last executing test programs: 4.500570389s ago: executing program 3 (id=843): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffc, 0x0, @void, @value, @void, @value}, 0x50) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='environ\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0xe) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) stat64(0x0, 0x0) syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x7902, 0x10000, 0x0, 0x3}, 0x0, &(0x7f0000000280)) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x10, &(0x7f0000000ac0)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000340)=[{0x5, 0x5, 0x0, 0x9}], 0x10, 0x36, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @broadcast}, @redirect={0x8, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @remote}}}}}}, 0x0) r3 = getpid() sched_setscheduler(r3, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000009c0)=@raw={'raw\x00', 0x9, 0x3, 0x328, 0x0, 0xffffffff, 0xffffffff, 0x10c, 0xffffffff, 0x260, 0xffffffff, 0xffffffff, 0x260, 0xffffffff, 0x3, &(0x7f00000003c0), {[{{@ipv6={@rand_addr=' \x01\x00', @mcast2, [0xff, 0xff000000, 0xffffff00], [0x0, 0xffffff00, 0xff, 0xff000000], 'ip6gretap0\x00', 'team0\x00', {}, {}, 0x2b, 0xf8, 0x1, 0x21}, 0x0, 0xec, 0x10c, 0x0, {}, [@inet=@rpfilter={{0x24}}, @inet=@rpfilter={{0x24}}]}, @unspec=@TRACE={0x20}}, {{@ipv6={@mcast2, @mcast2, [0xffffffff, 0xffffff00, 0xff, 0xff], [0xff000000, 0xffffffff, 0xff, 0xff], 'wlan1\x00', 'bridge_slave_1\x00', {0xff}, {}, 0x2c, 0x9, 0x4, 0x58}, 0x0, 0xec, 0x154, 0x0, {}, [@common=@ipv6header={{0x24}, {0x2, 0x0, 0x1}}, @common=@ipv6header={{0x24}, {0x10, 0x40}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x9, 0x8, 0x7f, 0x1, 'syz0\x00', 'syz1\x00', {0x28}}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x384) sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x2) socket$inet_smc(0x2b, 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x15, 0x1c, &(0x7f0000000000)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x6, 0x0, 0x0, 0x5}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0x6, 0x9}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x1, 0xa, 0x9, 0x9}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 2.85055503s ago: executing program 3 (id=855): creat(&(0x7f0000000340)='./file0\x00', 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000100005000000001e3a0000000024000a20000000000a1f000000000000000000010000000900010073797a300000000058000000030a0104000000000000000001000000090003803d2175fbe782c2002c000480080002401725f2e40800014000000003080002401c791e7108000240423930ce08000140000000030900010073797a300000000088000000060a010400000000000000000100000008000b400000000014000480100001800b0001006e756d67656e00000900010073797a3000"], 0x122}, 0x1, 0x0, 0x0, 0x40000c1}, 0x4008090) mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r1}}) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000240)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x1000}}) 2.688056978s ago: executing program 3 (id=857): r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000000)) r1 = openat$mice(0xffffff9c, &(0x7f0000000040), 0xc4000) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c09425, 0x0) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r1, 0xc0c09425, &(0x7f0000000140)={"4594cb093b984704ccf3d893faf63bb7", 0x0, 0x0, {0x2, 0x9}, {0x4b, 0x96}, 0x1, [0x7, 0xfffffffeffffffff, 0x3, 0x8, 0x5, 0x4, 0x6, 0x4, 0x427eab7000000, 0x40, 0x6, 0xc, 0x1, 0x8000000000000000, 0x4, 0x8]}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c09425, 0x0) r2 = socket(0xa, 0x4, 0x8) ioctl$NS_GET_OWNER_UID(r1, 0xb704, &(0x7f0000000680)=0x0) getresgid(&(0x7f00000006c0), &(0x7f0000000700), &(0x7f0000000740)=0x0) statx(r1, &(0x7f0000002900)='./file0\x00', 0x0, 0x20, &(0x7f0000002940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$sock_SIOCGPGRP(r1, 0x8904, 0x0) getsockopt$IP_SET_OP_VERSION(r2, 0x1, 0x53, &(0x7f0000000080), &(0x7f00000000c0)=0x8) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000002a80)={0x0, 0x0}, &(0x7f0000002ac0)=0xc) r7 = getegid() getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, 0x0) statx(r1, 0x0, 0x0, 0x40, &(0x7f0000005340)={0x0, 0x0, 0x0, 0x0, 0x0}) read$FUSE(r1, &(0x7f0000005440)={0x2020, 0x0, 0x0, 0x0, 0x0}, 0x2020) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000007480)={{0x1, 0x1, 0x18, r0, {0xee00, 0xee00}}, './file0\x00'}) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) semget(0x1, 0x4, 0x302) lstat(&(0x7f00000074c0)='./file0\x00', &(0x7f0000007500)) ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000009300)=0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) syz_open_dev$evdev(&(0x7f0000009680), 0x3, 0x80402) openat$binder_debug(0xffffff9c, &(0x7f00000096c0)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) socket$isdn(0x22, 0x3, 0x4) sendmmsg$unix(r2, &(0x7f0000009d40)=[{{&(0x7f00000002c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000440)=[{&(0x7f0000000340)="02592ae7e2f994b2f20d01a3ff1a3ae1", 0x10}, {&(0x7f0000000380)="ea9f61135de2a834b7433344335624fac5be1395dcd258273648c7a8a0b2b543fb86251be480bd08cdc586858e927352f6b30368bac2038d5006fbb8275f7f6a8189b92918c58d359e2f03c6ff3e5e35b2bc0b1fcac7630225a45bd9c852de1485ceb399b54954370b35ce3237f309ab7795526599279f9958b647c529e1869564e644f756dc0b414af098d95282058d4e14b4a99804", 0x96}], 0x2, 0x0, 0x0, 0x8000}}, {{&(0x7f0000000480)=@file={0x0, './file0\x00'}, 0x6e, 0x0, 0x0, &(0x7f0000002c40)=ANY=[@ANYBLOB="140000000100000001000000", @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="180000000100000002000000", @ANYRES32=0x0, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="180000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=r5, @ANYBLOB="180000000100000002000000", @ANYRES32=0x0, @ANYRES32=r6, @ANYRES32=r7, @ANYBLOB="180000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="180000000100000001000000", @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r2], 0x8c, 0x80c1}}, {{&(0x7f0000002d00)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f00000041c0)=[{&(0x7f0000002d80)="b392ad2ddd6f4a8e76527a73278e", 0xe}, {&(0x7f0000002dc0)="f369ecce69ffe93eec62363a6249920443955ad7310feb81068530375be787b7d1b3af367343dc0fa2014e94a4", 0x2d}, {&(0x7f0000002e00)="73b557d4dd4ca9ccc598453b2c022a8d9b3ab54dbe8365dcbfab47dacc70483fd8e008b15ee85dd01fcaedca90b978355c1a7dec3c0a0202f23651feaece7ea293abc2b4251ea7e7f75af316af7e3289a7ab42468bd146bd0de20d3d141449acf56b67a30e3ddc05c72278879bda89379e5178327fea730c34", 0x79}, {&(0x7f0000002e80)}, {0x0}, {0x0}, {&(0x7f0000004180)}], 0x7, 0x0, 0x0, 0x4040084}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000007580)=[@cred={{0x18, 0x1, 0x2, {0x0, r8, r9}}}], 0x18, 0x5}}, {{0x0, 0x0, &(0x7f0000008900)=[{&(0x7f00000075c0)="185e434de686e439691432774198599cbc583f76a96ec512abaf59cd7f70002718397dcb90f250902cb1bb902c5fdd724771366178397866e8a5a779ce262db02719b34e37102a3f63ee77bacf712a423ccce3710f638d1222406affd7ff80951c", 0x61}, {&(0x7f0000007680)="46cbf457ad36d03d1003fb9c7b280e865f989be4b4b6b43f1d13f70527eecdb1b9b96b58b63c37d2ff42af4c15229256b37fe6d086c08b0dd0929f8b633281799c1ca8840549f22b7961cfe41eaaff7fff8b857b301550bf312e25dc87dd6aa79856d901a3fac44594e4c998609e76e103451936464c20f0c438b21dc474a6c69ae23a713fac814a748ec4d6368e59c1c6a2b881579a176e807238d44ae922a961dd7fa87e45125e267ba2fad5bfa4d686bb38b018978e1006c4d52bc80bd23c36dcda6a8cb9e6e42a2b4b865105fd016218d358e2e04e4ef6f2d315dab653fbb67b79079bdc3c0d8f1002f59a52615753095092970508696367a367af4fffc383fafeb1214230f59534f0e8980e05fb9b9a97f2f6a721c9157b86e68ddd9ea8c7254e51ed75f268ffddb0b000516a5ef6858c0c837fefe577c8afe3eec7089b78408404e35608099c3d25d0fd0ca3ab981f8ce55dee9f93a613d53fcefab84d2b9fe5fa9e023c3f9aab4962ce3e94ddca03afee12ba5b22ae308bcf31353357ef778e98026573d32158ae54d13bf4d24ff0bf4ce138ebf0b576675f8c3411a73ffdcbfe8c5ebe913f7a13ef7326b4819d1c0e9a5a08c4c9902974a105b3f27e5f8693f536aa3eb44923a5d8cc3ae372c74e3b1db87340cb1d94407efd939d569e1e7113cf8c4f1360a2a12ce35a275423cfb5f6d32bce8d9ebcc2bd85c6b13ec99a7a86f3103e80cf4b0c4ae17d762d73aa14b10058535b35f82367a368802f3ed8667a63050aafdb37bbf0e665dc1e3de47dd91aad68aa740700b434354e44f36503c4e1ca1074e862291d2f0b6b6ec0dd40974c1ae731132a4c2ae9db77ea768c77391c2d2caf96a1af5168dc8017e6c78499b053425a5292b171519bf04e96365c652b498c5a645d7ca1f2c38ce6d7d54815588d734466c1e3118753b590eff775c496d4646452855b850a8bb31133c579fc13dc1defc064579acdddcd4dd8771db1951e4e58ae59c1d4407b94f5c378bcd942569a03ecfb416a4c73007e5502c07aca39bdb459e26a770d575464f857a0c8ade6fbcf859976eb1605048832a277333ce58af50940b7977d299c38fa014b931d82214545a577d456b4b9ac094e15a06ae63c7e87807f746da06ae2481131495ab15301a1af4d96a73960939ab6eb18b557bbf7bb77fd9a06968ca24d43f89bc9ea3474db8cc9d86d2eceef69be8f61da7d0f7c660312e539efd612840d7e6de13ef7412a1c883d2e0784483d3418710fa2bb41370242b2c2bbfae6d32342dfe51a2e032214406a68fa5e04265cda2c6b61960f828b91e01e2bfe4daf7bdcd2b235670a7828c42980c2d9dfb018bf17fe501cb89b0ac625d962ba985087652f6bf0", 0x3d6}, {0x0}, {&(0x7f0000008700)="3153be2c060277d362089c26d54b6436e9fda191f1d085bdc5d91fe97ac8362ebff2cd719263886aeccc1b8708c20291a062b85e0c386b96e9145dc252fa123ff3df7582bad9699bd5f238561aab0695979e1168698fed3d29535bee94008adc7b14af1c8aac338cdcb7d552c863786687718f87ffaf3c263ab33044", 0x7c}, {0x0}], 0x5, &(0x7f0000008940)=ANY=[@ANYBLOB="0c000000010000000100ad00"], 0xc, 0x4000000}}, {{&(0x7f0000008980)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000008e40)=[{&(0x7f0000008a00)="e2ad39b040c45b839c0b629b42adc6c06660189dae68d7876eafe1987c34c7cdfbbd79260e611bd33e1cf2168c68712d16451c8ec1f420d2cb3da58738a354254ffa3a502e41bb4683fc589e406a2eaa0886ca8e437d5d2cc11e020282c72d94d29cac27e1ff937d7f84dfa7be351ff84df0286e40450e0de77bf148b13474a9b74ea64c5f74fb9a62178eff974cf5109872d8dd20dbcebf598f5c8ab5dfa52560fb38f0f50dab82e166def47cf471eba91f251f18b567714b", 0xb9}, {&(0x7f0000008bc0)="d6189f195d707a4858c14ce543460c0f30d5093890072726cc4d53475e95b66b", 0x20}, {0x0}, {&(0x7f0000008dc0)="1e342e4242dfc91303110caee90fcb59f4aed42cd2fbf98c8b8bd3f9f4539054a4cd6e3c74e9225e5634", 0x2a}], 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="0c00367ac0d0000000000000000000000000007acc422700"], 0xc}}, {{&(0x7f0000008ec0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000008f80)}}, {{&(0x7f0000008fc0)=@abs={0x0, 0x0, 0x4e21}, 0x6e, 0x0, 0x0, &(0x7f0000009340)=[@cred={{0x18, 0x1, 0x2, {r10, 0xffffffffffffffff, 0xffffffffffffffff}}}], 0x18, 0x48080}}, {{&(0x7f0000009380)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000009500)=[{&(0x7f0000009400)}, {&(0x7f0000009480)="0df78f8c76b4735d9c4fb5c4bee236768599e135a17a1e95c093c1eeaba70eeb4baf1932fe6e79a47c2b6d8ca6f5323a0f56a38b2e7e3a9fb1bf270615ef1f7e441c69cf12feeec22ee5097d1034b5c4a5ed39d9e0fa", 0x56}], 0x2, 0x0, 0x0, 0x20000000}}, {{&(0x7f0000009540)=@file={0x1, './file0\x00'}, 0x6e, 0x0, 0x0, &(0x7f0000009c40), 0x0, 0x40}}], 0xa, 0x20000000) 2.487157995s ago: executing program 2 (id=860): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000400)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"]) chdir(&(0x7f0000000280)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_serviced\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) ftruncate(r0, 0xc17c) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x440}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) read$FUSE(r0, 0x0, 0x0) write$FUSE_LK(r0, &(0x7f0000000180)={0x28, 0x0, 0x0, {{0xfffffffffffffffe, 0x0, 0x2}}}, 0x28) 2.486861023s ago: executing program 3 (id=861): bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0) r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1}) r1 = syz_open_dev$loop(&(0x7f0000000100), 0x8, 0x0) ioctl$LOOP_CONFIGURE(r1, 0x80041272, &(0x7f0000000380)={0xffffffffffffffff, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0xf, 0x10, "1e7eb9e072e38e6ad1d7fdbc3fc7c69d8b26dea406d9102fdea168363fb616b70a93436b64fb422e9333065904562b5da73fc53626e6c23ea7c815a6ff57f70d", "b174d3871ec96b45baa585a7aeaff3e96a6b7b1ce62d17f63db7ad6b7ec5a56b76f2a6618b4f3e8e2f31b1ffde518226eef0661758baaaf628c292e4a8787163", "5f4ab97ee64f29ffe042e63fe40679434b9387f0504215d3d08d9b652b4f5816", [0x1000, 0xf]}}) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000000)={0x6, 0x1, 0x1, 0x0, 0x3}) r2 = socket$pppl2tp(0x18, 0x1, 0x1) set_mempolicy(0x6, &(0x7f00000003c0)=0x8000000000000001, 0xe0) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2800001, 0xc3072, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil) mbind(&(0x7f0000400000/0xc00000)=nil, 0xc01100, 0x0, 0x0, 0x0, 0x2) getsockname(r2, 0x0, 0x0) ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000040)=0x1) ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000080)=0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) r4 = openat$vmci(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) add_key$user(&(0x7f0000000280), &(0x7f0000000000)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) ioctl$IOCTL_VMCI_VERSION2(r4, 0x7a7, &(0x7f0000000040)=0x10000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, &(0x7f0000000200)={@host}) syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da07000000000001090224"], 0x0) syz_usb_disconnect(0xffffffffffffffff) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[], 0x0) ioctl$EVIOCRMFF(0xffffffffffffffff, 0x83c0550b, 0x0) ioctl$IOCTL_VMCI_CTX_ADD_NOTIFICATION(r4, 0x7af, &(0x7f0000000000)={@local}) connect$unix(0xffffffffffffffff, 0x0, 0x0) mkdirat(0xffffffffffffffff, &(0x7f0000000340)='./file1\x00', 0xa0) chdir(&(0x7f0000000080)='./file1\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) close_range(r3, 0xffffffffffffffff, 0x0) 2.380479381s ago: executing program 2 (id=862): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000081000/0x1000)=nil, &(0x7f0000084000/0x4000)=nil, 0x1000, 0x2}) getpid() syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f00000001c0)=ANY=[@ANYBLOB="01000000000000004900000000000000010000000000007d5c093c3c3b62b05061f0b6e2887c6e00715343dbdf4b5b696277942f16458c3b9a5a03484ae9bdcc231cf62b99250bf02809313ebcf731d291e87eb7"]) r6 = socket$inet6(0xa, 0x80003, 0x6) connect$inet6(r6, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) r7 = syz_open_dev$usbfs(&(0x7f00000001c0), 0x77, 0x141301) ioctl$USBDEVFS_FREE_STREAMS(r7, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007006000000002000020d3"]) syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$USBDEVFS_RELEASE_PORT(r7, 0x4004550d, 0x0) 2.259616529s ago: executing program 0 (id=863): socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe) setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000003000)={0x2}, 0x2) syz_open_procfs(0x0, &(0x7f0000000280)='net/ip_vs\x00') socket$netlink(0x10, 0x3, 0x0) socket$inet6(0xa, 0x400000000001, 0x0) openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0) openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1e) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r1 = getpid() r2 = syz_pidfd_open(r1, 0x0) setns(r2, 0x24020000) syz_clone(0xfdba2180, 0x0, 0x0, 0x0, 0x0, 0x0) 2.112468945s ago: executing program 0 (id=864): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x1) ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000480)={{0x0, 0x3, 0x0, 0x3}, 'syz0\x00', 0x2}) ioctl$UI_SET_KEYBIT(r1, 0x40045565, 0xee) ioctl$UI_DEV_CREATE(r1, 0x5501) close_range(r0, 0xffffffffffffffff, 0x0) 2.060485387s ago: executing program 0 (id=865): r0 = socket$kcm(0x2, 0x922000000001, 0x106) sendmsg$inet(r0, &(0x7f0000000000)={&(0x7f0000000140)={0x2, 0xffff, @rand_addr=0x64010100}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) 2.0602629s ago: executing program 0 (id=866): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) r1 = syz_io_uring_setup(0x155a, &(0x7f0000000080)={0x0, 0xcfa6, 0x2000, 0x80}, &(0x7f0000000100)=0x0, &(0x7f0000000ac0)=0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_open_dev$sndmidi(0x0, 0x2, 0x141101) syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0xa0603) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x25dfdbfb, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x3, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r4 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r4, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) r7 = add_key$user(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$read(0xb, r7, &(0x7f0000000380)=""/222, 0xde) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x40}}, 0x4080) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$inet(r8, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0) close(r9) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x14}) io_uring_enter(r1, 0x567, 0x0, 0x0, 0x0, 0x0) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r10}, 0x50) 1.6278239s ago: executing program 2 (id=869): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8) r1 = openat$nullb(0xffffff9c, &(0x7f0000000100), 0xc0000, 0x0) ioctl$BLKPG(r1, 0x1269, &(0x7f0000000180)={0x3, 0x0, 0x94, &(0x7f00000002c0)={0x6, 0x9, 0x6}}) fallocate(r0, 0x1, 0x6, 0x7ff) r2 = socket$qrtr(0x2a, 0x2, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) map_shadow_stack(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) ioctl$VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, 0x0) write(0xffffffffffffffff, &(0x7f0000000600), 0x0) r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r4 = dup(r3) write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x0, 0x0) mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0xa0029, &(0x7f0000000340)=ANY=[]) syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r4}, 0x0, &(0x7f00000001c0)) socket(0x2000000000000021, 0x2, 0x10000000000002) readv(0xffffffffffffffff, 0x0, 0x0) connect$qrtr(r2, &(0x7f0000000080), 0xc) read(r2, &(0x7f00000001c0)=""/67, 0x43) r5 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0) preadv(r5, &(0x7f0000001b00)=[{&(0x7f00000009c0)=""/239, 0xef}], 0x1, 0x2, 0x0) getpeername(r2, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f00000000c0), 0x1) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c) sendto$inet6(r0, &(0x7f0000000500)="a4", 0x34000, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c) close(r0) 1.618425597s ago: executing program 3 (id=871): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9b, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x60, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_EXPR={0x24, 0x11, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_DREG={0x8}, @NFTA_META_KEY={0x8}]}}}]}], {0x14, 0x10}}, 0xa8}}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_open_dev$swradio(&(0x7f0000002440), 0x1, 0x2) io_uring_setup(0x1a6f, &(0x7f0000000140)={0x0, 0x0, 0x100, 0x80000, 0xfffffffe}) syz_open_dev$dri(&(0x7f0000000040), 0x100006, 0x0) r3 = syz_io_uring_setup(0x117, &(0x7f0000000300), &(0x7f0000000280)=0x0, &(0x7f0000000200)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc}) io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0) 1.430428595s ago: executing program 3 (id=872): socket$unix(0x1, 0x2, 0x0) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0) mkdir(&(0x7f00000000c0)='./file1\x00', 0x0) openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) ioctl$SNDRV_PCM_IOCTL_DRAIN(0xffffffffffffffff, 0x4144, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) socket$inet_udp(0x2, 0x2, 0x0) getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x7f, 0x0, &(0x7f0000001180)) socket(0x28, 0x2, 0x1) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_encrypt_change={{0x8, 0x4}, {0x0, 0xc8, 0x2}}}, 0x7) r1 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1ff, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc2c45513, &(0x7f0000000040)={{0x2, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x0, [0x2, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}) socket$nl_route(0x10, 0x3, 0x0) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x2, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000500)={r2, 0x0, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) write$tun(r3, &(0x7f0000000440)=ANY=[@ANYBLOB="00000000ffffffffffffaaaaaaaaaabb08004500452c00000000002f9078ac1e0001e00000010000655800189000"], 0xfdef) socket(0x22, 0x800, 0x0) io_setup(0x3, 0x0) syz_usb_connect(0x5, 0x6a, 0x0, 0x0) r4 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000200), 0xa0201, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r4, 0xc004500a, &(0x7f0000000000)) 1.109639687s ago: executing program 1 (id=876): syz_open_dev$tty1(0xc, 0x4, 0x1) r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GETGAMMA(r0, 0xc02064a4, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_open_dev$I2C(&(0x7f0000000d80), 0x0, 0x0) syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) pselect6(0x40, &(0x7f0000000000)={0x17, 0x0, 0x4, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000800)=ANY=[@ANYRESDEC=0x0], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100)={0x2}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000005000000fd0900008420000005010000", @ANYRES32=0x0, @ANYRES32], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r1}, 0x38) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1801000000000000000000000000000085000000050000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008008000b703000000009c8c850000006d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) connect$pppoe(0xffffffffffffffff, &(0x7f0000000140)={0x18, 0x0, {0x0, @local, 'bond_slave_0\x00'}}, 0x1e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) timer_create(0x2, &(0x7f0000000000)={0x0, 0x29, 0x1, @thr={0x0, &(0x7f0000000a40)="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"}}, &(0x7f0000000040)) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x80040, 0x0) writev(r4, &(0x7f0000000800)=[{&(0x7f0000000c00)="89e7ee2c7cdad9b4b4", 0x9}, {0x0}], 0x2) sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002) gettid() mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0) r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0xc, 0xb, &(0x7f00000000c0)=ANY=[@ANYBLOB="18040000000000000000000000000000180000002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001040)={r5, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000100)="b9ff03316844268cb89e14f00800", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x4c) r6 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000000000ec0000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xc, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="180600000000000a000000000000000018120000", @ANYRES32=r6, @ANYBLOB="00000000b70300000000000c000000b7000000000000009500"/36], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r6}, 0x0, &(0x7f00000000c0)}, 0x1c) 990.262313ms ago: executing program 0 (id=877): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000400)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"]) chdir(&(0x7f0000000280)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_serviced\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) ftruncate(r0, 0xc17c) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x440}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) read$FUSE(r0, 0x0, 0x0) write$FUSE_LK(r0, &(0x7f0000000180)={0x28, 0x0, 0x0, {{0xfffffffffffffffe, 0x0, 0x2}}}, 0x28) 927.357252ms ago: executing program 0 (id=878): syz_io_uring_setup(0x1af4, &(0x7f0000000080)={0x0, 0x0, 0x3e00}, &(0x7f0000000100), &(0x7f0000001000)) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x2, &(0x7f00000001c0)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0) r0 = semget(0x1, 0x1, 0x789) semctl$SETALL(r0, 0x0, 0x11, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount$bind(&(0x7f0000000300)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0) mkdirat(r1, &(0x7f0000000180)='./file1/file0\x00', 0x8) mkdirat(r1, &(0x7f0000000440)='./bus\x00', 0x41) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f00000000c0)='./bus\x00') rmdir(&(0x7f0000000040)='./file0\x00') fadvise64(0xffffffffffffffff, 0x1f00, 0x0, 0x4) r2 = socket$rds(0x15, 0x5, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',grou', @ANYRESDEC=0x0, @ANYBLOB="8c"]) read$FUSE(r3, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r3, &(0x7f0000000240)={0x50, 0x0, r4, {0x7, 0x29, 0x2017, 0x4c801741, 0x2, 0x5, 0x7fff, 0x200, 0x0, 0x0, 0x8, 0x10007ff}}, 0x50) open(&(0x7f0000000080)='./file0\x00', 0x551a03, 0xff0f0000) r5 = io_uring_setup(0x7bd9, &(0x7f00000003c0)={0x0, 0x1ef6, 0x1c81, 0x2}) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) io_uring_register$IORING_UNREGISTER_PERSONALITY(r5, 0x1b, 0x20000009, r6) bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10) sendmsg$rds(r2, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0) 671.734556ms ago: executing program 2 (id=879): r0 = openat$sndseq(0xffffff9c, &(0x7f0000000180), 0x40) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a45320, &(0x7f00000000c0)={{0x80, 0x5}, 'port1\x00', 0x786520dbf34c80f7, 0x60a03, 0x3de9, 0x0, 0x7fff, 0xc, 0x400, 0x0, 0x3, 0x87}) openat$sequencer2(0xffffff9c, &(0x7f0000000040), 0x123482, 0x0) 610.494641ms ago: executing program 2 (id=880): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000400)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"]) chdir(&(0x7f0000000280)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_serviced\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) ftruncate(r0, 0xc17c) syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x440}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) read$FUSE(r0, &(0x7f0000000f00)={0x2020}, 0x2020) write$FUSE_LK(r0, 0x0, 0x0) 500.475354ms ago: executing program 2 (id=881): r0 = openat$uhid(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0) write$UHID_CREATE(r0, &(0x7f00000002c0)={0x0, {'syz1\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000180)=""/32, 0x20, 0x6, 0x3, 0x3, 0x0, 0xa0}}, 0x120) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040341a02080000000000010902"], 0x0) r1 = syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r4 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000011000100000000000000000007000000", @ANYRES32=r3, @ANYBLOB="000000000000000014001a80100004800c000a80"], 0x34}}, 0x0) openat$rdma_cm(0xffffff9c, &(0x7f0000000100), 0x2, 0x0) socket$unix(0x1, 0x1, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0) r5 = userfaultfd(0x801) ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f00000000c0)) r6 = gettid() r7 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0) flock(r7, 0x2) ioctl$KVM_SET_IRQCHIP(r7, 0x8208ae63, &(0x7f0000001500)={0x0, 0x0, @ioapic={0x10000, 0x1, 0x7, 0x6, 0x0, [{0x80, 0x7, 0x40, '\x00', 0xf1}, {0x6, 0x8, 0x20, '\x00', 0xb}, {0x0, 0xe, 0x3a, '\x00', 0xa}, {0x5, 0x1, 0x7, '\x00', 0x1}, {0xd9, 0x3, 0xda, '\x00', 0x6}, {0x2, 0x2, 0x9, '\x00', 0x93}, {0x1, 0xbe, 0x5, '\x00', 0x5}, {0x3, 0x7, 0x4, '\x00', 0x80}, {0x0, 0x7, 0x7, '\x00', 0x5}, {0x6, 0x35, 0x40, '\x00', 0x8}, {0xe, 0x18, 0xf}, {0x6, 0x7, 0xc, '\x00', 0x40}, {0x7d, 0x2, 0x3}, {0x4, 0x2, 0x8, '\x00', 0xb2}, {0xb5, 0x9, 0x0, '\x00', 0x2}, {0xc3, 0x8, 0x9, '\x00', 0x4}, {0x3, 0x7, 0xd, '\x00', 0x4}, {0x4, 0xd, 0x4, '\x00', 0x4f}, {0xa, 0x1, 0x1, '\x00', 0x97}, {0x5, 0x5, 0x0, '\x00', 0x1}, {0x37, 0x29, 0x4, '\x00', 0x6}, {0x8, 0x0, 0x8, '\x00', 0x4}, {0x3, 0x6, 0x0, '\x00', 0x1e}, {0xe3, 0x8, 0x10, '\x00', 0x46}]}}) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc)) ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4}) ioctl$UFFDIO_COPY(r5, 0xc028aa03, &(0x7f0000000080)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000582000/0x2000)=nil, 0x800000}) readv(r1, &(0x7f00000000c0)=[{&(0x7f0000000500)=""/4096, 0x1000}], 0x1) syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="040e04910c20"], 0x7) write$UHID_DESTROY(r0, &(0x7f0000000040), 0x4) 264.812041ms ago: executing program 1 (id=882): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw-serpent-avx\x00'}, 0x58) syz_emit_ethernet(0x2a, &(0x7f0000000100)=ANY=[@ANYBLOB="ffffffff4d9dc00ba5b2012e0806000108000604"], 0x0) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000080)={'batadv0\x00', 0x0}) sendto$packet(r1, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @link_local}, 0x14) 160.342229ms ago: executing program 1 (id=883): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioperm(0x83, 0x6, 0x8) setresuid(0x0, 0xee00, 0x0) setgid(0xee00) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0xb, &(0x7f0000000000)=0x40b, 0x4) r1 = socket$netlink(0x10, 0x3, 0xb) sync_file_range(r1, 0xfffffffffffffff8, 0xd38, 0x0) 159.964821ms ago: executing program 1 (id=884): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x1) ioctl$UI_DEV_SETUP(r1, 0x405c5503, &(0x7f0000000480)={{0x0, 0x3, 0x0, 0x3}, 'syz0\x00', 0x2}) ioctl$UI_SET_KEYBIT(r1, 0x40045565, 0xee) ioctl$UI_DEV_CREATE(r1, 0x5501) close_range(r0, 0xffffffffffffffff, 0x0) 110.325939ms ago: executing program 1 (id=885): socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe) setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000003000)={0x2}, 0x2) syz_open_procfs(0x0, &(0x7f0000000280)='net/ip_vs\x00') socket$netlink(0x10, 0x3, 0x0) socket$inet6(0xa, 0x400000000001, 0x0) openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0) openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1e) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r1 = getpid() r2 = syz_pidfd_open(r1, 0x0) setns(r2, 0x24020000) syz_clone(0xfdba2180, 0x0, 0x0, 0x0, 0x0, 0x0) 0s ago: executing program 1 (id=886): socket$inet6_sctp(0xa, 0x5, 0x84) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x20, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) socket$nl_route(0x10, 0x3, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b40)=ANY=[@ANYBLOB="140000001000010000060000000000000000000a20000000000a05000000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a310000000058000000060a010400000000000000000100000008000b4000000000300004802c00018008000100636d70002000028008000240000000e30b00038005000100ef00000008000140000000000900010073797a30"], 0xcc}}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000340), &(0x7f0000000400)=0x4) r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r2 = dup(r1) write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c) r3 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r2}, &(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1}) io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$lock(r6, 0x6, &(0x7f0000002000)={0x1, 0x0, 0x0, 0x1}) r7 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r7, 0x1, &(0x7f0000000040)=ANY=[@ANYBLOB="79f1773e"]) fcntl$lock(r6, 0x26, &(0x7f0000000080)) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b000000000000fd3eb4f201f1d4ec77d4b5599c73767c0000000000fcffffff00000000", @ANYRES32, @ANYBLOB="ff0f00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="03000000030000000500"/28], 0x50) r8 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000280), 0x121180, 0x0) ioctl$F2FS_IOC_START_VOLATILE_WRITE(r8, 0x40186f40, 0x20000502) r9 = getpid() process_vm_readv(r9, &(0x7f0000008400)=[{0x0}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0) sched_setaffinity(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) socketpair(0x18, 0x0, 0x2, &(0x7f0000000000)) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x4, 0xe, &(0x7f00000018c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x8, &(0x7f0000000240)={0x1}, 0x8, 0x10, &(0x7f00000003c0)={0x0, 0xf}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) kernel console output (not intermixed with test programs): Product=a415, bcdDevice= 0.40 [ 91.500064][ T6598] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 91.503002][ T6598] usb 7-1: Product: syz [ 91.504951][ T6598] usb 7-1: Manufacturer: syz [ 91.510019][ T6598] cdc_wdm 7-1:1.0: skipping garbage [ 91.511541][ T6598] cdc_wdm 7-1:1.0: skipping garbage [ 91.513675][ T6598] cdc_wdm 7-1:1.0: cdc-wdm1: USB WDM device [ 91.515356][ T6598] cdc_wdm 7-1:1.0: Unknown control protocol [ 91.563030][ T6598] usb 8-1: USB disconnect, device number 5 [ 91.720378][ T6007] usb 7-1: USB disconnect, device number 9 [ 92.295681][ T6913] rdma_rxe: rxe_newlink: failed to add bond0 [ 92.509739][ T6916] devtmpfs: Too few inodes for current use [ 92.553702][ T3221] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 92.704087][ T3221] usb 8-1: too many configurations: 9, using maximum allowed: 8 [ 92.707284][ T3221] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 92.710050][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 92.713345][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 92.716696][ T3221] usb 8-1: config 0 interface 0 has no altsetting 0 [ 92.719461][ T3221] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 92.722046][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 92.725429][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 92.728776][ T3221] usb 8-1: config 0 interface 0 has no altsetting 0 [ 92.731525][ T3221] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 92.734385][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 92.737545][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 92.741139][ T3221] usb 8-1: config 0 interface 0 has no altsetting 0 [ 92.744253][ T3221] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 92.747138][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 92.750484][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 92.753835][ T3221] usb 8-1: config 0 interface 0 has no altsetting 0 [ 92.756552][ T3221] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 92.759205][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 92.762436][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 92.765587][ T3221] usb 8-1: config 0 interface 0 has no altsetting 0 [ 92.768229][ T3221] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 92.770775][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 92.773896][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 92.776958][ T3221] usb 8-1: config 0 interface 0 has no altsetting 0 [ 92.779688][ T3221] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 92.782182][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 92.785457][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 92.788632][ T3221] usb 8-1: config 0 interface 0 has no altsetting 0 [ 92.791358][ T3221] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 92.794021][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 92.797079][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 92.800346][ T3221] usb 8-1: config 0 interface 0 has no altsetting 0 [ 92.804026][ T3221] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 92.806700][ T3221] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 92.809107][ T3221] usb 8-1: Product: syz [ 92.810370][ T3221] usb 8-1: Manufacturer: syz [ 92.811845][ T3221] usb 8-1: SerialNumber: syz [ 92.814967][ T3221] usb 8-1: config 0 descriptor?? [ 92.817088][ T6913] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 92.822164][ T3221] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0 [ 93.078543][ C3] usb 8-1: yurex_control_callback - control failed: -71 [ 93.078929][ T8] usb 8-1: USB disconnect, device number 6 [ 93.085281][ T8] yurex 8-1:0.0: USB YUREX #0 now disconnected [ 93.588097][ T6936] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 93.768721][ T6007] usb 6-1: USB disconnect, device number 12 [ 94.093684][ T8] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 94.143668][ T5989] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 94.243727][ T8] usb 8-1: Using ep0 maxpacket: 8 [ 94.254475][ T8] usb 8-1: config index 0 descriptor too short (expected 301, got 45) [ 94.257513][ T8] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 94.260723][ T8] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 94.263522][ T8] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 94.266393][ T8] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 94.270043][ T8] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 94.272610][ T8] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 94.305137][ T5989] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 94.308434][ T5989] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 94.312440][ T5989] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 94.317806][ T5989] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 94.322080][ T5989] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 94.328423][ T5989] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 94.332058][ T5989] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 94.335752][ T5989] usb 5-1: Product: syz [ 94.337565][ T5989] usb 5-1: Manufacturer: syz [ 94.348531][ T5989] cdc_wdm 5-1:1.0: skipping garbage [ 94.350537][ T5989] cdc_wdm 5-1:1.0: skipping garbage [ 94.356475][ T5989] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 94.358340][ T5989] cdc_wdm 5-1:1.0: Unknown control protocol [ 94.480902][ T8] usb 8-1: GET_CAPABILITIES returned 0 [ 94.482593][ T8] usbtmc 8-1:16.0: can't read capabilities [ 94.550531][ T8] usb 5-1: USB disconnect, device number 11 [ 94.681878][ T6007] usb 8-1: USB disconnect, device number 7 [ 95.013828][ T8] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 95.060647][ T6007] IPVS: starting estimator thread 0... [ 95.143715][ T6970] IPVS: using max 39 ests per chain, 93600 per kthread [ 95.184419][ T8] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 95.187444][ T8] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 95.191119][ T8] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 