last executing test programs: 1.081840277s ago: executing program 3 (id=14331): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000f000000850000005000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x92) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_exit\x00', r0}, 0x10) mq_notify(0xffffffffffffffff, 0x0) 1.052067814s ago: executing program 3 (id=14335): r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0) ioctl$I2C_PEC(r0, 0x708, 0x40) ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000100)={0x1, 0x8, 0x0, 0x0}) 1.012318121s ago: executing program 3 (id=14340): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='geneve1\x00', 0x10) bind$inet(r0, &(0x7f0000000100)={0x2, 0x0, @dev}, 0x10) 971.592116ms ago: executing program 3 (id=14343): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x3, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000b000000085000000860000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000003000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0x10, 0x10, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 932.687291ms ago: executing program 3 (id=14347): r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_MPATH(r0, &(0x7f0000000140)={0x0, 0x24, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000020b69c97553002677b00000c0001"], 0x2c}}, 0x0) 905.509465ms ago: executing program 3 (id=14351): r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0) write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8) 697.293393ms ago: executing program 0 (id=14362): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000240)={0x10201, 0x5, 0x100000, 0x2000, &(0x7f0000001000/0x2000)=nil}) 596.949525ms ago: executing program 0 (id=14373): mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8) r0 = syz_open_dev$evdev(&(0x7f0000000200), 0x0, 0x0) ioctl$EVIOCSCLOCKID(r0, 0x40084504, &(0x7f0000ffcffc)) 522.074394ms ago: executing program 0 (id=14375): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xa, 0x4, 0x4, 0xf, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000080)={r1}, 0xc) 479.762187ms ago: executing program 0 (id=14368): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff) r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x50, &(0x7f0000000000)={0x0, 0x0}, 0x10) 478.133784ms ago: executing program 1 (id=14369): r0 = syz_open_dev$tty1(0xc, 0x4, 0x3) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000001040)={0xe, {"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", 0x1040}}, 0x1006) 422.625545ms ago: executing program 0 (id=14371): mkdir(&(0x7f0000002880)='./file0\x00', 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x210) 420.365428ms ago: executing program 1 (id=14372): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) fsopen(&(0x7f0000002240)='ecryptfs\x00', 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 353.624678ms ago: executing program 1 (id=14374): r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) read$FUSE(r0, &(0x7f0000000500)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_DIRENT(r0, &(0x7f0000002540)=ANY=[@ANYBLOB='X\x00\x00\x00\x00\x00\x00\x00', @ANYRES64=r1, @ANYBLOB="07000000ff"], 0x58) 353.255809ms ago: executing program 0 (id=14376): r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) read$msr(r0, 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000380)="259374c96ee3", 0x0, 0xad, 0xb12531df61d0214, 0x0, 0x0}) 350.108359ms ago: executing program 1 (id=14377): r0 = socket$inet6(0xa, 0x3, 0x4) shutdown(r0, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x45b, 0x0, 0x0) 276.434967ms ago: executing program 1 (id=14380): r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)={0xe0002002}) 201.889655ms ago: executing program 1 (id=14382): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000002080)={0x7, {"a2e3ad21ed0d52f91b38090987f70e06d038e7ff7fc6e5539b3258078b089b0707376d090890e0878f0e1ac6e7049b336d959b659a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31070d074a0936cd3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec97a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de981e02f7a7821f91cb6fd9f7d0d42a4b5f11f46295d8a0fa17713c5802630933a9a34af674f3f39fe2349164080000110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83cd06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21571c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803335ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a6dd507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c134b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5136651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105007900000009959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3765b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b33c5260f59554e502dcea39cb313b0000000000002f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabdbd0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c7e36bb2fc4c40e9cf96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006) 95.533042ms ago: executing program 2 (id=14385): mkdir(&(0x7f0000002880)='./file0\x00', 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x210) 94.922827ms ago: executing program 2 (id=14386): r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) read$FUSE(r0, &(0x7f0000000500)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_DIRENT(r0, &(0x7f0000002540)=ANY=[@ANYBLOB='X\x00\x00\x00\x00\x00\x00\x00', @ANYRES64=r1, @ANYBLOB="07000000ff"], 0x58) 93.869184ms ago: executing program 2 (id=14387): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f00000002c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xe}}, 0x10) sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{&(0x7f0000000680)={0x2, 0x4e21, @multicast1}, 0x10, &(0x7f0000000800)=[{&(0x7f0000000380)="9ac0cf195024563fd94b73abe3f17e442ca7d5f8660c96c7ab5a13b2c29648a6db6ee0be39d814ee804334a105cb9624797b808ad88b8261abbdc634b883be0fedbb946f1520afc9e3d032eba36d4c94123bb915a29e533829b6aac57b8be4573100a56c6c45aa8db93e9c36fcf2bf5b02a0e9cb647682ea1c914edff1929151f0dbdbe5530b268ac24cb6f600"/153, 0x99}, {&(0x7f00000006c0)="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", 0xfe}, {&(0x7f0000000080)="25f8249384fe9dc720d29e1124d47d7ce4fc", 0x12}, {&(0x7f0000000100)="be79802678ef0103cd370b11121233", 0xf}, {&(0x7f0000000540)="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", 0x139}, {&(0x7f00000001c0)="5db61f4e565300f668d0bd610c6820ffaeb8f4d915c8259b53e05408988b813196111365d5e519602581ccd61adfedea418ccfc4e03d7485c940f88606d3567e21d5126c3db7355ede7be197ce23616fb4571c46a6c8bedff863fdbfd9b9eccc425723a27b712e0aca909a6fdeaa6405debde57cb68e27bad319d607dd6d5fa325d790aedb2f19b0664c12fc4c2cafa01ab153e9cedd78f286e686f0df32c7f1b084c4422426de9c7c3c05a1307a356878ce86", 0xb3}, {&(0x7f0000001cc0)="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", 0x205}], 0x7}}, {{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000300)="29e6ada4", 0x4}], 0x1}}], 0x2, 0x8064) 74.00674ms ago: executing program 2 (id=14388): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3800000056000100000000000000000007020000", @ANYRES32, @ANYBLOB="200001"], 0x38}}, 0x0) 244.614µs ago: executing program 2 (id=14389): r0 = syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0xb211, 0x13580, 0x0, 0x1d7}, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_MSG_RING={0x28, 0x0, 0x0, r0, 0x0, 0x0}) io_uring_enter(r0, 0x54, 0x0, 0x0, 0x0, 0x0) 0s ago: executing program 2 (id=14390): mkdir(&(0x7f0000000000)='./control\x00', 0x0) open$dir(&(0x7f00000002c0)='./control/file0\x00', 0x80040, 0x0) rmdir(&(0x7f0000000040)='./control\x00') kernel console output (not intermixed with test programs): xf7f36579 code=0x7ffc0000 [ 137.560208][ T39] audit: type=1326 audit(132.455:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21498 comm="syz.1.7504" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000 [ 137.645948][T21523] netlink: 'syz.0.7515': attribute type 1 has an invalid length. [ 137.648014][T21523] netlink: 'syz.0.7515': attribute type 1 has an invalid length. [ 137.759269][T21549] netlink: 'syz.1.7529': attribute type 1 has an invalid length. [ 137.782343][T21556] dlm: no locking on control device [ 137.798593][T21561] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7535'. [ 137.811165][T21563] netlink: 20 bytes leftover after parsing attributes in process `syz.1.7536'. [ 137.818709][T21567] netlink: 84 bytes leftover after parsing attributes in process `syz.0.7537'. [ 137.852635][T21573] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7543'. [ 137.926128][T21589] xt_CT: You must specify a L4 protocol and not use inversions on it [ 138.082299][T21623] (unnamed net_device) (uninitialized): option arp_interval: mode dependency failed, not supported in mode balance-alb(6) [ 138.112581][T21633] netlink: 132 bytes leftover after parsing attributes in process `syz.3.7572'. [ 138.152829][T21643] i2c i2c-1: Invalid block write size 34 [ 138.318747][T21686] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 138.320671][T21680] bond0: entered allmulticast mode [ 138.443595][T21716] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 138.445354][T21716] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 138.448678][T21716] vhci_hcd vhci_hcd.0: Device attached [ 138.452794][T21717] vhci_hcd: cannot find the pending unlink 5 [ 138.454434][T21717] vhci_hcd: connection closed [ 138.455192][ T88] vhci_hcd: stop threads [ 138.457580][ T88] vhci_hcd: release socket [ 138.458854][ T88] vhci_hcd: disconnect device [ 138.488802][T21731] befs: (loop7): No write support. Marking filesystem read-only [ 138.494575][T21731] syz.3.7613: attempt to access beyond end of device [ 138.494575][T21731] loop7: rw=0, sector=0, nr_sectors = 2 limit=0 [ 138.498132][T21731] befs: (loop7): unable to read superblock [ 138.547804][T21743] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 138.549279][T21744] validate_nla: 2 callbacks suppressed [ 138.549290][T21744] netlink: 'syz.3.7617': attribute type 8 has an invalid length. [ 138.555231][T21744] netlink: 163260 bytes leftover after parsing attributes in process `syz.3.7617'. [ 138.636727][T21754] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7618'. [ 138.639317][T21754] bridge_slave_1: left allmulticast mode [ 138.641428][T21754] bridge_slave_1: left promiscuous mode [ 138.643112][T21754] bridge0: port 2(bridge_slave_1) entered disabled state [ 138.650570][T21754] bridge_slave_0: left allmulticast mode [ 138.652086][T21754] bridge_slave_0: left promiscuous mode [ 138.653637][T21754] bridge0: port 1(bridge_slave_0) entered disabled state [ 138.676445][T21761] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7622'. [ 138.912182][T21797] netlink: 20 bytes leftover after parsing attributes in process `syz.3.7642'. [ 138.933305][T21801] befs: (loop5): No write support. Marking filesystem read-only [ 138.935397][T21801] syz.2.7643: attempt to access beyond end of device [ 138.935397][T21801] loop5: rw=0, sector=0, nr_sectors = 2 limit=0 [ 138.938826][T21801] befs: (loop5): unable to read superblock [ 139.043689][T21827] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 139.045495][T21827] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 139.048302][T21827] vhci_hcd vhci_hcd.0: Device attached [ 139.057635][T21828] vhci_hcd: cannot find the pending unlink 5 [ 139.059782][T21828] vhci_hcd: connection closed [ 139.060004][ T45] vhci_hcd: stop threads [ 139.062954][ T45] vhci_hcd: release socket [ 139.064142][ T45] vhci_hcd: disconnect device [ 139.215869][T21851] bridge_slave_1: left allmulticast mode [ 139.219715][T21851] bridge_slave_1: left promiscuous mode [ 139.221294][T21851] bridge0: port 2(bridge_slave_1) entered disabled state [ 139.224050][T21851] bridge_slave_0: left allmulticast mode [ 139.225510][T21851] bridge_slave_0: left promiscuous mode [ 139.227079][T21851] bridge0: port 1(bridge_slave_0) entered disabled state [ 139.294568][T21855] (unnamed net_device) (uninitialized): option arp_interval: mode dependency failed, not supported in mode balance-alb(6) [ 139.758131][T21942] ip6tnl1: entered promiscuous mode [ 139.856623][T21970] sock: sock_set_timeout: `syz.0.7725' (pid 21970) tries to set negative timeout [ 139.863287][T21972] netlink: 'syz.3.7727': attribute type 21 has an invalid length. [ 139.865449][T21972] netlink: 'syz.3.7727': attribute type 20 has an invalid length. [ 139.867459][T21972] IPv6: NLM_F_CREATE should be specified when creating new route [ 139.934928][T21991] (unnamed net_device) (uninitialized): peer notification delay (512) is not a multiple of miimon (5), value rounded to 510 ms [ 139.966345][T22000] netlink: 'syz.2.7741': attribute type 58 has an invalid length. [ 140.069245][T22023] netlink: 'syz.3.7752': attribute type 11 has an invalid length. [ 140.105319][T22033] ip6tnl1: entered promiscuous mode [ 140.170151][T22047] sock: sock_set_timeout: `syz.2.7761' (pid 22047) tries to set negative timeout [ 140.212274][T22060] libceph: resolve '0' (ret=-3): failed [ 140.267078][T22075] netlink: 'syz.0.7772': attribute type 10 has an invalid length. [ 140.279193][T22075] team0: Port device geneve1 added [ 140.375152][T22106] openvswitch: netlink: IP tunnel dst address not specified [ 140.506522][T22143] xt_ecn: cannot match TCP bits for non-tcp packets [ 140.542377][T22156] openvswitch: netlink: IP tunnel dst address not specified [ 140.582917][T22166] tmpfs: Bad value for 'grpquota_block_hardlimit' [ 140.778112][ T25] usb 7-1: new low-speed USB device number 6 using dummy_hcd [ 140.783773][T22206] openvswitch: netlink: IP tunnel dst address not specified [ 140.911278][T22234] netlink: 'syz.1.7847': attribute type 3 has an invalid length. [ 140.932019][T22237] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 140.939271][ T25] usb 7-1: config index 0 descriptor too short (expected 1307, got 27) [ 140.941441][ T25] usb 7-1: config 0 has an invalid interface number: 0 but max is -1 [ 140.943497][ T25] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 0 [ 140.945808][ T25] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30 [ 140.949166][ T25] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt [ 140.951691][ T25] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 140.954201][ T25] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246 [ 140.962590][ T25] usb 7-1: string descriptor 0 read error: -22 [ 140.964278][ T25] usb 7-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de [ 140.964438][T22243] tmpfs: Bad value for 'grpquota_block_hardlimit' [ 140.966633][ T25] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 140.968290][ T25] usb 7-1: config 0 descriptor?? [ 140.972779][ T25] hub 7-1:0.0: bad descriptor, ignoring hub [ 140.974373][ T25] hub 7-1:0.0: probe with driver hub failed with error -5 [ 140.978202][ T25] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input21 [ 141.259314][T22298] syz.0.7879 (22298): /proc/22297/oom_adj is deprecated, please use /proc/22297/oom_score_adj instead. [ 141.283567][ T5955] usb 7-1: USB disconnect, device number 6 [ 141.563972][T22345] tmpfs: Bad value for 'usrquota_inode_hardlimit' [ 141.696385][T22371] tmpfs: Bad value for 'usrquota_inode_hardlimit' [ 141.853704][T22398] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 141.856706][T22399] gretap2: entered allmulticast mode [ 141.930338][T22418] ALSA: mixer_oss: invalid OSS volume '' [ 142.064969][T22454] tc_dump_action: action bad kind [ 142.109908][T22462] netlink: 'syz.1.7956': attribute type 2 has an invalid length. [ 142.112186][T22462] netlink: 'syz.1.7956': attribute type 1 has an invalid length. [ 142.155468][T22475] tc_dump_action: action bad kind [ 142.196806][T22487] blktrace: Concurrent blktraces are not allowed on sg0 [ 142.320488][T22519] ALSA: mixer_oss: invalid OSS volume '' [ 142.368733][T22532] netlink: 'syz.0.7991': attribute type 2 has an invalid length. [ 142.423652][T22545] ALSA: mixer_oss: invalid OSS volume '' [ 142.861100][T22658] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0. [ 142.891325][T22636] syz.2.8041 (22636): drop_caches: 2 [ 142.947840][T22674] program syz.1.8060 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 143.091740][T22699] __nla_validate_parse: 26 callbacks suppressed [ 143.091752][T22699] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8072'. [ 143.577488][T22801] program syz.3.8123 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 143.618180][T22810] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0. [ 143.689002][T22816] syz.3.8129 (22816): drop_caches: 2 [ 144.060952][T22885] /dev/sr0: Can't open blockdev [ 144.161773][ T39] kauditd_printk_skb: 1 callbacks suppressed [ 144.161784][ T39] audit: type=1326 audit(138.647:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22926 comm="syz.3.8183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 144.172554][ T39] audit: type=1326 audit(138.656:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22926 