last executing test programs: 6m50.201846574s ago: executing program 3 (id=6541): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000dc0)={0x44, r1, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0x18, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x14, 0x3, 0x0, 0x1, [{0x3f, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x4}]}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x818}, 0x48084) 6m50.133940383s ago: executing program 3 (id=6543): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4) setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f00000000c0)={0x2, &(0x7f0000000080)=[{0x28, 0x6, 0xff, 0xfffff020}, {0x6, 0x0, 0x0, 0x8000000}]}, 0x8) 6m50.073387663s ago: executing program 3 (id=6544): capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x0, 0x4, 0x81, 0xfffffff3}) r0 = openat$random(0xffffffffffffff9c, &(0x7f000000fe80), 0x40800, 0x0) ioctl$RNDADDENTROPY(r0, 0x40085203, 0x0) 6m50.017860853s ago: executing program 3 (id=6547): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0) umount2(&(0x7f0000000100)='./file0\x00', 0x8) 6m50.01175241s ago: executing program 3 (id=6549): r0 = socket$inet6(0xa, 0x3, 0x5) setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f00000002c0)=ANY=[], 0x8) setsockopt$inet6_IPV6_RTHDRDSTOPTS(r0, 0x29, 0x37, 0x0, 0x0) 6m49.684657179s ago: executing program 3 (id=6558): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000280)={0x4, 0x0, 0xb51b, 0x10}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001200010a000000000000000080000058"], 0x26}}, 0x0) 6m49.596536215s ago: executing program 32 (id=6558): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000280)={0x4, 0x0, 0xb51b, 0x10}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001200010a000000000000000080000058"], 0x26}}, 0x0) 3m9.776277576s ago: executing program 4 (id=14042): r0 = socket$inet6(0xa, 0x3, 0x3c) r1 = syz_io_uring_setup(0x4e1, &(0x7f0000000380)={0x0, 0xf984, 0x10100, 0x3}, &(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000300)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r0, 0x0, &(0x7f0000002b40)={&(0x7f00000004c0)=@isdn={0x22, 0x7, 0x8, 0xbf}, 0x80, 0x0}, 0x0, 0x4000010}) io_uring_enter(r1, 0x708, 0x41e3, 0x0, 0x0, 0x0) 3m9.731746261s ago: executing program 4 (id=14046): mkdirat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x8) mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000580)='tracefs\x00', 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0) lseek(r0, 0xfffffffffffffffc, 0x1) 3m9.651578037s ago: executing program 4 (id=14049): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x8) r1 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7005}, 0x4) 3m9.631886152s ago: executing program 4 (id=14054): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262) 3m9.575208443s ago: executing program 4 (id=14055): socket$unix(0x1, 0x5, 0x0) r0 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=0x0, &(0x7f0000000000)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22}) io_uring_enter(r0, 0x48e9, 0x0, 0x2, 0x0, 0x0) 3m9.361310674s ago: executing program 4 (id=14060): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/vlan/vlan1\x00') r1 = socket(0x2, 0x2, 0x1) ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(r1, 0x8983, &(0x7f0000000000)={0x1, 'vlan1\x00', {}, 0x5832}) readv(r0, &(0x7f00000023c0)=[{&(0x7f0000002480)=""/152, 0x98}], 0x1) 3m9.22453494s ago: executing program 33 (id=14060): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/vlan/vlan1\x00') r1 = socket(0x2, 0x2, 0x1) ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(r1, 0x8983, &(0x7f0000000000)={0x1, 'vlan1\x00', {}, 0x5832}) readv(r0, &(0x7f00000023c0)=[{&(0x7f0000002480)=""/152, 0x98}], 0x1) 2m58.15418607s ago: executing program 5 (id=14347): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000040)={0x1, 0x0, [{0xc0000103}]}) 2m58.02039915s ago: executing program 5 (id=14351): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="2800000009000000000000000000000001"], 0x28) 2m57.968570396s ago: executing program 5 (id=14353): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_CLOCK(r1, 0x4188aec6, &(0x7f0000000040)) ioctl$KVM_SET_CLOCK(r1, 0x4188aec6, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x95d}) 2m57.837394803s ago: executing program 5 (id=14358): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000280)='./file0\x00', 0x0, 0x97801, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x112) 2m57.77689884s ago: executing program 5 (id=14360): openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c040, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000200)={0x1, &(0x7f0000000000)=[{0x2, 0x0, 0xff, 0x7fff7ffc}]}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000500)='nfs4\x00', 0x2800000, &(0x7f00000001c0)='\x01') 2m55.539463516s ago: executing program 5 (id=14412): r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xa0000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x0}) ioctl$IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, &(0x7f0000000040)={&(0x7f0000000780)={{@host}, {@my=0x0, 0x3}, 0x400, "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"}, 0x418}) 2m55.495440937s ago: executing program 34 (id=14412): r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xa0000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x0}) ioctl$IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, &(0x7f0000000040)={&(0x7f0000000780)={{@host}, {@my=0x0, 0x3}, 0x400, "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"}, 0x418}) 56.634575135s ago: executing program 0 (id=17310): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'comedi_test\x00', [0x6, 0x7ff, 0x1, 0x0, 0x0, 0xccc, 0x8, 0xb, 0xa, 0xfc, 0x2, 0x1, 0x8, 0x4, 0x6, 0xffffffff, 0x1, 0x1a449, 0x3, 0x40000007, 0x100, 0x2, 0xf27, 0x3, 0x8, 0x8, 0x5, 0x7, 0x4, 0x10000, 0x6]}) ioctl$COMEDI_SETRSUBD(r0, 0x6410) 56.516761841s ago: executing program 0 (id=17313): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140)) ioctl$PPPIOCSPASS(r0, 0x40087447, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0xce, 0x0, 0x20}]}) pwritev(r0, &(0x7f0000000480)=[{&(0x7f00000004c0)='\x00!', 0x2}], 0x1, 0x1000000, 0x0) 56.26719101s ago: executing program 0 (id=17321): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000480), 0x22401, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r2, 0x4188aea7, &(0x7f0000000040)=@attr_other={0x10000000, 0x0, 0x5, 0x0}) 56.080534165s ago: executing program 0 (id=17329): mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0xb101e, 0x0) umount2(&(0x7f0000000180)='./file0/../file0\x00', 0x4) 56.028805534s ago: executing program 0 (id=17331): r0 = socket$packet(0x11, 0x3, 0x300) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001a00)=ANY=[@ANYBLOB="850000002f000000840000000000000095000000000000008560fc2b2062f611fc2f864ef177d634e46e8dcfe61b4fb9f600344d592fee49e176fe6ad28fbcb1f9259bfc63e9030971917e30b6f42e8f9dd6ab0ce07312a135cd363aa7e5bcef8fd0e8c7d2082584156c52ebfd69e8e13b7a8b477abc86468e11b6242133ce882f05e16b91c37b3437347f6058b4489c759783b9d4dfb55d0085a26e41201a6d8c8ced33e10048e756a40538b32bf653fa3c831a4e60599ed7a0f999d18de9984522a7cdb6fc30015633a0132c9578b7da5bd7280a5f7e28fd858ba712020b23ef8a2785b6c146c48b48ca7e232d0489661396e9303b38aa5d26d06e2e676795fd2733f95da570bab301000000ffffffff2a2792a630d8fcdc"], &(0x7f0000000180)='GPL\x00'}, 0x48) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000000)=r1, 0x4) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000040)=r1, 0x4) 55.458493272s ago: executing program 0 (id=17338): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4) setuid(0xee01) 55.328357627s ago: executing program 35 (id=17338): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4) setuid(0xee01) 4.816332794s ago: executing program 2 (id=18131): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4048aecb, &(0x7f0000000180)={0x3, 0x0, [{0x0, 0x0, 0x0, 0x6}, {0x0, 0x6}, {0x5e2796afef1a2f31, 0xffffffff, 0x0, 0x9, 0x1, 0x80000001, 0x8}]}) 4.240734115s ago: executing program 2 (id=18145): r0 = syz_open_dev$dri(&(0x7f0000000340), 0x1, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000040)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f00000003c0)=[0x0], 0x400000000000005e}) ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f00000001c0)={r1, 0x0, 0x0, 0x0, 0x0, 0x3ffffffffffffefa, &(0x7f0000000100)}) 4.148476294s ago: executing program 2 (id=18136): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x10}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0) sendmsg$NFT_MSG_GETFLOWTABLE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x20, 0x17, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x8}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x90) 3.946071636s ago: executing program 2 (id=18139): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000002340)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000d0000000b70000000000000095000000000000003fba6a7d36d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f010c5077da80fb982c1e9400c603146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef7f9606056fe5c34664c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763288d01aa27ae8b09e13e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468082089b302d7bff8f06f7f918d65eae391cb41336023cdcedb5e0125ebbcebddcf10cb2364149215108355ee570f8078be5cab389cd65e7133719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad23000000803a90bce6dc3a13871765df961c2ed3b1006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f40cfd7c3a1d37a6ab87b1586602d985430cea0162ab3fcf4509c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9f081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d60532be9c4d2ec7c32f2095e63c8cdc28f74d043ed8dba2f23b01a9aeb980aff9fa3a64709270c701db801f44cf945b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142bdda5e6c5d50b83bae616b5054d1e7c13b1355d6f4a8245eaa4997da9c77af4c0eb97fca585ec6bf58351d599e9b61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a41326eea31ae4e0f75057df3c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57010000009700ce0b4b8bc22941330000000000000000000300000000000000000000000010008bc0d955f2a83366b99711e6e8861c46495ba585a4b2d02edc3e28dd279a896249ed85b9806f0b6c4a000000002b43dcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad883ef3b7cda42013d53046da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff72943327d830689da6b53ffffffff631c7771429d1200000033ed846197fcff5e1c7c3d1d6e3a52872baef9753fffffffffffffe09fec2271fe010cd7bb2366fde4a59429738fcc917a57f94f6c453cea623cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcd41df54cdbd9d10a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce978275d5bc8955778567bc79e13b78249788f11f708008b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822aea68a660e717a04becff0f719107000000000000002d7e927123d8ecbbc55bf404571be54c72d978cf2804107f0238abccd32368e57040906df0042e19000000000000002c06f815312e086dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef44cd1fe582786105c7df8be4877084d4173731efe895efc71f665c4d75cf2458e35d2c9062ece84c99e061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb2b5e518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad055e4af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457ac0eaaa99bf0bdc14ae358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3fdf242b985bf16b99c9cc0ad1857036f1a985f369191ae954febb3df464bfe0f773ee9afe72f32a2befb89d3777399f5874c553a2ebe9061fe86e669642e09bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f8a9778cb26e22a2a998de5eaeadea2a40da8daccf080842a486721737390cbf3a74cb2003efb9a101b51ab63e9600040000b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defd83871c5191e10096e7e60fc3541a2c905a1a95e9571bf38aebd15172f94e3245c582909e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f90100000000000000abf9010000007740890200d627e87306703be8672dc84eeadba6a41891c170d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d10a3fc22dd704e4214de5946912d6c98cd1a900d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69b93e9960ff5f76062adae283d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff85000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a31c72ad53bc19faa5401120000793ac48c1b539c75ab40743b00020000a1f68df75cf43f8ecc8d3726602111b40e761fd210a1920382f14d12ca3c3431ee97471c781d0d1280fb00818654a53b6df4b2c97cc1c98d85fda8f80fe908b65550b441233151122b41a8d73062197655b7f0469250a5989cef0e10773920ed3ccee42d2c3eb80159da5c002511e6eb93842054cfce2ac306cb6e472db3fd67a49b6855a694a8d359add43907003223a47a7fae4f3748d5a432825bc40a03aaef1c8488d86dc211dd2a3ba71e0f45492ef1f8b65ccb3dcd251a61b152d02c29ca0a3328fa7753a5cddea1acaae55ae8263fb284b7a6ab2a8826c1b948207c498cf4824ab1ea3225a53072423b907c6682f8999e0311da5b8378bc841e1787e3a8128dda381a26cb2b365702ff8a27831375b2ddaa2f56e21169f7ca4fd9655ccd4a584acd244e965a0afedaff7c415ff682a4044b3381cc2df28278c9a6824c52048a7cfabda294925cc0956bffa8e950ff5e49f41ae600d830207bf728cd9807933c3c16d80bbea611a18becc2dc38ca0a6f5740f340b76edcd1f539bd43007231dcef58c7b88b5aeedaf9626cb51ce1737c10ab37d4f98a934b0f900e0eb639878a1200629f5503cf679154d27681d7a3744cbcd42af59407c9c8e39c5271868917954e604352ba26171d004f1cb2976fab3fa19c7d3ef9678bff79f5155524f061378f94fb453786c3a6f78b10d383b49e31d1568bd43ee34ce6e6be235aa6207285665c2fba773671da41959f51610963b48930658e2d6125a26085001345b0473240b7e5e91811312c43663e76f711d7219ecdec75c7ea1cf0f8f8fff40247d59bbde2ebb8659197e0f37a71be1b12a182ed7de3acba28561a04b807f7a4647e2ea6d8fb92541d07c3d5e4ba077d3cad9f8ba1919592014c00c8eccb2ca5d48ba7b1c3fb185a4bb79700cf51f818b0c701c8de47d12281a67bdaf4b0c50bee9e8f5936250df2e15c1172e7ea6619f7db330700d1e9e42a035e6fd532f61fbfed9c4a7124a1e38eee50a6bbcd1d4e3f68c3f27dd9a70f1a7c6046237ddfb0b26e197322226367d998010458cd4df10af249ce717f6f45e5176e0ddae3054d7289d4e13ab0912703ee39ce264572b89194fdf7acecc35cf8309d4b680a08eed367dad855fce210f1a7c7222dd360eafb4bef7d58bf83362930af6e3f3f851abdc0003bdf9401b533019e90feb069189100007a82df8d9b5f44ebf9355e7b1b01c9470608d4f306d21004730396a4d6c6d46e1ffac97aa93c36123532a36186575266be4981c847160079421d0137801e553069f8d025c40f287378810defc7f2ed4e15f6af17b21153394f8bcfa6a23a77c8d61c9bbc127a57b8d631f36558d9093dee08bc53d97a8003363421738650a26c8fd87b13026799caf58e59951b125e7f161ca34e2c0dd65a23d01a3cb191e743de07247c7f993cf01166fa2ac1ba02f60550e63a7f50422e478c6b5d87f9bd0567a279a9d85a3c0db25c43bd0529ad783b9d64aaac1b793afb44b7126e17d2b7c0d6be650de7eeef3f3605af344015d03c3e7819145cb9fe1978c98bf9cf10773db59505ae33708c728844c872dfd2cb0b29754f928c59306ce105ca18cb72f0944d0e4fea0a0abd0285bdaf1b000000c089d640c2facb0d1e6243873ac4b1e1068c45c715b68effb7d58d1f9e726dbf6bd910ca4ce0e075658ede42192cf393a50dcc197b03402fed75083628e5dd38213d353b9049e71f037064b05e73ec00c710f1ffc5737d397d555d1cf8859cc05fea8dc3c6a5b3b6fa1c81707479db1833d593a271253aa11efdb36b74784f2fc286814848022e8ee541bc179813297a0a4cc3c8f80c28701185bea091f32475e859479b734727afc110e1abcff460172fd1b42e3c0e2a4bf94a060069000010000087c7572a1e7596f89e5c3d5e70640c90815f77b7b13d0000000085a1e1e84900000000000000000000000000b422fc160a458ee5a91a2471e6e56fdabec6c73ce8983fc68f0b7cdcdde632e6f54a07620e8aa116ce9e84fc3cd5e8288a333dcebb233da9186796995ba69487d8f77d2f8800f02d690fc70a08b231cad1bdcf3740a95d4dd1cfe0f417f275493cf33b19ffff93dfdaf7eb00b8ad87cdf7c21bab5af8e2bac54ee5597e6508c1158124a538c36f9bb11fea7d8b8c7e954b1bc7811654a6636b33f271d0923e9ecd1b724b8feffadfc23c07000000f0785fb722f346d6a5dffe1884d4d0cd8f00000092c85ed44db68ab800000000000000406e6ed9b219ad07125381087298e75965d1cc5932ddf9e66351ba332a34bee3e3d562c914c629933f0b8724cf680889ade72558d191d9890c69a718f9018586c5131c8dc8e0379bafda1a0fd2997ff115215ce23dca8db7236c1554cdaaadcce2f31834c1bd1908d8e1b361034db56be76acb7654a195bc3e98df3a5dffd5b0783883ef7da3433110e37f7c7cb7f3800de7f99abf910d6949e062747a9c87dcfcc716d6a9c0ec53b9cffe3cfd1df69a76f373d7f997edb9b80bdea1a99c2a6fbb25e035deadaadd7917ebfedd6304a19491769476208684e343f86b4d55a7dbbb07283cb1e35a139d24ebc5b4f8e35a82d3a7f84cb1e02a5a92b53567088be0b1ca023ccd518c0e0715b1c8760801a419ebd2e26440ff7493019bdb655cc88d72d6d7b6bca5a2e19b63ec52fcc49a729f11ab377f7132c543d29646a9378eea0761b7ed9d2172e33ed87c6513c843b180cc00000000006bedf2ed716ca43a941119b96d82b26d9061de240d85ec2cfa462bd52104489bb7a7548d7cc53627031e909c69cb824233975a1ea645de63522407c3a240a37e946f30ebf075ea97846a0a8d2286f3f446b1b99ab83a12ddf8a1c06294eadc3eb3e339591afd5c00000000000000000000000000000000000000000000000000579dad8347a3d16976bb7483840b32db0158fb6c809349333325a7866ca5d3133e33ef1a183cefdb65a79fa71800988c8445029e024822dbcfcab49c3a0aec9bd43e6e14078b260700d849a2aa14c9b593f6dcb1de334c065ecfd65031606e55949c185bcda9fde4f9b46a76b8a24bbcd31b22373eb0473248150cd179405ee1af1183b0c0ce3483dc1d9bf732b0751b78fb211d6706b55960c6431afbc02b3c7e08086573939290bb9e590a3875f02a828bf209d0000000000000000000000000001545f0ec539c3b58facd2f62dc3307a6c91d6b"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48) bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000000)={@cgroup=r1, r1, 0x2f, 0x2004, 0x4}, 0x20) 3.871886314s ago: executing program 2 (id=18140): syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="00220f0000000b2e"], 0x0}, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6) write$bt_hci(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="4600010002"], 0x8) 2.820847026s ago: executing program 2 (id=18159): timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x2}, &(0x7f0000000000)) timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) clock_settime(0x1, 0x0) 2.694951319s ago: executing program 7 (id=18161): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000040), r1) sendmsg$NFC_CMD_DISABLE_SE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x1c, r2, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000) 2.620899695s ago: executing program 7 (id=18162): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 2.329982729s ago: executing program 7 (id=18165): mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0) mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000240)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x430601, 0x10) 2.084678064s ago: executing program 1 (id=18168): r0 = socket$inet(0x2, 0x801, 0x100) listen(r0, 0x0) pipe2(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) splice(r0, 0x0, r1, 0x0, 0x7ffff000, 0x0) 1.974050828s ago: executing program 1 (id=18170): r0 = syz_open_dev$vim2m(&(0x7f0000000500), 0xb53d, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000540)={0xffffeffe, 0x1, 0x2}) r1 = syz_open_dev$video(&(0x7f0000000b40), 0x7, 0x28000) preadv(r1, &(0x7f0000001200)=[{&(0x7f0000000c00)=""/113, 0x71}], 0x1, 0x4, 0xb) 1.868214563s ago: executing program 1 (id=18172): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x6, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000010c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000600)="c9f7b98600"/14, 0x0, 0x7ffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.448576243s ago: executing program 6 (id=18173): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f0000603000/0x3000)=nil, 0x3000, 0x0, 0x4, 0x1c0000) 1.437587885s ago: executing program 7 (id=18174): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_pidfd_open(r0, 0x0) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000000)={0xe000202b}) 1.437478382s ago: executing program 1 (id=18175): fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffe09) mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103) chown(&(0x7f0000000240)='./file0\x00', 0xee00, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x40, 0x0) 1.160756974s ago: executing program 6 (id=18176): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000940)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1c0b7d010fdeb5fb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000000c0)='contention_begin\x00', r0}, 0x18) mknod$loop(&(0x7f0000000140)='./file0\x00', 0x1000, 0x0) mount(&(0x7f0000000100)=@nullb, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='gfs2meta\x00', 0x0, 0x0) 1.147415793s ago: executing program 1 (id=18177): r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000000)=0x10000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000100)={@local}) ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r0, 0x7b2, &(0x7f0000000080)={0x0, 0x3, 0xffffffffffffff54, 0x49fffff9}) 1.040495387s ago: executing program 6 (id=18178): r0 = socket(0x10, 0x3, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001100)=@newqdisc={0x14c, 0x24, 0x3fe3aa0262d8c783, 0x3, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0xfff7}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x11c, 0x2, [@TCA_CHOKE_PARMS={0x14, 0x1, {0x0, 0x0, 0x80, 0xff}}, @TCA_CHOKE_STAB={0x104, 0x2, "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"}]}}]}, 0x14c}}, 0x0) 459.728541ms ago: executing program 1 (id=18179): openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0) r0 = syz_io_uring_setup(0x23d, &(0x7f0000000340)={0x0, 0x0, 0x10100, 0x1}, &(0x7f00000002c0)=0x0, &(0x7f0000000000)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3}) io_uring_enter(r0, 0x2def, 0x0, 0x0, 0x0, 0x0) 452.660741ms ago: executing program 6 (id=18180): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x1f, 0x19, &(0x7f0000001680)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1d, 0x0, 0x0, 0x0, 0x81}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8020}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @snprintf={{}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0xb3}}]}, &(0x7f0000000ac0)='syzkaller\x00', 0x3, 0x0, 0x0, 0x41100, 0x18, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200ebfb}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r2}, 0xc) 359.787253ms ago: executing program 6 (id=18181): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x200000f, 0x13, r0, 0x0) prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil) ptrace(0x10, 0x1) 331.626608ms ago: executing program 7 (id=18182): r0 = socket$kcm(0x10, 0x2, 0x0) r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r1, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) sendmsg$kcm(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000000)="2e00000010008188040f46ecdb4cb9cca7480ef421000000e3bd6efb440013030e000a000d000008ba8000001201", 0x2e}], 0x1}, 0x0) 105.308µs ago: executing program 7 (id=18183): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) getpeername$packet(0xffffffffffffffff, 0x0, 0x0) 0s ago: executing program 6 (id=18184): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="05000000040000000400000009"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000040)='sys_exit\x00', r1, 0x0, 0x4000000000000004}, 0x18) acct(0x0) kernel console output (not intermixed with test programs): 56:3700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5745 comm="syz.6.14954" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 489.034715][ T40] audit: type=1326 audit(2000000833.456:3701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5745 comm="syz.6.14954" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 489.044847][ T40] audit: type=1326 audit(2000000833.466:3702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5745 comm="syz.6.14954" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 489.056874][ T40] audit: type=1326 audit(2000000833.466:3703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5745 comm="syz.6.14954" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 489.066159][ T40] audit: type=1326 audit(2000000833.466:3704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5745 comm="syz.6.14954" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 489.076584][ T40] audit: type=1326 audit(2000000833.476:3705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5745 comm="syz.6.14954" exe="/syz-executor" sig=0 arch=40000003 syscall=371 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 489.123433][ T5756] binder: 5755:5756 ioctl c0306201 80000400 returned -11 [ 489.256784][ T5768] netlink: 8 bytes leftover after parsing attributes in process `syz.2.14964'. [ 489.260856][ T5768] netlink: 'syz.2.14964': attribute type 30 has an invalid length. [ 489.288233][ T288] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 489.292074][ T13] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 489.294915][ T13] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 489.298303][ T13] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 489.645007][ T5797] netlink: 4 bytes leftover after parsing attributes in process `syz.1.14976'. [ 489.924214][ T5828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.14990'. [ 490.521140][ T5890] netlink: 4 bytes leftover after parsing attributes in process `syz.2.15019'. [ 490.537521][ T5971] Bluetooth: hci1: command 0x0c1a tx timeout [ 490.537563][ T5968] Bluetooth: hci3: command 0x0405 tx timeout [ 490.539839][ T5971] Bluetooth: hci2: command 0x0406 tx timeout [ 490.545058][ T6045] kernel read not supported for file /dsp (pid: 6045 comm: kworker/1:6) [ 491.094469][ T5929] autofs4:pid:5929:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(951.8), cmd(0xc018937e) [ 491.100826][ T5929] autofs4:pid:5929:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e) [ 491.264316][ T5945] random: crng reseeded on system resumption [ 491.278872][ T24] usb 11-1: new high-speed USB device number 3 using dummy_hcd [ 491.447590][ T24] usb 11-1: Using ep0 maxpacket: 8 [ 491.451954][ T24] usb 11-1: New USB device found, idVendor=12d1, idProduct=fae2, bcdDevice=70.8b [ 491.455189][ T24] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 491.466228][ T24] usb 11-1: Product: syz [ 491.467912][ T24] usb 11-1: Manufacturer: syz [ 491.469620][ T24] usb 11-1: SerialNumber: syz [ 491.472725][ T24] usb 11-1: config 0 descriptor?? [ 491.476016][ T24] option 11-1:0.0: GSM modem (1-port) converter detected [ 491.682123][ T24] usb 11-1: USB disconnect, device number 3 [ 491.685901][ T24] option 11-1:0.0: device disconnected [ 491.764166][ T6037] netlink: 28 bytes leftover after parsing attributes in process `syz.0.15067'. [ 492.258775][ T6080] overlayfs: workdir and upperdir must reside under the same mount [ 492.340820][ T6082] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 492.606805][ T5971] Bluetooth: hci1: command 0x0c1a tx timeout [ 492.659126][ T6126] netlink: 8 bytes leftover after parsing attributes in process `syz.0.15108'. [ 492.669665][ T6126] netlink: 8 bytes leftover after parsing attributes in process `syz.0.15108'. [ 492.818053][ T40] kauditd_printk_skb: 244 callbacks suppressed [ 492.818071][ T40] audit: type=1326 audit(2000001863.290:3950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6122 comm="syz.2.15107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000 [ 492.830647][ T40] audit: type=1326 audit(2000001863.290:3951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6122 comm="syz.2.15107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000 [ 492.840128][ T40] audit: type=1326 audit(2000001863.290:3952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6122 comm="syz.2.15107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000 [ 492.848677][ T40] audit: type=1326 audit(2000001863.290:3953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6122 comm="syz.2.15107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000 [ 492.864372][ T40] audit: type=1326 audit(2000001863.290:3954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6122 comm="syz.2.15107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000 [ 492.874895][ T40] audit: type=1326 audit(2000001863.290:3955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6122 comm="syz.2.15107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000 [ 492.884016][ T40] audit: type=1326 audit(2000001863.290:3956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6122 comm="syz.2.15107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000 [ 492.896939][ T40] audit: type=1326 audit(2000001863.290:3957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6122 comm="syz.2.15107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000 [ 492.906064][ T40] audit: type=1326 audit(2000001863.290:3958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6122 comm="syz.2.15107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000 [ 492.915374][ T40] audit: type=1326 audit(2000001863.290:3959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6122 comm="syz.2.15107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000 [ 493.126008][ T6173] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 494.139334][ T6210] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 494.245210][ T5303] Bluetooth: hci4: sending frame failed (-49) [ 494.250683][ T5971] Bluetooth: hci4: Opcode 0x1003 failed: -49 [ 494.686862][ T5971] Bluetooth: hci1: command 0x0c1a tx timeout [ 495.845689][ T6324] netlink: 212368 bytes leftover after parsing attributes in process `syz.2.15198'. [ 495.890288][ T6327] netem: invalid attributes len -22 [ 495.892026][ T6327] netem: change failed [ 496.209836][ T6357] tipc: New replicast peer: 255.255.255.255 [ 496.212106][ T6357] tipc: Enabled bearer , priority 10 [ 496.215846][ T6357] netlink: 12 bytes leftover after parsing attributes in process `syz.2.15214'. [ 496.220188][ T6357] tipc: Disabling bearer [ 496.715004][ T843] kernel read not supported for file /dsp (pid: 843 comm: kworker/3:2) [ 497.045265][ T6045] kernel write not supported for file /amidi2 (pid: 6045 comm: kworker/1:6) [ 497.718230][ T55] kernel read not supported for file /dsp1 (pid: 55 comm: kworker/2:1) [ 497.891456][ T6458] netlink: 212340 bytes leftover after parsing attributes in process `syz.0.15258'. [ 497.895367][ T6458] openvswitch: netlink: Port 167772160 exceeds max allowable 65535 [ 498.146582][ T6488] tipc: New replicast peer: 255.255.255.255 [ 498.151575][ T6488] tipc: Enabled bearer , priority 10 [ 498.154861][ T6488] netlink: 12 bytes leftover after parsing attributes in process `syz.0.15272'. [ 498.159338][ T6488] tipc: Disabling bearer [ 498.325665][ T6505] netlink: 4 bytes leftover after parsing attributes in process `syz.6.15279'. [ 498.560916][ T40] kauditd_printk_skb: 253 callbacks suppressed [ 498.560927][ T40] audit: type=1326 audit(2000003408.023:4213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6518 comm="syz.1.15286" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 498.570785][ T40] audit: type=1326 audit(2000003408.023:4214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6518 comm="syz.1.15286" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 498.578555][ T40] audit: type=1326 audit(2000003408.023:4215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6518 comm="syz.1.15286" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 498.585901][ T40] audit: type=1326 audit(2000003408.023:4216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6518 comm="syz.1.15286" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 498.594061][ T40] audit: type=1326 audit(2000003408.023:4217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6518 comm="syz.1.15286" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 498.603151][ T40] audit: type=1326 audit(2000003408.023:4218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6518 comm="syz.1.15286" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 498.622740][ T40] audit: type=1326 audit(2000003408.023:4219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6518 comm="syz.1.15286" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 498.631673][ T40] audit: type=1326 audit(2000003408.023:4220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6518 comm="syz.1.15286" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 498.640160][ T40] audit: type=1326 audit(2000003408.023:4221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6518 comm="syz.1.15286" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 498.652199][ T40] audit: type=1326 audit(2000003408.023:4222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6518 comm="syz.1.15286" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 499.329609][ T6570] netlink: 'syz.1.15307': attribute type 1 has an invalid length. [ 500.687330][ T5971] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 501.635538][ T6656] kvm: kvm [6655]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010015) = 0x40600 [ 501.820528][ T6661] rtc_cmos 00:05: Alarms can be up to one day in the future [ 501.848961][ T6660] rtc_cmos 00:05: Alarms can be up to one day in the future [ 501.854128][ T6045] rtc_cmos 00:05: Alarms can be up to one day in the future [ 501.865714][ T6045] rtc_cmos 00:05: Alarms can be up to one day in the future [ 501.870826][ T6045] rtc_cmos 00:05: Alarms can be up to one day in the future [ 501.875198][ T6045] rtc_cmos 00:05: Alarms can be up to one day in the future [ 501.881876][ T6045] rtc rtc0: __rtc_set_alarm: err=-22 [ 501.936719][ T843] IPVS: starting estimator thread 0... [ 502.036781][ T6676] IPVS: using max 46 ests per chain, 110400 per kthread [ 503.085656][ T6774] netlink: 'syz.6.15401': attribute type 8 has an invalid length. [ 503.224852][ T6782] binder: 6781:6782 ioctl c0306201 80000b80 returned -14 [ 505.046846][ T843] usb 11-1: new full-speed USB device number 5 using dummy_hcd [ 505.198795][ T843] usb 11-1: config 0 has an invalid interface number: 168 but max is 0 [ 505.202119][ T843] usb 11-1: config 0 has no interface number 0 [ 505.204951][ T843] usb 11-1: New USB device found, idVendor=05ab, idProduct=0060, bcdDevice=11.06 [ 505.208859][ T843] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 505.214256][ T843] usb 11-1: config 0 descriptor?? [ 505.406830][ T5303] Bluetooth: hci4: command 0x1003 tx timeout [ 505.407311][ T5971] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 505.428409][ T6823] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 505.432629][ T6823] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 505.440744][ T843] usb 11-1: string descriptor 0 read error: -71 [ 505.443080][ T5971] Bluetooth: hci1: adv larger than maximum supported [ 505.443116][ T5971] Bluetooth: hci1: Malformed LE Event: 0x0d [ 505.450032][ T843] usb-storage 11-1:0.168: USB Mass Storage device detected [ 505.454445][ T843] usb-storage 11-1:0.168: Quirks match for vid 05ab pid 0060: 2 [ 505.534161][ T843] usb 11-1: USB disconnect, device number 5 [ 506.142448][ T6888] netlink: 'syz.2.15452': attribute type 12 has an invalid length. [ 506.145975][ T6888] netlink: 190972 bytes leftover after parsing attributes in process `syz.2.15452'. [ 506.192421][ T6892] netlink: 4 bytes leftover after parsing attributes in process `syz.6.15456'. [ 506.205378][ T6892] netlink: 4 bytes leftover after parsing attributes in process `syz.6.15456'. [ 506.263416][ T6902] @: renamed from vlan0 (while UP) [ 506.604582][ T6936] loop6: detected capacity change from 0 to 524287999 [ 506.609272][ T6936] Buffer I/O error on dev loop6, logical block 0, async page read [ 506.612060][ T6936] Buffer I/O