount } for pid=12371 comm="syz.1.2140" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 180.460986][T12376] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 180.686066][T12378] lo speed is unknown, defaulting to 1000 [ 180.688812][T12378] lo speed is unknown, defaulting to 1000 [ 181.002436][T12395] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2145'. [ 181.012081][T12396] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2143'. [ 181.141698][ T40] audit: type=1400 audit(181.037:774): avc: denied { create } for pid=12404 comm="syz.0.2148" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 181.280674][ T40] audit: type=1400 audit(181.177:775): avc: denied { unmount } for pid=5936 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 181.815744][T12420] ubi31: attaching mtd0 [ 181.818770][T12420] ubi31: scanning is finished [ 181.821507][T12420] ubi31: empty MTD device detected [ 181.921902][T12420] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB) [ 181.924173][T12420] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 181.926193][T12420] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 181.928128][T12420] ubi31: VID header offset: 64 (aligned 64), data offset: 128 [ 181.930166][T12420] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 181.932109][T12420] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 181.934537][T12420] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1825923272 [ 181.937356][T12420] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 181.940155][T12422] ubi31: background thread "ubi_bgt31d" started, PID 12422 [ 182.687706][T12450] ptrace attach of "/syz-executor exec"[5943] was attempted by ""[12450] [ 183.133417][ T5295] Bluetooth: hci3: command 0x0406 tx timeout [ 183.179718][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.181903][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.184542][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.186798][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.189011][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.191194][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.193665][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.195886][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.198117][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.200305][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.202466][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.205905][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.208214][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.210396][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.212594][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.215077][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.217343][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.219829][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.222314][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.225267][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.227496][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.229662][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.231836][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.234239][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.236423][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.238587][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.240764][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.242930][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.245245][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.247450][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.249603][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.251773][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.254004][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.256273][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.258459][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.260666][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.262850][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.265105][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.267312][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.269489][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.271684][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.273943][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.276138][ T29] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 183.280241][ T29] hid-generic 0000:007F:FFFFFFFE.0005: hidraw0: HID v0.00 Device [syz1] on syz0 [ 183.467692][T12467] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2167'. [ 183.470167][T12467] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2167'. [ 184.588128][T12498] siw: device registration error -23 [ 184.933871][T12460] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 185.235814][T12503] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode [ 185.241259][T12505] batman_adv: batadv0: Interface deactivated: dummy0 [ 185.243163][T12505] batman_adv: batadv0: Removing interface: dummy0 [ 185.246787][T12505] bridge_slave_0: left allmulticast mode [ 185.248550][T12505] bridge_slave_0: left promiscuous mode [ 185.250240][T12505] bridge0: port 1(bridge_slave_0) entered disabled state [ 185.253832][T12505] ?: left allmulticast mode [ 185.255239][T12505] ?: left promiscuous mode [ 185.256735][T12505] bridge0: port 2(?) entered disabled state [ 185.261627][T12505] bond0: (slave bond_slave_0): Releasing backup interface [ 185.277401][T12503] netlink: 'syz.3.2177': attribute type 10 has an invalid length. [ 185.316206][T12505] bond0: (slave bond_slave_1): Releasing backup interface [ 185.354802][T12505] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 185.356981][T12505] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 185.359942][T12505] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 185.362085][T12505] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 185.367246][T12505] bond0: (slave wlan1): Releasing backup interface [ 185.414405][T12505] tipc: Resetting bearer [ 185.418520][T12505] bond8: (slave bond9): Releasing backup interface [ 185.468164][ T24] lo speed is unknown, defaulting to 1000 [ 185.478832][T12503] mac80211_hwsim hwsim9 wlan1: left allmulticast mode [ 185.483419][T12503] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 185.775356][T12522] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2182'. [ 185.781297][T12522] bridge0: port 2(bridge_slave_1) entered disabled state [ 186.594083][T12522] bridge_slave_1 (unregistering): left promiscuous mode [ 186.596228][T12522] bridge0: port 2(bridge_slave_1) entered disabled state [ 187.198976][ T40] audit: type=1400 audit(187.097:776): avc: denied { shutdown } for pid=12543 comm="syz.0.2189" lport=6 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 187.427662][ T40] audit: type=1326 audit(187.327:777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12549 comm="syz.3.2191" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ee118d169 code=0x7ffc0000 [ 187.440238][ T40] audit: type=1326 audit(187.337:778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12549 comm="syz.3.2191" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ee118d169 code=0x7ffc0000 [ 187.459339][ T40] audit: type=1400 audit(187.357:779): avc: denied { bind } for pid=12552 comm="syz.0.2192" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 187.490449][ T40] audit: type=1326 audit(187.387:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12549 comm="syz.3.2191" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ee118d169 code=0x7ffc0000 [ 187.496772][ T40] audit: type=1326 audit(187.387:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12549 comm="syz.3.2191" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ee118d169 code=0x7ffc0000 [ 187.502831][ T40] audit: type=1326 audit(187.387:782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12549 comm="syz.3.2191" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ee118d169 code=0x7ffc0000 [ 187.509120][ T40] audit: type=1326 audit(187.387:783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12549 comm="syz.3.2191" exe="/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f3ee118d169 code=0x7ffc0000 [ 187.514922][T12559] lo speed is unknown, defaulting to 1000 [ 187.515630][ T40] audit: type=1326 audit(187.387:784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12549 comm="syz.3.2191" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ee118d169 code=0x7ffc0000 [ 187.517494][T12559] lo speed is unknown, defaulting to 1000 [ 187.522819][ T40] audit: type=1326 audit(187.387:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12549 comm="syz.3.2191" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3ee118d169 code=0x7ffc0000 [ 187.841250][T12575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 187.844456][T12575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 187.847199][T12575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 187.850110][T12575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 187.852833][T12575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 187.855830][T12575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 188.196518][T12574] wg1: entered promiscuous mode [ 188.197991][T12574] wg1: entered allmulticast mode [ 189.495337][ T5949] Bluetooth: hci3: ACL packet for unknown connection handle 201 [ 189.742032][T12646] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2227'. [ 190.305611][T12662] /dev/sr0: Can't open blockdev [ 190.773469][ T9] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 190.915123][T12681] : entered promiscuous mode [ 190.965694][ T9] usb 6-1: Using ep0 maxpacket: 8 [ 191.106293][ T9] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 191.146130][ T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 191.152316][ T9] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 191.155751][ T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 191.160770][ T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 191.273499][ T9] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 191.298656][ T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 191.306674][ T9] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 191.313565][ T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 191.317820][ T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 191.343807][ T9] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 191.394885][ T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 191.400837][ T9] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 191.410314][ T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 191.416740][ T9] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 191.480082][ T9] usb 6-1: string descriptor 0 read error: -22 [ 191.482365][ T9] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 191.485417][ T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 191.506763][ T9] adutux 6-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 191.728601][T12694] netlink: 'syz.0.2243': attribute type 7 has an invalid length. [ 191.730815][T12694] netlink: 212424 bytes leftover after parsing attributes in process `syz.0.2243'. [ 191.738121][T12694] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2243'. [ 191.741206][T12694] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2243'. [ 193.775395][ T65] usb 6-1: USB disconnect, device number 11 [ 194.321658][ T40] kauditd_printk_skb: 47 callbacks suppressed [ 194.321669][ T40] audit: type=1400 audit(194.217:833): avc: denied { execute } for pid=12758 comm="syz-executor" name="syz-executor" dev="sda1" ino=1924 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 194.330038][ T40] audit: type=1400 audit(194.217:834): avc: denied { execute_no_trans } for pid=12758 comm="syz-executor" path="/syz-executor" dev="sda1" ino=1924 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 194.414237][ T5295] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 194.417950][ T5295] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 194.420968][ T5295] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 194.423907][ T5295] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 194.426012][ T5295] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 194.428429][ T5295] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 194.434079][ T40] audit: type=1400 audit(194.337:835): avc: denied { mounton } for pid=12759 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 194.448250][T12759] lo speed is unknown, defaulting to 1000 [ 194.450482][T12759] lo speed is unknown, defaulting to 1000 [ 194.519384][T12759] chnl_net:caif_netlink_parms(): no params data found [ 194.560159][T12759] bridge0: port 1(bridge_slave_0) entered blocking state [ 194.562144][T12759] bridge0: port 1(bridge_slave_0) entered disabled state [ 194.565752][T12759] bridge_slave_0: entered allmulticast mode [ 194.567916][T12759] bridge_slave_0: entered promiscuous mode [ 194.570270][T12759] bridge0: port 2(bridge_slave_1) entered blocking state [ 194.572265][T12759] bridge0: port 2(bridge_slave_1) entered disabled state [ 194.574685][T12759] bridge_slave_1: entered allmulticast mode [ 194.577026][T12759] bridge_slave_1: entered promiscuous mode [ 194.601108][T12759] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 194.610584][T12759] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 194.695112][T12770] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 194.706992][T12770] kvm: pic: level sensitive irq not supported [ 194.707406][T12770] kvm: pic: non byte read [ 194.757413][T12770] kvm: pic: level sensitive irq not supported [ 194.757778][T12770] kvm: pic: non byte read [ 194.840215][ T40] audit: type=1400 audit(194.737:836): avc: denied { connect } for pid=12778 comm="syz.2.2270" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 194.942437][ T6536] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 194.960399][T12759] team0: Port device team_slave_0 added [ 194.965013][T12759] team0: Port device team_slave_1 added [ 194.981167][T12759] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 194.983222][T12759] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 194.992443][T12759] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 194.997182][T12759] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 194.999549][T12759] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 195.007866][T12759] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 195.011954][ T6536] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 195.038844][T12759] hsr_slave_0: entered promiscuous mode [ 195.040906][T12759] hsr_slave_1: entered promiscuous mode [ 195.043096][T12759] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 195.043898][ T40] audit: type=1400 