comm="syz.3.8183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 144.179542][ T39] audit: type=1326 audit(138.656:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22926 comm="syz.3.8183" exe="/syz-executor" sig=0 arch=40000003 syscall=175 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 144.185381][ T39] audit: type=1326 audit(138.656:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22926 comm="syz.3.8183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 144.191973][ T39] audit: type=1326 audit(138.656:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22926 comm="syz.3.8183" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 144.235522][T22942] trusted_key: encrypted_key: hex blob is missing [ 144.273255][T22949] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING [ 144.303600][ T39] audit: type=1326 audit(138.778:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22952 comm="syz.0.8195" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 144.309242][ T39] audit: type=1326 audit(138.778:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22952 comm="syz.0.8195" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 144.315612][ T39] audit: type=1326 audit(138.778:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22952 comm="syz.0.8195" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 144.328435][ T39] audit: type=1326 audit(138.806:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22952 comm="syz.0.8195" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 144.330640][T22957] netlink: 32 bytes leftover after parsing attributes in process `syz.2.8197'. [ 144.335455][ T39] audit: type=1326 audit(138.806:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22952 comm="syz.0.8195" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 144.498679][T22989] binder: 22988:22989 ioctl c0306201 20000600 returned -22 [ 144.517814][T22993] openvswitch: netlink: IP tunnel dst address not specified [ 144.559655][T23003] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 144.577898][T23010] netlink: 16 bytes leftover after parsing attributes in process `syz.2.8223'. [ 144.607705][T23016] netlink: 32 bytes leftover after parsing attributes in process `syz.3.8225'. [ 144.623385][T23018] binder: 23017:23018 ioctl c0306201 20000600 returned -22 [ 144.642331][T23020] openvswitch: netlink: IP tunnel dst address not specified [ 144.739890][T23040] validate_nla: 4 callbacks suppressed [ 144.739903][T23040] netlink: 'syz.2.8237': attribute type 4 has an invalid length. [ 144.826552][T23058] ufs: Invalid option: "..X;y" or missing value [ 144.829101][T23058] ufs: wrong mount options [ 144.893730][T23072] netlink: 'syz.0.8252': attribute type 4 has an invalid length. [ 144.982341][T23088] netlink: 'syz.1.8263': attribute type 10 has an invalid length. [ 144.984440][T23088] netlink: 168864 bytes leftover after parsing attributes in process `syz.1.8263'. [ 144.986848][T23088] openvswitch: netlink: Message has 44053 unknown bytes. [ 145.012777][T23095] netlink: 188 bytes leftover after parsing attributes in process `syz.2.8265'. [ 145.206349][T23137] netlink: 'syz.0.8285': attribute type 1 has an invalid length. [ 145.348923][T23156] program syz.3.8295 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 145.455830][T23174] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8303'. [ 145.544429][T23187] xt_hashlimit: overflow, rate too high: 0 [ 145.577698][T23193] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 145.580949][T23195] netlink: 'syz.1.8314': attribute type 11 has an invalid length. [ 145.752326][T23224] mkiss: ax0: crc mode is auto. [ 145.897107][T23236] veth0_macvtap: left promiscuous mode [ 145.925762][T23240] netlink: 19 bytes leftover after parsing attributes in process `syz.1.8332'. [ 146.014609][T23250] syz.1.8338: attempt to access beyond end of device [ 146.014609][T23250] mtdblock0: rw=2048, sector=18446744073709551608, nr_sectors = 8 limit=256 [ 146.110706][T23267] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8347'. [ 146.263099][T23299] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8361'. [ 146.446712][T23345] A link change request failed with some changes committed already. Interface veth1_macvtap may have been left with an inconsistent configuration, please check. [ 146.478476][T23353] cgroup: subsys name conflicts with all [ 146.570529][T23371] geneve0 speed is unknown, defaulting to 1000 [ 146.624172][T23371] lo speed is unknown, defaulting to 1000 [ 146.793318][T23417] xt_TPROXY: Can be used only with -p tcp or -p udp [ 146.859662][T23423] usb usb8: usbfs: process 23423 (syz.3.8421) did not claim interface 6 before use [ 147.064761][T23449] JFS: charset not found [ 147.135650][T23464] kAFS: unparsable volume name [ 147.686225][T23549] net veth1_virt_wifi : renamed from virt_wifi0 [ 147.894196][T23592] geneve0 speed is unknown, defaulting to 1000 [ 147.936535][T23592] lo speed is unknown, defaulting to 1000 [ 148.140238][T23635] .: (slave bond_slave_0): Releasing backup interface [ 148.156209][T23635] .: (slave bond_slave_1): Releasing backup interface [ 148.169065][T23635] team0: Port device team_slave_0 removed [ 148.172547][T23635] team0: Port device team_slave_1 removed [ 148.174252][T23635] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 148.177053][T23635] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 148.180106][T23635] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 148.182062][T23635] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 148.190157][T23635] team0: Port device geneve1 removed [ 148.193051][T23636] net veth1_virt_wifi : renamed from virt_wifi0 [ 148.217431][T23640] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 148.219684][T23640] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 148.222956][T23640] vhci_hcd vhci_hcd.0: Device attached [ 148.227245][T23641] vhci_hcd: connection closed [ 148.227415][ T95] vhci_hcd: stop threads [ 148.233262][ T95] vhci_hcd: release socket [ 148.234502][ T95] vhci_hcd: disconnect device [ 148.238873][T23646] Cannot find add_set index 0 as target [ 148.415089][T23674] Cannot find add_set index 0 as target [ 148.450439][T23682] random: crng reseeded on system resumption [ 148.455011][T23683] openvswitch: netlink: IP tunnel dst address not specified [ 148.461938][T23682] Hibernate inconsistent memory map detected! [ 148.463572][T23682] PM: hibernation: Image mismatch: architecture specific data [ 148.587392][T23710] __nla_validate_parse: 7 callbacks suppressed [ 148.587409][T23710] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8561'. [ 148.682050][T23729] IPVS: Error joining to the multicast group [ 148.821913][T23757] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 0, id = 0 [ 148.834048][T23759] netlink: 'syz.2.8585': attribute type 1 has an invalid length. [ 148.836344][T23761] x_tables: duplicate underflow at hook 1 [ 148.866826][T23767] bond0: (slave team0): Releasing backup interface [ 148.891162][T23767] team0: Port device batadv0 removed [ 148.897904][T23767] bond0: (slave bond_slave_0): Releasing backup interface [ 148.902666][T23767] bond0: (slave bond_slave_1): Releasing backup interface [ 148.916603][T23767] team0: Port device team_slave_0 removed [ 148.925360][T23767] team0: Port device team_slave_1 removed [ 148.927142][T23767] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 148.930707][T23767] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 148.933565][T23767] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 148.935556][T23767] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 148.942532][T23767] bond0: (slave wlan1): Releasing backup interface [ 149.337028][T23861] netlink: 'syz.2.8635': attribute type 11 has an invalid length. [ 149.432648][T23886] openvswitch: netlink: Missing key (keys=40, expected=200000) [ 149.707821][T23950] tipc: Trying to set illegal importance in message [ 149.760500][T23964] ipvlan1: left allmulticast mode [ 149.786652][T23971] openvswitch: netlink: Missing key (keys=40, expected=200000) [ 149.826867][T23980] netlink: 32 bytes leftover after parsing attributes in process `syz.0.8700'. [ 149.895870][T23999] openvswitch: netlink: IP tunnel dst address not specified [ 149.932035][T24008] MTD: Couldn't look up './file0': -15 [ 149.933096][T24009] netlink: 78 bytes leftover after parsing attributes in process `syz.3.8708'. [ 149.991407][T24022] netlink: 'syz.0.8714': attribute type 2 has an invalid length. [ 149.992144][T24023] rtc_cmos 00:05: Alarms can be up to one day in the future [ 149.994374][T24022] netlink: 'syz.0.8714': attribute type 1 has an invalid length. [ 150.036746][T24035] MTD: Couldn't look up './file0': -15 [ 150.094439][T24053] netlink: 'syz.1.8731': attribute type 2 has an invalid length. [ 150.096490][T24053] netlink: 'syz.1.8731': attribute type 1 has an invalid length. [ 150.260405][T24094] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 150.359927][T24116] AppArmor: change_hat: Invalid input '0' [ 150.486645][T24147] AppArmor: change_hat: Invalid input '0' [ 150.653157][T24176] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8791'. [ 150.668010][T24181] openvswitch: netlink: IP tunnel dst address not specified [ 151.069079][T24277] netlink: 'syz.0.8834': attribute type 1 has an invalid length. [ 151.069688][T24278] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6 [ 151.115758][T24286] program syz.0.8841 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 151.122195][T24289] netlink: 9 bytes leftover after parsing attributes in process `syz.2.8842'. [ 151.125385][T24289] 0X: renamed from hsr0 (while UP) [ 151.150340][T24289] 0X: entered allmulticast mode [ 151.152164][T24289] hsr_slave_0: entered allmulticast mode [ 151.154210][T24289] hsr_slave_1: entered allmulticast mode [ 151.156706][T24289] A link change request failed with some changes committed already. Interface c0X may have been left with an inconsistent configuration, please check. [ 151.389696][T24348] trusted_key: encrypted_key: master key parameter 'user:' is invalid [ 151.402300][T24350] ntfs3(sr0): Primary boot signature is not NTFS. [ 151.405316][T24350] ntfs3(sr0): try to read out of volume at offset 0xf800 [ 151.451681][T24359] netlink: 'syz.3.8878': attribute type 2 has an invalid length. [ 151.453735][T24359] netlink: 'syz.3.8878': attribute type 1 has an invalid length. [ 151.513953][T24372] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6 [ 151.607203][T24390] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8891'. [ 151.649253][T24398] openvswitch: netlink: Actions may not be safe on all matching packets [ 151.978364][T24453] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8923'. [ 152.404325][T24513] autofs4:pid:24513:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.4294934529), cmd(0xc0189374) [ 152.407907][T24513] autofs4:pid:24513:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc0189374) [ 152.477195][T24523] netlink: 40 bytes leftover after parsing attributes in process `syz.1.8959'. [ 152.479580][T24523] netlink: 195 bytes leftover after parsing attributes in process `syz.1.8959'. [ 152.481831][T24523] netlink: 195 bytes leftover after parsing attributes in process `syz.1.8959'. [ 152.542534][T24531] netlink: 'syz.1.8963': attribute type 5 has an invalid length. [ 152.568258][T24535] ip6t_REJECT: ECHOREPLY is not supported [ 152.686714][T24560] affs: No valid root block on device nbd2 [ 152.743055][T24573] netlink: 'syz.3.8984': attribute type 1 has an invalid length. [ 152.822648][T24589] openvswitch: netlink: Actions may not be safe on all matching packets [ 152.913928][T24595] 0X: renamed from hsr0 [ 153.649700][T24595] 0X: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 153.652615][T24595] 0X: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 153.656071][T24595] A link change request failed with some changes committed already. Interface c0X may have been left with an inconsistent configuration, please check. [ 153.737399][T24613] ip6t_REJECT: ECHOREPLY is not supported [ 153.767552][T24618] netlink: 'syz.2.9005': attribute type 6 has an invalid length. [ 153.816806][T24632] overlayfs: conflicting options: verity=on,redirect_dir=follow [ 153.899418][ T39] kauditd_printk_skb: 19 callbacks suppressed [ 153.899430][ T39] audit: type=1326 audit(147.758:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24655 comm="syz.0.9025" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 153.911098][ T39] audit: type=1326 audit(147.758:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24655 comm="syz.0.9025" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 153.918167][ T39] audit: type=1326 audit(147.758:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24655 comm="syz.0.9025" exe="/syz-executor" sig=0 arch=40000003 syscall=283 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 153.923533][ T39] audit: type=1326 audit(147.758:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24655 comm="syz.0.9025" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 153.934041][ T39] audit: type=1326 audit(147.758:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24655 comm="syz.0.9025" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 153.997916][T24682] netlink: 'syz.2.9038': attribute type 10 has an invalid length. [ 154.000940][T24682] batman_adv: batadv0: Adding interface: team0 [ 154.006522][T24682] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 154.013881][T24682] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 154.098478][T24704] program syz.1.9049 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 154.123875][T24710] openvswitch: netlink: Geneve opt len 2 is not a multiple of 4. [ 154.150367][T24715] __nla_validate_parse: 1 callbacks suppressed [ 154.150383][T24715] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9054'. [ 154.456393][T24763] netlink: 132 bytes leftover after parsing attributes in process `syz.0.9078'. [ 154.687517][T24801] netlink: 4268 bytes leftover after parsing attributes in process `syz.0.9097'. [ 154.690088][T24801] netlink: 4268 bytes leftover after parsing attributes in process `syz.0.9097'. [ 154.728439][T24808] netlink: 'syz.2.9099': attribute type 1 has an invalid length. [ 154.817918][T24822] hfs: unable to load iocharset "io#harset" [ 154.856621][T24830] @: renamed from veth0_vlan [ 154.932744][T24840] Cannot find add_set index 0 as target [ 155.031206][T24850] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9120'. [ 155.033660][T24850] netlink: 50 bytes leftover after parsing attributes in process `syz.0.9120'. [ 155.035985][T24850] netlink: 50 bytes leftover after parsing attributes in process `syz.0.9120'. [ 155.248360][T24882] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9135'. [ 155.378564][T24906] netlink: 244 bytes leftover after parsing attributes in process `syz.3.9148'. [ 155.401604][T24909] overlayfs: conflicting options: metacopy=off,verity=on [ 155.498233][T24927] validate_nla: 1 callbacks suppressed [ 155.498244][T24927] netlink: 'syz.3.9158': attribute type 4 has an invalid length. [ 155.503382][T24927] netlink: 'syz.3.9158': attribute type 11 has an invalid length. [ 155.506161][T24927] netlink: 224 bytes leftover after parsing attributes in process `syz.3.9158'. [ 155.611380][T24943] dlm: non-version read from control device 9 [ 155.863479][T25006] Scaler: ================= START STATUS ================= [ 155.865418][T25006] Scaler: ================== END STATUS ================== [ 155.932666][T25021] netlink: 'syz.0.9205': attribute type 1 has an invalid length. [ 155.976449][T25031] netlink: 'syz.2.9210': attribute type 10 has an invalid length. [ 155.985060][T25031] team0: Port device wlan1 added [ 156.120481][T25068] usb usb7: usbfs: process 25068 (syz.1.9227) did not claim interface 0 before use [ 156.204312][T25090] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 156.225931][T25097] random: crng reseeded on system resumption [ 156.295788][T25109] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on [ 156.302275][T25109] bond8: entered allmulticast mode [ 156.302455][T25109] 8021q: adding VLAN 0 to HW filter on device bond8 [ 156.313477][T25106] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 156.757112][T25207] netlink: 'syz.2.9296': attribute type 2 has an invalid length. [ 156.774201][T25210] IPv6: NLM_F_CREATE should be specified when creating new route [ 157.201034][T25314] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 157.240612][T25327] tmpfs: Bad value for 'nr_inodes' [ 157.889788][ T39] audit: type=1326 audit(151.481:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25484 comm="syz.2.9432" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 157.901942][ T39] audit: type=1326 audit(151.481:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25484 comm="syz.2.9432" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 157.908477][ T39] audit: type=1326 audit(151.481:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25484 comm="syz.2.9432" exe="/syz-executor" sig=0 arch=40000003 syscall=320 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 157.915334][ T39] audit: type=1326 audit(151.481:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25484 comm="syz.2.9432" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 157.920954][ T39] audit: type=1326 audit(151.481:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25484 comm="syz.2.9432" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 158.146622][T25539] netlink: 'syz.1.9457': attribute type 11 has an invalid length. [ 158.268295][T25565] xt_recent: hitcount (4294967293) is larger than allowed maximum (65535) [ 158.340550][T25581] ntfs3(nullb0): Primary boot signature is not NTFS. [ 158.343192][T25581] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00 [ 158.712805][T25658] Unknown options in mask 7 [ 158.783580][T25670] libceph: resolve '. [ 158.783580][T25670] #)|.fǝa2sow?'