last executing test programs: 7.335281506s ago: executing program 0 (id=2796): prlimit64(0x0, 0xd, &(0x7f0000000000), 0x0) prctl$PR_GET_SPECULATION_CTRL(0x23, 0x5, 0x0) tkill(0x0, 0x3c) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f00000004c0)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{}, &(0x7f0000000ac0), 0x0}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x1a, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB], &(0x7f0000000340)='GPL\x00', 0x0, 0xc5, &(0x7f0000000180)=""/197, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2600}, 0x90) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) r4 = openat$cgroup_int(r3, &(0x7f0000000100)='cpuset.mems\x00', 0x2, 0x0) write$cgroup_subtree(r4, &(0x7f0000000200)=ANY=[@ANYBLOB='1-0:', @ANYRESDEC], 0x31) bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x4, 0xfff, 0x5}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000500)='task_newtask\x00'}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000001700)=@base={0x15, 0x0, 0xb161, 0x2}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48) 6.313606056s ago: executing program 0 (id=2801): syz_emit_ethernet(0x6e, &(0x7f0000000600)={@link_local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f53aff", 0x38, 0x3a, 0x0, @remote, @mcast2, {[], @param_prob={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "508359", 0x0, 0x32, 0x0, @private1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], "c93edfc0a4089794"}}}}}}}, 0x0) 6.24076527s ago: executing program 0 (id=2802): r0 = userfaultfd(0x1) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0xee2b7b5cf60586a9}) 6.132126533s ago: executing program 0 (id=2804): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0)) ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000000200)) ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000100)=0x50044) pwritev(r0, &(0x7f0000000540)=[{&(0x7f00000002c0)="00214717a70700000000030600710a069d317ebb906ce74b18272786533b905a56fef73ab452dbae5d5d4d50e7182ce0ab6d", 0x32}], 0x1, 0x0, 0x0) 5.92221446s ago: executing program 0 (id=2809): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r0}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/keys\x00', 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000440)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r5, @ANYBLOB="38003300c0000000e7ffffffffff0802110000"], 0x54}}, 0x0) readv(r2, 0x0, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) geteuid() r6 = syz_open_dev$dri(&(0x7f0000000340), 0x5, 0x408041) r7 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r7, 0xc0d05605, &(0x7f0000000cc0)={0x1, @pix={0x0, 0x0, 0x4f565559}}) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r6, 0xc01864c6, 0x0) syz_emit_ethernet(0x7a, &(0x7f0000000380)={@empty, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "7f00ef", 0x44, 0x2c, 0x0, @remote, @mcast2, {[@hopopts={0x67, 0x5, '\x00', [@calipso={0x7, 0x18, {0x0, 0x4, 0x0, 0x0, [0x8001, 0x0]}}, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @ra={0x5, 0x2, 0x8000}]}], {0x0, 0x0, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}}}}}}}}, 0x0) mkdir(&(0x7f0000000580)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000440)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000400)='binder\x00', 0x0, 0x0) r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000000)=0x11) ioctl$KDSKBLED(r8, 0x4b65, 0x0) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='kfree\x00', r9}, 0x10) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f00000001c0)='./bus\x00') 4.47416149s ago: executing program 0 (id=2817): sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0) socket$nl_audit(0x10, 0x3, 0x9) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'\x00', 0x52d35ce30131f272}) ioctl$TUNSETLINK(r1, 0x400454cd, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'lo\x00'}) sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newqdisc={0x60, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x30, 0x2, {{}, [@TCA_NETEM_RATE={0x14, 0xe, {0x0, 0x2}}]}}}]}, 0x60}}, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) r3 = syz_open_procfs$userns(0x0, &(0x7f00000002c0)) ioctl$NS_GET_PARENT(r3, 0xb702, 0x0) syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00') r4 = userfaultfd(0x80001) ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000000)) ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2}) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0) 3.996916271s ago: executing program 3 (id=2819): gettid() r0 = syz_open_dev$radio(&(0x7f0000000040), 0x2, 0x2) ioctl$VIDIOC_S_HW_FREQ_SEEK(r0, 0x40305652, &(0x7f0000000000)={0x0, 0x1, 0xe98}) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r1) ioctl$BTRFS_IOC_RESIZE(r0, 0x50009403, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000008500000018000000180100207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008008000b7030000000000008513bb141200afaed03dd3e1b455"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="9feb0100180000000000000038000000380000000300000000000000020000060400000004000000000000000002000006040000000400"/72], 0x0, 0x53}, 0x20) syz_open_dev$evdev(&(0x7f00000000c0), 0x3f, 0x822f01) openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x0) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x602, 0x0) fchmodat(0xffffffffffffffff, 0x0, 0x1ea) ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000300)={0x0, 0x3, 0x0, {}, {}, @period={0x0, 0x0, 0x0, 0x0, 0x3, {}, 0x0, 0x0}}) write$rfkill(r2, &(0x7f00000004c0)={0x0, 0x2, 0x3, 0x1}, 0x8) timer_create(0x0, 0x0, &(0x7f0000bbdffc)) io_setup(0x0, &(0x7f00000000c0)) socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000a40)=@security={'security\x00', 0x44, 0x4, 0x340, 0xffffffff, 0xd8, 0x1b0, 0x0, 0xffffffff, 0xffffffff, 0x278, 0x278, 0x278, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@private0, @mcast1, [], [], 'nr0\x00', 'veth0_vlan\x00'}, 0x203, 0xa4, 0xd8, 0x8502}, @common=@inet=@SET3={0x34, 'SET\x00', 0x3, {{0xffffffffffffffff}, {0xffffffffffffffff}}}}, {{@uncond, 0x0, 0xa4, 0xd8}, @common=@inet=@SET3={0x34, 'SET\x00', 0x3, {{}, {}, {}, 0x7fff}}}, {{@uncond, 0x0, 0xa4, 0xc8}, @common=@unspec=@AUDIT={0x24}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x39c) r3 = getpid() process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640), 0x0, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="180000e76e000000000000000000000000001815603ba52d9ee194ec76447ebb6aa9a110e0d16fe89aee0aac9f5fe322589713a4367940a8444f692d4e9522068ce09965b3c6ccb9e78df0fbdb5c4eed68970e74aeec5a57c52c69675c00a89e0f420a6cb81e5ba0b75d3880780ddff287517ac4346f", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000100000085000000150000009500000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x0, 0xb, 0x0, &(0x7f0000000100)="e0857f9f582f0300000000", 0x0, 0x2f03, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) socket$packet(0x11, 0x3, 0x300) socket$inet6_sctp(0xa, 0x5, 0x84) rt_sigprocmask(0x0, &(0x7f0000000200)={[0xfffff7feffff7ffd]}, 0x0, 0x8) r5 = gettid() prlimit64(0x0, 0xa, &(0x7f0000000000), 0x0) tkill(r5, 0x12) openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) 3.370255276s ago: executing program 2 (id=2821): r0 = socket(0x10, 0x3, 0x0) sendto$inet6(r0, &(0x7f0000000300)="7800000018002507b9409b02ffff48000203be04020406050a08040c5c0009005800d32345653600648d270016000a09000049935ade4a460c89b6ec0cff3959547f509058ba86c902007a00004a320004070b0015000a0000000000e000e218d1dd3b6ed538640f325000"/120, 0x78, 0x0, 0x0, 0x0) 3.350589993s ago: executing program 2 (id=2822): mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) socket$nl_route(0x10, 0x3, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) mknod$loop(&(0x7f0000000140)='./file0\x00', 0x2, 0x1) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000005c0)={'batadv0\x00', 0x10}) mount(&(0x7f0000000340)=@nbd={'/dev/nbd', 0x0}, 0x0, &(0x7f00000002c0)='msdos\x00', 0x1018000, &(0x7f0000000240)='b\xb1Fs\t\xb5\xda\xec,\xdb\xe0\xb0\xe0\xe8*\xd4\x00\x00\x00\x00\x00\x00\x00\x00F*\x0f\xdd\xe3\rb\xf9,\x196\xb2\x92\x9d\x94\xd4\x96\xbc9))\xef\xdeW\x86\xf4\xd8(\x13\x81') r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) open_tree(r1, &(0x7f0000000300)='./file0\x00', 0x89000) syz_io_uring_setup(0x0, 0x0, 0x0, &(0x7f0000000680)) syz_init_net_socket$nfc_raw(0x27, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) mlock2(&(0x7f0000006000/0x3000)=nil, 0x3000, 0x0) io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a) bind$alg(r0, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha256\x00'}, 0x58) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000001180)="cd", 0x1) r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDCTL_DSP_SETFMT(r2, 0xc0045005, &(0x7f0000000080)=0x40000) ppoll(&(0x7f0000000000)=[{r2}], 0x1, 0x0, 0x0, 0x0) 2.801216287s ago: executing program 3 (id=2823): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmmsg$sock(r0, &(0x7f0000000d00)=[{{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f00000004c0)="53fb7ce9bca5b4c6c82fb997acc6b0361e5c15be43144f1d9cb2f738c0dcd881c2bd734b3a0d325847ea3aa2d8ef64bfd77363d3ee", 0x35}, {&(0x7f0000000640)="1bd811741a607159fda051b57d4c01e9986c2e65426807ac72604e001af6eba2fedb368d816a109958c47842f8f56a1c6fe296617bede164ba1802cd81f0d41cc77aadb91f6de5a0d05e3edd3b260afc80732ab70609c96107211530a57108325d22154b5a20a367309333edfcb7f835cae30f79c90707141097ef32c02724e039f2d610c0469b693da78e2e43cad8bd", 0x90}], 0x2}}], 0x1, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000003c0)={@in={{0x2, 0x0, @local}}, 0x0, 0x0, 0x23, 0x0, "093f38050b94725997f7ff898a3f9ab16a8731bf2ce9e46bca4cef5a7c35015b7a97f697e89d86377518bf274943a186c89a051c531b5ad251ff1e26b7fe42b3eb4ddd4dc049ad87c56cd0c3628976cc"}, 0xd8) sendto$inet(r0, &(0x7f00000012c0)='\t', 0x1, 0x11, 0x0, 0x0) 2.685035712s ago: executing program 3 (id=2824): r0 = epoll_create(0x10000e9) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r1}, 0x10) r2 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2) r3 = memfd_create(&(0x7f0000000cc0)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97\xffr\xc0\xcbt\x12\xb8\xefu3f\xab\x15\xcc\xf0X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\x00\x00\x00\x00\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d\x00\x00`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xdfJ\xdb\x97f\xff\xa7\xd2:\xc9\xcd\x96q\xa9)\xa0\x95\xb33\xe3\x8b\xcc\x1d\aP\xb5\x89\x82\xb7\x1a\x01\xf9\xc6\x1cO\xd60{~\xe2N\xf0\xfa\xab\xed\xf7\xf2\x1a\xa4\xab\x0fB\x03\x85l\xd5\x1f8># \xf8\xd7a\xcf\b\x91\xf2\xc9\xef9\xd7\xbb\x11\xeeRlt\xcd\x1b\xf5\xe2\x95\xe7!\xb8\xe6\xeaI\xb7\xa1\xfa\xa3', 0x3) ftruncate(r3, 0xffff) fcntl$addseals(r3, 0x409, 0x7) r4 = ioctl$UDMABUF_CREATE(r2, 0x40187542, &(0x7f0000000100)={r3, 0x0, 0x0, 0x1000}) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r4, &(0x7f0000000080)={0x90000019}) 2.337822429s ago: executing program 3 (id=2826): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r0}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/keys\x00', 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000440)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r5, @ANYBLOB="38003300c0000000e7ffffffffff0802110000"], 0x54}}, 0x0) readv(r2, 0x0, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) geteuid() r6 = syz_open_dev$dri(&(0x7f0000000340), 0x5, 0x408041) r7 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r7, 0xc0d05605, &(0x7f0000000cc0)={0x1, @pix={0x0, 0x0, 0x4f565559}}) ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r6, 0xc01864c6, 0x0) syz_emit_ethernet(0x7a, &(0x7f0000000380)={@empty, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "7f00ef", 0x44, 0x2c, 0x0, @remote, @mcast2, {[@hopopts={0x67, 0x5, '\x00', [@calipso={0x7, 0x18, {0x0, 0x4, 0x0, 0x0, [0x8001, 0x0]}}, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @ra={0x5, 0x2, 0x8000}]}], {0x0, 0x0, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}}}}}}}}, 0x0) mkdir(&(0x7f0000000580)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000440)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000400)='binder\x00', 0x0, 0x0) r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000000)=0x11) ioctl$KDSKBLED(r8, 0x4b65, 0x0) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='kfree\x00', r9}, 0x10) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f00000001c0)='./bus\x00') 1.599852122s ago: executing program 2 (id=2827): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000240)=ANY=[@ANYBLOB="580200002100010000000000000000e600aab739000000000000000000000000fe8000000000000000000000000000bb00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000cc011100e0000001000000000000000000000000ac1414aa000000000000000000000000ac1414aa000000000000000000000000ffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000fc010000000000000000000000000000e0000002000000000000000000000000ff0100000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fe8000000000000000000000000000bbff020000000000000000000000000001000000000000000000000000ac1414aa000000000000000000000000fe8000000000000000000000000000aa00000000000000000000000000000000fc020000000000000000000000000000000000000000000000000a00ffffffff00000000000000000000000000000000000000000000ffffe000000200000000000000000000000000000000ac1414aa0000000000000000000000006c0000000000000000000000ff"], 0x258}}, 0x0) 1.458239196s ago: executing program 2 (id=2828): r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) bind$ax25(r0, &(0x7f0000000140)={{0x3, @default, 0x1}, [@null, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default]}, 0x48) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/conntrack\x00', 0x2, 0x0) r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) bind$ax25(r2, &(0x7f0000000140)={{0x3, @default, 0x1}, [@null, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default]}, 0x48) close_range(r1, 0xffffffffffffffff, 0x0) 1.23551982s ago: executing program 2 (id=2831): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0)) ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000000200)) ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000100)=0x50044) pwritev(r0, &(0x7f0000000540)=[{&(0x7f00000002c0)="00214717a70700000000030600710a069d317ebb906ce74b18272786533b905a56fef73ab452dbae5d5d4d50e7182ce0ab6d", 0x32}], 0x1, 0x0, 0x0) 1.094652853s ago: executing program 3 (id=2833): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x1a3c82) syz_open_dev$sg(&(0x7f0000000280), 0x0, 0x0) 1.019015775s ago: executing program 2 (id=2834): socket$nl_route(0x10, 0x3, 0x0) futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0) futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0) futex(&(0x7f000000cffc), 0x3, 0x800001, 0x0, &(0x7f0000000000), 0x0) mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0) mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil) mlock2(&(0x7f0000ff8000/0x2000)=nil, 0x2000, 0x0) mincore(&(0x7f0000ff5000/0x4000)=nil, 0x4000, 0x0) mq_open(0x0, 0x1, 0x0, 0x0) clock_gettime(0x0, 0x0) socket$inet6(0xa, 0x0, 0x0) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) gettid() openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) read(0xffffffffffffffff, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, 0x0) tkill(0x0, 0x0) getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) mlockall(0x0) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x0, &(0x7f0000000000/0x400000)=nil) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, 0x0) 596.407542ms ago: executing program 1 (id=2837): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000180)={{}, 'syz1\x00', 0x3e}) ioctl$UI_SET_FFBIT(r0, 0x4004556b, 0x51) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/bus/input/devices\x00', 0x0, 0x0) pread64(r1, &(0x7f0000000280)=""/4079, 0xfef, 0x0) 472.446278ms ago: executing program 1 (id=2838): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10) socket$nl_generic(0x10, 0x3, 0x10) rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8) r1 = getpid() r2 = gettid() rt_tgsigqueueinfo(r1, r2, 0x11, &(0x7f0000000080)) rt_sigtimedwait(&(0x7f0000000340)={[0x7fffffff]}, 0x0, 0x0, 0x8) 371.858335ms ago: executing program 1 (id=2839): r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) bind$ax25(r0, &(0x7f0000000140)={{0x3, @default, 0x1}, [@null, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default]}, 0x48) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/conntrack\x00', 0x2, 0x0) r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) bind$ax25(r2, &(0x7f0000000140)={{0x3, @default, 0x1}, [@null, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default]}, 0x48) close_range(r1, 0xffffffffffffffff, 0x0) 322.42446ms ago: executing program 1 (id=2840): sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x50, 0x0, 0x0, 0x0, 0x0, {}, [{{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x4}, {0x6}, {0x5}}]}, 0x50}}, 0x0) r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003b000b05d25a806c8c6394f90224fc60100005000a000200053582c137153e37000c0180fc0b10000c00", 0x33fe0}], 0x1}, 0x0) 262.220166ms ago: executing program 1 (id=2841): r0 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000280)=@newqdisc={0xac, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x7c, 0x2, [@TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x1, [], 0x0, [0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x18, 0x2, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}, @TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x1}]}]}]}}]}, 0xac}}, 0x0) 164.940207ms ago: executing program 3 (id=2842): r0 = open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15) r3 = syz_open_dev$video4linux(&(0x7f00000004c0), 0x0, 0x230880) ioctl$VIDIOC_ENUM_DV_TIMINGS(r3, 0xc0945662, &(0x7f0000000600)={0x0, 0x0, '\x00', {0x0, @reserved}}) r4 = dup(r2) r5 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000540), 0x220000, 0x0) write$P9_RLERRORu(r5, &(0x7f0000000580)=ANY=[@ANYRES32=r1, @ANYRES64=r1, @ANYRES8], 0xfffffe01) write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20) r6 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r6, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000500)=[@in6={0xa, 0x0, 0x0, @private1}]}, &(0x7f0000000340)=0x10) syz_emit_vhci(&(0x7f00000006c0)=ANY=[@ANYBLOB="04060310c9001ca8345e1e83b7b3362f00b45782b0a13ac6e52c64d14068b978ef96f7460f8fa2e9aa194145d51f450b93f390187e1280dc6fbd7e0dc855a9a9523e21e9df808535ce9409365107c9d593328f20625f9d46c84199cc422345bafc5590b6035597a8adfaffffffffffffff35730b98d08333f99769ec992df3dd12"], 0x6) openat$iommufd(0xffffffffffffff9c, 0x0, 0x208500, 0x0) r7 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000400)={r8, @in={{0x2, 0x0, @empty}}, 0x0, 0x9, 0x0, 0x2, 0x414d6714bf78e135}, 0x9c) r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x6, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2d}, 0x90) r10 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000080)={'syz_tun\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r9, r11}, 0x40) syz_emit_ethernet(0xe80, &(0x7f0000000100)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "2a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x4, 0x5}}}}}}}, 0x0) r12 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) close_range(r12, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000000)=@assoc_value={r8, 0x6}, &(0x7f00000000c0)=0x8) connect$unix(r4, &(0x7f0000000180)=@abs={0x1, 0x0, 0x4e21}, 0x6e) write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYRES32=0x0], 0x7c8) stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r4, @ANYBLOB=',access=', @ANYRESDEC=r13]) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mounts\x00') 0s ago: executing program 1 (id=2843): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6) sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x73, 0x11, 0x37}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70) openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) r4 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0) r5 = fsmount(r4, 0x0, 0x0) r6 = openat$cgroup_ro(r5, &(0x7f0000000340)='cgroup.stat\x00', 0x300, 0x0) open_by_handle_at(r6, &(0x7f0000000000)=@ocfs2_parent={0x18, 0x2, {{0x7, 0x2}}}, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYBLOB="2c726f6f746d6f64653d30303030303030303030b03030303030303130303030302c757365", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r3, 0x0, 0x0) write$FUSE_INIT(r3, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f, 0x0, 0x60000, 0x0, 0x800}}, 0x50) lchown(&(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, 0x0) r7 = socket$inet6(0xa, 0x3, 0x7) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r7, 0x29, 0x20, &(0x7f00000000c0)={@dev, 0x800, 0x0, 0x2000000000903, 0x1}, 0x20) setsockopt$inet6_int(r7, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4) setsockopt$inet6_IPV6_RTHDRDSTOPTS(r7, 0x29, 0x37, &(0x7f0000000000), 0x8) connect$inet6(r7, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c) add_key$fscrypt_v1(0x0, &(0x7f0000000080)={'fscrypt:', @desc3}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x48, 0xffffffffffffffff) add_key$fscrypt_v1(0x0, &(0x7f0000000440)={'fscrypt:', @desc1}, &(0x7f0000000480)={0x0, "6035ae1e0fe721441705322225930e6c1e3e2a51a92fd796bc34d7cf6e0236805b4377f7ab1a9b01c103a4c6a7ef54e6763fd7264c39ea00c508ba6062696138"}, 0x48, 0xfffffffffffffffe) socket$inet6(0xa, 0x3, 0xff) kernel console output (not intermixed with test programs): , idProduct=6c17, bcdDevice= 0.40 [ 378.527883][ T835] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 378.533279][ T39] audit: type=1326 audit(1722028796.068:689): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10852 comm="syz.2.1684" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2dcfb77299 code=0x0 [ 378.533799][ T835] usb 8-1: config 0 descriptor?? [ 379.131586][T10873] syz.1.1692: attempt to access beyond end of device [ 379.131586][T10873] loop1: rw=0, sector=16, nr_sectors = 8 limit=0 [ 379.143735][T10873] REISERFS warning (device loop1): sh-2006 read_super_block: bread failed (dev loop1, block 2, size 4096) [ 379.158072][T10873] syz.1.1692: attempt to access beyond end of device [ 379.158072][T10873] loop1: rw=0, sector=128, nr_sectors = 8 limit=0 [ 379.165955][T10873] REISERFS warning (device loop1): sh-2006 read_super_block: bread failed (dev loop1, block 16, size 4096) [ 379.472823][ T5346] Bluetooth: hci1: Received unexpected HCI Event 0x00 [ 379.579615][ T5346] Bluetooth: Wrong link type (-71) [ 380.291796][ T835] usb 8-1: USB disconnect, device number 5 [ 380.537504][ T39] audit: type=1400 audit(1722028798.058:690): avc: denied { ioctl } for pid=10888 comm="syz.3.1696" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 ioctlcmd=0x8955 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 383.706059][ T39] audit: type=1326 audit(1722028801.238:691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10911 comm="syz.3.1704" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc8b3377299 code=0x0 [ 384.513622][ T1381] ieee802154 phy0 wpan0: encryption failed: -22 [ 384.516854][ T1381] ieee802154 phy1 wpan1: encryption failed: -22 [ 384.586557][ T5346] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 384.590588][ T5346] Bluetooth: hci2: Injecting HCI hardware error event [ 384.600468][ T4764] Bluetooth: hci2: hardware error 0x00 [ 385.876504][ T59] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 386.020020][T10939] netlink: 'syz.2.1711': attribute type 21 has an invalid length. [ 386.061318][ T59] usb 6-1: Using ep0 maxpacket: 32 [ 386.065183][ T59] usb 6-1: config index 0 descriptor too short (expected 29220, got 36) [ 386.068818][ T59] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 386.072777][ T59] usb 6-1: config 0 has an invalid descriptor of length 14, skipping remainder of the config [ 386.077354][ T59] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 386.091395][ T59] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has an invalid bInterval 224, changing to 7 [ 386.097829][ T59] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 32776, setting to 1024 [ 386.110740][ T59] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18 [ 386.122274][ T59] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 386.128330][T10939] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1711'. [ 386.135905][ T59] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 386.147547][ T59] usb 6-1: config 0 descriptor?? [ 386.335490][ T39] audit: type=1326 audit(1722028803.868:692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10946 comm="syz.2.1713" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 386.361862][ T39] audit: type=1326 audit(1722028803.868:693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10946 comm="syz.2.1713" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 386.391637][ T39] audit: type=1326 audit(1722028803.928:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10946 comm="syz.2.1713" exe="/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 386.403237][ T39] audit: type=1326 audit(1722028803.928:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10946 comm="syz.2.1713" exe="/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f2dcfb772d3 code=0x7ffc0000 [ 386.407569][ T9] usb 6-1: USB disconnect, device number 5 [ 386.415535][ T39] audit: type=1326 audit(1722028803.928:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10946 comm="syz.2.1713" exe="/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f2dcfb772d3 code=0x7ffc0000 [ 386.442799][ T39] audit: type=1326 audit(1722028803.928:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10946 comm="syz.2.1713" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 386.453802][ T39] audit: type=1326 audit(1722028803.938:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10946 comm="syz.2.1713" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 386.468843][ T39] audit: type=1326 audit(1722028803.998:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10946 comm="syz.2.1713" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 386.491310][ T39] audit: type=1326 audit(1722028803.998:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10946 comm="syz.2.1713" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 386.522731][ T39] audit: type=1326 audit(1722028803.998:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10946 comm="syz.2.1713" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 386.665125][ T4764] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 387.042759][ T9] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 387.115472][ T59] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 387.231735][ T9] usb 6-1: Using ep0 maxpacket: 32 [ 387.242450][ T9] usb 6-1: config index 0 descriptor too short (expected 29220, got 36) [ 387.258195][ T9] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 387.281562][ T9] usb 6-1: config 0 has an invalid descriptor of length 14, skipping remainder of the config [ 387.285629][ T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 387.289747][ T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has an invalid bInterval 224, changing to 7 [ 387.291615][ T59] usb 7-1: Using ep0 maxpacket: 8 [ 387.299408][ T59] usb 7-1: config index 0 descriptor too short (expected 301, got 45) [ 387.303433][ T59] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 387.311338][ T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 32776, setting to 1024 [ 387.317730][ T59] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 387.321291][ T9] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18 [ 387.338617][ T9] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 387.341526][ T59] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 387.347311][ T59] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 387.348723][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 387.367576][ T59] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 387.371358][ T9] usb 6-1: config 0 descriptor?? [ 387.381534][ T59] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 387.608160][ T59] usb 7-1: usb_control_msg returned -32 [ 387.612684][ T59] usbtmc 7-1:16.0: can't read capabilities [ 389.113341][ T5383] usb 6-1: USB disconnect, device number 6 [ 389.285345][T10987] netlink: 'syz.1.1724': attribute type 2 has an invalid length. [ 389.878474][ T5383] usb 7-1: USB disconnect, device number 9 [ 391.608081][T11013] syz.0.1734 (11013): drop_caches: 2 [ 391.874889][T11010] syz.0.1734 (11010): drop_caches: 2 [ 391.990243][T11049] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=11049 comm=syz.0.1746 [ 392.046303][ T39] kauditd_printk_skb: 42 callbacks suppressed [ 392.046317][ T39] audit: type=1400 audit(1722028809.578:744): avc: denied { bind } for pid=11050 comm="syz.0.1748" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 392.072990][ T39] audit: type=1400 audit(1722028809.578:745): avc: denied { node_bind } for pid=11050 comm="syz.0.1748" saddr=10.1.1.1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1 [ 392.255961][T11061] input: syz0 as /devices/virtual/input/input8 [ 392.294198][ T39] audit: type=1400 audit(1722028809.818:746): avc: denied { read } for pid=4811 comm="acpid" name="event4" dev="devtmpfs" ino=2529 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 392.312772][ T39] audit: type=1400 audit(1722028809.818:747): avc: denied { open } for pid=4811 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2529 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 392.329383][ T39] audit: type=1400 audit(1722028809.818:748): avc: denied { ioctl } for pid=4811 comm="acpid" path="/dev/input/event4" dev="devtmpfs" ino=2529 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 392.348318][T11067] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 392.389210][T11065] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 392.444362][ T39] audit: type=1326 audit(1722028809.978:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11070 comm="syz.0.1756" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x7ffc0000 [ 392.452667][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.458151][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.462090][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.465523][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.468706][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.468787][ T39] audit: type=1326 audit(1722028809.978:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11070 comm="syz.0.1756" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x7ffc0000 [ 392.473126][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.482323][ T39] audit: type=1326 audit(1722028809.978:751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11070 comm="syz.0.1756" exe="/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f69af577299 code=0x7ffc0000 [ 392.484939][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.494488][ T39] audit: type=1326 audit(1722028809.978:752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11070 comm="syz.0.1756" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x7ffc0000 [ 392.515331][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.518582][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.521646][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.524929][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.528076][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.530779][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.538709][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.542377][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.546126][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.549529][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.553354][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.556707][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.559922][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.564558][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.567748][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.571914][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.575475][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.579096][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.583533][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.587223][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.595029][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.599138][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.602793][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.606642][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.611589][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.616165][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.620322][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.623942][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.628114][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.632355][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.639295][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.642946][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.646167][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.649539][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.653582][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.656614][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.659848][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.663592][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.666891][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.670295][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.674625][ T30] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 392.680720][ T30] hid-generic 0000:0000:0000.000C: hidraw1: HID v0.00 Device [syz0] on syz1 [ 392.741639][ T59] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 393.105241][ T59] usb 8-1: config 0 has no interfaces? [ 393.108227][ T59] usb 8-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 393.113556][ T59] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 393.122396][ T59] usb 8-1: config 0 descriptor?? [ 393.210606][T11090] input: syz0 as /devices/virtual/input/input9 [ 393.322460][ T39] audit: type=1400 audit(1722028810.848:753): avc: granted { setsecparam } for pid=11079 comm="syz.1.1760" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security [ 393.687647][ T835] usb 8-1: USB disconnect, device number 6 [ 394.079052][T11091] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1764'. [ 394.170196][T11105] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1768'. [ 394.838759][T11119] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 395.211935][T11136] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1781'. [ 395.215658][T11136] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1781'. [ 395.744489][T11159] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1790'. [ 395.752109][T11159] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1790'. [ 395.861601][ T58] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 396.053340][ T58] usb 5-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11 [ 396.061309][ T58] usb 5-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024 [ 396.066477][ T58] usb 5-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 396.081454][ T58] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 396.093190][T11155] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 396.546304][T11175] overlay: ./file0 is not a directory [ 397.127929][T11183] input: syz0 as /devices/virtual/input/input11 [ 397.374750][ T39] audit: type=1400 audit(1722028814.908:754): avc: denied { mounton } for pid=11187 comm="syz.1.1800" path="/42/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 398.369988][T11214] input: syz0 as /devices/virtual/input/input12 [ 398.799698][T11220] netlink: 'syz.3.1810': attribute type 27 has an invalid length. [ 399.121886][T11220] bridge0: port 2(bridge_slave_1) entered disabled state [ 399.122928][T11220] bridge0: port 1(bridge_slave_0) entered disabled state [ 399.694673][T11220] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 399.699641][ T58] aiptek 5-1:17.0: Aiptek using 400 ms programming speed [ 399.702290][ T58] input: Aiptek as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:17.0/input/input10 [ 399.812248][ T58] usb 5-1: USB disconnect, device number 9 [ 399.812330][ C2] aiptek 5-1:17.0: aiptek_irq - usb_submit_urb failed with result -19 [ 399.821811][T11220] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 400.253989][T11220] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 400.254026][T11220] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 400.254052][T11220] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 400.254077][T11220] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 400.627925][ T39] audit: type=1400 audit(1722028818.158:755): avc: denied { create } for pid=11235 comm="syz.0.1814" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 400.630831][ T39] audit: type=1400 audit(1722028818.158:756): avc: denied { write } for pid=11235 comm="syz.0.1814" name="file0" dev="tmpfs" ino=1201 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 400.631443][ T39] audit: type=1400 audit(1722028818.158:757): avc: denied { open } for pid=11235 comm="syz.0.1814" path="/215/file0" dev="tmpfs" ino=1201 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 400.737555][ T39] audit: type=1400 audit(1722028818.258:758): avc: denied { unlink } for pid=8516 comm="syz-executor" name="file0" dev="tmpfs" ino=1201 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 400.891801][ T39] audit: type=1400 audit(1722028818.428:759): avc: denied { append } for pid=11246 comm="syz.3.1818" name="qrtr-tun" dev="devtmpfs" ino=1150 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 400.964488][T11249] openvswitch: netlink: Unexpected mask (mask=440, allowed=10048) [ 401.288274][ T39] audit: type=1400 audit(1722028818.818:760): avc: denied { remount } for pid=11240 comm="syz.1.1816" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 401.352904][T11256] syz.0.1820 (11256): drop_caches: 2 [ 401.358951][T11256] syz.0.1820 (11256): drop_caches: 2 [ 401.378595][T11257] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1819'. [ 401.933299][T11254] syz.0.1820 (11254): drop_caches: 2 [ 401.972793][T11254] syz.0.1820 (11254): drop_caches: 2 [ 402.236382][T11271] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 403.163993][T11290] openvswitch: netlink: Unexpected mask (mask=440, allowed=10048) [ 403.493115][T11295] overlay: ./file0 is not a directory [ 403.760704][T11302] Falling back ldisc for ttyS3. [ 404.373283][ T39] audit: type=1326 audit(1722028821.908:761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11315 comm="syz.1.1844" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff50bd77299 code=0x0 [ 405.015037][ T39] audit: type=1400 audit(1722028822.548:762): avc: denied { read } for pid=11315 comm="syz.1.1844" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 405.292795][T11333] ipip0: entered promiscuous mode [ 406.571941][T11369] netlink: 4272 bytes leftover after parsing attributes in process `syz.1.1856'. [ 406.572113][T11369] netlink: 'syz.1.1856': attribute type 1 has an invalid length. [ 406.572127][T11369] netlink: 113 bytes leftover after parsing attributes in process `syz.1.1856'. [ 406.670636][ T39] audit: type=1326 audit(1722028824.198:763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11351 comm="syz.2.1854" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2dcfb77299 code=0x0 [ 408.011828][T11390] netlink: 'syz.2.1862': attribute type 27 has an invalid length. [ 408.298829][T11390] bridge0: port 2(bridge_slave_1) entered disabled state [ 408.299422][T11390] bridge0: port 1(bridge_slave_0) entered disabled state [ 408.930925][T11390] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 408.960336][T11390] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 409.564824][T11390] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 409.564848][T11390] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 409.564864][T11390] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 409.564878][T11390] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 410.084179][ T39] audit: type=1400 audit(1722028827.618:764): avc: denied { setopt } for pid=11409 comm="syz.1.1869" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 410.084227][T11410] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 410.222918][T11420] netlink: 4272 bytes leftover after parsing attributes in process `syz.2.1872'. [ 410.222971][T11420] netlink: 'syz.2.1872': attribute type 1 has an invalid length. [ 410.222983][T11420] netlink: 113 bytes leftover after parsing attributes in process `syz.2.1872'. [ 410.381524][T11427] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma? [ 410.387522][ T39] audit: type=1400 audit(1722028827.918:765): avc: denied { getopt } for pid=11426 comm="syz.3.1875" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 411.388456][ T39] audit: type=1326 audit(1722028828.918:766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11416 comm="syz.1.1871" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff50bd77299 code=0x0 [ 411.692795][T11438] Bluetooth: hci3: invalid length 0, exp 2 for type 10 [ 411.759194][T11440] syz.3.1879[11440] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 411.759435][T11440] syz.3.1879[11440] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 412.188934][T11453] netlink: 4272 bytes leftover after parsing attributes in process `syz.2.1882'. [ 412.190274][T11448] ipip0: entered promiscuous mode [ 412.196407][T11453] netlink: 'syz.2.1882': attribute type 1 has an invalid length. [ 412.211656][T11453] netlink: 113 bytes leftover after parsing attributes in process `syz.2.1882'. [ 412.349520][ T39] audit: type=1400 audit(1722028829.878:767): avc: denied { read } for pid=11456 comm="syz.1.1887" name="loop-control" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 412.382794][ T39] audit: type=1400 audit(1722028829.878:768): avc: denied { open } for pid=11456 comm="syz.1.1887" path="/dev/loop-control" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 412.396692][ T39] audit: type=1400 audit(1722028829.878:769): avc: denied { ioctl } for pid=11456 comm="syz.1.1887" path="/dev/loop-control" dev="devtmpfs" ino=659 ioctlcmd=0x4c81 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 412.429344][ T39] audit: type=1326 audit(1722028829.938:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11465 comm="syz.2.1888" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 412.462046][ T39] audit: type=1326 audit(1722028829.948:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11465 comm="syz.2.1888" exe="/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 412.478686][ T39] audit: type=1326 audit(1722028829.948:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11465 comm="syz.2.1888" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 412.489663][ T39] audit: type=1326 audit(1722028829.948:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11465 comm="syz.2.1888" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 413.663128][T11491] Bluetooth: hci3: invalid length 0, exp 2 for type 10 [ 414.661398][ T4764] Bluetooth: hci4: command tx timeout [ 415.579297][T11535] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1906'. [ 416.501649][ T1416] usb 6-1: new low-speed USB device number 7 using dummy_hcd [ 416.671349][ T4764] Bluetooth: hci1: command tx timeout [ 416.704462][ T1416] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 416.708312][ T1416] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt [ 416.716673][ T1416] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 416.722109][ T1416] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 416.727745][ T1416] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 416.737348][ T1416] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 416.742027][ T1416] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt [ 416.750825][ T1416] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 416.759081][ T1416] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 416.770439][ T1416] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 416.779448][ T1416] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 416.789848][ T1416] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt [ 416.795034][ T1416] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 416.799602][ T1416] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 416.805884][ T1416] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 416.814317][ T1416] usb 6-1: string descriptor 0 read error: -22 [ 416.818006][ T1416] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 416.824445][ T1416] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 416.839742][ T1416] adutux 6-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 417.000486][T11563] 9pnet: Could not find request transport: ^d [ 417.010150][T11563] –eth0_vlan: renamed from bridge_slave_1 [ 417.102251][T11549] usb 6-1: Couldn't submit interrupt_out_urb -90 [ 417.121313][ T833] usb 6-1: USB disconnect, device number 7 [ 418.341327][T11598] 9pnet: Could not find request transport: ^d [ 418.359583][T11598] –eth0_vlan: renamed from bridge_slave_1 (while UP) [ 418.500795][ T39] kauditd_printk_skb: 130 callbacks suppressed [ 418.500813][ T39] audit: type=1400 audit(1722028836.031:904): avc: denied { setattr } for pid=11608 comm="syz.0.1939" name="NETLINK" dev="sockfs" ino=57849 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 418.546363][T11609] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1939'. [ 418.584681][T11609] netlink: 'syz.0.1939': attribute type 1 has an invalid length. [ 418.588291][T11609] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1939'. [ 419.028463][T11622] input: syz1 as /devices/virtual/input/input13 [ 419.077959][T11620] syzkaller0: entered promiscuous mode [ 419.080549][T11620] syzkaller0: entered allmulticast mode [ 419.288951][T11633] ptrace attach of "/syz-executor exec"[8516] was attempted by "/syz-executor exec"[11633] [ 419.423738][ T39] audit: type=1400 audit(1722028836.961:905): avc: denied { setopt } for pid=11636 comm="syz.3.1950" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 419.440347][ T39] audit: type=1400 audit(1722028836.971:906): avc: denied { write } for pid=11636 comm="syz.3.1950" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 419.525067][T11642] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1951'. [ 419.588226][T11639] netlink: 'syz.0.1951': attribute type 1 has an invalid length. [ 419.598285][T11639] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1951'. [ 419.955907][T11649] 9pnet: Could not find request transport: ^d [ 421.500661][T11649] –eth0_vlan: renamed from bridge_slave_1 [ 421.607624][T11655] binder: 11654:11655 ioctl c018620c 20000000 returned -1 [ 421.997820][T11672] ptrace attach of "/syz-executor exec"[10532] was attempted by "/syz-executor exec"[11672] [ 423.377977][T11706] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1970'. [ 423.551562][ T9] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 423.762302][ T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 423.768778][ T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 423.774081][ T9] usb 7-1: New USB device found, idVendor=045e, idProduct=009d, bcdDevice= 0.00 [ 423.778999][ T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 423.852992][ T9] usb 7-1: config 0 descriptor?? [ 424.833989][ T39] audit: type=1326 audit(1722028842.371:907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11720 comm="syz.3.1975" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc8b3377299 code=0x0 [ 425.516575][ T9] usb 7-1: string descriptor 0 read error: -71 [ 425.527629][ T9] usbhid 7-1:0.0: can't add hid device: -22 [ 425.530388][ T9] usbhid 7-1:0.0: probe with driver usbhid failed with error -22 [ 425.545282][ T9] usb 7-1: USB disconnect, device number 10 [ 425.585987][T11737] 9pnet: Could not find request transport: ^d [ 426.139526][T11752] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1983'. [ 426.147654][ T39] audit: type=1400 audit(1722028843.681:908): avc: denied { read write } for pid=11749 comm="syz.3.1982" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 426.163505][ T39] audit: type=1400 audit(1722028843.681:909): avc: denied { open } for pid=11749 comm="syz.3.1982" path="/113/file0" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 426.573873][T11767] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 426.839825][ T39] audit: type=1326 audit(1722028844.371:910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11770 comm="syz.2.1989" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2dcfb77299 code=0x0 [ 427.229746][T11786] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1992'. [ 427.896454][ T39] audit: type=1326 audit(1722028845.431:911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11799 comm="syz.2.1997" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 427.911518][ T39] audit: type=1326 audit(1722028845.431:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11799 comm="syz.2.1997" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 427.921839][ T39] audit: type=1326 audit(1722028845.441:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11799 comm="syz.2.1997" exe="/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 427.940430][ T39] audit: type=1326 audit(1722028845.441:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11799 comm="syz.2.1997" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 427.985048][ T39] audit: type=1326 audit(1722028845.441:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11799 comm="syz.2.1997" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 427.995181][ T39] audit: type=1326 audit(1722028845.451:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11799 comm="syz.2.1997" exe="/syz-executor" sig=0 arch=c000003e syscall=189 compat=0 ip=0x7f2dcfb77299 code=0x7ffc0000 [ 430.054914][ T4764] Bluetooth: hci4: Received unexpected HCI Event 0x00 [ 430.101395][ T4764] Bluetooth: hci4: command tx timeout [ 430.115057][ T4764] Bluetooth: Wrong link type (-71) [ 430.118213][ T4764] Bluetooth: hci4: link tx timeout [ 430.122479][ T4764] Bluetooth: hci4: killing stalled connection 10:aa:aa:aa:aa:aa [ 430.131133][ T4764] Bluetooth: hci4: link tx timeout [ 430.134314][ T4764] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa [ 430.331427][ T1416] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 430.518328][ T1416] usb 8-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11 [ 430.524719][ T1416] usb 8-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024 [ 430.530779][ T1416] usb 8-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 430.534847][ T1416] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 430.550068][T11844] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 432.029439][T11863] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 432.065063][T11863] input: syz0 as /devices/virtual/input/input15 [ 432.181430][ T5346] Bluetooth: hci4: command 0x0406 tx timeout [ 432.893761][ T1416] aiptek 8-1:17.0: Aiptek using 400 ms programming speed [ 432.912324][ T1416] input: Aiptek as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:17.0/input/input14 [ 432.961520][ T1416] usb 8-1: USB disconnect, device number 7 [ 432.964217][ C1] aiptek 8-1:17.0: aiptek_irq - usb_submit_urb failed with result -19 [ 433.791563][T11878] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2022'. [ 433.796024][T11878] team_slave_1: Device is already in use. [ 433.952227][T11885] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 433.969118][T11885] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 433.996187][T11885] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 434.002054][T11885] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 434.006795][T11885] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 434.010141][T11885] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 434.242060][T11894] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 434.271824][ T5346] Bluetooth: hci4: command 0x0406 tx timeout [ 434.300423][T11894] input: syz0 as /devices/virtual/input/input16 [ 434.721523][T11883] chnl_net:caif_netlink_parms(): no params data found [ 434.788846][ T204] –eth0_vlan: left allmulticast mode [ 434.791127][ T204] –eth0_vlan: left promiscuous mode [ 434.801713][ T204] bridge0: port 2(–eth0_vlan) entered disabled state [ 434.832301][ T204] bridge_slave_0: left allmulticast mode [ 434.835466][ T204] bridge_slave_0: left promiscuous mode [ 434.838155][ T204] bridge0: port 1(bridge_slave_0) entered