last executing test programs: 1.324782252s ago: executing program 2 (id=6233): r0 = socket$kcm(0x2, 0x5, 0x84) sendmsg$inet(r0, &(0x7f00000000c0)={&(0x7f0000001040)={0x2, 0x0, @private=0xa010101}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000140)="97", 0x1}], 0x1}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) close(r2) recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0) setsockopt$sock_attach_bpf(r0, 0x84, 0x7b, &(0x7f0000000000)=r3, 0x8) 1.020278403s ago: executing program 0 (id=6248): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, 0x0, 0x0, 0x4) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = dup(r3) ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}) writev(r2, &(0x7f0000000180)=[{&(0x7f0000000200)="c082b44eb524", 0x6}, {&(0x7f0000000240)="a43b2eaab4000000000000006558", 0xe}], 0x2) 899.951259ms ago: executing program 0 (id=6253): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) r3 = socket(0x2a, 0x2, 0x0) getsockname$packet(r3, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}}, 0x24}}, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtfilter={0x24, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, r4, {0xe, 0x3}, {}, {0x8, 0xffe0}}}, 0x24}}, 0x4080) r5 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r5, &(0x7f00000002c0), 0x40000000000009f, 0x0) 899.242508ms ago: executing program 0 (id=6255): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, 0x0, 0x0, 0x4) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000080000024d564b000000eccd"]) 780.744786ms ago: executing program 0 (id=6256): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118) r4 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r4, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0) 780.21899ms ago: executing program 0 (id=6257): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$netlink(0x10, 0x3, 0x4) write(r4, &(0x7f0000000040)="2700000014000707030e0000120f0a0011000100f5fe009d2fb112ff000000008a151f75080039", 0x27) 660.743535ms ago: executing program 3 (id=6258): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8481f0000005e", 0x19}], 0x1}, 0x20) r1 = socket$kcm(0x10, 0x400000002, 0x0) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1c0000005e"], 0xfe33) 349.932751ms ago: executing program 1 (id=6263): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0) sendfile(r4, r4, 0x0, 0x40008) 292.81454ms ago: executing program 1 (id=6264): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003780)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500), 0x0, 0x4) r4 = socket$inet6(0xa, 0x2, 0x0) sendmmsg$inet6(r4, &(0x7f0000000400)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @local, 0x6}, 0x1c, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='$\x00'], 0x28, 0x7ffffff7}}, {{0x0, 0x0, 0x0}}], 0x2, 0x4044800) 292.001441ms ago: executing program 1 (id=6265): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x4]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, 0x0, 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000400)='./binderfs/binder1\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x0, 0x3}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4, 0x0, &(0x7f0000000000)=[@register_looper], 0x50, 0x0, &(0x7f0000000040)="c77f63941720024fcb205ad3f3502124f14eba8419d2d70aade14d22ca5137369a7e2f7c68839e02d428fe526929aaaeb71b01b4a33854d4ca7681b53a970b1a4175371ccff2ad1d15ed65d48b413559"}) 291.758748ms ago: executing program 2 (id=6266): rt_sigaction(0xd, 0x0, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) sendmmsg$inet6(r2, &(0x7f00000009c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680)) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) 234.647413ms ago: executing program 2 (id=6267): mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f00000003c0), 0x0, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) 234.515597ms ago: executing program 1 (id=6268): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000040)={0x0}) ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[0x0], &(0x7f0000000180), 0x0, 0x0, 0x0, 0x1}) 234.362641ms ago: executing program 2 (id=6269): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) 170.997155ms ago: executing program 1 (id=6270): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000000500), 0x0, 0x4) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000080000024d564b000000eccd"]) 170.579592ms ago: executing program 3 (id=6271): mknod(&(0x7f0000000080)='./bus\x00', 0xc000, 0x0) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) mount(&(0x7f0000000000)=@nullb, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000100)='xfs\x00', 0x400080, &(0x7f00000001c0)='discard') 89.903727ms ago: executing program 2 (id=6272): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r0, &(0x7f00000002c0)={0x1f, 0x0, @any, 0xfffa}, 0xe) connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe) 89.10114ms ago: executing program 3 (id=6273): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0) 88.81398ms ago: executing program 2 (id=6274): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f00000003c0)="0f326635004000000f300f00d636808a0d0001ba4300b80b00eb66b88c5000000f23d02a3ff866352000000e0f23f80f01c30f789deb32660f3a21cf220f2bb00058660f1bde", 0x46}], 0x1, 0x0, 0x0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={0xffffffffffffffff, 0x0}, 0x20) ioctl$KVM_RUN(r5, 0xae80, 0x0) 88.665189ms ago: executing program 3 (id=6275): rt_sigaction(0xd, 0x0, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) write(r0, 0x0, 0x0) sendmmsg$inet6(r2, &(0x7f00000009c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680)) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) 655.447µs ago: executing program 3 (id=6276): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendmmsg$inet(r2, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x1401, 0x0) writev(r4, &(0x7f0000000080)=[{&(0x7f00000000c0)="5bffd08307d80c79b1cb7b5f0c5b4d719c69c8513f748fbe425a7bc388c9019bef114779f7a10dc03a883d6e16a0a704f74297f381ff1db75098a9b38bb67206a7ff22e6ca46dc760bdad8a79d5951988c55a368dd1132ba7f129c2e65441eaa27492c069488df0881f123ca01ae873f5b36eb0fddb8f07420f5484d81cabde167c87ffbab6a94b24b5537bb1a08d56469f516fd4b7c66e2ac50d5ff4e52c628d0a89e53d0e78582a5ab2a2c714f66", 0xfe7c}], 0x1) 499.421µs ago: executing program 0 (id=6277): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) write(0xffffffffffffffff, &(0x7f0000000040)="2700000014000707030e0000120f0a0011000100f5fe009d2fb112ff000000008a151f75080039", 0x27) 307.244µs ago: executing program 1 (id=6278): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003780)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6(0xa, 0x2, 0x0) sendmmsg$inet6(r4, 0x0, 0x0, 0x4044800) 0s ago: executing program 3 (id=6279): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40040) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, r6, 0x0) ioctl$BLKFLSBUF(r6, 0x1261, &(0x7f0000000100)=0x1000) kernel console output (not intermixed with test programs): 258.971884][ T896] usb 5-1: config index 0 descriptor too short (expected 301, got 45) [ 258.975332][ T896] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 258.980069][ T896] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 258.984272][ T896] usb 5-1: config 16 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 258.989050][ T896] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 258.994594][ T896] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 258.998878][ T896] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 259.007281][ T896] usbtmc 5-1:16.0: bulk endpoints not found [ 259.029657][ T1459] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 259.033275][ T1459] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 259.036611][ T1459] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 259.041170][ T1459] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 259.044683][ T1459] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 259.051173][ T1459] usb 7-1: config 0 descriptor?? [ 259.181405][T16417] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3128'. [ 259.468306][ T1459] usbhid 7-1:0.0: can't add hid device: -71 [ 259.470383][ T1459] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 259.482013][ T1459] usb 7-1: USB disconnect, device number 52 [ 260.010245][T16439] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3137'. [ 260.487975][ T1459] usb 6-1: new high-speed USB device number 43 using dummy_hcd [ 260.589898][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 260.591900][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 260.621696][T16462] overlayfs: missing 'lowerdir' [ 260.645815][ T1459] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 260.650751][ T1459] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 260.654704][ T1459] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 260.661077][ T1459] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 260.664965][ T1459] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 260.671175][ T1459] usb 6-1: config 0 descriptor?? [ 261.082452][ T1459] usbhid 6-1:0.0: can't add hid device: -71 [ 261.084971][ T1459] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 261.091592][ T1459] usb 6-1: USB disconnect, device number 43 [ 261.550898][ T1265] usb 5-1: USB disconnect, device number 54 [ 261.666472][ T40] kauditd_printk_skb: 25 callbacks suppressed [ 261.666487][ T40] audit: type=1400 audit(1763137274.610:457): avc: denied { append } for pid=16484 comm="syz.1.3161" name="comedi3" dev="devtmpfs" ino=1305 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 261.674263][T16487] overlayfs: missing 'lowerdir' [ 261.840117][T16504] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3169'. [ 261.843839][T16504] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3169'. [ 261.847431][T16504] netlink: 'syz.1.3169': attribute type 20 has an invalid length. [ 261.851376][T16504] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3169'. [ 261.855012][T16504] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3169'. [ 261.860321][T16504] netlink: 'syz.1.3169': attribute type 20 has an invalid length. [ 261.986934][T16518] binder: 16517:16518 ioctl c0306201 0 returned -14 [ 262.012436][T16520] overlayfs: missing 'lowerdir' [ 262.051000][T16524] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3179'. [ 262.054412][T16524] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3179'. [ 262.057536][T16524] netlink: 'syz.1.3179': attribute type 20 has an invalid length. [ 262.061733][T16524] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3179'. [ 262.065342][T16524] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3179'. [ 262.070714][T16524] netlink: 'syz.1.3179': attribute type 20 has an invalid length. [ 262.122989][T16532] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 262.157908][ T896] usb 5-1: new high-speed USB device number 55 using dummy_hcd [ 262.329295][ T896] usb 5-1: config 0 has an invalid interface number: 184 but max is 1 [ 262.331897][ T896] usb 5-1: config 0 has an invalid interface number: 251 but max is 1 [ 262.334790][ T896] usb 5-1: config 0 has no interface number 0 [ 262.336709][ T896] usb 5-1: config 0 has no interface number 1 [ 262.339585][ T896] usb 5-1: config 0 interface 184 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 262.342956][ T896] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xA, skipping [ 262.346751][ T896] usb 5-1: config 0 interface 251 altsetting 8 endpoint 0x7 has an invalid bInterval 189, changing to 7 [ 262.352929][ T896] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xC, skipping [ 262.357373][ T896] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x2, skipping [ 262.362078][ T896] usb 5-1: config 0 interface 251 altsetting 8 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 262.366483][ T896] usb 5-1: config 0 interface 251 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 262.368314][T16546] netlink: 'syz.1.3191': attribute type 20 has an invalid length. [ 262.371152][ T896] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x7, skipping [ 262.373804][T16546] netlink: 'syz.1.3191': attribute type 20 has an invalid length. [ 262.377334][ T896] usb 5-1: config 0 interface 184 has no altsetting 0 [ 262.377347][ T896] usb 5-1: config 0 interface 251 has no altsetting 0 [ 262.379356][ T896] usb 5-1: New USB device found, idVendor=1b3d, idProduct=4701, bcdDevice=53.f1 [ 262.387349][ T896] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 262.390052][ T896] usb 5-1: Product: syz [ 262.391369][ T896] usb 5-1: Manufacturer: syz [ 262.393182][ T896] usb 5-1: SerialNumber: syz [ 262.400555][ T896] usb 5-1: config 0 descriptor?? [ 262.614494][ T896] ftdi_sio 5-1:0.184: FTDI USB Serial Device converter detected [ 262.618838][ T896] ftdi_sio ttyUSB0: unknown device type: 0x53f1 [ 262.625880][ T896] ftdi_sio 5-1:0.251: FTDI USB Serial Device converter detected [ 262.630161][ T896] ftdi_sio ttyUSB1: unknown device type: 0x53f1 [ 262.639528][ T896] usb 5-1: USB disconnect, device number 55 [ 262.653087][ T896] ftdi_sio 5-1:0.184: device disconnected [ 262.666874][ T896] ftdi_sio 5-1:0.251: device disconnected [ 262.784588][T16589] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 262.788425][T16589] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 262.977703][T16608] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 262.981771][T16608] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 263.282345][T16633] overlayfs: missing 'lowerdir' [ 263.342531][T16639] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 264.492270][T16690] overlayfs: missing 'workdir' [ 264.526379][ T40] audit: type=1400 audit(1763137277.470:458): avc: denied { map } for pid=16691 comm="syz.2.3262" path="socket:[64324]" dev="sockfs" ino=64324 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 264.538543][ T40] audit: type=1400 audit(1763137277.470:459): avc: denied { read } for pid=16691 comm="syz.2.3262" path="socket:[64324]" dev="sockfs" ino=64324 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 265.296779][T16699] __nla_validate_parse: 5 callbacks suppressed [ 265.296790][T16699] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3264'. [ 265.974140][T16726] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3278'. [ 265.977594][T16726] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3278'. [ 265.981549][T16726] netlink: 'syz.2.3278': attribute type 20 has an invalid length. [ 265.991761][T16726] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3278'. [ 265.995646][ T92] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 265.997933][T16726] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3278'. [ 266.000097][ T92] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 266.003059][T16726] netlink: 'syz.2.3278': attribute type 20 has an invalid length. [ 266.006679][ T92] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 266.013681][ T92] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 266.316210][T16748] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3288'. [ 266.319100][T16748] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3288'. [ 266.321998][T16748] netlink: 'syz.2.3288': attribute type 20 has an invalid length. [ 266.324911][T16748] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3288'. [ 266.327667][T16748] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3288'. [ 266.331307][T16748] netlink: 'syz.2.3288': attribute type 20 has an invalid length. [ 266.667947][ T6000] usb 7-1: new high-speed USB device number 53 using dummy_hcd [ 266.819698][ T6000] usb 7-1: config 0 has an invalid interface number: 184 but max is 1 [ 266.823131][ T6000] usb 7-1: config 0 has an invalid interface number: 251 but max is 1 [ 266.826645][ T6000] usb 7-1: config 0 has no interface number 0 [ 266.829449][ T6000] usb 7-1: config 0 has no interface number 1 [ 266.832201][ T6000] usb 7-1: config 0 interface 184 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 266.836598][ T6000] usb 7-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xA, skipping [ 266.841905][ T6000] usb 7-1: config 0 interface 251 altsetting 8 endpoint 0x7 has an invalid bInterval 189, changing to 7 [ 266.846532][ T6000] usb 7-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xC, skipping [ 266.851525][ T6000] usb 7-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x2, skipping [ 266.856009][ T6000] usb 7-1: config 0 