last executing test programs: 2m44.565728867s ago: executing program 3 (id=2016): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xe}}, &(0x7f0000000100)='syzkaller\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r0, 0x40505331, &(0x7f0000000140)={{0x5d, 0x6}, {0x8, 0x3}, 0x9, 0x1, 0x40}) 2m44.492798005s ago: executing program 3 (id=2018): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10) r1 = syz_open_dev$tty1(0xc, 0x4, 0x2) ioctl$KDSKBSENT(r1, 0x4b49, &(0x7f0000001380)={0x4, "c44c86d62349ed8f2a50097897ecd3a7865d138ea00a94395783a66e70993b51127bff68b74eb82b3f8d5c007fb29bde875f92fb7e45ce15c3c4f769964e252430fb22b24816f94a081f186c5e9ef2fba8e11390f33015cac4d0019b9d1cc3d8b96f6021f524efc45a25de669470e7d133f3ad6b1dff52087a4f1da29d2f31bd997a7cdc6557fa41b3aa3bf2d561eaa24a4ba0535765ca9c3871dbd7a52623647a2d3c79b7db7d2dc364f6f1b379998afe56760b234f1ec1a307d1907afba7a33aa7036ec07ec4ae7e1246fd46635f0a84be80c8d3628485bd272442429bba79e988291f46ec45e5d3e55f33ad580fa3031caab9ca2238e202152f7b9dc03393ae3dfafeb626fe23581837469b6fb392d57a701443436de9753585d5f6a0ec6b8bf03b08581377508aa6aaac6d13b606af5fda77986e4079d9fa61f14465ae4371349e02b467b79b75c0d2d5f6b29a0360a88a4bdc3eaad7b5bdc3496da21c51449072fdc7999b03f688e6ad59b59bd29405f447bf70f86e9d65c196d4844e19b449457f0d61dec511cc3b8897bc5e9a5ec769aea5704fcc08b0726e9242a32725be38829b55938ac7e78a0fa08fc0416feafc9fb63e8371900f6a86e94c778dac2ddec39e79b84bf85ba4cbcf3600"}) 2m44.492295337s ago: executing program 3 (id=2020): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) setrlimit(0x8, &(0x7f0000000080)={0x1, 0x401}) 2m44.212554738s ago: executing program 3 (id=2027): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000280)='./file0\x00', 0x0, 0x97801, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x112) 2m44.159007059s ago: executing program 3 (id=2028): ioperm(0x3, 0x5, 0x7) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$getregset(0x4204, r0, 0x201, &(0x7f0000000000)={0x0, 0x300}) 2m43.922703001s ago: executing program 3 (id=2036): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000680)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=@newlink={0x48, 0x10, 0x401, 0x0, 0x700, {0x0, 0x0, 0x0, r2, 0x3f, 0x40206}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_BR_MULTI_BOOLOPT={0xc, 0x2e, {0x3, 0x3}}, @IFLA_BR_VLAN_FILTERING={0x5, 0x7, 0x8}]}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x44000}, 0x0) 2m43.808045713s ago: executing program 32 (id=2036): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000680)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=@newlink={0x48, 0x10, 0x401, 0x0, 0x700, {0x0, 0x0, 0x0, r2, 0x3f, 0x40206}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_BR_MULTI_BOOLOPT={0xc, 0x2e, {0x3, 0x3}}, @IFLA_BR_VLAN_FILTERING={0x5, 0x7, 0x8}]}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x44000}, 0x0) 56.129605646s ago: executing program 0 (id=5251): r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r1, 0x0, r0, 0x0, 0x46) close(r0) 56.050334122s ago: executing program 0 (id=5252): r0 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, &(0x7f0000000000)=[{{0x1, 0x1, 0x0, 0x1}, {0x0, 0x1, 0x1}}, {{0x3}, {0x1, 0x0, 0x1, 0x1}}], 0x10) bind$can_raw(r0, &(0x7f0000000080), 0x10) setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, 0x0) 56.049749958s ago: executing program 0 (id=5254): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000280)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x48, r1, 0x1, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x83}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x667}, @NL80211_ATTR_STA_WME={0xc, 0x81, [@NL80211_STA_WME_MAX_SP={0x5}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x4814) 56.049627794s ago: executing program 0 (id=5255): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x48) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0) mount$bind(&(0x7f0000000580)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0xb5008, 0x0) umount2(&(0x7f00000001c0)='./file0/../file0\x00', 0x4) 55.969413157s ago: executing program 0 (id=5256): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="b702000007000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622003b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1d5d6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe2c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9a3359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fd3a0ec4be3e563112b0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff2c91018afc9ffc2cc788bee1b47683db01ac69398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9857399537f5dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db7ab22e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e48455b5a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ef6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069d532749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8249dc1e3428d2129369ee1b87cf6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b6214912a57f810200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e92604f8e86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd3536460000000000000000000000000000000000000000001e000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033ec14bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734837ff47257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d65a6d072034cecc457776c5fa1f33b0203c07052c6bc314b0ac5c63bc2083c9cda0b7480e0b17854ffcc76176ce266bc698f7921b8afe798a7a5ed33ab0374455ee368fda99a0e681bf9426831b193395cb01a7332a50aac841cb7d48a1768a7640a9820631ba775aea28905c3a1ace5f05689ae67e26856816"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) r1 = socket$packet(0x11, 0x3, 0x300) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c) ioctl$sock_inet_tcp_SIOCINQ(r1, 0x541b, &(0x7f00000002c0)) 55.711718419s ago: executing program 0 (id=5263): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_DEBUGREGS(r2, 0x4080aea2, &(0x7f0000000380)={[0x1, 0xeeee8000, 0xeeef0000, 0x8000000], 0x7ff, 0xc81675ab98b5563b}) 55.65747842s ago: executing program 33 (id=5263): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_DEBUGREGS(r2, 0x4080aea2, &(0x7f0000000380)={[0x1, 0xeeee8000, 0xeeef0000, 0x8000000], 0x7ff, 0xc81675ab98b5563b}) 1.771426883s ago: executing program 5 (id=6709): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000140)={0x2c, r2, 0x1, 0x800, 0x0, {{0x2}, {@val={0x8, 0x3, r1}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x980}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}]]}, 0x2c}}, 0x0) 1.711396757s ago: executing program 5 (id=6710): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x515002, 0xc6) 1.140385419s ago: executing program 1 (id=6719): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) recvmmsg(r0, &(0x7f0000000580)=[{{0x0, 0x0, 0x0}, 0xa}], 0x1, 0x0, 0x0) setsockopt$inet_int(r0, 0x0, 0x14, &(0x7f0000000000)=0x9, 0x4) sendto$inet(r0, &(0x7f0000000040)='\f\x00', 0xffeb, 0x0, &(0x7f0000000340), 0x10) 868.281062ms ago: executing program 5 (id=6722): r0 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000240)={'batadv_slave_1\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000040)={r1, 0x1, 0x6, @multicast}, 0x10) setsockopt$packet_drop_memb(r0, 0x107, 0x2, &(0x7f0000000080)={r1, 0x1, 0x6, @multicast}, 0x10) 801.550916ms ago: executing program 5 (id=6724): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"]) chdir(&(0x7f0000000100)='./file0\x00') open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x1) 800.975355ms ago: executing program 5 (id=6726): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1802000000000000000000000000020085000000a800000095"], 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r0}, 0xc) 627.733602ms ago: executing program 5 (id=6732): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000105509147200ed0000000109022400010000000009040000030300000009210000000122050009058103"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000100)={0x2c, &(0x7f0000000280)=ANY=[@ANYBLOB="200617"], 0x0, 0x0, 0x0, 0x0}, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x3f, 0x0) 560.769714ms ago: executing program 4 (id=6734): mprotect(&(0x7f00003fd000/0xc00000)=nil, 0xc00000, 0x1) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2) 441.535448ms ago: executing program 4 (id=6735): mkdir(&(0x7f00000004c0)='./bus\x00', 0x92) mount$9p_virtio(&(0x7f0000000100), &(0x7f0000000180)='./bus\x00', &(0x7f00000001c0), 0x4, &(0x7f00000007c0)={'trans=virtio,', {[{@nodevmap}]}}) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00') lseek(r0, 0x10001, 0x0) 441.350069ms ago: executing program 4 (id=6736): sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4008091}, 0x41) r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000280)={0x4, 0x0, 0xb51b, 0x10}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x20, 0x12, 0xa01, 0x0, 0xc00e, {0x80}}, 0x26}}, 0x0) 311.165517ms ago: executing program 1 (id=6738): r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f00000000c0)=0x13) write(r0, &(0x7f0000000000)='1', 0x1) ioctl$TCSETA(r0, 0x5406, &(0x7f0000000340)={0xc2, 0x100, 0x2, 0x4, 0xfe, "5f730000a9003f00"}) 248.481826ms ago: executing program 4 (id=6740): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'blake2b-512-generic\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) write(r1, &(0x7f0000000040)="cb", 0xfffffdef) 191.483815ms ago: executing program 2 (id=6742): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000980)=ANY=[@ANYBLOB="18000000000000040000000000000000850000000e000000850000000e00000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000400)='io_uring_cqe_overflow\x00', r0}, 0x10) r1 = syz_io_uring_setup(0x178d, &(0x7f0000000080)={0x0, 0x2d7f, 0x10100}, &(0x7f0000000000), &(0x7f0000000380)) io_uring_enter(r1, 0xa3d, 0x0, 0x0, 0x0, 0x0) 191.193841ms ago: executing program 1 (id=6743): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x4, 0xffff, 0x0, 0x1}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001280)=[r0, r0]}, 0x90) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xd, 0x5a87, 0x4, 0x3, 0x0, r0}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0x2, r1, 0x0, 0x8000000}, 0x27) 190.975782ms ago: executing program 4 (id=6744): userfaultfd(0x80001) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00') close(0x3) read$FUSE(r0, &(0x7f0000000040)={0x2020}, 0x2020) 179.791664ms ago: executing program 2 (id=6745): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800100000400000028000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00 \x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000050000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x18) syz_open_dev$tty20(0xc, 0x4, 0x1) 140.056497ms ago: executing program 4 (id=6746): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x47f, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x29}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000040)={0x24, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x22, 0x371, {0x9}}}, &(0x7f0000000080)={0xffffffffffffffeb, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x0) 139.785863ms ago: executing program 1 (id=6747): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000140)={0x1, 0x0, [{0x40000071, 0x0, 0x1}]}) 135.822048ms ago: executing program 2 (id=6748): r0 = fsopen(&(0x7f00000000c0)='proc\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0) fsmount(r0, 0x0, 0x0) 61.563292ms ago: executing program 2 (id=6749): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15) ioctl$TCSETS(r0, 0x40384708, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x0, 0x0, "3eccd8000200000500"}) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xd) 61.351742ms ago: executing program 2 (id=6750): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_FLOW_REFILL_DELAY={0x8, 0x9, 0xfffffff8}]}}]}, 0x38}}, 0x0) 656.617µs ago: executing program 1 (id=6751): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="2309fefffffffcffffff0100000005000700000000000800090000000000060002000100000008000a000400010008001700", @ANYRES8=r0], 0x3c}}, 0x0) 169.38µs ago: executing program 2 (id=6752): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) read$nci(r1, 0x0, 0x0) 0s ago: executing program 1 (id=6753): setresgid(0x0, 0xee01, 0xffffffffffffffff) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount$tmpfs(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000080), 0x8000, &(0x7f00000024c0)=ANY=[@ANYBLOB='quota']) lchown(&(0x7f0000000000)='./file1\x00', 0x0, 0x0) kernel console output (not intermixed with test programs): comm="syz.4.2936" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 151.002122][ T40] audit: type=1326 audit(2000000080.953:2563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12515 comm="syz.4.2936" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 151.013155][ T40] audit: type=1326 audit(2000000080.953:2564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12515 comm="syz.4.2936" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 151.036842][ T40] audit: type=1326 audit(2000000080.953:2565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12515 comm="syz.4.2936" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 151.045334][ T40] audit: type=1326 audit(2000000080.953:2566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12515 comm="syz.4.2936" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 151.106569][T12528] Bluetooth: received HCILL_WAKE_UP_IND in state 2 [ 152.310313][T12593] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2972'. [ 152.418406][T12593] team0 (unregistering): Port device team_slave_0 removed [ 152.427548][T12593] team0 (unregistering): Port device team_slave_1 removed [ 152.570072][ T492] wlan1: Trigger new scan to find an IBSS to join [ 152.837732][T12650] sch_fq: defrate 0 ignored. [ 152.884814][T12657] netlink: 'syz.4.3003': attribute type 7 has an invalid length. [ 152.894865][ T1175] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 152.899049][ T1175] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 152.902844][ T1175] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 152.906311][ T1175] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 152.969438][T12664] IPVS: length: 43 != 8 [ 153.129972][ T5966] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 153.416614][T12725] __nla_validate_parse: 1 callbacks suppressed [ 153.416630][T12725] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3039'. [ 155.185748][T12823] overlayfs: conflicting lowerdir path [ 155.296292][T12835] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3087'. [ 155.300229][T12835] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3087'. [ 155.794439][T12852] netdevsim netdevsim4: Direct firmware load for ./file0/file1 failed with error -2 [ 155.798635][T12852] netdevsim netdevsim4: Falling back to sysfs fallback for: ./file0/file1 [ 156.045720][T12867] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3095'. [ 156.048397][T12869] netlink: 'syz.2.3093': attribute type 14 has an invalid length. [ 156.083756][T12873] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3098'. [ 156.088948][T12873] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3098'. [ 156.100304][T12875] dlm: no local IP address has been set [ 156.102296][T12875] dlm: cannot start dlm midcomms -107 [ 156.650673][ T13] wlan1: Trigger new scan to find an IBSS to join [ 157.161241][T12910] random: crng reseeded on system resumption [ 157.298548][T12929] sp0: Synchronizing with TNC [ 158.326335][T12951] 8021q: adding VLAN 0 to HW filter on device bond1 [ 158.331049][T12951] bond0: (slave bond1): Enslaving as an active interface with an up link [ 158.454573][T12961] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3144'. [ 158.661321][ T13] wlan1: Creating new IBSS network, BSSID fa:98:05:7e:4a:d3 [ 158.903216][T12980] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 158.967088][T12979] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check. [ 158.995495][T12985] veth1_to_batadv: entered promiscuous mode [ 158.998296][T12985] macsec1: entered promiscuous mode [ 161.805386][T13054] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3175'. [ 162.139984][ T56] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 162.216134][T13078] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3185'. [ 162.320130][ T56] usb 7-1: Using ep0 maxpacket: 16 [ 162.337642][ T56] usb 7-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0 [ 162.342290][ T56] usb 7-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0 [ 162.346684][ T56] usb 7-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 162.353358][ T56] usb 7-1: config 1 interface 0 has no altsetting 0 [ 162.365329][ T56] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 162.369654][ T56] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 162.373226][ T56] usb 7-1: Product: syz [ 162.375199][ T56] usb 7-1: Manufacturer: syz [ 162.377566][ T56] usb 7-1: SerialNumber: syz [ 162.549132][ T840] kernel write