disabled state [ 434.925535][ T39] kauditd_printk_skb: 67 callbacks suppressed [ 434.925546][ T39] audit: type=1400 audit(1722028852.461:984): avc: denied { append } for pid=11900 comm="syz.2.2027" name="nullb0" dev="devtmpfs" ino=693 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 435.044841][T11904] trusted_key: encrypted_key: master key parameter 'usesyz' is invalid [ 435.528427][ T204] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 435.536209][ T204] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 435.543226][ T204] bond0 (unregistering): Released all slaves [ 435.902109][T11883] bridge0: port 1(bridge_slave_0) entered blocking state [ 435.905153][T11883] bridge0: port 1(bridge_slave_0) entered disabled state [ 435.909078][T11883] bridge_slave_0: entered allmulticast mode [ 435.914094][T11883] bridge_slave_0: entered promiscuous mode [ 435.985974][T11883] bridge0: port 2(bridge_slave_1) entered blocking state [ 435.988820][T11883] bridge0: port 2(bridge_slave_1) entered disabled state [ 435.995836][T11883] bridge_slave_1: entered allmulticast mode [ 435.999631][T11883] bridge_slave_1: entered promiscuous mode [ 436.113231][ T4764] Bluetooth: hci2: command tx timeout [ 436.139853][ T204] hsr_slave_0: left promiscuous mode [ 436.151910][ T204] hsr_slave_1: left promiscuous mode [ 436.165460][ T204] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 436.182199][ T204] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 437.799848][ T204] team0 (unregistering): Port device team_slave_1 removed [ 437.952236][ T204] team0 (unregistering): Port device team_slave_0 removed [ 438.182717][ T4764] Bluetooth: hci2: command tx timeout [ 440.267934][ T4764] Bluetooth: hci2: command tx timeout [ 440.554886][T11883] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 440.559132][T11883] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 440.678244][T11883] team0: Port device team_slave_0 added [ 440.683039][T11883] team0: Port device team_slave_1 added [ 441.050355][T11883] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 441.050372][T11883] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 441.050392][T11883] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 441.071542][T11883] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 441.071561][T11883] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 441.071583][T11883] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 441.353057][T11883] hsr_slave_0: entered promiscuous mode [ 441.354210][T11883] hsr_slave_1: entered promiscuous mode [ 441.355136][T11883] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 441.355263][T11883] Cannot create hsr debugfs directory [ 441.665306][T11966] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2040'. [ 442.341564][ T4764] Bluetooth: hci2: command tx timeout [ 443.252858][T11883] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 443.255718][T11883] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 443.259229][T11883] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 443.274291][T11883] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 443.350299][ T39] audit: type=1400 audit(1722028860.881:985): avc: denied { watch watch_reads } for pid=12006 comm="syz.2.2047" path="/95" dev="tmpfs" ino=515 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 443.447613][T12010] tipc: Started in network mode [ 443.447644][T12010] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 443.447695][T12010] tipc: Enabling of bearer rejected, failed to enable media [ 443.588486][T11883] 8021q: adding VLAN 0 to HW filter on device bond0 [ 443.670550][T11883] 8021q: adding VLAN 0 to HW filter on device team0 [ 443.728139][ T5603] bridge0: port 1(bridge_slave_0) entered blocking state [ 443.741861][ T5603] bridge0: port 1(bridge_slave_0) entered forwarding state [ 443.749015][ T5603] bridge0: port 2(bridge_slave_1) entered blocking state [ 443.757205][ T5603] bridge0: port 2(bridge_slave_1) entered forwarding state [ 443.787236][T11883] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 443.793791][T11883] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 443.957407][T12029] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2050'. [ 444.155213][T11883] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 444.224115][T11883] veth0_vlan: entered promiscuous mode [ 444.233839][T11883] veth1_vlan: entered promiscuous mode [ 444.290272][T11883] veth0_macvtap: entered promiscuous mode [ 444.306902][T11883] veth1_macvtap: entered promiscuous mode [ 444.367654][T11883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 444.372614][T11883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.403935][T11883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 444.463222][T11883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.467355][T11883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 444.472059][T11883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.477041][T11883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 444.495217][T11883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.542998][T11883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 444.557183][T11883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.598911][T11883] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 444.636908][T11883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 444.681982][T11883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.697494][T11883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 444.731364][T11883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.739595][T11883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 444.750236][T11883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.754827][T11883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 444.761557][T11883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.776419][T11883] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 444.794189][T11883] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 444.807162][T11883] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 444.845270][T11883] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 444.849192][T11883] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 444.878730][T11883] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 444.901887][T11883] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 445.091905][ T204] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 445.095430][ T204] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 445.189901][ T204] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 445.195922][ T204] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 445.348833][T12063] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2060'. [ 445.396299][T12063] bridge1: port 1(veth1_to_bond) entered blocking state [ 445.399478][T12063] bridge1: port 1(veth1_to_bond) entered disabled state [ 445.406436][T12063] veth1_to_bond: entered allmulticast mode [ 445.409462][T12063] veth1_to_bond: entered promiscuous mode [ 445.466374][ T39] audit: type=1326 audit(1722028863.001:986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12058 comm="syz.3.2021" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcf91777299 code=0x0 [ 445.595248][T12069] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2061'. [ 445.954604][ T1381] ieee802154 phy0 wpan0: encryption failed: -22 [ 446.497114][T12080] Bluetooth: hci3: unsupported parameter 65535 [ 446.500450][T12080] Bluetooth: hci3: unsupported parameter 65535 [ 446.528049][T12080] Bluetooth: hci3: unsupported parameter 65535 [ 446.562858][T12080] Bluetooth: hci3: unsupported parameter 65535 [ 446.687366][T12089] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2070'. [ 446.718456][ T39] audit: type=1326 audit(1722028864.251:987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12084 comm="syz.3.2069" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcf91777299 code=0x0 [ 446.734546][T12089] veth1_to_bond: left allmulticast mode [ 446.736995][T12089] veth1_to_bond: left promiscuous mode [ 446.739575][T12089] bridge1: port 1(veth1_to_bond) entered disabled state [ 446.754387][T12089] bridge2: port 1(veth1_to_bond) entered blocking state [ 446.757978][T12089] bridge2: port 1(veth1_to_bond) entered disabled state [ 446.768330][T12089] veth1_to_bond: entered allmulticast mode [ 446.772967][T12089] veth1_to_bond: entered promiscuous mode [ 447.694431][T12117] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2077'. [ 448.366227][ T45] nci: nci_ntf_packet: unknown ntf opcode 0x107 [ 448.681058][T12133] tipc: Enabling of bearer rejected, failed to enable media [ 449.936927][ T39] audit: type=1326 audit(1722028867.471:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12167 comm="syz.1.2096" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff50bd77299 code=0x0 [ 450.286434][ C0] vkms_vblank_simulate: vblank timer overrun [ 450.993311][T12187] tipc: Enabling of bearer rejected, failed to enable media [ 451.703902][ T4764] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 451.708093][ T4764] Bluetooth: hci1: Injecting HCI hardware error event [ 451.714600][ T4764] Bluetooth: hci1: hardware error 0x00 [ 452.272657][ T39] audit: type=1400 audit(1722028869.811:989): avc: denied { ioctl } for pid=12208 comm="syz.2.2107" path="socket:[62280]" dev="sockfs" ino=62280 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 452.395208][T12213] can-isotp: isotp_sendmsg: can_send_ret -ENETDOWN [ 452.400667][T12214] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2108'. [ 452.542013][T12217] netlink: 232 bytes leftover after parsing attributes in process `syz.2.2111'. [ 452.545998][T12217] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2111'. [ 452.788589][T12225] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2114'. [ 452.969784][T12241] Unknown options in mask 5 [ 453.034491][T12243] netlink: 232 bytes leftover after parsing attributes in process `syz.1.2121'. [ 453.039240][T12243] netlink: 72 bytes leftover after parsing attributes in process `syz.1.2121'. [ 453.782004][ T4764] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 453.835527][T12269] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2131'. [ 453.860617][T12270] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2130'. [ 454.182460][T12276] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2133'. [ 454.296966][T12281] netlink: 232 bytes leftover after parsing attributes in process `syz.2.2135'. [ 454.520657][T12290] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12290 comm=syz.1.2139 [ 454.801946][ T39] audit: type=1400 audit(1722028872.341:990): avc: denied { ioctl } for pid=12298 comm="syz.2.2143" path="/dev/usbmon0" dev="devtmpfs" ino=723 ioctlcmd=0x9206 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 455.326301][ T1416] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 455.531357][ T1416] usb 5-1: Using ep0 maxpacket: 32 [ 455.546125][ T1416] usb 5-1: config index 0 descriptor too short (expected 29220, got 36) [ 455.549891][ T1416] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 455.587366][ T1416] usb 5-1: config 0 has an invalid descriptor of length 14, skipping remainder of the config [ 455.604027][ T1416] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 455.608237][ T1416] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has an invalid bInterval 224, changing to 7 [ 455.622254][ T1416] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 32776, setting to 1024 [ 455.643748][ T1416] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18 [ 455.650095][ T1416] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 455.654872][ T1416] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 455.661675][ T1416] usb 5-1: config 0 descriptor?? [ 455.859176][T12315] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12315 comm=syz.2.2148 [ 456.001589][ T1416] usb 5-1: USB disconnect, device number 10 [ 456.004300][T12317] Unknown options in mask 5 [ 456.592849][ T1416] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 456.781329][ T1416] usb 5-1: Using ep0 maxpacket: 32 [ 456.785020][ T1416] usb 5-1: config index 0 descriptor too short (expected 29220, got 36) [ 456.788505][ T1416] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 456.797128][ T1416] usb 5-1: config 0 has an invalid descriptor of length 14, skipping remainder of the config [ 456.801067][ T1416] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 456.806004][ T1416] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has an invalid bInterval 224, changing to 7 [ 456.810909][ T1416] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 32776, setting to 1024 [ 456.816371][ T1416] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18 [ 456.822750][ T1416] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 456.826640][ T1416] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 456.837993][ T1416] usb 5-1: config 0 descriptor?? [ 458.899558][T10918] usb 5-1: USB disconnect, device number 11 [ 459.033971][T12358] input: syz1 as /devices/virtual/input/input17 [ 460.290217][ C0] vkms_vblank_simulate: vblank timer overrun [ 460.971729][T12406] input: syz1 as /devices/virtual/input/input18 [ 462.071417][ T35] usb 7-1: new high-speed USB device number 11 using dummy_hcd [ 462.236460][ T39] audit: type=1800 audit(1722028879.771:991): pid=12430 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=set_data cause=unavailable-hash-algorithm comm="syz.0.2188" name="/newroot/293/file0//deleted" dev="tmpfs" ino=1615 res=0 errno=0 [ 462.283330][ T35] usb 7-1: Using ep0 maxpacket: 8 [ 462.298757][ T35] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 462.304085][ T35] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 462.309336][ T35] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 462.314631][ T35] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 462.320166][ T35] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 462.324284][ T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 462.383547][T12436] __nla_validate_parse: 2 callbacks suppressed [ 462.383560][T12436] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2189'. [ 462.422170][ C3] hrtimer: interrupt took 3983774 ns [ 462.647295][ T35] usb 7-1: usb_control_msg returned -32 [ 462.656912][ T35] usbtmc 7-1:16.0: can't read capabilities [ 463.030854][T12438] usbtmc 7-1:16.0: usbtmc_ioctl_request failed -32 [ 463.038417][ T5400] usb 7-1: USB disconnect, device number 11 [ 463.743633][T12440] overlayfs: failed to get inode (-116) [ 465.564810][ T39] audit: type=1400 audit(1722028883.101:992): avc: denied { read } for pid=12460 comm="syz.0.2199" name="/" dev="configfs" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 465.578013][ T39] audit: type=1400 audit(1722028883.101:993): avc: denied { open } for pid=12460 comm="syz.0.2199" path="/295/file0" dev="configfs" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 465.596400][ T39] audit: type=1400 audit(1722028883.121:994): avc: denied { write } for pid=12460 comm="syz.0.2199" name="/" dev="configfs" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 465.950130][T12476] netlink: 168 bytes leftover after parsing attributes in process `syz.2.2203'. [ 465.966811][T12476] netlink: 'syz.2.2203': attribute type 2 has an invalid length. [ 465.978181][T12476] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2203'. [ 466.635744][ T39] audit: type=1400 audit(1722028884.171:995): avc: denied { lock } for pid=12460 comm="syz.0.2199" path="socket:[63073]" dev="sockfs" ino=63073 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1 [ 466.732673][ T39] audit: type=1800 audit(1722028884.271:996): pid=12483 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=set_data cause=unavailable-hash-algorithm comm="syz.1.2205" name="/newroot/152/file0//deleted" dev="tmpfs" ino=834 res=0 errno=0 [ 466.785247][ T39] audit: type=1400 audit(1722028884.321:997): avc: denied { ioctl } for pid=12490 comm="syz.2.2206" path="socket:[63090]" dev="sockfs" ino=63090 ioctlcmd=0x54ca scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 466.825933][ T39] audit: type=1326 audit(1722028884.361:998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12460 comm="syz.0.2199" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x7fc00000 [ 466.882022][ T39] audit: type=1326 audit(1722028884.421:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12460 comm="syz.0.2199" exe="/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f69af577299 code=0x7fc00000 [ 467.093273][ T39] audit: type=1326 audit(1722028884.621:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12460 comm="syz.0.2199" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x7fc00000 [ 467.265075][T12511] netlink: 'syz.3.2212': attribute type 4 has an invalid length. [ 467.268644][T12511] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.2212'. [ 467.292125][ T39] audit: type=1400 audit(1722028884.831:1001): avc: denied { read } for pid=12510 comm="syz.0.2213" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1 [ 467.301119][ T39] audit: type=1400 audit(1722028884.831:1002): avc: denied { open } for pid=12510 comm="syz.0.2213" path="/296/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1 [ 467.885730][ T39] audit: type=1400 audit(1722028885.421:1003): avc: denied { mount } for pid=12524 comm="syz.2.2216" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1 [ 469.420545][ T39] audit: type=1400 audit(1722028886.941:1004): avc: denied { connect } for pid=12569 comm="syz.0.2227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 