95.194518][ T8] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 95.198464][ T8] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 95.203300][ T8] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 95.206555][ T8] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 95.208967][ T8] usb 5-1: Product: syz [ 95.210217][ T8] usb 5-1: Manufacturer: syz [ 95.214339][ T8] cdc_wdm 5-1:1.0: skipping garbage [ 95.215915][ T8] cdc_wdm 5-1:1.0: skipping garbage [ 95.218194][ T8] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 95.220044][ T8] cdc_wdm 5-1:1.0: Unknown control protocol [ 95.415676][ T6948] cdc_wdm 5-1:1.0: Error submitting int urb - -90 [ 95.419103][ T8] usb 5-1: USB disconnect, device number 12 [ 95.883755][ T6007] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 96.053670][ T6007] usb 7-1: Using ep0 maxpacket: 8 [ 96.057758][ T6007] usb 7-1: config index 0 descriptor too short (expected 301, got 45) [ 96.060132][ T6007] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 96.062930][ T6007] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 96.070170][ T6007] usb 7-1: config 16 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 96.073285][ T6007] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 96.084233][ T6007] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 96.086820][ T6007] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 96.098251][ T6007] usbtmc 7-1:16.0: bulk endpoints not found [ 96.156166][ T6988] devtmpfs: Too few inodes for current use [ 96.402169][ T7000] netlink: 4 bytes leftover after parsing attributes in process `syz.0.293'. [ 96.407387][ T7000] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 96.508866][ T7003] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 96.981769][ T7011] 9pnet_fd: Insufficient options for proto=fd [ 97.187363][ T7018] sp0: Synchronizing with TNC [ 97.204676][ T7019] devtmpfs: Too few inodes for current use [ 97.813754][ T3221] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 97.975111][ T3221] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 97.977636][ T3221] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 97.980727][ T3221] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 97.983316][ T3221] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 14129, setting to 64 [ 97.987787][ T3221] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 97.990460][ T3221] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 97.992756][ T3221] usb 5-1: Product: syz [ 97.993681][ T5895] usb 8-1: new high-speed USB device number 8 using dummy_hcd [ 97.994180][ T3221] usb 5-1: Manufacturer: syz [ 98.000209][ T3221] cdc_wdm 5-1:1.0: skipping garbage [ 98.002102][ T3221] cdc_wdm 5-1:1.0: skipping garbage [ 98.004452][ T3221] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22 [ 98.144196][ T5895] usb 8-1: too many configurations: 9, using maximum allowed: 8 [ 98.147688][ T5895] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 98.150355][ T5895] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 98.153549][ T5895] usb 8-1: config 0 interface 0 has no altsetting 0 [ 98.156516][ T5895] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 98.159139][ T5895] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 98.163187][ T5895] usb 8-1: config 0 interface 0 has no altsetting 0 [ 98.165978][ T5895] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 98.168463][ T5895] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 98.171531][ T5895] usb 8-1: config 0 interface 0 has no altsetting 0 [ 98.174390][ T5895] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 98.176949][ T5895] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 98.180283][ T5895] usb 8-1: config 0 interface 0 has no altsetting 0 [ 98.185157][ T5895] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 98.187570][ T5895] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 98.190656][ T5895] usb 8-1: config 0 interface 0 has no altsetting 0 [ 98.193452][ T5895] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 98.196033][ T5895] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 98.199022][ T5895] usb 8-1: config 0 interface 0 has no altsetting 0 [ 98.202728][ T5895] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 98.205315][ T5895] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 98.208091][ T8] usb 5-1: USB disconnect, device number 13 [ 98.208324][ T5895] usb 8-1: config 0 interface 0 has no altsetting 0 [ 98.209397][ T5895] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 98.214539][ T5895] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 98.217716][ T5895] usb 8-1: config 0 interface 0 has no altsetting 0 [ 98.221481][ T5895] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 98.224277][ T5895] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 98.226688][ T5895] usb 8-1: Product: syz [ 98.227857][ T5895] usb 8-1: Manufacturer: syz [ 98.229157][ T5895] usb 8-1: SerialNumber: syz [ 98.232017][ T5895] usb 8-1: config 0 descriptor?? [ 98.236116][ T5895] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0 [ 98.488865][ C2] usb 8-1: yurex_control_callback - control failed: -71 [ 98.494143][ T5895] usb 8-1: USB disconnect, device number 8 [ 98.497593][ T5895] yurex 8-1:0.0: USB YUREX #0 now disconnected [ 98.651930][ T6007] usb 7-1: USB disconnect, device number 10 [ 98.663659][ T8] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 98.740617][ T7034] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 98.815687][ T8] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 98.818418][ T8] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 98.821379][ T8] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 98.823899][ T8] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 14129, setting to 64 [ 98.828102][ T8] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 98.830647][ T8] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 98.832933][ T8] usb 5-1: Product: syz [ 98.834182][ T8] usb 5-1: Manufacturer: syz [ 98.837569][ T8] cdc_wdm 5-1:1.0: skipping garbage [ 98.839052][ T8] cdc_wdm 5-1:1.0: skipping garbage [ 98.840527][ T8] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22 [ 99.038650][ T8] usb 5-1: USB disconnect, device number 14 [ 99.147172][ T7040] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 99.291938][ T7045] devtmpfs: Too few inodes for current use [ 100.774514][ T7070] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 101.724736][ T5986] usb 8-1: new high-speed USB device number 9 using dummy_hcd [ 101.892228][ T5986] usb 8-1: too many configurations: 9, using maximum allowed: 8 [ 101.895527][ T5986] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 101.898068][ T5986] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 101.901157][ T5986] usb 8-1: config 0 interface 0 has no altsetting 0 [ 101.912556][ T5986] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 101.919358][ T5986] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 101.923163][ T5986] usb 8-1: config 0 interface 0 has no altsetting 0 [ 101.934324][ T5986] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 101.937656][ T5986] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 101.944168][ T5986] usb 8-1: config 0 interface 0 has no altsetting 0 [ 101.955231][ T5986] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 101.959480][ T5986] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 101.963289][ T5986] usb 8-1: config 0 interface 0 has no altsetting 0 [ 101.971414][ T5986] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 102.565319][ T5986] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 102.569063][ T5986] usb 8-1: config 0 interface 0 has no altsetting 0 [ 102.572250][ T5986] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 102.575524][ T5986] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 102.579285][ T5986] usb 8-1: config 0 interface 0 has no altsetting 0 [ 102.582501][ T5986] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 102.585599][ T5986] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 102.589432][ T5986] usb 8-1: config 0 interface 0 has no altsetting 0 [ 102.592989][ T5986] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 102.596278][ T5986] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 102.600070][ T5986] usb 8-1: config 0 interface 0 has no altsetting 0 [ 102.603970][ T5986] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 102.607075][ T5986] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 102.611209][ T5986] usb 8-1: Product: syz [ 102.612856][ T5986] usb 8-1: Manufacturer: syz [ 102.614432][ T5986] usb 8-1: SerialNumber: syz [ 102.653298][ T5986] usb 8-1: config 0 descriptor?? [ 102.665029][ T5986] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0 [ 103.000933][ C2] usb 8-1: yurex_control_callback - control failed: -71 [ 103.020661][ T5989] usb 8-1: USB disconnect, device number 9 [ 103.042946][ T5989] yurex 8-1:0.0: USB YUREX #0 now disconnected [ 103.917285][ T7119] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 104.493751][ T6598] usb 6-1: new high-speed USB device number 13 using dummy_hcd [ 104.654209][ T6598] usb 6-1: too many configurations: 9, using maximum allowed: 8 [ 104.658829][ T6598] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 104.662189][ T6598] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 104.666461][ T6598] usb 6-1: config 0 interface 0 has no altsetting 0 [ 104.670732][ T6598] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 104.673281][ T6598] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 104.677689][ T6598] usb 6-1: config 0 interface 0 has no altsetting 0 [ 104.681124][ T6598] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 104.684591][ T6598] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 104.688124][ T6598] usb 6-1: config 0 interface 0 has no altsetting 0 [ 104.690952][ T6598] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 104.695836][ T6598] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 104.700134][ T6598] usb 6-1: config 0 interface 0 has no altsetting 0 [ 104.705028][ T6598] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 104.711910][ T6598] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 104.715261][ T6598] usb 6-1: config 0 interface 0 has no altsetting 0 [ 104.718128][ T6598] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 104.720738][ T6598] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 104.722574][ T7140] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 104.724128][ T6598] usb 6-1: config 0 interface 0 has no altsetting 0 [ 104.729636][ T6598] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 104.732248][ T6598] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 104.737343][ T6598] usb 6-1: config 0 interface 0 has no altsetting 0 [ 104.740113][ T6598] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 104.742587][ T6598] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 104.745946][ T6598] usb 6-1: config 0 interface 0 has no altsetting 0 [ 104.750229][ T6598] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 104.753213][ T6598] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 104.757708][ T6598] usb 6-1: Product: syz [ 104.759101][ T6598] usb 6-1: Manufacturer: syz [ 104.761009][ T6598] usb 6-1: SerialNumber: syz [ 104.765152][ T6598] usb 6-1: config 0 descriptor?? [ 104.771851][ T6598] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0 [ 105.022435][ C3] usb 6-1: yurex_control_callback - control failed: -71 [ 105.024800][ T6598] usb 6-1: USB disconnect, device number 13 [ 105.030290][ T6598] yurex 6-1:0.0: USB YUREX #0 now disconnected [ 105.431129][ T7159] netlink: 4 bytes leftover after parsing attributes in process `syz.3.338'. [ 105.462693][ T7159] bridge_slave_0 (unregistering): left allmulticast mode [ 105.464548][ T7159] bridge_slave_0 (unregistering): left promiscuous mode [ 105.466319][ T7159] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.204918][ T7174] 9pnet_fd: Insufficient options for proto=fd [ 106.524562][ T7186] sp0: Synchronizing with TNC [ 106.754065][ T7194] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 107.564858][ T35] usb 7-1: new high-speed USB device number 11 using dummy_hcd [ 107.714075][ T35] usb 7-1: too many configurations: 9, using maximum allowed: 8 [ 107.717206][ T35] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 107.720332][ T35] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 107.724720][ T35] usb 7-1: config 0 interface 0 has no altsetting 0 [ 107.727894][ T35] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 107.730617][ T35] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 107.734096][ T35] usb 7-1: config 0 interface 0 has no altsetting 0 [ 107.736768][ T35] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 107.739420][ T35] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 107.742665][ T35] usb 7-1: config 0 interface 0 has no altsetting 0 [ 107.746473][ T35] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 107.749984][ T35] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 107.754280][ T35] usb 7-1: config 0 interface 0 has no altsetting 0 [ 107.757508][ T35] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 107.760662][ T35] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 107.764881][ T35] usb 7-1: config 0 interface 0 has no altsetting 0 [ 107.767535][ T35] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 107.770221][ T35] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 107.773389][ T35] usb 7-1: config 0 interface 0 has no altsetting 0 [ 107.776356][ T35] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 107.779015][ T35] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 107.782242][ T35] usb 7-1: config 0 interface 0 has no altsetting 0 [ 107.785489][ T35] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 107.788161][ T35] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 107.791311][ T35] usb 7-1: config 0 interface 0 has no altsetting 0 [ 107.797307][ T35] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 107.800104][ T35] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 107.803175][ T35] usb 7-1: Product: syz [ 107.804669][ T35] usb 7-1: Manufacturer: syz [ 107.806334][ T35] usb 7-1: SerialNumber: syz [ 107.808466][ T35] usb 7-1: config 0 descriptor?? [ 107.811640][ T35] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0 [ 108.068427][ C3] usb 7-1: yurex_control_callback - control failed: -71 [ 108.068565][ T5986] usb 7-1: USB disconnect, device number 11 [ 108.074240][ T5986] yurex 7-1:0.0: USB YUREX #0 now disconnected [ 108.306038][ T7225] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 108.698109][ T7240] 9pnet_fd: Insufficient options for proto=fd [ 110.045970][ T7269] devtmpfs: Too few inodes for current use [ 110.205293][ T7242] sp0: Synchronizing with TNC [ 110.813782][ T8] usb 8-1: new high-speed USB device number 10 using dummy_hcd [ 110.985779][ T8] usb 8-1: too many configurations: 9, using maximum allowed: 8 [ 110.994088][ T8] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 110.996613][ T8] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 110.999657][ T8] usb 8-1: config 0 interface 0 has no altsetting 0 [ 111.003162][ T8] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 111.005742][ T8] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 111.008768][ T8] usb 8-1: config 0 interface 0 has no altsetting 0 [ 111.011489][ T8] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 111.014099][ T8] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 111.017131][ T8] usb 8-1: config 0 interface 0 has no altsetting 0 [ 111.020101][ T8] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 111.022631][ T8] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 111.025800][ T8] usb 8-1: config 0 interface 0 has no altsetting 0 [ 111.028605][ T8] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 111.031192][ T8] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 111.034354][ T8] usb 8-1: config 0 interface 0 has no altsetting 0 [ 111.037204][ T8] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 111.039840][ T8] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 111.042952][ T8] usb 8-1: config 0 interface 0 has no altsetting 0 [ 111.045782][ T8] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 111.048422][ T8] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 111.051552][ T8] usb 8-1: config 0 interface 0 has no altsetting 0 [ 111.054182][ T8] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 111.056747][ T8] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 111.059846][ T8] usb 8-1: config 0 interface 0 has no altsetting 0 [ 111.063255][ T8] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 111.065979][ T8] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 111.068410][ T8] usb 8-1: Product: syz [ 111.069710][ T8] usb 8-1: Manufacturer: syz [ 111.071084][ T8] usb 8-1: SerialNumber: syz [ 111.073734][ T8] usb 8-1: config 0 descriptor?? [ 111.077533][ T8] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0 [ 111.335140][ C0] usb 8-1: yurex_control_callback - control failed: -71 [ 111.335238][ T5986] usb 8-1: USB disconnect, device number 10 [ 111.340910][ T5986] yurex 8-1:0.0: USB YUREX #0 now disconnected [ 113.276620][ T7339] devtmpfs: Too few inodes for current use [ 113.343834][ T3221] usb 8-1: new high-speed USB device number 11 using dummy_hcd [ 114.147344][ T3221] usb 8-1: too many configurations: 9, using maximum allowed: 8 [ 114.150373][ T3221] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 114.152990][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 114.156151][ T3221] usb 8-1: config 0 interface 0 has no altsetting 0 [ 114.161300][ T3221] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 114.164000][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 114.167092][ T3221] usb 8-1: config 0 interface 0 has no altsetting 0 [ 114.169793][ T3221] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 114.172391][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 114.175583][ T3221] usb 8-1: config 0 interface 0 has no altsetting 0 [ 114.178447][ T3221] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 114.181078][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 114.185122][ T3221] usb 8-1: config 0 interface 0 has no altsetting 0 [ 114.188361][ T3221] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 114.190925][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 114.194136][ T3221] usb 8-1: config 0 interface 0 has no altsetting 0 [ 114.198496][ T3221] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 