not supported for file bpf-map (pid: 840 comm: kworker/1:2) [ 162.592127][ T56] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 6 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8 [ 162.797499][ T54] usb 7-1: USB disconnect, device number 6 [ 162.802906][ T54] usblp0: removed [ 163.079971][T13112] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3198'. [ 163.233977][T13126] input: syz0 as /devices/virtual/input/input19 [ 163.488059][T13141] sit0: entered promiscuous mode [ 163.490740][T13141] netlink: 'syz.4.3206': attribute type 1 has an invalid length. [ 163.493968][T13141] netlink: 1 bytes leftover after parsing attributes in process `syz.4.3206'. [ 163.793595][T13170] misc userio: Begin command sent, but we're already running [ 163.834678][ T54] IPVS: starting estimator thread 0... [ 163.919902][T13173] IPVS: using max 42 ests per chain, 100800 per kthread [ 163.938749][T13182] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 164.309964][T13221] macsec3: entered allmulticast mode [ 164.312303][T13221] macsec0: entered allmulticast mode [ 164.314882][T13221] veth1_macvtap: entered allmulticast mode [ 164.415350][ T54] kernel write not supported for file [eventfd] (pid: 54 comm: kworker/3:1) [ 164.469831][T13236] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3260'. [ 164.582298][T13236] team0 (unregistering): Port device team_slave_0 removed [ 164.593749][T13236] team0 (unregistering): Port device team_slave_1 removed [ 164.635153][T13247] pim6reg1: tun_chr_ioctl cmd 1074025677 [ 164.637241][T13247] pim6reg1: linktype set to 780 [ 164.656931][T13248] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3256'. [ 164.771363][T12359] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 164.930088][T12359] usb 6-1: Using ep0 maxpacket: 16 [ 164.933560][T12359] usb 6-1: config 0 has an invalid interface number: 8 but max is 0 [ 164.936424][T12359] usb 6-1: config 0 has no interface number 0 [ 164.938387][T12359] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 164.942688][T12359] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 164.947442][T12359] usb 6-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 164.954335][T12359] usb 6-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 164.958085][T12359] usb 6-1: Product: syz [ 164.960116][T12359] usb 6-1: SerialNumber: syz [ 164.967844][T12359] usb 6-1: config 0 descriptor?? [ 164.973178][T12359] cm109 6-1:0.8: invalid payload size 0, expected 4 [ 164.976373][T12359] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.8/input/input21 [ 165.193337][ C0] cm109 6-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90 [ 165.214993][T13278] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3272'. [ 165.275601][T13280] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2 [ 165.330509][T13278] team0 (unregistering): Port device team_slave_0 removed [ 165.338846][T13278] team0 (unregistering): Port device team_slave_1 removed [ 165.395099][ C0] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 165.399372][ C0] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 165.402605][ C0] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 165.405039][ C0] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 165.407464][ C0] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 165.410263][ C0] cm109 6-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 165.413798][T12359] usb 6-1: USB disconnect, device number 7 [ 165.429246][T12359] cm109 6-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 acpid: input device has been disconnected, fd 9 [ 165.954935][T13295] loop4: detected capacity change from 0 to 524255232 [ 166.000822][T13295] loop4: detected capacity change from 524255232 to 524287956 [ 166.216975][ T40] kauditd_printk_skb: 11 callbacks suppressed [ 166.216987][ T40] audit: type=1800 audit(2000000096.223:2578): pid=13311 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.3286" name="file1" dev="tmpfs" ino=1504 res=0 errno=0 [ 167.021330][ T40] audit: type=1326 audit(2000000097.033:2579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13348 comm="syz.0.3303" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf706e579 code=0x0 [ 167.075074][T13357] kernel read not supported for file /!selinuxwk1m9ɞ*T#jYmVvm(p-QZ#{ (pid: 13357 comm: syz.4.3306) [ 167.081514][ T40] audit: type=1800 audit(2000000097.093:2580): pid=13357 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3306" name=2173656C696E7578776B311FD06DC37F39C99E2A0D5493FDE291EFAA16236A978FBCDE590FCCC56D56CB15766D2870C92D515A23D27B84BF06 dev="mqueue" ino=53361 res=0 errno=0 [ 167.300007][ T5966] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 167.357001][T13365] bond0: entered promiscuous mode [ 167.358695][T13365] bond_slave_0: entered promiscuous mode [ 167.360806][T13365] bond_slave_1: entered promiscuous mode [ 167.362732][T13365] bond1: entered promiscuous mode [ 167.365169][T13365] dummy0: entered promiscuous mode [ 167.367845][T13365] hsr1: entered promiscuous mode [ 167.369582][T13365] hsr1: entered allmulticast mode [ 167.371544][T13365] bond0: entered allmulticast mode [ 167.373729][T13365] bond_slave_0: entered allmulticast mode [ 167.376383][T13365] bond_slave_1: entered allmulticast mode [ 167.378524][T13365] bond1: entered allmulticast mode [ 167.381737][T13365] dummy0: entered allmulticast mode [ 167.458946][T13369] bridge0: port 2(bridge_slave_1) entered disabled state [ 167.530118][T13378] binder: 13377:13378 ioctl c018620c 80000000 returned -1 [ 168.020220][ T54] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 168.182942][ T54] usb 6-1: config 0 has an invalid interface number: 183 but max is 0 [ 168.187806][ T54] usb 6-1: config 0 has no interface number 0 [ 168.191322][ T54] usb 6-1: config 0 interface 183 has no altsetting 0 [ 168.196647][ T54] usb 6-1: New USB device found, idVendor=1a8d, idProduct=100c, bcdDevice=a0.20 [ 168.201096][ T54] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 168.204534][ T54] usb 6-1: Product: syz [ 168.206428][ T54] usb 6-1: Manufacturer: syz [ 168.208772][ T54] usb 6-1: SerialNumber: syz [ 168.213672][ T54] usb 6-1: config 0 descriptor?? [ 168.432297][ T54] option 6-1:0.183: GSM modem (1-port) converter detected [ 168.438290][ T54] usb 6-1: USB disconnect, device number 8 [ 168.451125][ T54] option 6-1:0.183: device disconnected [ 169.296987][T13470] netlink: 92 bytes leftover after parsing attributes in process `syz.0.3357'. [ 169.373291][T13476] serio: Serial port ptm0 [ 169.679577][T13533] tipc: Started in network mode [ 169.683550][T13533] tipc: Node identity ac141441, cluster identity 4711 [ 169.687072][T13533] tipc: Enabling of bearer rejected, failed to enable media [ 170.335438][T13584] bridge2: entered promiscuous mode [ 170.368316][T13590] netlink: 'syz.1.3414': attribute type 5 has an invalid length. [ 170.373583][T13590] netlink: 'syz.1.3414': attribute type 5 has an invalid length. [ 170.524849][T13602] netlink: 128 bytes leftover after parsing attributes in process `syz.2.3420'. [ 170.936973][T13634] Bluetooth: hci5: received HCILL_GO_TO_SLEEP_ACK in state 2 [ 170.943241][ T5965] Bluetooth: hci5: sending frame failed (-49) [ 170.947210][ T5955] Bluetooth: hci5: Opcode 0x1003 failed: -49 [ 171.079978][ T1326] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 171.241182][ T1326] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 171.245154][ T1326] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 171.249581][ T1326] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 171.254211][ T1326] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 171.260873][T13629] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 171.268989][ T1326] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 171.471133][ T1326] usb 7-1: USB disconnect, device number 7 [ 171.850809][ T5966] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 171.851996][ T5955] Bluetooth: hci4: command 0x1003 tx timeout [ 171.885240][ T40] audit: type=1326 audit(2000000101.903:2581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13644 comm="syz.0.3440" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x0 [ 172.157279][T13662] netlink: 92 bytes leftover after parsing attributes in process `syz.4.3448'. [ 172.264756][T13666] serio: Serial port ptm0 [ 172.607374][T13688] tipc: Started in network mode [ 172.611095][T13688] tipc: Node identity ac141441, cluster identity 4711 [ 172.615231][T13688] tipc: Enabling of bearer rejected, failed to enable media [ 172.913742][T13713] netlink: 128 bytes leftover after parsing attributes in process `syz.1.3470'. [ 173.030295][T13727] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 173.066170][T13732] netlink: 'syz.0.3479': attribute type 5 has an invalid length. [ 173.070766][T13732] netlink: 'syz.0.3479': attribute type 5 has an invalid length. [ 173.176671][T13736] serio: Serial port ptm1 [ 173.576350][T13763] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3493'. [ 174.457684][T13804] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3511'. [ 174.930399][T13838] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3525'. [ 175.005639][ T840] kernel write not supported for file /uhid (pid: 840 comm: kworker/1:2) [ 175.050023][ T5966] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 175.050059][ T5955] Bluetooth: hci4: command 0x1003 tx timeout [ 175.160624][T12359] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 175.288562][T13872] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3542'. [ 175.320475][T12359] usb 5-1: Using ep0 maxpacket: 8 [ 175.323518][T12359] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 175.326927][T12359] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 175.332269][T12359] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 175.335465][T12359] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 175.353091][T12359] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 175.355563][T13882] netlink: 'syz.4.3550': attribute type 1 has an invalid length. [ 175.356624][T12359] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 175.360532][T13882] netlink: 'syz.4.3550': attribute type 1 has an invalid length. [ 175.366913][T13882] netlink: 216 bytes leftover after parsing attributes in process `syz.4.3550'. [ 175.569131][T12359] usb 5-1: GET_CAPABILITIES returned 0 [ 175.569660][ T40] audit: type=1326 audit(2000000105.573:2582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13899 comm="syz.1.3565" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x0 [ 175.571182][T12359] usbtmc 5-1:16.0: can't read capabilities [ 175.770877][ T841] usb 5-1: USB disconnect, device number 5 [ 175.780919][T13920] Malformed UNC in devname [ 175.780919][T13920] [ 175.787684][T13920] CIFS: VFS: Malformed UNC in devname [ 176.435266][T12359] kernel write not supported for file /uhid (pid: 12359 comm: kworker/0:4) [ 176.468712][T13941] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3576'. [ 176.569898][ T5966] Bluetooth: hci3: command tx timeout [ 176.616068][T13963] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 176.698014][ T40] audit: type=1326 audit(2000000106.703:2583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13967 comm="syz.4.3591" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x0 [ 176.810296][T13966] syz.1.3589 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 177.640779][T12359] kernel write not supported for file bpf-map (pid: 12359 comm: kworker/0:4) [ 177.757582][T14011] sit0: entered promiscuous mode [ 177.761390][T14011] netlink: 'syz.1.3607': attribute type 1 has an invalid length. [ 177.765308][T14011] netlink: 1 bytes leftover after parsing attributes in process `syz.1.3607'. [ 177.826813][ T40] audit: type=1326 audit(2000000107.833:2584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14019 comm="syz.2.3610" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf6ffe579 code=0x0 [ 177.866373][ T5955] Bluetooth: hci4: sending frame failed (-49) [ 177.870595][ T5966] Bluetooth: hci4: Opcode 0x1003 failed: -49 [ 178.022545][T14039] ip6gretap0: entered promiscuous mode [ 178.153051][ T5955] Bluetooth: hci4: sending frame failed (-49) [ 178.156227][ T5966] Bluetooth: hci4: Opcode 0x1003 failed: -49 [ 178.258340][T14062] kvm: kvm [14061]: vcpu128, guest rIP: 0xfff0 Unhandled RDMSR(0x40000076) [ 178.372357][ T82] Bluetooth: hci4: Frame reassembly failed (-84) [ 178.374833][T14074] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 178.570216][ T5955] Bluetooth: hci2: command 0x0c1a tx timeout [ 178.650774][ T5955] Bluetooth: hci1: command 0x0c1a tx timeout [ 178.672436][T14087] Malformed UNC in devname [ 178.672436][T14087] [ 178.679932][T14087] CIFS: VFS: Malformed UNC in devname [ 178.815971][T14099] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 178.889008][ T5955] Bluetooth: hci3: link tx timeout [ 178.893235][ T5955] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa [ 179.419222][T14157] pim6reg1: tun_chr_ioctl cmd 1074025677 [ 179.421919][T14157] pim6reg1: linktype set to 780 [ 179.836965][T14182] ip6gretap0: entered promiscuous mode [ 180.419901][ T5966] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 180.421151][ T5965] Bluetooth: hci4: command 0x1003 tx timeout [ 180.651063][T14253] ptrace attach of ""[14254] was attempted by "/syz-executor exec"[14253] [ 180.958929][T14294] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3733'. [ 180.969941][ T5966] Bluetooth: hci3: command 0x0406 tx timeout [ 181.300941][ T841] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 181.460068][ T841] usb 5-1: Using ep0 maxpacket: 16 [ 181.463427][ T841] usb 5-1: config 0 has an invalid interface number: 8 but max is 0 [ 181.466265][ T841] usb 5-1: config 0 has no interface number 0 [ 181.468664][ T841] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 181.473575][ T841] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 181.478619][ T841] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 181.481484][ T841] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 181.484289][ T841] usb 5-1: Product: syz [ 181.485804][ T841] usb 5-1: SerialNumber: syz [ 181.488474][ T841] usb 5-1: config 0 descriptor?? [ 181.492180][ T841] cm109 5-1:0.8: invalid payload size 0, expected 4 [ 181.496623][ T841] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.8/input/input22 [ 181.702199][ C3] cm109 5-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90 [ 181.910581][ C3] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 181.911575][T12359] usb 5-1: USB disconnect, device number 6 [ 181.914054][ C3] cm109 5-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 181.923514][T12359] cm109 5-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 acpid: input device has been disconnected, fd 3 [ 183.079889][ T840] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 183.241267][ T840] usb 7-1: Using ep0 maxpacket: 16 [ 183.249797][ T840] usb 7-1: config 0 has an invalid interface number: 8 but max is 0 [ 183.252615][ T840] usb 7-1: config 0 has no interface number 0 [ 183.255333][ T840] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 183.259567][ T840] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 183.271078][ T840] usb 7-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 183.275324][ T840] usb 7-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 183.278858][ T840] usb 7-1: Product: syz [ 183.280499][ T840] usb 7-1: SerialNumber: syz [ 183.283756][ T840] usb 7-1: config 0 descriptor?? [ 183.287968][ T840] cm109 7-1:0.8: invalid payload size 0, expected 4 [ 183.291969][ T840] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.8/input/input23 [ 183.443515][T14397] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3779'. [ 183.495156][ C1] cm109 7-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90 [ 183.537182][T14401] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 183.540885][T14401] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 183.544258][T14401] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 183.548192][T14401] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 183.552169][T14401] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 183.556481][T14401] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 183.559983][T14401] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 183.563363][T14401] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 183.567008][T14401] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 183.570716][T14401] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 183.678523][T14405] bond0: entered promiscuous mode [ 183.682397][T14405] bond_slave_0: entered promiscuous mode [ 183.685539][T14405] bond_slave_1: entered promiscuous mode [ 183.689340][T14405] dummy0: entered promiscuous mode [ 183.693940][T14405] debugfs: 'hsr1' already exists in 'hsr' [ 183.696474][T14405] Cannot create hsr debugfs directory [ 183.699138][T14405] hsr1: entered promiscuous mode [ 183.701944][T14405] hsr1: entered allmulticast mode [ 