last executing test programs: 5.029260357s ago: executing program 2 (id=4536): bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080), 0x4) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000000c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) munlock(&(0x7f00007a7000/0x2000)=nil, 0x2000) r1 = socket$unix(0x1, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000000)={'vxcan0\x00', 0x0}) r3 = socket$can_bcm(0x1d, 0x2, 0x2) r4 = socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r5 = getpid() sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x40050) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000040)) sendmsg$nl_route(r4, 0x0, 0x4054) connect$can_bcm(r3, &(0x7f0000000200)={0x1d, r2}, 0x10) sendmsg$can_bcm(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="01000000d7fe68ca7e4d5d5bdbe70000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r2, @ANYRES64=r1, @ANYBLOB="3bf81bb9e9"], 0x20000600}}, 0x0) 4.429684949s ago: executing program 3 (id=4538): memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) select(0x40, &(0x7f0000000280)={0x3, 0xdd, 0x9, 0x2, 0x0, 0xc, 0x3, 0x4}, &(0x7f0000000880)={0xa4f, 0x6, 0x7fffffff, 0x1f4, 0x10000, 0x2, 0x3}, &(0x7f00000008c0)={0x0, 0x4, 0x7fffffff, 0x200, 0x10, 0xe, 0x4, 0x3}, &(0x7f0000000900)={0x77359400}) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) bind$alg(0xffffffffffffffff, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-ni\x00'}, 0xffffffffffffffbd) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x200000}, 0x1c) listen(r0, 0x9) r1 = socket$inet_mptcp(0x2, 0x1, 0x106) sendmmsg(r1, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20044000) writev(r0, &(0x7f00000007c0)=[{&(0x7f0000000280)}, {&(0x7f0000000500)="223c1e31756476b05679400690e3fd18d6731c3a3c77972c3e33ddb308563de0afa727b92f6f056fd09a8f5c0874ae15a4496e355f74cd1a97495e2f6e43db32223613ed", 0x44}, {&(0x7f0000000580)}, {&(0x7f00000005c0)="0a87de82b0acb3a6b0aa83408f79180bcdbe326c23c429adb49225c22a8e3507993d3ab8ac0bd1999f0893177058f78e8485f9ada286c8eaebe1549587b3e46e99d5d9d16cd286e944a7e2", 0x4b}, {&(0x7f0000000640)="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", 0xfb}, {&(0x7f0000000780)="8694b4031617a21a692b1b7dd6abbdcd78a6b40548982938111479ccd2a384", 0x1f}], 0x6) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, r3, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x1000000, 0x0, 0x20000800}, 0x800) 4.429578414s ago: executing program 0 (id=4539): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) add_key$fscrypt_provisioning(&(0x7f0000000040), 0x0, 0x0, 0xff41, 0xfffffffffffffffb) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) bind$802154_dgram(r0, &(0x7f0000000040)={0x24, @short={0x2, 0x0, 0xaaa0}}, 0x14) 4.370098102s ago: executing program 0 (id=4540): socket$kcm(0x2b, 0x1, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0) r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141102) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) socket$vsock_stream(0x28, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0) 4.369922258s ago: executing program 0 (id=4541): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0) openat$ttyS3(0xffffffffffffff9c, 0x0, 0x21800, 0x0) socket$nl_route(0x10, 0x3, 0x0) add_key$user(&(0x7f0000000200), 0x0, 0x0, 0x0, 0xfffffffffffffffd) openat$nullb(0xffffffffffffff9c, 0x0, 0x4000000004002, 0x0) syz_open_dev$dri(&(0x7f00000000c0), 0x7, 0x4000) gettid() timer_create(0x7, 0x0, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0) r3 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/compact_memory\x00', 0x1, 0x0) sendfile(r3, r2, &(0x7f00000000c0)=0x58, 0x5) 4.309688837s ago: executing program 3 (id=4542): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000000f14010027bd7000fcdbdf250b00450075766572627376"], 0x24}, 0x1, 0x0, 0x0, 0x20000010}, 0xc4000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0]) mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040)) openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) socket$inet_tcp(0x2, 0x1, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000240)={{0x1, 0x1, 0x18, r1, {0x1}}, './file0\x00'}) setns(r3, 0x2000000) r4 = openat$cgroup_freezer_state(r2, &(0x7f0000000140), 0x2, 0x0) write$cgroup_freezer_state(r4, &(0x7f0000000440)='FROZEN\x00', 0x7) r5 = socket$can_raw(0x1d, 0x3, 0x1) recvmsg$can_raw(r5, &(0x7f0000001580)={&(0x7f0000000040)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @remote}}, 0x80, &(0x7f0000001680)=[{&(0x7f0000000300)=""/66, 0x42}, {&(0x7f0000000200)=""/15, 0xf}, {&(0x7f0000001480)=""/83, 0x53}, {&(0x7f00000013c0)=""/168, 0xa8}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f0000001700)=""/197, 0xc5}, {&(0x7f00000000c0)=""/24, 0x18}, {&(0x7f00000015c0)=""/165, 0xa5}], 0x8, &(0x7f0000001500)=""/123, 0x7b}, 0x2106) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x1) ioctl$KVM_SET_MSRS(r8, 0x4008ae89, &(0x7f00000003c0)={0x1, 0x0, [{0x40000002}]}) r9 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r9, 0x84, 0x81, &(0x7f0000000280), 0x0) 4.249556331s ago: executing program 1 (id=4543): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x4, 0x3, &(0x7f0000000240)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0xfffffffe}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x28, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f86dd", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) open_by_handle_at(r0, &(0x7f00000000c0)=ANY=[], 0x200000) write$sysctl(0xffffffffffffffff, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0) prctl$PR_SET_IO_FLUSHER(0x43, 0x1) r1 = userfaultfd(0x801) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2}) socket$nl_route(0x10, 0x3, 0x0) openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) close_range(r1, r2, 0x2) r3 = socket$netlink(0x10, 0x3, 0x0) getsockopt$IP_VS_SO_GET_DESTS(r3, 0x0, 0x484, 0x0, &(0x7f0000000200)) sendmsg$nl_generic(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="1400000042000501"], 0x14}}, 0x44014) recvmmsg(r3, &(0x7f0000000000)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={0xffffffffffffffff, &(0x7f0000001380), &(0x7f0000000000)=""/10, 0x2}, 0x20) ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005cf000/0x4000)=nil, 0x400000, 0x2, 0x2}) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) prctl$PR_SET_IO_FLUSHER(0x43, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) 4.058475535s ago: executing program 2 (id=4544): r0 = openat$udambuf(0xffffffffffffff9c, 0x0, 0x2) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_dev$video4linux(&(0x7f0000000040), 0x7fff, 0x48b03) ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r3, 0x80085665, &(0x7f00000000c0)={0x3, 0x1ff, 0x2}) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x2d03629c, 0x0, 0x9, 0x40000000000, 0xfffffe0000000001, 0x10000000, 0xffffffff}, 0x0) r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0) close(r4) r5 = getpid() sched_setattr(r5, 0x0, 0x0) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) fcntl$dupfd(r0, 0x406, r3) syz_80211_join_ibss(&(0x7f0000000200)='wlan0\x00', &(0x7f00000002c0)=@default_ap_ssid, 0x6, 0x1) r7 = socket$vsock_stream(0x28, 0x1, 0x0) r8 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'veth0\x00'}) sendmsg$nl_route(r8, &(0x7f0000000180)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=@ipv6_newnexthop={0x76c, 0x68, 0x1, 0x70bd25, 0xfffffffc, {0x2, 0x0, 0x0, 0x0, 0x4}, [@NHA_ENCAP={0x738, 0x8, 0x0, 0x1, @SEG6_IPTUNNEL_SRH={0x734, 0x1, {{0x0, {0x3a, 0x12, 0x4, 0x9, 0xff, 0x30, 0x3fd, [@private2={0xfc, 0x2, '\x00', 0x1}, @private1, @remote, @mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1={0xfc, 0x1, '\x00', 0x1}, @local]}}, [@local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @remote, @dev={0xfe, 0x80, '\x00', 0x1a}, @private0={0xfc, 0x0, '\x00', 0x1}, @mcast1, @local, @private1, @loopback, @private0, @local, @private1, @remote, @dev={0xfe, 0x80, '\x00', 0x3f}, @rand_addr=' \x01\x00', @private2={0xfc, 0x2, '\x00', 0x1}, @mcast1, @private2={0xfc, 0x2, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x31}, @private0, @empty, @local, @local, @private1={0xfc, 0x1, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast2, @loopback, @local, @dev={0xfe, 0x80, '\x00', 0x21}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private2, @ipv4={'\x00', '\xff\xff', @loopback}, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, @loopback, @empty, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @local, @local, @loopback, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private2={0xfc, 0x2, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x23}, @mcast1, @mcast2, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, @private0, @loopback, @dev={0xfe, 0x80, '\x00', 0x1c}, @remote, @rand_addr=' \x01\x00', @private2, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00', @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @rand_addr=' \x01\x00', @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1={0xfc, 0x1, '\x00', 0x1}, @loopback, @ipv4={'\x00', '\xff\xff', @empty}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast2, @local, @loopback, @mcast2, @private1={0xfc, 0x1, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1, @remote, @local, @ipv4={'\x00', '\xff\xff', @multicast2}, @private0, @local, @dev={0xfe, 0x80, '\x00', 0x27}, @empty, @private1, @mcast2, @empty, @mcast2, @private0={0xfc, 0x0, '\x00', 0x1}, @empty, @mcast2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @empty, @mcast2, @dev={0xfe, 0x80, '\x00', 0x23}, @mcast1, @ipv4={'\x00', '\xff\xff', @remote}, @ipv4={'\x00', '\xff\xff', @broadcast}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @empty, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast1, @ipv4={'\x00', '\xff\xff', @empty}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev={0xfe, 0x80, '\x00', 0x43}, @ipv4={'\x00', '\xff\xff', @multicast1}, @private1={0xfc, 0x1, '\x00', 0x1}, @mcast1, @local, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @dev={0xfe, 0x80, '\x00', 0x3e}, @loopback]}}}, @NHA_ID={0x8, 0x6}, @NHA_ENCAP_TYPE={0x6, 0x7, 0x6}, @NHA_ENCAP_TYPE={0x6, 0x7, 0x2}, @NHA_FDB={0x4}]}, 0x76c}}, 0x240048c0) sendmsg$NFT_BATCH(r6, 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000340)={0x1, 0xffffff79, 0x5}) r9 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_CONFIG(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x2, 0x3, 0x201, 0x0, 0x0, {0x3, 0x0, 0x8}, [@NFQA_CFG_PARAMS={0x9, 0x2, {0x6, 0x3}}, @NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0x1f}}]}, 0x28}, 0x1, 0x0, 0x0, 0x8001}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r10 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_DESTROY(r10, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0x3, 0x6, 0x401, 0x0, 0x0, {0x2, 0x0, 0x5}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x20000080) ptrace$setregset(0x4205, r5, 0x201, &(0x7f00000003c0)={&(0x7f0000000440)="5e931c1d6da6e8b5a5d742b9c9474d1ba6d06e2a0754eb6402ce9900b8350c227462b34ed6aae3aff8ee7db8fbee2eb97c38074162ff0be791063c4c6e406424d830641163975f160c71fa41d53919931f3bfe2d3b5a12bd60b9fe5b57a5090f15867250a4e0a8faed7bf0271008e1d9837e31342a5a9e0ad60e34e6c6add9867efd7f4f7b3098409202b0c9352e9ec43e6352a73f121b93b11bd3e7a785291bb501a8bd465f3e772a0732853f79c0821d9b77b830ca8081bb1325cc2f3b58be8024411ff89e1e3996a22038189eeaab185433a2", 0xd4}) 3.28926301s ago: executing program 0 (id=4545): r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000083667d1040206402d14e0102030109021b000100000000090400000190f19c00090584"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f00000006c0)={0x84, &(0x7f00000002c0)={0x20, 0x6, 0x1, '6'}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$uac1(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) r1 = syz_open_dev$I2C(&(0x7f0000000100), 0x2, 0x1) ioctl$I2C_RDWR(r1, 0x707, &(0x7f0000000080)={&(0x7f00000000c0)=[{0x7fff, 0x5850, 0x1, &(0x7f0000000780)="e0"}], 0x1}) syz_usb_control_io$sierra_net(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000800)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}) 3.059278381s ago: executing program 3 (id=4546): syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00') r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, 0x0, 0x20040040) openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap(&(0x7f0000173000/0x1000)=nil, 0x1000, 0x0, 0x13, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48) prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0) r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f00000001c0)=0xa0000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000040)={@host}) ioctl$IOCTL_VMCI_DATAGRAM_SEND(r1, 0x7ab, &(0x7f0000000100)={0x0, 0x0, 0x2001}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = syz_open_dev$MSR(&(0x7f0000000080), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) syz_emit_ethernet(0x0, 0x0, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3800000056000100000000000000000007020000", @ANYRES32, @ANYBLOB="200001"], 0x38}}, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r4 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r4, 0x40186f40, &(0x7f0000000440)=0x1f) r5 = syz_open_dev$usbfs(&(0x7f0000000140), 0x76, 0x101301) ioctl$USBDEVFS_ALLOC_STREAMS(r5, 0x8008551c, &(0x7f0000000580)=ANY=[@ANYBLOB="b08d00000100000081718374b58e8cb7e8d8a3956e424a7b2badbc941abffcab8fc534600de02f805c99a7f0fd6aae285b0e0e0af2151677dd0028592d8a"]) syz_open_dev$I2C(&(0x7f0000000040), 0x1, 0x2603) close(0xffffffffffffffff) 3.058790346s ago: executing program 1 (id=4547): syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0) r0 = syz_open_dev$vim2m(&(0x7f0000000580), 0x10003835, 0x2) ioctl$vim2m_VIDIOC_PREPARE_BUF(r0, 0xc0405602, &(0x7f00000001c0)=@fd={0x0, 0x1, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x82, ';\'S;'}}) io_uring_register$IORING_REGISTER_PBUF_RING(0xffffffffffffffff, 0x16, &(0x7f0000000000)={0x0, 0x0, 0x1}, 0x1) r1 = socket(0x3, 0x800, 0xa) bind$inet(r1, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10) connect$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x4e24, 0xf, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x1}, 0x1c) sendto$inet(r1, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10) openat$tun(0xffffffffffffff9c, &(0x7f0000000600), 0x42000, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, 0x0) socket$nl_audit(0x10, 0x3, 0x9) sched_setaffinity(0x0, 0x0, 0x0) prlimit64(0x0, 0x7, &(0x7f00000000c0)={0x6, 0xffffffffffffffff}, &(0x7f0000000180)) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$sock(r2, &(0x7f0000000300)={&(0x7f0000000040)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f00000002c0)}, 0x800) r3 = syz_open_dev$MSR(&(0x7f0000000100), 0x0, 0x0) read$msr(r3, &(0x7f0000001a40)=""/102392, 0x18ff8) socket$netlink(0x10, 0x3, 0x13) r4 = socket(0x2000000000000021, 0x2, 0x2) r5 = openat$userio(0xffffffffffffff9c, &(0x7f0000000140), 0x80401, 0x0) write$USERIO_CMD_REGISTER(r5, &(0x7f00000001c0), 0x2) close(r5) shutdown(r4, 0x2) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x4, 0x0, 0x0, 0xfffffffe}) syz_open_dev$vim2m(&(0x7f0000002c80), 0x3, 0x2) syz_io_uring_setup(0x205a, 0x0, &(0x7f0000000480), &(0x7f0000000500)) 2.767933544s ago: executing program 2 (id=4548): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000003bc0)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r0, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000280)='./file0\x00', &(0x7f0000000300), &(0x7f0000000180)=[0x5, 0x0, 0x2], 0x0, 0x1ffffe73, 0x1}}, 0x40) 1.918116222s ago: executing program 3 (id=4549): openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) socket$inet(0x2, 0x2, 0x0) r0 = userfaultfd(0x80801) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2000001, 0x5d031, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x54}) prlimit64(0x0, 0xe, &(0x7f00000004c0)={0x7, 0x800000000000008a}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4}) ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000199000/0x800000)=nil, 0x800000}) 1.91656264s ago: executing program 2 (id=4557): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r0 = syz_open_dev$I2C(&(0x7f0000000d80), 0x0, 0x80001) r1 = openat$audio(0xffffff9c, &(0x7f00000004c0), 0x800, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff) r6 = socket(0x40000000015, 0x5, 0x0) setsockopt$sock_int(r6, 0x1, 0x3c, 0x0, 0x0) recvmmsg(r6, &(0x7f0000001380), 0x0, 0x60010000, 0x0) sendto$inet(r6, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$SNDCTL_DSP_GETISPACE(r1, 0x8010500d, &(0x7f0000000500)) ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000380)={0x0, 0xa, 0x7, &(0x7f0000000280)={0xc, "adab9c9a9e4547d89bef0e7390cb22260923413d6fc20230db6c829745e60b6c5c"}}) 1.829169129s ago: executing program 1 (id=4550): socket$kcm(0x2b, 0x1, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0) r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141102) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) socket$vsock_stream(0x28, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0) 1.82883261s ago: executing program 1 (id=4551): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0) r2 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(r1, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f}) ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000000)=r2) ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2}) ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0, 0x200000}) ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000780)={0x1, 0x1, &(0x7f0000000380)=""/240, &(0x7f0000000900)=""/103, &(0x7f0000000800)=""/90, 0x7000}) ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, 0x0) ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000980)=0x1) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r2, 0xc400941d, &(0x7f0000000380)={0x0, 0xcdf, 0xf}) syz_open_dev$MSR(0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9) sendmmsg$unix(r0, &(0x7f00000bd000), 0x318, 0x0) 973.700674ms ago: executing program 2 (id=4552): ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000040)={'ip6gre0\x00', &(0x7f0000000240)={'ip6gre0\x00', 0x0, 0x2f, 0x0, 0x6, 0x5, 0x5, @ipv4={'\x00', '\xff\xff', @remote}, @mcast1, 0x8, 0x40, 0x6, 0x9}}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) syz_emit_ethernet(0x383, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000280)={@mcast2, 0x800, 0x0, 0x103, 0x1}, 0x20) r3 