last executing test programs: 25.863355172s ago: executing program 3 (id=1988): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x2, &(0x7f0000000200)=@raw=[@call, @exit], &(0x7f0000000180)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x11}, 0x90) 25.682951816s ago: executing program 3 (id=1989): openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r2}, 0x10) ioctl$RTC_UIE_ON(0xffffffffffffffff, 0x7003) ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, 0x0) syz_usb_control_io$hid(r1, 0x0, 0x0) syz_usb_control_io$hid(r1, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x0, "2313"}, @global=@item_012={0x2, 0x1, 0x0, "e53f"}, @global=@item_4={0x3, 0x1, 0x0, '\f\x00'}, @local=@item_012={0x2, 0x2, 0x0, "9000"}, @global=@item_4={0x3, 0x1, 0x0, "0900be00"}, @main=@item_4={0x3, 0x0, 0x8}, @local=@item_4={0x3, 0x2, 0x0, "09007a15"}, @local=@item_4={0x3, 0x2, 0x0, "5d8c3dda"}]}}, 0x0}, 0x0) r3 = syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x0) syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000040)=ANY=[], 0x0) read$hidraw(r3, 0x0, 0x0) syz_usb_ep_write(r1, 0x81, 0x1, &(0x7f0000000000)='B') close_range(r0, 0xffffffffffffffff, 0x0) 22.582415259s ago: executing program 3 (id=2001): bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r0, r1, 0x2, 0x2}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a800000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@cgroup=r4, r3, 0x2, 0x6, 0x4000}, 0x10) 22.529310927s ago: executing program 3 (id=2002): add_key(&(0x7f0000000000)='asymmetric\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) 18.461907412s ago: executing program 3 (id=2006): r0 = syz_open_dev$dri(&(0x7f00000008c0), 0x0, 0x0) ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000000)) 3.415513558s ago: executing program 2 (id=2051): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000040)={0x15, 0x65, 0xffff, 0x1000, 0x8, '9P2000.u'}, 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_INIT(r2, &(0x7f0000001740)={0x50, 0x0, 0x0, {0x7, 0x21, 0x0, 0x0, 0x81}}, 0x50) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}}) 3.271963515s ago: executing program 2 (id=2052): r0 = signalfd4(0xffffffffffffffff, &(0x7f00000004c0), 0x8, 0x0) r1 = io_uring_setup(0x3d02, &(0x7f0000000180)) r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301) ioctl$USBDEVFS_REAPURB(r2, 0x4004550c, 0x0) dup2(r0, r1) 3.121449698s ago: executing program 2 (id=2054): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32], 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000740)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r5, 0x8933, &(0x7f0000000240)={'wg0\x00', 0x0}) sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="24000000180083ad0400000000000000020000000000fe020c00000008000400", @ANYRES32=r6], 0x24}}, 0x0) r7 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="24000000180083ad0400000000000000020000000000fe020c000c"], 0x24}}, 0x0) setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, 0x0, 0x0) 2.44205639s ago: executing program 0 (id=2061): syz_emit_ethernet(0x4e, &(0x7f0000000000)={@local, @broadcast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "1600", 0x18, 0x2b, 0x0, @private1, @local, {[@hopopts={0x87}], {0x0, 0x0, 0x10, 0x0, @gue={{0x2}}}}}}}}, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) socket$l2tp6(0xa, 0x2, 0x73) socket$inet_sctp(0x2, 0x1, 0x84) bind$l2tp6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x65) connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0xa}, 0x20) socket$l2tp6(0xa, 0x2, 0x73) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000020000000000000000000000001d"], 0x1c}}, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66b80e010f00d0b0060f21a20f01c40f009b2700000066b80c008ee00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a00b9730200000f32328fe858b660002fb90d090000b800680000ba000000000f30", 0x65}], 0x1, 0x0, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2.112068782s ago: executing program 2 (id=2062): syz_init_net_socket$ax25(0x3, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000640)=@newlink={0x40, 0x10, 0x421, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_OFLAGS={0x6}]}}}]}, 0x40}}, 0x0) write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000004200)={0x50, 0x0, 0x0, {0x7, 0x1f, 0x0, 0x207601a}}, 0x50) syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000002140)="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", 0x2000, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB="104000"/16], 0x0, 0x0}) openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x48, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_FLOWS={0x8, 0x5, 0x7fff}]}}, @TCA_RATE={0x6}]}, 0x48}}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x0, 0x4, 0x40, 0x5}, 0x48) setsockopt(0xffffffffffffffff, 0x10d, 0x6, &(0x7f0000000180)="578a96d1", 0x4) 2.038447995s ago: executing program 3 (id=2006): r0 = syz_open_dev$dri(&(0x7f00000008c0), 0x0, 0x0) ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000000)) 1.710316845s ago: executing program 0 (id=2063): r0 = signalfd4(0xffffffffffffffff, &(0x7f00000004c0), 0x8, 0x0) r1 = io_uring_setup(0x3d02, &(0x7f0000000180)) r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301) ioctl$USBDEVFS_REAPURB(r2, 0x4004550c, 0x0) dup2(r0, r1) 1.361671654s ago: executing program 0 (id=2066): r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) ioctl(r0, 0x541b, &(0x7f0000000040)) 1.299096603s ago: executing program 0 (id=2068): r0 = socket$l2tp6(0xa, 0x2, 0x73) bind$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x20) connect$l2tp6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback, 0x0, 0x1}, 0x20) getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000140)=0x2a) 1.21988729s ago: executing program 1 (id=2069): r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000100)=0x80000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000140)={@my=0x1}) ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000000c0)=0xb0000) ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r0, 0x7a4, &(0x7f0000000180)) r1 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x1000}, 0x10) write(r1, &(0x7f0000000180)="2000000012005f0214f9f4070000fbe40a0000000000", 0x41d) 1.147394027s ago: executing program 0 (id=2070): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32], 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000740)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r5, 0x8933, &(0x7f0000000240)={'wg0\x00', 0x0}) sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="24000000180083ad0400000000000000020000000000fe020c00000008000400", @ANYRES32=r6], 0x24}}, 0x0) r7 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="24000000180083ad0400000000000000020000000000fe020c000c"], 0x24}}, 0x0) setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, 0x0, 0x0) 1.146912806s ago: executing program 1 (id=2071): r0 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x8000, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0x2b, 0x2, 0x0, "d569e8e1dd2f1ae97ee8589301f453a0c04b1410b2eafa4496ba216b1e8ac11e"}) 1.0321387s ago: executing program 1 (id=2072): bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000000)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x90) r0 = socket(0x15, 0x5, 0x0) getsockopt$nfc_llcp(r0, 0x114, 0x2713, 0x0, 0x20000008) 881.726432ms ago: executing program 1 (id=2073): madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) setns(r1, 0x24020000) syz_clone(0x12081000, 0x0, 0x0, 0x0, 0x0, 0x0) 836.53544ms ago: executing program 1 (id=2074): r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, &(0x7f0000000000)={0x0, @time, 0x0, {}, 0x0, 0x2, 0x2}) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000000)={0x5, 0x2, 0x8}) ioctl$TCFLSH(r0, 0x40384708, 0x20000000) 671.580923ms ago: executing program 1 (id=2075): socket$nl_netfilter(0x10, 0x3, 0xc) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x3, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) bind$can_j1939(r0, &(0x7f0000000380)={0x1d, r1, 0x1}, 0x18) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x14}, 0x9}, 0x0) 507.109181ms ago: executing program 2 (id=2076): mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1adc51, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000180)='mountstats\x00') read$FUSE(r1, &(0x7f0000003800)={0x2020}, 0x2020) 335.852242ms ago: executing program 2 (id=2077): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendmmsg$inet6(r0, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000100)={0x0, 0x0, 0x500}, 0x8) 0s ago: executing program 0 (id=2078): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x12, 0x4, 0x4, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) kernel console output (not intermixed with test programs): dpoint descriptors, different from the interface descriptor's value: 18 [ 659.642105][ T7538] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 659.646407][ T7538] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 659.668439][ T7538] usb 5-1: config 0 descriptor?? [ 659.922749][ T7538] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 13 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 661.024240][ T7538] usb 5-1: USB disconnect, device number 13 [ 661.033637][ T7538] usblp0: removed [ 661.788194][ T9920] hub 9-0:1.0: USB hub found [ 661.804368][ T9920] hub 9-0:1.0: 1 port detected [ 661.845180][ T39] audit: type=1326 audit(1722176850.286:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9921 comm="syz.1.1237" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73fe579 code=0x0 [ 662.027213][ T9924] No control pipe specified [ 662.093193][ T9924] netlink: 'syz.1.1237': attribute type 5 has an invalid length. [ 662.819810][ T7531] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 663.016818][ T7531] usb 5-1: Using ep0 maxpacket: 32 [ 663.028654][ T7531] usb 5-1: config index 0 descriptor too short (expected 29220, got 36) [ 663.047315][ T7531] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 663.056896][ T7531] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 663.060250][ T7531] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 663.064299][ T7531] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 663.076727][ T7531] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 663.082434][ T7531] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 663.085620][ T7531] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 663.092619][ T7531] usb 5-1: config 0 descriptor?? [ 663.363817][ T7531] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 14 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 663.371324][ T7531] usb 5-1: USB disconnect, device number 14 [ 663.377750][ T7531] usblp0: removed [ 663.598174][ T9945] netlink: 256 bytes leftover after parsing attributes in process `syz.2.1246'. [ 663.993631][ T39] audit: type=1326 audit(1722176852.436:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9950 comm="syz.2.1249" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x0 [ 664.002595][ T7531] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 664.216754][ T7531] usb 5-1: Using ep0 maxpacket: 32 [ 664.217281][ T9951] No control pipe specified [ 664.222013][ T7531] usb 5-1: config index 0 descriptor too short (expected 29220, got 36) [ 664.225676][ T7531] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 664.229928][ T7531] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 664.234992][ T7531] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 664.256507][ T7531] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 664.261042][ T9951] netlink: 'syz.2.1249': attribute type 5 has an invalid length. [ 664.261102][ T7531] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 664.275277][ T7531] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 664.279740][ T7531] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 664.287550][ T7531] usb 5-1: config 0 descriptor?? [ 664.478620][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.481957][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.491285][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.494697][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.498336][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.501429][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.504582][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.511526][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.516039][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.519394][ T7531] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 15 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 664.523874][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.529911][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.533168][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.536375][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.541088][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.544373][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.548629][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.552538][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.556079][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.559443][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.564053][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.567576][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.570946][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.574552][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.578282][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.582753][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.586705][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.590624][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.594576][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.599007][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.604209][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.607493][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.610723][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.613881][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.620334][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.623590][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.627215][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.631850][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.635108][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.639861][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.644792][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.648477][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.651575][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.654807][ T7710] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 664.662823][ T7710] hid-generic 0000:0000:0000.0003: hidraw1: HID v0.00 Device [syz0] on syz0 [ 665.079268][ T9980] netlink: 176 bytes leftover after parsing attributes in process `syz.3.1261'. [ 665.576635][ T7538] usb 5-1: USB disconnect, device number 15 [ 665.608088][ T7538] usblp0: removed [ 665.853012][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.858412][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.861619][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.864803][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.868170][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.874656][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.893773][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.937489][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.940459][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.945715][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.967702][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.972292][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.977872][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.981818][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.985148][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.990028][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.993626][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 