last executing test programs: 1m58.741775106s ago: executing program 2 (id=19403): r0 = landlock_create_ruleset(&(0x7f00000004c0)={0x0, 0x1}, 0x10, 0x0) landlock_add_rule$LANDLOCK_RULE_NET_PORT(r0, 0x2, &(0x7f0000000500)={0x1}, 0x0) landlock_restrict_self(r0, 0x0) landlock_restrict_self(r0, 0x0) 1m58.741554047s ago: executing program 2 (id=19404): r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x109801, 0x0) write$dsp(r0, &(0x7f0000000200)="2eec", 0x2) ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0) ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000300)=0x3) 1m58.638807909s ago: executing program 2 (id=19407): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0x11, 0xf, &(0x7f0000000200)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x703283d8d4b5ce77}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) ppoll(&(0x7f0000000900)=[{r0}], 0x1, &(0x7f0000000940)={0x77359400}, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000011c0)={&(0x7f0000000040)='hrtimer_init\x00', r1}, 0x10) 1m57.639829524s ago: executing program 2 (id=19439): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f0000000b00)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@call={0x85, 0x0, 0x0, 0xe}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='signal_generate\x00', r1}, 0x10) syz_open_procfs$namespace(0x0, 0xfffffffffffffffe) 1m57.639638093s ago: executing program 2 (id=19441): prctl$PR_SET_SECUREBITS(0x1c, 0x2c) setuid(0xee00) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x20) 1m57.576670192s ago: executing program 2 (id=19443): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x7, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}, 'macvlan1\x00'}}, 0x1e) sendmmsg(r0, &(0x7f0000001340)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000500)="ab", 0x1}], 0x1}}], 0x484, 0x24048084) recvmmsg(r0, &(0x7f0000009cc0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=""/238, 0xee}, 0xffffff00}, {{0x0, 0x0, 0x0}, 0xfffffff8}], 0x2, 0x40000000, &(0x7f0000009d80)={0x0, 0x3938700}) 1m41.334278481s ago: executing program 32 (id=19443): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x7, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}, 'macvlan1\x00'}}, 0x1e) sendmmsg(r0, &(0x7f0000001340)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000500)="ab", 0x1}], 0x1}}], 0x484, 0x24048084) recvmmsg(r0, &(0x7f0000009cc0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=""/238, 0xee}, 0xffffff00}, {{0x0, 0x0, 0x0}, 0xfffffff8}], 0x2, 0x40000000, &(0x7f0000009d80)={0x0, 0x3938700}) 1.770487464s ago: executing program 3 (id=22392): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) 1.484476608s ago: executing program 3 (id=22401): r0 = syz_io_uring_setup(0x466, &(0x7f0000000440)={0x0, 0x86ed, 0x10100, 0x2}, &(0x7f0000000280)=0x0, &(0x7f0000000140)=0x0) r3 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000680)={&(0x7f0000002280)=@sco, 0x80, 0x0}}) io_uring_enter(r0, 0x291c, 0x0, 0x0, 0x0, 0x0) 1.406972168s ago: executing program 3 (id=22406): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000b0a500007b8a00fe0000000087080000000000007b8af0ff00000000bda100000000000027000000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000004900000095"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f00000002c0)="c235535a17ac64791bbe00309033", 0x0, 0x7fffffff, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 458.915908ms ago: executing program 3 (id=22412): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140)) ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f00000000c0)=0x41) pwritev(r0, &(0x7f0000000040)=[{&(0x7f0000000180)="80fd02000040", 0x42}], 0x1, 0x0, 0x0) 366.084002ms ago: executing program 1 (id=22415): r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) setns(r1, 0x8020000) mount_setattr(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x8000, &(0x7f0000001dc0)={0x8, 0x70, 0x40000}, 0x20) 317.252477ms ago: executing program 3 (id=22417): r0 = syz_clone(0x80, 0x0, 0x0, 0x0, 0x0, 0x0) wait4(r0, 0x0, 0x80000000, 0x0) timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) 317.069716ms ago: executing program 1 (id=22418): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x3a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xf, 0x4, 0x8, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 315.913378ms ago: executing program 1 (id=22419): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x4, 0xffffffffffffffff}) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0x541b, 0x0) 250.06067ms ago: executing program 0 (id=22422): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='GPL\x00', 0x3, 0xd6, &(0x7f0000000100)=""/214, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x9, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x4}) r0 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000040), 0x2103, 0x0) ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000140)) 201.983623ms ago: executing program 4 (id=22423): capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000}) r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) r1 = openat$yama_ptrace_scope(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)={0x7000003b}) 201.817299ms ago: executing program 4 (id=22424): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c) setsockopt$packet_int(r0, 0x107, 0x7, &(0x7f0000000180)=0x8, 0x4) syz_emit_ethernet(0xfdef, &(0x7f0000001b80)=ANY=[@ANYBLOB="bbbbbbbbbbbbaa000000000090"], 0x0) 200.320336ms ago: executing program 0 (id=22425): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r1 = openat$cgroup_devices(r0, &(0x7f0000000080)='devices.deny\x00', 0x2, 0x0) write$cgroup_devices(r1, &(0x7f00000003c0)=ANY=[@ANYBLOB="622004"], 0x8) 149.598565ms ago: executing program 1 (id=22426): ioctl$VIDIOC_QUERYMENU(0xffffffffffffffff, 0xc02c5625, &(0x7f0000000180)={0x8000, 0xc5f7, @value}) r0 = add_key$user(&(0x7f0000000200), &(0x7f00000002c0)={'syz', 0x2}, &(0x7f0000000480)="a64547f02d24ef452b126e6b4ee0848331", 0x11, 0xffffffffffffffff) r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/80, 0x50, 0x0) 149.423087ms ago: executing program 0 (id=22427): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000000)='blkio.throttle.write_iops_device\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000300)=0x10001, 0x12) 149.247686ms ago: executing program 4 (id=22428): sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000400)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x12, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, 0x0}, 0x0) r0 = socket$kcm(0x2, 0x1, 0x84) setsockopt$sock_attach_bpf(r0, 0x84, 0x9, &(0x7f0000000380), 0x98) sendmsg$inet(r0, &(0x7f00000006c0)={&(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000000)="93", 0x34000}], 0x1}, 0x4040) 110.571795ms ago: executing program 1 (id=22429): mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x141) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"]) chdir(&(0x7f00000000c0)='./file0\x00') statx(0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', 0x2000, 0x80, &(0x7f0000000740)) 106.775618ms ago: executing program 4 (id=22430): r0 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000180)=@newqdisc={0x30, 0x24, 0xd0f, 0x470bd2d, 0xfffffffd, {0x60, 0x0, 0x0, r2, {0x0, 0xd}, {0xfff1, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}, 0x1, 0x0, 0x0, 0x24000040}, 0x44080) 83.014189ms ago: executing program 0 (id=22431): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw(serpent)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="3ef3f0fd995b20eeb291c5dc03555e9f", 0x10) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="ad733642561534f14257b6c5820fae9d", 0x10) 79.944895ms ago: executing program 1 (id=22432): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x800) sendmmsg$alg(r1, &(0x7f0000000640)=[{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000140)="b57523cb1a2c90d8acad2e2d98dfc9ea7a5843c3b63b683ced2b3266175599b779617e66e6b3e15c042be90635a2d36160bbf9a2edcacc0bbe015b84150a1928de94397894ff36aa430fc2a0814ba634308d6d0837250dfd1eca5383f9d151449743b1a0c4ffc51242a229c5d6d06f147a61d797ea7ffeda95b76f5623", 0x7d}, {&(0x7f00000001c0)="66f7", 0x3}, {&(0x7f0000000300)='l3', 0x7fffef80}], 0x3}], 0x1, 0x0) 32.038092ms ago: executing program 4 (id=22433): r0 = syz_open_dev$vim2m(&(0x7f0000000240), 0x41d3, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1}) ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000000)=0x1) ioctl$vim2m_VIDIOC_DQBUF(r0, 0xc044560f, &(0x7f0000000380)=@mmap={0x0, 0x1, 0x4, 0x0, 0x0, {0x77359400}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "37bb54f0"}}) 31.790942ms ago: executing program 0 (id=22434): madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r0 = openat$sysfs(0xffffff9c, &(0x7f0000000080)='/sys/power/pm_test', 0x0, 0x0) unshare(0x22020600) syz_clone3(&(0x7f0000000300)={0x385200080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) 13.591607ms ago: executing program 0 (id=22435): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x102}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8401, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 12.339635ms ago: executing program 3 (id=22436): r0 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0) r1 = socket(0x2b, 0x1, 0x0) ioctl$NBD_SET_SOCK(r0, 0xab00, r1) ioctl$NBD_DISCONNECT(r0, 0xab08) 0s ago: executing program 4 (id=22437): r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0) write$vga_arbiter(r0, &(0x7f0000000000)=@other={'lock', ' ', 'io+mem'}, 0xc) write$vga_arbiter(r0, &(0x7f0000000400)=@other={'lock', ' ', 'io+mem'}, 0xc) close(r0) kernel console output (not intermixed with test programs): . [ 433.105747][T13048] loop6: detected capacity change from 0 to 524287999 [ 433.112873][ C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 433.115555][ C2] Buffer I/O error on dev loop6, logical block 0, async page read [ 433.118769][ C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 433.121283][ C2] Buffer I/O error on dev loop6, logical block 0, async page read [ 433.124234][ C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 433.126748][ C2] Buffer I/O error on dev loop6, logical block 0, async page read [ 433.132077][ C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 433.134859][ C2] Buffer I/O error on dev loop6, logical block 0, async page read [ 433.137197][ C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 433.140489][ C2] Buffer I/O error on dev loop6, logical block 0, async page read [ 433.142975][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 433.145794][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 433.148520][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 433.151067][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 433.153891][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 433.156380][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 433.158547][T13048] ldm_validate_partition_table(): Disk read failed. [ 433.161374][ C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 433.164011][ C3] Buffer I/O error on dev loop6, logical block 0, async page read [ 433.166536][ C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 433.169078][ C3] Buffer I/O error on dev loop6, logical block 0, async page read [ 433.171638][T13048] Dev loop6: unable to read RDB block 0 [ 433.176981][T13048] loop6: unable to read partition table [ 433.178708][T13048] loop_reread_partitions: partition scan of loop6 (3 xC) failed (rc=-5) [ 433.229932][T13059] netlink: 20 bytes leftover after parsing attributes in process `syz.3.18849'. [ 433.264306][T13060] rtc_cmos 00:05: Alarms can be up to one day in the future [ 433.326282][T13071] dvmrp5: entered allmulticast mode [ 433.330400][T13071] dvmrp5: left allmulticast mode [ 433.565714][ T26] rtc_cmos 00:05: Alarms can be up to one day in the future [ 433.569275][ T26] rtc_cmos 00:05: Alarms can be up to one day in the future [ 433.571965][ T26] rtc_cmos 00:05: Alarms can be up to one day in the future [ 433.574668][ T26] rtc_cmos 00:05: Alarms can be up to one day in the future [ 433.576704][ T26] rtc rtc0: __rtc_set_alarm: err=-22 [ 433.585576][T13102] program syz.0.18870 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 433.738651][ T70] Bluetooth: hci1: unexpected event for opcode 0x0401 [ 433.886805][ T40] kauditd_printk_skb: 38316 callbacks suppressed [ 433.886817][ T40] audit: type=1326 audit(2000524433.335:39839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12937 comm="syz.1.18792" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x50000 [ 433.895658][ T40] audit: type=1326 audit(2000524433.335:39840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12937 comm="syz.1.18792" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x50000 [ 433.901820][ T40] audit: type=1326 audit(2000524433.335:39841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12937 comm="syz.1.18792" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x50000 [ 433.907990][ T40] audit: type=1326 audit(2000524433.335:39842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12937 comm="syz.1.18792" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x50000 [ 433.914011][ T40] audit: type=1326 audit(2000524433.344:39843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12937 comm="syz.1.18792" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x50000 [ 433.920203][ T40] audit: type=1326 audit(2000524433.344:39844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12937 comm="syz.1.18792" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x50000 [ 433.926299][ T40] audit: type=1326 audit(2000524433.344:39845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12937 comm="syz.1.18792" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x50000 [ 433.932433][ T40] audit: type=1326 audit(2000524433.344:39846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12937 comm="syz.1.18792" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x50000 [ 433.939004][ T40] audit: type=1326 audit(2000524433.344:39847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12937 comm="syz.1.18792" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x50000 [ 433.947214][ T40] audit: type=1326 audit(2000524433.344:39848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12937 comm="syz.1.18792" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x50000 [ 434.540835][T13122] random: crng reseeded on system resumption [ 434.595117][T13124] bridge7: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 434.820353][T13152] loop6: detected capacity change from 0 to 524287999 [ 434.829028][T13152] ldm_validate_partition_table(): Disk read failed. [ 434.831331][T13152] Dev loop6: unable to read RDB block 0 [ 434.833595][T13152] loop6: unable to read partition table [ 434.835236][T13152] loop_reread_partitions: partition scan of loop6 (3 xC) failed (rc=-5) [ 434.976958][T13166] smc: net device wg1 erased user defined pnetid SYZ1 [ 434.979443][T13166] smc: ib device syz1 ibport 1 erased user defined pnetid SYZ0 [ 435.055101][T13171] nd_bus ndbus0: __nd_ioctl:bus unknown input size cmd: cmd_call field: 1 [ 435.192722][T13183] netlink: 'syz.1.18909': attribute type 1 has an invalid length. [ 435.252510][T13193] netlink: 8 bytes leftover after parsing attributes in process `syz.1.18913'. [ 435.343739][T13206] random: crng reseeded on system resumption [ 435.952674][T13281] gfs2: path_lookup on c::: returned error -2 [ 436.172553][T13305] netlink: 'syz.0.18966': attribute type 1 has an invalid length. [ 436.672389][T13361] netlink: 8 bytes leftover after parsing attributes in process `syz.2.18994'. [ 436.932139][ T57] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 436.936900][ T57] hid-generic 0000:0000:0000.0007: hidraw1: HID v0.00 Device [syz0] on syz0 [ 437.016751][T13398] pimreg: entered allmulticast mode [ 437.052621][T13403] netlink: 36 bytes leftover after parsing attributes in process `syz.1.19014'. [ 437.055406][T13403] netlink: 16 bytes leftover after parsing attributes in process `syz.1.19014'. [ 437.058123][T13403] netlink: 36 bytes leftover after parsing attributes in process `syz.1.19014'. [ 437.060560][T13403] netlink: 36 bytes leftover after parsing attributes in process `syz.1.19014'. [ 438.047977][ T70] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 438.050512][ T70] Bluetooth: hci1: Injecting HCI hardware error event [ 438.055942][ T70] Bluetooth: hci1: hardware error 0x00 [ 438.391986][T13523] netlink: 512 bytes leftover after parsing attributes in process `syz.0.19070'. [ 438.981262][T13578] tipc: Enabled bearer , priority 0 [ 439.038432][T13590] netlink: 12 bytes leftover after parsing attributes in process `syz.1.19097'. [ 439.334897][ T40] kauditd_printk_skb: 18229 callbacks suppressed [ 439.334912][ T40] audit: type=1326 audit(2000524438.442:58078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13616 comm="syz.0.19112" exe="/syz-executor" sig=0 arch=40000003 syscall=1 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 439.364111][ T40] audit: type=1326 audit(2000524438.470:58079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13608 comm="syz.0.19112" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000 [ 439.370341][ T40] audit: type=1326 audit(2000524438.470:58080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13608 comm="syz.0.19112" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 439.376424][ T40] audit: type=1326 