last executing test programs: 1m32.856303652s ago: executing program 2 (id=2614): sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x1c, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x1c}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="90000000", @ANYRES16=r1, @ANYBLOB="01000000000000000000010000000c0005006c000000000000000c0002000000000000000000040007800c000800000000000000000008000100000000004400078008000100", @ANYRES32, @ANYBLOB="380001"], 0x90}}, 0x0) 1m32.818305457s ago: executing program 2 (id=2616): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={r2, r1, 0x0, 0xfffffffffffffd83, &(0x7f0000000000)='/pro~/sy\xf8\xa3\xd4\x88t/\b\x00v4\x00\x00s\x03\x00\x00\x00\x00\x00\x00\x00f\x91V\xa9\x83\xce\x81_\x00le\xfc4\x8cm'}, 0x30) 1m32.805262186s ago: executing program 2 (id=2619): r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7fffffff, 0x400, 0x1, 0xd, 0x1, 0x6, 0x6}, 0x1c) recvmmsg$unix(r0, &(0x7f0000002700)=[{{&(0x7f0000000000), 0x6e, &(0x7f0000000080)=[{&(0x7f0000000480)=""/4084, 0xff4}], 0x1}}, {{0x0, 0x0, &(0x7f0000002680), 0x0, &(0x7f0000002780)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0xc}}], 0x20}}], 0x2, 0x0, 0x0) sendmmsg(r0, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000) 1m32.629071678s ago: executing program 2 (id=2630): mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0) mount$tmpfs(0x0, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x84000, 0x0) 1m32.571262361s ago: executing program 2 (id=2631): r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$kcm(0x10, 0x2, 0x4) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'dummy0\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000180)={r2, 0x1, 0x6}, 0x10) 1m32.366424731s ago: executing program 2 (id=2648): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000040)={0xb, 0xffffff9b, 0x4000008, 0x333a3f80, 0x9, "04000000019e58f557d636028fa10a1490ea71"}) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000002080)={0xc, {"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", 0x1000}}, 0x1006) 1m32.279342271s ago: executing program 32 (id=2648): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000040)={0xb, 0xffffff9b, 0x4000008, 0x333a3f80, 0x9, "04000000019e58f557d636028fa10a1490ea71"}) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000002080)={0xc, {"a2e3ad21ed0d30f91b5d310987f70e06d038e7ff7fc6e5539b3263298b089b0708356e090890e0878f0e1ac6e7049b3350959bfc9b240d2567f3988f7ef319520100ffe8d178708c523c921b1b9b31300d075d0936cd3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb056d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498be0800000000000000f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6efcffac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ec126c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b8247068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a204f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c198045651cf4778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b54b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c5409711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5e3728ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e24919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5136651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f00000004000000000000b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d53588a0f9455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d664130bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7899484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5182cff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec6800068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ea4cd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f031755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c7e36bb2fc4c40e9cf96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb24ee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000681e6756", 0x1000}}, 0x1006) 1m27.443708407s ago: executing program 1 (id=2754): open$dir(&(0x7f0000000040)='./file0\x00', 0x200, 0x0) setuid(0xee01) r0 = msgget$private(0x0, 0x0) msgctl$IPC_STAT(r0, 0x2, 0x0) 1m27.396862341s ago: executing program 1 (id=2756): r0 = socket$xdp(0x2c, 0x3, 0x0) r1 = syz_io_uring_setup(0x10d, &(0x7f0000000540)={0x0, 0xac24, 0x10000, 0x2, 0x362}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x0, 0x5, r0, 0x0, 0x0, 0x0, 0x80800}) io_uring_enter(r1, 0x3516, 0xc2de, 0x8, 0x0, 0x0) 1m27.390784406s ago: executing program 1 (id=2759): syz_open_dev$midi(&(0x7f00000000c0), 0x2, 0x2c40) r0 = syz_io_uring_setup(0x7f18, &(0x7f0000000200)={0x0, 0x84f7, 0x10100, 0x1}, &(0x7f0000002000)=0x0, &(0x7f0000000000)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22}) io_uring_enter(r0, 0x48e9, 0x0, 0x2, 0x0, 0x0) 1m27.342524783s ago: executing program 1 (id=2762): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20) mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) rmdir(&(0x7f0000000000)='./file0\x00') 1m27.292945954s ago: executing program 1 (id=2766): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0) 1m27.038465872s ago: executing program 1 (id=2784): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000200)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x40, r0, 0xb97534d5fe9704cf, 0x0, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x580}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}, @NL80211_ATTR_STA_FLAGS={0x4}]}, 0x40}}, 0x0) 1m26.947393458s ago: executing program 33 (id=2784): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000200)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x40, r0, 0xb97534d5fe9704cf, 0x0, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x580}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}, @NL80211_ATTR_STA_FLAGS={0x4}]}, 0x40}}, 0x0) 56.203102137s ago: executing program 5 (id=3375): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000600)={0x18, 0x0, {0x4, @multicast, 'macvlan1\x00'}}, 0x1e) ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f0000000b80)) recvmsg(r0, &(0x7f0000001180)={0x0, 0x0, 0x0}, 0x20000) 56.151075428s ago: executing program 5 (id=3377): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000400)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0fff9ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00010000850000000d000000b7000000000000009500000000000000496cf2827fb43a431ca711fcd0cdfa146ec56175037958e271f60d25b7937f02c8695e5a1b24df41dc10d1e8bf076d83923dd29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b318e2ec0e1a00897a74a0091ff110026e6d2ef831ab7ea0c34f17efd36ef3bb622003b538dfd8e012e79578e51bc53099e90fbdb2ca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e060e3670ef0e789f93781965f1328d6704902cbe7bc0cb82d2789cb132b8667c21476619f28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fbce841f8a97be6148ba532e6ea09c346dfebd31a08b32808b80200000000009dd27080e71113610e1019c12a73748b049604fa72c64ed858e8327ef01fb6c86adac12233f9a1fb9c2aec61ce63a3462fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2ed8576a3f7f3deadd7130856f756436303767d2e24f29e5dad9796edb697a6e97180aabc18cae2ed4b4390af9a9ceafd07ed00b0000002cab154ad029a119ca3c972780870014601c3c975d5aec84222fff0d7216fdb0d3a0ec4be3e563112f4b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a2a71bc85018e5ff2c910496f19afc91b47683db01a469398685211bbae0e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bde792c88c5b8dcdcc22ee17476d738992533ac2a9f5a699593f084419cae0b4183fb01c73f99857399537f5dc2acb72c7eae993fc9eb22d130665b6341da114f08cd0509d380578673fffffffd7917f23837a6b24db0e067345560942fa629fbef2461c96a08707671315c302fae29187d4f5c06a960fd37c10223fdae7ed04935c3c90d3add8eebc8619d73415e6adcda2130f5011e48455b588b90dfae158b94f50adab988dd8e12baf5cc9398c88607a08009c2977aab37d9a44cfc1c7b4000000000000fa47742f6c5b9c4b11e7d7262a1457c39495c826b956ba859ac8e3c177b91bd7d5ca1664fe2f3ced8468911806e8916dc15e21644db60c2498d5d16d7d915836ab26c169482008ef069dc42749289f854797f2f900c2a12d8c38a967c1bbe09315c29877a331bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d4a3e1a9e90d76c1993e0799d4894ee7f8249dc1e342892129369ee1b85afa1a5be5f6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1038debd64cbe359454a3f2239cfe35f81b7aded448859968ff0e90500d0b07c0dd00490f167e6d5c1109681739dc33f75b20428d6474a0a91ee90b8de802c6b538622e6bbcb80f87b415263c401e64ed69a2f75409000000000000001d695c4559b82cabac3cccadc1e1c19af4e03020abf5ff0433d660f20898d2a045d009a0ffb20a77c9af2b80c05184a66d30bbea2ca45a4d6d6d1e6e79aef42355b17402a500587b603306a5af8d867d80a07f10b854b1c8c768c001496fa99ce5b5040be9194123e918914a71ad5a8521fb956dbc60f7d9719b55b3abb6bba3d113a680a8d46fe074c83fbe378a3889e8145b2eaceab05ef932c6e4f8ef0ed0d818a7b76d839cf3c6775e19f0b7e70803000000b168c38fa32e49563cfee3a7f0fc18bfa32c418cef875fb49e2989172a1bcd1e30280bc586e79a5dd8076c248e7d6e97b3ce267dd4e27b6ef206660090bb2164474cef378f97ca33fccf363361dcdba10c1547053453d0c9aec91a24079b21d52fb5516bf0c28ef37aa76442f6083dc99cd61afaf6be45d7b00d3639f2f10ac2d5c759c3e5468f5874c24411d415b6b085fb73a2d7c3852e0e658ffeb4e863428a792bee94f6cd895424360e0464f9d7ea425f2fa6aa0000000000000000532ff181c985f54b7ae20aa5e63055b4d6a36fa98a44e379d2bccf977c3e88538f406b598307c9912fb097601f3f88a2ea6fd1f9320cfe7f09aed4d1e72d26e5c7a93854c8e9f7f15f02e177ce23f43a154b42e26f037e8a01377cbd3f509e6e540c9ba9c2a589ac5d8ad67a65e9a44c576dc24452eaa9d819e2b04bdd1c000000070000000000000000000000005333c6199c12dcd92689192727a7267c47cf897853d160100b39b613faefe16bd91fc105dddd77ab929b95032d3717fa9fbdc2bdc0e98ae2c3f23a6131e2879f0484ee3bfe30b92dd493be66c2242f8184733b80ba28e824910844df31f3d4bb2f89049c5f6d63956995747639964217aacfe548fc869098aa8e07e51dbc9e2d4db3c5f79fd355222ec2a00cf7f2ccd6dd6d2dc2a815d8314221a5472f1318a9dfbec5a759579caf3262129b14e99040b5d91398e17df85c25ccae973eecc7d187168d5c9cd848d566cc1758763f0000009c927da38d83314480b15e23138c5b877a72bd4cf74a299df4fbfc8e6ea96939f15d254d9033c5a45706bda78ab602000000000000000000113a3065a478d1de98be3a66f6fbf68f2f5693050fa56db62e2f99cf916059ee364dad078fc88d17cbde37a2270f90a60afe8548f4c579b09c333382c6e7a316ac03aa23d379836b96173a5541fa96c27e7fb6d2585d828aa330f3438d8487912bb7742be1502e706644f7a937451beb7a5f6ca3ef21e8cb8f841af6d54334d82a8b816b6daccf0c66162f897623ee325d714f9f10636a7573582ff31c7f9c6f767c806ef4af486cc19a5355bdc814cb5557c6fa6404179c865980b0815b907a7f268e97828c196f5ac033d395a217b4e1e45663023a0292003c36a3b7461fc2c8566e0f3f693bfacae26aa2b7d17962989ccb943633c080aacc9b7d311c251686fc66aa80bf41a5bf6cd72d5aa995820fb318fad61a79a61d0a969fd6018ac9f131fe02fe31d565723cbf9b63841e21417fc29a3e7a03886d80566ae001861799a4aad91c72139e681ced8625b675dfbd6d458d4b2d9e6d565430248172ad942cdb41639f4113896827c8806e049218cd1eef89d6b9b14dd707da40705c07f878263ff9b71ccf28ec50178c7aac83bef7bd1045a5e4bcb6cfe05e2ac3e17c1f8f12ddf5b6770ce0da8cb3aba3a935a6b737b6d3ebf2c715dcc11c5759bd0acdecf333f2b77c52fb2251336bbd92f73ad1a30bb9162bd9d699c49d824b827f3e7c1096354946e09922db25904c83262c6dcb87457e4abefa0e9dcb17d79c173895b74aae2ed4419662690a16494e7b27d0d2688c69b4be3d21b783195f6a5e5dc5c07c73f0d0f0670db10ac9ef5b8295ff88df734e3c6ab8555c0390f962cbf559bce9c42e1034dba78997b2877b485d9d4ae2fcd3e757b84319879d0337785773c940af6e57d162f4606d101def01199325c8676a32e26303560271b720216d95e0013265a45b02bd2414bebda89b7b5e71e70e0000000000000000"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0xe40, 0x10000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000, 0x0, 0x6}, 0x2c) 56.112328547s ago: executing program 5 (id=3380): openat$cuse(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0) r0 = syz_io_uring_setup(0x239, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000380)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) io_uring_enter(r0, 0x2def, 0x0, 0x0, 0x0, 0x0) 56.039919232s ago: executing program 5 (id=3381): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x0, 0x1}, 0x6) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r1, 0x400448ca, 0x0) 56.039545953s ago: executing program 5 (id=3382): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20) r1 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0) fsetxattr$system_posix_acl(r1, &(0x7f0000000000)='system.posix_acl_access\x00', 0x0, 0x0, 0x1) 56.021926722s ago: executing program 5 (id=3384): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000240)=ANY=[@ANYBLOB="010000000000000081000040"]) 40.790545412s ago: executing program 34 (id=3384): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000240)=ANY=[@ANYBLOB="010000000000000081000040"]) 893.345807ms ago: executing program 3 (id=3935): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x101000, 0x18) getdents64(r0, &(0x7f0000000a00)=""/4089, 0xff9) 854.056104ms ago: executing program 3 (id=3938): r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3) ioctl$int_in(r0, 0x5421, &(0x7f0000000000)=0x5) connect$bt_rfcomm(r0, &(0x7f0000000080)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0xb}, 0xa) close(r0) 788.630239ms ago: executing program 3 (id=3939): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sha512-avx\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmsg$kcm(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000100)="e144784c54de2bd8ca3da64dfdea7d8eb74ffe057d7469066c6ca034a2677ce0c1c2275e2b2a82bac312a7da165cd5db94fa38cdf3a3f3f93b912a7515e0b1e441a3be644a296bccb65e7adc9ddb4d14376a69cbfcd2ddd156ba4323fa6d6debeda266e880a772b774b05cdc34cb368239000000002a0837e2524cb97f62df89", 0x80}], 0x1}, 0x0) 779.696487ms ago: executing program 3 (id=3942): r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x10, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {}, {0x7, 0x0, 0xb, 0x7}}, @printk]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 733.126142ms ago: executing program 3 (id=3945): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0xa0, 0x24, 0x4, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x6}}, [@TCA_STAB={0x7c, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x80, 0xfc, 0x9, 0x2, 0x0, 0x0, 0x6, 0x3}}, {0xa, 0x2, [0xb, 0x79e, 0x9]}}, {{0x1c, 0x1, {0x0, 0xf, 0x6, 0x7, 0x0, 0xfff, 0x265, 0x3}}, {0xa, 0x2, [0x3, 0x1000, 0x3]}}, {{0x1c, 0x1, {0x2, 0x6, 0x49e, 0x4, 0x0, 0x8, 0x7ef51b27, 0x3}}, {0xa, 0x2, [0x2, 0x8, 0x2]}}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x20040000}, 0x8880) syz_open_dev$mouse(&(0x7f0000000000), 0x0, 0x8042) r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x822b01) write$char_usb(r0, &(0x7f0000000040)="e2", 0x12d8) 678.260291ms ago: executing program 3 (id=3947): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x20d6, 0xcb17, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x7, {[@main=@item_4={0x3, 0x0, 0x8, "505c905e"}, @main=@item_012={0x1, 0x0, 0x0, "ec"}]}}, 0x0}, 0x0) openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x22002) 577.849851ms ago: executing program 4 (id=3952): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0x46e9eaec83812056, 0x0, 0x0, 0x4, 0x8, 0x6, 0x0, 0x20, 0x0, 0x8, 0x9, 0x10}, {0xffff1000, 0x0, 0xc, 0x0, 0x0, 0x0, 0x7, 0x0, 0x5, 0x7, 0x1}, {0x8082000, 0x5000, 0xf, 0x0, 0x7, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0x3}, {0x3000, 0xd000, 0x8, 0x8, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x7}, {0xeeee8000, 0x10000, 0xd, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x3c}, {0x4000, 0x0, 0x0, 0x7, 0x0, 0x0, 0x2}, {0x0, 0x0, 0xa, 0xfe, 0xfe, 0x0, 0x3}, {0x0, 0xc8f919e45da6373a, 0x8, 0x0, 0x0, 0x1, 0x0, 0xa, 0x26}, {0x80a0000}, {0x80a0000}, 0x8001000b, 0x0, 0x1000, 0x0, 0x0, 0xf901, 0x0, [0x5, 0x0, 0x1]}) 573.477235ms ago: executing program 0 (id=3954): sendmsg$TIPC_CMD_SET_LINK_PRI(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x40) r0 = socket(0x2, 0x80805, 0x0) sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f0000000440)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0) sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000200)=[{&(0x7f0000000100)='a', 0x1}], 0x1f, &(0x7f0000000000)=ANY=[@ANYBLOB="2c0000008400000001000000000000000c"], 0x2c}], 0x1, 0x0) 510.664728ms ago: executing program 0 (id=3956): unshare(0x68040200) r0 = socket(0xa, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000010c0)=[@in6={0xa, 0x4e23, 0x100, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x1}]}, &(0x7f0000001080)=0x10) getsockopt$bt_hci(r0, 0x84, 0x6d, &(0x7f0000000000)=""/4102, &(0x7f0000001040)=0x1006) 473.763807ms ago: executing program 4 (id=3957): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000040)={0x80, 0x5, 0x10009}) mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r0, 0x100000) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) 428.075403ms ago: executing program 6 (id=3958): r0 = socket(0x10, 0x3, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='netlink_extack\x00', r1}, 0x10) write(r0, &(0x7f0000000240)="240000001e005f1814fffffffffffff807000000010000000000000008000500c4cb0b02", 0x24) 418.774346ms ago: executing program 0 (id=3959): syz_open_dev$sndpcmc(&(0x7f0000000200), 0x0, 0x0) r0 = syz_io_uring_setup(0x239, &(0x7f0000001080)={0x0, 0x0, 0x10100, 0x4}, &(0x7f0000000000)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3}) io_uring_enter(r0, 0x2def, 0x0, 0x0, 0x0, 0x0) 343.512723ms ago: executing program 6 (id=3960): mkdir(&(0x7f0000000180)='./file0\x00', 0xb2) mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0) umount2(&(0x7f00000002c0)='./file0\x00', 0x4) umount2(&(0x7f0000000240)='./file0\x00', 0xc) 342.806773ms ago: executing program 0 (id=3961): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000440)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha256\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000500)=""/229, 0xe5}], 0x1}}], 0x2, 0x60, 0x0) 336.941676ms ago: executing program 6 (id=3962): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4) 336.648109ms ago: executing program 0 (id=3963): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r0}, 0x10) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000280), 0x840) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r1, 0x40505331, &(0x7f0000000100)={{0xff, 0xfd}, {0xe}, 0xbfc2, 0xbf}) 267.231428ms ago: executing program 6 (id=3964): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x1}, 0x200008c0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x40, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x68}}, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000000)={@random="53df2b456239", @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x88, 0x0, @empty, @broadcast}, @timestamp_reply={0xe, 0x0, 0x0, 0x4, 0x1000}}}}}, 0x0) 266.644154ms ago: executing program 0 (id=3965): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000100000000000a20000000000a01010000000000000000010000000900010073797a300000000068000000090a010400000000000000000100000008000a4000000000200011800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30000000000900020073797a3200000000080005400000001f0c000980080001400037"], 0xb0}}, 0x0) r1 = socket(0x10, 0x3, 0xc) write(r1, &(0x7f0000000040)="effd00001000ff00fd4344c007110000f3050a00dbfd010000000001ffdf00", 0xfe00) 263.199999ms ago: executing program 4 (id=3966): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000000)=0x2, 0x4) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c) close(0x3) 200.631164ms ago: executing program 6 (id=3967): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000004002, 0x0) r1 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x3, 0x10101}, &(0x7f00000001c0)=0x0, &(0x7f0000000200)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x0, 0x4004, @fd=r0, 0xffffffffffffffff, 0x0, 0x0, 0xc}) io_uring_enter(r1, 0x7a98, 0x0, 0x0, 0x0, 0x0) 200.421516ms ago: executing program 4 (id=3968): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="0100000000000800c1"]) 138.415485ms ago: executing program 6 (id=3969): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) msgsnd(0x0, 0x0, 0x87, 0x800) 98.36318ms ago: executing program 4 (id=3970): r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000f00)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}}) umount2(&(0x7f0000000040)='.