665.998026][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.002019][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.005802][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.011391][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.015615][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.020261][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.025675][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.038759][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.043779][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.052553][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.056382][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.078297][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.082508][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.085915][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.105968][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.110222][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.113776][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.117908][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.121204][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.128336][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.131083][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.135031][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.139997][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.143433][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.147451][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.151508][ T5404] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 666.160891][ T5404] hid-generic 0000:0000:0000.0004: hidraw1: HID v0.00 Device [syz0] on syz0 [ 666.873003][T10028] warning: `syz.1.1282' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 667.242787][T10042] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1285'. [ 667.343690][T10042] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1285'. [ 667.349456][T10042] bridge_slave_0: left allmulticast mode [ 667.352707][T10042] bridge_slave_0: left promiscuous mode [ 667.356429][T10042] bridge0: port 1(bridge_slave_0) entered disabled state [ 668.320016][T10065] befs: Unrecognized mount option "¼]<…±‚s_úï4÷ËœrÝÚ3wS1y³›ÏCl* º©]ûÇŽ Ê–ðb"§eÌ#(r’«" or missing value [ 668.325271][T10065] befs: (nullb0): cannot parse mount options [ 668.566773][ T7710] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 668.786788][ T7710] usb 6-1: Using ep0 maxpacket: 8 [ 668.795277][ T7710] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 668.804429][ T7710] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 668.839898][ T7710] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 668.852709][ T7710] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 668.874840][ T7710] usb 6-1: config 0 descriptor?? [ 669.182397][ T7710] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0 [ 669.304158][T10075] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1303'. [ 669.379636][T10064] iowarrior 6-1:0.0: Error -90 while submitting URB [ 669.394882][ T7538] usb 6-1: USB disconnect, device number 10 [ 669.399982][ T7538] iowarrior 6-1:0.0: I/O-Warror #0 now disconnected [ 670.184112][T10091] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1306'. [ 670.200903][T10091] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1306'. [ 670.204984][T10091] bridge_slave_0: left allmulticast mode [ 670.215242][T10091] bridge_slave_0: left promiscuous mode [ 670.228071][T10091] bridge0: port 1(bridge_slave_0) entered disabled state [ 670.626799][T10098] befs: Unrecognized mount option "¼]<…±‚s_úï4÷ËœrÝÚ3wS1y³›ÏCl* º©]ûÇŽ Ê–ðb"§eÌ#(r’«" or missing value [ 670.631334][T10098] befs: (nullb0): cannot parse mount options [ 671.265652][T10106] hub 9-0:1.0: USB hub found [ 671.274438][T10106] hub 9-0:1.0: 1 port detected [ 672.569401][T10143] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1320'. [ 672.644742][T10143] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1320'. [ 672.798733][T10116] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 672.801179][T10116] Bluetooth: hci2: Error when powering off device on rfkill (-4) [ 672.899000][T10116] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 672.922798][T10116] Bluetooth: hci3: Error when powering off device on rfkill (-4) [ 673.149879][T10155] ucma_write: process 404 (syz.2.1324) changed security contexts after opening file descriptor, this is not allowed. [ 673.310854][T10116] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 673.313568][T10116] Bluetooth: hci0: Error when powering off device on rfkill (-4) [ 673.351009][T10169] overlayfs: missing 'lowerdir' [ 673.443459][T10169] overlayfs: failed to resolve './file0': -2 [ 673.634141][T10185] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 673.851769][T10197] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1334'. [ 674.847250][T10209] overlayfs: missing 'lowerdir' [ 675.072137][T10209] overlayfs: upper fs does not support tmpfile. [ 675.099367][T10209] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 675.102815][T10209] overlayfs: failed to set xattr on upper [ 675.105842][T10209] overlayfs: ...falling back to redirect_dir=nofollow. [ 675.109289][T10209] overlayfs: ...falling back to index=off. [ 675.112001][T10209] overlayfs: ...falling back to uuid=null. [ 675.115911][T10209] overlayfs: upper fs missing required features. [ 676.826809][ T39] audit: type=1326 audit(1722176865.256:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10248 comm="syz.0.1352" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x0 [ 676.907157][T10292] libceph: resolve '0' (ret=-3): failed [ 677.305097][T10298] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 678.680540][ C1] vkms_vblank_simulate: vblank timer overrun [ 679.861220][ C1] vkms_vblank_simulate: vblank timer overrun [ 680.218448][T10325] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 680.376022][T10327] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1382'. [ 680.399005][T10327] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 680.724238][T10328] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 682.287986][T10334] befs: Unrecognized mount option "¼]<…±‚s_úï4÷ËœrÝÚ3wS1y³›ÏCl* º©]ûÇŽ Ê–ðb"§eÌ#(r’«" or missing value [ 682.306712][T10334] befs: (nullb0): cannot parse mount options [ 684.337803][T10354] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 684.410928][T10351] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1391'. [ 684.468486][T10363] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1396'. [ 684.587876][T10366] befs: Unrecognized mount option "¼]<…±‚s_úï4÷ËœrÝÚ3wS1y³›ÏCl* º©]ûÇŽ Ê–ðb"§eÌ#(r’«" or missing value [ 684.593336][T10366] befs: (nullb0): cannot parse mount options [ 684.865280][T10375] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 685.790323][ T39] audit: type=1326 audit(1722176874.236:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10381 comm="syz.0.1402" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x0 [ 686.146934][ T39] audit: type=1326 audit(1722176874.596:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10387 comm="syz.2.1404" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x0 [ 686.304415][ T39] audit: type=1326 audit(1722176874.746:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10387 comm="syz.2.1404" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x0 [ 691.251319][ T1377] ieee802154 phy0 wpan0: encryption failed: -22 [ 691.254134][ T1377] ieee802154 phy1 wpan1: encryption failed: -22 [ 691.866558][T10459] < [ 691.975090][T10464] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1430'. [ 691.990111][T10464] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1430'. [ 692.282527][T10481] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1436'. [ 692.302537][T10481] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 692.598190][T10481] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 692.835926][ T39] audit: type=1326 audit(1722176881.276:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10465 comm="syz.0.1431" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x0 [ 694.176594][T10502] < [ 694.564939][T10509] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1443'. [ 697.928088][T10531] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1449'. [ 698.439573][T10553] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1456'. [ 698.642992][ T39] audit: type=1326 audit(1722176887.086:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10549 comm="syz.0.1455" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x0 [ 700.005524][T10567] serio: Serial port pts0 [ 703.896691][T10588] C: renamed from team_slave_0 (while UP) [ 703.945873][T10590] overlayfs: workdir and upperdir must be separate subtrees [ 703.974068][T10592] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4) [ 703.977564][T10592] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 703.981240][T10588] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 703.982987][T10592] vhci_hcd vhci_hcd.0: Device attached [ 704.007931][T10592] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 704.022393][T10592] vhci_hcd vhci_hcd.0: pdev(2) rhport(2) sockfd(8) [ 704.024897][T10592] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 704.029400][T10592] vhci_hcd vhci_hcd.0: Device attached [ 704.039382][T10592] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 704.053831][T10592] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 704.061444][T10592] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 704.071787][T10592] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 704.081930][T10592] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 704.162656][T10592] netlink: 'syz.2.1466': attribute type 10 has an invalid length. [ 704.181185][ T7538] vhci_hcd: vhci_device speed not set [ 704.189283][T10593] vhci_hcd: connection closed [ 704.189798][ T7532] vhci_hcd: stop threads [ 704.193136][ T7532] vhci_hcd: release socket [ 704.194747][T10595] vhci_hcd: connection closed [ 704.196358][ T7532] vhci_hcd: disconnect device [ 704.202527][ T7532] vhci_hcd: stop threads [ 704.205746][ T7532] vhci_hcd: release socket [ 704.216670][ T7532] vhci_hcd: disconnect device [ 704.246577][ T7538] usb 17-1: new full-speed USB device number 3 using vhci_hcd [ 704.250451][ T7538] usb 17-1: enqueue for inactive port 0 [ 704.326722][ T7538] vhci_hcd: vhci_device speed not set [ 705.427907][T10624] C: renamed from team_slave_0 (while UP) [ 705.433235][T10624] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 706.070280][ T39] audit: type=1326 audit(1722176894.516:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10621 comm="syz.2.1476" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x0 [ 706.376655][T10640] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1483'. [ 707.045000][ C0] vkms_vblank_simulate: vblank timer overrun [ 707.260970][ C0] vkms_vblank_simulate: vblank timer overrun [ 710.016331][T10671] syz.1.1492 (10671) used greatest stack depth: 19968 bytes left [ 711.281822][T10666] syzkaller1: entered promiscuous mode [ 711.284314][T10666] syzkaller1: entered allmulticast mode [ 712.017463][T10700] netlink: 'syz.2.1504': attribute type 1 has an invalid length. [ 712.333639][T10713] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1508'. [ 713.403055][T10728] serio: Serial port pts0 [ 714.367425][T10740] fuse: Unknown parameter '0x0000000000000004' [ 714.511526][T10740] overlayfs: failed to create directory ./bus/work (errno: 22); mounting read-only [ 715.416419][T10762] netlink: 'syz.1.1526': attribute type 1 has an invalid length. [ 715.422191][T10762] netlink: 9372 bytes leftover after parsing attributes in process `syz.1.1526'. [ 715.427770][T10762] netlink: 'syz.1.1526': attribute type 1 has an invalid length. [ 716.039608][T10774] hfs: can't find a HFS filesystem on dev nullb0 [ 716.467752][ T7531] kernel read not supported for file /usbmon0 (pid: 7531 comm: kworker/3:5) [ 716.550603][T10781] netlink: 'syz.1.1535': attribute type 10 has an invalid length. [ 716.554359][T10781] ipvlan1: entered promiscuous mode [ 716.567386][T10781] team0: Device ipvlan1 failed to register rx_handler [ 717.984029][T10796] hfs: can't find a HFS filesystem on dev nullb0 [ 718.047138][ T5411] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 718.204212][T10801] netlink: 'syz.0.1544': attribute type 1 has an invalid length. [ 718.208641][T10801] netlink: 9352 bytes leftover after parsing attributes in process `syz.0.1544'. [ 718.213383][T10801] netlink: 'syz.0.1544': attribute type 1 has an invalid length. [ 718.217307][T10801] netlink: 'syz.0.1544': attribute type 2 has an invalid length. [ 718.238611][ T5411] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 718.245818][ T5411] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 718.256707][ T5411] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 718.261005][ T5411] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 718.276547][ T5411] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 718.276572][ T5411] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 718.287933][ T5411] usb 7-1: config 0 descriptor?? [ 718.314207][T10804] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1545'. [ 718.460246][ C1] vkms_vblank_simulate: vblank timer overrun [ 719.060309][ C1] vkms_vblank_simulate: vblank timer overrun [ 719.399010][ T5411] usbhid 7-1:0.0: can't add hid device: -71 [ 719.402171][ T5411] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 719.412293][ T5411] usb 7-1: USB disconnect, device number 8 [ 719.536832][ C1] vkms_vblank_simulate: vblank timer overrun [ 719.796371][T10843] netlink: 'syz.3.1558': attribute type 1 has an invalid length. [ 719.800756][T10843] netlink: 9352 bytes leftover after parsing attributes in process `syz.3.1558'. [ 719.806125][T10843] netlink: 'syz.3.1558': attribute type 1 has an invalid length. [ 719.816552][T10843] netlink: 'syz.3.1558': attribute type 2 has an invalid length. [ 720.925782][T10876] netlink: 'syz.3.1571': attribute type 1 has an invalid length. [ 720.929199][T10876] netlink: 9352 bytes leftover after parsing attributes in process `syz.3.1571'. [ 720.933380][T10876] netlink: 'syz.3.1571': attribute type 1 has an invalid length. [ 720.948899][T10876] netlink: 'syz.3.1571': attribute type 2 has an invalid length. [ 721.874735][T10907] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1585'. [ 721.881967][T10907] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1585'. [ 721.894566][T10907] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1585'. [ 721.900615][T10907] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1585'. [ 721.906183][T10907] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1585'. [ 721.916920][T10907] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1585'. [ 723.659209][T10961] syz.3.1602[10961] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 723.659411][T10961] syz.3.1602[10961] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 723.712379][T10964] __nla_validate_parse: 12 callbacks suppressed [ 723.712398][T10964] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1603'. [ 723.891660][T10970] netlink: 'syz.3.1607': attribute type 3 has an invalid length. [ 723.895636][T10970] netlink: 130984 bytes leftover after parsing attributes in process `syz.3.1607'. [ 723.985387][ T66] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 724.001747][ T66] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 724.005481][ T66] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 724.010917][ T66] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 724.015578][ T66] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 724.020001][ T66] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 724.035640][ T4772] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 724.041279][ T4772] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 724.046706][ T4772] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 724.050812][ T4772] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 724.055507][ T4772] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 724.062636][ T4772] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 724.519822][T10988] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5) [ 724.522595][T10988] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 724.526390][T10988] vhci_hcd vhci_hcd.0: Device attached [ 724.630050][ T1107] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 724.636985][ T1107] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 724.735880][T10971] chnl_net:caif_netlink_parms(): no params data found [ 724.790034][ T5386] vhci_hcd: vhci_device speed not set [ 724.845740][ T1107] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 724.856676][ T1107] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 724.856775][ T5386] usb 19-1: new full-speed USB device number 4 using vhci_hcd [ 725.003050][ T1107] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 725.011637][ T1107] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 725.236623][T10989] vhci_hcd: connection reset by peer [ 725.265056][ T7532] vhci_hcd: stop threads [ 725.267288][ T7532] vhci_hcd: release socket [ 725.269345][ T7532] vhci_hcd: disconnect device [ 725.304621][ T1107] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 725.309257][ T1107] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 725.330636][T10971] bridge0: port 1(bridge_slave_0) entered blocking state [ 725.334991][T10971] bridge0: port 1(bridge_slave_0) entered disabled state [ 725.340557][T10971] bridge_slave_0: entered allmulticast mode [ 725.346873][T10971] bridge_slave_0: entered promiscuous mode [ 725.358421][T10971] bridge0: port 2(bridge_slave_1) entered blocking state [ 725.361879][T10971] bridge0: port 2(bridge_slave_1) entered disabled state [ 725.365422][T10971] bridge_slave_1: entered allmulticast mode [ 725.373469][T10971] bridge_slave_1: entered promiscuous mode [ 725.494442][T10971] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 725.502813][T10971] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 725.598697][T10971] team0: Port device team_slave_0 added [ 725.604964][T10971] team0: Port device team_slave_1 added [ 725.708907][T10971] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 725.711951][T10971] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 725.732776][T10971] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 725.758183][T10971] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 725.761170][T10971] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 725.772425][T10971] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 725.821512][ T1107] bridge_slave_1: left allmulticast mode [ 725.824944][ T1107] bridge_slave_1: left promiscuous mode [ 725.829085][ T1107] bridge0: port 2(bridge_slave_1) entered disabled state [ 725.843788][ T1107] bridge_slave_0: left allmulticast mode [ 725.847222][ T1107] bridge_slave_0: left promiscuous mode [ 725.856725][ T1107] bridge0: port 1(bridge_slave_0) entered disabled state [ 726.143529][ T4772] Bluetooth: hci1: command tx timeout [ 726.738457][ T1107] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 726.750246][ T1107] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 726.767660][ T1107] bond0 (unregistering): Released all slaves [ 726.780473][ T1107] bond1 (unregistering): Released all slaves [ 726.904372][T11005] syz.1.1612[11005] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 726.904622][T11005] syz.1.1612[11005] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 727.079308][T10971] hsr_slave_0: entered promiscuous mode [ 727.105625][T10971] hsr_slave_1: entered promiscuous mode [ 727.112283][T10971] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 727.115446][T10971] Cannot create hsr debugfs directory [ 727.531411][ T1107] hsr_slave_0: left promiscuous mode [ 727.535177][ T1107] 1·: left promiscuous mode [ 727.538507][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 727.541662][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 727.553166][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 727.567467][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 727.725752][ T1107] veth1_macvtap: left promiscuous mode [ 727.728663][ T1107] veth0_macvtap: left promiscuous mode [ 727.731393][ T1107] veth1_vlan: left promiscuous mode [ 727.734422][ T1107] veth0_vlan: left promiscuous mode [ 727.894383][T11018] kvm: kvm [11017]: vcpu0, guest rIP: 0xfff0 Unhandled RDMSR(0x40000005) [ 728.206803][ T4772] Bluetooth: hci1: command tx timeout [ 728.916836][ T7531] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 729.106552][ T7531] usb 6-1: Using ep0 maxpacket: 8 [ 729.118068][ T7531] usb 6-1: config 0 has no interfaces? [ 729.120351][ T7531] usb 6-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 729.124167][ T7531] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 729.139065][ T7531] usb 6-1: config 0 descriptor?? [ 729.199075][ T66] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 729.204547][ T66] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 729.222177][ T66] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 729.232679][ T66] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 729.247368][ T66] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 729.251472][ T66] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 729.424105][ T7531] usb 6-1: USB disconnect, device number 11 [ 729.903895][ T1107] team0 (unregistering): Port device team_slave_1 removed [ 729.986619][ T5386] vhci_hcd: vhci_device speed not set [ 730.152551][ T1107] team0 (unregistering): Port device team_slave_0 removed [ 730.217439][T11039] RDS: rds_bind could not find a transport for 2001::1, load rds_tcp or rds_rdma? [ 730.298071][ T66] Bluetooth: hci1: command tx timeout [ 731.104713][ C3] vkms_vblank_simulate: vblank timer overrun [ 731.327458][ T66] Bluetooth: hci4: command tx timeout [ 731.647706][T11042] netlink: 'syz.1.1622': attribute type 21 has an invalid length. [ 731.657178][T11047] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1622'. [ 732.370236][ T66] Bluetooth: hci1: command tx timeout [ 732.590663][T11034] chnl_net:caif_netlink_parms(): no params data found [ 732.621688][T11071] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1629'. [ 732.725094][T11071] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1629'. [ 732.795350][T11071] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1629'. [ 732.801924][T11071] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1629'. [ 732.808236][T11071] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1629'. [ 732.933365][T11071] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1629'. [ 732.962070][T11071] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1629'. [ 732.983158][T11071] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1629'. [ 733.024162][T11034] bridge0: port 1(bridge_slave_0) entered blocking state [ 733.027749][T11034] bridge0: port 1(bridge_slave_0) entered disabled state [ 733.030974][T11034] bridge_slave_0: entered allmulticast mode [ 733.035012][T11034] bridge_slave_0: entered promiscuous mode [ 733.063580][T11071] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1629'. [ 733.071285][T11034] bridge0: port 2(bridge_slave_1) entered blocking state [ 733.074748][T11034] bridge0: port 2(bridge_slave_1) entered disabled state [ 733.078469][T11034] bridge_slave_1: entered allmulticast mode [ 733.083084][T11034] bridge_slave_1: entered promiscuous mode [ 733.183927][T11034] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 733.196965][T11034] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 733.201207][T10971] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 733.263285][T10971] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 733.351796][T11034] team0: Port device team_slave_0 added [ 733.376618][T10971] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 733.387165][T10971] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 733.411942][T11034] team0: Port device team_slave_1 added [ 733.416617][ T66] Bluetooth: hci4: command tx timeout [ 733.532152][T11034] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 733.535204][T11034] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 733.574559][ C3] vkms_vblank_simulate: vblank timer overrun [ 733.591167][T11034] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 733.659599][T11034] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 733.663172][T11034] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 733.696511][T11034] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 733.919937][T11034] hsr_slave_0: entered promiscuous mode [ 733.923294][T11034] hsr_slave_1: entered promiscuous mode [ 733.928394][T11034] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 733.931555][T11034] Cannot create hsr debugfs directory [ 733.991817][T11097] netlink: 'syz.1.1632': attribute type 21 has an invalid length. [ 734.189490][T10971] 8021q: adding VLAN 0 to HW filter on device bond0 [ 734.402326][T10971] 8021q: adding VLAN 0 to HW filter on device team0 [ 734.509010][T11110] Bluetooth: MGMT ver 1.23 [ 734.513210][T11034] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 734.539920][ T5411] bridge0: port 1(bridge_slave_0) entered blocking state [ 734.542945][ T5411] bridge0: port 1(bridge_slave_0) entered forwarding state [ 734.563962][ T5411] bridge0: port 2(bridge_slave_1) entered blocking state [ 734.567375][ T5411] bridge0: port 2(bridge_slave_1) entered forwarding state [ 734.699072][T11034] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 734.811188][T11034] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 734.977710][T11034] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 735.026224][T10971] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 735.140353][T10971] veth0_vlan: entered promiscuous mode [ 735.149158][T10971] veth1_vlan: entered promiscuous mode [ 735.351366][T11034] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 735.406437][T11034] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 735.416000][T11034] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 735.426362][T11034] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 735.460103][T10971] veth0_macvtap: entered promiscuous mode [ 735.487146][ T66] Bluetooth: hci4: command tx timeout [ 735.527336][T10971] veth1_macvtap: entered promiscuous mode [ 735.718635][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 735.723160][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 735.727586][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 735.756690][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 735.790696][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 735.800621][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 735.806126][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 735.829679][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 735.835230][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 735.843971][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 735.878652][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 735.890888][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 735.895814][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 735.914523][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 735.923140][T10971] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 735.960272][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 735.965250][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 735.972613][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 735.979788][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 735.984187][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 735.990475][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 735.994404][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 736.007001][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 736.011555][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 736.021020][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 736.031009][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 736.036210][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 736.045982][T10971] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 736.068931][T10971] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 736.090575][T10971] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 736.116994][T10971] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 736.122419][T10971] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 736.134439][T10971] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 736.140652][T10971] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 736.390476][T11034] 8021q: adding VLAN 0 to HW filter on device bond0 [ 736.481871][T11034] 8021q: adding VLAN 0 to HW filter on device team0 [ 736.520485][ T5386] bridge0: port 1(bridge_slave_0) entered blocking state [ 736.524554][ T5386] bridge0: port 1(bridge_slave_0) entered forwarding state [ 736.532007][ T5386] bridge0: port 2(bridge_slave_1) entered blocking state [ 736.535745][ T5386] bridge0: port 2(bridge_slave_1) entered forwarding state [ 736.555217][ T91] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 736.566230][ T91] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 736.611227][ T1107] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 736.614658][ T1107] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 736.640834][T11130] netlink: 'syz.1.1640': attribute type 21 has an invalid length. [ 736.789105][T11130] __nla_validate_parse: 11 callbacks suppressed [ 736.789123][T11130] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1640'. [ 736.900203][T11034] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 736.962532][ T39] audit: type=1326 audit(1722176925.406:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11142 comm="syz.2.1642" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x0 [ 736.973205][T11034] veth0_vlan: entered promiscuous mode [ 736.984332][T11034] veth1_vlan: entered promiscuous mode [ 737.020199][T11034] veth0_macvtap: entered promiscuous mode [ 737.061447][T11034] veth1_macvtap: entered promiscuous mode [ 737.085124][T11034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 737.091679][T11034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 737.096351][T11034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 737.101858][T11034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 737.104549][T11146] netlink: 'syz.1.1643': attribute type 1 has an invalid length. [ 737.106200][T11034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 737.115049][T11034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 737.119977][T11034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 737.124561][T11034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 737.132429][T11034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 737.137483][T11034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 737.141843][T11034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 737.146237][T11034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 737.154450][T11034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 737.161259][T11034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 737.165694][T11034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 737.171483][T11034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 737.179733][T11034] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 737.189426][T11034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 737.193755][T11034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 737.198899][T11034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 