last executing test programs: 996.15391ms ago: executing program 1 (id=6309): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x20741, 0x0) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100)='H', 0x1}], 0x1) 958.835871ms ago: executing program 1 (id=6310): r0 = memfd_create(&(0x7f00000005c0)='+\x8b\x8a\xa9\x16\x11\x91J\xbc+ \x18\x17\xc2:}\xa3\x9bO\xdd\xdf\xdf\x92\xd5\xed\xb4\x17\xe5\xd6\x9a\xb2\xd8\x9ba\xde\xb2.F\xc0\x99}|\xaf\xd3\x1d\x84[*_\x9f\x9d\xb0rYP\x1b\x9f \xe0\x9cgq\x103\x89\x11\x87Rv\x169\xdf\xe3>B\x04\x00\x00\x00W\xd3\xec\xfb\xdf?\xa2\x90+\xa4!\xb2\xf2\xff\x90\a\xc3\x12\xc4;\xffh\xf1x=\xb9c\xce\x03h\xdap\x88U\x1788\x82\xd7\xfd\x83\x00Sx\x91%\x99_\xfe\xd4c\x83\x86\x0f\xa4a-\xaf\x9e\xd9\xef\xe0)]\x00F\xfa\x03\xbc4\xc4\x9a\v\x03\x8b\xa4\xf3\x8f\xf4\"\'\xd3\a9\x14H}j&~\xe9\x16\x83o\xbd\xab\xcd[\xbd\xcb\x04\xfc\xe7\xe3\x9e?\x12\xf0\xf4\x83M3\xd88\x92?@\v\xe6\xd1\xd2\xe4\xde\xdaUeJ\x9fR\xd1`\xfa\xc8\v\xed\xfd\x0e\xc8\x89W\x847\x88\x82\x94\x14\xe33\xb7H\xc8b\xd6@3F#\xb7\x04C\x8dm\t\x16a\x0fI\xf4\xfe\xf8\x06j\x19Pz&\xb8\x0f\x98`W\xdb\xc6\"81A\xa4\x8bT\xf1\xcb\xab\xa3\t\xef\xdf&\x0e\xad\x03\x123.\xc2V\xaa\xd5\xf8\xde\x8aV\xa4p{\xcez\xa2\x92\xdb8*wLO\f\x97X\x05\x9a\xc2\xe8\x85\x9d\xcb\xc8\xf0\xc4\x01\x03\xe3?\x9f1\xf4\xfb\xa5y`KB\xdf\xae#\x94C\a\x04\xea\xccG\xf2\b\x8f\xf7\xb1\xe96\x90\xf5P\xa4\'\xce\xe3\xa24\x196\xc5Q\xa1K\x95\xd6\xfal\xe9\xd1\\\r&\xb2c\xb3\x8d\xa7\xb7\xa8\x03S\xbd\xdd\b{\xae\f\x10\xc2\xbb\xd0\xdd*\xa3\xb4\fJ\x00X\xab`N; LF\xa5D\xee\xdf\x7f\x80p\xf6o\x1c\xbdXR\xf2\xa0\x81a\xa1\xe1B\x93Xn\xaf\xfc\x05?\xab\xac\x91x\xa8#\xe1\xbeQ\xd1^\x9b\xb9)\xd3\n\xf7(3!\x18\b\xc0\xaampRl\xfdQ\x03\x8c\xd5\xe4\\\xed\x9a\xd1?\xd21\xc8\x90\x1dl|\xd1\x14\xbc3\xe0\x1e\x0e\xe6\x88Y\x99K\x93\x1c@_P\x8c\xc7\x9eZ\xb74KT:\x8a\xdbJ#w\x18\x14\x00\x93\x86\xa5wo\xf6M\xe7D\xf4*\xe3X\x1d\x19\x83\xa7w\xc7+7\x89s\xed\x8a\xd7O\xdd\rhh`\xc0\xa8$\x06pu\xa0\xd0L\x0ez@I\xb8\x83\xb2f\x93j\a0I\xc8l\xe5\x9b\x06\xb5\xac`d\xa3\xcf/\x14\x10\xab\xab\t\xec\xc1c\fA\xaf\x14\xef\xbap@*7\x86\xdf\',\x03Y\xb1$\xf0\xb5}\xf0\x82%)9`\x8f\x04\x85m\x80\xd2\xcf@\x06}\xea\xe7w`\xa5\x11\x9f\x9b\x9e\x8f\xb7cb\x1a\xe1\xcf\x87\x1c\\\xf5\xc21\xf7\x82C*\xd5;\x00\x00\x00\x00\x03\xba\xe3\xdc\x92\'\x8e\xd5\x7fG\xfd.\x91\x89T\x99t\xd4d,\xd5\x92O\xf1\xafT!Y\x8e\\\xac\xf7\x11R\x05p\x1a\"\r\xe9\xe5\x8b&\x0f\x8c\xfb\xef\xf8\xd5\x18\xde\xeb\xe5\x19\xdd\xebQ8\xc5iS+\x06D\x16\xfe\xf5.\xe5\v\x89\xb0\"\xa3M\xe9\x81\x11P\xdb\xc4\xc2y\x14\x04\x06\xf6\f\xb0\xecz\x8d`\xb5\x9b\xb43\xcc1\xa7\x9e\xa8\xb5\'\xc6MAe\x0f\xd1\xfcG\xc2/\xe8\xe9t\xcaQ\xf1\fI\x1chM\xc1\x92\xe3\xc3\x01M\xc8/\xefJ\xcb\xd0]\f\xff\xf5\x92\xce\x97Z\xea\xe8\x99\xfa\x96\xce\xa7\x02\xad\xa2\xce\x955\xeaNg\x02\xcd\xfd\x1a}.\xd3\"x\x89/8H\xc2\x93B\na)\x86\xa9U\xa0\xb7\x18\xfb\xe9\xd1\x97', 0x1) fcntl$addseals(r0, 0x409, 0x8) 946.604086ms ago: executing program 1 (id=6315): r0 = socket(0x10, 0x2, 0x0) sendto$inet6(r0, &(0x7f00000007c0)="7800000018002507b9199b02ffff48000203be04020406050a02040c5c000900580006020a0000000d0085a168d0cb46d32345653600648d07000b000a00070849935ade4a460c89b6ec0cff3959547f509058ba86c902007a00004a32000407160012000a0000000000e000e218d1dd3b6ed538f6523250", 0x78, 0x0, 0x0, 0x0) 898.674305ms ago: executing program 1 (id=6316): r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000001d40)=[{{&(0x7f0000000080)={0x2, 0x4e23, @remote}, 0x10, 0x0}}, {{&(0x7f0000000300)={0x2, 0x4e23, @empty}, 0x10, 0x0, 0x0, &(0x7f00000000c0)=[@ip_retopts={{0x20, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x14, 0xf, 0x3, 0xf, [{@dev={0xac, 0x14, 0x14, 0x38}, 0x7}, {@multicast2, 0x80000001}]}]}}}], 0x20}}], 0x2, 0x0) 898.023842ms ago: executing program 1 (id=6319): r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) readv(r0, &(0x7f0000000000)=[{&(0x7f00000028c0)=""/4098, 0x1002}], 0x1) 843.308529ms ago: executing program 1 (id=6323): syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000009b768405e0483020b9901e40201090227000100000000090400fb015cc7aa00090509"], 0x0) syz_open_dev$sndpcmp(&(0x7f0000000000), 0x3, 0x183a00) 214.15924ms ago: executing program 2 (id=6398): r0 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$FBIOGET_CON2FBMAP(r0, 0x460f, 0x0) 211.93145ms ago: executing program 2 (id=6400): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002800)={0x44, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x30, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @local}}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x0) 146.750564ms ago: executing program 2 (id=6401): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f00000008c0)={0x0, 0x1}, 0x8) 146.414094ms ago: executing program 2 (id=6403): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=@newtaction={0x7c, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x68, 0x1, [@m_tunnel_key={0x64, 0x1, 0x0, 0x0, {{0xf}, {0x7c, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @empty}, @TCA_TUNNEL_KEY_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x7c}}, 0x0) 146.038179ms ago: executing program 3 (id=6405): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x6, 0x4, 0x40, 0x5}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000007c0), &(0x7f0000000380), 0xfff, r0, 0x0, 0xa0028000}, 0x38) 80.811644ms ago: executing program 2 (id=6406): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=@can_newroute={0x44, 0x18, 0x1, 0x70bd29, 0x10000, {}, [@CGW_MOD_XOR={0x15, 0x3, {{{}, 0x0, 0x3, 0x0, 0x0, "8ca5be073cff296e"}, 0x4}}, @CGW_MOD_SET={0x15, 0x4, {{{0x1, 0x1}, 0x4, 0x4, 0x0, 0x0, "a6403f77bfdfb798"}, 0x4}}]}, 0x44}}, 0x0) 80.668406ms ago: executing program 0 (id=6407): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x51) 80.581124ms ago: executing program 2 (id=6408): r0 = openat$pmem0(0xffffffffffffff9c, &(0x7f0000002340), 0x80d01, 0x0) pwrite64(r0, &(0x7f0000000000)="a5", 0xfffffe8c, 0x2) 80.398146ms ago: executing program 0 (id=6409): r0 = socket(0x15, 0x5, 0x0) connect$unix(r0, &(0x7f0000000080)=@abs={0xa}, 0x6e) 80.259503ms ago: executing program 3 (id=6410): r0 = socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x8, &(0x7f0000000100)=0x147ae147ae147ad, 0x112) 79.023654ms ago: executing program 0 (id=6411): r0 = socket$tipc(0x1e, 0x2, 0x0) bind$tipc(r0, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0xffffffff, 0xfffffffd}}, 0x10) 78.948748ms ago: executing program 3 (id=6412): r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_rfc1337\x00', 0x2, 0x0) sendfile(r0, r0, 0x0, 0x1) 14.961499ms ago: executing program 0 (id=6413): r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x10, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x85}, {}, {0x7, 0x0, 0xb, 0x7}}, @printk]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 14.649738ms ago: executing program 3 (id=6414): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19}, 0x42) bpf$BPF_LINK_CREATE(0xa, &(0x7f0000000700)={r0, 0xffffffffffffffff, 0xe80, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x3}}, 0x1e) 14.274092ms ago: executing program 0 (id=6415): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0x581, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x4d814}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_DOWNDELAY={0x8, 0x1f, 0x7fffffff}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004002}, 0x0) 10.624641ms ago: executing program 3 (id=6416): r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="1400000016000b63075a80648c25943b1f3eae25", 0x14}], 0x1}, 0x20000000) 4.5952ms ago: executing program 3 (id=6417): capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)) syz_open_procfs(0x0, &(0x7f00000002c0)='setgroups\x00') 0s ago: executing program 0 (id=6418): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@ipv4_newroute={0x4c, 0x18, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x5}, @RTA_ENCAP={0x28, 0x16, 0x0, 0x1, @SEG6_IPTUNNEL_SRH={0x24, 0x1, {{}, [@remote]}}}]}, 0x4c}}, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:39667' (ED25519) to the list of known hosts. [ 47.281923][ T5963] cgroup: Unknown subsys name 'net' [ 47.467508][ T5963] cgroup: Unknown subsys name 'cpuset' [ 47.472551][ T5963] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 48.394562][ T5963] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 55.604305][ T6009] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 55.608003][ T6009] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 55.611157][ T6009] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 55.623511][ T6009] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 55.628464][ T6009] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 55.774024][ T6009] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 55.778764][ T6009] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 55.781282][ T6009] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 55.783799][ T6009] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 55.785215][ T6013] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 55.786470][ T6009] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 55.789334][ T6013] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 55.792952][ T6013] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 55.796646][ T6009] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 55.799189][ T6009] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 55.813109][ T6009] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 55.816771][ T6009] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 55.820410][ T6009] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 55.826364][ T6009] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 55.830894][ T6009] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 55.900415][ T6006] chnl_net:caif_netlink_parms(): no params data found [ 56.115244][ T6006] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.118011][ T6006] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.120335][ T6006] bridge_slave_0: entered allmulticast mode [ 56.123538][ T6006] bridge_slave_0: entered promiscuous mode [ 56.128028][ T6006] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.130298][ T6006] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.132536][ T6006] bridge_slave_1: entered allmulticast mode [ 56.135705][ T6006] bridge_slave_1: entered promiscuous mode [ 56.211442][ T6006] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.219933][ T6006] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.299929][ T6011] chnl_net:caif_netlink_parms(): no params data found [ 56.315734][ T6006] team0: Port device team_slave_0 added [ 56.382003][ T6006] team0: Port device team_slave_1 added [ 56.462293][ T6006] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 56.464432][ T6006] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.473204][ T6006] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 56.525271][ T6006] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 56.528219][ T6006] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 56.538270][ T6006] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 56.555926][ T6011] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.558307][ T6011] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.560593][ T6011] bridge_slave_0: entered allmulticast mode [ 56.563213][ T6011] bridge_slave_0: entered promiscuous mode [ 56.566413][ T6015] chnl_net:caif_netlink_parms(): no params data found [ 56.571743][ T6011] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.573996][ T6011] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.576319][ T6011] bridge_slave_1: entered allmulticast mode [ 56.579023][ T6011] bridge_slave_1: entered promiscuous mode [ 56.581762][ T6018] chnl_net:caif_netlink_parms(): no params data found [ 56.656135][ T6011] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.688954][ T6006] hsr_slave_0: entered promiscuous mode [ 56.691047][ T6006] hsr_slave_1: entered promiscuous mode [ 56.719446][ T6011] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.801228][ T6011] team0: Port device team_slave_0 added [ 56.831151][ T6011] team0: Port device team_slave_1 added [ 57.001160][ T6011] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 57.003349][ T6011] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.011324][ T6011] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 57.032691][ T6015] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.036402][ T6015] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.039084][ T6015] bridge_slave_0: entered allmulticast mode [ 57.042444][ T6015] bridge_slave_0: entered promiscuous mode [ 57.049624][ T6015] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.052195][ T6015] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.055033][ T6015] bridge_slave_1: entered allmulticast mode [ 57.058628][ T6015] bridge_slave_1: entered promiscuous mode [ 57.062287][ T6011] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 57.064873][ T6011] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.074336][ T6011] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 57.078551][ T6018] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.080813][ T6018] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.083046][ T6018] bridge_slave_0: entered allmulticast mode [ 57.086706][ T6018] bridge_slave_0: entered promiscuous mode [ 57.089836][ T6018] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.092123][ T6018] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.094334][ T6018] bridge_slave_1: entered allmulticast mode [ 57.097105][ T6018] bridge_slave_1: entered promiscuous mode [ 57.175210][ T6018] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.179990][ T6018] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.184465][ T6015] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.191453][ T6015] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.321255][ T6018] team0: Port device team_slave_0 added [ 57.324714][ T6015] team0: Port device team_slave_0 added [ 57.334488][ T6015] team0: Port device team_slave_1 added [ 57.339705][ T6011] hsr_slave_0: entered promiscuous mode [ 57.342451][ T6011] hsr_slave_1: entered promiscuous mode [ 57.345490][ T6011] debugfs: 'hsr0' already exists in 'hsr' [ 57.347644][ T6011] Cannot create hsr debugfs directory [ 57.350559][ T6018] team0: Port device team_slave_1 added [ 57.412331][ T6015] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 57.415377][ T6015] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.427755][ T6015] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 57.436595][ T6015] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 57.439403][ T6015] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.449896][ T6015] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 57.490701][ T6018] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 57.492869][ T6018] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.501615][ T6018] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 57.536431][ T6018] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 57.539399][ T6018] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.550183][ T6018] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 57.615163][ T6015] hsr_slave_0: entered promiscuous mode [ 57.618086][ T6015] hsr_slave_1: entered promiscuous mode [ 57.620960][ T6015] debugfs: 'hsr0' already exists in 'hsr' [ 57.623371][ T6015] Cannot create hsr debugfs directory [ 57.655313][ T6009] Bluetooth: hci0: command tx timeout [ 57.703574][ T6018] hsr_slave_0: entered promiscuous mode [ 57.705842][ T6018] hsr_slave_1: entered promiscuous mode [ 57.708032][ T6018] debugfs: 'hsr0' already exists in 'hsr' [ 57.710492][ T6018] Cannot create hsr debugfs directory [ 57.780569][ T6006] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 57.789535][ T6006] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 57.815381][ T6009] Bluetooth: hci2: command tx timeout [ 57.826748][ T6006] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 57.833883][ T6006] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 57.885972][ T6009] Bluetooth: hci3: command tx timeout [ 57.885999][ T6010] Bluetooth: hci1: command tx timeout [ 57.955106][ T6011] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 58.102048][ T6011] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 58.107154][ T6011] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 58.112521][ T6011] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 58.167477][ T6015] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 58.172204][ T6015] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 58.177818][ T6015] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 58.182353][ T6015] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 58.231624][ T6018] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 58.239182][ T6018] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 58.252904][ T6018] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 