\x00', 0x2) 0s ago: executing program 4 (id=3971): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) faccessat(0xffffffffffffffff, 0x0, 0x4) kernel console output (not intermixed with test programs): hich will stop working for Wi-Fi 7 hardware; use nl80211 [ 50.855796][ T6219] netlink: 4 bytes leftover after parsing attributes in process `syz.2.97'. [ 50.910297][ T6222] bridge0: entered promiscuous mode [ 50.946975][ T29] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 51.102294][ T29] usb 8-1: Using ep0 maxpacket: 32 [ 51.106419][ T29] usb 8-1: config index 0 descriptor too short (expected 29220, got 36) [ 51.109008][ T29] usb 8-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 51.112344][ T29] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 51.116117][ T29] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 51.119339][ T29] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 51.122345][ T29] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 51.125595][ T29] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 51.129716][ T29] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 51.133214][ T29] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 51.137324][ T29] usb 8-1: config 0 descriptor?? [ 51.200186][ T6251] Bluetooth: MGMT ver 1.23 [ 51.350459][ T29] usb 8-1: USB disconnect, device number 2 [ 51.806743][ T65] Process accounting resumed [ 51.812147][ T29] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 51.982141][ T29] usb 8-1: Using ep0 maxpacket: 32 [ 51.986227][ T29] usb 8-1: config index 0 descriptor too short (expected 29220, got 36) [ 51.989483][ T29] usb 8-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 51.990176][ T6299] Context (ID=0x10) not attached to queue pair (handle=0x0:0x96a) [ 51.992208][ T29] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 51.992237][ T29] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 51.992247][ T29] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 51.992259][ T29] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 51.992275][ T29] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 51.992303][ T29] usb 8-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 52.012208][ T5953] Bluetooth: hci2: command tx timeout [ 52.021830][ T29] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 52.025710][ T29] usb 8-1: config 0 descriptor?? [ 52.092212][ T5953] Bluetooth: hci0: command tx timeout [ 52.102634][ T5953] Bluetooth: hci3: command tx timeout [ 52.102654][ T67] Bluetooth: hci1: command tx timeout [ 52.234583][ T10] usb 8-1: USB disconnect, device number 3 [ 52.453773][ T3548] kernel read not supported for file /dsp1 (pid: 3548 comm: kworker/3:2) [ 52.735283][ T6321] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 52.805080][ T6339] input: syz0 as /devices/virtual/input/input6 [ 52.831023][ T6343] netlink: 4 bytes leftover after parsing attributes in process `syz.3.155'. [ 52.949963][ T6361] capability: warning: `syz.1.163' uses deprecated v2 capabilities in a way that may be insecure [ 52.992987][ T6365] netlink: 4 bytes leftover after parsing attributes in process `syz.1.165'. [ 53.055231][ T6370] netlink: 40 bytes leftover after parsing attributes in process `syz.1.167'. [ 54.047592][ T6447] mmap: syz.2.204 (6447) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 54.103119][ T67] Bluetooth: hci2: command tx timeout [ 54.172258][ T67] Bluetooth: hci3: command tx timeout [ 54.173722][ T5953] Bluetooth: hci0: command tx timeout [ 54.182928][ T5953] Bluetooth: hci1: command tx timeout [ 54.334898][ T3548] kernel write not supported for file /amidi2 (pid: 3548 comm: kworker/3:2) [ 54.381067][ T6491] KVM: debugfs: duplicate directory 6491-4 [ 54.644126][ T6500] netlink: 56 bytes leftover after parsing attributes in process `syz.0.228'. [ 54.647469][ T6501] Driver unsupported XDP return value 0 on prog (id 31) dev N/A, expect packet loss! [ 55.636609][ T6564] netlink: 92 bytes leftover after parsing attributes in process `syz.1.257'. [ 55.641753][ T6564] netlink: 92 bytes leftover after parsing attributes in process `syz.1.257'. [ 56.353606][ T6604] netlink: 236 bytes leftover after parsing attributes in process `syz.1.274'. [ 56.727224][ T6639] misc userio: Begin command sent, but we're already running [ 56.974157][ T6651] @: renamed from vlan0 (while UP) [ 57.489468][ T6700] netlink: 4 bytes leftover after parsing attributes in process `syz.0.319'. [ 57.493718][ T6700] netlink: 4 bytes leftover after parsing attributes in process `syz.0.319'. [ 57.517302][ T6707] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.322'. [ 57.573235][ T5980] kernel write not supported for file /uinput (pid: 5980 comm: kworker/3:3) [ 58.158413][ T6790] netlink: 108 bytes leftover after parsing attributes in process `syz.0.358'. [ 58.312200][ T6007] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 58.464680][ T6007] usb 6-1: Using ep0 maxpacket: 8 [ 58.467942][ T6007] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 58.471543][ T6007] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 58.475883][ T6007] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 58.479947][ T6007] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 58.484346][ T6007] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 58.487156][ T6007] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 58.542535][ T6810] binder: 6809:6810 ioctl c018620c 80000000 returned -1 [ 58.658108][ T5980] kernel read not supported for file /dsp (pid: 5980 comm: kworker/3:3) [ 58.700401][ T6007] usb 6-1: GET_CAPABILITIES returned 0 [ 58.702799][ T6007] usbtmc 6-1:16.0: can't read capabilities [ 58.904907][ T29] usb 6-1: USB disconnect, device number 2 [ 58.961633][ T6850] netlink: 4 bytes leftover after parsing attributes in process `syz.2.386'. [ 58.967691][ T6850] netlink: 4 bytes leftover after parsing attributes in process `syz.2.386'. [ 59.455552][ T6886] bridge_slave_0: invalid flags given to default FDB implementation [ 59.602831][ T6892] block nbd1: server does not support multiple connections per device. [ 59.606263][ T6892] block nbd1: shutting down sockets [ 59.701498][ T6909] erspan0: entered promiscuous mode [ 59.707204][ T6909] __nla_validate_parse: 2 callbacks suppressed [ 59.707215][ T6909] netlink: 8 bytes leftover after parsing attributes in process `syz.1.415'. [ 60.111683][ T6940] syz.3.429 (6940): /proc/6938/oom_adj is deprecated, please use /proc/6938/oom_score_adj instead. [ 60.522167][ T6007] usb 5-1: new full-speed USB device number 2 using dummy_hcd [ 60.673871][ T6007] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 60.677450][ T6007] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10 [ 60.680821][ T6007] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 60.683854][ T6007] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 60.689647][ T6007] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 60.693035][ T6007] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 60.695576][ T6007] usb 5-1: Manufacturer: syz [ 60.698196][ T6007] usb 5-1: config 0 descriptor?? [ 60.952310][ T6007] rc_core: IR keymap rc-hauppauge not found [ 60.954337][ T6007] Registered IR keymap rc-empty [ 60.956237][ T6007] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 60.972179][ T6007] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 60.993969][ T6007] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0 [ 60.998412][ T6007] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input10 [ 61.012221][ T6007] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 61.028034][ T6971] netlink: 236 bytes leftover after parsing attributes in process `syz.3.441'. [ 61.032177][ T6007] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 61.052240][ T6007] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 61.073243][ T6007] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 61.092241][ T6007] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 61.114384][ T6007] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 61.132838][ T6007] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 61.152272][ T6007] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 61.172268][ T6007] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 61.198423][ T6007] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 61.214552][ T6007] mceusb 5-1:0.0: Registered 424242424242 with mce emulator interface version 1 [ 61.217537][ T6007] mceusb 5-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 61.222690][ T6007] usb 5-1: USB disconnect, device number 2 [ 61.390476][ T6985] netlink: 8 bytes leftover after parsing attributes in process `syz.3.448'. [ 61.397876][ T6985] vlan2: entered allmulticast mode [ 61.399634][ T6985] dummy0: entered allmulticast mode [ 61.680612][ T7002] netlink: 8 bytes leftover after parsing attributes in process `syz.1.457'. [ 61.685920][ T7002] netlink: 4 bytes leftover after parsing attributes in process `syz.1.457'. [ 61.763164][ T40] kauditd_printk_skb: 194 callbacks suppressed [ 61.763180][ T40] audit: type=1326 audit(1748194216.005:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.1.460" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ce579 code=0x7ffc0000 [ 61.775618][ T40] audit: type=1326 audit(1748194216.005:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.1.460" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ce5a7 code=0x7ffc0000 [ 61.788634][ T40] audit: type=1326 audit(1748194216.005:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.1.460" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ce579 code=0x7ffc0000 [ 61.807978][ T40] audit: type=1326 audit(1748194216.005:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.1.460" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ce5a7 code=0x7ffc0000 [ 61.817063][ T40] audit: type=1326 audit(1748194216.005:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.1.460" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ce579 code=0x7ffc0000 [ 61.830779][ T40] audit: type=1326 audit(1748194216.005:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.1.460" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ce5a7 code=0x7ffc0000 [ 61.838007][ T40] audit: type=1326 audit(1748194216.005:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.1.460" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ce579 code=0x7ffc0000 [ 61.841923][ T7014] bridge_slave_0: left allmulticast mode [ 61.847177][ T40] audit: type=1326 audit(1748194216.005:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.1.460" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ce5a7 code=0x7ffc0000 [ 61.857271][ T40] audit: type=1326 audit(1748194216.005:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.1.460" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ce579 code=0x7ffc0000 [ 61.857469][ T7014] bridge_slave_0: left promiscuous mode [ 61.865698][ T40] audit: type=1326 audit(1748194216.005:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.1.460" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ce5a7 code=0x7ffc0000 [ 61.868806][ T7014] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.888547][ T7014] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 62.114733][ T7040] netlink: 'syz.3.475': attribute type 2 has an invalid length. [ 62.302241][ T5980] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 62.318570][ T7058] loop8: detected capacity change from 0 to 1 [ 62.323831][ T7058] Dev loop8: unable to read RDB block 1 [ 62.325851][ T7058] loop8: unable to read partition table [ 62.327701][ T7058] loop8: partition table beyond EOD, truncated [ 62.329849][ T7058] loop_reread_partitions: partition scan of loop8 (被x^> ) failed (rc=-5) [ 62.330592][ T7060] netlink: 'syz.2.485': attribute type 2 has an invalid length. [ 62.429787][ T34] kernel write not supported for file [eventfd] (pid: 34 comm: kworker/3:0) [ 62.452273][ T5980] usb 5-1: Using ep0 maxpacket: 16 [ 62.474538][ T5980] usb 5-1: unable to get BOS descriptor or descriptor too short [ 62.477787][ T5980] usb 5-1: unable to read config index 0 descriptor/start: -71 [ 62.480100][ T5980] usb 5-1: can't read configurations, error -71 [ 62.509634][ T34] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0 [ 62.512018][ T34] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0 [ 62.515857][ T34] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0 [ 62.521067][ T34] hid-generic 0000:0004:0000.0002: hidraw1: HID v0.00 Device [syz0] on syz0 [ 63.026916][ T7113] netlink: 8 bytes leftover after parsing attributes in process `syz.2.516'. [ 63.390863][ T7136] nvme_fabrics: missing parameter 'transport=%s' [ 63.394450][ T7136] nvme_fabrics: missing parameter 'nqn=%s' [ 63.525037][ T7145] nvme_fabrics: missing parameter 'transport=%s' [ 63.527137][ T7145] nvme_fabrics: missing parameter 'nqn=%s' [ 63.976781][ T7181] netlink: 16 bytes leftover after parsing attributes in process `syz.2.538'. [ 63.996479][ T7178] nvme_fabrics: missing parameter 'transport=%s' [ 64.002335][ T7178] nvme_fabrics: missing parameter 'nqn=%s' [ 64.863931][ T7246] netlink: 8 bytes leftover after parsing attributes in process `syz.1.570'. [ 64.898073][ T1462] hid-generic 0005:0B57:0A0B.0003: item fetching failed at offset 1/3 [ 64.901097][ T1462] hid-generic 0005:0B57:0A0B.0003: probe with driver hid-generic failed with error -22 [ 64.946429][ T7255] bridge0: port 2(bridge_slave_1) entered disabled state [ 65.196575][ T7281] netlink: 'syz.3.586': attribute type 8 has an invalid length. [ 66.528829][ T7408] veth1_to_bond: entered allmulticast mode [ 66.531100][ T7407] veth1_to_bond: left allmulticast mode [ 66.734572][ T1462] kernel write not supported for file /snd/seq (pid: 1462 comm: kworker/0:2) [ 66.796191][ T7433] loop8: detected capacity change from 0 to 7 [ 66.799253][ T7433] Dev loop8: unable to read RDB block 7 [ 66.801086][ T7433] loop8: unable to read partition table [ 66.803612][ T7433] loop8: partition table beyond EOD, truncated [ 66.806385][ T7433] loop_reread_partitions: partition scan of loop8 (被x) failed (rc=-5) [ 66.878017][ T7442] netlink: 20 bytes leftover after parsing attributes in process `syz.0.659'. [ 66.913333][ T7445] bond0: entered promiscuous mode [ 66.915053][ T7445] bond_slave_0: entered promiscuous mode [ 66.917808][ T7445] bond_slave_1: entered promiscuous mode [ 66.921545][ T7445] batadv0: entered promiscuous mode [ 66.924245][ T7445] 8021q: adding VLAN 0 to HW filter on device hsr1 [ 66.928007][ T7445] bond0: left promiscuous mode [ 66.929518][ T7445] bond_slave_0: left promiscuous mode [ 66.931287][ T7445] bond_slave_1: left promiscuous mode [ 66.934925][ T7445] batadv0: left promiscuous mode [ 67.410741][ T7473] netlink: 12 bytes leftover after parsing attributes in process `syz.3.674'. [ 67.568332][ T7489] netlink: 8 bytes leftover after parsing attributes in process `syz.3.682'. [ 67.601613][ T40] kauditd_printk_skb: 200 callbacks suppressed [ 67.601630][ T40] audit: type=1326 audit(1748194221.835:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7494 comm="syz.3.685" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 67.611931][ T40] audit: type=1326 audit(1748194221.835:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7494 comm="syz.3.685" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 67.619282][ T40] audit: type=1326 audit(1748194221.845:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7494 comm="syz.3.685" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 67.626790][ T40] audit: type=1326 audit(1748194221.845:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7494 comm="syz.3.685" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 67.633617][ T40] audit: type=1326 audit(1748194221.845:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7494 comm="syz.3.685" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 67.639945][ T40] audit: type=1326 audit(1748194221.845:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7494 comm="syz.3.685" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 67.647474][ T40] audit: type=1326 audit(1748194221.845:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7494 comm="syz.3.685" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 67.653965][ T40] audit: type=1326 audit(1748194221.845:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7494 comm="syz.3.685" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 67.660794][ T40] audit: type=1326 audit(1748194221.845:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7494 comm="syz.3.685" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 67.667690][ T40] audit: type=1326 audit(1748194221.845:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7494 comm="syz.3.685" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 67.670822][ T7503] team0: Device gtp0 is of different type [ 67.842204][ T29] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 68.018416][ T29] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 68.022742][ T65] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 68.025909][ T29] usb 5-1: config 0 interface 0 has no altsetting 0 [ 68.029883][ T29] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 68.032887][ T29] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 68.035394][ T29] usb 5-1: Product: syz [ 68.036831][ T29] usb 5-1: Manufacturer: syz [ 68.038326][ T29] usb 5-1: SerialNumber: syz [ 68.042986][ T29] usb 5-1: config 0 descriptor?? [ 68.048748][ T29] usb 5-1: selecting invalid altsetting 0 [ 68.071565][ T7539] netlink: 16 bytes leftover after parsing attributes in process `syz.1.705'. [ 68.074490][ T7539] netlink: 16 bytes leftover after parsing attributes in process `syz.1.705'. [ 68.184016][ T65] usb 8-1: config 0 has no interfaces? [ 68.186265][ T65] usb 8-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 68.190089][ T65] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 68.197064][ T65] usb 8-1: config 0 descriptor?? [ 68.312570][ T65] usb 5-1: USB disconnect, device number 5 [ 68.407093][ T3548] usb 8-1: USB disconnect, device number 4 [ 68.498762][ T7557] netlink: 'syz.1.713': attribute type 8 has an invalid length. [ 69.434240][ T7621] block device autoloading is deprecated and will be removed. [ 69.792339][ T24] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 69.942314][ T24] usb 7-1: Using ep0 maxpacket: 16 [ 69.947158][ T24] usb 7-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 69.951694][ T24] usb 7-1: config 0 interface 0 has no altsetting 0 [ 69.954938][ T24] usb 7-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00 [ 69.957884][ T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 69.996363][ T24] usb 7-1: config 0 descriptor?? [ 70.205325][ T24] usbhid 7-1:0.0: can't add hid device: -71 [ 70.207929][ T24] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 70.213787][ T24] usb 7-1: USB disconnect, device number 2 [ 70.578219][ T7700] binder: 7699:7700 ioctl c018620c 80000000 returned -1 [ 70.815690][ T1416] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.817874][ T7728] syz.3.796 (7728) used greatest stack depth: 20888 bytes left [ 70.818213][ T1416] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.331620][ T29] kernel write not supported for file /uinput (pid: 29 comm: kworker/1:0) [ 71.336268][ T7764] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.806'. [ 71.375355][ T7770] netlink: 8 bytes leftover after parsing attributes in process `syz.2.810'. [ 71.378217][ T7770] netlink: 4 bytes leftover after parsing attributes in process `syz.2.810'. [ 71.459127][ T7780] misc userio: Begin command sent, but we're already running [ 71.912258][ T834] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 72.084114][ T834] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 72.088213][ T834] usb 6-1: config 0 interface 0 has no altsetting 0 [ 72.094081][ T834] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 72.097805][ T834] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 72.101173][ T834] usb 6-1: Product: syz [ 72.103115][ T834] usb 6-1: Manufacturer: syz [ 72.105085][ T834] usb 6-1: SerialNumber: syz [ 72.109124][ T834] usb 6-1: config 0 descriptor?? [ 72.114894][ T834] usb 6-1: selecting invalid altsetting 0 [ 72.374939][ T834] usb 6-1: USB disconnect, device number 3 [ 73.154664][ T34] kernel write not supported for file /amidi2 (pid: 34 comm: kworker/3:0) [ 73.183481][ T34] hid-generic 0005:0B57:0A0B.0004: item fetching failed at offset 1/3 [ 73.186298][ T34] hid-generic 0005:0B57:0A0B.0004: probe with driver hid-generic failed with error -22 [ 73.204340][ T7822] KVM: debugfs: duplicate directory 7822-4 [ 73.443003][ T40] kauditd_printk_skb: 135 callbacks suppressed [ 73.443018][ T40] audit: type=1326 audit(1748194227.685:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7834 comm="syz.3.839" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 73.461087][ T40] audit: type=1326 audit(1748194227.685:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7834 comm="syz.3.839" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 73.471274][ T40] audit: type=1326 audit(1748194227.685:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7834 comm="syz.3.839" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 73.480032][ T40] audit: type=1326 audit(1748194227.685:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7834 comm="syz.3.839" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 73.490215][ T40] audit: type=1326 audit(1748194227.685:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7834 comm="syz.3.839" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 73.497121][ T40] audit: type=1326 audit(1748194227.685:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7834 comm="syz.3.839" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 73.506032][ T40] audit: type=1326 audit(1748194227.685:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7834 comm="syz.3.839" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 73.512514][ T40] audit: type=1326 audit(1748194227.685:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7834 comm="syz.3.839" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 73.518975][ T40] audit: type=1326 audit(1748194227.685:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7834 comm="syz.3.839" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 73.526171][ T40] audit: type=1326 audit(1748194227.685:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7834 comm="syz.3.839" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 73.574433][ T7845] netlink: 4 bytes leftover after parsing attributes in process `syz.0.850'. [ 73.876039][ T7873] netlink: 4 bytes leftover after parsing attributes in process `syz.3.855'. [ 74.130932][ T7897] KVM: debugfs: duplicate directory 7897-4 [ 74.588841][ T7931] overlayfs: failed to create directory ./file0/work (errno: 22); mounting read-only [ 75.257471][ T7969] netlink: 'syz.0.908': attribute type 8 has an invalid length. [ 75.762174][ T834] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 75.924118][ T834] usb 5-1: config 0 has no interfaces? [ 75.926420][ T834] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 75.930654][ T834] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 75.937786][ T834] usb 5-1: config 0 descriptor?? [ 76.145879][ T58] usb 5-1: USB disconnect, device number 6 [ 76.759716][ T8047] bridge0: port 2(bridge_slave_1) entered learning state [ 76.833378][ T8052] team0: Device gtp0 is of different type [ 76.844297][ T3548] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 77.002670][ T3548] usb 6-1: Using ep0 maxpacket: 16 [ 77.012476][ T3548] usb 6-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 77.017101][ T3548] usb 6-1: config 0 interface 0 has no altsetting 0 [ 77.019901][ T3548] usb 6-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00 [ 77.025732][ T3548] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 77.031231][ T3548] usb 6-1: config 0 descriptor?? [ 77.043891][ T8062] netlink: 4 bytes leftover after parsing attributes in process `syz.0.939'. [ 77.092921][ T8064] netlink: 8 bytes leftover after parsing attributes in process `syz.0.940'. [ 77.132165][ T834] kernel read not supported for file /dsp1 (pid: 834 comm: kworker/1:2) [ 77.240121][ T8081] syz.2.949 (8081) used greatest stack depth: 20424 bytes left [ 77.249809][ T3548] usbhid 6-1:0.0: can't add hid device: -71 [ 77.251879][ T3548] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 77.258818][ T3548] usb 6-1: USB disconnect, device number 4 [ 77.680152][ T8118] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 77.726445][ T8122] netlink: 16 bytes leftover after parsing attributes in process `syz.0.967'. [ 78.288589][ T8185] netlink: 64 bytes leftover after parsing attributes in process `syz.0.999'. [ 78.327073][ T8190] netem: invalid attributes len -3 [ 78.329274][ T8190] netem: change failed [ 78.473126][ T8206] netlink: 212376 bytes leftover after parsing attributes in process `syz.3.1008'. [ 78.729134][ T8220] sch_fq: defrate 0 ignored. [ 79.229497][ T8235] binder: 8234:8235 ioctl c018620c 80000000 returned -1 [ 79.582537][ T34] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 79.722176][ T8259] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1033'. [ 79.742252][ T34] usb 5-1: Using ep0 maxpacket: 32 [ 79.745306][ T34] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 102, changing to 10 [ 79.750030][ T34] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24624, setting to 1024 [ 79.754237][ T34] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 79.759935][ T34] usb 5-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22 [ 79.763133][ T34] usb 5-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131 [ 79.765805][ T34] usb 5-1: Product: syz [ 79.767118][ T34] usb 5-1: Manufacturer: syz [ 79.768590][ T34] usb 5-1: SerialNumber: syz [ 79.774164][ T34] input: appletouch as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:1.0/input/input13 [ 79.801601][ T8265] Failed to get privilege flags for destination (handle=0x2:0x0) [ 79.978146][ T58] usb 5-1: USB disconnect, device number 7 [ 79.992883][ T8297] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 79.998193][ T58] appletouch 5-1:1.0: input: appletouch disconnected [ 80.004861][ T8299] tap0: tun_chr_ioctl cmd 1074025672 [ 80.006673][ T8299] tap0: ignored: set checksum enabled [ 80.200135][ T8328] hugetlbfs: syz.3.1067 (8328): Using mlock ulimits for SHM_HUGETLB is obsolete [ 80.411970][ T8353] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1079'. [ 80.484932][ T40] kauditd_printk_skb: 133 callbacks suppressed [ 80.484948][ T40] audit: type=1326 audit(2000000001.929:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8356 comm="syz.1.1082" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000 [ 80.500197][ T40] audit: type=1326 audit(2000000001.929:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8356 comm="syz.1.1082" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000 [ 80.509540][ T40] audit: type=1326 audit(2000000001.929:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8356 comm="syz.1.1082" exe="/syz-executor" sig=0 arch=40000003 syscall=376 compat=1 ip=0xf70ce579 code=0x7ffc0000 [ 80.518840][ T40] audit: type=1326 audit(2000000001.929:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8356 comm="syz.1.1082" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000 [ 80.528026][ T40] audit: type=1326 audit(2000000001.929:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8356 comm="syz.1.1082" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7ffc0000 [ 80.636910][ T8378] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1091'. [ 80.641503][ T8378] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1091'. [ 81.053965][ T1330] cfg80211: failed to load regulatory.db [ 81.780054][ T8478] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1138'. [ 81.829701][ T8484] bridge: RTM_NEWNEIGH with invalid state 0x0 [ 82.022187][ T10] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 82.090847][ T8498] bridge_slave_0: default FDB implementation only supports local addresses [ 82.182273][ T10] usb 6-1: Using ep0 maxpacket: 32 [ 82.189623][ T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 82.195516][ T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 82.199332][ T10] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 82.203543][ T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 82.207418][ T10] usb 6-1: config 0 descriptor?? [ 82.212305][ T10] hub 6-1:0.0: USB hub found [ 82.233267][ T8502] Attempt to restore checkpoint with obsolete wellknown handles [ 82.419350][ T10] hub 6-1:0.0: config failed, can't read hub descriptor (err -22) [ 82.432636][ T10] usbhid 6-1:0.0: can't add hid device: -71 [ 82.435244][ T10] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 82.463787][ T10] usb 6-1: USB disconnect, device number 5 [ 83.766177][ T8565] loop9: detected capacity change from 0 to 7 [ 84.342494][ T34] kernel read not supported for file /dsp (pid: 34 comm: kworker/3:0) [ 84.573685][ T8622] netlink: 92 bytes leftover after parsing attributes in process `syz.3.1204'. [ 84.910092][ T8647] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.124385][ T8664] netlink: 'syz.3.1221': attribute type 1 has an invalid length. [ 85.412349][ T8681] loop9: detected capacity change from 0 to 7 [ 85.586498][ T8692] netlink: 'syz.0.1234': attribute type 1 has an invalid length. [ 86.487271][ T8724] binder: 8723:8724 ioctl 400c620e 80000000 returned -22 [ 86.530287][ T8728] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1248'. [ 86.888162][ T8762] netlink: 284 bytes leftover after parsing attributes in process `syz.2.1264'. [ 87.025832][ T40] audit: type=1800 audit(2000000008.469:709): pid=8775 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1270" name="file0" dev="9p" ino=36306986 res=0 errno=0 [ 87.129624][ T8791] input: syz0 as /devices/virtual/input/input14 [ 87.133948][ T8793] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1279'. [ 87.136860][ T8792] sg_write: data in/out 67108828/70 bytes for SCSI command 0x0-- guessing data in; [ 87.136860][ T8792] program syz.2.1277 not setting count and/or reply_len properly [ 87.139728][ T8793] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1279'. [ 87.532313][ T8830] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1295'. [ 87.792593][ T29] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 87.962481][ T29] usb 8-1: Using ep0 maxpacket: 16 [ 87.966203][ T29] usb 8-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 87.970615][ T29] usb 8-1: config 0 interface 0 has no altsetting 0 [ 87.973336][ T29] usb 8-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00 [ 87.977120][ T29] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 87.981565][ T8859] netlink: 'syz.2.1307': attribute type 1 has an invalid length. [ 87.982205][ T29] usb 8-1: config 0 descriptor?? [ 88.136980][ T8869] netlink: 27 bytes leftover after parsing attributes in process `syz.1.1312'. [ 88.179785][ T8871] netlink: 'syz.1.1313': attribute type 9 has an invalid length. [ 88.236653][ T29] usbhid 8-1:0.0: can't add hid device: -71 [ 88.238611][ T29] usbhid 8-1:0.0: probe with driver usbhid failed with error -71 [ 88.242041][ T29] usb 8-1: USB disconnect, device number 5 [ 88.818251][ T40] audit: type=1800 audit(2000000010.259:710): pid=8893 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1323" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0 [ 89.225196][ T8908] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1330'. [ 89.612739][ T5953] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 89.612759][ T67] Bluetooth: hci4: command 0x1003 tx timeout [ 90.035261][ T8965] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1354'. [ 90.042922][ T8965] macsec2: entered allmulticast mode [ 90.045128][ T8965] vlan0: entered allmulticast mode [ 90.047226][ T8965] veth0_vlan: entered allmulticast mode [ 90.053354][ T8965] vlan0: left allmulticast mode [ 90.054986][ T8965] veth0_vlan: left allmulticast mode [ 90.287463][ T5999] kernel write not supported for file /uhid (pid: 5999 comm: kworker/2:3) [ 90.487242][ T9006] ALSA: mixer_oss: invalid OSS volume 'VMIX' [ 90.587556][ T34] kernel write not supported for file /input/mouse0 (pid: 34 comm: kworker/3:0) [ 90.771080][ T9040] input: syz0 as /devices/virtual/input/input15 [ 92.301413][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.305487][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.307931][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.310191][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.312632][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.314906][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.317146][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.319428][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.321760][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.324277][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.326730][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.330513][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.333112][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.335308][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.337594][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.339890][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.342298][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.344708][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.347017][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.349273][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.351516][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.354113][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.356266][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.358537][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.361032][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.363454][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.365762][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.368023][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.370286][ T6007] hid-generic 0001:0000:0000.0005: unknown main item tag 0x0 [ 92.373751][ T6007] hid-generic 0001:0000:0000.0005: hidraw1: HID vffffff.ff Device [syz0] on syz0 [ 92.457185][ T9127] capability: warning: `syz.3.1427' uses 32-bit capabilities (legacy support in use) [ 92.537210][ T9137] Invalid ELF header magic: != ELF [ 92.711438][ T9155] vcan0: tx drop: invalid da for name 0x0000000000000002 [ 92.747772][ T9159] random: crng reseeded on system resumption [ 92.758716][ T9161] netlink: 27 bytes leftover after parsing attributes in process `syz.0.1443'. [ 92.794666][ T9165] netlink: 'syz.3.1445': attribute type 14 has an invalid length. [ 92.835500][ T9169] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1447'. [ 92.839395][ T9169] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1447'. [ 93.062056][ T40] audit: type=1800 audit(2000000014.499:711): pid=9200 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1458" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0 [ 93.614206][ T9247] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1483'. [ 93.618477][ T9247] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1483'. [ 93.682214][ T29] usb 7-1: new full-speed USB device number 3 using dummy_hcd [ 93.855731][ T29] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 93.859161][ T29] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 93.862813][ T29] usb 7-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8 [ 93.866442][ T29] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 93.870192][ T29] usb 7-1: config 0 descriptor?? [ 93.873437][ T29] dvb-usb: found a 'Artec T1 USB2.0' in warm state. [ 93.875730][ T29] dvb-usb: bulk message failed: -22 (3/0) [ 93.881495][ T29] dvb-usb: will use the device's hardware PID filter (table count: 16). [ 93.885176][ T29] dvbdev: DVB: registering new adapter (Artec T1 USB2.0) [ 93.887582][ T29] usb 7-1: media controller created [ 93.891193][ T29] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 93.897209][ T29] dvb-usb: bulk message failed: -22 (6/0) [ 93.899444][ T29] dvb-usb: no frontend was attached by 'Artec T1 USB2.0' [ 93.903644][ T29] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb7/7-1/input/input20 [ 93.908693][ T29] dvb-usb: schedule remote query interval to 150 msecs. [ 93.910931][ T29] dvb-usb: Artec T1 USB2.0 successfully initialized and connected. [ 94.075590][ T29] dvb-usb: bulk message failed: -22 (1/0) [ 94.075643][ T3548] usb 7-1: USB disconnect, device number 3 [ 94.077925][ T29] dvb-usb: error while querying for an remote control event. [ 94.092629][ T3548] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected. [ 94.258404][ T9281] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1499'. [ 94.509206][ T9303] netlink: 'syz.0.1509': attribute type 10 has an invalid length. [ 94.519202][ T9303] team0: Port device syz_tun added [ 94.567044][ T9307] netem: incorrect gi model size [ 94.569571][ T9307] netem: change failed [ 94.669442][ T9321] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1519'. [ 94.676673][ T9321] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1519'. [ 94.681092][ T9321] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1519'. [ 95.176095][ T9367] netlink: 'syz.1.1541': attribute type 1 has an invalid length. [ 95.277904][ T9381] macsec1: entered promiscuous mode [ 95.750468][ T40] audit: type=1800 audit(2000000017.189:712): pid=9408 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1557" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0 [ 95.947578][ T9421] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1565'. [ 95.973665][ T9421] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1565'. [ 95.976539][ T9421] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.979132][ T9421] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.981417][ T9421] bridge0: port 2(bridge_slave_1) entered forwarding state [ 96.246767][ T9466] syz.2.1587: attempt to access beyond end of device [ 96.246767][ T9466] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 96.261075][ T9468] netlink: 'syz.0.1588': attribute type 14 has an invalid length. [ 96.628029][ T9490] bond0: entered promiscuous mode [ 96.630241][ T9490] bond_slave_0: entered promiscuous mode [ 96.632318][ T9490] bond_slave_1: entered promiscuous mode [ 96.635060][ T9490] bond0: left promiscuous mode [ 96.636703][ T9490] bond_slave_0: left promiscuous mode [ 96.638586][ T9490] bond_slave_1: left promiscuous mode [ 96.960720][ T9513] ntfs3(sr0): Primary boot signature is not NTFS. [ 96.965140][ T9513] ntfs3(sr0): try to read out of volume at offset 0xf800 [ 97.116662][ T9533] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1618'. [ 97.123125][ T9533] netlink: 'syz.1.1618': attribute type 1 has an invalid length. [ 97.125823][ T9533] netlink: 'syz.1.1618': attribute type 2 has an invalid length. [ 97.246731][ T40] audit: type=1326 audit(2000000018.689:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9549 comm="syz.2.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000 [ 97.282879][ T40] audit: type=1326 audit(2000000018.689:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9549 comm="syz.2.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000 [ 97.297534][ T40] audit: type=1326 audit(2000000018.699:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9549 comm="syz.2.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf708e579 code=0x7ffc0000 [ 97.305714][ T40] audit: type=1326 audit(2000000018.699:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9549 comm="syz.2.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000 [ 97.312185][ T40] audit: type=1326 audit(2000000018.699:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9549 comm="syz.2.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000 [ 97.320980][ T40] audit: type=1326 audit(2000000018.699:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9549 comm="syz.2.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf708e579 code=0x7ffc0000 [ 97.327601][ T40] audit: type=1326 audit(2000000018.699:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9549 comm="syz.2.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000 [ 97.336510][ T40] audit: type=1326 audit(2000000018.699:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9549 comm="syz.2.1626" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000 [ 97.363264][ T9572] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1637'. [ 97.367185][ T9572] netlink: 'syz.3.1637': attribute type 18 has an invalid length. [ 97.370187][ T9572] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1637'. [ 97.446928][ T9582] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1643'. [ 97.574657][ T9601] netem: incorrect ge model size [ 97.580166][ T9601] netem: change failed [ 97.608464][ T9606] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1653'. [ 98.079489][ T9654] netlink: 92 bytes leftover after parsing attributes in process `syz.1.1675'. [ 99.182307][ T3548] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 99.353827][ T3548] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 99.358432][ T3548] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 99.364734][ T3548] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 99.370157][ T3548] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 99.373898][ T3548] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 99.377876][ T3548] usb 5-1: config 0 descriptor?? [ 99.790309][ T3548] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving [ 99.797282][ T3548] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 99.905622][ T9746] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check. [ 99.996620][ T9758] mkiss: ax0: crc mode is auto. [ 100.044945][ T3548] usb 5-1: USB disconnect, device number 8 [ 100.789168][ T9815] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1750'. [ 100.797570][ T9815] macsec0: entered promiscuous mode [ 100.899124][ T9822] netem: unknown loss type 0 [ 100.900853][ T9822] netem: change failed [ 101.559143][ T9862] binder: 9861:9862 ioctl c00c620f 800002c0 returned -22 [ 101.788437][ T9885] xt_cgroup: path and classid specified [ 102.069359][ T9913] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1795'. [ 102.216114][ T40] kauditd_printk_skb: 3 callbacks suppressed [ 102.216129][ T40] audit: type=1326 audit(2000000023.659:724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9927 comm="syz.1.1802" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70ce579 code=0x0 [ 102.379859][ T9935] kernel read not supported for file /eth0 (pid: 9935 comm: syz.3.1805) [ 102.383407][ T40] audit: type=1800 audit(2000000023.829:725): pid=9935 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1805" name="eth0" dev="mqueue" ino=30406 res=0 errno=0 [ 102.562274][ T1330] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 102.682154][ T9943] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1809'. [ 102.722226][ T1330] usb 5-1: Using ep0 maxpacket: 32 [ 102.729232][ T1330] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 9 [ 102.734910][ T1330] usb 5-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 102.737841][ T1330] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 102.740399][ T1330] usb 5-1: Product: syz [ 102.741789][ T1330] usb 5-1: Manufacturer: syz [ 102.744173][ T1330] usb 5-1: SerialNumber: syz [ 102.748767][ T1330] usb 5-1: config 0 descriptor?? [ 102.751281][ T9933] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 102.756726][ T1330] input: syz syz as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input22 [ 103.034942][ T5980] usb 5-1: USB disconnect, device number 9 [ 103.034949][ C1] usbtouchscreen 5-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19 [ 103.139844][ T9990] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1831'. [ 103.369341][ T5953] Bluetooth: hci0: adv larger than maximum supported [ 103.369371][ T5953] Bluetooth: hci0: Malformed LE Event: 0x0d [ 103.612856][T10022] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1845'. [ 103.615859][T10022] netlink: 43 bytes leftover after parsing attributes in process `syz.0.1845'. [ 103.618781][T10022] netlink: 'syz.0.1845': attribute type 5 has an invalid length. [ 103.621363][T10022] netlink: 43 bytes leftover after parsing attributes in process `syz.0.1845'. [ 104.078583][ T1330] IPVS: starting estimator thread 0... [ 104.193014][T10067] IPVS: using max 44 ests per chain, 105600 per kthread [ 104.439846][T10103] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1884'. [ 104.445986][T10105] sctp: [Deprecated]: syz.2.1883 (pid 10105) Use of struct sctp_assoc_value in delayed_ack socket option. [ 104.445986][T10105] Use struct sctp_sack_info instead [ 104.960774][T10181] input: syz1 as /devices/virtual/input/input23 [ 105.143621][T10201] --map-set only usable from mangle table [ 105.203745][T10211] openvswitch: netlink: IPv4 tunnel dst address is zero [ 105.409767][ T1462] kernel read not supported for file /dsp (pid: 1462 comm: kworker/0:2) [ 106.286447][T10293] overlayfs: missing 'workdir' [ 106.435858][T10316] sg_write: data in/out 489/14 bytes for SCSI command 0x3-- guessing data in; [ 106.435858][T10316] program syz.1.1978 not setting count and/or reply_len properly [ 106.470506][T10321] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1980'. [ 106.582574][T10338] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1988'. [ 106.658901][T10351] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1994'. [ 106.695078][T10356] loop4: detected capacity change from 0 to 524255232 [ 107.384165][T10438] dummy0: entered promiscuous mode [ 107.386102][T10438] macsec3: entered allmulticast mode [ 107.387842][T10438] dummy0: entered allmulticast mode [ 107.390856][T10438] dummy0: left allmulticast mode [ 107.395131][T10438] dummy0: left promiscuous mode [ 107.493978][T10440] block nbd2: NBD_DISCONNECT [ 107.499112][T10440] block nbd2: Send disconnect failed -22 [ 107.501808][T10439] block nbd2: Disconnected due to user request. [ 107.506038][T10439] block nbd2: shutting down sockets [ 107.595380][T10454] __nla_validate_parse: 3 callbacks suppressed [ 107.595390][T10454] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2042'. [ 107.600439][T10455] sch_fq: defrate 113 ignored. [ 109.069946][T10552] loop6: detected capacity change from 0 to 524287999 [ 109.127439][T10556] lo: entered promiscuous mode [ 109.129799][T10556] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 109.401465][T10588] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2105'. [ 109.451222][T10596] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2109'. [ 109.456786][T10596] bridge0: port 3(vlan2) entered blocking state [ 109.456899][T10596] bridge0: port 3(vlan2) entered disabled state [ 109.456972][T10596] vlan2: entered allmulticast mode [ 109.456981][T10596] bridge0: entered allmulticast mode [ 109.473618][T10596] vlan2: left allmulticast mode [ 109.475631][T10596] bridge0: left allmulticast mode [ 109.601795][T10617] netlink: 'syz.1.2120': attribute type 2 has an invalid length. [ 110.113658][ T58] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 111.123377][ T13] bond0: (slave bond_slave_0): interface is now down [ 111.126381][ T13] bond0: (slave bond_slave_1): interface is now down [ 111.143279][ T1135] bond0: (slave bond_slave_0): interface is now down [ 111.145310][ T1135] bond0: (slave bond_slave_1): interface is now down [ 111.172647][ T1135] bond0: (slave bond_slave_0): interface is now down [ 111.174781][ T1135] bond0: (slave bond_slave_1): interface is now down [ 111.179995][ T1135] bond0: now running without any active interface! [ 111.410649][T10725] gtp0: entered promiscuous mode [ 111.412411][T10725] gtp0: entered allmulticast mode [ 111.413053][T10727] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2174'. [ 111.417841][T10727] netlink: 120 bytes leftover after parsing attributes in process `syz.0.2174'. [ 111.420834][T10727] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2174'. [ 111.453244][T10731] netlink: 'syz.2.2176': attribute type 19 has an invalid length. [ 111.496471][T10737] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2179'. [ 111.868703][ T40] audit: type=1326 audit(2000000033.309:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10778 comm="syz.0.2199" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 111.878693][ T40] audit: type=1326 audit(2000000033.309:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10778 comm="syz.0.2199" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 111.888454][ T40] audit: type=1326 audit(2000000033.309:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10778 comm="syz.0.2199" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 111.897542][ T40] audit: type=1326 audit(2000000033.309:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10778 comm="syz.0.2199" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 111.906980][ T40] audit: type=1326 audit(2000000033.309:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10778 comm="syz.0.2199" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 111.922781][ T40] audit: type=1326 audit(2000000033.309:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10778 comm="syz.0.2199" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 111.930945][ T40] audit: type=1326 audit(2000000033.309:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10778 comm="syz.0.2199" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000 [ 111.942200][ T40] audit: type=1326 audit(2000000033.309:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10778 