error on dev loop6, logical block 0, async page read [ 506.615898][ T6936] Buffer I/O error on dev loop6, logical block 0, async page read [ 506.619508][ T6936] Buffer I/O error on dev loop6, logical block 0, async page read [ 506.623680][ T6936] Buffer I/O error on dev loop6, logical block 0, async page read [ 506.627532][ T6936] Buffer I/O error on dev loop6, logical block 0, async page read [ 506.630855][ T6936] Buffer I/O error on dev loop6, logical block 0, async page read [ 506.633634][ T6936] Buffer I/O error on dev loop6, logical block 0, async page read [ 506.636400][ T6936] ldm_validate_partition_table(): Disk read failed. [ 506.640692][ T6936] Buffer I/O error on dev loop6, logical block 0, async page read [ 506.643604][ T6936] Buffer I/O error on dev loop6, logical block 0, async page read [ 506.646361][ T6936] Dev loop6: unable to read RDB block 0 [ 506.648955][ T6936] loop6: unable to read partition table [ 506.651193][ T6936] loop_reread_partitions: partition scan of loop6 (3Ÿ ¾x³˜CÖ) failed (rc=-5) [ 506.709779][ T6936] ldm_validate_partition_table(): Disk read failed. [ 506.713004][ T6936] Dev loop6: unable to read RDB block 0 [ 506.715806][ T6936] loop6: unable to read partition table [ 506.718718][ T6936] loop_reread_partitions: partition scan of loop6 (3Ÿ ¾x³˜CÖ) failed (rc=-5) [ 507.350049][ T6985] netlink: 4 bytes leftover after parsing attributes in process `syz.2.15497'. [ 507.355448][ T6985] netlink: 104 bytes leftover after parsing attributes in process `syz.2.15497'. [ 507.358636][ T6985] netlink: 104 bytes leftover after parsing attributes in process `syz.2.15497'. [ 507.416515][ T6991] netlink: 16 bytes leftover after parsing attributes in process `syz.2.15500'. [ 507.420661][ T6991] netlink: 16 bytes leftover after parsing attributes in process `syz.2.15500'. [ 508.482309][ T40] kauditd_printk_skb: 282 callbacks suppressed [ 508.482325][ T40] audit: type=1326 audit(2000003417.943:4505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7052 comm="syz.0.15527" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf700d579 code=0x0 [ 509.501473][ T7078] netlink: 212356 bytes leftover after parsing attributes in process `syz.0.15537'. [ 509.911171][ T5971] Bluetooth: hci2: unexpected event for opcode 0x2035 [ 510.990262][ T40] audit: type=1326 audit(2000003420.453:4506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7148 comm="syz.0.15571" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf700d579 code=0x0 [ 511.575042][ T7176] netlink: 4 bytes leftover after parsing attributes in process `syz.6.15583'. [ 511.625678][ T7180] sctp: [Deprecated]: syz.6.15585 (pid 7180) Use of struct sctp_assoc_value in delayed_ack socket option. [ 511.625678][ T7180] Use struct sctp_sack_info instead [ 511.879613][ T7198] sp0: Synchronizing with TNC [ 512.045929][ T7219] netlink: 830 bytes leftover after parsing attributes in process `syz.1.15603'. [ 512.879996][ T7288] bridge0: port 3(veth1_to_bridge) entered blocking state [ 512.884393][ T7288] bridge0: port 3(veth1_to_bridge) entered disabled state [ 512.888048][ T7288] veth1_to_bridge: entered allmulticast mode [ 512.892104][ T7288] veth1_to_bridge: entered promiscuous mode [ 512.894911][ T7288] bridge0: adding interface veth1_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 512.903258][ T7288] bridge0: port 3(veth1_to_bridge) entered blocking state [ 512.907053][ T7288] bridge0: port 3(veth1_to_bridge) entered forwarding state [ 513.357971][ T7308] dlm: no local IP address has been set [ 513.360340][ T7308] dlm: cannot start dlm midcomms -107 [ 513.576864][ T3978] usb 5-1: new high-speed USB device number 22 using dummy_hcd [ 513.737372][ T3978] usb 5-1: Using ep0 maxpacket: 8 [ 513.743793][ T3978] usb 5-1: New USB device found, idVendor=12d1, idProduct=fae2, bcdDevice=70.8b [ 513.748338][ T3978] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 513.752050][ T3978] usb 5-1: Product: syz [ 513.753934][ T3978] usb 5-1: Manufacturer: syz [ 513.756141][ T3978] usb 5-1: SerialNumber: syz [ 513.761801][ T3978] usb 5-1: config 0 descriptor?? [ 513.770843][ T3978] option 5-1:0.0: GSM modem (1-port) converter detected [ 513.823382][ T40] audit: type=1804 audit(2000003423.283:4507): pid=7317 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm=01 name="/newroot/3872/file0" dev="tmpfs" ino=19619 res=1 errno=0 [ 513.972291][ T3978] usb 5-1: USB disconnect, device number 22 [ 513.975819][ T3978] option 5-1:0.0: device disconnected [ 514.445203][ T7339] Failed to get privilege flags for destination (handle=0x2:0xd) [ 514.446887][ T5968] Bluetooth: hci4: command 0x1003 tx timeout [ 514.453570][ T5971] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 514.497341][ T7341] netlink: 'syz.1.15658': attribute type 4 has an invalid length. [ 514.620106][ T7353] batman_adv: batadv0: Adding interface: gretap3 [ 514.622914][ T7353] batman_adv: batadv0: Interface activated: gretap3 [ 514.908671][ T7372] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 514.915791][ T42] Bluetooth: hci4: Frame reassembly failed (-84) [ 515.176947][ T5968] Bluetooth: hci5: command 0xfc11 tx timeout [ 515.177498][ T5303] Bluetooth: hci5: Entering manufacturer mode failed (-110) [ 516.536869][ C3] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 516.614539][ T7445] Bluetooth: received HCILL_WAKE_UP_IND in state 2 [ 516.926960][ T5968] Bluetooth: hci4: command 0x1003 tx timeout [ 516.931110][ T5971] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 517.044378][ T40] audit: type=1326 audit(2000003426.503:4508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7469 comm="syz.1.15717" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 517.053510][ T40] audit: type=1326 audit(2000003426.503:4509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7469 comm="syz.1.15717" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 517.061759][ T40] audit: type=1326 audit(2000003426.503:4510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7469 comm="syz.1.15717" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 517.070770][ T40] audit: type=1326 audit(2000003426.503:4511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7469 comm="syz.1.15717" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 517.080579][ T40] audit: type=1326 audit(2000003426.513:4512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7469 comm="syz.1.15717" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 517.089969][ T40] audit: type=1326 audit(2000003426.513:4513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7469 comm="syz.1.15717" exe="/syz-executor" sig=0 arch=40000003 syscall=52 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 517.100554][ T40] audit: type=1326 audit(2000003426.513:4514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7469 comm="syz.1.15717" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 517.110020][ T40] audit: type=1326 audit(2000003426.513:4515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7469 comm="syz.1.15717" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 517.116856][ T40] audit: type=1326 audit(2000003426.513:4516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7469 comm="syz.1.15717" exe="/syz-executor" sig=0 arch=40000003 syscall=10 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 517.374227][ T5971] block nbd1: Receive control failed (result -32) [ 517.639930][ T7508] can0: slcan on ttyS3. [ 517.707755][ T7508] can0 (unregistered): slcan off ttyS3. [ 517.809050][ T7525] netlink: 28 bytes leftover after parsing attributes in process `syz.1.15740'. [ 517.812186][ T7525] netlink: 28 bytes leftover after parsing attributes in process `syz.1.15740'. [ 517.815174][ T7525] netlink: 28 bytes leftover after parsing attributes in process `syz.1.15740'. [ 518.254994][ T7555] netlink: 28 bytes leftover after parsing attributes in process `syz.0.15753'. [ 518.258783][ T7555] netlink: 28 bytes leftover after parsing attributes in process `syz.0.15753'. [ 518.261786][ T7555] netlink: 28 bytes leftover after parsing attributes in process `syz.0.15753'. [ 518.686851][ T5303] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 518.686862][ T5971] Bluetooth: hci5: command 0x1003 tx timeout [ 518.839396][ T7577] netlink: 'syz.1.15763': attribute type 9 has an invalid length. [ 518.949448][ T7586] netlink: 28 bytes leftover after parsing attributes in process `syz.1.15767'. [ 519.457331][ T7612] netlink: 24 bytes leftover after parsing attributes in process `syz.1.15781'. [ 519.461794][ T7612] netlink: 24 bytes leftover after parsing attributes in process `syz.1.15781'. [ 519.943837][ T7645] netlink: 28 bytes leftover after parsing attributes in process `syz.1.15795'. [ 519.952588][ T7647] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 520.162816][ T7670] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2 [ 520.363706][ T7690] netlink: 'syz.2.15817': attribute type 25 has an invalid length. [ 520.895941][ T7724] kvm: kvm [7723]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x11e) = 0x1 [ 522.358640][ T3978] kernel read not supported for file /dsp (pid: 3978 comm: kworker/1:2) [ 523.656970][ T5971] Bluetooth: hci1: command 0x0c1a tx timeout [ 523.816800][ T74] usb 11-1: new high-speed USB device number 6 using dummy_hcd [ 523.830762][ T40] kauditd_printk_skb: 309 callbacks suppressed [ 523.830776][ T40] audit: type=1326 audit(2000003433.293:4826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7854 comm="syz.0.15891" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf700d598 code=0x7ffc0000 [ 523.842561][ T40] audit: type=1326 audit(2000003433.293:4827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7854 comm="syz.0.15891" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 523.851603][ T40] audit: type=1326 audit(2000003433.293:4828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7854 comm="syz.0.15891" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf700d598 code=0x7ffc0000 [ 523.861391][ T40] audit: type=1326 audit(2000003433.293:4829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7854 comm="syz.0.15891" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf700d598 code=0x7ffc0000 [ 523.870887][ T40] audit: type=1326 audit(2000003433.293:4830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7854 comm="syz.0.15891" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf700d598 code=0x7ffc0000 [ 523.878520][ T40] audit: type=1326 audit(2000003433.293:4831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7854 comm="syz.0.15891" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 523.887650][ T40] audit: type=1326 audit(2000003433.293:4832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7854 comm="syz.0.15891" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 523.896838][ T40] audit: type=1326 audit(2000003433.293:4833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7854 comm="syz.0.15891" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf700d598 code=0x7ffc0000 [ 523.903822][ T40] audit: type=1326 audit(2000003433.293:4834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7854 comm="syz.0.15891" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 523.910958][ T40] audit: type=1326 audit(2000003433.293:4835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7854 comm="syz.0.15891" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 523.979325][ T74] usb 11-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 523.983398][ T74] usb 11-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 523.987930][ T74] usb 11-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 523.995417][ T74] usb 11-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41 [ 523.999479][ T74] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11 [ 524.002809][ T74] usb 11-1: Product: syz [ 524.004565][ T74] usb 11-1: Manufacturer: syz [ 524.006470][ T74] usb 11-1: SerialNumber: syz [ 524.232634][ T74] usblp 11-1:1.0: usblp0: USB Unidirectional printer dev 6 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 524.239776][ T74] usb 11-1: USB disconnect, device number 6 [ 524.244864][ T74] usblp0: removed [ 524.417674][ T7873] bridge1: entered allmulticast mode [ 524.420384][ T7873] team0: Device bridge1 is up. Set it down before adding it as a team port [ 524.836316][ T7908] netlink: 'syz.6.15914': attribute type 6 has an invalid length. [ 524.840433][ T7908] netlink: 'syz.6.15914': attribute type 6 has an invalid length. [ 524.936830][ T55] usb 5-1: new high-speed USB device number 23 using dummy_hcd [ 525.113767][ T55] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 525.123268][ T55] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 525.133648][ T55] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 525.143627][ T55] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 525.153754][ T55] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 525.160222][ T55] usb 5-1: config 0 descriptor?? [ 525.821371][ T55] usbhid 5-1:0.0: can't add hid device: -71 [ 525.824057][ T55] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 525.838650][ T55] usb 5-1: USB disconnect, device number 23 [ 525.974006][ T7952] __nla_validate_parse: 4 callbacks suppressed [ 525.974020][ T7952] netlink: 28 bytes leftover after parsing attributes in process `syz.0.15935'. [ 525.979809][ T7952] netlink: 28 bytes leftover after parsing attributes in process `syz.0.15935'. [ 526.044423][ T7954] usb usb9: usbfs: process 7954 (syz.0.15936) did not claim interface 30 before use [ 526.153373][ T7962] ref_ctr_offset mismatch. inode: 0x4de8 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x4 [ 526.782141][ T8000] No such timeout policy "syz0" [ 526.818627][ T8003] usb 2-1: USB disconnect, device number 2 [ 527.189536][ T8026] netlink: 'syz.6.15967': attribute type 8 has an invalid length. [ 527.506126][ T8049] netlink: 212368 bytes leftover after parsing attributes in process `syz.1.15978'. [ 527.654773][ T8062] netlink: 27 bytes leftover after parsing attributes in process `syz.6.15982'. [ 528.173826][ T8092] random: crng reseeded on system resumption [ 529.001400][ T8155] netlink: 4456 bytes leftover after parsing attributes in process `syz.1.16022'. [ 529.214492][ T8179] loop2: detected capacity change from 0 to 7 [ 529.219415][ T8179] Dev loop2: unable to read RDB block 7 [ 529.221774][ T8179] loop2: AHDI p1 p2 p3 [ 529.223566][ T8179] loop2: partition table partially beyond EOD, truncated [ 529.227832][ T8179] loop2: p1 start 1601398130 is beyond EOD, truncated [ 529.230640][ T8179] loop2: p2 start 1702059890 is beyond EOD, truncated [ 529.280605][ T55] kernel write not supported for file /uinput (pid: 55 comm: kworker/2:1) [ 529.298664][ T288] wlan1: Creating new IBSS network, BSSID 62:9c:7a:30:9d:6e [ 530.082032][ T8241] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 531.173375][ T8291] binder: 8289:8291 ioctl c0306201 80000640 returned -22 [ 533.723645][ T8396] sp0: Synchronizing with TNC [ 534.071096][ T8431] sp0: Synchronizing with TNC [ 534.549714][ T8466] sp0: Synchronizing with TNC [ 535.062006][ T8502] sp0: Synchronizing with TNC [ 535.607030][ T8534] nbd2: detected capacity change from 0 to 127 [ 535.614019][ T5971] block nbd2: Receive control failed (result -104) [ 535.614186][T23234] block nbd2: Send control failed (result -32) [ 535.622091][T23234] block nbd2: Request send failed, requeueing [ 535.628769][T23234] block nbd2: Dead connection, failed to find a fallback [ 535.633348][ T120] block nbd2: Dead connection, failed to find a fallback [ 535.638985][ T120] I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 535.643427][T23234] block nbd2: shutting down sockets [ 535.644336][ T120] buffer_io_error: 24 callbacks suppressed [ 535.644348][ T120] Buffer I/O error on dev nbd2, logical block 1, async page read [ 535.648818][T23234] I/O error, dev nbd2, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 535.658986][T23234] Buffer I/O error on dev nbd2, logical block 2, async page read [ 535.662475][T23234] I/O error, dev nbd2, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 535.665944][T23234] Buffer I/O error on dev nbd2, logical block 3, async page read [ 535.936970][ T8574] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16212'. [ 536.199373][ T8602] netlink: 16 bytes leftover after parsing attributes in process `syz.6.16225'. [ 536.501630][ T40] kauditd_printk_skb: 157 callbacks suppressed [ 536.501646][ T40] audit: type=1326 audit(2000003445.963:4993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.2.16228" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000 [ 536.511410][ T40] audit: type=1326 audit(2000003445.963:4994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.2.16228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 536.518975][ T40] audit: type=1326 audit(2000003445.963:4995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.2.16228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 536.520414][ T8608] ip6_vti0 speed is unknown, defaulting to 1000 [ 536.528788][ T40] audit: type=1326 audit(2000003445.963:4996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.2.16228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 536.528831][ T40] audit: type=1326 audit(2000003445.963:4997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.2.16228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 536.528871][ T40] audit: type=1326 