58.258993][ T6018] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 58.313407][ T6006] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.325796][ T6011] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.360131][ T6006] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.366798][ T6011] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.376866][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.380818][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.392048][ T6015] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.399811][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.402644][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.416160][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.419147][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.430974][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.433745][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.448761][ T6015] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.456809][ T6018] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.467589][ T1177] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.470318][ T1177] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.487226][ T1177] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.489672][ T1177] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.512513][ T6018] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.530666][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.533013][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.552636][ T1138] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.555674][ T1138] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.591699][ T6018] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 58.595160][ T6018] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 58.610621][ T6011] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.641998][ T6011] veth0_vlan: entered promiscuous mode [ 58.648637][ T6011] veth1_vlan: entered promiscuous mode [ 58.664121][ T6011] veth0_macvtap: entered promiscuous mode [ 58.668287][ T6011] veth1_macvtap: entered promiscuous mode [ 58.678368][ T6011] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 58.694123][ T6006] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.699141][ T6011] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 58.709137][ T88] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.712183][ T88] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.721615][ T88] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.726694][ T88] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.737657][ T6015] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.773760][ T6018] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.809971][ T6006] veth0_vlan: entered promiscuous mode [ 58.813223][ T6015] veth0_vlan: entered promiscuous mode [ 58.832907][ T6006] veth1_vlan: entered promiscuous mode [ 58.841722][ T1253] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.844941][ T1253] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.847362][ T6015] veth1_vlan: entered promiscuous mode [ 58.869092][ T6018] veth0_vlan: entered promiscuous mode [ 58.878001][ T1177] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.881201][ T1177] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.887154][ T6018] veth1_vlan: entered promiscuous mode [ 58.892678][ T6006] veth0_macvtap: entered promiscuous mode [ 58.899498][ T6006] veth1_macvtap: entered promiscuous mode [ 58.909722][ T6015] veth0_macvtap: entered promiscuous mode [ 58.912333][ T6011] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 58.915664][ T6015] veth1_macvtap: entered promiscuous mode [ 58.926857][ T6006] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 58.933185][ T6006] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 58.948382][ T1138] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.951216][ T1138] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.959593][ T1138] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.963721][ T1138] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.970602][ T6015] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 58.975536][ T6018] veth0_macvtap: entered promiscuous mode [ 58.981467][ T6018] veth1_macvtap: entered promiscuous mode [ 58.987929][ T6015] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 59.022899][ T6018] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 59.027520][ T88] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.030657][ T88] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.043532][ T1253] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 59.048405][ T88] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.048465][ T1253] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 59.065625][ T88] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.073715][ T6018] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 59.108717][ T1177] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.120787][ T1253] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.126822][ T1253] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.130866][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 59.131114][ T1253] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.134154][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 59.152219][ T6100] 9pnet_fd: Insufficient options for proto=fd [ 59.153510][ T1177] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 59.159566][ T1177] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 59.190404][ T1253] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 59.193566][ T1253] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 59.238934][ T1253] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 59.241391][ T1253] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 59.263744][ T1177] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 59.267633][ T1177] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 59.679954][ T6191] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000). [ 59.684719][ T6191] qnx6: wrong signature (magic) in superblock #1. [ 59.689414][ T6191] qnx6: unable to read the first superblock [ 59.725500][ T6010] Bluetooth: hci0: command tx timeout [ 59.781244][ T40] audit: type=1326 audit(1757051171.099:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6209 comm="syz.2.70" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x0 [ 59.833178][ T6221] autofs: Unknown parameter 'no9 PG!8E8- ŖEeլ( Ir\u}ibT0;my[Gc#>QkbY&#w@/VVL~12lhOh'rK1\kU{!eܚ7 [ 59.833178][ T6221] Ue[%#s' [ 59.884993][ T6010] Bluetooth: hci2: command tx timeout [ 59.966652][ T6010] Bluetooth: hci1: command tx timeout [ 60.034093][ T6255] exFAT-fs (nullb0): invalid boot record signature [ 60.036656][ T6255] exFAT-fs (nullb0): failed to read boot sector [ 60.038844][ T6255] exFAT-fs (nullb0): failed to recognize exfat type [ 60.048296][ T6257] I/O error, dev loop3, sector 128 op 0x0:(READ) flags 0x1800 phys_seg 1 prio class 2 [ 60.052335][ T6257] gfs2: error -5 reading superblock [ 60.539424][ T6321] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 60.604938][ T24] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 60.765170][ T24] usb 5-1: Using ep0 maxpacket: 16 [ 60.777055][ T24] usb 5-1: config 63 has an invalid interface number: 171 but max is 0 [ 60.780435][ T24] usb 5-1: config 63 has no interface number 0 [ 60.783118][ T24] usb 5-1: config 63 interface 171 altsetting 8 bulk endpoint 0x1 has invalid maxpacket 1023 [ 60.789082][ T24] usb 5-1: config 63 interface 171 has no altsetting 0 [ 60.793083][ T24] usb 5-1: New USB device found, idVendor=0c45, idProduct=607c, bcdDevice=c5.ad [ 60.796365][ T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 60.799536][ T24] usb 5-1: Product: syz [ 60.801145][ T24] usb 5-1: Manufacturer: syz [ 60.802939][ T24] usb 5-1: SerialNumber: syz [ 60.814195][ T6299] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 60.900361][ T6355] FAT-fs (nullb0): bogus number of reserved sectors [ 60.903170][ T6355] FAT-fs (nullb0): Can't find a valid FAT filesystem [ 61.038351][ T24] gspca_main: sonixj-2.14.0 probing 0c45:607c [ 61.041810][ T24] gspca_sonixj: reg_w1 err -71 [ 61.043460][ T24] sonixj 5-1:63.171: probe with driver sonixj failed with error -71 [ 61.056425][ T24] usb 5-1: USB disconnect, device number 2 [ 61.323920][ T6404] MTD: Attempt to mount non-MTD device "/dev/nullb0" [ 61.330460][ T6404] cramfs: wrong magic [ 61.524084][ T40] audit: type=1326 audit(1757051172.849:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6427 comm="syz.1.174" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x0 [ 61.526657][ T6429] hfsplus: unable to find HFS+ superblock [ 61.536836][ T6431] trusted_key: encrypted_key: insufficient parameters specified [ 61.805151][ T6010] Bluetooth: hci0: command tx timeout [ 61.974915][ T6010] Bluetooth: hci2: command tx timeout [ 62.044964][ T6010] Bluetooth: hci1: command tx timeout [ 62.060178][ T40] audit: type=1326 audit(1757051173.389:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6512 comm="syz.2.216" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x0 [ 62.240197][ T6542] syz.0.231(6542): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 62.257179][ T6548] block nbd2: Attempted send on invalid socket [ 62.263819][ T6548] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2 [ 62.268233][ T6548] SQUASHFS error: Failed to read block 0x0: -5 [ 62.270266][ T6548] unable to read squashfs_super_block [ 62.310066][ T6555] I/O error, dev loop1, sector 128 op 0x0:(READ) flags 0x1800 phys_seg 1 prio class 2 [ 62.314075][ T6555] gfs2: error -5 reading superblock [ 62.444852][ T6010] Bluetooth: hci3: command tx timeout [ 62.933719][ T6678] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 62.938723][ T6678] FAT-fs (loop2): unable to read boot sector [ 62.976415][ T6687] ICMPv6: NA: fd:f9:a6:84:a5:1b advertised our address fe80::aa on syz_tun! [ 63.486345][ T6802] Can't find a SQUASHFS superblock on nullb0 [ 63.487076][ T6779] /dev/sr0: Can't open blockdev [ 63.593628][ T6010] Bluetooth: hci0: unknown advertising packet type: 0xf1 [ 64.055803][ T6010] Bluetooth: hci2: command tx timeout [ 64.124872][ T6920] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 64.125940][ T6010] Bluetooth: hci1: command tx timeout [ 64.127139][ T6920] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 64.127826][ T6920] vhci_hcd vhci_hcd.0: Device attached [ 64.136489][ T6921] vhci_hcd: connection closed [ 64.137891][ T1177] vhci_hcd: stop threads [ 64.141899][ T1177] vhci_hcd: release socket [ 64.143736][ T1177] vhci_hcd: disconnect device [ 64.407076][ T6972] random: crng reseeded on system resumption [ 64.412334][ T6010] Bluetooth: hci3: unexpected event 0x06 length: 10 > 3 [ 64.527495][ T6996] ======================================================= [ 64.527495][ T6996] WARNING: The mand mount option has been deprecated and [ 64.527495][ T6996] and is ignored by this kernel. Remove the mand [ 64.527495][ T6996] option from the mount to silence this warning. [ 64.527495][ T6996] ======================================================= [ 64.654942][ T7014] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0. [ 64.710371][ T7020] hpfs: hpfs_map_sector(): read error [ 64.862409][ T7053] tmpfs: Bad value for 'size' [ 65.078717][ T7098] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x3 [ 65.247149][ T4309] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 65.250512][ T7107] /dev/sr0: Can't open blockdev [ 65.282811][ T7126] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 65.285592][ T7126] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 65.291619][ T7126] vhci_hcd vhci_hcd.0: Device attached [ 65.297160][ T7127] vhci_hcd: connection closed [ 65.301952][ T12] vhci_hcd: stop threads [ 65.306039][ T12] vhci_hcd: release socket [ 65.307877][ T12] vhci_hcd: disconnect device [ 65.408085][ T4309] usb 5-1: Using ep0 maxpacket: 16 [ 65.419177][ T4309] usb 5-1: config 0 has an invalid interface number: 214 but max is 0 [ 65.422611][ T4309] usb 5-1: config 0 has no interface number 0 [ 65.425358][ T4309] usb 5-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 1023, setting to 64 [ 65.440741][ T4309] usb 5-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5 [ 65.444567][ T4309] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 65.447649][ T4309] usb 5-1: Product: syz [ 65.449384][ T4309] usb 5-1: Manufacturer: syz [ 65.451586][ T4309] usb 5-1: SerialNumber: syz [ 65.456184][ T4309] usb 5-1: config 0 descriptor?? [ 65.511694][ T7155] ICMPv6: Received fragmented ndisc packet. Carefully consider disabling suppress_frag_ndisc. [ 65.686739][ T4309] usbtouchscreen 5-1:0.214: Failed to read FW rev: -71 [ 65.689763][ T4309] usbtouchscreen 5-1:0.214: probe with driver usbtouchscreen failed with error -71 [ 65.698910][ T4309] usb 5-1: USB disconnect, device number 3 [ 65.778925][ T7184] hpfs: hpfs_map_sector(): read error [ 66.304069][ T7263] tmpfs: Bad value for 'mpol' [ 66.369503][ T24] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 66.529825][ T1454] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 66.541321][ T24] usb 6-1: too many configurations: 178, using maximum allowed: 8 [ 66.558633][ T24] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 66.562214][ T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 66.565208][ T24] usb 6-1: Product: syz [ 66.566822][ T24] usb 6-1: Manufacturer: syz [ 66.569180][ T24] usb 6-1: SerialNumber: syz [ 66.584569][ T24] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 66.608457][ T1472] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 66.702715][ T1454] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7 [ 66.706671][ T1454] usb 5-1: New USB device found, idVendor=2040, idProduct=1605, bcdDevice= a.94 [ 66.710300][ T1454] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 66.714987][ T1454] usb 5-1: config 0 descriptor?? [ 66.836168][ T24] usb 6-1: USB disconnect, device number 2 [ 66.940230][ T6329] usb 5-1: USB disconnect, device number 4 [ 67.463240][ T7409] tmpfs: Bad value for 'mpol' [ 67.484553][ T40] audit: type=1326 audit(1757051178.612:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7412 comm="syz.2.658" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x0 [ 67.612191][ T7428] cgroup: release_agent respecified [ 67.711835][ T1472] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive [ 67.714651][ T1472] ath9k_htc: Failed to initialize the device [ 67.718136][ T24] usb 6-1: ath9k_htc: USB layer deinitialized [ 67.836763][ T7470] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 68.222476][ T40] audit: type=1326 audit(1757051179.305:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7539 comm="syz.3.721" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x0 [ 68.744187][ T7646] BFS-fs: bfs_fill_super(): No BFS filesystem on nullb0 (magic=00000000) [ 68.930585][ T7674] IPv6: addrconf: prefix option has invalid lifetime [ 69.110943][ T7702] syz.0.801 (7702): attempted to duplicate a private mapping with mremap. This is not supported. [ 69.379468][ T7739] erofs (device loop2): cannot find valid erofs superblock [ 69.621247][ T6009] Bluetooth: hci3: unexpected event for opcode 0x100c [ 69.670796][ T7789] tmpfs: Bad value for 'grpquota_inode_hardlimit' [ 70.020563][ T7840] omfs: Invalid superblock (0) [ 70.082841][ T7851] kAFS: unparsable volume name [ 70.212448][ T7870] binder: Bad value for 'max' [ 70.529644][ T7921] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 70.532212][ T7921] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 70.549648][ T7921] vhci_hcd vhci_hcd.0: Device attached [ 70.554205][ T7922] vhci_hcd: connection closed [ 70.555247][ T13] vhci_hcd: stop threads [ 70.558909][ T13] vhci_hcd: release socket [ 70.561412][ T13] vhci_hcd: disconnect device [ 70.634033][ T7940] omfs: Invalid superblock (0) [ 70.700762][ T6009] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 70.705263][ T6009] Bluetooth: hci2: Injecting HCI hardware error event [ 70.709675][ T6013] Bluetooth: hci2: hardware error 0x00 [ 70.847237][ T7967] EXT4-fs (sr0): VFS: Can't find ext4 filesystem [ 70.903744][ T7977] F2FS-fs (loop2): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 70.907241][ T7977] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 70.910944][ T7977] F2FS-fs (loop2): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 70.917089][ T7977] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock [ 71.034955][ T7993] tmpfs: Unknown parameter 'hash' [ 71.076327][ T7997] IPv6: addrconf: prefix option has invalid lifetime [ 71.135687][ T8007] block nbd2: Attempted send on invalid socket [ 71.144709][ T8007] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 71.153787][ T8007] hpfs: hpfs_map_sector(): read error [ 71.320608][ T8029] (syz.3.963,8029,0):ocfs2_fill_super:989 