183.701968][T14405] bond0: entered allmulticast mode [ 183.705488][ C1] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 183.706786][T14405] bond_slave_0: entered allmulticast mode [ 183.711888][T14405] bond_slave_1: entered allmulticast mode [ 183.712269][ C1] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 183.714309][T14405] dummy0: entered allmulticast mode [ 183.717581][ C1] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 183.723695][ C1] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 183.726630][ C1] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 183.729780][ C1] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 183.732525][ T840] usb 7-1: USB disconnect, device number 8 [ 183.735328][ C1] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 183.735353][ C1] cm109 7-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 183.745575][ T840] cm109 7-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 acpid: input device has been disconnected, fd 3 [ 184.188837][T14418] team0: No ports can be present during mode change [ 184.444342][T14448] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3804'. [ 184.565299][T14464] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.3811'. [ 185.110550][T14507] netlink: 'syz.0.3831': attribute type 25 has an invalid length. [ 185.114298][T14507] netlink: 'syz.0.3831': attribute type 8 has an invalid length. [ 185.239364][T14525] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 185.289388][T14534] netlink: 'syz.4.3844': attribute type 25 has an invalid length. [ 185.293109][T14534] netlink: 'syz.4.3844': attribute type 8 has an invalid length. [ 185.458277][ T1326] hid_parser_main: 12 callbacks suppressed [ 185.458297][ T1326] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 185.467418][ T1326] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 185.477541][ T1326] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 185.478221][ T40] audit: type=1326 audit(2000000115.483:2585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14554 comm="syz.1.3853" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 185.489389][ T40] audit: type=1326 audit(2000000115.483:2586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14554 comm="syz.1.3853" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 185.497174][ T40] audit: type=1326 audit(2000000115.483:2587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14554 comm="syz.1.3853" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 185.498573][ T1326] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 185.506669][ T40] audit: type=1326 audit(2000000115.493:2588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14554 comm="syz.1.3853" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 185.510920][ T1326] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 185.522883][ T1326] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 185.526203][ T1326] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 185.529425][ T1326] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 185.533151][ T1326] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 185.536702][ T1326] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 185.543544][ T40] audit: type=1326 audit(2000000115.493:2589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14554 comm="syz.1.3853" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 185.543666][ T1326] hid-generic 0003:0004:0000.0003: hidraw1: USB HID v0.00 Device [syz0] on syz1 [ 185.553641][ T40] audit: type=1326 audit(2000000115.493:2590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14554 comm="syz.1.3853" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 185.567561][ T40] audit: type=1326 audit(2000000115.493:2591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14554 comm="syz.1.3853" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 185.575401][ T40] audit: type=1326 audit(2000000115.503:2592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14554 comm="syz.1.3853" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 185.584167][ T40] audit: type=1326 audit(2000000115.503:2593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14554 comm="syz.1.3853" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 185.592552][ T40] audit: type=1326 audit(2000000115.503:2594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14554 comm="syz.1.3853" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 185.765282][T14581] netlink: 'syz.4.3865': attribute type 4 has an invalid length. [ 185.768455][T14581] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3865'. [ 186.048125][T14610] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3880'. [ 186.087813][T14611] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3881'. [ 186.122738][T14619] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3884'. [ 186.130496][T14619] bridge0: entered promiscuous mode [ 186.133363][T14619] batman_adv: batadv0: Adding interface: macvlan2 [ 186.135398][T14619] batman_adv: batadv0: The MTU of interface macvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 186.143325][T14619] batman_adv: batadv0: Interface activated: macvlan2 [ 186.718612][T14647] sctp: [Deprecated]: syz.0.3904 (pid 14647) Use of struct sctp_assoc_value in delayed_ack socket option. [ 186.718612][T14647] Use struct sctp_sack_info instead [ 186.829789][T14655] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3899'. [ 186.835673][T14655] bridge0: entered promiscuous mode [ 186.838597][T14655] batman_adv: batadv0: Adding interface: macvlan3 [ 186.840889][T14655] batman_adv: batadv0: The MTU of interface macvlan3 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 186.842107][T14657] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3900'. [ 186.849804][T14655] batman_adv: batadv0: Interface activated: macvlan3 [ 187.048563][T14674] netlink: 196 bytes leftover after parsing attributes in process `syz.0.3911'. [ 187.090871][T14679] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3913'. [ 187.227764][T14693] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3918'. [ 187.234872][T14693] team_slave_0: entered promiscuous mode [ 187.236937][T14693] team_slave_1: entered promiscuous mode [ 187.473429][T14708] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3923'. [ 187.613338][T14713] loop6: detected capacity change from 0 to 524287487 [ 187.616201][T14713] buffer_io_error: 22 callbacks suppressed [ 187.616211][T14713] Buffer I/O error on dev loop6, logical block 0, async page read [ 187.623635][T14713] Buffer I/O error on dev loop6, logical block 0, async page read [ 187.626727][T14713] Buffer I/O error on dev loop6, logical block 0, async page read [ 187.630202][T14713] Buffer I/O error on dev loop6, logical block 0, async page read [ 187.632815][T14713] Buffer I/O error on dev loop6, logical block 0, async page read [ 187.635415][T14713] Buffer I/O error on dev loop6, logical block 0, async page read [ 187.638821][T14713] Buffer I/O error on dev loop6, logical block 0, async page read [ 187.641691][T14713] Buffer I/O error on dev loop6, logical block 0, async page read [ 187.645236][T14713] ldm_validate_partition_table(): Disk read failed. [ 187.647939][T14713] Buffer I/O error on dev loop6, logical block 0, async page read [ 187.651605][T14713] Buffer I/O error on dev loop6, logical block 0, async page read [ 187.654736][T14713] Dev loop6: unable to read RDB block 0 [ 187.657214][T14713] loop6: unable to read partition table [ 187.659486][T14713] loop_reread_partitions: partition scan of loop6 (3 xC) failed (rc=-5) [ 187.932476][T14733] overlayfs: statfs failed on './file0' [ 187.966839][T14739] netlink: 'syz.4.3944': attribute type 1 has an invalid length. [ 187.969360][T14739] netlink: 'syz.4.3944': attribute type 1 has an invalid length. [ 187.972316][T14739] netlink: 160 bytes leftover after parsing attributes in process `syz.4.3944'. [ 187.975362][T14739] netlink: 'syz.4.3944': attribute type 1 has an invalid length. [ 188.424978][T14807] overlayfs: statfs failed on './file0' [ 189.982724][T14897] netlink: 'syz.2.4017': attribute type 9 has an invalid length. [ 190.814556][T14906] loop6: detected capacity change from 0 to 524287487 [ 190.817668][T14906] ldm_validate_partition_table(): Disk read failed. [ 190.820878][T14906] Dev loop6: unable to read RDB block 0 [ 190.823376][T14906] loop6: unable to read partition table [ 190.825455][T14906] loop_reread_partitions: partition scan of loop6 (3 xC) failed (rc=-5) [ 190.999300][ T5955] Bluetooth: hci2: Invalid handle: 0x8295 > 0x0eff [ 191.392945][T14944] __nla_validate_parse: 3 callbacks suppressed [ 191.392961][T14944] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4041'. [ 191.414372][ T40] audit: type=1326 audit(2000000121.423:2595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14947 comm="syz.1.4042" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 191.425314][ T40] audit: type=1326 audit(2000000121.423:2596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14947 comm="syz.1.4042" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fb15a7 code=0x7ffc0000 [ 191.434134][ T40] audit: type=1326 audit(2000000121.423:2597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14947 comm="syz.1.4042" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 191.444336][ T40] audit: type=1326 audit(2000000121.423:2598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14947 comm="syz.1.4042" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fb15a7 code=0x7ffc0000 [ 191.453019][ T40] audit: type=1326 audit(2000000121.423:2599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14947 comm="syz.1.4042" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 191.462592][ T40] audit: type=1326 audit(2000000121.423:2600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14947 comm="syz.1.4042" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fb15a7 code=0x7ffc0000 [ 191.476254][ T40] audit: type=1326 audit(2000000121.423:2601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14947 comm="syz.1.4042" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 191.483833][ T40] audit: type=1326 audit(2000000121.423:2602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14947 comm="syz.1.4042" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fb15a7 code=0x7ffc0000 [ 191.496155][ T40] audit: type=1326 audit(2000000121.423:2603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14947 comm="syz.1.4042" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 191.504857][ T40] audit: type=1326 audit(2000000121.423:2604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14947 comm="syz.1.4042" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fb15a7 code=0x7ffc0000 [ 191.644625][ T5966] Bluetooth: hci3: connection err: -111 [ 191.738903][T14982] sp0: Synchronizing with TNC [ 192.178262][T15007] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4069'. [ 192.704616][T15061] netlink: 'syz.1.4094': attribute type 10 has an invalid length. [ 192.716047][T15061] netdevsim netdevsim1 netdevsim0: entered promiscuous mode [ 192.719121][T15061] team0: Port device netdevsim0 added [ 192.845664][T15073] FAT-fs (loop9): unable to read boot sector [ 192.939300][T15087] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4107'. [ 193.238827][T15116] rtc_cmos 00:05: Alarms can be up to one day in the future [ 193.251589][T15115] rtc_cmos 00:05: Alarms can be up to one day in the future [ 193.511618][ T10] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 193.659881][ T10] usb 6-1: Using ep0 maxpacket: 32 [ 193.663462][ T10] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 102, changing to 10 [ 193.667804][ T10] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24624, setting to 1024 [ 193.672176][ T10] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 193.682820][ T10] usb 6-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22 [ 193.686746][ T10] usb 6-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131 [ 193.692169][ T10] usb 6-1: Product: syz [ 193.693839][ T10] usb 6-1: Manufacturer: syz [ 193.695674][ T10] usb 6-1: SerialNumber: syz [ 193.703636][ T10] input: appletouch as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:1.0/input/input24 [ 193.753090][ T56] rtc_cmos 00:05: Alarms can be up to one day in the future [ 193.760915][ T56] rtc_cmos 00:05: Alarms can be up to one day in the future [ 193.765871][ T56] rtc_cmos 00:05: Alarms can be up to one day in the future [ 193.770216][ T56] rtc_cmos 00:05: Alarms can be up to one day in the future [ 193.774209][ T56] rtc rtc0: __rtc_set_alarm: err=-22 [ 193.903730][T10566] usb 6-1: USB disconnect, device number 9 [ 193.905664][ C3] appletouch 6-1:1.0: atp_complete: usb_submit_urb failed with result -19 [ 193.913598][T10566] appletouch 6-1:1.0: input: appletouch disconnected [ 194.278348][T15167] input: syz1 as /devices/virtual/input/input25 [ 194.488553][T15184] libceph: resolve '0' (ret=-3): failed [ 194.757135][T15206] misc userio: Can't change port type on an already running userio instance [ 194.763644][T15207] rtc_cmos 00:05: Alarms can be up to one day in the future [ 194.767544][T10566] kernel read not supported for file /input/event1 (pid: 10566 comm: kworker/3:4) [ 194.774526][T15205] rtc_cmos 00:05: Alarms can be up to one day in the future [ 194.840651][T15216] netlink: 'syz.4.4166': attribute type 10 has an invalid length. [ 195.153049][T15243] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4178'. [ 195.273240][ T56] rtc_cmos 00:05: Alarms can be up to one day in the future [ 195.276519][ T56] rtc_cmos 00:05: Alarms can be up to one day in the future [ 195.280854][ T56] rtc_cmos 00:05: Alarms can be up to one day in the future [ 195.283848][ T56] rtc_cmos 00:05: Alarms can be up to one day in the future [ 195.286199][ T56] rtc rtc0: __rtc_set_alarm: err=-22 [ 195.402107][T15265] input: syz1 as /devices/virtual/input/input27 [ 195.433786][T15268] bridge0: port 1(bridge_slave_0) entered disabled state [ 195.440088][T15271] netlink: 'syz.1.4193': attribute type 5 has an invalid length. [ 195.445278][T15268] bridge0: port 1(bridge_slave_0) entered blocking state [ 195.447456][T15268] bridge0: port 1(bridge_slave_0) entered forwarding state [ 195.654627][T15288] input: syz1 as /devices/virtual/input/input28 [ 197.174784][T15380] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4240'. [ 197.437622][T15411] usb usb8: usbfs: process 15411 (syz.0.4255) did not claim interface 0 before use [ 197.443790][T15411] usb usb8: usbfs: process 15411 (syz.0.4255) did not claim interface 0 before use [ 197.533310][T15417] binder: 15416:15417 ioctl 40046210 0 returned -14 [ 197.650124][T15426] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 197.655668][T15426] bridge0: port 1(bridge_slave_0) entered disabled state [ 197.743692][T15432] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 197.841977][T15440] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4269'. [ 198.508032][T15506] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4299'. [ 199.135113][T15537] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.229321][ T1418] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.242914][T15545] usb 1-1: USB disconnect, device number 2 [ 199.296846][T15545] hub 1-0:1.0: USB hub found [ 199.299064][T15545] hub 1-0:1.0: 6 ports detected [ 199.448537][ T5955] Bluetooth: hci4: sending frame failed (-49) [ 199.455534][ T5966] Bluetooth: hci4: Opcode 0x1003 failed: -49 [ 199.490187][ T10] usb 1-1: new high-speed USB device number 3 using ehci-pci [ 199.549423][T15576] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4333'. [ 199.553613][T15576] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4333'. [ 199.557354][T15576] netlink: 'syz.1.4333': attribute type 13 has an invalid length. [ 199.561710][T15576] netlink: 'syz.1.4333': attribute type 12 has an invalid length. [ 199.686023][ T10] usb 1-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 199.689579][ T10] usb 1-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 199.694193][ T10] usb 1-1: Product: QEMU USB Tablet [ 199.695935][ T10] usb 1-1: Manufacturer: QEMU [ 199.697678][ T10] usb 1-1: SerialNumber: 28754-0000:00:1d.7-1 [ 199.725992][ T10] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb1/1-1/1-1:1.0/0003:0627:0001.0004/input/input29 [ 199.737426][ T10] hid-generic 0003:0627:0001.0004: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 199.764279][T15602] netlink: 32 bytes leftover after parsing attributes in process `syz.2.4346'. [ 199.856958][T15614] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4352'. [ 199.915964][T15624] @: renamed from vlan0 (while UP) [ 200.174566][T15643] veth1_to_bond: entered allmulticast mode [ 200.177685][T15642] veth1_to_bond: left allmulticast mode [ 200.569824][ T10] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 200.598903][T15680] bridge0: port 3(syz_tun) entered blocking state [ 200.601717][T15680] bridge0: port 3(syz_tun) entered disabled