%ЏKAqfCzeSb3L)HyoǤYMhE$ [ 158.783580][T25670] ' (ret=-3): failed [ 158.820373][T25677] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method [ 159.188013][T25731] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 159.191243][T25731] overlayfs: missing 'lowerdir' [ 159.254073][T25741] netlink: 'syz.3.9554': attribute type 1 has an invalid length. [ 159.293087][T25749] random: crng reseeded on system resumption [ 159.391476][T25760] syz.2.9562: attempt to access beyond end of device [ 159.391476][T25760] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0 [ 159.583966][T25793] i801_smbus 0000:00:1f.3: Illegal SMBus block read size 0 [ 159.706733][T25819] xt_ecn: cannot match TCP bits for non-tcp packets [ 160.001941][ T39] audit: type=1400 audit(153.464:533): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=26260A3AF6EFF374925873ECE44CF3460B0BA260624F2A08BDBB6D3C92592016EA4E0F401876B1958B3F9AA5153386EED838C49D3A pid=25876 comm="syz.1.9612" [ 160.020737][T25879] __nla_validate_parse: 26 callbacks suppressed [ 160.020753][T25879] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9614'. [ 160.229222][ T39] audit: type=1326 audit(153.670:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25915 comm="syz.1.9631" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000 [ 160.240394][ T39] audit: type=1326 audit(153.670:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25915 comm="syz.1.9631" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000 [ 160.248276][ T39] audit: type=1326 audit(153.670:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25915 comm="syz.1.9631" exe="/syz-executor" sig=0 arch=40000003 syscall=271 compat=1 ip=0xf7f36579 code=0x7ffc0000 [ 160.255231][ T39] audit: type=1326 audit(153.670:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25915 comm="syz.1.9631" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000 [ 160.262060][ T39] audit: type=1326 audit(153.670:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25915 comm="syz.1.9631" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000 [ 160.309559][T25926] 9pnet_fd: p9_fd_create_tcp (25926): problem connecting socket to 127.0.0.1 [ 160.494342][T25959] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9649'. [ 160.572499][T25976] syz.0.9655: attempt to access beyond end of device [ 160.572499][T25976] nbd0: rw=0, sector=64, nr_sectors = 1 limit=0 [ 160.577994][T25976] syz.0.9655: attempt to access beyond end of device [ 160.577994][T25976] nbd0: rw=0, sector=256, nr_sectors = 1 limit=0 [ 160.582824][T25976] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256 [ 160.586550][T25976] syz.0.9655: attempt to access beyond end of device [ 160.586550][T25976] nbd0: rw=0, sector=512, nr_sectors = 1 limit=0 [ 160.591678][T25976] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512 [ 160.595541][T25976] syz.0.9655: attempt to access beyond end of device [ 160.595541][T25976] nbd0: rw=0, sector=64, nr_sectors = 2 limit=0 [ 160.600616][T25976] syz.0.9655: attempt to access beyond end of device [ 160.600616][T25976] nbd0: rw=0, sector=512, nr_sectors = 2 limit=0 [ 160.605044][T25976] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256 [ 160.608649][T25976] syz.0.9655: attempt to access beyond end of device [ 160.608649][T25976] nbd0: rw=0, sector=1024, nr_sectors = 2 limit=0 [ 160.614234][T25976] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512 [ 160.618797][T25976] syz.0.9655: attempt to access beyond end of device [ 160.618797][T25976] nbd0: rw=0, sector=64, nr_sectors = 4 limit=0 [ 160.623763][T25976] syz.0.9655: attempt to access beyond end of device [ 160.623763][T25976] nbd0: rw=0, sector=1024, nr_sectors = 4 limit=0 [ 160.628359][T25976] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256 [ 160.632410][T25976] syz.0.9655: attempt to access beyond end of device [ 160.632410][T25976] nbd0: rw=0, sector=2048, nr_sectors = 4 limit=0 [ 160.637443][T25976] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512 [ 160.641323][T25976] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256 [ 160.644676][T25976] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512 [ 160.647941][T25976] UDF-fs: warning (device nbd0): udf_fill_super: No partition found (1) [ 160.657021][T25990] netlink: 16 bytes leftover after parsing attributes in process `syz.3.9662'. [ 160.660107][T25990] netlink: 24 bytes leftover after parsing attributes in process `syz.3.9662'. [ 160.666993][T25990] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on [ 160.677525][T25990] bond8: entered allmulticast mode [ 160.679443][T25990] 8021q: adding VLAN 0 to HW filter on device bond8 [ 160.741139][T26008] mac80211_hwsim hwsim3 : renamed from wlan1 (while UP) [ 160.814009][T26024] x_tables: ip6_tables: mh match: only valid for protocol 135 [ 160.868819][ T39] audit: type=1326 audit(154.278:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26037 comm="syz.2.9679" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 160.876289][ T39] audit: type=1326 audit(154.278:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26037 comm="syz.2.9679" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 160.881666][ T39] audit: type=1326 audit(154.278:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26037 comm="syz.2.9679" exe="/syz-executor" sig=0 arch=40000003 syscall=342 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 160.888845][ T39] audit: type=1326 audit(154.278:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26037 comm="syz.2.9679" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 160.901991][T26047] netlink: 32 bytes leftover after parsing attributes in process `syz.3.9683'. [ 160.921989][T26051] program syz.1.9686 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 160.927509][T26055] netlink: 16 bytes leftover after parsing attributes in process `syz.3.9687'. [ 161.135089][T26105] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9712'. [ 161.141662][T26107] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9714'. [ 161.353558][T26146] netlink: zone id is out of range [ 161.355017][T26146] netlink: zone id is out of range [ 161.356411][T26146] netlink: zone id is out of range [ 161.363924][T26146] netlink: zone id is out of range [ 161.366240][T26146] netlink: zone id is out of range [ 161.368680][T26146] netlink: zone id is out of range [ 161.370205][T26146] netlink: zone id is out of range [ 161.371605][T26146] netlink: set zone limit has 4 unknown bytes [ 161.516245][T26172] netlink: 'syz.3.9745': attribute type 1 has an invalid length. [ 161.716126][T26206] netlink: 20 bytes leftover after parsing attributes in process `syz.3.9762'. [ 161.720442][T26206] netlink: 20 bytes leftover after parsing attributes in process `syz.3.9762'. [ 161.759263][T26212] tmpfs: Bad value for 'mpol' [ 161.779557][T26216] Cannot find del_set index 3 as target [ 162.063134][T26261] Sensor A: ================= START STATUS ================= [ 162.065803][T26261] Sensor A: Test Pattern: Horizontal 100% Colorbar [ 162.068645][T26261] Sensor A: Show Information: All [ 162.070506][T26261] Sensor A: Vertical Flip: true [ 162.072379][T26261] Sensor A: Horizontal Flip: true [ 162.076531][T26261] Sensor A: Brightness: 128 [ 162.078217][T26261] Sensor A: Contrast: 128 [ 162.079726][T26261] Sensor A: Hue: 127 [ 162.081202][T26261] Sensor A: Saturation: 0 [ 162.082895][T26261] Sensor A: ================== END STATUS ================== [ 162.147313][T26278] batadv0: left promiscuous mode [ 162.594119][T26375] netlink: 'syz.1.9846': attribute type 3 has an invalid length. [ 162.618048][T26380] ksmbd: Daemon and kernel module version mismatch. ksmbd: 124, kernel module: 1. User-space ksmbd should terminate. [ 162.703282][T26401] vti1: entered promiscuous mode [ 162.796698][T26419] ipt_rpfilter: unknown options [ 162.807710][T26421] xt_CONNSECMARK: invalid mode: 0 [ 162.864171][T26435] No source specified [ 162.973793][T26464] netlink: 'syz.3.9889': attribute type 1 has an invalid length. [ 162.996942][T26466] gfs2: not a GFS2 filesystem [ 163.012357][T26470] x_tables: ip6_tables: icmp6 match: only valid for protocol 58 [ 163.044991][T26474] netlink: 'syz.0.9895': attribute type 21 has an invalid length. [ 163.048788][T26474] IPv6: NLM_F_CREATE should be specified when creating new route [ 163.084662][T26482] ax25_connect(): syz.1.9898 uses autobind, please contact jreuter@yaina.de [ 163.267542][T26515] PKCS8: Unsupported PKCS#8 version [ 163.471159][T26555] overlayfs: unescaped trailing colons in lowerdir mount option. [ 163.521327][T26571] Device name cannot be null; rc = [-22] [ 163.614172][T26595] bond9: entered promiscuous mode [ 163.746338][T26633] netlink: 'syz.2.9971': attribute type 1 has an invalid length. [ 163.749772][T26633] netlink: 'syz.2.9971': attribute type 1 has an invalid length. [ 163.775568][T26638] program syz.1.9973 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 163.875683][T26662] openvswitch: netlink: Missing key (keys=40, expected=200000) [ 163.946579][T26682] block nbd1: NBD_DISCONNECT [ 164.029362][T26693] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 164.047975][T26697] netlink: 'syz.0.10001': attribute type 2 has an invalid length. [ 164.056298][T26697] : entered promiscuous mode [ 164.142814][T26715] xt_TPROXY: Can be used only with -p tcp or -p udp [ 164.258281][ T5956] Bluetooth: hci3: command 0x0405 tx timeout [ 164.327062][T26751] tc_dump_action: action bad kind [ 164.356177][T26757] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 164.358368][T26757] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 164.362236][T26757] vhci_hcd vhci_hcd.0: Device attached [ 164.375339][T26759] vhci_hcd: unknown pdu 2 [ 164.377443][ T95] vhci_hcd: stop threads [ 164.378575][ T95] vhci_hcd: release socket [ 164.380515][ T95] vhci_hcd: disconnect device [ 164.399993][T26767] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'filter' [ 164.409005][T26771] nfs4: Bad value for 'source' [ 164.694022][T26815] netlink: 'syz.2.10059': attribute type 11 has an invalid length. [ 164.738917][T26822] netlink: 'syz.2.10063': attribute type 1 has an invalid length. [ 164.741745][T26822] netlink: 'syz.2.10063': attribute type 1 has an invalid length. [ 165.124879][T26884] bio_check_eod: 5 callbacks suppressed [ 165.124890][T26884] syz.2.10092: attempt to access beyond end of device [ 165.124890][T26884] nbd2: rw=0, sector=1, nr_sectors = 1 limit=0 [ 165.129876][T26884] VFS: could not find a valid V7 on nbd2. [ 165.164631][ C3] ata1: illegal qc_active transition (00000000->04000000) [ 165.394946][T26924] __nla_validate_parse: 11 callbacks suppressed [ 165.394958][T26924] netlink: 48 bytes leftover after parsing attributes in process `syz.0.10111'. [ 165.402470][T26924] netlink: 48 bytes leftover after parsing attributes in process `syz.0.10111'. [ 165.507178][ T1094] ata1: SATA link up 1.5 Gbps (SStatus 113 SControl 300) [ 165.511984][ T1094] ata1.00: configured for UDMA/100 [ 165.725491][T26992] netlink: 4 bytes leftover after parsing attributes in process `syz.0.10147'. [ 165.738878][T26996] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10148'. [ 165.919709][T27029] netlink: 20 bytes leftover after parsing attributes in process `syz.0.10164'. [ 166.063190][T27025] /dev/sr0: Can't open blockdev [ 166.180359][T27076] netlink: 224 bytes leftover after parsing attributes in process `syz.1.10187'. [ 166.183619][T27076] NCSI netlink: No device for ifindex 0 [ 166.318371][T27107] netlink: 48 bytes leftover after parsing attributes in process `syz.3.10201'. [ 166.346058][T27111] netlink: 16 bytes leftover after parsing attributes in process `syz.1.10204'. [ 166.460642][T27138] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10215'. [ 166.500216][T27146] ebtables: wrong size: *len 120, entries_size 144, replsz 144 [ 166.538832][T27153] bridge5: entered allmulticast mode [ 166.572875][T27164] dvmrp0: left allmulticast mode [ 166.599738][T27170] netlink: 40 bytes leftover after parsing attributes in process `syz.1.10231'. [ 166.650418][T27182] sctp: [Deprecated]: syz.1.10237 (pid 27182) Use of struct sctp_assoc_value in delayed_ack socket option. [ 166.650418][T27182] Use struct sctp_sack_info instead [ 166.935990][T27240] validate_nla: 5 callbacks suppressed [ 166.936008][T27240] netlink: 'syz.0.10265': attribute type 2 has an invalid length. [ 166.951528][T27240] netlink: 'syz.0.10265': attribute type 8 has an invalid length. [ 167.389312][T27338] syz.0.10315: attempt to access beyond end of device [ 167.389312][T27338] nbd0: rw=0, sector=2, nr_sectors = 1 limit=0 [ 167.393008][T27340] ISOFS: Unable to identify CD-ROM format. [ 167.498961][T27364] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains [ 167.541179][ T39] kauditd_printk_skb: 16 callbacks suppressed [ 167.541189][ T39] audit: type=1326 audit(160.517:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27375 comm="syz.0.10334" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 167.548409][ T39] audit: type=1326 audit(160.526:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27375 comm="syz.0.10334" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 167.554074][ T39] audit: type=1326 audit(160.526:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27375 comm="syz.0.10334" exe="/syz-executor" sig=0 arch=40000003 syscall=327 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 167.562184][ T39] audit: type=1326 audit(160.526:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27375 comm="syz.0.10334" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 167.571001][ T39] audit: type=1326 audit(160.526:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27375 comm="syz.0.10334" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 167.625851][T27396] xt_hashlimit: size too large, truncated to 1048576 [ 167.627730][T27396] xt_hashlimit: overflow, try lower: 0/0 [ 167.628820][T27394] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 167.690620][T27407] netlink: 'syz.2.10349': attribute type 1 has an invalid length. [ 167.752881][T27420] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 167.755001][T27420] IPv6: NLM_F_CREATE should be set when creating new route [ 167.758368][T27420] IPv6: NLM_F_CREATE should be set when creating new route [ 167.930809][T27446] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=io+mem:owns=io+mem [ 167.979188][T27453] netlink: 'syz.3.10372': attribute type 10 has an invalid length. [ 167.979362][T27454] netlink: 'syz.0.10373': attribute type 2 has an invalid length. [ 167.982197][T27453] vlan1: left allmulticast mode [ 167.986446][T27453] A link change request failed with some changes committed already. Interface vlan1 may have been left with an inconsistent configuration, please check. [ 168.098796][T27479] block device autoloading is deprecated and will be removed. [ 168.101654][T27479] syz.3.10385: attempt to access beyond end of device [ 168.101654][T27479] md0: rw=2048, sector=18446744073709551608, nr_sectors = 8 limit=0 [ 168.293126][ T39] audit: type=1326 audit(161.218:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27518 comm="syz.2.10405" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 168.299764][ T39] audit: type=1326 audit(161.218:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27518 comm="syz.2.10405" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 168.306491][ T39] audit: type=1326 audit(161.218:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27518 comm="syz.2.10405" exe="/syz-executor" sig=0 arch=40000003 syscall=122 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 168.312022][ T39] audit: type=1326 audit(161.218:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27518 comm="syz.2.10405" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 168.317932][ T39] audit: type=1326 audit(161.218:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27518 comm="syz.2.10405" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 168.406160][T27515] /dev/sr0: Can't open blockdev [ 168.444156][T27543] netlink: 'syz.3.10418': attribute type 1 has an invalid length. [ 168.630621][T27577] netlink: 'syz.3.10434': attribute type 4 has an invalid length. [ 168.636454][T27579] xt_SECMARK: invalid mode: 0 [ 168.751059][T27603] xt_addrtype: ipv6 does not support BROADCAST matching [ 168.827957][T27618] syz.2.10454: attempt to access beyond end of device [ 168.827957][T27618] md0: rw=2048, sector=18446744073709551608, nr_sectors = 8 limit=0 [ 168.879191][T27623] nvme_fabrics: missing parameter 'transport=%s' [ 168.881560][T27623] nvme_fabrics: missing parameter 'nqn=%s' [ 168.935577][T27639] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 169.092526][T27657] netlink: 'syz.3.10472': attribute type 49 has an invalid length. [ 169.441979][T27720] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 169.593981][T27765] random: crng reseeded on system resumption [ 169.600282][T27765] Restarting kernel threads ... done. [ 169.665960][T27786] SET target dimension over the limit! [ 169.752090][T27808] openvswitch: netlink: Missing key (keys=40, expected=80) [ 169.799655][T27817] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 169.804664][T27817] Error validating options; rc = [-22] [ 169.886949][T27841] netlink: 'syz.2.10562': attribute type 13 has an invalid length. [ 169.920125][T27841] gretap0: refused to change device tx_queue_len [ 169.924170][T27841] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 169.932823][T27850] netlink: 'syz.1.10568': attribute type 1 has an invalid length. [ 170.184656][T27904] bond9: entered promiscuous mode [ 170.186024][T27904] bond9: entered allmulticast mode [ 170.187466][T27904] 8021q: adding VLAN 0 to HW filter on device bond9 [ 170.295748][T27904] bond9 (unregistering): Released all slaves [ 170.869647][T28042] xt_CT: You must specify a L4 protocol and not use inversions on it [ 171.140998][T28070] xt_hashlimit: invalid rate [ 171.435959][T28103] __nla_validate_parse: 21 callbacks suppressed [ 171.435975][T28103] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10691'. [ 171.443554][T28103] geneve0 speed is unknown, defaulting to 1000 [ 171.484648][T28107] ip6t_rpfilter: unknown options [ 171.547414][T28115] program syz.3.10697 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 171.602600][T28123] xt_cluster: node mask cannot exceed total number of nodes [ 171.696482][T28137] netlink: 20 bytes leftover after parsing attributes in process `syz.3.10708'. [ 171.750344][T28145] netlink: 256 bytes leftover after parsing attributes in process `syz.1.10712'. [ 171.897646][T28167] ptrace attach of "/syz-executor exec"[5954] was attempted by "/syz-executor exec"[28167] [ 171.950401][T28177] netlink: 4 bytes leftover after parsing attributes in process `syz.0.10728'. [ 172.032794][T28192] openvswitch: netlink: VXLAN extension message has 2 unknown bytes. [ 172.199977][T28223] netlink: 68 bytes leftover after parsing attributes in process `syz.3.10751'. [ 172.203292][T28223] netlink: 68 bytes leftover after parsing attributes in process `syz.3.10751'. [ 172.216426][T28229] netlink: 516 bytes leftover after parsing attributes in process `syz.2.10754'. [ 172.338949][T28250] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 172.374422][T28262] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6 [ 172.412827][T28269] netlink: 1264 bytes leftover after parsing attributes in process `syz.0.10771'. [ 172.664839][T28336] netlink: 20 bytes leftover after parsing attributes in process `syz.2.10798'. [ 172.822434][T28379] Invalid source name [ 172.823591][T28379] UBIFS error (pid: 28379): cannot open "/dev/sg0", error -22 [ 172.851765][T28385] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10818'. [ 172.940878][T28407] tmpfs: Bad value for 'mpol' [ 173.071241][T28440] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 173.109970][T28452] random: crng reseeded on system resumption [ 173.167167][T28463] xt_cluster: you have exceeded the maximum number of cluster nodes (4294967293 > 32) [ 173.254275][T28479] xt_hashlimit: invalid rate [ 173.295182][T28488] bridge6: entered promiscuous mode [ 173.309566][T28491] ufs: You didn't specify the type of your ufs filesystem [ 173.309566][T28491] [ 173.309566][T28491] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ... [ 173.309566][T28491] [ 173.309566][T28491] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old [ 173.325787][T28491] ufs: ufstype=old is supported read-only [ 173.328768][T28491] ufs: ufs_fill_super(): bad magic number [ 173.337024][T28497] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 173.339478][T28497] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 173.342281][T28497] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 173.346159][T28497] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 173.348636][T28497] geneve5: entered promiscuous mode [ 173.350023][T28497] geneve5: entered allmulticast mode [ 173.603832][T28548] validate_nla: 8 callbacks suppressed [ 173.603844][T28548] netlink: 'syz.1.10898': attribute type 1 has an invalid length. [ 173.740669][ T39] kauditd_printk_skb: 23 callbacks suppressed [ 173.740685][ T39] audit: type=1326 audit(166.316:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28581 comm="syz.3.10917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 173.751333][ T39] audit: type=1326 audit(166.316:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28581 comm="syz.3.10917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 173.760587][ T39] audit: type=1326 audit(166.316:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28581 comm="syz.3.10917" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 173.768378][ T39] audit: type=1326 audit(166.316:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28581 comm="syz.3.10917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 173.781495][ T39] audit: type=1326 audit(166.316:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28581 comm="syz.3.10917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 173.891025][T28606] xt_TPROXY: Can be used only with -p tcp or -p udp [ 173.913791][T28610] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 173.963655][T28623] cgroup: noprefix used incorrectly [ 174.041281][T28645] Timeout policy `syz1' can only be used by L3 protocol number 0 [ 174.077762][T28655] netlink: 'syz.3.10952': attribute type 12 has an invalid length. [ 174.251043][T28694] netlink: 'syz.0.10971': attribute type 1 has an invalid length. [ 174.293920][T28704] xt_policy: neither incoming nor outgoing policy selected [ 174.806085][T28820] netlink: 'syz.0.11032': attribute type 2 has an invalid length. [ 174.885307][T28837] 8021q: VLANs not supported on lo [ 175.039541][T28868] netlink: 'syz.1.11057': attribute type 3 has an invalid length. [ 175.053992][T28872] program syz.0.11059 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 175.304512][T28934] zonefs (nbd3) ERROR: Not a zoned block device [ 175.643341][T28990] netlink: 'syz.2.11118': attribute type 1 has an invalid length. [ 175.941183][ T1094] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1 [ 175.943646][ T1094] ata1: failed to read log page 10h (errno=-5) [ 175.945873][ T1094] ata1.00: exception Emask 0x1 SAct 0x4 SErr 0x0 action 0x0 [ 175.948223][ T1094] ata1.00: irq_stat 0x40000000 [ 175.950220][ T1094] ata1.00: failed command: WRITE FPDMA QUEUED [ 175.952429][ T1094] ata1.00: cmd 61/58:10:22:0a:10/00:00:00:00:00/40 tag 2 ncq dma 45056 out [ 175.952429][ T1094] res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error) [ 175.958369][ T1094] ata1.00: status: { DRDY } [ 175.960080][ T1094] ata1.00: error: { ABRT } [ 175.962683][ T1094] ata1.00: configured for UDMA/100 [ 175.964856][ T1094] ata1: EH complete [ 175.969083][T29014] misc userio: The device must be registered before sending interrupts [ 176.013779][T29023] No source specified [ 176.107386][T29035] tmpfs: User quota block hardlimit too large. [ 176.411473][T28976] Bluetooth: hci0: Opcode 0x0401 failed: -4 [ 176.489134][T29095] netlink: 'syz.1.11167': attribute type 7 has an invalid length. [ 176.491698][T29098] netlink: 'syz.0.11170': attribute type 21 has an invalid length. [ 176.526029][T29103] xt_TCPMSS: Only works on TCP SYN packets [ 176.563229][T29111] netlink: 'syz.1.11176': attribute type 10 has an invalid length. [ 176.566207][T29111] lo: left allmulticast mode [ 176.568914][T29111] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 176.570936][T29116] (syz.0.11177,29116,0):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options [ 176.574141][T29117] kAFS: unable to lookup cell '' [ 176.576373][T29116] (syz.0.11177,29116,0):ocfs2_fill_super:1178 ERROR: status = -22 [ 176.592632][T29119] netlink: 'syz.3.11180': attribute type 21 has an invalid length. [ 176.690739][T29136] tmpfs: Bad value for 'mpol' [ 176.821043][T29161] macvlan0: entered promiscuous mode [ 176.824903][T29161] bond0: (slave macvlan0): Enslaving as an active interface with an up link [ 177.225228][T29240] __nla_validate_parse: 14 callbacks suppressed [ 177.225245][T29240] netlink: 16 bytes leftover after parsing attributes in process `syz.0.11240'. [ 177.311874][T29258] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.11249'. [ 177.422192][T29282] netlink: 4 bytes leftover after parsing attributes in process `syz.2.11262'. [ 177.453057][T29290] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11264'. [ 177.521745][T29301] Process accounting resumed [ 177.843727][T29378] openvswitch: netlink: Unexpected mask (mask=440, allowed=10048) [ 177.885692][T29384] geneve0 speed is unknown, defaulting to 1000 [ 177.921731][T29384] lo speed is unknown, defaulting to 1000 [ 177.933148][T29395] netlink: 32 bytes leftover after parsing attributes in process `syz.1.11317'. [ 177.936576][T29395] netlink: 32 bytes leftover after parsing attributes in process `syz.1.11317'. [ 178.057559][T29410] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 178.528740][T29473] (unnamed net_device) (uninitialized): option arp_interval: invalid value (18446744073709551615) [ 178.541500][T29473] (unnamed net_device) (uninitialized): option arp_interval: allowed values 0 - 2147483647 [ 178.587425][T29466] /dev/sr0: Can't open blockdev [ 178.657766][T29489] netlink: 28 bytes leftover after parsing attributes in process `syz.0.11362'. [ 178.661888][T29489] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11362'. [ 178.934815][T29536] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11386'. [ 178.935048][ T39] audit: type=1326 audit(2000000005.027:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29534 comm="syz.3.11384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 178.944006][ T39] audit: type=1326 audit(2000000005.027:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29534 comm="syz.3.11384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 178.950254][ T39] audit: type=1326 audit(2000000005.027:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29534 comm="syz.3.11384" exe="/syz-executor" sig=0 arch=40000003 syscall=461 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 178.957100][ T39] audit: type=1326 audit(2000000005.027:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29534 comm="syz.3.11384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 178.963318][ T39] audit: type=1326 audit(2000000005.027:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29534 comm="syz.3.11384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 179.115340][T29569] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0. [ 179.224255][T29587] xt_CT: No such helper "snmp" [ 179.323440][T29614] netlink: 12 bytes leftover after parsing attributes in process `syz.1.11419'. [ 179.418886][T29637] autofs4:pid:29637:validate_dev_ioctl: path string terminator missing for cmd(0xc0189374) [ 179.527437][T29662] (syz.1.11434,29662,1):ocfs2_parse_options:1446 ERROR: Unrecognized mount option "~g<+(.1 1'Ɖ" or missing value [ 179.533472][T29662] (syz.1.11434,29662,1):ocfs2_fill_super:1178 ERROR: status = -22 [ 179.630574][T29686] ata1.00: invalid cdb length 6 [ 180.168369][T29796] validate_nla: 5 callbacks suppressed [ 180.168385][T29796] netlink: 'syz.3.11493': attribute type 32 has an invalid length. [ 180.173740][T29796] netlink: 'syz.3.11493': attribute type 32 has an invalid length. [ 180.188989][T29799] netlink: zone id is out of range [ 180.191446][T29799] netlink: zone id is out of range [ 180.331028][T29827] /dev/sg0: Can't lookup blockdev [ 180.454647][T29849] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 180.488631][T29857] netlink: 'syz.3.11522': attribute type 4 has an invalid length. [ 180.553392][T29869] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw [ 180.565541][T29874] netlink: 'syz.2.11530': attribute type 4 has an invalid length. [ 180.580652][T29874] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check. [ 180.709144][T29902] netlink: zone id is out of range [ 180.711020][T29902] netlink: zone id is out of range [ 180.712887][T29902] netlink: zone id is out of range [ 180.715039][T29902] netlink: zone id is out of range [ 180.862299][T29932] No such timeout policy "syz0" [ 180.917927][T29942] xt_bpf: check failed: parse error [ 180.920920][T29944] binder: 29943:29944 ioctl c00c6211 0 returned -14 [ 180.988620][T29957] netlink: 'syz.0.11570': attribute type 21 has an invalid length. [ 181.054231][T29967] kAFS: Can only specify source 'none' with -o dyn [ 181.552193][T30064] Cannot find del_set index 4 as target [ 181.561884][T30067] --map-set only usable from mangle table [ 181.638577][T30078] block device autoloading is deprecated and will be removed. [ 181.845136][T30115] net_ratelimit: 7 callbacks suppressed [ 181.845153][T30115] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 182.013162][T30152] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 182.086107][T30167] qnx6: unable to read the first superblock [ 182.139340][T30176] xt_policy: input policy not valid in POSTROUTING and OUTPUT [ 182.239042][T30194] usb usb7: usbfs: process 30194 (syz.1.11688) did not claim interface 0 before use [ 182.262448][ T39] audit: type=1326 audit(2000000008.305:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30199 comm="syz.2.11692" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 182.270196][ T39] audit: type=1326 audit(2000000008.305:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30199 comm="syz.2.11692" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 182.286314][ T39] audit: type=1326 audit(2000000008.314:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30199 comm="syz.2.11692" exe="/syz-executor" sig=0 arch=40000003 syscall=249 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 182.291988][ T39] audit: type=1326 audit(2000000008.314:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30199 comm="syz.2.11692" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 182.298537][ T39] audit: type=1326 audit(2000000008.314:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30199 comm="syz.2.11692" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 182.348081][T30214] QAT: Device 253 not found [ 182.420474][T30226] netlink: 'syz.2.11705': attribute type 10 has an invalid length. [ 182.424204][T30226] 0X: entered promiscuous mode [ 182.425649][T30226] 0X: left allmulticast mode [ 182.426873][T30226] hsr_slave_0: left allmulticast mode [ 182.428498][T30226] hsr_slave_1: left allmulticast mode [ 182.434701][T30226] bond0: (slave c0X): The slave device specified does not support setting the MAC address [ 182.438961][T30226] 0X: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 182.444195][T30226] bond0: (slave c0X): Error -22 calling dev_set_mtu [ 182.527211][T30242] __nla_validate_parse: 13 callbacks suppressed [ 182.527229][T30242] netlink: 12 bytes leftover after parsing attributes in process `syz.2.11711'. [ 182.548863][T30245] syz.1.11712: attempt to access beyond end of device [ 182.548863][T30245] nbd1: rw=0, sector=64, nr_sectors = 1 limit=0 [ 182.552531][T30245] syz.1.11712: attempt to access beyond end of device [ 182.552531][T30245] nbd1: rw=0, sector=256, nr_sectors = 1 limit=0 [ 182.557447][T30245] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256 [ 182.560270][T30245] syz.1.11712: attempt to access beyond end of device [ 182.560270][T30245] nbd1: rw=0, sector=512, nr_sectors = 1 limit=0 [ 182.564686][T30245] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512 [ 182.568276][T30245] UDF-fs: warning (device nbd1): udf_load_vrs: No anchor found [ 182.570895][T30245] UDF-fs: Scanning with blocksize 512 failed [ 182.573686][T30245] syz.1.11712: attempt to access beyond end of device [ 182.573686][T30245] nbd1: rw=0, sector=64, nr_sectors = 2 limit=0 [ 182.579139][T30245] syz.1.11712: attempt to access beyond end of device [ 182.579139][T30245] nbd1: rw=0, sector=512, nr_sectors = 2 limit=0 [ 