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip6_flowlabel\x00') pread64(r3, &(0x7f0000001480)=""/4122, 0x101a, 0x99) 973.404076ms ago: executing program 1 (id=4553): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_XEN_HVM_CONFIG(r3, 0x4038ae7a, &(0x7f0000000340)={0x80, 0x40000094, 0x0, 0x0}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000880)={0x0, 0x0, @pic={0x2a, 0xc0, 0x7, 0x6, 0xfb, 0x0, 0xf, 0x4, 0x3, 0x0, 0x3, 0x58, 0x9e, 0x6, 0x6, 0x7f}}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0x8000000000000035, 0xfff, 0x10000000215b9037, 0x40180, 0x1, 0x11, 0x8000000000f2, 0x0, 0x3, 0x5, 0x5, 0xc6bd, 0x566, 0x45, 0x5, 0x7], 0x6006, 0x1c0293}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 968.068114ms ago: executing program 3 (id=4554): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @remote}, 0x10) sendto$inet(r0, &(0x7f00000004c0)="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", 0x109e8, 0x805, 0x0, 0x6) recvmmsg(r0, &(0x7f00000031c0)=[{{0x0, 0x1802, &(0x7f0000000a40)=[{&(0x7f00000008c0)=""/135, 0x87}], 0x1, 0x0, 0x218}}, {{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000000980)=""/146, 0x92}, {&(0x7f0000000080)=""/43, 0x2b}, {&(0x7f0000000a80)=""/242, 0xf2}, {&(0x7f0000000b80)=""/143, 0x8f}], 0x4}, 0x2}], 0x400000000000300, 0x22, 0x0) 730.01568ms ago: executing program 1 (id=4555): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x4, 0x3, &(0x7f0000000240)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0xfffffffe}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x28, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f86dd", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) open_by_handle_at(r0, &(0x7f00000000c0)=ANY=[], 0x200000) write$sysctl(0xffffffffffffffff, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0) prctl$PR_SET_IO_FLUSHER(0x43, 0x1) r1 = userfaultfd(0x801) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2}) socket$nl_route(0x10, 0x3, 0x0) openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) close_range(r1, r2, 0x2) r3 = socket$netlink(0x10, 0x3, 0x0) getsockopt$IP_VS_SO_GET_DESTS(r3, 0x0, 0x484, 0x0, &(0x7f0000000200)) sendmsg$nl_generic(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="1400000042000501"], 0x14}}, 0x44014) recvmmsg(r3, &(0x7f0000000000)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={0xffffffffffffffff, &(0x7f0000001380), &(0x7f0000000000)=""/10, 0x2}, 0x20) ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005cf000/0x4000)=nil, 0x400000, 0x2, 0x2}) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) prctl$PR_SET_IO_FLUSHER(0x43, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) 427.138537ms ago: executing program 0 (id=4556): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x24}}, 0x0) getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffff00f687000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c00010062726964"], 0x3c}}, 0x800) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=@newqdisc={0x3c, 0x24, 0xe0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xfff3, 0xd064db0e491fa98f}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_MEMORY={0x8, 0xa, 0x20842}]}}]}, 0x3c}}, 0x4044080) bind$packet(r0, &(0x7f0000000040)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @remote}, 0x14) sendto$inet6(r0, &(0x7f0000000800)="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", 0xfc13, 0x880, 0x0, 0xfffffffffffffef0) 299.95817ms ago: executing program 0 (id=4558): syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00') r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, 0x0, 0x20040040) openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap(&(0x7f0000173000/0x1000)=nil, 0x1000, 0x0, 0x13, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48) prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0) r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f00000001c0)=0xa0000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000040)={@host}) ioctl$IOCTL_VMCI_DATAGRAM_SEND(r1, 0x7ab, &(0x7f0000000100)={0x0, 0x0, 0x2001}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = syz_open_dev$MSR(&(0x7f0000000080), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) syz_emit_ethernet(0x0, 0x0, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3800000056000100000000000000000007020000", @ANYRES32, @ANYBLOB="200001"], 0x38}}, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r4 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r4, 0x40186f40, &(0x7f0000000440)=0x1f) r5 = syz_open_dev$usbfs(&(0x7f0000000140), 0x76, 0x101301) ioctl$USBDEVFS_ALLOC_STREAMS(r5, 0x8008551c, &(0x7f0000000580)=ANY=[@ANYBLOB="b08d00000100000081718374b58e8cb7e8d8a3956e424a7b2badbc941abffcab8fc534600de02f805c99a7f0fd6aae285b0e0e0af2151677dd0028592d8a"]) syz_open_dev$I2C(&(0x7f0000000040), 0x1, 0x2603) close(0xffffffffffffffff) 49.403037ms ago: executing program 3 (id=4559): syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0) r0 = syz_open_dev$vim2m(&(0x7f0000000580), 0x10003835, 0x2) ioctl$vim2m_VIDIOC_PREPARE_BUF(r0, 0xc0405602, &(0x7f00000001c0)=@fd={0x0, 0x1, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x82, ';\'S;'}}) io_uring_register$IORING_REGISTER_PBUF_RING(0xffffffffffffffff, 0x16, &(0x7f0000000000)={0x0, 0x0, 0x1}, 0x1) r1 = socket(0x3, 0x800, 0xa) bind$inet(r1, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10) connect$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x4e24, 0xf, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x1}, 0x1c) sendto$inet(r1, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10) openat$tun(0xffffffffffffff9c, &(0x7f0000000600), 0x42000, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, 0x0) socket$nl_audit(0x10, 0x3, 0x9) sched_setaffinity(0x0, 0x0, 0x0) prlimit64(0x0, 0x7, &(0x7f00000000c0)={0x6, 0xffffffffffffffff}, &(0x7f0000000180)) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$sock(r2, &(0x7f0000000300)={&(0x7f0000000040)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f00000002c0)}, 0x800) r3 = syz_open_dev$MSR(&(0x7f0000000100), 0x0, 0x0) read$msr(r3, &(0x7f0000001a40)=""/102392, 0x18ff8) socket$netlink(0x10, 0x3, 0x13) r4 = socket(0x2000000000000021, 0x2, 0x2) r5 = openat$userio(0xffffffffffffff9c, &(0x7f0000000140), 0x80401, 0x0) write$USERIO_CMD_REGISTER(r5, &(0x7f00000001c0), 0x2) close(r5) shutdown(r4, 0x2) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x4, 0x0, 0x0, 0xfffffffe}) syz_open_dev$vim2m(&(0x7f0000002c80), 0x3, 0x2) syz_io_uring_setup(0x205a, 0x0, &(0x7f0000000480), &(0x7f0000000500)) 0s ago: executing program 2 (id=4560): r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0) r1 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x8002) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, 0x0) ioctl$DRM_IOCTL_MODE_GETFB2(r1, 0xc06864ce, &(0x7f0000000440)={0x0, 0x2, 0x0, 0x0, 0x0, [0x0], [], [0x0, 0x0, 0x0, 0x4]}) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0xb5}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000080)={r2, 0x0, 0xffffffffffffffff}) ioctl$DRM_IOCTL_MODE_GETFB2(r1, 0xc06864ce, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, [0x0], [0xffffffff], [], [0xfffffffffffffffc]}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r1, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r3}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r1, 0xc00c642d, &(0x7f0000000040)={r4}) 0s ago: executing program 2 (id=4561): r0 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi3\x00', 0x2000, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000080)={'c6xdigio\x00', [0x0, 0x181, 0x2, 0xa, 0x14000000, 0x0, 0xfffffffc, 0x2, 0xffd, 0x7ffe, 0x3, 0x723, 0x400, 0x2, 0x13, 0x100, 0xffffffa7, 0x9, 0x34d, 0x1, 0x3fd, 0x4000009, 0x200, 0xe2df, 0x9, 0x1, 0x4, 0x40000, 0x7, 0xf58, 0x6]}) ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000000)={0x4000000, 0x92, 0x0, 0x1, 0x80000000}) kernel console output (not intermixed with test programs): es for the device [ 588.227846][T16901] netlink: 68 bytes leftover after parsing attributes in process `syz.3.3493'. [ 588.679583][ T116] usb 5-1: USB disconnect, device number 39 [ 588.735385][T16912] XFS (nbd2): SB validate failed with error -5. [ 588.766668][T16919] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3497'. [ 588.817219][T16921] fuse: Bad value for 'fd' [ 590.397382][T16939] hub 1-0:1.0: USB hub found [ 590.399425][T16939] hub 1-0:1.0: 2 ports detected [ 590.458610][T16942] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3506'. [ 590.557033][T16946] fuse: Bad value for 'fd' [ 591.351654][ T116] usb 7-1: new high-speed USB device number 34 using dummy_hcd [ 591.501654][ T116] usb 7-1: Using ep0 maxpacket: 8 [ 591.505538][ T116] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0 [ 591.509926][ T116] usb 7-1: config 1 interface 0 altsetting 0 bulk endpoint 0xF has invalid maxpacket 0 [ 591.514451][ T116] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0 [ 591.521270][ T116] usb 7-1: New USB device found, idVendor=110a, idProduct=1110, bcdDevice=ab.5d [ 591.526929][ T116] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 591.530545][ T116] usb 7-1: Product: syz [ 591.533212][ T116] usb 7-1: Manufacturer: syz [ 591.535321][ T116] usb 7-1: SerialNumber: syz [ 591.547394][ T116] ti_usb_3410_5052 7-1:1.0: TI USB 3410 1 port adapter converter detected [ 591.609283][T16964] XFS (nbd3): SB validate failed with error -5. [ 591.750786][ T116] usb 7-1: USB disconnect, device number 34 [ 592.247475][T16973] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3515'. [ 592.602556][T16991] hub 1-0:1.0: USB hub found [ 592.612187][T16991] hub 1-0:1.0: 2 ports detected [ 593.322393][T16997] fuse: Bad value for 'group_id' [ 593.327463][T16997] fuse: Bad value for 'group_id' [ 593.551280][T17010] tmpfs: Bad value for 'usrquota_inode_hardlimit' [ 593.681245][T17016] serio: Serial port ptm0 [ 594.299657][T17000] ALSA: mixer_oss: invalid OSS volume '' [ 594.548632][T17022] hub 1-0:1.0: USB hub found [ 594.550425][T17022] hub 1-0:1.0: 2 ports detected [ 595.042764][T17036] fuse: Invalid rootmode [ 595.471610][ T5947] Bluetooth: hci1: command 0x0406 tx timeout [ 595.808757][T17062] netlink: 68 bytes leftover after parsing attributes in process `syz.2.3547'. [ 595.935574][T17065] serio: Serial port ptm0 [ 596.120959][T17069] XFS (nbd0): SB validate failed with error -5. [ 596.770870][T17080] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3551'. [ 596.781596][T17080] netdevsim netdevsim3 netdevsim0: entered promiscuous mode [ 598.102909][T17107] XFS (nbd3): SB validate failed with error -5. [ 598.297581][T17116] syz.0.3562: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 598.303711][T17116] CPU: 1 UID: 0 PID: 17116 Comm: syz.0.3562 Not tainted syzkaller #0 PREEMPT(full) [ 598.303738][T17116] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 598.303746][T17116] Call Trace: [ 598.303750][T17116] [ 598.303756][T17116] dump_stack_lvl+0x16c/0x1f0 [ 598.303792][T17116] warn_alloc+0x248/0x3a0 [ 598.303812][T17116] ? __pfx_warn_alloc+0x10/0x10 [ 598.303828][T17116] ? __pfx_stack_trace_save+0x10/0x10 [ 598.303844][T17116] ? kasan_save_stack+0x42/0x60 [ 598.303857][T17116] ? kasan_save_stack+0x33/0x60 [ 598.303869][T17116] ? kasan_save_track+0x14/0x30 [ 598.303881][T17116] ? xskq_create+0x52/0x1d0 [ 598.303890][T17116] ? xsk_setsockopt+0x932/0xc00 [ 598.303905][T17116] ? do_sock_setsockopt+0xf3/0x1d0 [ 598.303921][T17116] ? xskq_create+0xfb/0x1d0 [ 598.303931][T17116] __vmalloc_node_range_noprof+0xfbc/0x1480 [ 598.303950][T17116] ? xskq_create+0xfb/0x1d0 [ 598.303963][T17116] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 598.303983][T17116] ? xskq_create+0xfb/0x1d0 [ 598.303992][T17116] vmalloc_user_noprof+0x9e/0xe0 [ 598.304006][T17116] ? xskq_create+0xfb/0x1d0 [ 598.304016][T17116] xskq_create+0xfb/0x1d0 [ 598.304027][T17116] xsk_setsockopt+0x932/0xc00 [ 598.304044][T17116] ? __pfx_xsk_setsockopt+0x10/0x10 [ 598.304064][T17116] ? aa_sock_opt_perm+0xfd/0x1b0 [ 598.304089][T17116] ? __pfx_xsk_setsockopt+0x10/0x10 [ 598.304106][T17116] do_sock_setsockopt+0xf3/0x1d0 [ 598.304124][T17116] __sys_setsockopt+0x120/0x1a0 [ 598.304139][T17116] __ia32_sys_setsockopt+0xbc/0x160 [ 598.304151][T17116] ? lockdep_hardirqs_on+0x7c/0x110 [ 598.304165][T17116] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 598.304180][T17116] __do_fast_syscall_32+0x7c/0x370 [ 598.304197][T17116] do_fast_syscall_32+0x32/0x80 [ 598.304211][T17116] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 598.304225][T17116] RIP: 0023:0xf703d579 [ 598.304235][T17116] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 598.304246][T17116] RSP: 002b:00000000f542d55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e [ 598.304256][T17116] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000000011b [ 598.304263][T17116] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004 [ 598.304269][T17116] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 598.304275][T17116] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 598.304282][T17116] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 598.304296][T17116] [ 598.304374][T17116] Mem-Info: [ 598.404754][T17116] active_anon:21640 inactive_anon:1 isolated_anon:0 [ 598.404754][T17116] active_file:20254 inactive_file:8934 isolated_file:0 [ 598.404754][T17116] unevictable:1768 dirty:268 writeback:0 [ 598.404754][T17116] slab_reclaimable:6356 slab_unreclaimable:61269 [ 598.404754][T17116] mapped:35217 shmem:18073 pagetables:1248 [ 598.404754][T17116] sec_pagetables:324 bounce:0 [ 598.404754][T17116] kernel_misc_reclaimable:0 [ 598.404754][T17116] free:41044 free_pcp:14582 free_cma:0 [ 598.421901][T17116] Node 0 active_anon:2548kB inactive_anon:4kB active_file:144kB inactive_file:0kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:3896kB dirty:4kB writeback:0kB shmem:5744kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8748kB pagetables:1668kB sec_pagetables:1168kB all_unreclaimable? yes Balloon:0kB [ 598.433739][T17116] Node 1 active_anon:89912kB inactive_anon:0kB active_file:82172kB inactive_file:35736kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:139772kB dirty:1068kB writeback:0kB shmem:72448kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:6544kB pagetables:3324kB sec_pagetables:128kB all_unreclaimable? no Balloon:0kB [ 598.450589][T17116] Node 0 DMA free:2108kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:652kB local_pcp:136kB free_cma:0kB [ 598.463730][T17116] lowmem_reserve[]: 0 291 291 291 291 [ 598.466527][T17116] Node 0 DMA32 free:16736kB boost:0kB min:13448kB low:16808kB high:20168kB reserved_highatomic:0KB free_highatomic:0KB active_anon:2548kB inactive_anon:4kB active_file:144kB inactive_file:0kB unevictable:3536kB writepending:4kB zspages:0kB present:1032196kB managed:298584kB mlocked:0kB bounce:0kB free_pcp:10640kB local_pcp:2120kB free_cma:0kB [ 598.480526][T17116] lowmem_reserve[]: 0 0 0 0 0 [ 598.483155][T17116] Node 1 DMA32 free:126932kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:101548kB inactive_anon:0kB active_file:82172kB inactive_file:35736kB unevictable:3536kB writepending:1076kB zspages:2220kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:46392kB local_pcp:14980kB free_cma:0kB [ 598.498166][T17116] lowmem_reserve[]: 0 0 0 0 0 [ 598.503604][T17116] Node 0 DMA: 11*4kB (UM) 22*8kB (UM) 12*16kB (UM) 7*32kB (UM) 3*64kB (UM) 0*128kB 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2108kB [ 598.516918][T17116] Node 0 DMA32: 4*4kB (UE) 26*8kB (UME) 20*16kB (UME) 110*32kB (UME) 62*64kB (UME) 34*128kB (UME) 13*256kB (UM) 2*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 16736kB [ 598.527909][T17116] Node 1 DMA32: 4*4kB (UME) 36*8kB (E) 37*16kB (UE) 36*32kB (UE) 67*64kB (UE) 47*128kB (UE) 17*256kB (UE) 5*512kB (UE) 10*1024kB (M) 20*2048kB (UM) 11*4096kB (UM) = 115520kB [ 598.531604][ T116] usb 7-1: new high-speed USB device number 35 using dummy_hcd [ 598.537144][T17116] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 598.544203][T17116] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 598.548470][T17116] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 598.553188][T17116] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 598.557636][T17116] 57071 total pagecache pages [ 598.559945][T17116] 339 pages in swap cache [ 598.562392][T17116] Free swap = 118636kB [ 598.564460][T17116] Total swap = 124996kB [ 598.566532][T17116] 524155 pages RAM [ 598.568416][T17116] 0 pages HighMem/MovableOnly [ 598.576992][T17116] 208614 pages reserved [ 598.579027][T17116] 0 pages cma reserved [ 598.693899][ T116] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 598.696627][ T116] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 598.699821][ T116] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 598.702968][ T116] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 598.706431][ T116] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 598.711395][ T116] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 598.714362][ T116] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 598.716889][ T116] usb 7-1: Product: syz [ 598.718248][ T116] usb 7-1: Manufacturer: syz [ 598.724700][ T116] cdc_wdm 7-1:1.0: skipping garbage [ 598.726415][ T116] cdc_wdm 7-1:1.0: skipping garbage [ 598.739272][ T116] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device [ 598.741180][ T116] cdc_wdm 7-1:1.0: Unknown control protocol [ 598.965831][T17123] hub 1-0:1.0: USB hub found [ 598.967609][T17123] hub 1-0:1.0: 2 ports detected [ 599.869484][T17153] fuse: Unknown parameter 'use00000000000000000000' [ 600.271249][T17161] hub 1-0:1.0: USB hub found [ 600.273952][T17161] hub 1-0:1.0: 2 ports detected [ 600.427027][T17163] netlink: 68 bytes leftover after parsing attributes in process `syz.3.3579'. [ 601.300522][ T6030] usb 7-1: USB disconnect, device number 35 [ 601.407092][T17177] fuse: Unknown parameter 'use00000000000000000000' [ 601.471703][T17179] fuse: Unknown parameter 'grou00000000000000000000' [ 601.579897][T17183] tipc: Started in network mode [ 601.582780][T17183] tipc: Node identity 8ed64b1b6905, cluster identity 4711 [ 601.586647][T17183] tipc: Enabled bearer , priority 0 [ 601.599411][T17183] syzkaller0: entered promiscuous mode [ 601.602195][T17183] syzkaller0: entered allmulticast mode [ 601.644055][T17183] tipc: Resetting bearer [ 601.667557][T17182] tipc: Resetting bearer [ 601.680399][T17182] tipc: Disabling bearer [ 601.883415][T17195] serio: Serial port ptm0 [ 602.792504][T17200] fuse: Unknown parameter 'user_i00000000000000000000' [ 602.934961][T17208] fuse: Unknown parameter 'grou00000000000000000000' [ 603.506583][T17224] hub 1-0:1.0: USB hub found [ 603.509375][T17224] hub 1-0:1.0: 2 ports detected [ 603.987940][T17231] netlink: 52 bytes leftover after parsing attributes in process `syz.2.3607'. [ 604.015641][T17233] fuse: Unknown parameter 'grou00000000000000000000' [ 604.109130][T17236] serio: Serial port ptm0 [ 604.762549][T17247] hub 1-0:1.0: USB hub found [ 604.764931][T17247] hub 1-0:1.0: 2 ports detected [ 604.984985][T17254] overlayfs: failed to resolve './file0': -2 [ 605.030817][T17256] fuse: Unknown parameter 'group_i00000000000000000000' [ 607.385617][T17288] serio: Serial port ptm0 [ 607.639951][T17291] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3629'. [ 607.936462][T17295] XFS (nbd2): SB validate failed with error -5. [ 608.699127][T17313] tipc: Enabling of bearer rejected, failed to enable media [ 608.895020][T17324] fuse: Bad value for 'fd' [ 609.012060][T17333] 9pnet_virtio: no channels available for device 127.0.0.1 [ 609.453024][T17339] XFS (nbd0): SB validate failed with error -5. [ 610.671746][ T986] usb 5-1: new high-speed USB device number 40 using dummy_hcd [ 610.832571][ T986] usb 5-1: Using ep0 maxpacket: 16 [ 610.836793][ T986] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 610.846572][ T986] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 610.850525][ T986] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 610.854292][ T986] usb 5-1: Product: syz [ 610.856148][ T986] usb 5-1: Manufacturer: syz [ 610.858227][ T986] usb 5-1: SerialNumber: syz [ 610.872558][ T986] usb 5-1: config 0 descriptor?? [ 610.876385][ T986] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 610.879510][ T986] em28xx 5-1:0.0: DVB interface 0 found: bulk [ 611.058674][T17370] XFS (nbd2): SB validate failed with error -5. [ 611.507642][ T986] em28xx 5-1:0.0: chip ID is em2765 [ 611.835635][T17381] tipc: Enabled bearer , priority 0 [ 611.844199][T17381] syzkaller0: entered promiscuous mode [ 611.846668][T17381] syzkaller0: entered allmulticast mode [ 611.863737][T17381] tipc: Resetting bearer [ 611.868905][T17378] tipc: Resetting bearer [ 611.884604][T17378] tipc: Disabling bearer [ 611.985653][T17386] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3660'. [ 611.989605][T17386] nbd: must specify a size in bytes for the device [ 612.126873][ T986] em28xx 5-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 612.130480][ T986] em28xx 5-1:0.0: board has no eeprom [ 612.194579][T17398] 9pnet_virtio: no channels available for device 127.0.0.1 [ 612.401651][ T986] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94) [ 612.404375][ T986] em28xx 5-1:0.0: dvb set to bulk mode. [ 612.406931][ T61] em28xx 5-1:0.0: Binding DVB extension [ 612.435892][ T986] usb 5-1: USB disconnect, device number 40 [ 612.442221][ T986] em28xx 5-1:0.0: Disconnecting em28xx [ 612.450378][ T61] em28xx 5-1:0.0: Registering input extension [ 612.458687][ T986] em28xx 5-1:0.0: Closing input extension [ 612.469687][ T986] em28xx 5-1:0.0: Freeing device [ 613.464158][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.469030][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.477989][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.482113][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.487362][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.492135][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.496580][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.500673][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.506108][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.510868][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.515293][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.519430][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.524204][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.527739][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.536416][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.540206][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.554267][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.560113][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.564604][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.571335][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.577825][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.581885][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.587037][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.591054][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.594747][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.598322][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.602140][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.605949][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.610881][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.621012][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.629071][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.636615][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.643922][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.648135][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.655173][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.659326][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.664723][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.669186][T17433] rdma_rxe: rxe_newlink: failed to add ip6_vti0 [ 613.669887][T17435] fuse: Unknown parameter 'fd00000000000000000000003' [ 613.671665][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.677967][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.682374][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.686171][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.689889][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.694870][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.698592][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.702376][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.706305][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.710432][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.714285][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.718641][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.722796][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.729987][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.737828][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.742578][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.756044][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.760302][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.769366][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.777663][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.783866][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.792320][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.798385][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.808546][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.814445][T17438] validate_nla: 97 callbacks suppressed [ 613.814460][T17438] netlink: 'syz.0.3682': attribute type 10 has an invalid length. [ 613.820903][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.824473][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.831606][T17438] netlink: 55 bytes leftover after parsing attributes in process `syz.0.3682'. [ 613.836501][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.846671][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.850364][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.855806][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.867028][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.885103][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.888886][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.901611][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.906493][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.910129][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.914950][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.920896][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.929467][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.942259][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.959746][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.969449][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.979146][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.990380][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.994786][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 613.998735][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.009584][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.013642][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.017478][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.023373][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.029369][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.035519][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.041562][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.047051][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.054680][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.060760][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.067185][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.073244][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.079549][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.086007][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.092669][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.097377][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.106135][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.114492][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.119695][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.124251][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.128200][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.132187][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.136101][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.140518][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.144668][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.149397][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.153840][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.158256][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.162286][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.166938][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.171412][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.175205][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.178759][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.182391][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.185890][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.189708][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.193473][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.197288][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.201085][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.205693][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.209431][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.213262][ T6030] usb 7-1: new high-speed USB device number 36 using dummy_hcd [ 614.213714][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.220135][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.224573][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.228431][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.232363][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.235964][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.239960][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.245088][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.249257][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.253669][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.257245][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.261000][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.265466][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.269102][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.274320][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.278512][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.282458][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.293946][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.302366][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.311970][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.322283][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.330831][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.336146][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.343271][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.350735][T17419] 9pnet_fd: p9_fd_create_tcp (17419): problem connecting socket to 127.0.0.1 [ 614.361611][ T6030] usb 7-1: Using ep0 maxpacket: 16 [ 614.364492][ T6030] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 614.369654][ T6030] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 614.372654][ T6030] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 614.375165][ T6030] usb 7-1: Product: syz [ 614.376534][ T6030] usb 7-1: Manufacturer: syz [ 614.378060][ T6030] usb 7-1: SerialNumber: syz [ 614.383169][ T6030] usb 7-1: config 0 descriptor?? [ 614.520210][T17449] tipc: Enabled bearer , priority 0 [ 614.529319][T17449] syzkaller0: entered promiscuous mode [ 614.533787][T17449] syzkaller0: entered allmulticast mode [ 614.546131][T17449] tipc: Resetting bearer [ 614.552254][T17448] tipc: Resetting bearer [ 614.563275][T17448] tipc: Disabling bearer [ 614.687252][T17455] fuse: Unknown parameter 'fd00000000000000000000003' [ 614.780993][T17464] serio: Serial port ptm0 [ 616.417946][T17492] fuse: Unknown parameter 'fd00000000000000000000003' [ 616.962048][ T5992] usb 7-1: USB disconnect, device number 36 [ 617.126000][T17506] tipc: Started in network mode [ 617.128090][T17506] tipc: Node identity 7221053f5a14, cluster identity 4711 [ 617.131389][T17506] tipc: Enabled bearer , priority 0 [ 617.137322][T17506] syzkaller0: entered promiscuous mode [ 617.139919][T17506] syzkaller0: entered allmulticast mode [ 617.147211][T17506] tipc: Resetting bearer [ 617.151997][T17505] tipc: Resetting bearer [ 617.160851][T17505] tipc: Disabling bearer [ 617.264498][T17508] fuse: Bad value for 'fd' [ 617.532190][T17516] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3712'. [ 617.536224][T17516] nbd: must specify a size in bytes for the device [ 618.464417][T17529] tipc: Enabled bearer , priority 0 [ 618.469373][T17529] syzkaller0: entered promiscuous mode [ 618.472161][T17529] syzkaller0: entered allmulticast mode [ 618.492941][T17529] tipc: Resetting bearer [ 618.498487][T17528] tipc: Resetting bearer [ 618.511766][T17528] tipc: Disabling bearer [ 618.757728][T17537] overlayfs: missing 'lowerdir' [ 618.940115][T17541] digital: digital_start_poll: Unknown protocol [ 619.974289][T17555] tipc: Enabled bearer , priority 0 [ 619.979126][T17555] syzkaller0: entered promiscuous mode [ 619.982233][T17555] syzkaller0: entered allmulticast mode [ 619.989628][T17555] tipc: Resetting bearer [ 619.993914][T17554] tipc: Resetting bearer [ 620.001925][T17554] tipc: Disabling bearer [ 620.132581][T17561] overlayfs: missing 'lowerdir' [ 620.139177][T17563] fuse: Bad value for 'rootmode' [ 620.215137][T17569] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3730'. [ 620.231346][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.236690][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.242144][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.246770][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.250821][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.256364][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.260562][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.266767][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.280793][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.292686][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.298417][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.304412][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.309110][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.314166][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.319326][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.324647][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.329882][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.336111][T17569] ipvlan2: entered promiscuous mode [ 620.337959][T17569] ipvlan2: entered allmulticast mode [ 620.339513][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.340319][T17569] dummy0: entered allmulticast mode [ 620.352045][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.367092][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.382461][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.388562][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.392780][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.398314][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.403903][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.409373][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.413715][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.419163][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.424763][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.431200][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.441009][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.445746][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.449846][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.454402][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.459477][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.465210][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.470953][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.475798][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.481470][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.487545][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.492746][T17568] 9pnet_fd: p9_fd_create_tcp (17568): problem connecting socket to 127.0.0.1 [ 620.832250][T17578] serio: Serial port ptm0 [ 620.890617][T17580] tipc: Enabled bearer , priority 0 [ 620.894013][T17580] syzkaller0: entered promiscuous mode [ 620.895862][T17580] syzkaller0: entered allmulticast mode [ 620.904486][T17580] tipc: Resetting bearer [ 620.932682][T17579] tipc: Resetting bearer [ 620.960761][T17579] tipc: Disabling bearer [ 621.161361][T17590] overlayfs: missing 'lowerdir' [ 621.371330][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.376000][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.379557][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.384866][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.389070][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.396314][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.400985][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.410419][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.414161][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.420122][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.427740][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.431971][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.436438][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.441565][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.446526][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.452384][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.457703][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.462867][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.467677][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.474285][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.480094][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.487256][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.492516][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.497374][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.502615][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.510642][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.517717][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.522005][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.528039][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.532327][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.536769][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.541003][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.545223][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.549360][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.554655][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.559362][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.563795][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.568611][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.576131][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.583379][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.586968][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.590432][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.594264][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.597792][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.601752][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.605217][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.608653][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.612064][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.615895][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.619423][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.623345][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.626928][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.630395][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.634741][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.638534][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.644297][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.648452][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.652507][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.657121][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.661866][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.667295][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.671571][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.677103][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.683326][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.687763][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.694916][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.702547][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.708705][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.716184][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.724117][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.730263][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.735887][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.741628][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.746702][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.752790][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.758918][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.763998][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.769593][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.775761][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.781661][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.787371][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.794546][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.800365][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.807007][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.813322][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.819694][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.824747][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.829883][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.836503][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.842209][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.847973][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.854296][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.859508][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.865370][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.871142][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.877300][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.882347][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.889862][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.895145][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.900079][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.905431][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.911792][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.916485][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.921429][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.927261][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.931192][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.934752][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.938117][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.942064][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.945503][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.949250][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.953532][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.957676][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.961165][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.965825][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.970843][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.976329][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.981399][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.987558][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.992654][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 621.997300][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.001882][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.005440][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.009197][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.013380][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.017004][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.021070][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.024778][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.029251][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.032930][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.036778][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.040916][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.044765][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.048654][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.053457][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.056847][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.060355][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.064030][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.067623][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.071346][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.074904][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.078257][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.082013][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.085503][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.089105][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.092576][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.096346][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.099751][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.103661][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.107278][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.111802][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.115365][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.119118][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.123505][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.127100][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.130816][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.134812][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.138865][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.142602][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.146857][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.151823][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.155486][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.159356][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.178836][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.194703][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.206948][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.219482][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.231294][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.244240][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.254094][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.264854][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.266605][T17597] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3742'. [ 622.274926][T17597] nbd: must specify a size in bytes for the device [ 622.281666][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.293414][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.311575][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.316750][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.331808][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.336775][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.351529][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.355037][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 622.363513][T17594] 9pnet_fd: p9_fd_create_tcp (17594): problem connecting socket to 127.0.0.1 [ 623.001759][ T6029] usb 7-1: new high-speed USB device number 37 using dummy_hcd [ 623.152239][ T6029] usb 7-1: Using ep0 maxpacket: 16 [ 623.305210][ T6029] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 623.309012][ T6029] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 623.314413][ T6029] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 623.322430][ T6029] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 623.327276][ T6029] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 623.339960][ T6029] usb 7-1: config 0 descriptor?? [ 623.907916][ T6029] microsoft 0003:045E:07DA.0009: unknown main item tag 0x0 [ 623.910342][ T6029] microsoft 0003:045E:07DA.0009: ignoring exceeding usage max [ 623.929996][ T6029] microsoft 0003:045E:07DA.0009: hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0 [ 623.947534][ T6029] microsoft 0003:045E:07DA.0009: no inputs found [ 623.949659][ T6029] microsoft 0003:045E:07DA.0009: could not initialize ff, continuing anyway [ 623.994923][T17629] overlayfs: missing 'lowerdir' [ 624.051150][T17632] fuse: Unknown parameter '00000000000000000000' [ 624.116064][ T1420] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.118199][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.175794][T17635] tipc: Enabled bearer , priority 0 [ 624.182430][T17635] syzkaller0: entered promiscuous mode [ 624.184999][T17635] syzkaller0: entered allmulticast mode [ 624.200024][T17635] tipc: Resetting bearer [ 624.204224][T17634] tipc: Resetting bearer [ 624.219398][T17634] tipc: Disabling bearer [ 624.470344][ T8172] usb 7-1: USB disconnect, device number 37 [ 624.769893][T17648] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3761'. [ 624.773549][T17648] nbd: must specify a size in bytes for the device [ 625.642318][T17664] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3766'. [ 626.046871][T17674] XFS (nbd2): SB validate failed with error -5. [ 626.641617][ T986] usb 6-1: new high-speed USB device number 32 using dummy_hcd [ 626.718058][T17694] netlink: 92 bytes leftover after parsing attributes in process `syz.2.3775'. [ 626.823211][ T986] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 626.827376][ T986] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 626.833078][ T986] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 626.836845][ T986] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 626.841842][ T986] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 626.847968][ T986] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 626.852223][ T986] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 626.855666][ T986] usb 6-1: Product: syz [ 626.857512][ T986] usb 6-1: Manufacturer: syz [ 626.863631][ T986] cdc_wdm 6-1:1.0: skipping garbage [ 626.865462][ T986] cdc_wdm 6-1:1.0: skipping garbage [ 626.868272][ T986] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device [ 626.870287][ T986] cdc_wdm 6-1:1.0: Unknown control protocol [ 627.066404][T17714] bridge0: port 2(bridge_slave_1) entered disabled state [ 627.069828][T17714] bridge0: port 1(bridge_slave_0) entered disabled state [ 627.138085][T17714] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 627.144186][T17714] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 627.145827][T17715] XFS (nbd3): SB validate failed with error -5. [ 627.281049][ T6029] syz2: Port: 1 Link DOWN [ 627.281132][ T9797] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 627.286113][ T9797] netdevsim netdevsim2 netdevsim0: unset [1, 1] type 2 family 0 port 256 - 0 [ 627.289094][ T9797] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 627.292520][ T9797] netdevsim netdevsim2 netdevsim1: unset [1, 1] type 2 family 0 port 256 - 0 [ 627.295751][ T9797] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 627.301551][ T9797] netdevsim netdevsim2 netdevsim2: unset [1, 1] type 2 family 0 port 256 - 0 [ 627.304822][ T9797] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 627.307700][ T9797] netdevsim netdevsim2 netdevsim3: unset [1, 1] type 2 family 0 port 256 - 0 [ 627.536741][ T5949] Bluetooth: hci2: link tx timeout [ 627.540053][ T5949] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa [ 629.460348][ T6077] usb 6-1: USB disconnect, device number 32 [ 629.562587][ T5949] Bluetooth: hci2: command 0x0406 tx timeout [ 630.461802][T17774] hub 1-0:1.0: USB hub found [ 630.464826][T17774] hub 1-0:1.0: 2 ports detected [ 630.528859][T17775] Dead loop on virtual device ip6_vti0, fix it urgently! [ 631.791665][ T5947] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 631.937579][T17791] fuse: Unknown parameter 'user_i00000000000000000000' [ 632.106770][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.116588][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.123180][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.128444][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.134619][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.139821][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.144980][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.149845][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.155279][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.160438][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.165729][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.171006][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.176905][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.182103][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.188325][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.194336][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.199607][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.205321][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.210801][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.216106][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.221590][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.226636][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.232227][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.237319][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.242811][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.248064][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.252406][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.256212][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.260415][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.264693][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.268642][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.273520][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.292545][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.298227][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.313542][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.318691][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.325184][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.333423][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.339098][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.340093][T17801] hub 