audit(2000524438.470:58081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13608 comm="syz.0.19112" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 439.504241][T13647] openvswitch: netlink: nsh attr 15104 is out of range max 3 [ 439.506418][T13647] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 439.677119][T13657] netlink: 16 bytes leftover after parsing attributes in process `syz.0.19134'. [ 440.131895][T13673] netlink: 12 bytes leftover after parsing attributes in process `syz.1.19141'. [ 440.198813][ T40] audit: type=1326 audit(2000524439.246:58082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13676 comm="syz.1.19143" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x7ffc0000 [ 440.209034][ T40] audit: type=1326 audit(2000524439.246:58083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13676 comm="syz.1.19143" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x7ffc0000 [ 440.216463][ T40] audit: type=1326 audit(2000524439.246:58084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13676 comm="syz.1.19143" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f28579 code=0x7ffc0000 [ 440.224353][ T40] audit: type=1326 audit(2000524439.246:58085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13676 comm="syz.1.19143" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f28579 code=0x7ffc0000 [ 440.237133][ T40] audit: type=1326 audit(2000524439.246:58086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13676 comm="syz.1.19143" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x7ffc0000 [ 440.244245][ T40] audit: type=1326 audit(2000524439.246:58087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13676 comm="syz.1.19143" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x7ffc0000 [ 440.280091][ T70] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 440.570571][T13702] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 441.432122][T13773] netlink: 'syz.1.19184': attribute type 1 has an invalid length. [ 441.861541][T13810] dns_resolver: Unsupported content type (240) [ 443.334406][T13949] IPVS: persistence engine module ip_vs_pe_ not found [ 444.080001][T13992] netlink: 4 bytes leftover after parsing attributes in process `syz.1.19285'. [ 444.725864][T14025] kernel read not supported for file /eth0 (pid: 14025 comm: syz.1.19297) [ 444.729607][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 444.729618][ T40] audit: type=1800 audit(2000524443.484:58089): pid=14025 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.19297" name="eth0" dev="mqueue" ino=33348 res=0 errno=0 [ 445.176460][ T57] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 445.357861][ T57] usb 5-1: Using ep0 maxpacket: 8 [ 445.362855][ T57] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 445.364960][ T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 445.368169][ T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 445.371273][ T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 445.375230][ T57] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 445.377602][ T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 445.380989][ T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 445.384210][ T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 445.387944][ T57] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 445.390390][ T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 445.393828][ T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 445.397044][ T57] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 445.402338][ T57] usb 5-1: string descriptor 0 read error: -22 [ 445.404105][ T57] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 445.406652][ T57] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 445.416231][ T57] adutux 5-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 445.536048][T14056] ALSA: mixer_oss: invalid OSS volume '' [ 445.908929][T14078] netlink: 12 bytes leftover after parsing attributes in process `syz.3.19322'. [ 446.133243][T14109] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2 [ 446.323205][ T40] audit: type=1326 audit(2000524444.980:58090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14123 comm="syz.3.19342" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x0 [ 446.515976][T14134] ALSA: mixer_oss: invalid OSS volume '' [ 446.636000][T14140] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 447.748475][T14158] netlink: 20 bytes leftover after parsing attributes in process `syz.1.19365'. [ 447.784296][T14162] netlink: 8 bytes leftover after parsing attributes in process `syz.1.19359'. [ 447.881600][ T6046] usb 5-1: USB disconnect, device number 19 [ 448.076382][T14176] tipc: Enabling of bearer rejected, failed to enable media [ 448.174014][T14180] netlink: 4 bytes leftover after parsing attributes in process `syz.0.19369'. [ 448.308527][ T6013] Bluetooth: hci4: command 0x1003 tx timeout [ 448.310461][ T70] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 448.337382][T14178] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 448.339920][T14178] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 448.343290][T14178] vhci_hcd vhci_hcd.0: Device attached [ 448.347091][T14190] vhci_hcd: connection closed [ 448.347261][T12859] vhci_hcd: stop threads [ 448.350719][T12859] vhci_hcd: release socket [ 448.359883][T12859] vhci_hcd: disconnect device [ 448.449098][T14205] block device autoloading is deprecated and will be removed. [ 448.718054][ T40] audit: type=1326 audit(2000524447.207:58091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14224 comm="syz.3.19387" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 448.737232][ T40] audit: type=1326 audit(2000524447.216:58092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14224 comm="syz.3.19387" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f585a7 code=0x7ffc0000 [ 448.743967][ T40] audit: type=1326 audit(2000524447.216:58093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14224 comm="syz.3.19387" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 448.750302][ T40] audit: type=1326 audit(2000524447.216:58094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14224 comm="syz.3.19387" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f585a7 code=0x7ffc0000 [ 448.758540][ T40] audit: type=1326 audit(2000524447.216:58095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14224 comm="syz.3.19387" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 448.766812][ T40] audit: type=1326 audit(2000524447.216:58096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14224 comm="syz.3.19387" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 448.774076][ T40] audit: type=1326 audit(2000524447.216:58097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14224 comm="syz.3.19387" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f585a7 code=0x7ffc0000 [ 448.780478][ T40] audit: type=1326 audit(2000524447.216:58098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14224 comm="syz.3.19387" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 449.034177][T14248] mkiss: ax0: crc mode is auto. [ 449.475840][ T36] kernel read not supported for file /dsp (pid: 36 comm: kworker/3:0) [ 450.160398][T14325] netlink: 'syz.0.19434': attribute type 30 has an invalid length. [ 452.366116][T14385] Bluetooth: hci1: Opcode 0x080f failed: -4 [ 452.653359][T14408] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 452.655212][T14408] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 452.657560][T14408] vhci_hcd vhci_hcd.0: Device attached [ 452.664100][T14410] vhci_hcd: connection closed [ 452.664328][T12849] vhci_hcd: stop threads [ 452.666881][T12849] vhci_hcd: release socket [ 452.668178][T12849] vhci_hcd: disconnect device [ 452.878557][T14416] netlink: 12 bytes leftover after parsing attributes in process `syz.3.19475'. [ 453.085857][T14429] netlink: 8 bytes leftover after parsing attributes in process `syz.1.19481'. [ 453.717254][T14460] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 453.719149][T14460] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 453.727560][T14460] vhci_hcd vhci_hcd.0: Device attached [ 453.731622][T14482] vhci_hcd: connection closed [ 453.731972][T12859] vhci_hcd: stop threads [ 453.735486][T12859] vhci_hcd: release socket [ 453.737291][T12859] vhci_hcd: disconnect device [ 453.745018][T14487] netlink: 'syz.1.19508': attribute type 1 has an invalid length. [ 453.747257][T14487] netlink: 'syz.1.19508': attribute type 2 has an invalid length. [ 453.751742][T14487] netlink: 'syz.1.19508': attribute type 1 has an invalid length. [ 453.754744][T14487] netlink: 'syz.1.19508': attribute type 2 has an invalid length. [ 453.992445][ T40] kauditd_printk_skb: 11 callbacks suppressed [ 453.992456][ T40] audit: type=1326 audit(2000524452.146:58110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14506 comm="syz.0.19517" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 454.001470][ T40] audit: type=1326 audit(2000524452.146:58111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14506 comm="syz.0.19517" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 454.008220][ T40] audit: type=1326 audit(2000524452.155:58112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14506 comm="syz.0.19517" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 454.014284][ T40] audit: type=1326 audit(2000524452.155:58113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14506 comm="syz.0.19517" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 454.023390][ T40] audit: type=1326 audit(2000524452.155:58114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14506 comm="syz.0.19517" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 454.032573][ T40] audit: type=1326 audit(2000524452.155:58115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14506 comm="syz.0.19517" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 454.040503][ T40] audit: type=1326 audit(2000524452.155:58116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14506 comm="syz.0.19517" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 454.046602][ T40] audit: type=1326 audit(2000524452.155:58117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14506 comm="syz.0.19517" exe="/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 454.057731][ T40] audit: type=1326 audit(2000524452.155:58118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14506 comm="syz.0.19517" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 454.065834][ T40] audit: type=1326 audit(2000524452.155:58119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14506 comm="syz.0.19517" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 454.090712][T14515] 9pnet: p9_errstr2errno: server reported unknown error [ 454.123547][T14519] netlink: 76 bytes leftover after parsing attributes in process `syz.1.19523'. [ 454.126224][T14519] nbd: illegal input index 1986356271 [ 454.458020][T14539] netlink: 'syz.1.19533': attribute type 2 has an invalid length. [ 466.762721][ T6013] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 466.769096][ T6013] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 466.773490][ T6013] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 466.775946][ T6013] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 466.778206][ T6013] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 466.780331][ T6013] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 466.857180][T12856] netdevsim netdevsim2 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 466.860912][T12856] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20003 - 0 [ 466.864464][T12856] netdevsim netdevsim2 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0 [ 466.868474][T12856] netdevsim netdevsim2 eth3 (unregistering): unset [1, 2] type 2 family 0 port 34243 - 0 [ 466.881792][T14560] vxcan1 speed is unknown, defaulting to 1000 [ 466.923062][T14560] ip6gre0 speed is unknown, defaulting to 1000 [ 466.942740][T12856] netdevsim netdevsim2 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 466.946537][T12856] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20003 - 0 [ 466.950221][T12856] netdevsim netdevsim2 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0 [ 466.954027][T12856] netdevsim netdevsim2 eth2 (unregistering): unset [1, 2] type 2 family 0 port 34243 - 0 [ 466.970792][T14560] wg1 speed is unknown, defaulting to 1000 [ 467.042134][T14560] chnl_net:caif_netlink_parms(): no params data found [ 467.083754][T12856] netdevsim netdevsim2 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 467.087432][T12856] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20003 - 0 [ 467.090859][T12856] netdevsim netdevsim2 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0 [ 467.094750][T12856] netdevsim netdevsim2 eth1 (unregistering): unset [1, 2] type 2 family 0 port 34243 - 0 [ 467.147851][T14560] bridge0: port 1(bridge_slave_0) entered blocking state [ 467.150436][T14560] bridge0: port 1(bridge_slave_0) entered disabled state [ 467.152527][T14560] bridge_slave_0: entered allmulticast mode [ 467.155078][T14560] bridge_slave_0: entered promiscuous mode [ 467.161958][T14560] bridge0: port 2(bridge_slave_1) entered blocking state [ 467.164129][T14560] bridge0: port 2(bridge_slave_1) entered disabled state [ 467.171409][T14560] bridge_slave_1: entered allmulticast mode [ 467.175261][T14560] bridge_slave_1: entered promiscuous mode [ 467.207753][T14560] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 467.214256][T14560] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 467.227166][T14596] netlink: 'syz.0.19554': attribute type 11 has an invalid length. [ 467.247556][T12856] netdevsim netdevsim2 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 467.250292][T12856] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20003 - 0 [ 467.253663][T12856] netdevsim netdevsim2 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0 [ 467.256401][T12856] netdevsim netdevsim2 eth0 (unregistering): unset [1, 2] type 2 family 0 port 34243 - 0 [ 467.273012][T14560] team0: Port device team_slave_0 added [ 467.303926][T14560] team0: Port device team_slave_1 added [ 467.339810][T14560] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 467.342518][T14560] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 467.352254][T14560] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 467.357815][T14560] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 467.360641][T14560] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 467.370145][T14560] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 467.415156][T14560] hsr_slave_0: entered promiscuous mode [ 467.417131][T14560] hsr_slave_1: entered promiscuous mode [ 467.450832][T14614] batadv_slave_1: entered promiscuous mode [ 467.477205][T14614] batadv_slave_1: left promiscuous mode [ 467.501661][ T40] audit: type=1800 audit(2000524464.792:58120): pid=14616 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.19564" name="SYSV00000000" dev="tmpfs" ino=5 res=0 errno=0 [ 468.412327][T12856] bond0 (unregistering): (slave wlan1): Releasing backup interface [ 468.415928][T12856] bond0 (unregistering): Released all slaves [ 468.422942][T12856] bond1 (unregistering): Released all slaves [ 468.524165][T12856] bond2 (unregistering): Released all slaves [ 468.636203][T12856] bond3 (unregistering): Released all slaves [ 468.734510][T12856] bond4 (unregistering): Released all slaves [ 468.738822][T12856] bond5 (unregistering): Released all slaves [ 468.743159][T12856] bond6 (unregistering): Released all slaves [ 468.748741][T12856] bond7 (unregistering): Released all slaves [ 468.754101][T12856] bond8 (unregistering): Released all slaves [ 468.832210][T14631] loop5: detected capacity change from 0 to 7 [ 468.843640][T14631] buffer_io_error: 24 callbacks suppressed [ 468.843651][T14631] Buffer I/O error on dev loop5, logical block 0, async page read [ 468.852236][T14631] Buffer I/O error on dev loop5, logical block 0, async page read [ 468.857954][T14631] Buffer I/O error on dev loop5, logical block 0, async page read [ 468.860165][T14631] Buffer I/O error on dev loop5, logical block 0, async page read [ 468.862443][T14631] Buffer I/O error on dev loop5, logical block 0, async page read [ 468.864842][T14631] Buffer I/O error on dev loop5, logical block 0, async page read [ 468.867161][T14631] Buffer I/O error on dev loop5, logical block 0, async page read [ 468.869342][T14631] ldm_validate_partition_table(): Disk read failed. [ 468.871189][T14631] Buffer I/O error on dev loop5, logical block 0, async page read [ 468.873380][T14631] Buffer I/O error on dev loop5, logical block 0, async page read [ 468.875585][T14631] Buffer I/O error on dev loop5, logical block 0, async page read [ 468.882835][T14631] Dev loop5: unable to read RDB block 0 [ 468.884702][T14631] loop5: unable to read partition table [ 468.886427][T14631] loop5: partition table beyond EOD, truncated [ 468.888301][T14631] loop_reread_partitions: partition scan of loop5 (被xڬdƤݡ [ 468.888301][T14631] ) failed (rc=-5) [ 468.949297][T12856] tipc: Left network mode [ 469.005775][ T6013] Bluetooth: hci4: command tx timeout [ 469.032027][T14560] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 469.035413][T14560] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 469.040523][T14560] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 469.043790][T14560] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 469.123777][T14560] 8021q: adding VLAN 0 to HW filter on device bond0 [ 469.131213][T14560] 8021q: adding VLAN 0 to HW filter on device team0 [ 469.135860][T12858] bridge0: port 1(bridge_slave_0) entered blocking state [ 469.137862][T12858] bridge0: port 1(bridge_slave_0) entered forwarding state [ 469.151449][T12859] bridge0: port 2(bridge_slave_1) entered blocking state [ 469.153454][T12859] bridge0: port 2(bridge_slave_1) entered forwarding state [ 469.238961][T14560] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 469.341803][T14560] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 469.424715][T12856] hsr_slave_0: left promiscuous mode [ 469.427617][T12856] hsr_slave_1: left promiscuous mode [ 469.603430][ T40] audit: type=1326 audit(2000524466.747:58121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14680 comm="syz.0.19580" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 469.612023][ T40] audit: type=1326 audit(2000524466.747:58122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14680 comm="syz.0.19580" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 469.626937][ T40] audit: type=1326 audit(2000524466.757:58123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14680 comm="syz.0.19580" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 469.635105][ T40] audit: type=1326 audit(2000524466.757:58124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14680 comm="syz.0.19580" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 469.653897][ T40] audit: type=1326 audit(2000524466.757:58125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14680 comm="syz.0.19580" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 469.664259][ T40] audit: type=1326 audit(2000524466.757:58126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14680 comm="syz.0.19580" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 469.677467][ T40] audit: type=1326 audit(2000524466.757:58127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14680 comm="syz.0.19580" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 469.687361][ T40] audit: type=1326 audit(2000524466.757:58128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14680 comm="syz.0.19580" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7ff25a7 code=0x7ffc0000 [ 469.700255][ T40] audit: type=1326 audit(2000524466.757:58129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14680 comm="syz.0.19580" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 471.100463][T12858] smc: removing ib device syz1 [ 471.229281][T14689] Bluetooth: hci4: command 0x041b tx timeout [ 471.467992][T14560] veth0_vlan: entered promiscuous mode [ 471.474696][T14560] veth1_vlan: entered promiscuous mode [ 471.514850][T14714] netlink: 'syz.3.19591': attribute type 3 has an invalid length. [ 471.516044][T14560] veth0_macvtap: entered promiscuous mode [ 471.537314][T14560] veth1_macvtap: entered promiscuous mode [ 471.551564][T14560] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 471.555702][T14560] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 471.562591][T14560] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 471.569017][T14560] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 471.573701][T14560] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 471.578358][T14560] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 471.589587][T14560] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 471.593850][T14560] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 471.597324][T14560] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 471.608109][T14560] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 471.682385][T12851] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 471.684598][T12851] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 471.703538][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 471.709336][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 471.837429][T14742] netlink: 8 bytes leftover after parsing attributes in process `syz.3.19597'. [ 471.907484][T12856] IPVS: stop unused estimator thread 0... [ 472.010228][T14758] input: syz1 as /devices/virtual/input/input70 [ 472.076038][T14739] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3) [ 472.078566][T14739] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 472.082431][T14739] vhci_hcd vhci_hcd.0: Device attached [ 472.097207][T14763] vhci_hcd: connection closed [ 472.097420][T12856] vhci_hcd: stop threads [ 472.100766][T12856] vhci_hcd: release socket [ 472.102678][T12856] vhci_hcd: disconnect device [ 472.266578][ T6013] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 472.994523][T14865] netlink: 4 bytes leftover after parsing attributes in process `syz.4.19639'. [ 472.998988][T14865] netlink: 4 bytes leftover after parsing attributes in process `syz.4.19639'. [ 473.463540][ T6013] Bluetooth: hci4: command 0x041b tx timeout [ 473.643964][T14941] netlink: 'syz.1.19674': attribute type 1 has an invalid length. [ 473.646740][T14941] netlink: 'syz.1.19674': attribute type 4 has an invalid length. [ 473.651833][T14941] netlink: 188 bytes leftover after parsing attributes in process `syz.1.19674'. [ 473.654503][T14941] NCSI netlink: No device for ifindex 0 [ 473.994889][T14972] input: syz1 as /devices/virtual/input/input71 [ 474.084301][T14981] tipc: Enabling of bearer rejected, max 3 bearers permitted [ 474.746382][ T26] usb 5-1: new high-speed USB device number 20 using dummy_hcd [ 474.922047][ T26] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 474.927059][ T26] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 474.930172][ T26] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 474.932433][ T26] usb 5-1: Product: syz [ 474.933638][ T26] usb 5-1: Manufacturer: syz [ 474.934991][ T26] usb 5-1: SerialNumber: syz [ 475.171641][ T26] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 20 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 475.250407][T15088] netlink: 12 bytes leftover after parsing attributes in process `syz.4.19740'. [ 475.375750][ T40] kauditd_printk_skb: 70 callbacks suppressed [ 475.375762][ T40] audit: type=1326 audit(2000524472.144:58200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15097 comm="syz.4.19745" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd5579 code=0x0 [ 475.388913][T14726] usb 5-1: USB disconnect, device number 20 [ 475.392619][T14726] usblp0: removed [ 475.558016][T15102] mkiss: ax0: crc mode is auto. [ 475.632251][T15108] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 475.677022][ T6013] Bluetooth: hci4: command 0x041b tx timeout [ 476.084088][T15133] netlink: 76 bytes leftover after parsing attributes in process `syz.0.19761'. [ 476.206935][T15141] netlink: 44 bytes leftover after parsing attributes in process `syz.1.19765'. [ 477.183236][ T40] audit: type=1326 audit(2000524473.838:58201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15225 comm="syz.1.19802" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f28579 code=0x0 [ 477.509646][ T57] usb 9-1: new high-speed USB device number 2 using dummy_hcd [ 477.637455][T15233] Invalid/unusable pipe [ 477.686307][ T57] usb 9-1: Using ep0 maxpacket: 32 [ 477.689536][ T57] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 477.692549][ T57] usb 9-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 1024 [ 477.695839][ T57] usb 9-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 477.701878][ T57] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 477.705260][ T57] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 477.708344][ T57] usb 9-1: SerialNumber: syz [ 477.711880][T15231] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22 [ 477.715364][ T57] cdc_acm 9-1:1.0: Control and data interfaces are not separated! [ 477.836294][T15245] netlink: 8 bytes leftover after parsing attributes in process `syz.0.19811'. [ 477.838805][T15245] netlink: 'syz.0.19811': attribute type 21 has an invalid length. [ 477.900221][ T6013] Bluetooth: hci4: command 0x041b tx timeout [ 477.934589][ T57] cdc_acm 9-1:1.0: ttyACM0: USB ACM device [ 477.937426][ T57] usb 9-1: USB disconnect, device number 2 [ 478.192244][T15267] netlink: 108 bytes leftover after parsing attributes in process `syz.0.19821'. [ 478.360666][T15281] input: syz1 as /devices/virtual/input/input72 [ 478.576225][T15303] rtc_cmos 00:05: Alarms can be up to one day in the future [ 478.582861][T15302] rtc_cmos 00:05: Alarms can be up to one day in the future [ 478.659873][T15314] can0: slcan on ptm0. [ 478.661544][T15316] netlink: 4 bytes leftover after parsing attributes in process `syz.0.19840'. [ 478.723957][T15314] can0 (unregistered): slcan off ptm0. [ 478.727828][T15314] mkiss: ax0: crc mode is auto. [ 479.018106][T15352] netlink: 'syz.3.19859': attribute type 1 has an invalid length. [ 479.021066][T15352] netlink: 180 bytes leftover after parsing attributes in process `syz.3.19859'. [ 479.024225][T15352] netlink: 'syz.3.19859': attribute type 1 has an invalid length. [ 479.026738][T15352] netlink: 'syz.3.19859': attribute type 2 has an invalid length. [ 479.083198][ T26] rtc_cmos 00:05: Alarms can be up to one day in the future [ 479.085956][ T26] rtc_cmos 00:05: Alarms can be up to one day in the future [ 479.088856][ T26] rtc_cmos 00:05: Alarms can be up to one day in the future [ 479.091503][ T26] rtc_cmos 00:05: Alarms can be up to one day in the future [ 479.093538][ T26] rtc rtc0: __rtc_set_alarm: err=-22 [ 479.386296][ T26] usb 5-1: new high-speed USB device number 21 using dummy_hcd [ 479.549499][ T26] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 479.552321][ T26] usb 5-1: config 0 interface 0 has no altsetting 0 [ 479.555926][ T26] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 479.558920][ T26] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 479.567886][ T26] usb 5-1: Product: syz [ 479.569151][ T26] usb 5-1: Manufacturer: syz [ 479.570487][ T26] usb 5-1: SerialNumber: syz [ 479.572790][ T26] usb 5-1: config 0 descriptor?? [ 479.576158][ T26] usb 5-1: selecting invalid altsetting 0 [ 479.799653][ T57] usb 5-1: USB disconnect, device number 21 [ 480.467241][T14726] kernel write not supported for file /input/mouse0 (pid: 14726 comm: kworker/0:1) [ 480.478027][T15425] sp0: Synchronizing with TNC [ 480.670709][T15444] netlink: 8 bytes leftover after parsing attributes in process `syz.1.19901'. [ 480.673177][T15444] netlink: 5 bytes leftover after parsing attributes in process `syz.1.19901'. [ 480.675563][T15444] netlink: 16 bytes leftover after parsing attributes in process `syz.1.19901'. [ 480.708411][T15451] netlink: 4 bytes leftover after parsing attributes in process `syz.4.19905'. [ 480.881277][T15463] sp0: Synchronizing with TNC [ 480.998887][T15474] sctp: [Deprecated]: syz.0.19910 (pid 15474) Use of struct sctp_assoc_value in delayed_ack socket option. [ 480.998887][T15474] Use struct sctp_sack_info instead [ 481.054619][ T40] audit: type=1326 audit(2000524477.467:58202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.0.19914" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 481.066839][ T40] audit: type=1326 audit(2000524477.467:58203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.0.19914" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 481.082253][ T40] audit: type=1326 audit(2000524477.467:58204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.0.19914" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 481.096580][ T40] audit: type=1326 audit(2000524477.467:58205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.0.19914" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 481.107405][ T40] audit: type=1326 audit(2000524477.467:58206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.0.19914" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 481.120286][ T40] audit: type=1326 audit(2000524477.467:58207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.0.19914" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 481.132134][ T40] audit: type=1326 audit(2000524477.476:58208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.0.19914" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000 [ 481.148863][ T40] audit: type=1326 audit(2000524477.476:58209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.0.19914" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000 [ 481.154951][ T40] audit: type=1326 audit(2000524477.476:58210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.0.19914" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000 [ 481.161184][ T40] audit: type=1326 audit(2000524477.476:58211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.0.19914" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000 [ 481.811859][T15502] sp0: Synchronizing with TNC [ 482.329323][T15524] netlink: 'syz.3.19927': attribute type 8 has an invalid length. [ 483.288783][ T6013] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 483.502045][T15598] veth1_to_bond: entered allmulticast mode [ 483.504442][T15596] veth1_to_bond: left allmulticast mode [ 484.163433][T15638] IPv6: NLM_F_CREATE should be specified when creating new route [ 484.338409][T15656] trusted_key: encrypted_key: keyword 'load' not allowed when called from .update method [ 484.370991][T15664] netlink: 8 bytes leftover after parsing attributes in process `syz.3.19978'. [ 484.373574][T15664] netlink: 4 bytes leftover after parsing attributes in process `syz.3.19978'. [ 485.271858][T15754] hugetlbfs: syz.0.20015 (15754): Using mlock ulimits for SHM_HUGETLB is obsolete [ 485.468651][T15772] netlink: 20 bytes leftover after parsing attributes in process `syz.1.20024'. [ 485.785006][T15810] block nbd4: NBD_DISCONNECT [ 485.897687][T15826] netlink: 4 bytes leftover after parsing attributes in process `syz.0.20043'. [ 485.900771][T15826] batadv_slave_1: entered promiscuous mode [ 485.902758][T15826] netlink: 2 bytes leftover after parsing attributes in process `syz.0.20043'. [ 486.523028][T15880] netlink: 4 bytes leftover after parsing attributes in process `syz.0.20065'. [ 486.846990][T15921] netlink: 8 bytes leftover after parsing attributes in process `syz.3.20084'. [ 486.946975][T15928] team0: left promiscuous mode [ 486.948379][T15928] team_slave_0: left promiscuous mode [ 486.949969][T15928] team_slave_1: left promiscuous mode [ 486.951634][T15928] team0: entered allmulticast mode [ 486.953118][T15928] team_slave_0: entered allmulticast mode [ 486.954767][T15928] team_slave_1: entered allmulticast mode [ 486.963114][T12856] tipc: Resetting bearer [ 487.065523][T15936] netlink: 12 bytes leftover after parsing attributes in process `syz.3.20091'. [ 487.160661][T15942] netlink: 4 bytes leftover after parsing attributes in process `syz.3.20094'. [ 487.348449][T15953] netlink: 80 bytes leftover after parsing attributes in process `syz.1.20098'. [ 487.441831][ T40] kauditd_printk_skb: 1578 callbacks suppressed [ 487.441842][ T40] audit: type=1326 audit(2000524483.435:59790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15962 comm="syz.1.20104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x7ffc0000 [ 487.457536][ T40] audit: type=1326 audit(2000524483.435:59791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15962 comm="syz.1.20104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x7ffc0000 [ 487.463614][ T40] audit: type=1326 audit(2000524483.453:59792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15962 comm="syz.1.20104" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f28579 code=0x7ffc0000 [ 487.477847][ T40] audit: type=1326 audit(2000524483.453:59793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15962 comm="syz.1.20104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x7ffc0000 [ 487.484609][ T40] audit: type=1326 audit(2000524483.453:59794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15962 comm="syz.1.20104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x7ffc0000 [ 487.490943][ T40] audit: type=1326 audit(2000524483.453:59795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15962 comm="syz.1.20104" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f28579 code=0x7ffc0000 [ 487.496817][ T40] audit: type=1326 audit(2000524483.453:59796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15962 comm="syz.1.20104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x7ffc0000 [ 487.502800][ T40] audit: type=1326 audit(2000524483.453:59797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15962 comm="syz.1.20104" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f28579 code=0x7ffc0000 [ 487.508571][ T40] audit: type=1326 audit(2000524483.453:59798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15962 comm="syz.1.20104" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f285a7 code=0x7ffc0000 [ 487.514833][ T40] audit: type=1326 audit(2000524483.453:59799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15962 comm="syz.1.20104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f28579 code=0x7ffc0000 [ 488.088896][ T36] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 488.249735][ T36] usb 9-1: Using ep0 maxpacket: 8 [ 488.253342][ T36] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x4 has invalid maxpacket 56832, setting to 1024 [ 488.257614][ T36] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 1024 [ 488.262889][ T36] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 488.266349][ T36] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 488.270113][ T36] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 