last executing test programs: 2.270006958s ago: executing program 0 (id=597): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="4c000000020601080000000000000000000000400500010006000000050005000200000005000400000000000900020073797a310000000011000300686173683a69702c6d61726b"], 0x4c}}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000003e00250304000000000000000a"], 0x14}, 0x1, 0x0, 0x0, 0x8004}, 0x0) sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="480000000906010200000000000000000200ffff200007800c000103000000000000000000000a400000000205000300020000000900020073797a31000000000500010007000000"], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_SAVE(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x24, 0x8, 0x6, 0x1, 0x0, 0x0, {0x3, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000080}, 0x0) sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB='H\x00\x00\x00\n'], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f00000d0000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0) ioctl$FUSE_DEV_IOC_CLONE(0xffffffffffffffff, 0x8004e500, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) add_key(&(0x7f0000000340)='dns_resolver\x00', &(0x7f0000000540)={'syz', 0x1}, &(0x7f0000000580)="fb9c", 0xfffff, 0x0) ioctl$EVIOCGEFFECTS(0xffffffffffffffff, 0x80044584, &(0x7f0000000040)=""/21) ioctl$KVM_SET_GUEST_DEBUG(r6, 0x4048ae9b, &(0x7f0000000300)={0x4376ea830d545499, 0x0, [0x0, 0xfffffffffffffffc, 0x0, 0x6, 0x0, 0x1000000000000, 0x0, 0xfffffffffffffffc]}) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000300)={0x73622a85, 0x1}) r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0) r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) getsockopt$bt_BT_DEFER_SETUP(r8, 0x112, 0xf, &(0x7f0000000040), &(0x7f0000000080)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)) dup3(r7, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(r5, r6, &(0x7f00000c9000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f00000001c0)="c4c16166f60f20d835200000000f22d8d9e1b9800000c00f3235001000000f30260fc75f2566baf80cb88a24f883ef66bafc0cb060eec4c11a2ae0ea02000000fe0066ba4300ecc4e1fc5161ef", 0x5}], 0x0, 0xa, 0x0, 0xfffffffffffffffb) openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0) 2.107342771s ago: executing program 0 (id=598): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000004580)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdir(&(0x7f00000004c0)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) mknodat(r0, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0) chdir(&(0x7f00000000c0)='./bus\x00') r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) mkdir(&(0x7f0000000240)='./bus\x00', 0x0) chdir(&(0x7f00000003c0)='./bus\x00') renameat2(r1, &(0x7f00000001c0)='./file0\x00', r1, &(0x7f0000000200)='./bus/file0\x00', 0x0) r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents64(r2, &(0x7f0000000180)=""/105, 0x69) 2.040112469s ago: executing program 0 (id=599): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e66913000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}, 0x1, 0x0, 0x0, 0x4}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000060a0bfc0000000000000000020000000900010073797a30000000000900020073797a320000000014000000110001"], 0x54}}, 0x0) writev(r0, &(0x7f0000000040), 0x2) close(r0) 1.927114559s ago: executing program 0 (id=601): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x12, 0x8, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="180000ffc0000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000085000000a000000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 1.926827429s ago: executing program 0 (id=602): r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x3, 0x0) read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x300000a, 0x4031, 0xffffffffffffffff, 0x0) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0) r3 = dup3(r2, r1, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000003c0)={0x10, 0x0, &(0x7f0000000840)=[@request_death], 0x0, 0x0, 0x0}) eventfd(0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) setresgid(0xee00, 0x0, 0x0) r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) setgid(0x0) prlimit64(r4, 0xa, 0x0, 0x0) syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x2172, 0xffffffffffffffff, 0x0) ioctl$USBDEVFS_SETINTERFACE(0xffffffffffffffff, 0x80085504, &(0x7f0000000140)={0x0, 0x6}) madvise(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0xc) r5 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) set_mempolicy(0x3, &(0x7f0000000100)=0x5, 0x100) r6 = fcntl$dupfd(r5, 0x0, r1) ioctl$VHOST_SET_FEATURES(r6, 0x4008af00, &(0x7f0000000200)=0x8001100) 1.749994226s ago: executing program 0 (id=603): getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@dev={0xfe, 0x80, '\x00', 0x1a}, 0x0, 0x1, 0x3}, 0x0) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0) ioctl$UI_END_FF_UPLOAD(r0, 0x406855c9, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) socketpair(0x29, 0x2, 0x0, &(0x7f0000000a40)={0xffffffffffffffff, 0xffffffffffffffff}) syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000040)=ANY=[], 0x28) socket$igmp(0x2, 0x3, 0x2) socket(0x21, 0x2, 0x2) syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e4001020303090224002af62300000904000002ca744d0009053f034d00ff99090805848f"], &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]}) r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) write$char_usb(r2, &(0x7f0000000000)='9', 0x1) close(r2) syz_open_dev$char_usb(0xc, 0xb4, 0x0) openat$vnet(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$int_in(0xffffffffffffffff, 0x0, 0x0) openat$dlm_plock(0xffffffffffffff9c, 0x0, 0x1402, 0x0) syz_usbip_server_init(0x0) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x1}, 0x8) bind$inet6(r3, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback, 0x40}, 0x6) sendto$inet6(r3, &(0x7f0000000580)="03", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000180), 0x8) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000080)={0x0, 0x97fb}, 0x8) syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x2) r4 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x800}, &(0x7f00000001c0)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r5, r6, &(0x7f00000009c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x22, 0x6000, @fd_index, 0x100000000fb, 0x0, 0x0, 0xd, 0x1, {0x1}}) io_uring_enter(r4, 0x7a98, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x402c5828, &(0x7f0000000000)={0x0, 0x3, 0x2, 0x6}) geteuid() 1.20974045s ago: executing program 1 (id=624): syz_emit_vhci(&(0x7f00000009c0)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}, {0xf8, 0xc9, @none, 0x2, 0xa, 0x6, 0x5, 0x74, 0x2}}}, 0x14) ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0) 1.20969205s ago: executing program 3 (id=625): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$setregs(0xd, r0, 0x200000000000004, 0xffffffffffffffff) 1.209629384s ago: executing program 1 (id=626): socket$kcm(0x10, 0x2, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) socket$inet6(0xa, 0x80002, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) syz_emit_ethernet(0x36, &(0x7f0000000200)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0) syz_usb_connect$uac1(0x0, 0xa4, &(0x7f00000001c0)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d24070000030769dc000049c40c240000e9fffff5ffffffff0924031300010005024524", @ANYRES8=r0, @ANYBLOB="05"], 0x0) 1.149370671s ago: executing program 3 (id=627): r0 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042) writev(r0, &(0x7f0000000900)=[{&(0x7f0000000000)="98", 0x1}], 0x1) 1.070030058s ago: executing program 3 (id=628): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0xe}, 0x18) sendto$inet6(r0, 0x0, 0x0, 0x240540c3, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) poll(&(0x7f0000000000)=[{r0, 0x4002}], 0x1, 0xef) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="020d00051400000000000000000000000800120000000200c06b6e000000000006000000000000000000000000000000e00000020000000000000000000000000000000000000000000000000000000105000500008000000a0000000000000000000000000000000000000000000001000300000000000005000600ff4700000a"], 0xa0}}, 0x0) close(r0) syz_clone(0x4010e000, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x180) dup(r2) 820.02526ms ago: executing program 3 (id=635): r0 = syz_io_uring_setup(0x36b, &(0x7f0000000140)={0x0, 0x431f, 0x10c1, 0x0, 0x6}, &(0x7f0000000480), &(0x7f0000000500)) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_opts(r2, 0x29, 0x40, &(0x7f0000000440)=ANY=[@ANYBLOB="000a0000000000000730000000000a00000200000000010000000000008000000100"/44], 0x60) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x21, &(0x7f0000000340), 0x1) socket$inet6(0xa, 0xb, 0x40000008) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000180)={'wlan0\x00'}) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) request_key(&(0x7f0000000040)='dns_resolver\x00', &(0x7f0000001ffb)={'syz', 0x1}, 0x0, 0x0) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r4, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) 819.823924ms ago: executing program 3 (id=637): bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) r1 = socket$netlink(0x10, 0x3, 0x0) writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1) writev(r1, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1) r2 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a010000000004"], 0x57) setsockopt$inet_mreqsrc(r0, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc) 769.977483ms ago: executing program 3 (id=640): prctl$PR_MCE_KILL_GET(0x22) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={0x4000000, {}, {0x2, 0x0, @dev}, {0x2, 0x0, @empty}, 0x2a0}) ioctl$sock_inet_SIOCDELRT(r0, 0x890c, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20040000) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100007516b7108c0d0e008f8e0018030109021b0001000000000904080001030000000905", @ANYBLOB="8fcf"], 0x0) syz_usb_control_io(r2, 0x0, 0x0) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KIOCSOUND(r3, 0x4b2f, 0x1000000000011) r4 = socket$netlink(0x10, 0x3, 0x8000000004) ioctl$sock_SIOCETHTOOL(r4, 0x8946, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, 0x0) socket$nl_route(0x10, 0x3, 0x0) 769.752766ms ago: executing program 2 (id=643): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 689.833298ms ago: executing program 2 (id=644): r0 = syz_open_dev$vbi(&(0x7f0000000380), 0x0, 0x2) ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f00000000c0)={0x7fffffff, 0x1, 0x2}) 689.72727ms ago: executing program 2 (id=645): syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000680)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0}}], 0x1, 0x4008804) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040e0c000310"], 0xf) 689.650191ms ago: executing program 2 (id=646): r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x10010000004e20, 0x0, @empty}, 0x1c) r1 = socket$inet6(0xa, 0x80002, 0x88) sendmmsg$inet(r1, &(0x7f0000000b00)=[{{&(0x7f0000000100)={0x2, 0x4e20, @local}, 0x10, 0x0}}], 0x1, 0x0) syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaa79ff030486dd601b8b97004d88c19e9ace00000000000000002100000002ff02000000000000000000000000000104004e200008b0"], 0x0) 689.537372ms ago: executing program 2 (id=647): r0 = socket$phonet_pipe(0x23, 0x5, 0x2) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x28, r2, 0x1, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x3}, @NL80211_ATTR_KEY_SEQ={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x4009}, 0x4000) 619.381187ms ago: executing program 2 (id=648): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000000000401e04012800000000000109022400010000000009040100010300000009210000000122070009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000040)={0x18, &(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\b'], 0x0, 0x0, 0x0, 0x0}, 0x0) 49.7594ms ago: executing program 1 (id=649): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000040000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10) prctl$PR_SET_NAME(0xf, &(0x7f0000000a40)='GPL\x00') lsm_get_self_attr(0x68, &(0x7f0000000240)={0x0, 0x0, 0x4c, 0x2c, ""/44}, &(0x7f0000000100)=0x4c, 0x0) 49.496774ms ago: executing program 1 (id=650): r0 = landlock_create_ruleset(&(0x7f0000000240)={0x1fff}, 0x18, 0x0) landlock_restrict_self(r0, 0x0) chdir(&(0x7f0000000540)='./cgroup\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0) 49.403034ms ago: executing program 1 (id=651): syz_emit_ethernet(0x86, &(0x7f0000000200)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x1400, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0xfffc, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x19, 0xc2, 0x0, 0x0, 0x200, {[@mptcp=@remove_addr={0x1e, 0x3b, 0x5, 0x0, "8b44bb4aa92fea812d3ca8a969d3b8f01c65fb64d1bf8e96e32b0865209493266756c7566348158df96d534afc1a6a248c303a440e8d5427"}, @mptcp=@mp_fclose={0x1e, 0xc, 0xbb, 0x0, 0x1}, @sack_perm={0x4, 0x2}, @mss={0x2, 0x4, 0x5}]}}}}}}}, 0x0) 0s ago: executing program 1 (id=652): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_CPUID2(r2, 0xc048aeca, &(0x7f0000000080)=ANY=[]) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:50931' (ED25519) to the list of known hosts. [ 31.894978][ T5887] cgroup: Unknown subsys name 'net' [ 32.036345][ T5887] cgroup: Unknown subsys name 'cpuset' [ 32.040112][ T5887] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 32.580979][ T5887] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 34.297584][ T5942] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 34.299803][ T5945] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 34.301864][ T5945] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 34.308458][ T5944] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 34.310077][ T5949] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 34.310909][ T5944] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 34.312697][ T5949] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 34.315449][ T5944] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 34.317076][ T5949] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 34.318979][ T5944] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 34.320823][ T5949] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 34.322622][ T5944] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 34.324438][ T5952] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 34.326431][ T5953] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 34.328330][ T5952] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 34.330904][ T5953] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 34.331678][ T5948] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 34.331821][ T5948] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 34.331901][ T5948] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 34.333588][ T5942] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 