114.201060][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 114.204199][ T3221] usb 8-1: config 0 interface 0 has no altsetting 0 [ 114.209585][ T3221] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 114.212760][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 114.216263][ T3221] usb 8-1: config 0 interface 0 has no altsetting 0 [ 114.219115][ T3221] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 114.221649][ T3221] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 114.226948][ T3221] usb 8-1: config 0 interface 0 has no altsetting 0 [ 114.230593][ T3221] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 114.234311][ T3221] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 114.237466][ T3221] usb 8-1: Product: syz [ 114.238968][ T3221] usb 8-1: Manufacturer: syz [ 114.240333][ T3221] usb 8-1: SerialNumber: syz [ 114.244974][ T3221] usb 8-1: config 0 descriptor?? [ 114.250698][ T3221] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0 [ 114.500398][ C1] usb 8-1: yurex_control_callback - control failed: -71 [ 114.500475][ T6598] usb 8-1: USB disconnect, device number 11 [ 114.515844][ T6598] yurex 8-1:0.0: USB YUREX #0 now disconnected [ 114.826901][ T7373] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 114.983682][ T57] usb 7-1: new high-speed USB device number 12 using dummy_hcd [ 115.134847][ T57] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 115.138374][ T57] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 115.141658][ T57] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 115.145193][ T57] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 115.148874][ T57] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 115.151516][ T57] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 115.157841][ T57] usb 7-1: config 0 descriptor?? [ 115.159752][ T7372] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 115.636166][ T57] plantronics 0003:047F:FFFF.0006: unknown main item tag 0xd [ 115.639859][ T57] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving [ 115.654654][ T57] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 115.726654][ T7384] input: syz0 as /devices/virtual/input/input10 [ 115.839376][ T57] usb 7-1: USB disconnect, device number 12 [ 116.063658][ T3221] usb 6-1: new high-speed USB device number 14 using dummy_hcd [ 116.229347][ T3221] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 116.233668][ T3221] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 116.239529][ T3221] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 116.242699][ T3221] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 14129, setting to 64 [ 116.247594][ T3221] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 116.250976][ T3221] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 116.255608][ T3221] usb 6-1: Product: syz [ 116.257512][ T3221] usb 6-1: Manufacturer: syz [ 116.267218][ T3221] cdc_wdm 6-1:1.0: skipping garbage [ 116.270406][ T3221] cdc_wdm 6-1:1.0: skipping garbage [ 116.278860][ T3221] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22 [ 116.468377][ T5986] usb 6-1: USB disconnect, device number 14 [ 116.684316][ T57] usb 7-1: new high-speed USB device number 13 using dummy_hcd [ 117.104140][ T57] usb 7-1: too many configurations: 9, using maximum allowed: 8 [ 117.107223][ T57] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 117.109824][ T57] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 117.112905][ T57] usb 7-1: config 0 interface 0 has no altsetting 0 [ 117.115764][ T57] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 117.118293][ T57] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 117.121359][ T57] usb 7-1: config 0 interface 0 has no altsetting 0 [ 117.124384][ T57] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 117.127088][ T57] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 117.130482][ T57] usb 7-1: config 0 interface 0 has no altsetting 0 [ 117.133164][ T57] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 117.167857][ T57] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 117.170971][ T57] usb 7-1: config 0 interface 0 has no altsetting 0 [ 117.175345][ T57] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 117.177823][ T57] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 117.184119][ T57] usb 7-1: config 0 interface 0 has no altsetting 0 [ 117.188729][ T57] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 117.192347][ T57] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 117.196713][ T57] usb 7-1: config 0 interface 0 has no altsetting 0 [ 117.199387][ T57] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 117.202688][ T57] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 117.206541][ T57] usb 7-1: config 0 interface 0 has no altsetting 0 [ 117.209144][ T57] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 117.211727][ T57] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 117.214901][ T57] usb 7-1: config 0 interface 0 has no altsetting 0 [ 117.218501][ T57] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 117.221666][ T57] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 117.224864][ T57] usb 7-1: Product: syz [ 117.226423][ T57] usb 7-1: Manufacturer: syz [ 117.228152][ T57] usb 7-1: SerialNumber: syz [ 117.231038][ T57] usb 7-1: config 0 descriptor?? [ 117.235559][ T57] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0 [ 117.253735][ T5986] usb 6-1: new high-speed USB device number 15 using dummy_hcd [ 117.405389][ T5986] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 117.407976][ T5986] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 117.410943][ T5986] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 117.413541][ T5986] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 14129, setting to 64 [ 117.418281][ T5986] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 117.420935][ T5986] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 117.423252][ T5986] usb 6-1: Product: syz [ 117.424851][ T5986] usb 6-1: Manufacturer: syz [ 117.429860][ T5986] cdc_wdm 6-1:1.0: skipping garbage [ 117.431436][ T5986] cdc_wdm 6-1:1.0: skipping garbage [ 117.433015][ T5986] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22 [ 117.433742][ T6007] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 117.491503][ C2] usb 7-1: yurex_control_callback - control failed: -71 [ 117.492497][ T35] usb 7-1: USB disconnect, device number 13 [ 117.497471][ T35] yurex 7-1:0.0: USB YUREX #0 now disconnected [ 117.593738][ T6007] usb 5-1: Using ep0 maxpacket: 8 [ 117.598248][ T6007] usb 5-1: config index 0 descriptor too short (expected 301, got 45) [ 117.600845][ T6007] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 117.604846][ T6007] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 117.608279][ T6007] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 117.612220][ T6007] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 117.620672][ T6007] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 117.624834][ T6007] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 117.632781][ T5986] usb 6-1: USB disconnect, device number 15 [ 117.833239][ T6007] usb 5-1: usb_control_msg returned -32 [ 117.834922][ T6007] usbtmc 5-1:16.0: can't read capabilities [ 118.444611][ T7429] 9pnet_fd: Insufficient options for proto=fd [ 118.818578][ T7430] sp0: Synchronizing with TNC [ 120.219882][ T6493] usb 5-1: USB disconnect, device number 15 [ 120.235114][ T8] usb 8-1: new high-speed USB device number 12 using dummy_hcd [ 120.351880][ T5989] usb 7-1: new high-speed USB device number 14 using dummy_hcd [ 121.214119][ T8] usb 8-1: too many configurations: 9, using maximum allowed: 8 [ 121.217203][ T8] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 121.219777][ T8] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 121.222937][ T8] usb 8-1: config 0 interface 0 has no altsetting 0 [ 121.225904][ T8] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 121.228468][ T8] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 121.231619][ T8] usb 8-1: config 0 interface 0 has no altsetting 0 [ 121.234386][ T8] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 121.236943][ T8] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 121.239915][ T7469] input: syz0 as /devices/virtual/input/input11 [ 121.240081][ T8] usb 8-1: config 0 interface 0 has no altsetting 0 [ 121.244878][ T8] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 121.247649][ T8] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 121.250860][ T8] usb 8-1: config 0 interface 0 has no altsetting 0 [ 121.254013][ T8] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 121.256907][ T8] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 121.260014][ T8] usb 8-1: config 0 interface 0 has no altsetting 0 [ 121.263741][ T5989] usb 7-1: device descriptor read/64, error -71 [ 121.264181][ T8] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 121.268112][ T8] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 121.271240][ T8] usb 8-1: config 0 interface 0 has no altsetting 0 [ 121.274082][ T8] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 121.276619][ T8] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 121.288269][ T8] usb 8-1: config 0 interface 0 has no altsetting 0 [ 121.291980][ T8] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 121.294582][ T8] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 121.297717][ T8] usb 8-1: config 0 interface 0 has no altsetting 0 [ 121.301073][ T8] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 121.304385][ T8] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 121.307600][ T8] usb 8-1: Product: syz [ 121.309174][ T8] usb 8-1: Manufacturer: syz [ 121.310924][ T8] usb 8-1: SerialNumber: syz [ 121.314106][ T8] usb 8-1: config 0 descriptor?? [ 121.319053][ T8] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0 [ 121.513658][ T5989] usb 7-1: new high-speed USB device number 15 using dummy_hcd [ 121.572385][ C0] usb 8-1: yurex_control_callback - control failed: -71 [ 121.572588][ T57] usb 8-1: USB disconnect, device number 12 [ 121.579359][ T57] yurex 8-1:0.0: USB YUREX #0 now disconnected [ 121.643640][ T5989] usb 7-1: device descriptor read/64, error -71 [ 121.753782][ T5989] usb usb7-port1: attempt power cycle [ 122.093725][ T5989] usb 7-1: new high-speed USB device number 16 using dummy_hcd [ 122.124067][ T5989] usb 7-1: device descriptor read/8, error -71 [ 122.383658][ T5989] usb 7-1: new high-speed USB device number 17 using dummy_hcd [ 122.404140][ T5989] usb 7-1: device descriptor read/8, error -71 [ 122.514603][ T5989] usb usb7-port1: unable to enumerate USB device [ 122.543653][ T57] usb 8-1: new high-speed USB device number 13 using dummy_hcd [ 122.693696][ T57] usb 8-1: Using ep0 maxpacket: 8 [ 122.696374][ T57] usb 8-1: config index 0 descriptor too short (expected 301, got 45) [ 122.698740][ T57] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 122.701522][ T57] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 122.704377][ T57] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 122.707152][ T57] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 122.710818][ T57] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 122.713389][ T57] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 122.923254][ T57] usb 8-1: usb_control_msg returned -32 [ 122.925594][ T57] usbtmc 8-1:16.0: can't read capabilities [ 123.328897][ T57] IPVS: starting estimator thread 0... [ 123.413812][ T7507] IPVS: using max 38 ests per chain, 91200 per kthread [ 125.329878][ T3221] usb 8-1: USB disconnect, device number 13 [ 125.383678][ T6007] usb 6-1: new high-speed USB device number 16 using dummy_hcd [ 125.554155][ T6007] usb 6-1: too many configurations: 9, using maximum allowed: 8 [ 125.556896][ T6007] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 125.559169][ T6007] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 125.561927][ T6007] usb 6-1: config 0 interface 0 has no altsetting 0 [ 125.565026][ T6007] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 125.567328][ T6007] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 125.570123][ T6007] usb 6-1: config 0 interface 0 has no altsetting 0 [ 125.572515][ T6007] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 125.574905][ T6007] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 125.577652][ T6007] usb 6-1: config 0 interface 0 has no altsetting 0 [ 125.580030][ T6007] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 125.582306][ T6007] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 125.585167][ T6007] usb 6-1: config 0 interface 0 has no altsetting 0 [ 125.587541][ T6007] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 125.589944][ T6007] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 125.592721][ T6007] usb 6-1: config 0 interface 0 has no altsetting 0 [ 125.596425][ T6007] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 125.598699][ T6007] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 125.601571][ T6007] usb 6-1: config 0 interface 0 has no altsetting 0 [ 125.604078][ T6007] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 125.606372][ T6007] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 125.609132][ T6007] usb 6-1: config 0 interface 0 has no altsetting 0 [ 125.611516][ T6007] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 125.614180][ T6007] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 125.616915][ T6007] usb 6-1: config 0 interface 0 has no altsetting 0 [ 125.619961][ T6007] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 125.622305][ T6007] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 125.624649][ T6007] usb 6-1: Product: syz [ 125.625775][ T6007] usb 6-1: Manufacturer: syz [ 125.626972][ T6007] usb 6-1: SerialNumber: syz [ 125.629347][ T6007] usb 6-1: config 0 descriptor?? [ 125.633293][ T6007] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0 [ 125.753647][ T833] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 125.883783][ T833] usb 5-1: device descriptor read/64, error -71 [ 125.887834][ C3] usb 6-1: yurex_control_callback - control failed: -71 [ 125.890461][ T6007] usb 6-1: USB disconnect, device number 16 [ 125.893533][ T6007] yurex 6-1:0.0: USB YUREX #0 now disconnected [ 126.133830][ T833] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 126.225978][ T7538] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 126.228468][ T7538] IPv6: NLM_F_CREATE should be set when creating new route [ 126.230406][ T7538] IPv6: NLM_F_CREATE should be set when creating new route [ 126.273859][ T833] usb 5-1: device descriptor read/64, error -71 [ 126.383950][ T833] usb usb5-port1: attempt power cycle [ 126.472055][ T7550] netlink: 'syz.2.446': attribute type 1 has an invalid length. [ 126.474723][ T7550] netlink: 224 bytes leftover after parsing attributes in process `syz.2.446'. [ 126.529181][ T7555] vivid-000: disconnect [ 126.723697][ T833] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 126.744383][ T833] usb 5-1: device descriptor read/8, error -71 [ 126.819119][ T7548] vivid-000: reconnect [ 126.897019][ T7560] 9pnet_fd: Insufficient options for proto=fd [ 127.003670][ T833] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 127.024458][ T833] usb 5-1: device descriptor read/8, error -71 [ 127.142105][ T7566] sp0: Synchronizing with TNC [ 127.145236][ T833] usb usb5-port1: unable to enumerate USB device [ 127.384621][ T7572] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 127.609981][ T7557] syz.1.447: vmalloc error: size 2768896, failed to allocated page array size 5408, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 127.615389][ T7557] CPU: 1 UID: 0 PID: 7557 Comm: syz.1.447 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 127.615402][ T7557] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 127.615407][ T7557] Call Trace: [ 127.615410][ T7557] [ 127.615413][ T7557] dump_stack_lvl+0x16c/0x1f0 [ 127.615430][ T7557] warn_alloc+0x24d/0x3a0 [ 127.615442][ T7557] ? __pfx_warn_alloc+0x10/0x10 [ 127.615456][ T7557] ? __get_vm_area_node+0x1b0/0x2f0 [ 127.615470][ T7557] ? __get_vm_area_node+0x1dc/0x2f0 [ 127.615485][ T7557] __vmalloc_node_range_noprof+0x1102/0x1530 [ 127.615498][ T7557] ? vb2_vmalloc_alloc+0x11e/0x3d0 [ 127.615513][ T7557] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 127.615525][ T7557] ? vb2_vmalloc_alloc+0x11e/0x3d0 [ 127.615537][ T7557] ? __pfx_vb2_vmalloc_alloc+0x10/0x10 [ 127.615547][ T7557] vmalloc_user_noprof+0x6b/0x90 [ 127.615555][ T7557] ? vb2_vmalloc_alloc+0x11e/0x3d0 [ 127.615566][ T7557] vb2_vmalloc_alloc+0x11e/0x3d0 [ 127.615583][ T7557] ? __pfx_vb2_vmalloc_alloc+0x10/0x10 [ 127.615593][ T7557] __vb2_queue_alloc+0x896/0x1230 [ 127.615609][ T7557] vb2_core_reqbufs+0xa73/0xfb0 [ 127.615622][ T7557] ? __pfx_vb2_core_reqbufs+0x10/0x10 [ 127.615632][ T7557] ? __pfx___mutex_trylock_common+0x10/0x10 [ 127.615649][ T7557] ? __video_do_ioctl+0x4a2/0xf00 [ 127.615660][ T7557] ? trace_contention_end+0xee/0x140 [ 127.615671][ T7557] ? __mutex_lock+0x1cc/0xb10 [ 127.615684][ T7557] vb2_reqbufs+0x1a5/0x1f0 [ 127.615694][ T7557] ? __pfx_vb2_reqbufs+0x10/0x10 [ 127.615704][ T7557] ? find_held_lock+0x2d/0x110 [ 127.615715][ T7557] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 127.615728][ T7557] v4l2_m2m_ioctl_reqbufs+0xdc/0x1e0 [ 127.615740][ T7557] v4l_reqbufs+0x193/0x1d0 [ 127.615753][ T7557] __video_do_ioctl+0xaf0/0xf00 [ 127.615763][ T7557] ? __pfx___video_do_ioctl+0x10/0x10 [ 127.615771][ T7557] ? __might_fault+0xe3/0x190 [ 127.615786][ T7557] video_usercopy+0x427/0x1520 [ 127.615796][ T7557] ? __pfx___video_do_ioctl+0x10/0x10 [ 127.615806][ T7557] ? __pfx_video_usercopy+0x10/0x10 [ 127.615822][ T7557] v4l2_ioctl+0x1ba/0x250 [ 127.615829][ T7557] ? __fget_files+0x1a1/0x3a0 [ 127.615840][ T7557] v4l2_compat_ioctl32+0x214/0x2c0 [ 127.615853][ T7557] ? __pfx_v4l2_compat_ioctl32+0x10/0x10 [ 127.615865][ T7557] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 127.615879][ T7557] __do_fast_syscall_32+0x73/0x120 [ 127.615892][ T7557] do_fast_syscall_32+0x32/0x80 [ 127.615904][ T7557] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 127.615918][ T7557] RIP: 0023:0xf7faf579 [ 127.615925][ T7557] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 127.615933][ T7557] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 127.615942][ T7557] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000c0145608 [ 127.615947][ T7557] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 0000000000000000 [ 127.615952][ T7557] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 127.615957][ T7557] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 127.615962][ T7557] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 127.615973][ T7557] [ 127.615976][ T7557] Mem-Info: [ 127.712014][ T7557] active_anon:8045 inactive_anon:0 isolated_anon:0 [ 127.712014][ T7557] active_file:951 inactive_file:28301 isolated_file:0 [ 127.712014][ T7557] unevictable:21184 dirty:31 writeback:0 [ 127.712014][ T7557] slab_reclaimable:10069 slab_unreclaimable:54437 [ 127.712014][ T7557] mapped:38084 shmem:5325 pagetables:834 [ 127.712014][ T7557] sec_pagetables:303 bounce:0 [ 127.712014][ T7557] kernel_misc_reclaimable:0 [ 127.712014][ T7557] free:24086 free_pcp:937 free_cma:0 [ 127.729904][ T7557] Node 0 active_anon:2344kB inactive_anon:0kB active_file:756kB inactive_file:10544kB unevictable:5812kB isolated(anon):0kB isolated(file):0kB mapped:6808kB dirty:0kB writeback:0kB shmem:3908kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9260kB pagetables:760kB sec_pagetables:1120kB all_unreclaimable? no [ 127.739343][ T7557] Node 1 active_anon:29840kB inactive_anon:48kB active_file:3048kB inactive_file:98164kB unevictable:82324kB isolated(anon):0kB isolated(file):0kB mapped:145524kB dirty:196kB writeback:0kB shmem:17396kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:3136kB pagetables:2596kB sec_pagetables:92kB all_unreclaimable? no [ 127.750379][ T7557] Node 0 DMA free:2700kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 127.758322][ T7557] lowmem_reserve[]: 0 297 0 0 0 [ 127.793675][ T7557] Node 0 DMA32 free:27300kB boost:0kB min:13672kB low:17088kB high:20504kB reserved_highatomic:2048KB active_anon:208kB inactive_anon:2136kB active_file:5928kB inactive_file:1824kB unevictable:5736kB writepending:0kB present:1032196kB managed:305108kB mlocked:2204kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 127.802020][ T7557] lowmem_reserve[]: 0 0 0 0 0 [ 127.803409][ T7557] Node 1 DMA32 free:74744kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:29760kB inactive_anon:48kB active_file:3048kB inactive_file:98164kB unevictable:82524kB writepending:196kB present:1048432kB managed:948252kB mlocked:79008kB bounce:0kB free_pcp:2012kB local_pcp:996kB free_cma:0kB [ 127.817629][ T7557] lowmem_reserve[]: 0 0 0 0 0 [ 127.819221][ T7557] Node 0 DMA: 105*4kB (U) 57*8kB (U) 24*16kB (U) 17*32kB (U) 4*64kB (U) 1*128kB (U) 0*256kB 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 2700kB [ 127.823552][ T7557] Node 0 DMA32: 106*4kB (UMEH) 80*8kB (MEH) 48*16kB (UMEH) 144*32kB (UMH) 104*64kB (UM) 31*128kB (UM) 11*256kB (UM) 6*512kB (UME) 4*1024kB (UME) 0*2048kB 0*4096kB = 27048kB [ 127.828730][ T7557] Node 1 DMA32: 67*4kB (UME) 43*8kB (UME) 26*16kB (UME) 197*32kB (UME) 20*64kB (UME) 7*128kB (UME) 60*256kB (UM) 30*512kB (UM) 21*1024kB (UM) 4*2048kB (UM) 2*4096kB (M) = 78116kB [ 127.835010][ T7557] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 127.839117][ T7557] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 127.843684][ T7557] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 127.869729][ T7557] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 127.933903][ T7557] 43541 total pagecache pages [ 127.935641][ T7557] 0 pages in swap cache [ 127.937224][ T7557] Free swap = 124576kB [ 127.938812][ T7557] Total swap = 124996kB [ 127.940707][ T7557] 524155 pages RAM [ 127.942187][ T7557] 0 pages HighMem/MovableOnly [ 127.953730][ T7557] 206975 pages reserved [ 127.963726][ T7557] 0 pages cma reserved [ 128.553840][ T6598] usb 6-1: new high-speed USB device number 17 using dummy_hcd [ 128.724178][ T6598] usb 6-1: too many configurations: 9, using maximum allowed: 8 [ 128.729109][ T6598] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 128.731795][ T6598] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 128.736330][ T6598] usb 6-1: config 0 interface 0 has no altsetting 0 [ 128.739282][ T6598] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 128.792771][ T6598] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 128.796506][ T6598] usb 6-1: config 0 interface 0 has no altsetting 0 [ 128.813535][ T6598] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 128.824441][ T6598] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 128.838790][ T6598] usb 6-1: config 0 interface 0 has no altsetting 0 [ 128.853506][ T6598] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 128.856307][ T6598] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 128.861256][ T6598] usb 6-1: config 0 interface 0 has no altsetting 0 [ 128.871312][ T6598] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 128.883982][ T6598] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 128.887156][ T6598] usb 6-1: config 0 interface 0 has no altsetting 0 [ 128.901851][ T6598] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 128.905409][ T6598] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 128.909708][ T6598] usb 6-1: config 0 interface 0 has no altsetting 0 [ 128.914165][ T6598] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 128.918578][ T6598] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 128.934141][ T6598] usb 6-1: config 0 interface 0 has no altsetting 0 [ 128.937832][ T6598] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 128.940840][ T6598] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 128.944679][ T6598] usb 6-1: config 0 interface 0 has no altsetting 0 [ 128.948630][ T6598] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 128.951368][ T6598] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 128.955175][ T6598] usb 6-1: Product: syz [ 128.956988][ T6598] usb 6-1: Manufacturer: syz [ 128.958978][ T6598] usb 6-1: SerialNumber: syz [ 129.019897][ T6598] usb 6-1: config 0 descriptor?? [ 129.032839][ T6598] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0 [ 129.287098][ C3] usb 6-1: yurex_control_callback - control failed: -71 [ 129.289505][ T6598] usb 6-1: USB disconnect, device number 17 [ 129.310513][ T6598] yurex 6-1:0.0: USB YUREX #0 now disconnected [ 129.509745][ T7607] 9pnet_fd: Insufficient options for proto=fd [ 129.638430][ T7612] sp0: Synchronizing with TNC [ 129.807529][ T7605] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR [ 129.914285][ T7615] input: syz0 as /devices/virtual/input/input12 [ 129.987961][ T7617] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 130.333722][ T8] usb 5-1: new high-speed USB device number 20 using dummy_hcd [ 130.473866][ T8] usb 5-1: device descriptor read/64, error -71 [ 130.713801][ T8] usb 5-1: new high-speed USB device number 21 using dummy_hcd [ 130.853748][ T8] usb 5-1: device descriptor read/64, error -71 [ 130.973755][ T8] usb usb5-port1: attempt power cycle [ 131.323775][ T8] usb 5-1: new high-speed USB device number 22 using dummy_hcd [ 131.344067][ T8] usb 5-1: device descriptor read/8, error -71 [ 131.419463][ T7640] netfs: Couldn't get user pages (rc=-14) [ 131.421130][ T7640] netfs: Zero-sized read [R=1e6] [ 131.423123][ T7640] netfs: Couldn't get user pages (rc=-14) [ 131.593757][ T8] usb 5-1: new high-speed USB device number 23 using dummy_hcd [ 131.661062][ T7651] devtmpfs: Too few inodes for current use [ 131.683786][ T8] usb 5-1: device descriptor read/8, error -71 [ 131.804091][ T8] usb usb5-port1: unable to enumerate USB device [ 132.225850][ T1414] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.316205][ T7658] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 132.480494][ T7662] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 132.976494][ T7671] binder: 7669:7671 ioctl c0306201 20000280 returned -14 [ 133.758631][ T7682] input: syz0 as /devices/virtual/input/input13 [ 134.203778][ T35] usb 7-1: new high-speed USB device number 18 using dummy_hcd [ 134.354893][ T35] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 134.359156][ T35] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 134.362342][ T35] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 134.383695][ T35] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 134.388149][ T35] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 134.390757][ T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 134.396062][ T35] usb 7-1: config 0 descriptor?? [ 134.398548][ T7689] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 134.810243][ T35] plantronics 0003:047F:FFFF.0007: unknown main item tag 0xd [ 134.813192][ T35] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving [ 134.818868][ T35] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 135.033140][ T35] usb 7-1: USB disconnect, device number 18 [ 135.116446][ T40] audit: type=1400 audit(1738178085.096:11): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=7706 comm="syz.3.486" [ 135.590222][ T7712] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 135.592396][ T7712] overlayfs: failed to set xattr on upper [ 135.595345][ T7712] overlayfs: ...falling back to redirect_dir=nofollow. [ 135.598219][ T7712] overlayfs: ...falling back to index=off. [ 135.600055][ T7712] overlayfs: ...falling back to uuid=null. [ 135.737605][ T7714] 9pnet_fd: Insufficient options for proto=fd [ 136.009809][ T7717] input: syz0 as /devices/virtual/input/input15 [ 136.532148][ T7725] sp0: Synchronizing with TNC [ 139.138531][ T7752] netfs: Couldn't get user pages (rc=-14) [ 139.140216][ T7752] netfs: Zero-sized read [R=1f5] [ 139.142254][ T7752] netfs: Couldn't get user pages (rc=-14) [ 139.349873][ T7760] netlink: 32 bytes leftover after parsing attributes in process `syz.3.500'. [ 139.363512][ T7760] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 140.133294][ T7770] rdma_rxe: rxe_newlink: failed to add bond0 [ 140.386039][ T6598] usb 5-1: new high-speed USB device number 24 using dummy_hcd [ 140.389018][ T35] usb 8-1: new high-speed USB device number 14 using dummy_hcd [ 140.535890][ T6598] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 140.539381][ T6598] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 140.539843][ T7777] netfs: Couldn't get user pages (rc=-14) [ 140.542787][ T6598] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 140.544489][ T7777] netfs: Zero-sized read [R=204] [ 140.549265][ T6598] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 140.553763][ T35] usb 8-1: too many configurations: 9, using maximum allowed: 8 [ 140.556165][ T6598] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 140.558841][ T6598] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 140.562809][ T35] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 140.565537][ T35] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 140.568732][ T35] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 140.572156][ T35] usb 8-1: config 0 interface 0 has no altsetting 0 [ 140.574488][ T6598] usb 5-1: config 0 descriptor?? [ 140.578102][ T7773] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 140.578164][ T35] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 140.584341][ T35] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 140.588761][ T35] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 140.592224][ T35] usb 8-1: config 0 interface 0 has no altsetting 0 [ 140.595642][ T35] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 140.598295][ T35] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 140.601583][ T35] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 140.604858][ T35] usb 8-1: config 0 interface 0 has no altsetting 0 [ 140.608109][ T35] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 140.610952][ T35] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 140.614261][ T35] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 140.617625][ T35] usb 8-1: config 0 interface 0 has no altsetting 0 [ 140.620946][ T35] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 140.623803][ T35] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 140.627014][ T35] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 140.630226][ T35] usb 8-1: config 0 interface 0 has no altsetting 0 [ 140.633443][ T35] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 140.636218][ T35] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 140.639395][ T35] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 140.642595][ T35] usb 8-1: config 0 interface 0 has no altsetting 0 [ 140.646239][ T35] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 140.648847][ T35] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 140.652281][ T35] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 140.655442][ T35] usb 8-1: config 0 interface 0 has no altsetting 0 [ 140.662859][ T35] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 140.665595][ T35] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 140.668914][ T35] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 140.672158][ T35] usb 8-1: config 0 interface 0 has no altsetting 0 [ 140.678904][ T35] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 140.681695][ T35] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 140.684336][ T35] usb 8-1: Product: syz [ 140.685645][ T35] usb 8-1: Manufacturer: syz [ 140.687017][ T35] usb 8-1: SerialNumber: syz [ 140.691715][ T35] usb 8-1: config 0 descriptor?? [ 140.695025][ T7770] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 140.699850][ T35] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0 [ 140.913713][ T3221] usb 6-1: new high-speed USB device number 18 using dummy_hcd [ 140.953609][ C0] usb 8-1: yurex_control_callback - control failed: -71 [ 140.954446][ T57] usb 8-1: USB disconnect, device number 14 [ 140.958908][ T57] yurex 8-1:0.0: USB YUREX #0 now disconnected [ 140.991010][ T6598] plantronics 0003:047F:FFFF.0008: unknown main item tag 0xd [ 140.994327][ T6598] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving [ 140.997840][ T6598] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 141.073709][ T3221] usb 6-1: Using ep0 maxpacket: 8 [ 141.077099][ T3221] usb 6-1: config index 0 descriptor too short (expected 301, got 45) [ 141.079450][ T3221] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 141.082246][ T3221] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 141.085246][ T3221] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 141.088040][ T3221] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 141.091857][ T3221] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 141.094511][ T3221] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 141.192848][ T5989] usb 5-1: USB disconnect, device number 24 [ 141.301260][ T3221] usb 6-1: usb_control_msg returned -32 [ 141.303048][ T3221] usbtmc 6-1:16.0: can't read capabilities [ 141.671269][ T7783] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 141.798209][ T7789] devtmpfs: Too few inodes for current use [ 142.697031][ T7801] netfs: Couldn't get user pages (rc=-14) [ 142.698797][ T7801] netfs: Zero-sized read [R=212] [ 142.700882][ T7801] netfs: Couldn't get user pages (rc=-14) [ 142.767158][ T7805] netlink: 'syz.2.510': attribute type 10 has an invalid length. [ 142.874617][ T7808] 9pnet_fd: Insufficient options for proto=fd [ 143.079368][ T7810] sp0: Synchronizing with TNC [ 143.348703][ T7796] delete_channel: no stack [ 143.693453][ T6493] usb 6-1: USB disconnect, device number 18 [ 143.872292][ T7816] rdma_rxe: rxe_newlink: failed to add bond0 [ 144.003355][ T7820] netfs: Couldn't get user pages (rc=-14) [ 144.005274][ T7820] netfs: Zero-sized read [R=221] [ 144.009477][ T7820] netfs: Couldn't get user pages (rc=-14) [ 144.223748][ T6493] usb 6-1: new high-speed USB device number 19 using dummy_hcd [ 144.376031][ T6493] usb 6-1: too many configurations: 9, using maximum allowed: 8 [ 144.379628][ T6493] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 144.382266][ T6493] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 144.391988][ T6493] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 144.397791][ T6493] usb 6-1: config 0 interface 0 has no altsetting 0 [ 144.401102][ T6493] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 144.403819][ T6493] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 144.407115][ T6493] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 144.410312][ T6493] usb 6-1: config 0 interface 0 has no altsetting 0 [ 144.413974][ T6493] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 144.416549][ T6493] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 144.419766][ T6493] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 144.423304][ T6493] usb 6-1: config 0 interface 0 has no altsetting 0 [ 144.434691][ T6493] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 144.439618][ T6493] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 144.442844][ T6493] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 144.454842][ T6493] usb 6-1: config 0 interface 0 has no altsetting 0 [ 144.460708][ T6493] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 144.463311][ T6493] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 144.468430][ T6493] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 144.471847][ T6493] usb 6-1: config 0 interface 0 has no altsetting 0 [ 144.474991][ T6493] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 144.477606][ T6493] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 144.480866][ T6493] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 144.486155][ T6493] usb 6-1: config 0 interface 0 has no altsetting 0 [ 144.488866][ T6493] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 144.491501][ T6493] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 144.504753][ T6493] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 144.507954][ T6493] usb 6-1: config 0 interface 0 has no altsetting 0 [ 144.515511][ T6493] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 144.518029][ T6493] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 144.521235][ T6493] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 144.534539][ T6493] usb 6-1: config 0 interface 0 has no altsetting 0 [ 144.539644][ T6493] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 144.542331][ T6493] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 144.546070][ T6493] usb 6-1: Product: syz [ 144.547401][ T6493] usb 6-1: Manufacturer: syz [ 144.548748][ T6493] usb 6-1: SerialNumber: syz [ 144.553923][ T6493] usb 6-1: config 0 descriptor?? [ 144.555944][ T7816] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 144.559841][ T6493] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0 [ 144.811448][ C0] usb 6-1: yurex_control_callback - control failed: -71 [ 144.811582][ T57] usb 6-1: USB disconnect, device number 19 [ 144.818424][ T57] yurex 6-1:0.0: USB YUREX #0 now disconnected [ 145.579393][ T7841] netfs: Couldn't get user pages (rc=-14) [ 145.581168][ T7841] netfs: Zero-sized read [R=230] [ 145.585680][ T7841] netfs: Couldn't get user pages (rc=-14) [ 