488.272866][ T36] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 488.495002][ T36] usb 9-1: GET_CAPABILITIES returned 0 [ 488.496795][ T36] usbtmc 9-1:16.0: can't read capabilities [ 488.578465][T16070] overlayfs: missing 'workdir' [ 488.714853][ T36] usb 9-1: USB disconnect, device number 3 [ 489.403686][T16129] ubi: mtd0 is already attached to ubi31 [ 489.948432][T16188] __nla_validate_parse: 6 callbacks suppressed [ 489.948443][T16188] netlink: 4 bytes leftover after parsing attributes in process `syz.1.20206'. [ 489.954333][T16188] netlink: 4 bytes leftover after parsing attributes in process `syz.1.20206'. [ 490.145766][ T6046] usb 5-1: new high-speed USB device number 22 using dummy_hcd [ 490.211301][T16208] netlink: 8 bytes leftover after parsing attributes in process `syz.1.20215'. [ 490.322770][ T6046] usb 5-1: Using ep0 maxpacket: 16 [ 490.330809][ T6046] usb 5-1: config 0 has no interfaces? [ 490.334448][ T6046] usb 5-1: New USB device found, idVendor=045e, idProduct=0721, bcdDevice=9c.25 [ 490.338296][ T6046] usb 5-1: New USB device strings: Mfr=0, Product=251, SerialNumber=3 [ 490.342637][ T6046] usb 5-1: Product: syz [ 490.346803][ T6046] usb 5-1: SerialNumber: syz [ 490.352072][ T6046] usb 5-1: config 0 descriptor?? [ 490.581024][ T57] usb 5-1: USB disconnect, device number 22 [ 490.928838][T16260] KVM: debugfs: duplicate directory 16260-4 [ 491.039944][T16269] netlink: 52 bytes leftover after parsing attributes in process `syz.4.20245'. [ 491.267022][T16310] block nbd1: not configured, cannot reconfigure [ 491.293996][T16312] sp0: Synchronizing with TNC [ 491.396665][T16325] netlink: 4 bytes leftover after parsing attributes in process `syz.4.20271'. [ 491.406066][T16325] bond1 (unregistering): Released all slaves [ 491.678648][T16353] netlink: 20 bytes leftover after parsing attributes in process `syz.4.20285'. [ 491.845683][T16368] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present! [ 492.121126][T16394] ubi31: detaching mtd0 [ 492.125574][T16394] ubi31: mtd0 is detached [ 492.523989][T16429] sock: sock_timestamping_bind_phc: sock not bind to device [ 492.848959][T16446] team0: Device gtp1 is of different type [ 492.884052][T16454] netlink: 4 bytes leftover after parsing attributes in process `syz.1.20318'. [ 493.056238][T16477] netlink: 4 bytes leftover after parsing attributes in process `syz.1.20326'. [ 493.071736][T16477] bond5 (unregistering): Released all slaves [ 493.531496][T16510] ip6gre0 speed is unknown, defaulting to 1000 [ 494.179736][T16577] netlink: 8 bytes leftover after parsing attributes in process `syz.0.20369'. [ 494.188920][T16579] dlm: no local IP address has been set [ 494.190612][T16579] dlm: cannot start dlm midcomms -107 [ 494.426813][T16600] netlink: del zone limit has 4 unknown bytes [ 494.738785][T16634] input: syz1 as /devices/virtual/input/input73 [ 494.940541][T16652] ip6gre0 speed is unknown, defaulting to 1000 [ 495.690175][T14689] Bluetooth: hci4: command 0x041b tx timeout [ 495.962790][ T57] hid (null): unknown global tag 0xc [ 495.975456][ T57] hid-generic 0005:16C0:00ED.0008: unknown global tag 0xc [ 495.980291][ T57] hid-generic 0005:16C0:00ED.0008: item 0 0 1 12 parsing failed [ 495.983179][ T57] hid-generic 0005:16C0:00ED.0008: probe with driver hid-generic failed with error -22 [ 496.168302][T16755] netlink: 84 bytes leftover after parsing attributes in process `syz.4.20450'. [ 496.480445][ T9] usb 5-1: new high-speed USB device number 23 using dummy_hcd [ 496.651534][ T9] usb 5-1: Using ep0 maxpacket: 8 [ 496.663372][ T9] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x4 has invalid maxpacket 56832, setting to 1024 [ 496.667547][ T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 1024 [ 496.671324][ T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 496.677040][ T9] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 496.681810][ T9] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 496.694192][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 496.930019][ T9] usb 5-1: GET_CAPABILITIES returned 0 [ 496.932149][ T9] usbtmc 5-1:16.0: can't read capabilities [ 496.983093][T16789] netlink: 28 bytes leftover after parsing attributes in process `syz.3.20465'. [ 497.015364][T16741] syz.0.20444 (16741) used greatest stack depth: 17216 bytes left [ 497.157130][ T9] usb 5-1: USB disconnect, device number 23 [ 497.207586][T16802] Failed to get privilege flags for destination (handle=0x2:0x0) [ 497.208385][T16804] netlink: 4 bytes leftover after parsing attributes in process `syz.3.20472'. [ 497.615626][T16822] netlink: 20 bytes leftover after parsing attributes in process `syz.3.20480'. [ 497.791821][T16836] syzkaller0: tun_chr_ioctl cmd 1074025676 [ 497.793593][T16836] syzkaller0: owner set to 1 [ 497.961663][T16843] can0: slcan on ttyS3. [ 498.010186][T16843] can0 (unregistered): slcan off ttyS3. [ 498.380219][T16895] can0: slcan on ttyS3. [ 498.389444][T16894] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 498.493188][T16895] can0 (unregistered): slcan off ttyS3. [ 499.152992][ T6046] kernel write not supported for file /snd/seq (pid: 6046 comm: kworker/0:3) [ 499.247695][T16954] netlink: 4 bytes leftover after parsing attributes in process `syz.4.20532'. [ 499.663264][T16979] vlan2: entered allmulticast mode [ 499.664954][T16979] mac80211_hwsim hwsim6 wlan0: entered allmulticast mode [ 499.669018][T16979] mac80211_hwsim hwsim6 wlan0: left allmulticast mode [ 499.835569][T16995] input: syz0 as /devices/virtual/input/input74 [ 499.929991][T17005] netlink: 52 bytes leftover after parsing attributes in process `syz.1.20557'. [ 499.989771][ T40] kauditd_printk_skb: 32 callbacks suppressed [ 499.989787][ T40] audit: type=1326 audit(2000524495.174:59832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17012 comm="syz.0.20561" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff2579 code=0x0 [ 500.136672][ C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 500.887270][ T6046] usb 6-1: new full-speed USB device number 20 using dummy_hcd [ 501.046821][ T6046] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 501.049501][ T6046] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 501.052107][ T6046] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8 [ 501.054471][ T6046] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 501.058473][ T6046] usb 6-1: config 0 descriptor?? [ 501.061467][ T6046] dvb-usb: found a 'Artec T1 USB2.0' in warm state. [ 501.063459][ T6046] dvb-usb: bulk message failed: -22 (3/0) [ 501.070831][ T6046] dvb-usb: will use the device's hardware PID filter (table count: 16). [ 501.073312][ T6046] dvbdev: DVB: registering new adapter (Artec T1 USB2.0) [ 501.075123][ T6046] usb 6-1: media controller created [ 501.077354][ T6046] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 501.081949][ T6046] dvb-usb: bulk message failed: -22 (6/0) [ 501.083796][ T6046] dvb-usb: no frontend was attached by 'Artec T1 USB2.0' [ 501.086853][ T6046] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb6/6-1/input/input75 [ 501.091476][ T6046] dvb-usb: schedule remote query interval to 150 msecs. [ 501.093414][ T6046] dvb-usb: Artec T1 USB2.0 successfully initialized and connected. [ 501.273621][ T6046] dvb-usb: bulk message failed: -22 (1/0) [ 501.277351][ T6046] dvb-usb: error while querying for an remote control event. [ 501.285970][ T6046] usb 6-1: USB disconnect, device number 20 [ 501.302519][ T6046] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected. [ 501.595529][T17090] Bluetooth: hci1: Opcode 0x080f failed: -4 [ 503.333048][T17156] syz.3.20625 (17156): drop_caches: 3 [ 503.339692][T17172] macsec1: entered promiscuous mode [ 503.341160][T17172] mac80211_hwsim hwsim3 wlan0: entered promiscuous mode [ 503.343124][T17172] macsec1: entered allmulticast mode [ 503.345020][T17172] mac80211_hwsim hwsim3 wlan0: entered allmulticast mode [ 503.455306][T17182] ip6gre0 speed is unknown, defaulting to 1000 [ 503.502371][T17183] : entered promiscuous mode [ 503.505182][T17183] tunl0: entered promiscuous mode [ 503.507061][T17183] gre0: entered promiscuous mode [ 503.509147][T17183] gretap0: entered promiscuous mode [ 503.510977][T17183] erspan0: entered promiscuous mode [ 503.512814][T17183] ip_vti0: entered promiscuous mode [ 503.514886][T17183] ip6_vti0: entered promiscuous mode [ 503.516759][T17183] sit0: entered promiscuous mode [ 503.518704][T17183] ip6tnl0: entered promiscuous mode [ 503.520519][T17183] ip6gre0: entered promiscuous mode [ 503.522457][T17183] syz_tun: entered promiscuous mode [ 503.524740][T17183] ip6gretap0: entered promiscuous mode [ 503.526906][T17183] bridge0: entered promiscuous mode [ 503.528718][T17183] vcan0: entered promiscuous mode [ 503.530413][T17183] bond0: entered promiscuous mode [ 503.532045][T17183] 8021q: adding VLAN 0 to HW filter on device bond0 [ 503.534610][T17183] 8021q: adding VLAN 0 to HW filter on device team0 [ 503.536823][T17183] tipc: Resetting bearer [ 503.538491][T17183] tipc: Resetting bearer [ 503.540031][T17183] dummy0: entered promiscuous mode [ 503.543329][T17183] nlmon0: entered promiscuous mode [ 503.545157][T17183] batadv0: entered promiscuous mode [ 503.546982][T17183] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 503.549242][T17183] tipc: Resetting bearer [ 503.550857][T17183] tipc: Resetting bearer [ 503.552474][T17183] vxcan0: entered promiscuous mode [ 503.554278][T17183] vxcan1: entered promiscuous mode [ 503.556049][T17183] veth0: entered promiscuous mode [ 503.558661][T17183] veth1: entered promiscuous mode [ 503.568370][T17183] wg0: entered promiscuous mode [ 503.571689][T17183] wg1: entered promiscuous mode [ 503.573525][T17183] veth0_to_bridge: entered promiscuous mode [ 503.575637][T17183] bridge_slave_0: entered promiscuous mode [ 503.577836][T17183] veth1_to_bridge: entered promiscuous mode [ 503.580078][T17183] bridge_slave_1: entered promiscuous mode [ 503.582073][T17183] veth0_to_bond: entered promiscuous mode [ 503.584091][T17183] bond_slave_0: entered promiscuous mode [ 503.585950][T17183] veth1_to_bond: entered promiscuous mode [ 503.588010][T17183] bond_slave_1: entered promiscuous mode [ 503.589951][T17183] veth0_to_team: entered promiscuous mode [ 503.592139][T17183] team_slave_0: entered promiscuous mode [ 503.593997][T17183] veth1_to_team: entered promiscuous mode [ 503.596060][T17183] team_slave_1: entered promiscuous mode [ 503.597929][T17183] veth0_to_batadv: entered promiscuous mode [ 503.600062][T17183] batadv_slave_0: entered promiscuous mode [ 503.602985][T17183] veth1_to_batadv: entered promiscuous mode [ 503.605100][T17183] xfrm0: entered promiscuous mode [ 503.606895][T17183] veth0_to_hsr: entered promiscuous mode [ 503.609150][T17183] veth1_to_hsr: entered promiscuous mode [ 503.611120][ T36] usb 6-1: new high-speed USB device number 21 using dummy_hcd [ 503.611828][T17183] 0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 503.616256][T17183] 0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 503.618935][T17183] 0: entered promiscuous mode [ 503.620705][T17183] veth1_virt_wifi: entered promiscuous mode [ 503.622944][T17183] veth0_virt_wifi: entered promiscuous mode [ 503.624960][T17183] net veth1_virt_wifi virt_wifi0: entered promiscuous mode [ 503.627407][T17183] veth1_vlan: left promiscuous mode [ 503.629165][T17183] veth1_vlan: entered promiscuous mode [ 503.631140][T17183] veth0_vlan: left promiscuous mode [ 503.632850][T17183] veth0_vlan: entered promiscuous mode [ 503.635427][T17183] vlan0: entered promiscuous mode [ 503.637002][T17183] vlan1: entered promiscuous mode [ 503.638500][T17183] macvlan0: entered promiscuous mode [ 503.640295][T17183] macvlan1: entered promiscuous mode [ 503.642102][T17183] A link change request failed with some changes committed already. Interface macvlan1 may have been left with an inconsistent configuration, please check. [ 503.655973][ T9] ip6gre0 speed is unknown, defaulting to 1000 [ 503.686538][ T9] ip6gre0 speed is unknown, defaulting to 1000 [ 503.782541][ T36] usb 6-1: Using ep0 maxpacket: 16 [ 503.786047][ T36] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 503.791647][ T36] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 503.795956][ T36] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 503.798846][ T36] usb 6-1: SerialNumber: syz [ 504.675691][ T36] cdc_ether 6-1:1.0: probe with driver cdc_ether failed with error -71 [ 504.685807][ T36] usb 6-1: USB disconnect, device number 21 [ 505.337633][T17293] netlink: 1256 bytes leftover after parsing attributes in process `syz.1.20686'. [ 505.341275][T17293] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 506.029734][ T40] audit: type=1326 audit(2000524500.824:59833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17325 comm="syz.3.20701" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f58579 code=0x0 [ 507.358330][T17382] bpq0: entered allmulticast mode [ 507.567914][T17403] input: syz0 as /devices/virtual/input/input76 [ 507.606890][T17407] netlink: 8 bytes leftover after parsing attributes in process `syz.1.20737'. [ 507.609927][T17407] netlink: 24 bytes leftover after parsing attributes in process `syz.1.20737'. [ 507.619322][T17409] netlink: 16 bytes leftover after parsing attributes in process `syz.0.20738'. [ 507.788365][T17431] tmpfs: Invalid gid '0x00000000ffffffff' [ 508.041883][T17445] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input77 [ 508.580949][ T40] audit: type=1326 audit(2000524503.209:59834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17418 comm="syz.0.20744" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7fc00000 [ 509.023409][T17460] netlink: 4 bytes leftover after parsing attributes in process `syz.0.20761'. [ 509.026444][T17460] netlink: 4 bytes leftover after parsing attributes in process `syz.0.20761'. [ 509.616001][T17495] netlink: 4 bytes leftover after parsing attributes in process `syz.1.20776'. [ 509.656183][T17497] e1000 0000:00:06.0 eth0: Unsupported Speed/Duplex configuration [ 510.344780][ T40] audit: type=1326 audit(2000524504.855:59835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17488 comm="syz.3.20774" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7fc00000 [ 510.394462][T17539] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 510.540364][T17551] netlink: 88 bytes leftover after parsing attributes in process `syz.1.20803'. [ 510.543890][T17551] netlink: 8 bytes leftover after parsing attributes in process `syz.1.20803'. [ 510.926864][T17586] input: syz0 as /devices/virtual/input/input78 [ 511.080783][T17600] blktrace: Concurrent blktraces are not allowed on nullb0 [ 511.246037][T17613] netlink: 196 bytes leftover after parsing attributes in process `syz.1.20832'. [ 511.547125][T17641] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 511.768759][T17657] netlink: 40 bytes leftover after parsing attributes in process `syz.4.20853'. [ 512.012672][T17682] dlm: non-version read from control device 34 [ 512.680539][ T40] audit: type=1326 audit(2000524507.044:59836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17727 comm="syz.0.20884" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000 [ 512.707643][ T40] audit: type=1326 audit(2000524507.044:59837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17727 comm="syz.0.20884" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000 [ 512.715661][ T40] audit: type=1326 audit(2000524507.044:59838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17727 comm="syz.0.20884" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000 [ 512.722201][ T40] audit: type=1326 audit(2000524507.044:59839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17727 comm="syz.0.20884" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000 [ 512.727331][T17732] netlink: 8 bytes leftover after parsing attributes in process `syz.0.20885'. [ 512.728239][ T40] audit: type=1326 audit(2000524507.044:59840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17727 comm="syz.0.20884" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000 [ 512.728261][ T40] audit: type=1326 audit(2000524507.044:59841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17727 comm="syz.0.20884" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000 [ 512.744728][ T40] audit: type=1326 audit(2000524507.044:59842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17727 comm="syz.0.20884" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000 [ 512.751224][ T40] audit: type=1326 audit(2000524507.044:59843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17727 comm="syz.0.20884" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000 [ 512.757198][ T40] audit: type=1326 audit(2000524507.044:59844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17727 comm="syz.0.20884" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000 [ 512.764501][ T40] audit: type=1326 audit(2000524507.044:59845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17727 comm="syz.0.20884" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff2598 code=0x7ffc0000 [ 512.976943][ T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 513.307542][ T6046] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 513.675681][T17792] input: syz0 as /devices/virtual/input/input79 [ 513.741429][T17794] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check. [ 514.077301][ T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 