state [ 200.604704][T15680] syz_tun: entered allmulticast mode [ 200.608858][T15680] syz_tun: entered promiscuous mode [ 200.612726][T15680] bridge0: port 3(syz_tun) entered blocking state [ 200.616191][T15680] bridge0: port 3(syz_tun) entered forwarding state [ 200.730056][ T10] usb 6-1: Using ep0 maxpacket: 8 [ 200.733204][ T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 200.737260][ T10] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 200.740867][ T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 200.744544][ T10] usb 6-1: config 0 descriptor?? [ 200.942887][ T40] kauditd_printk_skb: 842 callbacks suppressed [ 200.942900][ T40] audit: type=1326 audit(2000000130.953:3447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15694 comm="syz.2.4389" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf6ffe579 code=0x0 [ 200.955658][ T10] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0 [ 201.157126][ T840] usb 6-1: USB disconnect, device number 10 [ 201.954476][T15744] usb usb9: usbfs: process 15744 (syz.1.4411) did not claim interface 30 before use [ 202.179008][T15766] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4422'. [ 202.269029][T15780] net_ratelimit: 61 callbacks suppressed [ 202.269047][T15780] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 202.656693][T15809] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4442'. [ 203.384224][T15836] netlink: 36 bytes leftover after parsing attributes in process `syz.1.4454'. [ 203.464702][ T40] audit: type=1326 audit(2000000133.473:3448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15839 comm="syz.2.4457" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf6ffe579 code=0x7ffc0000 [ 203.472867][ T40] audit: type=1326 audit(2000000133.473:3449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15839 comm="syz.2.4457" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf6ffe5a7 code=0x7ffc0000 [ 203.485394][ T40] audit: type=1326 audit(2000000133.473:3450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15839 comm="syz.2.4457" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf6ffe579 code=0x7ffc0000 [ 203.494080][ T40] audit: type=1326 audit(2000000133.473:3451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15839 comm="syz.2.4457" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf6ffe5a7 code=0x7ffc0000 [ 203.506168][ T40] audit: type=1326 audit(2000000133.473:3452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15839 comm="syz.2.4457" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf6ffe579 code=0x7ffc0000 [ 203.515219][ T40] audit: type=1326 audit(2000000133.473:3453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15839 comm="syz.2.4457" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf6ffe5a7 code=0x7ffc0000 [ 203.523507][ T40] audit: type=1326 audit(2000000133.473:3454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15839 comm="syz.2.4457" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffe579 code=0x7ffc0000 [ 203.535507][ T40] audit: type=1326 audit(2000000133.473:3455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15839 comm="syz.2.4457" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf6ffe579 code=0x7ffc0000 [ 203.544677][ T40] audit: type=1326 audit(2000000133.473:3456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15839 comm="syz.2.4457" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf6ffe5a7 code=0x7ffc0000 [ 203.994086][T15884] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4477'. [ 204.325015][T15904] e1000 0000:00:06.0 eth0: Unsupported Speed/Duplex configuration [ 204.567242][T15915] macvlan0: entered promiscuous mode [ 204.569312][T15915] bridge0: entered promiscuous mode [ 204.902459][ T5966] Bluetooth: hci1: Invalid handle: 0x7dd7 > 0x0eff [ 205.161111][T15924] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4494'. [ 206.175059][T16001] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4529'. [ 206.212904][ T40] kauditd_printk_skb: 151 callbacks suppressed [ 206.212915][ T40] audit: type=1326 audit(2000000136.223:3608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16004 comm="syz.4.4532" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 206.225218][ T40] audit: type=1326 audit(2000000136.223:3609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16004 comm="syz.4.4532" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 206.236772][ T40] audit: type=1326 audit(2000000136.223:3610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16004 comm="syz.4.4532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 206.247252][ T40] audit: type=1326 audit(2000000136.223:3611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16004 comm="syz.4.4532" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 206.256973][ T40] audit: type=1326 audit(2000000136.223:3612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16004 comm="syz.4.4532" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 206.273672][ T40] audit: type=1326 audit(2000000136.223:3613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16004 comm="syz.4.4532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 206.281865][ T40] audit: type=1326 audit(2000000136.233:3614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16004 comm="syz.4.4532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 206.289459][ T40] audit: type=1326 audit(2000000136.233:3615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16004 comm="syz.4.4532" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 206.318740][ T40] audit: type=1326 audit(2000000136.233:3616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16004 comm="syz.4.4532" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 206.326480][ T40] audit: type=1326 audit(2000000136.233:3617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16004 comm="syz.4.4532" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 206.436161][T16038] sp0: Synchronizing with TNC [ 206.436484][T16042] netlink: 'syz.1.4545': attribute type 1 has an invalid length. [ 206.532611][T16056] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4549'. [ 206.951780][T16132] bridge_slave_0: invalid flags given to default FDB implementation [ 206.991484][T16138] can0: slcan on ttyS3. [ 207.060469][T16138] can0 (unregistered): slcan off ttyS3. [ 207.144470][T16162] loop4: detected capacity change from 0 to 524255232 [ 207.403576][T16188] netlink: 'syz.2.4614': attribute type 83 has an invalid length. [ 207.430577][ T6038] usb 6-1: new full-speed USB device number 12 using dummy_hcd [ 207.601251][ T6038] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 207.604943][ T6038] usb 6-1: config 0 has no interfaces? [ 207.606971][ T6038] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8 [ 207.611074][ T6038] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 207.614893][ T6038] usb 6-1: config 0 descriptor?? [ 207.830004][T16168] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 207.834155][T16168] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 207.841473][T10566] usb 6-1: USB disconnect, device number 12 [ 208.145687][ T5966] Bluetooth: hci4: sending frame failed (-49) [ 208.149151][ T5955] Bluetooth: hci4: Opcode 0x1003 failed: -49 [ 208.505418][T16280] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4656'. [ 208.884903][T16331] loop4: detected capacity change from 0 to 524255232 [ 209.089264][T16364] bridge_slave_0: invalid flags given to default FDB implementation [ 209.187224][T16377] loop4: detected capacity change from 0 to 524255232 [ 209.390839][T16399] bridge_slave_0: invalid flags given to default FDB implementation [ 209.446089][T16409] usb usb8: usbfs: process 16409 (syz.4.4719) did not claim interface 0 before use [ 209.450298][T16409] usb usb8: usbfs: process 16409 (syz.4.4719) did not claim interface 0 before use [ 209.460137][ T5955] Bluetooth: hci3: command 0x0406 tx timeout [ 210.440848][T16431] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4737'. [ 210.668620][T16466] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4747'. [ 211.220782][ T40] kauditd_printk_skb: 817 callbacks suppressed [ 211.220794][ T40] audit: type=1326 audit(2000000141.223:4435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16512 comm="syz.2.4770" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf6ffe598 code=0x7ffc0000 [ 211.231042][ T40] audit: type=1326 audit(2000000141.233:4436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16512 comm="syz.2.4770" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf6ffe598 code=0x7ffc0000 [ 211.238808][ T40] audit: type=1326 audit(2000000141.233:4437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16512 comm="syz.2.4770" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf6ffe598 code=0x7ffc0000 [ 211.248307][ T40] audit: type=1326 audit(2000000141.233:4438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16512 comm="syz.2.4770" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf6ffe598 code=0x7ffc0000 [ 211.256773][ T40] audit: type=1326 audit(2000000141.233:4439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16512 comm="syz.2.4770" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffe579 code=0x7ffc0000 [ 211.266105][ T40] audit: type=1326 audit(2000000141.233:4440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16512 comm="syz.2.4770" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf6ffe598 code=0x7ffc0000 [ 211.273285][ T40] audit: type=1326 audit(2000000141.233:4441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16512 comm="syz.2.4770" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffe579 code=0x7ffc0000 [ 211.284256][ T40] audit: type=1326 audit(2000000141.233:4442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16512 comm="syz.2.4770" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffe579 code=0x7ffc0000 [ 211.293896][ T40] audit: type=1326 audit(2000000141.233:4443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16512 comm="syz.2.4770" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf6ffe598 code=0x7ffc0000 [ 211.303574][ T40] audit: type=1326 audit(2000000141.233:4444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16512 comm="syz.2.4770" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffe579 code=0x7ffc0000 [ 211.570325][T12357] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 211.720073][T12357] usb 7-1: Using ep0 maxpacket: 32 [ 211.724475][T12357] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 102, changing to 10 [ 211.729056][T12357] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24624, setting to 1024 [ 211.734149][T12357] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 211.742035][T12357] usb 7-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22 [ 211.746344][T12357] usb 7-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131 [ 211.749244][T12357] usb 7-1: Product: syz [ 211.750785][T12357] usb 7-1: Manufacturer: syz [ 211.752268][T12357] usb 7-1: SerialNumber: syz [ 211.757245][T12357] input: appletouch as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:1.0/input/input30 [ 211.964863][ T1326] usb 7-1: USB disconnect, device number 9 [ 211.967314][ C2] appletouch 7-1:1.0: atp_complete: usb_submit_urb failed with result -19 [ 211.974630][ T1326] appletouch 7-1:1.0: input: appletouch disconnected [ 212.889848][ T5966] Bluetooth: hci3: command 0x0406 tx timeout [ 214.028189][T16521] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4780'. [ 214.192703][T16548] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4787'. [ 214.273394][T16559] sp0: Synchronizing with TNC [ 214.657569][T16595] Bluetooth: MGMT ver 1.23 [ 214.757794][T16606] input: syz1 as /devices/virtual/input/input31 [ 215.341677][T16658] veth1_to_bond: entered allmulticast mode [ 215.343980][T16656] veth1_to_bond: left allmulticast mode [ 215.345424][T16660] ieee802154 phy1 wpan1: encryption failed: -22 [ 215.515493][T16678] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4849'. [ 216.329939][ T5955] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 216.329978][ T5966] Bluetooth: hci4: command 0x1003 tx timeout [ 216.717816][T16721] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4869'. [ 216.722177][T16721] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4869'. [ 217.010640][ T1326] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 217.087624][T16762] netlink: 'syz.4.4888': attribute type 5 has an invalid length. [ 217.160117][ T1326] usb 5-1: Using ep0 maxpacket: 8 [ 217.166419][ T1326] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 217.170589][ T1326] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 217.173841][ T1326] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 217.177089][ T1326] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 217.181961][ T1326] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 217.185025][ T1326] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 217.280971][T16777] bridge0: port 1(bridge_slave_0) entered disabled state [ 217.292094][T16777] bridge0: port 1(bridge_slave_0) entered blocking state [ 217.295142][T16777] bridge0: port 1(bridge_slave_0) entered forwarding state [ 217.393671][ T1326] usb 5-1: GET_CAPABILITIES returned 0 [ 217.395548][ T1326] usbtmc 5-1:16.0: can't read capabilities [ 217.600668][ T1326] usb 5-1: USB disconnect, device number 7 [ 218.345947][T16825] bridge0: port 3(syz_tun) entered blocking state [ 218.348025][T16825] bridge0: port 3(syz_tun) entered disabled state [ 218.353543][T16825] syz_tun: entered allmulticast mode [ 218.357206][T16825] syz_tun: entered promiscuous mode [ 218.405274][T16829] usb usb9: usbfs: process 16829 (syz.0.4916) did not claim interface 30 before use [ 219.155403][T16849] input: syz1 as /devices/virtual/input/input32 [ 219.464790][ T40] kauditd_printk_skb: 65 callbacks suppressed [ 219.464803][ T40] audit: type=1326 audit(2000000149.473:4510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16870 comm="syz.1.4937" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x0 [ 220.043010][T16973] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 220.164046][T16980] netlink: 52 bytes leftover after parsing attributes in process `syz.4.4962'. [ 220.276643][T16990] can0: slcan on ttyS3. [ 220.350449][T16990] can0 (unregistered): slcan off ttyS3. [ 220.464979][T17008] sp0: Synchronizing with TNC [ 220.667772][T17030] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4985'. [ 220.773747][T17041] sp0: Synchronizing with TNC [ 220.832104][T17055] Invalid ELF header magic: != ELF [ 220.840062][ T40] audit: type=1326 audit(2000000150.853:4511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17058 comm="syz.4.4998" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 220.851829][ T40] audit: type=1326 audit(2000000150.853:4512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17058 comm="syz.4.4998" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 220.863807][ T40] audit: type=1326 audit(2000000150.853:4513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17058 comm="syz.4.4998" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 220.874720][ T40] audit: type=1326 audit(2000000150.853:4514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17058 comm="syz.4.4998" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 220.884197][ T40] audit: type=1326 audit(2000000150.863:4515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17058 comm="syz.4.4998" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 220.892414][ T40] audit: type=1326 audit(2000000150.863:4516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17058 comm="syz.4.4998" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 220.899239][ T40] audit: type=1326 audit(2000000150.863:4517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17058 comm="syz.4.4998" exe="/syz-executor" sig=0 arch=40000003 syscall=371 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 220.910123][ T40] audit: type=1326 audit(2000000150.863:4518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17058 comm="syz.4.4998" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 221.341434][ T40] audit: type=1326 audit(2000000151.353:4519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17114 comm="syz.0.5023" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 224.707935][ T40] kauditd_printk_skb: 73 callbacks suppressed [ 224.707949][ T40] audit: type=1326 audit(2000000154.713:4593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17210 comm="syz.0.5065" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 224.720683][ T40] audit: type=1326 audit(2000000154.713:4594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17210 comm="syz.0.5065" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf706e5a7 code=0x7ffc0000 [ 224.729880][ T40] audit: type=1326 audit(2000000154.713:4595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17210 comm="syz.0.5065" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 224.758283][ T40] audit: type=1326 