145.745022][ T7849] netfs: Couldn't get user pages (rc=-14) [ 145.747316][ T7849] netfs: Zero-sized read [R=23f] [ 145.750193][ T7849] netfs: Couldn't get user pages (rc=-14) [ 147.719584][ T7878] FAULT_INJECTION: forcing a failure. [ 147.719584][ T7878] name failslab, interval 1, probability 0, space 0, times 0 [ 147.723242][ T7878] CPU: 1 UID: 0 PID: 7878 Comm: syz.2.532 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 147.723254][ T7878] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 147.723259][ T7878] Call Trace: [ 147.723262][ T7878] [ 147.723265][ T7878] dump_stack_lvl+0x16c/0x1f0 [ 147.723280][ T7878] should_fail_ex+0x50a/0x650 [ 147.723291][ T7878] ? fs_reclaim_acquire+0xae/0x150 [ 147.723305][ T7878] should_failslab+0xc2/0x120 [ 147.723316][ T7878] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 147.723326][ T7878] ? __alloc_skb+0x2b3/0x380 [ 147.723340][ T7878] __alloc_skb+0x2b3/0x380 [ 147.723351][ T7878] ? __pfx___alloc_skb+0x10/0x10 [ 147.723363][ T7878] ? lock_acquire+0x2f/0xb0 [ 147.723376][ T7878] netlink_alloc_large_skb+0x69/0x130 [ 147.723388][ T7878] netlink_sendmsg+0x689/0xd70 [ 147.723400][ T7878] ? __pfx_netlink_sendmsg+0x10/0x10 [ 147.723414][ T7878] ____sys_sendmsg+0x9ae/0xb40 [ 147.723424][ T7878] ? __pfx_____sys_sendmsg+0x10/0x10 [ 147.723433][ T7878] ? get_compat_msghdr+0x11b/0x170 [ 147.723447][ T7878] ___sys_sendmsg+0x135/0x1e0 [ 147.723460][ T7878] ? __pfx____sys_sendmsg+0x10/0x10 [ 147.723476][ T7878] ? __pfx_lock_release+0x10/0x10 [ 147.723485][ T7878] ? trace_lock_acquire+0x14e/0x1f0 [ 147.723496][ T7878] ? __fget_files+0x206/0x3a0 [ 147.723508][ T7878] __sys_sendmsg+0x16e/0x220 [ 147.723520][ T7878] ? __pfx___sys_sendmsg+0x10/0x10 [ 147.723539][ T7878] __do_fast_syscall_32+0x73/0x120 [ 147.723552][ T7878] do_fast_syscall_32+0x32/0x80 [ 147.723563][ T7878] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 147.723590][ T7878] RIP: 0023:0xf7fd1579 [ 147.723597][ T7878] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 147.723606][ T7878] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 147.723614][ T7878] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000200003c0 [ 147.723619][ T7878] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 147.723624][ T7878] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 147.723628][ T7878] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 147.723644][ T7878] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 147.723654][ T7878] [ 148.118061][ T7892] netlink: 'syz.0.535': attribute type 10 has an invalid length. [ 148.708492][ T7889] delete_channel: no stack [ 148.838267][ T7901] netfs: Couldn't get user pages (rc=-14) [ 148.839977][ T7901] netfs: Zero-sized read [R=24e] [ 148.996935][ T7906] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 149.702040][ T7926] input: syz0 as /devices/virtual/input/input20 [ 149.766664][ T7924] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 149.851712][ T7934] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 150.860315][ T7951] netdevsim netdevsim2: Direct firmware load for . [ 150.860315][ T7951] failed with error -2 [ 150.865919][ T7951] netdevsim netdevsim2: Falling back to sysfs fallback for: . [ 150.865919][ T7951] [ 151.148092][ T7957] input: syz0 as /devices/virtual/input/input21 [ 152.093217][ T7972] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 152.552043][ T7973] cgroup: fork rejected by pids controller in /syz2 [ 152.622550][ T8011] netlink: 'syz.1.560': attribute type 2 has an invalid length. [ 152.625497][ T8011] netlink: 'syz.1.560': attribute type 1 has an invalid length. [ 152.627876][ T8011] netlink: 'syz.1.560': attribute type 1 has an invalid length. [ 152.636255][ T8011] loop7: detected capacity change from 0 to 16384 [ 152.853880][ T8015] loop7: detected capacity change from 16384 to 16383 [ 153.024447][ T8021] netfs: Couldn't get user pages (rc=-14) [ 153.026379][ T8021] netfs: Zero-sized read [R=25c] [ 154.271019][ T8045] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 154.587843][ T8054] netfs: Couldn't get user pages (rc=-14) [ 154.589551][ T8054] netfs: Zero-sized read [R=26a] [ 155.704349][ T8089] netlink: 16 bytes leftover after parsing attributes in process `syz.3.582'. [ 155.717567][ T8091] netfs: Couldn't get user pages (rc=-14) [ 155.719245][ T8091] netfs: Zero-sized read [R=278] [ 155.768804][ T8094] 9p: Unknown Cache mode or invalid value fsca [ 156.278933][ T8129] netlink: 'syz.1.588': attribute type 10 has an invalid length. [ 156.864516][ T8136] netlink: 16 bytes leftover after parsing attributes in process `syz.3.590'. [ 156.867082][ T8136] netlink: 24 bytes leftover after parsing attributes in process `syz.3.590'. [ 156.869809][ T8136] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on [ 156.878933][ T8111] delete_channel: no stack [ 156.888228][ T8136] bond1: entered allmulticast mode [ 156.889979][ T8136] 8021q: adding VLAN 0 to HW filter on device bond1 [ 157.018338][ T8142] netfs: Couldn't get user pages (rc=-14) [ 157.019989][ T8145] 9pnet_virtio: no channels available for device syz [ 157.020221][ T8142] netfs: Zero-sized read [R=286] [ 157.088396][ T8151] input: syz0 as /devices/virtual/input/input22 [ 157.173130][ T8155] input: syz0 as /devices/virtual/input/input24 [ 157.186092][ T5986] kernel write not supported for file bpf-map (pid: 5986 comm: kworker/2:4) [ 157.264470][ T6007] usb 8-1: new high-speed USB device number 15 using dummy_hcd [ 157.305838][ T8164] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 157.314327][ T8166] FAULT_INJECTION: forcing a failure. [ 157.314327][ T8166] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 157.318151][ T8166] CPU: 1 UID: 0 PID: 8166 Comm: syz.0.603 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 157.318163][ T8166] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 157.318168][ T8166] Call Trace: [ 157.318172][ T8166] [ 157.318176][ T8166] dump_stack_lvl+0x16c/0x1f0 [ 157.318192][ T8166] should_fail_ex+0x50a/0x650 [ 157.318205][ T8166] _copy_from_user+0x2e/0xd0 [ 157.318217][ T8166] vhost_vsock_dev_ioctl+0x224/0xb50 [ 157.318227][ T8166] ? trace_lock_acquire+0x14e/0x1f0 [ 157.318237][ T8166] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 157.318255][ T8166] ? __fget_files+0x206/0x3a0 [ 157.318265][ T8166] ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10 [ 157.318275][ T8166] compat_ptr_ioctl+0x6b/0xa0 [ 157.318287][ T8166] ? __pfx_compat_ptr_ioctl+0x10/0x10 [ 157.318298][ T8166] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 157.318310][ T8166] __do_fast_syscall_32+0x73/0x120 [ 157.318326][ T8166] do_fast_syscall_32+0x32/0x80 [ 157.318337][ T8166] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 157.318351][ T8166] RIP: 0023:0xf740e579 [ 157.318358][ T8166] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 157.318367][ T8166] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 157.318376][ T8166] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000004004af61 [ 157.318381][ T8166] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 157.318386][ T8166] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 157.318390][ T8166] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 157.318395][ T8166] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 157.318404][ T8166] [ 157.387398][ C1] vkms_vblank_simulate: vblank timer overrun [ 157.424846][ T6007] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 157.427464][ T6007] usb 8-1: config 1 has an invalid descriptor of length 247, skipping remainder of the config [ 157.430454][ T6007] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 157.433062][ T6007] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 157.434310][ T8174] 9p: Unknown Cache mode or invalid value fsca [ 157.438639][ T6007] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 157.441825][ T6007] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 157.444198][ T6007] usb 8-1: Product: syz [ 157.445420][ T6007] usb 8-1: Manufacturer: syz [ 157.449215][ T6007] cdc_wdm 8-1:1.0: probe with driver cdc_wdm failed with error -22 [ 157.531348][ T8176] netfs: Couldn't get user pages (rc=-14) [ 157.533018][ T8176] netfs: Zero-sized read [R=294] [ 157.647069][ T8180] input: syz0 as /devices/virtual/input/input25 [ 157.657752][ T5986] usb 8-1: USB disconnect, device number 15 [ 157.932553][ T8185] loop9: detected capacity change from 0 to 6 [ 157.937809][ T8185] Dev loop9: unable to read RDB block 6 [ 157.940021][ T8185] loop9: unable to read partition table [ 157.941745][ T8185] loop9: partition table beyond EOD, truncated [ 157.943524][ T8185] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨â·û [ 157.943524][ T8185] ) failed (rc=-5) [ 158.103718][ T5986] usb 8-1: new high-speed USB device number 16 using dummy_hcd [ 158.274986][ T5986] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 158.277553][ T5986] usb 8-1: config 1 has an invalid descriptor of length 247, skipping remainder of the config [ 158.280549][ T5986] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 158.283145][ T5986] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 158.289097][ T5986] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 158.291791][ T5986] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 158.294470][ T5986] usb 8-1: Product: syz [ 158.295679][ T5986] usb 8-1: Manufacturer: syz [ 158.301701][ T5986] cdc_wdm 8-1:1.0: probe with driver cdc_wdm failed with error -22 [ 158.731950][ T6007] usb 8-1: USB disconnect, device number 16 [ 159.804906][ T8230] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 160.158959][ T8234] netlink: 8 bytes leftover after parsing attributes in process `syz.0.622'. [ 160.168193][ T8234] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 160.170755][ T8234] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 160.173102][ T8234] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 160.175479][ T8234] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 160.178485][ T8234] vxlan0: entered promiscuous mode [ 160.180527][ T8234] vxlan0: entered allmulticast mode [ 160.383787][ T65] Bluetooth: hci3: command 0x040f tx timeout [ 160.867755][ T8253] netlink: 'syz.2.627': attribute type 10 has an invalid length. [ 161.148461][ T8226] Set syz1 is full, maxelem 65536 reached [ 161.297141][ T8262] 9pnet_fd: Insufficient options for proto=fd [ 161.623951][ T8249] delete_channel: no stack [ 161.673771][ T8270] sp0: Synchronizing with TNC [ 162.385993][ T8281] FAULT_INJECTION: forcing a failure. [ 162.385993][ T8281] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 162.389827][ T8281] CPU: 3 UID: 0 PID: 8281 Comm: syz.1.634 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 162.389840][ T8281] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 162.389846][ T8281] Call Trace: [ 162.389848][ T8281] [ 162.389852][ T8281] dump_stack_lvl+0x16c/0x1f0 [ 162.389869][ T8281] should_fail_ex+0x50a/0x650 [ 162.389882][ T8281] _copy_to_user+0x32/0xd0 [ 162.389894][ T8281] simple_read_from_buffer+0xd0/0x160 [ 162.389909][ T8281] proc_fail_nth_read+0x198/0x270 [ 162.389922][ T8281] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 162.389934][ T8281] ? rw_verify_area+0xcf/0x680 [ 162.389947][ T8281] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 162.389958][ T8281] vfs_read+0x1df/0xbf0 [ 162.389966][ T8281] ? __fget_files+0x1fc/0x3a0 [ 162.389975][ T8281] ? __pfx___mutex_lock+0x10/0x10 [ 162.389986][ T8281] ? __pfx_vfs_read+0x10/0x10 [ 162.389997][ T8281] ? __fget_files+0x206/0x3a0 [ 162.390009][ T8281] ksys_read+0x12b/0x250 [ 162.390016][ T8281] ? __pfx_ksys_read+0x10/0x10 [ 162.390028][ T8281] __do_fast_syscall_32+0x73/0x120 [ 162.390040][ T8281] do_fast_syscall_32+0x32/0x80 [ 162.390056][ T8281] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 162.390070][ T8281] RIP: 0023:0xf7faf579 [ 162.390077][ T8281] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 162.390085][ T8281] RSP: 002b:00000000f50d6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 162.390094][ T8281] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000f50d6620 [ 162.390100][ T8281] RDX: 000000000000000f RSI: 00000000f743cff4 RDI: 0000000000000000 [ 162.390104][ T8281] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 162.390109][ T8281] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 162.390114][ T8281] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 162.390124][ T8281] [ 162.568520][ T8293] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 162.857653][ T8301] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 162.966707][ T8304] netfs: Couldn't get user pages (rc=-14) [ 162.969610][ T8304] netfs: Zero-sized read [R=2a2] [ 162.972267][ T8304] netfs: Couldn't get user pages (rc=-14) [ 163.510688][ T8318] netlink: 4 bytes leftover after parsing attributes in process `syz.1.644'. [ 163.516101][ T8318] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 164.347867][ T8332] netfs: Couldn't get user pages (rc=-14) [ 164.349644][ T8332] netfs: Zero-sized read [R=2b1] [ 164.351684][ T8332] netfs: Couldn't get user pages (rc=-14) [ 164.538789][ T8341] netfs: Couldn't get user pages (rc=-14) [ 164.540952][ T8341] netfs: Zero-sized read [R=2c0] [ 164.544727][ T8341] netfs: Couldn't get user pages (rc=-14) [ 164.877931][ T8354] netlink: 4 bytes leftover after parsing attributes in process `syz.3.658'. [ 164.881758][ T8354] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 164.943787][ T6007] usb 6-1: new high-speed USB device number 20 using dummy_hcd [ 165.106099][ T6007] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 165.110819][ T6007] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 165.114199][ T6007] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 165.117588][ T6007] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 165.121302][ T6007] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 165.123925][ T6007] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 165.127341][ T6007] usb 6-1: config 0 descriptor?? [ 165.129306][ T8345] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 165.537031][ T6007] plantronics 0003:047F:FFFF.0009: unknown main item tag 0xd [ 165.540170][ T6007] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving [ 165.545125][ T6007] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 165.790534][ T8372] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0 [ 165.875894][ T6007] usb 6-1: USB disconnect, device number 20 [ 166.403422][ T8391] netlink: 4 bytes leftover after parsing attributes in process `syz.1.669'. [ 166.406808][ T8391] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 168.087393][ T8408] delete_channel: no stack [ 168.178342][ T8436] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 168.802788][ T8446] netlink: 4 bytes leftover after parsing attributes in process `syz.3.680'. [ 168.806596][ T8446] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 168.982504][ T8451] 9p: Unknown Cache mode or invalid value fsca [ 169.079898][ T8454] 9p: Unknown Cache mode or invalid value fscach [ 170.153791][ T65] Bluetooth: hci2: command 0x0406 tx timeout [ 170.153815][ T5949] Bluetooth: hci1: command 0x0406 tx timeout [ 171.690446][ T8493] netlink: 4 bytes leftover after parsing attributes in process `syz.2.693'. [ 171.694793][ T8493] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 171.928783][ T8495] rdma_rxe: rxe_newlink: failed to add bond0 [ 172.173705][ T8] usb 6-1: new high-speed USB device number 21 using dummy_hcd [ 172.240323][ T8500] netlink: 4 bytes leftover after parsing attributes in process `syz.2.696'. [ 172.324087][ T8] usb 6-1: too many configurations: 9, using maximum allowed: 8 [ 172.327777][ T8] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 172.331090][ T8] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 172.335764][ T8] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 172.339002][ T8] usb 6-1: config 0 interface 0 has no altsetting 0 [ 172.341690][ T8] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 172.345699][ T8] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 172.348874][ T8] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 172.352170][ T8] usb 6-1: config 0 interface 0 has no altsetting 0 [ 172.357002][ T8] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 172.359516][ T8] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 172.362755][ T8] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 172.366639][ T8] usb 6-1: config 0 interface 0 has no altsetting 0 [ 172.369668][ T8] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 172.372224][ T8] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 172.382107][ T8] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 172.396931][ T8] usb 6-1: config 0 interface 0 has no altsetting 0 [ 172.400144][ T8] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 172.402727][ T8] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 172.408081][ T8] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 172.411261][ T8] usb 6-1: config 0 interface 0 has no altsetting 0 [ 172.414834][ T8] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 172.417473][ T8] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 172.420592][ T8] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 172.429770][ T8] usb 6-1: config 0 interface 0 has no altsetting 0 [ 172.435370][ T8] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 172.443880][ T8] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 172.447048][ T8] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 172.460354][ T8] usb 6-1: config 0 interface 0 has no altsetting 0 [ 172.463112][ T8] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 172.465893][ T8] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 172.468853][ T8] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 172.472044][ T8] usb 6-1: config 0 interface 0 has no altsetting 0 [ 172.485232][ T8] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 172.487785][ T8] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 172.490159][ T8] usb 6-1: Product: syz [ 172.491463][ T8] usb 6-1: Manufacturer: syz [ 172.492767][ T8] usb 6-1: SerialNumber: syz [ 172.498990][ T8] usb 6-1: config 0 descriptor?? [ 172.500857][ T8495] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 172.509552][ T8] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0 [ 172.576396][ T8503] netlink: 272 bytes leftover after parsing attributes in process `syz.2.696'. [ 172.771028][ C0] usb 6-1: yurex_control_callback - control failed: -71 [ 172.771227][ T57] usb 6-1: USB disconnect, device number 21 [ 172.778401][ T57] yurex 6-1:0.0: USB YUREX #0 now disconnected [ 173.611304][ T8516] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 174.455297][ T8531] input: syz0 as /devices/virtual/input/input28 [ 174.996422][ T8539] input: syz0 as /devices/virtual/input/input29 [ 175.054669][ T8] usb 7-1: new high-speed USB device number 19 using dummy_hcd [ 175.215041][ T8] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 175.219434][ T8] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 175.224203][ T8] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 175.234598][ T8] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 175.238904][ T8] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 175.242443][ T8] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 175.247632][ T8] usb 7-1: config 0 descriptor?? [ 175.276605][ T8535] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 175.691720][ T8] plantronics 0003:047F:FFFF.000A: unknown main item tag 0xd [ 175.703263][ T8] plantronics 0003:047F:FFFF.000A: No inputs registered, leaving [ 175.821830][ T8] plantronics 0003:047F:FFFF.000A: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 175.890140][ T8560] autofs: Unknown parameter 'Q' [ 175.893092][ T8560] vivid-001: disconnect [ 175.896320][ T8560] vivid-001: reconnect [ 175.907154][ T8] usb 7-1: USB disconnect, device number 19 [ 175.996301][ T8562] input: syz0 as /devices/virtual/input/input31 [ 176.153664][ T5949] Bluetooth: hci2: command 0x0406 tx timeout [ 176.502167][ T8572] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 176.763699][ T72] usb 7-1: new high-speed USB device number 20 using dummy_hcd [ 176.978124][ T72] usb 7-1: Using ep0 maxpacket: 32 [ 176.981041][ T72] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 176.995702][ T72] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 176.998344][ T72] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 177.000733][ T72] usb 7-1: Product: syz [ 177.001942][ T72] usb 7-1: Manufacturer: syz [ 177.003290][ T72] usb 7-1: SerialNumber: syz [ 177.059731][ T8584] loop6: detected capacity change from 0 to 524287999 [ 177.065670][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 177.069190][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 177.072127][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 177.074780][ T72] usb 7-1: config 0 descriptor?? [ 177.074915][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 177.077379][ T8575] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 177.080650][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 177.083357][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 177.086804][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 177.089554][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 177.093328][ C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 177.097048][ C2] Buffer I/O error on dev loop6, logical block 0, async page read [ 177.100380][ C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 177.103003][ C3] Buffer I/O error on dev loop6, logical block 0, async page read [ 177.106104][ C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 177.108610][ C3] Buffer I/O error on dev loop6, logical block 0, async page read [ 177.111899][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 177.114596][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 177.116920][ T8584] ldm_validate_partition_table(): Disk read failed. [ 177.117059][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 177.123987][ C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 177.127598][ C2] Buffer I/O error on dev loop6, logical block 0, async page read [ 177.130957][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 177.134656][ T8584] Dev loop6: unable to read RDB block 0 [ 177.137611][ T8584] loop6: unable to read partition table [ 177.139993][ T8584] loop_reread_partitions: partition scan of loop6 (3Ÿ ¾‚³˜) failed (rc=-5) [ 177.342652][ T8597] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 177.355994][ T8] usb 7-1: USB disconnect, device number 20 [ 178.483690][ T8618] netlink: 'syz.0.725': attribute type 10 has an invalid length. [ 179.099483][ T8614] delete_channel: no stack [ 180.297228][ T8656] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 180.455440][ T8663] netlink: 'syz.1.736': attribute type 10 has an invalid length. [ 180.589596][ T8664] netlink: 'syz.0.737': attribute type 10 has an invalid length. [ 180.961451][ T8666] rdma_rxe: rxe_newlink: failed to add bond0 [ 181.081366][ T8651] delete_channel: no stack [ 181.189587][ T8658] delete_channel: no stack [ 181.203731][ T6493] usb 8-1: new high-speed USB device number 17 using dummy_hcd [ 181.333199][ T8671] input: syz0 as /devices/virtual/input/input32 [ 181.341526][ T8653] Set syz1 is full, maxelem 65536 reached [ 181.441538][ T8676] 9pnet_fd: Insufficient options for proto=fd [ 181.714434][ T6493] usb 8-1: too many configurations: 9, using maximum allowed: 8 [ 181.718867][ T6493] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 181.721966][ T6493] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 181.725507][ T6493] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 181.728729][ T6493] usb 8-1: config 0 interface 0 has no altsetting 0 [ 181.732379][ T6493] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 181.736023][ T6493] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 181.739334][ T6493] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 181.742528][ T6493] usb 8-1: config 0 interface 0 has no altsetting 0 [ 181.746968][ T6493] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 181.749697][ T6493] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 181.753008][ T6493] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 181.756503][ T6493] usb 8-1: config 0 interface 0 has no altsetting 0 [ 181.760365][ T6493] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 181.763124][ T6493] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 181.766622][ T6493] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 181.769956][ T6493] usb 8-1: config 0 interface 0 has no altsetting 0 [ 181.773796][ T6493] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 181.776701][ T6493] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 181.779980][ T6493] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 181.783205][ T6493] usb 8-1: config 0 interface 0 has no altsetting 0 [ 181.787128][ T6493] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 181.789966][ T6493] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 181.793325][ T6493] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 181.796704][ T6493] usb 8-1: config 0 interface 0 has no altsetting 0 [ 181.799934][ T6493] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 181.802900][ T6493] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 181.806347][ T6493] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 181.810570][ T6493] usb 8-1: config 0 interface 0 has no altsetting 0 [ 181.814579][ T6493] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 181.817504][ T6493] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 110, changing to 10 [ 181.820858][ T6493] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid maxpacket 26502, setting to 1024 [ 181.824350][ T6493] usb 8-1: config 0 interface 0 has no altsetting 0 [ 181.829060][ T6493] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 181.830180][ T8679] sp0: Synchronizing with TNC [ 181.845723][ T6493] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 181.854141][ T6493] usb 8-1: Product: syz [ 181.855834][ T6493] usb 8-1: Manufacturer: syz [ 181.857802][ T6493] usb 8-1: SerialNumber: syz [ 181.864323][ T6493] usb 8-1: config 0 descriptor?? [ 181.866392][ T8666] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 181.872994][ T6493] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0 [ 182.164554][ C0] usb 8-1: yurex_control_callback - control failed: -71 [ 182.164692][ T57] usb 8-1: USB disconnect, device number 17 [ 182.172416][ T57] yurex 8-1:0.0: USB YUREX #0 now disconnected [ 183.176422][ T8697] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 183.602097][ T8709] FAULT_INJECTION: forcing a failure. [ 183.602097][ T8709] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 183.606613][ T8709] CPU: 0 UID: 0 PID: 8709 Comm: syz.3.750 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 183.606626][ T8709] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 183.606631][ T8709] Call Trace: [ 183.606633][ T8709] [ 183.606637][ T8709] dump_stack_lvl+0x16c/0x1f0 [ 183.606653][ T8709] should_fail_ex+0x50a/0x650 [ 183.606665][ T8709] ? kvm_arch_vcpu_ioctl+0x2f7f/0x5050 [ 183.606678][ T8709] _copy_from_user+0x2e/0xd0 [ 183.606689][ T8709] memdup_user+0x71/0xd0 [ 183.606702][ T8709] kvm_arch_vcpu_ioctl+0x2ff2/0x5050 [ 183.606715][ T8709] ? is_bpf_text_address+0x94/0x1a0 [ 183.606726][ T8709] ? hlock_class+0x4e/0x130 [ 183.606738][ T8709] ? __lock_acquire+0x15a9/0x3c40 [ 183.606748][ T8709] ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10 [ 183.606765][ T8709] ? __pfx___lock_acquire+0x10/0x10 [ 183.606774][ T8709] ? stack_trace_save+0x95/0xd0 [ 183.606786][ T8709] ? __pfx_stack_trace_save+0x10/0x10 [ 183.606798][ T8709] ? __pfx_mark_lock+0x10/0x10 [ 183.606806][ T8709] ? stack_depot_save_flags+0x28/0x9e0 [ 183.606818][ T8709] ? lock_acquire.part.0+0x11b/0x380 [ 183.606831][ T8709] ? __mutex_trylock_common+0xea/0x250 [ 183.606841][ T8709] ? __pfx___mutex_trylock_common+0x10/0x10 [ 183.606851][ T8709] ? hlock_class+0x4e/0x130 [ 183.606862][ T8709] ? kvm_vcpu_ioctl+0x27f/0x16b0 [ 183.606878][ T8709] ? rcu_is_watching+0x12/0xc0 [ 183.606890][ T8709] ? trace_contention_end+0xee/0x140 [ 183.606901][ T8709] ? __mutex_lock+0x1cc/0xb10 [ 183.606914][ T8709] ? kvm_vcpu_ioctl+0x27f/0x16b0 [ 183.606923][ T8709] ? __pfx___mutex_lock+0x10/0x10 [ 183.606937][ T8709] ? find_held_lock+0x2d/0x110 [ 183.606952][ T8709] ? kvm_vcpu_ioctl+0x1258/0x16b0 [ 183.606961][ T8709] kvm_vcpu_ioctl+0x1258/0x16b0 [ 183.606971][ T8709] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 183.606981][ T8709] ? tomoyo_path_number_perm+0x190/0x5b0 [ 183.606995][ T8709] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 183.607007][ T8709] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 183.607019][ T8709] ? do_vfs_ioctl+0x513/0x1950 [ 183.607031][ T8709] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 183.607049][ T8709] ? __pfx_lock_release+0x10/0x10 [ 183.607058][ T8709] ? trace_lock_acquire+0x14e/0x1f0 [ 183.607068][ T8709] kvm_vcpu_compat_ioctl+0x210/0x3d0 [ 183.607078][ T8709] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 183.607088][ T8709] ? __fget_files+0x206/0x3a0 [ 183.607099][ T8709] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 183.607108][ T8709] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 183.607121][ T8709] __do_fast_syscall_32+0x73/0x120 [ 183.607134][ T8709] do_fast_syscall_32+0x32/0x80 [ 183.607145][ T8709] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 183.607160][ T8709] RIP: 0023:0xf7f83579 [ 183.607167][ T8709] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 183.607175][ T8709] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 183.607184][ T8709] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004008ae89 [ 183.607189][ T8709] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 183.607194][ T8709] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 183.607199][ T8709] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 183.607203][ T8709] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 183.607213][ T8709] [ 184.029667][ T8716] netlink: 'syz.3.752': attribute type 10 has an invalid length. [ 184.660862][ T8713] delete_channel: no stack [ 184.886962][ T8730] netlink: 8 bytes leftover after parsing attributes in process `syz.3.757'. [ 184.893725][ T8730] openvswitch: netlink: Flow actions attr not present in new flow. [ 185.244580][ T8739] netlink: 4 bytes leftover after parsing attributes in process `syz.1.759'. [ 185.251662][ T8739] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 185.596949][ T8745] netlink: 16 bytes leftover after parsing attributes in process `syz.0.761'. [ 185.600500][ T8745] netlink: 16 bytes leftover after parsing attributes in process `syz.0.761'. [ 186.203061][ T8766] input: syz0 as /devices/virtual/input/input33 [ 186.209648][ T8764] netfs: Couldn't get user pages (rc=-14) [ 186.263050][ T8769] Cache volume key already in use (9p,syz,) [ 186.563718][ T3221] usb 7-1: new high-speed USB device number 21 using dummy_hcd [ 186.583655][ T8790] Cache volume key already in use (9p,syz,) [ 186.597149][ T8790] netfs: Couldn't get user pages (rc=-14) [ 186.753156][ T3221] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 186.756738][ T3221] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 186.759530][ T3221] usb 7-1: Product: syz [ 186.761140][ T3221] usb 7-1: Manufacturer: syz [ 186.762726][ T3221] usb 7-1: SerialNumber: syz [ 186.767377][ T3221] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 186.784225][ T5982] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 187.005196][ T3221] usb 7-1: USB disconnect, device number 21 [ 187.209091][ T40] audit: type=1326 audit(1738178137.186:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8770 comm="syz.2.767" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000 [ 187.333691][ T40] audit: type=1326 audit(1738178137.186:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8770 comm="syz.2.767" exe="/syz-executor" sig=0 arch=40000003 syscall=278 compat=1 ip=0xf7fd1579 code=0x7ffc0000 [ 187.350369][ T40] audit: type=1326 audit(1738178137.186:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8770 comm="syz.2.767" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000 [ 187.356549][ T40] audit: type=1326 audit(1738178137.186:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8770 comm="syz.2.767" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf7fd1579 code=0x7ffc0000 [ 187.362615][ T40] audit: type=1326 audit(1738178137.186:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8770 comm="syz.2.767" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000 [ 187.368654][ T40] audit: type=1326 audit(1738178137.186:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8770 comm="syz.2.767" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000 [ 187.374698][ T40] audit: type=1326 audit(1738178137.186:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8770 comm="syz.2.767" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fd1579 code=0x7ffc0000 [ 187.380705][ T40] audit: type=1326 audit(1738178137.186:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8770 comm="syz.2.767" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000 [ 187.386762][ T40] audit: type=1326 audit(1738178137.186:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8770 comm="syz.2.767" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd1579 code=0x7ffc0000 [ 187.392834][ T40] audit: type=1326 audit(1738178137.186:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8770 comm="syz.2.767" exe="/syz-executor" sig=0 arch=40000003 syscall=156 compat=1 ip=0xf7fd1579 code=0x7ffc0000 [ 187.630201][ T8812] netlink: 28 bytes leftover after parsing attributes in process `syz.3.780'. [ 187.632831][ T8812] netlink: 28 bytes leftover after parsing attributes in process `syz.3.780'. [ 187.759355][ T8815] lo: entered allmulticast mode [ 187.760998][ T8815] tunl0: entered allmulticast mode [ 187.762710][ T8815] gre0: entered allmulticast mode [ 187.764428][ T8815] gretap0: entered allmulticast mode [ 187.766186][ T8815] erspan0: entered allmulticast mode [ 187.767833][ T8815] ip_vti0: entered allmulticast mode [ 187.769459][ T8815] ip6_vti0: entered allmulticast mode [ 187.771048][ T8815] sit0: entered allmulticast mode [ 187.772835][ T8815] ip6tnl0: entered allmulticast mode [ 187.774590][ T8815] ip6gre0: entered allmulticast mode [ 187.776323][ T8815] syz_tun: entered allmulticast mode [ 187.777978][ T8815] ip6gretap0: entered allmulticast mode [ 187.779667][ T8815] bridge0: entered allmulticast mode [ 187.781246][ T8815] vcan0: entered allmulticast mode [ 187.782963][ T8815] bond0: entered allmulticast mode [ 187.784903][ T8815] bond_slave_0: entered allmulticast mode [ 187.786849][ T8815] bond_slave_1: entered allmulticast mode [ 187.788872][ T8815] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 187.791219][ T8815] team0: entered allmulticast mode [ 187.792756][ T8815] team_slave_0: entered allmulticast mode [ 187.795174][ T8815] team_slave_1: entered allmulticast mode [ 187.796903][ T8815] vlan2: entered allmulticast mode [ 187.798616][ T8815] dummy0: entered allmulticast mode [ 187.800426][ T8815] nlmon0: entered allmulticast mode [ 187.802005][ T8815] caif0: entered allmulticast mode [ 187.804020][ T8815] batadv0: entered allmulticast mode [ 187.805744][ T8815] vxcan0: entered allmulticast mode [ 187.807273][ T8815] vxcan1: entered allmulticast mode [ 187.808808][ T8815] veth0: entered allmulticast mode [ 187.810358][ T8815] veth1: entered allmulticast mode [ 187.822038][ T8815] wg0: entered allmulticast mode [ 187.828515][ T5982] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive [ 187.830788][ T5982] ath9k_htc: Failed to initialize the device [ 187.833854][ T8815] wg1: entered allmulticast mode [ 187.835516][ T8815] wg2: entered allmulticast mode [ 187.836655][ T3221] usb 7-1: ath9k_htc: USB layer deinitialized [ 187.837098][ T8815] veth1_to_bridge: entered allmulticast mode [ 187.840673][ T8815] veth0_to_bond: entered allmulticast mode [ 187.842517][ T8815] veth1_to_bond: entered allmulticast mode [ 187.844736][ T8815] veth0_to_team: entered allmulticast mode [ 187.846770][ T8815] veth1_to_team: entered allmulticast mode [ 187.848674][ T8815] veth0_to_batadv: entered allmulticast mode [ 187.850530][ T8815] batadv_slave_0: entered allmulticast mode [ 187.852313][ T8815] veth1_to_batadv: entered allmulticast mode [ 187.854449][ T8815] batadv_slave_1: entered allmulticast mode [ 187.857041][ T8815] xfrm0: entered allmulticast mode [ 187.858510][ T8798] Set syz1 is full, maxelem 65536 reached [ 187.859156][ T8815] veth0_to_hsr: entered allmulticast mode [ 187.862558][ T8815] hsr_slave_0: entered allmulticast mode [ 187.864440][ T8815] veth1_to_hsr: entered allmulticast mode [ 187.866290][ T8815] hsr_slave_1: entered allmulticast mode [ 187.869877][ T8815] hsr0: entered allmulticast mode [ 187.871409][ T8815] veth1_virt_wifi: entered allmulticast mode [ 187.873209][ T8815] veth0_virt_wifi: entered allmulticast mode [ 187.875344][ T8815] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 187.877519][ T8815] veth1_vlan: entered allmulticast mode [ 187.879410][ T8815] veth0_vlan: entered