514.505484][ T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 514.587522][T17838] netlink: 4 bytes leftover after parsing attributes in process `syz.3.20933'. [ 514.939415][ T5953] kernel write not supported for file [eventfd] (pid: 5953 comm: kworker/1:2) [ 515.189474][ T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 515.202776][ T5843] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 515.922039][T17974] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 515.925439][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 515.979832][T17982] netlink: 4 bytes leftover after parsing attributes in process `syz.4.21000'. [ 516.311836][ T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 516.825410][T18046] Falling back ldisc for ttyS3. [ 516.851995][T18062] Bluetooth: received HCILL_WAKE_UP_IND in state 2 [ 517.069477][T18088] netlink: 830 bytes leftover after parsing attributes in process `syz.0.21047'. [ 517.151220][T18098] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -107 0 [ 517.412723][ T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 517.754805][ T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 517.883006][ T26] usb 5-1: new high-speed USB device number 24 using dummy_hcd [ 518.057732][ T26] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 518.060490][ T26] usb 5-1: config 0 interface 0 has no altsetting 0 [ 518.063930][ T26] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 518.066495][ T26] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 518.068710][ T26] usb 5-1: Product: syz [ 518.069872][ T26] usb 5-1: Manufacturer: syz [ 518.071228][ T26] usb 5-1: SerialNumber: syz [ 518.073480][ T26] usb 5-1: config 0 descriptor?? [ 518.077620][ T26] usb 5-1: selecting invalid altsetting 0 [ 518.292243][ T5953] usb 5-1: USB disconnect, device number 24 [ 518.418554][T18132] kvm: kvm [18131]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x40000085) = 0x0 [ 518.535764][T10240] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 518.855814][ T26] usb 6-1: new high-speed USB device number 22 using dummy_hcd [ 519.016176][ T26] usb 6-1: Using ep0 maxpacket: 8 [ 519.019072][ T26] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 519.022387][ T26] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 519.025545][ T26] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 519.029340][ T26] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 519.034316][ T26] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 519.037684][ T6013] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 519.037732][T14689] Bluetooth: hci3: command 0x1003 tx timeout [ 519.043858][ T26] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 519.266041][ T26] usb 6-1: GET_CAPABILITIES returned 0 [ 519.267710][ T26] usbtmc 6-1:16.0: can't read capabilities [ 519.366167][ T40] kauditd_printk_skb: 33 callbacks suppressed [ 519.366183][ T40] audit: type=1804 audit(2000524513.302:59879): pid=18166 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm=6C2586CE36DB0CCF197CC94F7FCE8F name="/newroot/303/file0" dev="tmpfs" ino=1555 res=1 errno=0 [ 519.392865][T18168] Failed to get privilege flags for destination (handle=0x2:0x0) [ 519.486154][ T6046] usb 6-1: USB disconnect, device number 22 [ 519.543459][T18178] netlink: 'syz.4.21090': attribute type 4 has an invalid length. [ 519.636464][ T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 520.545030][ T5953] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 520.705318][ T5953] usb 5-1: Using ep0 maxpacket: 16 [ 520.707989][ T5953] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 520.711580][ T5953] usb 5-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00 [ 520.714134][ T5953] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 520.725218][ T5953] usb 5-1: config 0 descriptor?? [ 520.728897][ T5953] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input80 [ 520.748201][ T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 520.945794][ T5953] bcm5974 5-1:0.0: could not read from device [ 520.952382][ T5953] input: failed to attach handler mousedev to device input80, error: -5 [ 520.955757][ T5344] bcm5974 5-1:0.0: could not read from device [ 520.958299][ T5953] usb 5-1: USB disconnect, device number 25 [ 520.995744][T18281] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 521.015947][ T6046] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 521.224366][ T40] audit: type=1326 audit(2000524515.042:59880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18306 comm="syz.3.21147" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 521.232081][ T40] audit: type=1326 audit(2000524515.051:59881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18306 comm="syz.3.21147" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 521.238841][ T40] audit: type=1326 audit(2000524515.051:59882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18306 comm="syz.3.21147" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 521.245789][ T40] audit: type=1326 audit(2000524515.051:59883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18306 comm="syz.3.21147" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x0 [ 521.781216][T18348] loop6: detected capacity change from 0 to 524287999 [ 521.783579][ C0] blk_print_req_error: 24 callbacks suppressed [ 521.783588][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 521.788099][ C0] buffer_io_error: 4 callbacks suppressed [ 521.788106][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 521.792187][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 521.794996][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 521.797687][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 521.800236][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 521.802652][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 521.805285][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 521.807674][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 521.810239][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 521.812522][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 521.815083][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 521.817481][ C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 521.820056][ C3] Buffer I/O error on dev loop6, logical block 0, async page read [ 521.822403][ C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 521.824971][ C3] Buffer I/O error on dev loop6, logical block 0, async page read [ 521.827204][T18348] ldm_validate_partition_table(): Disk read failed. [ 521.829879][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 521.832450][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 521.834769][ C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 521.837409][ C3] Buffer I/O error on dev loop6, logical block 0, async page read [ 521.840701][T18348] Dev loop6: unable to read RDB block 0 [ 521.860361][T10240] net_ratelimit: 1 callbacks suppressed [ 521.860374][T10240] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 521.893443][T18351] loop6: detected capacity change from 524287999 to 524288000 [ 521.900415][T18348] loop6: unable to read partition table [ 521.904852][T18348] loop_reread_partitions: partition scan of loop6 (ǴWC@'OQҥ) failed (rc=-5) [ 521.969670][T18363] netlink: 4 bytes leftover after parsing attributes in process `syz.4.21172'. [ 522.038296][T18369] Bluetooth: received HCILL_WAKE_UP_IND in state 2 [ 522.145831][T18372] netlink: 32 bytes leftover after parsing attributes in process `syz.3.21175'. [ 522.628807][T18392] input: syz0 as /devices/virtual/input/input81 [ 522.938302][T18417] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 522.941479][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 522.949531][T18417] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 522.951982][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 522.982682][T10240] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 523.107630][T18433] openvswitch: netlink: nsh attribute has 65512 unknown bytes. [ 523.110488][T18433] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 523.145725][T18435] netlink: 136 bytes leftover after parsing attributes in process `syz.4.21203'. [ 523.149026][T18435] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 523.200955][T18439] input: syz0 as /devices/virtual/input/input82 [ 523.214451][T15375] udevd[15375]: setting owner of /dev/input/event5 to uid=0, gid=104 failed: No such file or directory [ 523.642081][T18466] net veth1_virt_wifi : renamed from virt_wifi0 [ 524.018906][T18499] netlink: 'syz.0.21231': attribute type 9 has an invalid length. [ 524.094373][T10240] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 524.255097][ T6013] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 524.304203][T14689] Bluetooth: hci3: sending frame failed (-49) [ 524.308825][ T6013] Bluetooth: hci3: Opcode 0x1003 failed: -49 [ 524.810538][ T26] usb 6-1: new high-speed USB device number 23 using dummy_hcd [ 524.983921][ T26] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 524.988209][ T26] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 524.991963][ T26] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 524.995691][ T26] usb 6-1: New USB device found, idVendor=1770, idProduct=ff00, bcdDevice= 0.00 [ 524.998289][ T26] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 525.001347][ T26] usb 6-1: config 0 descriptor?? [ 525.225063][ T26] usbhid 6-1:0.0: can't add hid device: -71 [ 525.226922][ T26] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 525.231943][ T26] usb 6-1: USB disconnect, device number 23 [ 525.632279][T18553] netlink: 36 bytes leftover after parsing attributes in process `syz.0.21253'. [ 527.355076][T14689] Bluetooth: hci4: Dropping invalid advertising data [ 527.357481][T14689] Bluetooth: hci4: Dropping invalid advertising data [ 527.359345][T14689] Bluetooth: hci4: Malformed LE Event: 0x02 [ 527.620107][T18652] netlink: 11 bytes leftover after parsing attributes in process `syz.4.21296'. [ 527.624334][T18652] netlink: 20 bytes leftover after parsing attributes in process `syz.4.21296'. [ 527.762090][T18664] netlink: 71 bytes leftover after parsing attributes in process `syz.0.21302'. [ 527.978388][T18681] netlink: 4 bytes leftover after parsing attributes in process `syz.4.21309'. [ 528.124848][T18697] qrtr: Invalid version 0 [ 528.440831][T10240] kernel read not supported for file /dsp (pid: 10240 comm: kworker/3:4) [ 528.487291][T18725] trusted_key: syz.3.21329 sent an empty control message without MSG_MORE. [ 528.536237][T18733] netlink: 'syz.4.21332': attribute type 8 has an invalid length. [ 528.539006][T18733] netlink: 163260 bytes leftover after parsing attributes in process `syz.4.21332'. [ 528.927545][T18758] netlink: 'syz.3.21344': attribute type 1 has an invalid length. [ 529.792378][T10240] usb 5-1: new high-speed USB device number 26 using dummy_hcd [ 529.952719][T10240] usb 5-1: Using ep0 maxpacket: 8 [ 529.955910][T10240] usb 5-1: config 0 has no interfaces? [ 529.959154][T10240] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee [ 529.961884][T10240] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 529.964466][T10240] usb 5-1: Product: syz [ 529.965780][T10240] usb 5-1: Manufacturer: syz [ 529.967223][T10240] usb 5-1: SerialNumber: syz [ 529.969596][T10240] usb 5-1: config 0 descriptor?? [ 530.192091][ T5953] usb 5-1: USB disconnect, device number 26 [ 530.738760][T18804] netlink: 8 bytes leftover after parsing attributes in process `syz.3.21363'. [ 530.903985][T18819] netlink: 8 bytes leftover after parsing attributes in process `syz.3.21369'. [ 531.117431][T18840] netlink: 4 bytes leftover after parsing attributes in process `syz.0.21381'. [ 531.340049][ T40] audit: type=1326 audit(2000524524.499:59884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18860 comm="syz.3.21390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 531.347448][ T40] audit: type=1326 audit(2000524524.499:59885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18860 comm="syz.3.21390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 531.357763][ T40] audit: type=1326 audit(2000524524.508:59886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18860 comm="syz.3.21390" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 531.364502][ T40] audit: type=1326 audit(2000524524.508:59887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18860 comm="syz.3.21390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 531.370599][ T40] audit: type=1326 audit(2000524524.508:59888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18860 comm="syz.3.21390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 531.378379][ T40] audit: type=1326 audit(2000524524.508:59889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18860 comm="syz.3.21390" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 531.385055][ T40] audit: type=1326 audit(2000524524.508:59890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18860 comm="syz.3.21390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 531.392920][ T40] audit: type=1326 audit(2000524524.508:59891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18860 comm="syz.3.21390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 531.400849][ T40] audit: type=1326 audit(2000524524.517:59892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18860 comm="syz.3.21390" exe="/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 531.409260][ T40] audit: type=1326 audit(2000524524.517:59893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18860 comm="syz.3.21390" exe="/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 531.608688][T18881] input: syz1 as /devices/virtual/input/input85 [ 531.774423][T18900] team0: Device is loopback device. Loopback devices can't be added as a team port [ 531.778485][T18900] net_ratelimit: 18 callbacks suppressed [ 531.778497][T18900] A link change request failed with some changes committed already. Interface may have been left with an inconsistent configuration, please check. [ 531.839205][T18908] openvswitch: netlink: nsh attribute has unmatched MD type 0. [ 531.843709][T18908] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 532.750369][T18910] [U] . [ 532.895366][T18985] netlink: 4 bytes leftover after parsing attributes in process `syz.1.21449'. [ 532.899594][T18985] netlink: 4 bytes leftover after parsing attributes in process `syz.1.21449'. [ 533.274486][T19017] macvlan0: left promiscuous mode [ 533.278182][T19017] netlink: 'syz.0.21463': attribute type 2 has an invalid length. [ 533.804877][T10240] hid-generic 0000:0003:0000.0009: unknown main item tag 0x0 [ 533.807760][T10240] hid-generic 0000:0003:0000.0009: unknown main item tag 0x0 [ 533.813203][T10240] hid-generic 0000:0003:0000.0009: hidraw1: HID v0.00 Device [syz0] on syz1 [ 534.251518][ T26] usb 6-1: new high-speed USB device number 25 using dummy_hcd [ 534.421508][ T26] usb 6-1: Using ep0 maxpacket: 8 [ 534.428357][ T26] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 534.431090][ T26] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 534.434038][ T26] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 534.436712][ T26] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 534.440866][ T26] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 534.444876][ T26] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 534.667021][ T26] usb 6-1: GET_CAPABILITIES returned 0 [ 534.668703][ T26] usbtmc 6-1:16.0: can't read capabilities [ 534.886800][ T5953] usb 6-1: USB disconnect, device number 25 [ 535.599327][T19126] openvswitch: netlink: nsh attribute has 65512 unknown bytes. [ 535.602252][T19126] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 535.715147][T14689] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 535.722508][T19144] input: syz0 as /devices/virtual/input/input86 [ 536.370670][T19183] serio: Serial port ptm0 [ 536.557505][T19198] netlink: 24 bytes leftover after parsing attributes in process `syz.1.21546'. [ 536.601478][T19202] kernel read not supported for file /.pending_reads (pid: 19202 comm: syz.1.21548) [ 536.660968][T19208] net veth1_virt_wifi : renamed from virt_wifi0 [ 536.680591][T19210] netlink: 'syz.4.21559': attribute type 9 has an invalid length. [ 536.876691][T19240] vxcan3: entered promiscuous mode [ 536.878586][T19240] vxcan3: entered allmulticast mode [ 536.893308][ T26] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 537.906343][T19253] bridge0: port 2(wlan1) entered blocking state [ 537.908743][T19253] bridge0: port 2(wlan1) entered disabled state [ 537.910908][T19253] mac80211_hwsim hwsim20 wlan1: entered allmulticast mode [ 537.913334][T19253] mac80211_hwsim hwsim20 wlan1: entered promiscuous mode [ 538.453652][T10240] usb 5-1: new high-speed USB device number 27 using dummy_hcd [ 538.633505][T10240] usb 5-1: Using ep0 maxpacket: 8 [ 538.636879][T10240] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 538.640947][T10240] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 538.649391][T10240] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 538.652579][T10240] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 538.656378][T10240] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 538.659397][T10240] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 538.708337][T14689] Bluetooth: hci4: command 0x041b tx timeout [ 538.736142][T19320] gretap0: left allmulticast mode [ 