last executing test programs: 6m10.347913653s ago: executing program 0 (id=515): syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) futex_waitv(&(0x7f0000001700)=[{0x8ba, &(0x7f0000000180)=0xfffffffffffffff5, 0x2}, {0x7, &(0x7f00000001c0), 0x82}, {0x7, &(0x7f0000000200)=0x66, 0x2}, {0x10000, 0x0}, {0x5, &(0x7f00000002c0)=0x2, 0x82}, {0x3, &(0x7f0000000300)=0x2000000000000e5, 0x82}, {0xffff, &(0x7f0000000340)=0x3ff, 0x2}, {0x6, &(0x7f0000000380)=0x80000001, 0x82}, {0xe1b, 0x0, 0x80}, {0x9, &(0x7f0000000400)=0x9, 0x82}, {0x2, &(0x7f0000000480)=0xfff, 0x82}, {0x9, &(0x7f00000004c0)=0x69b, 0x82}, {0x0, &(0x7f0000000500)=0x6, 0x2}, {0x1, &(0x7f0000000540)=0x7, 0x2}, {0x78e55cfd, &(0x7f00000005c0)=0x1, 0x82}, {0x4, &(0x7f0000000600)=0x200, 0x82}, {0x25fa7ef3, &(0x7f0000000640)=0x42, 0x2}, {0xfff, &(0x7f00000006c0)=0x10000, 0x2}, {0xd55e, &(0x7f0000000740)=0xc, 0x82}, {0x252dedf0, 0x0}, {0xf61b, 0x0, 0x82}, {0x80000001, 0x0, 0x82}, {0x2, &(0x7f0000000880)=0x3, 0x82}, {0xffffffff, 0x0, 0x82}, {0xb, 0x0, 0x82}, {0x80, 0x0, 0x82}, {0x0, 0x0, 0x2}, {0x7, 0x0, 0x2}, {0x3, &(0x7f0000000d80), 0x2}, {0x1, 0x0, 0x2}], 0x1e, 0x0, &(0x7f0000001f40), 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0) socket$netlink(0x10, 0x3, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x8, 0xb4, &(0x7f0000000140)=""/180, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffe94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) ioctl$I2C_SMBUS(0xffffffffffffffff, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x6, &(0x7f0000003040)={0x0, "b4e1a230be8f46463fb1a5f1b44f44eaa65e485b747aa95d83ffffa407677d18bc"}}) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_int(r4, 0x29, 0x31, &(0x7f0000000200)=0x8, 0x4) bind$inet6(r4, &(0x7f0000f65000)={0xa, 0x4e21, 0x0, @loopback}, 0x1c) r5 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f00000000c0)={0x0, 0xf00, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="38000000031401002abd7000fedbdf250900020073797a3100000000080041007369770014003300626f6e64300000000000000080000000"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000) sendmsg$RDMA_NLDEV_CMD_PORT_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="200000000414010026bd7000ffdbdf250800010000000000080003"], 0x20}, 0x1, 0x0, 0x0, 0x20048001}, 0x20000000) sendto$inet6(r4, 0x0, 0x0, 0x20000002, &(0x7f00000001c0)={0xa, 0x4e21, 0x0, @loopback}, 0x1c) getsockopt$inet6_buf(r4, 0x29, 0x6, 0x0, &(0x7f0000000080)) ioctl$KVM_CAP_MAX_VCPU_ID(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000040)={0x80, 0x0, 0x8000000000000001}) ioctl$BTRFS_IOC_SCRUB(r3, 0xc400941b, &(0x7f0000001700)={0x0, 0x3, 0x3}) 6m9.297892087s ago: executing program 0 (id=519): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x200000, 0x10100}, &(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=ANY=[]) read$FUSE(0xffffffffffffffff, 0x0, 0x0) r4 = timerfd_create(0x1, 0x0) timerfd_settime(r4, 0x3, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0) socket$nl_route(0x10, 0x3, 0x0) openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x19, &(0x7f0000000000)=0x84, 0xfde1) bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0) ioctl$USBDEVFS_ALLOC_STREAMS(0xffffffffffffffff, 0xc0105500, &(0x7f0000000140)=ANY=[@ANYRESOCT]) openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) ptrace(0x10, 0x1) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000100)) r5 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r5, &(0x7f0000000440), 0x10) listen(r5, 0x0) r6 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r6, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10) r7 = accept4$unix(r5, 0x0, 0x0, 0x0) sendmmsg$inet(r6, &(0x7f0000007fc0)=[{{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f00000004c0)="196749bd9717f0472f32f6a7f9a27c13379505ad69131fc16b1aca8547d11911da8490e7457df8a57a4e470d15784f0f715386676e03a71a599c4b69f389a1c7f816ee9241b9fd826aa86027352b220e5cce7ca264cd96192c75d558b49b851fdcf96e33621de692c34f1417d0c619bef8c24ecc71436f83037b0ab8f84b1828d01d9afe4a681013770c4f22581a3e837c6fe012b4122b43a14534201b3bf8bdc7decdf576b49d2c9aaabd67d5d3f10f7a09b4f49f2f8e6813e07a68612ac1c78d824d4ef2d0b27ee3138978b7d7a31289caffd2b50dee4901fb00a60764", 0xde}], 0x1, 0xffffffffffffffff}}], 0x1, 0x0) recvfrom$unix(r7, &(0x7f0000000300)=""/222, 0xde, 0x22, 0x0, 0x0) 6m8.473261927s ago: executing program 0 (id=521): socket$nl_route(0x10, 0x3, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c00000041fd4b5c5b6b658f0b0000000500000008000200010000"], 0x1c}}, 