allmulticast mode [ 187.881435][ T8815] vlan0: entered allmulticast mode [ 187.882992][ T8815] vlan1: entered allmulticast mode [ 187.885286][ T8815] macvlan0: entered allmulticast mode [ 187.886894][ T8815] macvlan1: entered allmulticast mode [ 187.888510][ T8815] ipvlan0: entered allmulticast mode [ 187.890074][ T8815] ipvlan1: entered allmulticast mode [ 187.892206][ T8815] veth1_macvtap: entered allmulticast mode [ 187.894277][ T8815] veth0_macvtap: entered allmulticast mode [ 187.898107][ T8815] macvtap0: entered allmulticast mode [ 187.899749][ T8815] macsec0: entered allmulticast mode [ 187.901325][ T8815] geneve0: entered allmulticast mode [ 187.903012][ T8815] geneve1: entered allmulticast mode [ 187.904687][ T8815] netdevsim netdevsim3 netdevsim1: entered allmulticast mode [ 187.906863][ T8815] netdevsim netdevsim3 netdevsim2: entered allmulticast mode [ 187.909050][ T8815] netdevsim netdevsim3 netdevsim3: entered allmulticast mode [ 187.911223][ T8815] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode [ 187.913402][ T8815] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode [ 187.917216][ T8815] ip6tnl1: entered allmulticast mode [ 188.296085][ T8838] netlink: 4 bytes leftover after parsing attributes in process `syz.0.785'. [ 189.481495][ T8855] veth1_to_team: entered promiscuous mode [ 190.297023][ T8854] veth1_to_team: left promiscuous mode [ 190.770844][ T8884] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 191.283640][ T8899] input: syz0 as /devices/virtual/input/input35 [ 192.023639][ T6493] usb 7-1: new high-speed USB device number 22 using dummy_hcd [ 192.186557][ T6493] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 192.190048][ T6493] usb 7-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config [ 192.194692][ T6493] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 192.198227][ T6493] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 192.206289][ T6493] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 192.209848][ T6493] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 192.213051][ T6493] usb 7-1: Product: syz [ 192.215075][ T6493] usb 7-1: Manufacturer: syz [ 192.220835][ T6493] cdc_wdm 7-1:1.0: skipping garbage [ 192.222367][ T6493] cdc_wdm 7-1:1.0: skipping garbage [ 192.224561][ T6493] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22 [ 192.430301][ T57] usb 7-1: USB disconnect, device number 22 [ 192.873790][ T57] usb 7-1: new high-speed USB device number 23 using dummy_hcd [ 193.025020][ T57] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 193.028449][ T57] usb 7-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config [ 193.032806][ T57] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 193.037007][ T57] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 193.044948][ T57] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 193.048475][ T57] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 193.052034][ T8946] netlink: 4 bytes leftover after parsing attributes in process `syz.0.821'. [ 193.063337][ T57] usb 7-1: Product: syz [ 193.065389][ T57] usb 7-1: Manufacturer: syz [ 193.070911][ T57] cdc_wdm 7-1:1.0: skipping garbage [ 193.073004][ T57] cdc_wdm 7-1:1.0: skipping garbage [ 193.083707][ T57] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22 [ 193.226193][ T8952] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 193.273540][ T5986] usb 7-1: USB disconnect, device number 23 [ 193.666868][ T1414] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.293502][ T8984] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 194.611727][ T8991] block device autoloading is deprecated and will be removed. [ 194.615315][ T8990] md: md2 stopped. [ 195.353770][ C1] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 196.445735][ T9030] netlink: 8 bytes leftover after parsing attributes in process `syz.0.842'. [ 196.449222][ T9030] netlink: 8 bytes leftover after parsing attributes in process `syz.0.842'. [ 196.769264][ T9048] 9pnet_fd: Insufficient options for proto=fd [ 196.836285][ T9048] sp0: Synchronizing with TNC [ 197.554467][ T9061] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 198.244268][ T9069] netlink: 76 bytes leftover after parsing attributes in process `syz.3.855'. [ 198.605473][ T9087] netfs: Couldn't get user pages (rc=-14) [ 198.842543][ T9094] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 200.113809][ T9141] netfs: Couldn't get user pages (rc=-14) [ 200.418716][ T9143] fuse: Unknown parameter 'grou00000000000000000000Œ' [ 200.607605][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.610736][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.613915][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.616864][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.619591][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.622401][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.625770][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.628609][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.631700][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.634804][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.637545][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.639933][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.642058][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.644761][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.647055][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.649281][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.652054][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.655135][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.657335][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.659526][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.661820][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.664097][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.666239][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.668442][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.670852][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.673064][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.675390][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.678048][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.680340][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.682463][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.684694][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.687200][ T6598] hid-generic 0006:0003:0003.000B: unknown main item tag 0x0 [ 200.693263][ T6598] hid-generic 0006:0003:0003.000B: hidraw1: VIRTUAL HID v0.00 Device [syz1] on syz0 [ 200.853803][ T5895] usb 7-1: new high-speed USB device number 24 using dummy_hcd [ 200.915733][ T9159] input: syz0 as /devices/virtual/input/input38 [ 201.014881][ T5895] usb 7-1: config 0 has no interfaces? [ 201.016528][ T5895] usb 7-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 201.019357][ T5895] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 201.023027][ T5895] usb 7-1: config 0 descriptor?? [ 201.098501][ T9165] program syz.1.886 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 201.156528][ T9169] ubi0: attaching mtd0 [ 201.159723][ T9169] ubi0: scanning is finished [ 201.162087][ T9169] ================================================================== [ 201.164773][ T9169] BUG: KASAN: use-after-free in notifier_chain_register+0x3ac/0x420 [ 201.167338][ T9169] Read of size 4 at addr ffff888068be98d8 by task syz.1.886/9169 [ 201.171146][ T9169] [ 201.172266][ T9169] CPU: 1 UID: 0 PID: 9169 Comm: syz.1.886 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 201.172280][ T9169] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 201.172286][ T9169] Call Trace: [ 201.172290][ T9169] [ 201.172295][ T9169] dump_stack_lvl+0x116/0x1f0 [ 201.172311][ T9169] print_report+0xc3/0x620 [ 201.172324][ T9169] ? __virt_addr_valid+0x5e/0x590 [ 201.172340][ T9169] ? __phys_addr+0xc6/0x150 [ 201.172354][ T9169] kasan_report+0xd9/0x110 [ 201.172364][ T9169] ? notifier_chain_register+0x3ac/0x420 [ 201.172379][ T9169] ? notifier_chain_register+0x3ac/0x420 [ 201.172394][ T9169] notifier_chain_register+0x3ac/0x420 [ 201.172409][ T9169] blocking_notifier_chain_register+0x76/0xd0 [ 201.172425][ T9169] ubi_wl_init+0x1018/0x17b0 [ 201.172439][ T9169] ubi_attach+0x1cdd/0x4dc0 [ 201.172453][ T9169] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 201.172463][ T9169] ? lockdep_init_map_type+0x16d/0x7d0 [ 201.172475][ T9169] ? __pfx_ubi_attach+0x10/0x10 [ 201.172488][ T9169] ? ubi_attach_mtd_dev+0x1543/0x3590 [ 201.172502][ T9169] ubi_attach_mtd_dev+0x158f/0x3590 [ 201.172518][ T9169] ? __pfx_ubi_attach_mtd_dev+0x10/0x10 [ 201.172532][ T9169] ? __pfx_get_mtd_device+0x10/0x10 [ 201.172544][ T9169] ctrl_cdev_ioctl+0x339/0x3d0 [ 201.172558][ T9169] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 201.172572][ T9169] ? __fget_files+0x206/0x3a0 [ 201.172581][ T9169] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 201.172595][ T9169] compat_ptr_ioctl+0x6b/0xa0 [ 201.172608][ T9169] ? __pfx_compat_ptr_ioctl+0x10/0x10 [ 201.172620][ T9169] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 201.172633][ T9169] __do_fast_syscall_32+0x73/0x120 [ 201.172647][ T9169] do_fast_syscall_32+0x32/0x80 [ 201.172659][ T9169] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 201.172674][ T9169] RIP: 0023:0xf7faf579 [ 201.172683][ T9169] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 201.172692][ T9169] RSP: 002b:00000000f508455c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 201.172701][ T9169] RAX: ffffffffffffffda RBX: 000000000000000d RCX: 0000000040186f40 [ 201.172706][ T9169] RDX: 0000000020000502 RSI: 0000000000000000 RDI: 0000000000000000 [ 201.172711][ T9169] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 201.172716][ T9169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 201.172722][ T9169] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 201.172729][ T9169] [ 201.172732][ T9169] [ 201.249878][ T9169] The buggy address belongs to the physical page: [ 201.251717][ T9169] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888000000004 pfn:0x68be9 [ 201.254492][ T9169] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 201.256555][ T9169] raw: 04fff00000000000 0000000000000000 ffffffffffffffff 0000000000000000 [ 201.259055][ T9169] raw: ffff888000000004 0000000000000000 00000000ffffffff 0000000000000000 [ 201.261493][ T9169] page dumped because: kasan: bad access detected [ 201.263324][ T9169] page_owner tracks the page as freed [ 201.264866][ T9169] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x452cc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 9117, tgid 9116 (syz.3.871), ts 199557813723, free_ts 199634247707 [ 201.271215][ T9169] post_alloc_hook+0x181/0x1b0 [ 201.272966][ T9169] get_page_from_freelist+0xfce/0x2f80 [ 201.274537][ T9169] __alloc_frozen_pages_noprof+0x221/0x2470 [ 201.276249][ T9169] __alloc_pages_noprof+0xb/0x1b0 [ 201.277696][ T9169] ___kmalloc_large_node+0x84/0x1b0 [ 201.279371][ T9169] __kmalloc_large_node_noprof+0x1c/0x70 [ 201.281349][ T9169] __kmalloc_node_noprof.cold+0x5/0x5f [ 201.283228][ T9169] __kvmalloc_node_noprof+0x6f/0x1a0 [ 201.284804][ T9169] io_uring_setup+0x2a8/0x3370 [ 201.286193][ T9169] __ia32_sys_io_uring_setup+0x97/0x140 [ 201.287789][ T9169] __do_fast_syscall_32+0x73/0x120 [ 201.289345][ T9169] do_fast_syscall_32+0x32/0x80 [ 201.290769][ T9169] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 201.292623][ T9169] page last free pid 11 tgid 11 stack trace: [ 201.294352][ T9169] free_frozen_pages+0x6db/0xfb0 [ 201.295844][ T9169] __folio_put+0x32a/0x450 [ 201.297173][ T9169] kvfree+0x47/0x50 [ 201.298290][ T9169] io_ring_exit_work+0xe96/0x1ba0 [ 201.299784][ T9169] process_one_work+0x958/0x1b30 [ 201.301225][ T9169] worker_thread+0x6c8/0xf00 [ 201.302565][ T9169] kthread+0x3af/0x750 [ 201.303752][ T9169] ret_from_fork+0x45/0x80 [ 201.305056][ T9169] ret_from_fork_asm+0x1a/0x30 [ 201.306205][ T9170] 9pnet_fd: Insufficient options for proto=fd [ 201.306441][ T9169] [ 201.306445][ T9169] Memory state around the buggy address: [ 201.310618][ T9169] ffff888068be9780: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 201.312928][ T9169] ffff888068be9800: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 201.315216][ T9169] >ffff888068be9880: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 201.317503][ T9169] ^ [ 201.319631][ T9169] ffff888068be9900: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 201.321934][ T9169] ffff888068be9980: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 201.324238][ T9169] ================================================================== [ 201.338844][ T9169] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 201.341025][ T9169] CPU: 0 UID: 0 PID: 9169 Comm: syz.1.886 Not tainted 6.13.0-syzkaller-08291-g805ba04cb7cc #0 [ 201.343873][ T9169] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 201.346940][ T9169] Call Trace: [ 201.347973][ T9169] [ 201.348844][ T9169] dump_stack_lvl+0x3d/0x1f0 [ 201.350197][ T9169] panic+0x71d/0x800 [ 201.351347][ T9169] ? __pfx_panic+0x10/0x10 [ 201.352699][ T9169] ? preempt_schedule_thunk+0x1a/0x30 [ 201.354258][ T9169] ? preempt_schedule_common+0x44/0xc0 [ 201.355834][ T9169] check_panic_on_warn+0xab/0xb0 [ 201.357278][ T9169] end_report+0x117/0x180 [ 201.358538][ T9169] kasan_report+0xe9/0x110 [ 201.359923][ T9169] ? notifier_chain_register+0x3ac/0x420 [ 201.361583][ T9169] ? notifier_chain_register+0x3ac/0x420 [ 201.363214][ T9169] notifier_chain_register+0x3ac/0x420 [ 201.364809][ T9169] blocking_notifier_chain_register+0x76/0xd0 [ 201.366622][ T9169] ubi_wl_init+0x1018/0x17b0 [ 201.367971][ T9169] ubi_attach+0x1cdd/0x4dc0 [ 201.369300][ T9169] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 201.371687][ T9169] ? lockdep_init_map_type+0x16d/0x7d0 [ 201.373734][ T9169] ? __pfx_ubi_attach+0x10/0x10 [ 201.375619][ T9169] ? ubi_attach_mtd_dev+0x1543/0x3590 [ 201.377660][ T9169] ubi_attach_mtd_dev+0x158f/0x3590 [ 201.379607][ T9169] ? __pfx_ubi_attach_mtd_dev+0x10/0x10 [ 201.381748][ T9169] ? __pfx_get_mtd_device+0x10/0x10 [ 201.383797][ T9169] ctrl_cdev_ioctl+0x339/0x3d0 [ 201.385688][ T9169] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 201.387663][ T9169] ? __fget_files+0x206/0x3a0 [ 201.389433][ T9169] ? __pfx_ctrl_cdev_ioctl+0x10/0x10 [ 201.391422][ T9169] compat_ptr_ioctl+0x6b/0xa0 [ 201.393368][ T9169] ? __pfx_compat_ptr_ioctl+0x10/0x10 [ 201.395438][ T9169] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 201.397268][ T9169] __do_fast_syscall_32+0x73/0x120 [ 201.398763][ T9169] do_fast_syscall_32+0x32/0x80 [ 201.400183][ T9169] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 201.402004][ T9169] RIP: 0023:0xf7faf579 [ 201.403181][ T9169] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 201.408800][ T9169] RSP: 002b:00000000f508455c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 201.411189][ T9169] RAX: ffffffffffffffda RBX: 000000000000000d RCX: 0000000040186f40 [ 201.413453][ T9169] RDX: 0000000020000502 RSI: 0000000000000000 RDI: 0000000000000000 [ 201.415714][ T9169] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 201.418008][ T9169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 201.420308][ T9169] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 201.422553][ T9169] [ 201.423955][ T9169] Kernel Offset: disabled [ 201.425220][ T9169] Rebooting in 86400 seconds.. VM DIAGNOSIS: 19:15:51 Registers: info registers vcpu 0 CPU#0 RAX=dffffc0000000000 RBX=1ffff92001d08ee8 RCX=ffffc9000e847780 RDX=1ffff11004266a6c RSI=ffffffff8b6cd500 RDI=ffffffff8bd28220 RBP=fb19a5ccda6a0102 RSP=ffffc9000e847730 R8 =0000000000000000 R9 =fffffbfff20bfee2 R10=ffffffff905ff717 R11=0000000000000001 R12=0000000000000001 R13=0000000000000002 R14=ffff888021335368 R15=ffff888021334880 RIP=ffffffff81961ed5 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000002083d000 CR3=000000006729e000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=000000000000006b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff853811a5 RDI=ffffffff9aad2ea0 RBP=ffffffff9aad2e60 RSP=ffffc90007d27488 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=20666f2064616552 R12=0000000000000000 R13=000000000000006b R14=ffffffff85381140 R15=0000000000000000 RIP=ffffffff853811cf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000002ed20220 CR3=000000006729e000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000001f7011641 00000001db710641 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f116c36b00000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a4207ecf76fc316c ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2ed2586dd86c8612 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000080080783 RBX=0000000000000000 RCX=ffff888025749070 RDX=000000000000009d RSI=ffffffff867d8216 RDI=ffff888025749268 RBP=0000000000000001 RSP=ffffc90000548b70 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000005b0b R12=0000000000000001 R13=0000000000004e20 R14=ffff888025749070 R15=0000000000000001 RIP=ffffffff867d825d RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000560ae9937000 CR3=000000004c672000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f740cff4 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000000 RBX=ffff88802b546740 RCX=ffffffff81ace8ea RDX=ffff88801cedc880 RSI=ffffffff81ace8c4 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc900001e6868 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000007 R12=ffffed10056a8ce9 R13=0000000000000001 R14=ffff88802b73ff80 R15=ffff88802b546748 RIP=ffffffff81ace8d0 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ff6c31aa241 CR3=000000000df80000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7d8eccfae4351b6a 814c4554417d469b ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a7cca25fc883e5d ebc98f4371913cbb ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c3e503aabf045b8f bbd4ea25edd80267 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5934667af94a17f4 98a680c87eba04bd ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000a680 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0080010000800100 f052e41e00800100 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000007a0000007a 0000007a00800100 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f041c6fc0000007a 00800100f0409cf4 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000007af071b836 f05400440000007a ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 30fe04a08346ae74 bf8cdc89d4ced480 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 cebb1338e91858f1 6bafba345e53f5e3 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000