538.769800][T19320] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check. [ 538.892376][T19325] o2cb: This node has not been configured. [ 538.894373][T19325] o2cb: Cluster check failed. Fix errors before retrying. [ 538.896335][T19325] (syz.1.21602,19325,1):user_dlm_register:674 ERROR: status = -22 [ 538.898480][T19325] (syz.1.21602,19325,1):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "bus" [ 538.900002][T10240] usb 5-1: GET_CAPABILITIES returned 0 [ 538.904509][T10240] usbtmc 5-1:16.0: can't read capabilities [ 539.123661][ T5953] usb 5-1: USB disconnect, device number 27 [ 539.180549][T19344] qrtr: Invalid version 0 [ 539.311858][T19346] netlink: 4 bytes leftover after parsing attributes in process `syz.1.21612'. [ 539.379054][T19352] netlink: 'syz.1.21615': attribute type 1 has an invalid length. [ 539.851016][ T40] kauditd_printk_skb: 6 callbacks suppressed [ 539.851026][ T40] audit: type=1326 audit(2000524532.459:59900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19386 comm="syz.3.21632" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 539.861382][ T40] audit: type=1326 audit(2000524532.468:59901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19386 comm="syz.3.21632" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 539.867807][ T40] audit: type=1326 audit(2000524532.478:59902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19386 comm="syz.3.21632" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 539.874486][ T40] audit: type=1326 audit(2000524532.478:59903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19386 comm="syz.3.21632" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 539.880784][ T40] audit: type=1326 audit(2000524532.478:59904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19386 comm="syz.3.21632" exe="/syz-executor" sig=0 arch=40000003 syscall=279 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 539.886811][ T40] audit: type=1326 audit(2000524532.478:59905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19386 comm="syz.3.21632" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 539.892769][ T40] audit: type=1326 audit(2000524532.478:59906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19386 comm="syz.3.21632" exe="/syz-executor" sig=0 arch=40000003 syscall=280 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 539.899061][ T40] audit: type=1326 audit(2000524532.478:59907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19386 comm="syz.3.21632" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f58579 code=0x7ffc0000 [ 539.911585][T19387] serio: Serial port ptm0 [ 540.245691][T19425] ALSA: mixer_oss: invalid OSS volume 'DIGTAL1' [ 540.378157][T19441] netlink: 8 bytes leftover after parsing attributes in process `syz.1.21654'. [ 540.470336][T19453] openvswitch: netlink: nsh attribute has unmatched MD type 0. [ 540.472570][T19453] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 540.608116][T19468] netlink: 'syz.3.21667': attribute type 3 has an invalid length. [ 540.621933][T19468] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.21667'. [ 540.961423][T19500] netlink: 4 bytes leftover after parsing attributes in process `syz.1.21682'. [ 541.167832][T19524] netlink: 4 bytes leftover after parsing attributes in process `syz.1.21693'. [ 541.181511][T19526] ALSA: mixer_oss: invalid OSS volume 'DIGTAL1' [ 541.276763][ T26] kernel write not supported for file /sequencer (pid: 26 comm: kworker/2:0) [ 541.354691][T19551] MPI: mpi too large (16392 bits) [ 541.505830][T19563] netlink: 12 bytes leftover after parsing attributes in process `syz.0.21710'. [ 541.905519][ T6013] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 541.914046][ T6013] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 541.918301][ T6013] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 541.921643][ T6013] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 541.924541][ T6013] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 541.931045][ T6013] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 541.955367][T19578] ip6gre0 speed is unknown, defaulting to 1000 [ 542.760804][T12852] team0: Port device bridge0 removed [ 543.018085][T12852]  (unregistering): (slave bond_slave_0): Releasing backup interface [ 543.022416][T12852]  (unregistering): (slave bond_slave_1): Releasing backup interface [ 543.026783][T12852]  (unregistering): (slave macvlan0): Releasing backup interface [ 543.030807][T12852]  (unregistering): Released all slaves [ 543.153667][T12852] bond1 (unregistering): Released all slaves [ 543.270329][T12852] bond2 (unregistering): Released all slaves [ 543.373774][T12852] bond0 (unregistering): Released all slaves [ 543.379140][T12852] bond3 (unregistering): Released all slaves [ 543.383887][T12852] bond4 (unregistering): Released all slaves [ 543.430161][T19578] chnl_net:caif_netlink_parms(): no params data found [ 543.492710][T12852] tipc: Left network mode [ 543.612760][T19578] bridge0: port 1(bridge_slave_0) entered blocking state [ 543.615307][T19578] bridge0: port 1(bridge_slave_0) entered disabled state [ 543.620358][T19578] bridge_slave_0: entered allmulticast mode [ 543.622507][T19578] bridge_slave_0: entered promiscuous mode [ 543.626602][T19578] bridge0: port 2(bridge_slave_1) entered blocking state [ 543.629520][T19578] bridge0: port 2(bridge_slave_1) entered disabled state [ 543.632293][T19578] bridge_slave_1: entered allmulticast mode [ 543.635387][T19578] bridge_slave_1: entered promiscuous mode [ 543.723177][T19578] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 543.728371][T19578] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 543.811288][T19578] team0: Port device team_slave_0 added [ 543.814957][T19578] team0: Port device team_slave_1 added [ 543.842644][T19578] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 543.844568][T19578] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 543.851570][T19578] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 543.855476][T19578] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 543.857440][T19578] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 543.866335][T19578] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 543.904460][T19578] hsr_slave_0: entered promiscuous mode [ 543.906532][T19578] hsr_slave_1: entered promiscuous mode [ 543.908656][T19578] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 543.910873][T19578] Cannot create hsr debugfs directory [ 544.096663][ T6013] Bluetooth: hci2: command tx timeout [ 544.228770][T19641] mkiss: ax0: crc mode is auto. [ 544.407394][T12852] hsr_slave_0: left promiscuous mode [ 544.409570][T12852] hsr_slave_1: left promiscuous mode [ 544.411325][T12852] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 544.414636][T12852] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 544.419843][T19655] input: syz1 as /devices/virtual/input/input89 [ 544.430427][T12852] pimreg (unregistering): left allmulticast mode [ 544.535496][T19665] loop2: detected capacity change from 0 to 1 [ 544.563725][T19665] Dev loop2: unable to read RDB block 1 [ 544.565771][T19665] loop2: unable to read partition table [ 544.567972][T19665] loop2: partition table beyond EOD, truncated [ 544.570197][T19665] loop_reread_partitions: partition scan of loop2 (被x ) failed (rc=-5) [ 545.330473][T12852] team_slave_1 (unregistering): left promiscuous mode [ 545.338560][T12852] team0 (unregistering): Port device team_slave_1 removed [ 545.456972][T12852] C (unregistering): left promiscuous mode [ 545.459092][T12852] team0 (unregistering): Port device C removed [ 546.061634][T12852] vxcan1 (unregistering): left allmulticast mode [ 546.237714][T19669] netlink: 'syz.3.21755': attribute type 4 has an invalid length. [ 546.280811][T19578] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 546.287476][T19578] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 546.292061][T19578] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 546.308799][T19578] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 546.320449][ T6013] Bluetooth: hci2: command tx timeout [ 546.387519][T19686] netlink: 'syz.4.21763': attribute type 19 has an invalid length. [ 546.398115][T19578] 8021q: adding VLAN 0 to HW filter on device bond0 [ 546.407554][T19578] 8021q: adding VLAN 0 to HW filter on device team0 [ 546.412542][T19301] bridge0: port 1(bridge_slave_0) entered blocking state [ 546.414597][T19301] bridge0: port 1(bridge_slave_0) entered forwarding state [ 546.425928][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 546.427997][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 546.479486][T19578] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 546.491619][T19578] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 546.544933][T19701] bridge: RTM_NEWNEIGH with invalid state 0x4 [ 546.585215][T19578] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 546.607709][T19578] veth0_vlan: entered promiscuous mode [ 546.618509][T19578] veth1_vlan: entered promiscuous mode [ 546.646001][T19578] veth0_macvtap: entered promiscuous mode [ 546.648810][T19578] veth1_macvtap: entered promiscuous mode [ 546.671189][T19578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 546.674387][T19578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 546.677604][T19578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 546.681452][T19578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 546.689006][T19578] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 546.693711][T19578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 546.696928][T19578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 546.699718][T19578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 546.702554][T19578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 546.706385][T19578] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 546.707106][T12852] IPVS: stop unused estimator thread 0... [ 546.710838][T19578] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 546.713327][T19578] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 546.715980][T19578] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 546.719145][T19578] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 546.732914][T19713] netlink: 'syz.4.21774': attribute type 9 has an invalid length. [ 546.782630][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 546.784817][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 546.800479][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 546.804022][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 546.870413][T19726] netlink: 2 bytes leftover after parsing attributes in process `syz.1.21715'. [ 547.185596][T19752] netlink: 'syz.0.21790': attribute type 1 has an invalid length. [ 547.188234][T19752] netlink: 134708 bytes leftover after parsing attributes in process `syz.0.21790'. [ 547.426515][T19775] netlink: 20 bytes leftover after parsing attributes in process `syz.1.21801'. [ 548.218677][T19799] netlink: 4 bytes leftover after parsing attributes in process `syz.0.21811'. [ 548.359415][T19809] netlink: 4 bytes leftover after parsing attributes in process `syz.4.21816'. [ 548.543828][ T6013] Bluetooth: hci2: command tx timeout [ 548.609803][T19826] netlink: 16 bytes leftover after parsing attributes in process `syz.0.21824'. [ 549.126356][T19882] kvm: kvm [19881]: vcpu0, guest rIP: 0xfff0 Unhandled RDMSR(0x4000000f) [ 549.221517][T19887] gfs2: gfs2 mount does not exist [ 549.337192][T19895] misc userio: Can't change port type on an already running userio instance [ 549.788486][T19914] netlink: 8 bytes leftover after parsing attributes in process `syz.1.21865'. [ 549.791669][T19914] netlink: 'syz.1.21865': attribute type 2 has an invalid length. [ 549.821440][T19916] 8021q: adding VLAN 0 to HW filter on device bond1 [ 549.826166][T19916] bond0: (slave bond1): Enslaving as an active interface with an up link [ 550.380367][T19964] netlink: 16 bytes leftover after parsing attributes in process `syz.4.21888'. [ 550.457651][ T9] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 550.521550][ T26] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 550.567553][ T9] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 550.607800][T19969] bridge_slave_0: default FDB implementation only supports local addresses [ 550.624229][T19971] netlink: 'syz.3.21891': attribute type 1 has an invalid length. [ 550.660594][ T5953] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 550.701915][ T40] audit: type=1326 audit(2000524542.608:59908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19976 comm="syz.4.21894" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fd5598 code=0x7ffc0000 [ 550.709569][ T40] audit: type=1326 audit(2000524542.608:59909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19976 comm="syz.4.21894" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd5579 code=0x7ffc0000 [ 550.716068][ T40] audit: type=1326 audit(2000524542.608:59910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19976 comm="syz.4.21894" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd5579 code=0x7ffc0000 [ 550.722118][ T40] audit: type=1326 audit(2000524542.608:59911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19976 comm="syz.4.21894" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd5579 code=0x7ffc0000 [ 550.728249][ T40] audit: type=1326 audit(2000524542.608:59912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19976 comm="syz.4.21894" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fd5598 code=0x7ffc0000 [ 550.734446][ T40] audit: type=1326 audit(2000524542.608:59913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19976 comm="syz.4.21894" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fd5598 code=0x7ffc0000 [ 550.741050][ T40] audit: type=1326 audit(2000524542.608:59914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19976 comm="syz.4.21894" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd5579 code=0x7ffc0000 [ 550.747260][ T5953] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 550.749781][ T40] audit: type=1326 audit(2000524542.608:59915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19976 comm="syz.4.21894" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fd5598 code=0x7ffc0000 [ 550.755762][ T40] audit: type=1326 audit(2000524542.608:59916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19976 comm="syz.4.21894" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fd5598 code=0x7ffc0000 [ 550.761963][ T40] audit: type=1326 audit(2000524542.608:59917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19976 comm="syz.4.21894" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd5579 code=0x7ffc0000 [ 550.767439][ T6013] Bluetooth: hci2: command tx timeout [ 550.832293][T19987] input: syz1 as /devices/virtual/input/input91 [ 550.843350][ T5953] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 550.928115][ T36] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 551.013260][ T5953] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 551.098799][ T5953] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 551.237793][ T6046] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 551.417308][T20046] kvm: user requested TSC rate below hardware speed [ 551.712898][T20081] netlink: 64 bytes leftover after parsing attributes in process `syz.4.21941'. [ 552.081632][T20106] netlink: 16 bytes leftover after parsing attributes in process `syz.4.21951'. [ 552.447452][T20132] netlink: 4 bytes leftover after parsing attributes in process `syz.4.21964'. [ 552.740285][T20158] Context (ID=0x0) not attached to queue pair (handle=0x1:0x0) [ 553.850658][T20264] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 553.870720][ T6046] kernel write not supported for file /sg0 (pid: 6046 comm: kworker/0:3) [ 554.280056][T20308] kernel read not supported for file /eth0 (pid: 20308 comm: syz.4.22048) [ 554.588930][T20323] sg_write: data in/out 489/14 bytes for SCSI command 0x3-- guessing data in; [ 554.588930][T20323] program syz.1.22054 not setting count and/or reply_len properly [ 554.796613][T20333] netlink: 112 bytes leftover after parsing attributes in process `syz.1.22058'. [ 555.388817][T20397] bridge: RTM_NEWNEIGH with invalid state 0x4 [ 555.596627][T20410] ptrace attach of "/syz-executor exec"[20411] was attempted by "/syz-executor exec"[20410] [ 555.794313][T20425] mkiss: ax0: crc mode is auto. [ 556.155449][ T6013] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 556.439353][ T40] kauditd_printk_skb: 118 callbacks suppressed [ 556.439368][ T40] audit: type=1326 audit(2000524547.977:60036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20454 comm="syz.0.22115" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff2579 code=0x0 [ 557.278181][T20491] netlink: 'syz.1.22130': attribute type 9 has an invalid length. [ 557.685031][T20525] warn_alloc: 1 callbacks suppressed [ 557.685041][T20525] syz.3.22145: page allocation failure: order:10, mode:0x40cc0(GFP_KERNEL|__GFP_COMP), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 557.690297][T20525] CPU: 0 UID: 0 PID: 20525 Comm: syz.3.22145 Not tainted 6.14.0-rc6-syzkaller #0 [ 557.690311][T20525] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 557.690317][T20525] Call Trace: [ 557.690321][T20525] [ 557.690326][T20525] dump_stack_lvl+0x16c/0x1f0 [ 557.690346][T20525] warn_alloc+0x24d/0x3a0 [ 557.690364][T20525] ? __pfx_warn_alloc+0x10/0x10 [ 