interface 251 altsetting 8 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 266.860771][ T6000] usb 7-1: config 0 interface 251 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 266.865210][ T6000] usb 7-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x7, skipping [ 266.869806][ T6000] usb 7-1: config 0 interface 184 has no altsetting 0 [ 266.872597][ T6000] usb 7-1: config 0 interface 251 has no altsetting 0 [ 266.877939][ T6000] usb 7-1: New USB device found, idVendor=1b3d, idProduct=4701, bcdDevice=53.f1 [ 266.881971][ T6000] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 266.885258][ T6000] usb 7-1: Product: syz [ 266.887027][ T6000] usb 7-1: Manufacturer: syz [ 266.889116][ T6000] usb 7-1: SerialNumber: syz [ 266.893796][ T6000] usb 7-1: config 0 descriptor?? [ 267.101154][ T6000] ftdi_sio 7-1:0.184: FTDI USB Serial Device converter detected [ 267.104109][ T6000] ftdi_sio ttyUSB0: unknown device type: 0x53f1 [ 267.118567][ T6000] ftdi_sio 7-1:0.251: FTDI USB Serial Device converter detected [ 267.121434][ T6000] ftdi_sio ttyUSB1: unknown device type: 0x53f1 [ 267.132216][ T6000] usb 7-1: USB disconnect, device number 53 [ 267.139992][ T6000] ftdi_sio 7-1:0.184: device disconnected [ 267.149110][ T6000] ftdi_sio 7-1:0.251: device disconnected [ 267.878635][T16818] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3323'. [ 268.251193][T16856] netlink: 'syz.0.3339': attribute type 32 has an invalid length. [ 268.314981][T16857] fuse: Bad value for 'fd' [ 268.942604][T16900] netlink: 'syz.1.3360': attribute type 20 has an invalid length. [ 268.945496][T16900] netlink: 'syz.1.3360': attribute type 20 has an invalid length. [ 268.979021][ T55] usb 5-1: new high-speed USB device number 56 using dummy_hcd [ 269.142210][ T55] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 269.146850][ T55] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 269.151466][ T55] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 269.156774][ T55] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 269.161594][ T55] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 269.167131][ T55] usb 5-1: config 0 descriptor?? [ 269.575650][ T55] usbhid 5-1:0.0: can't add hid device: -71 [ 269.578399][ T55] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 269.584036][ T55] usb 5-1: USB disconnect, device number 56 [ 269.593633][T16946] binder: 16945:16946 ioctl c0306201 0 returned -14 [ 269.901537][T16966] binder: 16965:16966 ioctl c0306201 0 returned -14 [ 270.392826][T17003] __nla_validate_parse: 5 callbacks suppressed [ 270.392843][T17003] netlink: 84 bytes leftover after parsing attributes in process `syz.2.3410'. [ 270.437223][ T40] audit: type=1400 audit(1763137283.380:460): avc: denied { connect } for pid=17004 comm="syz.2.3411" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 270.692866][T17030] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3422'. [ 271.500893][T17062] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3437'. [ 272.167803][ T6004] usb 7-1: new high-speed USB device number 54 using dummy_hcd [ 272.342913][ T6004] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 272.347009][ T6004] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 272.350770][ T6004] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 272.354807][ T6004] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 272.357600][ T6004] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 272.368254][ T6004] usb 7-1: config 0 descriptor?? [ 272.467561][T17118] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 272.470638][T17118] overlayfs: missing 'lowerdir' [ 272.493982][T17120] binder: 17119:17120 ioctl c0306201 0 returned -14 [ 272.688772][ T6100] usb 5-1: new high-speed USB device number 57 using dummy_hcd [ 272.779149][ T6004] usbhid 7-1:0.0: can't add hid device: -71 [ 272.781322][ T6004] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 272.788293][ T6004] usb 7-1: USB disconnect, device number 54 [ 272.790264][T17148] netlink: 84 bytes leftover after parsing attributes in process `syz.3.3476'. [ 272.842856][ T6100] usb 5-1: config 0 has an invalid interface number: 184 but max is 1 [ 272.846264][ T6100] usb 5-1: config 0 has an invalid interface number: 251 but max is 1 [ 272.850704][ T6100] usb 5-1: config 0 has no interface number 0 [ 272.853112][ T6100] usb 5-1: config 0 has no interface number 1 [ 272.855256][ T6100] usb 5-1: config 0 interface 184 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 272.859495][ T6100] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xA, skipping [ 272.862820][ T6100] usb 5-1: config 0 interface 251 altsetting 8 endpoint 0x7 has an invalid bInterval 189, changing to 7 [ 272.866671][ T6100] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xC, skipping [ 272.871791][ T6100] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x2, skipping [ 272.875192][ T6100] usb 5-1: config 0 interface 251 altsetting 8 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 272.878767][ T6100] usb 5-1: config 0 interface 251 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 272.882292][ T6100] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x7, skipping [ 272.885577][ T6100] usb 5-1: config 0 interface 184 has no altsetting 0 [ 272.887630][ T6100] usb 5-1: config 0 interface 251 has no altsetting 0 [ 272.892573][ T6100] usb 5-1: New USB device found, idVendor=1b3d, idProduct=4701, bcdDevice=53.f1 [ 272.895664][ T6100] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 272.898787][ T6100] usb 5-1: Product: syz [ 272.900317][ T6100] usb 5-1: Manufacturer: syz [ 272.901922][ T6100] usb 5-1: SerialNumber: syz [ 272.905438][ T6100] usb 5-1: config 0 descriptor?? [ 273.112127][ T6100] ftdi_sio 5-1:0.184: FTDI USB Serial Device converter detected [ 273.115700][ T6100] ftdi_sio ttyUSB0: unknown device type: 0x53f1 [ 273.120164][ T6100] ftdi_sio 5-1:0.251: FTDI USB Serial Device converter detected [ 273.123029][ T6100] ftdi_sio ttyUSB1: unknown device type: 0x53f1 [ 273.131760][ T6100] usb 5-1: USB disconnect, device number 57 [ 273.136536][ T6100] ftdi_sio 5-1:0.184: device disconnected [ 273.138675][T17170] binder: 17169:17170 ioctl c0306201 0 returned -14 [ 273.148752][ T6100] ftdi_sio 5-1:0.251: device disconnected [ 273.307759][T17182] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3492'. [ 273.367111][T17187] binder: 17186:17187 ioctl c0306201 0 returned -14 [ 273.697788][ T6004] usb 6-1: new high-speed USB device number 44 using dummy_hcd [ 273.709152][T17215] binder: 17213:17215 ioctl c0306201 0 returned -14 [ 273.849001][ T6004] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 273.852369][ T6004] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 273.855377][ T6004] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 273.859609][ T6004] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 273.862385][ T6004] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 273.866010][ T6004] usb 6-1: config 0 descriptor?? [ 274.266711][T17227] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3513'. [ 274.269650][T17227] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3513'. [ 274.272579][T17227] netlink: 'syz.2.3513': attribute type 20 has an invalid length. [ 274.275548][T17227] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3513'. [ 274.278470][T17227] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3513'. [ 274.279605][ T6004] usbhid 6-1:0.0: can't add hid device: -71 [ 274.281354][T17227] netlink: 'syz.2.3513': attribute type 20 has an invalid length. [ 274.283201][ T6004] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 274.292833][ T6004] usb 6-1: USB disconnect, device number 44 [ 274.375908][T17233] overlayfs: overlapping lowerdir path [ 274.584771][T17259] binder: 17258:17259 ioctl c0306201 0 returned -14 [ 274.661410][T17267] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3532'. [ 274.664337][T17267] netlink: 'syz.0.3532': attribute type 20 has an invalid length. [ 274.667193][T17267] netlink: 'syz.0.3532': attribute type 20 has an invalid length. [ 274.786111][T17282] binder: 17280:17282 ioctl c0306201 0 returned -14 [ 274.815226][T17286] veth0_macvtap: left promiscuous mode [ 274.981218][T17306] netlink: 'syz.0.3551': attribute type 20 has an invalid length. [ 274.985221][T17306] netlink: 'syz.0.3551': attribute type 20 has an invalid length. [ 275.104595][ T40] audit: type=1400 audit(1763137288.040:461): avc: denied { associate } for pid=17321 comm="syz.3.3557" name="core" scontext=root:object_r:etc_runtime_t tcontext=system_u:object_r:root_t tclass=filesystem permissive=1 [ 275.148696][T17329] netlink: 'syz.2.3562': attribute type 20 has an invalid length. [ 275.151512][T17329] netlink: 'syz.2.3562': attribute type 20 has an invalid length. [ 275.188567][ T1265] usb 6-1: new high-speed USB device number 45 using dummy_hcd [ 275.342090][ T1265] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 275.346013][ T1265] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 275.357930][ T1265] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 275.362932][ T1265] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 275.365888][ T1265] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 275.370298][ T1265] usb 6-1: config 0 descriptor?? [ 275.781303][ T1265] usbhid 6-1:0.0: can't add hid device: -71 [ 275.783380][ T1265] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 275.787678][ T1265] usb 6-1: USB disconnect, device number 45 [ 276.553714][T17398] __nla_validate_parse: 12 callbacks suppressed [ 276.553731][T17398] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3597'. [ 276.560699][T17398] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3597'. [ 276.565267][T17398] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3597'. [ 276.571513][T17398] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3597'. [ 276.843033][T17422] binder: 17421:17422 ioctl c0306201 0 returned -14 [ 276.926396][T17430] netlink: 84 bytes leftover after parsing attributes in process `syz.2.3612'. [ 277.153858][T17453] netlink: 84 bytes leftover after parsing attributes in process `syz.2.3623'. [ 277.196534][T17457] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3625'. [ 278.082670][T17504] netlink: 84 bytes leftover after parsing attributes in process `syz.0.3649'. [ 279.797574][T17615] sctp: [Deprecated]: syz.1.3699 (pid 17615) Use of int in max_burst socket option deprecated. [ 279.797574][T17615] Use struct sctp_assoc_value instead [ 279.809142][T17615] vlan2: entered allmulticast mode [ 279.810736][T17615] bond0: entered allmulticast mode [ 279.812378][T17615] bond_slave_0: entered allmulticast mode [ 279.814181][T17615] bond_slave_1: entered allmulticast mode [ 279.977826][ T841] usb 7-1: new high-speed USB device number 55 using dummy_hcd [ 280.138136][ T841] usb 7-1: Using ep0 maxpacket: 32 [ 280.142146][ T841] usb 7-1: config index 0 descriptor too short (expected 29220, got 36) [ 280.145371][ T841] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 280.149140][ T841] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 280.153825][ T841] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 280.157063][ T841] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 280.161742][ T841] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18 [ 280.166973][ T841] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 280.170666][ T841] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 280.176737][ T841] usb 7-1: config 0 descriptor?? [ 280.381734][ T841] usb 7-1: USB disconnect, device number 55 [ 280.538949][T17664] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3723'. [ 280.542690][T17664] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3723'. [ 282.534575][ T40] audit: type=1400 audit(1763137295.480:462): avc: denied { mount } for pid=17816 comm="syz.1.3797" name="/" dev="configfs" ino=3283 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 282.672992][T17823] __nla_validate_parse: 10 callbacks suppressed [ 282.673004][T17823] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3801'. [ 282.677805][T17823] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3801'. [ 282.680614][T17823] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3801'. [ 282.683376][T17823] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3801'. [ 282.806081][T17839] netlink: 84 bytes leftover after parsing attributes in process `syz.3.3799'. [ 282.969517][T17850] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3812'. [ 282.973218][T17850] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3812'. [ 282.977071][T17850] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3812'. [ 282.982307][T17850] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3812'. [ 283.114941][ T40] audit: type=1400 audit(1763137296.060:463): avc: denied { create } for pid=17867 comm="syz.1.3821" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1 [ 283.128541][ T40] audit: type=1400 audit(1763137296.060:464): avc: denied { create } for pid=17867 comm="syz.1.3821" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 283.134780][ T40] audit: type=1400 audit(1763137296.060:465): avc: denied { map } for pid=17867 comm="syz.1.3821" path="socket:[71634]" dev="sockfs" ino=71634 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1 [ 283.144577][ T40] audit: type=1400 audit(1763137296.060:466): avc: denied { accept } for pid=17867 comm="syz.1.3821" path="socket:[71634]" dev="sockfs" ino=71634 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1 [ 283.153676][ T40] audit: type=1400 audit(1763137296.070:467): avc: denied { ioctl } for pid=17867 comm="syz.1.3821" path="socket:[71637]" dev="sockfs" ino=71637 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 283.350920][T17890] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3832'. [ 284.337861][ T841] usb 5-1: new high-speed USB device number 58 using dummy_hcd [ 284.501322][ T841] usb 5-1: config 0 has an invalid interface number: 184 but max is 1 [ 284.504757][ T841] usb 5-1: config 0 has an invalid interface number: 251 but max is 1 [ 284.517817][ T841] usb 5-1: config 0 has no interface number 0 [ 284.519773][ T841] usb 5-1: config 0 has no interface number 1 [ 284.521881][ T841] usb 5-1: config 0 interface 184 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 284.526147][ T841] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xA, skipping [ 284.534124][ T841] usb 5-1: config 0 interface 251 altsetting 8 endpoint 0x7 has an invalid bInterval 189, changing to 7 [ 284.538013][ T841] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xC, skipping [ 284.541859][ T841] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x2, skipping [ 284.546226][ T841] usb 5-1: config 0 interface 251 altsetting 8 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 284.550165][ T841] usb 5-1: config 0 interface 251 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 284.553735][ T841] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x7, skipping [ 284.558084][ T841] usb 5-1: config 0 interface 184 has no altsetting 0 [ 284.560226][ T841] usb 5-1: config 0 interface 251 has no altsetting 0 [ 284.564507][ T841] usb 5-1: New USB device found, idVendor=1b3d, idProduct=4701, bcdDevice=53.f1 [ 284.577903][ T841] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 284.583640][ T841] usb 5-1: Product: syz [ 284.585424][ T841] usb 5-1: Manufacturer: syz [ 284.587379][ T841] usb 5-1: SerialNumber: syz [ 284.591887][ T841] usb 5-1: config 0 descriptor?? [ 284.800674][ T841] ftdi_sio 5-1:0.184: FTDI USB Serial Device converter detected [ 284.804910][ T841] ftdi_sio ttyUSB0: unknown device type: 0x53f1 [ 284.807814][ T6263] usb 7-1: new high-speed USB device number 56 using dummy_hcd [ 284.812300][ T841] ftdi_sio 5-1:0.251: FTDI USB Serial Device converter detected [ 284.816819][ T841] ftdi_sio ttyUSB1: unknown device type: 0x53f1 [ 284.826267][ T841] usb 5-1: USB disconnect, device number 58 [ 284.835222][ T841] ftdi_sio 5-1:0.184: device disconnected [ 284.848585][ T841] ftdi_sio 5-1:0.251: device disconnected [ 284.977883][ T6263] usb 7-1: Using ep0 maxpacket: 16 [ 284.988653][ T6263] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 284.993133][ T6263] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 284.996315][ T6263] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 285.000644][ T6263] usb 7-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 285.004156][ T6263] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 285.010386][ T6263] usb 7-1: config 0 descriptor?? [ 285.438003][ T6263] input: HID 0955:7214 Haptics as /devices/virtual/input/input42 [ 285.472450][ T6263] shield 0003:0955:7214.000E: Registered Thunderstrike controller [ 285.476022][ T6263] shield 0003:0955:7214.000E: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.2-1/input0 [ 285.622953][ T6263] shield 0003:0955:7214.000E: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 285.629495][ T1265] usb 7-1: USB disconnect, device number 56 [ 285.632012][ T6263] shield 0003:0955:7214.000E: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 285.637551][ T6263] shield 0003:0955:7214.000E: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 285.644469][ T6263] shield 0003:0955:7214.000E: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 285.668418][ T1459] usb 6-1: new high-speed USB device number 46 using dummy_hcd [ 285.841196][ T1459] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 285.844655][ T1459] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 285.847636][ T1459] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 285.851842][ T1459] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 285.854665][ T1459] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 285.858477][ T1459] usb 6-1: config 0 descriptor?? [ 286.267992][ T1459] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 286.272235][ T1459] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 286.274596][ T1459] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 286.276907][ T1459] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 286.279861][ T1459] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 286.282184][ T1459] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 286.284586][ T1459] plantronics 0003:047F:FFFF.000F: unbalanced collection at end of report description [ 286.288082][ T1459] plantronics 0003:047F:FFFF.000F: parse failed [ 286.290112][ T1459] plantronics 0003:047F:FFFF.000F: probe with driver plantronics failed with error -22 [ 286.470825][ T1459] usb 6-1: USB disconnect, device number 46 [ 287.782893][T18152] loop5: detected capacity change from 0 to 7 [ 287.890920][T18152] Dev loop5: unable to read RDB block 7 [ 287.892794][T18152] loop5: unable to read partition table [ 287.894680][T18152] loop5: partition table beyond EOD, truncated [ 287.896826][T18152] loop_reread_partitions: partition scan of loop5 (úù) failed (rc=-5) [ 288.086205][T18178] __nla_validate_parse: 16 callbacks suppressed [ 288.086217][T18178] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3970'. [ 288.498995][T18145] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 288.501326][T18145] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 288.509334][T18145] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 288.513448][T18145] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 288.515339][T18145] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 288.519408][T18145] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 288.523002][T18145] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 288.525638][T18145] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 288.531779][T18145] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 288.534442][T18145] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 288.536349][T18145] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 288.542062][T18145] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 289.040822][T18282] loop5: detected capacity change from 0 to 7 [ 289.205936][T18282] Dev loop5: unable to read RDB block 7 [ 289.207911][T18282] loop5: unable to read partition table [ 289.209824][T18282] loop5: partition table beyond EOD, truncated [ 289.220779][T18282] loop_reread_partitions: partition scan of loop5 (úù) failed (rc=-5) [ 289.276920][ T40] audit: type=1400 audit(1763137302.220:468): avc: denied { setopt } for pid=18287 comm="syz.0.4024" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 289.345031][T18294] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4026'. [ 289.757874][ T6004] usb 6-1: new high-speed USB device number 47 using dummy_hcd [ 289.798047][ T5939] Bluetooth: hci4: command 0x0c1a tx timeout [ 289.909301][ T6004] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 289.912897][ T6004] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 289.915946][ T6004] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 289.920532][ T6004] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 289.924031][ T6004] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 289.928977][ T6004] usb 6-1: config 0 descriptor?? [ 290.066495][T18313] loop5: detected capacity change from 0 to 7 [ 290.208305][T18313] Dev loop5: unable to read RDB block 7 [ 290.210184][T18313] loop5: unable to read partition table [ 290.212203][T18313] loop5: partition table beyond EOD, truncated [ 290.214341][T18313] loop_reread_partitions: partition scan of loop5 (úù) failed (rc=-5) [ 290.336711][ T6004] plantronics 0003:047F:FFFF.0010: reserved main item tag 0xe [ 290.340263][ T6004] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 290.342569][ T6004] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 290.345435][ T6004] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 290.348877][ T6004] plantronics 0003:047F:FFFF.0010: unbalanced collection at end of report description [ 290.352138][ T6004] plantronics 0003:047F:FFFF.0010: parse failed [ 290.354246][ T6004] plantronics 0003:047F:FFFF.0010: probe with driver plantronics failed with error -22 [ 290.413243][T18329] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4043'. [ 290.541819][ T6100] usb 6-1: USB disconnect, device number 47 [ 290.587902][ T5937] Bluetooth: hci1: command 0x0c1a tx timeout [ 290.588077][ T5934] Bluetooth: hci3: command 0x0c1a tx timeout [ 290.589997][ T5939] Bluetooth: hci0: command 0x0c1a tx timeout [ 291.110839][T18385] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4071'. [ 291.113969][T18385] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4071'. [ 291.117184][T18385] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4071'. [ 291.120803][T18385] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4071'. [ 291.527791][ T34] usb 6-1: new high-speed USB device number 48 using dummy_hcd [ 291.680138][ T34] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 291.684685][ T34] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 291.689220][ T34] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 291.694566][ T34] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 291.699398][ T34] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 291.706015][ T34] usb 6-1: config 0 descriptor?? [ 291.867873][ T5939] Bluetooth: hci4: command 0x0c1a tx timeout [ 292.121975][ T34] plantronics 0003:047F:FFFF.0011: reserved main item tag 0xe [ 292.124410][ T34] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 292.127443][ T34] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 292.131116][ T34] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 292.134531][ T34] plantronics 0003:047F:FFFF.0011: unbalanced collection at end of report description [ 292.138049][ T34] plantronics 0003:047F:FFFF.0011: parse failed [ 292.140067][ T34] plantronics 0003:047F:FFFF.0011: probe with driver plantronics failed with error -22 [ 292.319361][ T6100] usb 6-1: USB disconnect, device number 48 [ 292.667977][ T5939] Bluetooth: hci3: command 0x0c1a tx timeout [ 292.668002][ T5934] Bluetooth: hci0: command 0x0c1a tx timeout [ 292.668477][ T5937] Bluetooth: hci1: command 0x0c1a tx timeout [ 293.308157][ T1265] usb 6-1: new high-speed USB device number 49 using dummy_hcd [ 293.465701][ T1265] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 293.469852][ T1265] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 293.473899][ T1265] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 293.481572][ T1265] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 293.485214][ T1265] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 293.496032][ T1265] usb 6-1: config 0 descriptor?? [ 293.908869][ T1265] plantronics 0003:047F:FFFF.0012: reserved main item tag 0xe [ 293.911254][ T1265] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0 [ 293.914232][ T1265] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0 [ 293.917307][ T1265] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0 [ 293.920441][ T1265] plantronics 0003:047F:FFFF.0012: unbalanced collection at end of report description [ 293.924427][ T1265] plantronics 0003:047F:FFFF.0012: parse failed [ 293.927056][ T1265] plantronics 0003:047F:FFFF.0012: probe with driver plantronics failed with error -22 [ 293.947833][ T5934] Bluetooth: hci4: command 0x0c1a tx timeout [ 294.105265][ T5987] usb 6-1: USB disconnect, device number 49 [ 294.243155][T18530] netlink: 84 bytes leftover after parsing attributes in process `syz.2.4142'. [ 294.493198][ T40] audit: type=1400 audit(1763137307.440:469): avc: denied { setopt } for pid=18551 comm="syz.2.4152" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 294.499823][ T40] audit: type=1400 audit(1763137307.440:470): avc: denied { connect } for pid=18551 comm="syz.2.4152" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 294.749152][ T5934] Bluetooth: hci3: command 0x0c1a tx timeout [ 294.749187][ T5939] Bluetooth: hci0: command 0x0c1a tx timeout [ 294.751652][ T5934] Bluetooth: hci1: command 0x0c1a tx timeout [ 295.007803][ T34] usb 5-1: new high-speed USB device number 59 using dummy_hcd [ 295.159973][ T34] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 295.164606][ T34] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 295.168729][ T34] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 295.174218][ T34] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 295.178997][ T34] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 295.184782][ T34] usb 5-1: config 0 descriptor?? [ 295.596698][ T34] plantronics 0003:047F:FFFF.0013: reserved main item tag 0xe [ 295.600908][ T34] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 295.605961][ T34] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 295.609096][ T34] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 295.612227][ T34] plantronics 0003:047F:FFFF.0013: unbalanced collection at end of report description [ 295.617962][ T34] plantronics 0003:047F:FFFF.0013: parse failed [ 295.620613][ T34] plantronics 0003:047F:FFFF.0013: probe with driver plantronics failed with error -22 [ 295.793141][ T5987] usb 5-1: USB disconnect, device number 59 [ 296.208156][ T34] usb 6-1: new high-speed USB device number 50 using dummy_hcd [ 296.371669][ T34] usb 6-1: config 0 has an invalid interface number: 184 but max is 1 [ 296.375120][ T34] usb 6-1: config 0 has an invalid interface number: 251 but max is 1 [ 296.378938][ T34] usb 6-1: config 0 has no interface number 0 [ 296.381625][ T34] usb 6-1: config 0 has no interface number 1 [ 296.384249][ T34] usb 6-1: config 0 interface 184 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 296.389100][ T34] usb 6-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xA, skipping [ 296.393664][ T34] usb 6-1: config 0 interface 251 altsetting 8 endpoint 0x7 has an invalid bInterval 189, changing to 7 [ 296.398858][ T34] usb 6-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xC, skipping [ 296.403283][ T34] usb 6-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x2, skipping [ 296.409410][ T34] usb 6-1: config 0 interface 251 altsetting 8 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 296.413933][ T34] usb 6-1: config 0 interface 251 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 296.418730][ T34] usb 6-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x7, skipping [ 296.423239][ T34] usb 6-1: config 0 interface 184 has no altsetting 0 [ 296.426163][ T34] usb 6-1: config 0 interface 251 has no altsetting 0 [ 296.433568][ T34] usb 6-1: New USB device found, idVendor=1b3d, idProduct=4701, bcdDevice=53.f1 [ 296.436885][ T34] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 296.439598][ T34] usb 6-1: Product: syz [ 296.440945][ T34] usb 6-1: Manufacturer: syz [ 296.442443][ T34] usb 6-1: SerialNumber: syz [ 296.445266][ T34] usb 6-1: config 0 descriptor?? [ 296.612113][ T40] audit: type=1400 audit(1763137309.560:471): avc: denied { module_load } for pid=18693 comm="syz.2.4224" path="/sys/kernel/notes" dev="sysfs" ino=861 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1 [ 296.655839][ T34] ftdi_sio 6-1:0.184: FTDI USB Serial Device converter detected [ 296.661097][ T34] ftdi_sio ttyUSB0: unknown device type: 0x53f1 [ 296.667345][ T34] ftdi_sio 6-1:0.251: FTDI USB Serial Device converter detected [ 296.672772][ T34] ftdi_sio ttyUSB1: unknown device type: 0x53f1 [ 296.684416][ T34] usb 6-1: USB disconnect, device number 50 [ 296.693659][ T34] ftdi_sio 6-1:0.184: device disconnected [ 296.705090][ T34] ftdi_sio 6-1:0.251: device disconnected [ 297.148638][T18758] netlink: 84 bytes leftover after parsing attributes in process `syz.3.4255'. [ 297.177355][ T40] audit: type=1400 audit(1763137310.120:472): avc: denied { read } for pid=18759 comm="syz.2.4256" lport=44937 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 297.409905][T18782] vlan3: entered promiscuous mode [ 297.411572][T18782] bridge0: entered promiscuous mode [ 298.838150][ T40] audit: type=1400 audit(1763137311.780:473): avc: denied { mount } for pid=18829 comm="syz.2.4292" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 299.117918][ T6004] usb 6-1: new high-speed USB device number 51 using dummy_hcd [ 299.127854][ T5987] usb 7-1: new high-speed USB device number 57 using dummy_hcd [ 299.287848][ T5987] usb 7-1: Using ep0 maxpacket: 16 [ 299.291864][ T5987] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 299.296143][ T5987] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 299.300674][ T5987] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 299.306762][ T6004] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 299.311721][ T5987] usb 7-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 299.315547][ T5987] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 299.319034][ T6004] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 299.323083][ T6004] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 299.329663][ T6004] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 299.334322][ T5987] usb 7-1: config 0 descriptor?? [ 299.336673][ T6004] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 299.342885][ T6004] usb 6-1: config 0 descriptor?? [ 299.744792][T18837] random: crng reseeded on system resumption [ 299.757399][ T6004] plantronics 0003:047F:FFFF.0014: reserved main item tag 0xe [ 299.762624][ T5987] usbhid 7-1:0.0: can't add hid device: -71 [ 299.765260][ T5987] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 299.769225][ T6004] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0 [ 299.776038][ T5987] usb 7-1: USB disconnect, device number 57 [ 299.785414][ T6004] plantronics 0003:047F:FFFF.0014: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 299.959388][ T53] usb 6-1: USB disconnect, device number 51 [ 299.974810][T18872] 9pnet_fd: p9_fd_create_tcp (18872): problem connecting socket to 127.0.0.1 [ 300.442790][T18890] 9pnet_fd: p9_fd_create_tcp (18890): problem connecting socket to 127.0.0.1 [ 300.775288][T18914] syz_tun: entered allmulticast mode [ 300.780019][T18914] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4330'. [ 300.789431][T18914] syz_tun (unregistering): left allmulticast mode [ 300.922758][T18929] 9pnet_fd: p9_fd_create_tcp (18929): problem connecting socket to 127.0.0.1 [ 301.287963][T18973] loop5: detected capacity change from 0 to 7 [ 301.425046][T18973] Dev loop5: unable to read RDB block 7 [ 301.427658][T18973] loop5: unable to read partition table [ 301.430391][T18973] loop5: partition table beyond EOD, truncated [ 301.433197][T18973] loop_reread_partitions: partition scan of loop5 (úù) failed (rc=-5) [ 302.557825][ T1265] usb 6-1: new high-speed USB device number 52 using dummy_hcd [ 302.709908][ T1265] usb 6-1: Using ep0 maxpacket: 16 [ 302.714140][ T1265] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 302.722826][ T1265] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 302.728456][ T1265] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 302.733902][ T1265] usb 