audit(2000003445.963:4998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.2.16228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 536.528911][ T40] audit: type=1326 audit(2000003445.963:4999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.2.16228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 536.528951][ T40] audit: type=1326 audit(2000003445.963:5000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.2.16228" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000 [ 536.528993][ T40] audit: type=1326 audit(2000003445.963:5001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.2.16228" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000 [ 536.529032][ T40] audit: type=1326 audit(2000003445.963:5002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.2.16228" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000 [ 536.605898][ T8608] ip6_vti0 speed is unknown, defaulting to 1000 [ 536.613790][ T8608] ip6_vti0 speed is unknown, defaulting to 1000 [ 536.789306][ T8608] infiniband syz2: set down [ 536.790935][ T5960] ip6_vti0 speed is unknown, defaulting to 1000 [ 536.792048][ T8608] infiniband syz2: added ip6_vti0 [ 536.843714][ T8608] RDS/IB: syz2: added [ 536.847276][ T8608] smc: adding ib device syz2 with port count 1 [ 536.850907][ T8608] smc: ib device syz2 port 1 has no pnetid [ 536.859141][ T6005] ip6_vti0 speed is unknown, defaulting to 1000 [ 536.864687][ T8608] ip6_vti0 speed is unknown, defaulting to 1000 [ 537.043408][ T8634] vxcan0: tx address claim with dest, not broadcast [ 537.049225][ T8608] ip6_vti0 speed is unknown, defaulting to 1000 [ 537.224316][ T8608] ip6_vti0 speed is unknown, defaulting to 1000 [ 537.395574][ T8608] ip6_vti0 speed is unknown, defaulting to 1000 [ 539.104452][ T8706] sctp: [Deprecated]: syz.6.16270 (pid 8706) Use of struct sctp_assoc_value in delayed_ack socket option. [ 539.104452][ T8706] Use struct sctp_sack_info instead [ 539.423131][ T8735] vivid-004: disconnect [ 539.426045][ T8735] vivid-004: reconnect [ 539.458550][ T8740] tipc: Enabling of bearer rejected, failed to enable media [ 539.681108][ T8758] [U] [ 539.682075][ T8758] [U] [ 539.683194][ T8758] [U] [ 539.684281][ T8758] [U] [ 539.685206][ T8758] [U] [ 539.686112][ T8758] [U] [ 539.687096][ T8758] [U] [ 539.688189][ T8758] [U] [ 539.689655][ T8758] [U] [ 539.690708][ T8758] [U] [ 539.691755][ T8758] [U] [ 539.692642][ T8758] [U] [ 539.693647][ T8758] [U] [ 539.694567][ T8758] [U] [ 539.695647][ T8758] [U] [ 539.696856][ T8758] [U] [ 539.698382][ T8758] [U] [ 539.699504][ T8758] [U] [ 539.700592][ T8758] [U] [ 539.701688][ T8758] [U] [ 539.702918][ T8758] [U] [ 539.704030][ T8758] [U] [ 539.705156][ T8758] [U] [ 539.706067][ T8758] [U] [ 539.708948][ T8758] [U] [ 539.710062][ T8758] [U] [ 539.711282][ T8758] [U] [ 539.712444][ T8758] [U] [ 539.713554][ T8758] [U] [ 539.714759][ T8758] [U] [ 539.715955][ T8758] [U] [ 539.717178][ T8758] [U] [ 539.719099][ T8758] [U] [ 539.720295][ T8758] [U] [ 539.721485][ T8758] [U] [ 539.722692][ T8758] [U] [ 539.723921][ T8758] [U] [ 539.725100][ T8758] [U] [ 539.726315][ T8758] [U] [ 539.727415][ T8758] [U] [ 539.729140][ T8758] [U] [ 539.730393][ T8758] [U] [ 539.731639][ T8758] [U] [ 539.732826][ T8758] [U] [ 539.734537][ T8758] [U] [ 539.735803][ T8758] [U] [ 539.736898][ T8758] [U] [ 539.737891][ T8758] [U] [ 539.739151][ T8758] [U] [ 539.740305][ T8758] [U] [ 539.741443][ T8758] [U] [ 539.742599][ T8758] [U] [ 539.743980][ T8758] [U] [ 539.745208][ T8758] [U] [ 539.746419][ T8758] [U] [ 539.747458][ T8758] [U] [ 539.748623][ T8758] [U] [ 539.749545][ T8758] [U] [ 539.750751][ T8758] [U] [ 539.751958][ T8758] [U] [ 539.753133][ T8758] [U] [ 539.754317][ T8758] [U] [ 539.755549][ T8758] [U] [ 539.756763][ T8758] [U] [ 539.758345][ T8758] [U] [ 539.759540][ T8758] [U] [ 539.760754][ T8758] [U] [ 539.761976][ T8758] [U] [ 539.763298][ T8758] [U] [ 539.764401][ T8758] [U] [ 539.765487][ T8758] [U] [ 539.766662][ T8758] [U] [ 539.768158][ T8758] [U] [ 539.769381][ T8758] [U] [ 539.770606][ T8758] [U] [ 539.771859][ T8758] [U] [ 539.773335][ T8758] [U] [ 539.774593][ T8758] [U] [ 539.775727][ T8758] [U] [ 539.776941][ T8758] [U] [ 539.778440][ T8758] [U] [ 539.779676][ T8758] [U] [ 539.780882][ T8758] [U] [ 539.782109][ T8758] [U] [ 539.783475][ T8758] [U] [ 539.784729][ T8758] [U] [ 539.785946][ T8758] [U] [ 539.787128][ T8758] [U] [ 539.788480][ T8758] [U] [ 539.789729][ T8758] [U] [ 539.790914][ T8758] [U] [ 539.792135][ T8758] [U] [ 539.793417][ T8758] [U] [ 539.794392][ T8758] [U] [ 539.795492][ T8758] [U] [ 539.796454][ T8758] [U] [ 539.797618][ T8758] [U] [ 539.798625][ T8758] [U] [ 539.799558][ T8758] [U] [ 539.800549][ T8758] [U] [ 539.801731][ T8758] [U] [ 539.802626][ T8758] [U] [ 539.803601][ T8758] [U] [ 539.804455][ T8758] [U] [ 539.805704][ T8758] [U] [ 539.806771][ T8758] [U] [ 539.807745][ T8758] [U] [ 539.808787][ T8758] [U] [ 539.810017][ T8758] [U] [ 539.811136][ T8758] [U] [ 539.812196][ T8758] [U] [ 539.813250][ T8758] [U] [ 539.814222][ T8758] [U] [ 539.815360][ T8758] [U] [ 539.816451][ T8758] [U] [ 539.817540][ T8758] [U] [ 539.818832][ T8758] [U] [ 539.819914][ T8758] [U] [ 539.820940][ T8758] [U] [ 539.821882][ T8758] [U] [ 539.823050][ T8758] [U] [ 539.824037][ T8758] [U] [ 539.825063][ T8758] [U] [ 539.826159][ T8758] [U] [ 539.827351][ T8758] [U] [ 539.828467][ T8758] [U] [ 539.829564][ T8758] [U] [ 539.836419][ T8757] [U] [ 540.048428][ T8777] netlink: 204 bytes leftover after parsing attributes in process `syz.6.16303'. [ 540.158904][ T55] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 540.345491][ T8797] netlink: 8 bytes leftover after parsing attributes in process `syz.2.16313'. [ 541.228394][ T8807] netlink: 24 bytes leftover after parsing attributes in process `syz.6.16317'. [ 541.232338][ T8807] IPVS: Error connecting to the multicast addr [ 542.108412][ T8865] input: syz1 as /devices/virtual/input/input52 [ 542.217496][ T8880] vlan0: entered allmulticast mode [ 542.777669][ T8933] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16373'. [ 542.783618][ T8933] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16373'. [ 543.499897][ T8972] input: syz1 as /devices/virtual/input/input53 [ 543.627932][ T8984] block device autoloading is deprecated and will be removed. [ 543.968815][ T9013] IPVS: rr: SCTP 172.20.20.187:0 - no destination available [ 543.998937][ T40] kauditd_printk_skb: 494 callbacks suppressed [ 543.998954][ T40] audit: type=1326 audit(2000003453.463:5497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8994 comm="syz.1.16402" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 544.011474][ T40] audit: type=1326 audit(2000003453.463:5498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8994 comm="syz.1.16402" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 544.020366][ T40] audit: type=1326 audit(2000003453.463:5499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8994 comm="syz.1.16402" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 544.028972][ T40] audit: type=1326 audit(2000003453.463:5500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8994 comm="syz.1.16402" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 544.048509][ T40] audit: type=1326 audit(2000003453.463:5501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8994 comm="syz.1.16402" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 544.057633][ T40] audit: type=1326 audit(2000003453.463:5502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8994 comm="syz.1.16402" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 544.068785][ T40] audit: type=1326 audit(2000003453.463:5503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8994 comm="syz.1.16402" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 544.077980][ T40] audit: type=1326 audit(2000003453.463:5504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8994 comm="syz.1.16402" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 544.096622][ T40] audit: type=1326 audit(2000003453.463:5505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8994 comm="syz.1.16402" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 544.106154][ T40] audit: type=1326 audit(2000003453.463:5506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8994 comm="syz.1.16402" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 544.252387][ T9028] netlink: 'syz.6.16418': attribute type 1 has an invalid length. [ 544.255967][ T9028] netlink: 'syz.6.16418': attribute type 3 has an invalid length. [ 544.262293][ T9028] netlink: 'syz.6.16418': attribute type 7 has an invalid length. [ 544.264966][ T9028] netlink: 'syz.6.16418': attribute type 8 has an invalid length. [ 544.268514][ T9028] netlink: 184 bytes leftover after parsing attributes in process `syz.6.16418'. [ 544.272189][ T9028] NCSI netlink: No device for ifindex 131092 [ 544.384139][ T9041] loop5: detected capacity change from 0 to 7 [ 544.388764][T30602] Dev loop5: unable to read RDB block 7 [ 544.391244][T30602] loop5: AHDI p1 p2 [ 544.392997][T30602] loop5: partition table partially beyond EOD, truncated [ 544.396514][T30602] loop5: p1 start 1702000233 is beyond EOD, truncated [ 544.411320][ T9041] Dev loop5: unable to read RDB block 7 [ 544.415081][ T9041] loop5: AHDI p1 p2 [ 544.417607][ T9041] loop5: partition table partially beyond EOD, truncated [ 544.421274][ T9041] loop5: p1 start 1702000233 is beyond EOD, truncated [ 545.343177][ T9117] netlink: 4 bytes leftover after parsing attributes in process `syz.2.16459'. [ 545.351666][ T9117] netlink: 4 bytes leftover after parsing attributes in process `syz.2.16459'. [ 545.488725][ T9135] raw_sendmsg: syz.2.16466 forgot to set AF_INET. Fix it! [ 545.866646][ T24] hid_parser_main: 12 callbacks suppressed [ 545.868937][ T24] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 545.874674][ T24] hid-generic 0000:0000:0000.000B: hidraw0: HID v0.00 Device [syz1] on syz0 [ 546.607250][ T5971] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 546.607458][ T5303] Bluetooth: hci4: command 0x1003 tx timeout [ 546.775388][ T9206] Sensor A: ================= START STATUS ================= [ 546.779895][ T9206] Sensor A: Test Pattern: Horizontal 100% Colorbar [ 546.784878][ T9206] Sensor A: Show Information: All [ 546.787767][ T9206] Sensor A: Vertical Flip: true [ 546.790005][ T9206] Sensor A: Horizontal Flip: true [ 546.793036][ T9206] Sensor A: Brightness: 3 [ 546.795036][ T9206] Sensor A: Contrast: 128 [ 546.797473][ T9206] Sensor A: Hue: 0 [ 546.799199][ T9206] Sensor A: Saturation: 128 [ 546.801185][ T9206] Sensor A: ================== END STATUS ================== [ 546.853717][ T9208] netlink: 4 bytes leftover after parsing attributes in process `syz.6.16500'. [ 547.961060][T13648] kernel write not supported for file /input/event2 (pid: 13648 comm: kworker/0:4) [ 548.012679][ T9270] netlink: 1 bytes leftover after parsing attributes in process `syz.0.16529'. [ 548.096776][ T6045] usb 11-1: new high-speed USB device number 7 using dummy_hcd [ 548.256984][ T6045] usb 11-1: Using ep0 maxpacket: 32 [ 548.260360][ T6045] usb 11-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 548.265987][ T6045] usb 11-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 548.270418][ T6045] usb 11-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 548.273865][ T6045] usb 11-1: Product: syz [ 548.275649][ T6045] usb 11-1: Manufacturer: syz [ 548.277783][ T6045] usb 11-1: SerialNumber: syz [ 548.282174][ T6045] usb 11-1: config 0 descriptor?? [ 548.285161][ T9260] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 548.289740][ T6045] hub 11-1:0.0: bad descriptor, ignoring hub [ 548.292306][ T6045] hub 11-1:0.0: probe with driver hub failed with error -5 [ 548.617281][ T6045] usb 11-1: USB disconnect, device number 7 [ 548.620515][ T9310] IPVS: rr: SCTP 172.20.20.187:0 - no destination available [ 549.210092][ T9341] IPVS: rr: SCTP 172.20.20.187:0 - no destination available [ 549.612780][ T24] usb 11-1: new high-speed USB device number 8 using dummy_hcd [ 549.776775][ T24] usb 11-1: Using ep0 maxpacket: 16 [ 549.784616][ T24] usb 11-1: config 0 has an invalid interface number: 132 but max is 0 [ 549.788756][ T24] usb 11-1: config 0 has no interface number 0 [ 549.800635][ T24] usb 11-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25 [ 549.805224][ T24] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 549.809217][ T24] usb 11-1: Product: syz [ 549.811131][ T24] usb 11-1: Manufacturer: syz [ 549.813207][ T24] usb 11-1: SerialNumber: syz [ 549.826379][ T24] usb 11-1: config 0 descriptor?? [ 549.831790][ T24] hub 11-1:0.132: bad descriptor, ignoring hub [ 549.834370][ T24] hub 11-1:0.132: probe with driver hub failed with error -5 [ 549.840420][ T24] input: bcm5974 as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.132/input/input54 [ 550.278018][T13648] usb 11-1: USB disconnect, device number 8 [ 551.410703][ T9400] netlink: 204 bytes leftover after parsing attributes in process `syz.0.16586'. [ 551.688649][ T9411] netlink: 24 bytes leftover after parsing attributes in process `syz.0.16591'. [ 551.692961][ T9411] IPVS: Error connecting to the multicast addr [ 552.696854][ T6005] usb 5-1: new high-speed USB device number 24 using dummy_hcd [ 552.856770][ T6005] usb 5-1: Using ep0 maxpacket: 8 [ 552.860319][ T6005] usb 5-1: config 0 has an invalid interface number: 186 but max is 0 [ 552.863015][ T6005] usb 5-1: config 0 has no interface number 0 [ 552.865401][ T6005] usb 5-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 552.869332][ T6005] usb 5-1: config 0 interface 186 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A [ 552.873024][ T6005] usb 5-1: config 0 interface 186 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7 [ 552.876612][ T6005] usb 5-1: config 0 interface 186 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3 [ 552.882534][ T6005] usb 5-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5 [ 552.885358][ T6005] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 552.888184][ T6005] usb 5-1: Product: syz [ 552.889585][ T6005] usb 5-1: Manufacturer: syz [ 552.890974][ T6005] usb 5-1: SerialNumber: syz [ 552.898285][ T6005] usb 5-1: config 0 descriptor?? [ 553.110938][ T6005] iowarrior 5-1:0.186: IOWarrior product=0x1505, serial= interface=186 now attached to iowarrior0 [ 553.209480][ T9456] bridge0: port 3(syz_tun) entered blocking state [ 553.212481][ T9456] bridge0: port 3(syz_tun) entered disabled state [ 553.215316][ T9456] syz_tun: entered allmulticast mode [ 553.219908][ T9456] syz_tun: entered promiscuous mode [ 553.225285][ T9456] bridge0: port 3(syz_tun) entered blocking state [ 553.228238][ T9456] bridge0: port 3(syz_tun) entered forwarding state [ 553.315289][ T6005] usb 5-1: USB disconnect, device number 24 [ 553.477163][ T9468] mkiss: ax0: crc mode is auto. [ 553.975208][ T9488] netlink: 28 bytes leftover after parsing attributes in process `syz.6.16629'. [ 554.023595][ T9492] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0) [ 554.028833][ T9492] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0) [ 555.022383][ T9555] netlink: 'syz.1.16660': attribute type 14 has an invalid length. [ 555.157365][ T9563] ubi31: attaching mtd0 [ 555.159704][ T9563] ubi31 error: ubi_attach_mtd_dev: bad VID header (5) or data offsets (69) [ 555.607775][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 555.613536][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 555.619748][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 555.625015][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 555.630290][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 555.635490][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 555.641007][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 555.646632][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 555.652989][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 555.658816][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 555.691221][ T9599] bad cache= option: none : no [ 555.691221][ T9599] blocksize : 1 [ 555.691221][ T9599] min keysize : 20 [ 555.691221][ T9599] max keysize : 36 [ 555.691221][ T9599] ivsize : 8 [ 555.691221][ T9599] chunksize : 16 [ 555.691221][ T9599] walksize : 16 [ 555.691221][ T9599] statesize : 0 [ 555.691221][ T9599] [ 555.691221][ T9599] name : ccm(aes) [ 555.691221][ T9599] driver : ccm_base(ctr-aes-vaes-avx2 [ 555.691221][ T9599] [ 555.710026][ T9599] CIFS: VFS: bad cache= option: none : no [ 555.710026][ T9599] blocksize : 1 [ 555.710026][ T9599] min keysize : 20 [ 555.710026][ T9599] max keysize : 36 [ 555.710026][ T9599] ivsize : 8 [ 555.710026][ T9599] chunksize : 16 [ 555.710026][ T9599] walksize : 16 [ 555.710026][ T9599] statesize : 0 [ 555.710026][ T9599] [ 555.710026][ T9599] name : ccm(aes) [ 555.710026][ T9599] driver : ccm_base(ctr-aes-vaes-avx2 [ 555.918059][ T9609] netlink: 196 bytes leftover after parsing attributes in process `syz.6.16684'. [ 556.050964][ T9617] netlink: 56 bytes leftover after parsing attributes in process `syz.6.16689'. [ 557.882897][ T9681] macsec0: left allmulticast mode [ 558.522769][ T9698] ip6_vti0 speed is unknown, defaulting to 1000 [ 560.325541][ T9773] x_tables: ip6_tables: SNPT target: used from hooks FORWARD, but only usable from INPUT/POSTROUTING [ 560.616916][ C0] net_ratelimit: 29638 callbacks suppressed [ 560.616935][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 560.616980][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 