737.204132][T11034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 737.212722][T11034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 737.218001][T11034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 737.222483][T11034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 737.227465][T11034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 737.231798][T11034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 737.236420][T11034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 737.241758][T11034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 737.247803][T11034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 737.252738][T11034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 737.258141][T11034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 737.262700][T11034] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 737.268777][T11034] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 737.277051][T11034] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 737.313136][T11034] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 737.317223][T11034] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 737.320972][T11034] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 737.325198][T11034] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 737.386420][ T5411] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 737.483495][ T1177] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 737.494939][ T1177] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 737.521623][ T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 737.530851][ T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 737.559221][T11156] netlink: 'syz.3.1647': attribute type 3 has an invalid length. [ 737.562740][T11156] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1647'. [ 737.568655][ T66] Bluetooth: hci4: command tx timeout [ 737.569189][ T5411] usb 7-1: Using ep0 maxpacket: 8 [ 737.618133][ T5411] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 737.621869][ T5411] usb 7-1: config 0 has no interface number 0 [ 737.625099][ T5411] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 737.646542][ T5411] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 737.655558][ T5411] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 737.669869][ T5411] usb 7-1: config 0 descriptor?? [ 737.677848][ T5411] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 738.027102][ T5386] usb 7-1: USB disconnect, device number 9 [ 738.027227][ C1] iowarrior 7-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19 [ 738.039109][T11169] iowarrior 7-1:0.1: Error -19 while submitting URB [ 738.042382][ T5386] iowarrior 7-1:0.1: I/O-Warror #0 now disconnected [ 738.215016][T11175] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1651'. [ 738.259572][T11179] kernel profiling enabled (shift: 9) [ 738.347622][T11181] overlayfs: failed to resolve './file0/file0': -2 [ 740.550942][T11214] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1666'. [ 741.014259][ T39] audit: type=1326 audit(1722176929.456:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11234 comm="syz.3.1675" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x0 [ 741.676966][ T7415] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 741.876622][ T7415] usb 7-1: Using ep0 maxpacket: 8 [ 741.957467][ T7415] usb 7-1: config index 0 descriptor too short (expected 301, got 45) [ 741.961380][ T7415] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 741.967364][ T7415] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 741.971471][ T7415] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 741.975600][ T7415] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 742.045949][T11246] netlink: 248 bytes leftover after parsing attributes in process `syz.1.1677'. [ 742.054523][ T7415] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 742.058934][ T7415] usb 7-1: New USB device strings: Mfr=0, Product=64, SerialNumber=0 [ 742.062968][ T7415] usb 7-1: Product: syz [ 742.417227][ T7415] usb 7-1: usb_control_msg returned -32 [ 742.420194][ T7415] usbtmc 7-1:16.0: can't read capabilities [ 742.820243][T11244] usbtmc 7-1:16.0: usb_control_msg returned -32 [ 743.285811][ T5411] usb 7-1: USB disconnect, device number 10 [ 745.667475][T11296] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1691'. [ 747.218802][T11320] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1698'. [ 752.690359][ T1377] ieee802154 phy0 wpan0: encryption failed: -22 [ 752.693248][ T1377] ieee802154 phy1 wpan1: encryption failed: -22 [ 752.793851][ T4772] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 752.801452][ T4772] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 752.807227][ T4772] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 752.812427][ T4772] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 752.816415][ T4772] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 752.820124][ T4772] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 753.124096][T11395] chnl_net:caif_netlink_parms(): no params data found [ 753.346587][ T7888] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 753.354021][T11395] bridge0: port 1(bridge_slave_0) entered blocking state [ 753.374427][T11395] bridge0: port 1(bridge_slave_0) entered disabled state [ 753.386835][T11395] bridge_slave_0: entered allmulticast mode [ 753.391269][T11395] bridge_slave_0: entered promiscuous mode [ 753.399213][T11395] bridge0: port 2(bridge_slave_1) entered blocking state [ 753.403364][T11395] bridge0: port 2(bridge_slave_1) entered disabled state [ 753.412119][T11395] bridge_slave_1: entered allmulticast mode [ 753.416382][T11395] bridge_slave_1: entered promiscuous mode [ 753.511747][T11395] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 753.522520][T11395] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 753.536529][ T7888] usb 5-1: Using ep0 maxpacket: 8 [ 753.547980][ T7888] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 753.552991][ T7888] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 753.563126][ T7888] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 753.573255][ T7888] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 753.586542][ T7888] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 753.590712][ T7888] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 753.637113][ T7710] usb 7-1: new high-speed USB device number 11 using dummy_hcd [ 753.655734][T11395] team0: Port device team_slave_0 added [ 753.671352][T11395] team0: Port device team_slave_1 added [ 753.736626][ T39] audit: type=1326 audit(1722176942.176:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.3.1734" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7fc00000 [ 753.749773][T11395] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 753.752776][T11395] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 753.772521][T11395] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 753.779658][T11395] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 753.782580][T11395] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 753.794874][T11395] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 753.811327][ T39] audit: type=1326 audit(1722176942.256:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.3.1734" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7fc00000 [ 753.820470][ T7888] usb 5-1: usb_control_msg returned -32 [ 753.822803][ T7888] usbtmc 5-1:16.0: can't read capabilities [ 753.828634][ T7710] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 753.833274][ T7710] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 753.833521][ T39] audit: type=1326 audit(1722176942.276:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11425 comm="syz.3.1734" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f65579 code=0x7fc00000 [ 753.843286][ T7710] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 753.874211][ T7710] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 753.898141][T11418] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 753.912691][ T7710] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 753.954912][T11395] hsr_slave_0: entered promiscuous mode [ 753.970350][T11395] hsr_slave_1: entered promiscuous mode [ 753.987708][T11395] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 753.991498][T11395] Cannot create hsr debugfs directory [ 754.210249][ T7415] usb 7-1: USB disconnect, device number 11 [ 754.464263][T11395] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 754.576406][T11395] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 754.700747][T11395] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 754.847748][ T4772] Bluetooth: hci5: command tx timeout [ 754.867805][T11395] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 755.140723][T11395] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 755.149082][T11395] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 755.161770][T11395] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 755.178087][T11395] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 755.321808][T11395] 8021q: adding VLAN 0 to HW filter on device bond0 [ 755.344761][T11395] 8021q: adding VLAN 0 to HW filter on device team0 [ 755.355121][ T4766] bridge0: port 1(bridge_slave_0) entered blocking state [ 755.358215][ T4766] bridge0: port 1(bridge_slave_0) entered forwarding state [ 755.371029][ T4766] bridge0: port 2(bridge_slave_1) entered blocking state [ 755.374136][ T4766] bridge0: port 2(bridge_slave_1) entered forwarding state [ 755.591201][T11395] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 755.638998][T11395] veth0_vlan: entered promiscuous mode [ 755.650564][T11395] veth1_vlan: entered promiscuous mode [ 755.683484][T11395] veth0_macvtap: entered promiscuous mode [ 755.690596][T11395] veth1_macvtap: entered promiscuous mode [ 755.704546][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 755.712253][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.716760][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 755.721516][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.725536][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 755.730650][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.734786][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 755.739487][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.743175][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 755.748460][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.752342][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 755.756203][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.761064][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 755.765286][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.769756][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 755.774282][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.779546][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 755.783494][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.789591][T11395] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 755.801124][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 755.806095][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.810518][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 755.815411][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.830688][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 755.844114][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.848546][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 755.853077][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.868471][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 755.875475][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.887020][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 755.891641][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.896369][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 755.911034][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.921765][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 755.930251][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.934603][T11395] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 755.946216][T11395] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 755.952935][T11395] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 755.970370][T11395] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 755.974412][T11395] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 755.980575][T11395] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 755.985486][T11395] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 756.061206][ T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 756.072999][ T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 756.099477][ T7876] usb 5-1: USB disconnect, device number 16 [ 756.135081][ T1101] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 756.147003][ T1101] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 756.326548][ T39] audit: type=1804 audit(1722176944.756:171): pid=11468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1747" name="/newroot/28/bus/bus" dev="overlay" ino=174 res=1 errno=0 [ 756.350508][T11468] Invalid ELF header magic: != ELF [ 756.535442][T11472] sp0: Synchronizing with TNC [ 756.927389][ T4772] Bluetooth: hci5: command tx timeout [ 759.016839][ T4772] Bluetooth: hci5: command tx timeout [ 759.158650][ T5411] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 759.348051][ T5411] usb 6-1: Using ep0 maxpacket: 8 [ 759.364737][ T5411] usb 6-1: config 0 has an invalid interface number: 1 but max is 0 [ 759.370279][ T5411] usb 6-1: config 0 has no interface number 0 [ 759.372886][ T5411] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 759.379633][ T5411] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 759.389877][ T5411] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 759.405848][ T5411] usb 6-1: config 0 descriptor?? [ 759.423135][ T5411] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 759.670685][ T5411] usb 6-1: USB disconnect, device number 12 [ 759.710068][ T5411] iowarrior 6-1:0.1: I/O-Warror #0 now disconnected [ 760.704166][T11545] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1773'. [ 761.087809][ T4772] Bluetooth: hci5: command tx timeout [ 761.337648][ T39] audit: type=1326 audit(1722176949.776:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11555 comm="syz.2.1777" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7fc00000 [ 761.429182][ T39] audit: type=1326 audit(1722176949.876:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11555 comm="syz.2.1777" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf742e579 code=0x7fc00000 [ 762.000521][ T39] audit: type=1326 audit(1722176950.446:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11555 comm="syz.2.1777" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7fc00000 [ 762.061685][ T5386] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 762.266783][ T5386] usb 5-1: Using ep0 maxpacket: 8 [ 762.270756][ T5386] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 762.274400][ T5386] usb 5-1: config 0 has no interface number 0 [ 762.277902][ T5386] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 762.282985][ T5386] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 762.305312][ T5386] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 762.310533][ T5386] usb 5-1: config 0 descriptor?? [ 762.316670][ T5386] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 762.542644][T11571] sp0: Synchronizing with TNC [ 762.621440][ T5382] usb 5-1: USB disconnect, device number 17 [ 762.629487][ T5382] iowarrior 5-1:0.1: I/O-Warror #0 now disconnected [ 763.073657][T11577] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1782'. [ 763.541797][T11590] devtmpfs: Bad value for 'mpol' [ 763.862371][T11602] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1793'. [ 764.070497][ T39] audit: type=1400 