audit(194.947:837): avc: denied { append } for pid=12778 comm="syz.2.2270" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 195.047066][T12759] Cannot create hsr debugfs directory [ 195.151409][ T9] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 195.155715][ T6536] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 195.217166][ T6536] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 195.304726][ T9] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 195.307885][ T9] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 195.311265][ T9] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 195.314489][ T9] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 195.318579][ T9] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 195.324293][ T9] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 195.327876][ T9] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 195.330921][ T9] usb 6-1: Product: syz [ 195.332517][ T9] usb 6-1: Manufacturer: syz [ 195.337478][ T9] cdc_wdm 6-1:1.0: skipping garbage [ 195.339498][ T9] cdc_wdm 6-1:1.0: skipping garbage [ 195.343722][ T9] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device [ 195.347201][ T9] cdc_wdm 6-1:1.0: Unknown control protocol [ 195.381127][ T6536] bridge_slave_1: left promiscuous mode [ 195.384353][ T6536] bridge0: port 2(bridge_slave_1) entered disabled state [ 195.389739][ T6536] bridge0: port 1(bridge_slave_0) entered disabled state [ 195.540290][ T24] usb 6-1: USB disconnect, device number 12 [ 196.585745][ T5295] Bluetooth: hci4: command tx timeout [ 196.975831][ T40] audit: type=1326 audit(196.877:838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12818 comm="syz.1.2281" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcce678d169 code=0x7ffc0000 [ 196.981982][ T40] audit: type=1326 audit(196.877:839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12818 comm="syz.1.2281" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcce678d169 code=0x7ffc0000 [ 196.988510][ T40] audit: type=1326 audit(196.877:840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12818 comm="syz.1.2281" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcce678d169 code=0x7ffc0000 [ 196.994751][ T40] audit: type=1326 audit(196.877:841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12818 comm="syz.1.2281" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcce678d169 code=0x7ffc0000 [ 197.000790][ T40] audit: type=1326 audit(196.877:842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12818 comm="syz.1.2281" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcce678d169 code=0x7ffc0000 [ 197.173480][ T24] usb 7-1: new high-speed USB device number 18 using dummy_hcd [ 197.333494][ T24] usb 7-1: Using ep0 maxpacket: 8 [ 197.336723][ T24] usb 7-1: config 0 has no interfaces? [ 197.341573][ T24] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 197.344336][ T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 197.346860][ T24] usb 7-1: Product: syz [ 197.348279][ T24] usb 7-1: Manufacturer: syz [ 197.349585][ T24] usb 7-1: SerialNumber: syz [ 197.352004][ T24] usb 7-1: config 0 descriptor?? [ 197.562306][ T8514] usb 7-1: USB disconnect, device number 18 [ 197.605366][ T6536] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 197.674776][ T6536] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 197.734068][ T6536] bond0 (unregistering): Released all slaves [ 197.738066][ T6536] bond1 (unregistering): Released all slaves [ 197.743047][ T6536] bond2 (unregistering): Released all slaves [ 197.747139][ T6536] bond3 (unregistering): Released all slaves [ 197.751369][ T6536] bond4 (unregistering): Released all slaves [ 197.755660][ T6536] bond5 (unregistering): Released all slaves [ 197.759829][ T6536] bond6 (unregistering): Released all slaves [ 197.766181][ T6536] bond7 (unregistering): (slave bond8): Releasing backup interface [ 197.814231][ T6536] bond7 (unregistering): Released all slaves [ 198.373435][ T8514] usb 7-1: new high-speed USB device number 19 using dummy_hcd [ 198.543396][ T8514] usb 7-1: Using ep0 maxpacket: 32 [ 198.546101][ T8514] usb 7-1: config 89 has an invalid interface number: 228 but max is 1 [ 198.548383][ T8514] usb 7-1: config 89 has an invalid interface number: 251 but max is 1 [ 198.550636][ T8514] usb 7-1: config 89 has no interface number 0 [ 198.552418][ T8514] usb 7-1: config 89 has no interface number 1 [ 198.554198][ T8514] usb 7-1: config 89 interface 228 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 198.557248][ T8514] usb 7-1: config 89 interface 228 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 198.560262][ T8514] usb 7-1: config 89 interface 251 altsetting 19 has an endpoint descriptor with address 0xB1, changing to 0x81 [ 198.564691][ T8514] usb 7-1: config 89 interface 251 altsetting 19 endpoint 0x81 has an invalid bInterval 130, changing to 11 [ 198.567832][ T8514] usb 7-1: config 89 interface 251 altsetting 19 endpoint 0x81 has invalid maxpacket 16765, setting to 1024 [ 198.571156][ T8514] usb 7-1: config 89 interface 251 altsetting 19 has a duplicate endpoint with address 0xF, skipping [ 198.574232][ T8514] usb 7-1: config 89 interface 251 altsetting 19 has an invalid descriptor for endpoint zero, skipping [ 198.577230][ T8514] usb 7-1: config 89 interface 251 altsetting 19 has 7 endpoint descriptors, different from the interface descriptor's value: 6 [ 198.580798][ T8514] usb 7-1: config 89 interface 251 has no altsetting 0 [ 198.585038][ T8514] usb 7-1: New USB device found, idVendor=07d1, idProduct=3e01, bcdDevice=2e.9e [ 198.587565][ T8514] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 198.589742][ T8514] usb 7-1: Product: syz [ 198.590902][ T8514] usb 7-1: Manufacturer: syz [ 198.592210][ T8514] usb 7-1: SerialNumber: syz [ 198.644363][ T6536] bond8 (unregistering): Released all slaves [ 198.648871][ T6536] bond9 (unregistering): Released all slaves [ 198.652630][ T6536] bond10 (unregistering): Released all slaves [ 198.654572][ T5295] Bluetooth: hci4: command tx timeout [ 198.657530][ T6536] bond11 (unregistering): Released all slaves [ 198.661468][ T6536] bond12 (unregistering): Released all slaves [ 198.704047][T12831] lo speed is unknown, defaulting to 1000 [ 198.707476][T12831] lo speed is unknown, defaulting to 1000 [ 198.721645][ T6536] : left promiscuous mode [ 198.800959][ T8514] option 7-1:89.228: GSM modem (1-port) converter detected [ 198.809424][ T8514] usb 7-1: USB disconnect, device number 19 [ 198.815310][ T8514] option 7-1:89.228: device disconnected [ 198.856919][ T6536] tipc: Left network mode [ 199.441320][T12759] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 199.484635][T12759] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 199.488996][T12759] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 199.492186][T12759] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 199.529467][T12759] 8021q: adding VLAN 0 to HW filter on device bond0 [ 199.539975][T12759] 8021q: adding VLAN 0 to HW filter on device team0 [ 199.636044][ T40] kauditd_printk_skb: 55 callbacks suppressed [ 199.636057][ T40] audit: type=1400 audit(199.537:898): avc: denied { write } for pid=12858 comm="syz.1.2296" lport=46419 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1 [ 199.704832][ T71] bridge0: port 1(bridge_slave_0) entered blocking state [ 199.706829][ T71] bridge0: port 1(bridge_slave_0) entered forwarding