audit(2000000154.713:4596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17210 comm="syz.0.5065" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf706e5a7 code=0x7ffc0000 [ 224.778270][ T40] audit: type=1326 audit(2000000154.713:4597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17210 comm="syz.0.5065" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 224.796219][ T40] audit: type=1326 audit(2000000154.713:4598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17210 comm="syz.0.5065" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf706e5a7 code=0x7ffc0000 [ 224.804505][ T40] audit: type=1326 audit(2000000154.713:4599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17210 comm="syz.0.5065" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 224.811715][ T40] audit: type=1326 audit(2000000154.713:4600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17210 comm="syz.0.5065" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf706e5a7 code=0x7ffc0000 [ 224.819058][ T40] audit: type=1326 audit(2000000154.713:4601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17210 comm="syz.0.5065" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 224.826665][ T40] audit: type=1326 audit(2000000154.713:4602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17210 comm="syz.0.5065" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf706e5a7 code=0x7ffc0000 [ 224.832344][T17222] binder: Binderfs stats mode cannot be changed during a remount [ 224.838255][T17224] netlink: 'syz.2.5071': attribute type 11 has an invalid length. [ 224.939574][T17234] loop9: detected capacity change from 0 to 7 [ 224.947131][T17234] loop9: [CUMANA/ADFS] p1 [ADFS] p1 [ 224.949109][T17234] loop9: partition table partially beyond EOD, truncated [ 224.951693][T17234] loop9: p1 size 2437361653 extends beyond EOD, truncated [ 225.262928][T17261] loop9: detected capacity change from 0 to 7 [ 225.266774][T17261] loop9: [CUMANA/ADFS] p1 [ADFS] p1 [ 225.268660][T17261] loop9: partition table partially beyond EOD, truncated [ 225.272704][T17261] loop9: p1 size 2437361653 extends beyond EOD, truncated [ 225.611188][ T5966] Bluetooth: hci3: command 0x0406 tx timeout [ 226.169859][T17307] nbd1: detected capacity change from 0 to 8589934655 [ 226.176517][ T5955] block nbd1: Receive control failed (result -32) [ 226.248210][T17320] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5116'. [ 226.388285][T17332] syz.1.5131 (17332): /proc/17332/oom_adj is deprecated, please use /proc/17332/oom_score_adj instead. [ 226.481611][T17340] binder: Binderfs stats mode cannot be changed during a remount [ 226.776158][T17357] input: syz1 as /devices/virtual/input/input33 [ 227.040842][T17376] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5145'. [ 227.104368][T12357] usb 6-1: new high-speed USB device number 13 using dummy_hcd [ 227.289763][T12357] usb 6-1: Using ep0 maxpacket: 8 [ 227.293177][T12357] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 227.296438][T12357] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 227.300431][T12357] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 227.303883][T12357] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 227.308315][T12357] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 227.311563][T12357] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 227.460938][T17405] input: syz1 as /devices/virtual/input/input34 [ 227.523654][T12357] usb 6-1: GET_CAPABILITIES returned 0 [ 227.525508][T12357] usbtmc 6-1:16.0: can't read capabilities [ 227.726514][ T6038] usb 6-1: USB disconnect, device number 13 [ 229.943283][T17549] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5220'. [ 229.949326][T17549] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5220'. [ 229.958240][T17549] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5220'. [ 230.018229][T17555] kvm: kvm [17554]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x11e) = 0x1 [ 230.049368][T17561] netlink: 36 bytes leftover after parsing attributes in process `syz.0.5226'. [ 230.452899][T17586] kvm: kvm [17585]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x11e) = 0x1 [ 230.695216][ T40] kauditd_printk_skb: 837 callbacks suppressed [ 230.695230][ T40] audit: type=1326 audit(2000000160.703:5440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17609 comm="syz.2.5250" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf6ffe579 code=0x0 [ 230.910582][ T7467] syz_tun (unregistering): left allmulticast mode [ 230.912794][ T7467] syz_tun (unregistering): left promiscuous mode [ 230.914873][ T7467] bridge0: port 3(syz_tun) entered disabled state [ 231.122373][T16964] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.206495][T16964] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.276644][T16964] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.368547][ T5966] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 231.371339][T16964] netdevsim netdevsim0 netdevsim0 (unregistering): left allmulticast mode [ 231.374347][ T5966] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 231.378825][ T5966] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 231.384075][ T5966] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 231.388190][ T5966] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 231.401555][T16964] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.469622][T17646] vlan0: entered allmulticast mode [ 231.474362][T17646] veth0_to_bond: entered allmulticast mode [ 231.547584][T16964] pimreg0: left promiscuous mode [ 231.549366][T16964] bridge0: port 2(pimreg0) entered disabled state [ 231.554245][T16964] bridge0: port 1(bridge_slave_0) entered disabled state [ 231.739574][T16964] batman_adv: batadv0: Interface deactivated: macvlan3 [ 231.749834][T16964] batman_adv: batadv0: Removing interface: macvlan3 [ 231.849615][T16964] bond0 (unregistering): left promiscuous mode [ 231.852007][T16964] bond_slave_0: left promiscuous mode [ 231.854359][T16964] bond_slave_1: left promiscuous mode [ 231.857413][T16964] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 231.860888][T16964] bond_slave_0: left allmulticast mode [ 231.864070][T16964] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 231.867758][T16964] bond_slave_1: left allmulticast mode [ 231.871759][T16964] bond0 (unregistering): Released all slaves [ 231.878391][T16964] bond1 (unregistering): Released all slaves [ 231.895996][T17642] chnl_net:caif_netlink_parms(): no params data found [ 231.980617][T16964] tipc: Disabling bearer [ 231.984593][T16964] tipc: Left network mode [ 232.034955][T17642] bridge0: port 1(bridge_slave_0) entered blocking state [ 232.037585][T17642] bridge0: port 1(bridge_slave_0) entered disabled state [ 232.040768][T17642] bridge_slave_0: entered allmulticast mode [ 232.044877][T17642] bridge_slave_0: entered promiscuous mode [ 232.050150][T17642] bridge0: port 2(bridge_slave_1) entered blocking state [ 232.053204][T17642] bridge0: port 2(bridge_slave_1) entered disabled state [ 232.056167][T17642] bridge_slave_1: entered allmulticast mode [ 232.060471][T17642] bridge_slave_1: entered promiscuous mode [ 232.111025][T17642] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 232.134642][T17642] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 232.138930][T17694] netlink: 'syz.1.5288': attribute type 1 has an invalid length. [ 232.143000][T17694] netlink: 1 bytes leftover after parsing attributes in process `syz.1.5288'. [ 232.189831][T17642] team0: Port device team_slave_0 added [ 232.201496][T17642] team0: Port device team_slave_1 added [ 232.279060][T17642] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 232.281957][T17642] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 232.291582][T17642] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 232.296075][T17642] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 232.298227][T17642] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 232.306496][T17642] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 232.391720][T17642] hsr_slave_0: entered promiscuous mode [ 232.394695][T17642] hsr_slave_1: entered promiscuous mode [ 232.397294][T17642] debugfs: 'hsr0' already exists in 'hsr' [ 232.399174][T17642] Cannot create hsr debugfs directory [ 232.401967][T16964] dummy0: left promiscuous mode [ 232.407187][T16964] hsr_slave_0: left promiscuous mode [ 232.409507][T16964] hsr_slave_1: left promiscuous mode [ 232.411948][T16964] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 232.414267][T16964] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 232.417216][T16964] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 232.420233][T16964] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 232.443508][T16964] macsec0: left allmulticast mode [ 232.445399][T16964] veth1_macvtap: left allmulticast mode [ 232.447185][T16964] veth1_macvtap: left promiscuous mode [ 232.448956][T16964] veth0_macvtap: left promiscuous mode [ 232.450829][T16964] veth1_vlan: left promiscuous mode [ 232.452649][T16964] veth0_vlan: left promiscuous mode [ 233.319819][T17749] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5313'. [ 233.449829][ T5966] Bluetooth: hci2: command tx timeout [ 233.872438][T17747] bond2: ARP target 9.0.0.0 is already present [ 233.874592][T17747] bond2: option arp_ip_target: invalid value (9) [ 233.878502][T17747] bond2 (unregistering): Released all slaves [ 234.064785][T17642] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 234.070729][T17642] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 234.075253][T17642] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 234.081503][T17642] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 234.155632][T17642] 8021q: adding VLAN 0 to HW filter on device bond0 [ 234.166271][T17642] 8021q: adding VLAN 0 to HW filter on device team0 [ 234.173209][T16930] bridge0: port 1(bridge_slave_0) entered blocking state [ 234.176115][T16930] bridge0: port 1(bridge_slave_0) entered forwarding state [ 234.184708][T16961] bridge0: port 2(bridge_slave_1) entered blocking state [ 234.187819][T16961] bridge0: port 2(bridge_slave_1) entered forwarding state [ 234.233058][T16964] IPVS: stop unused estimator thread 0... [ 234.405570][T17642] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 234.578269][T17642] veth0_vlan: entered promiscuous mode [ 234.584859][T17642] veth1_vlan: entered promiscuous mode [ 234.605160][T17642] veth0_macvtap: entered promiscuous mode [ 234.609546][T17642] veth1_macvtap: entered promiscuous mode [ 234.623202][T17642] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 234.631232][T17642] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 234.637600][T16930] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 234.643050][T16930] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 234.647459][T16930] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 234.655596][T16930] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 234.696965][T16930] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 234.700019][T16930] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 234.716247][T16930] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 234.719106][T16930] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 234.853391][T17806] o2cb: This node has not been configured. [ 234.855548][T17806] o2cb: Cluster check failed. Fix errors before retrying. [ 234.858347][T17806] (syz.5.5328,17806,2):user_dlm_register:674 ERROR: status = -22 [ 234.862248][T17806] (syz.5.5328,17806,0):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file1" [ 235.096738][T17830] netlink: 'syz.5.5340': attribute type 11 has an invalid length. [ 235.210021][ T6007] usb 6-1: new high-speed USB device number 14 using dummy_hcd [ 235.247434][T17841] block nbd5: not configured, cannot reconfigure [ 235.375039][ T6007] usb 6-1: config 0 has no interfaces? [ 235.377315][ T6007] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 235.381151][ T6007] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 235.386331][ T6007] usb 6-1: config 0 descriptor?? [ 235.530231][ T5966] Bluetooth: hci2: command tx timeout [ 235.594380][ T10] usb 6-1: USB disconnect, device number 14 [ 235.596798][T17860] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5354'. [ 235.605935][T17860] netlink: 72 bytes leftover after parsing attributes in process `syz.5.5354'. [ 235.653927][T17862] loop6: detected capacity change from 0 to 524287999 [ 235.702765][T17864] random: crng reseeded on system resumption [ 236.024075][T17887] bond1: ARP target 9.0.0.0 is already present [ 236.026924][T17887] bond1: option arp_ip_target: invalid value (9) [ 236.030787][T17887] bond1 (unregistering): Released all slaves [ 236.136819][T17896] block nbd4: not configured, cannot reconfigure [ 236.153462][ T40] audit: type=1326 audit(2000000166.163:5441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17899 comm="syz.5.5373" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 236.164932][ T40] audit: type=1326 audit(2000000166.173:5442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17899 comm="syz.5.5373" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 236.173766][ T40] audit: type=1326 audit(2000000166.173:5443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17899 comm="syz.5.5373" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 236.183034][ T40] audit: type=1326 audit(2000000166.173:5444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17899 comm="syz.5.5373" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 236.193365][ T40] audit: type=1326 audit(2000000166.173:5445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17899 comm="syz.5.5373" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 236.202883][ T40] audit: type=1326 audit(2000000166.173:5446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17899 comm="syz.5.5373" exe="/syz-executor" sig=0 arch=40000003 syscall=177 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 236.219805][ T40] audit: type=1326 audit(2000000166.223:5447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17899 comm="syz.5.5373" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 236.239782][ T40] audit: type=1326 audit(2000000166.223:5448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17899 comm="syz.5.5373" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 236.473178][T17927] block nbd2: not configured, cannot reconfigure [ 236.726326][T17941] syz.4.5389 (17941): drop_caches: 2 [ 236.766248][T17948] netlink: 64 bytes leftover after parsing attributes in process `syz.4.5392'. [ 236.864127][ T10] hid_parser_main: 8 callbacks suppressed [ 236.864147][ T10] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 236.870626][ T10] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 236.873098][ T10] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 236.875405][ T10] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 236.878254][ T10] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 236.881660][ T10] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 236.883910][ T10] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 236.886269][ T10] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 236.888799][ T10] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 236.891955][ T10] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 236.896771][ T10] hid-generic 0000:0000:0000.0005: hidraw1: HID v0.00 Device [Zw[ba|\rn)A#6oү?aIs5hV3(; [ 236.896771][ T10] ѝP$zɷX$w[SRezxuSrl[5l'ZCz2] on tDKY縣Ϫ򞿹,UOp{"ixA[ewÒ}ZXA [ 236.906034][T17957] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 237.136981][ T40] audit: type=1326 audit(2000000167.143:5449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17973 comm="syz.2.5404" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf6ffe579 code=0x0 [ 237.184623][T17982] sit0: entered promiscuous mode [ 237.189302][T17982] netlink: 'syz.5.5407': attribute type 1 has an invalid length. [ 237.191900][T17982] netlink: 1 bytes leftover after parsing attributes in process `syz.5.5407'. [ 237.612484][ T5966] Bluetooth: hci2: command tx timeout [ 237.910107][T18026] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5427'. [ 238.004827][T18034] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5430'. [ 239.690069][ T5966] Bluetooth: hci2: command tx timeout [ 239.721947][T18086] bridge0: port 3(syz_tun) entered blocking state [ 239.724959][T18086] bridge0: port 3(syz_tun) entered disabled state [ 239.727610][T18086] syz_tun: entered allmulticast mode [ 239.731924][T18086] syz_tun: entered promiscuous mode [ 239.734976][T18086] bridge0: port 3(syz_tun) entered blocking state [ 239.737445][T18086] bridge0: port 3(syz_tun) entered forwarding state [ 239.928908][T18109] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5463'. [ 239.996336][T18121] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5470'. [ 239.999510][T18121] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5470'. [ 240.158366][T18158] bridge0: port 3(syz_tun) entered