560.619802][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 560.623753][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 560.628877][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 560.633146][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 560.638042][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 560.642785][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 560.647692][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 560.652611][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 560.908962][ T9785] bond0: (slave dummy0): Releasing backup interface [ 560.918635][ T9785] dummy0: left promiscuous mode [ 560.931874][ T9785] batman_adv: batadv0: Adding interface: dummy0 [ 560.934582][ T9785] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 560.970394][ T9785] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active [ 561.079733][ T9798] netlink: 24 bytes leftover after parsing attributes in process `syz.6.16770'. [ 561.083748][ T9798] netlink: 24 bytes leftover after parsing attributes in process `syz.6.16770'. [ 561.126044][ T9801] random: crng reseeded on system resumption [ 561.969462][ T1145] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 562.392836][ T9859] gfs2: gfs2 mount does not exist [ 562.400307][ T9864] netlink: 28 bytes leftover after parsing attributes in process `syz.1.16801'. [ 563.269053][ T9893] netlink: 12 bytes leftover after parsing attributes in process `syz.6.16814'. [ 563.275234][ T9893] bridge0: port 4(vlan0) entered blocking state [ 563.278344][ T9893] bridge0: port 4(vlan0) entered disabled state [ 563.280669][ T9893] vlan0: entered allmulticast mode [ 563.282819][ T9893] bridge0: entered allmulticast mode [ 563.296748][ T9893] vlan0: left allmulticast mode [ 563.298340][ T9893] bridge0: left allmulticast mode [ 563.361107][ T9897] netlink: 4 bytes leftover after parsing attributes in process `syz.1.16817'. [ 563.523035][ T9906] netlink: 'syz.2.16821': attribute type 8 has an invalid length. [ 563.808867][ T40] kauditd_printk_skb: 611 callbacks suppressed [ 563.808882][ T40] audit: type=1326 audit(2000003729.276:6118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9921 comm="syz.6.16830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 563.822341][ T40] audit: type=1326 audit(2000003729.276:6119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9921 comm="syz.6.16830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 563.836332][ T40] audit: type=1326 audit(2000003729.276:6120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9921 comm="syz.6.16830" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 563.848484][ T40] audit: type=1326 audit(2000003729.276:6121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9921 comm="syz.6.16830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 563.857696][ T40] audit: type=1326 audit(2000003729.276:6122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9921 comm="syz.6.16830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 563.867350][ T40] audit: type=1326 audit(2000003729.276:6123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9921 comm="syz.6.16830" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 563.876218][ T40] audit: type=1326 audit(2000003729.276:6124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9921 comm="syz.6.16830" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff6598 code=0x7ffc0000 [ 563.885254][ T40] audit: type=1326 audit(2000003729.276:6125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9921 comm="syz.6.16830" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff6598 code=0x7ffc0000 [ 563.917844][ T40] audit: type=1326 audit(2000003729.276:6126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9921 comm="syz.6.16830" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff6598 code=0x7ffc0000 [ 563.926618][ T40] audit: type=1326 audit(2000003729.276:6127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9921 comm="syz.6.16830" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff6598 code=0x7ffc0000 [ 564.279881][ T9931] dlm: non-version read from control device 34 [ 564.427489][ T9937] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16836'. [ 564.427889][ T9935] erspan0: entered promiscuous mode [ 564.533592][ T9940] overlayfs: missing 'workdir' [ 565.626771][ C0] net_ratelimit: 44543 callbacks suppressed [ 565.626784][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 565.626814][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 565.628894][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 565.634374][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 565.638049][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 565.642861][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 565.646416][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 565.651325][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 565.654899][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 565.659822][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 565.866340][ T120] block nbd2: Possible stuck request ffff88802593e000: control (read@0,1024B). Runtime 30 seconds [ 566.945594][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 566.959048][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 567.097267][T10011] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 567.108989][T10011] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 567.112796][T10011] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 567.191035][T10023] IPVS: persistence engine module ip_vs_pe_* not found [ 567.271473][T10031] nfs: Unknown parameter 'ntext' [ 567.717758][ T843] usb 11-1: new high-speed USB device number 9 using dummy_hcd [ 567.870907][ T843] usb 11-1: Using ep0 maxpacket: 16 [ 567.875948][ T843] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 567.880844][ T843] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 567.886149][ T843] usb 11-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 567.892510][ T843] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 567.899842][ T843] usb 11-1: config 0 descriptor?? [ 568.524987][ T843] usbhid 11-1:0.0: can't add hid device: -71 [ 568.531172][ T843] usbhid 11-1:0.0: probe with driver usbhid failed with error -71 [ 568.539129][ T843] usb 11-1: USB disconnect, device number 9 [ 568.572129][T10079] netlink: 8 bytes leftover after parsing attributes in process `syz.2.16896'. [ 568.575199][T10079] netlink: 12 bytes leftover after parsing attributes in process `syz.2.16896'. [ 568.578426][T10079] netlink: 'syz.2.16896': attribute type 20 has an invalid length. [ 568.628044][T10083] veth0: entered promiscuous mode [ 568.630364][T10083] veth0: left promiscuous mode [ 568.657211][T10085] netlink: 4 bytes leftover after parsing attributes in process `syz.1.16899'. [ 569.157912][T10109] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16911'. [ 569.160975][T10109] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16911'. [ 569.179629][ T5971] Bluetooth: hci1: command 0x0c1a tx timeout [ 569.179715][ T5303] Bluetooth: hci3: command 0x0405 tx timeout [ 569.181885][ T5971] Bluetooth: hci2: command 0x0406 tx timeout [ 570.123379][T10161] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16934'. [ 570.349104][T10154] nbd3: detected capacity change from 0 to 8589934655 [ 570.368628][ T5303] block nbd3: Receive control failed (result -104) [ 570.636755][ C1] net_ratelimit: 47636 callbacks suppressed [ 570.636769][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 570.636853][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 570.638958][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 570.642642][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 570.646402][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 570.650119][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 570.653847][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 570.657741][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 570.662880][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 570.666369][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 570.807502][ T40] kauditd_printk_skb: 2931 callbacks suppressed [ 570.807517][ T40] audit: type=1326 audit(2000003736.276:9059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10145 comm="syz.1.16927" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 570.819401][ T40] audit: type=1326 audit(2000003736.286:9060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10145 comm="syz.1.16927" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 570.830616][ T40] audit: type=1326 audit(2000003736.296:9061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10145 comm="syz.1.16927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 570.845205][ T40] audit: type=1326 audit(2000003736.296:9062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10145 comm="syz.1.16927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 570.858980][ T40] audit: type=1326 audit(2000003736.296:9063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10145 comm="syz.1.16927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 570.869302][ T40] audit: type=1326 audit(2000003736.296:9064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10145 comm="syz.1.16927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 570.881111][ T40] audit: type=1326 audit(2000003736.296:9065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10145 comm="syz.1.16927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 570.889161][ T40] audit: type=1326 audit(2000003736.296:9066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10145 comm="syz.1.16927" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 570.897872][ T40] audit: type=1326 audit(2000003736.296:9067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10145 comm="syz.1.16927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 570.923666][ T40] audit: type=1326 audit(2000003736.296:9068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10145 comm="syz.1.16927" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 572.526818][ T843] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 572.688971][ T843] usb 5-1: too many configurations: 9, using maximum allowed: 8 [ 572.693183][ T843] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 572.699802][ T843] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 572.704422][ T843] usb 5-1: config 0 interface 0 has no altsetting 0 [ 572.713536][ T843] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 572.717882][ T843] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 572.722382][ T843] usb 5-1: config 0 interface 0 has no altsetting 0 [ 572.727170][ T843] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 572.731522][ T843] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 572.736371][ T843] usb 5-1: config 0 interface 0 has no altsetting 0 [ 572.741172][ T843] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 572.744333][ T843] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 572.749136][ T843] usb 5-1: config 0 interface 0 has no altsetting 0 [ 572.752178][ T843] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 572.755250][ T843] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 572.759736][ T843] usb 5-1: config 0 interface 0 has no altsetting 0 [ 572.762917][ T843] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 572.766642][ T843] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 572.773079][ T843] usb 5-1: config 0 interface 0 has no altsetting 0 [ 572.780410][ T843] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 572.784304][ T843] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 572.788658][ T843] usb 5-1: config 0 interface 0 has no altsetting 0 [ 572.792646][ T843] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 572.796127][ T843] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 572.801022][ T843] usb 5-1: config 0 interface 0 has no altsetting 0 [ 572.807856][ T843] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 572.811397][ T843] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 572.814255][ T843] usb 5-1: Product: syz [ 572.815709][ T843] usb 5-1: Manufacturer: syz [ 572.818583][ T843] usb 5-1: SerialNumber: syz [ 572.827329][ T843] usb 5-1: config 0 descriptor?? [ 572.835726][ T843] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0 [ 573.103841][ C3] usb 5-1: yurex_control_callback - control failed: -71 [ 573.109677][ T843] usb 5-1: USB disconnect, device number 25 [ 573.114182][ T843] yurex 5-1:0.0: USB YUREX #0 now disconnected [ 573.697698][T10283] random: crng reseeded on system resumption [ 573.883669][T10293] bridge0: adding interface bridge0 with same address as a received packet (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 573.888992][T10293] bridge0: adding interface bridge0 with same address as a received packet (addr:aa:aa:aa:aa:aa:1c, vlan:1) [ 574.926937][T10343] netlink: 12 bytes leftover after parsing attributes in process `syz.1.17016'. [ 574.941238][T10343] netlink: 12 bytes leftover after parsing attributes in process `syz.1.17016'. [ 575.532005][T10371] netlink: 24 bytes leftover after parsing attributes in process `syz.2.17028'. [ 575.646751][ C0] net_ratelimit: 41750 callbacks suppressed [ 575.646770][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 575.647462][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 575.649549][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 575.654578][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 575.659850][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 575.665286][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 575.670367][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 575.674726][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 575.678742][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 575.685018][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 576.237912][T10418] netlink: 56 bytes leftover after parsing attributes in process `syz.2.17049'. [ 576.274119][ T40] kauditd_printk_skb: 460 callbacks suppressed [ 576.274132][ T40] audit: type=1326 audit(2000003741.726:9529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10416 comm="syz.1.17050" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fa5579 code=0x0 [ 577.197479][T10464] ip6_vti0 speed is unknown, defaulting to 1000 [ 577.482051][T10474] gfs2: path_lookup on € returned error -2 [ 577.990491][T10505] netlink: 'syz.1.17090': attribute type 10 has an invalid length. [ 578.079735][ T843] usb 11-1: new high-speed USB device number 10 using dummy_hcd [ 578.258266][ T843] usb 11-1: config index 0 descriptor too short (expected 23569, got 27) [ 578.261695][ T843] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 578.266522][ T843] usb 11-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 578.270853][ T843] usb 11-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 578.273564][ T843] usb 11-1: Manufacturer: syz [ 578.281891][ T843] usb 11-1: config 0 descriptor?? [ 578.282462][T10519] blkio.reset_stats is deprecated [ 578.366904][ T843] rc_core: IR keymap rc-hauppauge not found [ 578.369596][ T843] Registered IR keymap rc-empty [ 578.372660][ T843] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/rc/rc0 [ 578.379412][ T843] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/rc/rc0/input57 [ 578.447259][ T195] wlan1: Trigger new scan to find an IBSS to join [ 578.457284][ T153] block nbd3: Connection timed out, retrying (0/1 alive) [ 578.461464][ T153] block nbd3: Connection timed out, retrying (0/1 alive) [ 578.464603][ T153] block nbd3: Connection timed out, retrying (0/1 alive) [ 578.469679][ T153] block nbd3: Connection timed out, retrying (0/1 alive) [ 578.472702][ T153] block nbd3: Dead connection, failed to find a fallback [ 578.475770][ T153] block nbd3: shutting down sockets [ 578.479685][ T153] I/O error, dev nbd3, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 578.483811][ T153] Buffer I/O error on dev nbd3, logical block 3, async page read [ 578.489635][ T153] I/O error, dev nbd3, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 578.493634][ T153] Buffer I/O error on dev nbd3, logical block 2, async page read [ 578.497400][ T153] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 578.501351][ T153] Buffer I/O error on dev nbd3, logical block 1, async page read [ 578.504675][ T153] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 578.507298][ T843] usb 11-1: USB disconnect, device number 10 [ 578.508619][ T153] Buffer I/O error on dev nbd3, logical block 0, async page read [ 578.518418][T30602] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 578.525974][T30602] Buffer I/O error on dev nbd3, logical block 0, async page read [ 578.538379][T30602] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 578.542484][T30602] Buffer I/O error on dev nbd3, logical block 1, async page read [ 578.545781][T30602] I/O error, dev nbd3, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 578.549713][T30602] Buffer I/O error on dev nbd3, logical block 2, async page read [ 578.553369][T30602] I/O error, dev nbd3, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 578.559195][T30602] Buffer I/O error on dev nbd3, logical block 3, async page read [ 578.562567][T30602] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 578.565600][T30602] Buffer I/O error on dev nbd3, logical block 0, async page read [ 