audit(1722176952.516:175): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=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 [ 764.828811][T11617] devtmpfs: Bad value for 'mpol' [ 765.673577][T11633] netlink: 'syz.2.1805': attribute type 1 has an invalid length. [ 765.678284][T11633] netlink: 9352 bytes leftover after parsing attributes in process `syz.2.1805'. [ 765.686077][T11633] netlink: 'syz.2.1805': attribute type 1 has an invalid length. [ 765.692113][T11633] netlink: 'syz.2.1805': attribute type 2 has an invalid length. [ 765.695341][T11633] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1805'. [ 765.719314][T11633] xt_TCPMSS: Only works on TCP SYN packets [ 765.987606][ T39] audit: type=1400 audit(1722176954.436:176): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=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 [ 766.106613][ T7888] usb 7-1: new high-speed USB device number 12 using dummy_hcd [ 766.379221][ T7888] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 766.383597][ T7888] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 766.391458][ T7888] usb 7-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 766.399464][ T7888] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 766.404359][ T7888] usb 7-1: SerialNumber: syz [ 766.646012][ T7888] usb 7-1: 0:2 : does not exist [ 766.649126][ T7888] usb 7-1: unit 255 not found! [ 766.669967][ T7888] usb 7-1: USB disconnect, device number 12 [ 766.680491][T11642] devtmpfs: Bad value for 'mpol' [ 766.873861][ T39] audit: type=1326 audit(1722176955.316:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11643 comm="syz.0.1810" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7fc00000 [ 766.897530][T11433] udevd[11433]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 766.943779][ T39] audit: type=1326 audit(1722176955.386:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11643 comm="syz.0.1810" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf73be579 code=0x7fc00000 [ 767.271801][T11658] netlink: 'syz.3.1815': attribute type 1 has an invalid length. [ 767.275457][T11658] netlink: 9352 bytes leftover after parsing attributes in process `syz.3.1815'. [ 767.280836][T11658] netlink: 'syz.3.1815': attribute type 1 has an invalid length. [ 767.284802][T11658] netlink: 'syz.3.1815': attribute type 2 has an invalid length. [ 767.288704][T11658] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1815'. [ 767.334676][T11658] xt_TCPMSS: Only works on TCP SYN packets [ 767.598272][ T39] audit: type=1326 audit(1722176956.036:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11643 comm="syz.0.1810" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73be579 code=0x7fc00000 [ 767.643885][T11665] netlink: 'syz.3.1816': attribute type 4 has an invalid length. [ 767.667030][T11670] netlink: 'syz.3.1816': attribute type 4 has an invalid length. [ 767.972814][T11680] devtmpfs: Bad value for 'mpol' [ 768.658186][T11684] EXT4-fs (sda1): resizing filesystem from 262144 to 262144 blocks [ 769.090377][T11701] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1828'. [ 771.122586][ C3] vkms_vblank_simulate: vblank timer overrun [ 772.442260][T11755] sp0: Synchronizing with TNC [ 772.993851][T11760] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1844'. [ 773.299492][T11768] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1847'. [ 773.628278][ C3] vkms_vblank_simulate: vblank timer overrun [ 776.823870][T11797] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1854'. [ 777.521132][T11801] netlink: 'syz.0.1855': attribute type 4 has an invalid length. [ 777.612823][T11786] lo speed is unknown, defaulting to 1000 [ 777.659185][T11800] dvmrp0: entered allmulticast mode [ 777.665438][T11786] lo speed is unknown, defaulting to 1000 [ 777.685259][T11786] lo speed is unknown, defaulting to 1000 [ 777.945944][T11786] infiniband syz1: set active [ 777.950791][ T5404] lo speed is unknown, defaulting to 1000 [ 777.953861][T11786] infiniband syz1: added lo [ 777.961976][T11786] syz1: rxe_create_cq: returned err = -12 [ 777.965127][T11786] infiniband syz1: Couldn't create ib_mad CQ [ 777.968885][T11786] infiniband syz1: Couldn't open port 1 [ 778.005263][T11786] RDS/IB: syz1: added [ 778.009442][T11786] smc: adding ib device syz1 with port count 1 [ 778.012553][T11786] smc: ib device syz1 port 1 has pnetid [ 778.018230][ T5404] lo speed is unknown, defaulting to 1000 [ 778.025732][T11786] lo speed is unknown, defaulting to 1000 [ 778.241772][T11786] lo speed is unknown, defaulting to 1000 [ 778.418577][T11786] lo speed is unknown, defaulting to 1000 [ 778.581698][T11786] lo speed is unknown, defaulting to 1000 [ 778.739452][T11786] lo speed is unknown, defaulting to 1000 [ 778.888349][T11786] lo speed is unknown, defaulting to 1000 [ 778.904180][T11826] netlink: 204 bytes leftover after parsing attributes in process `syz.0.1861'. [ 779.040313][T11786] lo speed is unknown, defaulting to 1000 [ 779.240090][T11786] lo speed is unknown, defaulting to 1000 [ 779.485826][T11786] lo speed is unknown, defaulting to 1000 [ 779.790636][T11786] lo speed is unknown, defaulting to 1000 [ 780.121165][T11834] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1865'. [ 785.417352][T11887] syz.3.1882 (11887): /proc/11886/oom_adj is deprecated, please use /proc/11886/oom_score_adj instead. [ 785.736093][ T1107] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 785.896301][ T1107] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 786.192796][ T1107] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 786.571692][ T1107] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 786.741712][T11894] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1884'. [ 787.277327][ T66] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 787.304861][ T66] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 787.309411][ T66] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 787.330574][ T66] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 787.337933][ T66] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 787.347932][ T66] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 789.424952][ T66] Bluetooth: hci5: command tx timeout [ 791.013823][ T1107] bridge_slave_1: left allmulticast mode [ 791.026513][ T1107] bridge_slave_1: left promiscuous mode [ 791.029368][ T1107] bridge0: port 2(bridge_slave_1) entered disabled state [ 791.035802][ T1107] bridge_slave_0: left allmulticast mode [ 791.038490][ T1107] bridge_slave_0: left promiscuous mode [ 791.041898][ T1107] bridge0: port 1(bridge_slave_0) entered disabled state [ 791.509285][ T66] Bluetooth: hci5: command tx timeout [ 792.017181][ T1107] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 792.076859][ T1107] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 792.111584][ T1107] bond0 (unregistering): Released all slaves [ 792.311335][T11911] lo speed is unknown, defaulting to 1000 [ 793.286631][ T1107] hsr_slave_0: left promiscuous mode [ 793.308219][ T1107] hsr_slave_1: left promiscuous mode [ 793.366996][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 793.369848][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 793.389461][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 793.392418][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 793.500842][ T1107] veth1_macvtap: left promiscuous mode [ 793.504523][ T1107] veth0_macvtap: left promiscuous mode [ 793.507243][ T1107] veth1_vlan: left promiscuous mode [ 793.509516][ T1107] veth0_vlan: left promiscuous mode [ 793.555859][ T39] audit: type=1326 audit(1722176981.996:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11975 comm="syz.2.1904" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x0 [ 793.576932][ T66] Bluetooth: hci5: command tx timeout [ 794.213961][T11983] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.1906'. [ 794.226724][T11983] openvswitch: netlink: IP tunnel attribute has 3048 unknown bytes. [ 795.646644][ T66] Bluetooth: hci5: command tx timeout [ 796.527078][T12027] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.1925'. [ 796.540872][T12027] openvswitch: netlink: IP tunnel attribute has 3048 unknown bytes. [ 796.567662][ T1107] team0 (unregistering): Port device team_slave_1 removed [ 796.620233][T12021] syz1: rxe_newlink: already configured on lo [ 796.772143][ T1107] team0 (unregistering): Port device team_slave_0 removed [ 798.304653][T11994] netlink: 'syz.2.1911': attribute type 21 has an invalid length. [ 798.308427][T11994] netlink: 'syz.2.1911': attribute type 6 has an invalid length. [ 798.385578][T11911] chnl_net:caif_netlink_parms(): no params data found [ 798.696791][T11911] bridge0: port 1(bridge_slave_0) entered blocking state [ 798.699830][T11911] bridge0: port 1(bridge_slave_0) entered disabled state [ 798.703066][T11911] bridge_slave_0: entered allmulticast mode [ 798.710557][T11911] bridge_slave_0: entered promiscuous mode [ 798.742219][T11911] bridge0: port 2(bridge_slave_1) entered blocking state [ 798.747246][T11911] bridge0: port 2(bridge_slave_1) entered disabled state [ 798.756548][T11911] bridge_slave_1: entered allmulticast mode [ 798.761552][T11911] bridge_slave_1: entered promiscuous mode [ 798.766227][T12062] rdma_rxe: rxe_newlink: failed to add lo [ 798.852417][T11911] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 798.876442][T11911] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 798.975905][T11911] team0: Port device team_slave_0 added [ 798.985062][T11911] team0: Port device team_slave_1 added [ 799.086955][T11911] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 799.089907][T11911] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 799.106900][T11911] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 799.113839][T11911] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 799.118180][T11911] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 799.140083][T11911] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 799.267560][T11911] hsr_slave_0: entered promiscuous mode [ 799.275703][T11911] hsr_slave_1: entered promiscuous mode [ 799.282321][T11911] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 799.285624][T11911] Cannot create hsr debugfs directory [ 799.291639][T12081] netlink: 'syz.2.1942': attribute type 1 has an invalid length. [ 799.295162][T12081] netlink: 240 bytes leftover after parsing attributes in process `syz.2.1942'. [ 799.764135][T12088] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1943'. [ 799.976578][T12088] warn_alloc: 4 callbacks suppressed [ 799.976594][T12088] syz.2.1943: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1 [ 799.977071][T12088] CPU: 1 UID: 0 PID: 12088 Comm: syz.2.1943 Not tainted 6.10.0-syzkaller-12888-g5437f30d3458 #0 [ 799.977095][T12088] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 799.977107][T12088] Call Trace: [ 799.977115][T12088] [ 799.977123][T12088] dump_stack_lvl+0x16c/0x1f0 [ 799.977161][T12088] warn_alloc+0x24d/0x3a0 [ 799.977187][T12088] ? __pfx_warn_alloc+0x10/0x10 [ 799.977210][T12088] ? stack_depot_save_flags+0x28/0x900 [ 799.977239][T12088] ? kasan_save_stack+0x42/0x60 [ 799.977259][T12088] ? kasan_save_stack+0x33/0x60 [ 799.977276][T12088] ? kasan_save_track+0x14/0x30 [ 799.977293][T12088] ? __kasan_kmalloc+0xaa/0xb0 [ 799.977311][T12088] ? xskq_create+0x52/0x1d0 [ 799.977330][T12088] ? xsk_setsockopt+0x8b0/0xac0 [ 799.977349][T12088] ? __sys_setsockopt+0x1a4/0x270 [ 799.977367][T12088] ? __ia32_sys_setsockopt+0xbc/0x160 [ 799.977385][T12088] ? __do_fast_syscall_32+0x73/0x120 [ 799.977420][T12088] __vmalloc_node_range_noprof+0x10b8/0x1520 [ 799.977456][T12088] ? xskq_create+0xfb/0x1d0 [ 799.977481][T12088] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 799.977516][T12088] ? xskq_create+0xfb/0x1d0 [ 799.977538][T12088] vmalloc_user_noprof+0x6b/0x90 [ 799.977564][T12088] ? xskq_create+0xfb/0x1d0 [ 799.977585][T12088] xskq_create+0xfb/0x1d0 [ 799.977610][T12088] xsk_setsockopt+0x8b0/0xac0 [ 799.977631][T12088] ? __pfx_xsk_setsockopt+0x10/0x10 [ 799.977652][T12088] ? __pfx_aa_sk_perm+0x10/0x10 [ 799.977691][T12088] ? bpf_lsm_socket_setsockopt+0x9/0x10 [ 799.977712][T12088] ? __pfx_xsk_setsockopt+0x10/0x10 [ 799.977733][T12088] do_sock_setsockopt+0x222/0x480 [ 799.977757][T12088] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 799.977791][T12088] ? __fget_light+0x173/0x210 [ 799.977822][T12088] __sys_setsockopt+0x1a4/0x270 [ 799.977843][T12088] ? __pfx___sys_setsockopt+0x10/0x10 [ 799.977863][T12088] ? xfd_validate_state+0x5d/0x180 [ 799.977900][T12088] __ia32_sys_setsockopt+0xbc/0x160 [ 799.977918][T12088] ? lockdep_hardirqs_on+0x7c/0x110 [ 799.977944][T12088] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 799.977973][T12088] __do_fast_syscall_32+0x73/0x120 [ 799.978004][T12088] do_fast_syscall_32+0x32/0x80 [ 799.978023][T12088] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 799.978048][T12088] RIP: 0023:0xf742e579 [ 799.978063][T12088] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 799.978082][T12088] RSP: 002b:00000000f574657c EFLAGS: 00000292 ORIG_RAX: 000000000000016e [ 799.978102][T12088] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 000000000000011b [ 799.978115][T12088] RDX: 0000000000000002 RSI: 00000000200000c0 RDI: 0000000000000020 [ 799.978128][T12088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 799.978146][T12088] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 799.978159][T12088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 799.978185][T12088] [ 799.978194][T12088] Mem-Info: [ 799.978201][T12088] active_anon:3302 inactive_anon:6 isolated_anon:0 [ 799.978201][T12088] active_file:4769 inactive_file:20009 isolated_file:0 [ 799.978201][T12088] unevictable:826 dirty:379 writeback:0 [ 799.978201][T12088] slab_reclaimable:5369 slab_unreclaimable:78461 [ 799.978201][T12088] mapped:24717 shmem:849 pagetables:662 [ 799.978201][T12088] sec_pagetables:331 bounce:0 [ 799.978201][T12088] kernel_misc_reclaimable:0 [ 799.978201][T12088] free:86503 free_pcp:3926 free_cma:0 [ 799.978250][T12088] Node 0 active_anon:68kB inactive_anon:8kB active_file:4kB inactive_file:8kB unevictable:1768kB isolated(anon):0kB isolated(file):0kB mapped:6052kB dirty:8kB writeback:0kB shmem:2816kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10248kB pagetables:1428kB sec_pagetables:1264kB all_unreclaimable? no [ 799.978294][T12088] Node 1 active_anon:13140kB inactive_anon:16kB active_file:19072kB inactive_file:80028kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:92816kB dirty:1508kB writeback:0kB shmem:580kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2368kB pagetables:1220kB sec_pagetables:60kB all_unreclaimable? no [ 799.978341][T12088] Node 0 DMA free:920kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:4kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:120kB local_pcp:12kB free_cma:0kB [ 799.978391][T12088] lowmem_reserve[]: 0 369 0 0 0 [ 799.978427][T12088] Node 0 DMA32 free:27456kB boost:0kB min:18816kB low:23520kB high:28224kB reserved_highatomic:4096KB active_anon:0kB inactive_anon:4kB active_file:4kB inactive_file:8kB unevictable:1768kB writepending:8kB present:1032192kB managed:405704kB mlocked:236kB bounce:0kB free_pcp:1528kB local_pcp:464kB free_cma:0kB [ 799.978479][T12088] lowmem_reserve[]: 0 0 0 0 0 [ 799.978515][T12088] Node 1 DMA32 free:317636kB boost:2048kB min:49100kB low:60860kB high:72620kB reserved_highatomic:2048KB active_anon:13140kB inactive_anon:16kB active_file:19072kB inactive_file:80028kB unevictable:1536kB writepending:1508kB present:1048436kB managed:946208kB mlocked:0kB bounce:0kB free_pcp:14056kB local_pcp:11504kB free_cma:0kB [ 799.978565][T12088] lowmem_reserve[]: 0 0 0 0 0 [ 799.978602][T12088] Node 0 DMA: 13*4kB (U) 1*8kB (U) 17*16kB (U) 20*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 972kB [ 799.978793][T12088] Node 0 DMA32: 75*4kB (UMEH) 156*8kB (UME) 180*16kB (UMEH) 144*32kB (UMEH) 91*64kB (UMEH) 30*128kB (UMEH) 13*256kB (UMH) 5*512kB (UMH) 1*1024kB (H) 1*2048kB (M) 0*4096kB = 