blocking state [ 240.161027][T18158] bridge0: port 3(syz_tun) entered disabled state [ 240.163222][T18158] syz_tun: entered allmulticast mode [ 240.165813][T18158] syz_tun: entered promiscuous mode [ 240.221882][T18170] netlink: 172 bytes leftover after parsing attributes in process `syz.2.5493'. [ 240.225086][T18170] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 240.258550][T18174] netlink: 92 bytes leftover after parsing attributes in process `syz.4.5495'. [ 240.373679][T17486] bridge0: port 3(syz_tun) entered disabled state [ 240.386832][T17486] syz_tun (unregistering): left allmulticast mode [ 240.389368][T17486] syz_tun (unregistering): left promiscuous mode [ 240.393635][T17486] bridge0: port 3(syz_tun) entered disabled state [ 240.429930][ T6038] usb 10-1: new high-speed USB device number 2 using dummy_hcd [ 240.601551][ T6038] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 240.605109][ T6038] usb 10-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 240.608392][ T6038] usb 10-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 240.621052][ T6038] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 240.624301][ T6038] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 240.626847][ T6038] usb 10-1: Product: syz [ 240.628219][ T6038] usb 10-1: Manufacturer: syz [ 240.630150][ T6038] usb 10-1: SerialNumber: syz [ 240.798256][ T5955] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 240.804061][ T5955] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 240.807520][ T5955] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 240.814962][ T5955] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 240.818484][ T5955] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 240.839380][ T6038] usblp 10-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 240.924517][T18214] chnl_net:caif_netlink_parms(): no params data found [ 240.998137][T18214] bridge0: port 1(bridge_slave_0) entered blocking state [ 241.000553][T18214] bridge0: port 1(bridge_slave_0) entered disabled state [ 241.002836][T18214] bridge_slave_0: entered allmulticast mode [ 241.005611][T18214] bridge_slave_0: entered promiscuous mode [ 241.009912][T18214] bridge0: port 2(bridge_slave_1) entered blocking state [ 241.012500][T18214] bridge0: port 2(bridge_slave_1) entered disabled state [ 241.014970][T18214] bridge_slave_1: entered allmulticast mode [ 241.017768][T18214] bridge_slave_1: entered promiscuous mode [ 241.040411][ T6038] usb 10-1: USB disconnect, device number 2 [ 241.045416][ T6038] usblp0: removed [ 241.081071][T18214] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 241.086910][T18214] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 241.123311][T18214] team0: Port device team_slave_0 added [ 241.127183][T18214] team0: Port device team_slave_1 added [ 241.147136][T18228] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5519'. [ 241.166347][T18214] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 241.170321][T18214] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 241.179407][T18214] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 241.184000][T18214] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 241.186195][T18214] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 241.196030][T18214] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 241.242371][T18214] hsr_slave_0: entered promiscuous mode [ 241.244721][T18214] hsr_slave_1: entered promiscuous mode [ 241.247006][T18214] debugfs: 'hsr0' already exists in 'hsr' [ 241.249086][T18214] Cannot create hsr debugfs directory [ 241.383569][T18214] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 241.467872][T18214] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 241.535895][T18214] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 241.598663][T18214] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 241.745875][T18214] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 241.751521][T18214] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 241.756358][T18214] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 241.761664][T18214] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 241.816157][T18214] 8021q: adding VLAN 0 to HW filter on device bond0 [ 241.826089][T18214] 8021q: adding VLAN 0 to HW filter on device team0 [ 241.832467][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 241.835093][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 241.843028][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 241.845327][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 241.871128][T18214] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 241.898106][T18273] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5535'. [ 241.931661][ T29] hid_parser_main: 6 callbacks suppressed [ 241.931681][ T29] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 241.940517][ T29] hid-generic 0000:0000:0000.0006: hidraw1: HID v0.00 Device [syz1] on syz0 [ 241.961023][T18214] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 241.995862][T18214] veth0_vlan: entered promiscuous mode [ 242.000915][T18214] veth1_vlan: entered promiscuous mode [ 242.018509][T18214] veth0_macvtap: entered promiscuous mode [ 242.023181][T18214] veth1_macvtap: entered promiscuous mode [ 242.032904][T18214] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 242.040896][T18214] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 242.046788][T16961] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.049636][T16961] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.058515][T16961] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.062620][T16961] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.103990][T16961] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.106662][T16961] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 242.120629][T16953] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.123199][T16953] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 242.665606][T18315] __nla_validate_parse: 1 callbacks suppressed [ 242.665631][T18315] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5550'. [ 242.749803][ T29] usb 7-1: new low-speed USB device number 10 using dummy_hcd [ 242.900497][ T5966] Bluetooth: hci1: command tx timeout [ 242.904636][ T29] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 242.908905][ T29] usb 7-1: config 0 has no interface number 0 [ 242.913014][ T29] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10 [ 242.917530][ T29] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8 [ 242.922448][ T29] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 242.926955][ T29] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 242.933292][ T29] usb 7-1: config 0 descriptor?? [ 242.938703][T18312] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 242.945378][ T29] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 243.148398][ T29] usb 7-1: USB disconnect, device number 10 [ 244.969879][ T5966] Bluetooth: hci1: command tx timeout [ 245.427012][T18386] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 245.432087][T18386] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 245.432867][T18407] program syz.2.5592 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 245.462880][T18386] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 245.465908][T18386] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 245.470841][T18410] sp0: Synchronizing with TNC [ 245.474198][T18409] [U] [ 245.476410][T18386] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 245.488294][T18386] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 245.491071][T18386] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 245.498884][T18386] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 245.947073][T18459] kvm: user requested TSC rate below hardware speed [ 245.971626][T18464] netlink: 56 bytes leftover after parsing attributes in process `syz.1.5618'. [ 246.400325][T18513] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5642'. [ 246.404516][T18513] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5642'. [ 246.418309][T16930] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 246.422401][T16930] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 246.425627][T16930] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 246.428375][T16930] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 246.491209][T18527] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5648'. [ 246.541898][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 246.547641][T18533] sch_fq: defrate 53322 ignored. [ 246.850134][ T56] usb 7-1: new high-speed USB device number 11 using dummy_hcd [ 246.956819][T18576] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5668'. [ 247.000444][ T56] usb 7-1: Using ep0 maxpacket: 8 [ 247.005020][ T56] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 247.008766][ T56] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 247.013266][ T56] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10 [ 247.016888][ T56] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024 [ 247.021015][ T56] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 247.025404][ T56] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 247.040561][ T56] hub 7-1:1.0: bad descriptor, ignoring hub [ 247.043179][ T56] hub 7-1:1.0: probe with driver hub failed with error -5 [ 247.047532][ T56] cdc_wdm 7-1:1.0: skipping garbage [ 247.050456][ T56] cdc_wdm 7-1:1.0: skipping garbage [ 247.053278][ T56] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device [ 247.055369][ T56] cdc_wdm 7-1:1.0: Unknown control protocol [ 247.340070][ T1326] usb 7-1: USB disconnect, device number 11 [ 247.370541][ T5966] Bluetooth: hci3: command 0x0406 tx timeout [ 247.540713][ T5955] Bluetooth: hci2: command 0x0c1a tx timeout [ 247.543034][ T5966] Bluetooth: hci1: command 0x0419 tx timeout [ 249.428702][ T40] audit: type=1326 audit(2000000179.433:5450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18684 comm="syz.5.5714" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 249.436452][ T40] audit: type=1326 audit(2000000179.433:5451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18684 comm="syz.5.5714" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 249.443881][ T40] audit: type=1326 audit(2000000179.433:5452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18684 comm="syz.5.5714" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 249.450743][ T40] audit: type=1326 audit(2000000179.443:5453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18684 comm="syz.5.5714" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 249.459050][ T40] audit: type=1326 audit(2000000179.443:5454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18684 comm="syz.5.5714" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 249.459861][ T5966] Bluetooth: hci3: command 0x0406 tx timeout [ 249.466250][ T40] audit: type=1326 audit(2000000179.443:5455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18684 comm="syz.5.5714" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 249.475629][ T40] audit: type=1326 audit(2000000179.443:5456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18684 comm="syz.5.5714" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 249.483373][ T40] audit: type=1326 audit(2000000179.443:5457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18684 comm="syz.5.5714" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 249.491210][ T40] audit: type=1326 audit(2000000179.443:5458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18684 comm="syz.5.5714" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 249.498644][ T40] audit: type=1326 audit(2000000179.443:5459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18684 comm="syz.5.5714" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 249.610282][ T5966] Bluetooth: hci1: command 0x0419 tx timeout [ 249.610306][ T5955] Bluetooth: hci2: command 0x0c1a tx timeout [ 249.615263][T18695] netlink: 1 bytes leftover after parsing attributes in process `syz.5.5720'. [ 249.759168][T18703] serio: Serial port ptm0 [ 251.700287][ T5955] Bluetooth: hci1: command 0x0419 tx timeout [ 251.701790][ T5966] Bluetooth: hci2: command 0x0c1a tx timeout [ 251.962484][ T10] kernel read not supported for file /dsp (pid: 10 comm: kworker/0:1) [ 252.066397][T18809] netlink: 'syz.4.5774': attribute type 9 has an invalid length. [ 252.071786][T18809] netlink: 'syz.4.5774': attribute type 6 has an invalid length. [ 252.075553][T18809] netlink: 'syz.4.5774': attribute type 7 has an invalid length. [ 252.079405][T18809] netlink: 'syz.4.5774': attribute type 8 has an invalid length. [ 252.555494][T18830] usb 1-1: USB disconnect, device number 3 [ 253.007167][T18871] mkiss: ax0: crc mode is auto. [ 253.568884][T18905] gfs2: gfs2 mount does not exist [ 253.769948][ T5966] Bluetooth: hci1: command 0x0419 tx timeout [ 253.919280][T18936] mkiss: ax0: crc mode is auto. [ 254.319920][T18981] bridge0: port 3(syz_tun) entered disabled state [ 254.480475][ T56] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 255.567079][T19017] serio: Serial port ptm0 [ 255.858635][T19046] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 255.979882][ T54] usb 7-1: new full-speed USB device number 12 using dummy_hcd [ 256.131242][ T54] usb 7-1: config 0 has an invalid interface number: 132 but max is 0 [ 256.131258][ T54] usb 7-1: config 0 has no interface number 0 [ 256.133943][ T54] usb 7-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25 [ 256.144234][ T54] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 256.144263][ T54] usb 7-1: Product: syz [ 256.144280][ T54] usb 7-1: Manufacturer: syz [ 256.151315][ T54] usb 7-1: SerialNumber: syz [ 256.152755][ T54] usb 7-1: config 0 descriptor?? [ 256.156713][ T54] hub 7-1:0.132: bad descriptor, ignoring hub [ 256.156733][ T54] hub 7-1:0.132: probe with driver hub failed with error -5 [ 256.159082][ T54] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.132/input/input36 [ 256.790130][ T54] usb 7-1: USB disconnect, device number 12 [ 256.852975][T19069] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5895'. [ 256.882580][T19076] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5899'. [ 256.886574][T19076] netem: change failed [ 257.222163][ T12] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 257.286365][T19123] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5919'. [ 257.417779][T19142] binder: 19141:19142 ioctl c0306201 80000640 returned -22 [ 257.426562][T19144] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4) [ 257.428845][T19144] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 257.434194][T19144] vhci_hcd vhci_hcd.0: Device attached [ 257.438223][T19146] vhci_hcd: connection closed [ 257.441246][T16930] vhci_hcd: stop threads [ 257.445574][T16930] vhci_hcd: release socket [ 257.447240][T16930] vhci_hcd: disconnect device [ 257.640624][ T1326] e1000 0000:00:06.0 eth0: Reset adapter [ 257.699859][ T56] usb 7-1: new high-speed USB device number 13 using dummy_hcd [ 257.871435][ T56] usb 7-1: config index 0 descriptor too short (expected 65274, got 45) [ 257.875740][ T56] usb 7-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00 [ 257.878566][ T56] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 257.881152][ T56] usb 7-1: Product: syz [ 257.882461][ T56] usb 7-1: Manufacturer: syz [ 257.883927][ T56] usb 7-1: SerialNumber: syz [ 258.091300][ T56] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPROTO [ 258.095057][ T56] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): lan78xx_setup_irq_domain() failed : -71 [ 258.098363][ T56] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED [ 258.103565][ T56] lan78xx 7-1:1.0: probe with driver lan78xx failed with error -71 [ 258.110085][ T56] usb 7-1: USB disconnect, device number 13 [ 259.771049][ T56] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX [ 260.652582][ T1418] ieee802154 phy1 wpan1: encryption failed: -22 [ 260.941549][ T40] kauditd_printk_skb: 28 callbacks suppressed [ 260.941560][ T40] audit: type=1800 audit(2000000190.953:5488): pid=19196 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.5952" name="SYSV00000000" dev="tmpfs" ino=1 res=0 errno=0 [ 260.970023][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 261.021795][T19210] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5959'. [ 261.024675][T19210] netlink: 'syz.2.5959': attribute type 30 has an invalid length. [ 261.034889][T16953] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 261.037490][T16953] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 261.043058][T16953] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 261.056188][T16953] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 261.324348][T19247] mkiss: ax0: crc mode is auto. [ 261.657254][ T40] audit: type=1326 audit(2000000191.663:5489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19269 comm="syz.1.5987" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 261.669578][T19274] kvm: user requested TSC rate below hardware speed [ 261.670088][ T40] audit: type=1326 audit(2000000191.663:5490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19269 comm="syz.1.5987" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 261.678879][ T40] audit: type=1326 audit(2000000191.663:5491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19269 comm="syz.1.5987" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb1598 code=0x7ffc0000 [ 261.686063][ T40] audit: type=1326 audit(2000000191.663:5492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19269 comm="syz.1.5987" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb1598 code=0x7ffc0000 [ 261.694020][ T40] audit: type=1326 audit(2000000191.663:5493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19269 comm="syz.1.5987" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 261.702599][ T40] audit: type=1326 audit(2000000191.663:5494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19269 comm="syz.1.5987" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 261.709335][ T40] audit: type=1326 audit(2000000191.663:5495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19269 comm="syz.1.5987" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb1598 code=0x7ffc0000 [ 261.717047][ T40] audit: type=1326 audit(2000000191.663:5496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19269 comm="syz.1.5987" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb1598 code=0x7ffc0000 [ 261.724336][ T40] audit: type=1326 audit(2000000191.663:5497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19269 comm="syz.1.5987" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb1598 code=0x7ffc0000 [ 262.165121][T19298] sg_write: data in/out 489/14 bytes for SCSI command 0xb-- guessing data in; [ 262.165121][T19298] program syz.1.6000 not setting count and/or reply_len properly [ 262.334230][T19310] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4) [ 262.336258][T19310] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 262.339978][T19310] vhci_hcd vhci_hcd.0: Device attached [ 262.343969][T19312] vhci_hcd: connection closed [ 262.344186][T16961] vhci_hcd: stop threads [ 262.348301][T16961] vhci_hcd: release socket [ 262.350101][T16961] vhci_hcd: disconnect device [ 262.960147][T19328] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6009'. [ 263.013871][T19336] vxcan0: tx address claim with dlc 0 [ 263.206109][T19350] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6021'. [ 263.209166][T19350] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6021'. [ 263.221931][T19352] netlink: 'syz.2.6022': attribute type 1 has an invalid length. [ 263.224424][T19352] netlink: 224 bytes leftover after parsing attributes in process `syz.2.6022'. [ 263.804522][T19396] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 263.806797][T19396] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 263.809016][T19396] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 264.065581][T19423] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6054'. [ 264.230052][T19432] sp0: Synchronizing with TNC [ 264.237531][T19431] [U] [ 265.060141][ T841] usb 7-1: new high-speed USB device number 14 using dummy_hcd [ 265.224669][ T841] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 265.229126][ T841] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 265.232486][ T841] usb 7-1: Product: syz [ 265.234273][ T841] usb 7-1: Manufacturer: syz [ 265.236234][ T841] usb 7-1: SerialNumber: syz [ 265.239487][ T841] usb 7-1: config 0 descriptor?? [ 265.388420][T19501] netlink: 80 bytes leftover after parsing attributes in process `syz.1.6089'. [ 265.657610][ T840] usb 7-1: USB disconnect, device number 14 [ 265.849941][ T5966] Bluetooth: hci1: command 0x0419 tx timeout [ 265.852058][ T5966] Bluetooth: hci2: command 0x0c1a tx timeout [ 265.853996][ T5966] Bluetooth: hci3: command 0x0406 tx timeout [ 266.196166][T19550] netlink: 'syz.2.6113': attribute type 25 has an invalid length. [ 266.199074][T19550] netlink: 'syz.2.6113': attribute type 7 has an invalid length. [ 266.233715][T19556] erspan0: entered promiscuous mode [ 266.270225][ T40] kauditd_printk_skb: 27 callbacks suppressed [ 266.270243][ T40] audit: type=1326 audit(2000000196.273:5525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19563 comm="syz.5.6121" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x0 [ 266.689906][ T840] usb 7-1: new full-speed USB device number 15 using dummy_hcd [ 266.851912][ T840] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 266.855787][ T840] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 266.860881][ T840] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 266.864347][ T840] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 267.074254][ T840] usb 7-1: usb_control_msg returned -32 [ 267.076411][ T840] usbtmc 7-1:16.0: can't read capabilities [ 267.082249][ T840] usb 7-1: USB disconnect, device number 15 [ 267.678618][ T40] audit: type=1326 audit(2000000197.683:5526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19643 comm="syz.2.6157" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf703e598 code=0x7ffc0000 [ 267.680047][ T840] usb 6-1: new high-speed USB device number 15 using dummy_hcd [ 267.687002][ T40] audit: type=1326 audit(2000000197.683:5527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19643 comm="syz.2.6157" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000 [ 267.700327][ T40] audit: type=1326 audit(2000000197.683:5528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19643 comm="syz.2.6157" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf703e598 code=0x7ffc0000 [ 267.708288][ T40] audit: type=1326 audit(2000000197.683:5529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19643 comm="syz.2.6157" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000 [ 267.717300][ T40] audit: type=1326 audit(2000000197.693:5530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19643 comm="syz.2.6157" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf703e598 code=0x7ffc0000 [ 267.724163][ T40] audit: type=1326 audit(2000000197.693:5531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19643 comm="syz.2.6157" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf703e598 code=0x7ffc0000 [ 267.731417][ T40] audit: type=1326 audit(2000000197.693:5532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19643 comm="syz.2.6157" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf703e598 code=0x7ffc0000 [ 267.738350][ T40] audit: type=1326 audit(2000000197.693:5533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19643 comm="syz.2.6157" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf703e598 code=0x7ffc0000 [ 267.745628][ T40] audit: type=1326 audit(2000000197.693:5534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19643 comm="syz.2.6157" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf703e598 code=0x7ffc0000 [ 267.752500][T19646] bridge0: port 2(bridge_slave_1) entered disabled state [ 267.841451][ T840] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 267.845917][ T840] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 267.850171][T19653] syzkaller0: tun_chr_ioctl cmd 1074025678 [ 267.851873][ T840] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 267.853809][T19653] syzkaller0: group set to 0 [ 267.858459][ T840] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 267.858482][ T840] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 267.867644][ T840] usb 6-1: config 0 descriptor?? [ 268.277579][ T840] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 268.280243][ T840] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 268.282854][ T840] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 268.285211][ T840] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 268.288667][ T840] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 268.291967][ T840] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 268.294670][ T840] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 268.297941][ T840] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 268.301108][ T840] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 268.303444][ T840] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 268.313509][ T840] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw0: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 268.553151][ T840] usb 6-1: USB disconnect, device number 15 [ 268.969914][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 269.097183][T19735] netlink: 'syz.1.6201': attribute type 9 has an invalid length. [ 269.101808][T19735] netlink: 'syz.1.6201': attribute type 6 has an invalid length. [ 269.105838][T19735] netlink: 'syz.1.6201': attribute type 7 has an invalid length. [ 269.109223][T19735] netlink: 'syz.1.6201': attribute type 8 has an invalid length. [ 269.592701][T19777] mkiss: ax0: crc mode is auto. [ 270.200584][ T10] kernel read not supported for file /dsp (pid: 10 comm: kworker/0:1) [ 271.302845][T19862] vcan0: entered allmulticast mode [ 271.305017][T19862] vcan0: left allmulticast mode [ 271.348987][T19871] loop6: detected capacity change from 0 to 524288000 [ 271.352840][T19871] buffer_io_error: 22 callbacks suppressed [ 271.352852][T19871] Buffer I/O error on dev loop6, logical block 0, async page read [ 271.357592][T19871] Buffer I/O error on dev loop6, logical block 0, async page read [ 271.360769][T19871] Buffer I/O error on dev loop6, logical block 0, async page read [ 271.364236][T19871] Buffer I/O error on dev loop6, logical block 0, async page read [ 271.368367][T19871] Buffer I/O error on dev loop6, logical block 0, async page read [ 271.375113][T19871] Buffer I/O error on dev loop6, logical block 0, async page read [ 271.378861][T19871] Buffer I/O error on dev loop6, logical block 0, async page read [ 271.382967][T19871] Buffer I/O error on dev loop6, logical block 0, async page read [ 271.386259][T19871] ldm_validate_partition_table(): Disk read failed. [ 271.389301][T19871] Buffer I/O error on dev loop6, logical block 0, async page read [ 271.392952][T19871] Buffer I/O error on dev loop6, logical block 0, async page read [ 271.395779][T19871] Dev loop6: unable to read RDB block 0 [ 271.397851][T19871] loop6: unable to read partition table [ 271.399889][T19871] loop_reread_partitions: partition scan of loop6 (3 xC) failed (rc=-5) [ 271.441258][T19881] loop6: detected capacity change from 524288000 to 0 [ 271.464460][T19891] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6274'. [ 271.467921][T19891] netlink: 32 bytes leftover after parsing attributes in process `syz.2.6274'. [ 271.779065][T19931] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6294'. [ 271.786039][T19931] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6294'. [ 271.932721][T19950] dummy0: entered promiscuous mode [ 271.936180][T19949] dummy0: left promiscuous mode [ 272.030558][ T841] usb 6-1: new high-speed USB device number 16 using dummy_hcd [ 272.054197][T19963] loop7: detected capacity change from 0 to 7 [ 272.061858][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 272.066727][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 272.070113][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 272.073560][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 272.076740][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 272.080604][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 272.085052][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 272.088286][T19963] ldm_validate_partition_table(): Disk read failed. [ 272.090901][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 272.094195][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 272.097310][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 272.101500][T19963] Dev loop7: unable to read RDB block 0 [ 272.112897][T19963] loop7: unable to read partition table [ 272.114877][T19963] loop7: partition table beyond EOD, truncated [ 272.116879][T19963] loop_reread_partitions: partition scan of loop7 () failed (rc=-5) [ 272.191675][ T841] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 272.196058][ T841] usb 6-1: config 0 interface 0 has no altsetting 0 [ 272.204026][ T841] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 272.207828][ T841] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 272.212251][ T841] usb 6-1: Product: syz [ 272.214155][ T841] usb 6-1: Manufacturer: syz [ 272.216262][ T841] usb 6-1: SerialNumber: syz [ 272.219643][ T841] usb 6-1: config 0 descriptor?? [ 272.225330][ T841] usb 6-1: selecting invalid altsetting 0 [ 272.483207][ T1326] usb 6-1: USB disconnect, device number 16 [ 272.960383][T19994] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6321'. [ 273.236370][T20014] syz_tun: entered promiscuous mode [ 273.546364][T20057] ref_ctr_offset mismatch. inode: 0x56e offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x4 [ 273.811148][ T40] kauditd_printk_skb: 137 callbacks suppressed [ 273.811165][ T40] audit: type=1326 audit(2000000204.826:5672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20071 comm="syz.2.6357" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf703e579 code=0x0 [ 273.860503][ T841] usb 6-1: new high-speed USB device number 17 using dummy_hcd [ 274.020874][ T841] usb 6-1: Using ep0 maxpacket: 8 [ 274.026858][ T841] usb 6-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04 [ 274.029774][ T841] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 274.032493][ T841] usb 6-1: Product: syz [ 274.034032][ T841] usb 6-1: Manufacturer: syz [ 274.035527][ T841] usb 6-1: SerialNumber: syz [ 274.038329][ T841] usb 6-1: config 0 descriptor?? [ 274.244364][ T841] usb 6-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state [ 274.248578][ T841] dvb_usb_rtl28xxu 6-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71 [ 274.254683][ T841] usb 6-1: USB disconnect, device number 17 [ 274.445993][T20086] netlink: 'syz.4.6363': attribute type 1 has an invalid length. [ 274.680848][ T40] audit: type=1800 audit(2000000205.696:5673): pid=20091 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.6365" name="SYSV00000000" dev="tmpfs" ino=1 res=0 errno=0 [ 274.842201][T20108] mkiss: ax0: crc mode is auto. [ 275.040918][T20118] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6385'. [ 275.044369][T20118] netlink: 'syz.1.6385': attribute type 5 has an invalid length. [ 275.274070][T20140] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6387'. [ 275.309365][T20144] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6388'. [ 275.313999][T20144] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6388'. [ 275.319576][T20144] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6388'. [ 275.501648][ T54] kernel write not supported for file /input/mouse0 (pid: 54 comm: kworker/3:1) [ 275.809230][T20192] binder: 20190:20192 ioctl 4018620d 0 returned -22 [ 276.328591][T20248] vxcan0: tx address claim with dlc 0 [ 278.428787][ T40] audit: type=1326 audit(2000000209.436:5674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20349 comm="syz.2.6484" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000 [ 278.438251][ T40] audit: type=1326 audit(2000000209.436:5675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20349 comm="syz.2.6484" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000 [ 278.447965][ T40] audit: type=1326 audit(2000000209.436:5676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20349 comm="syz.2.6484" exe="/syz-executor" sig=0 arch=40000003 syscall=312 compat=1 ip=0xf703e579 code=0x7ffc0000 [ 278.457008][ T40] audit: type=1326 audit(2000000209.436:5677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20349 comm="syz.2.6484" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000 [ 278.467563][ T40] audit: type=1326 audit(2000000209.436:5678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20349 comm="syz.2.6484" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000 [ 278.477763][T20352] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 278.680964][T20370] __nla_validate_parse: 4 callbacks suppressed [ 278.680981][T20370] netlink: 256 bytes leftover after parsing attributes in process `syz.2.6494'. [ 279.046502][T20383] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6500'. [ 279.111722][ T40] audit: type=1326 audit(2000000210.126:5679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20388 comm="syz.1.6503" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fb1579 code=0x0 [ 279.558397][T20434] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6524'. [ 279.562348][T20434] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6524'. [ 279.730051][ T6043] usb 10-1: new high-speed USB device number 3 using dummy_hcd [ 279.890043][ T6043] usb 10-1: Using ep0 maxpacket: 32 [ 279.893914][ T6043] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 102, changing to 10 [ 279.899369][ T6043] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24624, setting to 1024 [ 279.905514][ T6043] usb 