comm="syz.0.2199" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000 [ 111.951419][ T40] audit: type=1326 audit(2000000033.309:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10778 comm="syz.0.2199" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000 [ 111.960870][ T40] audit: type=1326 audit(2000000033.309:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10778 comm="syz.0.2199" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70de598 code=0x7ffc0000 [ 112.133639][T10794] overlayfs: failed to clone lowerpath [ 112.260495][T10813] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2 [ 112.548736][T10849] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2233'. [ 112.951069][T10902] rtc_cmos 00:05: Alarms can be up to one day in the future [ 112.954316][T10902] netlink: 'syz.0.2258': attribute type 1 has an invalid length. [ 113.667995][ T1330] kernel write not supported for file /sequencer (pid: 1330 comm: kworker/1:3) [ 114.308721][T11060] vxcan0: tx address claim with dest, not broadcast [ 114.334125][ T12] wlan1: Trigger new scan to find an IBSS to join [ 114.374626][T11068] team0: Device lo is loopback device. Loopback devices can't be added as a team port [ 114.377636][T11068] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 114.452538][T11077] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2340'. [ 114.811121][T11086] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2343'. [ 114.982312][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 115.391637][T11134] netlink: 'syz.0.2364': attribute type 29 has an invalid length. [ 115.395733][T11134] netlink: 'syz.0.2364': attribute type 29 has an invalid length. [ 115.400276][T11134] netlink: 'syz.0.2364': attribute type 29 has an invalid length. [ 115.445811][T11142] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2368'. [ 115.717467][T11182] team0: Port device virt_wifi0 added [ 115.743723][ T5953] Bluetooth: hci3: unexpected Set CIG Parameters response data [ 115.858424][T11191] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2387'. [ 115.957683][T11187] syz.1.2385 (11187): drop_caches: 1 [ 115.958096][T11186] syz.1.2385 (11186): drop_caches: 1 [ 115.982815][T11186] syz.1.2385 (11186): drop_caches: 1 [ 116.984149][T11224] random: crng reseeded on system resumption [ 117.053492][T11232] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2406'. [ 117.252331][T11257] can0: slcan on ttyprintk. [ 117.302874][T11256] can0 (unregistered): slcan off ttyprintk. [ 117.465047][T11272] sp0: Synchronizing with TNC [ 117.868631][T11281] netlink: 'syz.1.2430': attribute type 83 has an invalid length. [ 119.003290][ T29] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 119.014744][T11359] block nbd1: not configured, cannot reconfigure [ 119.158463][T11369] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2470'. [ 119.167402][ T29] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 119.167699][ T46] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 119.170823][ T29] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 119.170849][ T29] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 119.173729][ T46] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 119.178205][ T29] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 119.186181][T11340] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 119.190048][ T29] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 119.202363][ T58] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 119.292293][ T46] wlan1: Trigger new scan to find an IBSS to join [ 119.407711][ T29] usb 7-1: USB disconnect, device number 4 [ 119.432295][ T58] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 119.713626][ T58] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 120.267379][T11431] wlan1: Creating new IBSS network, BSSID ce:c2:f7:84:5d:91 [ 120.394150][T11474] loop9: detected capacity change from 0 to 7 [ 120.397348][T11474] loop9: [CUMANA/ADFS] p1 [ADFS] p1 [ 120.399534][T11474] loop9: partition table partially beyond EOD, truncated [ 120.402612][T11474] loop9: p1 size 2437361653 extends beyond EOD, truncated [ 120.465431][T11478] netlink: 'syz.2.2493': attribute type 1 has an invalid length. [ 120.467995][T11478] netlink: 'syz.2.2493': attribute type 2 has an invalid length. [ 120.470507][T11478] netlink: 'syz.2.2493': attribute type 1 has an invalid length. [ 120.473158][T11478] netlink: 1156 bytes leftover after parsing attributes in process `syz.2.2493'. [ 121.191333][T11491] input: syz0 as /devices/virtual/input/input25 [ 121.467736][ T5953] Bluetooth: hci0: Dropping invalid advertising data [ 121.469882][ T5953] Bluetooth: hci0: Malformed LE Event: 0x02 [ 121.649670][T11530] mkiss: ax0: crc mode is auto. [ 121.783935][T11540] mkiss: ax0: crc mode is auto. [ 121.897900][T11547] can0: slcan on ttyS3. [ 121.914336][T11549] sctp: [Deprecated]: syz.2.2523 (pid 11549) Use of struct sctp_assoc_value in delayed_ack socket option. [ 121.914336][T11549] Use struct sctp_sack_info instead [ 121.982318][T11547] can0 (unregistered): slcan off ttyS3. [ 122.242724][ T58] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 122.972367][ C2] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 130.972434][ C2] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 132.255602][ T1416] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.258007][ T1416] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.425684][T11631] netlink: 84 bytes leftover after parsing attributes in process `syz.3.2549'. [ 132.598234][T11652] random: crng reseeded on system resumption [ 132.620249][T11654] ip6gretap0: entered promiscuous mode [ 132.625383][T11656] binder: 11655:11656 ioctl c0306201 80000100 returned -14 [ 132.741649][T11673] loop6: detected capacity change from 0 to 524287999 [ 133.035891][T11683] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x6 [ 133.452317][ T10] kernel read not supported for file /dsp1 (pid: 10 comm: kworker/0:1) [ 133.538262][T11687] 9pnet_virtio: no channels available for device syz [ 133.737785][T11699] random: crng reseeded on system resumption [ 133.874353][T11718] input: syz0 as /devices/virtual/input/input26 [ 133.883407][T11721] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2591'. [ 133.887139][T11721] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2591'. [ 134.107951][T11754] netlink: 11 bytes leftover after parsing attributes in process `syz.2.2608'. [ 134.170305][T11767] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2614'. [ 134.174512][T11767] nbd: nbd0 already in use [ 134.225202][T11773] netlink: 830 bytes leftover after parsing attributes in process `syz.0.2617'. [ 134.456295][ T34] hid-generic 0005:16BF:5505.0007: unknown main item tag 0x0 [ 134.458751][ T34] hid-generic 0005:16BF:5505.0007: unknown main item tag 0x0 [ 134.467199][ T34] hid-generic 0005:16BF:5505.0007: hidraw1: BLUETOOTH HID vc3.b8 Device [syz1] on aa:aa:aa:aa:aa:aa [ 134.673622][T11400] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 134.679256][T11833] netlink: 'syz.1.2647': attribute type 25 has an invalid length. [ 134.679268][T11833] netlink: 'syz.1.2647': attribute type 1 has an invalid length. [ 134.679309][T11833] bridge0: port 1(bridge_slave_0) entered learning state [ 134.748719][T11400] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 134.761990][T11840] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2650'. [ 134.822873][T11400] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 134.896738][ T67] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 134.899937][ T67] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 134.904391][ T67] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 134.907499][ T67] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 134.918139][ T67] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 134.921173][T11400] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.037853][T11400] bridge_slave_1: left allmulticast mode [ 135.039792][T11400] bridge_slave_1: left promiscuous mode [ 135.042867][T11400] bridge0: port 2(bridge_slave_1) entered disabled state [ 135.048993][T11400] bridge_slave_0: left allmulticast mode [ 135.050806][T11400] bridge_slave_0: left promiscuous mode [ 135.053471][T11400] bridge0: port 1(bridge_slave_0) entered disabled state [ 135.067100][T11881] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2668'. [ 135.071794][T11881] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2668'. [ 135.318096][T11400] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 135.323915][T11400] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 135.328703][T11400] bond0 (unregistering): Released all slaves [ 135.342610][T11857] chnl_net:caif_netlink_parms(): no params data found [ 135.438075][T11857] bridge0: port 1(bridge_slave_0) entered blocking state [ 135.440428][T11857] bridge0: port 1(bridge_slave_0) entered disabled state [ 135.443419][T11857] bridge_slave_0: entered allmulticast mode [ 135.446366][T11857] bridge_slave_0: entered promiscuous mode [ 135.478872][T11857] bridge0: port 2(bridge_slave_1) entered blocking state [ 135.481666][T11857] bridge0: port 2(bridge_slave_1) entered disabled state [ 135.485561][T11857] bridge_slave_1: entered allmulticast mode [ 135.488258][T11857] bridge_slave_1: entered promiscuous mode [ 135.531958][T11857] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 135.545012][T11857] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 135.640994][T11857] team0: Port device team_slave_0 added [ 135.647393][T11857] team0: Port device team_slave_1 added [ 135.659518][T11400] hsr_slave_0: left promiscuous mode [ 135.665069][T11400] hsr_slave_1: left promiscuous mode [ 135.667703][T11400] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 135.670943][T11400] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 135.682973][T11400] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 135.685973][T11400] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 135.714719][T11400] veth1_macvtap: left promiscuous mode [ 135.716747][T11400] veth0_macvtap: left promiscuous mode [ 135.718525][T11400] veth1_vlan: left promiscuous mode [ 135.723716][T11400] veth0_vlan: left promiscuous mode [ 135.942288][T11908] (syz.0.2677,11908,3):dlmfs_mkdir:421 ERROR: invalid domain name for directory. [ 136.016187][T11400] net veth1_virt_wifi virt_wifi0 (unregistering): left allmulticast mode [ 136.287641][T11925] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2685'. [ 136.392259][T11400] team0 (unregistering): Port device team_slave_1 removed [ 136.431089][T11400] team0 (unregistering): Port device team_slave_0 removed [ 136.920094][T11923] bridge: RTM_NEWNEIGH with unconfigured vlan 1 on bridge_slave_0 [ 136.961056][T11857] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 136.963592][T11857] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 136.972481][T11857] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 136.976057][ T67] Bluetooth: hci0: command tx timeout [ 136.976920][T11857] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 136.980246][T11857] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 136.989575][T11857] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 137.047827][T11857] hsr_slave_0: entered promiscuous mode [ 137.050227][T11857] hsr_slave_1: entered promiscuous mode [ 137.053063][T11857] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 137.055706][T11857] Cannot create hsr debugfs directory [ 137.203952][T11857] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 137.208194][T11857] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 137.212915][T11857] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 137.220611][T11857] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 137.233892][T11400] IPVS: stop unused estimator thread 0... [ 137.269614][T11857] 8021q: adding VLAN 0 to HW filter on device bond0 [ 137.284552][T11857] 8021q: adding VLAN 0 to HW filter on device team0 [ 137.290845][T11417] bridge0: port 1(bridge_slave_0) entered blocking state [ 137.293487][T11417] bridge0: port 1(bridge_slave_0) entered forwarding state [ 137.299635][T11433] bridge0: port 2(bridge_slave_1) entered blocking state [ 137.302059][T11433] bridge0: port 2(bridge_slave_1) entered forwarding state [ 137.439726][T11857] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 137.603783][T11857] veth0_vlan: entered promiscuous mode [ 137.609063][T11857] veth1_vlan: entered promiscuous mode [ 137.627716][T11857] veth0_macvtap: entered promiscuous mode [ 137.631548][T11857] veth1_macvtap: entered promiscuous mode [ 137.640655][T11857] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 137.651565][T11857] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 137.657758][T11857] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 137.660594][T11857] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 137.663997][T11857] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 137.666778][T11857] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 137.710772][T11400] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 137.714887][T11400] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 137.726759][T11390] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 137.729927][T11390] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 137.973389][T11968] syz.4.2649 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 138.522335][ T3548] usb 9-1: new high-speed USB device number 2 using dummy_hcd [ 138.682265][ T3548] usb 9-1: Using ep0 maxpacket: 16 [ 138.685639][ T3548] usb 9-1: config 0 has no interfaces? [ 138.689023][ T3548] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 138.691881][ T3548] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 138.694533][ T3548] usb 9-1: Product: syz [ 138.695866][ T3548] usb 9-1: Manufacturer: syz [ 138.697352][ T3548] usb 9-1: SerialNumber: syz [ 138.700633][ T3548] usb 9-1: config 0 descriptor?? [ 138.754166][T12001] netlink: 'syz.1.2714': attribute type 21 has an invalid length. [ 138.910723][ T3548] usb 9-1: USB disconnect, device number 2 [ 138.989966][T12022] Bluetooth: MGMT ver 1.23 [ 139.024443][T12028] bridge0: port 1(bridge_slave_0) entered disabled state [ 139.052318][ T67] Bluetooth: hci0: command tx timeout [ 139.122557][T12036] sp0: Synchronizing with TNC [ 139.158321][ T40] kauditd_printk_skb: 863 callbacks suppressed [ 139.158336][ T40] audit: type=1326 audit(2000000060.599:1599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12039 comm="syz.3.2733" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.170549][ T40] audit: type=1326 audit(2000000060.599:1600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12039 comm="syz.3.2733" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.181117][ T40] audit: type=1326 audit(2000000060.599:1601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12039 comm="syz.3.2733" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.188989][ T40] audit: type=1326 audit(2000000060.599:1602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12039 comm="syz.3.2733" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.196073][ T40] audit: type=1326 audit(2000000060.599:1603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12039 comm="syz.3.2733" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.202709][ T40] audit: type=1326 audit(2000000060.599:1604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12039 comm="syz.3.2733" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.210112][ T40] audit: type=1326 audit(2000000060.599:1605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12039 comm="syz.3.2733" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.216919][ T40] audit: type=1326 audit(2000000060.599:1606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12039 comm="syz.3.2733" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ae5a7 code=0x7ffc0000 [ 139.224108][ T40] audit: type=1326 audit(2000000060.599:1607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12039 comm="syz.3.2733" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.230689][ T40] audit: type=1326 audit(2000000060.599:1608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12039 comm="syz.3.2733" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ae5a7 code=0x7ffc0000 [ 139.337580][T12057] __nla_validate_parse: 1 callbacks suppressed [ 139.337591][T12057] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2740'. [ 139.627953][T12095] netlink: 'syz.4.2757': attribute type 1 has an invalid length. [ 139.663567][T12101] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma? [ 139.800085][T12116] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2769'. [ 139.993922][T12143] gfs2: gfs2 mount does not exist [ 140.008110][T11408] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.074526][T11408] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.170606][T11408] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.181809][T12157] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2791'. [ 140.189120][T12159] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2792'. [ 140.189350][T12157] netlink: 'syz.0.2791': attribute type 5 has an invalid length. [ 140.226851][ T5953] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 140.238064][ T5953] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 140.245216][ T5953] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 