34.334233][ T5953] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 34.334446][ T5952] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 34.336621][ T5942] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 34.347484][ T5942] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 34.422304][ T5950] chnl_net:caif_netlink_parms(): no params data found [ 34.429499][ T5946] chnl_net:caif_netlink_parms(): no params data found [ 34.474547][ T5939] chnl_net:caif_netlink_parms(): no params data found [ 34.528179][ T5946] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.530515][ T5946] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.532821][ T5946] bridge_slave_0: entered allmulticast mode [ 34.535940][ T5946] bridge_slave_0: entered promiscuous mode [ 34.539941][ T5946] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.542101][ T5946] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.544405][ T5946] bridge_slave_1: entered allmulticast mode [ 34.546723][ T5946] bridge_slave_1: entered promiscuous mode [ 34.549302][ T5941] chnl_net:caif_netlink_parms(): no params data found [ 34.581722][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.583598][ T5950] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.585994][ T5950] bridge_slave_0: entered allmulticast mode [ 34.587850][ T5950] bridge_slave_0: entered promiscuous mode [ 34.589944][ T5950] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.591789][ T5950] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.593633][ T5950] bridge_slave_1: entered allmulticast mode [ 34.595605][ T5950] bridge_slave_1: entered promiscuous mode [ 34.603150][ T5946] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 34.630804][ T5939] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.632702][ T5939] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.634714][ T5939] bridge_slave_0: entered allmulticast mode [ 34.636566][ T5939] bridge_slave_0: entered promiscuous mode [ 34.639852][ T5946] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 34.645637][ T5950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 34.648026][ T5939] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.649859][ T5939] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.652286][ T5939] bridge_slave_1: entered allmulticast mode [ 34.654740][ T5939] bridge_slave_1: entered promiscuous mode [ 34.678004][ T5950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 34.687369][ T5946] team0: Port device team_slave_0 added [ 34.689292][ T5941] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.691377][ T5941] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.693279][ T5941] bridge_slave_0: entered allmulticast mode [ 34.695374][ T5941] bridge_slave_0: entered promiscuous mode [ 34.714487][ T5939] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 34.717268][ T5946] team0: Port device team_slave_1 added [ 34.718830][ T5941] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.720682][ T5941] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.722565][ T5941] bridge_slave_1: entered allmulticast mode [ 34.724766][ T5941] bridge_slave_1: entered promiscuous mode [ 34.727042][ T5950] team0: Port device team_slave_0 added [ 34.734970][ T5939] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 34.753841][ T5950] team0: Port device team_slave_1 added [ 34.766250][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 34.768512][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.777152][ T5946] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 34.786563][ T5939] team0: Port device team_slave_0 added [ 34.788640][ T5939] team0: Port device team_slave_1 added [ 34.795650][ T5941] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 34.803364][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 34.805280][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.811825][ T5950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 34.815074][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 34.816852][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.823396][ T5946] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 34.831927][ T5941] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 34.840758][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 34.843085][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.850777][ T5950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 34.857108][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 34.858935][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.865780][ T5939] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 34.874005][ T5941] team0: Port device team_slave_0 added [ 34.876334][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 34.878152][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.884637][ T5939] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 34.897500][ T5941] team0: Port device team_slave_1 added [ 34.910875][ T5946] hsr_slave_0: entered promiscuous mode [ 34.912550][ T5946] hsr_slave_1: entered promiscuous mode [ 34.926204][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 34.927993][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.934507][ T5941] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 34.943452][ T5950] hsr_slave_0: entered promiscuous mode [ 34.945371][ T5950] hsr_slave_1: entered promiscuous mode [ 34.947018][ T5950] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 34.948975][ T5950] Cannot create hsr debugfs directory [ 34.956622][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 34.958438][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.965035][ T5941] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 34.987041][ T5939] hsr_slave_0: entered promiscuous mode [ 34.988831][ T5939] hsr_slave_1: entered promiscuous mode [ 34.990545][ T5939] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 34.992540][ T5939] Cannot create hsr debugfs directory [ 35.035045][ T5941] hsr_slave_0: entered promiscuous mode [ 35.036876][ T5941] hsr_slave_1: entered promiscuous mode [ 35.038562][ T5941] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 35.040525][ T5941] Cannot create hsr debugfs directory [ 35.103945][ T5946] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 35.108456][ T5946] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 35.112072][ T5946] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 35.120050][ T5946] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 35.129393][ T5950] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 35.131955][ T5950] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 35.136298][ T5950] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 35.139149][ T5950] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 35.147521][ T5946] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.149469][ T5946] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.151400][ T5946] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.153226][ T5946] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.155814][ T5939] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 35.159212][ T5939] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 35.163988][ T5950] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.165860][ T5950] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.167789][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.169608][ T5950] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.172665][ T5939] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 35.175595][ T5939] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 35.187610][ T5941] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 35.193155][ T5941] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 35.195908][ T5941] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 35.205004][ T5941] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 35.210193][ T5939] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.212089][ T5939] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.214031][ T5939] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.215920][ T5939] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.226462][ T5946] 8021q: adding VLAN 0 to HW filter on device bond0 [ 35.228511][ T5941] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.230367][ T5941] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.232186][ T5941] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.234002][ T5941] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.243078][ T5946] 8021q: adding VLAN 0 to HW filter on device team0 [ 35.246380][ T68] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.248492][ T68] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.250510][ T68] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.252510][ T68] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.254794][ T68] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.257634][ T68] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.261165][ T68] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.263857][ T68] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.269965][ T5950] 8021q: adding VLAN 0 to HW filter on device bond0 [ 35.275690][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.277574][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.283584][ T5950] 8021q: adding VLAN 0 to HW filter on device team0 [ 35.287495][ T45] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.289294][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.297747][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.299657][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.307589][ T68] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.309402][ T68] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.320025][ T5941] 8021q: adding VLAN 0 to HW filter on device bond0 [ 35.327381][ T5939] 8021q: adding VLAN 0 to HW filter on device bond0 [ 35.330272][ T5941] 8021q: adding VLAN 0 to HW filter on device team0 [ 35.339323][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.341207][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.344576][ T5939] 8021q: adding VLAN 0 to HW filter on device team0 [ 35.348613][ T5950] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 35.352379][ T45] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.354195][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.358964][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.360778][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.366593][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.368384][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.384047][ T5946] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 35.398475][ T5946] veth0_vlan: entered promiscuous mode [ 35.402909][ T5946] veth1_vlan: entered promiscuous mode [ 35.408284][ T5950] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 35.417311][ T5946] veth0_macvtap: entered promiscuous mode [ 35.422772][ T5946] veth1_macvtap: entered promiscuous mode [ 35.425366][ T5950] veth0_vlan: entered promiscuous mode [ 35.429114][ T5950] veth1_vlan: entered promiscuous mode [ 35.431225][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 35.436654][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 35.440024][ T5946] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.442288][ T5946] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.444610][ T5946] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.447105][ T5946] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.462946][ T5939] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 35.466418][ T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.467171][ T5941] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 35.468455][ T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 35.471053][ T5950] veth0_macvtap: entered promiscuous mode [ 35.479819][ T5950] veth1_macvtap: entered promiscuous mode [ 35.486484][ T1202] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.489097][ T1202] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 35.489512][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 35.493706][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 35.496883][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 35.500584][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 35.503277][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 35.506308][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 35.510377][ T5950] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.512673][ T5950] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.515248][ T5950] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.517557][ T5950] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.528349][ T5946] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 35.529158][ T5939] veth0_vlan: entered promiscuous mode [ 35.533984][ T5941] veth0_vlan: entered promiscuous mode [ 35.539148][ T5939] veth1_vlan: entered promiscuous mode [ 35.544114][ T5941] veth1_vlan: entered promiscuous mode [ 35.551047][ T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.553104][ T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 35.560518][ T5939] veth0_macvtap: entered promiscuous mode [ 35.563037][ T5939] veth1_macvtap: entered promiscuous mode [ 35.577462][ T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.577580][ T5939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 35.579502][ T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 35.582183][ T5939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 35.582189][ T5939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 35.589484][ T5939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 35.592360][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 35.596570][ T5939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 35.599313][ T5939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 35.601823][ T5939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 35.604669][ T5939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 35.607690][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 35.610638][ T5939] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.612919][ T5939] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.615318][ T5939] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.617622][ T5939] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.624918][ T5941] veth0_macvtap: entered promiscuous mode [ 35.633592][ T5941] veth1_macvtap: entered promiscuous mode [ 35.642490][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 35.645507][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 35.648049][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 35.650764][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 35.653283][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 35.656817][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 