6-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 302.737675][ T1265] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 302.744839][ T1265] usb 6-1: config 0 descriptor?? [ 303.152639][T19054] random: crng reseeded on system resumption [ 303.366396][ T1265] usbhid 6-1:0.0: can't add hid device: -71 [ 303.371924][ T1265] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 303.380557][ T1265] usb 6-1: USB disconnect, device number 52 [ 303.741371][T19110] loop5: detected capacity change from 0 to 7 [ 303.864602][T19110] Dev loop5: unable to read RDB block 7 [ 303.866570][T19110] loop5: unable to read partition table [ 303.869076][T19110] loop5: partition table beyond EOD, truncated [ 303.871690][T19110] loop_reread_partitions: partition scan of loop5 (úù) failed (rc=-5) [ 304.377889][ T1459] usb 6-1: new high-speed USB device number 53 using dummy_hcd [ 304.527837][ T1459] usb 6-1: Using ep0 maxpacket: 16 [ 304.531017][ T1459] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 304.534901][ T1459] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 304.538397][ T1459] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 304.542343][ T1459] usb 6-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 304.545250][ T1459] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 304.607420][ T1459] usb 6-1: config 0 descriptor?? [ 304.939702][T19172] 9pnet_fd: p9_fd_create_tcp (19172): problem connecting socket to 127.0.0.1 [ 304.977930][T19174] netlink: 84 bytes leftover after parsing attributes in process `syz.3.4449'. [ 305.018177][T19130] random: crng reseeded on system resumption [ 305.230156][ T1459] usbhid 6-1:0.0: can't add hid device: -71 [ 305.232778][ T1459] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 305.237669][ T1459] usb 6-1: USB disconnect, device number 53 [ 305.950412][T19202] netlink: 84 bytes leftover after parsing attributes in process `syz.1.4462'. [ 306.187495][T19224] netlink: 84 bytes leftover after parsing attributes in process `syz.3.4472'. [ 306.993965][ T40] audit: type=1400 audit(1763137319.940:474): avc: denied { write } for pid=19259 comm="syz.1.4490" name="ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 308.158457][T19320] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4518'. [ 308.161549][T19320] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4518'. [ 308.185256][T19320] 8021q: adding VLAN 0 to HW filter on device bond3 [ 308.188496][T19320] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4518'. [ 308.191271][T19320] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4518'. [ 308.203159][T19320] 8021q: adding VLAN 0 to HW filter on device bond4 [ 308.418377][ T40] audit: type=1400 audit(1763137321.360:475): avc: denied { read } for pid=19333 comm="syz.1.4524" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 308.433369][ T40] audit: type=1400 audit(1763137321.370:476): avc: denied { open } for pid=19333 comm="syz.1.4524" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 308.505571][ T40] audit: type=1400 audit(1763137321.420:477): avc: denied { setattr } for pid=19333 comm="syz.1.4524" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 309.792896][T19360] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4530'. [ 309.796579][T19360] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 309.801253][T19360] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 309.805598][T19360] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 309.809165][T19360] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 309.932723][T19374] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4543'. [ 309.936412][T19374] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4543'. [ 309.955894][T19374] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4543'. [ 310.248376][T19416] loop5: detected capacity change from 0 to 7 [ 310.364778][T19416] Dev loop5: unable to read RDB block 7 [ 310.367080][T19416] loop5: unable to read partition table [ 310.370568][T19416] loop5: partition table beyond EOD, truncated [ 310.373018][T19416] loop_reread_partitions: partition scan of loop5 (úù) failed (rc=-5) [ 311.279854][ T5939] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 311.286002][ T5939] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 311.290041][ T5939] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 311.293491][ T5939] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 311.296645][ T5939] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 311.343534][T19477] 9pnet_virtio: no channels available for device 127.0.0.1 [ 311.381494][ T92] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 311.486286][T19472] chnl_net:caif_netlink_parms(): no params data found [ 311.503897][ T92] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 311.581612][T19472] bridge0: port 1(bridge_slave_0) entered blocking state [ 311.584112][T19472] bridge0: port 1(bridge_slave_0) entered disabled state [ 311.586434][T19472] bridge_slave_0: entered allmulticast mode [ 311.590246][T19472] bridge_slave_0: entered promiscuous mode [ 311.603642][ T92] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 311.612768][T19472] bridge0: port 2(bridge_slave_1) entered blocking state [ 311.615085][T19472] bridge0: port 2(bridge_slave_1) entered disabled state [ 311.617518][T19472] bridge_slave_1: entered allmulticast mode [ 311.621211][T19472] bridge_slave_1: entered promiscuous mode [ 311.647038][T19493] program syz.0.4594 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 311.656128][T19472] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 311.661392][T19472] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 311.716541][ T92] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 311.724571][T19472] team0: Port device team_slave_0 added [ 311.728745][T19472] team0: Port device team_slave_1 added [ 311.768869][T19472] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 311.771207][T19472] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 311.780356][T19472] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 311.785743][T19472] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 311.788381][T19472] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 311.797652][T19472] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 311.841655][T19472] hsr_slave_0: entered promiscuous mode [ 311.843936][T19472] hsr_slave_1: entered promiscuous mode [ 311.845978][T19472] debugfs: 'hsr0' already exists in 'hsr' [ 311.847848][T19472] Cannot create hsr debugfs directory [ 311.940530][ T92] bridge_slave_1: left allmulticast mode [ 311.942345][ T92] bridge_slave_1: left promiscuous mode [ 311.944187][ T92] bridge0: port 2(bridge_slave_1) entered disabled state [ 311.949453][ T92] bridge_slave_0: left allmulticast mode [ 311.951827][ T92] bridge_slave_0: left promiscuous mode [ 311.954248][ T92] bridge0: port 1(bridge_slave_0) entered disabled state [ 312.222082][ T92] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 312.227953][ T92] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 312.232298][ T92] bond0 (unregistering): Released all slaves [ 312.645254][ T40] audit: type=1400 audit(1763137325.590:478): avc: denied { setattr } for pid=19513 comm="syz.0.4601" name="file0" dev="tmpfs" ino=3201 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 312.663021][ T92] hsr_slave_0: left promiscuous mode [ 312.665281][ T92] hsr_slave_1: left promiscuous mode [ 312.667369][ T92] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 312.669873][ T92] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 312.672711][ T92] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 312.675130][ T92] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 312.702508][ T92] veth1_macvtap: left allmulticast mode [ 312.704951][ T92] veth1_macvtap: left promiscuous mode [ 312.707199][ T92] veth0_macvtap: left promiscuous mode [ 312.710569][ T92] veth1_vlan: left promiscuous mode [ 312.712911][ T92] veth0_vlan: left promiscuous mode [ 313.267612][ T92] team0 (unregistering): Port device team_slave_1 removed [ 313.318002][ T5939] Bluetooth: hci0: command tx timeout [ 313.323172][ T92] team0 (unregistering): Port device team_slave_0 removed [ 313.824719][T19545] vlan2: entered promiscuous mode [ 313.826896][T19545] bridge0: entered promiscuous mode [ 313.888371][ T6263] usb 6-1: new high-speed USB device number 54 using dummy_hcd [ 314.055485][T19472] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 314.059578][ T6263] usb 6-1: config 0 has an invalid interface number: 184 but max is 1 [ 314.062761][ T6263] usb 6-1: config 0 has an invalid interface number: 251 but max is 1 [ 314.067197][T19472] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 314.068841][ T6263] usb 6-1: config 0 has no interface number 0 [ 314.074075][ T6263] usb 6-1: config 0 has no interface number 1 [ 314.077085][T19472] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 314.078022][ T6263] usb 6-1: config 0 interface 184 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 314.086716][T19472] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 314.088080][ T6263] usb 6-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xA, skipping [ 314.092938][ T6263] usb 6-1: config 0 interface 251 altsetting 8 endpoint 0x7 has an invalid bInterval 189, changing to 7 [ 314.092956][ T6263] usb 6-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xC, skipping [ 314.092968][ T6263] usb 6-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x2, skipping [ 314.092979][ T6263] usb 6-1: config 0 interface 251 altsetting 8 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 314.092992][ T6263] usb 6-1: config 0 interface 251 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 314.093004][ T6263] usb 6-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x7, skipping [ 314.117130][ T6263] usb 6-1: config 0 interface 184 has no altsetting 0 [ 314.117146][ T6263] usb 6-1: config 0 interface 251 has no altsetting 0 [ 314.124776][ T6263] usb 6-1: New USB device found, idVendor=1b3d, idProduct=4701, bcdDevice=53.f1 [ 314.124793][ T6263] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 314.124804][ T6263] usb 6-1: Product: syz [ 314.124811][ T6263] usb 6-1: Manufacturer: syz [ 314.124819][ T6263] usb 6-1: SerialNumber: syz [ 314.126072][ T6263] usb 6-1: config 0 descriptor?? [ 314.174186][T19472] 8021q: adding VLAN 0 to HW filter on device bond0 [ 314.185455][T19472] 8021q: adding VLAN 0 to HW filter on device team0 [ 314.193667][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 314.196593][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 314.206763][ T97] bridge0: port 2(bridge_slave_1) entered blocking state [ 314.210056][ T97] bridge0: port 2(bridge_slave_1) entered forwarding state [ 314.331866][ T6263] ftdi_sio 6-1:0.184: FTDI USB Serial Device converter detected [ 314.336188][ T6263] ftdi_sio ttyUSB0: unknown device type: 0x53f1 [ 314.344157][ T6263] ftdi_sio 6-1:0.251: FTDI USB Serial Device converter detected [ 314.349358][ T6263] ftdi_sio ttyUSB1: unknown device type: 0x53f1 [ 314.372601][ T6263] usb 6-1: USB disconnect, device number 54 [ 314.375064][T19472] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 314.377233][ T6263] ftdi_sio 6-1:0.184: device disconnected [ 314.393176][ T6263] ftdi_sio 6-1:0.251: device disconnected [ 314.414525][T19472] veth0_vlan: entered promiscuous mode [ 314.419344][T19472] veth1_vlan: entered promiscuous mode [ 314.433241][T19472] veth0_macvtap: entered promiscuous mode [ 314.437123][T19472] veth1_macvtap: entered promiscuous mode [ 314.447053][T19472] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 314.455152][T19472] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 314.463117][ T92] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 314.466839][ T92] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 314.473855][ T92] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 314.476967][ T92] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 314.509370][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 314.513129][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 314.535400][ T92] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 314.538392][ T92] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 314.839048][T19597] vlan2: entered promiscuous mode [ 314.840842][T19597] bridge0: entered promiscuous mode [ 315.026114][T19628] __nla_validate_parse: 1 callbacks suppressed [ 315.026129][T19628] netlink: 48 bytes leftover after parsing attributes in process `syz.1.4642'. [ 315.033242][T19628] netlink: 48 bytes leftover after parsing attributes in process `syz.1.4642'. [ 315.332626][T19674] 9pnet_fd: p9_fd_create_tcp (19674): problem connecting socket to 127.0.0.1 [ 315.389850][ T5939] Bluetooth: hci0: command tx timeout [ 315.526012][T19696] 9pnet_fd: p9_fd_create_tcp (19696): problem connecting socket to 127.0.0.1 [ 315.647675][T19710] program syz.2.4684 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 315.780214][T19728] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4693'. [ 315.783104][T19728] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4693'. [ 315.982061][T19736] program syz.3.4698 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 316.658937][T19774] 9pnet_fd: p9_fd_create_tcp (19774): problem connecting socket to 127.0.0.1 [ 316.700909][T19780] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4719'. [ 316.705947][T19780] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4719'. [ 316.710531][T19780] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4719'. [ 316.713826][T19780] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4719'. [ 316.720997][ T40] audit: type=1326 audit(1763137329.670:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19779 comm="syz.0.4719" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f11a0f8f6c9 code=0x0 [ 316.793832][T19786] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4721'. [ 316.797637][T19786] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4721'. [ 316.801607][T19786] netlink: 'syz.2.4721': attribute type 20 has an invalid length. [ 316.805731][T19786] netlink: 'syz.2.4721': attribute type 20 has an invalid length. [ 317.467970][ T5939] Bluetooth: hci0: command tx timeout [ 317.988519][T19802] 9pnet_fd: p9_fd_create_tcp (19802): problem connecting socket to 127.0.0.1 [ 318.440195][ T40] audit: type=1326 audit(1763137331.390:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19824 comm="syz.0.4740" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f11a0f8f6c9 code=0x0 [ 318.547835][T19833] 9pnet_fd: p9_fd_create_tcp (19833): problem connecting socket to 127.0.0.1 [ 319.315954][T19880] 9pnet_fd: p9_fd_create_tcp (19880): problem connecting socket to 127.0.0.1 [ 319.558591][ T5939] Bluetooth: hci0: command tx timeout [ 320.403832][T19954] __nla_validate_parse: 4 callbacks suppressed [ 320.403843][T19954] netlink: 84 bytes leftover after parsing attributes in process `syz.2.4796'. [ 320.524076][T19968] loop5: detected capacity change from 0 to 7 [ 320.675209][T19858] Dev loop5: unable to read RDB block 7 [ 320.681530][T19858] loop5: unable to read partition table [ 320.685275][T19858] loop5: partition table beyond EOD, truncated [ 320.837156][T19968] Dev loop5: unable to read RDB block 7 [ 320.839825][T19968] loop5: unable to read partition table [ 320.842476][T19968] loop5: partition table beyond EOD, truncated [ 320.845262][T19968] loop_reread_partitions: partition scan of loop5 (úù) failed (rc=-5) [ 321.135898][T19991] netlink: 84 bytes leftover after parsing attributes in process `syz.0.4819'. [ 321.266810][ T40] audit: type=1400 audit(1763137334.210:481): avc: denied { connect } for pid=19995 comm="syz.0.4821" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 321.278107][ T40] audit: type=1400 audit(1763137334.220:482): avc: denied { write } for pid=19995 comm="syz.0.4821" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 321.674981][T20024] netlink: 84 bytes leftover after parsing attributes in process `syz.2.4832'. [ 322.031723][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 322.033761][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 322.548058][ T40] audit: type=1400 audit(1763137335.490:483): avc: denied { append } for pid=20049 comm="syz.2.4844" name="001" dev="devtmpfs" ino=767 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 324.122315][ T40] audit: type=1400 audit(1763137337.070:484): avc: denied { ioctl } for pid=20134 comm="syz.2.4885" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 324.355216][T20153] loop5: detected capacity change from 0 to 7 [ 324.362062][T20154] vlan2: entered promiscuous mode [ 324.363898][T20154] bridge0: entered promiscuous mode [ 324.509385][T20153] Dev loop5: unable to read RDB block 7 [ 324.511849][T20153] loop5: unable to read partition table [ 324.514535][T20153] loop5: partition table beyond EOD, truncated [ 324.517263][T20153] loop_reread_partitions: partition scan of loop5 (úù) failed (rc=-5) [ 324.651749][T20170] overlayfs: failed to resolve './file1': -2 [ 324.955021][T20179] program syz.1.4906 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 325.214711][ T5934] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 325.218709][ T5934] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 325.224920][ T5934] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 325.234633][ T5934] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 325.238494][ T5934] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 325.289608][ T1241] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 325.293699][ T1241] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 325.439690][ T1241] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 325.443980][ T1241] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 325.472793][T20183] chnl_net:caif_netlink_parms(): no params data found [ 325.594725][ T1241] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 325.598648][ T1241] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 325.606021][T20183] bridge0: port 1(bridge_slave_0) entered blocking state [ 325.610718][T20183] bridge0: port 1(bridge_slave_0) entered disabled state [ 325.614270][T20183] bridge_slave_0: entered allmulticast mode [ 325.623103][T20183] bridge_slave_0: entered promiscuous mode [ 325.629431][T20183] bridge0: port 2(bridge_slave_1) entered blocking state [ 325.632460][T20183] bridge0: port 2(bridge_slave_1) entered disabled state [ 325.635471][T20183] bridge_slave_1: entered allmulticast mode [ 325.641081][T20183] bridge_slave_1: entered promiscuous mode [ 325.649046][ T40] audit: type=1400 audit(1763137338.590:485): avc: denied { create } for pid=20197 comm="syz.3.4910" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 325.657442][ T40] audit: type=1400 audit(1763137338.600:486): avc: denied { getopt } for pid=20197 comm="syz.3.4910" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 325.697865][ T1241] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 325.701441][ T1241] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 325.710913][T20183] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 325.716169][T20183] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 325.759032][T20183] team0: Port device team_slave_0 added [ 325.763614][T20183] team0: Port device team_slave_1 added [ 325.820004][T20183] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 325.822266][T20183] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 325.831202][T20183] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 325.836688][T20183] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 325.840649][T20183] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 325.849060][T20183] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 325.927025][T20183] hsr_slave_0: entered promiscuous mode [ 325.930278][T20183] hsr_slave_1: entered promiscuous mode [ 325.932507][T20183] debugfs: 'hsr0' already exists in 'hsr' [ 325.934380][T20183] Cannot create hsr debugfs directory [ 325.962183][ T1241] bridge_slave_1: left allmulticast mode [ 325.964087][ T1241] bridge_slave_1: left promiscuous mode [ 325.965900][ T1241] bridge0: port 2(bridge_slave_1) entered disabled state [ 325.973971][ T1241] bridge_slave_0: left allmulticast mode [ 325.975838][ T1241] bridge_slave_0: left promiscuous mode [ 325.977875][ T1241] bridge0: port 1(bridge_slave_0) entered disabled state [ 326.410431][ T1241] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 326.418150][ T1241] bond_slave_0: left allmulticast mode [ 326.422228][ T1241] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 326.425983][ T1241] bond_slave_1: left allmulticast mode [ 326.429857][ T1241] bond0 (unregistering): Released all slaves [ 326.438758][ T1241] bond1 (unregistering): Released all slaves [ 326.445776][ T1241] bond2 (unregistering): Released all slaves [ 326.542529][ T1241] bond3 (unregistering): Released all slaves [ 326.620641][ T1241] bond4 (unregistering): Released all slaves [ 327.031634][ T1241] hsr_slave_0: left promiscuous mode [ 327.034408][ T1241] hsr_slave_1: left promiscuous mode [ 327.036384][ T1241] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 327.039351][ T1241] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 327.042491][ T1241] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 327.044811][ T1241] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 327.063372][ T1241] veth1_macvtap: left allmulticast mode [ 327.065237][ T1241] veth1_macvtap: left promiscuous mode [ 327.066996][ T1241] veth0_macvtap: left promiscuous mode [ 327.070979][ T1241] veth1_vlan: left promiscuous mode [ 327.072706][ T1241] veth0_vlan: left promiscuous mode [ 327.308847][ T5934] Bluetooth: hci2: command tx timeout [ 327.690069][ T1241] team0 (unregistering): Port device team_slave_1 removed [ 327.766611][ T1241] team0 (unregistering): Port device team_slave_0 removed [ 327.771064][T20290] netlink: 556 bytes leftover after parsing attributes in process `syz.3.4948'. [ 328.468768][T20183] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 328.473899][T20183] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 328.477085][T20314] netlink: 556 bytes leftover after parsing attributes in process `syz.2.4956'. [ 328.482545][T20183] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 328.489459][T20183] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 328.558626][T20183] 8021q: adding VLAN 0 to HW filter on device bond0 [ 328.567074][T20183] 8021q: adding VLAN 0 to HW filter on device team0 [ 328.576277][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 328.579423][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 328.584706][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 328.587826][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 328.612961][T20183] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 328.726498][T20183] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 328.752593][T20183] veth0_vlan: entered promiscuous mode [ 328.757969][T20183] veth1_vlan: entered promiscuous mode [ 328.771704][T20183] veth0_macvtap: entered promiscuous mode [ 328.773951][T20346] netlink: 556 bytes leftover after parsing attributes in process `syz.3.4966'. [ 328.775659][T20183] veth1_macvtap: entered promiscuous mode [ 328.786289][T20183] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 328.792209][T20183] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 328.797641][ T92] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 328.801290][ T92] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 328.805106][ T92] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 328.808020][ T92] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 328.856171][ T1241] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 328.862151][ T1241] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 328.870533][T20355] program syz.3.4970 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 328.882094][ T92] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 328.884821][ T92] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 329.000023][T20366] netlink: 96 bytes leftover after parsing attributes in process `syz.3.4975'. [ 329.078747][ T5939] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 329.083077][ T5939] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 329.088132][ T5939] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 329.091146][ T5939] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 329.094887][ T5939] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 329.099086][T20377] program syz.3.4979 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 329.186380][T20389] netlink: 96 bytes leftover after parsing attributes in process `syz.1.4984'. [ 329.210111][T20372] chnl_net:caif_netlink_parms(): no params data found [ 329.267152][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 329.270845][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 329.314677][T20372] bridge0: port 1(bridge_slave_0) entered blocking state [ 329.317116][T20372] bridge0: port 1(bridge_slave_0) entered disabled state [ 329.319758][T20372] bridge_slave_0: entered allmulticast mode [ 329.322368][T20372] bridge_slave_0: entered promiscuous mode [ 329.326763][T20372] bridge0: port 2(bridge_slave_1) entered blocking state [ 329.329372][T20372] bridge0: port 2(bridge_slave_1) entered disabled state [ 329.331728][T20372] bridge_slave_1: entered allmulticast mode [ 329.334366][T20372] bridge_slave_1: entered promiscuous mode [ 329.387933][ T5934] Bluetooth: hci2: command tx timeout [ 329.388673][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 329.398398][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 329.417444][T20372] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 329.423264][T20372] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 329.454848][T20372] team0: Port device team_slave_0 added [ 329.459636][T20372] team0: Port device team_slave_1 added [ 329.488207][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 329.491440][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 329.513952][T20372] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 329.516169][T20372] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 329.526252][T20372] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 329.533057][T20372] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 329.535931][T20372] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 329.546913][T20372] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 329.639028][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 329.643316][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 329.655221][T20372] hsr_slave_0: entered promiscuous mode [ 329.660305][T20372] hsr_slave_1: entered promiscuous mode [ 329.880587][ T12] bridge_slave_1: left allmulticast mode [ 329.882889][ T12] bridge_slave_1: left promiscuous mode [ 329.885290][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 329.898415][ T12] bridge_slave_0: left allmulticast mode [ 329.900240][ T12] bridge_slave_0: left promiscuous mode [ 329.902068][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 330.055046][ T12] bridge0 (unregistering): left allmulticast mode [ 330.155159][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 330.159563][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 330.163196][ T12] bond0 (unregistering): Released all slaves [ 330.169446][ T12] bond1 (unregistering): Released all slaves [ 330.175405][ T12] bond2 (unregistering): Released all slaves [ 330.514937][ T12] hsr_slave_0: left promiscuous mode [ 330.517500][ T12] hsr_slave_1: left promiscuous mode [ 330.541758][ T12] veth1_macvtap: left allmulticast mode [ 330.543766][ T12] veth1_macvtap: left promiscuous mode [ 330.545575][ T12] veth0_macvtap: left promiscuous mode [ 330.547395][ T12] veth1_vlan: left promiscuous mode [ 330.549440][ T12] veth0_vlan: left promiscuous mode [ 331.149707][ T5934] Bluetooth: hci3: command tx timeout [ 331.230345][ T12] team0 (unregistering): Port device team_slave_1 removed [ 331.292155][ T12] team0 (unregistering): Port device team_slave_0 removed [ 331.477874][ T5934] Bluetooth: hci2: command tx timeout [ 331.953801][T20372] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 331.960952][T20372] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 331.965301][T20372] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 331.971086][T20372] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 332.025758][T20372] 8021q: adding VLAN 0 to HW filter on device bond0 [ 332.037163][T20372] 8021q: adding VLAN 0 to HW filter on device team0 [ 332.044581][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 332.047495][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 332.054635][ T92] bridge0: port 2(bridge_slave_1) entered blocking state [ 332.057271][ T92] bridge0: port 2(bridge_slave_1) entered forwarding state [ 332.077388][T20372] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 332.081295][T20372] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 332.178107][ T1265] usb 7-1: new high-speed USB device number 58 using dummy_hcd [ 332.185394][T20372] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 332.215889][T20372] veth0_vlan: entered promiscuous mode [ 332.223182][T20372] veth1_vlan: entered promiscuous mode [ 332.238421][T20372] veth0_macvtap: entered promiscuous mode [ 332.242056][T20372] veth1_macvtap: entered promiscuous mode [ 332.251430][T20372] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 332.258976][T20372] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 332.265466][ T92] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 332.270860][ T92] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 332.276272][ T92] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 332.279941][ T92] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 332.320969][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 332.323519][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 332.332524][ T1265] usb 7-1: config 0 has an invalid interface number: 184 but max is 1 [ 332.336016][ T1265] usb 7-1: config 0 has an invalid interface number: 251 but max is 1 [ 332.338087][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 332.340113][ T1265] usb 7-1: config 0 has no interface number 0 [ 332.342022][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 332.349614][ T1265] usb 7-1: config 0 has no interface number 1 [ 332.352249][ T1265] usb 7-1: config 0 interface 184 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 332.356749][ T1265] usb 7-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xA, skipping [ 332.362247][ T1265] usb 7-1: config 0 interface 251 altsetting 8 endpoint 0x7 has an invalid bInterval 189, changing to 7 [ 332.366074][ T1265] usb 7-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xC, skipping [ 332.369567][ T1265] usb 7-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x2, skipping [ 332.372922][ T1265] usb 7-1: config 0 interface 251 altsetting 8 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 332.376268][ T1265] usb 7-1: config 0 interface 251 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 332.379854][ T1265] usb 7-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x7, skipping [ 332.383184][ T1265] usb 7-1: config 0 interface 184 has no altsetting 0 [ 332.385272][ T1265] usb 7-1: config 0 interface 251 has no altsetting 0 [ 332.391129][ T1265] usb 7-1: New USB device found, idVendor=1b3d, idProduct=4701, bcdDevice=53.f1 [ 332.394005][ T1265] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 332.396483][ T1265] usb 7-1: Product: syz [ 332.398244][ T1265] usb 7-1: Manufacturer: syz [ 332.399724][ T1265] usb 7-1: SerialNumber: syz [ 332.402367][ T1265] usb 7-1: config 0 descriptor?? [ 332.611032][ T1265] ftdi_sio 7-1:0.184: FTDI USB Serial Device converter detected [ 332.614040][ T1265] ftdi_sio ttyUSB0: unknown device type: 0x53f1 [ 332.618137][ T1265] ftdi_sio 7-1:0.251: FTDI USB Serial Device converter detected [ 332.620991][ T1265] ftdi_sio ttyUSB1: unknown device type: 0x53f1 [ 332.626172][ T1265] usb 7-1: USB disconnect, device number 58 [ 332.629652][ T1265] ftdi_sio 7-1:0.184: device disconnected [ 332.634570][ T1265] ftdi_sio 7-1:0.251: device disconnected [ 333.227972][ T5934] Bluetooth: hci3: command tx timeout [ 333.557945][ T5934] Bluetooth: hci2: command tx timeout [ 333.619232][T20589] netlink: 332 bytes leftover after parsing attributes in process `syz.0.5055'. [ 334.195223][T20623] program syz.1.5073 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 334.464982][T20650] program syz.2.5084 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 335.307862][ T5934] Bluetooth: hci3: command tx timeout [ 335.419395][T20721] program syz.3.5116 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 336.263449][T20739] program