ERROR: superblock probe failed! [ 71.323771][ T8029] (syz.3.963,8029,0):ocfs2_fill_super:1177 ERROR: status = -22 [ 71.596100][ T8063] ntfs3(sr0): Primary boot signature is not NTFS. [ 71.600431][ T8063] ntfs3(sr0): try to read out of volume at offset 0xf800 [ 71.666784][ T8072] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 71.678854][ T8072] CIFS mount error: No usable UNC path provided in device string! [ 71.678854][ T8072] [ 71.683802][ T8072] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 71.750281][ T8088] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0. [ 72.338614][ T8178] (syz.0.1038,8178,3):ocfs2_fill_super:989 ERROR: superblock probe failed! [ 72.342366][ T8178] (syz.0.1038,8178,3):ocfs2_fill_super:1177 ERROR: status = -22 [ 72.378922][ T8166] could not allocate digest TFM handle sha1-ssse3 [ 72.538346][ T8207] dns_resolver: Unsupported server list version (0) [ 72.820936][ T8252] MTD: Attempt to mount non-MTD device "/dev/nullb0" [ 72.824600][ T8252] VFS: Can't find a romfs filesystem on dev nullb0. [ 72.824600][ T8252] [ 72.827893][ T8254] 9pnet_fd: Insufficient options for proto=fd [ 72.922912][ T6013] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 72.984250][ T8279] block nbd1: Attempted send on invalid socket [ 72.990731][ T8279] I/O error, dev nbd1, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 72.995233][ T8279] qnx6: unable to read the first superblock [ 72.998932][ T8279] block nbd1: Attempted send on invalid socket [ 73.001645][ T8279] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 73.007851][ T8279] qnx6: unable to read the first superblock [ 73.017726][ T8279] qnx6: unable to read the first superblock [ 73.018998][ T40] audit: type=1326 audit(1757051183.785:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8281 comm="syz.3.1089" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x0 [ 73.555038][ T8338] tmpfs: Bad value for 'mpol' [ 73.590247][ T40] audit: type=1326 audit(1757051184.318:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8345 comm="syz.2.1121" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x0 [ 74.164444][ T8414] /dev/sr0: Can't open blockdev [ 74.459834][ T8441] futex_wake_op: syz.3.1168 tries to shift op by -1; fix this program [ 75.187425][ T8480] Option 'TXƮ' to dns_resolver key: bad/missing value [ 76.158424][ T8659] PKCS7: Unknown OID: [4] 2.19.13055.1334505.0.0.0.0 [ 76.161355][ T8659] PKCS7: Only support pkcs7_signedData type [ 76.302491][ T6013] Bluetooth: Frame is too long (len 16, expected len 4) [ 76.406545][ T8692] Invalid source name [ 76.413399][ T8692] UBIFS error (pid: 8692): cannot open "ubifs", error -22 [ 76.595318][ T8718] I/O error, dev loop0, sector 2 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2 [ 76.601712][ T8718] hfsplus: unable to find HFS+ superblock [ 76.781167][ T40] audit: type=1326 audit(1757051700.301:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8752 comm="syz.0.1325" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x0 [ 76.897346][ T8779] capability: warning: `syz.2.1338' uses 32-bit capabilities (legacy support in use) [ 76.945890][ T1419] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.948446][ T1419] ieee802154 phy1 wpan1: encryption failed: -22 [ 77.589415][ T8909] overlayfs: missing 'lowerdir' [ 77.718094][ T40] audit: type=1326 audit(1757051701.180:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8930 comm="syz.1.1413" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x0 [ 78.660725][ T8985] tmpfs: Bad value for 'mpol' [ 79.332492][ T9034] PKCS7: Unknown OID: [4] 2.19.50.2018883.1651(bad) [ 79.335609][ T9034] PKCS7: Only support pkcs7_signedData type [ 79.630341][ T9081] tmpfs: Bad value for 'mpol' [ 80.265676][ T9043] orangefs_mount: mount request failed with -4 [ 80.578698][ T9193] futex_wake_op: syz.1.1543 tries to shift op by -1; fix this program [ 80.721094][ T9090] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 80.723437][ T9090] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 80.733614][ T9090] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 80.746853][ T9090] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 80.752091][ T9090] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 80.756249][ T9090] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 80.772710][ T9090] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 80.778410][ T9090] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 81.051254][ T9279] 9pnet: Unknown protocol version 9p20\++} [ 81.093841][ T9286] futex_wake_op: syz.0.1590 tries to shift op by 32; fix this program [ 81.143872][ T9298] TCP: tcp_parse_options: Illegal window scaling value 253 > 14 received [ 81.313256][ T9333] capability: warning: `syz.0.1614' uses deprecated v2 capabilities in a way that may be insecure [ 81.620280][ T9395] Invalid ELF header type: 3 != 1 [ 81.643914][ T9399] block nbd3: Attempted send on invalid socket [ 81.654465][ T9399] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 81.659025][ T9399] block nbd3: Attempted send on invalid socket [ 81.660986][ T9399] I/O error, dev nbd3, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 81.725584][ T9417] syz.2.1655 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 81.731001][ T9419] tmpfs: Bad value for 'mpol' [ 81.774600][ T40] audit: type=1326 audit(2000000001.670:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9424 comm="syz.1.1657" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x0 [ 81.946966][ T9461] tmpfs: Bad value for 'mpol' [ 82.418879][ T29] cfg80211: failed to load regulatory.db [ 82.788109][ T9450] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 82.789039][ T9475] syz.2.1684: page allocation failure: order:0, mode:0x10cc0(GFP_KERNEL|__GFP_NORETRY), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 82.795855][ T9450] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 82.798239][ T9475] CPU: 1 UID: 0 PID: 9475 Comm: syz.2.1684 Not tainted syzkaller #0 PREEMPT(full) [ 82.798263][ T9475] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 82.798275][ T9475] Call Trace: [ 82.798281][ T9475] [ 82.798289][ T9475] dump_stack_lvl+0x16c/0x1f0 [ 82.798316][ T9475] warn_alloc+0x248/0x3a0 [ 82.798338][ T9475] ? __pfx_warn_alloc+0x10/0x10 [ 82.798360][ T9475] ? psi_memstall_leave+0x19f/0x2d0 [ 82.798385][ T9475] ? __pfx___alloc_pages_direct_compact+0x10/0x10 [ 82.798406][ T9475] ? psi_memstall_leave+0x1e1/0x2d0 [ 82.798427][ T9475] ? psi_memstall_leave+0x1e6/0x2d0 [ 82.798451][ T9475] __alloc_frozen_pages_noprof+0xea2/0x23f0 [ 82.798481][ T9475] ? __schedule+0x11a3/0x5de0 [ 82.798503][ T9475] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 82.798536][ T9475] ? __pfx___schedule+0x10/0x10 [ 82.798554][ T9475] ? __sanitizer_cov_trace_switch+0x1c/0x90 [ 82.798581][ T9475] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 82.798608][ T9475] ? policy_nodemask+0xea/0x4e0 [ 82.798633][ T9475] alloc_pages_mpol+0x1fb/0x550 [ 82.798657][ T9475] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 82.798687][ T9475] alloc_pages_noprof+0x131/0x390 [ 82.798710][ T9475] kimage_alloc_pages+0x75/0x350 [ 82.798741][ T9475] kimage_alloc_control_pages+0x153/0xa00 [ 82.798764][ T9475] ? __pfx_kimage_alloc_control_pages+0x10/0x10 [ 82.798789][ T9475] do_kexec_load+0x478/0x8a0 [ 82.798809][ T9475] ? __pfx_do_kexec_load+0x10/0x10 [ 82.798835][ T9475] __ia32_compat_sys_kexec_load+0x37f/0x400 [ 82.798859][ T9475] ? __pfx___ia32_compat_sys_kexec_load+0x10/0x10 [ 82.798882][ T9475] ? rcu_is_watching+0x12/0xc0 [ 82.798903][ T9475] __do_fast_syscall_32+0x7c/0x3a0 [ 82.798930][ T9475] do_fast_syscall_32+0x32/0x80 [ 82.798954][ T9475] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 82.798976][ T9475] RIP: 0023:0xf709e579 [ 82.798989][ T9475] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 82.798991][ T9450] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 82.799005][ T9475] RSP: 002b:00000000f548e55c EFLAGS: 00000296 ORIG_RAX: 000000000000011b [ 82.799021][ T9475] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000003 [ 82.799030][ T9475] RDX: 0000000080001080 RSI: 00000000003e0000 RDI: 0000000000000000 [ 82.799039][ T9475] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 82.799047][ T9475] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 82.799056][ T9475] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 82.799076][ T9475] [ 82.799082][ T9475] Mem-Info: [ 82.916831][ T9475] active_anon:6341 inactive_anon:8 isolated_anon:0 [ 82.916831][ T9475] active_file:3090 inactive_file:41958 isolated_file:0 [ 82.916831][ T9475] unevictable:1768 dirty:594 writeback:0 [ 82.916831][ T9475] slab_reclaimable:10688 slab_unreclaimable:51319 [ 82.916831][ T9475] mapped:24437 shmem:2391 pagetables:1202 [ 82.916831][ T9475] sec_pagetables:301 bounce:0 [ 82.916831][ T9475] kernel_misc_reclaimable:0 [ 82.916831][ T9475] free:22044 free_pcp:1935 free_cma:0 [ 82.935646][ T9475] Node 0 active_anon:3208kB inactive_anon:0kB active_file:716kB inactive_file:15772kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:9120kB dirty:52kB writeback:0kB shmem:3832kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8360kB pagetables:1376kB sec_pagetables:1108kB all_unreclaimable? no Balloon:0kB [ 82.949611][ T9475] Node 1 active_anon:22156kB inactive_anon:32kB active_file:11644kB inactive_file:151360kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:88628kB dirty:2324kB writeback:0kB shmem:5732kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4184kB pagetables:3432kB sec_pagetables:96kB all_unreclaimable? no Balloon:0kB [ 82.962831][ T9475] Node 0 DMA free:1960kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB [ 82.987077][ T9475] lowmem_reserve[]: 0 288 288 288 288 [ 82.989255][ T9475] Node 0 DMA32 free:14140kB boost:4096kB min:17316kB low:20620kB high:23924kB reserved_highatomic:4096KB free_highatomic:548KB active_anon:3208kB inactive_anon:0kB active_file:716kB inactive_file:15772kB unevictable:3536kB writepending:52kB present:1032196kB managed:295120kB mlocked:0kB bounce:0kB free_pcp:4236kB local_pcp:1916kB free_cma:0kB [ 83.014425][ T9475] lowmem_reserve[]: 0 0 0 0 0 [ 83.016460][ T9475] Node 1 DMA32 free:81592kB boost:14336kB min:61476kB low:73260kB high:85044kB reserved_highatomic:6144KB free_highatomic:192KB active_anon:22156kB inactive_anon:32kB active_file:11644kB inactive_file:149360kB unevictable:3536kB writepending:2324kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:3516kB local_pcp:916kB free_cma:0kB [ 83.027374][ T9475] lowmem_reserve[]: 0 0 0 0 0 [ 83.029083][ T9475] Node 0 DMA: 5*4kB (UM) 1*8kB (M) 2*16kB (UM) 1*32kB (M) 1*64kB (U) 0*128kB 1*256kB (M) 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 1948kB [ 83.034424][ T9475] Node 0 DMA32: 226*4kB (MEH) 76*8kB (UMEH) 35*16kB (UMEH) 55*32kB (UMEH) 77*64kB (UMEH) 22*128kB (UM) 5*256kB (UM) 0*512kB 1*1024kB (E) 0*2048kB 0*4096kB = 13880kB [ 83.041595][ T9475] Node 1 DMA32: 990*4kB (UME) 390*8kB (ME) 170*16kB (ME) 288*32kB (UMEH) 119*64kB (UME) 73*128kB (UME) 43*256kB (UME) 33*512kB (UM) 15*1024kB (UM) 1*2048kB (M) 1*4096kB (M) = 85384kB [ 83.057508][ T9475] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 83.061650][ T9475] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 83.065412][ T9475] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 83.082642][ T9475] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 83.085832][ T9475] 45576 total pagecache pages [ 83.087613][ T9475] 0 pages in swap cache [ 83.089252][ T9475] Free swap = 124996kB [ 83.092074][ T9475] Total swap = 124996kB [ 83.093992][ T9475] 524155 pages RAM [ 83.095623][ T9475] 0 pages HighMem/MovableOnly [ 83.097461][ T9475] 209480 pages reserved [ 83.099176][ T9475] 0 pages cma reserved [ 83.153797][ T6329] usb 8-1: new low-speed USB device number 2 using dummy_hcd [ 83.338423][ T6329] usb 8-1: config 0 has an invalid interface number: 198 but max is 0 [ 83.341055][ T6329] usb 8-1: config 0 has no interface number 0 [ 83.342980][ T6329] usb 8-1: config 0 interface 198 altsetting 8 endpoint 0x4 has invalid maxpacket 64, setting to 8 [ 83.348996][ T6329] usb 8-1: config 0 interface 198 altsetting 8 endpoint 0x86 is Bulk; changing to Interrupt [ 83.352546][ T6329] usb 8-1: config 0 interface 198 has no altsetting 0 [ 83.354814][ T6329] usb 8-1: New USB device found, idVendor=1b3d, idProduct=0138, bcdDevice=74.e6 [ 83.361141][ T6329] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 83.368832][ T6329] usb 8-1: config 0 descriptor?? [ 83.374267][ T9451] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 83.377488][ T9451] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 83.603000][ T6329] usb 8-1: string descriptor 0 read error: -71 [ 83.614825][ T6329] ftdi_sio 8-1:0.198: FTDI USB Serial Device converter detected [ 83.620065][ T9475] kexec: Could not allocate control_code_buffer [ 83.621715][ T6329] ftdi_sio ttyUSB0: unknown device type: 0x74e6 [ 83.646132][ T6329] usb 8-1: USB disconnect, device number 2 [ 83.651020][ T6329] ftdi_sio 8-1:0.198: device disconnected [ 83.700349][ T9573] /dev/sr0: Can't open blockdev [ 83.873439][ T40] audit: type=1326 audit(2000000003.644:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9604 comm="syz.1.1751" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x0 [ 83.918684][ T40] audit: type=1400 audit(2000000003.691:13): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=9610 comm="syz.2.1749" [ 83.954653][ T9617] futex_wake_op: syz.2.1755 tries to shift op by 144; fix this program [ 84.126619][ T6013] Bluetooth: hci0: command 0x0c1a tx timeout [ 84.771740][ T9771] zonefs (nullb0) ERROR: Not a zoned block device [ 84.791397][ T10] usb 6-1: new full-speed USB device number 3 using dummy_hcd [ 84.880198][ T9785] I/O error, dev loop0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 84.883885][ T9785] hfs: can't find a HFS filesystem on dev loop0 [ 84.954957][ T10] usb 6-1: not running at top speed; connect to a high speed hub [ 84.966869][ T10] usb 6-1: config 1 interface 0 altsetting 3 endpoint 0x1 has invalid maxpacket 1024, setting to 64 [ 84.978110][ T10] usb 6-1: config 1 interface 0 has no altsetting 0 [ 84.989275][ T10] usb 6-1: string descriptor 0 read error: -22 [ 84.994571][ T10] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 84.998633][ T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 84.999442][ T6013] Bluetooth: hci3: command 0x0406 tx timeout [ 84.999488][ T6010] Bluetooth: hci1: command 0x0c1a tx timeout [ 85.014240][ T9735] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 85.059663][ T6013] Bluetooth: hci3: ACL packet for unknown connection handle 201 [ 85.120859][ T9817] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 85.241957][ T6329] usb 6-1: USB disconnect, device number 3 [ 85.310934][ T6013] Bluetooth: hci3: unexpected event 0x03 length: 17 > 11 [ 85.796671][ T9920] futex_wake_op: syz.3.1901 tries to shift op by -1; fix this program [ 85.954405][ T6013] Bluetooth: hci1: unexpected event for opcode 0x0c26 [ 86.058480][ T9986] block nbd2: Attempted send on invalid socket [ 86.060449][ T9986] I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 86.064696][ T9986] vxfs: unable to read disk superblock at 1 [ 86.068275][ T9986] block nbd2: Attempted send on invalid socket [ 86.070297][ T9986] I/O error, dev nbd2, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 86.075055][ T9986] vxfs: unable to read disk superblock at 8 [ 86.076974][ T9986] vxfs: can't find superblock. [ 86.154845][ T9982] /dev/sr0: Can't open blockdev [ 86.185800][T10011] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3 [ 86.258121][ T6013] Bluetooth: hci0: unexpected event for opcode 0x2003 [ 86.668532][T10112] 9pnet: Could not find request transport: f [ 86.783029][T10151] No source specified [ 86.807957][T10156] gfs2: not a GFS2 filesystem [ 87.206387][ T6013] Bluetooth: hci3: command 0x0406 tx timeout [ 87.800171][ T6013] Bluetooth: hci0: unexpected event for opcode 0x042c [ 87.832094][ T6013] Bluetooth: hci3: Received unexpected HCI Event 0x00 [ 87.858131][T10321] block nbd2: Attempted send on invalid socket [ 87.860157][T10321] I/O error, dev nbd2, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 87.863646][T10321] block nbd2: Attempted send on invalid socket [ 87.865576][T10321] I/O error, dev nbd2, sector 120 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 87.870072][T10321] Mount JFS Failure: -5 [ 87.974193][T10347] ptrace attach of "/syz-executor exec"[6006] was attempted by "/syz-executor exec"[10347] [ 88.067187][T10365] Device name cannot be null; rc = [-22] [ 88.440842][T10471] NILFS (loop2): device size too small [ 88.778581][T10509] /dev/sr0: Can't open blockdev [ 88.819746][ T10] usb 7-1: new low-speed USB device number 2 using dummy_hcd [ 89.022382][ T10] usb 7-1: unable to get BOS descriptor or descriptor too