27660kB [ 799.978955][T12088] Node 1 DMA32: 2*4kB (UE) 74*8kB (UME) 7*16kB (UE) 306*32kB (UME) 484*64kB (UME) 776*128kB (UME) 314*256kB (UM) 46*512kB (UM) 15*1024kB (M) 10*2048kB (MH) 9*4096kB (UM) = 317448kB [ 799.979120][T12088] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 799.979136][T12088] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 799.979158][T12088] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 799.979174][T12088] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 799.979190][T12088] 26330 total pagecache pages [ 799.979198][T12088] 652 pages in swap cache [ 799.979206][T12088] Free swap = 113232kB [ 799.979213][T12088] Total swap = 124996kB [ 799.979221][T12088] 524155 pages RAM [ 799.979228][T12088] 0 pages HighMem/MovableOnly [ 799.979235][T12088] 182337 pages reserved [ 799.979242][T12088] 0 pages cma reserved [ 800.848506][T11911] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 800.871993][T11911] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 800.889884][T11911] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 800.902884][T11911] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 801.015958][T11911] 8021q: adding VLAN 0 to HW filter on device bond0 [ 801.060146][T11911] 8021q: adding VLAN 0 to HW filter on device team0 [ 801.093256][ T7876] bridge0: port 1(bridge_slave_0) entered blocking state [ 801.096399][ T7876] bridge0: port 1(bridge_slave_0) entered forwarding state [ 801.108952][ T7876] bridge0: port 2(bridge_slave_1) entered blocking state [ 801.112029][ T7876] bridge0: port 2(bridge_slave_1) entered forwarding state [ 801.490584][T11911] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 801.562921][T11911] veth0_vlan: entered promiscuous mode [ 801.584104][T11911] veth1_vlan: entered promiscuous mode [ 801.632924][T11911] veth0_macvtap: entered promiscuous mode [ 801.648373][T11911] veth1_macvtap: entered promiscuous mode [ 801.691369][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 801.695437][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.709015][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 801.713657][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.736508][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 801.740934][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.745149][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 801.749981][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.754163][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 801.759642][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.763680][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 801.769721][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.773859][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 801.779037][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.783368][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 801.788398][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.792834][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 801.797454][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.803359][T11911] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 801.807205][ T8465] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 801.813590][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 801.818985][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.823078][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 801.828956][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.833000][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 801.838044][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.842325][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 801.847651][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.851855][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 801.856778][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.861492][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 801.865212][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.874679][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 801.879597][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.883495][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 801.895639][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.903859][T11911] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 801.913946][T11911] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 801.920304][T11911] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 801.933121][T11911] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 801.938552][T11911] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 801.942453][T11911] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 801.950180][T11911] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 802.008391][ T8465] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 802.036640][ T8465] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 802.102103][ T8465] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 802.106215][ T8465] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 802.114956][ T91] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 802.118532][ T91] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 802.126280][ T8465] usb 5-1: SerialNumber: syz [ 802.150006][ T8465] usb 5-1: bad CDC descriptors [ 802.194583][ T91] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 802.207537][ T91] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 802.397150][ T5411] usb 5-1: USB disconnect, device number 18 [ 802.729195][T12184] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1958'. [ 803.547406][T12201] ubi0: attaching mtd0 [ 803.552022][T12201] ubi0: scanning is finished [ 803.554032][T12201] ubi0: empty MTD device detected [ 803.646657][T12201] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 803.650066][T12201] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 803.653258][T12201] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 803.657449][T12201] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 803.660713][T12201] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 803.663832][T12201] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 803.668393][T12201] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2919530542 [ 803.672972][T12201] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 803.678765][T12205] ubi0: background thread "ubi_bgt0d" started, PID 12205 [ 803.888237][ T5386] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 804.064211][ T7531] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 805.087185][ T5404] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 805.097107][ T7531] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 805.327107][ T4766] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 805.885754][T12251] lo speed is unknown, defaulting to 1000 [ 806.126966][ T5386] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 806.136896][ T8465] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 806.466758][ T8465] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 806.928237][ T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 807.167022][ T5404] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 807.282487][ T1107] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 807.387528][ T1107] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 807.486955][ T5386] kernel read not supported for file /dsp (pid: 5386 comm: kworker/3:4) [ 807.486964][ T1107] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 807.537328][ T4772] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 807.556205][ T4772] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 807.593420][ T1107] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 807.596576][ T4772] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 807.607720][ T4772] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 807.613886][ T4772] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 807.629491][ T4772] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 807.680572][T12275] lo speed is unknown, defaulting to 1000 [ 807.786786][ T1107] bridge_slave_1: left allmulticast mode [ 807.789331][ T1107] bridge_slave_1: left promiscuous mode [ 807.793513][ T1107] bridge0: port 2(bridge_slave_1) entered disabled state [ 807.835004][ T1107] bridge_slave_0: left allmulticast mode [ 807.838551][ T1107] bridge_slave_0: left promiscuous mode [ 807.842954][ T1107] bridge0: port 1(bridge_slave_0) entered disabled state [ 807.856349][T12279] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1994'. [ 807.876525][T12279] netlink: 43 bytes leftover after parsing attributes in process `syz.2.1994'. [ 807.886915][T12279] netlink: 'syz.2.1994': attribute type 5 has an invalid length. [ 807.890720][T12279] netlink: 43 bytes leftover after parsing attributes in process `syz.2.1994'. [ 808.477367][ T1107] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 808.510355][ T1107] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 808.520696][ T1107] bond0 (unregistering): Released all slaves [ 808.688963][T12293] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1996'. [ 809.145208][T12275] chnl_net:caif_netlink_parms(): no params data found [ 809.248986][ T7531] net_ratelimit: 3 callbacks suppressed [ 809.249002][ T7531] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 809.256935][ T8465] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 809.368260][ T1107] hsr_slave_0: left promiscuous mode [ 809.382092][ T1107] hsr_slave_1: left promiscuous mode [ 809.393514][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 809.398901][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 809.413000][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 809.416330][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 809.480710][T12311] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 809.494497][ T1107] veth1_macvtap: left promiscuous mode [ 809.507053][ T1107] veth0_macvtap: left promiscuous mode [ 809.507584][ T1107] veth1_vlan: left promiscuous mode [ 809.507954][ T1107] veth0_vlan: left promiscuous mode [ 809.567839][ T4766] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 809.656952][ T4772] Bluetooth: hci5: command tx timeout [ 809.975612][ T5411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 810.297076][ T8465] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 810.297092][ T7531] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 810.930813][ T5411] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 811.346872][ T5404] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 811.351620][ T7531] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 811.726920][ T4772] Bluetooth: hci5: command tx timeout [ 811.909842][ T1107] team0 (unregistering): Port device team_slave_1 removed [ 812.162978][ T1107] team0 (unregistering): Port device team_slave_0 removed [ 813.799818][T12275] bridge0: port 1(bridge_slave_0) entered blocking state [ 813.803964][T12275] bridge0: port 1(bridge_slave_0) entered disabled state [ 813.806671][ T4772] Bluetooth: hci5: command tx timeout [ 813.826912][T12275] bridge_slave_0: entered allmulticast mode [ 813.831297][T12275] bridge_slave_0: entered promiscuous mode [ 813.868427][T12275] bridge0: port 2(bridge_slave_1) entered blocking state [ 813.872033][T12275] bridge0: port 2(bridge_slave_1) entered disabled state [ 813.875242][T12275] bridge_slave_1: entered allmulticast mode [ 813.898176][T12275] bridge_slave_1: entered promiscuous mode [ 814.029427][T12275] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 814.041735][T12275] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 814.134358][ T1377] ieee802154 phy1 wpan1: encryption failed: -22 [ 814.230283][T12275] team0: Port device team_slave_0 added [ 814.247476][T12275] team0: Port device team_slave_1 added [ 814.306847][ T66] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 814.316772][ T66] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 814.324293][ T66] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 814.332532][ T66] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 814.336951][ T66] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 814.369667][ T66] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 814.427163][T12275] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 814.429925][T12275] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 814.442848][T12275] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 814.447229][ T5404] net_ratelimit: 9 callbacks suppressed [ 814.447243][ T5404] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 814.450439][T12275] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 814.462057][ T7531] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 814.486519][T12275] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 814.499441][T12275] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 814.675423][T12354] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2007'. [ 814.784651][ T1107] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 814.796899][ T39] audit: type=1326 audit(1722177499.249:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12357 comm="syz.2.2009" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x0 [ 814.827186][T12275] hsr_slave_0: entered promiscuous mode [ 814.841508][T12275] hsr_slave_1: entered promiscuous mode [ 814.845278][T12275] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 814.849011][T12275] Cannot create hsr debugfs directory [ 814.865974][T12344] lo speed is unknown, defaulting to 1000 [ 814.898086][T12360] 9pnet_rdma: rdma_create_trans (12360): problem binding to privport: 13 [ 814.975647][ T1107] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 815.064706][ T1107] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 815.199520][ T1107] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 815.332372][T12369] Cannot find add_set index 0 as target [ 815.482614][T12373] netlink: 178988 bytes leftover after parsing attributes in process `syz.0.2013'. [ 815.500291][ T5404] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 815.500327][ T5386] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 815.503750][T12373] netlink: zone id is out of range [ 815.503762][T12373] netlink: zone id is out of range [ 815.503769][T12373] netlink: zone id is out of range [ 815.503775][T12373] netlink: zone id is out of range [ 815.503780][T12373] netlink: zone id is out of range [ 815.503786][T12373] netlink: zone id is out of range [ 815.568945][ T1107] bridge_slave_1: left allmulticast mode [ 815.572106][ T1107] bridge_slave_1: left promiscuous mode [ 815.575907][ T1107] bridge0: port 2(bridge_slave_1) entered disabled state [ 815.887773][ T4772] Bluetooth: hci5: command tx timeout [ 816.459481][ T4772] Bluetooth: hci3: command tx timeout [ 816.558677][ T1107] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 816.569107][ T1107] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 816.581713][ T1107] bond0 (unregistering): Released all slaves [ 816.731972][ T1107] tipc: Disabling bearer [ 816.734769][ T1107] tipc: Left network mode [ 816.871798][T12344] chnl_net:caif_netlink_parms(): no params data found [ 817.207343][T12344] bridge0: port 1(bridge_slave_0) entered blocking state [ 817.216734][T12344] bridge0: port 1(bridge_slave_0) entered disabled state [ 817.221055][T12344] bridge_slave_0: entered allmulticast mode [ 817.243239][T12344] bridge_slave_0: entered promiscuous mode [ 817.256994][T12344] bridge0: port 2(bridge_slave_1) entered blocking state [ 817.259756][T12344] bridge0: port 2(bridge_slave_1) entered disabled state [ 817.262968][T12344] bridge_slave_1: entered allmulticast mode [ 817.267048][T12344] bridge_slave_1: entered promiscuous mode [ 817.404887][T12344] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 817.433606][T12344] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 817.615458][T12408] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2017'. [ 