1-0:1.0: USB hub found [ 632.345876][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.351199][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.351669][T17801] hub 1-0:1.0: 2 ports detected [ 632.356681][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.363467][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.368667][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.374562][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.380160][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.385850][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.393877][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.399718][T17797] 9pnet_fd: p9_fd_create_tcp (17797): problem connecting socket to 127.0.0.1 [ 632.623062][T17813] fuse: Unknown parameter 'user_i00000000000000000000' [ 632.742170][ T116] usb 7-1: new high-speed USB device number 38 using dummy_hcd [ 632.847148][T17817] XFS (nbd3): SB validate failed with error -5. [ 633.633275][ T116] usb 7-1: config 0 interface 0 has no altsetting 0 [ 633.636045][ T116] usb 7-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00 [ 633.639121][ T116] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 633.643468][ T116] usb 7-1: config 0 descriptor?? [ 634.053785][ T116] prodikeys 0003:041E:2801.000A: unknown main item tag 0x0 [ 634.058539][ T116] prodikeys 0003:041E:2801.000A: unknown main item tag 0x0 [ 634.060960][ T116] prodikeys 0003:041E:2801.000A: unknown main item tag 0x0 [ 634.063498][ T116] prodikeys 0003:041E:2801.000A: item fetching failed at offset 6/7 [ 634.066464][ T116] prodikeys 0003:041E:2801.000A: hid parse failed [ 634.068744][ T116] prodikeys 0003:041E:2801.000A: probe with driver prodikeys failed with error -22 [ 634.153483][T17847] hub 1-0:1.0: USB hub found [ 634.161443][T17847] hub 1-0:1.0: 2 ports detected [ 634.254232][ T116] usb 7-1: USB disconnect, device number 38 [ 635.072821][T17859] XFS (nbd2): SB validate failed with error -5. [ 636.584889][ T40] kauditd_printk_skb: 43 callbacks suppressed [ 636.587958][ T40] audit: type=1326 audit(2000000045.100:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17877 comm="syz.0.3840" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf703d579 code=0x0 [ 636.705520][T17883] 9pnet_fd: p9_fd_create_tcp (17883): problem connecting socket to 127.0.0.1 [ 636.710100][T17883] 9pnet_fd: p9_fd_create_tcp (17883): problem connecting socket to 127.0.0.1 [ 636.714638][T17883] 9pnet_fd: p9_fd_create_tcp (17883): problem connecting socket to 127.0.0.1 [ 636.718243][T17883] 9pnet_fd: p9_fd_create_tcp (17883): problem connecting socket to 127.0.0.1 [ 637.771614][T17902] misc userio: No port type given on /dev/userio [ 638.032039][ T6077] usb 6-1: new high-speed USB device number 33 using dummy_hcd [ 638.193629][ T6077] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 638.196560][ T6077] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 638.199845][ T6077] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 638.203477][ T6077] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 638.207064][ T6077] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 638.212402][ T6077] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 638.215418][ T6077] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 638.218046][ T6077] usb 6-1: Product: syz [ 638.219491][ T6077] usb 6-1: Manufacturer: syz [ 638.224860][ T6077] cdc_wdm 6-1:1.0: skipping garbage [ 638.226924][ T6077] cdc_wdm 6-1:1.0: skipping garbage [ 638.230841][ T6077] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device [ 638.233296][ T6077] cdc_wdm 6-1:1.0: Unknown control protocol [ 638.690638][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.697498][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.702571][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.707520][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.711427][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.716354][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.720524][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.728929][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.742313][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.746370][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.750402][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.768102][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.773463][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.777860][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.792102][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.795724][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.799275][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.805770][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.810648][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.815554][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.820672][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.826062][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.831415][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.836822][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.841772][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.845756][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.849620][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.854865][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.858503][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.862417][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.866100][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.870463][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.878656][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 638.882488][T17916] 9pnet_fd: p9_fd_create_tcp (17916): problem connecting socket to 127.0.0.1 [ 639.186702][ T5992] usb 6-1: USB disconnect, device number 33 [ 639.874607][T17939] Bluetooth: MGMT ver 1.23 [ 640.138224][T17950] tipc: Enabled bearer , priority 0 [ 640.141331][T17950] syzkaller0: entered promiscuous mode [ 640.143491][T17950] syzkaller0: entered allmulticast mode [ 640.149231][T17950] tipc: Resetting bearer [ 640.153453][T17949] tipc: Resetting bearer [ 640.162476][T17949] tipc: Disabling bearer [ 640.400925][T17952] syz.2.3864 (17952): drop_caches: 2 [ 640.412955][T17952] syz.2.3864 (17952): drop_caches: 2 [ 641.001073][ T40] audit: type=1326 audit(2000000049.510:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17959 comm="syz.1.3867" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x0 [ 641.412727][T17970] autofs4:pid:17970:validate_dev_ioctl: path string terminator missing for cmd(0xc0189375) [ 642.074796][T17979] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3872'. [ 642.448022][T17989] XFS (nbd3): SB validate failed with error -5. [ 642.628613][ T40] audit: type=1326 audit(2000000051.140:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17993 comm="syz.2.3877" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f62579 code=0x0 [ 645.469310][T18036] XFS (nbd1): SB validate failed with error -5. [ 645.632448][ T6030] libceph: connect (1)[c::]:6789 error -101 [ 645.635085][ T6030] libceph: mon0 (1)[c::]:6789 connect error [ 645.716468][T18046] ceph: No mds server is up or the cluster is laggy [ 646.721555][T18072] syzkaller0: entered promiscuous mode [ 646.723937][T18072] syzkaller0: entered allmulticast mode [ 646.930257][T18062] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3894'. [ 646.933976][T18062] nbd: must specify a size in bytes for the device [ 647.874040][T18088] XFS (nbd1): SB validate failed with error -5. [ 648.560858][T18099] fuse: Unknown parameter '0000000000000000000000000000000000000000' [ 648.709925][T18103] tipc: Enabled bearer , priority 0 [ 648.714467][T18103] syzkaller0: entered promiscuous mode [ 648.716774][T18103] syzkaller0: entered allmulticast mode [ 648.730141][T18103] tipc: Resetting bearer [ 648.735235][T18102] tipc: Resetting bearer [ 648.745704][T18102] tipc: Disabling bearer [ 648.811597][ T986] usb 6-1: new full-speed USB device number 34 using dummy_hcd [ 648.964081][ T986] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 648.969235][ T986] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 648.973233][ T986] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8 [ 648.977358][ T986] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 648.983815][ T986] usb 6-1: config 0 descriptor?? [ 648.997201][ T986] dvb-usb: found a 'Artec T1 USB2.0' in warm state. [ 649.000436][ T986] dvb-usb: bulk message failed: -22 (3/0) [ 649.015373][ T986] dvb-usb: will use the device's hardware PID filter (table count: 16). [ 649.020016][ T986] dvbdev: DVB: registering new adapter (Artec T1 USB2.0) [ 649.023381][ T986] usb 6-1: media controller created [ 649.027743][ T986] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 649.038874][ T986] dvb-usb: bulk message failed: -22 (6/0) [ 649.041089][ T986] dvb-usb: no frontend was attached by 'Artec T1 USB2.0' [ 649.049451][ T986] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb6/6-1/input/input20 [ 649.056421][ T986] dvb-usb: schedule remote query interval to 150 msecs. [ 649.059436][ T986] dvb-usb: Artec T1 USB2.0 successfully initialized and connected. [ 649.191719][ T6029] usb 6-1: USB disconnect, device number 34 [ 649.216463][ T6029] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected. [ 650.041204][T18119] hub 1-0:1.0: USB hub found [ 650.061753][T18119] hub 1-0:1.0: 2 ports detected [ 650.736754][T18143] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3922'. [ 651.041689][ T986] libceph: connect (1)[c::]:6789 error -101 [ 651.045009][ T986] libceph: mon0 (1)[c::]:6789 connect error [ 651.064026][T18150] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3925'. [ 651.137683][T18146] ceph: No mds server is up or the cluster is laggy [ 651.401614][ T7435] usb 7-1: new high-speed USB device number 39 using dummy_hcd [ 651.566220][ T7435] usb 7-1: New USB device found, idVendor=0c45, idProduct=60a8, bcdDevice=b5.55 [ 651.578205][ T7435] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 651.585029][ T7435] usb 7-1: Product: syz [ 651.589951][ T7435] usb 7-1: Manufacturer: syz [ 651.592033][ T7435] usb 7-1: SerialNumber: syz [ 651.600996][ T7435] usb 7-1: config 0 descriptor?? [ 651.612738][ T7435] gspca_main: sonixb-2.14.0 probing 0c45:60a8 [ 651.760972][T18166] hub 1-0:1.0: USB hub found [ 651.771767][T18166] hub 1-0:1.0: 2 ports detected [ 651.825443][ T7435] sonixb 7-1:0.0: Error reading register 00: -32 [ 651.833913][ T7435] usb 7-1: USB disconnect, device number 39 [ 652.771614][ T6030] usb 5-1: new high-speed USB device number 41 using dummy_hcd [ 652.921608][ T6030] usb 5-1: Using ep0 maxpacket: 16 [ 652.925708][ T6030] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 652.932327][ T6030] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 652.936445][ T6030] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 652.939986][ T6030] usb 5-1: Product: syz [ 652.945266][ T6030] usb 5-1: Manufacturer: syz [ 652.947287][ T6030] usb 5-1: SerialNumber: syz [ 652.951181][ T6030] usb 5-1: config 0 descriptor?? [ 652.960997][ T6030] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 652.964787][ T6030] em28xx 5-1:0.0: DVB interface 0 found: bulk [ 653.570029][ T6030] em28xx 5-1:0.0: unknown em28xx chip ID (0) [ 653.749853][T18197] tipc: Enabled bearer , priority 0 [ 653.781186][T18197] syzkaller0: entered promiscuous mode [ 653.784128][T18197] syzkaller0: entered allmulticast mode [ 653.787109][T18197] tipc: Resetting bearer [ 653.797249][T18196] tipc: Resetting bearer [ 653.990207][ T6030] em28xx 5-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 653.995618][ T6030] em28xx 5-1:0.0: board has no eeprom [ 654.351584][ T6030] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94) [ 654.360169][ T6030] em28xx 5-1:0.0: dvb set to bulk mode. [ 654.362950][ T7435] em28xx 5-1:0.0: Binding DVB extension [ 654.476386][T18204] hub 1-0:1.0: USB hub found [ 654.478314][T18204] hub 1-0:1.0: 2 ports detected [ 654.847918][T18206] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3946'. [ 655.173334][T18196] tipc: Disabling bearer [ 655.177714][ T6030] tipc: Node number set to 674563391 [ 655.439580][T18223] netlink: 88 bytes leftover after parsing attributes in process `syz.1.3947'. [ 655.564735][T18178] em28xx 5-1:0.0: failed to get i2c transfer status from bridge register (error=-5) [ 655.573323][ T6077] usb 5-1: USB disconnect, device number 41 [ 655.575965][ T6077] em28xx 5-1:0.0: Disconnecting em28xx [ 655.584661][ T7435] em28xx 5-1:0.0: Registering input extension [ 655.589162][ T6077] em28xx 5-1:0.0: Closing input extension [ 655.603071][ T6077] em28xx 5-1:0.0: Freeing device [ 656.053857][T18230] input: syz0 as /devices/virtual/input/input22 [ 656.236194][T18237] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3957'. [ 656.364303][ T40] audit: type=1804 audit(2000000064.880:103): pid=18242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.3958" name="/newroot/325/file1" dev="fuse" ino=1 res=1 errno=0 [ 656.668048][T18251] fuse: Unknown parameter 'fd0x0000000000000003' [ 657.469686][T18265] syzkaller0: entered promiscuous mode [ 657.472522][T18265] syzkaller0: entered allmulticast mode [ 657.736257][T18272] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3970'. [ 657.871881][ T986] usb 7-1: new high-speed USB device number 40 using dummy_hcd [ 658.021673][ T986] usb 7-1: Using ep0 maxpacket: 8 [ 658.024861][ T986] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 658.028221][ T986] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 658.031124][ T986] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 658.037476][ T986] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024 [ 658.040781][ T986] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 658.051580][ T986] usb 7-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 658.054379][ T986] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 658.059169][ T986] usb 7-1: config 0 descriptor?? [ 658.062619][T18269] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 658.400009][T18283] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 658.429378][T18283] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type [ 658.433918][T18283] overlayfs: failed to look up (tracing) for ino (-66) [ 658.476224][ T6077] usb 7-1: USB disconnect, device number 40 [ 658.479416][ T5949] Bluetooth: hci0: Opcode 0x0c03 failed: -19 [ 658.873874][T18291] syzkaller0: entered promiscuous mode [ 658.875769][T18291] syzkaller0: entered allmulticast mode [ 659.625536][T18299] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3979'. [ 660.098799][T18310] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3070988179 (3070988179 ns) > initial count (1876204212 ns). Using initial count to start timer. [ 661.168768][T18331] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3988'. [ 662.160384][T18352] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3997'. [ 662.375449][T18356] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3998'. [ 662.378644][T18356] nbd: must specify a size in bytes for the device [ 664.251783][T18405] XFS (nbd2): SB validate failed with error -5. [ 664.509142][T18417] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.4015' sets config #0 [ 664.514124][T18417] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.4015' sets config #1 [ 666.001354][T18446] misc userio: No port type given on /dev/userio [ 666.260658][T18450] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4023'. [ 666.263852][T18450] nbd: must specify a size in bytes for the device [ 666.872335][T18460] netlink: 76 bytes leftover after parsing attributes in process `syz.1.4027'. [ 667.338232][T18468] hub 1-0:1.0: USB hub found [ 667.340698][T18468] hub 1-0:1.0: 2 ports detected [ 668.288130][ T40] audit: type=1326 audit(2000000076.800:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18486 comm="syz.3.4035" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 668.295918][ T40] audit: type=1326 audit(2000000076.800:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18486 comm="syz.3.4035" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 668.303285][ T40] audit: type=1326 audit(2000000076.800:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18486 comm="syz.3.4035" exe="/syz-executor" sig=0 arch=40000003 syscall=103 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 668.321704][ T40] audit: type=1326 audit(2000000076.800:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18486 comm="syz.3.4035" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 668.329343][ T40] audit: type=1326 audit(2000000076.800:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18486 comm="syz.3.4035" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 668.565443][T18492] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4037'. [ 668.568670][T18492] nbd: must specify a size in bytes for the device [ 668.761606][ T6009] usb 7-1: new high-speed USB device number 41 using dummy_hcd [ 668.924039][ T6009] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 668.927506][ T6009] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 668.930945][ T6009] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 668.933999][ T6009] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 668.938250][ T6009] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 668.943133][ T6009] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 668.946219][ T6009] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 668.948978][ T6009] usb 7-1: Product: syz [ 668.950384][ T6009] usb 7-1: Manufacturer: syz [ 668.960478][ T6009] cdc_wdm 7-1:1.0: skipping garbage [ 668.963197][ T6009] cdc_wdm 7-1:1.0: skipping garbage [ 668.966338][ T6009] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device [ 668.968582][ T6009] cdc_wdm 7-1:1.0: Unknown control protocol [ 669.381627][T18504] hub 1-0:1.0: USB hub found [ 669.383580][T18504] hub 1-0:1.0: 2 ports detected [ 669.511319][T18506] cdc_wdm 7-1:1.0: Error submitting int urb - -90 [ 669.985503][ T40] audit: type=1804 audit(2000000078.500:109): pid=18513 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.4042" name="/newroot/367/file1" dev="fuse" ino=1 res=1 errno=0 [ 