10-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 279.913692][ T6043] usb 10-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22 [ 279.917334][ T6043] usb 10-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131 [ 279.920754][ T6043] usb 10-1: Product: syz [ 279.922364][ T6043] usb 10-1: Manufacturer: syz [ 279.924333][ T6043] usb 10-1: SerialNumber: syz [ 279.930986][ T6043] input: appletouch as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:1.0/input/input38 [ 280.136801][T12359] usb 10-1: USB disconnect, device number 3 [ 280.148233][T12359] appletouch 10-1:1.0: input: appletouch disconnected [ 280.520704][ T1326] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 281.150287][ T6043] usb 10-1: new high-speed USB device number 4 using dummy_hcd [ 281.302125][ T6043] usb 10-1: config index 0 descriptor too short (expected 65274, got 45) [ 281.306582][ T6043] usb 10-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00 [ 281.309881][ T6043] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 281.312691][ T6043] usb 10-1: Product: syz [ 281.314460][ T6043] usb 10-1: Manufacturer: syz [ 281.316356][ T6043] usb 10-1: SerialNumber: syz [ 281.532358][ T6043] lan78xx 10-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPROTO [ 281.536189][ T6043] lan78xx 10-1:1.0 (unnamed net_device) (uninitialized): lan78xx_setup_irq_domain() failed : -71 [ 281.540979][ T6043] lan78xx 10-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED [ 281.546985][ T6043] lan78xx 10-1:1.0: probe with driver lan78xx failed with error -71 [ 281.552619][ T6043] usb 10-1: USB disconnect, device number 4 [ 281.589511][T20503] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6556'. [ 281.649473][T20509] autofs4:pid:20509:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1986356271.1836347439), cmd(0xc018937c) [ 281.657970][T20509] autofs4:pid:20509:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937c) [ 282.436163][T20580] netlink: 56 bytes leftover after parsing attributes in process `syz.4.6591'. [ 282.639490][T20603] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6602'. [ 282.643363][T20603] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6602'. [ 282.932847][T20637] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6623'. [ 283.052049][T20649] netlink: 116 bytes leftover after parsing attributes in process `syz.2.6624'. [ 283.053452][T20647] ALSA: mixer_oss: invalid OSS volume 'PHOfiЧaEEAKER' [ 283.057381][T20647] ALSA: mixer_oss: invalid OSS volume '' [ 283.970394][T20741] netlink: 'syz.1.6666': attribute type 1 has an invalid length. [ 283.973322][T20741] netlink: 224 bytes leftover after parsing attributes in process `syz.1.6666'. [ 284.019388][T20743] netlink: 56 bytes leftover after parsing attributes in process `syz.1.6668'. [ 284.023503][T20743] netlink: 56 bytes leftover after parsing attributes in process `syz.1.6668'. [ 284.698761][T20801] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0 [ 284.969964][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 285.005500][T20823] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6705'. [ 285.109866][ T54] usb 7-1: new high-speed USB device number 16 using dummy_hcd [ 285.271663][ T54] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 285.275904][ T54] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 285.279176][ T54] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 285.283669][ T54] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 285.286891][ T54] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 285.292438][ T54] usb 7-1: config 0 descriptor?? [ 285.339381][T20838] netlink: 830 bytes leftover after parsing attributes in process `syz.4.6712'. [ 285.373224][T20840] netlink: 'syz.4.6713': attribute type 4 has an invalid length. [ 285.708107][ T54] hid_parser_main: 28 callbacks suppressed [ 285.708135][ T54] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 285.715581][ T54] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 285.718683][ T54] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 285.721808][ T54] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 285.724992][ T54] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 285.728516][ T54] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 285.732576][ T54] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 285.736309][ T54] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 285.740223][ T54] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 285.743375][ T54] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 285.751536][ T54] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw0: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 285.937934][T20860] netlink: 'syz.4.6721': attribute type 1 has an invalid length. [ 285.940458][T20860] netlink: 'syz.4.6721': attribute type 2 has an invalid length. [ 285.963294][ T54] usb 7-1: USB disconnect, device number 16 [ 285.963665][T20862] batadv_slave_1: entered promiscuous mode [ 285.969903][T20862] batadv_slave_1: left promiscuous mode [ 286.014790][T20868] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6725'. [ 286.460238][ T1326] usb 10-1: new high-speed USB device number 5 using dummy_hcd [ 286.577218][T20900] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 286.620005][ T1326] usb 10-1: Using ep0 maxpacket: 16 [ 286.624163][ T1326] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 286.628859][ T1326] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 286.634096][ T1326] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 286.640006][ T1326] usb 10-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 286.643882][ T1326] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 286.649670][ T1326] usb 10-1: config 0 descriptor?? [ 287.069472][ T1326] input: HID 0955:7214 Haptics as /devices/virtual/input/input39 [ 287.083456][ T1326] shield 0003:0955:7214.0009: Registered Thunderstrike controller [ 287.086056][ T1326] shield 0003:0955:7214.0009: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.5-1/input0 [ 287.269334][T20882] random: crng reseeded on system resumption [ 287.281204][ T54] usb 10-1: USB disconnect, device number 5 [ 287.281296][ T6007] shield 0003:0955:7214.0009: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 287.287788][ T6007] shield 0003:0955:7214.0009: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 287.287793][ T54] ------------[ cut here ]------------ [ 287.287841][ T6007] shield 0003:0955:7214.0009: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 287.291189][ T54] workqueue: work disable count underflowed [ 287.291258][ T54] WARNING: CPU: 3 PID: 54 at kernel/workqueue.c:4355 enable_work+0x2f8/0x340 [ 287.293035][ T6007] shield 0003:0955:7214.0009: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 287.296452][ T54] Modules linked in: SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 287.308453][ T54] CPU: 3 UID: 0 PID: 54 Comm: kworker/3:1 Not tainted syzkaller #0 PREEMPT(full) [ 287.311546][ T54] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 287.316206][ T54] Workqueue: usb_hub_wq hub_event [ 287.318570][ T54] RIP: 0010:enable_work+0x2f8/0x340 [ 287.320890][ T54] Code: 89 ee e8 4b 45 38 00 45 84 ed 0f 85 29 fe ff ff e8 5d 4a 38 00 c6 05 17 f7 c5 0e 01 90 48 c7 c7 20 09 6c 8b e8 39 21 f7 ff 90 <0f> 0b 90 90 e9 06 fe ff ff 48 89 ef e8 d7 c8 9f 00 e9 aa fe ff ff [ 287.329235][ T54] RSP: 0018:ffffc9000075f3c0 EFLAGS: 00010086 [ 287.333191][ T54] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff81797ce8 [ 287.337590][ T54] RDX: ffff88801ff5a480 RSI: ffffffff81797cf5 RDI: 0000000000000001 [ 287.341153][ T54] RBP: ffff888020d2a738 R08: 0000000000000001 R09: 0000000000000000 [ 287.344681][ T54] R10: 0000000000000000 R11: 0000000000000000 R12: 1ffff920000ebe79 [ 287.348065][ T54] R13: 0000000000000000 R14: ffff888020d2a698 R15: ffff888020d2a730 [ 287.351301][ T54] FS: 0000000000000000(0000) GS:ffff888097f7f000(0000) knlGS:0000000000000000 [ 287.356033][ T54] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.360113][ T54] CR2: 00000000f72e0188 CR3: 00000000752ee000 CR4: 0000000000352ef0 [ 287.363746][ T54] Call Trace: [ 287.365262][ T54] [ 287.366567][ T54] ? __pfx_enable_work+0x10/0x10 [ 287.368767][ T54] ? __thermal_zone_cdev_unbind+0x6c/0x6c0 [ 287.371389][ T54] __cancel_work_sync+0xe7/0x130 [ 287.373559][ T54] thermal_zone_device_unregister+0x28e/0x4d0 [ 287.376090][ T54] ? __pfx_shield_remove+0x10/0x10 [ 287.378743][ T54] power_supply_unregister+0x10a/0x150 [ 287.382079][ T54] shield_remove+0x75/0x130 [ 287.384503][ T54] ? __pfx_shield_remove+0x10/0x10 [ 287.386603][ T54] hid_device_remove+0xce/0x260 [ 287.388399][ T54] ? __pfx_hid_device_remove+0x10/0x10 [ 287.390352][ T54] device_remove+0xcb/0x170 [ 287.391958][ T54] device_release_driver_internal+0x44b/0x620 [ 287.394165][ T54] bus_remove_device+0x22f/0x420 [ 287.395982][ T54] device_del+0x396/0x9f0 [ 287.397567][ T54] ? __pfx_device_del+0x10/0x10 [ 287.399427][ T54] ? do_raw_spin_lock+0x12c/0x2b0 [ 287.401332][ T54] hid_destroy_device+0x19c/0x240 [ 287.403601][ T54] usbhid_disconnect+0xa0/0xe0 [ 287.405714][ T54] usb_unbind_interface+0x1dd/0x9e0 [ 287.408095][ T54] ? kernfs_remove_by_name_ns+0xbe/0x110 [ 287.410424][ T54] ? __pfx_usb_unbind_interface+0x10/0x10 [ 287.412494][ T54] device_remove+0x122/0x170 [ 287.414258][ T54] device_release_driver_internal+0x44b/0x620 [ 287.416651][ T54] bus_remove_device+0x22f/0x420 [ 287.418777][ T54] device_del+0x396/0x9f0 [ 287.420383][ T54] ? __pfx_device_del+0x10/0x10 [ 287.422128][ T54] ? kobject_put+0x210/0x5a0 [ 287.423937][ T54] usb_disable_device+0x355/0x7d0 [ 287.425916][ T54] usb_disconnect+0x2e1/0x9c0 [ 287.427850][ T54] hub_event+0x1c81/0x4fe0 [ 287.430015][ T54] ? __lock_acquire+0xb97/0x1ce0 [ 287.432507][ T54] ? __pfx_hub_event+0x10/0x10 [ 287.434439][ T54] ? __ioread64be_hi_lo+0xb0/0xb0 [ 287.436344][ T54] ? rcu_is_watching+0x12/0xc0 [ 287.438144][ T54] process_one_work+0x9cc/0x1b70 [ 287.440203][ T54] ? __pfx_process_one_work+0x10/0x10 [ 287.442296][ T54] ? assign_work+0x1a0/0x250 [ 287.444333][ T54] worker_thread+0x6c8/0xf10 [ 287.446338][ T54] ? __pfx_worker_thread+0x10/0x10 [ 287.448500][ T54] kthread+0x3c5/0x780 [ 287.450153][ T54] ? __pfx_kthread+0x10/0x10 [ 287.452008][ T54] ? rcu_is_watching+0x12/0xc0 [ 287.454168][ T54] ? __pfx_kthread+0x10/0x10 [ 287.455987][ T54] ret_from_fork+0x56d/0x730 [ 287.458084][ T54] ? __pfx_kthread+0x10/0x10 [ 287.460130][ T54] ret_from_fork_asm+0x1a/0x30 [ 287.461974][ T54] [ 287.463150][ T54] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 287.466359][ T54] CPU: 3 UID: 0 PID: 54 Comm: kworker/3:1 Not tainted syzkaller #0 PREEMPT(full) [ 287.469888][ T54] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 287.473840][ T54] Workqueue: usb_hub_wq hub_event [ 287.476058][ T54] Call Trace: [ 287.477539][ T54] [ 287.478862][ T54] dump_stack_lvl+0x3d/0x1f0 [ 287.480923][ T54] vpanic+0x640/0x6f0 [ 287.482726][ T54] ? enable_work+0x2f8/0x340 [ 287.484752][ T54] panic+0xca/0xd0 [ 287.486367][ T54] ? __pfx_panic+0x10/0x10 [ 287.488115][ T54] ? check_panic_on_warn+0x1f/0xb0 [ 287.489997][ T54] check_panic_on_warn+0xab/0xb0 [ 287.491773][ T54] __warn+0xf6/0x3c0 [ 287.493234][ T54] ? __pfx_vprintk_emit+0x10/0x10 [ 287.495078][ T54] ? enable_work+0x2f8/0x340 [ 287.496691][ T54] report_bug+0x3c3/0x580 [ 287.498154][ T54] ? enable_work+0x2f8/0x340 [ 287.499917][ T54] handle_bug+0x184/0x210 [ 287.501653][ T54] exc_invalid_op+0x17/0x50 [ 287.503608][ T54] asm_exc_invalid_op+0x1a/0x20 [ 287.506084][ T54] RIP: 0010:enable_work+0x2f8/0x340 [ 287.508425][ T54] Code: 89 ee e8 4b 45 38 00 45 84 ed 0f 85 29 fe ff ff e8 5d 4a 38 00 c6 05 17 f7 c5 0e 01 90 48 c7 c7 20 09 6c 8b e8 39 21 f7 ff 90 <0f> 0b 90 90 e9 06 fe ff ff 48 89 ef e8 d7 c8 9f 00 e9 aa fe ff ff [ 287.515863][ T54] RSP: 0018:ffffc9000075f3c0 EFLAGS: 00010086 [ 287.518172][ T54] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff81797ce8 [ 287.521647][ T54] RDX: ffff88801ff5a480 RSI: ffffffff81797cf5 RDI: 0000000000000001 [ 287.525302][ T54] RBP: ffff888020d2a738 R08: 0000000000000001 R09: 0000000000000000 [ 287.528313][ T54] R10: 0000000000000000 R11: 0000000000000000 R12: 1ffff920000ebe79 [ 287.531231][ T54] R13: 0000000000000000 R14: ffff888020d2a698 R15: ffff888020d2a730 [ 287.534225][ T54] ? __warn_printk+0x198/0x350 [ 287.536046][ T54] ? __warn_printk+0x1a5/0x350 [ 287.538059][ T54] ? __pfx_enable_work+0x10/0x10 [ 287.540176][ T54] ? __thermal_zone_cdev_unbind+0x6c/0x6c0 [ 287.542584][ T54] __cancel_work_sync+0xe7/0x130 [ 287.545001][ T54] thermal_zone_device_unregister+0x28e/0x4d0 [ 287.547690][ T54] ? __pfx_shield_remove+0x10/0x10 [ 287.549630][ T54] power_supply_unregister+0x10a/0x150 [ 287.551618][ T54] shield_remove+0x75/0x130 [ 287.553306][ T54] ? __pfx_shield_remove+0x10/0x10 [ 287.555157][ T54] hid_device_remove+0xce/0x260 [ 287.557204][ T54] ? __pfx_hid_device_remove+0x10/0x10 [ 287.559565][ T54] device_remove+0xcb/0x170 [ 287.561519][ T54] device_release_driver_internal+0x44b/0x620 [ 287.564237][ T54] bus_remove_device+0x22f/0x420 [ 287.566283][ T54] device_del+0x396/0x9f0 [ 287.567948][ T54] ? __pfx_device_del+0x10/0x10 [ 287.569748][ T54] ? do_raw_spin_lock+0x12c/0x2b0 [ 287.571622][ T54] hid_destroy_device+0x19c/0x240 [ 287.573526][ T54] usbhid_disconnect+0xa0/0xe0 [ 287.575498][ T54] usb_unbind_interface+0x1dd/0x9e0 [ 287.577792][ T54] ? kernfs_remove_by_name_ns+0xbe/0x110 [ 287.580492][ T54] ? __pfx_usb_unbind_interface+0x10/0x10 [ 287.583212][ T54] device_remove+0x122/0x170 [ 287.584972][ T54] device_release_driver_internal+0x44b/0x620 [ 287.587199][ T54] bus_remove_device+0x22f/0x420 [ 287.589072][ T54] device_del+0x396/0x9f0 [ 287.590739][ T54] ? __pfx_device_del+0x10/0x10 [ 287.592567][ T54] ? kobject_put+0x210/0x5a0 [ 287.594311][ T54] usb_disable_device+0x355/0x7d0 [ 287.596219][ T54] usb_disconnect+0x2e1/0x9c0 [ 287.598091][ T54] hub_event+0x1c81/0x4fe0 [ 287.600177][ T54] ? __lock_acquire+0xb97/0x1ce0 [ 287.602570][ T54] ? __pfx_hub_event+0x10/0x10 [ 287.604883][ T54] ? __ioread64be_hi_lo+0xb0/0xb0 [ 287.607071][ T54] ? rcu_is_watching+0x12/0xc0 [ 287.608903][ T54] process_one_work+0x9cc/0x1b70 [ 287.610757][ T54] ? __pfx_process_one_work+0x10/0x10 [ 287.612760][ T54] ? assign_work+0x1a0/0x250 [ 287.614679][ T54] worker_thread+0x6c8/0xf10 [ 287.616509][ T54] ? __pfx_worker_thread+0x10/0x10 [ 287.618558][ T54] kthread+0x3c5/0x780 [ 287.620149][ T54] ? __pfx_kthread+0x10/0x10 [ 287.621878][ T54] ? rcu_is_watching+0x12/0xc0 [ 287.623713][ T54] ? __pfx_kthread+0x10/0x10 [ 287.625549][ T54] ret_from_fork+0x56d/0x730 [ 287.627349][ T54] ? __pfx_kthread+0x10/0x10 [ 287.629629][ T54] ret_from_fork_asm+0x1a/0x30 [ 287.632009][ T54] [ 287.634452][ T54] Kernel Offset: disabled [ 287.636077][ T54] Rebooting in 86400 seconds.. VM DIAGNOSIS: 02:52:54 Registers: info registers vcpu 0 CPU#0 RAX=00000000002093fb RBX=0000000000000000 RCX=ffffffff8b4a7a59 RDX=0000000000000000 RSI=ffffffff8d823845 RDI=ffffffff8bd04ac0 RBP=fffffbfff1bd2f40 RSP=ffffffff8de07e08 R8 =0000000000000001 R9 =ffffed1005686655 R10=ffff88802b4332ab R11=0000000000000000 R12=0000000000000000 R13=ffffffff8de97a00 R14=ffffffff905fe890 R15=0000000000000000 RIP=ffffffff8b4a657f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097c7f000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000033623ffc CR3=0000000063624000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=00000000001d02a3 RBX=0000000000000001 RCX=ffffffff8b4a7a59 RDX=0000000000000000 RSI=ffffffff8d823845 RDI=ffffffff8bd04ac0 RBP=ffffed1003adb490 RSP=ffffc9000046fdf8 R8 =0000000000000001 R9 =ffffed10056a6655 R10=ffff88802b5332ab R11=0000000000000000 R12=0000000000000001 R13=ffff88801d6da480 R14=ffffffff905fe890 R15=0000000000000000 RIP=ffffffff8b4a657f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097d7f000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000080000340 CR3=000000007259f000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=ffffea0001da9780 RBX=ffffea0001da9780 RCX=ffffffff820581a6 RDX=ffff888023af2480 RSI=0000000000000008 RDI=ffffea0001da9780 RBP=0000000000000132 RSP=ffffc900037af810 R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000 R12=00000000f1ace000 R13=ffff888050b73670 R14=dffffc0000000000 R15=ffffea0001e3a0c8 RIP=ffffffff822229b0 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097e7f000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f7fc6e40 CR3=000000000df82000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f7465ff4 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000045 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff852048d5 RDI=ffffffff9ab500e0 RBP=ffffffff9ab500a0 RSP=ffffc9000075ed20 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000045 R14=ffffffff9ab500a0 R15=ffffffff85204870 RIP=ffffffff852048ff RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097f7f000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f72e0188 CR3=00000000752ee000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000