469.517989][ T39] audit: type=1400 audit(1722028887.051:1005): avc: denied { unmount } for pid=10286 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1 [ 470.140083][ T39] audit: type=1400 audit(1722028887.671:1006): avc: denied { write } for pid=12581 comm="syz.1.2230" name="rtc0" dev="devtmpfs" ino=867 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 470.946717][ T5346] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 470.956795][ T5346] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 470.964827][ T5346] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 470.988508][ T5346] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 471.019916][ T5346] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 471.049178][ T5346] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 471.507374][T12601] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=12601 comm=syz.3.2236 [ 471.547231][ T39] audit: type=1400 audit(1722028889.081:1007): avc: denied { read } for pid=12600 comm="syz.3.2236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 472.581339][ T59] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 472.803956][ T59] usb 6-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11 [ 472.810170][ T59] usb 6-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024 [ 472.821300][ T59] usb 6-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 472.830424][ T59] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 472.838762][T12615] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 473.061898][ T5346] Bluetooth: hci4: command tx timeout [ 474.259810][ T59] aiptek 6-1:17.0: Aiptek using 400 ms programming speed [ 474.277307][ T59] input: Aiptek as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:17.0/input/input19 [ 474.320986][ T59] usb 6-1: USB disconnect, device number 8 [ 474.323693][ C1] aiptek 6-1:17.0: aiptek_irq - usb_submit_urb failed with result -19 [ 474.416482][ T1106] –eth0_vlan: left allmulticast mode [ 474.418677][ T1106] –eth0_vlan: left promiscuous mode [ 474.421019][ T1106] bridge0: port 2(–eth0_vlan) entered disabled state [ 474.435992][ T1106] bridge_slave_0: left allmulticast mode [ 474.438215][ T1106] bridge_slave_0: left promiscuous mode [ 474.440276][ T1106] bridge0: port 1(bridge_slave_0) entered disabled state [ 474.441428][T12628] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=12628 comm=syz.0.2244 [ 474.456532][ T1106] veth1_to_bond: left allmulticast mode [ 474.458694][ T1106] veth1_to_bond: left promiscuous mode [ 474.461103][ T1106] bridge2: port 1(veth1_to_bond) entered disabled state [ 475.191677][ T5346] Bluetooth: hci4: command tx timeout [ 476.228195][ T1106] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 476.239222][ T1106] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 476.244536][ T1106] bond0 (unregistering): Released all slaves [ 476.420816][ T1106] tipc: Left network mode [ 476.445655][T12590] chnl_net:caif_netlink_parms(): no params data found [ 476.642278][T12590] bridge0: port 1(bridge_slave_0) entered blocking state [ 476.646671][T12590] bridge0: port 1(bridge_slave_0) entered disabled state [ 476.649773][T12590] bridge_slave_0: entered allmulticast mode [ 476.654215][T12590] bridge_slave_0: entered promiscuous mode [ 476.664115][T12590] bridge0: port 2(bridge_slave_1) entered blocking state [ 476.666895][T12590] bridge0: port 2(bridge_slave_1) entered disabled state [ 476.670051][T12590] bridge_slave_1: entered allmulticast mode [ 476.674582][T12590] bridge_slave_1: entered promiscuous mode [ 476.817172][T12590] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 476.875161][ T1106] hsr_slave_0: left promiscuous mode [ 476.878318][ T1106] hsr_slave_1: left promiscuous mode [ 476.912246][ T1106] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 476.917102][ T1106] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 477.047788][T12666] overlayfs: invalid redirect ((null)) [ 477.087183][ T4764] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 477.095046][ T4764] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 477.112013][ T4764] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 477.118156][ T4764] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 477.122917][ T4764] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 477.126360][ T4764] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 477.231358][ T5346] Bluetooth: hci4: command tx timeout [ 478.238233][T12689] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5) [ 478.241347][T12689] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 478.263811][T12689] vhci_hcd vhci_hcd.0: Device attached [ 478.351715][T12692] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(11) [ 478.354893][T12692] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 478.358405][T12692] vhci_hcd vhci_hcd.0: Device attached [ 478.378252][ T39] audit: type=1400 audit(1722028895.911:1008): avc: denied { create } for pid=12688 comm="syz.0.2258" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_nflog_socket permissive=1 [ 478.471412][ T35] vhci_hcd: vhci_device speed not set [ 478.551340][ T35] usb 13-1: new full-speed USB device number 2 using vhci_hcd [ 479.044236][T12693] vhci_hcd: connection closed [ 479.053988][T12690] vhci_hcd: connection reset by peer [ 479.079735][ T1106] team0 (unregistering): Port device team_slave_1 removed [ 479.083787][ T204] vhci_hcd: stop threads [ 479.086886][ T204] vhci_hcd: release socket [ 479.111374][ T204] vhci_hcd: disconnect device [ 479.121692][ T204] vhci_hcd: stop threads [ 479.123505][ T204] vhci_hcd: release socket [ 479.125016][ T204] vhci_hcd: disconnect device [ 479.215155][ T1106] team0 (unregistering): Port device team_slave_0 removed [ 479.236334][ T5346] Bluetooth: hci2: command tx timeout [ 479.306956][ T5346] Bluetooth: hci4: command tx timeout [ 479.623973][ T39] audit: type=1400 audit(1722028897.151:1009): avc: denied { setopt } for pid=12697 comm="syz.0.2260" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 480.297153][T12590] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 480.435401][T12590] team0: Port device team_slave_0 added [ 480.439851][T12590] team0: Port device team_slave_1 added [ 480.561840][T12590] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 480.565004][T12590] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 480.578739][T12590] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 480.585487][T12590] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 480.588963][T12590] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 480.611495][T12590] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 480.825846][T12590] hsr_slave_0: entered promiscuous mode [ 480.836238][T12590] hsr_slave_1: entered promiscuous mode [ 480.841565][T12590] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 480.844836][T12590] Cannot create hsr debugfs directory [ 481.059014][ T4764] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 481.082516][ T4764] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 481.088140][ T4764] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 481.104859][ T4764] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 481.112301][ T4764] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 481.118694][ T4764] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 481.301346][ T5346] Bluetooth: hci2: command tx timeout [ 481.379394][ T45] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 481.496212][T12675] chnl_net:caif_netlink_parms(): no params data found [ 481.525090][ T45] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 481.723821][ T45] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 481.897838][ T45] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 481.922318][T12675] bridge0: port 1(bridge_slave_0) entered blocking state [ 481.925519][T12675] bridge0: port 1(bridge_slave_0) entered disabled state [ 481.928621][T12675] bridge_slave_0: entered allmulticast mode [ 481.933352][T12675] bridge_slave_0: entered promiscuous mode [ 481.938726][T12675] bridge0: port 2(bridge_slave_1) entered blocking state [ 481.942176][T12675] bridge0: port 2(bridge_slave_1) entered disabled state [ 481.945188][T12675] bridge_slave_1: entered allmulticast mode [ 481.949112][T12675] bridge_slave_1: entered promiscuous mode [ 482.057054][T12675] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 482.065310][T12675] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 482.140020][T12675] team0: Port device team_slave_0 added [ 482.160065][T12725] chnl_net:caif_netlink_parms(): no params data found [ 482.168044][T12675] team0: Port device team_slave_1 added [ 482.287040][T12675] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 482.290212][T12675] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 482.301859][T12675] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 482.306542][T12675] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 482.308866][T12675] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 482.319603][T12675] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 482.464037][T12590] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 482.502902][T12675] hsr_slave_0: entered promiscuous mode [ 482.506279][T12675] hsr_slave_1: entered promiscuous mode [ 482.509503][T12675] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 482.518281][T12675] Cannot create hsr debugfs directory [ 482.603404][T12590] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 482.670965][ T45] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 482.688832][T12725] bridge0: port 1(bridge_slave_0) entered blocking state [ 482.692516][T12725] bridge0: port 1(bridge_slave_0) entered disabled state [ 482.695821][T12725] bridge_slave_0: entered allmulticast mode [ 482.699919][T12725] bridge_slave_0: entered promiscuous mode [ 482.705406][T12590] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 482.712065][T12590] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 482.772428][T12725] bridge0: port 2(bridge_slave_1) entered blocking state [ 482.776269][T12725] bridge0: port 2(bridge_slave_1) entered disabled state [ 482.779238][T12725] bridge_slave_1: entered allmulticast mode [ 482.791889][T12725] bridge_slave_1: entered promiscuous mode [ 482.895899][ T45] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 482.964359][T12725] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 482.974992][T12725] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 483.015318][ T45] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 483.166150][ T45] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 483.182989][T12725] team0: Port device team_slave_0 added [ 483.198110][T12725] team0: Port device team_slave_1 added [ 483.232633][ T5346] Bluetooth: hci1: command tx timeout [ 483.258899][T12725] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 483.263994][T12725] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 483.274367][T12725] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 483.332026][T12725] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 483.335331][T12725] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 483.346771][T12725] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 483.381739][ T5346] Bluetooth: hci2: command tx timeout [ 483.460201][T12725] hsr_slave_0: entered promiscuous mode [ 483.469511][T12725] hsr_slave_1: entered promiscuous mode [ 483.472647][T12725] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 483.475704][T12725] Cannot create hsr debugfs directory [ 483.653207][T12590] 8021q: adding VLAN 0 to HW filter on device bond0 [ 483.701671][ T35] vhci_hcd: vhci_device speed not set [ 483.704359][ T45] –eth0_vlan: left allmulticast mode [ 483.706603][ T45] –eth0_vlan: left promiscuous mode [ 483.708988][ T45] bridge0: port 2(–eth0_vlan) entered disabled state [ 483.714636][ T45] bridge_slave_0: left allmulticast mode [ 483.716931][ T45] bridge_slave_0: left promiscuous mode [ 483.719541][ T45] bridge0: port 1(bridge_slave_0) entered disabled state [ 483.728682][ T45] bridge_slave_1: left allmulticast mode [ 483.731195][ T45] bridge_slave_1: left promiscuous mode [ 483.735573][ T45] bridge0: port 2(bridge_slave_1) entered disabled state [ 483.748964][ T45] bridge_slave_0: left allmulticast mode [ 483.752268][ T45] bridge_slave_0: left promiscuous mode [ 483.754895][ T45] bridge0: port 1(bridge_slave_0) entered disabled state [ 484.664747][ T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 484.676102][ T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 484.683658][ T45] bond0 (unregistering): Released all slaves [ 484.812616][ T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 484.822165][ T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 484.829906][ T45] bond0 (unregistering): Released all slaves [ 485.047798][T12590] 8021q: adding VLAN 0 to HW filter on device team0 [ 485.063257][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 485.066470][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 485.092704][ T833] bridge0: port 2(bridge_slave_1) entered blocking state [ 485.095847][ T833] bridge0: port 2(bridge_slave_1) entered forwarding state [ 485.307556][ T5346] Bluetooth: hci1: command tx timeout [ 485.461748][ T5346] Bluetooth: hci2: command tx timeout [ 485.539347][ T39] audit: type=1326 audit(1722028903.071:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12763 comm="syz.0.2271" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x7fc00000 [ 485.551405][ T39] audit: type=1326 audit(1722028903.071:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12763 comm="syz.0.2271" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x7fc00000 [ 485.659954][T12590] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 485.839580][T12590] veth0_vlan: entered promiscuous mode [ 485.853021][T12590] veth1_vlan: entered promiscuous mode [ 485.889232][T12590] veth0_macvtap: entered promiscuous mode [ 485.909339][T12590] veth1_macvtap: entered promiscuous mode [ 485.933692][ T45] hsr_slave_0: left promiscuous mode [ 485.936906][ T45] hsr_slave_1: left promiscuous mode [ 485.945379][ T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 485.948625][ T45] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 485.962704][ T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 485.965841][ T45] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 486.003880][ T45] hsr_slave_0: left promiscuous mode [ 486.008152][ T45] hsr_slave_1: left promiscuous mode [ 486.041627][ T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 486.044893][ T45] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 486.048875][ T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 486.052694][ T45] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 486.186747][ T45] veth1_macvtap: left promiscuous mode [ 486.189460][ T45] veth0_macvtap: left promiscuous mode [ 486.192352][ T45] veth1_vlan: left promiscuous mode [ 486.194933][ T45] veth0_vlan: left promiscuous mode [ 486.202193][ T45] veth1_macvtap: left promiscuous mode [ 486.204883][ T45] veth0_macvtap: left promiscuous mode [ 486.207604][ T45] veth1_vlan: left promiscuous mode [ 486.210604][ T45] veth0_vlan: left promiscuous mode [ 487.381626][ T5346] Bluetooth: hci1: command tx timeout [ 487.480029][ T45] team0 (unregistering): Port device team_slave_1 removed [ 487.616239][ T45] team0 (unregistering): Port device team_slave_0 removed [ 489.474500][ T5346] Bluetooth: hci1: command tx timeout [ 489.596727][ T45] team0 (unregistering): Port device team_slave_1 removed [ 489.728509][ T45] team0 (unregistering): Port device team_slave_0 removed [ 490.701269][T12801] netlink: 2036 bytes leftover after parsing attributes in process `syz.0.2273'. [ 490.705057][T12801] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2273'. [ 490.804961][T12590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 490.809567][T12590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 490.815495][T12590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 490.820795][T12590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 490.825754][T12590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 490.830325][T12590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 490.836026][T12590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 490.840524][T12590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 490.854697][T12590] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 490.872450][T12590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 490.877002][T12590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 490.881051][T12590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 490.886637][T12590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 490.896524][T12590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 490.900900][T12590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 490.908223][T12590] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 490.913327][T12590] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 490.935331][T12590] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 490.938703][T12675] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 490.969282][T12675] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 490.985028][T12590] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 490.989135][T12590] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 490.998608][T12590] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 491.009927][T12590] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 