35.659869][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 35.665147][ T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.665186][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 35.669933][ T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 35.669988][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 35.674980][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 35.677738][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 35.680246][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 35.682904][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 35.685952][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 35.689307][ T5941] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.691602][ T5941] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.693888][ T5941] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.696617][ T5941] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.708714][ T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.713182][ T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 35.727269][ T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.733768][ T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 35.740970][ T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.742992][ T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 35.799588][ T6013] mmap: syz.1.2 (6013) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 35.836770][ T6014] SET target dimension over the limit! [ 36.154612][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 36.395128][ T66] Bluetooth: hci1: command tx timeout [ 36.395185][ T5942] Bluetooth: hci3: command tx timeout [ 36.396505][ T66] Bluetooth: hci2: command tx timeout [ 36.397892][ T5942] Bluetooth: hci0: command tx timeout [ 36.542141][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 36.774268][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 36.784421][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 36.817855][ T6026] kAFS: No cell specified [ 36.854235][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 36.854336][ T0] NOHZ tick-stop error: local softirq work is pending, handler #2c2!!! [ 36.856413][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 36.860753][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 36.951737][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 36.951864][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 37.610558][ T6042] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 37.934415][ T6000] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 38.084441][ T6000] usb 8-1: Using ep0 maxpacket: 8 [ 38.087158][ T6000] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 38.089497][ T6000] usb 8-1: config 246 descriptor has 1 excess byte, ignoring [ 38.091449][ T6000] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 38.093825][ T6000] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 38.096964][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 38.099872][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 38.102736][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 38.106248][ T6000] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 38.108586][ T6000] usb 8-1: config 246 descriptor has 1 excess byte, ignoring [ 38.110542][ T6000] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 38.112923][ T6000] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 38.116082][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 38.119253][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 38.122110][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 38.126395][ T6000] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 38.128727][ T6000] usb 8-1: config 246 descriptor has 1 excess byte, ignoring [ 38.130675][ T6000] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 38.133031][ T6000] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 38.136188][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 38.139117][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 38.141936][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 38.147561][ T6000] usb 8-1: string descriptor 0 read error: -22 [ 38.149319][ T6000] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 38.151688][ T6000] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 38.160893][ T6000] adutux 8-1:246.0: ADU100 now attached to /dev/usb/adutux0 [ 38.454256][ T5307] Bluetooth: hci2: command tx timeout [ 38.455838][ T5307] Bluetooth: hci0: command tx timeout [ 38.457671][ T5307] Bluetooth: hci3: command tx timeout [ 38.457691][ T5942] Bluetooth: hci1: command tx timeout [ 38.476948][ T6056] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 38.681944][ T6063] overlayfs: failed to resolve './file1': -2 [ 39.153526][ T6066] trusted_key: encrypted_key: insufficient parameters specified [ 39.420131][ T6073] syz.1.17: attempt to access beyond end of device [ 39.420131][ T6073] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0 [ 39.423474][ T6073] FAT-fs (nbd1): unable to read boot sector [ 40.010459][ T6085] trusted_key: syz.2.19 sent an empty control message without MSG_MORE. [ 40.196217][ T6091] SET target dimension over the limit! [ 40.457058][ T6000] usb 8-1: USB disconnect, device number 2 [ 40.534245][ T5942] Bluetooth: hci2: command tx timeout [ 40.534365][ T5307] Bluetooth: hci0: command tx timeout [ 40.544235][ T5307] Bluetooth: hci3: command tx timeout [ 40.544417][ T5942] Bluetooth: hci1: command tx timeout [ 40.974270][ T6099] sch_fq: defrate 0 ignored. [ 41.392509][ T6108] Sensor A: ================= START STATUS ================= [ 41.399144][ T6108] Sensor A: Test Pattern: 75% Colorbar [ 41.400693][ T6108] Sensor A: Show Information: All [ 41.402688][ T6108] Sensor A: Vertical Flip: false [ 41.405341][ T6108] Sensor A: Horizontal Flip: false [ 41.406944][ T6108] Sensor A: Brightness: 128 [ 41.407219][ T6105] fuse: Unknown parameter '' [ 41.412752][ T6108] Sensor A: Contrast: 128 [ 41.414009][ T6108] Sensor A: Hue: 0 [ 41.417550][ T6108] Sensor A: Saturation: 128 [ 41.422340][ T6108] Sensor A: ================== END STATUS ================== [ 42.625531][ T5942] Bluetooth: hci2: command tx timeout [ 42.627082][ T5942] Bluetooth: hci3: command tx timeout [ 42.628508][ T5307] Bluetooth: hci0: command tx timeout [ 42.628603][ T66] Bluetooth: hci1: command tx timeout [ 42.684775][ T6132] kAFS: No cell specified [ 42.966967][ T6137] SET target dimension over the limit! [ 43.725120][ T6154] SET target dimension over the limit! [ 43.908290][ T6159] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 44.051442][ T6161] netlink: 4 bytes leftover after parsing attributes in process `syz.2.40'. [ 44.053968][ T6161] netlink: 4 bytes leftover after parsing attributes in process `syz.2.40'. [ 44.305772][ T6170] Zero length message leads to an empty skb [ 45.827734][ T6193] SET target dimension over the limit! [ 45.857551][ T6194] hfs: unable to load iocharset "io#harset" [ 45.874408][ T6194] fuse: Bad value for 'user_id' [ 45.875889][ T6194] fuse: Bad value for 'user_id' [ 46.129164][ T6202] process 'syz.2.50' launched './file0' with NULL argv: empty string added [ 46.437927][ T6208] kAFS: No cell specified [ 46.892796][ T6212] block nbd2: shutting down sockets [ 46.938531][ T6217] SET target dimension over the limit! [ 46.965424][ T6215] SET target dimension over the limit! [ 47.765401][ T6230] syz.3.57 uses obsolete (PF_INET,SOCK_PACKET) [ 47.803707][ T6233] SET target dimension over the limit! [ 48.324686][ T39] audit: type=1326 audit(1734827275.875:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6243 comm="syz.2.61" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 48.332748][ T39] audit: type=1326 audit(1734827275.875:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6243 comm="syz.2.61" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 48.340796][ T39] audit: type=1326 audit(1734827275.875:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6243 comm="syz.2.61" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 48.348422][ T39] audit: type=1326 audit(1734827275.875:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6243 comm="syz.2.61" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 48.354898][ T39] audit: type=1326 audit(1734827275.875:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6243 comm="syz.2.61" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 48.363638][ T39] audit: type=1326 audit(1734827275.885:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6243 comm="syz.2.61" exe="/syz-executor" sig=0 arch=40000003 syscall=349 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 48.371730][ T39] audit: type=1326 audit(1734827275.885:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6243 comm="syz.2.61" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 48.380356][ T39] audit: type=1326 audit(1734827275.885:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6243 comm="syz.2.61" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 48.388516][ T39] audit: type=1326 audit(1734827275.895:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6243 comm="syz.2.61" exe="/syz-executor" sig=0 arch=40000003 syscall=41 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 48.396221][ T39] audit: type=1326 audit(1734827275.895:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6243 comm="syz.2.61" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 48.565494][ T6246] veth0_vlan: left promiscuous mode [ 48.567344][ T6246] veth0_vlan: entered promiscuous mode [ 48.660466][ T6254] SET target dimension over the limit! [ 50.176325][ T6294] netlink: 44 bytes leftover after parsing attributes in process `syz.3.74'. [ 50.187932][ T6294] netlink: 24 bytes leftover after parsing attributes in process `syz.3.74'. [ 50.190275][ T6294] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.192229][ T6294] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.194035][ T6294] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.221409][ T6337] netlink: 'syz.0.83': attribute type 9 has an invalid length. [ 52.255362][ T6345] kAFS: No cell specified [ 55.740851][ T6442] netlink: 4 bytes leftover after parsing attributes in process `syz.0.99'. [ 56.358920][ T6459] netfs: Couldn't get user pages (rc=-14) [ 56.359596][ T6460] SET target dimension over the limit! [ 56.360405][ T6459] netfs: Zero-sized read [R=1] [ 56.556970][ T6463] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 56.789985][ T6467] Invalid option length (1025206) for dns_resolver key [ 56.905479][ T6475] netlink: 4 bytes leftover after parsing attributes in process `syz.1.109'. [ 56.923476][ T39] kauditd_printk_skb: 23 callbacks suppressed [ 56.923485][ T39] audit: type=1326 audit(1734827284.465:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.1.111" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000 [ 56.932046][ T39] audit: type=1326 audit(1734827284.465:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.1.111" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000 [ 56.937652][ T39] audit: type=1326 audit(1734827284.475:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.1.111" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fa4579 code=0x7ffc0000 [ 56.942912][ T39] audit: type=1326 audit(1734827284.475:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.1.111" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000 [ 56.948304][ T39] audit: type=1326 audit(1734827284.475:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.1.111" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000 [ 56.953628][ T39] audit: type=1326 audit(1734827284.475:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.1.111" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fa4579 code=0x7ffc0000 [ 56.959213][ T39] audit: type=1326 audit(1734827284.475:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.1.111" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000 [ 56.968996][ T39] audit: type=1326 audit(1734827284.475:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.1.111" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000 [ 56.975857][ T39] audit: type=1326 audit(1734827284.475:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.1.111" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fa4579 code=0x7ffc0000 [ 56.981226][ T39] audit: type=1326 audit(1734827284.475:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.1.111" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000 [ 57.042548][ T6483] kAFS: No cell specified [ 58.592557][ T6515] No control pipe specified [ 58.649720][ T6519] netlink: 256 bytes leftover after parsing attributes in process `syz.2.118'. [ 59.274208][ T66] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 59.277272][ T66] Bluetooth: hci3: Injecting HCI hardware error event [ 59.279109][ T66] Bluetooth: hci3: hardware error 0x00 [ 59.453163][ T6552] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 59.455584][ T6552] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 59.457801][ T6552] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 59.460141][ T6552] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 59.463664][ T6552] vxlan0: entered promiscuous mode [ 59.465473][ T6552] vxlan0: entered allmulticast mode [ 59.565139][ T6552] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 59.567985][ T6552] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 59.570819][ T6552] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 59.573354][ T6552] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 59.587454][ T6548] tipc: Started in network mode [ 59.588850][ T6548] tipc: Node identity 4, cluster identity 4711 [ 59.590905][ T6548] tipc: Node number set to 4 [ 60.117812][ T6570] netlink: 'syz.0.126': attribute type 10 has an invalid length. [ 60.124003][ T6570] bond0: (slave wlan1): Opening slave failed [ 60.139916][ T6570] ptrace attach of "/syz-executor exec"[5950] was attempted by "/syz-executor exec"[6570] [ 60.524470][ T6598] SET target dimension over the limit! [ 60.923923][ T6625] netlink: 4 bytes leftover after parsing attributes in process `syz.1.131'. [ 60.927244][ T6625] netlink: 12 bytes leftover after parsing attributes in process `syz.1.131'. [ 61.030995][ T6629] SET target dimension over the limit! [ 61.334258][ T66] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 61.463570][ T6641] SET target dimension over the limit! [ 61.903416][ T6651] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22 [ 61.906359][ T6651] netdevsim netdevsim1: Direct firmware load for . failed with error -22 [ 61.909298][ T6651] netdevsim netdevsim1: Falling back to sysfs fallback for: . [ 62.941406][ T6671] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 62.943312][ T6671] overlayfs: failed to set xattr on upper [ 62.945005][ T6671] overlayfs: ...falling back to redirect_dir=nofollow. [ 62.946869][ T6671] overlayfs: ...falling back to index=off. [ 62.948485][ T6671] overlayfs: ...falling back to uuid=null. [ 62.962831][ T6671] netlink: 'syz.1.143': attribute type 10 has an invalid length. [ 62.965857][ T6671] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.968004][ T6671] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.973906][ T6671] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.976122][ T6671] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.978264][ T6671] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.980282][ T6671] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.984796][ T6671] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 63.123860][ T6679] syz.1.146: attempt to access beyond end of device [ 63.123860][ T6679] nbd1: rw=4096, sector=2, nr_sectors = 2 limit=0 [ 63.127775][ T6679] EXT4-fs (nbd1): unable to read superblock [ 63.170577][ T6681] SET target dimension over the limit! [ 63.172758][ T6683] SET target dimension over the limit! [ 63.375452][ T39] kauditd_printk_skb: 67 callbacks suppressed [ 63.375462][ T39] audit: type=1326 audit(1734827290.925:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6690 comm="syz.2.149" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 63.385625][ T39] audit: type=1326 audit(1734827290.925:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6690 comm="syz.2.149" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 63.391277][ T39] audit: type=1326 audit(1734827290.925:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6690 comm="syz.2.149" exe="/syz-executor" sig=0 arch=40000003 syscall=245 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 63.397757][ T39] audit: type=1326 audit(1734827290.935:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6690 comm="syz.2.149" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 63.403407][ T39] audit: type=1326 audit(1734827290.935:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6690 comm="syz.2.149" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 63.409180][ T39] audit: type=1326 audit(1734827290.935:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6690 comm="syz.2.149" exe="/syz-executor" sig=0 arch=40000003 syscall=283 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 63.436200][ T39] audit: type=1326 audit(1734827290.935:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6690 comm="syz.2.149" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 63.444480][ T39] audit: type=1326 audit(1734827290.935:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6690 comm="syz.2.149" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 63.450054][ T39] audit: type=1326 audit(1734827290.935:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6690 comm="syz.2.149" exe="/syz-executor" sig=0 arch=40000003 syscall=246 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 63.524895][ T39] audit: type=1326 audit(1734827291.075:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6690 comm="syz.2.149" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000 [ 63.672914][ T6703] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22 [ 63.675851][ T6703] netdevsim netdevsim2: Direct firmware load for . failed with error -22 [ 63.678824][ T6703] netdevsim netdevsim2: Falling back to sysfs fallback for: . [ 64.390731][ T6712] overlayfs: failed to resolve './file1': -2 [ 64.799966][ T6720] netlink: 'syz.1.156': attribute type 10 has an invalid length. [ 64.802657][ T6720] bond0: (slave wlan1): Opening slave failed [ 64.821570][ T6720] ptrace attach of "/syz-executor exec"[5941] was attempted by "/syz-executor exec"[6720] [ 64.867795][ T6724] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 64.869649][ T6724] overlayfs: failed to set xattr on upper [ 64.871125][ T6724] overlayfs: ...falling back to redirect_dir=nofollow. [ 64.872813][ T6724] overlayfs: ...falling back to index=off. [ 64.874766][ T6724] overlayfs: ...falling back to uuid=null. [ 64.883315][ T6724] netlink: 'syz.2.158': attribute type 10 has an invalid length. [ 64.885976][ T6724] bridge0: port 2(bridge_slave_1) entered disabled state [ 64.888262][ T6724] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.892041][ T6724] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.893858][ T6724] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.896343][ T6724] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.898168][ T6724] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.902016][ T6724] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 64.957477][ T6729] SET target dimension over the limit! [ 65.127007][ T6732] SET target dimension over the limit! [ 65.162593][ T6736] SET target dimension over the limit! [ 65.241185][ T6741] overlayfs: missing 'lowerdir' [ 66.925334][ T6771] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 66.927304][ T6771] overlayfs: failed to set xattr on upper [ 66.929243][ T6771] overlayfs: ...falling back to redirect_dir=nofollow. [ 66.931428][ T6771] overlayfs: ...falling back to index=off. [ 66.933160][ T6771] overlayfs: ...falling back to uuid=null. [ 66.942981][ T6771] netlink: 'syz.0.173': attribute type 10 has an invalid length. [ 66.945653][ T6771] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.947623][ T6771] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.950559][ T6771] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.952420][ T6771] bridge0: port 2(bridge_slave_1) entered forwarding state [ 66.954529][ T6771] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.956365][ T6771] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.959929][ T6771] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 67.131367][ T6766] overlayfs: failed to resolve './file1': -2 [ 67.524002][ T6794] overlayfs: missing 'lowerdir' [ 68.624359][ T6817] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 68.626256][ T6817] overlayfs: failed to set xattr on upper [ 68.627830][ T6817] overlayfs: ...falling back to redirect_dir=nofollow. [ 68.629728][ T6817] overlayfs: ...falling back to index=off. [ 68.631429][ T6817] overlayfs: ...falling back to uuid=null. [ 68.713680][ T6820] kAFS: No cell specified [ 69.282805][ T6831] trusted_key: encrypted_key: insufficient parameters specified [ 69.487003][ T6841] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 69.489065][ T6841] overlayfs: failed to set xattr on upper [ 69.490665][ T6841] overlayfs: ...falling back to redirect_dir=nofollow. [ 69.492556][ T6841] overlayfs: ...falling back to index=off. [ 69.494375][ T6841] overlayfs: ...falling back to uuid=null. [ 69.517621][ T6843] overlayfs: missing 'lowerdir' [ 70.008686][ T6849] SET target dimension over the limit! [ 70.545164][ T6865] netlink: 20 bytes leftover after parsing attributes in process `syz.0.205'. [ 70.643257][ T6871] Invalid option length (1025206) for dns_resolver key [ 70.695555][ T1414] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.697298][ T1414] ieee802154 phy1 wpan1: encryption failed: -22 [ 70.953108][ T39] kauditd_printk_skb: 1 callbacks suppressed [ 70.953118][ T39] audit: type=1800 audit(1734827298.495:123): pid=6883 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.3.211" name="/bus" dev="overlay" ino=291 res=0 errno=0 [ 70.953412][ T6888] Invalid option length (1025206) for dns_resolver key [ 71.010310][ T6893] Invalid option length (1025206) for dns_resolver key [ 71.126861][ T6903] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 71.128693][ T6903] overlayfs: failed to set xattr on upper [ 71.130162][ T6903] overlayfs: ...falling back to redirect_dir=nofollow. [ 71.131938][ T6903] overlayfs: ...falling back to index=off. [ 71.133449][ T6903] overlayfs: ...falling back to uuid=null. [ 71.216980][ T6912] kAFS: No cell specified [ 72.034734][ T6925] SET target dimension over the limit! [ 72.184391][ T6937] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 72.186259][ T6937] overlayfs: failed to set xattr on upper [ 72.187728][ T6937] overlayfs: ...falling back to redirect_dir=nofollow. [ 72.189550][ T6937] overlayfs: ...falling back to index=off. [ 72.191092][ T6937] overlayfs: ...falling back to uuid=null. [ 72.244169][ T39] audit: type=1800 audit(1734827299.785:124): pid=6938 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.227" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 72.255724][ T6938] warning: `syz.1.227' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 72.523410][ T6949] trusted_key: encrypted_key: insufficient parameters specified [ 73.077751][ T6963] Invalid option length (1025206) for dns_resolver key [ 73.426590][ T6972] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 73.428552][ T6972] overlayfs: failed to set xattr on upper [ 73.433702][ T6972] overlayfs: ...falling back to redirect_dir=nofollow. [ 73.437555][ T6972] overlayfs: ...falling back to index=off. [ 73.440459][ T6972] overlayfs: ...falling back to uuid=null. [ 73.934938][ T6992] Invalid option length (1025206) for dns_resolver key [ 74.975109][ T7010] trusted_key: encrypted_key: insufficient parameters specified [ 75.056048][ T7008] kAFS: No cell specified [ 75.124582][ T7014] sch_fq: defrate 0 ignored. [ 75.207553][ T7018] Invalid option length (1025206) for dns_resolver key [ 75.749330][ T7030] SET target dimension over the limit! [ 75.814395][ T57] cfg80211: failed to load regulatory.db [ 76.005308][ T7033] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 76.007183][ T7033] overlayfs: failed to set xattr on upper [ 76.011871][ T7033] overlayfs: ...falling back to redirect_dir=nofollow. [ 76.013721][ T7033] overlayfs: ...falling back to index=off. [ 76.020284][ T7033] overlayfs: ...falling back to uuid=null. [ 76.310836][ T7048] Invalid option length (1025206) for dns_resolver key [ 76.418932][ T7055] SET target dimension over the limit! [ 76.602743][ T7058] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 76.894250][ T30] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 77.004551][ T7063] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 77.011121][ T7063] overlayfs: failed to set xattr on upper [ 77.014862][ T7063] overlayfs: ...falling back to redirect_dir=nofollow. [ 77.016882][ T7063] overlayfs: ...falling back to index=off. [ 77.018425][ T7063] overlayfs: ...falling back to uuid=null. [ 77.064239][ T30] usb 7-1: Using ep0 maxpacket: 8 [ 77.145522][ T30] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 77.147981][ T30] usb 7-1: config 246 descriptor has 1 excess byte, ignoring [ 77.150062][ T30] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 77.152659][ T30] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 77.155868][ T30] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 77.158926][ T30] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 77.161792][ T30] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 77.166552][ T30] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 77.169044][ T30] usb 7-1: config 246 descriptor has 1 excess byte, ignoring [ 77.171108][ T30] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 77.173831][ T30] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 77.177020][ T30] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 77.182888][ T30] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 77.186039][ T30] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 77.199787][ T30] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 77.202346][ T30] usb 7-1: config 246 descriptor has 1 excess byte, ignoring [ 77.204350][ T30] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 77.206813][ T30] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 77.209801][ T30] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 77.212667][ T30] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 77.217492][ T30] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 77.233622][ T30] usb 7-1: string descriptor 0 read error: -22 [ 77.237362][ T30] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 77.240722][ T30] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 77.257203][ T30] adutux 7-1:246.0: ADU100 now attached to /dev/usb/adutux0 [ 77.650278][ T7075] SET target dimension over the limit! [ 78.029926][ T7086] Invalid option length (1025206) for dns_resolver key [ 78.155968][ T7092] sch_fq: defrate 0 ignored. [ 78.227805][ T7096] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 78.229774][ T7096] overlayfs: failed to set xattr on upper [ 78.231317][ T7096] overlayfs: ...falling back to redirect_dir=nofollow. [ 78.233125][ T7096] overlayfs: ...falling back to index=off. [ 78.234902][ T7096] overlayfs: ...falling back to uuid=null. [ 78.401218][ T7105] trusted_key: encrypted_key: insufficient parameters specified [ 78.485682][ T7108] kAFS: No cell specified [ 78.624231][ T5981] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 78.774171][ T5981] usb 8-1: Using ep0 maxpacket: 8 [ 78.778211][ T5981] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 78.780808][ T5981] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 78.783202][ T5981] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10 [ 78.786202][ T5981] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024 [ 78.789078][ T5981] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 78.791356][ T5981] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 78.796852][ T5981] hub 8-1:1.0: bad descriptor, ignoring hub [ 78.798414][ T5981] hub 8-1:1.0: probe with driver hub failed with error -5 [ 78.800651][ T5981] cdc_wdm 8-1:1.0: skipping garbage [ 78.802006][ T5981] cdc_wdm 8-1:1.0: skipping garbage [ 78.804472][ T5981] cdc_wdm 8-1:1.0: cdc-wdm1: USB WDM device [ 78.806031][ T5981] cdc_wdm 8-1:1.0: Unknown control protocol [ 78.892047][ T7111] Invalid option length (1025206) for dns_resolver key [ 78.951055][ T7114] netlink: 16 bytes leftover after parsing attributes in process `syz.1.286'. [ 79.154259][ T5981] usb 8-1: USB disconnect, device number 3 [ 79.339149][ T7129] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 79.340906][ T7129] overlayfs: failed to set xattr on upper [ 79.342410][ T7129] overlayfs: ...falling back to redirect_dir=nofollow. [ 79.344319][ T7129] overlayfs: ...falling back to index=off. [ 79.345762][ T7129] overlayfs: ...falling back to uuid=null. [ 79.384399][ T7131] SET target dimension over the limit! [ 79.496263][ T1322] usb 7-1: USB disconnect, device number 2 [ 79.556759][ T7136] evm: overlay not supported [ 79.600027][ T7140] Invalid option length (1025206) for dns_resolver key [ 79.777254][ T7149] trusted_key: encrypted_key: insufficient parameters specified [ 79.810894][ T7152] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 79.813249][ T7152] overlayfs: failed to set xattr on upper [ 79.815034][ T7152] overlayfs: ...falling back to redirect_dir=nofollow. [ 79.817089][ T7152] overlayfs: ...falling back to index=off. [ 79.818697][ T7152] overlayfs: ...falling back to uuid=null. [ 79.963000][ T5981] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 80.224156][ T5981] usb 8-1: Using ep0 maxpacket: 8 [ 80.274521][ T1322] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 80.367218][ T7162] SET target dimension over the limit! [ 80.427491][ T1322] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 80.429920][ T1322] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 80.431999][ T1322] usb 7-1: Product: syz [ 80.433128][ T1322] usb 7-1: Manufacturer: syz [ 80.434389][ T1322] usb 7-1: SerialNumber: syz [ 80.439219][ T1322] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 80.458198][ T1322] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 80.645074][ T5981] usb 8-1: unable to get BOS descriptor or descriptor too short [ 80.647593][ T5981] usb 8-1: no configurations [ 80.649158][ T5981] usb 8-1: can't read configurations, error -22 [ 80.808780][ T7173] Invalid option length (1025206) for dns_resolver key [ 80.968999][ T30] usb 7-1: USB disconnect, device number 3 [ 81.041151][ T7179] trusted_key: encrypted_key: insufficient parameters specified [ 81.305400][ T7189] SET target dimension over the limit! [ 81.494726][ T1322] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive [ 81.497179][ T1322] ath9k_htc: Failed to initialize the device [ 81.506697][ T30] usb 7-1: ath9k_htc: USB layer deinitialized [ 81.532666][ T7194] xt_CT: You must specify a L4 protocol and not use inversions on it [ 81.540269][ T7201] Invalid option length (1025206) for dns_resolver key [ 81.585564][ T7205] fuse: Invalid rootmode [ 81.909250][ T7227] SET target dimension over the limit! [ 82.488915][ T7245] Invalid option length (1025206) for dns_resolver key [ 82.498636][ T7248] FAULT_INJECTION: forcing a failure. [ 82.498636][ T7248] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 82.501717][ T7248] CPU: 1 UID: 0 PID: 7248 Comm: syz.2.331 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0 [ 82.504156][ T7248] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 82.506684][ T7248] Call Trace: [ 82.507480][ T7248] [ 82.508181][ T7248] dump_stack_lvl+0x16c/0x1f0 [ 82.509329][ T7248] should_fail_ex+0x497/0x5b0 [ 82.510454][ T7248] _copy_from_iter+0x29b/0x1400 [ 82.511613][ T7248] ? rcu_is_watching+0x12/0xc0 [ 82.512756][ T7248] ? lock_release+0x4e2/0x6f0 [ 82.513887][ T7248] ? __pfx__copy_from_iter+0x10/0x10 [ 82.515214][ T7248] ? rcu_is_watching+0x12/0xc0 [ 82.516407][ T7248] ? lock_release+0x4e2/0x6f0 [ 82.517515][ T7248] ? aa_file_perm+0x4c6/0xfe0 [ 82.518638][ T7248] ? __pfx_lock_release+0x10/0x10 [ 82.519816][ T7248] ? trace_lock_acquire+0x14e/0x1f0 [ 82.521041][ T7248] ? lock_release+0x4e2/0x6f0 [ 82.522161][ T7248] tun_get_user+0x241/0x3e40 [ 82.523249][ T7248] ? __pfx_tun_get_user+0x10/0x10 [ 82.524447][ T7248] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 82.525750][ T7248] ? rcu_is_watching+0x12/0xc0 [ 82.526887][ T7248] ? lock_release+0x4e2/0x6f0 [ 82.527985][ T7248] ? __pfx_lock_release+0x10/0x10 [ 82.529179][ T7248] ? tun_get+0x30/0x370 [ 82.530169][ T7248] ? lock_acquire+0x2f/0xb0 [ 82.531241][ T7248] ? tun_get+0x30/0x370 [ 82.532223][ T7248] tun_chr_write_iter+0xdc/0x210 [ 82.533391][ T7248] vfs_write+0x5ae/0x1150 [ 82.534422][ T7248] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 82.535735][ T7248] ? __pfx_vfs_write+0x10/0x10 [ 82.536865][ T7248] ? __fget_files+0x40/0x3a0 [ 82.537963][ T7248] ksys_write+0x12b/0x250 [ 82.538967][ T7248] ? __pfx_ksys_write+0x10/0x10 [ 82.540092][ T7248] ? rcu_is_watching+0x12/0xc0 [ 82.541198][ T7248] __do_fast_syscall_32+0x73/0x120 [ 82.542362][ T7248] do_fast_syscall_32+0x32/0x80 [ 82.543503][ T7248] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 82.544936][ T7248] RIP: 0023:0xf7fb8579 [ 82.545864][ T7248] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 82.550198][ T7248] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 82.552071][ T7248] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000440 [ 82.553843][ T7248] RDX: 00000000000000d6 RSI: 0000000000000000 RDI: 0000000000000000 [ 82.555676][ T7248] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 82.557459][ T7248] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 82.559265][ T7248] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 82.561085][ T7248] [ 82.652656][ T7258] SET target dimension over the limit! [ 82.731147][ T7261] sch_fq: defrate 0 ignored. [ 82.763355][ T7265] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 82.766281][ T7265] overlayfs: failed to set xattr on upper [ 82.768986][ T7265] overlayfs: ...falling back to redirect_dir=nofollow. [ 82.772833][ T7265] overlayfs: ...falling back to index=off. [ 82.776475][ T7265] overlayfs: ...falling back to uuid=null. [ 83.024246][ T7281] Invalid option length (1025206) for dns_resolver key [ 83.205472][ T7293] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 83.207919][ T7293] overlayfs: failed to set xattr on upper [ 83.209833][ T7293] overlayfs: ...falling back to redirect_dir=nofollow. [ 83.212206][ T7293] overlayfs: ...falling back to index=off. [ 83.214344][ T7293] overlayfs: ...falling back to uuid=null. [ 83.660261][ T7324] netlink: 'syz.2.351': attribute type 4 has an invalid length. [ 83.682460][ T7324] netlink: 'syz.2.351': attribute type 4 has an invalid length. [ 83.722630][ T7324] syz.2.351 (7324) used greatest stack depth: 21488 bytes left [ 83.805689][ T7329] Invalid option length (1025206) for dns_resolver key [ 83.902568][ T7331] FAULT_INJECTION: forcing a failure. [ 83.902568][ T7331] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 83.907123][ T7331] CPU: 2 UID: 0 PID: 7331 Comm: syz.0.353 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0 [ 83.910611][ T7331] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 83.913610][ T7331] Call Trace: [ 83.914512][ T7331] [ 83.915286][ T7331] dump_stack_lvl+0x16c/0x1f0 [ 83.916567][ T7331] should_fail_ex+0x497/0x5b0 [ 83.917796][ T7331] _copy_from_iter+0x29b/0x1400 [ 83.919066][ T7331] ? rcu_is_watching+0x12/0xc0 [ 83.920304][ T7331] ? lock_release+0x4e2/0x6f0 [ 83.921518][ T7331] ? __pfx__copy_from_iter+0x10/0x10 [ 83.922897][ T7331] ? rcu_is_watching+0x12/0xc0 [ 83.924166][ T7331] ? lock_release+0x4e2/0x6f0 [ 83.925406][ T7331] ? aa_file_perm+0x4c6/0xfe0 [ 83.926669][ T7331] ? __pfx_lock_release+0x10/0x10 [ 83.927992][ T7331] ? trace_lock_acquire+0x14e/0x1f0 [ 83.929367][ T7331] ? lock_release+0x4e2/0x6f0 [ 83.930626][ T7331] tun_get_user+0x34e/0x3e40 [ 83.931854][ T7331] ? __pfx_tun_get_user+0x10/0x10 [ 83.933176][ T7331] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 83.934625][ T7331] ? rcu_is_watching+0x12/0xc0 [ 83.935927][ T7331] ? lock_release+0x4e2/0x6f0 [ 83.937153][ T7331] ? __pfx_lock_release+0x10/0x10 [ 83.938489][ T7331] ? tun_get+0x30/0x370 [ 83.939592][ T7331] ? lock_acquire+0x2f/0xb0 [ 83.940823][ T7331] ? tun_get+0x30/0x370 [ 83.941921][ T7331] tun_chr_write_iter+0xdc/0x210 [ 83.943229][ T7331] vfs_write+0x5ae/0x1150 [ 83.944379][ T7331] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 83.945826][ T7331] ? __pfx_vfs_write+0x10/0x10 [ 83.947096][ T7331] ? __fget_files+0x40/0x3a0 [ 83.948304][ T7331] ksys_write+0x12b/0x250 [ 83.949441][ T7331] ? __pfx_ksys_write+0x10/0x10 [ 83.950980][ T7331] ? rcu_is_watching+0x12/0xc0 [ 83.952244][ T7331] __do_fast_syscall_32+0x73/0x120 [ 83.953605][ T7331] do_fast_syscall_32+0x32/0x80 [ 83.954909][ T7331] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 83.956553][ T7331] RIP: 0023:0xf706e579 [ 83.957714][ T7331] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 83.964090][ T7331] RSP: 002b:00000000f506055c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 83.966876][ T7331] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000440 [ 83.969520][ T7331] RDX: 00000000000000d6 RSI: 0000000000000000 RDI: 0000000000000000 [ 83.972174][ T7331] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 83.974854][ T7331] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 83.977497][ T7331] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 83.980144][ T7331] [ 83.981252][ C2] vkms_vblank_simulate: vblank timer overrun [ 84.008714][ T7336] trusted_key: encrypted_key: insufficient parameters specified [ 84.395312][ T7358] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 84.546657][ T7365] Invalid option length (1025206) for dns_resolver key [ 84.662767][ T7368] trusted_key: encrypted_key: insufficient parameters specified [ 84.789771][ T7371] netlink: 8 bytes leftover after parsing attributes in process `syz.0.367'. [ 84.924244][ T6306] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 85.074210][ T6306] usb 8-1: Using ep0 maxpacket: 8 [ 85.077485][ T6306] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 85.080292][ T6306] usb 8-1: config 246 descriptor has 1 excess byte, ignoring [ 85.082239][ T6306] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 85.085394][ T6306] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 85.089020][ T6306] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 85.092110][ T6306] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 85.095760][ T6306] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 85.099262][ T6306] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 85.101855][ T6306] usb 8-1: config 246 descriptor has 1 excess byte, ignoring [ 85.103894][ T6306] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 85.106528][ T6306] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 85.110728][ T6306] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 85.115815][ T6306] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 85.119409][ T6306] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 85.123425][ T6306] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 85.129750][ T6306] usb 8-1: config 246 descriptor has 1 excess byte, ignoring [ 85.133956][ T6306] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 85.138117][ T6306] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 85.141038][ T6306] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 85.143948][ T6306] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 85.147114][ T6306] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 85.151732][ T6306] usb 8-1: string descriptor 0 read error: -22 [ 85.153303][ T6306] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 85.156144][ T6306] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 85.160982][ T6306] adutux 8-1:246.0: ADU100 now attached to /dev/usb/adutux0 [ 85.412470][ T7393] Invalid option length (1025206) for dns_resolver key [ 85.506352][ T7396] trusted_key: encrypted_key: insufficient parameters specified [ 85.514098][ T7398] FAULT_INJECTION: forcing a failure. [ 85.514098][ T7398] name failslab, interval 1, probability 0, space 0, times 1 [ 85.517252][ T7398] CPU: 3 UID: 0 PID: 7398 Comm: syz.2.375 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0 [ 85.519889][ T7398] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 85.519897][ T7398] Call Trace: [ 85.519907][ T7398] [ 85.519910][ T7398] dump_stack_lvl+0x16c/0x1f0 [ 85.525607][ T7398] should_fail_ex+0x497/0x5b0 [ 85.526853][ T7398] ? fs_reclaim_acquire+0xae/0x150 [ 85.528136][ T7398] should_failslab+0xc2/0x120 [ 85.529370][ T7398] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 85.530899][ T7398] ? __alloc_skb+0x2b3/0x380 [ 85.532078][ T7398] __alloc_skb+0x2b3/0x380 [ 85.533224][ T7398] ? __pfx___alloc_skb+0x10/0x10 [ 85.534485][ T7398] ? __pfx_lock_release+0x10/0x10 [ 85.535764][ T7398] ? rcu_is_watching+0x12/0xc0 [ 85.537051][ T7398] ? lock_release+0x4e2/0x6f0 [ 85.538239][ T7398] ? __might_fault+0x13b/0x190 [ 85.539484][ T7398] alloc_skb_with_frags+0xe4/0x850 [ 85.540852][ T7398] ? __might_fault+0xe3/0x190 [ 85.542149][ T7398] ? __might_fault+0xe3/0x190 [ 85.543428][ T7398] sock_alloc_send_pskb+0x7f1/0x980 [ 85.544772][ T7398] ? _copy_from_iter+0x159/0x1400 [ 85.546107][ T7398] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 85.547567][ T7398] ? rcu_is_watching+0x12/0xc0 [ 85.548861][ T7398] ? lock_release+0x4e2/0x6f0 [ 85.550124][ T7398] ? aa_file_perm+0x4c6/0xfe0 [ 85.551397][ T7398] ? __pfx_lock_release+0x10/0x10 [ 85.552804][ T7398] ? trace_lock_acquire+0x14e/0x1f0 [ 85.554165][ T7398] ? iov_iter_advance+0x7d/0x6c0 [ 85.555452][ T7398] ? lock_release+0x4e2/0x6f0 [ 85.556632][ T7398] tun_get_user+0xd3b/0x3e40 [ 85.557793][ T7398] ? __pfx_tun_get_user+0x10/0x10 [ 85.559038][ T7398] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 85.560509][ T7398] ? rcu_is_watching+0x12/0xc0 [ 85.561727][ T7398] ? lock_release+0x4e2/0x6f0 [ 85.562926][ T7398] ? __pfx_lock_release+0x10/0x10 [ 85.564231][ T7398] ? tun_get+0x30/0x370 [ 85.565262][ T7398] ? lock_acquire+0x2f/0xb0 [ 85.566469][ T7398] ? tun_get+0x30/0x370 [ 85.567627][ T7398] tun_chr_write_iter+0xdc/0x210 [ 85.568905][ T7398] vfs_write+0x5ae/0x1150 [ 85.569997][ T7398] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 85.571427][ T7398] ? __pfx_vfs_write+0x10/0x10 [ 85.572617][ T7398] ? __fget_files+0x40/0x3a0 [ 85.573828][ T7398] ksys_write+0x12b/0x250 [ 85.574939][ T7398] ? __pfx_ksys_write+0x10/0x10 [ 85.576151][ T7398] ? rcu_is_watching+0x12/0xc0 [ 85.577347][ T7398] __do_fast_syscall_32+0x73/0x120 [ 85.578630][ T7398] do_fast_syscall_32+0x32/0x80 [ 85.579886][ T7398] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 85.581422][ T7398] RIP: 0023:0xf7fb8579 [ 85.582544][ T7398] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 85.587354][ T7398] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 85.589434][ T7398] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000440 [ 85.591423][ T7398] RDX: 00000000000000d6 RSI: 0000000000000000 RDI: 0000000000000000 [ 85.593454][ T7398] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 85.595554][ T7398] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 85.597572][ T7398] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 85.599564][ T7398] [ 85.632481][ T7405] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes. [ 86.399533][ T7416] netlink: 4 bytes leftover after parsing attributes in process `syz.2.382'. [ 86.553122][ T7420] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 86.555864][ T7420] overlayfs: failed to set xattr on upper [ 86.558894][ T7420] overlayfs: ...falling back to redirect_dir=nofollow. [ 86.562416][ T7420] overlayfs: ...falling back to index=off. [ 86.566915][ T7420] overlayfs: ...falling back to uuid=null. [ 86.598903][ T7422] Invalid option length (1025206) for dns_resolver key [ 86.637025][ T7429] trusted_key: encrypted_key: insufficient parameters specified [ 86.816736][ T7439] 9pnet_fd: p9_fd_create_unix (7439): address too long: ./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 87.414919][ T5981] usb 8-1: USB disconnect, device number 6 [ 87.606971][ T7455] trusted_key: encrypted_key: insufficient parameters specified [ 87.667743][ T7459] Invalid option length (1025206) for dns_resolver key [ 87.828911][ T7463] kAFS: No cell specified [ 88.476883][ T7482] trusted_key: encrypted_key: insufficient parameters specified [ 88.502974][ T7484] SET target dimension over the limit! [ 89.327298][ T7505] FAULT_INJECTION: forcing a failure. [ 89.327298][ T7505] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 89.330599][ T7505] CPU: 1 UID: 0 PID: 7505 Comm: syz.3.413 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0 [ 89.333222][ T7505] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 89.335995][ T7505] Call Trace: [ 89.336837][ T7505] [ 89.337582][ T7505] dump_stack_lvl+0x16c/0x1f0 [ 89.338791][ T7505] should_fail_ex+0x497/0x5b0 [ 89.340006][ T7505] _copy_from_iter+0x29b/0x1400 [ 89.341239][ T7505] ? trace_lock_acquire+0x14e/0x1f0 [ 89.342540][ T7505] ? __virt_addr_valid+0x1a4/0x590 [ 89.343843][ T7505] ? __pfx__copy_from_iter+0x10/0x10 [ 89.345165][ T7505] ? __virt_addr_valid+0x1a4/0x590 [ 89.346443][ T7505] ? __virt_addr_valid+0x5e/0x590 [ 89.347695][ T7505] ? __phys_addr_symbol+0x30/0x80 [ 89.349009][ T7505] ? __check_object_size+0x488/0x710 [ 89.350374][ T7505] skb_copy_datagram_from_iter+0x124/0x710 [ 89.351907][ T7505] ? __pfx_lock_release+0x10/0x10 [ 89.353127][ T7505] ? trace_lock_acquire+0x14e/0x1f0 [ 89.354442][ T7505] ? iov_iter_advance+0x7d/0x6c0 [ 89.355842][ T7505] tun_get_user+0x197f/0x3e40 [ 89.357018][ T7505] ? __pfx_tun_get_user+0x10/0x10 [ 89.358281][ T7505] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 89.359704][ T7505] ? rcu_is_watching+0x12/0xc0 [ 89.360902][ T7505] ? lock_release+0x4e2/0x6f0 [ 89.362086][ T7505] ? __pfx_lock_release+0x10/0x10 [ 89.363393][ T7505] ? tun_get+0x30/0x370 [ 89.364438][ T7505] ? lock_acquire+0x2f/0xb0 [ 89.365581][ T7505] ? tun_get+0x30/0x370 [ 89.366624][ T7505] tun_chr_write_iter+0xdc/0x210 [ 89.367883][ T7505] vfs_write+0x5ae/0x1150 [ 89.368968][ T7505] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 89.370344][ T7505] ? __pfx_vfs_write+0x10/0x10 [ 89.371575][ T7505] ? __fget_files+0x40/0x3a0 [ 89.372745][ T7505] ksys_write+0x12b/0x250 [ 89.373843][ T7505] ? __pfx_ksys_write+0x10/0x10 [ 89.375118][ T7505] ? rcu_is_watching+0x12/0xc0 [ 89.376362][ T7505] __do_fast_syscall_32+0x73/0x120 [ 89.377698][ T7505] do_fast_syscall_32+0x32/0x80 [ 89.378973][ T7505] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 89.380605][ T7505] RIP: 0023:0xf70de579 [ 89.381822][ T7505] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 89.386722][ T7505] RSP: 002b:00000000f50d055c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 89.388806][ T7505] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000440 [ 89.390765][ T7505] RDX: 00000000000000d6 RSI: 0000000000000000 RDI: 0000000000000000 [ 89.392773][ T7505] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 89.394754][ T7505] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 89.396758][ T7505] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 89.398731][ T7505] [ 89.419597][ T7509] trusted_key: encrypted_key: insufficient parameters specified [ 89.463037][ T7510] netlink: 4 bytes leftover after parsing attributes in process `syz.3.415'. [ 89.478517][ T7510] hsr_slave_1 (unregistering): left promiscuous mode [ 89.607793][ T7521] SET target dimension over the limit! [ 90.200410][ T7542] trusted_key: encrypted_key: insufficient parameters specified [ 90.335037][ T7550] SET target dimension over the limit! [ 90.617351][ T7533] syz.2.421 (7533) used greatest stack depth: 20544 bytes left [ 90.857731][ T7558] FAULT_INJECTION: forcing a failure. [ 90.857731][ T7558] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 90.860975][ T7558] CPU: 2 UID: 0 PID: 7558 Comm: syz.2.430 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0 [ 90.863612][ T7558] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 90.866275][ T7558] Call Trace: [ 90.867119][ T7558] [ 90.867853][ T7558] dump_stack_lvl+0x16c/0x1f0 [ 90.869009][ T7558] should_fail_ex+0x497/0x5b0 [ 90.870163][ T7558] _copy_to_user+0x32/0xd0 [ 90.871283][ T7558] simple_read_from_buffer+0xd0/0x160 [ 90.872633][ T7558] proc_fail_nth_read+0x198/0x270 [ 90.873912][ T7558] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 90.875306][ T7558] ? bpf_lsm_file_permission+0x9/0x10 [ 90.876637][ T7558] ? security_file_permission+0x71/0x210 [ 90.878030][ T7558] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 90.879415][ T7558] vfs_read+0x1df/0xbe0 [ 90.880449][ T7558] ? __fget_files+0x1fc/0x3a0 [ 90.881643][ T7558] ? __pfx___mutex_lock+0x10/0x10 [ 90.882921][ T7558] ? __pfx_vfs_read+0x10/0x10 [ 90.884115][ T7558] ? __fget_files+0x206/0x3a0 [ 90.885300][ T7558] ksys_read+0x12b/0x250 [ 90.886380][ T7558] ? __pfx_ksys_read+0x10/0x10 [ 90.887575][ T7558] ? rcu_is_watching+0x12/0xc0 [ 90.888792][ T7558] __do_fast_syscall_32+0x73/0x120 [ 90.890087][ T7558] do_fast_syscall_32+0x32/0x80 [ 90.891298][ T7558] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 90.892897][ T7558] RIP: 0023:0xf7fb8579 [ 90.893936][ T7558] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 90.898673][ T7558] RSP: 002b:00000000f5106590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 90.900748][ T7558] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5106620 [ 90.902778][ T7558] RDX: 000000000000000f RSI: 00000000f7443ff4 RDI: 0000000000000000 [ 90.904823][ T7558] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 90.906862][ T7558] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 90.908821][ T7558] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 90.910813][ T7558] [ 90.911623][ C2] vkms_vblank_simulate: vblank timer overrun [ 90.947817][ T7561] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 91.010965][ T7563] trusted_key: encrypted_key: insufficient parameters specified [ 91.204200][ T6306] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 91.364266][ T6306] usb 7-1: Using ep0 maxpacket: 8 [ 91.368451][ T6306] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 91.370894][ T6306] usb 7-1: config 246 descriptor has 1 excess byte, ignoring [ 91.372878][ T6306] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 91.375275][ T6306] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 91.378250][ T6306] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 91.381096][ T6306] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 91.383784][ T6306] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 91.388147][ T6306] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 91.390387][ T6306] usb 7-1: config 246 descriptor has 1 excess byte, ignoring [ 91.392217][ T6306] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 91.394595][ T6306] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 91.397538][ T6306] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 91.400320][ T6306] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 91.403005][ T6306] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 91.406358][ T6306] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 91.408584][ T6306] usb 7-1: config 246 descriptor has 1 excess byte, ignoring [ 91.410461][ T6306] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 91.412782][ T6306] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 91.415815][ T6306] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 91.418618][ T6306] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 91.421711][ T6306] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 91.427557][ T6306] usb 7-1: string descriptor 0 read error: -22 [ 91.429362][ T6306] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 91.431673][ T6306] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 91.438416][ T6306] adutux 7-1:246.0: ADU100 now attached to /dev/usb/adutux0 [ 91.793924][ T7576] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 92.062999][ T7588] PKCS7: Unknown OID: [4] 5.25.264.112.81.102.117 [ 92.065064][ T7588] PKCS7: Only support pkcs7_signedData type [ 92.087382][ T7591] SET target dimension over the limit! [ 92.259877][ T7596] trusted_key: encrypted_key: insufficient parameters specified [ 92.295145][ T7598] Invalid option length (1025206) for dns_resolver key [ 93.177169][ T7624] SET target dimension over the limit! [ 93.332343][ T7627] trusted_key: encrypted_key: insufficient parameters specified [ 93.356388][ T7618] syz.1.449 (7618) used greatest stack depth: 20256 bytes left [ 93.380270][ T7631] Invalid option length (1025206) for dns_resolver key [ 93.789166][ T25] usb 7-1: USB disconnect, device number 4 [ 93.891522][ T7652] Illegal XDP return value 4294967274 on prog (id 49) dev syz_tun, expect packet loss! [ 93.911003][ T7650] trusted_key: encrypted_key: insufficient parameters specified [ 94.128038][ T7663] netlink: 8 bytes leftover after parsing attributes in process `syz.0.465'. [ 94.320159][ T7672] SET target dimension over the limit! [ 94.342398][ T7674] Invalid option length (1025206) for dns_resolver key [ 94.589628][ T7685] trusted_key: encrypted_key: insufficient parameters specified [ 95.066389][ T7695] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 95.274752][ T7701] Invalid option length (1025206) for dns_resolver key [ 95.314199][ T30] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 95.415292][ T7709] netlink: 'syz.3.480': attribute type 4 has an invalid length. [ 95.428900][ T7711] SET target dimension over the limit! [ 95.431519][ T7709] netlink: 'syz.3.480': attribute type 4 has an invalid length. [ 95.484270][ T30] usb 5-1: Using ep0 maxpacket: 8 [ 95.490237][ T30] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 95.496072][ T30] usb 5-1: config 246 descriptor has 1 excess byte, ignoring [ 95.501597][ T30] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 95.506358][ T30] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 95.509940][ T30] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 95.513717][ T30] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 95.517381][ T30] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 95.521028][ T30] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 95.523456][ T30] usb 5-1: config 246 descriptor has 1 excess byte, ignoring [ 95.527177][ T30] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 95.530625][ T30] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 95.535192][ T30] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 95.539358][ T30] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 95.543372][ T30] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 95.548859][ T30] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 95.552219][ T30] usb 5-1: config 246 descriptor has 1 excess byte, ignoring [ 95.555130][ T30] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 95.557623][ T30] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 95.560743][ T30] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 95.563794][ T30] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 95.567171][ T30] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 95.572114][ T30] usb 5-1: string descriptor 0 read error: -22 [ 95.574034][ T30] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 95.576753][ T30] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 95.583606][ T30] adutux 5-1:246.0: ADU100 now attached to /dev/usb/adutux0 [ 95.627355][ T7717] trusted_key: encrypted_key: insufficient parameters specified [ 95.894821][ T7731] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 96.269322][ T7743] trusted_key: encrypted_key: insufficient parameters specified [ 96.312284][ T7747] SET target dimension over the limit! [ 97.151200][ T7769] trusted_key: encrypted_key: insufficient parameters specified [ 97.587742][ T7783] Invalid option length (1025206) for dns_resolver key [ 97.828882][ T1322] usb 5-1: USB disconnect, device number 2 [ 98.313909][ T7799] trusted_key: encrypted_key: insufficient parameters specified [ 98.418939][ T7808] Invalid option length (1025206) for dns_resolver key [ 99.039234][ T7822] trusted_key: encrypted_key: insufficient parameters specified [ 99.204746][ T7829] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 99.318242][ T7835] netlink: 12 bytes leftover after parsing attributes in process `syz.3.523'. [ 99.344634][ T7837] Invalid option length (1025206) for dns_resolver key [ 99.459654][ T7841] netlink: 45 bytes leftover after parsing attributes in process `syz.3.525'. [ 99.464161][ T6000] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 99.534661][ T7843] overlayfs: failed to resolve './file1': -2 [ 99.558602][ T7845] trusted_key: encrypted_key: insufficient parameters specified [ 99.624211][ T6000] usb 7-1: Using ep0 maxpacket: 8 [ 99.628728][ T6000] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 99.631511][ T6000] usb 7-1: config 246 descriptor has 1 excess byte, ignoring [ 99.736414][ T6000] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 99.827285][ T6000] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 99.837374][ T6000] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 99.847079][ T6000] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 99.857631][ T6000] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 99.988045][ T6000] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 99.990417][ T6000] usb 7-1: config 246 descriptor has 1 excess byte, ignoring [ 99.992310][ T6000] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 99.994682][ T6000] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 99.997768][ T6000] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 100.000665][ T6000] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 100.003446][ T6000] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 100.008330][ T6000] usb 7-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 100.011046][ T6000] usb 7-1: config 246 descriptor has 1 excess byte, ignoring [ 100.012946][ T6000] usb 7-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 100.015328][ T6000] usb 7-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 100.018242][ T6000] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 100.020947][ T6000] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 100.023697][ T6000] usb 7-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 100.030554][ T6000] usb 7-1: string descriptor 0 read error: -22 [ 100.032333][ T6000] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 100.033580][ T7856] netlink: 12 bytes leftover after parsing attributes in process `syz.0.532'. [ 100.034746][ T6000] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 100.060224][ T6000] adutux 7-1:246.0: ADU100 now attached to /dev/usb/adutux0 [ 100.093647][ T7859] Invalid option length (1025206) for dns_resolver key [ 100.231606][ T7865] overlayfs: failed to resolve './file1': -2 [ 100.251080][ T7867] trusted_key: encrypted_key: insufficient parameters specified [ 100.382149][ T7872] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 100.571001][ T57] usb 7-1: USB disconnect, device number 5 [ 100.713592][ T7883] netlink: 12 bytes leftover after parsing attributes