671.055240][T18526] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4045'. [ 671.444093][T18537] serio: Serial port ptm0 [ 671.546521][ T6009] usb 7-1: USB disconnect, device number 41 [ 672.219701][ T40] audit: type=1804 audit(2000000080.730:110): pid=18549 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.4054" name="/newroot/425/file1" dev="fuse" ino=1 res=1 errno=0 [ 672.379457][T18554] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4056'. [ 672.383740][T18554] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4056'. [ 672.466791][T18558] hub 1-0:1.0: USB hub found [ 672.471817][T18558] hub 1-0:1.0: 2 ports detected [ 672.861608][ T6077] usb 7-1: new high-speed USB device number 42 using dummy_hcd [ 673.033523][ T6077] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 673.037414][ T6077] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 673.042422][ T6077] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 673.046490][ T6077] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 673.051216][ T6077] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 673.057590][ T6077] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 673.061965][ T6077] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 673.065482][ T6077] usb 7-1: Product: syz [ 673.067475][ T6077] usb 7-1: Manufacturer: syz [ 673.073087][ T6077] cdc_wdm 7-1:1.0: skipping garbage [ 673.075039][ T6077] cdc_wdm 7-1:1.0: skipping garbage [ 673.077648][ T6077] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device [ 673.079625][ T6077] cdc_wdm 7-1:1.0: Unknown control protocol [ 673.629712][T18581] cdc_wdm 7-1:1.0: Error submitting int urb - -90 [ 673.841776][ T986] usb 6-1: new full-speed USB device number 35 using dummy_hcd [ 674.002810][ T986] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 674.006200][ T986] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 674.009268][ T986] usb 6-1: config 1 has no interface number 0 [ 674.011290][ T986] usb 6-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 674.018482][ T986] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 674.021969][ T986] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 674.024635][ T986] usb 6-1: Product: syz [ 674.026022][ T986] usb 6-1: Manufacturer: syz [ 674.027616][ T986] usb 6-1: SerialNumber: syz [ 674.032533][ T986] usb 6-1: selecting invalid altsetting 1 [ 674.401615][ T986] cdc_ncm 6-1:1.1: bind() failure [ 674.409614][ T986] usb 6-1: USB disconnect, device number 35 [ 674.765800][T18587] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4066'. [ 674.769766][T18587] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4066'. [ 675.107078][T18598] hub 1-0:1.0: USB hub found [ 675.109296][T18598] hub 1-0:1.0: 2 ports detected [ 675.624603][ T986] usb 7-1: USB disconnect, device number 42 [ 675.877121][T18613] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4076'. [ 675.880136][T18613] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4076'. [ 676.521566][ T6077] usb 7-1: new high-speed USB device number 43 using dummy_hcd [ 676.688018][ T6077] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 676.691193][ T6077] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 676.694982][ T6077] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 676.697976][ T6077] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 676.702204][ T6077] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 676.708351][ T6077] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 676.712656][ T6077] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 676.716271][ T6077] usb 7-1: Product: syz [ 676.718361][ T6077] usb 7-1: Manufacturer: syz [ 676.729974][ T6077] cdc_wdm 7-1:1.0: skipping garbage [ 676.732608][ T6077] cdc_wdm 7-1:1.0: skipping garbage [ 676.738697][ T6077] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device [ 676.740653][ T6077] cdc_wdm 7-1:1.0: Unknown control protocol [ 677.323017][T18631] cdc_wdm 7-1:1.0: Error submitting int urb - -90 [ 677.551325][T18641] hub 1-0:1.0: USB hub found [ 677.554484][T18641] hub 1-0:1.0: 2 ports detected [ 679.082330][T18661] tipc: Started in network mode [ 679.084208][T18661] tipc: Node identity fa5df217acda, cluster identity 4711 [ 679.086850][T18661] tipc: Enabled bearer , priority 0 [ 679.096533][T18661] tipc: Resetting bearer [ 679.112575][T18660] tipc: Disabling bearer [ 679.453892][ T116] usb 7-1: USB disconnect, device number 43 [ 679.651580][ T5992] usb 5-1: new full-speed USB device number 42 using dummy_hcd [ 679.853345][ T5992] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 679.872869][ T5992] usb 5-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00 [ 679.881672][ T5992] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 679.892902][ T5992] usb 5-1: config 0 descriptor?? [ 679.895378][T18669] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 680.382559][T18685] netlink: zone id is out of range [ 680.392659][T18685] netlink: zone id is out of range [ 680.409432][T18685] netlink: zone id is out of range [ 680.418166][ T5992] elan 0003:04F3:0755.000B: hidraw1: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.0-1/input0 [ 680.434153][T18685] netlink: get zone limit has 4 unknown bytes [ 680.986598][T18691] tipc: Enabled bearer , priority 0 [ 681.004413][T18691] tipc: Resetting bearer [ 681.024209][T18690] tipc: Disabling bearer [ 681.107556][T18689] netlink: 'syz.0.4096': attribute type 10 has an invalid length. [ 681.110197][T18689] netlink: 40 bytes leftover after parsing attributes in process `syz.0.4096'. [ 681.118415][T18689] dummy0: entered promiscuous mode [ 681.133830][T18689] bridge0: port 3(dummy0) entered blocking state [ 681.136901][T18689] bridge0: port 3(dummy0) entered disabled state [ 681.140131][T18689] dummy0: entered allmulticast mode [ 681.154187][T18689] bridge0: port 3(dummy0) entered blocking state [ 681.156961][T18689] bridge0: port 3(dummy0) entered forwarding state [ 681.652611][ T5992] usb 5-1: reset full-speed USB device number 42 using dummy_hcd [ 682.311829][T18712] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4111'. [ 682.365858][T18714] tipc: Enabling of bearer rejected, failed to enable media [ 683.348789][T18745] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4120'. [ 683.716995][T18752] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.4122' sets config #0 [ 683.722692][T18752] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.4122' sets config #1 [ 683.742579][T18754] tipc: Enabling of bearer rejected, failed to enable media [ 684.420809][ T6029] usb 5-1: USB disconnect, device number 42 [ 684.944940][T18783] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4129'. [ 685.332770][T18792] tipc: Enabling of bearer rejected, failed to enable media [ 685.563783][ T1420] ieee802154 phy0 wpan0: encryption failed: -22 [ 685.565932][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 685.691428][T18809] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.4136'. [ 685.695093][T18807] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.4136'. [ 685.700247][T18807] kAFS: No cell specified [ 685.745538][T18812] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4138'. [ 685.757720][T18809] kernel profiling enabled (shift: 17) [ 686.846481][T18828] tipc: Enabling of bearer rejected, failed to enable media [ 686.984378][T18845] netlink: 'syz.2.4147': attribute type 17 has an invalid length. [ 686.986940][T18845] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4147'. [ 687.079928][T18852] binder: 18848:18852 ioctl c0306201 80000180 returned -14 [ 687.086203][T18852] binder: 18848:18852 ioctl c0306201 0 returned -14 [ 687.651331][T18856] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4152'. [ 687.936584][T18870] netlink: 'syz.0.4157': attribute type 17 has an invalid length. [ 687.939877][T18870] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4157'. [ 687.991258][T18873] tipc: Enabling of bearer rejected, failed to enable media [ 689.001606][T18898] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4163'. [ 689.058135][T18902] serio: Serial port ptm0 [ 689.132319][T18910] netlink: 'syz.3.4166': attribute type 17 has an invalid length. [ 689.135144][T18910] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4166'. [ 689.309434][T18917] tipc: Enabling of bearer rejected, failed to enable media [ 690.211885][T18939] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4175'. [ 690.306607][T18948] tipc: Enabling of bearer rejected, failed to enable media [ 691.788578][T18982] tipc: Enabling of bearer rejected, failed to enable media [ 692.083302][T19007] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4193'. [ 692.406127][T19015] bridge0: port 2(bridge_slave_1) entered disabled state [ 692.408860][T19015] bridge0: port 1(bridge_slave_0) entered disabled state [ 692.613411][T19015] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 692.643065][T19015] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 693.051070][T19022] tipc: Enabling of bearer rejected, failed to enable media [ 693.055689][T19029] wlan0 speed is unknown, defaulting to 1000 [ 693.055916][ T9810] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 693.060702][ T9810] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 693.068350][ T9810] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 693.068370][T19029] wlan0 speed is unknown, defaulting to 1000 [ 693.071280][ T9810] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 693.073260][T19041] tipc: Enabled bearer , priority 0 [ 693.080126][T19029] wlan0 speed is unknown, defaulting to 1000 [ 693.094070][T19029] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 693.106236][T19041] syzkaller0: entered promiscuous mode [ 693.108138][T19041] syzkaller0: entered allmulticast mode [ 693.110357][T19041] tipc: Resetting bearer [ 693.116034][T19029] wlan0 speed is unknown, defaulting to 1000 [ 693.120516][T19040] tipc: Resetting bearer [ 694.214178][T19053] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4205'. [ 694.467754][T19040] tipc: Disabling bearer [ 694.473117][T19029] wlan0 speed is unknown, defaulting to 1000 [ 694.492423][T19029] wlan0 speed is unknown, defaulting to 1000 [ 694.501994][T19029] wlan0 speed is unknown, defaulting to 1000 [ 694.506059][T19029] wlan0 speed is unknown, defaulting to 1000 [ 694.725119][T19077] hub 1-0:1.0: USB hub found [ 694.752505][T19077] hub 1-0:1.0: 2 ports detected [ 695.546194][T19096] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4219'. [ 695.631819][T19097] misc userio: No port type given on /dev/userio [ 696.593988][T19122] hub 1-0:1.0: USB hub found [ 696.596559][T19122] hub 1-0:1.0: 2 ports detected [ 696.791754][T19126] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4228'. [ 697.350141][T19139] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.4232'. [ 697.353967][T19135] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.4232'. [ 697.363367][T19135] kAFS: No cell specified [ 697.681589][ T6029] usb 6-1: new high-speed USB device number 36 using dummy_hcd [ 697.863946][ T6029] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 697.884232][ T6029] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 697.887430][ T6029] usb 6-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 697.891863][ T6029] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 697.902563][ T6029] usb 6-1: config 0 descriptor?? [ 698.092985][T19150] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4237'. [ 698.119399][ T6029] Bluetooth: Can't get state to change to load ram patch err [ 698.121977][ T6029] Bluetooth: Loading patch file failed [ 698.126120][ T6029] ath3k 6-1:0.0: probe with driver ath3k failed with error -121 [ 698.334130][ T6009] usb 6-1: USB disconnect, device number 36 [ 698.471555][ T7435] usb 5-1: new high-speed USB device number 43 using dummy_hcd [ 698.622977][ T7435] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 698.625614][ T7435] usb 5-1: config 1 has an invalid descriptor of length 52, skipping remainder of the config [ 698.628879][ T7435] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 698.631683][ T7435] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 7 [ 698.635766][ T7435] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 9272, setting to 1024 [ 698.640399][ T7435] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 698.643220][ T7435] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 698.645686][ T7435] usb 5-1: Product: syz [ 698.647028][ T7435] usb 5-1: Manufacturer: syz [ 698.651939][ T7435] cdc_wdm 5-1:1.0: skipping garbage [ 698.653698][ T7435] cdc_wdm 5-1:1.0: skipping garbage [ 698.655426][ T7435] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22 [ 699.226749][T19177] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4245'. [ 699.230494][T19177] tipc: Invalid UDP bearer configuration [ 699.230539][T19177] tipc: Enabling of bearer rejected, failed to enable media [ 700.234188][T19188] ptrace attach of "/syz-executor exec"[13882] was attempted by "/syz-executor exec"[19188] [ 701.226100][ T6077] usb 5-1: USB disconnect, device number 43 [ 701.266921][T19198] siw: device registration error -23 [ 702.577387][T19234] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4264'. [ 702.809282][T19239] misc userio: No port type given on /dev/userio [ 703.726997][T19269] overlayfs: conflicting options: nfs_export=on,index=off [ 703.801726][T19272] serio: Serial port ptm0 [ 704.321510][ C0] vkms_vblank_simulate: vblank timer overrun [ 704.601405][T19286] misc userio: No port type given on /dev/userio [ 705.225774][T19314] serio: Serial port ptm0 [ 705.362032][ T986] libceph: connect (1)[c::]:6789 error -101 [ 705.366972][ T986] libceph: mon0 (1)[c::]:6789 connect error [ 705.633415][ T986] libceph: connect (1)[c::]:6789 error -101 [ 705.637088][ T986] libceph: mon0 (1)[c::]:6789 connect error [ 705.757631][T19330] netlink: 830 bytes leftover after parsing attributes in process `syz.0.4299'. [ 706.021929][T19318] ceph: No mds server is up or the cluster is laggy [ 706.483999][T19345] netlink: 76 bytes leftover after parsing attributes in process `syz.0.4305'. [ 706.527848][T19347] syzkaller0: entered promiscuous mode [ 706.530339][T19347] syzkaller0: entered allmulticast mode [ 706.938777][T19359] fuse: Bad value for 'fd' [ 707.382254][T19367] infiniband syû: set active [ 707.383989][T19367] infiniband syû: added bond_slave_0 [ 707.434432][T19367] RDS/IB: syû: added [ 707.435861][T19367] smc: adding ib device syû with port count 1 [ 707.438034][T19367] smc: ib device syû port 1 has no pnetid [ 707.887074][T19377] syzkaller0: entered promiscuous mode [ 707.889725][T19377] syzkaller0: entered allmulticast mode [ 708.240073][T19389] serio: Serial port ptm0 [ 708.951608][ C0] vkms_vblank_simulate: vblank timer overrun [ 709.384976][T19410] fuse: Bad value for 'fd' [ 709.592698][T19414] hub 1-0:1.0: USB hub found [ 709.601679][T19414] hub 1-0:1.0: 2 ports detected [ 710.158262][T19417] netlink: 76 bytes leftover after parsing attributes in process `syz.3.4327'. [ 710.377466][T19426] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4330'. [ 711.726464][T19457] vivid-000: disconnect [ 711.730290][T19457] vivid-000: reconnect [ 711.751298][T19456] hub 1-0:1.0: USB hub found [ 711.754211][T19456] hub 1-0:1.0: 2 ports detected [ 711.957823][T19459] misc userio: No port type given on /dev/userio [ 712.233242][T19462] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4344'. [ 712.851690][ T986] usb 5-1: new high-speed USB device number 44 using dummy_hcd [ 713.011590][ T986] usb 5-1: Using ep0 maxpacket: 32 [ 713.014925][ T986] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 713.018469][ T986] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 713.033937][ T986] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 713.036924][ T986] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 713.039590][ T986] usb 5-1: Product: syz [ 713.040995][ T986] usb 5-1: Manufacturer: syz [ 713.047293][ T986] usb 5-1: SerialNumber: syz [ 713.050557][ T986] usb 5-1: config 0 descriptor?? [ 713.898326][T19487] netlink: 76 bytes leftover after parsing attributes in process `syz.1.4352'. [ 714.114249][T19493] hub 1-0:1.0: USB hub found [ 714.121676][T19493] hub 1-0:1.0: 2 ports detected [ 714.157519][T19495] misc userio: No port type given on /dev/userio [ 715.629722][ T6077] usb 5-1: USB disconnect, device number 44 [ 715.707556][T19518] netlink: 76 bytes leftover after parsing attributes in process `syz.0.4363'. [ 715.871793][T19526] misc userio: No port type given on /dev/userio [ 715.930208][T19529] hub 1-0:1.0: USB hub found [ 715.936482][T19529] hub 1-0:1.0: 2 ports detected [ 716.049198][T19531] vivid-001: disconnect [ 716.053789][T19531] vivid-001: reconnect [ 716.385961][T19533] rtc_cmos 00:05: Alarms can be up to one day in the future [ 716.556742][T19540] hub 1-0:1.0: USB hub found [ 716.558865][T19540] hub 1-0:1.0: 2 ports detected [ 716.560562][T19542] tipc: Enabled bearer , priority 0 [ 716.564660][T19542] syzkaller0: entered promiscuous mode [ 716.566500][T19542] syzkaller0: entered allmulticast mode [ 716.582190][T19542] tipc: Resetting bearer [ 716.591441][T19541] tipc: Resetting bearer [ 716.605697][T19541] tipc: Disabling bearer [ 716.746349][T19546] netlink: 76 bytes leftover after parsing attributes in process `syz.1.4373'. [ 718.717436][T19574] netlink: 76 bytes leftover after parsing attributes in process `syz.0.4382'. [ 718.803633][T19576] tipc: Enabled bearer , priority 0 [ 718.811926][T19576] syzkaller0: entered promiscuous mode [ 718.823508][T19576] syzkaller0: entered allmulticast mode [ 718.855233][T19576] tipc: Resetting bearer [ 718.860388][T19575] tipc: Resetting bearer [ 718.873233][T19575] tipc: Disabling bearer [ 719.089626][T19587] syzkaller0: entered promiscuous mode [ 719.091635][T19587] syzkaller0: entered allmulticast mode [ 719.191705][ T5992] usb 5-1: new full-speed USB device number 45 using dummy_hcd [ 719.362784][ T5992] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 719.366094][ T5992] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 719.380818][ T5992] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 719.383967][ T5992] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 719.399983][T19592] misc userio: No port type given on /dev/userio [ 719.594471][ T5992] usb 5-1: usb_control_msg returned -32 [ 719.596502][ T5992] usbtmc 5-1:16.0: can't read