state [ 199.711521][ T71] bridge0: port 2(bridge_slave_1) entered blocking state [ 199.713569][ T71] bridge0: port 2(bridge_slave_1) entered forwarding state [ 199.790449][T12759] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 199.855042][T12759] veth0_vlan: entered promiscuous mode [ 199.859508][T12759] veth1_vlan: entered promiscuous mode [ 199.871064][T12759] veth0_macvtap: entered promiscuous mode [ 200.066816][T12759] veth1_macvtap: entered promiscuous mode [ 200.072918][T12873] 9pnet_virtio: no channels available for device syz [ 200.074769][T12759] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 200.078460][T12759] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.081190][T12759] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 200.084120][T12759] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.086869][T12759] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 200.089741][T12759] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.092940][T12759] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 200.230058][T12759] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 200.233184][T12759] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.236403][T12759] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 200.239395][T12759] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.242143][T12759] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 200.245407][T12759] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.249449][T12759] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 200.420997][ T6536] hsr_slave_0: left promiscuous mode [ 200.423108][ T6536] hsr_slave_1: left promiscuous mode [ 200.424921][ T6536] batman_adv: batadv0: Interface deactivated: dummy0 [ 200.426792][ T6536] batman_adv: batadv0: Removing interface: dummy0 [ 200.428963][ T6536] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 200.430994][ T6536] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 200.433392][ T6536] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 200.435434][ T6536] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 200.451104][ T6536] veth1_macvtap: left promiscuous mode [ 200.452925][ T6536] veth0_macvtap: left promiscuous mode [ 200.454969][ T6536] veth1_vlan: left promiscuous mode [ 200.456531][ T6536] veth0_vlan: left promiscuous mode [ 200.512416][ T40] audit: type=1400 audit(200.407:899): avc: denied { read } for pid=12874 comm="syz.2.2300" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 200.733467][ T5295] Bluetooth: hci4: command tx timeout [ 201.069584][T12902] nftables ruleset with unbound chain [ 201.134248][ T6536] pimreg (unregistering): left allmulticast mode [ 202.813447][ T5295] Bluetooth: hci4: command tx timeout [ 208.346343][ T6536] team0 (unregistering): Port device team_slave_1 removed [ 208.836870][ T6536] team0 (unregistering): Port device team_slave_0 removed [ 214.775353][ T1143] smc: removing ib device sz1 [ 214.779043][ T835] lo speed is unknown, defaulting to 1000 [ 214.868120][T12759] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 214.871280][T12759] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 214.875053][T12759] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 214.878214][T12759] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 215.027943][ T6532] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 215.030141][ T6532] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 215.045867][ T1143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 215.048776][ T1143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 215.066107][ T40] audit: type=1400 audit(214.967:900): avc: denied { mounton } for pid=12759 comm="syz-executor" path="/syzkaller.YqjGaa/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 215.076886][ T40] audit: type=1400 audit(214.967:901): avc: denied { mounton } for pid=12759 comm="syz-executor" path="/syzkaller.YqjGaa/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=55297 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 215.099946][ T40] audit: type=1400 audit(214.997:902): avc: denied { mounton } for pid=12759 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 215.169164][T12961] 9pnet_virtio: no channels available for device syz [ 215.234367][T12967] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2333'. [ 215.258219][ T8376] tipc: Resetting bearer [ 215.336191][ T5949] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 215.339530][ T5949] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 215.342066][ T5949] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 215.344617][ T5949] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 215.347236][ T5949] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 215.349318][ T5949] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 215.364062][ T8376] tipc: Disabling bearer [ 215.457023][T12972] lo speed is unknown, defaulting to 1000 [ 215.587107][T12972] chnl_net:caif_netlink_parms(): no params data found [ 215.663331][T12972] bridge0: port 1(bridge_slave_0) entered blocking state [ 215.665461][T12972] bridge0: port 1(bridge_slave_0) entered disabled state [ 215.668418][T12972] bridge_slave_0: entered allmulticast mode [ 215.670981][T12972] bridge_slave_0: entered promiscuous mode [ 215.674156][T12972] bridge0: port 2(bridge_slave_1) entered blocking state [ 215.676597][T12972] bridge0: port 2(bridge_slave_1) entered disabled state [ 215.679411][T12972] bridge_slave_1: entered allmulticast mode [ 215.682091][T12972] bridge_slave_1: entered promiscuous mode [ 215.706858][T12972] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 215.711249][T12972] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 215.753898][T12972] team0: Port device team_slave_0 added [ 215.811408][T12972] team0: Port device team_slave_1 added [ 215.833587][T12972] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 215.835610][T12972] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 215.842567][T12972] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 215.846315][T12972] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 215.848321][T12972] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 215.855718][T12972] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 215.878650][T12972] hsr_slave_0: entered promiscuous mode [ 215.880615][T12972] hsr_slave_1: entered promiscuous mode [ 215.882452][T12972] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 215.884729][T12972] Cannot create hsr debugfs directory [ 215.932277][T12972] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 216.029409][T12972] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 216.091968][T12985] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 216.159390][T12972] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 216.227231][T12972] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 216.410153][T12972] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 216.414525][T12972] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 216.419074][T12972] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 216.422876][T12972] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 216.461924][T12972] 8021q: adding VLAN 0 to HW filter on device bond0 [ 216.477262][T12972] 8021q: adding VLAN 0 to HW filter on device team0 [ 216.481476][T10596] bridge0: port 1(bridge_slave_0) entered blocking state [ 216.483474][T10596] bridge0: port 1(bridge_slave_0) entered forwarding state [ 216.488511][ T1187] bridge0: port 2(bridge_slave_1) entered blocking state [ 216.491084][ T1187] bridge0: port 2(bridge_slave_1) entered forwarding state [ 216.572707][T12972] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 216.589113][T12972] veth0_vlan: entered promiscuous mode [ 216.593517][T12972] veth1_vlan: entered promiscuous mode [ 216.605749][T12972] veth0_macvtap: entered promiscuous mode [ 216.608645][T12972] veth1_macvtap: entered promiscuous mode [ 216.614700][T12972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 216.617618][T12972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.620297][T12972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 216.623145][T12972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.626745][T12972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 216.629578][T12972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.632928][T12972] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 216.639286][T12972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 216.643146][T12972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.646765][T12972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 216.650633][T12972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.656376][T12972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 216.660134][T12972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.664270][T12972] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 216.668158][T12972] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.670809][T12972] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.673218][T12972] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.676731][T12972] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.706160][ T6540] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 216.709093][ T6540] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.718577][ T1143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 216.720997][ T1143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.906415][ T5949] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 216.911163][ T5949] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 216.914202][ T5949] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 216.917243][ T5949] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 216.925400][ T5949] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 216.933448][ T5949] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 217.040029][T13005] lo speed is unknown, defaulting to 1000 [ 217.116111][T13005] chnl_net:caif_netlink_parms(): no params data found [ 217.175174][T13025] wg1: entered promiscuous mode [ 217.176708][T13025] wg1: entered allmulticast mode [ 217.191349][T13005] bridge0: port 1(bridge_slave_0) entered blocking state [ 217.200325][T13005] bridge0: port 1(bridge_slave_0) entered disabled state [ 217.202387][T13005] bridge_slave_0: entered allmulticast mode [ 217.205168][T13005] bridge_slave_0: entered promiscuous mode [ 217.210147][T13005] bridge0: port 2(bridge_slave_1) entered blocking state [ 217.212271][T13005] bridge0: port 2(bridge_slave_1) entered disabled state [ 217.216461][T13005] bridge_slave_1: entered allmulticast mode [ 217.218555][T13005] bridge_slave_1: entered promiscuous mode [ 217.240305][T13005] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 217.245695][T13005] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 217.268351][T13005] team0: Port device team_slave_0 added [ 217.271131][T13005] team0: Port device team_slave_1 added [ 217.293143][T13005] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 217.296771][T13005] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 217.306136][T13005] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 217.310466][T13005] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 217.312449][T13005] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 217.319716][T13005] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 217.348465][T13005] hsr_slave_0: entered promiscuous mode [ 217.350776][T13005] hsr_slave_1: entered promiscuous mode [ 217.353242][T13005] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 217.355759][T13005] Cannot create hsr debugfs directory [ 217.373494][ T5949] Bluetooth: hci3: command tx timeout [ 217.485764][T13005] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 217.714786][T13005] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 217.958385][T13005] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 218.042826][T13032] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 218.084767][T13005] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 218.575653][T13005] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 218.581001][T13005] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 218.594662][T13005] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 218.599860][T13005] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 218.627592][T13005] 8021q: adding VLAN 0 to HW filter on device bond0 [ 218.635409][T13005] 8021q: adding VLAN 0 to HW filter on device team0 [ 218.641614][T11003] bridge0: port 1(bridge_slave_0) entered blocking state [ 218.644225][T11003] bridge0: port 1(bridge_slave_0) entered forwarding state [ 218.647454][T12995] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 218.655004][ T1187] bridge0: port 2(bridge_slave_1) entered blocking state [ 218.657561][ T1187] bridge0: port 2(bridge_slave_1) entered forwarding state [ 218.731833][T13005] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 218.749179][T13005] veth0_vlan: entered promiscuous mode [ 218.753237][T13005] veth1_vlan: entered promiscuous mode [ 218.765221][T13005] veth0_macvtap: entered promiscuous mode [ 218.769042][T13005] veth1_macvtap: entered promiscuous mode [ 218.776018][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 218.779774][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 218.782482][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 218.787070][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 218.790479][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 218.794398][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 218.797818][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 218.801464][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 218.806895][T13005] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 218.814595][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 218.817991][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 218.820857][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 218.823983][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 218.827223][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 218.830059][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 218.832725][T13005] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 218.835985][T13005] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 218.840157][T13005] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 218.844963][T13005] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 218.847504][T13005] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 218.849945][T13005] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 218.852338][T13005] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 218.884094][ T6540] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 