578.569060][T30602] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 578.572799][T30602] Buffer I/O error on dev nbd3, logical block 1, async page read [ 578.580927][T30602] ldm_validate_partition_table(): Disk read failed. [ 578.585195][T30602] Dev nbd3: unable to read RDB block 0 [ 578.589675][T30602] nbd3: unable to read partition table [ 578.712888][T30602] ldm_validate_partition_table(): Disk read failed. [ 578.717668][T30602] Dev nbd3: unable to read RDB block 0 [ 578.720891][T30602] nbd3: unable to read partition table [ 578.910911][T10534] input: syz0 as /devices/virtual/input/input58 [ 579.084601][T10542] netlink: 4 bytes leftover after parsing attributes in process `syz.0.17105'. [ 579.678659][T10565] netlink: 'syz.0.17115': attribute type 9 has an invalid length. [ 579.681978][T10565] netlink: 212368 bytes leftover after parsing attributes in process `syz.0.17115'. [ 580.041854][T10577] veth0_macvtap: left promiscuous mode [ 580.149102][ T5303] Bluetooth: hci2: unexpected event for opcode 0x1004 [ 580.169307][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 580.175510][ T0] NOHZ tick-stop error: local softirq work is pending, handler #108!!! [ 580.383197][T10588] netlink: 80 bytes leftover after parsing attributes in process `syz.0.17126'. [ 580.558824][T10599] vivid-002: disconnect [ 580.561599][T10597] vivid-002: reconnect [ 580.645451][T10604] batman_adv: batadv0: Adding interface: macsec4 [ 580.648254][T10604] batman_adv: batadv0: The MTU of interface macsec4 is too small (1468) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 580.656753][ C1] net_ratelimit: 44073 callbacks suppressed [ 580.656763][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 580.656770][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 580.657053][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 580.657310][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 580.657565][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 580.657838][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 580.658121][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 580.658377][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 580.658628][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 580.658664][T10604] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 580.658682][T10604] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 580.658696][T10604] batman_adv: batadv0: Interface activated: macsec4 [ 580.660520][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 581.320645][T10627] netlink: 'syz.0.17144': attribute type 7 has an invalid length. [ 581.487222][ T13] wlan1: Trigger new scan to find an IBSS to join [ 581.995828][T10659] netlink: 60 bytes leftover after parsing attributes in process `syz.1.17159'. [ 582.507498][T10685] can0: slcan on ptm0. [ 582.601188][T10691] netlink: 8 bytes leftover after parsing attributes in process `syz.6.17171'. [ 582.648775][T10685] can0 (unregistered): slcan off ptm0. [ 582.654535][T10685] Falling back ldisc for ptm0. [ 582.740573][ T40] audit: type=1326 audit(2000003748.206:9530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10698 comm="syz.6.17173" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 582.772053][ T40] audit: type=1326 audit(2000003748.206:9531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10698 comm="syz.6.17173" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 582.783847][ T40] audit: type=1326 audit(2000003748.206:9532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10698 comm="syz.6.17173" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 582.806522][ T40] audit: type=1326 audit(2000003748.206:9533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10698 comm="syz.6.17173" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 582.815826][ T40] audit: type=1326 audit(2000003748.206:9534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10698 comm="syz.6.17173" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 582.825365][ T40] audit: type=1326 audit(2000003748.206:9535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10698 comm="syz.6.17173" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 582.834613][ T40] audit: type=1326 audit(2000003748.206:9536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10698 comm="syz.6.17173" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 582.843205][ T40] audit: type=1326 audit(2000003748.206:9537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10698 comm="syz.6.17173" exe="/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 582.852844][ T40] audit: type=1326 audit(2000003748.206:9538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10698 comm="syz.6.17173" exe="/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf7ff6579 code=0x7ffc0000 [ 583.000979][T10715] input: syz1 as /devices/virtual/input/input59 [ 583.006720][ T40] audit: type=1326 audit(2000003748.466:9539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.1.17183" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 583.413378][T10738] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17193'. [ 583.997253][ T24] usb 5-1: new high-speed USB device number 26 using dummy_hcd [ 584.157593][ T24] usb 5-1: Using ep0 maxpacket: 32 [ 584.161377][ T24] usb 5-1: config 0 has an invalid interface number: 85 but max is 0 [ 584.164221][ T24] usb 5-1: config 0 has no interface number 0 [ 584.168902][ T24] usb 5-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 584.173392][ T24] usb 5-1: config 0 interface 85 has no altsetting 0 [ 584.178960][ T24] usb 5-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72 [ 584.182596][ T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 584.185393][ T24] usb 5-1: Product: syz [ 584.187789][ T24] usb 5-1: Manufacturer: syz [ 584.189567][ T24] usb 5-1: SerialNumber: syz [ 584.196072][ T24] usb 5-1: config 0 descriptor?? [ 584.209126][ T5968] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 584.212585][ T5968] Bluetooth: hci2: Injecting HCI hardware error event [ 584.219046][ T5971] Bluetooth: hci2: hardware error 0x00 [ 584.611010][ T24] appletouch 5-1:0.85: Failed to read mode from device. [ 584.613988][ T24] appletouch 5-1:0.85: probe with driver appletouch failed with error -5 [ 584.620191][ T24] usb 5-1: USB disconnect, device number 26 [ 585.647089][ T5303] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 585.666775][ C1] net_ratelimit: 51767 callbacks suppressed [ 585.666794][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 585.666832][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 585.669731][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 585.674741][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 585.679209][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 585.684354][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 585.688485][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 585.693410][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 585.697671][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 585.702709][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 586.289074][ T5971] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 588.257168][T10930] IPVS: persistence engine module ip_vs_pe_* not found [ 588.501002][T10933] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 588.511740][T10933] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 588.990466][T10968] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17283'. [ 588.993355][T10968] netlink: 12 bytes leftover after parsing attributes in process `syz.1.17283'. [ 588.997326][T10968] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17283'. [ 589.000177][T10968] netlink: 12 bytes leftover after parsing attributes in process `syz.1.17283'. [ 589.926335][T11023] comedi comedi3: comedi_test: 6 microvolt, 2047 microsecond waveform attached [ 590.058431][T11033] loop9: detected capacity change from 0 to 7 [ 590.066844][T11033] Dev loop9: unable to read RDB block 7 [ 590.069271][T11033] loop9: unable to read partition table [ 590.071875][T11033] loop9: partition table beyond EOD, truncated [ 590.086254][T11033] loop_reread_partitions: partition scan of loop9 (þ被xü—ŸÑà– ) failed (rc=-5) [ 590.159481][T11040] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2 [ 590.456793][ T5303] Bluetooth: hci3: command 0x0405 tx timeout [ 590.526848][ T5303] Bluetooth: hci1: command 0x0c1a tx timeout [ 590.624783][T11059] /dev/sr0: Can't open blockdev [ 590.676770][ C1] net_ratelimit: 45324 callbacks suppressed [ 590.676781][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 590.676794][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 590.679072][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 590.682721][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 590.686856][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 590.690517][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 590.694734][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 590.699758][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 590.703963][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 590.708597][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 591.426577][ T5968] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 591.432056][ T5968] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 591.435391][ T5968] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 591.441301][ T5968] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 591.443824][ T5968] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 591.471216][T11083] ip6_vti0 speed is unknown, defaulting to 1000 [ 591.622482][T11089] vivid-003: disconnect [ 591.626366][T11088] vivid-003: reconnect [ 591.640221][T11083] chnl_net:caif_netlink_parms(): no params data found [ 591.739864][T11093] hsr0: left allmulticast mode [ 591.741915][T11093] hsr_slave_0: left allmulticast mode [ 591.744063][T11093] hsr_slave_1: left allmulticast mode [ 591.752816][T11093] macvlan0: left promiscuous mode [ 591.755182][T11093] macvlan0: left allmulticast mode [ 591.870618][T11083] bridge0: port 1(bridge_slave_0) entered blocking state [ 591.873661][T11083] bridge0: port 1(bridge_slave_0) entered disabled state [ 591.876202][T11083] bridge_slave_0: entered allmulticast mode [ 591.881321][T11083] bridge_slave_0: entered promiscuous mode [ 591.886073][T11083] bridge0: port 2(bridge_slave_1) entered blocking state [ 591.889241][T11083] bridge0: port 2(bridge_slave_1) entered disabled state [ 591.892254][T11083] bridge_slave_1: entered allmulticast mode [ 591.896025][T11083] bridge_slave_1: entered promiscuous mode [ 592.011932][T11083] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 592.019975][T11083] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 592.133885][T11083] team0: Port device team_slave_0 added [ 592.138980][T11083] team0: Port device team_slave_1 added [ 592.206838][ T5971] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 592.240256][T11083] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 592.242665][T11083] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 592.255015][T11083] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 592.259519][T11083] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 592.261936][T11083] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 592.270039][T11083] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 592.391794][T11083] hsr_slave_0: entered promiscuous mode [ 592.399928][T11083] hsr_slave_1: entered promiscuous mode [ 592.402898][T11083] debugfs: 'hsr0' already exists in 'hsr' [ 592.405300][T11083] Cannot create hsr debugfs directory [ 592.688135][T11083] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 592.700536][T11083] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 592.710597][T11083] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 592.728564][T11083] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 592.798648][T11083] 8021q: adding VLAN 0 to HW filter on device bond0 [ 592.981927][T11083] 8021q: adding VLAN 0 to HW filter on device team0 [ 593.022330][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 593.024811][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 593.056265][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 593.058605][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 593.093638][T11083] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 593.100608][T11083] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 593.343224][T11083] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 593.497021][ T5971] Bluetooth: hci2: command tx timeout [ 593.663860][T11083] veth0_vlan: entered promiscuous mode [ 593.669018][T11083] veth1_vlan: entered promiscuous mode [ 593.696327][T11083] veth0_macvtap: entered promiscuous mode [ 593.704992][T11083] veth1_macvtap: entered promiscuous mode [ 593.721698][T11083] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 593.732497][T11083] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 593.742771][ T1143] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 593.759891][ T1143] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 593.765505][ T1143] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 593.769110][ T1143] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 593.894713][ T1148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 593.901836][ T1148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 593.938853][ T1148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 593.942205][ T1148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 593.967951][ T1145] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 594.070241][T11202] netlink: 4 bytes leftover after parsing attributes in process `syz.6.17382'. [ 595.576926][ T5971] Bluetooth: hci2: command tx timeout [ 595.686795][ C1] net_ratelimit: 39722 callbacks suppressed [ 595.686814][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 595.686843][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 595.689707][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 595.693810][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 595.698311][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 595.702489][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 595.707853][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 595.712304][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 595.717227][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 595.721597][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 596.993926][ T120] block nbd2: Possible stuck request ffff88802593e000: control (read@0,1024B). Runtime 60 seconds [ 597.068986][T11256] veth0: entered promiscuous mode [ 597.071573][T11256] veth0: left promiscuous mode [ 597.246172][T11268] netlink: 8 bytes leftover after parsing attributes in process `syz.2.17409'. [ 597.251342][T11268] netlink: 8 bytes leftover after parsing attributes in process `syz.2.17409'. [ 597.416695][ C1] sched: DL replenish lagged too much [ 597.565233][T11288] netlink: 8 bytes leftover after parsing attributes in process `syz.6.17421'. [ 597.570908][T11288] netlink: 12 bytes leftover after parsing attributes in process `syz.6.17421'. [ 597.573799][T11288] netlink: 'syz.6.17421': attribute type 20 has an invalid length. [ 597.647062][ T5971] Bluetooth: hci2: command tx timeout [ 597.756916][ T6005] usb 12-1: new high-speed USB device number 2 using dummy_hcd [ 597.916944][ T6005] usb 12-1: Using ep0 maxpacket: 16 [ 597.920859][ T6005] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 597.925425][ T6005] usb 12-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 597.931297][ T6005] usb 12-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 597.935155][ T6005] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 597.945812][ T6005] usb 12-1: config 0 descriptor?? [ 598.546869][ T6005] usbhid 12-1:0.0: can't add hid device: -71 [ 598.549634][ T6005] usbhid 12-1:0.0: probe with driver usbhid failed with error -71 [ 598.554851][ T6005] usb 12-1: USB disconnect, device number 2 [ 599.120193][T11315] ubi31: attaching mtd0 [ 599.122047][T11315] ubi31 error: ubi_attach_mtd_dev: bad VID header (5) or data offsets (69) [ 599.357279][T11320] netlink: 196 bytes leftover after parsing attributes in process `syz.2.17432'. [ 599.726896][ T5303] Bluetooth: hci2: command tx timeout [ 600.044056][T11345] netlink: 56 bytes leftover after parsing attributes in process `syz.7.17442'. [ 600.580228][T11380] ip6_vti0 speed is unknown, defaulting to 1000 [ 600.696756][ C0] net_ratelimit: 49655 callbacks suppressed [ 600.696757][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 600.696769][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 600.696920][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 600.699402][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 600.703186][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 600.707905][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 600.712737][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 600.716785][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 600.721670][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 600.725816][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 601.316351][ T40] kauditd_printk_skb: 221 callbacks suppressed [ 601.316365][ T40] audit: type=1326 audit(2000003766.776:9761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11415 comm="syz.1.17475" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 