short [ 89.025736][ T10] usb 7-1: config 7 has an invalid interface number: 67 but max is 0 [ 89.028355][ T10] usb 7-1: config 7 has no interface number 0 [ 89.033202][ T10] usb 7-1: string descriptor 0 read error: -22 [ 89.035264][ T10] usb 7-1: New USB device found, idVendor=16c0, idProduct=05df, bcdDevice=6b.16 [ 89.037975][ T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 89.257591][ T6013] Bluetooth: hci0: unexpected event for opcode 0x1407 [ 89.266833][ T6329] usb 7-1: USB disconnect, device number 2 [ 89.597592][T10695] block nbd0: Attempted send on invalid socket [ 89.600272][T10695] I/O error, dev nbd0, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 89.603510][T10695] block nbd0: Attempted send on invalid socket [ 89.605531][T10695] I/O error, dev nbd0, sector 120 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 89.608327][T10695] Mount JFS Failure: -5 [ 90.029447][T10759] I/O error, dev loop3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 90.033707][T10759] MINIX-fs: unable to read superblock [ 90.171888][T10783] mmap: syz.0.2331 (10783) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 90.302662][T10815] qnx6: unable to read the first superblock [ 90.442221][ T6013] Bluetooth: hci1: unexpected event for opcode 0x2041 [ 90.615329][T10892] befs: (nullb0): No write support. Marking filesystem read-only [ 90.618185][T10892] befs: (nullb0): invalid magic header [ 90.814852][T10940] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32 [ 90.869891][T10956] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 90.870079][ T40] audit: type=1326 audit(2000001007.227:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10953 comm="syz.1.2414" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x0 [ 91.098816][T10987] /dev/sr0: Can't open blockdev [ 91.469769][ T40] audit: type=1326 audit(2000001006.857:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11067 comm="syz.0.2472" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff7579 code=0x0 [ 91.853087][T11147] netlink: 'syz.1.2511': attribute type 3 has an invalid length. [ 91.855709][T11147] netlink: 666 bytes leftover after parsing attributes in process `syz.1.2511'. [ 92.274284][T11244] netlink: 244 bytes leftover after parsing attributes in process `syz.2.2558'. [ 92.376721][T11270] trusted_key: encrypted_key: keylen parameter is missing [ 92.411920][T11281] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2576'. [ 92.442507][T11285] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 92.446303][T11287] block nbd1: Attempted send on invalid socket [ 92.448343][T11287] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 92.454169][T11287] FAT-fs (nbd1): unable to read boot sector [ 92.771039][T11341] netlink: 'syz.2.2605': attribute type 11 has an invalid length. [ 92.775861][T11341] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2605'. [ 92.857728][T11365] netlink: zone id is out of range [ 92.860470][T11365] netlink: zone id is out of range [ 92.905536][T11376] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2622'. [ 93.031245][ T6329] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 93.031572][T11406] ata1.00: invalid multi_count 1 ignored [ 93.033764][T11407] netlink: 'syz.1.2638': attribute type 8 has an invalid length. [ 93.093750][T11417] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2643'. [ 93.102403][T11419] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !寿$ULvyآDUDw}z [ 93.193096][ T6329] usb 8-1: Using ep0 maxpacket: 16 [ 93.210374][ T6329] usb 8-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 93.215523][ T6329] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 93.218065][ T6329] usb 8-1: Product: syz [ 93.220541][ T6329] usb 8-1: Manufacturer: syz [ 93.222895][ T6329] usb 8-1: SerialNumber: syz [ 93.230599][ T6329] r8152-cfgselector 8-1: Unknown version 0x0000 [ 93.237630][ T6329] r8152-cfgselector 8-1: config 0 descriptor?? [ 93.267686][T11458] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2661'. [ 93.347619][T11477] tc_dump_action: action bad kind [ 93.379510][T11488] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2673'. [ 93.391568][T11490] netlink: 'syz.1.2674': attribute type 11 has an invalid length. [ 93.396056][T11490] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2674'. [ 93.432867][T11502] sctp: [Deprecated]: syz.0.2679 (pid 11502) Use of int in max_burst socket option deprecated. [ 93.432867][T11502] Use struct sctp_assoc_value instead [ 93.454642][ T6329] r8152-cfgselector 8-1: Unknown version 0x0000 [ 93.457114][ T6329] r8152-cfgselector 8-1: bad CDC descriptors [ 93.463011][ T6329] r8152-cfgselector 8-1: USB disconnect, device number 3 [ 93.592795][T11537] bond0: (slave veth0_to_team): Error: Device can not be enslaved while up [ 93.718958][T11563] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2708'. [ 93.724124][T11565] netlink: 'syz.1.2709': attribute type 10 has an invalid length. [ 93.732909][T11565] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.737020][T11565] team0: Port device bond0 added [ 93.768228][T11569] netlink: 'syz.2.2711': attribute type 1 has an invalid length. [ 93.780238][T11571] binder: 11570:11571 unknown command 0 [ 93.782445][T11571] binder: 11570:11571 ioctl c0306201 800002c0 returned -22 [ 94.098185][ T60] usb 7-1: new full-speed USB device number 3 using dummy_hcd [ 94.253171][ T60] usb 7-1: unable to get BOS descriptor or descriptor too short [ 94.259862][ T60] usb 7-1: not running at top speed; connect to a high speed hub [ 94.264226][ T60] usb 7-1: config 13 has an invalid interface number: 90 but max is 0 [ 94.266853][ T60] usb 7-1: config 13 has no interface number 0 [ 94.269151][ T60] usb 7-1: config 13 interface 90 altsetting 0 has an endpoint descriptor with address 0x9F, changing to 0x8F [ 94.275144][ T60] usb 7-1: New USB device found, idVendor=0499, idProduct=100d, bcdDevice=81.b7 [ 94.279250][ T60] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 94.282760][ T60] usb 7-1: Product: syz [ 94.284239][ T60] usb 7-1: Manufacturer: syz [ 94.285737][ T60] usb 7-1: SerialNumber: syz [ 94.297872][ T6329] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 94.450407][ T6329] usb 5-1: Using ep0 maxpacket: 8 [ 94.453507][ T6329] usb 5-1: config 0 has an invalid interface number: 143 but max is 0 [ 94.456029][ T6329] usb 5-1: config 0 has no interface number 0 [ 94.457972][ T6329] usb 5-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=c1.9b [ 94.461117][ T6329] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 94.465631][ T6329] usb 5-1: config 0 descriptor?? [ 94.492142][ T60] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 94.509626][ T60] snd-usb-audio 7-1:13.90: probe with driver snd-usb-audio failed with error -2 [ 94.515092][ T60] usb 7-1: USB disconnect, device number 3 [ 94.527496][ T5980] udevd[5980]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:13.90/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 94.584932][ T6329] viperboard 5-1:0.143: version 0.00 found at bus 005 address 005 [ 94.603254][ T6329] viperboard-i2c viperboard-i2c.3.auto: error -EIO: failure setting i2c_bus_freq to 100 [ 94.606190][ T6329] viperboard-i2c viperboard-i2c.3.auto: probe with driver viperboard-i2c failed with error -5 [ 94.663058][ T34] usb 5-1: USB disconnect, device number 5 [ 95.014144][T11668] netlink: 'syz.1.2755': attribute type 10 has an invalid length. [ 95.016662][T11668] openvswitch: netlink: Flow actions attr not present in new flow. [ 95.091055][T11674] usb usb1: usbfs: process 11674 (syz.3.2760) did not claim interface 0 before use [ 95.273284][T11720] MINIX-fs: blocksize too small for device [ 95.300921][T11730] netlink: set zone limit has 8 unknown bytes [ 95.324445][T11738] netlink: 'syz.3.2793': attribute type 2 has an invalid length. [ 95.335132][T11740] netlink: 'syz.0.2794': attribute type 1 has an invalid length. [ 95.346526][T11742] No source specified [ 95.542130][T11797] netlink: 'syz.2.2822': attribute type 10 has an invalid length. [ 95.549236][T11797] team0: Cannot enslave team device to itself [ 95.578041][T11807] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 95.672282][T11825] netlink: 'syz.2.2836': attribute type 10 has an invalid length. [ 95.678576][T11825] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.682535][T11825] team0: Port device bond0 added [ 95.694693][T11829] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 95.713465][T11832] unsupported nla_type 65024 [ 95.851423][T11861] C: renamed from team_slave_0 (while UP) [ 95.855471][T11861] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 96.379480][T11990] process 'syz.2.2915' launched './file0' with NULL argv: empty string added [ 96.392962][ T40] audit: type=1326 audit(2000001012.022:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11993 comm="syz.3.2917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 96.402798][ T40] audit: type=1326 audit(2000001012.022:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11993 comm="syz.3.2917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 96.411388][ T40] audit: type=1326 audit(2000001012.022:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11993 comm="syz.3.2917" exe="/syz-executor" sig=0 arch=40000003 syscall=254 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 96.420511][ T40] audit: type=1326 audit(2000001012.022:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11993 comm="syz.3.2917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 96.428303][ T40] audit: type=1326 audit(2000001012.022:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11993 comm="syz.3.2917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 96.629904][T12068] ceph: Path missing in source [ 96.665217][T12076] __nla_validate_parse: 12 callbacks suppressed [ 96.665228][T12076] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2957'. [ 96.698569][T12084] validate_nla: 1 callbacks suppressed [ 96.698580][T12084] netlink: 'syz.1.2961': attribute type 4 has an invalid length. [ 96.807061][T12113] netlink: 130984 bytes leftover after parsing attributes in process `syz.1.2975'. [ 96.832726][T12116] mac80211_hwsim hwsim4 wlan0: entered promiscuous mode [ 97.076554][T12172] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3004'. [ 97.084039][T12174] netlink: 'syz.0.3005': attribute type 16 has an invalid length. [ 97.086914][T12174] netlink: 'syz.0.3005': attribute type 3 has an invalid length. [ 97.090372][T12174] netlink: 132 bytes leftover after parsing attributes in process `syz.0.3005'. [ 97.269479][T12208] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3021'. [ 97.298858][T12214] netlink: 'syz.2.3024': attribute type 21 has an invalid length. [ 97.299062][T12213] Illegal XDP return value 4294967262 on prog (id 279) dev N/A, expect packet loss! [ 97.360801][T12223] IPv6: NLM_F_CREATE should be specified when creating new route [ 97.403575][T12230] bridge1: entered promiscuous mode [ 97.546308][T12269] CIFS mount error: No usable UNC path provided in device string! [ 97.546308][T12269] [ 97.549615][T12269] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 97.586923][T12279] netlink: 'syz.1.3056': attribute type 2 has an invalid length. [ 97.589634][T12279] netlink: 'syz.1.3056': attribute type 1 has an invalid length. [ 97.615282][T12286] comedi comedi0: ni_at_a2150: I/O port conflict (0xee,28) [ 97.667430][T12295] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3064'. [ 97.736404][T12315] netlink: 'syz.0.3074': attribute type 1 has an invalid length. [ 97.788871][T12330] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3081'. [ 97.814233][ T6013] Bluetooth: hci0: unexpected event for opcode 0x1005 [ 97.830463][T12337] ieee802154 phy0 wpan0: encryption failed: -90 [ 97.865211][T12343] binder: 12341:12343 ioctl c018620b 0 returned -14 [ 97.892537][T12349] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 97.998250][T12366] usb usb1: check_ctrlrecip: process 12366 (syz.2.3097) requesting ep 01 but needs 81 [ 98.002303][T12366] usb usb1: usbfs: process 12366 (syz.2.3097) did not claim interface 0 before use [ 98.061604][T12394] netlink: 'syz.3.3112': attribute type 1 has an invalid length. [ 98.101726][T12406] netlink: 'syz.1.3118': attribute type 1 has an invalid length. [ 98.131486][T12412] /dev/sr0: Can't open blockdev [ 98.201533][T12434] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3132'. [ 98.229198][ T40] audit: type=1326 audit(2000001013.954:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12440 comm="syz.1.3136" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 98.237740][ T40] audit: type=1326 audit(2000001013.954:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12440 comm="syz.1.3136" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 98.245860][ T40] audit: type=1326 audit(2000001013.954:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12440 comm="syz.1.3136" exe="/syz-executor" sig=0 arch=40000003 syscall=441 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 98.255918][ T40] audit: type=1326 audit(2000001013.954:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12440 comm="syz.1.3136" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 98.263269][ T40] audit: type=1326 audit(2000001013.954:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12440 comm="syz.1.3136" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 98.395708][T12487] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3159'. [ 98.438762][T12503] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3166'. [ 98.602986][T12554] openvswitch: netlink: Unexpected mask (mask=200040, allowed=10048) [ 98.627917][T12559] netdevsim netdevsim1 netdevsim0: entered promiscuous mode [ 98.680328][T12577] netlink: 'syz.1.3197': attribute type 1 has an invalid length. [ 98.898489][T12640] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 99.047271][T12684] netlink: 'syz.0.3250': attribute type 11 has an invalid length. [ 99.338782][T12765] 9pnet_fd: p9_fd_create_unix (12765): problem connecting socket: ./file0/file0: -2 [ 99.401851][T12779] netdevsim netdevsim3 netdevsim0: entered promiscuous mode [ 99.406374][T12779] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 99.485340][T12804] netdevsim netdevsim0 netdevsim0: entered promiscuous mode [ 99.485365][T12804] netdevsim netdevsim0 netdevsim0: entered allmulticast mode [ 99.586359][T12830] netdevsim netdevsim1 netdevsim0: entered allmulticast mode [ 99.673955][T12855] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 99.834281][T12893] netdevsim netdevsim2 netdevsim0: entered promiscuous mode [ 99.836586][T12893] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 100.818441][T12923] syz.1.3366: vmalloc error: size 4194304, failed to allocated page array size 8192, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 100.825521][T12923] CPU: 3 UID: 0 PID: 12923 Comm: syz.1.3366 Not tainted syzkaller #0 PREEMPT(full) [ 100.825537][T12923] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 100.825544][T12923] Call Trace: [ 100.825548][T12923] [ 100.825553][T12923] dump_stack_lvl+0x16c/0x1f0 [ 100.825573][T12923] warn_alloc+0x248/0x3a0 [ 100.825588][T12923] ? __pfx_warn_alloc+0x10/0x10 [ 100.825607][T12923] ? pfifo_fast_change_tx_queue_len+0x156/0xbb0 [ 100.825622][T12923] ? __vmalloc_node_noprof+0xad/0xf0 [ 100.825636][T12923] __vmalloc_node_range_noprof+0x101b/0x14b0 [ 100.825647][T12923] ? dev_qdisc_change_tx_queue_len+0x166/0x380 [ 100.825660][T12923] ? netif_change_tx_queue_len+0x1a1/0x1e0 [ 100.825680][T12923] ? pfifo_fast_change_tx_queue_len+0x156/0xbb0 [ 100.825697][T12923] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 100.825709][T12923] ? ___kmalloc_large_node+0xed/0x160 [ 100.825728][T12923] __kvmalloc_node_noprof+0x30a/0x620 [ 100.825740][T12923] ? pfifo_fast_change_tx_queue_len+0x156/0xbb0 [ 100.825752][T12923] ? pfifo_fast_change_tx_queue_len+0x156/0xbb0 [ 100.825767][T12923] ? pfifo_fast_change_tx_queue_len+0x156/0xbb0 [ 100.825778][T12923] pfifo_fast_change_tx_queue_len+0x156/0xbb0 [ 100.825792][T12923] ? __pfx_dev_deactivate_many+0x10/0x10 [ 100.825804][T12923] ? ib_device_get_by_netdev+0x151/0x520 [ 100.825814][T12923] ? vxlan_netdevice_event+0x11f/0x370 [ 100.825825][T12923] ? __pfx_ib_device_get_by_netdev+0x10/0x10 [ 100.825836][T12923] ? __pfx_pfifo_fast_change_tx_queue_len+0x10/0x10 [ 100.825847][T12923] ? dev_deactivate+0x15c/0x1c0 [ 100.825864][T12923] ? __pfx_pfifo_fast_change_tx_queue_len+0x10/0x10 [ 100.825875][T12923] dev_qdisc_change_tx_queue_len+0x166/0x380 [ 100.825891][T12923] netif_change_tx_queue_len+0x1a1/0x1e0 [ 100.825905][T12923] ? __pfx_netif_change_tx_queue_len+0x10/0x10 [ 100.825920][T12923] ? netif_change_flags+0x10d/0x160 [ 100.825935][T12923] do_setlink.constprop.0+0xd00/0x4380 [ 100.825950][T12923] ? __lock_acquire+0x62e/0x1ce0 [ 100.825966][T12923] ? __pfx_do_setlink.constprop.0+0x10/0x10 [ 100.825983][T12923] ? __lock_acquire+0xb97/0x1ce0 [ 100.825998][T12923] ? rcu_is_watching+0x12/0xc0 [ 100.826010][T12923] ? __mutex_trylock_common+0xe9/0x250 [ 100.826024][T12923] ? __pfx___mutex_trylock_common+0x10/0x10 [ 100.826044][T12923] ? __pfx___might_resched+0x10/0x10 [ 100.826056][T12923] ? rcu_is_watching+0x12/0xc0 [ 100.826066][T12923] ? trace_contention_end+0xdd/0x130 [ 100.826081][T12923] ? __mutex_lock+0x1c5/0x1060 [ 100.826096][T12923] ? __nla_validate_parse+0x600/0x2880 [ 100.826108][T12923] ? rcu_is_watching+0x12/0xc0 [ 100.826121][T12923] ? __pfx___mutex_lock+0x10/0x10 [ 100.826144][T12923] rtnl_newlink+0x18e0/0x2000 [ 100.826163][T12923] ? __pfx_rtnl_newlink+0x10/0x10 [ 100.826179][T12923] ? kmem_cache_free+0x2d1/0x4d0 [ 100.826190][T12923] ? kfree_skbmem+0x1a4/0x1f0 [ 100.826203][T12923] ? __lock_acquire+0x62e/0x1ce0 [ 100.826217][T12923] ? rcu_is_watching+0x12/0xc0 [ 100.826232][T12923] ? find_held_lock+0x2b/0x80 [ 100.826241][T12923] ? __pfx_rtnl_newlink+0x10/0x10 [ 100.826254][T12923] ? __pfx_rtnl_newlink+0x10/0x10 [ 100.826266][T12923] ? rtnetlink_rcv_msg+0x93a/0xe90 [ 100.826281][T12923] ? __pfx_rtnl_newlink+0x10/0x10 [ 100.826297][T12923] rtnetlink_rcv_msg+0x95b/0xe90 [ 100.826312][T12923] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 100.826329][T12923] ? ref_tracker_free+0x37c/0x830 [ 100.826345][T12923] netlink_rcv_skb+0x155/0x420 [ 100.826360][T12923] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 100.826374][T12923] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 100.826393][T12923] ? netlink_deliver_tap+0x1ae/0xd30 [ 100.826408][T12923] netlink_unicast+0x5aa/0x870 [ 100.826424][T12923] ? __pfx_netlink_unicast+0x10/0x10 [ 100.826437][T12923] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 100.826455][T12923] netlink_sendmsg+0x8d1/0xdd0 [ 100.826471][T12923] ? __pfx_netlink_sendmsg+0x10/0x10 [ 100.826486][T12923] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 100.826500][T12923] ____sys_sendmsg+0xa95/0xc70 [ 100.826511][T12923] ? __pfx_____sys_sendmsg+0x10/0x10 [ 100.826520][T12923] ? get_compat_msghdr+0x11a/0x170 [ 100.826535][T12923] ? __pfx_futex_wake_mark+0x10/0x10 [ 100.826552][T12923] ___sys_sendmsg+0x134/0x1d0 [ 100.826567][T12923] ? __pfx____sys_sendmsg+0x10/0x10 [ 100.826586][T12923] ? find_held_lock+0x2b/0x80 [ 100.826604][T12923] __sys_sendmsg+0x16d/0x220 [ 100.826617][T12923] ? __pfx___sys_sendmsg+0x10/0x10 [ 100.826630][T12923] ? __ia32_sys_futex_time32+0x1d9/0x460 [ 100.826649][T12923] ? rcu_is_watching+0x12/0xc0 [ 100.826661][T12923] __do_fast_syscall_32+0x7c/0x3a0 [ 100.826676][T12923] do_fast_syscall_32+0x32/0x80 [ 100.826690][T12923] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 100.826703][T12923] RIP: 0023:0xf70de579 [ 100.826711][T12923] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 100.826721][T12923] RSP: 002b:00000000f54ce55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 100.826731][T12923] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180 [ 100.826737][T12923] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 100.826742][T12923] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 100.826748][T12923] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 100.826753][T12923] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 100.826765][T12923] [ 100.826769][T12923] Mem-Info: [ 100.835563][T12931] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 100.838218][T12923] active_anon:866 inactive_anon:4857 isolated_anon:0 [ 100.838218][T12923] active_file:1359 inactive_file:18610 isolated_file:0 [ 100.838218][T12923] unevictable:1768 dirty:530 writeback:0 [ 100.838218][T12923] slab_reclaimable:5985 slab_unreclaimable:62047 [ 100.838218][T12923] mapped:23381 shmem:2321 pagetables:1188 [ 100.838218][T12923] sec_pagetables:308 bounce:0 [ 100.838218][T12923] kernel_misc_reclaimable:0 [ 100.838218][T12923] free:75678 free_pcp:12692 free_cma:0 [ 101.031133][T12923] Node 0 active_anon:256kB inactive_anon:4kB active_file:1720kB inactive_file:6880kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:1020kB dirty:152kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8360kB pagetables:1360kB sec_pagetables:1116kB all_unreclaimable? yes Balloon:0kB [ 101.031165][T12923] Node 1 active_anon:3408kB inactive_anon:19424kB active_file:3716kB inactive_file:67560kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:92504kB dirty:1968kB writeback:0kB shmem:5748kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4152kB pagetables:3392kB sec_pagetables:116kB all_unreclaimable? no Balloon:0kB [ 101.031191][T12923] Node 0 DMA free:2264kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:388kB local_pcp:44kB free_cma:0kB [ 101.031220][T12923] lowmem_reserve[]: 0 288 288 288 288 [ 101.031241][T12923] Node 0 DMA32 free:27332kB boost:8192kB min:21412kB low:24716kB high:28020kB reserved_highatomic:4096KB free_highatomic:2660KB active_anon:256kB inactive_anon:4kB active_file:1720kB inactive_file:6880kB unevictable:3536kB writepending:152kB present:1032196kB managed:295120kB mlocked:0kB bounce:0kB free_pcp:14128kB local_pcp:3920kB free_cma:0kB [ 101.031271][T12923] lowmem_reserve[]: 0 0 0 0 0 [ 101.031291][T12923] Node 1 DMA32 free:272916kB boost:0kB min:47140kB low:58924kB high:70708kB reserved_highatomic:10240KB free_highatomic:7928KB active_anon:3408kB inactive_anon:19424kB active_file:3716kB inactive_file:67560kB unevictable:3536kB writepending:1968kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:37936kB local_pcp:6756kB free_cma:0kB [ 101.031321][T12923] lowmem_reserve[]: 0 0 0 0 0 [ 101.031340][T12923] Node 0 DMA: 56*4kB (U) 19*8kB (UM) 2*16kB (U) 2*32kB (UM) 0*64kB 0*128kB 1*256kB (M) 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 2264kB [ 101.031419][T12923] Node 0 DMA32: 419*4kB (UEH) 248*8kB (UMEH) 22*16kB (UMEH) 253*32kB (UMEH) 110*64kB (UMEH) 32*128kB (UMEH) 8*256kB (UMEH) 4*512kB (UH) 0*1024kB 0*2048kB 0*4096kB = 27340kB [ 101.031501][T12923] Node 1 DMA32: 414*4kB (UMEH) 97*8kB (UMEH) 320*16kB (UMEH) 352*32kB (UMEH) 279*64kB (UMEH) 249*128kB (UEH) 166*256kB (UMEH) 96*512kB (UMEH) 58*1024kB (UMEH) 24*2048kB (UMH) 1*4096kB (U) = 272832kB [ 101.031593][T12923] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 101.031601][T12923] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 101.031609][T12923] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 101.031617][T12923] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 101.031625][T12923] 22389 total pagecache pages [ 101.031630][T12923] 103 pages in swap cache [ 101.031634][T12923] Free swap = 121844kB [ 101.031638][T12923] Total swap = 124996kB [ 101.031642][T12923] 524155 pages RAM [ 101.031645][T12923] 0 pages HighMem/MovableOnly [ 101.031649][T12923] 209480 pages reserved [ 101.031653][T12923] 0 pages cma reserved [ 101.033916][T12923] syz_tun: refused to change device tx_queue_len [ 101.130371][T12923] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check. [ 101.159908][T12953] binder: 12950:12953 ioctl c018620c 80000000 returned -1 [ 101.407066][T13015] warning: `syz.3.3413' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 101.431281][T13022] i2c i2c-1: Invalid block write size 34 [ 101.522450][T13044] geneve2: entered promiscuous mode [ 101.524068][T13044] geneve2: entered allmulticast mode [ 101.539461][T13051] nr0: entered promiscuous mode [ 101.631413][T13073] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0 [ 101.697372][T13092] Scaler: ================= START STATUS ================= [ 101.700719][T13092] Scaler: ================== END STATUS ================== [ 101.739886][T13106] __nla_validate_parse: 14 callbacks suppressed [ 101.739897][T13106] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3453'. [ 101.805236][T13124] bridge2: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 101.831326][T13130] macsec0: entered promiscuous mode [ 101.834133][T13130] macsec0: entered allmulticast mode [ 101.835807][T13130] veth1_macvtap: entered allmulticast mode [ 101.882087][T13146] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 101.891571][T13152] cgroup: none used incorrectly [ 101.923200][T13157] netlink: 1010 bytes leftover after parsing attributes in process `syz.2.3477'. [ 101.926797][T13157] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 102.048742][T13183] netlink: 56 bytes leftover after parsing attributes in process `syz.2.3490'. [ 102.048864][T13185] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3489'. [ 102.096545][T13198] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method [ 102.276315][T13247] dvmrp0: entered allmulticast mode [ 102.301444][T13255] netlink: 'syz.3.3525': attribute type 11 has an invalid length. [ 102.303871][T13255] validate_nla: 7 callbacks suppressed [ 102.303879][T13255] netlink: 'syz.3.3525': attribute type 4 has an invalid length. [ 102.308229][T13255] netlink: 224 bytes leftover after parsing attributes in process `syz.3.3525'. [ 102.323192][ T6013] Bluetooth: hci0: ACL packet too small [ 102.334578][T13265] binder: BC_ACQUIRE_RESULT not supported [ 102.336540][T13265] binder: 13263:13265 ioctl c0306201 80000040 returned -22 [ 102.434350][T13290] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3543'. [ 102.436833][T13292] netlink: 'syz.0.3541': attribute type 1 has an invalid length. [ 102.473480][T13304] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3547'. [ 102.496555][T13309] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 102.510575][T13312] ufs: failed to set blocksize [ 102.716798][T13373] block nbd0: NBD_DISCONNECT [ 102.806212][T13393] F2FS-fs (nbd1): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 102.808591][T13393] F2FS-fs (nbd1): Can't find valid F2FS filesystem in 1th superblock [ 102.811112][T13393] F2FS-fs (nbd1): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 102.813460][T13393] F2FS-fs (nbd1): Can't find valid F2FS filesystem in 2th superblock [ 103.014373][T13448] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3608'. [ 103.020078][T13448] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3608'. [ 103.279012][T13524] random: crng reseeded on system resumption [ 103.340396][T13543] block nbd3: Attempted send on invalid socket [ 103.342464][T13543] I/O error, dev nbd3, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 103.365564][T13550] netlink: 'syz.2.3654': attribute type 2 has an invalid length. [ 103.390695][T13557] netlink: 'syz.0.3657': attribute type 21 has an invalid length. [ 103.393443][T13557] netlink: 132 bytes leftover after parsing attributes in process `syz.0.3657'. [ 103.474384][T13579] block nbd1: Attempted send on invalid socket [ 103.476445][T13579] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 103.666099][T13634] sock: sock_timestamping_bind_phc: sock not bind to device [ 103.702144][T13646] AppArmor: change_hat: Invalid input, NULL hat and NULL magic [ 103.842291][T13683] comedi comedi0: Minor 3 could not be opened [ 104.027040][T13740] __vm_enough_memory: pid: 13740, comm: syz.2.3740, bytes: 4294963200 not enough memory for the allocation [ 104.146346][T13777] CIFS mount error: No usable UNC path provided in device string! [ 104.146346][T13777] [ 104.153752][T13777] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 104.630054][T13909] kernel profiling enabled (shift: 16) [ 104.651671][T13916] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 104.651705][T13916] IPv6: NLM_F_CREATE should be set when creating new route [ 104.755654][T13938] 0: renamed from hsr_slave_1 (while UP) [ 104.762883][T13938] 0: entered allmulticast mode [ 104.764774][T13938] A link change request failed with some changes committed already. Interface c0 may have been left with an inconsistent configuration, please check. [ 104.773639][T13942] netlink: 'syz.3.3835': attribute type 10 has an invalid length. [ 104.780187][T13942] team0: Device hsr_slave_0 failed to register rx_handler [ 104.807979][T13948] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 104.808685][ T40] kauditd_printk_skb: 5 callbacks suppressed [ 104.808694][ T40] audit: type=1326 audit(2000001020.861:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13949 comm="syz.1.3840" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 104.810060][T13948] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 104.811956][ T40] audit: type=1326 audit(2000001020.861:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13949 comm="syz.1.3840" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 104.818826][T13948] vhci_hcd vhci_hcd.0: Device attached [ 104.820998][ T40] audit: type=1326 audit(2000001020.861:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13949 comm="syz.1.3840" exe="/syz-executor" sig=0 arch=40000003 syscall=374 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 104.821019][ T40] audit: type=1326 audit(2000001020.861:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13949 comm="syz.1.3840" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 104.837748][T13950] vhci_hcd: cannot find the pending unlink 4294967287 [ 104.843985][ T40] audit: type=1326 audit(2000001020.861:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13949 comm="syz.1.3840" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 104.846866][T13950] vhci_hcd: connection closed [ 104.854349][ T40] audit: type=1326 audit(2000001020.903:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13957 comm="syz.0.3843" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000 [ 104.854955][ T46] vhci_hcd: stop threads [ 104.855930][ T40] audit: type=1326 audit(2000001020.903:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13957 comm="syz.0.3843" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000 [ 104.864884][ T46] vhci_hcd: release socket [ 104.870947][ T40] audit: type=1326 audit(2000001020.903:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13957 comm="syz.0.3843" exe="/syz-executor" sig=0 arch=40000003 syscall=103 compat=1 ip=0xf7ff7579 code=0x7ffc0000 [ 104.875104][ T46] vhci_hcd: disconnect device [ 104.878724][ T40] audit: type=1326 audit(2000001020.924:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13957 comm="syz.0.3843" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000 [ 104.886667][ T40] audit: type=1326 audit(2000001020.924:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13957 comm="syz.0.3843" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000 [ 104.928655][T13967] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0 [ 105.389703][T14040] geneve4: entered promiscuous mode [ 105.391447][T14040] geneve4: entered allmulticast mode [ 105.394016][ T88] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 105.399599][ T88] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 105.402997][ T88] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 105.407492][T14044] dlm: non-version read from control device 36 [ 105.414932][ T88] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 105.534933][T14083] netlink: 'syz.1.3902': attribute type 1 has an invalid length. [ 105.899871][T14171] sit1: entered promiscuous mode [ 105.901684][T14171] sit1: entered allmulticast mode [ 106.256640][T14272] netlink: 'syz.1.3995': attribute type 3 has an invalid length. [ 106.257771][T14274] program syz.3.3994 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 106.412702][T14311] netlink: 'syz.2.4012': attribute type 1 has an invalid length. [ 106.689298][T14370] BIDI support in bsg has been removed. [ 106.756251][T14389] netlink: 'syz.2.4051': attribute type 1 has an invalid length. [ 106.759237][T14389] netlink: 'syz.2.4051': attribute type 1 has an invalid length. [ 107.036761][T14455] __nla_validate_parse: 10 callbacks suppressed [ 107.036772][T14455] netlink: 124 bytes leftover after parsing attributes in process `syz.0.4086'. [ 107.041495][T14455] netlink: 15 bytes leftover after parsing attributes in process `syz.0.4086'. [ 107.045171][T14455] netlink: 15 bytes leftover after parsing attributes in process `syz.0.4086'. [ 107.057363][T14460] tmpfs: Bad value for 'mpol' [ 107.225805][T14509] netlink: 'syz.0.4109': attribute type 1 has an invalid length. [ 107.228252][T14509] netlink: 228 bytes leftover after parsing attributes in process `syz.0.4109'. [ 107.260006][T14520] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4115'. [ 107.263760][T14520] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4115'. [ 107.276896][T14524] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4116'. [ 107.276911][T14524] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16) [ 107.276918][T14524] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 107.282390][T14525] netlink: 'syz.0.4118': attribute type 4 has an invalid length. [ 107.287375][T14525] netlink: 17 bytes leftover after parsing attributes in process `syz.0.4118'. [ 107.318115][T14534] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4120'. [ 