syz.0.5126 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 336.484271][ T5939] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 336.490281][ T5939] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 336.493610][ T5939] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 336.497338][ T5939] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 336.501523][ T5939] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 336.609247][T20753] chnl_net:caif_netlink_parms(): no params data found [ 336.675297][T20753] bridge0: port 1(bridge_slave_0) entered blocking state [ 336.677654][T20753] bridge0: port 1(bridge_slave_0) entered disabled state [ 336.680169][T20753] bridge_slave_0: entered allmulticast mode [ 336.683068][T20753] bridge_slave_0: entered promiscuous mode [ 336.686336][T20753] bridge0: port 2(bridge_slave_1) entered blocking state [ 336.689272][T20753] bridge0: port 2(bridge_slave_1) entered disabled state [ 336.692088][T20753] bridge_slave_1: entered allmulticast mode [ 336.695144][T20753] bridge_slave_1: entered promiscuous mode [ 336.727020][T20753] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 336.731829][T20753] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 336.775692][T20753] team0: Port device team_slave_0 added [ 336.780324][T20753] team0: Port device team_slave_1 added [ 336.811774][T20753] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 336.814441][T20753] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 336.824417][T20753] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 336.829697][T20753] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 336.832382][T20753] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 336.842345][T20753] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 336.886647][T20753] hsr_slave_0: entered promiscuous mode [ 336.890108][T20753] hsr_slave_1: entered promiscuous mode [ 336.892694][T20753] debugfs: 'hsr0' already exists in 'hsr' [ 336.895002][T20753] Cannot create hsr debugfs directory [ 336.938684][ T46] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 336.942539][ T46] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 337.042039][ T46] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 337.046891][ T46] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 337.165700][ T46] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 337.171079][ T46] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 337.317390][ T46] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 337.321430][ T46] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 337.387955][ T5934] Bluetooth: hci3: command tx timeout [ 337.473099][ T46] bridge_slave_1: left allmulticast mode [ 337.475178][ T46] bridge_slave_1: left promiscuous mode [ 337.477529][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 337.486988][ T46] bridge_slave_0: left allmulticast mode [ 337.492909][ T46] bridge_slave_0: left promiscuous mode [ 337.495378][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 337.539517][T20789] netlink: 556 bytes leftover after parsing attributes in process `syz.1.5142'. [ 337.840117][ T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 337.845952][ T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 337.850796][ T46] bond0 (unregistering): Released all slaves [ 337.852388][T20806] program syz.1.5151 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 338.163790][ T46] hsr_slave_0: left promiscuous mode [ 338.167027][ T46] hsr_slave_1: left promiscuous mode [ 338.173971][ T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 338.177128][ T46] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 338.191040][ T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 338.195722][ T46] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 338.225198][ T46] veth1_macvtap: left promiscuous mode [ 338.227087][ T46] veth1_vlan: left promiscuous mode [ 338.229035][ T46] veth0_vlan: left promiscuous mode [ 338.591528][ T5934] Bluetooth: hci4: command tx timeout [ 338.835152][ T46] team0 (unregistering): Port device team_slave_1 removed [ 338.897564][ T46] team0 (unregistering): Port device team_slave_0 removed [ 339.034830][T20863] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5172'. [ 339.090532][T20865] netlink: 556 bytes leftover after parsing attributes in process `syz.0.5173'. [ 339.644045][T20753] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 339.650541][T20753] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 339.654902][T20753] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 339.659704][T20753] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 339.727246][T20753] 8021q: adding VLAN 0 to HW filter on device bond0 [ 339.737682][T20753] 8021q: adding VLAN 0 to HW filter on device team0 [ 339.743582][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 339.745860][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 339.755460][ T1241] bridge0: port 2(bridge_slave_1) entered blocking state [ 339.758358][ T1241] bridge0: port 2(bridge_slave_1) entered forwarding state [ 339.906082][T20753] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 339.912797][T20901] netlink: 556 bytes leftover after parsing attributes in process `syz.3.5181'. [ 339.941626][T20753] veth0_vlan: entered promiscuous mode [ 339.946496][T20753] veth1_vlan: entered promiscuous mode [ 339.970450][T20753] veth0_macvtap: entered promiscuous mode [ 339.974523][T20753] veth1_macvtap: entered promiscuous mode [ 339.984435][T20753] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 339.991101][T20753] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 339.999491][ T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 340.007333][ T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 340.011063][ T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 340.015816][ T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 340.062795][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 340.067864][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 340.081888][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 340.084451][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 340.114292][T20915] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5186'. [ 340.119287][T20915] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5186'. [ 340.122969][T20915] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5186'. [ 340.126170][T20915] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5186'. [ 340.132356][ T40] audit: type=1326 audit(1763137353.080:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20914 comm="syz.0.5186" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f729438f6c9 code=0x0 [ 340.137006][T20917] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5127'. [ 340.269255][T20924] netlink: 556 bytes leftover after parsing attributes in process `syz.2.5189'. [ 340.677950][ T5934] Bluetooth: hci4: command tx timeout [ 341.172739][T20975] tmpfs: Bad value for 'mpol' [ 341.704955][T21005] capability: warning: `syz.1.5228' uses deprecated v2 capabilities in a way that may be insecure [ 341.765930][T21007] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5230'. [ 342.757852][ T5934] Bluetooth: hci4: command tx timeout [ 342.954043][T21067] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 342.989666][T21072] tmpfs: Bad value for 'mpol' [ 343.094837][T21085] program syz.2.5267 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 343.203721][T21094] bridge0: port 2(bridge_slave_1) entered disabled state [ 343.206189][T21094] bridge0: port 1(bridge_slave_0) entered disabled state [ 343.223528][T21096] tmpfs: Bad value for 'mpol' [ 343.261490][T21094] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 343.269502][T21094] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 343.347849][ T1241] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 343.351373][ T1241] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 343.354693][ T1241] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 343.357642][ T1241] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 343.486888][ T40] audit: type=1326 audit(1763137356.430:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21111 comm="syz.2.5278" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdc7938f6c9 code=0x0 [ 344.472764][T21176] __nla_validate_parse: 9 callbacks suppressed [ 344.472781][T21176] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5310'. [ 344.479840][T21176] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5310'. [ 344.482827][T21176] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5310'. [ 344.485786][T21176] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5310'. [ 344.492258][ T40] audit: type=1326 audit(1763137357.440:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21175 comm="syz.2.5310" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdc7938f6c9 code=0x0 [ 344.677925][ T6336] usb 8-1: new high-speed USB device number 54 using dummy_hcd [ 344.827965][ T5934] Bluetooth: hci4: command tx timeout [ 344.831543][ T6336] usb 8-1: config 0 has an invalid interface number: 184 but max is 1 [ 344.834138][ T6336] usb 8-1: config 0 has an invalid interface number: 251 but max is 1 [ 344.837549][ T6336] usb 8-1: config 0 has no interface number 0 [ 344.840355][ T6336] usb 8-1: config 0 has no interface number 1 [ 344.843052][ T6336] usb 8-1: config 0 interface 184 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 344.847271][ T6336] usb 8-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xA, skipping [ 344.853642][ T6336] usb 8-1: config 0 interface 251 altsetting 8 endpoint 0x7 has an invalid bInterval 189, changing to 7 [ 344.857162][ T6336] usb 8-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xC, skipping [ 344.860862][ T6336] usb 8-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x2, skipping [ 344.864507][ T6336] usb 8-1: config 0 interface 251 altsetting 8 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 344.868674][ T6336] usb 8-1: config 0 interface 251 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 344.873098][ T6336] usb 8-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x7, skipping [ 344.876522][ T6336] usb 8-1: config 0 interface 184 has no altsetting 0 [ 344.879611][ T6336] usb 8-1: config 0 interface 251 has no altsetting 0 [ 344.883828][ T6336] usb 8-1: New USB device found, idVendor=1b3d, idProduct=4701, bcdDevice=53.f1 [ 344.886619][ T6336] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 344.889415][ T6336] usb 8-1: Product: syz [ 344.890752][ T6336] usb 8-1: Manufacturer: syz [ 344.892263][ T6336] usb 8-1: SerialNumber: syz [ 344.895635][ T6336] usb 8-1: config 0 descriptor?? [ 345.106858][ T6336] ftdi_sio 8-1:0.184: FTDI USB Serial Device converter detected [ 345.111518][ T6336] ftdi_sio ttyUSB0: unknown device type: 0x53f1 [ 345.118063][ T6336] ftdi_sio 8-1:0.251: FTDI USB Serial Device converter detected [ 345.122472][ T6336] ftdi_sio ttyUSB1: unknown device type: 0x53f1 [ 345.130622][ T6336] usb 8-1: USB disconnect, device number 54 [ 345.135562][ T6336] ftdi_sio 8-1:0.184: device disconnected [ 345.146542][ T6336] ftdi_sio 8-1:0.251: device disconnected [ 345.848754][T21238] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5337'. [ 346.297839][ T896] usb 7-1: new high-speed USB device number 59 using dummy_hcd [ 346.469341][ T896] usb 7-1: config 0 has an invalid interface number: 184 but max is 1 [ 346.471979][ T896] usb 7-1: config 0 has an invalid interface number: 251 but max is 1 [ 346.474522][ T896] usb 7-1: config 0 has no interface number 0 [ 346.476452][ T896] usb 7-1: config 0 has no interface number 1 [ 346.478579][ T896] usb 7-1: config 0 interface 184 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 346.481903][ T896] usb 7-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xA, skipping [ 346.485140][ T896] usb 7-1: config 0 interface 251 altsetting 8 endpoint 0x7 has an invalid bInterval 189, changing to 7 [ 346.488877][ T896] usb 7-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xC, skipping [ 346.492155][ T896] usb 7-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x2, skipping [ 346.495428][ T896] usb 7-1: config 0 interface 251 altsetting 8 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 346.499404][ T896] usb 7-1: config 0 interface 251 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 346.502808][ T896] usb 7-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x7, skipping [ 346.506043][ T896] usb 7-1: config 0 interface 184 has no altsetting 0 [ 346.508753][ T896] usb 7-1: config 0 interface 251 has no altsetting 0 [ 346.512539][ T896] usb 7-1: New USB device found, idVendor=1b3d, idProduct=4701, bcdDevice=53.f1 [ 346.515631][ T896] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 346.518905][ T896] usb 7-1: Product: syz [ 346.520392][ T896] usb 7-1: Manufacturer: syz [ 346.521917][ T896] usb 7-1: SerialNumber: syz [ 346.528083][ T896] usb 7-1: config 0 descriptor?? [ 346.735363][ T896] ftdi_sio 7-1:0.184: FTDI USB Serial Device converter detected [ 346.740493][ T896] ftdi_sio ttyUSB0: unknown device type: 0x53f1 [ 346.744790][ T896] ftdi_sio 7-1:0.251: FTDI USB Serial Device converter detected [ 346.748391][ T896] ftdi_sio ttyUSB1: unknown device type: 0x53f1 [ 346.755398][ T896] usb 7-1: USB disconnect, device number 59 [ 346.764804][ T896] ftdi_sio 7-1:0.184: device disconnected [ 346.773630][ T896] ftdi_sio 7-1:0.251: device disconnected [ 347.245496][T21277] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5356'. [ 347.496769][T21305] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5368'. [ 347.503292][T21305] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5368'. [ 347.532779][T21310] tmpfs: Bad value for 'mpol' [ 347.740061][T21331] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5380'. [ 347.744888][T21331] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5380'. [ 347.747818][ T896] usb 5-1: new high-speed USB device number 60 using dummy_hcd [ 347.798794][T21336] tmpfs: Bad value for 'mpol' [ 347.909691][ T896] usb 5-1: config 0 has an invalid interface number: 184 but max is 1 [ 347.913267][ T896] usb 5-1: config 0 has an invalid interface number: 251 but max is 1 [ 347.916679][ T896] usb 5-1: config 0 has no interface number 0 [ 347.920357][ T896] usb 5-1: config 0 has no interface number 1 [ 347.922961][ T896] usb 5-1: config 0 interface 184 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 347.928498][ T896] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xA, skipping [ 347.933151][ T896] usb 5-1: config 0 interface 251 altsetting 8 endpoint 0x7 has an invalid bInterval 189, changing to 7 [ 347.937949][ T896] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xC, skipping [ 347.942895][ T896] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x2, skipping [ 347.947448][ T896] usb 5-1: config 0 interface 251 altsetting 8 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 347.952384][ T896] usb 5-1: config 0 interface 251 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 347.956800][ T896] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x7, skipping [ 347.961507][ T896] usb 5-1: config 0 interface 184 has no altsetting 0 [ 347.964506][ T896] usb 5-1: config 0 interface 251 has no altsetting 0 [ 347.969688][ T896] usb 5-1: New USB device found, idVendor=1b3d, idProduct=4701, bcdDevice=53.f1 [ 347.973411][ T896] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 347.976804][ T896] usb 5-1: Product: syz [ 347.979922][ T896] usb 5-1: Manufacturer: syz [ 347.982208][ T896] usb 5-1: SerialNumber: syz [ 347.986383][ T896] usb 5-1: config 0 descriptor?? [ 348.194275][ T896] ftdi_sio 5-1:0.184: FTDI USB Serial Device converter detected [ 348.197427][ T896] ftdi_sio ttyUSB0: unknown device type: 0x53f1 [ 348.202428][ T896] ftdi_sio 5-1:0.251: FTDI USB Serial Device converter detected [ 348.206789][ T896] ftdi_sio ttyUSB1: unknown device type: 0x53f1 [ 348.218818][ T896] usb 5-1: USB disconnect, device number 60 [ 348.225062][ T896] ftdi_sio 5-1:0.184: device disconnected [ 348.236818][ T896] ftdi_sio 5-1:0.251: device disconnected [ 348.387460][T21358] overlayfs: missing 'lowerdir' [ 348.466073][ T40] audit: type=1326 audit(1763137361.410:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21361 comm="syz.3.5395" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6d1a38f6c9 code=0x0 [ 349.709143][T21398] overlayfs: missing 'lowerdir' [ 