601.328384][ T40] audit: type=1326 audit(2000003766.786:9762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11415 comm="syz.1.17475" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 601.336810][ T40] audit: type=1326 audit(2000003766.786:9763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11415 comm="syz.1.17475" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 601.344859][ T40] audit: type=1326 audit(2000003766.786:9764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11415 comm="syz.1.17475" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 601.353965][ T40] audit: type=1326 audit(2000003766.786:9765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11415 comm="syz.1.17475" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 601.362934][ T40] audit: type=1326 audit(2000003766.786:9766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11415 comm="syz.1.17475" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7fa5579 code=0x7ffc0000 [ 601.369951][ T40] audit: type=1326 audit(2000003766.786:9767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11415 comm="syz.1.17475" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 601.377906][ T40] audit: type=1326 audit(2000003766.786:9768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11415 comm="syz.1.17475" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 601.385323][ T40] audit: type=1326 audit(2000003766.786:9769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11415 comm="syz.1.17475" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 601.397543][ T40] audit: type=1326 audit(2000003766.786:9770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11415 comm="syz.1.17475" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa5598 code=0x7ffc0000 [ 603.529744][T11491] netlink: 12 bytes leftover after parsing attributes in process `syz.7.17508'. [ 603.533783][T11491] netlink: 12 bytes leftover after parsing attributes in process `syz.7.17508'. [ 605.706842][ C1] net_ratelimit: 44416 callbacks suppressed [ 605.706860][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 605.706895][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 605.709703][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 605.714378][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 605.719243][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 605.724001][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 605.728938][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 605.732546][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 605.737263][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 605.742251][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 606.287004][T11573] nbd4: detected capacity change from 0 to 8589934655 [ 606.291214][ T5303] block nbd4: Receive control failed (result -32) [ 606.580261][T11595] ip6_vti0 speed is unknown, defaulting to 1000 [ 606.659870][T11593] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 606.662209][T11593] IPv6: NLM_F_CREATE should be set when creating new route [ 606.664933][T11593] IPv6: NLM_F_CREATE should be set when creating new route [ 606.667449][T11593] IPv6: NLM_F_CREATE should be set when creating new route [ 606.926202][T11604] nbd5: detected capacity change from 0 to 8589934655 [ 606.930993][ T5303] block nbd5: Receive control failed (result -32) [ 606.972713][T11611] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17565'. [ 606.976075][T11611] bridge_slave_1: left allmulticast mode [ 606.978553][T11611] bridge_slave_1: left promiscuous mode [ 606.980867][T11611] bridge0: port 2(bridge_slave_1) entered disabled state [ 606.994413][T11611] bridge_slave_0: left promiscuous mode [ 606.996380][T11611] bridge0: port 1(bridge_slave_0) entered disabled state [ 607.318042][ T55] e1000 0000:00:06.0 eth0: Reset adapter [ 609.488071][ T55] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX [ 609.725918][ T40] kauditd_printk_skb: 5068 callbacks suppressed [ 609.725936][ T40] audit: type=1326 audit(2000003775.186:14839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.17575" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705d579 code=0x7ffc0000 [ 609.742366][ T40] audit: type=1326 audit(2000003775.186:14840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.17575" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 609.752231][ T40] audit: type=1326 audit(2000003775.186:14841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.17575" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 609.761290][ T40] audit: type=1326 audit(2000003775.186:14842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.17575" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 609.770580][ T40] audit: type=1326 audit(2000003775.186:14843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.17575" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 609.779433][ T40] audit: type=1326 audit(2000003775.186:14844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.17575" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 609.790289][ T40] audit: type=1326 audit(2000003775.186:14845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.17575" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 609.804731][ T40] audit: type=1326 audit(2000003775.186:14846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.17575" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 609.820956][ T40] audit: type=1326 audit(2000003775.196:14847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.17575" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 609.832951][ T40] audit: type=1326 audit(2000003775.196:14848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11633 comm="syz.7.17575" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 609.900950][T11642] mkiss: ax0: crc mode is auto. [ 610.015043][T11648] Bluetooth: MGMT ver 1.23 [ 610.017095][T11648] Bluetooth: hci1: too big key_count value 11787 [ 610.625923][T11680] netlink: 4 bytes leftover after parsing attributes in process `syz.2.17597'. [ 610.716738][ C1] net_ratelimit: 46464 callbacks suppressed [ 610.716757][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 610.716940][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 610.719714][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 610.724365][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 610.728810][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 610.733671][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 610.737261][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 610.743225][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 610.748594][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 610.752623][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 610.861160][ T55] kernel read not supported for file /142/net/udp6 (pid: 55 comm: kworker/2:1) [ 612.162201][T11733] can0: slcan on ptm0. [ 612.287165][T11733] can0 (unregistered): slcan off ptm0. [ 612.289941][T11733] Falling back ldisc for ptm0. [ 612.491389][T11748] kvm: apic: phys broadcast and lowest prio [ 612.982975][T11764] kvm: kvm [11763]: vcpu0, guest rIP: 0xfff0 Unhandled RDMSR(0x40000006) [ 613.018307][T11765] mkiss: ax0: crc mode is auto. [ 613.369399][T11779] netlink: 'syz.2.17639': attribute type 5 has an invalid length. [ 613.604495][T11793] netlink: 32 bytes leftover after parsing attributes in process `syz.6.17648'. [ 613.608662][T11793] netlink: 16 bytes leftover after parsing attributes in process `syz.6.17648'. [ 613.910488][T11809] ptrace attach of "/syz-executor exec"[5955] was attempted by ""[11809] [ 614.088042][T11818] netlink: 1 bytes leftover after parsing attributes in process `syz.1.17660'. [ 614.728125][T11845] umip_printk: 1 callbacks suppressed [ 615.189425][T11867] gfs2: gfs2 mount does not exist [ 615.509644][ T55] kernel read not supported for file /dsp1 (pid: 55 comm: kworker/2:1) [ 615.643821][T11894] netlink: 'syz.7.17695': attribute type 11 has an invalid length. [ 615.649369][T11894] netlink: 44 bytes leftover after parsing attributes in process `syz.7.17695'. [ 615.726800][ C1] net_ratelimit: 45266 callbacks suppressed [ 615.726813][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 615.726812][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 615.726989][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 615.729113][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 615.732877][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 615.736579][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 615.740417][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 615.745679][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 615.749623][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 615.754518][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 615.842098][T11903] bond0: entered promiscuous mode [ 615.843741][T11903] bond_slave_0: entered promiscuous mode [ 615.845629][T11903] bond_slave_1: entered promiscuous mode [ 616.294592][T11914] syzkaller1: tun_chr_ioctl cmd 1074025678 [ 616.302890][T11914] syzkaller1: group set to 0 [ 616.337781][T11918] input: syz1 as /devices/virtual/input/input61 [ 616.867364][T11944] netlink: 52 bytes leftover after parsing attributes in process `syz.7.17717'. [ 616.870659][T11944] bridge0: port 2(bridge_slave_1) entered disabled state [ 616.874294][T11944] bridge0: port 1(bridge_slave_0) entered disabled state [ 617.803765][T11976] netlink: 'syz.7.17732': attribute type 14 has an invalid length. [ 618.304922][ T40] kauditd_printk_skb: 133 callbacks suppressed [ 618.304932][ T40] audit: type=1326 audit(2000003783.766:14982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11993 comm="syz.6.17742" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff6579 code=0x0 [ 618.457889][T12008] bond3: option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 618.585168][T12008] bond3 (unregistering): Released all slaves [ 619.051808][T12028] binder: 12027:12028 ioctl c018620c 80000040 returned -1 [ 619.478003][ T40] audit: type=1326 audit(2000003784.926:14983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.7.17760" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 619.485737][ T40] audit: type=1326 audit(2000003784.926:14984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.7.17760" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 619.514205][ T40] audit: type=1326 audit(2000003784.926:14985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.7.17760" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 619.522582][ T40] audit: type=1326 audit(2000003784.926:14986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.7.17760" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 619.528693][ T40] audit: type=1326 audit(2000003784.926:14987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.7.17760" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 619.535203][ T40] audit: type=1326 audit(2000003784.926:14988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.7.17760" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 619.549621][ T40] audit: type=1326 audit(2000003784.926:14989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.7.17760" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 619.555696][ T40] audit: type=1326 audit(2000003784.926:14990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.7.17760" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 619.565794][ T40] audit: type=1326 audit(2000003784.926:14991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12040 comm="syz.7.17760" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705d598 code=0x7ffc0000 [ 620.317936][T12067] overlayfs: workdir and upperdir must be separate subtrees [ 620.736790][ C0] net_ratelimit: 47133 callbacks suppressed [ 620.736803][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 620.736808][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 620.739020][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 620.742639][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 620.746496][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 620.750206][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 620.754178][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 620.757756][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 620.762664][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 620.766316][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 620.890840][T12051] bond0 (unregistering): Released all slaves [ 621.208611][ T5960] usb 11-1: new full-speed USB device number 11 using dummy_hcd [ 621.539489][ T5960] usb 11-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 621.543159][ T5960] usb 11-1: config 0 interface 0 has no altsetting 0 [ 621.628327][ T5960] usb 11-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 621.631386][ T5960] usb 11-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 621.634283][ T5960] usb 11-1: Product: syz [ 621.635634][ T5960] usb 11-1: Manufacturer: syz [ 621.643169][ T5960] usb 11-1: SerialNumber: syz [ 621.651194][ T5960] usb 11-1: config 0 descriptor?? [ 621.670305][ T5960] usb 11-1: selecting invalid altsetting 0 [ 621.882591][ T24] usb 11-1: USB disconnect, device number 11 [ 622.674601][T12149] loop6: detected capacity change from 0 to 390070272 [ 622.880919][T12162] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17813'. [ 622.928441][T12164] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17814'. [ 622.933472][T12164] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17814'. [ 622.961223][T12149] loop6: detected capacity change from 390070272 to 524287951 [ 622.981200][T12166] netlink: 48 bytes leftover after parsing attributes in process `syz.1.17815'. [ 622.984926][T12166] netlink: 48 bytes leftover after parsing attributes in process `syz.1.17815'. [ 624.103369][T12231] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 624.302288][T12242] netlink: 8 bytes leftover after parsing attributes in process `syz.7.17851'. [ 624.305175][T12242] netlink: 4 bytes leftover after parsing attributes in process `syz.7.17851'. [ 624.316176][T12242] netlink: 'syz.7.17851': attribute type 13 has an invalid length. [ 624.319666][T12242] netlink: 'syz.7.17851': attribute type 12 has an invalid length. [ 624.477147][T12255] macvlan2: entered promiscuous mode [ 624.477405][T12257] netlink: 28 bytes leftover after parsing attributes in process `syz.6.17857'. [ 624.479157][T12255] bridge0: entered promiscuous mode [ 624.499854][T12257] netlink: 28 bytes leftover after parsing attributes in process `syz.6.17857'. [ 625.194715][T12282] vlan2: entered promiscuous mode [ 625.746752][ C0] net_ratelimit: 52560 callbacks suppressed [ 625.746764][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 625.746834][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 625.748829][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 625.753393][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 625.756521][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 625.761050][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 625.764832][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 625.768667][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 625.772298][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 625.775929][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 625.972203][ T42] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 626.774883][T12364] netlink: 8 bytes leftover after parsing attributes in process `syz.6.17908'. [ 626.779505][T12364] netlink: 'syz.6.17908': attribute type 30 has an invalid length. [ 627.323296][ T7834] block nbd2: Possible stuck request ffff88802593e000: control (read@0,1024B). Runtime 90 seconds [ 627.492363][T12403] random: crng reseeded on system resumption [ 628.030415][ T13] Bluetooth: hci4: Frame reassembly failed (-84) [ 628.034067][T12444] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2 [ 628.074472][T12450] gfs2: path_lookup on € returned error -2 [ 629.745747][ T5960] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 629.758285][ T5960] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 629.761257][ T5960] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 629.764156][ T5960] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 629.766534][ T5960] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 629.801406][ T5960] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 629.803762][ T5960] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 629.826955][ T5960] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 629.829336][ T5960] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 629.832110][ T5960] hid-generic 0003:0003:0000.000C: unknown main item tag 0x0 [ 629.844653][ T5960] hid-generic 0003:0003:0000.000C: hidraw0: USB HID v0.00 Device [syz1] on syz1 [ 630.046846][ T5303] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 630.756825][ C0] net_ratelimit: 48472 callbacks suppressed [ 630.756845][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 630.756922][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 630.759513][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 630.764414][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 630.768028][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 630.770582][T12530] ip6_vti0 speed is unknown, defaulting to 1000 [ 630.776854][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 