491.016924][T12675] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 491.028863][T12675] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 491.214169][T12725] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 491.267714][T12725] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 491.275321][ T1123] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 491.278698][ T1123] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 491.298723][T12725] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 491.307657][T12725] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 491.341432][ T204] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 491.344779][ T204] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 491.547560][T12675] 8021q: adding VLAN 0 to HW filter on device bond0 [ 491.616903][T12725] 8021q: adding VLAN 0 to HW filter on device bond0 [ 491.624555][ C2] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 491.652922][T12675] 8021q: adding VLAN 0 to HW filter on device team0 [ 491.683897][ T5341] bridge0: port 1(bridge_slave_0) entered blocking state [ 491.686700][ T5341] bridge0: port 1(bridge_slave_0) entered forwarding state [ 491.697835][ T5341] bridge0: port 2(bridge_slave_1) entered blocking state [ 491.701367][ T5341] bridge0: port 2(bridge_slave_1) entered forwarding state [ 491.731884][T12725] 8021q: adding VLAN 0 to HW filter on device team0 [ 491.761298][T10918] bridge0: port 1(bridge_slave_0) entered blocking state [ 491.764568][T10918] bridge0: port 1(bridge_slave_0) entered forwarding state [ 491.791163][T10918] bridge0: port 2(bridge_slave_1) entered blocking state [ 491.794312][T10918] bridge0: port 2(bridge_slave_1) entered forwarding state [ 491.797218][T12833] input: syz1 as /devices/virtual/input/input20 [ 491.818757][T12675] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 491.992396][T12675] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 492.043550][T12675] veth0_vlan: entered promiscuous mode [ 492.055770][T12675] veth1_vlan: entered promiscuous mode [ 492.085185][T12675] veth0_macvtap: entered promiscuous mode [ 492.095448][T12675] veth1_macvtap: entered promiscuous mode [ 492.116580][T12675] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 492.120326][T12675] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.125142][T12675] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 492.128500][T12675] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.131798][T12675] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 492.135497][T12675] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.139146][T12675] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 492.144783][T12675] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.148519][T12675] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 492.153057][T12675] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.158676][T12675] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 492.167619][T12675] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.171931][T12675] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.175540][T12675] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.179434][T12675] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.184179][T12675] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.188057][T12675] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.191783][T12675] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.195599][T12675] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.199193][T12675] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.204088][T12675] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.208928][T12675] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 492.220843][T12725] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 492.242449][T12675] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.245799][T12675] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.249031][T12675] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.252634][T12675] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.321957][ T1106] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 492.328696][ T1106] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 492.374398][T12725] veth0_vlan: entered promiscuous mode [ 492.382598][ T1123] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 492.384727][T12725] veth1_vlan: entered promiscuous mode [ 492.385655][ T1123] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 492.423256][T12725] veth0_macvtap: entered promiscuous mode [ 492.430222][T12725] veth1_macvtap: entered promiscuous mode [ 492.448003][T12849] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=12849 comm=syz.3.2252 [ 492.450191][T12725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 492.463015][T12725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.467540][T12725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 492.479997][T12725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.486745][T12725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 492.491154][T12725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.495402][T12725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 492.499758][T12725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.504982][T12725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 492.509262][T12725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.514379][T12725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 492.518691][T12725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.525421][T12725] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 492.538719][T12725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.544342][T12725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.548970][T12725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.559168][T12725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.564937][T12725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.569332][T12725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.576761][T12725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.580635][T12725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.584333][T12725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.588344][T12725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.601209][T12725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 492.605749][T12725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 492.612071][T12725] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 492.618810][T12725] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.623219][T12725] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.627225][T12725] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.632182][T12725] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 492.728471][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 492.732145][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 492.763662][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 492.767095][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 493.165015][ C0] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 493.764285][T12881] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2289'. [ 493.978514][T12887] IPv6: Can't replace route, no match found [ 493.984448][ T39] audit: type=1400 audit(1722028911.521:1012): avc: denied { getopt } for pid=12886 comm="syz.3.2292" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 494.272831][T12903] netlink: 'syz.0.2299': attribute type 1 has an invalid length. [ 494.280701][T12904] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2297'. [ 494.286878][T12903] netlink: 244 bytes leftover after parsing attributes in process `syz.0.2299'. [ 494.668914][T12908] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2300'. [ 496.013019][ T39] audit: type=1326 audit(1722028913.551:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12928 comm="syz.0.2308" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x7fc00000 [ 496.024659][ T39] audit: type=1326 audit(1722028913.551:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12928 comm="syz.0.2308" exe="/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f69af577299 code=0x7fc00000 [ 496.495579][ T39] audit: type=1400 audit(1722028914.031:1015): avc: denied { bind } for pid=12936 comm="syz.2.2311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 496.633981][ T39] audit: type=1326 audit(1722028914.171:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12928 comm="syz.0.2308" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x7fc00000 [ 496.650478][ T39] audit: type=1326 audit(1722028914.171:1017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12928 comm="syz.0.2308" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f69af577299 code=0x7fc00000 [ 496.809817][T12942] netlink: 'syz.0.2313': attribute type 1 has an invalid length. [ 496.815462][T12942] netlink: 244 bytes leftover after parsing attributes in process `syz.0.2313'. [ 496.887400][T12945] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2314'. [ 497.227699][T12951] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2316'. [ 498.524419][T12973] netlink: 'syz.1.2322': attribute type 1 has an invalid length. [ 498.527677][T12973] netlink: 244 bytes leftover after parsing attributes in process `syz.1.2322'. [ 498.667620][T12976] devpts: called with bogus options [ 498.667693][ T39] audit: type=1400 audit(1722028916.201:1018): avc: denied { remount } for pid=12975 comm="syz.1.2323" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1 [ 498.834462][T12980] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2326'. [ 500.080825][T13010] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2333'. [ 500.098017][T13010] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2333'. [ 500.373440][T12997] dvmrp0: entered allmulticast mode [ 500.414685][T12997] dvmrp0: left allmulticast mode [ 501.613306][T13034] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2342'. [ 501.655135][T13034] team1: Mode changed to "random" [ 501.670152][T13034] team1: Mode changed to "activebackup" [ 501.940627][ T39] audit: type=1400 audit(1722028919.471:1019): avc: denied { getopt } for pid=13041 comm="syz.3.2346" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 502.318977][ T39] audit: type=1400 audit(1722028919.851:1020): avc: denied { connect } for pid=13050 comm="syz.1.2349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 502.588117][T13061] ieee802154 phy0 wpan0: encryption failed: -22 [ 503.131786][ T39] audit: type=1400 audit(1722028920.671:1021): avc: denied { setattr } for pid=13073 comm="syz.0.2356" path="/dev/uinput" dev="devtmpfs" ino=866 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 504.121714][T13098] ieee802154 phy0 wpan0: encryption failed: -22 [ 504.482961][T13105] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2369'. [ 504.926037][T13109] Process accounting resumed [ 504.967176][T13110] usb usb8: usbfs: process 13110 (syz.1.2371) did not claim interface 0 before use [ 504.988864][T13110] netlink: 136 bytes leftover after parsing attributes in process `syz.1.2371'. [ 505.485286][ T39] audit: type=1400 audit(1722028923.021:1022): avc: denied { ioctl } for pid=13116 comm="syz.2.2374" path="socket:[67219]" dev="sockfs" ino=67219 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 506.874102][ C3] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 507.383827][ T1381] ieee802154 phy0 wpan0: encryption failed: -22 [ 507.919836][T13150] Process accounting resumed [ 507.974482][T13155] usb usb8: usbfs: process 13155 (syz.2.2384) did not claim interface 0 before use [ 507.981503][T13155] netlink: 136 bytes leftover after parsing attributes in process `syz.2.2384'. [ 508.171398][T13164] openvswitch: netlink: Missing key (keys=20040, expected=100) [ 509.249125][T13192] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2398'. [ 511.615231][T13241] input: syz0 as /devices/virtual/input/input23 [ 512.275135][T13245] ecryptfs_parse_options: eCryptfs: unrecognized option [&@] [ 512.278012][T13245] ecryptfs_parse_options: eCryptfs: unrecognized option [ention_end] [ 512.280908][T13245] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 512.286336][T13245] Error parsing options; rc = [-22] [ 512.521472][T13250] netlink: 'syz.3.2418': attribute type 1 has an invalid length. [ 512.531697][T13250] netlink: 9316 bytes leftover after parsing attributes in process `syz.3.2418'. [ 512.541355][T13250] netlink: 'syz.3.2418': attribute type 1 has an invalid length. [ 513.135248][T13252] dvmrp0: entered allmulticast mode [ 513.211971][T13252] dvmrp0: left allmulticast mode [ 514.472886][T13270] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2424'. [ 514.476470][T13270] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2424'. [ 516.373224][T13290] netlink: 'syz.1.2430': attribute type 1 has an invalid length. [ 516.376816][T13290] netlink: 9316 bytes leftover after parsing attributes in process `syz.1.2430'. [ 516.380913][T13290] netlink: 'syz.1.2430': attribute type 1 has an invalid length. [ 517.102297][T13307] binder: BC_ACQUIRE_RESULT not supported [ 517.156560][T13307] binder: 13306:13307 ioctl c0306201 20000500 returned -22 [ 517.811464][ T39] audit: type=1400 audit(1722028935.331:1023): avc: denied { create } for pid=13311 comm="syz.3.2437" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 517.831333][ T39] audit: type=1400 audit(1722028935.351:1024): avc: denied { getopt } for pid=13311 comm="syz.3.2437" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 518.202479][T13314] kvm_intel: kvm [13313]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x1d9) = 0xace000000fb [ 518.208391][T13314] kvm: kvm [13313]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x187) = 0xbce000000f3 [ 518.308392][ T39] audit: type=1326 audit(1722028935.841:1025): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13311 comm="syz.3.2437" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe60cd77299 code=0x0 [ 518.323294][ T5346] Bluetooth: hci1: Received unexpected HCI Event 0x00 [ 518.410295][T13314] kvm: kvm [13313]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x186) = 0x22df000000b9 [ 518.437827][ T5346] Bluetooth: Unknown BR/EDR signaling command 0x0c [ 518.442820][ T5346] Bluetooth: Wrong link type (-22) [ 518.446781][ T5346] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 518.450138][ T5346] Bluetooth: Wrong link type (-22) [ 518.452709][ T5346] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 518.456901][T13329] input: syz0 as /devices/virtual/input/input24 [ 518.456902][ T5346] Bluetooth: Wrong link type (-22) [ 518.461920][ T5346] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 518.465233][ T5346] Bluetooth: Wrong link type (-22) [ 518.467686][ T5346] Bluetooth: Unknown BR/EDR signaling command 0x11 [ 518.470495][ T5346] Bluetooth: Wrong link type (-22) [ 519.052399][T13340] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2447'. [ 519.154607][T13337] Process accounting resumed [ 519.160348][T13338] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2445'. [ 519.165654][T13338] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2445'. [ 519.211886][T13341] usb usb8: usbfs: process 13341 (syz.3.2446) did not claim interface 0 before use [ 519.217804][T13341] netlink: 136 bytes leftover after parsing attributes in process `syz.3.2446'. [ 519.231299][T13344] netlink: 'syz.0.2448': attribute type 1 has an invalid length. [ 519.234907][T13344] netlink: 9316 bytes leftover after parsing attributes in process `syz.0.2448'. [ 519.239083][T13344] netlink: 'syz.0.2448': attribute type 1 has an invalid length. [ 520.783737][T13365] binder: BC_ACQUIRE_RESULT not supported [ 520.786234][T13365] binder: 13364:13365 ioctl c0306201 20000500 returned -22 [ 521.248396][ T39] audit: type=1400 audit(1722028938.781:1026): avc: denied { accept } for pid=13368 comm="syz.0.2456" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 521.363357][T13372] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2457'. [ 521.684705][ T39] audit: type=1400 audit(1722028939.221:1027): avc: denied { getopt } for pid=13377 comm="syz.2.2459" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 522.514892][T13385] ecryptfs_parse_options: eCryptfs: unrecognized option [&@] [ 522.518294][T13385] ecryptfs_parse_options: eCryptfs: unrecognized option [ention_end] [ 522.522273][T13385] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 522.532073][ T39] audit: type=1326 audit(1722028940.061:1028): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13390 comm="syz.0.2466" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x0 [ 522.542210][T13385] Error parsing options; rc = [-22] [ 523.124823][T13399] Process accounting resumed [ 523.172904][T13400] usb usb8: usbfs: process 13400 (syz.3.2468) did not claim interface 0 before use [ 523.191840][T13400] netlink: 136 bytes leftover after parsing attributes in process `syz.3.2468'. [ 523.430133][T13414] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2472'. [ 523.433697][T13414] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2472'. [ 525.684657][ T39] audit: type=1400 audit(1722028943.221:1029): avc: denied { ioctl } for pid=13433 comm="syz.2.2481" path="/50/file0" dev="tmpfs" ino=288 ioctlcmd=0x1275 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 525.840946][ T39] audit: type=1326 audit(1722028943.371:1030): auid=4294967295 uid=0 gid=60929 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13431 comm="syz.0.2480" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x0 [ 525.849222][ C3] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 526.831330][T13451] input: syz0 as /devices/virtual/input/input25 [ 527.230892][T13461] ecryptfs_parse_options: eCryptfs: unrecognized option [&@] [ 527.235783][T13461] ecryptfs_parse_options: eCryptfs: unrecognized option [ention_end] [ 527.239734][T13461] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 527.246966][T13461] Error parsing options; rc = [-22] [ 527.617748][ C3] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 528.993679][ T39] audit: type=1400 audit(1722028946.521:1031): avc: denied { mount } for pid=13488 comm="syz.0.2500" name="/" dev="9p" ino=37617902 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 529.047670][ T39] audit: type=1400 audit(1722028946.581:1032): avc: denied { getattr } for pid=13488 comm="syz.0.2500" name="/" dev="9p" ino=37617902 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 529.061929][T13489] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 529.088385][ T39] audit: type=1400 audit(1722028946.621:1033): avc: denied { read } for pid=13488 comm="syz.0.2500" name="file0" dev="overlay" ino=37617908 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 529.106016][ T39] audit: type=1400 audit(1722028946.621:1034): avc: denied { open } for pid=13488 comm="syz.0.2500" path="/388/bus/file0" dev="overlay" ino=37617908 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 529.118528][ T39] audit: type=1400 audit(1722028946.651:1035): avc: denied { write } for pid=13488 comm="syz.0.2500" name="file0" dev="overlay" ino=37617908 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 529.137521][ T39] audit: type=1400 audit(1722028946.661:1036): avc: denied { setattr } for pid=13488 comm="syz.0.2500" name="#2138" dev="tmpfs" ino=2138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 529.150967][ T39] audit: type=1400 audit(1722028946.661:1037): avc: denied { link } for pid=13488 comm="syz.0.2500" name="#2138" dev="tmpfs" ino=2138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 529.164939][ T39] audit: type=1804 audit(1722028946.661:1038): pid=13489 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz.0.2500" name="/newroot/388/bus/file0" dev="overlay" ino=37617908 res=1 errno=0 [ 530.432494][ T7638] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 530.622597][ T7638] usb 6-1: Using ep0 maxpacket: 16 [ 530.627375][ T7638] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 7 [ 530.640709][ T7638] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 530.646265][ T7638] usb 6-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00 [ 530.650385][ T7638] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 530.657356][ T7638] usb 6-1: config 0 descriptor?? [ 530.905837][T13523] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2512'. [ 530.960159][T13523] team0: Port device bridge1 added [ 531.201254][ T5346] Bluetooth: hci2: Received unexpected HCI Event 0x00 [ 531.336228][ T5346] Bluetooth: Unknown BR/EDR signaling command 0x0c [ 531.339289][ T5346] Bluetooth: Wrong link type (-22) [ 531.344089][ T5346] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 531.347063][ T5346] Bluetooth: Wrong link type (-22) [ 531.349232][T13531] input: syz0 as /devices/virtual/input/input26 [ 531.352093][ T5346] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 531.354994][ T5346] Bluetooth: Wrong link type (-22) [ 531.357541][ T5346] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 531.360463][ T5346] Bluetooth: Wrong link type (-22) [ 531.363637][ T5346] Bluetooth: Unknown BR/EDR signaling command 0x11 [ 531.366565][ T5346] Bluetooth: Wrong link type (-22) [ 531.369215][ T5346] Bluetooth: hci2: link tx timeout [ 531.373347][ T5346] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa [ 532.083925][ T39] kauditd_printk_skb: 3 callbacks suppressed [ 532.083941][ T39] audit: type=1326 audit(1722028949.621:1042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13549 comm="syz.3.2522" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe60cd77299 code=0x7ffc0000 [ 532.098825][ T39] audit: type=1326 audit(1722028949.621:1043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13549 comm="syz.3.2522" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe60cd77299 code=0x7ffc0000 [ 532.109159][ T39] audit: type=1326 audit(1722028949.631:1044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13549 comm="syz.3.2522" exe="/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fe60cd77299 code=0x7ffc0000 [ 532.124241][ T39] audit: type=1326 audit(1722028949.631:1045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13549 comm="syz.3.2522" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe60cd77299 code=0x7ffc0000 [ 532.134915][ T39] audit: type=1326 audit(1722028949.631:1046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13549 comm="syz.3.2522" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe60cd77299 code=0x7ffc0000 [ 532.162421][ T39] audit: type=1326 audit(1722028949.651:1047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13549 comm="syz.3.2522" exe="/syz-executor" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7fe60cd77299 code=0x7ffc0000 [ 532.191966][ T39] audit: type=1326 audit(1722028949.651:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13549 comm="syz.3.2522" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe60cd77299 code=0x7ffc0000 [ 532.202000][ T39] audit: type=1326 audit(1722028949.651:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13549 comm="syz.3.2522" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe60cd77299 code=0x7ffc0000 [ 532.242554][ T58] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 532.348328][T13543] ecryptfs_parse_options: eCryptfs: unrecognized option [&@] [ 532.358773][T13543] ecryptfs_parse_options: eCryptfs: unrecognized option [ention_end] [ 532.364304][T13543] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 532.370957][T13543] Error parsing options; rc = [-22] [ 532.426650][ T58] usb 5-1: Using ep0 maxpacket: 8 [ 532.447360][ T58] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 532.452434][ T58] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 532.464835][ T58] usb 5-1: string descriptor 0 read error: -22 [ 532.467698][ T58] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 532.473719][ T58] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 532.485997][ T58] usb 5-1: 0:2 : does not exist [ 532.619578][ T5346] Bluetooth: hci2: unexpected event for opcode 0x1407 [ 533.012191][ T35] usb 5-1: USB disconnect, device number 12 [ 533.263905][ T39] audit: type=1400 audit(1722028950.801:1050): avc: denied { map } for pid=13558 comm="syz.3.2524" path="/dev/sg0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 533.283688][ T39] audit: type=1400 audit(1722028950.801:1051): avc: denied { execute } for pid=13558 comm="syz.3.2524" path="/dev/sg0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 533.348662][ T7638] usbhid 6-1:0.0: can't add hid device: -71 [ 533.351930][ T7638] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 533.362879][ T7638] usb 6-1: USB disconnect, device number 9 [ 533.821654][T13573] input: syz0 as /devices/virtual/input/input27 [ 535.293167][T13621] xt_cgroup: invalid path, errno=-2 [ 535.799858][T13646] tipc: Started in network mode [ 535.802232][T13646] tipc: Node identity e0000001, cluster identity 4711 [ 535.805306][T13646] tipc: Enabling of bearer rejected, failed to enable media [ 536.289205][T13655] xt_cgroup: invalid path, errno=-2 [ 536.357336][T13657] input: syz1 as /devices/virtual/input/input28 [ 536.681441][ T4764] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 536.686336][ T4764] Bluetooth: hci2: Injecting HCI hardware error event [ 536.693068][ T4764] Bluetooth: hci2: hardware error 0x00 [ 536.991287][T13683] netlink: 'syz.3.2571': attribute type 21 has an invalid length. [ 537.000308][T13683] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2571'. [ 537.027043][ T5341] usb 7-1: new high-speed USB device number 12 using dummy_hcd [ 537.081412][ T7004] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 537.221338][ T5341] usb 7-1: Using ep0 maxpacket: 8 [ 537.227330][ T5341] usb 7-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 537.232901][ T5341] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 537.246907][ T5341] usb 7-1: string descriptor 0 read error: -22 [ 537.249828][ T5341] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 537.258509][ T5341] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 537.262596][ T7004] usb 6-1: Using ep0 maxpacket: 32 [ 537.267489][ T7004] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 537.270746][ T5341] usb 7-1: 0:2 : does not exist [ 537.274371][ T7004] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 537.274537][ T7004] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 537.277899][ T7004] usb 6-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22 [ 537.289282][ T7004] usb 6-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131 [ 537.293625][ T7004] usb 6-1: Product: syz [ 537.296588][ T7004] usb 6-1: Manufacturer: syz [ 537.308895][ T7004] usb 6-1: SerialNumber: syz [ 537.318922][ T7004] input: appletouch as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:1.0/input/input29 [ 537.375217][T13687] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2572'. [ 537.379178][T13687] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2572'. [ 537.550333][ T7004] usb 6-1: USB disconnect, device number 10 [ 537.576799][ T7004] appletouch 6-1:1.0: input: appletouch disconnected [ 537.654990][ T5383] usb 7-1: USB disconnect, device number 12 [ 537.774605][ T39] kauditd_printk_skb: 15 callbacks suppressed [ 537.774618][ T39] audit: type=1400 audit(1722028955.311:1067): avc: denied { shutdown } for pid=13689 comm="syz.0.2573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 538.205064][T13698] netlink: 'syz.0.2576': attribute type 21 has an invalid length. [ 538.208860][T13698] netlink: 128 bytes leftover after parsing attributes in process `syz.0.2576'. [ 538.221642][T13698] netlink: 3 bytes leftover after parsing attributes in process `syz.0.2576'. [ 538.336843][T13703] tipc: Started in network mode [ 538.339150][T13703] tipc: Node identity e0000001, cluster identity 4711 [ 538.342645][T13703] tipc: Enabling of bearer rejected, failed to enable media [ 538.896327][ T4764] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 540.180515][T13732] ecryptfs_parse_options: eCryptfs: unrecognized option [&@] [ 540.185815][T13732] ecryptfs_parse_options: eCryptfs: unrecognized option [ention_end] [ 540.203366][T13732] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 540.228253][T13732] Error parsing options; rc = [-22] [ 540.335697][T13746] netlink: 'syz.3.2594': attribute type 21 has an invalid length. [ 540.345448][T13746] netlink: 128 bytes leftover after parsing attributes in process `syz.3.2594'. [ 540.357738][T13746] netlink: 3 bytes leftover after parsing attributes in process `syz.3.2594'. [ 540.427354][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 540.452840][T13749] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.2595'. [ 540.637118][T13756] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 540.651596][ T39] audit: type=1400 audit(1722028958.181:1068): avc: denied { name_bind } for pid=13755 comm="syz.1.2598" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1 [ 540.664075][T13756] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 540.863554][ T39] audit: type=1400 audit(1722028958.401:1069): avc: denied { listen } for pid=13755 comm="syz.1.2598" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 541.580171][ T57] kernel write not supported for file /227/attr/keycreate (pid: 57 comm: kworker/3:1) [ 541.832088][T13775] tipc: Started in network mode [ 541.834162][T13775] tipc: Node identity e0000001, cluster identity 4711 [ 541.838936][T13775] tipc: Enabling of bearer rejected, failed to enable media [ 542.732339][ T833] usb 8-1: new high-speed USB device number 8 using dummy_hcd [ 542.942136][ T833] usb 8-1: Using ep0 maxpacket: 32 [ 542.949364][ T833] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 542.955157][ T833] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 542.959170][ T833] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 542.970238][ T833] usb 8-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22 [ 542.975469][ T833] usb 8-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131 [ 542.979739][ T833] usb 8-1: Product: syz [ 542.988410][ T833] usb 8-1: Manufacturer: syz [ 542.990618][ T833] usb 8-1: SerialNumber: syz [ 543.038486][ T833] input: appletouch as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:1.0/input/input30 [ 543.280215][ T7004] usb 8-1: USB disconnect, device number 8 [ 543.430303][ T7004] appletouch 8-1:1.0: input: appletouch disconnected [ 544.272968][T13819] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2620'. [ 544.776711][T13834] syz.1.2625 (13834): attempted to duplicate a private mapping with mremap. This is not supported. [ 544.829987][T13834] vxcan2: entered allmulticast mode [ 545.000008][T13838] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2627'. [ 545.083415][ T39] audit: type=1400 audit(1722028962.621:1070): avc: denied { bind } for pid=13837 comm="syz.0.2627" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 545.101722][ T39] audit: type=1400 audit(1722028962.631:1071): avc: denied { listen } for pid=13837 comm="syz.0.2627" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 545.118372][T13844] PKCS7: Unknown OID: [5] 2.21.48.47.46.46.47.102.105.108.101.48.0.0.0.0.0. [ 545.126549][T13844] PKCS7: Only support pkcs7_signedData type [ 545.679575][T13873] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2642'. [ 546.181808][T13867] ecryptfs_parse_options: eCryptfs: unrecognized option [&@] [ 546.185278][T13867] ecryptfs_parse_options: eCryptfs: unrecognized option [ention_end] [ 546.188848][T13867] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 546.200990][T13867] Error parsing options; rc = [-22] [ 546.394696][ T39] audit: type=1400 audit(1722028963.931:1072): avc: denied { create } for pid=13902 comm="syz.0.2650" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 546.431432][ T39] audit: type=1400 audit(1722028963.961:1073): avc: denied { write } for pid=13902 comm="syz.0.2650" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 546.443008][ T39] audit: type=1400 audit(1722028963.961:1074): avc: denied { nlmsg_write } for pid=13902 comm="syz.0.2650" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 547.159036][T13932] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 547.173786][T13932] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 547.352013][ T39] audit: type=1400 audit(1722028964.891:1075): avc: denied { listen } for pid=13931 comm="syz.3.2663" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 547.364814][ T39] audit: type=1400 audit(1722028964.901:1076): avc: denied { bind } for pid=13931 comm="syz.3.2663" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 547.626718][T13941] vxcan2: entered allmulticast mode [ 548.138566][ T39] audit: type=1400 audit(1722028965.671:1077): avc: denied { ioctl } for pid=13953 comm="syz.1.2671" path="socket:[75813]" dev="sockfs" ino=75813 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 549.509628][T13971] vxcan2: entered allmulticast mode [ 550.221447][T13997] netlink: 80 bytes leftover after parsing attributes in process `syz.1.2684'. [ 550.508659][T14010] vxcan2: entered allmulticast mode [ 550.778060][ T39] audit: type=1400 audit(1722028968.301:1078): avc: denied { nlmsg_write } for pid=14018 comm="syz.3.2693" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 551.275768][T14035] ecryptfs_parse_options: eCryptfs: unrecognized option [&@] [ 551.281363][T14035] ecryptfs_parse_options: eCryptfs: unrecognized option [ention_end] [ 551.285111][T14035] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 551.290654][T14035] Error parsing options; rc = [-22] [ 552.144744][T14076] ebt_limit: overflow, try lower: 12058624/0 [ 552.604179][T14092] netlink: 80 bytes leftover after parsing attributes in process `syz.3.2722'. [ 553.326532][T14112] ptrace attach of "/syz-executor exec"[8516] was attempted by ""[14112] [ 553.686287][T14116] 9pnet_fd: Insufficient options for proto=fd [ 554.073906][T14123] input: syz1 as /devices/virtual/input/input31 [ 554.081261][ C3] vkms_vblank_simulate: vblank timer overrun [ 554.481374][T14133] ptrace attach of "/syz-executor exec"[12675] was attempted by "/syz-executor exec"[14133] [ 555.135648][T14138] ebt_limit: overflow, try lower: 12058624/0 [ 555.696644][T14151] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.2742'. [ 555.785231][T14153] 9pnet_fd: Insufficient options for proto=fd [ 556.377523][T14168] ptrace attach of "/syz-executor exec"[12590] was attempted by ""[14168] [ 556.437279][T14169] input: syz0 as /devices/virtual/input/input32 [ 556.612245][T14180] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.2753'. [ 556.921598][T14186] kvm: vcpu 0: requested 32 ns lapic timer period limited to 200000 ns [ 557.022711][T14186] kvm: pic: non byte write [ 557.409154][T14196] netlink: 'syz.0.2759': attribute type 21 has an invalid length. [ 557.735057][ T39] audit: type=1400 audit(1722028975.271:1079): avc: denied { remount } for pid=14198 comm="syz.2.2761" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1 [ 558.368325][T14197] ecryptfs_parse_options: eCryptfs: unrecognized option [&@] [ 558.373086][T14197] ecryptfs_parse_options: eCryptfs: unrecognized option [ention_end] [ 558.378037][T14197] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 558.385942][T14197] Error parsing options; rc = [-22] [ 558.436592][ T39] audit: type=1326 audit(1722028975.971:1080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14202 comm="syz.0.2762" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x7fc00000 [ 558.471759][ T39] audit: type=1326 audit(1722028975.971:1081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14202 comm="syz.0.2762" exe="/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f69af577299 code=0x7fc00000 [ 558.504739][ T39] audit: type=1326 audit(1722028975.971:1082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14202 comm="syz.0.2762" exe="/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f69af5772d3 code=0x7fc00000 [ 558.526227][ T39] audit: type=1326 audit(1722028975.971:1083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14202 comm="syz.0.2762" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x7fc00000 [ 558.588668][ T39] audit: type=1326 audit(1722028975.971:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14202 comm="syz.0.2762" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x7fc00000 [ 558.623750][ T39] audit: type=1326 audit(1722028975.971:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14202 comm="syz.0.2762" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x7fc00000 [ 558.649440][ T39] audit: type=1326 audit(1722028975.971:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14202 comm="syz.0.2762" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x7fc00000 [ 558.684327][ T39] audit: type=1326 audit(1722028975.971:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14202 comm="syz.0.2762" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69af577299 code=0x7fc00000 [ 558.706916][ T39] audit: type=1400 audit(1722028976.061:1088): avc: denied { unmount } for pid=8516 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1 [ 558.807210][T14224] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.2767'. [ 559.303840][T14235] program syz.0.2771 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 560.891745][T14261] program syz.2.2781 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 560.927825][T14263] netlink: 'syz.0.2782': attribute type 21 has an invalid length. [ 562.793296][ T39] kauditd_printk_skb: 21 callbacks suppressed [ 562.793311][ T39] audit: type=1400 audit(1722028980.331:1110): avc: denied { create } for pid=14305 comm="syz.1.2798" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 562.830652][T14306] netem: incorrect gi model size [ 562.834699][T14306] netem: change failed [ 563.554009][T14330] kvm: vcpu 0: requested 32 ns lapic timer period limited to 200000 ns [ 563.655929][T14330] kvm: pic: non byte write [ 563.744126][T14337] can0: slcan on ptm0. [ 563.851769][T14341] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 563.882594][T14337] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 563.982918][T14341] input: syz0 as /devices/virtual/input/input33 [ 564.107576][ T39] audit: type=1400 audit(1722028981.641:1111): avc: denied { bind } for pid=14349 comm="syz.1.2812" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 564.562857][T14334] can0 (unregistered): slcan off ptm0. [ 565.581394][ T39] audit: type=1400 audit(1722028983.111:1112): avc: denied { append } for pid=14374 comm="syz.3.2819" name="event3" dev="devtmpfs" ino=1115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 566.364261][T14375] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 566.367498][T14375] Bluetooth: hci3: Error when powering off device on rfkill (-4) [ 566.409640][ T4764] Bluetooth: hci3: Opcode 0x2046 failed: -22 [ 566.420038][T14375] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 566.437874][T14375] Bluetooth: hci4: Error when powering off device on rfkill (-4) [ 566.534574][T14375] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 566.539673][T14375] Bluetooth: hci1: Error when powering off device on rfkill (-4) [ 567.554029][T14397] can0: slcan on ptm0. [ 567.690813][T14397] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 567.956026][T14400] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2827'. [ 568.141540][T14395] can0 (unregistered): slcan off ptm0. [ 568.303185][T14410] dvmrp0: entered allmulticast mode [ 568.333453][T14410] pimreg3: entered allmulticast mode [ 568.352519][T14410] netlink: 'syz.1.2832': attribute type 10 has an invalid length. [ 568.371419][T14410] batman_adv: batadv0: Adding interface: hsr_slave_0 [ 568.377136][T14410] batman_adv: batadv0: The MTU of interface hsr_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 568.401703][T14410] batman_adv: batadv0: Not using interface hsr_slave_0 (retrying later): interface not active [ 568.431536][ T4764] Bluetooth: hci3: command tx timeout [ 568.824444][ T1381] ieee802154 phy0 wpan0: encryption failed: -22 [ 568.863713][T14426] input: syz1 as /devices/virtual/input/input34 [ 569.115747][T14432] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.2840'. [ 569.119715][T14432] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 569.470277][ C1] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 569.479995][ C1] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 569.486051][ C1] CPU: 1 UID: 0 PID: 14436 Comm: syz.3.2842 Not tainted 6.10.0-syzkaller-12708-g2f8c4f506285 #0 [ 569.490443][ C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 569.495237][ C1] RIP: 0010:__xsk_map_flush+0x4c/0x310 [ 569.497827][ C1] Code: df 48 c1 ea 03 80 3c 02 00 0f 85 cd 02 00 00 48 b8 00 00 00 00 00 fc ff df 49 8b 1e 48 8d ab e8 fa ff ff 48 89 da 48 c1 ea 03 <80> 3c 02 00 0f 85 9b 02 00 00 48 8b 03 49 39 de 4c 8d a8 e8 fa ff [ 569.508202][ C1] RSP: 0018:ffffc900008b0c80 EFLAGS: 00010246 [ 569.511671][ C1] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff88f8fe0f [ 569.516703][ C1] RDX: 0000000000000000 RSI: ffffffff8af01e86 RDI: ffffc90003347a78 [ 569.520022][ C1] RBP: fffffffffffffae8 R08: 0000000000000005 R09: 0000000000000000 [ 569.523395][ C1] R10: 0000000000000010 R11: 0000000000000000 R12: 0000000000000000 [ 569.526779][ C1] R13: ffff888023840fb0 R14: ffffc90003347a78 R15: ffffc90003347a78 [ 569.530033][ C1] FS: 00007fe60c7ff6c0(0000) GS:ffff88806b100000(0000) knlGS:0000000000000000 [ 569.534007][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 569.536799][ C1] CR2: 0000001b338f9ff8 CR3: 000000001b89a000 CR4: 0000000000350ef0 [ 569.540163][ C1] DR0: 0000000000000007 DR1: 0000000000000000 DR2: 0000000000000000 [ 569.543885][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 569.547127][ C1] Call Trace: [ 569.548521][ C1] [ 569.549916][ C1] ? show_regs+0x8c/0xa0 [ 569.551941][ C1] ? die_addr+0x4f/0xd0 [ 569.553789][ C1] ? exc_general_protection+0x155/0x230 [ 569.556433][ C1] ? asm_exc_general_protection+0x26/0x30 [ 569.558907][ C1] ? xdp_do_check_flushed+0x28f/0x4e0 [ 569.561455][ C1] ? __xsk_map_flush+0x16/0x310 [ 569.563506][ C1] ? __xsk_map_flush+0x4c/0x310 [ 569.565646][ C1] xdp_do_check_flushed+0x175/0x4e0 [ 569.568408][ C1] __napi_poll.constprop.0+0xd1/0x550 [ 569.571193][ C1] net_rx_action+0xa92/0x1010 [ 569.573275][ C1] ? sched_clock_cpu+0x6d/0x4d0 [ 569.575408][ C1] ? __pfx_net_rx_action+0x10/0x10 [ 569.577629][ C1] ? mark_held_locks+0x9f/0xe0 [ 569.579937][ C1] handle_softirqs+0x216/0x8f0 [ 569.582008][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 569.584574][ C1] irq_exit_rcu+0xbb/0x120 [ 569.586416][ C1] common_interrupt+0xb0/0xd0 [ 569.588423][ C1] [ 569.589805][ C1] [ 569.591374][ C1] asm_common_interrupt+0x26/0x40 [ 569.593835][ C1] RIP: 0010:smp_call_function_many_cond+0x4e7/0x1420 [ 569.596690][ C1] Code: 0c 00 85 ed 74 4d 48 b8 00 00 00 00 00 fc ff df 4d 89 f4 4c 89 f5 49 c1 ec 03 83 e5 07 49 01 c4 83 c5 03 e8 9b 3a 0c 00 f3 90 <41> 0f b6 04 24 40 38 c5 7c 08 84 c0 0f 85 f7 0c 00 00 8b 43 08 31 [ 569.605835][ C1] RSP: 0018:ffffc90003347798 EFLAGS: 00000287 [ 569.608424][ C1] RAX: 00000000000381cc RBX: ffff88806b046820 RCX: ffffc90005ca1000 [ 569.611955][ C1] RDX: 0000000000040000 RSI: ffffffff817e5835 RDI: 0000000000000005 [ 569.615130][ C1] RBP: 0000000000000003 R08: 0000000000000005 R09: 0000000000000000 [ 569.618460][ C1] R10: 0000000000000001 R11: 0000000000000000 R12: ffffed100d608d05 [ 569.622387][ C1] R13: 0000000000000001 R14: ffff88806b046828 R15: ffff88806b140000 [ 569.626261][ C1] ? smp_call_function_many_cond+0x4e5/0x1420 [ 569.628869][ C1] ? smp_call_function_many_cond+0x4e5/0x1420 [ 569.631739][ C1] ? __pfx_smp_call_function_many_cond+0x10/0x10 [ 569.634773][ C1] ? __pfx_decay_va_pool_node+0x10/0x10 [ 569.637238][ C1] ? do_raw_spin_lock+0x12d/0x2c0 [ 569.639184][ C1] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 569.641556][ C1] ? __pfx_do_flush_tlb_all+0x10/0x10 [ 569.644023][ C1] on_each_cpu_cond_mask+0x40/0x90 [ 569.646474][ C1] __purge_vmap_area_lazy+0x4f5/0xc10 [ 569.649254][ C1] _vm_unmap_aliases+0x286/0x880 [ 569.652984][ C1] ? __pfx__vm_unmap_aliases+0x10/0x10 [ 569.656022][ C1] change_page_attr_set_clr+0x24c/0x490 [ 569.661080][ C1] ? __pfx_change_page_attr_set_clr+0x10/0x10 [ 569.665046][ C1] ? lock_acquire+0x1b1/0x560 [ 569.667395][ C1] ? find_held_lock+0x2d/0x110 [ 569.669894][ C1] ? do_raw_spin_lock+0x12d/0x2c0 [ 569.672352][ C1] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 569.674307][T14442] fuse: Bad value for 'fd' [ 569.674715][ C1] set_memory_ro+0x7c/0xb0 [ 569.674747][ C1] ? __pfx_set_memory_ro+0x10/0x10 [ 569.681210][ C1] bpf_prog_select_runtime+0x59d/0x6f0 [ 569.683688][ C1] ? __asan_memcpy+0x3c/0x60 [ 569.686517][ C1] bpf_migrate_filter+0x2eb/0x390 [ 569.689140][ C1] ? __pfx_bpf_migrate_filter+0x10/0x10 [ 569.691716][ C1] ? bpf_check_classic+0x8c1/0x9d0 [ 569.693911][ C1] ? seccomp_check_filter+0xe5/0x1e0 [ 569.696495][ C1] ? __pfx_seccomp_check_filter+0x10/0x10 [ 569.699303][ C1] bpf_prepare_filter+0x183/0x380 [ 569.701833][ C1] bpf_prog_create_from_user+0x1e4/0x2d0 [ 569.704607][ C1] ? __pfx_seccomp_check_filter+0x10/0x10 [ 569.707541][ C1] do_seccomp+0x7b6/0x2660 [ 569.709821][ C1] ? __pfx_do_seccomp+0x10/0x10 [ 569.711950][ C1] ? xfd_validate_state+0x5d/0x180 [ 569.714288][ C1] do_syscall_64+0xcd/0x250 [ 569.716095][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 569.719105][ C1] RIP: 0033:0x7fe60cd77299 [ 569.722261][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 569.730292][ C1] RSP: 002b:00007fe60c7ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000013d [ 569.733982][ C1] RAX: ffffffffffffffda RBX: 00007fe60cf05f80 RCX: 00007fe60cd77299 [ 569.737275][ C1] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 0000000000000001 [ 569.740418][ C1] RBP: 00007fe60cde48e6 R08: 0000000000000000 R09: 0000000000000000 [ 569.743647][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 569.746700][ C1] R13: 000000000000000b R14: 00007fe60cf05f80 R15: 00007fffd3a48c78 [ 569.749775][ C1] [ 569.750998][ C1] Modules linked in: [ 569.752761][ C1] ---[ end trace 0000000000000000 ]--- [ 569.754954][ C1] RIP: 0010:__xsk_map_flush+0x4c/0x310 [ 569.757221][ C1] Code: df 48 c1 ea 03 80 3c 02 00 0f 85 cd 02 00 00 48 b8 00 00 00 00 00 fc ff df 49 8b 1e 48 8d ab e8 fa ff ff 48 89 da 48 c1 ea 03 <80> 3c 02 00 0f 85 9b 02 00 00 48 8b 03 49 39 de 4c 8d a8 e8 fa ff [ 569.765554][ C1] RSP: 0018:ffffc900008b0c80 EFLAGS: 00010246 [ 569.768237][ C1] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffffff88f8fe0f [ 569.771820][ C1] RDX: 0000000000000000 RSI: ffffffff8af01e86 RDI: ffffc90003347a78 [ 569.775117][ C1] RBP: fffffffffffffae8 R08: 0000000000000005 R09: 0000000000000000 [ 569.778321][ C1] R10: 0000000000000010 R11: 0000000000000000 R12: 0000000000000000 [ 569.781655][ C1] R13: ffff888023840fb0 R14: ffffc90003347a78 R15: ffffc90003347a78 [ 569.784928][ C1] FS: 00007fe60c7ff6c0(0000) GS:ffff88806b100000(0000) knlGS:0000000000000000 [ 569.788307][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 569.790965][ C1] CR2: 0000001b338f9ff8 CR3: 000000001b89a000 CR4: 0000000000350ef0 [ 569.794914][ C1] DR0: 0000000000000007 DR1: 0000000000000000 DR2: 0000000000000000 [ 569.798296][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 569.801513][ C1] Kernel panic - not syncing: Fatal exception in interrupt [ 569.805761][ C1] Kernel Offset: disabled [ 569.807177][ C1] Rebooting in 86400 seconds.. VM DIAGNOSIS: 21:23:07 Registers: info registers vcpu 0 CPU#0 RAX=dffffc0000000000 RBX=ffff8880231703c0 RCX=ffffffff8168e473 RDX=1ffff1100462e07a RSI=0000000000000004 RDI=ffff8880231703c0 RBP=ffff88803eb00000 RSP=ffffc90003557bd8 R8 =0000000000000000 R9 =ffffed100462e078 R10=ffff8880231703c3 R11=0000000000000001 R12=ffff8880231703d0 R13=ffffed100462e082 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff8168e4c0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f239d3ff6c0 ffffffff 00c00000 GS =0000 ffff88806b000000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000200bd038 CR3=0000000040064000 CR4=00350ef0 DR0=00000000c88e0007 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffd3a49000 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe60cde56c5 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe60cde56d2 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe60cde56cc ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe60cde56e0 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe60cde5766 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe60cde5844 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000a0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 00000000000000a0 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000039 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84fdd9f5 RDI=ffffffff95198720 RBP=ffffffff951986e0 RSP=ffffc900008b06e0 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b R12=0000000000000000 R13=0000000000000039 R14=ffffffff84fdd990 R15=0000000000000000 RIP=ffffffff84fdda1f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 00007fe60c7ff6c0 ffffffff 00c00000 GS =0000 ffff88806b100000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000001b338f9ff8 CR3=000000001b89a000 CR4=00350ef0 DR0=0000000000000007 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000ffff0000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe60cde56c5 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe60cde56d2 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe60cde56cc ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe60cde56e0 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe60cde5766 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe60cde5844 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 2323232323232323 2323232323232323 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 307665646275732d 6c34762f7665642f ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 135546474156500e 4f17550c5546470c ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 00000000000000a0 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=dead000000000122 RBX=ffff88806b244e00 RCX=1ffff1100d6489c6 RDX=ffffea000177d048 RSI=ffffea000177d008 RDI=ffffea000177d050 RBP=ffffea000177d008 RSP=ffffc90003447318 R8 =ffff88806b244dc0 R9 =ffff88806b244e30 R10=ffff88807ffd7740 R11=0000000000000000 R12=dffffc0000000000 R13=ffff88806b244dc0 R14=ffffea000177d000 R15=ffffea000177d010 RIP=ffffffff81db0969 RFL=00000297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 000fffff 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 000fffff 00000000 FS =0000 00007f3f5bbff6c0 000fffff 00000000 GS =0000 ffff88806b200000 000fffff 00000000 LDT=0000 0000000000000000 000fffff 00000000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000110c33df73 CR3=00000000586d8000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff450c8ce0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f5c1e56c5 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f5c1e56d2 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f5c1e56cc ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f5c1e56e0 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f5c1e5766 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f5c1e5844 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000080000000 RBX=ffff8880424a0000 RCX=ffffffff8477f58e RDX=ffff888054812440 RSI=0000000000000000 RDI=0000000000000003 RBP=0000000000000100 RSP=ffffc900033d7c00 R8 =0000000000000003 R9 =0000000000000000 R10=0000000000000100 R11=0000000000000001 R12=0000000000000000 R13=ffffed1008494082 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff818a92e8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f9b286716c0 ffffffff 00c00000 GS =0000 ffff88806b300000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000110c2ea6f4 CR3=0000000023bbc000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000040001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb173be56c5 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb173be56d2 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb173be56cc ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb173be56e0 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb173be5766 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb173be5844 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb173cd5488 00007fb173cd5480 00007fb173cd5478 00007fb173cd5450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb17483d100 00007fb173cd5440 00007fb173cd5458 00007fb173cd54a0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb173cd5498 00007fb173cd5490 00007fb173cd5488 00007fb173cd5480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000