182.583967][T30245] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256 [ 182.587494][T30245] syz.1.11712: attempt to access beyond end of device [ 182.587494][T30245] nbd1: rw=0, sector=1024, nr_sectors = 2 limit=0 [ 182.593756][T30245] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512 [ 182.597266][T30245] UDF-fs: warning (device nbd1): udf_load_vrs: No anchor found [ 182.600545][T30245] UDF-fs: Scanning with blocksize 1024 failed [ 182.602959][T30245] syz.1.11712: attempt to access beyond end of device [ 182.602959][T30245] nbd1: rw=0, sector=64, nr_sectors = 4 limit=0 [ 182.607643][T30245] syz.1.11712: attempt to access beyond end of device [ 182.607643][T30245] nbd1: rw=0, sector=1024, nr_sectors = 4 limit=0 [ 182.612358][T30245] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256 [ 182.616262][T30245] syz.1.11712: attempt to access beyond end of device [ 182.616262][T30245] nbd1: rw=0, sector=2048, nr_sectors = 4 limit=0 [ 182.621169][T30245] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512 [ 182.624610][T30245] UDF-fs: warning (device nbd1): udf_load_vrs: No anchor found [ 182.627384][T30245] UDF-fs: Scanning with blocksize 2048 failed [ 182.629884][T30245] syz.1.11712: attempt to access beyond end of device [ 182.629884][T30245] nbd1: rw=0, sector=64, nr_sectors = 8 limit=0 [ 182.633554][T30245] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256 [ 182.636169][T30245] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512 [ 182.638901][T30245] UDF-fs: warning (device nbd1): udf_load_vrs: No anchor found [ 182.641345][T30245] UDF-fs: Scanning with blocksize 4096 failed [ 182.643298][T30245] UDF-fs: warning (device nbd1): udf_fill_super: No partition found (1) [ 182.972198][T30304] geneve0 speed is unknown, defaulting to 1000 [ 183.149759][T30326] syz.2.11751 (30326) used greatest stack depth: 19888 bytes left [ 183.155493][T30335] program syz.3.11756 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 183.158462][T30335] ata1.00: invalid transfer count 0 [ 183.224825][T30347] netlink: 4 bytes leftover after parsing attributes in process `syz.0.11763'. [ 183.344602][T30369] netlink: 'syz.3.11774': attribute type 21 has an invalid length. [ 183.347466][T30369] netlink: 128 bytes leftover after parsing attributes in process `syz.3.11774'. [ 183.349855][T30369] netlink: 'syz.3.11774': attribute type 5 has an invalid length. [ 183.351901][T30369] netlink: 3 bytes leftover after parsing attributes in process `syz.3.11774'. [ 183.392422][T30375] IPVS: length: 46 != 8 [ 183.433059][T30383] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11781'. [ 183.446660][T30385] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11783'. [ 183.594634][T30412] netlink: 4 bytes leftover after parsing attributes in process `syz.0.11794'. [ 183.943494][T30482] tmpfs: Bad value for 'mpol' [ 183.975636][T30490] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11831'. [ 184.088562][T30509] netlink: 'syz.2.11838': attribute type 10 has an invalid length. [ 184.090927][T30509] netlink: 55 bytes leftover after parsing attributes in process `syz.2.11838'. [ 184.531723][T30550] wireguard0: entered promiscuous mode [ 184.533908][T30550] wireguard0: entered allmulticast mode [ 184.636918][T30571] program syz.1.11864 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 184.767572][T30600] binder: binder_mmap: 30598 20001000-2000b000 bad vm_flags failed -1 [ 184.777250][T30603] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 184.803517][T30605] netlink: 'syz.2.11878': attribute type 1 has an invalid length. [ 184.805647][T30605] netlink: 224 bytes leftover after parsing attributes in process `syz.2.11878'. [ 184.820650][T30609] random: crng reseeded on system resumption [ 184.947317][T30634] new mount options do not match the existing superblock, will be ignored [ 185.083003][T30659] xt_NFQUEUE: number of total queues is 0 [ 185.126249][T30669] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 185.165734][T30677] program syz.3.11913 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 185.391623][ T5955] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 185.530476][T30722] validate_nla: 2 callbacks suppressed [ 185.530494][T30722] netlink: 'syz.1.11936': attribute type 10 has an invalid length. [ 185.553907][ T5955] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 185.557091][ T5955] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 185.559992][ T5955] usb 7-1: Product: syz [ 185.562342][ T5955] usb 7-1: Manufacturer: syz [ 185.564160][ T5955] usb 7-1: SerialNumber: syz [ 185.570739][ T5955] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 185.618227][ T35] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 185.766308][T30753] xt_connbytes: Forcing CT accounting to be enabled [ 185.769079][T30753] SET target dimension over the limit! [ 186.082115][ T25] usb 7-1: USB disconnect, device number 7 [ 186.161290][T30813] random: crng reseeded on system resumption [ 186.306352][T30837] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 186.311301][T30841] befs: (nullb0): No write support. Marking filesystem read-only [ 186.314552][T30841] befs: (nullb0): invalid magic header [ 186.412569][T30859] random: crng reseeded on system resumption [ 186.457152][T30865] BFS-fs: bfs_fill_super(): No BFS filesystem on nullb0 (magic=00000000) [ 186.560616][T30881] 9pnet_virtio: no channels available for device 127.0.0.1 [ 186.597984][T30885] tmpfs: Bad value for 'usrquota_block_hardlimit' [ 186.639510][ T39] kauditd_printk_skb: 4 callbacks suppressed [ 186.639521][ T39] audit: type=1326 audit(2000000012.482:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30890 comm="syz.3.12020" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 186.654479][ T39] audit: type=1326 audit(2000000012.482:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30890 comm="syz.3.12020" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 186.669344][ T39] audit: type=1326 audit(2000000012.501:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30890 comm="syz.3.12020" exe="/syz-executor" sig=0 arch=40000003 syscall=323 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 186.678418][ T39] audit: type=1326 audit(2000000012.501:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30890 comm="syz.3.12020" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 186.680566][ T35] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive [ 186.686704][ T35] ath9k_htc: Failed to initialize the device [ 186.690735][ T25] usb 7-1: ath9k_htc: USB layer deinitialized [ 186.698458][T30900] syz.1.12023: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 186.707680][T30900] CPU: 0 UID: 0 PID: 30900 Comm: syz.1.12023 Not tainted 6.13.0-rc2-syzkaller-00036-g231825b2e1ff #0 [ 186.710664][T30900] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 186.714120][T30900] Call Trace: [ 186.715409][T30900] [ 186.716319][T30900] dump_stack_lvl+0x16c/0x1f0 [ 186.717708][T30900] warn_alloc+0x24d/0x3a0 [ 186.718928][T30900] ? __pfx_warn_alloc+0x10/0x10 [ 186.720289][T30900] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 186.721888][T30900] ? kasan_save_stack+0x42/0x60 [ 186.723257][T30900] ? kasan_save_stack+0x33/0x60 [ 186.725162][T30900] ? kasan_save_track+0x14/0x30 [ 186.726571][T30900] ? __kasan_kmalloc+0xaa/0xb0 [ 186.727833][T30900] ? xskq_create+0x52/0x1d0 [ 186.729029][T30900] ? do_sock_setsockopt+0x222/0x480 [ 186.730308][T30900] ? __sys_setsockopt+0x1a0/0x230 [ 186.731939][T30900] ? __ia32_sys_setsockopt+0xbc/0x160 [ 186.733899][T30900] __vmalloc_node_range_noprof+0x10df/0x1530 [ 186.736192][T30900] ? xskq_create+0xfb/0x1d0 [ 186.737609][T30900] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 186.739243][T30900] ? xskq_create+0xfb/0x1d0 [ 186.740433][T30900] vmalloc_user_noprof+0x6b/0x90 [ 186.741729][T30900] ? xskq_create+0xfb/0x1d0 [ 186.742924][T30905] SET target dimension over the limit! [ 186.744415][T30900] xskq_create+0xfb/0x1d0 [ 186.745538][T30900] xsk_setsockopt+0x869/0xac0 [ 186.746752][T30900] ? __pfx_xsk_setsockopt+0x10/0x10 [ 186.748036][T30900] ? find_held_lock+0x2d/0x110 [ 186.749204][T30900] ? __pfx_xsk_setsockopt+0x10/0x10 [ 186.750560][T30900] do_sock_setsockopt+0x222/0x480 [ 186.751863][T30900] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 186.753666][T30900] ? lock_acquire+0x2f/0xb0 [ 186.755343][T30900] __sys_setsockopt+0x1a0/0x230 [ 186.757100][T30900] __ia32_sys_setsockopt+0xbc/0x160 [ 186.758624][T30900] ? lockdep_hardirqs_on+0x7c/0x110 [ 186.760067][T30900] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 186.761920][T30900] __do_fast_syscall_32+0x73/0x120 [ 186.763474][T30900] do_fast_syscall_32+0x32/0x80 [ 186.764729][T30900] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 186.766344][T30900] RIP: 0023:0xf7f36579 [ 186.767405][T30900] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 186.772205][T30900] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e [ 186.775149][T30900] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000011b [ 186.777819][T30900] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000004 [ 186.779899][T30900] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 186.781956][T30900] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 186.784519][T30900] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 186.787612][T30900] [ 186.790281][T30900] Mem-Info: [ 186.791139][T30900] active_anon:9421 inactive_anon:290 isolated_anon:0 [ 186.791139][T30900] active_file:1823 inactive_file:25953 isolated_file:0 [ 186.791139][T30900] unevictable:1768 dirty:522 writeback:0 [ 186.791139][T30900] slab_reclaimable:6415 slab_unreclaimable:65201 [ 186.791139][T30900] mapped:23673 shmem:6569 pagetables:692 [ 186.791139][T30900] sec_pagetables:309 bounce:0 [ 186.791139][T30900] kernel_misc_reclaimable:0 [ 186.791139][T30900] free:62657 free_pcp:1663 free_cma:0 [ 186.805140][T30900] Node 0 active_anon:3656kB inactive_anon:1160kB active_file:140kB inactive_file:8900kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5992kB dirty:260kB writeback:0kB shmem:4976kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9668kB pagetables:848kB sec_pagetables:1132kB all_unreclaimable? yes [ 186.816865][T30900] Node 1 active_anon:34028kB inactive_anon:0kB active_file:7152kB inactive_file:94912kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:88700kB dirty:1828kB writeback:0kB shmem:21300kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:3164kB pagetables:1920kB sec_pagetables:104kB all_unreclaimable? no [ 186.828449][T30900] Node 0 DMA free:2984kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:180kB inactive_anon:24kB active_file:16kB inactive_file:0kB unevictable:0kB writepending:16kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:788kB local_pcp:216kB free_cma:0kB [ 186.838253][T30900] lowmem_reserve[]: 0 273 0 0 0 [ 186.840644][T30900] Node 0 DMA32 free:17572kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:4096KB active_anon:3476kB inactive_anon:1136kB active_file:124kB inactive_file:8900kB unevictable:3536kB writepending:244kB present:1032196kB managed:306308kB mlocked:0kB bounce:0kB free_pcp:1724kB local_pcp:276kB free_cma:0kB [ 186.852981][T30900] lowmem_reserve[]: 0 0 0 0 0 [ 186.854877][T30900] Node 1 DMA32 free:230072kB boost:30720kB min:77864kB low:89648kB high:101432kB reserved_highatomic:2048KB active_anon:34028kB inactive_anon:0kB active_file:7152kB inactive_file:94912kB unevictable:3536kB writepending:1828kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:4596kB local_pcp:104kB free_cma:0kB [ 186.865846][T30900] lowmem_reserve[]: 0 0 0 0 0 [ 186.871842][T30900] Node 0 DMA: 6*4kB (U) 26*8kB (U) 60*16kB (UE) 56*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2984kB [ 186.876772][T30900] Node 0 DMA32: 64*4kB (UMH) 47*8kB (UMEH) 41*16kB (UME) 40*32kB (UME) 46*64kB (UME) 15*128kB (UME) 9*256kB (UM) 5*512kB (U) 1*1024kB (U) 2*2048kB (M) 0*4096kB = 17416kB [ 186.882652][T30900] Node 1 DMA32: 139*4kB (UME) 307*8kB (UE) 146*16kB (UM) 83*32kB (UEH) 313*64kB (UMEH) 44*128kB (UMEH) 57*256kB (UMEH) 34*512kB (UMEH) 46*1024kB (UMH) 9*2048kB (UM) 24*4096kB (UM) = 229508kB [ 186.889419][T30900] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 186.892737][T30900] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 186.896128][T30900] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 186.897281][T30921] random: crng reseeded on system resumption [ 186.898863][T30900] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 186.904021][T30900] 34345 total pagecache pages [ 186.905797][T30900] 0 pages in swap cache [ 186.907321][T30900] Free swap = 124144kB [ 186.909201][T30900] Total swap = 124996kB [ 186.910449][T30900] 524155 pages RAM [ 186.911517][T30900] 0 pages HighMem/MovableOnly [ 186.913208][T30900] 206675 pages reserved [ 186.913220][T30900] 0 pages cma reserved [ 186.935179][T30923] netlink: 'syz.0.12035': attribute type 10 has an invalid length. [ 187.182651][T30945] netlink: 'syz.1.12046': attribute type 4 has an invalid length. [ 187.192356][ T39] audit: type=1400 audit(2000000013.002:615): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=30946 comm="syz.2.12047" [ 187.349287][T30972] x_tables: ip_tables: ah match: only valid for protocol 51 [ 187.485055][T30996] xt_CT: No such helper "netbios-ns" [ 187.552683][T31009] netlink: 'syz.2.12077': attribute type 1 has an invalid length. [ 187.788667][ T5956] Bluetooth: hci0: unexpected event 0x18 length: 5 < 23 [ 187.860555][T31058] ALSA: mixer_oss: invalid OSS volume '' [ 187.862106][T31058] ALSA: mixer_oss: invalid OSS volume 'ұB;T`@$EcXMYd,' [ 187.864245][T31058] ALSA: mixer_oss: invalid OSS volume 'b@h#' [ 187.865820][T31058] ALSA: mixer_oss: invalid OSS volume 'h4XS4v=0_>&' [ 187.868099][T31058] ALSA: mixer_oss: invalid OSS volume '|/"tj' [ 187.869836][T31058] ALSA: mixer_oss: invalid OSS volume '-z5c^J6$' [ 187.871749][T31058] ALSA: mixer_oss: invalid OSS volume '0Ty󉴪jP&at' [ 187.873839][T31058] ALSA: mixer_oss: invalid OSS volume '|~\' [ 187.875405][T31058] ALSA: mixer_oss: invalid OSS volume '@^3bɜ}G$#\("/oL' [ 187.877389][T31058] ALSA: mixer_oss: invalid OSS volume 'I :' [ 187.880285][T31058] ALSA: mixer_oss: invalid OSS volume '%^vhcGJPr('⍯Q=' [ 187.882430][T31058] ALSA: mixer_oss: invalid OSS volume ' Gj;4Ìz3WҼ0F=%' [ 187.884501][T31058] ALSA: mixer_oss: invalid OSS volume ';4 4fh߇GIבQ5oJ' [ 187.886683][T31058] ALSA: mixer_oss: invalid OSS volume 'Wl]Y1-J<A>o' [ 187.915321][T31067] nbd: must specify at least one socket [ 188.026824][ T35] usb 5-1: new full-speed USB device number 8 using dummy_hcd [ 188.208758][ T35] usb 5-1: config 0 has an invalid interface number: 120 but max is 0 [ 188.211556][ T35] usb 5-1: config 0 has no interface number 0 [ 188.213624][ T35] usb 5-1: config 0 interface 120 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 4 [ 188.216951][ T35] usb 5-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58 [ 188.220081][ T35] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 188.223806][ T35] usb 5-1: config 0 descriptor?? [ 188.227910][ T35] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.120/input/input37 [ 188.444812][ T1329] usb 5-1: USB disconnect, device number 8 [ 188.667221][T31053] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 188.670649][T31053] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 188.674335][T31053] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 188.681661][T31053] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 188.970788][T31125] SET target dimension over the limit! [ 189.201951][T31170] openvswitch: netlink: Missing key (keys=40, expected=10000000) [ 189.473664][T31233] __nla_validate_parse: 3 callbacks suppressed [ 189.473676][T31233] netlink: 32 bytes leftover after parsing attributes in process `syz.0.12188'. [ 189.477676][T31233] netlink: 1 bytes leftover after parsing attributes in process `syz.0.12188'. [ 189.482497][T31235] bio_check_eod: 2 callbacks suppressed [ 189.482506][T31235] syz.2.12189: attempt to access beyond end of device [ 189.482506][T31235] nbd2: rw=0, sector=2, nr_sectors = 2 limit=0 [ 189.490701][T31235] syz.2.12189: attempt to access beyond end of device [ 189.490701][T31235] nbd2: rw=0, sector=16, nr_sectors = 2 limit=0 [ 189.546703][T31248] ipt_REJECT: TCP_RESET invalid for non-tcp [ 189.735474][T31289] deleting an unspecified loop device is not supported. [ 190.141032][ T39] audit: type=1326 audit(2000000015.777:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31373 comm="syz.0.12257" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 190.148703][ T39] audit: type=1326 audit(2000000015.787:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31373 comm="syz.0.12257" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 190.156279][ T39] audit: type=1326 audit(2000000015.787:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31373 comm="syz.0.12257" exe="/syz-executor" sig=0 arch=40000003 syscall=183 