630.780214][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 630.782259][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 630.786005][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 630.790735][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 631.524332][T12573] input: syz1 as /devices/virtual/input/input62 [ 632.071425][T12595] __nla_validate_parse: 1 callbacks suppressed [ 632.071442][T12595] netlink: 60 bytes leftover after parsing attributes in process `syz.6.18005'. [ 635.766766][ C3] net_ratelimit: 40077 callbacks suppressed [ 635.766784][ C3] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 635.766890][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 635.769713][ C3] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 635.770685][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 635.772362][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 635.774030][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 635.775217][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 635.775531][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 635.777219][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 635.778790][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 635.978621][T12683] netlink: 4 bytes leftover after parsing attributes in process `syz.1.18046'. [ 638.370229][T12775] netlink: 12 bytes leftover after parsing attributes in process `syz.6.18091'. [ 638.376756][T12775] netlink: 12 bytes leftover after parsing attributes in process `syz.6.18091'. [ 639.393868][T12807] netlink: 'syz.2.18106': attribute type 10 has an invalid length. [ 639.424443][T12807] bond0: (slave bond_slave_0): Releasing backup interface [ 639.515100][T12807] bond_slave_0: left promiscuous mode [ 639.976373][T12825] netlink: 24 bytes leftover after parsing attributes in process `syz.1.18114'. [ 640.077014][T12827] netlink: 'syz.1.18115': attribute type 7 has an invalid length. [ 640.541142][ T1148] wlan1: Trigger new scan to find an IBSS to join [ 640.672829][T12837] netlink: 4 bytes leftover after parsing attributes in process `syz.7.18120'. [ 640.689001][T12837] bridge_slave_1: left allmulticast mode [ 640.721168][T12837] bridge_slave_1: left promiscuous mode [ 640.752648][T12837] bridge0: port 2(bridge_slave_1) entered disabled state [ 640.776719][ C3] net_ratelimit: 31706 callbacks suppressed [ 640.776732][ C3] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 640.777000][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 640.777679][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 640.778776][ C3] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 640.779180][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 640.780558][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 640.781814][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 640.782752][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 640.783680][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 640.784630][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 640.837641][T12837] bridge_slave_0: left allmulticast mode [ 640.840460][T12837] bridge_slave_0: left promiscuous mode [ 640.843163][T12837] bridge0: port 1(bridge_slave_0) entered disabled state [ 641.247083][ T5303] Bluetooth: hci4: command 0x1003 tx timeout [ 641.255526][ T5971] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 641.304806][T12847] netlink: 4 bytes leftover after parsing attributes in process `syz.1.18125'. [ 641.483586][T12853] can0: slcan on ptm0. [ 641.703114][T12853] can0 (unregistered): slcan off ptm0. [ 641.705983][T12853] Falling back ldisc for ptm0. [ 642.998568][T12894] Bluetooth: hci1: too big key_count value 11787 [ 643.279967][T12911] netlink: 1 bytes leftover after parsing attributes in process `syz.7.18153'. [ 643.397507][T12917] kvm: apic: phys broadcast and lowest prio [ 644.538134][ C3] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 645.474919][T12956] gfs2: gfs2 mount does not exist [ 645.486818][ T195] wlan1: Trigger new scan to find an IBSS to join [ 645.786748][ C3] net_ratelimit: 35014 callbacks suppressed [ 645.786760][ C3] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 645.787054][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 645.787084][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 645.787962][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 645.788905][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 645.789302][ C3] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 645.789889][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 645.790836][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 645.791764][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 645.792723][ C0] bridge0: received packet on veth1_to_bridge with own address as source address (addr:fa:98:f5:f3:b1:4a, vlan:0) [ 646.202383][T12967] ptrace attach of "/syz-executor exec"[4506] was attempted by ""[12967] [ 646.383861][T12969] netlink: 'syz.7.18182': attribute type 10 has an invalid length. [ 646.411137][T12969] bond0: (slave bond_slave_0): Releasing backup interface [ 646.418314][T12969] bond_slave_0: left promiscuous mode [ 646.581317][ T195] wlan1: Creating new IBSS network, BSSID 06:9d:1c:97:11:20 [ 646.619455][ T55] ------------[ cut here ]------------ [ 646.622722][ T55] no supported rates for sta (null) (0xffffffff, band 0) in rate_mask 0x0 with flags 0x0 [ 646.627518][ T55] WARNING: CPU: 2 PID: 55 at net/mac80211/rate.c:401 __rate_control_send_low+0x667/0x780 [ 646.631562][ T55] Modules linked in: [ 646.634515][ T55] CPU: 2 UID: 0 PID: 55 Comm: kworker/2:1 Not tainted syzkaller #0 PREEMPT(full) [ 646.639359][ T55] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 646.643774][ T55] Workqueue: mld mld_ifc_work [ 646.645762][ T55] RIP: 0010:__rate_control_send_low+0x667/0x780 [ 646.648463][ T55] Code: a4 a0 d4 00 00 00 e8 c8 19 e9 f6 44 8b 44 24 24 45 89 e9 89 d9 48 8b 74 24 08 44 89 e2 48 c7 c7 20 13 e3 8c e8 fa 9b a7 f6 90 <0f> 0b 90 90 e9 20 fd ff ff 48 8b 3c 24 e8 f7 c2 50 f7 e9 f5 fc ff [ 646.656336][ T55] RSP: 0018:ffffc9000076ea50 EFLAGS: 00010286 [ 646.658907][ T55] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817adc48 [ 646.662224][ T55] RDX: ffff88801ffb0000 RSI: ffffffff817adc55 RDI: 0000000000000001 [ 646.665511][ T55] RBP: ffff888053691928 R08: 0000000000000001 R09: 0000000000000000 [ 646.668845][ T55] R10: 0000000000000000 R11: 0000000000000001 R12: 00000000ffffffff [ 646.672164][ T55] R13: 0000000000000000 R14: 000000000000000c R15: ffff888053691930 [ 646.675396][ T55] FS: 0000000000000000(0000) GS:ffff888097a0d000(0000) knlGS:0000000000000000 [ 646.679129][ T55] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 646.681814][ T55] CR2: 00000000f737b114 CR3: 0000000066728000 CR4: 0000000000352ef0 [ 646.685076][ T55] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 646.688401][ T55] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 646.691699][ T55] Call Trace: [ 646.693112][ T55] [ 646.694386][ T55] rate_control_send_low+0x52a/0x810 [ 646.696601][ T55] rate_control_get_rate+0x1be/0x5e0 [ 646.698881][ T55] ieee80211_tx_h_rate_ctrl+0xa35/0x1ae0 [ 646.701194][ T55] ? __pfx_ieee80211_tx_h_rate_ctrl+0x10/0x10 [ 646.703645][ T55] invoke_tx_handlers_late+0x1172/0x27d0 [ 646.705681][ T55] ? find_held_lock+0x2b/0x80 [ 646.707478][ T55] ? ieee80211_tx_h_select_key+0x2c9/0x1bc0 [ 646.709672][ T55] ieee80211_tx_dequeue+0x3086/0x43f0 [ 646.711395][ T55] ? __lock_acquire+0xb8a/0x1c90 [ 646.713033][ T55] ? __pfx_ieee80211_tx_dequeue+0x10/0x10 [ 646.714789][ T55] ? do_raw_spin_lock+0x12c/0x2b0 [ 646.716754][ T55] ? ieee80211_next_txq+0xda/0xa50 [ 646.718493][ T55] ieee80211_handle_wake_tx_queue+0x19c/0x260 [ 646.720662][ T55] ? __pfx_ieee80211_handle_wake_tx_queue+0x10/0x10 [ 646.722768][ T55] ? __pfx___ieee80211_schedule_txq+0x10/0x10 [ 646.724687][ T55] ? mark_held_locks+0x49/0x80 [ 646.726429][ T55] ? __local_bh_enable_ip+0xa4/0x120 [ 646.728293][ T55] ieee80211_queue_skb+0x12b2/0x1fe0 [ 646.730078][ T55] ieee80211_tx+0x2e4/0x460 [ 646.731589][ T55] ? __pfx_ieee80211_tx+0x10/0x10 [ 646.733174][ T55] ? ieee80211_skb_resize+0x22a/0x630 [ 646.735172][ T55] ? ieee80211_set_qos_hdr+0xba/0x3f0 [ 646.737424][ T55] ieee80211_xmit+0x30f/0x3e0 [ 646.739394][ T55] __ieee80211_subif_start_xmit+0x880/0x1390 [ 646.741932][ T55] ? neigh_resolve_output+0x53a/0x940 [ 646.744181][ T55] ? __pfx___ieee80211_subif_start_xmit+0x10/0x10 [ 646.746905][ T55] ? mld_sendpack+0xac1/0x1350 [ 646.748932][ T55] ? skb_network_protocol+0x126/0x6d0 [ 646.751189][ T55] ieee80211_subif_start_xmit+0x11b/0x1970 [ 646.753653][ T55] ? __pfx_ieee80211_subif_start_xmit+0x10/0x10 [ 646.756200][ T55] ? dev_hard_start_xmit+0x97/0x740 [ 646.757947][ T55] dev_hard_start_xmit+0x97/0x740 [ 646.759920][ T55] __dev_queue_xmit+0xa46/0x4490 [ 646.761790][ T55] ? __lock_acquire+0x622/0x1c90 [ 646.763764][ T55] ? __pfx___dev_queue_xmit+0x10/0x10 [ 646.765994][ T55] ? look_up_lock_class+0x59/0x150 [ 646.768150][ T55] ? __lock_acquire+0xb8a/0x1c90 [ 646.770213][ T55] ? __asan_memcpy+0x3c/0x60 [ 646.772113][ T55] ? eth_header+0x11c/0x1f0 [ 646.774042][ T55] neigh_resolve_output+0x53a/0x940 [ 646.776208][ T55] ip6_finish_output2+0xad1/0x1cf0 [ 646.778427][ T55] ? ip6_dst_mtu_maybe_forward.constprop.0+0x1be/0x530 [ 646.781286][ T55] __ip6_finish_output+0x3cd/0x1010 [ 646.783465][ T55] ip6_output+0x253/0x710 [ 646.785311][ T55] mld_sendpack+0xac1/0x1350 [ 646.787209][ T55] ? __pfx_mld_sendpack+0x10/0x10 [ 646.789294][ T55] mld_ifc_work+0x740/0xbf0 [ 646.791244][ T55] process_one_work+0x9cf/0x1b70 [ 646.793345][ T55] ? __pfx_process_one_work+0x10/0x10 [ 646.795637][ T55] ? assign_work+0x1a0/0x250 [ 646.797676][ T55] worker_thread+0x6c8/0xf10 [ 646.799643][ T55] ? __pfx_worker_thread+0x10/0x10 [ 646.801830][ T55] kthread+0x3c5/0x780 [ 646.803562][ T55] ? __pfx_kthread+0x10/0x10 [ 646.805534][ T55] ? rcu_is_watching+0x12/0xc0 [ 646.807580][ T55] ? __pfx_kthread+0x10/0x10 [ 646.809528][ T55] ret_from_fork+0x675/0x7d0 [ 646.811466][ T55] ? __pfx_kthread+0x10/0x10 [ 646.813402][ T55] ret_from_fork_asm+0x1a/0x30 [ 646.815312][ T55] [ 646.816619][ T55] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 646.819130][ T55] CPU: 2 UID: 0 PID: 55 Comm: kworker/2:1 Not tainted syzkaller #0 PREEMPT(full) [ 646.822888][ T55] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 646.826986][ T55] Workqueue: mld mld_ifc_work [ 646.828962][ T55] Call Trace: [ 646.830358][ T55] [ 646.831622][ T55] dump_stack_lvl+0x3d/0x1f0 [ 646.833600][ T55] vpanic+0x640/0x6f0 [ 646.835276][ T55] ? __rate_control_send_low+0x667/0x780 [ 646.837593][ T55] panic+0xca/0xd0 [ 646.839165][ T55] ? __pfx_panic+0x10/0x10 [ 646.841076][ T55] ? check_panic_on_warn+0x1f/0xb0 [ 646.843195][ T55] check_panic_on_warn+0xab/0xb0 [ 646.845228][ T55] __warn+0xf6/0x3c0 [ 646.846888][ T55] ? __pfx_vprintk_emit+0x10/0x10 [ 646.848970][ T55] ? __rate_control_send_low+0x667/0x780 [ 646.851354][ T55] report_bug+0x3c3/0x580 [ 646.853133][ T55] ? __rate_control_send_low+0x667/0x780 [ 646.855457][ T55] handle_bug+0x184/0x210 [ 646.857241][ T55] exc_invalid_op+0x17/0x50 [ 646.859131][ T55] asm_exc_invalid_op+0x1a/0x20 [ 646.861120][ T55] RIP: 0010:__rate_control_send_low+0x667/0x780 [ 646.863698][ T55] Code: a4 a0 d4 00 00 00 e8 c8 19 e9 f6 44 8b 44 24 24 45 89 e9 89 d9 48 8b 74 24 08 44 89 e2 48 c7 c7 20 13 e3 8c e8 fa 9b a7 f6 90 <0f> 0b 90 90 e9 20 fd ff ff 48 8b 3c 24 e8 f7 c2 50 f7 e9 f5 fc ff [ 646.871431][ T55] RSP: 0018:ffffc9000076ea50 EFLAGS: 00010286 [ 646.873943][ T55] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817adc48 [ 646.877152][ T55] RDX: ffff88801ffb0000 RSI: ffffffff817adc55 RDI: 0000000000000001 [ 646.880388][ T55] RBP: ffff888053691928 R08: 0000000000000001 R09: 0000000000000000 [ 646.883605][ T55] R10: 0000000000000000 R11: 0000000000000001 R12: 00000000ffffffff [ 646.886863][ T55] R13: 0000000000000000 R14: 000000000000000c R15: ffff888053691930 [ 646.890071][ T55] ? __warn_printk+0x198/0x350 [ 646.892002][ T55] ? __warn_printk+0x1a5/0x350 [ 646.894000][ T55] rate_control_send_low+0x52a/0x810 [ 646.896157][ T55] rate_control_get_rate+0x1be/0x5e0 [ 646.898362][ T55] ieee80211_tx_h_rate_ctrl+0xa35/0x1ae0 [ 646.900610][ T55] ? __pfx_ieee80211_tx_h_rate_ctrl+0x10/0x10 [ 646.902846][ T55] invoke_tx_handlers_late+0x1172/0x27d0 [ 646.904731][ T55] ? find_held_lock+0x2b/0x80 [ 646.906698][ T55] ? ieee80211_tx_h_select_key+0x2c9/0x1bc0 [ 646.909111][ T55] ieee80211_tx_dequeue+0x3086/0x43f0 [ 646.911310][ T55] ? __lock_acquire+0xb8a/0x1c90 [ 646.913360][ T55] ? __pfx_ieee80211_tx_dequeue+0x10/0x10 [ 646.915682][ T55] ? do_raw_spin_lock+0x12c/0x2b0 [ 646.917816][ T55] ? ieee80211_next_txq+0xda/0xa50 [ 646.919941][ T55] ieee80211_handle_wake_tx_queue+0x19c/0x260 [ 646.922467][ T55] ? __pfx_ieee80211_handle_wake_tx_queue+0x10/0x10 [ 646.925144][ T55] ? __pfx___ieee80211_schedule_txq+0x10/0x10 [ 646.927654][ T55] ? mark_held_locks+0x49/0x80 [ 646.929678][ T55] ? __local_bh_enable_ip+0xa4/0x120 [ 646.931898][ T55] ieee80211_queue_skb+0x12b2/0x1fe0 [ 646.934083][ T55] ieee80211_tx+0x2e4/0x460 [ 646.935979][ T55] ? __pfx_ieee80211_tx+0x10/0x10 [ 646.938108][ T55] ? ieee80211_skb_resize+0x22a/0x630 [ 646.940325][ T55] ? ieee80211_set_qos_hdr+0xba/0x3f0 [ 646.942548][ T55] ieee80211_xmit+0x30f/0x3e0 [ 646.944125][ T55] __ieee80211_subif_start_xmit+0x880/0x1390 [ 646.945990][ T55] ? neigh_resolve_output+0x53a/0x940 [ 646.947904][ T55] ? __pfx___ieee80211_subif_start_xmit+0x10/0x10 [ 646.950580][ T55] ? mld_sendpack+0xac1/0x1350 [ 646.952537][ T55] ? skb_network_protocol+0x126/0x6d0 [ 646.954672][ T55] ieee80211_subif_start_xmit+0x11b/0x1970 [ 646.957108][ T55] ? __pfx_ieee80211_subif_start_xmit+0x10/0x10 [ 646.959710][ T55] ? dev_hard_start_xmit+0x97/0x740 [ 646.961866][ T55] dev_hard_start_xmit+0x97/0x740 [ 646.963923][ T55] __dev_queue_xmit+0xa46/0x4490 [ 646.965972][ T55] ? __lock_acquire+0x622/0x1c90 [ 646.968017][ T55] ? __pfx___dev_queue_xmit+0x10/0x10 [ 646.970223][ T55] ? look_up_lock_class+0x59/0x150 [ 646.972320][ T55] ? __lock_acquire+0xb8a/0x1c90 [ 646.974396][ T55] ? __asan_memcpy+0x3c/0x60 [ 646.976330][ T55] ? eth_header+0x11c/0x1f0 [ 646.978229][ T55] neigh_resolve_output+0x53a/0x940 [ 646.980409][ T55] ip6_finish_output2+0xad1/0x1cf0 [ 646.982521][ T55] ? ip6_dst_mtu_maybe_forward.constprop.0+0x1be/0x530 [ 646.985323][ T55] __ip6_finish_output+0x3cd/0x1010 [ 646.987526][ T55] ip6_output+0x253/0x710 [ 646.989346][ T55] mld_sendpack+0xac1/0x1350 [ 646.991303][ T55] ? __pfx_mld_sendpack+0x10/0x10 [ 646.993423][ T55] mld_ifc_work+0x740/0xbf0 [ 646.995357][ T55] process_one_work+0x9cf/0x1b70 [ 646.997469][ T55] ? __pfx_process_one_work+0x10/0x10 [ 646.999241][ T55] ? assign_work+0x1a0/0x250 [ 647.000682][ T55] worker_thread+0x6c8/0xf10 [ 647.002237][ T55] ? __pfx_worker_thread+0x10/0x10 [ 647.003904][ T55] kthread+0x3c5/0x780 [ 647.005490][ T55] ? __pfx_kthread+0x10/0x10 [ 647.007455][ T55] ? rcu_is_watching+0x12/0xc0 [ 647.009472][ T55] ? __pfx_kthread+0x10/0x10 [ 647.011461][ T55] ret_from_fork+0x675/0x7d0 [ 647.013412][ T55] ? __pfx_kthread+0x10/0x10 [ 647.015350][ T55] ret_from_fork_asm+0x1a/0x30 [ 647.017393][ T55] [ 647.019340][ T55] Kernel Offset: disabled [ 647.021176][ T55] Rebooting in 86400 seconds.. VM DIAGNOSIS: 06:23:44 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000003 RBX=ffff88802b2332a8 RCX=ffffffff91245601 RDX=0000000000000000 RSI=ffffffff8bf07540 RDI=ffffffff8dcceee0 RBP=0000000000000000 RSP=ffffc9000041f050 R8 =ffffffff9124568a R9 =0000000000000000 R10=0000000000000000 R11=00000000000123cc R12=ffffc9000041f128 R13=ffffc9000041f0d8 R14=ffffc9000041f438 R15=ffffc9000041f10c RIP=ffffffff81a14229 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88809780d000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000319fdffc CR3=000000000e182000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000000 RBX=ffff88805e1c7400 RCX=ffffffff8a08e068 RDX=ffff888027c50000 RSI=ffffffff8a08df73 RDI=ffff88805e1c7490 RBP=dffffc0000000000 RSP=ffffc9000058f8f0 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=0000000000000001 R13=ffffc9000058fbf8 R14=0000000000000000 R15=ffff8880132524c8 RIP=ffffffff8a08df85 RFL=00000a02 [-O-----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88809790d000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f73b8e34 CR3=000000000e182000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=000000000000005d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85268ed5 RDI=ffffffff9adc5de0 RBP=ffffffff9adc5da0 RSP=ffffc9000076e3c0 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001 R12=0000000000000000 R13=000000000000005d R14=ffffffff9adc5da0 R15=ffffffff85268e70 RIP=ffffffff85268eff RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097a0d000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f737b114 CR3=0000000066728000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=ffffffff91b45440 RBX=ffffffff90fccb68 RCX=dffffc0000000000 RDX=fffffffff93b5ee6 RSI=0000000000000000 RDI=ffffffff90fccb54 RBP=ffffffff90fccb54 RSP=ffffc900005becb8 R8 =ffffffff91b45482 R9 =0000000000000000 R10=0000000000000000 R11=000000000009382a R12=ffffffff90fccb7c R13=ffffffff8a382a29 R14=ffffffff90fccb54 R15=ffffffff90fccb54 RIP=ffffffff816ba996 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097b0d000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000057b904c0 CR3=0000000057d65000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000