817.634670][T12344] team0: Port device team_slave_0 added [ 817.693903][T12344] team0: Port device team_slave_1 added [ 817.915818][T12275] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 818.007623][ T1107] hsr_slave_0: left promiscuous mode [ 818.011585][ T1107] 0·: left promiscuous mode [ 818.015898][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 818.023525][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 818.038210][ T1107] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 818.041766][ T1107] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 818.109898][ T1107] veth1_macvtap: left promiscuous mode [ 818.112000][ T1107] veth0_macvtap: left promiscuous mode [ 818.114605][ T1107] veth1_vlan: left promiscuous mode [ 818.118078][ T1107] veth0_vlan: left promiscuous mode [ 818.423311][ T1107] infiniband syz1: set down [ 818.539986][ T4772] Bluetooth: hci3: command tx timeout [ 818.849536][T12416] 9pnet_rdma: rdma_create_trans (12416): problem binding to privport: 13 [ 819.478888][T12421] input: syz0 as /devices/virtual/input/input25 [ 819.608432][T12423] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2022'. [ 819.650070][ T7888] net_ratelimit: 408 callbacks suppressed [ 819.650086][ T7888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 819.653069][ T8465] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 820.606582][ T4772] Bluetooth: hci3: command tx timeout [ 820.612223][ T1107] team0 (unregistering): Port device team_slave_1 removed [ 820.688228][ T7538] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 820.692342][ T7888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 820.820211][ T1107] team0 (unregistering): Port device C removed [ 821.176497][ T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 821.726792][ T7538] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 821.736579][ T57] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 821.740371][ T5386] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 822.134071][ T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 822.413736][ T75] smc: removing ib device syz1 [ 822.431683][T12344] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 822.434833][T12344] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 822.463158][ T5382] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 822.466130][T12344] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 822.519565][T12344] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 822.523490][T12344] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 822.542473][T12344] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 822.546634][ T39] audit: type=1400 audit(1722177506.979:182): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=12432 comm="syz.2.2024" [ 822.581633][T12275] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 822.588870][T12275] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 822.589919][ T5411] lo speed is unknown, defaulting to 1000 [ 822.671502][T12275] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 822.678231][T12435] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2025'. [ 822.687157][T12435] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2025'. [ 822.691501][T12435] (unnamed net_device) (uninitialized): Unable to set peer notification delay as MII monitoring is disabled [ 822.697429][ T4772] Bluetooth: hci3: command tx timeout [ 823.066082][T12344] hsr_slave_0: entered promiscuous mode [ 823.090413][T12344] hsr_slave_1: entered promiscuous mode [ 823.094441][T12344] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 823.098057][T12344] Cannot create hsr debugfs directory [ 823.693830][T12447] 9pnet_rdma: rdma_create_trans (12447): problem binding to privport: 13 [ 824.296535][T12275] 8021q: adding VLAN 0 to HW filter on device bond0 [ 824.354885][T12275] 8021q: adding VLAN 0 to HW filter on device team0 [ 824.397619][ T5382] bridge0: port 1(bridge_slave_0) entered blocking state [ 824.400838][ T5382] bridge0: port 1(bridge_slave_0) entered forwarding state [ 824.447623][ T5382] bridge0: port 2(bridge_slave_1) entered blocking state [ 824.451389][ T5382] bridge0: port 2(bridge_slave_1) entered forwarding state [ 824.600885][T12458] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2029'. [ 824.777696][ T5382] net_ratelimit: 6 callbacks suppressed [ 824.777707][ T5382] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 824.848084][ T7888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 824.853755][ T5404] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 825.168632][ T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 825.212953][T12344] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 825.230128][T12344] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 825.269019][T12344] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 825.334051][T12344] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 825.403080][T12275] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 825.541135][T12275] veth0_vlan: entered promiscuous mode [ 825.553294][T12344] 8021q: adding VLAN 0 to HW filter on device bond0 [ 825.560977][T12275] veth1_vlan: entered promiscuous mode [ 825.604724][T12344] 8021q: adding VLAN 0 to HW filter on device team0 [ 825.625236][ T5386] bridge0: port 1(bridge_slave_0) entered blocking state [ 825.628412][ T5386] bridge0: port 1(bridge_slave_0) entered forwarding state [ 825.678750][T12275] veth0_macvtap: entered promiscuous mode [ 825.686020][ T7888] bridge0: port 2(bridge_slave_1) entered blocking state [ 825.689197][ T7888] bridge0: port 2(bridge_slave_1) entered forwarding state [ 825.788262][T12275] veth1_macvtap: entered promiscuous mode [ 825.861703][T12344] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 825.874611][T12275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 825.879668][T12275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 825.883997][T12275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 825.889368][ T7888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 825.890491][ T8465] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 825.901732][T12275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 825.905745][T12275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 825.922653][T12275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 825.942317][T12275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 825.946349][T12275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 825.950428][T12275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 825.961317][T12275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 825.965890][T12275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 825.972507][T12275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 825.977717][T12275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 825.983829][T12275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 825.988885][T12275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 825.994405][T12275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.004352][T12275] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 826.011100][T12275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 826.016937][T12275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.022195][T12275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 826.026599][T12275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.030577][T12275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 826.034855][T12275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.038362][T12275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 826.042522][T12275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.046587][T12275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 826.062841][T12275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.067127][T12275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 826.072153][T12275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.076055][T12275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 826.080820][T12275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.085466][T12275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 826.090671][T12275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 826.102299][T12275] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 826.188191][T12275] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 826.191950][T12275] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 826.195432][T12275] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 826.214799][T12275] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 826.607425][ T91] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 826.636513][ T91] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 826.690741][T12344] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 826.773550][ T7539] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 826.789225][ T7539] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 826.839409][T12511] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2033'. [ 826.843586][T12511] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2033'. [ 826.850431][T12511] (unnamed net_device) (uninitialized): Unable to set peer notification delay as MII monitoring is disabled [ 826.937735][T12344] veth0_vlan: entered promiscuous mode [ 826.938015][ T8465] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 826.958241][ T7531] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 826.964148][T12517] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 826.985526][T12517] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 827.009254][T12344] veth1_vlan: entered promiscuous mode [ 827.209890][T12344] veth0_macvtap: entered promiscuous mode [ 827.290338][T12344] veth1_macvtap: entered promiscuous mode [ 827.418732][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 827.422684][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.436116][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 827.442584][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.452430][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 827.457378][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.466769][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 827.471319][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.476086][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 827.497024][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.502294][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 827.508077][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.514612][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 827.528297][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.532626][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 827.537917][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.542529][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 827.547436][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.555516][T12344] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 827.578591][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 827.582912][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.586397][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 827.591283][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.595585][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 827.600484][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.606566][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 827.610668][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.614690][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 827.619362][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.624284][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 827.629030][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.633274][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 827.638585][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.642973][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 827.647794][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.652220][T12344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 827.657436][T12344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 827.668398][T12344] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 827.689566][T12344] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 827.693884][T12344] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 827.716557][T12344] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 827.720399][T12344] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 827.792894][T12540] serio: Serial port pts1 [ 828.017746][ T91] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 828.021198][ T91] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 828.062902][ T1107] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 828.066360][ T1107] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 830.047094][ T5386] net_ratelimit: 20 callbacks suppressed [ 830.047111][ T5386] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 830.059804][ T8465] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 830.461263][ T1177] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 830.749818][T12600] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2064'. [ 830.776981][ T5331] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 830.853575][ T57] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 830.928960][ T66] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 830.938664][ T66] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 830.958673][ T66] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 830.964051][ T66] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 830.975095][ T66] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 830.979790][ T66] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 831.087098][ T8465] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 831.087371][ T7888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 831.250826][ T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 831.331304][T12604] chnl_net:caif_netlink_parms(): no params data found [ 831.599582][ T1177] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 831.701233][ T1177] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 831.723465][T12604] bridge0: port 1(bridge_slave_0) entered blocking state [ 831.736659][T12604] bridge0: port 1(bridge_slave_0) entered disabled state [ 831.746805][T12604] bridge_slave_0: entered allmulticast mode [ 831.751019][T12604] bridge_slave_0: entered promiscuous mode [ 831.762356][T12604] bridge0: port 2(bridge_slave_1) entered blocking state [ 831.766696][T12604] bridge0: port 2(bridge_slave_1) entered disabled state [ 831.770053][T12604] bridge_slave_1: entered allmulticast mode [ 831.798109][T12604] bridge_slave_1: entered promiscuous mode [ 831.897570][ T1177] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 831.910253][T12604] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 831.929825][T12604] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 832.059256][ T57] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 832.068767][T12604] team0: Port device team_slave_0 added [ 832.075620][T12604] team0: Port device team_slave_1 added [ 832.127310][ T8465] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 832.127630][ T7888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 832.148824][T12604] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 832.151946][T12604] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 832.162826][T12604] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 832.169654][T12604] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 832.172512][T12604] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 832.184002][T12604] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 832.379415][ T113] ================================================================== [ 832.383524][ T113] BUG: KASAN: slab-use-after-free in folio_evictable+0x7b/0x270 [ 832.386901][ T113] Read of size 8 at addr ffff88801e1e4ca0 by task kswapd0/113 [ 832.390456][ T113] [ 832.391555][ T113] CPU: 3 UID: 0 PID: 113 Comm: kswapd0 Not tainted 6.10.0-syzkaller-12888-g5437f30d3458 #0 [ 832.397938][ T113] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 832.402597][ T113] Call Trace: [ 832.404145][ T113] [ 832.405451][ T113] dump_stack_lvl+0x116/0x1f0 [ 832.407469][ T113] print_report+0xc3/0x620 [ 832.409438][ T113] ? __virt_addr_valid+0x5e/0x590 [ 832.411645][ T113] ? __phys_addr+0xc6/0x150 [ 832.413645][ T113] kasan_report+0xd9/0x110 [ 832.415609][ T113] ? folio_evictable+0x7b/0x270 [ 832.417753][ T113] ? folio_evictable+0x7b/0x270 [ 832.419927][ T113] kasan_check_range+0xef/0x1a0 [ 832.422036][ T113] folio_evictable+0x7b/0x270 [ 832.424112][ T113] isolate_folios+0xd0d/0x35b0 [ 832.425832][ T113] ? __pfx_isolate_folios+0x10/0x10 [ 832.427941][ T113] ? lock_acquire+0x1b1/0x560 [ 832.430037][ T113] ? __pfx_lock_acquire+0x10/0x10 [ 832.432226][ T113] ? __pfx_mark_lock+0x10/0x10 [ 832.434247][ T113] ? do_raw_spin_lock+0x12d/0x2c0 [ 832.436405][ T113] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 832.438666][ T113] evict_folios+0x19c/0x1b30 [ 832.440710][ T113] ? hlock_class+0x4e/0x130 [ 832.442508][ T113] ? mark_lock+0xb5/0xc60 [ 832.444179][ T113] ? hlock_class+0x4e/0x130 [ 832.446114][ T113] ? __lock_acquire+0x1620/0x3cb0 [ 832.448515][ T113] ? __pfx_mark_lock+0x10/0x10 [ 832.450419][ T113] ? __pfx_evict_folios+0x10/0x10 [ 832.452447][ T113] ? __lock_acquire+0x1620/0x3cb0 [ 832.454907][ T113] ? mem_cgroup_get_nr_swap_pages+0x20/0x120 [ 832.457660][ T113] ? sc_swappiness+0xd4/0x190 [ 832.459543][ T113] try_to_shrink_lruvec+0x612/0x9b0 [ 832.461660][ T113] ? find_held_lock+0x2d/0x110 [ 832.463548][ T113] ? __pfx_try_to_shrink_lruvec+0x10/0x10 [ 832.466096][ T113] ? lru_gen_shrink_node+0x685/0x1510 [ 832.468501][ T113] shrink_one+0x3e3/0x7b0 [ 832.470387][ T113] ? lru_gen_shrink_node+0x685/0x1510 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 832.473215][ T113] lru_gen_shrink_node+0x69f/0x1510 [ 832.485728][ T113] ? lru_gen_shrink_node+0x418/0x1510 [ 832.488115][ T113] ? __pfx_lru_gen_shrink_node+0x10/0x10 [ 832.490569][ T113] ? mem_cgroup_iter+0x2f2/0x760 [ 832.492686][ T113] balance_pgdat+0x110f/0x1950 [ 832.495122][ T113] ? __pfx_balance_pgdat+0x10/0x10 [ 832.497391][ T113] ? lockdep_hardirqs_on_prepare+0x3a0/0x420 [ 832.500043][ T113] ? __pfx___lock_acquire+0x10/0x10 [ 832.502376][ T113] ? find_held_lock+0x2d/0x110 [ 832.504851][ T113] ? cgroup_freezing+0x155/0x3d0 [ 832.506985][ T113] kswapd+0x5ea/0xbf0 [ 832.508712][ T113] ? __pfx_kswapd+0x10/0x10 [ 832.510693][ T113] ? __pfx_autoremove_wake_function+0x10/0x10 [ 832.513230][ T113] ? lockdep_hardirqs_on+0x7c/0x110 [ 832.515242][ T113] ? __kthread_parkme+0x148/0x220 [ 832.517382][ T113] ? __pfx_kswapd+0x10/0x10 [ 832.519384][ T113] kthread+0x2c1/0x3a0 [ 832.521210][ T113] ? _raw_spin_unlock_irq+0x23/0x50 [ 832.523534][ T113] ? __pfx_kthread+0x10/0x10 [ 832.525573][ T113] ret_from_fork+0x45/0x80 [ 832.527542][ T113] ? __pfx_kthread+0x10/0x10 [ 832.529576][ T113] ret_from_fork_asm+0x1a/0x30 [ 832.531724][ T113] [ 832.533123][ T113] [ 832.534167][ T113] Allocated by task 37: [ 832.535783][ T113] kasan_save_stack+0x33/0x60 [ 832.537607][ T113] kasan_save_track+0x14/0x30 [ 832.539443][ T113] __kasan_slab_alloc+0x89/0x90 [ 832.541579][ T113] kmem_cache_alloc_lru_noprof+0x121/0x2f0 [ 832.543860][ T113] shmem_alloc_inode+0x25/0x50 [ 832.546078][ T113] alloc_inode+0x5d/0x230 [ 832.548015][ T113] new_inode+0x22/0x210 [ 832.549843][ T113] shmem_get_inode+0x194/0xe90 [ 832.551952][ T113] shmem_mknod+0x66/0x240 [ 832.553868][ T113] vfs_mknod+0x5d7/0x8e0 [ 832.555734][ T113] devtmpfs_work_loop+0x1a8/0x7d0 [ 832.557944][ T113] devtmpfsd+0x4c/0x50 [ 832.559604][ T113] kthread+0x2c1/0x3a0 [ 832.561366][ T113] ret_from_fork+0x45/0x80 [ 832.563103][ T113] ret_from_fork_asm+0x1a/0x30 [ 832.565158][ T113] [ 832.566213][ T113] Freed by task 57: [ 832.567901][ T113] kasan_save_stack+0x33/0x60 [ 832.569731][ T113] kasan_save_track+0x14/0x30 [ 832.571641][ T113] kasan_save_free_info+0x3b/0x60 [ 832.574122][ T113] poison_slab_object+0xf7/0x160 [ 832.576325][ T113] __kasan_slab_free+0x32/0x50 [ 832.578873][ T113] kmem_cache_free+0x12f/0x3a0 [ 832.580988][ T113] i_callback+0x43/0x70 [ 832.582768][ T113] rcu_core+0x828/0x16b0 [ 832.584462][ T113] handle_softirqs+0x216/0x8f0 [ 832.586333][ T113] do_softirq+0xb2/0xf0 [ 832.587954][ T113] __local_bh_enable_ip+0x100/0x120 [ 832.589957][ T113] wg_packet_encrypt_worker+0x27d/0xb60 [ 832.592211][ T113] process_one_work+0x958/0x1ad0 [ 832.594418][ T113] worker_thread+0x6c8/0xf20 [ 832.596501][ T113] kthread+0x2c1/0x3a0 [ 832.598289][ T113] ret_from_fork+0x45/0x80 [ 832.600259][ T113] ret_from_fork_asm+0x1a/0x30 [ 832.602403][ T113] [ 832.603476][ T113] Last potentially related work creation: [ 832.606047][ T113] kasan_save_stack+0x33/0x60 [ 832.608070][ T113] __kasan_record_aux_stack+0xba/0xd0 [ 832.610418][ T113] __call_rcu_common.constprop.0+0x9a/0x790 [ 832.613201][ T113] destroy_inode+0x12c/0x1b0 [ 832.615425][ T113] iput.part.0+0x5a8/0x7f0 [ 832.617427][ T113] iput+0x5c/0x80 [ 832.619078][ T113] do_unlinkat+0x613/0x750 [ 832.621037][ T113] __ia32_sys_unlink+0xc4/0x110 [ 832.623231][ T113] __do_fast_syscall_32+0x73/0x120 [ 832.625617][ T113] do_fast_syscall_32+0x32/0x80 [ 832.627750][ T113] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 832.630502][ T113] [ 832.631615][ T113] The buggy address belongs to the object at ffff88801e1e47d8 [ 832.631615][ T113] which belongs to the cache shmem_inode_cache of size 1544 [ 832.637742][ T113] The buggy address is located 1224 bytes inside of [ 832.637742][ T113] freed 1544-byte region [ffff88801e1e47d8, ffff88801e1e4de0) [ 832.643659][ T113] [ 832.644704][ T113] The buggy address belongs to the physical page: [ 832.647503][ T113] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1e1e0 [ 832.651027][ T113] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 832.654373][ T113] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 832.657271][ T113] page_type: 0xfdffffff(slab) [ 832.659093][ T113] raw: 00fff00000000040 ffff888016ab3b80 dead000000000122 0000000000000000 [ 832.662365][ T113] raw: 0000000000000000 0000000000130013 00000001fdffffff 0000000000000000 [ 832.666000][ T113] head: 00fff00000000040 ffff888016ab3b80 dead000000000122 0000000000000000 [ 832.669776][ T113] head: 0000000000000000 0000000000130013 00000001fdffffff 0000000000000000 [ 832.673558][ T113] head: 00fff00000000003 ffffea0000787801 ffffffffffffffff 0000000000000000 [ 832.677377][ T113] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000 [ 832.681353][ T113] page dumped because: kasan: bad access detected [ 832.684195][ T113] page_owner tracks the page as allocated [ 832.686704][ T113] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 37, tgid 37 (kdevtmpfs), ts 9553653332, free_ts 0 [ 832.694868][ T113] post_alloc_hook+0x2d1/0x350 [ 832.696791][ T113] get_page_from_freelist+0x1351/0x2e50 [ 832.698967][ T113] __alloc_pages_noprof+0x22b/0x2460 [ 832.701009][ T113] alloc_slab_page+0x4e/0xf0 [ 832.702860][ T113] new_slab+0x84/0x260 [ 832.704691][ T113] ___slab_alloc+0xdac/0x1870 [ 832.706780][ T113] __slab_alloc.constprop.0+0x56/0xb0 [ 832.709164][ T113] kmem_cache_alloc_lru_noprof+0x2a7/0x2f0 [ 832.711718][ T113] shmem_alloc_inode+0x25/0x50 [ 832.713870][ T113] alloc_inode+0x5d/0x230 [ 832.715776][ T113] new_inode+0x22/0x210 [ 832.717604][ T113] shmem_get_inode+0x194/0xe90 [ 832.719722][ T113] shmem_mknod+0x66/0x240 [ 832.721618][ T113] vfs_mknod+0x5d7/0x8e0 [ 832.723316][ T113] devtmpfs_work_loop+0x1a8/0x7d0 [ 832.725532][ T113] devtmpfsd+0x4c/0x50 [ 832.727324][ T113] page_owner free stack trace missing [ 832.729653][ T113] [ 832.730706][ T113] Memory state around the buggy address: [ 832.733208][ T113] ffff88801e1e4b80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 832.736681][ T113] ffff88801e1e4c00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 832.740164][ T113] >ffff88801e1e4c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 832.743650][ T113] ^ [ 832.745794][ T113] ffff88801e1e4d00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 832.749223][ T113] ffff88801e1e4d80: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 832.752567][ T113] ================================================================== [ 832.755678][ T113] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 832.758848][ T113] CPU: 3 UID: 0 PID: 113 Comm: kswapd0 Not tainted 6.10.0-syzkaller-12888-g5437f30d3458 #0 [ 832.763395][ T113] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 832.768070][ T113] Call Trace: [ 832.769448][ T113] [ 832.770600][ T113] dump_stack_lvl+0x3d/0x1f0 [ 832.772402][ T113] panic+0x6f5/0x7a0 [ 832.773932][ T113] ? __pfx_panic+0x10/0x10 [ 832.775801][ T113] ? rcu_is_watching+0x12/0xc0 [ 832.778112][ T113] ? __pfx_lock_release+0x10/0x10 [ 832.780323][ T113] ? check_panic_on_warn+0x1f/0xb0 [ 832.782518][ T113] check_panic_on_warn+0xab/0xb0 [ 832.784728][ T113] end_report+0x117/0x180 [ 832.787030][ T113] kasan_report+0xe9/0x110 [ 832.788976][ T113] ? folio_evictable+0x7b/0x270 [ 832.791064][ T113] ? folio_evictable+0x7b/0x270 [ 832.793315][ T113] kasan_check_range+0xef/0x1a0 [ 832.795580][ T113] folio_evictable+0x7b/0x270 [ 832.797945][ T113] isolate_folios+0xd0d/0x35b0 [ 832.800133][ T113] ? __pfx_isolate_folios+0x10/0x10 [ 832.802572][ T113] ? lock_acquire+0x1b1/0x560 [ 832.804954][ T113] ? __pfx_lock_acquire+0x10/0x10 [ 832.807177][ T113] ? __pfx_mark_lock+0x10/0x10 [ 832.809393][ T113] ? do_raw_spin_lock+0x12d/0x2c0 [ 832.811546][ T113] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 832.813727][ T113] evict_folios+0x19c/0x1b30 [ 832.815681][ T113] ? hlock_class+0x4e/0x130 [ 832.817658][ T113] ? mark_lock+0xb5/0xc60 [ 832.819542][ T113] ? hlock_class+0x4e/0x130 [ 832.821467][ T113] ? __lock_acquire+0x1620/0x3cb0 [ 832.823707][ T113] ? __pfx_mark_lock+0x10/0x10 [ 832.825849][ T113] ? __pfx_evict_folios+0x10/0x10 [ 832.828090][ T113] ? __lock_acquire+0x1620/0x3cb0 [ 832.830304][ T113] ? mem_cgroup_get_nr_swap_pages+0x20/0x120 [ 832.833035][ T113] ? sc_swappiness+0xd4/0x190 [ 832.835149][ T113] try_to_shrink_lruvec+0x612/0x9b0 [ 832.837880][ T113] ? find_held_lock+0x2d/0x110 [ 832.840261][ T113] ? __pfx_try_to_shrink_lruvec+0x10/0x10 [ 832.842907][ T113] ? lru_gen_shrink_node+0x685/0x1510 [ 832.845273][ T113] shrink_one+0x3e3/0x7b0 [ 832.847172][ T113] ? lru_gen_shrink_node+0x685/0x1510 [ 832.849537][ T113] lru_gen_shrink_node+0x69f/0x1510 [ 832.851830][ T113] ? lru_gen_shrink_node+0x418/0x1510 [ 832.854187][ T113] ? __pfx_lru_gen_shrink_node+0x10/0x10 [ 832.856699][ T113] ? mem_cgroup_iter+0x2f2/0x760 [ 832.858876][ T113] balance_pgdat+0x110f/0x1950 [ 832.861163][ T113] ? __pfx_balance_pgdat+0x10/0x10 [ 832.863436][ T113] ? lockdep_hardirqs_on_prepare+0x3a0/0x420 [ 832.866082][ T113] ? __pfx___lock_acquire+0x10/0x10 [ 832.868399][ T113] ? find_held_lock+0x2d/0x110 [ 832.870501][ T113] ? cgroup_freezing+0x155/0x3d0 [ 832.872704][ T113] kswapd+0x5ea/0xbf0 [ 832.874475][ T113] ? __pfx_kswapd+0x10/0x10 [ 832.876493][ T113] ? __pfx_autoremove_wake_function+0x10/0x10 [ 832.879165][ T113] ? lockdep_hardirqs_on+0x7c/0x110 [ 832.881298][ T113] ? __kthread_parkme+0x148/0x220 [ 832.883243][ T113] ? __pfx_kswapd+0x10/0x10 [ 832.885078][ T113] kthread+0x2c1/0x3a0 [ 832.886680][ T113] ? _raw_spin_unlock_irq+0x23/0x50 [ 832.888706][ T113] ? __pfx_kthread+0x10/0x10 [ 832.890507][ T113] ret_from_fork+0x45/0x80 [ 832.892272][ T113] ? __pfx_kthread+0x10/0x10 [ 832.894077][ T113] ret_from_fork_asm+0x1a/0x30 [ 832.896116][ T113] [ 832.898191][ T113] Kernel Offset: disabled [ 832.900121][ T113] Rebooting in 86400 seconds.. VM DIAGNOSIS: 14:30:21 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=0000000000000006 RCX=ffffffff813c84d1 RDX=ffff888016344880 RSI=0000000000000007 RDI=0000000000000001 RBP=ffffffff8b49d160 RSP=ffffc900003b7720 R8 =0000000000000001 R9 =0000000000000007 R10=0000000000000005 R11=0000000000000000 R12=0000000000000005 R13=0000000000000001 R14=0000000000000008 R15=ffffc900003b7805 RIP=ffffffff818b21cb RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802c000000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f73ac230 CR3=0000000000584000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000e000000000 0000000400000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000eb7ab3 RBX=0000000000000001 RCX=ffffffff8b05fa19 RDX=0000000000000000 RSI=ffffffff8b4ccfe0 RDI=ffffffff8bb04c60 RBP=ffffed1002ce5910 RSP=ffffc90000477e08 R8 =0000000000000001 R9 =ffffed1005826fe1 R10=ffff88802c137f0b R11=0000000000000000 R12=0000000000000001 R13=ffff88801672c880 R14=ffffffff9010ffd8 R15=0000000000000000 RIP=ffffffff8b060e0f RFL=00000242 [---Z---] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802c100000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000002d8f6ff8 CR3=0000000073fd2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00315f6576616c73 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000001 RBX=1ffff92005221f63 RCX=ffffffff8169455b RDX=fffffbfff2021ffc RSI=ffffffff8bb04be0 RDI=ffffffff8bb04c20 RBP=0000000000000002 RSP=ffffc9002910fad0 R8 =0000000000000000 R9 =fffffbfff2021ffb R10=ffffffff9010ffdf R11=0000000000000000 R12=0000000000000001 R13=0000000000000000 R14=ffffffff950b3138 R15=0000000000000000 RIP=ffffffff8b0601a4 RFL=00000087 [--S--PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802c200000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000057a33a3c CR3=000000005df10000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000072 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84fa3255 RDI=ffffffff951193c0 RBP=ffffffff95119380 RSP=ffffc90000e0edb8 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552033203a555043 R12=0000000000000000 R13=0000000000000072 R14=ffffffff84fa31f0 R15=0000000000000000 RIP=ffffffff84fa327f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802c300000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000579fe4c0 CR3=000000001cc44000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 ZMM17=93d025ef97581917 99a36a6c3fb8e458 93d025ef97581917 99a36a6c3fb8e458 93d025ef97581917 99a36a6c3fb8e458 93d025ef97581917 99a36a6c3fb8e458 ZMM18=df879b40f7100168 75d32fc10da4d41e df879b40f7100168 75d32fc10da4d41e df879b40f7100168 75d32fc10da4d41e df879b40f7100168 75d32fc10da4d41e ZMM19=f914000000000000 000000000000000c f914000000000000 000000000000000b f914000000000000 000000000000000a f914000000000000 0000000000000009 ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=593f20b0593f20b0 593f20b0593f20b0 593f20b0593f20b0 593f20b0593f20b0 593f20b0593f20b0 593f20b0593f20b0 593f20b0593f20b0 593f20b0593f20b0 ZMM22=539e6525539e6525 539e6525539e6525 539e6525539e6525 539e6525539e6525 539e6525539e6525 539e6525539e6525 539e6525539e6525 539e6525539e6525 ZMM23=c4e0d98ac4e0d98a c4e0d98ac4e0d98a c4e0d98ac4e0d98a c4e0d98ac4e0d98a c4e0d98ac4e0d98a c4e0d98ac4e0d98a c4e0d98ac4e0d98a c4e0d98ac4e0d98a ZMM24=4894b2ba4894b2ba 4894b2ba4894b2ba 4894b2ba4894b2ba 4894b2ba4894b2ba 4894b2ba4894b2ba 4894b2ba4894b2ba 4894b2ba4894b2ba 4894b2ba4894b2ba ZMM25=e4ee61c3e4ee61c3 e4ee61c3e4ee61c3 e4ee61c3e4ee61c3 e4ee61c3e4ee61c3 e4ee61c3e4ee61c3 e4ee61c3e4ee61c3 e4ee61c3e4ee61c3 e4ee61c3e4ee61c3 ZMM26=254d4225254d4225 254d4225254d4225 254d4225254d4225 254d4225254d4225 254d4225254d4225 254d4225254d4225 254d4225254d4225 254d4225254d4225 ZMM27=fb4ac9bcfb4ac9bc fb4ac9bcfb4ac9bc fb4ac9bcfb4ac9bc fb4ac9bcfb4ac9bc fb4ac9bcfb4ac9bc fb4ac9bcfb4ac9bc fb4ac9bcfb4ac9bc fb4ac9bcfb4ac9bc ZMM28=000000a00000009f 0000009e0000009d 0000009c0000009b 0000009a00000099 0000009800000097 0000009600000095 0000009400000093 0000009200000091 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=9320000093200000 9320000093200000 9320000093200000 9320000093200000 9320000093200000 9320000093200000 9320000093200000 9320000093200000