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 190.161872][ T39] audit: type=1326 audit(2000000015.787:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31373 comm="syz.0.12257" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 190.168124][ T39] audit: type=1326 audit(2000000015.787:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31373 comm="syz.0.12257" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 190.309474][T31410] QAT: Stopping all acceleration devices. [ 190.437253][T31441] netlink: 'syz.0.12289': attribute type 1 has an invalid length. [ 190.444010][T31441] netlink: 228 bytes leftover after parsing attributes in process `syz.0.12289'. [ 190.637895][T31487] netlink: 4 bytes leftover after parsing attributes in process `syz.1.12312'. [ 190.803536][ T25] usb 8-1: new low-speed USB device number 5 using dummy_hcd [ 190.846323][ T5956] Bluetooth: hci3: command 0x0405 tx timeout [ 190.965758][ T25] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 190.968246][ T25] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 190.972163][ T25] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 190.984668][ T25] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 190.988260][ T25] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 190.992824][ T25] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 191.006006][ T25] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 191.009552][ T25] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 191.013452][ T25] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 191.027295][ T25] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 191.032017][ T25] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 191.035282][ T25] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 191.048695][ T25] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 191.052466][ T25] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 191.056020][ T25] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 191.072471][ T25] usb 8-1: string descriptor 0 read error: -22 [ 191.074881][ T25] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 191.077948][ T25] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 191.092630][ T25] adutux 8-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 191.306897][ T57] usb 8-1: USB disconnect, device number 5 [ 191.849348][T31540] cgroup: none used incorrectly [ 191.873626][T31544] cgroup: Need name or subsystem set [ 191.959935][T31567] netlink: 'syz.1.12352': attribute type 10 has an invalid length. [ 191.962318][T31567] team0: Device hsr_slave_0 failed to register rx_handler [ 191.966709][ T39] audit: type=1326 audit(2000000017.485:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31568 comm="syz.0.12350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 191.983588][ T39] audit: type=1326 audit(2000000017.485:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31568 comm="syz.0.12350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 191.989546][ T39] audit: type=1326 audit(2000000017.494:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31568 comm="syz.0.12350" exe="/syz-executor" sig=0 arch=40000003 syscall=81 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 191.999015][T31572] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12354'. [ 192.003930][ T39] audit: type=1326 audit(2000000017.494:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31568 comm="syz.0.12350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 192.009492][ T39] audit: type=1326 audit(2000000017.494:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31568 comm="syz.0.12350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 192.112047][T31599] netlink: 1275 bytes leftover after parsing attributes in process `syz.3.12366'. [ 192.115772][T31599] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 192.174606][T31611] /dev/sg0: Can't lookup blockdev [ 192.423137][ T39] audit: type=1326 audit(2000000017.916:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31666 comm="syz.1.12400" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000 [ 192.435386][ T39] audit: type=1326 audit(2000000017.916:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31666 comm="syz.1.12400" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000 [ 192.441383][ T39] audit: type=1326 audit(2000000017.926:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31666 comm="syz.1.12400" exe="/syz-executor" sig=0 arch=40000003 syscall=312 compat=1 ip=0xf7f36579 code=0x7ffc0000 [ 192.446867][ T39] audit: type=1326 audit(2000000017.926:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31666 comm="syz.1.12400" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000 [ 192.452095][ T39] audit: type=1326 audit(2000000017.926:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31666 comm="syz.1.12400" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000 [ 192.508456][T31688] netlink: 'syz.2.12409': attribute type 21 has an invalid length. [ 192.512421][T31688] netlink: 'syz.2.12409': attribute type 1 has an invalid length. [ 192.514527][T31688] netlink: 100 bytes leftover after parsing attributes in process `syz.2.12409'. [ 192.557269][T31698] netlink: 260 bytes leftover after parsing attributes in process `syz.3.12414'. [ 192.635229][T31716] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12424'. [ 192.765295][T31748] netlink: 'syz.3.12439': attribute type 1 has an invalid length. [ 192.768232][T31748] netlink: 224 bytes leftover after parsing attributes in process `syz.3.12439'. [ 192.781565][T31751] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 193.064528][ T5956] Bluetooth: hci3: command 0x0405 tx timeout [ 193.106159][T31819] netlink: 'syz.3.12475': attribute type 12 has an invalid length. [ 193.188612][T31838] set match dimension is over the limit! [ 193.257553][T31851] netlink: 'syz.0.12490': attribute type 3 has an invalid length. [ 193.259601][T31851] netlink: 'syz.0.12490': attribute type 1 has an invalid length. [ 193.309869][ T57] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 193.432646][T31881] binder: 31880:31881 ioctl c018620c 20000100 returned -22 [ 193.481273][ T57] usb 6-1: Using ep0 maxpacket: 32 [ 193.484418][ T57] usb 6-1: config index 0 descriptor too short (expected 26, got 18) [ 193.487338][ T57] usb 6-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64 [ 193.497046][ T57] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 193.501306][ T57] usb 6-1: config 0 descriptor?? [ 193.508231][ T57] as10x_usb: device has been detected [ 193.510495][ T57] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle) [ 193.531442][ T57] usb 6-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)... [ 193.550427][ T57] as10x_usb: error during firmware upload part1 [ 193.552958][ T57] Registered device nBox DVB-T Dongle [ 193.569489][T31896] netlink: 'syz.3.12513': attribute type 11 has an invalid length. [ 193.735008][ T6027] usb 6-1: USB disconnect, device number 5 [ 193.756344][ T6027] Unregistered device nBox DVB-T Dongle [ 193.759861][ T6027] as10x_usb: device has been disconnected [ 193.883559][T31925] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6 [ 193.946711][T31929] xt_cgroup: xt_cgroup: no path or classid specified [ 194.530955][T31963] CIFS mount error: No usable UNC path provided in device string! [ 194.530955][T31963] [ 194.537765][T31963] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 194.618483][T31971] MTD: Attempt to mount non-MTD device "/dev/nullb0" [ 194.624447][T31971] VFS: Can't find a romfs filesystem on dev nullb0. [ 194.624447][T31971] [ 194.838803][T32005] __nla_validate_parse: 4 callbacks suppressed [ 194.838815][T32005] netlink: 40 bytes leftover after parsing attributes in process `syz.2.12565'. [ 195.058892][T32037] netlink: 'syz.1.12581': attribute type 3 has an invalid length. [ 195.288043][ T5963] Bluetooth: hci3: command 0x0405 tx timeout [ 195.331675][T32066] wlan1: mtu less than device minimum [ 195.584802][T32098] sit0: entered promiscuous mode [ 195.586193][T32098] sit0: left allmulticast mode [ 195.587531][T32098] netlink: 'syz.3.12610': attribute type 1 has an invalid length. [ 195.589613][T32098] netlink: 1 bytes leftover after parsing attributes in process `syz.3.12610'. [ 196.078770][T32174] netlink: 'syz.2.12647': attribute type 11 has an invalid length. [ 196.080908][T32174] netlink: 224 bytes leftover after parsing attributes in process `syz.2.12647'. [ 196.083377][T32175] netlink: 8 bytes leftover after parsing attributes in process `syz.1.12648'. [ 196.121331][T32180] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 196.269317][T32202] netlink: 16 bytes leftover after parsing attributes in process `syz.1.12661'. [ 196.309801][T32209] netlink: 596 bytes leftover after parsing attributes in process `syz.3.12665'. [ 196.398565][T32222] netlink: 132 bytes leftover after parsing attributes in process `syz.2.12671'. [ 196.454887][ T5956] Bluetooth: hci0: unexpected event for opcode 0x040d [ 196.622565][T32252] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12686'. [ 196.830327][T32290] xt_CT: You must specify a L4 protocol and not use inversions on it [ 196.982939][T32326] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12719'. [ 197.269572][T32394] xt_hashlimit: overflow, try lower: 18446744073709551613/6 [ 197.396269][T32415] xt_CT: No such helper "syz0" [ 197.406691][T32419] validate_nla: 1 callbacks suppressed [ 197.406702][T32419] netlink: 'syz.1.12764': attribute type 21 has an invalid length. [ 197.465827][T32428] TCP: TCP_TX_DELAY enabled [ 197.507621][ T5956] Bluetooth: hci3: command 0x0405 tx timeout [ 197.624677][ T6027] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 197.739328][T32480] vxfs: WRONG superblock magic 00000000 at 1 [ 197.742097][T32480] vxfs: WRONG superblock magic 00000000 at 8 [ 197.744142][T32480] vxfs: can't find superblock. [ 197.795895][ T6027] usb 7-1: Using ep0 maxpacket: 32 [ 197.798554][ T6027] usb 7-1: config 0 has an invalid interface number: 67 but max is 0 [ 197.800834][ T6027] usb 7-1: config 0 has no interface number 0 [ 197.804354][ T6027] usb 7-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 197.807594][ T6027] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 197.809748][ T6027] usb 7-1: Product: syz [ 197.810956][ T6027] usb 7-1: Manufacturer: syz [ 197.812864][ T6027] usb 7-1: SerialNumber: syz [ 197.816159][ T6027] usb 7-1: config 0 descriptor?? [ 197.821474][ T6027] smsc95xx v2.0.0 [ 197.822862][ T6027] smsc95xx 7-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 197.826916][ T6027] smsc95xx 7-1:0.67: probe with driver smsc95xx failed with error -22 [ 197.909661][T32504] netlink: 'syz.1.12805': attribute type 10 has an invalid length. [ 197.911614][T32505] ip6t_srh: unknown srh match flags E506 [ 197.911745][T32504] syz_tun: entered promiscuous mode [ 197.914890][T32504] syz_tun: left allmulticast mode [ 197.918735][T32504] syz_tun: entered allmulticast mode [ 197.920705][T32504] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 198.017599][T32520] bridge9: entered promiscuous mode [ 198.046842][ T35] usb 7-1: USB disconnect, device number 8 [ 198.125010][T32543] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 198.126005][ T39] kauditd_printk_skb: 35672 callbacks suppressed [ 198.126015][ T39] audit: type=1326 audit(2000000023.254:36303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32542 comm="syz.1.12825" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000 [ 198.137572][ T39] audit: type=1326 audit(2000000023.273:36304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32542 comm="syz.1.12825" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000 [ 198.144184][ T39] audit: type=1326 audit(2000000023.273:36305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32542 comm="syz.1.12825" exe="/syz-executor" sig=0 arch=40000003 syscall=40 compat=1 ip=0xf7f36579 code=0x7ffc0000 [ 198.153954][ T39] audit: type=1326 audit(2000000023.282:36306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32542 comm="syz.1.12825" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000 [ 198.197236][ T39] audit: type=1326 audit(2000000023.329:36307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32551 comm="syz.3.12830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 198.207096][ T39] audit: type=1326 audit(2000000023.329:36308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32551 comm="syz.3.12830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 198.215280][ T39] audit: type=1326 audit(2000000023.329:36309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32551 comm="syz.3.12830" exe="/syz-executor" sig=0 arch=40000003 syscall=164 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 198.221047][ T39] audit: type=1326 audit(2000000023.329:36310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32551 comm="syz.3.12830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 198.227560][ T39] audit: type=1326 audit(2000000023.329:36311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32551 comm="syz.3.12830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 198.544250][T32614] ipt_REJECT: TCP_RESET invalid for non-tcp [ 198.547968][T32617] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 198.595850][T32626] netlink: 'syz.1.12866': attribute type 13 has an invalid length. [ 198.598183][T32626] netlink: 152 bytes leftover after parsing attributes in process `syz.1.12866'. [ 198.600811][T32626] syz_tun: refused to change device tx_queue_len [ 198.602465][T32626] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check. [ 198.824714][T32676] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 198.854060][T32680] netlink: 'syz.1.12893': attribute type 21 has an invalid length. [ 198.924549][T32696] netlink: 'syz.0.12901': attribute type 1 has an invalid length. [ 199.214747][T32764] tmpfs: Bad value for 'mpol' [ 199.282661][ T313] netlink: 'syz.3.12943': attribute type 3 has an invalid length. [ 199.339372][ T327] tmpfs: Bad value for 'mpol' [ 199.395330][ T342] netlink: 'syz.3.12957': attribute type 21 has an invalid length. [ 199.519452][ T371] syz.3.12975: attempt to access beyond end of device [ 199.519452][ T371] nbd3: rw=0, sector=6, nr_sectors = 2 limit=0 [ 199.526053][ T371] ADFS-fs (nbd3): error: unable to read block 3, try 0 [ 199.581570][ T386] wlan1: mtu less than device minimum [ 199.659788][ T401] ceph: Path missing in source [ 199.688251][ T409] syz.0.12989: attempt to access beyond end of device [ 199.688251][ T409] nbd0: rw=0, sector=6, nr_sectors = 2 limit=0 [ 199.696418][ T409] ADFS-fs (nbd0): error: unable to read block 3, try 0 [ 199.780958][ T431] IPv6: NLM_F_CREATE should be specified when creating new route [ 199.813710][ T435] Timeout policy `syz0' can only be used by L3 protocol number 0 [ 199.884414][ T449] syz.1.13008: attempt to access beyond end of device [ 199.884414][ T449] nbd1: rw=0, sector=6, nr_sectors = 2 limit=0 [ 199.890170][ T449] ADFS-fs (nbd1): error: unable to read block 3, try 0 [ 199.967946][ T466] ceph: Path missing in source [ 200.040290][ T483] bridge0: port 1(netdevsim0) entered blocking state [ 200.043372][ T483] bridge0: port 1(netdevsim0) entered disabled state [ 200.045839][ T483] netdevsim netdevsim0 netdevsim0: entered allmulticast mode [ 200.049438][ T483] netdevsim netdevsim0 netdevsim0: entered promiscuous mode [ 200.103896][ T25] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 200.181592][ T498] ceph: Path missing in source [ 200.262243][ T516] __nla_validate_parse: 14 callbacks suppressed [ 200.262254][ T516] netlink: 48 bytes leftover after parsing attributes in process `syz.3.13042'. [ 200.264914][ T25] usb 7-1: Using ep0 maxpacket: 32 [ 200.268838][ T25] usb 7-1: config index 0 descriptor too short (expected 26, got 18) [ 200.270980][ T25] usb 7-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64 [ 200.273375][ T25] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 200.276585][ T25] usb 7-1: config 0 descriptor?? [ 200.279552][ T25] as10x_usb: device has been detected [ 200.281105][ T25] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle) [ 200.287410][ T25] usb 7-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)... [ 200.291558][ T25] as10x_usb: error during firmware upload part1 [ 200.293330][ T25] Registered device nBox DVB-T Dongle [ 200.506921][ T35] usb 7-1: USB disconnect, device number 9 [ 200.513783][ T35] Unregistered device nBox DVB-T Dongle [ 200.514828][ T35] as10x_usb: device has been disconnected [ 200.813447][ T622] PM: Enabling pm_trace changes system date and time during resume. [ 200.813447][ T622] PM: Correct system time has to be restored manually after resume. [ 200.966243][ T657] netlink: 'syz.1.13112': attribute type 1 has an invalid length. [ 200.968783][ T657] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13112'. [ 201.025490][ T670] dlm: Unknown command passed to DLM device : 0 [ 201.025490][ T670] [ 201.048708][ T673] openvswitch: netlink: Unexpected mask (mask=200040, allowed=10048) [ 201.083556][ T39] audit: type=1326 audit(2000000026.024:36312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=678 comm="syz.0.13123" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 201.167160][ T701] dlm: Unknown command passed to DLM device : 0 [ 201.167160][ T701] [ 201.318383][ T735] netlink: 'syz.1.13150': attribute type 21 has an invalid length. [ 201.320359][ T735] netlink: 128 bytes leftover after parsing attributes in process `syz.1.13150'. [ 201.323515][ T735] netlink: 'syz.1.13150': attribute type 5 has an invalid length. [ 201.326231][ T735] netlink: 3 bytes leftover after parsing attributes in process `syz.1.13150'. [ 201.359041][ T743] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13155'. [ 201.512740][ T775] delete_channel: no stack [ 201.581233][ T789] xt_hashlimit: overflow, try lower: 18446744073709551613/6 [ 201.753297][ T831] vxfs: WRONG superblock magic 00000000 at 1 [ 201.755063][ T831] vxfs: WRONG superblock magic 00000000 at 8 [ 201.756699][ T831] vxfs: can't find superblock. [ 201.823006][ T849] delete_channel: no stack [ 202.034252][ T894] syz_tun: entered promiscuous mode [ 202.039319][ T894] .: (slave syz_tun): Enslaving as an active interface with an up link [ 202.110158][ T903] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 202.118511][ T907] netlink: 44 bytes leftover after parsing attributes in process `syz.0.13231'. [ 202.121074][ T907] netlink: 12 bytes leftover after parsing attributes in process `syz.0.13231'. [ 202.123610][ T907] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13231'. [ 203.053377][ T982] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13255'. [ 203.223782][ T1021] siw: device registration error -23 [ 203.397904][ T1060] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13281'. [ 203.587333][ T1105] validate_nla: 3 callbacks suppressed [ 203.587346][ T1105] netlink: 'syz.3.13293': attribute type 2 has an invalid length. [ 203.661449][ T1135] bridge5: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 203.667347][ T1143] vti0: entered promiscuous mode [ 203.739588][ T1157] netlink: 'syz.1.13308': attribute type 1 has an invalid length. [ 203.794737][ T1175] qrtr: Invalid version 20 [ 203.814154][ T1178] bridge10: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 204.092842][ T1244] netlink: 'syz.2.13337': attribute type 1 has an invalid length. [ 204.095335][ T1244] netlink: 'syz.2.13337': attribute type 2 has an invalid length. [ 204.378876][ T1320] CIFS mount error: No usable UNC path provided in device string! [ 204.378876][ T1320] [ 204.382361][ T1320] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 204.407967][ T1328] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:20000 [ 204.411277][ T1326] netlink: 'syz.1.13370': attribute type 3 has an invalid length. [ 204.669156][ T1391] netlink: 'syz.0.13395': attribute type 1 has an invalid length. [ 204.671060][ T1391] netlink: 'syz.0.13395': attribute type 2 has an invalid length. [ 204.723914][ T25] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 204.892881][ T25] usb 8-1: Using ep0 maxpacket: 32 [ 204.896997][ T25] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32 [ 204.901108][ T25] usb 8-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5 [ 204.903762][ T25] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 204.905954][ T25] usb 8-1: Product: syz [ 204.907156][ T25] usb 8-1: Manufacturer: syz [ 204.908364][ T25] usb 8-1: SerialNumber: syz [ 204.911129][ T1452] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:20000 [ 204.916549][ T25] usb 8-1: config 0 descriptor?? [ 204.918304][ T1341] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 204.930318][ T25] usb 8-1: Quirk or no altset; falling back to MIDI 1.0 [ 205.140744][ T25] usb 8-1: USB disconnect, device number 6 [ 205.594268][ T1573] tmpfs: Bad value for 'mpol' [ 205.918750][ T1626] netlink: 'syz.3.13483': attribute type 1 has an invalid length. [ 205.921531][ T1626] netlink: 'syz.3.13483': attribute type 2 has an invalid length. [ 205.950283][ T1632] ntfs3(nbd0): try to read out of volume at offset 0x0 [ 205.980895][ T39] kauditd_printk_skb: 14 callbacks suppressed [ 205.980906][ T39] audit: type=1326 audit(2000000030.608:36327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1639 comm="syz.2.13488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 205.988240][ T39] audit: type=1326 audit(2000000030.608:36328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1639 comm="syz.2.13488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 205.994573][ T39] audit: type=1326 audit(2000000030.608:36329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1639 comm="syz.2.13488" exe="/syz-executor" sig=0 arch=40000003 syscall=83 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 206.000293][ T39] audit: type=1326 audit(2000000030.608:36330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1639 comm="syz.2.13488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 206.005985][ T39] audit: type=1326 audit(2000000030.608:36331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1639 comm="syz.2.13488" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 206.220207][ T1665] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow [ 206.228949][ T25] usb 6-1: new low-speed USB device number 6 using dummy_hcd [ 206.303729][ T1329] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 206.401128][ T25] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 206.403156][ T25] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 206.405868][ T25] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 206.408766][ T25] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 206.411751][ T25] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 206.415218][ T25] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 206.417089][ T25] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 206.419703][ T25] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 206.422617][ T25] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 206.425353][ T25] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 206.428796][ T25] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 206.430657][ T25] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 206.433462][ T25] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 206.436290][ T25] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 206.439024][ T25] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 206.444058][ T25] usb 6-1: string descriptor 0 read error: -22 [ 206.445647][ T25] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 206.447864][ T25] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 206.452533][ T25] adutux 6-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 206.465958][ T1329] usb 5-1: unable to get BOS descriptor or descriptor too short [ 206.469389][ T1329] usb 5-1: config 1 interface 0 altsetting 170 bulk endpoint 0x82 has invalid maxpacket 16 [ 206.472706][ T1329] usb 5-1: config 1 interface 0 has no altsetting 0 [ 206.476910][ T1329] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 206.479902][ T1329] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 206.482461][ T1329] usb 5-1: Product: syz [ 206.483856][ T1329] usb 5-1: Manufacturer: syz [ 206.485575][ T1329] usb 5-1: SerialNumber: syz [ 206.489835][ T1649] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 206.674268][ T6027] usb 6-1: USB disconnect, device number 6 [ 206.719967][ T1329] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -71 [ 206.724005][ T1329] usb 5-1: USB disconnect, device number 9 [ 207.294894][ T1759] __nla_validate_parse: 12 callbacks suppressed [ 207.294905][ T1759] netlink: 3 bytes leftover after parsing attributes in process `syz.3.13549'. [ 207.321978][ T39] audit: type=1400 audit(2000000031.870:36332): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name="/proc/thread-self/attr/current" pid=1762 comm="syz.1.13551" [ 207.430811][ T1773] cdrom: dropping to single frame dma [ 207.536051][ T1812] netlink: 152 bytes leftover after parsing attributes in process `syz.3.13574'. [ 207.537980][ T1810] devpts: called with bogus options [ 207.538522][ T1812] netlink: 16 bytes leftover after parsing attributes in process `syz.3.13574'. [ 207.579292][ T1820] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13576'. [ 207.585036][ T1822] bridge6: entered promiscuous mode [ 207.586700][ T1822] bridge6: entered allmulticast mode [ 207.702327][ T1848] netlink: 'syz.0.13590': attribute type 9 has an invalid length. [ 207.705180][ T1848] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.13590'. [ 208.201912][ T1954] tmpfs: Bad value for 'mpol' [ 208.335344][ T1978] netlink: 224 bytes leftover after parsing attributes in process `syz.1.13655'. [ 208.396914][ T1992] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.13658'. [ 208.475870][ T2005] netlink: 224 bytes leftover after parsing attributes in process `syz.0.13665'. [ 208.489509][ T2007] netlink: 39 bytes leftover after parsing attributes in process `syz.2.13667'. [ 208.523658][ T39] audit: type=1326 audit(2000000032.984:36333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2012 comm="syz.2.13670" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 208.529404][ T39] audit: type=1326 audit(2000000032.984:36334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2012 comm="syz.2.13670" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 208.534818][ T39] audit: type=1326 audit(2000000032.984:36335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2012 comm="syz.2.13670" exe="/syz-executor" sig=0 arch=40000003 syscall=278 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 208.540403][ T39] audit: type=1326 audit(2000000032.984:36336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2012 comm="syz.2.13670" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 208.602151][ T35] usb 8-1: new low-speed USB device number 7 using dummy_hcd [ 208.618063][ T2027] netlink: 224 bytes leftover after parsing attributes in process `syz.2.13677'. [ 208.785753][ T35] usb 8-1: config index 0 descriptor too short (expected 1307, got 27) [ 208.787930][ T35] usb 8-1: config 0 has an invalid interface number: 0 but max is -1 [ 208.789932][ T35] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 0 [ 208.792229][ T35] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30 [ 208.795421][ T35] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF4, changing to 0x84 [ 208.798334][ T35] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt [ 208.800699][ T35] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246 [ 208.806398][ T35] usb 8-1: string descriptor 0 read error: -22 [ 208.808222][ T35] usb 8-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de [ 208.810839][ T35] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 208.813981][ T35] usb 8-1: config 0 descriptor?? [ 208.816076][ T1983] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 208.818410][ T35] hub 8-1:0.0: bad descriptor, ignoring hub [ 208.820131][ T35] hub 8-1:0.0: probe with driver hub failed with error -5 [ 208.823120][ T35] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input43 [ 209.037512][ T57] usb 8-1: USB disconnect, device number 7 [ 209.656714][ T2072] bridge5: entered promiscuous mode [ 209.658508][ T2072] bridge5: entered allmulticast mode [ 209.726244][ T2077] ptrace attach of "/syz-executor exec"[2079] was attempted by "/syz-executor exec"[2077] [ 209.800476][ T2101] block device autoloading is deprecated and will be removed. [ 209.805274][ T2101] syz.2.13713: attempt to access beyond end of device [ 209.805274][ T2101] ram92: rw=2048, sector=18446744073709551608, nr_sectors = 8 limit=8192 [ 209.882032][ T2118] 9pnet: Could not find request transport: fd0xffffffffffffffff [ 209.898631][ T2124] ax25_connect(): syz.3.13723 uses autobind, please contact jreuter@yaina.de [ 209.918425][ T2128] xt_ecn: cannot match TCP bits for non-tcp packets [ 209.970976][ T2143] validate_nla: 1 callbacks suppressed [ 209.970987][ T2143] netlink: 'syz.0.13732': attribute type 8 has an invalid length. [ 210.301049][ T2225] kAFS: unable to lookup cell '/' [ 210.321759][ T2228] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 210.522024][ T2271] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 210.667665][ T2293] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 210.803054][ T2323] netlink: 'syz.2.13821': attribute type 1 has an invalid length. [ 211.063989][ T2367] netlink: 'syz.2.13841': attribute type 32 has an invalid length. [ 211.066890][ T2367] netlink: 'syz.2.13841': attribute type 32 has an invalid length. [ 211.155306][ T2385] netlink: 'syz.2.13851': attribute type 14 has an invalid length. [ 211.265336][ T2405] netlink: 'syz.1.13860': attribute type 4 has an invalid length. [ 211.267403][ T2405] netlink: 'syz.1.13860': attribute type 4 has an invalid length. [ 211.305844][ T2413] delete_channel: no stack [ 211.453267][ T2441] delete_channel: no stack [ 211.579338][ T39] kauditd_printk_skb: 2 callbacks suppressed [ 211.579351][ T39] audit: type=1326 audit(2000000035.846:36339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2463 comm="syz.0.13889" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 211.587646][ T39] audit: type=1326 audit(2000000035.846:36340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2463 comm="syz.0.13889" exe="/syz-executor" sig=0 arch=40000003 syscall=460 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 211.587669][ T39] audit: type=1326 audit(2000000035.846:36341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2463 comm="syz.0.13889" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 211.587685][ T39] audit: type=1326 audit(2000000035.846:36342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2463 comm="syz.0.13889" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 211.641585][ T2478] netlink: 'syz.1.13896': attribute type 4 has an invalid length. [ 211.724583][ T2503] netlink: 'syz.2.13908': attribute type 15 has an invalid length. [ 211.809477][ T2525] rose0: entered allmulticast mode [ 211.811064][ T2525] bond0: (slave rose0): Enslaving as an active interface with an up link [ 211.859235][ T39] audit: type=1400 audit(2000000036.108:36343): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=2536 comm="syz.0.13925" [ 211.888898][ T2546] bond0: (slave rose0): Error: Device is in use and cannot be enslaved [ 211.911430][ T2553] netlink: 'syz.0.13930': attribute type 15 has an invalid length. [ 211.915759][ T2558] tmpfs: Bad value for 'mpol' [ 211.916375][ T2559] xt_socket: unknown flags 0x46 [ 212.033881][ T2585] Invalid source name [ 212.033901][ T2585] UBIFS error (pid: 2585): cannot open "./file0", error -22 [ 212.305375][ T39] audit: type=1326 audit(2000000036.529:36344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2639 comm="syz.3.13965" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 212.305415][ T39] audit: type=1326 audit(2000000036.529:36345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2639 comm="syz.3.13965" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 212.306667][ T39] audit: type=1326 audit(2000000036.529:36346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2639 comm="syz.3.13965" exe="/syz-executor" sig=0 arch=40000003 syscall=460 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 212.306760][ T39] audit: type=1326 audit(2000000036.529:36347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2639 comm="syz.3.13965" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 212.306857][ T39] audit: type=1326 audit(2000000036.529:36348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2639 comm="syz.3.13965" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x7ffc0000 [ 212.503258][ T2672] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 212.516644][ T2674] team0: entered promiscuous mode [ 212.516662][ T2674] mac80211_hwsim hwsim3 : entered promiscuous mode [ 212.517123][ T2674] 8021q: adding VLAN 0 to HW filter on device team0 [ 212.517356][ T2674] batman_adv: batadv0: Interface activated: team0 [ 212.517394][ T2674] batman_adv: batadv0: Interface deactivated: team0 [ 212.517404][ T2674] batman_adv: batadv0: Removing interface: team0 [ 212.831627][ T2728] program syz.2.14002 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 212.988885][ T2751] __nla_validate_parse: 20 callbacks suppressed [ 212.988898][ T2751] netlink: 2 bytes leftover after parsing attributes in process `syz.3.14011'. [ 212.989005][ T2751] team0: entered promiscuous mode [ 212.989016][ T2751] team_slave_0: entered promiscuous mode [ 212.989114][ T2751] team_slave_1: entered promiscuous mode [ 212.989513][ T2751] 8021q: adding VLAN 0 to HW filter on device team0 [ 212.995596][ T2751] bond0: (slave team0): Releasing backup interface [ 212.997512][ T2751] team0: left