557.690382][T20525] ? __alloc_pages_direct_compact+0x45a/0x590 [ 557.690400][T20525] ? __pfx___alloc_pages_direct_compact+0x10/0x10 [ 557.690420][T20525] ? psi_memstall_leave+0x17d/0x250 [ 557.690436][T20525] __alloc_frozen_pages_noprof+0xf2f/0x2470 [ 557.690455][T20525] ? hlock_class+0x4e/0x130 [ 557.690468][T20525] ? hlock_class+0x4e/0x130 [ 557.690479][T20525] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 557.690500][T20525] ? __pfx___lock_acquire+0x10/0x10 [ 557.690514][T20525] ? mark_lock+0xb5/0xc60 [ 557.690527][T20525] ? aa_label_sk_perm+0x19d/0x5a0 [ 557.690545][T20525] ? rds_info_getsockopt+0x376/0x4f0 [ 557.690559][T20525] __alloc_pages_noprof+0xb/0x1b0 [ 557.690575][T20525] ___kmalloc_large_node+0x84/0x1b0 [ 557.690589][T20525] __kmalloc_large_node_noprof+0x1c/0x70 [ 557.690604][T20525] __kmalloc_noprof.cold+0xc/0x61 [ 557.690616][T20525] ? __might_fault+0xe3/0x190 [ 557.690630][T20525] rds_info_getsockopt+0x376/0x4f0 [ 557.690645][T20525] ? __might_fault+0x13b/0x190 [ 557.690656][T20525] ? __pfx_rds_info_getsockopt+0x10/0x10 [ 557.690670][T20525] ? trace_lock_acquire+0x14e/0x1f0 [ 557.690683][T20525] ? lock_acquire+0x2f/0xb0 [ 557.690697][T20525] ? __might_fault+0xe3/0x190 [ 557.690707][T20525] ? __might_fault+0xe3/0x190 [ 557.690719][T20525] rds_getsockopt+0x173/0x2d0 [ 557.690730][T20525] ? __pfx_rds_getsockopt+0x10/0x10 [ 557.690741][T20525] do_sock_getsockopt+0x3fe/0x800 [ 557.690755][T20525] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 557.690767][T20525] ? lock_acquire+0x2f/0xb0 [ 557.690780][T20525] ? __fget_files+0x40/0x3a0 [ 557.690797][T20525] ? __fget_files+0x206/0x3a0 [ 557.690814][T20525] __sys_getsockopt+0x12f/0x260 [ 557.690833][T20525] __ia32_sys_getsockopt+0xbc/0x160 [ 557.690848][T20525] ? lockdep_hardirqs_on+0x7c/0x110 [ 557.690862][T20525] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 557.690877][T20525] __do_fast_syscall_32+0x73/0x120 [ 557.690892][T20525] do_fast_syscall_32+0x32/0x80 [ 557.690907][T20525] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 557.690924][T20525] RIP: 0023:0xf7f58579 [ 557.690933][T20525] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 557.690942][T20525] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 000000000000016d [ 557.690965][T20525] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000114 [ 557.690974][T20525] RDX: 0000000000002716 RSI: 0000000000000000 RDI: 0000000080000000 [ 557.690982][T20525] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 557.690988][T20525] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 557.690995][T20525] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 557.691009][T20525] [ 557.691066][T20525] Mem-Info: [ 557.718005][ T36] hid-generic 0000:0003:0000.000A: unknown main item tag 0x0 [ 557.718486][T20525] active_anon:804 inactive_anon:2423 isolated_anon:0 [ 557.718486][T20525] active_file:11232 inactive_file:2099 isolated_file:0 [ 557.718486][T20525] unevictable:1759 dirty:298 writeback:0 [ 557.718486][T20525] slab_reclaimable:6193 slab_unreclaimable:68567 [ 557.718486][T20525] mapped:22538 shmem:1844 pagetables:1355 [ 557.718486][T20525] sec_pagetables:334 bounce:0 [ 557.718486][T20525] kernel_misc_reclaimable:0 [ 557.718486][T20525] free:71572 free_pcp:332 free_cma:0 [ 557.720342][ T36] hid-generic 0000:0003:0000.000A: unknown main item tag 0x0 [ 557.721474][T20525] Node 0 active_anon:28kB inactive_anon:180kB active_file:0kB inactive_file:24kB unevictable:3516kB isolated(anon):0kB isolated(file):0kB mapped:32kB dirty:12kB writeback:0kB shmem:3556kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8624kB pagetables:1120kB sec_pagetables:1188kB all_unreclaimable? yes [ 557.727804][ T36] hid-generic 0000:0003:0000.000A: hidraw1: HID v0.00 Device [syz0] on syz1 [ 557.729122][T20525] Node 1 active_anon:3188kB inactive_anon:9512kB active_file:45992kB inactive_file:6648kB unevictable:3520kB isolated(anon):0kB isolated(file):0kB mapped:89820kB dirty:1180kB writeback:0kB shmem:3820kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:5176kB pagetables:4300kB sec_pagetables:148kB all_unreclaimable? no [ 557.729153][T20525] Node 0 DMA free:2624kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 557.834552][T20525] lowmem_reserve[]: 0 294 294 294 294 [ 557.836504][T20525] Node 0 DMA32 free:34880kB boost:14336kB min:27896kB low:31284kB high:34672kB reserved_highatomic:2048KB active_anon:28kB inactive_anon:180kB active_file:0kB inactive_file:24kB unevictable:3516kB writepending:12kB present:1032196kB managed:301716kB mlocked:0kB bounce:0kB free_pcp:864kB local_pcp:0kB free_cma:0kB [ 557.846895][T20525] lowmem_reserve[]: 0 0 0 0 0 [ 557.848595][T20525] Node 1 DMA32 free:253392kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:2048KB active_anon:3444kB inactive_anon:8712kB active_file:47360kB inactive_file:3548kB unevictable:3520kB writepending:1180kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:596kB local_pcp:0kB free_cma:0kB [ 557.859412][T20525] lowmem_reserve[]: 0 0 0 0 0 [ 557.861137][T20525] Node 0 DMA: 44*4kB (UM) 16*8kB (UM) 15*16kB (UM) 9*32kB (UM) 0*64kB 2*128kB (UM) 0*256kB 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 2624kB [ 557.866427][T20525] Node 0 DMA32: 1099*4kB (UMEH) 449*8kB (UMEH) 166*16kB (UMH) 193*32kB (UMH) 82*64kB (UMH) 39*128kB (UMH) 22*256kB (UMH) 0*512kB 2*1024kB (U) 0*2048kB 0*4096kB = 34740kB [ 557.872706][T20525] Node 1 DMA32: 1504*4kB (UME) 927*8kB (UME) 827*16kB (UME) 475*32kB (UME) 274*64kB (UME) 49*128kB (UME) 38*256kB (UME) 114*512kB (UM) 85*1024kB (UM) 16*2048kB (UMH) 0*4096kB = 253576kB [ 557.879268][T20525] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 557.882643][T20525] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 557.885924][T20525] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 557.889419][T20525] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 557.892732][T20525] 15373 total pagecache pages [ 557.894446][T20525] 798 pages in swap cache [ 557.896010][T20525] Free swap = 72880kB [ 557.897540][T20525] Total swap = 124996kB [ 557.899156][T20525] 524155 pages RAM [ 557.900482][T20525] 0 pages HighMem/MovableOnly [ 557.902229][T20525] 207823 pages reserved [ 557.903741][T20525] 0 pages cma reserved [ 558.588074][T20574] kvm: kvm [20573]: vcpu0, guest rIP: 0xfff0 Unhandled RDMSR(0x4000000f) [ 559.012200][T20611] netlink: 'syz.4.22184': attribute type 39 has an invalid length. [ 559.207630][T20627] netlink: 4 bytes leftover after parsing attributes in process `syz.1.22192'. [ 559.211302][T20627] netlink: 112 bytes leftover after parsing attributes in process `syz.1.22192'. [ 559.215158][T20627] netlink: 400 bytes leftover after parsing attributes in process `syz.1.22192'. [ 559.217890][T20627] netlink: 4 bytes leftover after parsing attributes in process `syz.1.22192'. [ 559.522004][T20655] openvswitch: netlink: nsh attribute has 24925 unknown bytes. [ 559.525397][T20655] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 559.590226][T20661] netlink: 8 bytes leftover after parsing attributes in process `syz.0.22207'. [ 559.620013][T20665] misc userio: Can't change port type on an already running userio instance [ 559.629989][T20667] netlink: 4 bytes leftover after parsing attributes in process `syz.3.22211'. [ 559.750715][T20671] netlink: 'syz.1.22220': attribute type 1 has an invalid length. [ 560.052730][T20702] input: syz1 as /devices/virtual/input/input94 [ 560.287570][T20722] IPVS: Error connecting to the multicast addr [ 560.387517][ T40] audit: type=1326 audit(2000524551.672:60037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20732 comm="syz.1.22242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x7ffc0000 [ 560.399629][ T40] audit: type=1326 audit(2000524551.672:60038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20732 comm="syz.1.22242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x7ffc0000 [ 560.405992][ T40] audit: type=1326 audit(2000524551.672:60039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20732 comm="syz.1.22242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x7ffc0000 [ 560.415061][ T40] audit: type=1326 audit(2000524551.672:60040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20732 comm="syz.1.22242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x7ffc0000 [ 560.423811][ T40] audit: type=1326 audit(2000524551.672:60041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20732 comm="syz.1.22242" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fc1598 code=0x7ffc0000 [ 560.432102][ T40] audit: type=1326 audit(2000524551.672:60042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20732 comm="syz.1.22242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x7ffc0000 [ 560.439981][ T40] audit: type=1326 audit(2000524551.672:60043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20732 comm="syz.1.22242" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fc1598 code=0x7ffc0000 [ 560.446655][ T40] audit: type=1326 audit(2000524551.672:60044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20732 comm="syz.1.22242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1579 code=0x7ffc0000 [ 560.454425][ T40] audit: type=1326 audit(2000524551.672:60045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20732 comm="syz.1.22242" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fc1598 code=0x7ffc0000 [ 561.457997][ T6013] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 561.619230][T20783] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 561.623212][T20783] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 561.633434][T20783] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 561.638551][T20783] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 561.640599][T20783] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 561.643081][T20783] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 561.792381][ T40] kauditd_printk_skb: 56 callbacks suppressed [ 561.792392][ T40] audit: type=1326 audit(2000524552.991:60102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20800 comm="syz.1.22268" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc1579 code=0x0 [ 562.382958][T20863] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 562.642233][T20881] netlink: 8 bytes leftover after parsing attributes in process `syz.4.22309'. [ 562.645277][T20881] netlink: 12 bytes leftover after parsing attributes in process `syz.4.22309'. [ 562.775208][T20893] netlink: 8 bytes leftover after parsing attributes in process `syz.3.22315'. [ 562.972037][ T40] audit: type=1326 audit(2000524554.085:60103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20906 comm="syz.3.22321" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f58579 code=0x0 [ 562.998184][ T6046] usb 5-1: new high-speed USB device number 28 using dummy_hcd [ 563.157905][ T6046] usb 5-1: Using ep0 maxpacket: 32 [ 563.164501][ T6046] usb 5-1: unable to get BOS descriptor or descriptor too short [ 563.171004][ T6046] usb 5-1: no configurations [ 563.172863][ T6046] usb 5-1: can't read configurations, error -22 [ 563.767229][ T6013] Bluetooth: hci4: command 0x041b tx timeout [ 563.852787][ T6013] Bluetooth: hci2: command 0x0c1a tx timeout [ 564.359097][ T57] kernel read not supported for file /dsp1 (pid: 57 comm: kworker/1:1) [ 564.666773][T20972] [U] [ 564.667628][T20972] [U] [ 564.668439][T20972] [U] [ 564.669237][T20972] [U] [ 564.670159][T20972] [U] [ 564.670965][T20972] [U] [ 564.671902][T20972] [U] [ 564.673014][T20972] [U] [ 564.673992][T20972] [U] [ 564.674888][T20972] [U] [ 564.675682][T20972] [U] [ 564.676481][T20972] [U] [ 564.677900][T20972] [U] [ 564.678740][T20972] [U] [ 564.679531][T20972] [U] [ 564.680338][T20972] [U] [ 564.681275][T20972] [U] [ 564.682134][T20972] [U] [ 564.682938][T20972] [U] [ 564.683761][T20972] [U] [ 564.684647][T20972] [U] [ 564.685479][T20972] [U] [ 564.686407][T20972] [U] [ 564.687239][T20972] [U] [ 564.688378][T20972] [U] [ 564.689320][T20972] [U] [ 564.690198][T20972] [U] [ 564.691027][T20972] [U] [ 564.691907][T20972] [U] [ 564.692732][T20972] [U] [ 564.693527][T20972] [U] [ 564.694314][T20972] [U] [ 564.695150][T20972] [U] [ 564.695949][T20972] [U] [ 564.696745][T20972] [U] [ 564.697655][T20972] [U] [ 564.698670][T20972] [U] [ 564.699494][T20972] [U] [ 564.700317][T20972] [U] [ 564.701089][T20972] [U] [ 564.701950][T20972] [U] [ 564.702817][T20972] [U] [ 564.703634][T20972] [U] [ 564.704451][T20972] [U] [ 564.705331][T20972] [U] [ 564.706163][T20972] [U] [ 564.706971][T20972] [U] [ 564.707923][T20972] [U] [ 564.709272][T20972] [U] [ 564.710196][T20972] [U] [ 564.711034][T20972] [U] [ 564.711903][T20972] [U] [ 564.712731][T20972] [U] [ 564.713549][T20972] [U] [ 564.714366][T20972] [U] [ 564.715185][T20972] [U] [ 564.716019][T20972] [U] [ 564.716858][T20972] [U] [ 564.717704][T20972] [U] [ 564.718490][T20972] [U] [ 564.719471][T20972] [U] [ 564.720327][T20972] [U] [ 564.721238][T20972] [U] [ 564.722750][T20972] [U] [ 564.724042][T20972] [U] [ 564.724938][T20972] [U] [ 564.726659][T20972] [U] [ 564.727758][T20972] [U] [ 564.728921][T20972] [U] [ 564.730027][T20972] [U] [ 564.731116][T20972] [U] [ 564.732240][T20972] [U] [ 564.733505][T20972] [U] [ 564.734608][T20972] [U] [ 564.735722][T20972] [U] [ 564.736838][T20972] [U] [ 564.737950][T20972] [U] [ 564.739048][T20972] [U] [ 564.740153][T20972] [U] [ 564.741256][T20972] [U] [ 564.743038][T20972] [U] [ 564.744171][T20972] [U] [ 564.745273][T20972] [U] [ 564.746363][T20972] [U] [ 564.747548][T20972] [U] [ 564.748648][T20972] [U] [ 564.749744][T20972] [U] [ 564.750883][T20972] [U] [ 564.752754][T20972] [U] [ 564.753877][T20972] [U] [ 564.754967][T20972] [U] [ 564.756057][T20972] [U] [ 564.757175][T20972] [U] [ 564.758248][T20972] [U] [ 564.759336][T20972] [U] [ 564.760411][T20972] [U] [ 564.761938][T20972] [U] [ 564.763045][T20972] [U] [ 564.764160][T20972] [U] [ 564.765252][T20972] [U] [ 564.766585][T20972] [U] [ 564.767671][T20972] [U] [ 564.768681][T20972] [U] [ 564.769731][T20972] [U] [ 564.770853][T20972] [U] [ 564.771984][T20972] [U] [ 564.773089][T20972] [U] [ 564.774185][T20972] [U] [ 564.776592][T20972] [U] [ 564.777704][T20972] [U] [ 564.778793][T20972] [U] [ 564.779878][T20972] [U] [ 564.781010][T20972] [U] [ 564.782107][T20972] [U] [ 564.783269][T20972] [U] [ 564.784371][T20972] [U] [ 564.786155][T20972] [U] [ 564.787274][T20972] [U] [ 564.788367][T20972] [U] [ 564.789424][T20972] [U] [ 564.790585][T20972] [U] [ 564.791656][T20972] [U] [ 564.792750][T20972] [U] [ 564.793839][T20972] [U] [ 564.795689][T20972] [U] [ 564.796811][T20972] [U] [ 564.797891][T20972] [U] [ 564.824731][T20971] [U] [ 564.876177][T20980] CIFS: iocharset name too long [ 566.001540][ T6013] Bluetooth: hci4: command 0x041b tx timeout [ 566.076309][ T6013] Bluetooth: hci2: command 0x0c1a tx timeout [ 566.209128][T21066] [U] [ 566.209980][T21066] [U] [ 566.210817][T21066] [U] [ 566.211646][T21066] [U] [ 566.212535][T21066] [U] [ 566.213333][T21066] [U] [ 566.214121][T21066] [U] [ 566.214946][T21066] [U] [ 566.217096][T21066] [U] [ 566.217921][T21066] [U] [ 566.218763][T21066] [U] [ 566.219617][T21066] [U] [ 566.220433][T21066] [U] [ 566.221238][T21066] [U] [ 566.222052][T21066] [U] [ 566.222840][T21066] [U] [ 566.223638][T21066] [U] [ 566.224465][T21066] [U] [ 566.225249][T21066] [U] [ 566.226038][T21066] [U] [ 566.227717][T21066] [U] [ 566.228537][T21066] [U] [ 566.229331][T21066] [U] [ 566.230106][T21066] [U] [ 566.230820][T21066] [U] [ 566.231608][T21066] [U] [ 566.232442][T21066] [U] [ 566.233208][T21066] [U] [ 566.233962][T21066] [U] [ 566.234762][T21066] [U] [ 566.235622][T21066] [U] [ 566.236447][T21066] [U] [ 566.237319][T21066] [U] [ 566.238128][T21066] [U] [ 566.238934][T21066] [U] [ 566.239723][T21066] [U] [ 566.240529][T21066] [U] [ 566.241339][T21066] [U] [ 566.242125][T21066] [U] [ 566.242906][T21066] [U] [ 566.243712][T21066] [U] [ 566.244512][T21066] [U] [ 566.245273][T21066] [U] [ 566.246042][T21066] [U] [ 566.246858][T21066] [U] [ 566.247626][T21066] [U] [ 566.248387][T21066] [U] [ 566.249208][T21066] [U] [ 566.250117][T21066] [U] [ 566.250921][T21066] [U] [ 566.251739][T21066] [U] [ 566.252528][T21066] [U] [ 566.253312][T21066] [U] [ 566.254089][T21066] [U] [ 566.254860][T21066] [U] [ 566.255637][T21066] [U] [ 566.256437][T21066] [U] [ 566.257215][T21066] [U] [ 566.258002][T21066] [U] [ 566.258869][T21066] [U] [ 566.259712][T21066] [U] [ 566.260506][T21066] [U] [ 566.261316][T21066] [U] [ 566.262143][T21066] [U] [ 566.262941][T21066] [U] [ 566.263754][T21066] [U] [ 566.264571][T21066] [U] [ 566.265361][T21066] [U] [ 566.266153][T21066] [U] [ 566.266945][T21066] [U] [ 566.267727][T21066] [U] [ 566.268529][T21066] [U] [ 566.269395][T21066] [U] [ 566.270180][T21066] [U] [ 566.270969][T21066] [U] [ 566.271771][T21066] [U] [ 566.272567][T21066] [U] [ 566.273351][T21066] [U] [ 566.274138][T21066] [U] [ 566.274918][T21066] [U] [ 566.275691][T21066] [U] [ 566.276479][T21066] [U] [ 566.277258][T21066] [U] [ 566.278030][T21066] [U] [ 566.278839][T21066] [U] [ 566.279631][T21066] [U] [ 566.280419][T21066] [U] [ 566.281228][T21066] [U] [ 566.290084][T21066] [U] [ 566.290915][T21066] [U] [ 566.291730][T21066] [U] [ 566.292523][T21066] [U] [ 566.293302][T21066] [U] [ 566.294078][T21066] [U] [ 566.294854][T21066] [U] [ 566.295618][T21066] [U] [ 566.296416][T21066] [U] [ 566.297183][T21066] [U] [ 566.297955][T21066] [U] [ 566.298729][T21066] [U] [ 566.299509][T21066] [U] [ 566.300309][T21066] [U] [ 566.301120][T21066] [U] [ 566.301929][T21066] [U] [ 566.302795][T21066] [U] [ 566.303575][T21066] [U] [ 566.304368][T21066] [U] [ 566.305570][T21066] [U] [ 566.306415][T21066] [U] [ 566.307545][T21066] [U] [ 566.308356][T21066] [U] [ 566.309273][T21066] [U] [ 566.310209][T21066] [U] [ 566.311087][T21066] [U] [ 566.311864][T21066] [U] [ 566.312678][T21066] [U] [ 566.313606][T21066] [U] [ 566.314392][T21066] [U] [ 566.315182][T21066] [U] [ 566.316013][T21066] [U] [ 566.316822][T21066] [U] [ 566.317601][T21066] [U] [ 566.318377][T21066] [U] [ 566.319156][T21066] [U] [ 566.319939][T21066] [U] [ 566.320717][T21066] [U] [ 566.321544][T21066] [U] [ 566.358945][T21065] [U] [ 566.920942][ T26] usb 5-1: new high-speed USB device number 30 using dummy_hcd [ 567.102625][ T26] usb 5-1: Using ep0 maxpacket: 8 [ 567.115197][ T26] usb 5-1: unable to get BOS descriptor or descriptor too short [ 567.118039][ T26] usb 5-1: no configurations [ 567.121768][ T26] usb 5-1: can't read configurations, error -22 [ 567.555915][T21112] A link change request failed with some changes committed already. Interface wg1 may have been left with an inconsistent configuration, please check. [ 567.612260][T21117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 567.615064][T21117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 567.620569][T21117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 567.623374][T21117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 567.626010][T21117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 567.629180][T21117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 567.992649][T21156] block nbd3: NBD_DISCONNECT [ 567.994680][T21156] [ 567.995404][T21156] ====================================================== [ 567.997320][T21156] WARNING: possible circular locking dependency detected [ 568.003206][T21156] 6.14.0-rc6-syzkaller #0 Not tainted [ 568.006144][T21156] ------------------------------------------------------ [ 568.008718][T21156] syz.3.22436/21156 is trying to acquire lock: [ 568.010403][T21156] ffff888012508dd8 (sk_lock-AF_SMC){+.