218.888209][ T6540] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 218.897982][ T1143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 218.901035][ T1143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 218.973610][ T5949] Bluetooth: hci0: command tx timeout [ 219.453456][ T5949] Bluetooth: hci3: command tx timeout [ 219.513982][T13080] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 219.567063][T13075] wg1: entered promiscuous mode [ 219.568519][T13075] wg1: entered allmulticast mode [ 219.809977][T13088] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 219.897903][T13090] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 220.438952][T13110] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 220.897596][T13125] wg1: entered promiscuous mode [ 220.899045][T13125] wg1: entered allmulticast mode [ 220.989689][T13093] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 221.063794][ T5949] Bluetooth: hci0: command tx timeout [ 221.183076][T13133] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 221.221493][T13135] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 221.293865][T13141] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 221.408454][T13154] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 221.473965][T13158] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 221.502623][T13162] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 221.543596][ T5949] Bluetooth: hci3: command tx timeout [ 221.725056][T13176] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 221.855074][T13184] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 222.056929][T13191] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 222.152062][T13197] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 222.217270][T13203] netlink: 128 bytes leftover after parsing attributes in process `syz.3.2413'. [ 222.374348][T13210] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 222.420436][T13214] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 222.450850][T13216] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 222.707191][T13241] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 222.776441][T13243] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 222.906745][T13253] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 223.119767][T13263] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 223.133484][ T5949] Bluetooth: hci0: command tx timeout [ 223.204062][T13265] overlayfs: failed to get index nlink (file1/bus, err=-61) [ 223.625053][ T5949] Bluetooth: hci3: command tx timeout [ 223.658356][T13286] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 223.927301][T13308] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 223.935761][T13310] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 224.278594][T13333] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 224.790760][T13360] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 225.213432][ T5949] Bluetooth: hci0: command tx timeout [ 225.768022][T13416] overlayfs: failed to resolve './file1': -2 [ 225.944325][T13445] overlayfs: failed to resolve './file1': -2 [ 227.071755][T13471] overlayfs: failed to resolve './file1': -2 [ 227.185181][ T40] audit: type=1400 audit(227.087:903): avc: denied { append } for pid=13478 comm="syz.3.2533" name="loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 227.234018][T13486] overlayfs: failed to resolve './file1': -2 [ 227.276646][T13493] overlayfs: failed to resolve './file0': -2 [ 227.464368][T13504] team0: Device gtp0 is of different type [ 227.849930][T13516] overlayfs: failed to resolve './file1': -2 [ 227.854095][T13518] overlayfs: failed to resolve './file0': -2 [ 227.917752][ T40] audit: type=1326 audit(227.817:904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13529 comm="syz.2.2556" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97e58d169 code=0x7ffc0000 [ 227.925189][ T40] audit: type=1326 audit(227.817:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13529 comm="syz.2.2556" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97e58d169 code=0x7ffc0000 [ 227.932339][ T40] audit: type=1326 audit(227.817:906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13529 comm="syz.2.2556" exe="/syz-executor" sig=0 arch=c000003e syscall=459 compat=0 ip=0x7fd97e58d169 code=0x7ffc0000 [ 227.942250][ T40] audit: type=1326 audit(227.817:907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13529 comm="syz.2.2556" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97e58d169 code=0x7ffc0000 [ 227.949190][ T40] audit: type=1326 audit(227.817:908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13529 comm="syz.2.2556" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97e58d169 code=0x7ffc0000 [ 228.328259][T13542] overlayfs: failed to resolve './file1': -2 [ 228.350358][T13544] overlayfs: failed to resolve './file0': -2 [ 228.464278][T13564] overlayfs: failed to resolve './file0': -2 [ 228.507917][T13568] overlayfs: failed to resolve './file0': -2 [ 228.640673][T13585] overlayfs: failed to resolve './file0': -2 [ 228.655638][T13587] overlayfs: failed to resolve './file0': -2 [ 228.728190][T13597] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2586'. [ 228.835878][T13609] overlayfs: failed to resolve './file0': -2 [ 228.866894][T13612] overlayfs: failed to resolve './file0': -2 [ 228.894792][ T5295] Bluetooth: hci0: command 0x0405 tx timeout [ 228.912823][T13616] overlayfs: failed to resolve './file1': -2 [ 228.959169][T13621] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2596'. [ 229.036324][T13629] overlayfs: failed to resolve './file0': -2 [ 229.066105][T13633] overlayfs: failed to resolve './file1': -2 [ 229.080569][T13635] overlayfs: failed to resolve './file1': -2 [ 229.261686][T13647] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 229.324506][ T836] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 229.366599][T13651] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2610'. [ 229.396089][T13653] geneve2: entered promiscuous mode [ 229.397583][T13653] geneve2: entered allmulticast mode [ 229.420387][T13655] overlayfs: failed to resolve './file0': -2 [ 229.455263][T13658] overlayfs: failed to resolve './file1': -2 [ 229.499087][T13660] overlayfs: failed to resolve './file1': -2 [ 230.372615][T13674] geneve2: entered promiscuous mode [ 230.372681][T13675] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2620'. [ 230.374304][T13674] geneve2: entered allmulticast mode [ 230.398931][T13677] overlayfs: failed to resolve './file0': -2 [ 230.405517][T13679] overlayfs: failed to resolve './file1': -2 [ 230.431047][T13684] overlayfs: failed to resolve './file0': -2 [ 230.495363][ T5949] Bluetooth: hci0: hardware error 0x07 [ 230.508120][T13696] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2631'. [ 230.539476][T13700] overlayfs: failed to resolve './file1': -2 [ 230.625504][T13708] overlayfs: failed to resolve './file0': -2 [ 230.658433][T13716] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2641'. [ 230.660587][T13718] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2642'. [ 230.688131][T13722] overlayfs: failed to resolve './file1': -2 [ 230.780131][T13725] lo speed is unknown, defaulting to 1000 [ 230.828491][T13733] overlayfs: failed to resolve './file0': -2 [ 230.955208][T13740] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2651'. [ 