allmulticast mode [ 213.333455][ T2802] netlink: 20 bytes leftover after parsing attributes in process `syz.2.14032'. [ 213.575796][ T2845] overlayfs: conflicting options: userxattr,metacopy=on [ 213.634062][ T2853] netlink: 1284 bytes leftover after parsing attributes in process `syz.3.14053'. [ 213.658811][ T2853] openvswitch: netlink: Missing key (keys=40, expected=80) [ 213.668806][ T2857] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000). [ 213.668943][ T2857] qnx6: wrong signature (magic) in superblock #1. [ 213.668951][ T2857] qnx6: unable to read the first superblock [ 213.696477][ T2862] netlink: 8 bytes leftover after parsing attributes in process `syz.1.14056'. [ 213.741451][ T2872] overlayfs: conflicting options: userxattr,metacopy=on [ 213.880541][ T2889] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14068'. [ 213.885191][ T2894] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000). [ 213.885323][ T2894] qnx6: wrong signature (magic) in superblock #1. [ 213.885329][ T2894] qnx6: unable to read the first superblock [ 213.958458][ T25] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 214.010594][ T2902] xt_CT: No such helper "syz0" [ 214.120211][ T25] usb 7-1: New USB device found, idVendor=0403, idProduct=da73, bcdDevice=dc.8d [ 214.120239][ T25] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 214.124620][ T25] usb 7-1: config 0 descriptor?? [ 214.127266][ T25] usb 7-1: NDI device with a latency value of 1 [ 214.345745][ T25] ftdi_sio 7-1:0.0: FTDI USB Serial Device converter detected [ 214.348099][ T25] ftdi_sio ttyUSB0: unknown device type: 0xdc8d [ 214.350997][ T25] usb 7-1: USB disconnect, device number 10 [ 214.360945][ T25] ftdi_sio 7-1:0.0: device disconnected [ 214.392197][ T2964] binder: BC_ATTEMPT_ACQUIRE not supported [ 214.393807][ T2964] binder: 2962:2964 ioctl c0306201 20000380 returned -22 [ 214.601576][ T3016] netlink: 4 bytes leftover after parsing attributes in process `syz.1.14115'. [ 214.677021][ T3027] pimreg: entered allmulticast mode [ 214.979988][ T3060] program syz.3.14144 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 215.065908][ T3072] workqueue: name exceeds WQ_NAME_LEN. Truncating to: ܻ}rءÑV§jPb [ 215.159016][ T3078] netlink: 224 bytes leftover after parsing attributes in process `syz.3.14143'. [ 215.512642][ T3125] 9pnet: Found fid 0 not clunked [ 215.613493][ T3130] (syz.0.14168,3130,2):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options [ 215.616136][ T3130] (syz.0.14168,3130,3):ocfs2_fill_super:1178 ERROR: status = -22 [ 215.658063][ T3132] validate_nla: 6 callbacks suppressed [ 215.658074][ T3132] netlink: 'syz.0.14169': attribute type 1 has an invalid length. [ 215.722013][ T3140] netlink: 8 bytes leftover after parsing attributes in process `syz.1.14173'. [ 215.990877][ T3163] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 20003 - 0 [ 215.994015][ T3163] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 20003 - 0 [ 215.996972][ T3163] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 20003 - 0 [ 216.001122][ T3163] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 20003 - 0 [ 216.020087][ T3163] netdevsim netdevsim1 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0 [ 216.022486][ T3163] netdevsim netdevsim1 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0 [ 216.024845][ T3163] netdevsim netdevsim1 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0 [ 216.027560][ T3163] netdevsim netdevsim1 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0 [ 216.103826][ T3165] 9pnet: Found fid 0 not clunked [ 216.416035][ T3192] syz.2.14198: attempt to access beyond end of device [ 216.416035][ T3192] nbd2: rw=0, sector=2, nr_sectors = 2 limit=0 [ 216.420907][ T3192] MINIX-fs: unable to read superblock [ 216.469661][ T3200] netlink: 4 bytes leftover after parsing attributes in process `syz.2.14202'. [ 216.514323][ T3207] netlink: 8 bytes leftover after parsing attributes in process `syz.2.14205'. [ 216.574128][ T3218] tmpfs: Bad value for 'mpol' [ 216.741863][ T3249] netlink: 'syz.0.14226': attribute type 1 has an invalid length. [ 216.866920][ T3275] netlink: 'syz.1.14238': attribute type 2 has an invalid length. [ 216.925989][ T3285] Cannot find set identified by id 65535 to match [ 217.031401][ T3303] netlink: 'syz.2.14252': attribute type 2 has an invalid length. [ 217.115370][ T3324] syz.0.14265: attempt to access beyond end of device [ 217.115370][ T3324] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0 [ 217.243588][ T3345] sp0: Synchronizing with TNC [ 217.419670][ T3365] mkiss: ax0: crc mode is auto. [ 218.033767][ T3381] sp0: Synchronizing with TNC [ 218.528975][ T3459] syz.3.14328: attempt to access beyond end of device [ 218.528975][ T3459] ram92: rw=2048, sector=18446744073709551608, nr_sectors = 8 limit=8192 [ 218.701629][ T3500] netlink: 'syz.3.14347': attribute type 1 has an invalid length. [ 218.703573][ T3500] __nla_validate_parse: 4 callbacks suppressed [ 218.703581][ T3500] netlink: 12 bytes leftover after parsing attributes in process `syz.3.14347'. [ 218.777270][ T3518] Bluetooth: MGMT ver 1.23 [ 218.967847][ T3545] netlink: 24 bytes leftover after parsing attributes in process `syz.1.14364'. [ 219.248895][ T3572] CUSE: DEVNAME unspecified [ 219.352329][ T3584] netlink: 28 bytes leftover after parsing attributes in process `syz.2.14381'. [ 219.515638][ T3594] CUSE: DEVNAME unspecified [ 219.624437][ T3510] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 219.624515][ T3510] Bluetooth: hci0: Error when powering off device on rfkill (-4) [ 219.626231][ T3510] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 219.626251][ T3510] Bluetooth: hci3: Error when powering off device on rfkill (-4) [ 219.628975][ T5956] ================================================================== [ 219.636357][ T5956] BUG: KASAN: slab-use-after-free in mgmt_remove_adv_monitor_sync+0xe2/0xf0 [ 219.636377][ T5956] Read of size 8 at addr ffff888059023e18 by task kworker/u33:3/5956 [ 219.636385][ T5956] [ 219.636389][ T5956] CPU: 3 UID: 0 PID: 5956 Comm: kworker/u33:3 Not tainted 6.13.0-rc2-syzkaller-00036-g231825b2e1ff #0 [ 219.636400][ T5956] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 219.636407][ T5956] Workqueue: hci0 hci_cmd_sync_work [ 219.636420][ T5956] Call Trace: [ 219.636424][ T5956] [ 219.636428][ T5956] dump_stack_lvl+0x116/0x1f0 [ 219.636440][ T5956] print_report+0xc3/0x620 [ 219.636454][ T5956] ? __virt_addr_valid+0x5e/0x590 [ 219.636466][ T5956] ? __phys_addr+0xc6/0x150 [ 219.636477][ T5956] kasan_report+0xd9/0x110 [ 219.636489][ T5956] ? mgmt_remove_adv_monitor_sync+0xe2/0xf0 [ 219.636501][ T5956] ? mgmt_remove_adv_monitor_sync+0xe2/0xf0 [ 219.636515][ T5956] mgmt_remove_adv_monitor_sync+0xe2/0xf0 [ 219.636527][ T5956] hci_cmd_sync_work+0x1a4/0x410 [ 219.636539][ T5956] process_one_work+0x958/0x1b30 [ 219.636556][ T5956] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 219.636566][ T5956] ? __pfx_process_one_work+0x10/0x10 [ 219.636579][ T5956] ? rcu_is_watching+0x12/0xc0 [ 219.636592][ T5956] ? assign_work+0x1a0/0x250 [ 219.636610][ T5956] worker_thread+0x6c8/0xf00 [ 219.636630][ T5956] ? __pfx_worker_thread+0x10/0x10 [ 219.636644][ T5956] kthread+0x2c1/0x3a0 [ 219.636655][ T5956] ? _raw_spin_unlock_irq+0x23/0x50 [ 219.636670][ T5956] ? __pfx_kthread+0x10/0x10 [ 219.636681][ T5956] ret_from_fork+0x45/0x80 [ 219.636690][ T5956] ? __pfx_kthread+0x10/0x10 [ 219.636701][ T5956] ret_from_fork_asm+0x1a/0x30 [ 219.636717][ T5956] [ 219.636720][ T5956] [ 219.636722][ T5956] Allocated by task 3518: [ 219.636727][ T5956] kasan_save_stack+0x33/0x60 [ 219.636741][ T5956] kasan_save_track+0x14/0x30 [ 219.636751][ T5956] __kasan_kmalloc+0xaa/0xb0 [ 219.636761][ T5956] mgmt_pending_new+0x5b/0x290 [ 219.636768][ T5956] mgmt_pending_add+0x36/0x160 [ 219.636776][ T5956] remove_adv_monitor+0x124/0x1b0 [ 219.636786][ T5956] hci_sock_sendmsg+0x1528/0x25e0 [ 219.636794][ T5956] sock_write_iter+0x4fe/0x5b0 [ 219.636803][ T5956] vfs_write+0x5ae/0x1150 [ 219.636812][ T5956] ksys_write+0x207/0x250 [ 219.636820][ T5956] __do_fast_syscall_32+0x73/0x120 [ 219.636830][ T5956] do_fast_syscall_32+0x32/0x80 [ 219.636840][ T5956] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 219.636852][ T5956] [ 219.636854][ T5956] Freed by task 3510: [ 219.636858][ T5956] kasan_save_stack+0x33/0x60 [ 219.636868][ T5956] kasan_save_track+0x14/0x30 [ 219.636878][ T5956] kasan_save_free_info+0x3b/0x60 [ 219.636886][ T5956] __kasan_slab_free+0x51/0x70 [ 219.636896][ T5956] kfree+0x14f/0x4b0 [ 219.636905][ T5956] cmd_complete_rsp+0x16d/0x1e0 [ 219.636913][ T5956] mgmt_pending_foreach+0xdf/0x140 [ 219.636921][ T5956] __mgmt_power_off+0x12f/0x2c0 [ 219.636932][ T5956] hci_dev_close_sync+0xd37/0x1250 [ 219.636942][ T5956] hci_dev_do_close+0x2e/0x90 [ 219.636953][ T5956] hci_rfkill_set_block+0x225/0x360 [ 219.636962][ T5956] rfkill_set_block+0x203/0x560 [ 219.636975][ T5956] rfkill_fop_write+0x2ce/0x570 [ 219.636986][ T5956] vfs_write+0x24c/0x1150 [ 219.636994][ T5956] ksys_write+0x207/0x250 [ 219.637003][ T5956] __do_fast_syscall_32+0x73/0x120 [ 219.637012][ T5956] do_fast_syscall_32+0x32/0x80 [ 219.637022][ T5956] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 219.637033][ T5956] [ 219.637035][ T5956] The buggy address belongs to the object at ffff888059023e00 [ 219.637035][ T5956] which belongs to the cache kmalloc-96 of size 96 [ 219.637042][ T5956] The buggy address is located 24 bytes inside of [ 219.637042][ T5956] freed 96-byte region [ffff888059023e00, ffff888059023e60) [ 219.637051][ T5956] [ 219.637052][ T5956] The buggy address belongs to the physical page: [ 219.637056][ T5956] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888059023e80 pfn:0x59023 [ 219.637065][ T5956] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 219.637073][ T5956] page_type: f5(slab) [ 219.637082][ T5956] raw: 04fff00000000000 ffff88801ac42280 ffffea00019db680 dead000000000003 [ 219.637090][ T5956] raw: ffff888059023e80 000000000020001f 00000001f5000000 0000000000000000 [ 219.637095][ T5956] page dumped because: kasan: bad access detected [ 219.637099][ T5956] page_owner tracks the page as allocated [ 219.637102][ T5956] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5952, tgid 5952 (syz-executor), ts 48438241817, free_ts 48434461548 [ 219.637117][ T5956] post_alloc_hook+0x2d1/0x350 [ 219.637128][ T5956] get_page_from_freelist+0xfce/0x2f80 [ 219.637139][ T5956] __alloc_pages_noprof+0x223/0x25b0 [ 219.637150][ T5956] alloc_pages_mpol_noprof+0x2c9/0x610 [ 219.637180][ T5956] new_slab+0x2c9/0x410 [ 219.637190][ T5956] ___slab_alloc+0xce2/0x1650 [ 219.637198][ T5956] __slab_alloc.constprop.0+0x56/0xb0 [ 219.637208][ T5956] __kmalloc_cache_noprof+0xf6/0x420 [ 219.637217][ T5956] nsim_fib_event_nb+0x1b6/0xec0 [ 219.637226][ T5956] notifier_call_chain+0xb7/0x410 [ 219.637236][ T5956] atomic_notifier_call_chain+0x71/0x1c0 [ 219.637246][ T5956] call_fib_notifiers+0x33/0x70 [ 219.637256][ T5956] fib_table_insert+0xf5d/0x1d70 [ 219.637266][ T5956] fib_magic+0x4d6/0x5c0 [ 219.637277][ T5956] fib_add_ifaddr+0x174/0x560 [ 219.637288][ T5956] fib_inetaddr_event+0x174/0x2c0 [ 219.637300][ T5956] page last free pid 5952 tgid 5952 stack trace: [ 219.637305][ T5956] free_unref_page+0x661/0x1080 [ 219.637315][ T5956] qlist_free_all+0x4e/0x120 [ 219.637324][ T5956] kasan_quarantine_reduce+0x195/0x1e0 [ 219.637334][ T5956] __kasan_slab_alloc+0x69/0x90 [ 219.637345][ T5956] kmem_cache_alloc_node_noprof+0x1ca/0x3b0 [ 219.637356][ T5956] __alloc_skb+0x2b3/0x380 [ 219.637366][ T5956] netlink_alloc_large_skb+0x69/0x130 [ 219.637375][ T5956] netlink_sendmsg+0x689/0xd70 [ 219.637382][ T5956] __sys_sendto+0x488/0x4f0 [ 219.637391][ T5956] __do_compat_sys_socketcall+0x5e2/0x700 [ 219.637405][ T5956] __do_fast_syscall_32+0x73/0x120 [ 219.637414][ T5956] do_fast_syscall_32+0x32/0x80 [ 219.637424][ T5956] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 219.637435][ T5956] [ 219.637437][ T5956] Memory state around the buggy address: [ 219.637442][ T5956] ffff888059023d00: 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc [ 219.637448][ T5956] ffff888059023d80: 00 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc [ 219.637454][ T5956] >ffff888059023e00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 219.637459][ T5956] ^ [ 219.637463][ T5956] ffff888059023e80: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 219.637469][ T5956] ffff888059023f00: 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc [ 219.637474][ T5956] ================================================================== [ 219.637613][ T5956] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 219.637620][ T5956] CPU: 3 UID: 0 PID: 5956 Comm: kworker/u33:3 Not tainted 6.13.0-rc2-syzkaller-00036-g231825b2e1ff #0 [ 219.637631][ T5956] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 219.637637][ T5956] Workqueue: hci0 hci_cmd_sync_work [ 219.637649][ T5956] Call Trace: [ 219.637652][ T5956] [ 219.637655][ T5956] dump_stack_lvl+0x3d/0x1f0 [ 219.637666][ T5956] panic+0x71d/0x800 [ 219.637679][ T5956] ? __pfx_panic+0x10/0x10 [ 219.637692][ T5956] ? preempt_schedule_thunk+0x1a/0x30 [ 219.637701][ T5956] ? preempt_schedule_common+0x44/0xc0 [ 219.637711][ T5956] ? check_panic_on_warn+0x1f/0xb0 [ 219.637724][ T5956] check_panic_on_warn+0xab/0xb0 [ 219.637741][ T5956] end_report+0x117/0x180 [ 219.637753][ T5956] kasan_report+0xe9/0x110 [ 219.637764][ T5956] ? mgmt_remove_adv_monitor_sync+0xe2/0xf0 [ 219.637777][ T5956] ? mgmt_remove_adv_monitor_sync+0xe2/0xf0 [ 219.637790][ T5956] mgmt_remove_adv_monitor_sync+0xe2/0xf0 [ 219.637802][ T5956] hci_cmd_sync_work+0x1a4/0x410 [ 219.637813][ T5956] process_one_work+0x958/0x1b30 [ 219.637828][ T5956] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 219.637837][ T5956] ? __pfx_process_one_work+0x10/0x10 [ 219.637851][ T5956] ? rcu_is_watching+0x12/0xc0 [ 219.637863][ T5956] ? assign_work+0x1a0/0x250 [ 219.637877][ T5956] worker_thread+0x6c8/0xf00 [ 219.637887][ T5956] ? __pfx_worker_thread+0x10/0x10 [ 219.637895][ T5956] kthread+0x2c1/0x3a0 [ 219.637905][ T5956] ? _raw_spin_unlock_irq+0x23/0x50 [ 219.637919][ T5956] ? __pfx_kthread+0x10/0x10 [ 219.637929][ T5956] ret_from_fork+0x45/0x80 [ 219.637938][ T5956] ? __pfx_kthread+0x10/0x10 [ 219.637948][ T5956] ret_from_fork_asm+0x1a/0x30 [ 219.637963][ T5956] [ 219.639104][ T5956] Kernel Offset: disabled VM DIAGNOSIS: 23:46:58 Registers: info registers vcpu 0 CPU#0 RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff813eb200 RDX=ffff888069492440 RSI=ffffffff813eb248 RDI=ffffffff93305e20 RBP=0000000000000000 RSP=ffffc90000007fd0 R8 =0000000000000001 R9 =fffffbfff2660bc4 R10=ffffffff93305e27 R11=0000000000000004 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff813eb249 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002fc14ffc CR3=000000006b12e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff813eb200 RDX=ffff888023b62440 RSI=ffffffff813eb248 RDI=ffffffff93305e20 RBP=0000000000000001 RSP=ffffc900005a0fd0 R8 =0000000000000001 R9 =fffffbfff2660bc4 R10=ffffffff93305e27 R11=0000000000000001 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff813eb249 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f189109f500 ffffffff 00c00000 GS =0000 ffff88802b500000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f73c6188 CR3=00000000250aa000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0040000000000000 Opmask01=0000000000400000 Opmask02=0000000000010000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe43429790 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2030203a44495520 33203a555043205d 3635393554205b5d 3938333633362e39 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 203020333a333320 2f203a555043205d 2035393554202036 3538332033362e39 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 302d72656c6c616b 7a79732d3263722d 302e33312e362064 65746e6961742074 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 302d2064656c6166 6e000a2d2320662d 302e32312e322031 3332672d36332030 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff813eb200 RDX=ffff88801f724880 RSI=ffffffff813eb248 RDI=ffffffff93305e20 RBP=0000000000000002 RSP=ffffc90000548fd0 R8 =0000000000000001 R9 =fffffbfff2660bc4 R10=ffffffff93305e27 R11=0000000000000003 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff813eb249 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002fc1aff8 CR3=000000004bfde000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000035 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85142d85 RDI=ffffffff9a662300 RBP=ffffffff9a6622c0 RSP=ffffc90003ecf750 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6b726f776b205043 R12=0000000000000000 R13=0000000000000035 R14=ffffffff85142d20 R15=0000000000000000 RIP=ffffffff85142daf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000000000000 CR3=0000000069a90000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000