capabilities [ 719.835684][T19596] netlink: 76 bytes leftover after parsing attributes in process `syz.2.4391'. [ 719.868717][T19598] fuse: Bad value for 'fd' [ 719.946286][T19603] usbtmc 5-1:16.0: INDICATOR_PULSE returned cd [ 720.036620][ T40] audit: type=1326 audit(2000000128.550:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19607 comm="syz.1.4396" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7fc00000 [ 720.071076][T19608] hub 1-0:1.0: USB hub found [ 720.073406][T19608] hub 1-0:1.0: 2 ports detected [ 720.114978][T19611] syzkaller0: entered promiscuous mode [ 720.116827][T19611] syzkaller0: entered allmulticast mode [ 720.147706][ T986] usb 5-1: USB disconnect, device number 45 [ 720.851418][ T40] audit: type=1326 audit(2000000129.360:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19607 comm="syz.1.4396" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf707d579 code=0x7fc00000 [ 720.908845][T19623] netlink: 76 bytes leftover after parsing attributes in process `syz.1.4401'. [ 721.245090][T19632] netlink: 72 bytes leftover after parsing attributes in process `syz.1.4403'. [ 721.491949][T19638] hub 1-0:1.0: USB hub found [ 721.494103][T19638] hub 1-0:1.0: 2 ports detected [ 721.796192][T19641] misc userio: No port type given on /dev/userio [ 722.350628][T19651] hub 1-0:1.0: USB hub found [ 722.352902][T19651] hub 1-0:1.0: 2 ports detected [ 722.750186][T19667] syzkaller0: entered promiscuous mode [ 722.753311][T19667] syzkaller0: entered allmulticast mode [ 722.812074][T19671] tipc: Enabled bearer , priority 0 [ 723.128930][T19683] hub 1-0:1.0: USB hub found [ 723.141732][T19683] hub 1-0:1.0: 2 ports detected [ 724.386579][T19699] netlink: 'syz.3.4424': attribute type 10 has an invalid length. [ 724.389653][T19699] veth1_macvtap: left promiscuous mode [ 724.393679][T19699] team0: Device veth1_macvtap failed to register rx_handler [ 724.436763][T19701] syzkaller0: entered promiscuous mode [ 724.438797][T19701] syzkaller0: entered allmulticast mode [ 724.559416][T19698] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4424'. [ 724.696674][T19706] tipc: Enabling of bearer rejected, already enabled [ 724.758315][T19704] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4426'. [ 724.762195][T19704] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4426'. [ 725.851708][ T6077] usb 5-1: new high-speed USB device number 46 using dummy_hcd [ 726.011609][ T6077] usb 5-1: Using ep0 maxpacket: 8 [ 726.016477][ T6077] usb 5-1: unable to get BOS descriptor or descriptor too short [ 726.020960][ T6077] usb 5-1: config 7 has an invalid interface number: 6 but max is 0 [ 726.024989][ T6077] usb 5-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config [ 726.029497][ T6077] usb 5-1: config 7 has no interface number 0 [ 726.032427][ T6077] usb 5-1: config 7 interface 6 altsetting 254 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 726.037217][ T6077] usb 5-1: config 7 interface 6 has no altsetting 0 [ 726.043231][ T6077] usb 5-1: New USB device found, idVendor=1a8d, idProduct=100d, bcdDevice=30.9e [ 726.047207][ T6077] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 726.050688][ T6077] usb 5-1: Product: syz [ 726.053573][ T6077] usb 5-1: Manufacturer: syz [ 726.055609][ T6077] usb 5-1: SerialNumber: syz [ 726.288010][ T6077] option 5-1:7.6: GSM modem (1-port) converter detected [ 726.294963][ T6077] usb 5-1: USB disconnect, device number 46 [ 726.297777][ T6077] option 5-1:7.6: device disconnected [ 726.621826][T19738] tipc: Enabled bearer , priority 10 [ 726.626305][T19738] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4437'. [ 726.681865][ T6029] usb 6-1: new high-speed USB device number 37 using dummy_hcd [ 726.903310][ T6029] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 726.908860][ T6029] usb 6-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 726.913649][ T6029] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 726.916707][ T6029] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 726.926352][ T6029] usb 6-1: Quirk or no altset; falling back to MIDI 1.0 [ 726.929066][ T6029] usb 6-1: invalid MIDI out EP 0 [ 726.988782][ T6029] snd-usb-audio 6-1:27.0: probe with driver snd-usb-audio failed with error -22 [ 727.304719][T19751] tipc: Enabled bearer , priority 0 [ 727.309013][T19751] syzkaller0: entered promiscuous mode [ 727.311075][T19751] syzkaller0: entered allmulticast mode [ 727.323223][T19751] tipc: Resetting bearer [ 727.329317][T19750] tipc: Resetting bearer [ 727.340630][T19750] tipc: Disabling bearer [ 727.621596][ T6077] tipc: Node number set to 1514860038 [ 727.797436][T19759] ip6tnl1: entered promiscuous mode [ 728.013157][ T5947] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 728.023806][ T5947] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 728.040748][ T5947] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 728.046479][ T5947] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 728.052734][ T5947] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 728.102389][T14897] syz_tun (unregistering): left allmulticast mode [ 728.324366][T19763] wlan0 speed is unknown, defaulting to 1000 [ 728.673399][T19763] chnl_net:caif_netlink_parms(): no params data found [ 728.751784][T19763] bridge0: port 1(bridge_slave_0) entered blocking state [ 728.755137][T19763] bridge0: port 1(bridge_slave_0) entered disabled state [ 728.758402][T19763] bridge_slave_0: entered allmulticast mode [ 728.766274][T19763] bridge_slave_0: entered promiscuous mode [ 728.773302][T19763] bridge0: port 2(bridge_slave_1) entered blocking state [ 728.777354][T19763] bridge0: port 2(bridge_slave_1) entered disabled state [ 728.780562][T19763] bridge_slave_1: entered allmulticast mode [ 728.784928][T19763] bridge_slave_1: entered promiscuous mode [ 728.825474][T19763] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 728.832282][T19763] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 728.912263][T19763] team0: Port device team_slave_0 added [ 728.921883][ T9810] bridge_slave_1: left allmulticast mode [ 728.924460][ T9810] bridge_slave_1: left promiscuous mode [ 728.928490][ T9810] bridge0: port 2(bridge_slave_1) entered disabled state [ 728.953149][ T9810] bridge_slave_0: left allmulticast mode [ 728.955833][ T9810] bridge_slave_0: left promiscuous mode [ 728.958593][ T9810] bridge0: port 1(bridge_slave_0) entered disabled state [ 728.984071][ T9810] tipc: Resetting bearer [ 729.453384][ T6030] usb 6-1: USB disconnect, device number 37 [ 729.670961][ T9810] tipc: Disabling bearer [ 729.845121][ T9810] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 729.850043][ T9810] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 729.854423][ T9810] bond0 (unregistering): Released all slaves [ 729.860482][T19763] team0: Port device team_slave_1 added [ 729.871730][ T6030] usb 6-1: new high-speed USB device number 38 using dummy_hcd [ 729.880751][T19763] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 729.887630][T19763] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 729.896349][T19763] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 729.902096][T19763] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 729.904497][T19763] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 729.915618][T19763] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 729.948327][ T9810] tipc: Left network mode [ 729.961229][T19763] hsr_slave_0: entered promiscuous mode [ 729.964117][T19763] hsr_slave_1: entered promiscuous mode [ 729.966316][T19763] debugfs: 'hsr0' already exists in 'hsr' [ 729.968600][T19763] Cannot create hsr debugfs directory [ 730.021550][ T6030] usb 6-1: device descriptor read/64, error -71 [ 730.121826][ T5947] Bluetooth: hci0: command tx timeout [ 730.281571][ T6030] usb 6-1: new high-speed USB device number 39 using dummy_hcd [ 730.432186][ T6030] usb 6-1: device descriptor read/64, error -71 [ 730.464628][ T9810] hsr_slave_0: left promiscuous mode [ 730.467149][ T9810] hsr_slave_1: left promiscuous mode [ 730.469387][ T9810] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 730.480461][ T9810] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 730.554853][ T6030] usb usb6-port1: attempt power cycle [ 730.641243][ T60] smc: removing ib device syz2 [ 730.811288][ T9810] team0 (unregistering): Port device team_slave_1 removed [ 730.839953][ T9810] team0 (unregistering): Port device team_slave_0 removed [ 730.921718][ T6030] usb 6-1: new high-speed USB device number 40 using dummy_hcd [ 730.954015][ T6030] usb 6-1: device descriptor read/8, error -71 [ 731.201526][ T6030] usb 6-1: new high-speed USB device number 41 using dummy_hcd [ 731.222514][ T6030] usb 6-1: device descriptor read/8, error -71 [ 731.225053][T19816] syzkaller0: entered promiscuous mode [ 731.227565][T19816] syzkaller0: entered allmulticast mode [ 731.349080][ T6030] usb usb6-port1: unable to enumerate USB device [ 731.495246][T19763] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 731.500671][T19763] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 731.508643][T19763] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 731.532174][T19763] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 731.633403][T19763] 8021q: adding VLAN 0 to HW filter on device bond0 [ 731.669833][T19763] 8021q: adding VLAN 0 to HW filter on device team0 [ 731.679817][ T9840] bridge0: port 1(bridge_slave_0) entered blocking state [ 731.682565][ T9840] bridge0: port 1(bridge_slave_0) entered forwarding state [ 731.700773][ T9840] bridge0: port 2(bridge_slave_1) entered blocking state [ 731.704018][ T9840] bridge0: port 2(bridge_slave_1) entered forwarding state [ 731.889546][T19845] tipc: Enabled bearer , priority 0 [ 731.892318][T19845] syzkaller0: entered promiscuous mode [ 731.894164][T19845] syzkaller0: entered allmulticast mode [ 731.900655][T19845] tipc: Resetting bearer [ 731.905673][T19844] tipc: Resetting bearer [ 731.915165][T19844] tipc: Disabling bearer [ 731.928237][T19763] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 731.964476][T19763] veth0_vlan: entered promiscuous mode [ 731.969369][T19763] veth1_vlan: entered promiscuous mode [ 731.986842][T19763] veth0_macvtap: entered promiscuous mode [ 731.990722][T19763] veth1_macvtap: entered promiscuous mode [ 731.999115][T19763] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 732.015077][T19763] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 732.022595][ T60] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 732.027129][ T60] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 732.030917][ T60] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 732.038460][ T60] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 732.099733][ T9810] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 732.103096][ T9810] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 732.114784][T19850] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4456'. [ 732.117875][ T9843] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 732.120573][ T9843] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 732.191616][ T5947] Bluetooth: hci0: command tx timeout [ 732.207598][T19854] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4464'. [ 733.801173][T19880] tipc: Enabled bearer , priority 0 [ 733.805488][T19880] syzkaller0: entered promiscuous mode [ 733.816756][T19880] syzkaller0: entered allmulticast mode [ 733.826594][T19880] tipc: Resetting bearer [ 733.835502][T19879] tipc: Resetting bearer [ 733.857164][T19879] tipc: Disabling bearer [ 734.081997][ T6012] usb 7-1: new high-speed USB device number 44 using dummy_hcd [ 734.251724][ T6012] usb 7-1: Using ep0 maxpacket: 16 [ 734.255952][ T6012] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 734.260648][ T6012] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 734.261616][ T986] usb 6-1: new high-speed USB device number 42 using dummy_hcd [ 734.267280][ T6012] usb 7-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 734.272309][ T6012] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 734.275747][ T6012] usb 7-1: Product: syz [ 734.277688][ T6012] usb 7-1: Manufacturer: syz [ 734.279690][ T6012] usb 7-1: SerialNumber: syz [ 734.281780][ T5947] Bluetooth: hci0: command tx timeout [ 734.285578][ T6012] usb 7-1: config 0 descriptor?? [ 734.421589][ T986] usb 6-1: Using ep0 maxpacket: 8 [ 734.425054][ T986] usb 6-1: unable to get BOS descriptor or descriptor too short [ 734.428556][ T986] usb 6-1: config 7 has an invalid interface number: 6 but max is 0 [ 734.431852][ T986] usb 6-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config [ 734.435427][ T986] usb 6-1: config 7 has no interface number 0 [ 734.437698][ T986] usb 6-1: config 7 interface 6 altsetting 254 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 734.442929][ T986] usb 6-1: config 7 interface 6 has no altsetting 0 [ 734.446880][ T986] usb 6-1: New USB device found, idVendor=1a8d, idProduct=100d, bcdDevice=30.9e [ 734.450061][ T986] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 734.453251][ T986] usb 6-1: Product: syz [ 734.454713][ T986] usb 6-1: Manufacturer: syz [ 734.456374][ T986] usb 6-1: SerialNumber: syz [ 734.498659][ T6009] usb 7-1: USB disconnect, device number 44 [ 734.675909][ T986] option 6-1:7.6: GSM modem (1-port) converter detected [ 734.684166][ T986] usb 6-1: USB disconnect, device number 42 [ 734.688291][ T986] option 6-1:7.6: device disconnected [ 735.869259][T19915] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4477'. [ 735.874045][T19915] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 735.906017][T19915] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 736.280517][T19930] ip6tnl1: entered promiscuous mode [ 736.288281][T19934] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4486'. [ 736.362003][ T5947] Bluetooth: hci0: command tx timeout [ 736.461663][T19943] serio: Serial port ptm1 [ 737.996762][T19961] syzkaller0: entered promiscuous mode [ 737.998604][T19961] syzkaller0: entered allmulticast mode [ 738.046437][T19963] tipc: Enabled bearer , priority 0 [ 738.050240][T19963] syzkaller0: entered promiscuous mode [ 738.053115][T19963] syzkaller0: entered allmulticast mode [ 738.061158][T19963] tipc: Resetting bearer [ 738.071832][T19962] tipc: Resetting bearer [ 738.083263][T19962] tipc: Disabling bearer [ 738.217403][T19967] misc userio: No port type given on /dev/userio [ 739.881506][ T24] usb 7-1: new high-speed USB device number 45 using dummy_hcd [ 740.067582][ T24] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 740.072396][ T24] usb 7-1: config 1 has an invalid descriptor of length 247, skipping remainder of the config [ 740.080511][ T24] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 740.090716][ T24] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 740.098263][ T24] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 740.102442][ T24] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 740.105993][ T24] usb 7-1: Product: syz [ 740.107723][ T24] usb 7-1: Manufacturer: syz [ 740.123105][ T24] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22 [ 740.233871][T19988] syzkaller0: entered promiscuous mode [ 740.236418][T19988] syzkaller0: entered allmulticast mode [ 740.240781][T19989] tipc: Enabled bearer , priority 0 [ 740.245234][T19989] syzkaller0: entered promiscuous mode [ 740.247871][T19989] syzkaller0: entered allmulticast mode [ 740.258848][T19989] tipc: Resetting bearer [ 740.271032][T19987] tipc: Resetting bearer [ 740.280378][T19987] tipc: Disabling bearer [ 740.362970][T19991] tmpfs: Bad value for 'mpol' [ 741.409250][T20007] misc userio: No port type given on /dev/userio [ 741.442326][T20009] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4511'. [ 741.631701][ T9810] wlan0: Trigger new scan to find an IBSS to join [ 742.577650][T20019] support for the xor transformation has been removed. [ 742.643182][ T6029] usb 7-1: USB disconnect, device number 45 [ 742.858105][T20031] netlink: 'syz.2.4519': attribute type 4 has an invalid length. [ 742.869824][T20031] netlink: 'syz.2.4519': attribute type 4 has an invalid length. [ 743.339889][T20037] misc userio: No port type given on /dev/userio [ 744.244649][T20063] serio: Serial port ptm0 [ 744.321667][T20066] tipc: Enabling of bearer rejected, failed to enable media [ 744.326858][T20066] syzkaller0: entered promiscuous mode [ 744.328807][T20066] syzkaller0: entered allmulticast mode [ 744.549397][T20069] misc userio: No port type given on /dev/userio [ 744.584684][T20072] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4534'. [ 744.587733][T20072] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4534'. [ 745.471350][T20094] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2 [ 746.591691][ T9830] wlan0: Trigger new scan to find an IBSS to join [ 746.701749][ T24] usb 5-1: new high-speed USB device number 47 using dummy_hcd [ 746.776053][T20109] ubi31: attaching mtd0 [ 746.785859][T20109] ubi31: scanning is finished [ 746.788337][T20109] ubi31: empty MTD device detected [ 746.806653][T20110] misc userio: No port type given on /dev/userio [ 746.832752][T20112] usb usb8: usbfs: process 20112 (syz.3.4546) did not claim interface 0 before use [ 746.861502][ T24] usb 5-1: Using ep0 maxpacket: 16 [ 746.865158][ T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 746.872122][ T24] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 746.875558][ T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 746.878616][ T24] usb 5-1: Product: syz [ 746.880448][ T24] usb 5-1: Manufacturer: syz [ 746.882255][ T24] usb 5-1: SerialNumber: syz [ 746.885458][ T24] usb 5-1: config 0 descriptor?? [ 746.892638][ T24] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 746.895738][ T24] em28xx 5-1:0.0: DVB interface 0 found: bulk [ 746.995243][ T1420] ieee802154 phy0 wpan0: encryption failed: -22 [ 746.997957][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 747.036739][T20109] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB) [ 747.041890][T20109] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 747.051667][T20109] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 747.054913][T20109] ubi31: VID header offset: 64 (aligned 64), data offset: 128 [ 747.058425][T20109] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 747.066944][T20109] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 747.070430][T20109] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3270838629 [ 747.091562][T20109] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 747.103422][T20115] ubi31: background thread "ubi_bgt31d" started, PID 20115 [ 747.501406][ T24] em28xx 5-1:0.0: chip ID is em2765 [ 747.511974][ T9830] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 748.110803][ T24] em28xx 5-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 748.113921][ T24] em28xx 5-1:0.0: board has no eeprom [ 748.421559][ T24] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94) [ 748.424103][ T24] em28xx 5-1:0.0: dvb set to bulk mode. [ 748.428866][ T116] em28xx 5-1:0.0: Binding DVB extension [ 748.575299][T20104] em28xx 5-1:0.0: write to i2c device at 0xfffe failed with unknown error (status=1) [ 748.782336][ T6028] usb 5-1: USB disconnect, device number 47 [ 748.789028][ T6028] em28xx 5-1:0.0: Disconnecting em28xx [ 748.812130][ T116] em28xx 5-1:0.0: Registering input extension [ 748.814304][ T6028] em28xx 5-1:0.0: Closing input extension [ 748.829005][ T6028] em28xx 5-1:0.0: Freeing device [ 749.340909][T20145] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4556'. [ 749.555944][T20149] ubi: mtd0 is already attached to ubi31 [ 749.571296][T20149] usb usb8: usbfs: process 20149 (syz.0.4558) did not claim interface 0 before use [ 749.784985][T20154] misc userio: No port type given on /dev/userio [ 749.788701][T20157] comedi comedi3: c6xdigio: a I/O base address must be specified [ 749.792748][T20157] ================================================================== [ 749.796088][T20157] BUG: KASAN: slab-use-after-free in sysfs_remove_file_ns+0x63/0x70 [ 749.799359][T20157] Read of size 8 at addr ffff88806aa5b830 by task syz.2.4561/20157 [ 749.804477][T20157] [ 749.806011][T20157] CPU: 3 UID: 0 PID: 20157 Comm: syz.2.4561 Not tainted syzkaller #0 PREEMPT(full) [ 749.806043][T20157] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 749.806056][T20157] Call Trace: [ 749.806064][T20157] [ 749.806072][T20157] dump_stack_lvl+0x116/0x1f0 [ 749.806099][T20157] print_report+0xcd/0x630 [ 749.806124][T20157] ? __virt_addr_valid+0x81/0x610 [ 749.806153][T20157] ? __phys_addr+0xe8/0x180 [ 749.806181][T20157] ? sysfs_remove_file_ns+0x63/0x70 [ 749.806210][T20157] kasan_report+0xe0/0x110 [ 749.806233][T20157] ? sysfs_remove_file_ns+0x63/0x70 [ 749.806262][T20157] sysfs_remove_file_ns+0x63/0x70 [ 749.806289][T20157] driver_remove_file+0x4a/0x60 [ 749.806308][T20157] bus_remove_driver+0x224/0x2c0 [ 749.806334][T20157] driver_unregister+0x76/0xb0 [ 749.806350][T20157] comedi_device_detach_locked+0x12f/0xa50 [ 749.806374][T20157] comedi_device_detach+0x67/0xb0 [ 749.806393][T20157] comedi_device_attach+0x43d/0x900 [ 749.806414][T20157] do_devconfig_ioctl+0x1b1/0x710 [ 749.806439][T20157] ? comedi_unlocked_ioctl+0x167/0x2ee0 [ 749.806466][T20157] ? __pfx_do_devconfig_ioctl+0x10/0x10 [ 749.806496][T20157] ? kasan_save_track+0x14/0x30 [ 749.806517][T20157] ? __kasan_save_free_info+0x3b/0x60 [ 749.806534][T20157] ? __kasan_slab_free+0x5f/0x80 [ 749.806555][T20157] ? kfree+0x29e/0x710 [ 749.806581][T20157] ? tomoyo_path_number_perm+0x470/0x580 [ 749.806604][T20157] ? security_file_ioctl_compat+0x9b/0x240 [ 749.806628][T20157] ? __ia32_compat_sys_ioctl+0xc3/0x370 [ 749.806648][T20157] ? __do_fast_syscall_32+0x7c/0x370 [ 749.806675][T20157] comedi_unlocked_ioctl+0x165d/0x2ee0 [ 749.806705][T20157] ? __pfx_comedi_unlocked_ioctl+0x10/0x10 [ 749.806739][T20157] ? kasan_quarantine_put+0x10a/0x240 [ 749.806760][T20157] ? lockdep_hardirqs_on+0x7c/0x110 [ 749.806782][T20157] ? find_held_lock+0x2b/0x80 [ 749.806808][T20157] ? tomoyo_path_number_perm+0x295/0x580 [ 749.806832][T20157] ? tomoyo_path_number_perm+0x18d/0x580 [ 749.806855][T20157] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 749.806878][T20157] comedi_compat_ioctl+0x1d0/0x960 [ 749.806905][T20157] ? __pfx_comedi_compat_ioctl+0x10/0x10 [ 749.806933][T20157] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 749.806960][T20157] ? do_vfs_ioctl+0x128/0x14f0 [ 749.806978][T20157] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 749.807000][T20157] ? find_held_lock+0x2b/0x80 [ 749.807030][T20157] ? hook_file_ioctl_common+0x145/0x410 [ 749.807056][T20157] ? __fget_files+0x20e/0x3c0 [ 749.807077][T20157] ? __ia32_compat_sys_openat+0x80/0x210 [ 749.807099][T20157] ? __pfx_comedi_compat_ioctl+0x10/0x10 [ 749.807125][T20157] __ia32_compat_sys_ioctl+0x242/0x370 [ 749.807146][T20157] __do_fast_syscall_32+0x7c/0x370 [ 749.807170][T20157] do_fast_syscall_32+0x32/0x80 [ 749.807193][T20157] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 749.807217][T20157] RIP: 0023:0xf7fe3579 [ 749.807232][T20157] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 749.807251][T20157] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 749.807269][T20157] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040946400 [ 749.807280][T20157] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000 [ 749.807291][T20157] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 749.807302][T20157] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 749.807313][T20157] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 749.807331][T20157] [ 749.807337][T20157] [ 749.936544][T20157] Allocated by task 20097: [ 749.938287][T20157] kasan_save_stack+0x33/0x60 [ 749.939855][T20157] kasan_save_track+0x14/0x30 [ 749.941445][T20157] __kasan_kmalloc+0xaa/0xb0 [ 749.942972][T20157] __kmalloc_noprof+0x32f/0x870 [ 749.944618][T20157] iter_file_splice_write+0x1cc/0x12b0 [ 749.946412][T20157] direct_splice_actor+0x192/0x6c0 [ 749.948141][T20157] splice_direct_to_actor+0x345/0xa30 [ 749.949913][T20157] do_splice_direct+0x174/0x240 [ 749.951486][T20157] do_sendfile+0xb06/0xe50 [ 749.952931][T20157] __ia32_compat_sys_sendfile+0x162/0x220 [ 749.954801][T20157] __do_fast_syscall_32+0x7c/0x370 [ 749.956506][T20157] do_fast_syscall_32+0x32/0x80 [ 749.958155][T20157] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 749.960263][T20157] [ 749.961075][T20157] Freed by task 20097: [ 749.962425][T20157] kasan_save_stack+0x33/0x60 [ 749.964031][T20157] kasan_save_track+0x14/0x30 [ 749.965543][T20157] __kasan_save_free_info+0x3b/0x60 [ 749.967247][T20157] __kasan_slab_free+0x5f/0x80 [ 749.968837][T20157] kfree+0x29e/0x710 [ 749.970140][T20157] iter_file_splice_write+0x67a/0x12b0 [ 749.971894][T20157] direct_splice_actor+0x192/0x6c0 [ 749.973596][T20157] splice_direct_to_actor+0x345/0xa30 [ 749.975344][T20157] do_splice_direct+0x174/0x240 [ 749.976955][T20157] do_sendfile+0xb06/0xe50 [ 749.978467][T20157] __ia32_compat_sys_sendfile+0x162/0x220 [ 749.980344][T20157] __do_fast_syscall_32+0x7c/0x370 [ 749.982017][T20157] do_fast_syscall_32+0x32/0x80 [ 749.983606][T20157] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 749.985679][T20157] [ 749.986484][T20157] The buggy address belongs to the object at ffff88806aa5b800 [ 749.986484][T20157] which belongs to the cache kmalloc-256 of size 256 [ 749.990982][T20157] The buggy address is located 48 bytes inside of [ 749.990982][T20157] freed 256-byte region [ffff88806aa5b800, ffff88806aa5b900) [ 749.995315][T20157] [ 749.996140][T20157] The buggy address belongs to the physical page: [ 749.998228][T20157] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88806aa5b800 pfn:0x6aa5a [ 750.001463][T20157] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 750.004314][T20157] flags: 0x4fff00000000240(workingset|head|node=1|zone=1|lastcpupid=0x7ff) [ 750.007054][T20157] page_type: f5(slab) [ 750.008421][T20157] raw: 04fff00000000240 ffff88801b442b40 ffffea00013e3e10 ffffea000136a210 [ 750.011258][T20157] raw: ffff88806aa5b800 000000000010000f 00000000f5000000 0000000000000000 [ 750.014052][T20157] head: 04fff00000000240 ffff88801b442b40 ffffea00013e3e10 ffffea000136a210 [ 750.017500][T20157] head: ffff88806aa5b800 000000000010000f 00000000f5000000 0000000000000000 [ 750.020635][T20157] head: 04fff00000000001 ffffea0001aa9681 00000000ffffffff 00000000ffffffff [ 750.023435][T20157] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002 [ 750.026199][T20157] page dumped because: kasan: bad access detected [ 750.028324][T20157] page_owner tracks the page as allocated [ 750.030183][T20157] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 12985, tgid 12980 (syz.0.2174), ts 420717686621, free_ts 411545829929 [ 750.037535][T20157] post_alloc_hook+0x1af/0x220 [ 750.039383][T20157] get_page_from_freelist+0xd0b/0x31a0 [ 750.041152][T20157] __alloc_frozen_pages_noprof+0x25f/0x2440 [ 750.043019][T20157] alloc_pages_mpol+0x1fb/0x550 [ 750.044606][T20157] new_slab+0x24a/0x360 [ 750.045932][T20157] ___slab_alloc+0xee7/0x1cd0 [ 750.047496][T20157] __slab_alloc.constprop.0+0x63/0x110 [ 750.049237][T20157] __kmalloc_noprof+0x501/0x870 [ 750.050840][T20157] iter_file_splice_write+0x1cc/0x12b0 [ 750.052568][T20157] direct_splice_actor+0x192/0x6c0 [ 750.054217][T20157] splice_direct_to_actor+0x345/0xa30 [ 750.055995][T20157] do_splice_direct+0x174/0x240 [ 750.057621][T20157] do_sendfile+0xb06/0xe50 [ 750.059098][T20157] __ia32_compat_sys_sendfile+0x162/0x220 [ 750.060931][T20157] __do_fast_syscall_32+0x7c/0x370 [ 750.062597][T20157] do_fast_syscall_32+0x32/0x80 [ 750.064242][T20157] page last free pid 9837 tgid 9837 stack trace: [ 750.066291][T20157] __free_pages_ok+0x725/0xf80 [ 750.067865][T20157] batadv_hash_destroy+0x31/0x70 [ 750.069507][T20157] batadv_originator_free+0x2df/0x380 [ 750.071222][T20157] batadv_mesh_free+0xa1/0x170 [ 750.072795][T20157] batadv_meshif_free+0x15/0x20 [ 750.074441][T20157] netdev_run_todo+0x780/0x12a0 [ 750.076292][T20157] default_device_exit_batch+0x99a/0xc80 [ 750.078515][T20157] ops_undo_list+0x363/0xab0 [ 750.080077][T20157] cleanup_net+0x41b/0x830 [ 750.081559][T20157] process_one_work+0x9ba/0x1b20 [ 750.083139][T20157] worker_thread+0x6c8/0xf10 [ 750.084670][T20157] kthread+0x3c5/0x780 [ 750.086019][T20157] ret_from_fork+0x855/0xa50 [ 750.087589][T20157] ret_from_fork_asm+0x1a/0x30 [ 750.089207][T20157] [ 750.089995][T20157] Memory state around the buggy address: [ 750.091772][T20157] ffff88806aa5b700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 750.094288][T20157] ffff88806aa5b780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 750.096822][T20157] >ffff88806aa5b800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 750.099373][T20157] ^ [ 750.101160][T20157] ffff88806aa5b880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 750.103703][T20157] ffff88806aa5b900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 750.106304][T20157] ================================================================== [ 750.108949][ C3] vkms_vblank_simulate: vblank timer overrun [ 750.118770][T20157] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 750.121172][T20157] CPU: 3 UID: 0 PID: 20157 Comm: syz.2.4561 Not tainted syzkaller #0 PREEMPT(full) [ 750.124148][T20157] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 750.127521][T20157] Call Trace: [ 750.128640][T20157] [ 750.129598][T20157] dump_stack_lvl+0x3d/0x1f0 [ 750.131077][T20157] vpanic+0x640/0x6f0 [ 750.132403][T20157] panic+0xca/0xd0 [ 750.133645][T20157] ? __pfx_panic+0x10/0x10 [ 750.135086][T20157] ? sysfs_remove_file_ns+0x63/0x70 [ 750.136750][T20157] ? preempt_schedule_common+0x44/0xc0 [ 750.138542][T20157] ? preempt_schedule_thunk+0x16/0x30 [ 750.140268][T20157] check_panic_on_warn+0xab/0xb0 [ 750.141871][T20157] end_report+0x107/0x160 [ 750.143281][T20157] kasan_report+0xee/0x110 [ 750.144762][T20157] ? sysfs_remove_file_ns+0x63/0x70 [ 750.146683][T20157] sysfs_remove_file_ns+0x63/0x70 [ 750.148360][T20157] driver_remove_file+0x4a/0x60 [ 750.149967][T20157] bus_remove_driver+0x224/0x2c0 [ 750.151589][T20157] driver_unregister+0x76/0xb0 [ 750.153181][T20157] comedi_device_detach_locked+0x12f/0xa50 [ 750.155088][T20157] comedi_device_detach+0x67/0xb0 [ 750.156753][T20157] comedi_device_attach+0x43d/0x900 [ 750.158485][T20157] do_devconfig_ioctl+0x1b1/0x710 [ 750.160145][T20157] ? comedi_unlocked_ioctl+0x167/0x2ee0 [ 750.161966][T20157] ? __pfx_do_devconfig_ioctl+0x10/0x10 [ 750.163733][T20157] ? kasan_save_track+0x14/0x30 [ 750.165333][T20157] ? __kasan_save_free_info+0x3b/0x60 [ 750.167079][T20157] ? __kasan_slab_free+0x5f/0x80 [ 750.168741][T20157] ? kfree+0x29e/0x710 [ 750.170221][T20157] ? tomoyo_path_number_perm+0x470/0x580 [ 750.172333][T20157] ? security_file_ioctl_compat+0x9b/0x240 [ 750.174280][T20157] ? __ia32_compat_sys_ioctl+0xc3/0x370 [ 750.176083][T20157] ? __do_fast_syscall_32+0x7c/0x370 [ 750.177861][T20157] comedi_unlocked_ioctl+0x165d/0x2ee0 [ 750.179623][T20157] ? __pfx_comedi_unlocked_ioctl+0x10/0x10 [ 750.181791][T20157] ? kasan_quarantine_put+0x10a/0x240 [ 750.183958][T20157] ? lockdep_hardirqs_on+0x7c/0x110 [ 750.185719][T20157] ? find_held_lock+0x2b/0x80 [ 750.187320][T20157] ? tomoyo_path_number_perm+0x295/0x580 [ 750.189206][T20157] ? tomoyo_path_number_perm+0x18d/0x580 [ 750.191060][T20157] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 750.193146][T20157] comedi_compat_ioctl+0x1d0/0x960 [ 750.195083][T20157] ? __pfx_comedi_compat_ioctl+0x10/0x10 [ 750.197244][T20157] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 750.199421][T20157] ? do_vfs_ioctl+0x128/0x14f0 [ 750.201204][T20157] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 750.202867][T20157] ? find_held_lock+0x2b/0x80 [ 750.204450][T20157] ? hook_file_ioctl_common+0x145/0x410 [ 750.206534][T20157] ? __fget_files+0x20e/0x3c0 [ 750.208279][T20157] ? __ia32_compat_sys_openat+0x80/0x210 [ 750.210249][T20157] ? __pfx_comedi_compat_ioctl+0x10/0x10 [ 750.212459][T20157] __ia32_compat_sys_ioctl+0x242/0x370 [ 750.214448][T20157] __do_fast_syscall_32+0x7c/0x370 [ 750.216328][T20157] do_fast_syscall_32+0x32/0x80 [ 750.218089][T20157] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 750.220417][T20157] RIP: 0023:0xf7fe3579 [ 750.222017][T20157] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 750.228616][T20157] RSP: 002b:00000000f54d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 750.231772][T20157] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040946400 [ 750.234374][T20157] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000 [ 750.236972][T20157] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 750.239556][T20157] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 750.242139][T20157] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 750.244665][T20157] [ 750.246483][T20157] Kernel Offset: disabled [ 750.248034][T20157] Rebooting in 86400 seconds.. VM DIAGNOSIS: 17:27:09 Registers: info registers vcpu 0 CPU#0 RAX=dffffc0000000000 RBX=ffff88802425c980 RCX=ffff88802b23b778 RDX=1ffff11005647557 RSI=ffff88802425c980 RDI=ffff88802425caf8 RBP=ffff88802b23a940 RSP=ffffc900041179a0 R8 =0000000000000000 R9 =ffffed100484b930 R10=ffff88802425c987 R11=0000000000000001 R12=0000000000000009 R13=0000000000000312 R14=0000000000000001 R15=ffff88802b23a940 RIP=ffffffff818f296d RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880979a8000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000080008000 CR3=00000000606b9000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000001 RBX=ffff88802b23a940 RCX=0000000000000100 RDX=0000000000000001 RSI=0000000000000002 RDI=ffff88802b23a942 RBP=dffffc0000000000 RSP=ffffc9000c82f4a8 R8 =0000000000000001 R9 =ffff88802b33b894 R10=ffff88802b23a943 R11=00000000ffffffff R12=0000000000007f2c R13=0000000000000000 R14=ffff88802b33b880 R15=ffffed1005647528 RIP=ffffffff8b5e31a8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097aa8000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000080021000 CR3=000000005c0ca000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=ffffc90007600000 RBX=ffff888023450000 RCX=ffffffff819cd179 RDX=1ffff1100468a25a RSI=ffffffff8675f92f RDI=0000000000000016 RBP=0000000000000080 RSP=ffffc90000538ea8 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=00000000ffffffff R12=ffffffff9065cce0 R13=dffffc0000000000 R14=ffff8880234512d0 R15=0000000000000000 RIP=ffffffff8675f957 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097ba8000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000055c5643f3000 CR3=000000004b828000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=b011a25b817db68c 9a0bcd362498d330 b011a25b817db68c 9a0bcd362498d330 b011a25b817db68c 9a0bcd362498d330 b011a25b817db68c 9a0bcd362498d330 ZMM18=1e42c3eb0a1cf092 8fc8dc291657c90c 1e42c3eb0a1cf092 8fc8dc291657c90c 1e42c3eb0a1cf092 8fc8dc291657c90c 1e42c3eb0a1cf092 8fc8dc291657c90c ZMM19=1829000000000000 0000000000000005 1829000000000000 0000000000000004 1829000000000000 0000000000000003 1829000000000000 0000000000000002 ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 08b80300080008b0 03004c504701ffff fffffffffffff708 0c80030c800408a0 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 03950000006d0000 0085000000000000 0000000000000000 0118320827800327 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8004089003080800 0888032208000880 030fffffffff0204 a7e2080001000000 ZMM24=1657c90c1657c90c 1657c90c1657c90c 1657c90c1657c90c 1657c90c1657c90c 1657c90c1657c90c 1657c90c1657c90c 1657c90c1657c90c 1657c90c1657c90c ZMM25=8fc8dc298fc8dc29 8fc8dc298fc8dc29 8fc8dc298fc8dc29 8fc8dc298fc8dc29 8fc8dc298fc8dc29 8fc8dc298fc8dc29 8fc8dc298fc8dc29 8fc8dc298fc8dc29 ZMM26=0a1cf0920a1cf092 0a1cf0920a1cf092 0a1cf0920a1cf092 0a1cf0920a1cf092 0a1cf0920a1cf092 0a1cf0920a1cf092 0a1cf0920a1cf092 0a1cf0920a1cf092 ZMM27=1e42c3eb1e42c3eb 1e42c3eb1e42c3eb 1e42c3eb1e42c3eb 1e42c3eb1e42c3eb 1e42c3eb1e42c3eb 1e42c3eb1e42c3eb 1e42c3eb1e42c3eb 1e42c3eb1e42c3eb ZMM28=000000500000004f 0000004e0000004d 0000004c0000004b 0000004a00000049 0000004800000047 0000004600000045 0000004400000043 0000004200000041 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=1729000017290000 1729000017290000 1729000017290000 1729000017290000 1729000017290000 1729000017290000 1729000017290000 1729000017290000 info registers vcpu 3 CPU#3 RAX=0000000000000000 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff85271d45 RDI=ffffffff9ac2aea0 RBP=ffffffff9ac2ae60 RSP=ffffc900073e7148 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3630383838666666 R12=0000000000000000 R13=0000000000000000 R14=ffffffff9ac2ae60 R15=ffffffff9ac2b120 RIP=ffffffff85271d6f RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097ca8000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000057b074c0 CR3=0000000060c3f000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000