+.}-{0:0}, at: smc_sendmsg+0x47/0x520 [ 568.013250][T21156] [ 568.013250][T21156] but task is already holding lock: [ 568.015710][T21156] ffff8880231b9270 (&nsock->tx_lock){+.+.}-{4:4}, at: nbd_disconnect+0x321/0x540 [ 568.019182][T21156] [ 568.019182][T21156] which lock already depends on the new lock. [ 568.019182][T21156] [ 568.022002][T21156] [ 568.022002][T21156] the existing dependency chain (in reverse order) is: [ 568.024365][T21156] [ 568.024365][T21156] -> #6 (&nsock->tx_lock){+.+.}-{4:4}: [ 568.026444][T21156] __mutex_lock+0x19b/0xb10 [ 568.027919][T21156] nbd_disconnect+0x321/0x540 [ 568.029357][T21156] nbd_ioctl+0x8d1/0xd60 [ 568.030694][T21156] compat_blkdev_ioctl+0x2eb/0x7a0 [ 568.032286][T21156] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 568.033865][T21156] __do_fast_syscall_32+0x73/0x120 [ 568.035710][T21156] do_fast_syscall_32+0x32/0x80 [ 568.037784][T21156] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 568.040416][T21156] [ 568.040416][T21156] -> #5 (&nbd->config_lock){+.+.}-{4:4}: [ 568.043499][T21156] __mutex_lock+0x19b/0xb10 [ 568.045445][T21156] refcount_dec_and_mutex_lock+0x51/0xc0 [ 568.047805][T21156] nbd_config_put+0x31/0x750 [ 568.049793][T21156] nbd_release+0xb7/0x190 [ 568.051629][T21156] blkdev_put_whole+0xad/0xf0 [ 568.053666][T21156] bdev_release+0x47e/0x6d0 [ 568.055640][T21156] blkdev_release+0x15/0x20 [ 568.057477][T21156] __fput+0x3ff/0xb70 [ 568.058747][T21156] __fput_sync+0xa1/0xc0 [ 568.060135][T21156] __x64_sys_close+0x86/0x100 [ 568.061617][T21156] do_syscall_64+0xcd/0x250 [ 568.063073][T21156] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 568.065121][T21156] [ 568.065121][T21156] -> #4 (&disk->open_mutex){+.+.}-{4:4}: [ 568.067656][T21156] __mutex_lock+0x19b/0xb10 [ 568.069593][T21156] bdev_open+0x41a/0xe20 [ 568.071687][T21156] bdev_file_open_by_dev+0x17d/0x210 [ 568.073716][T21156] disk_scan_partitions+0x1ed/0x320 [ 568.075893][T21156] add_disk_fwnode+0x1006/0x1320 [ 568.078022][T21156] pmem_attach_disk+0x9a1/0x13e0 [ 568.080116][T21156] nd_pmem_probe+0x1a9/0x1f0 [ 568.082182][T21156] nvdimm_bus_probe+0x169/0x5d0 [ 568.084269][T21156] really_probe+0x23e/0xa90 [ 568.086203][T21156] __driver_probe_device+0x1de/0x440 [ 568.088457][T21156] driver_probe_device+0x4c/0x1b0 [ 568.090564][T21156] __driver_attach+0x283/0x580 [ 568.092605][T21156] bus_for_each_dev+0x13c/0x1d0 [ 568.094673][T21156] bus_add_driver+0x2e9/0x690 [ 568.096476][T21156] driver_register+0x15c/0x4b0 [ 568.097934][T21156] __nd_driver_register+0x103/0x1a0 [ 568.099502][T21156] do_one_initcall+0x128/0x700 [ 568.101005][T21156] kernel_init_freeable+0x5c7/0x900 [ 568.102625][T21156] kernel_init+0x1c/0x2b0 [ 568.103958][T21156] ret_from_fork+0x45/0x80 [ 568.105477][T21156] ret_from_fork_asm+0x1a/0x30 [ 568.107492][T21156] [ 568.107492][T21156] -> #3 (&nvdimm_namespace_key){+.+.}-{4:4}: [ 568.110565][T21156] __mutex_lock+0x19b/0xb10 [ 568.112488][T21156] uevent_show+0x188/0x3b0 [ 568.114445][T21156] dev_attr_show+0x53/0xe0 [ 568.116273][T21156] sysfs_kf_seq_show+0x23e/0x410 [ 568.118276][T21156] seq_read_iter+0x4f4/0x12b0 [ 568.120114][T21156] kernfs_fop_read_iter+0x414/0x580 [ 568.121645][T21156] vfs_read+0x886/0xbf0 [ 568.122900][T21156] ksys_read+0x12b/0x250 [ 568.124453][T21156] do_syscall_64+0xcd/0x250 [ 568.126123][T21156] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 568.128122][T21156] [ 568.128122][T21156] -> #2 (kn->active#5){++++}-{0:0}: [ 568.130902][T21156] kernfs_drain+0x48f/0x590 [ 568.132834][T21156] __kernfs_remove+0x281/0x670 [ 568.134815][T21156] kernfs_remove_by_name_ns+0xb2/0x130 [ 568.136980][T21156] device_del+0x381/0x9f0 [ 568.138793][T21156] unregister_netdevice_many_notify+0x13aa/0x1f30 [ 568.140733][T21156] unregister_netdevice_queue+0x307/0x3f0 [ 568.142561][T21156] unregister_netdev+0x1f/0x60 [ 568.144285][T21156] slcan_close+0x76/0x1a0 [ 568.145625][T21156] tty_ldisc_close+0x111/0x1a0 [ 568.147520][T21156] tty_ldisc_kill+0x8e/0x150 [ 568.149411][T21156] tty_ldisc_hangup+0x311/0x6a0 [ 568.151422][T21156] __tty_hangup.part.0+0x3f8/0x890 [ 568.153548][T21156] tty_ioctl+0xf42/0x15d0 [ 568.155431][T21156] tty_compat_ioctl+0xb9/0x4d0 [ 568.157375][T21156] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 568.158984][T21156] __do_fast_syscall_32+0x73/0x120 [ 568.160549][T21156] do_fast_syscall_32+0x32/0x80 [ 568.162069][T21156] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 568.164221][T21156] [ 568.164221][T21156] -> #1 (rtnl_mutex){+.+.}-{4:4}: [ 568.166973][T21156] __mutex_lock+0x19b/0xb10 [ 568.168953][T21156] smc_vlan_by_tcpsk+0x251/0x620 [ 568.171075][T21156] __smc_connect+0x44d/0x4890 [ 568.173106][T21156] smc_connect+0x2fc/0x760 [ 568.174731][T21156] __sys_connect_file+0x13e/0x1a0 [ 568.176650][T21156] __sys_connect+0x14f/0x170 [ 568.178643][T21156] __ia32_sys_connect+0x71/0xb0 [ 568.180526][T21156] __do_fast_syscall_32+0x73/0x120 [ 568.182621][T21156] do_fast_syscall_32+0x32/0x80 [ 568.184404][T21156] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 568.186549][T21156] [ 568.186549][T21156] -> #0 (sk_lock-AF_SMC){+.+.}-{0:0}: [ 568.188557][T21156] __lock_acquire+0x249e/0x3c40 [ 568.190046][T21156] lock_acquire.part.0+0x11b/0x380 [ 568.191973][T21156] lock_sock_nested+0x3a/0xf0 [ 568.193979][T21156] smc_sendmsg+0x47/0x520 [ 568.195839][T21156] sock_sendmsg+0x3d3/0x490 [ 568.197746][T21156] __sock_xmit+0x1e8/0x4f0 [ 568.199416][T21156] nbd_disconnect+0x390/0x540 [ 568.200951][T21156] nbd_ioctl+0x8d1/0xd60 [ 568.202660][T21156] compat_blkdev_ioctl+0x2eb/0x7a0 [ 568.204732][T21156] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 568.206795][T21156] __do_fast_syscall_32+0x73/0x120 [ 568.208683][T21156] do_fast_syscall_32+0x32/0x80 [ 568.210206][T21156] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 568.212526][T21156] [ 568.212526][T21156] other info that might help us debug this: [ 568.212526][T21156] [ 568.216116][T21156] Chain exists of: [ 568.216116][T21156] sk_lock-AF_SMC --> &nbd->config_lock --> &nsock->tx_lock [ 568.216116][T21156] [ 568.220029][T21156] Possible unsafe locking scenario: [ 568.220029][T21156] [ 568.222771][T21156] CPU0 CPU1 [ 568.224797][T21156] ---- ---- [ 568.226754][T21156] lock(&nsock->tx_lock); [ 568.228385][T21156] lock(&nbd->config_lock); [ 568.231001][T21156] lock(&nsock->tx_lock); [ 568.233672][T21156] lock(sk_lock-AF_SMC); [ 568.235210][T21156] [ 568.235210][T21156] *** DEADLOCK *** [ 568.235210][T21156] [ 568.238194][T21156] 2 locks held by syz.3.22436/21156: [ 568.239840][T21156] #0: ffff8880416f8998 (&nbd->config_lock){+.+.}-{4:4}, at: nbd_ioctl+0x151/0xd60 [ 568.242476][T21156] #1: ffff8880231b9270 (&nsock->tx_lock){+.+.}-{4:4}, at: nbd_disconnect+0x321/0x540 [ 568.245208][T21156] [ 568.245208][T21156] stack backtrace: [ 568.247436][T21156] CPU: 0 UID: 0 PID: 21156 Comm: syz.3.22436 Not tainted 6.14.0-rc6-syzkaller #0 [ 568.247458][T21156] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 568.247468][T21156] Call Trace: [ 568.247515][T21156] [ 568.247523][T21156] dump_stack_lvl+0x116/0x1f0 [ 568.247552][T21156] print_circular_bug+0x490/0x760 [ 568.247580][T21156] check_noncircular+0x31a/0x400 [ 568.247604][T21156] ? __pfx_check_noncircular+0x10/0x10 [ 568.247652][T21156] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 568.247677][T21156] ? lockdep_lock+0xc6/0x200 [ 568.247695][T21156] ? __pfx_lockdep_lock+0x10/0x10 [ 568.247711][T21156] __lock_acquire+0x249e/0x3c40 [ 568.247738][T21156] ? __pfx___lock_acquire+0x10/0x10 [ 568.247765][T21156] lock_acquire.part.0+0x11b/0x380 [ 568.247784][T21156] ? smc_sendmsg+0x47/0x520 [ 568.247811][T21156] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 568.247836][T21156] ? rcu_is_watching+0x12/0xc0 [ 568.247854][T21156] ? trace_lock_acquire+0x14e/0x1f0 [ 568.247874][T21156] ? smc_sendmsg+0x47/0x520 [ 568.247898][T21156] ? lock_acquire+0x2f/0xb0 [ 568.247922][T21156] ? smc_sendmsg+0x47/0x520 [ 568.247959][T21156] lock_sock_nested+0x3a/0xf0 [ 568.247986][T21156] ? smc_sendmsg+0x47/0x520 [ 568.248011][T21156] smc_sendmsg+0x47/0x520 [ 568.248037][T21156] sock_sendmsg+0x3d3/0x490 [ 568.248057][T21156] ? __pfx_sock_sendmsg+0x10/0x10 [ 568.248081][T21156] ? rcu_is_watching+0x12/0xc0 [ 568.248099][T21156] ? trace_contention_end+0xee/0x140 [ 568.248125][T21156] __sock_xmit+0x1e8/0x4f0 [ 568.248144][T21156] ? __pfx___sock_xmit+0x10/0x10 [ 568.248159][T21156] ? __pfx___mutex_lock+0x10/0x10 [ 568.248207][T21156] nbd_disconnect+0x390/0x540 [ 568.248230][T21156] ? __pfx_nbd_disconnect+0x10/0x10 [ 568.248250][T21156] ? __pfx___mutex_lock+0x10/0x10 [ 568.248278][T21156] ? bpf_lsm_capable+0x9/0x10 [ 568.248295][T21156] nbd_ioctl+0x8d1/0xd60 [ 568.248312][T21156] ? __pfx_nbd_ioctl+0x10/0x10 [ 568.248328][T21156] ? __pfx_lock_release+0x10/0x10 [ 568.248347][T21156] ? trace_lock_acquire+0x14e/0x1f0 [ 568.248364][T21156] ? __pfx_nbd_ioctl+0x10/0x10 [ 568.248380][T21156] compat_blkdev_ioctl+0x2eb/0x7a0 [ 568.248397][T21156] ? __pfx_compat_blkdev_ioctl+0x10/0x10 [ 568.248413][T21156] ? __fget_files+0x206/0x3a0 [ 568.248435][T21156] ? __pfx_compat_blkdev_ioctl+0x10/0x10 [ 568.248452][T21156] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 568.248473][T21156] __do_fast_syscall_32+0x73/0x120 [ 568.248496][T21156] do_fast_syscall_32+0x32/0x80 [ 568.248517][T21156] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 568.248543][T21156] RIP: 0023:0xf7f58579 [ 568.248559][T21156] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 568.248576][T21156] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 568.248591][T21156] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000ab08 [ 568.248601][T21156] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 568.248610][T21156] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 568.248619][T21156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 568.248628][T21156] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 568.248642][T21156] [ 568.300319][ T6013] Bluetooth: hci2: command 0x0c1a tx timeout [ 568.301228][T21156] block nbd3: Send disconnect failed -107 [ 568.301264][T14689] Bluetooth: hci4: command 0x041b tx timeout [ 568.385282][T21154] block nbd3: Disconnected due to user request. [ 568.387218][T21154] block nbd3: shutting down sockets VM DIAGNOSIS: 12:22:05 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000061 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff853e95f5 RDI=ffffffff9ab6fea0 RBP=ffffffff9ab6fe60 RSP=ffffc90006f6f058 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6465746e69612e36 R12=0000000000000000 R13=0000000000000061 R14=ffffffff9ab6fe60 R15=0000000000000000 RIP=ffffffff853e961f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000003321affc CR3=000000004cdae000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000007 RBX=ffff8880226d3000 RCX=1ffff110056a7eed RDX=0000000000000000 RSI=ffff88802103c900 RDI=ffff8880226d31e4 RBP=ffff88802103c900 RSP=ffffc900005b0bb8 R8 =0000000000000000 R9 =0000000000000000 R10=0000000080010003 R11=ffffffff818bbb8e R12=ffff88802103c900 R13=ffff8880227f0080 R14=ffff8880226d3058 R15=ffff8880226d3000 RIP=ffffffff818c0a5f RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000032f18ffc CR3=000000005978c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=ffff88801b051e18 RBX=ffff88801b051e00 RCX=ffffffff8196b1a9 RDX=0000000000000000 RSI=ffffffff8bd357a0 RDI=ffff888023bda884 RBP=ffffc9000e1af940 RSP=ffffc9000e1af8a8 R8 =0000000000000000 R9 =fffffbfff20c50a2 R10=ffffffff90628517 R11=000000000000001e R12=ffff8880230c40c0 R13=ffff888021b30000 R14=dffffc0000000000 R15=ffffea000095e500 RIP=ffffffff8224cbf3 RFL=00010246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000056024bfcd280 CR3=000000007121e000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008220202 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffc3153060 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4154414600544549 55510029646c253d 646970282064253a 29287338342e253a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4154414600544549 5551000c41490018 414c550d0541001f 0c0d561d110b001f ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=3f5e1a173f5e1a17 3f5e1a173f5e1a17 3f5e1a173f5e1a17 3f5e1a173f5e1a17 3f5e1a173f5e1a17 3f5e1a173f5e1a17 3f5e1a173f5e1a17 3f5e1a173f5e1a17 ZMM22=4b56b66d4b56b66d 4b56b66d4b56b66d 4b56b66d4b56b66d 4b56b66d4b56b66d 4b56b66d4b56b66d 4b56b66d4b56b66d 4b56b66d4b56b66d 4b56b66d4b56b66d ZMM23=52af502252af5022 52af502252af5022 52af502252af5022 52af502252af5022 52af502252af5022 52af502252af5022 52af502252af5022 52af502252af5022 ZMM24=0bc1f76d0bc1f76d 0bc1f76d0bc1f76d 0bc1f76d0bc1f76d 0bc1f76d0bc1f76d 0bc1f76d0bc1f76d 0bc1f76d0bc1f76d 0bc1f76d0bc1f76d 0bc1f76d0bc1f76d ZMM25=36139e5336139e53 36139e5336139e53 36139e5336139e53 36139e5336139e53 36139e5336139e53 36139e5336139e53 36139e5336139e53 36139e5336139e53 ZMM26=24814fe824814fe8 24814fe824814fe8 24814fe824814fe8 24814fe824814fe8 24814fe824814fe8 24814fe824814fe8 24814fe824814fe8 24814fe824814fe8 ZMM27=4c1ded164c1ded16 4c1ded164c1ded16 4c1ded164c1ded16 4c1ded164c1ded16 4c1ded164c1ded16 4c1ded164c1ded16 4c1ded164c1ded16 4c1ded164c1ded16 ZMM28=000001f0000001ef 000001ee000001ed 000001ec000001eb 000001ea000001e9 000001e8000001e7 000001e6000001e5 000001e4000001e3 000001e2000001e1 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=aa650000aa650000 aa650000aa650000 aa650000aa650000 aa650000aa650000 aa650000aa650000 aa650000aa650000 aa650000aa650000 aa650000aa650000 info registers vcpu 3 CPU#3 RAX=000000009e393032 RBX=000000009e393032 RCX=ffff8880128f2b50 RDX=00000000d455c580 RSI=000000007186553e RDI=00000000700379f6 RBP=0000000000000001 RSP=ffffc90002d5f028 R8 =0000000000000000 R9 =ffff88807e530320 R10=ffffffff90628517 R11=0000000000000012 R12=0000000000140cca R13=ffffc90002d5f0a8 R14=000000000000000e R15=000000000000000e RIP=ffffffff84f1e93b RFL=00010287 [--S--PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f9be0ed6d00 ffffffff 00c00000 GS =0000 ffff88802b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000560285271000 CR3=000000004c394000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=3f5e1a173f5e1a17 3f5e1a173f5e1a17 3f5e1a173f5e1a17 3f5e1a173f5e1a17 3f5e1a173f5e1a17 3f5e1a173f5e1a17 3f5e1a173f5e1a17 3f5e1a173f5e1a17 ZMM22=4b56b66d4b56b66d 4b56b66d4b56b66d 4b56b66d4b56b66d 4b56b66d4b56b66d 4b56b66d4b56b66d 4b56b66d4b56b66d 4b56b66d4b56b66d 4b56b66d4b56b66d ZMM23=52af502252af5022 52af502252af5022 52af502252af5022 52af502252af5022 52af502252af5022 52af502252af5022 52af502252af5022 52af502252af5022 ZMM24=0bc1f76d0bc1f76d 0bc1f76d0bc1f76d 0bc1f76d0bc1f76d 0bc1f76d0bc1f76d 0bc1f76d0bc1f76d 0bc1f76d0bc1f76d 0bc1f76d0bc1f76d 0bc1f76d0bc1f76d ZMM25=36139e5336139e53 36139e5336139e53 36139e5336139e53 36139e5336139e53 36139e5336139e53 36139e5336139e53 36139e5336139e53 36139e5336139e53 ZMM26=24814fe824814fe8 24814fe824814fe8 24814fe824814fe8 24814fe824814fe8 24814fe824814fe8 24814fe824814fe8 24814fe824814fe8 24814fe824814fe8 ZMM27=4c1ded164c1ded16 4c1ded164c1ded16 4c1ded164c1ded16 4c1ded164c1ded16 4c1ded164c1ded16 4c1ded164c1ded16 4c1ded164c1ded16 4c1ded164c1ded16 ZMM28=000001f0000001ef 000001ee000001ed 000001ec000001eb 000001ea000001e9 000001e8000001e7 000001e6000001e5 000001e4000001e3 000001e2000001e1 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=aa650000aa650000 aa650000aa650000 aa650000aa650000 aa650000aa650000 aa650000aa650000 aa650000aa650000 aa650000aa650000 aa650000aa650000