107.441875][T14564] net veth1_virt_wifi : renamed from virt_wifi0 [ 107.542368][T14595] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4152'. [ 107.593674][T14610] netlink: 'syz.0.4159': attribute type 1 has an invalid length. [ 107.676338][T14633] syz.2.4170 (14633): /proc/14632/oom_adj is deprecated, please use /proc/14632/oom_score_adj instead. [ 107.995630][ T60] usb 8-1: new full-speed USB device number 4 using dummy_hcd [ 108.139837][ T60] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0 [ 108.145390][ T60] usb 8-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 108.148600][ T60] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 108.151162][ T60] usb 8-1: Product: syz [ 108.152465][ T60] usb 8-1: Manufacturer: syz [ 108.153923][ T60] usb 8-1: SerialNumber: syz [ 108.156790][ T60] usb 8-1: config 0 descriptor?? [ 108.160123][ T60] hub 8-1:0.0: bad descriptor, ignoring hub [ 108.161945][ T60] hub 8-1:0.0: probe with driver hub failed with error -5 [ 108.166562][ T60] input: syz syz as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input7 [ 108.511086][ T6086] usb 8-1: USB disconnect, device number 4 [ 108.828282][T14774] 9pnet_fd: Insufficient options for proto=fd [ 108.845196][T14777] netlink: 'syz.0.4240': attribute type 10 has an invalid length. [ 108.848757][T14777] bridge0: port 2(bridge_slave_1) entered disabled state [ 108.851658][T14777] bridge0: port 1(bridge_slave_0) entered disabled state [ 108.862528][T14777] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.865627][T14777] bridge0: port 2(bridge_slave_1) entered forwarding state [ 108.868480][T14777] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.871267][T14777] bridge0: port 1(bridge_slave_0) entered forwarding state [ 108.875419][T14777] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 109.261192][T14878] autofs4:pid:14878:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(4294967071.1), cmd(0xc018937e) [ 109.267777][T14878] autofs4:pid:14878:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e) [ 109.358973][T14897] hfs: unable to load iocharset "io#harset" [ 109.403224][T14906] veth3: entered promiscuous mode [ 109.404864][T14906] veth3: entered allmulticast mode [ 109.536207][T14938] netlink: 'syz.3.4316': attribute type 10 has an invalid length. [ 109.539261][T14938] bridge0: port 2(bridge_slave_1) entered disabled state [ 109.541703][T14938] bridge0: port 1(bridge_slave_0) entered disabled state [ 109.546931][T14938] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.549306][T14938] bridge0: port 2(bridge_slave_1) entered forwarding state [ 109.551700][T14938] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.554033][T14938] bridge0: port 1(bridge_slave_0) entered forwarding state [ 109.558943][T14938] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 109.612466][T14955] cgroup: subsys name conflicts with all [ 109.689098][T14972] netlink: 'syz.1.4332': attribute type 10 has an invalid length. [ 109.692859][T14972] bridge0: port 2(bridge_slave_1) entered disabled state [ 109.695323][T14972] bridge0: port 1(bridge_slave_0) entered disabled state [ 109.700524][T14972] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.703052][T14972] bridge0: port 2(bridge_slave_1) entered forwarding state [ 109.705398][T14972] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.707607][T14972] bridge0: port 1(bridge_slave_0) entered forwarding state [ 109.713519][T14972] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 109.764822][T14988] netlink: 'syz.0.4340': attribute type 1 has an invalid length. [ 109.782815][ T6013] Bluetooth: hci1: Unable to find connection with handle 0x00c8 [ 109.816986][T15003] netlink: 'syz.2.4348': attribute type 10 has an invalid length. [ 109.820731][T15003] bridge0: port 2(bridge_slave_1) entered disabled state [ 109.823246][T15003] bridge0: port 1(bridge_slave_0) entered disabled state [ 109.834266][T15003] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.837229][T15003] bridge0: port 2(bridge_slave_1) entered forwarding state [ 109.840257][T15003] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.840491][T15007] block device autoloading is deprecated and will be removed. [ 109.843066][T15003] bridge0: port 1(bridge_slave_0) entered forwarding state [ 109.854227][T15003] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 109.940682][T15031] F2FS-fs: Value of option "test_dummy_encryption" is unrecognized [ 109.985440][T15044] Sensor A: ================= START STATUS ================= [ 109.987440][ T40] kauditd_printk_skb: 5 callbacks suppressed [ 109.987448][ T40] audit: type=1326 audit(2000001026.299:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15045 comm="syz.3.4369" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 109.989416][T15044] Sensor A: Test Pattern: 75% Colorbar [ 109.989448][T15044] Sensor A: Show Information: All [ 109.989460][T15044] Sensor A: Vertical Flip: true [ 109.989471][T15044] Sensor A: Horizontal Flip: false [ 109.989482][T15044] Sensor A: Brightness: 128 [ 109.989493][T15044] Sensor A: Contrast: 128 [ 109.989505][T15044] Sensor A: Hue: 0 [ 109.989516][T15044] Sensor A: Saturation: 3 [ 109.989527][T15044] Sensor A: ================== END STATUS ================== [ 110.015109][ T40] audit: type=1326 audit(2000001026.299:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15045 comm="syz.3.4369" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 110.021652][ T40] audit: type=1326 audit(2000001026.299:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15045 comm="syz.3.4369" exe="/syz-executor" sig=0 arch=40000003 syscall=29 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 110.069492][T15068] netlink: 'syz.2.4381': attribute type 10 has an invalid length. [ 110.073295][T15068] bridge0: port 2(bridge_slave_1) entered disabled state [ 110.075547][T15068] bridge0: port 1(bridge_slave_0) entered disabled state [ 110.120030][T15080] syz.0.4387 uses obsolete (PF_INET,SOCK_PACKET) [ 110.138317][T15082] trusted_key: encrypted_key: master key parameter is missing [ 110.343727][T15134] CIFS mount error: No usable UNC path provided in device string! [ 110.343727][T15134] [ 110.347808][T15134] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 110.511183][T15171] netlink: ct family unspecified [ 110.512178][T15172] netlink: 'syz.2.4432': attribute type 2 has an invalid length. [ 110.512888][T15171] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 110.632455][ T40] audit: type=1326 audit(2000001026.971:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15192 comm="syz.2.4444" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 110.639830][ T40] audit: type=1326 audit(2000001026.971:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15192 comm="syz.2.4444" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 110.646501][ T40] audit: type=1326 audit(2000001026.971:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15192 comm="syz.2.4444" exe="/syz-executor" sig=0 arch=40000003 syscall=71 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 110.652891][ T40] audit: type=1326 audit(2000001026.971:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15192 comm="syz.2.4444" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 110.660711][ T40] audit: type=1326 audit(2000001026.971:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15192 comm="syz.2.4444" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 111.058750][T15272] binder: 15271:15272 ioctl c0306201 80000540 returned -22 [ 111.103880][T15285] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 111.126042][T15290] dns_resolver: Unsupported content type (5) [ 111.452742][T15368] tmpfs: Bad value for 'usrquota_inode_hardlimit' [ 111.805073][ T40] audit: type=1326 audit(2000001028.199:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15448 comm="syz.3.4560" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 111.811732][ T40] audit: type=1326 audit(2000001028.199:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15448 comm="syz.3.4560" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 111.991110][T15495] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 112.068469][T15511] validate_nla: 1 callbacks suppressed [ 112.068503][T15511] netlink: 'syz.1.4590': attribute type 1 has an invalid length. [ 112.096552][T15517] bridge2: entered promiscuous mode [ 112.096700][T15518] netlink: 'syz.1.4594': attribute type 2 has an invalid length. [ 112.124599][T15523] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 112.158119][T15533] netlink: 'syz.3.4601': attribute type 11 has an invalid length. [ 112.237011][T15556] __nla_validate_parse: 10 callbacks suppressed [ 112.237022][T15556] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4611'. [ 112.381178][T15592] program syz.1.4627 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 112.387113][T15595] netlink: 512 bytes leftover after parsing attributes in process `syz.0.4628'. [ 112.571906][T15639] TCP: TCP_TX_DELAY enabled [ 112.644200][T15653] netlink: 'syz.2.4657': attribute type 2 has an invalid length. [ 112.646609][T15653] netlink: 'syz.2.4657': attribute type 1 has an invalid length. [ 112.684260][T15663] QAT: Stopping all acceleration devices. [ 112.810000][T15693] netlink: 'syz.3.4677': attribute type 1 has an invalid length. [ 112.857016][T15707] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4684'. [ 112.885603][T15713] program syz.1.4687 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 113.134556][T15773] veth1_virt_wifi: entered promiscuous mode [ 113.136737][T15773] A link change request failed with some changes committed already. Interface veth1_virt_wifi may have been left with an inconsistent configuration, please check. [ 113.194339][T15789] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4725'. [ 113.201206][T15791] ieee802154 phy0 wpan0: encryption failed: -22 [ 113.212683][T15793] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4727'. [ 113.218943][T15795] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4728'. [ 113.221629][T15795] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4728'. [ 113.330997][T15824] netlink: 'syz.1.4742': attribute type 10 has an invalid length. [ 113.333489][T15824] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4742'. [ 113.352972][T15824] team0: Port device geneve0 added [ 113.504064][T15876] program syz.2.4767 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 113.520439][T15882] kAFS: Can only specify source 'none' with -o dyn [ 113.538920][T15884] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 113.541994][T15884] block device autoloading is deprecated and will be removed. [ 113.549806][T15888] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4772'. [ 113.661114][T15917] wg1: entered promiscuous mode [ 113.662754][T15917] wg1: entered allmulticast mode [ 113.691231][T15924] netlink: 'syz.3.4790': attribute type 10 has an invalid length. [ 113.694358][T15924] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4790'. [ 113.707864][T15924] team0: Port device geneve0 added [ 113.772918][T15948] cgroup: No subsys list or none specified [ 113.893741][T15976] netlink: zone id is out of range [ 113.895416][T15976] netlink: zone id is out of range [ 113.897062][T15976] netlink: zone id is out of range [ 113.898716][T15976] netlink: zone id is out of range [ 113.901214][T15978] netlink: 'syz.3.4814': attribute type 12 has an invalid length. [ 113.953190][T15989] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode [ 114.252214][T16060] netlink: 'syz.3.4853': attribute type 1 has an invalid length. [ 114.266095][T16064] new mount options do not match the existing superblock, will be ignored [ 114.332740][T16076] bond3: entered promiscuous mode [ 114.334611][T16076] 8021q: adding VLAN 0 to HW filter on device bond3 [ 114.625777][T16170] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow [ 114.921028][ T34] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 114.987473][T16258] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 115.074278][ T34] usb 8-1: Using ep0 maxpacket: 32 [ 115.077427][ T34] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 9 [ 115.082277][ T34] usb 8-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 115.085576][ T34] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 115.088012][ T34] usb 8-1: Product: syz [ 115.089318][ T34] usb 8-1: Manufacturer: syz [ 115.090759][ T34] usb 8-1: SerialNumber: syz [ 115.094787][ T34] usb 8-1: config 0 descriptor?? [ 115.096802][T16188] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 115.101321][ T34] input: syz syz as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input11 [ 115.364892][ T29] usb 8-1: USB disconnect, device number 5 [ 115.365012][ C3] usbtouchscreen 8-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19 [ 115.954281][T16295] hpfs: Bad magic ... probably not HPFS [ 115.982811][T16301] net_ratelimit: 12 callbacks suppressed [ 115.982827][T16301] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 116.122485][ T40] kauditd_printk_skb: 8 callbacks suppressed [ 116.122494][ T40] audit: type=1326 audit(2000001032.745:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16344 comm="syz.2.4985" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 116.131247][ T40] audit: type=1326 audit(2000001032.745:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16344 comm="syz.2.4985" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 116.138036][ T40] audit: type=1326 audit(2000001032.755:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16344 comm="syz.2.4985" exe="/syz-executor" sig=0 arch=40000003 syscall=399 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 116.145302][ T40] audit: type=1326 audit(2000001032.755:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16344 comm="syz.2.4985" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 116.154286][ T40] audit: type=1326 audit(2000001032.755:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16344 comm="syz.2.4985" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000 [ 116.185904][T16362] binder: binder_mmap: 16360 80a76000-80a7a000 bad vm_flags failed -1 [ 116.197017][ T40] audit: type=1326 audit(2000001032.808:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16363 comm="syz.3.4994" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 116.206532][ T40] audit: type=1326 audit(2000001032.808:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16363 comm="syz.3.4994" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 116.213245][ T40] audit: type=1326 audit(2000001032.808:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16363 comm="syz.3.4994" exe="/syz-executor" sig=0 arch=40000003 syscall=258 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 116.221200][ T40] audit: type=1326 audit(2000001032.808:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16363 comm="syz.3.4994" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 116.236352][T16374] cgroup: noprefix used incorrectly [ 116.257117][T16381] program syz.0.5002 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 116.543589][T16466] affs: No valid root block on device nbd3 [ 116.571052][T16472] CIFS mount error: No usable UNC path provided in device string! [ 116.571052][T16472] [ 116.575048][T16472] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 116.751172][T16525] libceph: resolve ' [ 116.751172][T16525] -&fYǝa2i [ 116.751172][T16525] .?