140.248974][ T5953] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 140.253388][ T5953] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 140.312612][T11408] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.414150][T11408] bridge_slave_1: left allmulticast mode [ 140.415920][T11408] bridge_slave_1: left promiscuous mode [ 140.417778][T11408] bridge0: port 2(bridge_slave_1) entered disabled state [ 140.423300][T11408] bridge_slave_0: left allmulticast mode [ 140.425083][T11408] bridge_slave_0: left promiscuous mode [ 140.426864][T11408] bridge0: port 1(bridge_slave_0) entered disabled state [ 140.704672][T11408] bond0 (unregistering): left promiscuous mode [ 140.706603][T11408] bond_slave_0: left promiscuous mode [ 140.708388][T11408] bond_slave_1: left promiscuous mode [ 140.721722][T11408] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 140.727803][T11408] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 140.731911][T11408] bond0 (unregistering): Released all slaves [ 140.738153][T12160] chnl_net:caif_netlink_parms(): no params data found [ 140.857436][T12160] bridge0: port 1(bridge_slave_0) entered blocking state [ 140.859698][T12160] bridge0: port 1(bridge_slave_0) entered disabled state [ 140.862789][T12160] bridge_slave_0: entered allmulticast mode [ 140.865797][T12160] bridge_slave_0: entered promiscuous mode [ 140.884333][T12160] bridge0: port 2(bridge_slave_1) entered blocking state [ 140.886769][T12160] bridge0: port 2(bridge_slave_1) entered disabled state [ 140.889043][T12160] bridge_slave_1: entered allmulticast mode [ 140.894289][T12160] bridge_slave_1: entered promiscuous mode [ 140.942971][T12160] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 140.947434][T12160] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 140.967182][T12217] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2813'. [ 141.015359][T12160] team0: Port device team_slave_0 added [ 141.020046][T12160] team0: Port device team_slave_1 added [ 141.042180][ T3548] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 141.068181][T12160] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 141.072243][T12160] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 141.085144][T12160] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 141.100265][T12160] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 141.103793][T12160] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 141.115647][T12160] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 141.135629][ T67] Bluetooth: hci0: command tx timeout [ 141.192185][ T3548] usb 9-1: Using ep0 maxpacket: 16 [ 141.196397][ T3548] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 141.200092][ T3548] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 141.206471][ T3548] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 141.209312][ T3548] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 141.216145][ T3548] usb 9-1: Product: syz [ 141.225141][ T3548] usb 9-1: Manufacturer: syz [ 141.229342][ T3548] usb 9-1: SerialNumber: syz [ 141.259297][T11408] hsr_slave_0: left promiscuous mode [ 141.262691][T11408] hsr_slave_1: left promiscuous mode [ 141.265734][T11408] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 141.268422][T11408] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 141.271674][T11408] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 141.277072][T11408] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 141.320046][T11408] veth1_macvtap: left promiscuous mode [ 141.321965][T11408] veth0_macvtap: left promiscuous mode [ 141.325332][T11408] veth1_vlan: left promiscuous mode [ 141.327030][T11408] veth0_vlan: left promiscuous mode [ 141.400364][T12235] trusted_key: syz.0.2822 sent an empty control message without MSG_MORE. [ 141.449796][ T3548] usb 9-1: 0:2 : does not exist [ 141.470993][ T3548] usb 9-1: USB disconnect, device number 3 [ 141.600993][T11408] team0 (unregistering): Port device virt_wifi0 removed [ 141.713329][ T3548] IPVS: starting estimator thread 0... [ 141.832178][T12249] IPVS: using max 45 ests per chain, 108000 per kthread [ 141.951795][T12254] serio: Serial port ptm0 [ 142.045696][T11408] team0 (unregistering): Port device team_slave_1 removed [ 142.117819][T11408] team0 (unregistering): Port device team_slave_0 removed [ 142.333582][ T67] Bluetooth: hci1: command tx timeout [ 142.680165][T12160] hsr_slave_0: entered promiscuous mode [ 142.683085][T12160] hsr_slave_1: entered promiscuous mode [ 142.685205][T12160] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 142.687781][T12160] Cannot create hsr debugfs directory [ 142.827722][T12160] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 142.835157][T12160] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 142.840613][T12160] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 142.845652][T12160] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 142.890672][T12160] 8021q: adding VLAN 0 to HW filter on device bond0 [ 142.904762][T12160] 8021q: adding VLAN 0 to HW filter on device team0 [ 142.910412][T11433] bridge0: port 1(bridge_slave_0) entered blocking state [ 142.912739][T11433] bridge0: port 1(bridge_slave_0) entered forwarding state [ 142.924520][T11433] bridge0: port 2(bridge_slave_1) entered blocking state [ 142.926786][T11433] bridge0: port 2(bridge_slave_1) entered forwarding state [ 143.078008][T12160] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 143.192635][ T58] usb 9-1: new high-speed USB device number 4 using dummy_hcd [ 143.212451][ T67] Bluetooth: hci0: command tx timeout [ 143.240933][T12160] veth0_vlan: entered promiscuous mode [ 143.248960][T12160] veth1_vlan: entered promiscuous mode [ 143.269834][T12160] veth0_macvtap: entered promiscuous mode [ 143.274901][T12160] veth1_macvtap: entered promiscuous mode [ 143.286260][T12160] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 143.293678][T12160] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 143.299561][T12160] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 143.303214][T12160] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 143.305949][T12160] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 143.309007][T12160] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 143.343776][T11390] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 143.346332][T11390] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 143.357683][T11417] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 143.360433][T11417] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 143.362308][ T58] usb 9-1: Using ep0 maxpacket: 16 [ 143.370376][ T58] usb 9-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 143.379040][ T58] usb 9-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 143.381637][ T58] usb 9-1: Product: syz [ 143.385939][ T58] usb 9-1: Manufacturer: syz [ 143.387380][ T58] usb 9-1: SerialNumber: syz [ 143.390000][ T58] usb 9-1: config 0 descriptor?? [ 143.607355][ T58] usb 9-1: USB disconnect, device number 4 [ 143.709112][T12324] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2855'. [ 143.713556][T12324] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2855'. [ 143.716321][T12324] netlink: 'syz.5.2855': attribute type 13 has an invalid length. [ 143.718651][T12324] netlink: 'syz.5.2855': attribute type 14 has an invalid length. [ 143.823460][T12330] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2858'. [ 144.303144][T12353] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2869'. [ 144.412922][ T67] Bluetooth: hci1: command tx timeout [ 144.611167][T12370] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2878'. [ 144.941927][T12393] netlink: 124 bytes leftover after parsing attributes in process `syz.0.2887'. [ 144.985341][T12397] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check. [ 145.071772][T12406] netlink: 'syz.5.2894': attribute type 1 has an invalid length. [ 145.078976][T12406] netlink: 168864 bytes leftover after parsing attributes in process `syz.5.2894'. [ 145.391942][T12435] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2906'. [ 146.040964][T12470] random: crng reseeded on system resumption [ 146.492299][ T67] Bluetooth: hci1: command tx timeout [ 146.513379][T12516] /dev/nullb0: Can't open blockdev [ 147.737113][ T40] kauditd_printk_skb: 373 callbacks suppressed [ 147.737129][ T40] audit: type=1800 audit(2000000069.179:1982): pid=12554 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2965" name="[kvm-gmem]" dev="anon_inodefs" ino=44799 res=0 errno=0 [ 148.460142][ T40] audit: type=1326 audit(2000000069.899:1983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12602 comm="syz.0.2986" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 148.469688][ T40] audit: type=1326 audit(2000000069.899:1984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12602 comm="syz.0.2986" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 148.473651][T12605] input: syz0 as /devices/virtual/input/input27 [ 148.478795][ T40] audit: type=1326 audit(2000000069.899:1985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12602 comm="syz.0.2986" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 148.491487][ T40] audit: type=1326 audit(2000000069.899:1986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12602 comm="syz.0.2986" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 148.500639][ T40] audit: type=1326 audit(2000000069.899:1987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12602 comm="syz.0.2986" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 148.510034][ T40] audit: type=1326 audit(2000000069.899:1988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12602 comm="syz.0.2986" exe="/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 148.516895][ T40] audit: type=1326 audit(2000000069.899:1989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12602 comm="syz.0.2986" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 148.524851][ T40] audit: type=1326 audit(2000000069.899:1990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12602 comm="syz.0.2986" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 148.572298][ T67] Bluetooth: hci1: command tx timeout [ 148.690485][T12613] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2991'. [ 148.896900][T12621] Invalid ELF header magic: != ELF [ 148.920529][T12623] netlink: 68 bytes leftover after parsing attributes in process `syz.5.2997'. [ 149.197108][T12644] input: syz1 as /devices/virtual/input/input28 [ 149.420207][T12664] tap0: tun_chr_ioctl cmd 1074025678 [ 149.421985][T12664] tap0: group set to 0 [ 149.851985][T12710] kernel profiling enabled (shift: 9) [ 149.985531][T12720] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3040'. [ 150.034249][T12724] netlink: 332 bytes leftover after parsing attributes in process `syz.0.3042'. [ 150.037126][T12724] netlink: 'syz.0.3042': attribute type 3 has an invalid length. [ 150.039608][T12724] netlink: 'syz.0.3042': attribute type 1 has an invalid length. [ 150.457101][T12769] serio: Serial port ttynull [ 150.459378][T12770] ALSA: mixer_oss: invalid OSS volume 'DIGTAL1' [ 150.655262][T12792] input: syz0 as /devices/virtual/input/input29 [ 151.093885][T12818] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3) [ 151.096829][T12818] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 151.110479][T12818] vhci_hcd vhci_hcd.0: Device attached [ 151.116688][T12818] vhci_hcd vhci_hcd.0: pdev(5) rhport(1) sockfd(5) [ 151.118822][T12818] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 151.122398][T12818] vhci_hcd vhci_hcd.0: Device attached [ 151.127591][T12818] vhci_hcd vhci_hcd.0: pdev(5) rhport(2) sockfd(7) [ 151.129657][T12818] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 151.132756][T12818] vhci_hcd vhci_hcd.0: Device attached [ 151.136601][T12818] vhci_hcd vhci_hcd.0: pdev(5) rhport(3) sockfd(9) [ 151.139130][T12818] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 151.142772][T12818] vhci_hcd vhci_hcd.0: Device attached [ 151.146255][T12826] vhci_hcd: connection closed [ 151.147091][T12828] vhci_hcd: connection closed [ 151.147412][T12822] vhci_hcd: connection closed [ 151.148376][T12820] vhci_hcd: connection closed [ 151.149083][T11390] vhci_hcd: stop threads [ 151.159498][T11390] vhci_hcd: release socket [ 151.161225][T11390] vhci_hcd: disconnect device [ 151.164259][T11390] vhci_hcd: stop threads [ 151.165974][T11390] vhci_hcd: release socket [ 151.167765][T11390] vhci_hcd: disconnect device [ 151.174307][T11390] vhci_hcd: stop threads [ 151.175762][T11390] vhci_hcd: release socket [ 151.177264][T11390] vhci_hcd: disconnect device [ 151.179146][T11390] vhci_hcd: stop threads [ 151.180591][T11390] vhci_hcd: release socket [ 151.182969][T11390] vhci_hcd: disconnect device [ 151.356718][T12845] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3092'. [ 151.753070][T12897] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 152.104696][ T40] audit: type=1326 audit(2000000073.549:1991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12927 comm="syz.5.3132" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000 [ 152.917824][ T40] kauditd_printk_skb: 264 callbacks suppressed [ 152.917840][ T40] audit: type=1326 audit(2000000074.359:2256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12980 comm="syz.0.3157" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 152.933827][ T40] audit: type=1326 audit(2000000074.359:2257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12980 comm="syz.0.3157" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70de5a7 code=0x7ffc0000 [ 152.942226][ T40] audit: type=1326 audit(2000000074.359:2258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12980 comm="syz.0.3157" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 152.963829][ T40] audit: type=1326 audit(2000000074.359:2259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12980 comm="syz.0.3157" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70de5a7 code=0x7ffc0000 [ 152.970585][ T40] audit: type=1326 audit(2000000074.359:2260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12980 comm="syz.0.3157" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 152.977284][ T40] audit: type=1326 audit(2000000074.359:2261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12980 comm="syz.0.3157" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70de5a7 code=0x7ffc0000 [ 152.984110][ T40] audit: type=1326 audit(2000000074.359:2262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12980 comm="syz.0.3157" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 152.990718][ T40] audit: type=1326 audit(2000000074.359:2263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12980 comm="syz.0.3157" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70de5a7 code=0x7ffc0000 [ 153.001145][ T40] audit: type=1326 audit(2000000074.359:2264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12980 comm="syz.0.3157" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 153.011463][ T40] audit: type=1326 audit(2000000074.359:2265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12980 comm="syz.0.3157" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 153.033320][T12998] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3165'. [ 153.037743][T12998] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3165'. [ 153.349923][T13020] input: syz0 as /devices/virtual/input/input30 [ 153.847065][T13030] team0: No ports can be present during mode change [ 154.076132][T13053] random: crng reseeded on system resumption [ 154.732246][T13090] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.3205' sets config #0 [ 154.953735][ T65] kernel read not supported for file /dsp (pid: 65 comm: kworker/1:1) [ 155.154952][T13125] netdevsim netdevsim0: Direct firmware load for 0PqD"2NktTWj%N failed with error -2 [ 155.158706][T13125] netdevsim netdevsim0: Falling back to sysfs fallback for: 0PqD"2NktTWj%N [ 155.380124][T13145] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3232'. [ 155.402656][ T65] usb 9-1: new high-speed USB device number 5 using dummy_hcd [ 155.550857][T13161] bridge0: port 3(syz_tun) entered blocking state [ 155.554270][T13161] bridge0: port 3(syz_tun) entered disabled state [ 155.556613][T13161] syz_tun: entered allmulticast mode [ 155.560518][T13161] syz_tun: entered promiscuous mode [ 155.563296][ T65] usb 9-1: Using ep0 maxpacket: 8 [ 155.566024][T13161] bridge0: port 3(syz_tun) entered blocking state [ 155.567220][ T65] usb 9-1: config 0 has no interfaces? [ 155.568268][T13161] bridge0: port 3(syz_tun) entered forwarding state [ 155.569891][ T65] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 155.575978][ T65] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 155.579633][ T65] usb 9-1: config 0 descriptor?? [ 155.787272][ T65] usb 9-1: USB disconnect, device number 5 [ 156.109812][T13172] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3243'. [ 156.113501][ T835] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 166.320325][T13226] veth0: entered promiscuous mode [ 166.324362][T13226] veth0: left promiscuous mode [ 166.400644][T13237] input: syz1 as /devices/virtual/input/input31 [ 166.683948][T13279] openvswitch: netlink: Message has 4 unknown bytes. [ 167.462923][ T5980] usb 9-1: new high-speed USB device number 6 using dummy_hcd [ 167.492257][ T3548] usb 10-1: new high-speed USB device number 3 using dummy_hcd [ 