in process `syz.0.541'. [ 100.741976][ T39] audit: type=1326 audit(1734827328.285:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7886 comm="syz.0.543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 100.747673][ T39] audit: type=1326 audit(1734827328.285:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7886 comm="syz.0.543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 100.752949][ T39] audit: type=1326 audit(1734827328.285:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7886 comm="syz.0.543" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 100.758966][ T7888] capability: warning: `syz.0.543' uses deprecated v2 capabilities in a way that may be insecure [ 100.760750][ T39] audit: type=1326 audit(1734827328.285:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7886 comm="syz.0.543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 100.767298][ T39] audit: type=1326 audit(1734827328.285:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7886 comm="syz.0.543" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 100.772609][ T39] audit: type=1326 audit(1734827328.285:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7886 comm="syz.0.543" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 100.778021][ T39] audit: type=1326 audit(1734827328.285:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7886 comm="syz.0.543" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 100.783737][ T39] audit: type=1326 audit(1734827328.285:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7886 comm="syz.0.543" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 100.792843][ T39] audit: type=1326 audit(1734827328.285:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7886 comm="syz.0.543" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 100.798190][ T39] audit: type=1326 audit(1734827328.285:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7886 comm="syz.0.543" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 100.839592][ T7892] Invalid option length (1025206) for dns_resolver key [ 100.921130][ T7896] trusted_key: encrypted_key: insufficient parameters specified [ 101.091110][ T7902] overlayfs: failed to resolve './file1': -2 [ 101.469461][ T7909] binder: Unknown parameter 'dont_hash' [ 102.018693][ T7918] Invalid option length (1025206) for dns_resolver key [ 102.140243][ T7923] trusted_key: encrypted_key: insufficient parameters specified [ 102.170384][ T7925] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 102.464297][ T6000] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 102.466766][ T7930] overlayfs: failed to resolve './file0': -2 [ 102.634203][ T6000] usb 8-1: Using ep0 maxpacket: 8 [ 102.636664][ T6000] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 102.638912][ T6000] usb 8-1: config 246 descriptor has 1 excess byte, ignoring [ 102.640765][ T6000] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 102.643071][ T6000] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 102.646159][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 102.648921][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 102.651632][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 102.655529][ T6000] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 102.657728][ T6000] usb 8-1: config 246 descriptor has 1 excess byte, ignoring [ 102.659581][ T6000] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 102.661798][ T6000] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 102.665784][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 102.668703][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 102.671408][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 102.674593][ T6000] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 102.676783][ T6000] usb 8-1: config 246 descriptor has 1 excess byte, ignoring [ 102.678612][ T6000] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 102.680965][ T6000] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 102.683769][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 102.686652][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 102.689347][ T6000] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 102.695484][ T6000] usb 8-1: string descriptor 0 read error: -22 [ 102.702775][ T6000] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 102.705357][ T6000] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 102.711608][ T6000] adutux 8-1:246.0: ADU100 now attached to /dev/usb/adutux0 [ 102.845040][ T7946] trusted_key: encrypted_key: insufficient parameters specified [ 103.024916][ T7954] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 103.530027][ T7959] overlayfs: failed to resolve './file0': -2 [ 103.782727][ T7977] trusted_key: encrypted_key: insufficient parameters specified [ 103.828247][ T7983] overlayfs: failed to resolve './file0': -2 [ 104.422803][ T8007] trusted_key: encrypted_key: insufficient parameters specified [ 104.970300][ T25] usb 8-1: USB disconnect, device number 7 [ 104.988423][ T8016] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 105.386686][ T8034] FAULT_INJECTION: forcing a failure. [ 105.386686][ T8034] name failslab, interval 1, probability 0, space 0, times 0 [ 105.390147][ T8034] CPU: 1 UID: 0 PID: 8034 Comm: syz.2.593 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0 [ 105.392875][ T8034] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 105.395676][ T8034] Call Trace: [ 105.396562][ T8034] [ 105.397335][ T8034] dump_stack_lvl+0x16c/0x1f0 [ 105.398614][ T8034] should_fail_ex+0x497/0x5b0 [ 105.399848][ T8034] ? fs_reclaim_acquire+0xae/0x150 [ 105.401180][ T8034] should_failslab+0xc2/0x120 [ 105.402419][ T8034] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 105.403829][ T8034] ? vm_area_dup+0x21/0x300 [ 105.405022][ T8034] vm_area_dup+0x21/0x300 [ 105.406168][ T8034] __split_vma+0x181/0x1210 [ 105.407364][ T8034] ? __pfx_lock_release+0x10/0x10 [ 105.408712][ T8034] ? trace_lock_acquire+0x14e/0x1f0 [ 105.410074][ T8034] ? __pfx___split_vma+0x10/0x10 [ 105.411364][ T8034] ? search_extable+0x83/0xb0 [ 105.412608][ T8034] ? __pfx_search_extable+0x10/0x10 [ 105.413938][ T8034] ? copy_from_user_nofault+0xe9/0x1a0 [ 105.415294][ T8034] vms_gather_munmap_vmas+0x1c3/0x1730 [ 105.416664][ T8034] ? fixup_exception+0x10c/0xaf0 [ 105.417989][ T8034] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 105.419491][ T8034] ? __bad_area_nosemaphore+0x390/0x6a0 [ 105.420905][ T8034] ? rcu_is_watching+0x12/0xc0 [ 105.422164][ T8034] ? do_user_addr_fault+0x920/0x13f0 [ 105.423575][ T8034] ? __pfx__kstrtoull+0x10/0x10 [ 105.424844][ T8034] do_vmi_align_munmap+0x27f/0x890 [ 105.426399][ T8034] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 105.428368][ T8034] ? mtree_load+0x30a/0xa40 [ 105.429663][ T8034] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 105.431205][ T8034] do_vmi_munmap+0x20b/0x3e0 [ 105.432414][ T8034] __do_sys_mremap+0x388/0x15e0 [ 105.433754][ T8034] ? __pfx___do_sys_mremap+0x10/0x10 [ 105.435208][ T8034] ? __pfx___schedule+0x10/0x10 [ 105.436478][ T8034] ? __fget_files+0x206/0x3a0 [ 105.437704][ T8034] ? rcu_is_watching+0x12/0xc0 [ 105.438984][ T8034] __do_fast_syscall_32+0x73/0x120 [ 105.440307][ T8034] do_fast_syscall_32+0x32/0x80 [ 105.441573][ T8034] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 105.443220][ T8034] RIP: 0023:0xf7fb8579 [ 105.444280][ T8034] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 105.449248][ T8034] RSP: 002b:00000000f50e555c EFLAGS: 00000296 ORIG_RAX: 00000000000000a3 [ 105.451399][ T8034] RAX: ffffffffffffffda RBX: 0000000020400000 RCX: 0000000000c00000 [ 105.453356][ T8034] RDX: 0000000000001000 RSI: 0000000000000000 RDI: 00000000208b5000 [ 105.455306][ T8034] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 105.457295][ T8034] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 105.459447][ T8034] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 105.461561][ T8034] [ 105.519353][ T8037] trusted_key: encrypted_key: insufficient parameters specified [ 105.758913][ T8048] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 106.156940][ T8061] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 106.494228][ T6000] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 106.597413][ T39] kauditd_printk_skb: 115 callbacks suppressed [ 106.597424][ T39] audit: type=1326 audit(1734827334.145:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8090 comm="syz.3.617" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 106.604827][ T39] audit: type=1326 audit(1734827334.145:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8090 comm="syz.3.617" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 106.610306][ T39] audit: type=1326 audit(1734827334.145:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8090 comm="syz.3.617" exe="/syz-executor" sig=0 arch=40000003 syscall=276 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 106.617119][ T39] audit: type=1326 audit(1734827334.145:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8090 comm="syz.3.617" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 106.622583][ T39] audit: type=1326 audit(1734827334.145:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8090 comm="syz.3.617" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000 [ 106.647291][ T6000] usb 5-1: Using ep0 maxpacket: 8 [ 106.654543][ T6000] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 106.656879][ T6000] usb 5-1: config 246 descriptor has 1 excess byte, ignoring [ 106.658848][ T6000] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 106.661252][ T6000] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 106.664378][ T6000] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 106.667248][ T6000] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 106.670108][ T6000] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 106.673361][ T6000] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 106.676313][ T6000] usb 5-1: config 246 descriptor has 1 excess byte, ignoring [ 106.678300][ T6000] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 106.680636][ T6000] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 106.683628][ T6000] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 106.686685][ T6000] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 106.689548][ T6000] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 106.692914][ T6000] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32 [ 106.695652][ T6000] usb 5-1: config 246 descriptor has 1 excess byte, ignoring [ 106.697591][ T6000] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42 [ 106.700061][ T6000] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF [ 106.703047][ T6000] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11 [ 106.706449][ T6000] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 106.709353][ T6000] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 106.714096][ T6000] usb 5-1: string descriptor 0 read error: -22 [ 106.716187][ T6000] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 106.718649][ T6000] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 106.722867][ T6000] adutux 5-1:246.0: ADU100 now attached to /dev/usb/adutux0 [ 106.872461][ T8133] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 106.877046][ T8133] kvm: pic: level sensitive irq not supported [ 106.877316][ T8133] kvm: pic: non byte read [ 106.881131][ T8133] kvm: pic: level sensitive irq not supported [ 106.881356][ T8133] kvm: pic: non byte read [ 106.886402][ T8133] kvm: pic: level sensitive irq not supported [ 106.886625][ T8133] kvm: pic: non byte read [ 106.890288][ T8133] kvm: pic: level sensitive irq not supported [ 106.890523][ T8133] kvm: pic: non byte read [ 106.914258][ T1322] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 107.025807][ T8141] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 107.045159][ T8145] netlink: 'syz.3.637': attribute type 4 has an invalid length. [ 107.048905][ T8147] netlink: 16 bytes leftover after parsing attributes in process `syz.2.638'. [ 107.049687][ T8145] netlink: 'syz.3.637': attribute type 4 has an invalid length. [ 107.051223][ T8147] netlink: 12 bytes leftover after parsing attributes in process `syz.2.638'. [ 107.051233][ T8147] netlink: 8 bytes leftover after parsing attributes in process `syz.2.638'. [ 107.064351][ T976] kernel write not supported for file /478/attr/current (pid: 976 comm: kworker/2:2) [ 107.068826][ T1322] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 107.071573][ T1322] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 107.075788][ T1322] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 107.078173][ T1322] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 107.080263][ T1322] usb 6-1: SerialNumber: syz [ 107.285375][ T1322] usb 6-1: 0:2 : does not exist [ 107.288530][ T1322] usb 6-1: 5:0: failed to get current value for ch 0 (-22) [ 107.298201][ T1322] usb 6-1: USB disconnect, device number 2 [ 107.314279][ T57] usb 8-1: new high-speed USB device number 8 using dummy_hcd [ 107.464566][ T5954] udevd[5954]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 107.474259][ T57] usb 8-1: Using ep0 maxpacket: 16 [ 107.474375][ T5981] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 107.476906][ T57] usb 8-1: config 0 has an invalid interface number: 8 but max is 0 [ 107.479644][ T57] usb 8-1: config 0 has no interface number 0 [ 107.481216][ T57] usb 8-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 107.485087][ T57] usb 8-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 107.487404][ T57] usb 8-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 107.489640][ T57] usb 8-1: Product: syz [ 107.490754][ T57] usb 8-1: SerialNumber: syz [ 107.492492][ T57] usb 8-1: config 0 descriptor?? [ 107.494893][ T57] cm109 8-1:0.8: invalid payload size 2, expected 4 [ 107.496986][ T57] input: CM109 USB driver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.8/input/input13 [ 107.635543][ T5981] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 107.637660][ T5981] usb 7-1: config 0 has no interface number 0 [ 107.639244][ T5981] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 107.642067][ T5981] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 107.644624][ T5981] usb 7-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00 [ 107.646935][ T5981] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 107.649524][ T5981] usb 7-1: config 0 descriptor?? [ 107.897555][ C3] cm109 8-1:0.8: cm109_urb_irq_callback: urb status -71 [ 107.899412][ C3] ------------[ cut here ]------------ [ 107.900826][ C3] URB ffff8880261c2800 submitted while active [ 107.902672][ C3] WARNING: CPU: 3 PID: 8150 at drivers/usb/core/urb.c:379 usb_submit_urb+0x14da/0x1730 [ 107.905196][ C3] Modules linked in: [ 107.906325][ C3] CPU: 3 UID: 0 PID: 8150 Comm: syz.3.640 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0 [ 107.910354][ C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 107.913092][ C3] RIP: 0010:usb_submit_urb+0x14da/0x1730 [ 107.914583][ C3] Code: fd eb cb bb fe ff ff ff e9 c1 f3 ff ff e8 ee 4a b7 fa c6 05 2f 90 23 09 01 90 48 c7 c7 40 41 0d 8c 48 89 de e8 17 11 78 fa 90 <0f> 0b 90 90 e9 b6 fe ff ff bb f8 ff ff ff e9 91 f3 ff ff 48 89 ef [ 107.919525][ C3] RSP: 0018:ffffc900005f8a90 EFLAGS: 00010082 [ 107.921107][ C3] RAX: 0000000000000000 RBX: ffff8880261c2800 RCX: ffffffff815a16c9 [ 107.923166][ C3] RDX: ffff8880262d8000 RSI: ffffffff815a16d6 RDI: 0000000000000001 [ 107.925233][ C3] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 107.927328][ C3] R10: 0000000000000000 R11: 6666666620425255 R12: 0000000000000046 [ 107.929374][ C3] R13: ffff8880683b2058 R14: 000000000000000f R15: 0000000000000001 [ 107.931438][ C3] FS: 0000000000000000(0000) GS:ffff88802b700000(0063) knlGS:0000000056885440 [ 107.933745][ C3] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 107.935469][ C3] CR2: 0000000000000000 CR3: 00000000226d0000 CR4: 0000000000352ef0 [ 107.937529][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 107.939598][ C3] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 107.941634][ C3] Call Trace: [ 107.942514][ C3] [ 107.943278][ C3] ? __warn+0xea/0x3c0 [ 107.944345][ C3] ? usb_submit_urb+0x14da/0x1730 [ 107.945658][ C3] ? report_bug+0x3c0/0x580 [ 107.946858][ C3] ? handle_bug+0x54/0xa0 [ 107.947987][ C3] ? exc_invalid_op+0x17/0x50 [ 107.949219][ C3] ? asm_exc_invalid_op+0x1a/0x20 [ 107.950546][ C3] ? __warn_printk+0x199/0x350 [ 107.951795][ C3] ? __warn_printk+0x1a6/0x350 [ 107.953051][ C3] ? usb_submit_urb+0x14da/0x1730 [ 107.954399][ C3] ? lock_acquire+0x2f/0xb0 [ 107.955586][ C3] ? cm109_urb_irq_callback+0xed/0xb60 [ 107.957002][ C3] cm109_urb_irq_callback+0x2e7/0xb60 [ 107.958402][ C3] ? usb_hcd_unmap_urb_for_dma+0x109/0x6b0 [ 107.959915][ C3] ? dummy_timer+0x1403/0x36a0 [ 107.961165][ C3] __usb_hcd_giveback_urb+0x389/0x6e0 [ 107.962570][ C3] usb_hcd_giveback_urb+0x396/0x450 [ 107.963935][ C3] dummy_timer+0x1412/0x36a0 [ 107.965141][ C3] ? rcu_is_watching+0x12/0xc0 [ 107.966392][ C3] ? debug_object_deactivate+0x1ef/0x370 [ 107.967851][ C3] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 107.969242][ C3] ? lock_acquire+0x2f/0xb0 [ 107.970421][ C3] ? do_raw_spin_unlock+0x172/0x230 [ 107.971763][ C3] ? rcu_is_watching+0x12/0xc0 [ 107.973009][ C3] ? __pfx_dummy_timer+0x10/0x10 [ 107.974324][ C3] ? rcu_is_watching+0x12/0xc0 [ 107.975571][ C3] ? trace_irq_enable.constprop.0+0xea/0x140 [ 107.977131][ C3] ? __pfx_dummy_timer+0x10/0x10 [ 107.978427][ C3] __hrtimer_run_queues+0x20a/0xae0 [ 107.979790][ C3] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 107.981260][ C3] ? read_tsc+0x9/0x20 [ 107.982335][ C3] hrtimer_run_softirq+0x17d/0x350 [ 107.983684][ C3] handle_softirqs+0x213/0x8f0 [ 107.984932][ C3] ? __pfx_handle_softirqs+0x10/0x10 [ 107.986309][ C3] __irq_exit_rcu+0x109/0x170 [ 107.987533][ C3] irq_exit_rcu+0x9/0x30 [ 107.988647][ C3] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 107.990104][ C3] [ 107.990879][ C3] [ 107.991653][ C3] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 107.993219][ C3] RIP: 0010:arch_stack_walk+0x12/0x100 [ 107.994639][ C3] Code: ff ff ff 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 55 48 89 e5 41 57 49 89 d7 41 56 49 89 ce 0c 00 00 00 41 55 49 89 f5 41 54 49 89 fc 53 48 8d 9d 70 ff ff [ 107.999589][ C3] RSP: 0018:ffffc900242ef8b8 EFLAGS: 00000202 [ 108.001150][ C3] RAX: 0000000100000000 RBX: fffff5200485df1b RCX: 0000000000000000 [ 108.003211][ C3] RDX: ffff8880262d8000 RSI: ffffc900242ef8f8 RDI: ffffffff81852de0 [ 108.005245][ C3] RBP: ffffc900242ef8c8 R08: 0000000000000080 R09: 0000000000000000 [ 108.007301][ C3] R10: ffffed10097f6ae0 R11: 00000000000a201e R12: 0000000000000001 [ 108.009344][ C3] R13: 0000000000000000 R14: 0000000000000000 R15: ffff8880262d8000 [ 108.011374][ C3] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 108.012968][ C3] stack_trace_save+0x95/0xd0 [ 108.014207][ C3] ? __pfx_stack_trace_save+0x10/0x10 [ 108.015602][ C3] ? kasan_save_stack+0x42/0x60 [ 108.016870][ C3] ? kasan_save_stack+0x33/0x60 [ 108.018141][ C3] ? kasan_save_track+0x14/0x30 [ 108.019412][ C3] ? kasan_save_free_info+0x3b/0x60 [ 108.020760][ C3] ? __kasan_slab_free+0x51/0x70 [ 108.022050][ C3] ? kmem_cache_free+0x152/0x4c0 [ 108.023362][ C3] kasan_save_stack+0x33/0x60 [ 108.024636][ C3] kasan_save_track+0x14/0x30 [ 108.025909][ C3] kasan_save_free_info+0x3b/0x60 [ 108.027220][ C3] __kasan_slab_free+0x51/0x70 [ 108.028483][ C3] kfree+0x14f/0x4b0 [ 108.029505][ C3] ? kobject_uevent_env+0x2df/0x1670 [ 108.030903][ C3] kobject_uevent_env+0x2df/0x1670 [ 108.032241][ C3] ? gadget_unbind_driver+0x370/0x4e0 [ 108.033656][ C3] ? __pfx_dummy_udc_async_callbacks+0x10/0x10 [ 108.035258][ C3] ? __pfx_gadget_unbind_driver+0x10/0x10 [ 108.036728][ C3] device_remove+0xc8/0x170 [ 108.037924][ C3] device_release_driver_internal+0x44a/0x610 [ 108.039493][ C3] driver_detach+0xd8/0x1b0 [ 108.040674][ C3] ? __pfx_raw_release+0x10/0x10 [ 108.041964][ C3] bus_remove_driver+0x13b/0x2c0 [ 108.043280][ C3] driver_unregister+0x76/0xb0 [ 108.044531][ C3] usb_gadget_unregister_driver+0x49/0x70 [ 108.046015][ C3] raw_release+0x1ae/0x2b0 [ 108.047176][ C3] __fput+0x3f8/0xb60 [ 108.048220][ C3] task_work_run+0x14e/0x250 [ 108.049439][ C3] ? __pfx_task_work_run+0x10/0x10 [ 108.050841][ C3] ? __pfx___do_sys_close_range+0x10/0x10 [ 108.052323][ C3] ? rcu_is_watching+0x12/0xc0 [ 108.053609][ C3] syscall_exit_to_user_mode+0x27b/0x2a0 [ 108.055076][ C3] __do_fast_syscall_32+0x80/0x120 [ 108.056424][ C3] do_fast_syscall_32+0x32/0x80 [ 108.057720][ C3] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 108.059444][ C3] RIP: 0023:0xf70de579 [ 108.060577][ C3] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 108.065562][ C3] RSP: 002b:00000000ffab1e8c EFLAGS: 00000202 ORIG_RAX: 00000000000001b4 [ 108.067714][ C3] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 000000000000001e [ 108.069770][ C3] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 108.071826][ C3] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 108.073890][ C3] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 108.075927][ C3] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 108.077987][ C3] [ 108.078804][ C3] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 108.080684][ C3] CPU: 3 UID: 0 PID: 8150 Comm: syz.3.640 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0 [ 108.083426][ C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 108.086189][ C3] Call Trace: [ 108.087065][ C3] [ 108.087821][ C3] dump_stack_lvl+0x3d/0x1f0 [ 108.089040][ C3] panic+0x71d/0x800 [ 108.090079][ C3] ? __pfx_panic+0x10/0x10 [ 108.091250][ C3] ? show_trace_log_lvl+0x29d/0x3d0 [ 108.092696][ C3] ? check_panic_on_warn+0x1f/0xb0 [ 108.094060][ C3] ? usb_submit_urb+0x14da/0x1730 [ 108.095371][ C3] check_panic_on_warn+0xab/0xb0 [ 108.096666][ C3] __warn+0xf6/0x3c0 [ 108.097694][ C3] ? usb_submit_urb+0x14da/0x1730 [ 108.099041][ C3] report_bug+0x3c0/0x580 [ 108.100222][ C3] handle_bug+0x54/0xa0 [ 108.101349][ C3] exc_invalid_op+0x17/0x50 [ 108.102550][ C3] asm_exc_invalid_op+0x1a/0x20 [ 108.103855][ C3] RIP: 0010:usb_submit_urb+0x14da/0x1730 [ 108.105307][ C3] Code: fd eb cb bb fe ff ff ff e9 c1 f3 ff ff e8 ee 4a b7 fa c6 05 2f 90 23 09 01 90 48 c7 c7 40 41 0d 8c 48 89 de e8 17 11 78 fa 90 <0f> 0b 90 90 e9 b6 fe ff ff bb f8 ff ff ff e9 91 f3 ff ff 48 89 ef [ 108.110280][ C3] RSP: 0018:ffffc900005f8a90 EFLAGS: 00010082 [ 108.111854][ C3] RAX: 0000000000000000 RBX: ffff8880261c2800 RCX: ffffffff815a16c9 [ 108.113935][ C3] RDX: ffff8880262d8000 RSI: ffffffff815a16d6 RDI: 0000000000000001 [ 108.115975][ C3] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 108.118026][ C3] R10: 0000000000000000 R11: 6666666620425255 R12: 0000000000000046 [ 108.120063][ C3] R13: ffff8880683b2058 R14: 000000000000000f R15: 0000000000000001 [ 108.122112][ C3] ? __warn_printk+0x199/0x350 [ 108.123362][ C3] ? __warn_printk+0x1a6/0x350 [ 108.124615][ C3] ? lock_acquire+0x2f/0xb0 [ 108.125799][ C3] ? cm109_urb_irq_callback+0xed/0xb60 [ 108.127233][ C3] cm109_urb_irq_callback+0x2e7/0xb60 [ 108.128642][ C3] ? usb_hcd_unmap_urb_for_dma+0x109/0x6b0 [ 108.130161][ C3] ? dummy_timer+0x1403/0x36a0 [ 108.131414][ C3] __usb_hcd_giveback_urb+0x389/0x6e0 [ 108.132828][ C3] usb_hcd_giveback_urb+0x396/0x450 [ 108.134212][ C3] dummy_timer+0x1412/0x36a0 [ 108.135425][ C3] ? rcu_is_watching+0x12/0xc0 [ 108.136691][ C3] ? debug_object_deactivate+0x1ef/0x370 [ 108.138184][ C3] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 108.139601][ C3] ? lock_acquire+0x2f/0xb0 [ 108.140798][ C3] ? do_raw_spin_unlock+0x172/0x230 [ 108.142217][ C3] ? rcu_is_watching+0x12/0xc0 [ 108.143516][ C3] ? __pfx_dummy_timer+0x10/0x10 [ 108.144836][ C3] ? rcu_is_watching+0x12/0xc0 [ 108.146089][ C3] ? trace_irq_enable.constprop.0+0xea/0x140 [ 108.147647][ C3] ? __pfx_dummy_timer+0x10/0x10 [ 108.148977][ C3] __hrtimer_run_queues+0x20a/0xae0 [ 108.150354][ C3] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 108.151892][ C3] ? read_tsc+0x9/0x20 [ 108.152961][ C3] hrtimer_run_softirq+0x17d/0x350 [ 108.154321][ C3] handle_softirqs+0x213/0x8f0 [ 108.155609][ C3] ? __pfx_handle_softirqs+0x10/0x10 [ 108.156978][ C3] __irq_exit_rcu+0x109/0x170 [ 108.158217][ C3] irq_exit_rcu+0x9/0x30 [ 108.159322][ C3] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 108.160776][ C3] [ 108.161549][ C3] [ 108.162329][ C3] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 108.163904][ C3] RIP: 0010:arch_stack_walk+0x12/0x100 [ 108.165317][ C3] Code: ff ff ff 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 55 48 89 e5 41 57 49 89 d7 41 56 49 89 ce 0c 00 00 00 41 55 49 89 f5 41 54 49 89 fc 53 48 8d 9d 70 ff ff [ 108.170301][ C3] RSP: 0018:ffffc900242ef8b8 EFLAGS: 00000202 [ 108.171879][ C3] RAX: 0000000100000000 RBX: fffff5200485df1b RCX: 0000000000000000 [ 108.173936][ C3] RDX: ffff8880262d8000 RSI: ffffc900242ef8f8 RDI: ffffffff81852de0 [ 108.175979][ C3] RBP: ffffc900242ef8c8 R08: 0000000000000080 R09: 0000000000000000 [ 108.178022][ C3] R10: ffffed10097f6ae0 R11: 00000000000a201e R12: 0000000000000001 [ 108.180065][ C3] R13: 0000000000000000 R14: 0000000000000000 R15: ffff8880262d8000 [ 108.182120][ C3] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 108.183739][ C3] stack_trace_save+0x95/0xd0 [ 108.184969][ C3] ? __pfx_stack_trace_save+0x10/0x10 [ 108.186372][ C3] ? kasan_save_stack+0x42/0x60 [ 108.187643][ C3] ? kasan_save_stack+0x33/0x60 [ 108.188919][ C3] ? kasan_save_track+0x14/0x30 [ 108.190193][ C3] ? kasan_save_free_info+0x3b/0x60 [ 108.191542][ C3] ? __kasan_slab_free+0x51/0x70 [ 108.192832][ C3] ? kmem_cache_free+0x152/0x4c0 [ 108.194135][ C3] kasan_save_stack+0x33/0x60 [ 108.195369][ C3] kasan_save_track+0x14/0x30 [ 108.196599][ C3] kasan_save_free_info+0x3b/0x60 [ 108.197913][ C3] __kasan_slab_free+0x51/0x70 [ 108.199165][ C3] kfree+0x14f/0x4b0 [ 108.200190][ C3] ? kobject_uevent_env+0x2df/0x1670 [ 108.201568][ C3] kobject_uevent_env+0x2df/0x1670 [ 108.202914][ C3] ? gadget_unbind_driver+0x370/0x4e0 [ 108.204331][ C3] ? __pfx_dummy_udc_async_callbacks+0x10/0x10 [ 108.205937][ C3] ? __pfx_gadget_unbind_driver+0x10/0x10 [ 108.207408][ C3] device_remove+0xc8/0x170 [ 108.208609][ C3] device_release_driver_internal+0x44a/0x610 [ 108.210191][ C3] driver_detach+0xd8/0x1b0 [ 108.211377][ C3] ? __pfx_raw_release+0x10/0x10 [ 108.212670][ C3] bus_remove_driver+0x13b/0x2c0 [ 108.213962][ C3] driver_unregister+0x76/0xb0 [ 108.215228][ C3] usb_gadget_unregister_driver+0x49/0x70 [ 108.216710][ C3] raw_release+0x1ae/0x2b0 [ 108.217881][ C3] __fput+0x3f8/0xb60 [ 108.218931][ C3] task_work_run+0x14e/0x250 [ 108.220144][ C3] ? __pfx_task_work_run+0x10/0x10 [ 108.221479][ C3] ? __pfx___do_sys_close_range+0x10/0x10 [ 108.222964][ C3] ? rcu_is_watching+0x12/0xc0 [ 108.224227][ C3] syscall_exit_to_user_mode+0x27b/0x2a0 [ 108.225682][ C3] __do_fast_syscall_32+0x80/0x120 [ 108.227022][ C3] do_fast_syscall_32+0x32/0x80 [ 108.228298][ C3] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 108.229946][ C3] RIP: 0023:0xf70de579 [ 108.231009][ C3] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 108.235963][ C3] RSP: 002b:00000000ffab1e8c EFLAGS: 00000202 ORIG_RAX: 00000000000001b4 [ 108.238119][ C3] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 000000000000001e [ 108.240158][ C3] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 108.242208][ C3] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 108.244258][ C3] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 108.246295][ C3] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 108.248343][ C3] [ 108.249546][ C3] Kernel Offset: disabled [ 108.250680][ C3] Rebooting in 86400 seconds.. VM DIAGNOSIS: 00:28:55 Registers: info registers vcpu 0 CPU#0 RAX=00000000008a1aac RBX=0000000000000000 RCX=ffffffff8b1a3819 RDX=ffffed1005686fee RSI=ffffffff8bb16e40 RDI=ffffffff81702e19 RBP=fffffbfff1b52ef8 RSP=ffffffff8da07e20 R8 =0000000000000000 R9 =ffffed1005686fed R10=ffff88802b437f6b R11=0000000000000000 R12=0000000000000000 R13=ffffffff8da977c0 R14=ffffffff901ce390 R15=0000000000000000 RIP=ffffffff8b1a4bff RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b400000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=000000004bd74000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f7413ff4 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=00000000008eafc4 RBX=0000000000000001 RCX=ffffffff8b1a3819 RDX=ffffed10056a6fee RSI=ffffffff8bb16e40 RDI=ffffffff81702e19 RBP=ffffed10039dc910 RSP=ffffc9000047fe08 R8 =0000000000000000 R9 =ffffed10056a6fed R10=ffff88802b537f6b R11=0000000000000000 R12=0000000000000001 R13=ffff88801cee4880 R14=ffffffff901ce390 R15=0000000000000000 RIP=ffffffff8b1a4bff RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b500000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=000000004e1b4000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=00000000002d36fc RBX=0000000000000002 RCX=ffffffff8b1a3819 RDX=ffffed10056c6fee RSI=ffffffff8bb16e40 RDI=ffffffff81702e19 RBP=ffffed10039df000 RSP=ffffc9000048fe08 R8 =0000000000000000 R9 =ffffed10056c6fed R10=ffff88802b637f6b R11=0000000000000000 R12=0000000000000002 R13=ffff88801cef8000 R14=ffffffff901ce390 R15=0000000000000000 RIP=ffffffff8b1a4bff RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=000000006a9e4000 CR4=00352ef0 DR0=0000000000000000 DR1=000000000000000a DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff851425f5 RDI=ffffffff9a6672c0 RBP=ffffffff9a667280 RSP=ffffc900005f83f8 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552033203a555043 R12=0000000000000000 R13=0000000000000020 R14=ffffffff85142590 R15=0000000000000000 RIP=ffffffff8514261f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=00000000226d0000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000