&*&' (ret=-3): failed [ 116.848958][T16548] tmpfs: Bad value for 'mpol' [ 116.937107][T16574] validate_nla: 4 callbacks suppressed [ 116.937117][T16574] netlink: 'syz.1.5096': attribute type 1 has an invalid length. [ 116.980998][T16584] mac80211_hwsim hwsim4 wlan0: left promiscuous mode [ 116.983144][T16584] mac80211_hwsim hwsim4 wlan0: entered allmulticast mode [ 116.985455][T16584] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check. [ 117.056688][T16604] program syz.0.5111 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 117.604968][ C3] sr 2:0:0:0: [sr0] tag#15 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 117.608878][ C3] sr 2:0:0:0: [sr0] tag#15 CDB: opcode=0xe4 (vendor) [ 117.611334][ C3] sr 2:0:0:0: [sr0] tag#15 CDB[00]: e4 50 ab 8b ca 3c c5 d0 de 67 e2 fc 69 8c 8f 18 [ 117.614658][ C3] sr 2:0:0:0: [sr0] tag#15 CDB[10]: 08 0a [ 117.680338][T16649] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 117.723692][T16661] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 117.728390][T16663] __nla_validate_parse: 14 callbacks suppressed [ 117.728403][T16663] netlink: 72 bytes leftover after parsing attributes in process `syz.3.5140'. [ 117.735220][T16663] netlink: 72 bytes leftover after parsing attributes in process `syz.3.5140'. [ 117.765563][T16669] bond0: entered promiscuous mode [ 117.767208][T16669] bond_slave_0: entered promiscuous mode [ 117.769451][T16669] bond_slave_1: entered promiscuous mode [ 117.771351][T16669] bridge0: entered promiscuous mode [ 117.849259][ T40] audit: type=1400 audit(2000001034.551:73): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name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netlink: 40 bytes leftover after parsing attributes in process `syz.2.5167'. [ 118.065760][T16753] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5183'. [ 118.089506][T16760] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5187'. [ 118.167181][T16785] netlink: 9280 bytes leftover after parsing attributes in process `syz.0.5194'. [ 118.313382][T16828] netlink: 'syz.0.5215': attribute type 1 has an invalid length. [ 118.379579][T16850] netlink: 'syz.0.5226': attribute type 11 has an invalid length. [ 118.382057][T16850] netlink: 224 bytes leftover after parsing attributes in process `syz.0.5226'. [ 118.523431][T16896] netlink: 84 bytes leftover after parsing attributes in process `syz.2.5247'. [ 118.524070][T16895] netlink: 'syz.3.5249': attribute type 1 has an invalid length. [ 118.528865][T16895] netlink: 224 bytes leftover after parsing attributes in process `syz.3.5249'. [ 118.608056][T16920] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5260'. [ 118.678751][T16936] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 118.898304][T17006] netlink: 'syz.0.5304': attribute type 21 has an invalid length. [ 118.900437][T17004] netlink: 'syz.3.5303': attribute type 2 has an invalid length. [ 118.901530][T17006] IPv6: NLM_F_CREATE should be specified when creating new route [ 118.905117][T17004] netlink: 'syz.3.5303': attribute type 8 has an invalid length. [ 119.199148][T17103] wg1: entered promiscuous mode [ 119.200731][T17103] wg1: entered allmulticast mode [ 119.276825][T17125] bridge0: port 1(bridge_slave_0) entered forwarding state [ 119.309459][T17139] comedi comedi0: dac02: I/O port conflict (0x3,8) [ 119.462050][T17182] netlink: 'syz.2.5389': attribute type 5 has an invalid length. [ 119.596717][T17217] IPv6: NLM_F_CREATE should be specified when creating new route [ 119.762420][T17243] netlink: 'syz.1.5419': attribute type 15 has an invalid length. [ 119.863406][T17251] openvswitch: netlink: Flow key attr not present in new flow. [ 120.369035][T17337] netlink: 'syz.0.5465': attribute type 8 has an invalid length. [ 120.472539][T17363] program syz.1.5477 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 120.503468][T17360] syz.2.5476 (17360): drop_caches: 2 [ 120.597530][T17391] netlink: 'syz.3.5491': attribute type 2 has an invalid length. [ 120.609755][ C3] ata1: illegal qc_active transition (00000000->20000000) [ 120.632675][T17402] comedi comedi2: dt2814: I/O port conflict (0x400b013,2) [ 120.745153][T17426] Zero length message leads to an empty skb [ 120.803997][T17438] block nbd2: Attempted send on invalid socket [ 120.806679][T17438] I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 2 [ 120.819580][T17438] EXT4-fs (nbd2): unable to read superblock [ 120.850296][T17448] geneve2: entered promiscuous mode [ 120.852234][T17448] geneve2: entered allmulticast mode [ 120.914603][ T1108] ata1: SATA link up 1.5 Gbps (SStatus 113 SControl 300) [ 120.917527][ T1108] ata1.00: configured for UDMA/100 [ 121.039271][ T40] audit: type=1326 audit(2000001037.899:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17493 comm="syz.1.5541" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 121.045943][ T40] audit: type=1326 audit(2000001037.899:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17493 comm="syz.1.5541" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 121.052544][ T40] audit: type=1326 audit(2000001037.899:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17493 comm="syz.1.5541" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 121.059363][ T40] audit: type=1326 audit(2000001037.899:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17493 comm="syz.1.5541" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 121.066811][ T40] audit: type=1326 audit(2000001037.931:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17499 comm="syz.1.5544" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 121.073332][ T40] audit: type=1326 audit(2000001037.931:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17499 comm="syz.1.5544" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 121.080842][ T40] audit: type=1326 audit(2000001037.931:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17499 comm="syz.1.5544" exe="/syz-executor" sig=0 arch=40000003 syscall=62 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 121.089253][ T40] audit: type=1326 audit(2000001037.931:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17499 comm="syz.1.5544" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 121.096191][ T40] audit: type=1326 audit(2000001037.931:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17499 comm="syz.1.5544" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 121.119676][ T40] audit: type=1400 audit(2000001037.983:83): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=17509 comm="syz.3.5549" [ 121.265189][ T1454] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 121.418319][ T1454] usb 7-1: Using ep0 maxpacket: 32 [ 121.418922][T17549] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 121.421073][ T1454] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11 [ 121.425928][ T1454] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 121.428962][ T1454] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87 [ 121.432842][ T1454] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 121.436720][ T1454] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid wMaxPacketSize 0 [ 121.441419][ T1454] usb 7-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68 [ 121.444118][ T1454] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 121.448077][ T1454] usb 7-1: Product: syz [ 121.449404][ T1454] usb 7-1: Manufacturer: syz [ 121.450836][ T1454] usb 7-1: SerialNumber: syz [ 121.453427][ T1454] usb 7-1: config 0 descriptor?? [ 121.459394][ T1454] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input15 [ 121.554120][T17571] macvtap0: entered allmulticast mode [ 121.555857][T17571] veth0_macvtap: entered allmulticast mode [ 121.639618][T17583] random: crng reseeded on system resumption [ 121.654703][ T6008] usb 7-1: USB disconnect, device number 4 [ 121.718170][T17601] bridge3: entered promiscuous mode [ 121.790527][T17616] IPv6: Can't replace route, no match found [ 121.906726][T17649] libceph: resolve '400' (ret=-3): failed [ 122.005707][T17676] geneve2: entered allmulticast mode [ 122.055194][T17684] dlm: no locking on control device [ 122.064242][T17688] i2c i2c-1: Invalid block write size 34 [ 122.125386][T17702] overlayfs: overlapping lowerdir path [ 122.185674][T17718] validate_nla: 1 callbacks suppressed [ 122.185685][T17718] netlink: 'syz.3.5644': attribute type 10 has an invalid length. [ 122.190636][T17718] hsr_slave_0: left promiscuous mode [ 122.191919][T17718] hsr_slave_1: left promiscuous mode [ 122.230122][T17728] netdevsim netdevsim1 netdevsim1: entered allmulticast mode [ 122.398999][T17779] netlink: 'syz.0.5676': attribute type 1 has an invalid length. [ 122.401481][T17779] netlink: 'syz.0.5676': attribute type 1 has an invalid length. [ 122.403880][T17779] netlink: 'syz.0.5676': attribute type 1 has an invalid length. [ 122.406214][T17779] netlink: 'syz.0.5676': attribute type 1 has an invalid length. [ 122.411703][T17779] netlink: 'syz.0.5676': attribute type 1 has an invalid length. [ 122.414403][T17779] netlink: 'syz.0.5676': attribute type 1 has an invalid length. [ 122.417046][T17779] netlink: 'syz.0.5676': attribute type 1 has an invalid length. [ 122.419771][T17779] netlink: 'syz.0.5676': attribute type 1 has an invalid length. [ 122.422181][T17779] netlink: 'syz.0.5676': attribute type 1 has an invalid length. [ 122.592731][T17839] openvswitch: netlink: Key type 29 is not supported [ 122.838672][T17909] ptrace attach of "/syz-executor exec"[17912] was attempted by "/syz-executor exec"[17909] [ 122.846974][T17914] netdevsim netdevsim3 netdevsim0: left promiscuous mode [ 122.871492][T17920] comedi comedi3: driver 'ni_daq_700' does not support attach using comedi_config [ 122.949804][T17936] __nla_validate_parse: 17 callbacks suppressed [ 122.949816][T17936] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5752'. [ 123.093234][T17964] openvswitch: netlink: IP tunnel dst address not specified [ 123.140125][T17975] netlink: 220 bytes leftover after parsing attributes in process `syz.2.5773'. [ 123.142259][T17976] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5772'. [ 123.711233][T18130] ata1.00: invalid multi_count 1 ignored [ 123.840941][T18173] netlink: 68 bytes leftover after parsing attributes in process `syz.2.5871'. [ 123.843706][T18173] netlink: 68 bytes leftover after parsing attributes in process `syz.2.5871'. [ 123.856843][T18177] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5873'. [ 123.962060][T18209] openvswitch: netlink: Tunnel attr 7 has unexpected len 4 expected 0 [ 124.051934][T18233] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5901'. [ 124.197054][T18285] openvswitch: netlink: Missing key (keys=40, expected=200000) [ 124.210771][T18291] random: crng reseeded on system resumption [ 124.259271][T18303] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5937'. [ 124.302502][T18319] program syz.0.5943 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 124.399393][T18343] gtp0: entered promiscuous mode [ 124.400988][T18343] gtp0: entered allmulticast mode [ 124.541454][ T60] usb 6-1: new full-speed USB device number 4 using dummy_hcd [ 124.695580][ T60] usb 6-1: config 0 has an invalid interface number: 55 but max is 0 [ 124.703468][ T60] usb 6-1: config 0 has no interface number 0 [ 124.705359][ T60] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 124.708622][ T60] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 124.712151][ T60] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10 [ 124.715904][ T60] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0 [ 124.718931][ T60] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 124.723200][ T60] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 124.725912][ T60] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 124.730155][ T60] usb 6-1: config 0 descriptor?? [ 124.738960][ T60] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 124.779972][T18395] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 124.781995][T18395] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 124.783945][T18395] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 124.827222][T18411] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5983'. [ 124.926702][T18318] ldusb 6-1:0.55: Couldn't submit interrupt_in_urb -90 [ 124.932149][ T1454] usb 6-1: USB disconnect, device number 4 [ 124.937298][ T1454] ldusb 6-1:0.55: LD USB Device #0 now disconnected [ 125.318899][T18499] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6027'. [ 125.384755][T18509] bridge0: port 1(bridge_slave_0) entered disabled state [ 125.387796][T18509] bridge0: port 2(bridge_slave_1) entered disabled state [ 125.401131][T18509] netdevsim netdevsim0 netdevsim0: left promiscuous mode [ 125.404620][T18509] bridge1: left promiscuous mode [ 125.406353][T18509] sit1: left promiscuous mode [ 125.408031][T18509] veth3: left promiscuous mode [ 125.545216][T18547] usb usb3: usbfs: process 18547 (syz.1.6051) did not claim interface 0 before use [ 125.595120][T18568] tmpfs: Bad value for 'mpol' [ 125.807533][T18630] tmpfs: Bad value for 'mpol' [ 126.001909][ T6010] Bluetooth: hci0: unexpected event for opcode 0x2042 [ 126.083030][T18703] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 126.107769][T18707] openvswitch: netlink: Missing key (keys=40, expected=200000) [ 126.291551][T18759] JFS: charset not found [ 126.400099][T18803] openvswitch: netlink: IP tunnel dst address not specified [ 126.449391][T18817] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 126.478055][T18822] XFS (nullb0): Invalid superblock magic number [ 126.502665][T18837] macvtap0: entered allmulticast mode [ 126.504870][T18837] veth0_macvtap: entered allmulticast mode [ 126.628360][T18874] bridge1: entered promiscuous mode [ 126.630052][T18874] bridge1: entered allmulticast mode [ 126.669036][T18885] openvswitch: netlink: Flow key attribute not present in set flow. [ 126.735529][T18901] MTD: Attempt to mount non-MTD device "/dev/nbd3" [ 126.738514][T18901] block nbd3: Attempted send on invalid socket [ 126.741075][T18901] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 126.741880][T18903] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 126.745099][ T6013] Bluetooth: hci3: command 0x0c1a tx timeout [ 126.745507][ T6009] Bluetooth: hci1: command 0x0c1a tx timeout [ 126.746481][T18903] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 126.756697][T18903] vhci_hcd vhci_hcd.0: Device attached [ 126.763212][T18904] vhci_hcd: connection closed [ 126.763365][ T46] vhci_hcd: stop threads [ 126.766926][ T46] vhci_hcd: release socket [ 126.768647][ T46] vhci_hcd: disconnect device [ 127.086575][T18964] ./bus: Can't lookup blockdev [ 127.231427][T18988] validate_nla: 59 callbacks suppressed [ 127.231438][T18988] netlink: 'syz.3.6265': attribute type 2 has an invalid length. [ 127.235422][T18988] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 127.330362][T19013] netlink: 'syz.3.6278': attribute type 2 has an invalid length. [ 127.332949][T19013] netlink: 'syz.3.6278': attribute type 1 has an invalid length. [ 127.431189][T19040] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 127.458375][T19048] ubi8: attaching mtd0 [ 127.461531][T19048] ubi8: scanning is finished [ 127.463023][T19048] ubi8: empty MTD device detected [ 127.579871][T19048] ubi8: attached mtd0 (name "mtdram test device", size 0 MiB) [ 127.589359][T19048] ubi8: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 127.593234][T19048] ubi8: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 127.595914][T19048] ubi8: VID header offset: 64 (aligned 64), data offset: 128 [ 127.605742][T19048] ubi8: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 127.607656][T19048] ubi8: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 127.610114][T19048] ubi8: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 241147521 [ 127.612852][T19048] ubi8: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 127.616125][T19083] ubi8: background thread "ubi_bgt8d" started, PID 19083 [ 127.688828][T19109] netlink: 'syz.0.6325': attribute type 3 has an invalid length. [ 127.698443][T19105] usb usb1: usbfs: process 19105 (syz.2.6320) did not claim interface 0 before use [ 127.839298][T19145] __nla_validate_parse: 7 callbacks suppressed [ 127.839308][T19145] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6342'. [ 127.895021][ T60] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 127.978127][T19185] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6362'. [ 127.987627][T19185] : entered promiscuous mode [ 128.014282][T19195] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6367'. [ 128.044108][T19199] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 128.059227][ T60] usb 6-1: config index 0 descriptor too short (expected 39, got 27) [ 128.061758][ T60] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 128.065195][ T60] usb 6-1: config 0 interface 0 has no altsetting 0 [ 128.074246][ T60] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 128.077731][ T60] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 128.080229][ T60] usb 6-1: Product: syz [ 128.081502][ T60] usb 6-1: Manufacturer: syz [ 128.082913][ T60] usb 6-1: SerialNumber: syz [ 128.086989][T19211] binder: 19210:19211 ioctl c018620c 80000380 returned -22 [ 128.094375][ T60] usb 6-1: config 0 descriptor?? [ 128.097947][ T60] hub 6-1:0.0: bad descriptor, ignoring hub [ 128.099813][ T60] hub 6-1:0.0: probe with driver hub failed with error -5 [ 128.103400][ T60] usb 6-1: selecting invalid altsetting 0 [ 128.283319][T19252] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6395'. [ 128.284193][T19253] netlink: 'syz.2.6396': attribute type 29 has an invalid length. [ 128.289540][T19253] netlink: 'syz.2.6396': attribute type 3 has an invalid length. [ 128.291838][T19253] netlink: 76 bytes leftover after parsing attributes in process `syz.2.6396'. [ 128.385813][T19268] netlink: 80 bytes leftover after parsing attributes in process `syz.2.6403'. [ 128.388628][T19268] netlink: 80 bytes leftover after parsing attributes in process `syz.2.6403'. [ 128.399762][ T4309] usb 6-1: USB disconnect, device number 5 [ 128.538743][ C0] ================================================================== [ 128.541950][ C0] BUG: KASAN: slab-use-after-free in __xfrm_state_delete+0x9e5/0xa30 [ 128.544818][ C0] Write of size 8 at addr ffff888051840470 by task syz-executor/6006 [ 128.548863][ C0] [ 128.549733][ C0] CPU: 0 UID: 0 PID: 6006 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 128.549759][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 128.549765][ C0] Call Trace: [ 128.549770][ C0] [ 128.549774][ C0] dump_stack_lvl+0x116/0x1f0 [ 128.549791][ C0] print_report+0xcd/0x630 [ 128.549804][ C0] ? __virt_addr_valid+0x81/0x610 [ 128.549829][ C0] ? __phys_addr+0xe8/0x180 [ 128.549842][ C0] ? __xfrm_state_delete+0x9e5/0xa30 [ 128.549854][ C0] kasan_report+0xe0/0x110 [ 128.549867][ C0] ? __xfrm_state_delete+0x9e5/0xa30 [ 128.549880][ C0] __xfrm_state_delete+0x9e5/0xa30 [ 128.549905][ C0] xfrm_timer_handler+0x86c/0xf10 [ 128.549916][ C0] ? __pfx_debug_object_deactivate+0x10/0x10 [ 128.549929][ C0] ? __pfx_xfrm_timer_handler+0x10/0x10 [ 128.549941][ C0] ? __pfx_xfrm_timer_handler+0x10/0x10 [ 128.549964][ C0] ? mark_held_locks+0x49/0x80 [ 128.549978][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 128.549991][ C0] ? __pfx_xfrm_timer_handler+0x10/0x10 [ 128.550002][ C0] __hrtimer_run_queues+0x1ff/0xad0 [ 128.550014][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 128.550034][ C0] ? read_tsc+0x9/0x20 [ 128.550049][ C0] hrtimer_run_softirq+0x17d/0x350 [ 128.550060][ C0] handle_softirqs+0x216/0x8e0 [ 128.550072][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 128.550084][ C0] __irq_exit_rcu+0x109/0x170 [ 128.550107][ C0] irq_exit_rcu+0x9/0x30 [ 128.550118][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 128.550131][ C0] [ 128.550134][ C0] [ 128.550138][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 128.550149][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0x41/0x70 [ 128.550176][ C0] Code: a9 00 01 ff 00 74 1d f6 c4 01 74 43 a9 00 00 0f 00 75 3c a9 00 00 f0 00 75 35 8b 82 3c 16 00 00 85 c0 74 2b 8b 82 18 16 00 00 <83> f8 02 75 20 48 8b 8a 20 16 00 00 8b 92 1c 16 00 00 48 8b 01 48 [ 128.550188][ C0] RSP: 0018:ffffc9000388f638 EFLAGS: 00000246 [ 128.550197][ C0] RAX: 0000000000000000 RBX: ffffea0001792480 RCX: ffffffff820497c3 [ 128.550204][ C0] RDX: ffff888024f68000 RSI: ffffffff820497ee RDI: 0000000000000007 [ 128.550210][ C0] RBP: ffffea0001792480 R08: 0000000000000007 R09: 0000000000000000 [ 128.550216][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 128.550222][ C0] R13: ffffea0001792448 R14: 0000000000000000 R15: ffffea0001792480 [ 128.550230][ C0] ? __folio_rmap_sanity_checks.constprop.0+0x163/0x500 [ 128.550257][ C0] ? __folio_rmap_sanity_checks.constprop.0+0x18e/0x500 [ 128.550271][ C0] __folio_rmap_sanity_checks.constprop.0+0x18e/0x500 [ 128.550284][ C0] copy_page_range+0x124c/0x5c80 [ 128.550301][ C0] ? __pfx_copy_page_range+0x10/0x10 [ 128.550325][ C0] ? __pfx___might_resched+0x10/0x10 [ 128.550335][ C0] ? __pfx_mas_store+0x10/0x10 [ 128.550350][ C0] ? __vma_enter_locked+0x163/0x3f0 [ 128.550360][ C0] ? dup_mmap+0xe38/0x21d0 [ 128.550374][ C0] ? down_write+0x14d/0x200 [ 128.550401][ C0] ? up_write+0x1b2/0x520 [ 128.550415][ C0] dup_mmap+0xe88/0x21d0 [ 128.550432][ C0] ? __pfx_dup_mmap+0x10/0x10 [ 128.550461][ C0] copy_process+0x4081/0x7690 [ 128.550479][ C0] ? __pfx_copy_process+0x10/0x10 [ 128.550491][ C0] ? do_raw_spin_lock+0x12c/0x2b0 [ 128.550506][ C0] ? ___pte_offset_map+0x2ad/0x4f0 [ 128.550532][ C0] kernel_clone+0xfc/0x930 [ 128.550546][ C0] ? __pfx_kernel_clone+0x10/0x10 [ 128.550560][ C0] ? css_rstat_updated+0x1c2/0x510 [ 128.550571][ C0] ? __pfx_css_rstat_updated+0x10/0x10 [ 128.550581][ C0] __do_compat_sys_ia32_clone+0xcb/0x110 [ 128.550609][ C0] ? __pfx___do_compat_sys_ia32_clone+0x10/0x10 [ 128.550623][ C0] ? find_held_lock+0x2b/0x80 [ 128.550636][ C0] ? rcu_is_watching+0x12/0xc0 [ 128.550647][ C0] __do_fast_syscall_32+0x7c/0x3a0 [ 128.550674][ C0] do_fast_syscall_32+0x32/0x80 [ 128.550688][ C0] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 128.550700][ C0] RIP: 0023:0xf7ff7579 [ 128.550711][ C0] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 128.550721][ C0] RSP: 002b:00000000ff97920c EFLAGS: 00000292 ORIG_RAX: 0000000000000078 [ 128.550730][ C0] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000 [ 128.550737][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000577284a8 [ 128.550754][ C0] RBP: 00000000f7484ff4 R08: 0000000000000000 R09: 0000000000000000 [ 128.550761][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 128.550767][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 128.550776][ C0] [ 128.550779][ C0] [ 128.696594][ C0] Allocated by task 11894: [ 128.697975][ C0] kasan_save_stack+0x33/0x60 [ 128.699405][ C0] kasan_save_track+0x14/0x30 [ 128.700890][ C0] __kasan_slab_alloc+0x89/0x90 [ 128.702406][ C0] kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 128.704098][ C0] xfrm_state_alloc+0x23/0x5c0 [ 128.705609][ C0] __find_acq_core+0xb59/0x2900 [ 128.707165][ C0] xfrm_find_acq+0x7b/0xa0 [ 128.708819][ C0] xfrm_alloc_userspi+0x58e/0xbb0 [ 128.710806][ C0] xfrm_user_rcv_msg+0x4fe/0xb60 [ 128.712421][ C0] netlink_rcv_skb+0x155/0x420 [ 128.713907][ C0] xfrm_netlink_rcv+0x71/0x90 [ 128.715349][ C0] netlink_unicast+0x5aa/0x870 [ 128.716843][ C0] netlink_sendmsg+0x8d1/0xdd0 [ 128.718325][ C0] ____sys_sendmsg+0xa95/0xc70 [ 128.719801][ C0] ___sys_sendmsg+0x134/0x1d0 [ 128.721287][ C0] __sys_sendmsg+0x16d/0x220 [ 128.722710][ C0] __do_fast_syscall_32+0x7c/0x3a0 [ 128.724281][ C0] do_fast_syscall_32+0x32/0x80 [ 128.725734][ C0] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 128.727671][ C0] [ 128.728477][ C0] Freed by task 6329: [ 128.729732][ C0] kasan_save_stack+0x33/0x60 [ 128.731208][ C0] kasan_save_track+0x14/0x30 [ 128.732713][ C0] kasan_save_free_info+0x3b/0x60 [ 128.734297][ C0] __kasan_slab_free+0x60/0x70 [ 128.735810][ C0] kmem_cache_free+0x2d1/0x4d0 [ 128.737346][ C0] xfrm_state_gc_task+0x50a/0x770 [ 128.739178][ C0] process_one_work+0x9cf/0x1b70 [ 128.740767][ C0] worker_thread+0x6c8/0xf10 [ 128.742124][ C0] kthread+0x3c5/0x780 [ 128.743432][ C0] ret_from_fork+0x5d7/0x6f0 [ 128.744903][ C0] ret_from_fork_asm+0x1a/0x30 [ 128.746315][ C0] [ 128.747040][ C0] The buggy address belongs to the object at ffff888051840440 [ 128.747040][ C0] which belongs to the cache xfrm_state of size 928 [ 128.751134][ C0] The buggy address is located 48 bytes inside of [ 128.751134][ C0] freed 928-byte region [ffff888051840440, ffff8880518407e0) [ 128.755307][ C0] [ 128.756085][ C0] The buggy address belongs to the physical page: [ 128.758096][ C0] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888051842200 pfn:0x51840 [ 128.761537][ C0] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 128.764305][ C0] flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff) [ 128.766833][ C0] page_type: f5(slab) [ 128.768239][ C0] raw: 04fff00000000040 ffff8880207f63c0 dead000000000122 0000000000000000 [ 128.771090][ C0] raw: ffff888051842200 00000000801e0017 00000000f5000000 0000000000000000 [ 128.774275][ C0] head: 04fff00000000040 ffff8880207f63c0 dead000000000122 0000000000000000 [ 128.777340][ C0] head: ffff888051842200 00000000801e0017 00000000f5000000 0000000000000000 [ 128.780254][ C0] head: 04fff00000000003 ffffea0001461001 00000000ffffffff 00000000ffffffff [ 128.783169][ C0] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 128.786088][ C0] page dumped because: kasan: bad access detected [ 128.788271][ C0] page_owner tracks the page as allocated [ 128.790191][ C0] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 11832, tgid 11830 (syz.2.2839), ts 95713393605, free_ts 95707049741 [ 128.796433][ C0] post_alloc_hook+0x1c0/0x230 [ 128.798121][ C0] get_page_from_freelist+0x132b/0x38e0 [ 128.799916][ C0] __alloc_frozen_pages_noprof+0x261/0x23f0 [ 128.801728][ C0] alloc_pages_mpol+0x1fb/0x550 [ 128.803257][ C0] new_slab+0x247/0x330 [ 128.804583][ C0] ___slab_alloc+0xcf2/0x1750 [ 128.806059][ C0] __slab_alloc.constprop.0+0x56/0xb0 [ 128.807724][ C0] kmem_cache_alloc_noprof+0xef/0x3b0 [ 128.809287][ C0] xfrm_state_alloc+0x23/0x5c0 [ 128.810780][ C0] __find_acq_core+0xb59/0x2900 [ 128.812277][ C0] xfrm_find_acq+0x7b/0xa0 [ 128.813633][ C0] xfrm_alloc_userspi+0x58e/0xbb0 [ 128.815186][ C0] xfrm_user_rcv_msg+0x4fe/0xb60 [ 128.816745][ C0] netlink_rcv_skb+0x155/0x420 [ 128.818304][ C0] xfrm_netlink_rcv+0x71/0x90 [ 128.819787][ C0] netlink_unicast+0x5aa/0x870 [ 128.821274][ C0] page last free pid 23 tgid 23 stack trace: [ 128.823121][ C0] __free_frozen_pages+0x7d5/0x10f0 [ 128.824744][ C0] __folio_put+0x329/0x450 [ 128.826211][ C0] skb_release_data+0x81a/0x9e0 [ 128.827870][ C0] napi_consume_skb+0x1b7/0x220 [ 128.829352][ C0] e1000_unmap_and_free_tx_resource+0x144/0x200 [ 128.831234][ C0] e1000_clean+0x4a0/0x2670 [ 128.832665][ C0] __napi_poll.constprop.0+0xb7/0x550 [ 128.834300][ C0] net_rx_action+0xa9f/0xfe0 [ 128.835721][ C0] handle_softirqs+0x216/0x8e0 [ 128.837183][ C0] run_ksoftirqd+0x3a/0x60 [ 128.838635][ C0] smpboot_thread_fn+0x3f7/0xae0 [ 128.840313][ C0] kthread+0x3c5/0x780 [ 128.841620][ C0] ret_from_fork+0x5d7/0x6f0 [ 128.843068][ C0] ret_from_fork_asm+0x1a/0x30 [ 128.844580][ C0] [ 128.845342][ C0] Memory state around the buggy address: [ 128.847077][ C0] ffff888051840300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 128.849546][ C0] ffff888051840380: fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc fc [ 128.851914][ C0] >ffff888051840400: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb [ 128.854211][ C0] ^ [ 128.856622][ C0] ffff888051840480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 128.859515][ C0] ffff888051840500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 128.862069][ C0] ================================================================== [ 128.864723][ C0] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 128.867011][ C0] CPU: 0 UID: 0 PID: 6006 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 128.869899][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 128.873583][ C0] Call Trace: [ 128.874645][ C0] [ 128.875564][ C0] dump_stack_lvl+0x3d/0x1f0 [ 128.877048][ C0] vpanic+0x6e8/0x7a0 [ 128.878548][ C0] ? __pfx_do_sync_core+0x10/0x10 [ 128.880120][ C0] ? __pfx_vpanic+0x10/0x10 [ 128.881558][ C0] ? __pfx_do_sync_core+0x10/0x10 [ 128.883131][ C0] ? __xfrm_state_delete+0x9e5/0xa30 [ 128.884789][ C0] panic+0xca/0xd0 [ 128.885971][ C0] ? __pfx_panic+0x10/0x10 [ 128.887392][ C0] ? check_panic_on_warn+0x1f/0xb0 [ 128.889007][ C0] check_panic_on_warn+0xab/0xb0 [ 128.890550][ C0] end_report+0x107/0x170 [ 128.891890][ C0] kasan_report+0xee/0x110 [ 128.893290][ C0] ? __xfrm_state_delete+0x9e5/0xa30 [ 128.894929][ C0] __xfrm_state_delete+0x9e5/0xa30 [ 128.896515][ C0] xfrm_timer_handler+0x86c/0xf10 [ 128.898104][ C0] ? __pfx_debug_object_deactivate+0x10/0x10 [ 128.899954][ C0] ? __pfx_xfrm_timer_handler+0x10/0x10 [ 128.901668][ C0] ? __pfx_xfrm_timer_handler+0x10/0x10 [ 128.903360][ C0] ? mark_held_locks+0x49/0x80 [ 128.904826][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 128.906593][ C0] ? __pfx_xfrm_timer_handler+0x10/0x10 [ 128.908310][ C0] __hrtimer_run_queues+0x1ff/0xad0 [ 128.909938][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 128.911689][ C0] ? read_tsc+0x9/0x20 [ 128.912972][ C0] hrtimer_run_softirq+0x17d/0x350 [ 128.914704][ C0] handle_softirqs+0x216/0x8e0 [ 128.916195][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 128.917853][ C0] __irq_exit_rcu+0x109/0x170 [ 128.919295][ C0] irq_exit_rcu+0x9/0x30 [ 128.920635][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 128.922347][ C0] [ 128.923281][ C0] [ 128.924214][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 128.926082][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0x41/0x70 [ 128.928000][ C0] Code: a9 00 01 ff 00 74 1d f6 c4 01 74 43 a9 00 00 0f 00 75 3c a9 00 00 f0 00 75 35 8b 82 3c 16 00 00 85 c0 74 2b 8b 82 18 16 00 00 <83> f8 02 75 20 48 8b 8a 20 16 00 00 8b 92 1c 16 00 00 48 8b 01 48 [ 128.933868][ C0] RSP: 0018:ffffc9000388f638 EFLAGS: 00000246 [ 128.935756][ C0] RAX: 0000000000000000 RBX: ffffea0001792480 RCX: ffffffff820497c3 [ 128.938171][ C0] RDX: ffff888024f68000 RSI: ffffffff820497ee RDI: 0000000000000007 [ 128.940479][ C0] RBP: ffffea0001792480 R08: 0000000000000007 R09: 0000000000000000 [ 128.942972][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 128.945419][ C0] R13: ffffea0001792448 R14: 0000000000000000 R15: ffffea0001792480 [ 128.947857][ C0] ? __folio_rmap_sanity_checks.constprop.0+0x163/0x500 [ 128.949959][ C0] ? __folio_rmap_sanity_checks.constprop.0+0x18e/0x500 [ 128.952173][ C0] __folio_rmap_sanity_checks.constprop.0+0x18e/0x500 [ 128.954340][ C0] copy_page_range+0x124c/0x5c80 [ 128.955907][ C0] ? __pfx_copy_page_range+0x10/0x10 [ 128.957798][ C0] ? __pfx___might_resched+0x10/0x10 [ 128.959466][ C0] ? __pfx_mas_store+0x10/0x10 [ 128.960999][ C0] ? __vma_enter_locked+0x163/0x3f0 [ 128.962699][ C0] ? dup_mmap+0xe38/0x21d0 [ 128.964109][ C0] ? down_write+0x14d/0x200 [ 128.965512][ C0] ? up_write+0x1b2/0x520 [ 128.966841][ C0] dup_mmap+0xe88/0x21d0 [ 128.968145][ C0] ? __pfx_dup_mmap+0x10/0x10 [ 128.969599][ C0] copy_process+0x4081/0x7690 [ 128.971039][ C0] ? __pfx_copy_process+0x10/0x10 [ 128.972599][ C0] ? do_raw_spin_lock+0x12c/0x2b0 [ 128.974120][ C0] ? ___pte_offset_map+0x2ad/0x4f0 [ 128.975662][ C0] kernel_clone+0xfc/0x930 [ 128.977048][ C0] ? __pfx_kernel_clone+0x10/0x10 [ 128.978540][ C0] ? css_rstat_updated+0x1c2/0x510 [ 128.980108][ C0] ? __pfx_css_rstat_updated+0x10/0x10 [ 128.981722][ C0] __do_compat_sys_ia32_clone+0xcb/0x110 [ 128.983376][ C0] ? __pfx___do_compat_sys_ia32_clone+0x10/0x10 [ 128.985225][ C0] ? find_held_lock+0x2b/0x80 [ 128.986641][ C0] ? rcu_is_watching+0x12/0xc0 [ 128.988114][ C0] __do_fast_syscall_32+0x7c/0x3a0 [ 128.989695][ C0] do_fast_syscall_32+0x32/0x80 [ 128.991132][ C0] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 128.993040][ C0] RIP: 0023:0xf7ff7579 [ 128.994369][ C0] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 129.000631][ C0] RSP: 002b:00000000ff97920c EFLAGS: 00000292 ORIG_RAX: 0000000000000078 [ 129.003185][ C0] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000 [ 129.005631][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000577284a8 [ 129.008075][ C0] RBP: 00000000f7484ff4 R08: 0000000000000000 R09: 0000000000000000 [ 129.010573][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 129.013093][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 129.015555][ C0] [ 129.017243][ C0] Kernel Offset: disabled [ 129.018609][ C0] Rebooting in 86400 seconds.. VM DIAGNOSIS: 05:47:20 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85617af5 RDI=ffffffff9b0ff700 RBP=ffffffff9b0ff6c0 RSP=ffffc90000007750 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3135303838387257 R12=0000000000000000 R13=0000000000000031 R14=ffffffff9b0ff6c0 R15=ffffffff85617a90 RIP=ffffffff85617b1f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880974bd000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f7fe55c0 CR3=0000000066e18000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000007 RBX=0000000000000009 RCX=ffffffff95df8040 RDX=0000000000000008 RSI=ffff888048be2f58 RDI=ffff888048be2440 RBP=ffffc900200eeb60 RSP=ffffc900200eeac0 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000028 R11=0000000000000001 R12=ffff888048be2f58 R13=0000000000000200 R14=0000000000000001 R15=ffff888048be2440 RIP=ffffffff819734cd RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f4a5dbda880 ffffffff 00c00000 GS =0000 ffff8880975bd000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000056db74c0 CR3=0000000027eb4000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=00000000000be5b7 RBX=0000000000000002 RCX=ffffffff8b911bf9 RDX=0000000000000000 RSI=ffffffff8de4dd71 RDI=ffffffff8c162f00 RBP=ffffed1003bd8910 RSP=ffffc9000047fdf8 R8 =0000000000000001 R9 =ffffed1005686655 R10=ffff88802b4332ab R11=0000000000000000 R12=0000000000000002 R13=ffff88801dec4880 R14=ffffffff90ab9790 R15=0000000000000000 RIP=ffffffff8b91075f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880976bd000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f7456288 CR3=0000000049dcb000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f7484ff4 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=000000000008f10f RBX=0000000000000003 RCX=ffffffff8b911bf9 RDX=0000000000000000 RSI=ffffffff8de4dd71 RDI=ffffffff8c162f00 RBP=ffffed1003bdd000 RSP=ffffc9000048fdf8 R8 =0000000000000001 R9 =ffffed10056a6655 R10=ffff88802b5332ab R11=0000000000000000 R12=0000000000000003 R13=ffff88801dee8000 R14=ffffffff90ab9790 R15=0000000000000000 RIP=ffffffff8b91075f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880977bd000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000003471bffc CR3=0000000049dcb000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f7484ff4 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000