167.534659][T13325] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3303'. [ 167.612180][ T5980] usb 9-1: Using ep0 maxpacket: 16 [ 167.616564][ T5980] usb 9-1: config 0 has an invalid interface number: 8 but max is 0 [ 167.619950][ T5980] usb 9-1: config 0 has no interface number 0 [ 167.622706][ T5980] usb 9-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 167.627234][ T5980] usb 9-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 167.633191][ T5980] usb 9-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 167.637164][ T5980] usb 9-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 167.640454][ T5980] usb 9-1: Product: syz [ 167.642295][ T3548] usb 10-1: Using ep0 maxpacket: 32 [ 167.644560][ T5980] usb 9-1: SerialNumber: syz [ 167.648779][ T5980] usb 9-1: config 0 descriptor?? [ 167.654835][ T5980] cm109 9-1:0.8: invalid payload size 0, expected 4 [ 167.657793][ T3548] usb 10-1: unable to get BOS descriptor or descriptor too short [ 167.662928][ T5980] input: CM109 USB driver as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.8/input/input32 [ 167.668166][ T3548] usb 10-1: config index 0 descriptor too short (expected 34347, got 43) [ 167.671646][ T3548] usb 10-1: config 31 has too many interfaces: 196, using maximum allowed: 32 [ 167.678185][ T3548] usb 10-1: config 31 has an invalid descriptor of length 0, skipping remainder of the config [ 167.682203][ T3548] usb 10-1: config 31 has 1 interface, different from the descriptor's value: 196 [ 167.685242][ T3548] usb 10-1: config 31 has no interface number 0 [ 167.687258][ T3548] usb 10-1: config 31 interface 81 altsetting 3 has an endpoint descriptor with address 0x93, changing to 0x83 [ 167.692530][ T3548] usb 10-1: config 31 interface 81 altsetting 3 bulk endpoint 0x83 has invalid maxpacket 150 [ 167.695758][ T3548] usb 10-1: config 31 interface 81 has no altsetting 0 [ 167.703783][ T3548] usb 10-1: string descriptor 0 read error: -22 [ 167.706230][ T3548] usb 10-1: New USB device found, idVendor=0dfc, idProduct=0001, bcdDevice=24.ac [ 167.709871][ T3548] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 167.715063][T13320] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22 [ 167.721594][ T3548] input: USB Touchscreen 0dfc:0001 as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:31.81/input/input33 [ 167.722375][ T834] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 167.858615][ C3] cm109 9-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90 [ 167.873424][ T834] usb 5-1: config 1 interface 0 altsetting 106 endpoint 0x81 has an invalid bInterval 250, changing to 11 [ 167.876948][ T834] usb 5-1: config 1 interface 0 altsetting 106 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 167.880959][ T834] usb 5-1: config 1 interface 0 has no altsetting 0 [ 167.884856][ T834] usb 5-1: New USB device found, idVendor=04f3, idProduct=074d, bcdDevice= 0.40 [ 167.887635][ T834] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 167.890078][ T834] usb 5-1: Product: syz [ 167.891476][ T834] usb 5-1: Manufacturer: syz [ 167.893045][ T834] usb 5-1: SerialNumber: syz [ 167.990449][T12309] usb 10-1: USB disconnect, device number 3 [ 168.064731][ T65] usb 9-1: USB disconnect, device number 6 [ 168.068883][ T65] cm109 9-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 168.106906][ T834] usbhid 5-1:1.0: can't add hid device: -71 [ 168.108887][ T834] usbhid 5-1:1.0: probe with driver usbhid failed with error -71 [ 168.113006][ T834] usb 5-1: USB disconnect, device number 10 [ 168.828453][T13360] libceph: resolve '0' (ret=-3): failed [ 168.942754][T13371] trusted_key: encrypted_key: keyword 'load' not allowed when called from .update method [ 169.547731][ T40] kauditd_printk_skb: 58 callbacks suppressed [ 169.547742][ T40] audit: type=1326 audit(2000000090.989:2324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13416 comm="syz.5.3346" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000 [ 169.559151][ T40] audit: type=1326 audit(2000000090.989:2325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13416 comm="syz.5.3346" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000 [ 169.568298][ T40] audit: type=1326 audit(2000000090.989:2326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13416 comm="syz.5.3346" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf70ee579 code=0x7ffc0000 [ 169.577119][ T40] audit: type=1326 audit(2000000090.999:2327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13416 comm="syz.5.3346" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x0 [ 170.172362][ T5953] Bluetooth: hci2: command 0x0406 tx timeout [ 170.232201][T12309] usb 9-1: new low-speed USB device number 7 using dummy_hcd [ 170.370788][T13452] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 170.374071][T13452] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 170.387491][T12309] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 170.395863][T12309] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 170.399565][T12309] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8 [ 170.404294][T12309] usb 9-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 170.404561][T13454] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3362'. [ 170.408041][T12309] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 170.414624][T13442] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 170.417072][T12309] hub 9-1:1.0: bad descriptor, ignoring hub [ 170.420007][T12309] hub 9-1:1.0: probe with driver hub failed with error -5 [ 170.423939][T12309] cdc_wdm 9-1:1.0: skipping garbage [ 170.425698][T12309] cdc_wdm 9-1:1.0: skipping garbage [ 170.429583][T12309] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device [ 170.431489][T12309] cdc_wdm 9-1:1.0: Unknown control protocol [ 170.455223][ T40] audit: type=1326 audit(2000000091.899:2328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13459 comm="syz.5.3365" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ee598 code=0x7ffc0000 [ 170.469944][ T40] audit: type=1326 audit(2000000091.899:2329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13459 comm="syz.5.3365" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000 [ 170.477676][ T40] audit: type=1326 audit(2000000091.899:2330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13459 comm="syz.5.3365" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000 [ 170.484769][ T40] audit: type=1326 audit(2000000091.899:2331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13459 comm="syz.5.3365" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ee598 code=0x7ffc0000 [ 170.491630][ T40] audit: type=1326 audit(2000000091.909:2332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13459 comm="syz.5.3365" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000 [ 170.498262][ T40] audit: type=1326 audit(2000000091.909:2333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13459 comm="syz.5.3365" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ee598 code=0x7ffc0000 [ 170.701012][T13470] input: syz1 as /devices/virtual/input/input34 [ 170.722559][ T65] usb 9-1: USB disconnect, device number 7 [ 171.017248][T13498] syz.0.3383: attempt to access beyond end of device [ 171.017248][T13498] loop1: rw=0, sector=0, nr_sectors = 1 limit=0 [ 171.021725][T13498] FAT-fs (loop1): unable to read boot sector [ 171.230286][T13509] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3389'. [ 171.328334][T13517] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3393'. [ 171.331154][T13517] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3393'. [ 171.361089][T13521] Bluetooth: hci0: load_link_keys: expected 51203 bytes, got 7 bytes [ 173.389715][T13594] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3428'. [ 173.466159][T13601] netlink: 'syz.3.3431': attribute type 5 has an invalid length. [ 173.542976][T13607] netlink: 196 bytes leftover after parsing attributes in process `syz.0.3434'. [ 173.576312][T13611] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3436'. [ 173.765260][T13625] Invalid logical block size (1373) [ 173.825111][T13632] binder: 13628:13632 ioctl c0306201 80000540 returned -14 [ 173.861042][T13637] netlink: 71 bytes leftover after parsing attributes in process `syz.0.3449'. [ 174.059077][T13666] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3463'. [ 174.073002][T13666] mac80211_hwsim hwsim4 wlan0: entered promiscuous mode [ 174.077967][T13666] macsec3: entered allmulticast mode [ 174.080289][T13666] mac80211_hwsim hwsim4 wlan0: entered allmulticast mode [ 174.089787][T13666] mac80211_hwsim hwsim4 wlan0: left allmulticast mode [ 174.092048][T13666] mac80211_hwsim hwsim4 wlan0: left promiscuous mode [ 174.402889][T13688] Falling back ldisc for ttyS3. [ 175.193654][T13761] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3508'. [ 175.545665][T13796] netlink: 56 bytes leftover after parsing attributes in process `syz.3.3525'. [ 176.083692][ T34] IPVS: starting estimator thread 0... [ 176.172777][T13855] IPVS: using max 44 ests per chain, 105600 per kthread [ 176.485232][T12309] IPVS: starting estimator thread 0... [ 176.572198][T13879] IPVS: using max 44 ests per chain, 105600 per kthread [ 177.294441][T11417] wlan1: Trigger new scan to find an IBSS to join [ 179.212330][T11408] wlan1: Trigger new scan to find an IBSS to join [ 179.212368][T11390] wlan1: Trigger new scan to find an IBSS to join [ 180.332469][T11400] wlan1: Trigger new scan to find an IBSS to join [ 182.172799][T11390] wlan1: Trigger new scan to find an IBSS to join [ 182.332307][T11390] wlan1: Trigger new scan to find an IBSS to join [ 183.212412][T11408] wlan1: Creating new IBSS network, BSSID 00:8d:ff:ff:00:00 [ 185.293360][T11390] wlan1: Trigger new scan to find an IBSS to join [ 185.296041][T11390] wlan1: Trigger new scan to find an IBSS to join [ 186.185023][T11408] wlan1: Creating new IBSS network, BSSID f2:d6:5e:82:3a:84 [ 186.187751][T11417] wlan1: Creating new IBSS network, BSSID aa:01:05:ea:55:32 [ 186.366459][ T5953] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 186.369534][ T5953] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 186.372907][ T5953] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 186.375974][ T5953] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 186.384643][ T5953] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 186.391347][T12312] bridge0: port 3(syz_tun) entered disabled state [ 186.406056][T12312] syz_tun (unregistering): left allmulticast mode [ 186.408635][T12312] syz_tun (unregistering): left promiscuous mode [ 186.411180][T12312] bridge0: port 3(syz_tun) entered disabled state [ 186.540279][T13930] chnl_net:caif_netlink_parms(): no params data found [ 186.649749][T13930] bridge0: port 1(bridge_slave_0) entered blocking state [ 186.652626][T13930] bridge0: port 1(bridge_slave_0) entered disabled state [ 186.655232][T13930] bridge_slave_0: entered allmulticast mode [ 186.658450][T13930] bridge_slave_0: entered promiscuous mode [ 186.663749][T13930] bridge0: port 2(bridge_slave_1) entered blocking state [ 186.666701][T13930] bridge0: port 2(bridge_slave_1) entered disabled state [ 186.669662][T13930] bridge_slave_1: entered allmulticast mode [ 186.672714][T13930] bridge_slave_1: entered promiscuous mode [ 186.695998][T11433] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 186.741498][T13930] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 186.746093][T13930] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 186.777397][T11433] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 186.817158][T13930] team0: Port device team_slave_0 added [ 186.823833][T13930] team0: Port device team_slave_1 added [ 186.884853][T11433] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 186.896825][T13930] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 186.899720][T13930] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 186.910704][T13930] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 186.918657][T13930] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 186.921550][T13930] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 186.932595][T13930] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 186.988061][T11433] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 187.020192][T13930] hsr_slave_0: entered promiscuous mode [ 187.022531][T13930] hsr_slave_1: entered promiscuous mode [ 187.025071][T13930] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 187.027656][T13930] Cannot create hsr debugfs directory [ 187.129370][T11433] bridge_slave_1: left allmulticast mode [ 187.131182][T11433] bridge_slave_1: left promiscuous mode [ 187.133500][T11433] bridge0: port 2(bridge_slave_1) entered disabled state [ 187.137072][T11433] bridge_slave_0: left allmulticast mode [ 187.138845][T11433] bridge_slave_0: left promiscuous mode [ 187.140742][T11433] bridge0: port 1(bridge_slave_0) entered disabled state [ 188.069490][T13942] block nbd1: server does not support multiple connections per device. [ 188.073991][T13942] block nbd1: shutting down sockets [ 188.223936][T11433] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 188.228224][T11433] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 188.231767][T11433] bond0 (unregistering): Released all slaves [ 188.273516][T13954] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3594'. [ 188.365668][T13930] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 188.382939][T13930] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 188.393524][T13930] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 188.415328][ T67] Bluetooth: hci4: command tx timeout [ 188.430295][T13930] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 188.478658][T13930] 8021q: adding VLAN 0 to HW filter on device bond0 [ 188.504391][T13930] 8021q: adding VLAN 0 to HW filter on device team0 [ 188.515099][T11437] bridge0: port 1(bridge_slave_0) entered blocking state [ 188.517284][T11437] bridge0: port 1(bridge_slave_0) entered forwarding state [ 188.526925][T11390] bridge0: port 2(bridge_slave_1) entered blocking state [ 188.529182][T11390] bridge0: port 2(bridge_slave_1) entered forwarding state [ 188.572501][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 188.579338][T13985] can0: slcan on ptm0. [ 188.625764][T11433] hsr_slave_0: left promiscuous mode [ 188.628009][T11433] hsr_slave_1: left promiscuous mode [ 188.630025][T11433] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 188.632571][T11433] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 188.636835][T11433] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 188.638995][T11433] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 188.658907][T11433] veth1_macvtap: left promiscuous mode [ 188.661124][T11433] veth0_macvtap: left promiscuous mode [ 188.663439][T11433] veth1_vlan: left promiscuous mode [ 188.665186][T11433] veth0_vlan: left promiscuous mode [ 188.682856][T13984] can0 (unregistered): slcan off ptm0. [ 189.511325][T11433] team0 (unregistering): Port device team_slave_1 removed [ 189.616877][T11433] team0 (unregistering): Port device team_slave_0 removed [ 189.746895][T14046] ptrace attach of ""[14047] was attempted by "/syz-executor exec"[14046] [ 190.288009][T13930] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 190.447829][T13930] veth0_vlan: entered promiscuous mode [ 190.454041][T13930] veth1_vlan: entered promiscuous mode [ 190.491215][T13930] veth0_macvtap: entered promiscuous mode [ 190.496286][T13930] veth1_macvtap: entered promiscuous mode [ 190.502331][ T67] Bluetooth: hci4: command tx timeout [ 190.506343][T13930] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 190.523627][T13930] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 190.527470][T13930] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 190.530213][T13930] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 190.534037][T13930] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 190.536833][T13930] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 190.540845][T14081] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.3648'. [ 190.589674][T11437] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 190.593734][T11437] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 190.609912][T11400] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 190.615981][T11400] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 191.312802][T12309] e1000 0000:00:06.0 eth0: Reset adapter [ 191.489256][T12309] kernel read not supported for file /dsp (pid: 12309 comm: kworker/2:4) [ 191.537157][T14157] sp0: Synchronizing with TNC [ 191.999999][ T40] kauditd_printk_skb: 79 callbacks suppressed [ 192.000009][ T40] audit: type=1326 audit(2000000113.439:2413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14125 comm="syz.0.3666" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7fc00000 [ 192.572541][ T5953] Bluetooth: hci4: command tx timeout [ 193.453464][ T835] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX [ 193.696311][ T1416] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.698335][ T1416] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.652680][ T5953] Bluetooth: hci4: command tx timeout [ 208.542571][ T835] e1000 0000:00:06.0 eth0: Reset adapter [ 210.733867][ T10] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX [ 215.454304][T11400] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 216.275955][T11431] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 