350.435608][T21423] __nla_validate_parse: 6 callbacks suppressed [ 350.435621][T21423] netlink: 774 bytes leftover after parsing attributes in process `syz.0.5423'. [ 350.441394][T21423] netlink: 'syz.0.5423': attribute type 1 has an invalid length. [ 350.965155][T21469] loop5: detected capacity change from 0 to 7 [ 351.128259][T21469] Dev loop5: unable to read RDB block 7 [ 351.130971][T21469] loop5: unable to read partition table [ 351.134676][T21469] loop5: partition table beyond EOD, truncated [ 351.136606][T21469] loop_reread_partitions: partition scan of loop5 (úù) failed (rc=-5) [ 351.229330][T21489] trusted_key: syz.1.5454 sent an empty control message without MSG_MORE. [ 352.330587][T21552] netlink: 48 bytes leftover after parsing attributes in process `syz.1.5481'. [ 352.373629][T21556] tmpfs: Bad value for 'mpol' [ 352.926901][T21566] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5488'. [ 353.221327][T21583] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5499'. [ 353.885297][T21652] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5525'. [ 353.889817][T21652] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5525'. [ 353.893808][T21652] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5525'. [ 353.897643][T21652] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5525'. [ 353.908021][ T40] audit: type=1326 audit(1763137366.850:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21649 comm="syz.0.5525" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f729438f6c9 code=0x0 [ 354.575567][T21684] netlink: 48 bytes leftover after parsing attributes in process `syz.1.5542'. [ 355.108552][T21727] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5563'. [ 356.948581][ T841] usb 5-1: new high-speed USB device number 61 using dummy_hcd [ 357.047071][T21810] __nla_validate_parse: 2 callbacks suppressed [ 357.047086][T21810] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5600'. [ 357.056174][T21810] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5600'. [ 357.062291][T21810] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5600'. [ 357.066298][T21810] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5600'. [ 357.074946][ T40] audit: type=1326 audit(1763137370.020:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21807 comm="syz.1.5600" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f36a038f6c9 code=0x0 [ 357.099529][ T841] usb 5-1: config 0 has an invalid interface number: 184 but max is 1 [ 357.102786][ T841] usb 5-1: config 0 has an invalid interface number: 251 but max is 1 [ 357.105632][ T841] usb 5-1: config 0 has no interface number 0 [ 357.107704][ T841] usb 5-1: config 0 has no interface number 1 [ 357.109892][ T841] usb 5-1: config 0 interface 184 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 357.113334][ T841] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xA, skipping [ 357.117397][ T841] usb 5-1: config 0 interface 251 altsetting 8 endpoint 0x7 has an invalid bInterval 189, changing to 7 [ 357.121030][ T841] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xC, skipping [ 357.124712][ T841] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x2, skipping [ 357.128381][ T841] usb 5-1: config 0 interface 251 altsetting 8 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 357.131889][ T841] usb 5-1: config 0 interface 251 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 357.135332][ T841] usb 5-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x7, skipping [ 357.138866][ T841] usb 5-1: config 0 interface 184 has no altsetting 0 [ 357.140999][ T841] usb 5-1: config 0 interface 251 has no altsetting 0 [ 357.145150][ T841] usb 5-1: New USB device found, idVendor=1b3d, idProduct=4701, bcdDevice=53.f1 [ 357.148434][ T841] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 357.150987][ T841] usb 5-1: Product: syz [ 357.152490][ T841] usb 5-1: Manufacturer: syz [ 357.154053][ T841] usb 5-1: SerialNumber: syz [ 357.157988][ T841] usb 5-1: config 0 descriptor?? [ 357.347335][T21820] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5604'. [ 357.364269][ T841] ftdi_sio 5-1:0.184: FTDI USB Serial Device converter detected [ 357.367650][ T841] ftdi_sio ttyUSB0: unknown device type: 0x53f1 [ 357.372520][ T841] ftdi_sio 5-1:0.251: FTDI USB Serial Device converter detected [ 357.375726][ T841] ftdi_sio ttyUSB1: unknown device type: 0x53f1 [ 357.383930][ T841] usb 5-1: USB disconnect, device number 61 [ 357.387216][ T841] ftdi_sio 5-1:0.184: device disconnected [ 357.399788][ T841] ftdi_sio 5-1:0.251: device disconnected [ 357.469500][T21826] netlink: 40 bytes leftover after parsing attributes in process `syz.2.5607'. [ 357.735302][ T40] audit: type=1800 audit(1763137370.680:493): pid=21834 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.2.5612" name="cpuacct.usage_percpu" dev="overlay" ino=685 res=0 errno=0 [ 357.946520][T21859] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5621'. [ 357.974092][T21867] netlink: 56 bytes leftover after parsing attributes in process `syz.0.5625'. [ 358.000791][T21869] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5626'. [ 358.004046][T21869] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5626'. [ 358.009214][ T40] audit: type=1326 audit(1763137370.960:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21868 comm="syz.1.5626" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f36a038f6c9 code=0x0 [ 358.145512][ T40] audit: type=1800 audit(1763137371.090:495): pid=21880 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.2.5631" name="cpuacct.usage_percpu" dev="overlay" ino=723 res=0 errno=0 [ 358.452501][T21907] overlayfs: failed to clone upperpath [ 358.763047][ T40] audit: type=1400 audit(1763137371.710:496): avc: denied { create } for pid=21932 comm="syz.3.5656" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 358.817633][T21937] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 358.821274][T21937] overlayfs: missing 'lowerdir' [ 359.381071][ T40] audit: type=1400 audit(1763137372.330:497): avc: denied { audit_write } for pid=21984 comm="syz.0.5680" capability=29 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 360.172918][ T40] audit: type=1400 audit(1763137373.120:498): avc: denied { lock } for pid=22009 comm="syz.0.5692" path="socket:[97391]" dev="sockfs" ino=97391 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1 [ 360.293578][ T40] audit: type=1800 audit(1763137373.240:499): pid=22019 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.1.5696" name="cpuacct.usage_percpu" dev="overlay" ino=1106 res=0 errno=0 [ 360.342852][ T40] audit: type=1400 audit(1763137373.290:500): avc: denied { create } for pid=22022 comm="syz.1.5697" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1 [ 360.450495][T22031] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 361.191052][ T40] audit: type=1326 audit(1763137374.140:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22055 comm="syz.3.5712" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6d1a38f6c9 code=0x0 [ 361.391646][ T40] audit: type=1400 audit(1763137374.340:502): avc: denied { firmware_load } for pid=22063 comm="syz.1.5711" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1 [ 361.456914][T22064] syz.1.5711 (22064) used greatest stack depth: 19720 bytes left [ 362.213310][T22134] __nla_validate_parse: 7 callbacks suppressed [ 362.213323][T22134] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5749'. [ 362.220047][T22134] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5749'. [ 362.223086][T22134] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5749'. [ 362.226416][T22134] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5749'. [ 362.232004][ T40] audit: type=1326 audit(1763137375.180:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22133 comm="syz.3.5749" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6d1a38f6c9 code=0x0 [ 362.911066][T22199] syzkaller0: entered promiscuous mode [ 362.912844][T22199] syzkaller0: entered allmulticast mode [ 363.647228][ T40] audit: type=1326 audit(1763137376.590:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22222 comm="syz.0.5789" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f729438f6c9 code=0x0 [ 363.918891][T22223] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5789'. [ 364.798669][T22271] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 365.231844][T22284] tmpfs: Bad value for 'mpol' [ 365.548121][T22308] tmpfs: Bad value for 'mpol' [ 365.657436][T22310] overlayfs: failed to clone upperpath [ 365.743089][T22318] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5832'. [ 365.874803][T22326] binder: Bad value for 'stats' [ 366.066700][T22342] overlayfs: failed to resolve './file1/file0': -2 [ 367.231993][T22374] tipc: Started in network mode [ 367.234235][T22374] tipc: Node identity ac14142f, cluster identity 4711 [ 367.237684][T22374] tipc: New replicast peer: 0.0.0.0 [ 367.240420][T22374] tipc: Enabled bearer , priority 10 [ 367.472853][ T40] audit: type=1400 audit(1763137380.420:505): avc: denied { map } for pid=22388 comm="syz.1.5867" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 367.483722][ T40] audit: type=1400 audit(1763137380.420:506): avc: denied { execute } for pid=22388 comm="syz.1.5867" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 367.797149][ T40] audit: type=1800 audit(1763137380.740:507): pid=22408 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.0.5874" name="cpuacct.usage_percpu" dev="overlay" ino=1352 res=0 errno=0 [ 368.369374][ T1265] tipc: Node number set to 2886997039 [ 368.412903][T22473] overlayfs: overlapping lowerdir path [ 368.468177][ T40] audit: type=1400 audit(1763137381.420:508): avc: denied { bind } for pid=22474 comm="syz.0.5904" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 368.517217][T22471] overlayfs: failed to resolve './file1/file0': -2 [ 368.561050][T22482] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5906'. [ 368.818655][T22497] tmpfs: Bad value for 'mpol' [ 368.899715][T22503] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5918'. [ 369.114853][ T40] audit: type=1800 audit(1763137382.060:509): pid=22513 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.1.5923" name="cpuacct.usage_percpu" dev="overlay" ino=1434 res=0 errno=0 [ 369.191290][T22516] overlayfs: failed to resolve './file1/file0': -2 [ 369.447832][ T40] audit: type=1400 audit(1763137382.190:510): avc: denied { write } for pid=22506 comm="syz.0.5920" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 370.347812][ T40] audit: type=1800 audit(1763137383.290:511): pid=22582 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.0.5945" name="cpuacct.usage_percpu" dev="overlay" ino=1483 res=0 errno=0 [ 370.593609][ T40] audit: type=1800 audit(1763137383.540:512): pid=22608 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.0.5957" name="cpuacct.usage_percpu" dev="overlay" ino=1506 res=0 errno=0 [ 370.672145][ T40] audit: type=1326 audit(1763137383.620:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22620 comm="syz.3.5962" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6d1a38f6c9 code=0x0 [ 371.864024][T22674] tmpfs: Bad value for 'mpol' [ 372.041865][ T40] audit: type=1400 audit(1763137384.990:514): avc: denied { name_connect } for pid=22685 comm="syz.3.5991" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1 [ 373.258198][ T896] usb 7-1: new high-speed USB device number 60 using dummy_hcd [ 373.413032][T22750] overlayfs: failed to clone upperpath [ 373.417827][ T896] usb 7-1: Using ep0 maxpacket: 8 [ 373.429936][ T896] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 373.433900][ T896] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 373.438209][ T896] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 373.442585][ T896] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 373.446812][ T896] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 373.449948][ T896] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 373.657646][ T896] usb 7-1: usb_control_msg returned -32 [ 373.660771][ T896] usbtmc 7-1:16.0: can't read capabilities [ 374.019115][ C3] usbtmc 7-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71 [ 374.236946][ T40] audit: type=1326 audit(1763137387.180:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22775 comm="syz.3.6033" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6d1a38f6c9 code=0x0 [ 374.819454][T22798] overlayfs: overlapping lowerdir path [ 374.888849][T22802] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6046'. [ 375.564991][ T40] audit: type=1800 audit(1763137388.510:516): pid=22834 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.6060" name="nullb0" dev="tmpfs" ino=1697 res=0 errno=0 [ 375.613498][T22838] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6057'. [ 375.620574][T22838] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6057'. [ 375.624697][T22838] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6057'. [ 375.629204][T22838] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6057'. [ 375.635055][ T40] audit: type=1326 audit(1763137388.580:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22837 comm="syz.1.6057" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f36a038f6c9 code=0x0 [ 376.039041][ T896] usb 7-1: USB disconnect, device number 60 [ 376.366075][T22891] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6086'. [ 376.477815][ T896] usb 7-1: new high-speed USB device number 61 using dummy_hcd [ 376.629356][ T896] usb 7-1: config 0 has an invalid interface number: 184 but max is 1 [ 376.632727][ T896] usb 7-1: config 0 has an invalid interface number: 251 but max is 1 [ 376.636028][ T896] usb 7-1: config 0 has no interface number 0 [ 376.638762][ T896] usb 7-1: config 0 has no interface number 1 [ 376.641353][ T896] usb 7-1: config 0 interface 184 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 376.645840][ T896] usb 7-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xA, skipping [ 376.649917][ T896] usb 7-1: config 0 interface 251 altsetting 8 endpoint 0x7 has an invalid bInterval 189, changing to 7 [ 376.653627][ T896] usb 7-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0xC, skipping [ 376.657360][ T896] usb 7-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x2, skipping [ 376.661315][ T896] usb 7-1: config 0 interface 251 altsetting 8 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 376.665730][ T896] usb 7-1: config 0 interface 251 altsetting 8 has an invalid descriptor for endpoint zero, skipping [ 376.670664][ T896] usb 7-1: config 0 interface 251 altsetting 8 has a duplicate endpoint with address 0x7, skipping [ 376.675041][ T896] usb 7-1: config 0 interface 184 has no altsetting 0 [ 376.677513][ T896] usb 7-1: config 0 interface 251 has no altsetting 0 [ 376.681396][ T896] usb 7-1: New USB device found, idVendor=1b3d, idProduct=4701, bcdDevice=53.f1 [ 376.688908][ T896] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 376.692434][ T896] usb 7-1: Product: syz [ 376.693756][ T896] usb 7-1: Manufacturer: syz [ 376.695313][ T896] usb 7-1: SerialNumber: syz [ 376.699014][ T896] usb 7-1: config 0 descriptor?? [ 376.909213][ T896] ftdi_sio 7-1:0.184: FTDI USB Serial Device converter detected [ 376.913307][ T896] ftdi_sio ttyUSB0: unknown device type: 0x53f1 [ 376.922155][ T896] ftdi_sio 7-1:0.251: FTDI USB Serial Device converter detected [ 376.926119][ T896] ftdi_sio ttyUSB1: unknown device type: 0x53f1 [ 376.934773][ T896] usb 7-1: USB disconnect, device number 61 [ 376.941499][ T896] ftdi_sio 7-1:0.184: device disconnected [ 376.950102][ T896] ftdi_sio 7-1:0.251: device disconnected [ 377.336724][ T40] audit: type=1800 audit(1763137390.280:518): pid=22913 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.6095" name="nullb0" dev="tmpfs" ino=1697 res=0 errno=0 [ 377.449711][T22919] tmpfs: Bad value for 'mpol' [ 377.458179][T22921] /dev/nullb0: Can't lookup blockdev [ 377.469694][ T40] audit: type=1400 audit(1763137390.410:519): avc: denied { mounton } for pid=22920 comm="syz.3.6099" path="/419/bus" dev="tmpfs" ino=2544 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1 [ 377.675880][T22940] tmpfs: Bad value for 'mpol' [ 377.758263][ T40] audit: type=1800 audit(1763137390.710:520): pid=22946 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.2.6111" name="cpuacct.usage_percpu" dev="overlay" ino=1344 res=0 errno=0 [ 377.815271][ T40] audit: type=1400 audit(1763137390.760:521): avc: denied { append } for pid=22950 comm="syz.2.6112" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 378.112238][T22965] tmpfs: Bad value for 'mpol' [ 378.275685][T22969] XFS (nullb0): Invalid superblock magic number [ 378.760232][ T40] audit: type=1800 audit(1763137391.710:522): pid=23020 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.6142" name="nullb0" dev="tmpfs" ino=1697 res=0 errno=0 [ 378.853988][ T40] audit: type=1800 audit(1763137391.800:523): pid=23030 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.6147" name="nullb0" dev="tmpfs" ino=1697 res=0 errno=0 [ 379.051795][ T40] audit: type=1800 audit(1763137392.000:524): pid=23043 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.6153" name="nullb0" dev="tmpfs" ino=1697 res=0 errno=0 [ 380.673974][T23110] tmpfs: Bad value for 'mpol' [ 380.797801][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 380.797811][ T40] audit: type=1400 audit(1763137393.740:526): avc: denied { read write } for pid=23123 comm="syz.2.6192" name="uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 380.813380][ T6004] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0 [ 380.818083][ T40] audit: type=1400 audit(1763137393.750:527): avc: denied { open } for pid=23123 comm="syz.2.6192" path="/dev/uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 380.824405][ T6004] hid-generic 0000:0000:0000.0015: hidraw1: HID v0.00 Device [syz1] on syz0 [ 381.342444][T23133] overlayfs: failed to clone upperpath [ 381.497091][ T40] audit: type=1800 audit(1763137394.440:528): pid=23147 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.6204" name="nullb0" dev="tmpfs" ino=1697 res=0 errno=0 [ 381.534547][T23153] overlayfs: overlapping lowerdir path [ 381.542658][T23151] overlayfs: failed to clone upperpath [ 381.699149][ T40] audit: type=1800 audit(1763137394.650:529): pid=23170 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.2.6203" name="cpuacct.usage_percpu" dev="overlay" ino=1519 res=0 errno=0 [ 381.831144][ T40] audit: type=1800 audit(1763137394.780:530): pid=23180 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.2.6218" name="cpuacct.usage_percpu" dev="overlay" ino=1540 res=0 errno=0 [ 382.310031][ T841] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0 [ 382.314732][ T841] hid-generic 0000:0000:0000.0016: hidraw1: HID v0.00 Device [syz1] on syz0 [ 382.454872][T23204] overlayfs: overlapping lowerdir path [ 382.512436][T23208] overlayfs: failed to clone upperpath [ 382.562226][T23218] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2 [ 382.580864][ T40] audit: type=1400 audit(1763137395.530:531): avc: denied { bind } for pid=23221 comm="syz.1.6239" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 382.641430][T23229] overlayfs: overlapping lowerdir path [ 383.485891][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.488799][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 383.667942][T23291] /dev/nullb0: Can't lookup blockdev [ 383.821566][ T40] audit: type=1800 audit(1763137396.770:532): pid=23306 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.6279" name="nullb0" dev="tmpfs" ino=1697 res=0 errno=0 [ 383.834544][T23297] ------------[ cut here ]------------ [ 383.836645][T23297] WARNING: CPU: 2 PID: 23297 at arch/x86/kvm/vmx/vmx.c:5264 handle_exception_nmi+0x14cf/0x1750 [ 383.840790][T23297] Modules linked in: [ 383.842415][T23297] CPU: 2 UID: 0 PID: 23297 Comm: syz.2.6274 Not tainted syzkaller #0 PREEMPT(full) SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 383.847465][T23297] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 383.851525][T23297] RIP: 0010:handle_exception_nmi+0x14cf/0x1750 [ 383.853661][T23297] Code: 20 fe ff 31 ff 89 c5 89 c6 e8 9d 34 69 00 85 ed 0f 85 bd fd ff ff e8 50 39 69 00 90 0f 0b 90 e9 af fd ff ff e8 42 39 69 00 90 <0f> 0b 90 e9 d0 f2 ff ff e8 34 39 69 00 31 f6 48 89 df e8 9a 15 ed [ 383.860466][T23297] RSP: 0018:ffffc900217579e0 EFLAGS: 00010287 [ 383.862597][T23297] RAX: 0000000000016684 RBX: ffff888024f08000 RCX: ffffc90024eb9000 [ 383.865596][T23297] RDX: 0000000000080000 RSI: ffffffff8153af6e RDI: 0000000000000001 [ 383.868728][T23297] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 383.871882][T23297] R10: 0000000000000000 R11: 0000000000000001 R12: 000000000f6632eb [ 383.874930][T23297] R13: 0000000000000007 R14: 0000000080000300 R15: ffff888024f080d8 [ 383.878003][T23297] FS: 00007fdc7a2af6c0(0000) GS:ffff8880d6c06000(0000) knlGS:0000000000000000 [ 383.881463][T23297] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 383.884331][T23297] CR2: 000000000f6632eb CR3: 0000000026518000 CR4: 0000000000352ef0 [ 383.887363][T23297] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000036 [ 383.890501][T23297] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400 [ 383.893119][T23297] Call Trace: [ 383.894495][T23297] [ 383.895591][T23297] ? __pfx_handle_exception_nmi+0x10/0x10 [ 383.897465][T23297] vmx_handle_exit+0x14bf/0x1c00 [ 383.899123][T23297] vcpu_run+0x33e1/0x54d0 [ 383.900538][T23297] ? __pfx_vcpu_run+0x10/0x10 [ 383.902043][T23297] ? rcu_is_watching+0x12/0xc0 [ 383.903611][T23297] ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1920 [ 383.905406][T23297] kvm_arch_vcpu_ioctl_run+0xfd3/0x1920 [ 383.907167][T23297] kvm_vcpu_ioctl+0x5eb/0x1690 [ 383.908755][T23297] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 383.910402][T23297] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 383.912345][T23297] ? do_vfs_ioctl+0x128/0x14f0 [ 383.913856][T23297] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 383.915471][T23297] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 383.917624][T23297] ? hook_file_ioctl_common+0x145/0x410 [ 383.919481][T23297] ? selinux_file_ioctl+0x180/0x270 [ 383.921178][T23297] ? selinux_file_ioctl+0xb4/0x270 [ 383.922870][T23297] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 383.924563][T23297] __x64_sys_ioctl+0x18e/0x210 [ 383.926099][T23297] do_syscall_64+0xcd/0xfa0 [ 383.927576][T23297] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 383.929853][T23297] RIP: 0033:0x7fdc7938f6c9 [ 383.931772][T23297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 383.938633][T23297] RSP: 002b:00007fdc7a2af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 383.941307][T23297] RAX: ffffffffffffffda RBX: 00007fdc795e5fa0 RCX: 00007fdc7938f6c9 [ 383.943842][T23297] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008 [ 383.946339][T23297] RBP: 00007fdc79411f91 R08: 0000000000000000 R09: 0000000000000000 [ 383.948977][T23297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 383.951518][T23297] R13: 00007fdc795e6038 R14: 00007fdc795e5fa0 R15: 00007ffe3bd6cfc8 [ 383.954217][T23297] [ 383.955263][T23297] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 383.957597][T23297] CPU: 2 UID: 0 PID: 23297 Comm: syz.2.6274 Not tainted syzkaller #0 PREEMPT(full) [ 383.960570][T23297] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 383.963963][T23297] Call Trace: [ 383.965046][T23297] [ 383.966007][T23297] dump_stack_lvl+0x3d/0x1f0 [ 383.967531][T23297] vpanic+0x640/0x6f0 [ 383.968856][T23297] ? handle_exception_nmi+0x14cf/0x1750 [ 383.970627][T23297] panic+0xca/0xd0 [ 383.971889][T23297] ? __pfx_panic+0x10/0x10 [ 383.973342][T23297] check_panic_on_warn+0xab/0xb0 [ 383.974954][T23297] __warn+0xf6/0x3c0 [ 383.976221][T23297] ? handle_exception_nmi+0x14cf/0x1750 [ 383.977998][T23297] report_bug+0x3c3/0x580 [ 383.979414][T23297] ? handle_exception_nmi+0x14cf/0x1750 [ 383.981181][T23297] handle_bug+0x184/0x210 [ 383.982554][T23297] exc_invalid_op+0x17/0x50 [ 383.984022][T23297] asm_exc_invalid_op+0x1a/0x20 [ 383.985577][T23297] RIP: 0010:handle_exception_nmi+0x14cf/0x1750 [ 383.987542][T23297] Code: 20 fe ff 31 ff 89 c5 89 c6 e8 9d 34 69 00 85 ed 0f 85 bd fd ff ff e8 50 39 69 00 90 0f 0b 90 e9 af fd ff ff e8 42 39 69 00 90 <0f> 0b 90 e9 d0 f2 ff ff e8 34 39 69 00 31 f6 48 89 df e8 9a 15 ed [ 383.993619][T23297] RSP: 0018:ffffc900217579e0 EFLAGS: 00010287 [ 383.995763][T23297] RAX: 0000000000016684 RBX: ffff888024f08000 RCX: ffffc90024eb9000 [ 383.998252][T23297] RDX: 0000000000080000 RSI: ffffffff8153af6e RDI: 0000000000000001 [ 384.000788][T23297] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 384.003315][T23297] R10: 0000000000000000 R11: 0000000000000001 R12: 000000000f6632eb [ 384.005801][T23297] R13: 0000000000000007 R14: 0000000080000300 R15: ffff888024f080d8 [ 384.008305][T23297] ? handle_exception_nmi+0x14ce/0x1750 [ 384.009957][T23297] ? __pfx_handle_exception_nmi+0x10/0x10 [ 384.011662][T23297] vmx_handle_exit+0x14bf/0x1c00 [ 384.013203][T23297] vcpu_run+0x33e1/0x54d0 [ 384.014594][T23297] ? __pfx_vcpu_run+0x10/0x10 [ 384.016114][T23297] ? rcu_is_watching+0x12/0xc0 [ 384.017641][T23297] ? kvm_arch_vcpu_ioctl_run+0xfd3/0x1920 [ 384.019457][T23297] kvm_arch_vcpu_ioctl_run+0xfd3/0x1920 [ 384.021224][T23297] kvm_vcpu_ioctl+0x5eb/0x1690 [ 384.022702][T23297] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 384.024364][T23297] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 384.026240][T23297] ? do_vfs_ioctl+0x128/0x14f0 [ 384.027776][T23297] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 384.029376][T23297] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 384.031487][T23297] ? hook_file_ioctl_common+0x145/0x410 [ 384.033267][T23297] ? selinux_file_ioctl+0x180/0x270 [ 384.034918][T23297] ? selinux_file_ioctl+0xb4/0x270 [ 384.036532][T23297] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 384.038172][T23297] __x64_sys_ioctl+0x18e/0x210 [ 384.039707][T23297] do_syscall_64+0xcd/0xfa0 [ 384.041169][T23297] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 384.043042][T23297] RIP: 0033:0x7fdc7938f6c9 [ 384.044455][T23297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 384.050491][T23297] RSP: 002b:00007fdc7a2af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 384.053138][T23297] RAX: ffffffffffffffda RBX: 00007fdc795e5fa0 RCX: 00007fdc7938f6c9 [ 384.055643][T23297] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008 [ 384.058124][T23297] RBP: 00007fdc79411f91 R08: 0000000000000000 R09: 0000000000000000 [ 384.060610][T23297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 384.063109][T23297] R13: 00007fdc795e6038 R14: 00007fdc795e5fa0 R15: 00007ffe3bd6cfc8 [ 384.065862][T23297] [ 384.067778][T23297] Kernel Offset: disabled [ 384.069395][T23297] Rebooting in 86400 seconds.. VM DIAGNOSIS: 16:23:16 Registers: info registers vcpu 0 CPU#0 RAX=0000000080000001 RBX=ffffea00004caf80 RCX=ffffffff81f936d3 RDX=ffff8880287c0000 RSI=ffffffff81f9ca2c RDI=0000000000000005 RBP=ffffc9000437f748 RSP=ffffc9000437f690 R8 =0000000000000005 R9 =00000000000000f5 R10=00000000000000ff R11=0000000000000001 R12=ffff88801d692148 R13=ffffc9000437f768 R14=0000000000000000 R15=ffff88807ffd7400 RIP=ffffffff81bce8c7 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 000055557b790500 ffffffff 00c00000 GS =0000 ffff8880d6a06000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000200000000100 CR3=000000004abfa000 CR4=00352ef0 DR0=0000000000000008 DR1=0000000000000002 DR2=0000000000000081 DR3=ffffffffefffff15 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc1f80b0e0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f36a0413050 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f36a041305d ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f36a0413057 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f36a041306b ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f36a04130f1 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f36a04131cf ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000050 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=ffffc90006860000 RBX=0000000000000000 RCX=ffff888105e89070 RDX=000000000000009d RSI=ffffffff86799ef8 RDI=ffff888105e892d0 RBP=0000000000000001 RSP=ffffc900006a0b80 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001 R12=0000000000000001 R13=0000000000004e20 R14=ffff888105e89070 R15=0000000000000001 RIP=ffffffff86799f35 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d6b06000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007fece5717d60 CR3=000000003a347000 CR4=00352ef0 DR0=0000000000000008 DR1=0000000000000002 DR2=0000000000000081 DR3=ffffffffefffff15 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fece4bb76c3 00007fece4bb76c3 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc75d3afb0 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555814b20a6 00005555814b1e90 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555814ab514 00005555814ab510 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555814b0c55 00005555814b0990 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555814b57a4 00005555814b57a0 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555814b10f8 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000060806020a04 ca0d80040880c5bc 8608000100000808 06060129f0000800 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 010580040880c5bc e008000100000808 06060129e6010000 0a08060588030208 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0005800301000006 0806020a04ca0d80 040880c5bc860800 0100000808060601 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 29f00008000d8803 0008000d80030fff ffffffffff042080 808085bc82080001 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000008080606013b ca0004000408000e 800401c710000808 4bea0074656e2d74 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85296395 RDI=ffffffff9adda780 RBP=ffffffff9adda740 RSP=ffffc90021757350 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001 R12=0000000000000000 R13=0000000000000030 R14=ffffffff9adda740 R15=ffffffff85296330 RIP=ffffffff852963bf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] FS =0000 00007fdc7a2af6c0 ffffffff 00c09300 DPL=0 DS [-WA] GS =0000 ffff8880d6c06000 ffffffff 00c09300 DPL=0 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000000f6632eb CR3=0000000026518000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000036 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000008001 Opmask01=0000000000000054 Opmask02=00000000000003ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdc79413050 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdc7941305d ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdc79413057 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdc7941306b ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdc794130f1 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdc794131cf ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 b02b0f22cf213a0f 6632eb9d780fc301 0ff8230f0e000020 3566f83f2ad0230f ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 de1b0f665800b02b 0f22cf213a0f6632 eb9d780fc3010004 0008000f0010000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 f83f2ad0230f0000 508cb866eb000bb8 0043ba01000d8a80 36d6000f300f0000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000046 RBX=0000000000000003 RCX=0000000000000001 RDX=ffff888026890000 RSI=ffffffff8da2ba8c RDI=ffffffff8bf070c0 RBP=0000000000000200 RSP=ffffc900032d7a00 R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000200 R11=0000000000000001 R12=ffffe8fefc7b4000 R13=0000000000000000 R14=dffffc0000000000 R15=ffff88806a738820 RIP=ffffffff8b60aa5e RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 0000555556261500 ffffffff 00c00000 GS =0000 ffff8880d6d06000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f6d1a5b12f8 CR3=000000004331a000 CR4=00352ef0 DR0=0000000000000008 DR1=0000000000000002 DR2=0000000000000081 DR3=ffffffffefffff15 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000041004040 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc171610a0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6d1a413050 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6d1a41305d ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6d1a413057 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6d1a41306b ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6d1a4130f1 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6d1a4131cf ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000003a800000006 00000260000001c8 0000013000000098 0000000000000260 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c69614600646574 7563657845006574 7563657845006465 74746f687370616e ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5300796461655200 656b616873646e61 48006c616974696e 4900656c676e616d ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000