231.087073][T13747] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2653'. [ 231.149007][T13749] 9pnet_fd: Insufficient options for proto=fd [ 231.155010][T13743] openvswitch: netlink: Actions may not be safe on all matching packets [ 231.160347][T13743] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2650'. [ 231.267142][T13752] overlayfs: failed to resolve './file1': -2 [ 231.296431][ T836] usb 6-1: new high-speed USB device number 13 using dummy_hcd [ 231.337115][T13758] overlayfs: failed to resolve './file0': -2 [ 231.473565][ T836] usb 6-1: Using ep0 maxpacket: 32 [ 231.478030][ T836] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 231.481182][ T836] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 231.484289][ T836] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 231.487622][ T836] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 231.496743][ T836] usb 6-1: config 0 descriptor?? [ 231.497183][T13768] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 231.771406][T13781] overlayfs: failed to resolve './file0': -2 [ 231.923764][ T836] savu 0003:1E7D:2D5A.0006: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.1-1/input0 [ 232.186511][ T836] usb 6-1: USB disconnect, device number 13 [ 232.294155][T13805] overlayfs: failed to resolve './file0': -2 [ 232.813376][ T5949] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 232.828066][T13837] overlayfs: failed to resolve './file1': -2 [ 233.133468][ T24] usb 6-1: new high-speed USB device number 14 using dummy_hcd [ 233.304582][ T24] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 233.307070][ T24] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 233.309838][ T24] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 233.312305][ T24] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 233.315666][ T24] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 233.319760][ T24] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 233.323396][ T24] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 233.326487][ T24] usb 6-1: Product: syz [ 233.328579][ T24] usb 6-1: Manufacturer: syz [ 233.342487][ T24] cdc_wdm 6-1:1.0: skipping garbage [ 233.344149][ T24] cdc_wdm 6-1:1.0: skipping garbage [ 233.348882][ T24] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device [ 233.352179][ T24] cdc_wdm 6-1:1.0: Unknown control protocol [ 233.444428][T13861] overlayfs: failed to resolve './file1': -2 [ 233.533569][T13870] geneve3: entered promiscuous mode [ 233.535158][T13870] geneve3: entered allmulticast mode [ 233.543087][ T58] usb 6-1: USB disconnect, device number 14 [ 233.675713][T13884] overlayfs: failed to resolve './file1': -2 [ 233.740375][T13892] __nla_validate_parse: 8 callbacks suppressed [ 233.740386][T13892] netlink: 58 bytes leftover after parsing attributes in process `syz.0.2714'. [ 233.745817][T13892] unsupported nlmsg_type 40 [ 234.088129][T13919] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2726'. [ 234.090691][T13919] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2726'. [ 234.096405][T13919] geneve3: entered promiscuous mode [ 234.097921][T13919] geneve3: entered allmulticast mode [ 234.324598][T13947] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2738'. [ 234.328786][T13947] geneve2: entered promiscuous mode [ 234.330269][T13947] geneve2: entered allmulticast mode [ 234.443357][ T5980] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 234.533448][T13972] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2750'. [ 234.538660][T13972] geneve3: entered promiscuous mode [ 234.540635][T13972] geneve3: entered allmulticast mode [ 234.597168][ T5980] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 234.599743][ T5980] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 234.603779][ T5980] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 234.606772][ T5980] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 234.609848][ T5980] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 234.621252][ T5980] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 234.624705][ T5980] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 234.627251][ T5980] usb 8-1: Product: syz [ 234.628513][ T5980] usb 8-1: Manufacturer: syz [ 234.640065][ T5980] cdc_wdm 8-1:1.0: skipping garbage [ 234.642202][ T5980] cdc_wdm 8-1:1.0: skipping garbage [ 234.648941][ T5980] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device [ 234.650674][ T5980] cdc_wdm 8-1:1.0: Unknown control protocol [ 234.707624][T13988] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 234.778011][T13990] overlayfs: failed to resolve './file0/file0': -2 [ 234.846181][ T24] usb 8-1: USB disconnect, device number 4 [ 234.943716][T13989] ------------[ cut here ]------------ [ 234.945387][T13989] UBSAN: array-index-out-of-bounds in kernel/bpf/core.c:2384:29 [ 234.947539][T13989] index 16 is out of range for type ' *[16]' SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 234.950253][T13989] CPU: 1 UID: 0 PID: 13989 Comm: syz.1.2751 Not tainted 6.14.0-syzkaller-03565-gf6e0150b2003 #0 PREEMPT(full) [ 234.950585][T13989] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 234.950598][T13989] Call Trace: [ 234.950603][T13989] [ 234.950610][T13989] dump_stack_lvl+0x16c/0x1f0 [ 234.950669][T13989] __ubsan_handle_out_of_bounds+0x11c/0x160 [ 234.950701][T13989] bpf_prog_select_runtime+0x665/0x6f0 [ 234.950719][T13989] ? selinux_bpf_prog_load+0x15f/0x1c0 [ 234.950741][T13989] bpf_prog_load+0xe70/0x2480 [ 234.950784][T13989] ? __pfx_bpf_prog_load+0x10/0x10 [ 234.950799][T13989] ? avc_has_perm_noaudit+0x149/0x3b0 [ 234.950831][T13989] ? selinux_bpf+0xde/0x130 [ 234.950850][T13989] __sys_bpf+0x4890/0x4c80 [ 234.950867][T13989] ? __pfx___sys_bpf+0x10/0x10 [ 234.950881][T13989] ? __schedule+0x1131/0x5c00 [ 234.950903][T13989] ? do_futex+0x122/0x350 [ 234.950921][T13989] ? __pfx_do_futex+0x10/0x10 [ 234.950959][T13989] ? __pfx___x64_sys_futex+0x10/0x10 [ 234.950985][T13989] __x64_sys_bpf+0x78/0xc0 [ 234.951002][T13989] ? lockdep_hardirqs_on+0x7c/0x110 [ 234.951023][T13989] do_syscall_64+0xcd/0x260 [ 234.951047][T13989] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 234.951063][T13989] RIP: 0033:0x7f434758d169 [ 234.951078][T13989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 234.951095][T13989] RSP: 002b:00007f4348369038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 234.951112][T13989] RAX: ffffffffffffffda RBX: 00007f43477a6160 RCX: 00007f434758d169 [ 234.951122][T13989] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005 [ 234.951133][T13989] RBP: 00007f434760e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 234.951144][T13989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 234.951153][T13989] R13: 0000000000000000 R14: 00007f43477a6160 R15: 00007ffc8973dee8 [ 234.951175][T13989] [ 234.951454][T13989] ---[ end trace ]--- [ 235.076844][T13989] Kernel panic - not syncing: UBSAN: panic_on_warn set ... [ 235.079355][T13989] CPU: 1 UID: 0 PID: 13989 Comm: syz.1.2751 Not tainted 6.14.0-syzkaller-03565-gf6e0150b2003 #0 PREEMPT(full) [ 235.083106][T13989] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 235.086577][T13989] Call Trace: [ 235.087713][T13989] [ 235.088708][T13989] dump_stack_lvl+0x3d/0x1f0 [ 235.090237][T13989] panic+0x71c/0x800 [ 235.091575][T13989] ? __pfx_panic+0x10/0x10 [ 235.093066][T13989] ? __pfx__printk+0x10/0x10 [ 235.094599][T13989] check_panic_on_warn+0xab/0xb0 [ 235.096267][T13989] __ubsan_handle_out_of_bounds+0x143/0x160 [ 235.098217][T13989] bpf_prog_select_runtime+0x665/0x6f0 [ 235.100014][T13989] ? selinux_bpf_prog_load+0x15f/0x1c0 [ 235.101827][T13989] bpf_prog_load+0xe70/0x2480 [ 235.103407][T13989] ? __pfx_bpf_prog_load+0x10/0x10 [ 235.105107][T13989] ? avc_has_perm_noaudit+0x149/0x3b0 [ 235.106924][T13989] ? selinux_bpf+0xde/0x130 [ 235.108430][T13989] __sys_bpf+0x4890/0x4c80 [ 235.109905][T13989] ? __pfx___sys_bpf+0x10/0x10 [ 235.111529][T13989] ? __schedule+0x1131/0x5c00 [ 235.113121][T13989] ? do_futex+0x122/0x350 [ 235.114579][T13989] ? __pfx_do_futex+0x10/0x10 [ 235.116181][T13989] ? __pfx___x64_sys_futex+0x10/0x10 [ 235.117835][T13989] __x64_sys_bpf+0x78/0xc0 [ 235.119336][T13989] ? lockdep_hardirqs_on+0x7c/0x110 [ 235.121060][T13989] do_syscall_64+0xcd/0x260 [ 235.122579][T13989] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 235.124315][T13989] RIP: 0033:0x7f434758d169 [ 235.125572][T13989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 235.130893][T13989] RSP: 002b:00007f4348369038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 235.133188][T13989] RAX: ffffffffffffffda RBX: 00007f43477a6160 RCX: 00007f434758d169 [ 235.135462][T13989] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005 [ 235.137803][T13989] RBP: 00007f434760e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 235.140129][T13989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 235.142319][T13989] R13: 0000000000000000 R14: 00007f43477a6160 R15: 00007ffc8973dee8 [ 235.144511][T13989] [ 235.145982][T13989] Kernel Offset: disabled [ 235.147189][T13989] Rebooting in 86400 seconds.. VM DIAGNOSIS: 03:40:13 Registers: info registers vcpu 0 CPU#0 RAX=0000000000391d1f RBX=0000000000000000 RCX=ffffffff8b5e12f9 RDX=0000000000000000 RSI=ffffffff8dbb055f RDI=ffffffff8bf370e0 RBP=fffffbfff1c12ee8 RSP=ffffffff8e007e18 R8 =0000000000000001 R9 =ffffed100d4865bd R10=ffff88806a432deb R11=0000000000000000 R12=0000000000000000 R13=ffffffff8e097740 R14=ffffffff90825410 R15=0000000000000000 RIP=ffffffff8b5e26ef RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d6a54000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f4348389f98 CR3=00000000241a2000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000400001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f282 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f28f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f289 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f29d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f323 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f401 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434777c488 00007f434777c480 00007f434777c478 00007f434777c450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f43482dd100 00007f434777c440 00007f434777c458 00007f434777c4a0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434777c498 00007f434777c490 00007f434777c488 00007f434777c480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=00000000fffff65e RBX=ffffc9000446f748 RCX=ffffffff819b7a8b RDX=0000000000000001 RSI=00000000fffff601 RDI=0000000000000000 RBP=80000000fffff601 RSP=ffffc9000446f5d0 R8 =0000000000000001 R9 =fffff5200088dec0 R10=ffffc9000446f607 R11=0000000000000000 R12=00000000fffff65e R13=1ffff9200088debc R14=ffffffff8e39d070 R15=00000000fffff65e RIP=ffffffff81bb0d0c RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 00007f43483696c0 ffffffff 00c00000 GS =0000 ffff8880d6b54000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000200000514ff4 CR3=00000000241a2000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000400001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f282 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f28f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f289 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f29d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f323 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f401 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434777c488 00007f434777c480 00007f434777c478 00007f434777c450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f43482dd100 00007f434777c440 00007f434777c458 00007f434777c4a0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434777c498 00007f434777c490 00007f434777c488 00007f434777c480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000276681 RBX=0000000000000002 RCX=ffffffff8b5e12f9 RDX=0000000000000000 RSI=ffffffff8dbb055f RDI=ffffffff8bf370e0 RBP=ffffed1003add910 RSP=ffffc90000187e00 R8 =0000000000000001 R9 =ffffed100d4c65bd R10=ffff88806a632deb R11=0000000000000000 R12=0000000000000002 R13=ffff88801d6ec880 R14=ffffffff90825410 R15=0000000000000000 RIP=ffffffff8b5e26ef RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d6c54000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000110c25bb4d CR3=00000000241a2000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000400001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f282 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f28f ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f289 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f29d ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f323 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434760f401 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434777c488 00007f434777c480 00007f434777c478 00007f434777c450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f43482dd100 00007f434777c440 00007f4347770004 0000000b000c000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f434777c498 00007f434777c490 00007f434777c488 00007f434777c480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=dffffc0000000000 RBX=ffffea0000dea600 RCX=ffffffff820c2d1b RDX=1ffffffff355dd90 RSI=0000000000000011 RDI=ffffffff9aaeec80 RBP=ffff88807ffd7540 RSP=ffffc9000436f7a8 R8 =0000000000000005 R9 =0000000000000000 R10=00000000ffffffff R11=0000000000000000 R12=00000000ffffffff R13=0000000000000011 R14=ffff88802986f6c8 R15=0000000000000056 RIP=ffffffff81a09ee0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d6d54000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f0f31cd7d60 CR3=00000000320ee000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0f3117c6a3 00007f0f3117c6a3 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff96417d90 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556f1a24aa 000055556f1a0210 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556f18d3d4 000055556f18d3d0 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556f18a4a0 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556f199212 000055556f199040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556f18d544 000055556f18d540 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 01b0030000000000 0000000000000000 00000001ffffffff ffffffffdf080190 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0120100000040100 00060806060103c6 02d402000e032802 000c032802000a03 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 02d80200080302b8 c404840004030404 000003048c080002 100004100006066d ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 881ffffffff80800 0100000408060401 3d80381000018004 0100000208060601 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 01ce00080001b003 0000000000000000 0000000000000000 01ffffffffffffff ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000