218.652838][T11400] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 219.510728][T14252] input: syz1 as /devices/virtual/input/input35 [ 219.697375][T14273] input: syz0 as /devices/virtual/input/input36 [ 219.829753][T14285] netlink: 596 bytes leftover after parsing attributes in process `syz.0.3711'. [ 219.874724][T14287] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3712'. [ 219.918726][T14291] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3713'. [ 219.921760][T14291] netlink: 'syz.4.3713': attribute type 9 has an invalid length. [ 219.928061][T14291] mac80211_hwsim hwsim10 wlan0: entered promiscuous mode [ 219.930395][T14291] macvlan2: entered allmulticast mode [ 219.932454][T14291] mac80211_hwsim hwsim10 wlan0: entered allmulticast mode [ 220.255031][T14309] tun0: tun_chr_ioctl cmd 1074025675 [ 220.256731][T14309] tun0: persist disabled [ 220.434414][T14323] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3729'. [ 220.610111][T14342] sch_tbf: burst 0 is lower than device lo mtu (18) ! [ 220.920391][T14372] netlink: 64 bytes leftover after parsing attributes in process `syz.3.3751'. [ 220.935354][T14375] openvswitch: netlink: VXLAN extension message has 1 unknown bytes. [ 220.944555][T14376] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3752'. [ 220.950023][T14376] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3752'. [ 221.026592][T14391] netlink: 48 bytes leftover after parsing attributes in process `syz.4.3760'. [ 221.057882][T14395] dlm: non-version read from control device 34 [ 221.309276][T14416] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3772'. [ 221.536659][T14436] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3782'. [ 221.769572][T14459] netlink: 'syz.4.3793': attribute type 4 has an invalid length. [ 222.376325][ T40] audit: type=1326 audit(2000000143.819:2414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14512 comm="syz.0.3817" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x0 [ 222.829879][T14542] netlink: 'syz.6.3831': attribute type 3 has an invalid length. [ 222.996490][ T40] audit: type=1326 audit(2000000144.439:2415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14559 comm="syz.4.3840" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff5579 code=0x0 [ 223.174329][T14564] netlink: 'syz.6.3841': attribute type 10 has an invalid length. [ 223.186505][T14564] team0: Port device geneve0 added [ 223.330994][T14576] netlink: 'syz.0.3847': attribute type 20 has an invalid length. [ 223.336610][T14576] netlink: 'syz.0.3847': attribute type 21 has an invalid length. [ 223.777716][T14607] netlink: zone id is out of range [ 223.779613][T14607] netlink: zone id is out of range [ 223.781434][T14607] netlink: zone id is out of range [ 223.783634][T14607] netlink: zone id is out of range [ 224.456598][T14674] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 0 [ 224.457444][T14675] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 1 [ 224.457710][T14676] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 2 [ 224.458372][T14677] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 3 [ 224.459826][T14679] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 5 [ 224.460106][T14680] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 6 [ 224.461156][T14678] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 4 [ 224.461321][T14681] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 7 [ 224.465225][T14683] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 8 [ 224.466773][T14685] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 9 [ 224.482485][T14686] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 10 [ 224.483633][T14687] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 11 [ 224.486428][T14688] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 12 [ 224.489750][T14689] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 13 [ 224.498751][T14691] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 15 [ 224.499599][T14690] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 14 [ 224.502185][T12309] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 224.502959][T14692] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 16 [ 224.503248][T14693] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 17 [ 224.508106][T14694] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 18 [ 224.526583][T14695] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 19 [ 224.526979][T14696] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 20 [ 224.532807][T14697] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 21 [ 224.536498][T14699] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 22 [ 224.540422][T14701] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 23 [ 224.541532][T14702] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 24 [ 224.542484][T14703] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 25 [ 224.542828][T14704] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 26 [ 224.543162][T14705] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 27 [ 224.544006][T14706] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 28 [ 224.552551][T14707] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 29 [ 224.556268][T14708] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 30 [ 224.562225][T14709] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 31 [ 224.562620][T14710] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 32 [ 224.562971][T14711] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 33 [ 224.563306][T14712] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 34 [ 224.563645][T14713] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 35 [ 224.563961][T14714] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 36 [ 224.564297][T14715] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 37 [ 224.569863][T14716] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 38 [ 224.570861][T14717] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 39 [ 224.571398][T14718] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 40 [ 224.571959][T14719] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 41 [ 224.573159][T14720] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 42 [ 224.573711][T14721] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 43 [ 224.574278][T14722] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 44 [ 224.574649][T14723] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 45 [ 224.575068][T14724] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 46 [ 224.584328][T14725] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 47 [ 224.584757][T14726] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 48 [ 224.585128][T14727] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 49 [ 224.585559][T14728] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 50 [ 224.588921][T14729] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 51 [ 224.589407][T14730] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 52 [ 224.589771][T14731] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 53 [ 224.590242][T14732] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 54 [ 224.591827][T14733] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 55 [ 224.593788][T14734] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 56 [ 224.595385][T14735] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 57 [ 224.596004][T14736] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 58 [ 224.603159][T14737] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 59 [ 224.612527][T14738] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 60 [ 224.616014][T14739] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 61 [ 224.617632][T14740] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 62 [ 224.619437][T14741] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 63 [ 224.722355][T12309] usb 5-1: Using ep0 maxpacket: 16 [ 224.726087][T12309] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0 [ 224.729049][T12309] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 170, changing to 11 [ 224.733677][T12309] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid maxpacket 34661, setting to 1024 [ 224.737373][T12309] usb 5-1: config 0 interface 0 has no altsetting 0 [ 224.741259][T12309] usb 5-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 224.744258][T12309] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 224.746729][T12309] usb 5-1: Product: syz [ 224.748021][T12309] usb 5-1: Manufacturer: syz [ 224.749461][T12309] usb 5-1: SerialNumber: syz [ 224.752891][T12309] usb 5-1: config 0 descriptor?? [ 224.754998][T14650] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 224.967391][T14650] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 224.971372][T12309] input: syz syz as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input37 [ 225.260946][ T3548] usb 5-1: USB disconnect, device number 11 [ 225.459204][T14809] 8021q: adding VLAN 0 to HW filter on device bond2 [ 225.468783][T14809] bond0: (slave bond2): Enslaving as an active interface with an up link [ 226.062034][T14834] netdevsim netdevsim0 netdevsim0: entered promiscuous mode [ 226.065717][T14834] macvlan2: entered allmulticast mode [ 226.068343][T14834] netdevsim netdevsim0 netdevsim0: entered allmulticast mode [ 226.185096][T14847] __nla_validate_parse: 8 callbacks suppressed [ 226.185112][T14847] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3937'. [ 226.278161][T14860] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3943'. [ 226.611336][T14890] netlink: 'syz.6.3958': attribute type 5 has an invalid length. [ 226.823680][T14912] netlink: 'syz.0.3965': attribute type 1 has an invalid length. [ 227.054442][ T5950] Bluetooth: hci3: command 0x0406 tx timeout [ 227.065448][ T5950] ------------[ cut here ]------------ [ 227.068060][ T5950] WARNING: CPU: 0 PID: 5950 at net/bluetooth/hci_conn.c:568 hci_conn_timeout+0x11a/0x210 [ 227.071263][ T5950] Modules linked in: SYZFAIL: failed to recv rpc [ 227.073327][ T5950] CPU: 0 UID: 0 PID: 5950 Comm: kworker/u33:6 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) [ 227.078725][ T5950] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 227.082522][ T5950] Workqueue: hci3 hci_conn_timeout [ 227.084461][ T5950] RIP: 0010:hci_conn_timeout+0x11a/0x210 [ 227.086651][ T5950] Code: 00 e8 ba 04 55 f7 4c 89 f1 4c 89 e2 48 c7 c6 80 bd d8 8c 48 c7 c7 78 e2 80 90 e8 91 89 98 fa e9 4d ff ff ff e8 97 04 55 f7 90 <0f> 0b 90 e8 8e 04 55 f7 48 8d bb f5 f6 ff ff 48 b8 00 00 00 00 00 [ 227.093730][ T5950] RSP: 0000:ffffc90004397c38 EFLAGS: 00010293 [ 227.096260][ T5950] RAX: 0000000000000000 RBX: ffff88804fe6c948 RCX: ffffffff8a65aa8f [ 227.099747][ T5950] RDX: ffff88802333c880 RSI: ffffffff8a65ab39 RDI: 0000000000000005 [ 227.103033][ T5950] RBP: 00000000ffffffff R08: 0000000000000005 R09: 0000000000000000 [ 227.105546][ T5950] R10: 00000000ffffffff R11: 0000000000002bb0 R12: ffff88804fe6c000 [ 227.108520][ T5950] R13: 0000000000000000 R14: ffffffff90857e94 R15: ffffc90004397d18 [ 227.111633][ T5950] FS: 0000000000000000(0000) GS:ffff8880977e7000(0000) knlGS:0000000000000000 [ 227.116071][ T5950] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 227.118894][ T5950] CR2: 000000002fd0effc CR3: 000000005e270000 CR4: 0000000000352ef0 [ 227.122973][ T5950] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 227.126293][ T5950] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 227.129560][ T5950] Call Trace: [ 227.130989][ T5950] [ 227.131977][ T5950] process_one_work+0x9cf/0x1b70 [ 227.134436][ T5950] ? __pfx_process_one_work+0x10/0x10 [ 227.136241][ T5950] ? assign_work+0x1a0/0x250 [ 227.137846][ T5950] worker_thread+0x6c8/0xf10 [ 227.139686][ T5950] ? __pfx_worker_thread+0x10/0x10 [ 227.141660][ T5950] kthread+0x3c2/0x780 [ 227.144080][ T5950] ? __pfx_kthread+0x10/0x10 [ 227.146138][ T5950] ? __pfx_kthread+0x10/0x10 [ 227.148148][ T5950] ? __pfx_kthread+0x10/0x10 [ 227.150116][ T5950] ? __pfx_kthread+0x10/0x10 [ 227.152735][ T5950] ? rcu_is_watching+0x12/0xc0 [ 227.154672][ T5950] ? __pfx_kthread+0x10/0x10 [ 227.156638][ T5950] ret_from_fork+0x48/0x80 [ 227.158525][ T5950] ? __pfx_kthread+0x10/0x10 [ 227.160504][ T5950] ret_from_fork_asm+0x1a/0x30 [ 227.162969][ T5950] [ 227.164307][ T5950] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 227.167281][ T5950] CPU: 0 UID: 0 PID: 5950 Comm: kworker/u33:6 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) [ 227.172149][ T5950] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 227.176594][ T5950] Workqueue: hci3 hci_conn_timeout [ 227.178756][ T5950] Call Trace: [ 227.179951][ T5950] [ 227.180924][ T5950] dump_stack_lvl+0x3d/0x1f0 [ 227.182446][ T5950] panic+0x71c/0x800 [ 227.183918][ T5950] ? __pfx_panic+0x10/0x10 [ 227.185389][ T5950] ? show_trace_log_lvl+0x29b/0x3e0 [ 227.187052][ T5950] ? check_panic_on_warn+0x1f/0xb0 [ 227.189080][ T5950] ? hci_conn_timeout+0x11a/0x210 [ 227.191091][ T5950] check_panic_on_warn+0xab/0xb0 [ 227.193120][ T5950] __warn+0xf6/0x3c0 [ 227.194728][ T5950] ? hci_conn_timeout+0x11a/0x210 [ 227.196824][ T5950] report_bug+0x3c3/0x580 [ 227.198679][ T5950] ? hci_conn_timeout+0x11a/0x210 [ 227.200859][ T5950] handle_bug+0x184/0x210 [ 227.202684][ T5950] exc_invalid_op+0x17/0x50 [ 227.204612][ T5950] asm_exc_invalid_op+0x1a/0x20 [ 227.206660][ T5950] RIP: 0010:hci_conn_timeout+0x11a/0x210 [ 227.209010][ T5950] Code: 00 e8 ba 04 55 f7 4c 89 f1 4c 89 e2 48 c7 c6 80 bd d8 8c 48 c7 c7 78 e2 80 90 e8 91 89 98 fa e9 4d ff ff ff e8 97 04 55 f7 90 <0f> 0b 90 e8 8e 04 55 f7 48 8d bb f5 f6 ff ff 48 b8 00 00 00 00 00 [ 227.216906][ T5950] RSP: 0000:ffffc90004397c38 EFLAGS: 00010293 [ 227.219422][ T5950] RAX: 0000000000000000 RBX: ffff88804fe6c948 RCX: ffffffff8a65aa8f [ 227.222726][ T5950] RDX: ffff88802333c880 RSI: ffffffff8a65ab39 RDI: 0000000000000005 [ 227.226156][ T5950] RBP: 00000000ffffffff R08: 0000000000000005 R09: 0000000000000000 [ 227.229335][ T5950] R10: 00000000ffffffff R11: 0000000000002bb0 R12: ffff88804fe6c000 [ 227.232268][ T5950] R13: 0000000000000000 R14: ffffffff90857e94 R15: ffffc90004397d18 [ 227.235519][ T5950] ? hci_conn_timeout+0x6f/0x210 [ 227.237565][ T5950] ? hci_conn_timeout+0x119/0x210 [ 227.239701][ T5950] ? hci_conn_timeout+0x119/0x210 [ 227.241875][ T5950] process_one_work+0x9cf/0x1b70 [ 227.243992][ T5950] ? __pfx_process_one_work+0x10/0x10 [ 227.246278][ T5950] ? assign_work+0x1a0/0x250 [ 227.248246][ T5950] worker_thread+0x6c8/0xf10 [ 227.250252][ T5950] ? __pfx_worker_thread+0x10/0x10 [ 227.252410][ T5950] kthread+0x3c2/0x780 [ 227.254137][ T5950] ? __pfx_kthread+0x10/0x10 [ 227.256115][ T5950] ? __pfx_kthread+0x10/0x10 [ 227.258018][ T5950] ? __pfx_kthread+0x10/0x10 [ 227.260012][ T5950] ? __pfx_kthread+0x10/0x10 [ 227.262044][ T5950] ? rcu_is_watching+0x12/0xc0 [ 227.264120][ T5950] ? __pfx_kthread+0x10/0x10 [ 227.266084][ T5950] ret_from_fork+0x48/0x80 [ 227.267929][ T5950] ? __pfx_kthread+0x10/0x10 [ 227.269854][ T5950] ret_from_fork_asm+0x1a/0x30 [ 227.271928][ T5950] [ 227.273941][ T5950] Kernel Offset: disabled [ 227.275804][ T5950] Rebooting in 86400 seconds.. VM DIAGNOSIS: 17:33:01 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff854c6a35 RDI=ffffffff9ade4c80 RBP=ffffffff9ade4c40 RSP=ffffc900043975a0 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000020 R14=ffffffff9ade4c40 R15=ffffffff854c69d0 RIP=ffffffff854c6a5f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880977e7000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002fd0effc CR3=000000005e270000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004c00000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=000000000000000a RBX=0000000000000003 RCX=0000000000000000 RDX=0000000000000003 RSI=0000000000000001 RDI=ffff888022ec8b40 RBP=ffff888022ec8af0 RSP=ffffc90007c87610 R8 =0000000000000000 R9 =0000000000000001 R10=0000000000000000 R11=ffffffff8e3bfa80 R12=0000000000000002 R13=0000000000000001 R14=ffff888022ec8000 R15=0000000000000000 RIP=ffffffff81973e30 RFL=00000097 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880978e7000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002ef11ffc CR3=000000005e270000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004c00000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000001 RBX=0000000000000001 RCX=0000000000000007 RDX=0000000000000000 RSI=ffff888021b62f30 RDI=ffff888021b62440 RBP=ffff888021b62440 RSP=ffffc900044373a8 R8 =0000000000000000 R9 =0000000000000001 R10=ffffffff90854f17 R11=0000000000000000 R12=0000000000000006 R13=ffff888021b62f30 R14=0000000000000cc0 R15=0000000000000000 RIP=ffffffff81978938 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880979e7000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000570da4c0 CR3=00000000493ca000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000007 RBX=ffff888021b3af58 RCX=0000000000020000 RDX=0000000000000000 RSI=ffff888021b3af30 RDI=ffff888021b3af58 RBP=ffff888021b3af30 RSP=ffffc900037671d8 R8 =0000000000000000 R9 =0000000000000001 R10=0000000000000000 R11=ffffffff8e3bfa80 R12=0000000000000000 R13=0000000000000003 R14=ffff888021b3a440 R15=0000000000000000 RIP=ffffffff81973e43 RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097ae7000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f7f76e40 CR3=000000004b43b000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f7412ff4 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000