0x0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10) r2 = syz_open_dev$hidraw(&(0x7f0000000280), 0x0, 0x0) syz_open_dev$hidraw(&(0x7f0000000940), 0x0, 0x0) ioctl$HIDIOCGFEATURE(r2, 0x4004480c, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r4 = dup(r3) write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c) syz_io_uring_setup(0x690a, 0x0, &(0x7f0000000140), 0x0) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) sendto$inet6(r5, 0x0, 0x0, 0x4c004, &(0x7f0000002880)={0xa, 0x4e22, 0x0, @mcast2}, 0x1c) sendmmsg$inet6(r5, &(0x7f0000000fc0)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000640)="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", 0x4e0}], 0x1}}, {{0x0, 0x0, &(0x7f0000007440)=[{&(0x7f0000001500)="adf5bd04f01eccec95c1c5ca7fba623735df51cf89844d9bad7429917e03ad4b4cc6ae623ad8c0924b316f0e6d195479b75186ca55315366ef5d0b491b1811e932fb16a15906cab57fa112718bef35405bee39435abc9aa27f44c0fb7d15e1d8dd4b7a59deae296177fe9316e72cbc89f7e7e7c83d3ffae7d847a21894888b3de40826e54e7a0fc7b552c388637004dc3ea210d2c6dfc6283f690afa5b85b25939464a350dcdf1c38d97854aba19593fc884caec78d9c0", 0xb7}], 0x1}}], 0x2, 0x400c804) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000007940)={0x0, 0x0, &(0x7f0000007900)={&(0x7f0000000680)=@newtaction={0x90, 0x30, 0x216822a75a8bdd29, 0xffe4, 0x0, {}, [{0x7c, 0x1, [@m_connmark={0x34, 0x2, 0x0, 0x0, {{0xd}, {0x4, 0x20}, {0x4}, {0xc}, {0xc}}}, @m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x90}}, 0x0) getdents(0xffffffffffffffff, 0x0, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) r9 = socket$tipc(0x1e, 0x5, 0x0) getsockopt$TIPC_DEST_DROPPABLE(r9, 0x10f, 0x81, 0xffffffffffffffff, &(0x7f0000000700)=0x12) sendmsg$ETHTOOL_MSG_STRSET_GET(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="e9070000000000000000010000001c0002800c00018008000100030000000c0001800800010001000000"], 0x30}}, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x10) mkdir(&(0x7f0000000300)='./file0\x00', 0x10) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000180)={0x0, @in6={{0xa, 0x3, 0x0, @empty}}, 0xfffffffc, 0x3, 0x989, 0x0, 0x84, 0x8000}, 0x9c) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, 0xffffffffffffffff, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f00000003c0)={0x2020}, 0x2020) 6m7.516165858s ago: executing program 0 (id=525): r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0) fsetxattr$security_evm(r0, &(0x7f00000000c0), &(0x7f0000000100)=@v2={0x5, 0x0, 0x7, 0xfffffff8, 0xbe, "0e5c1664989c3a16eb5d17133e5315d427ae1b6971a408958acb0d1f20a2d5342d19d5f23b74d50df04d9ac6d135eb449976d19e1c2a328f83f0153b83d1ae8bc1afa66121417a041c1401307e8910472e8b2ffba41b26df7a0df805dcf5fcbafcb5dc2a1e3c4fbd5d7cd088a8bb1eff2fa52e693ceef61a849f8e49ef0e7b857692683bd62ee1b083f0f8fe46fdfddfaeae42bb5f26f6c79aefe87ee3242e7872c57cf74cb7a6886df887e67f7e2302dbb7725a946e90326ef449e85d99"}, 0xc7, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) syz_open_dev$loop(&(0x7f00000001c0), 0x75f, 0x103382) mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x40, 0x0, 0x0) r3 = syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b"], 0x0) syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x88c02) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$afs(0x0, &(0x7f0000000380)='./file0/file0\x00', &(0x7f00000003c0), 0x0, &(0x7f0000000400)={[{@dyn}]}) mount$afs(0x0, &(0x7f0000000380)='./file0/file0\x00', &(0x7f00000003c0), 0x0, &(0x7f0000000400)={[{@dyn}]}) epoll_create1(0x80000) syz_usb_disconnect(r3) socket$xdp(0x2c, 0x3, 0x0) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) openat$hpet(0xffffffffffffff9c, &(0x7f0000000040), 0x2040, 0x0) pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000080)={0x0, &(0x7f0000000640), 0x0, 0x0}) ioctl$IOC_PR_PREEMPT(0xffffffffffffffff, 0x401870cb, &(0x7f0000000200)={0x8, 0x3, 0x50000000, 0x3}) 6m6.085796273s ago: executing program 0 (id=531): r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000440)={{}, {0x0, 0x3938700}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newtaction={0x1b4, 0x30, 0x1, 0x0, 0x0, {}, [{0x1a0, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x0, 0x5, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_mirred={0x158, 0x10, 0x0, 0x0, {{0xb}, {0x64, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x9, 0x2, 0x6, 0x4, 0xd5}, 0x1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x8, 0xa, 0x5, 0x9, 0xe3d}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0x3, 0x3, 0x1}, 0x3}}]}, {0xcb, 0x6, "1c967a4475086e064201f04b345e7a313cdf5ce98e9bcd64c34596791aa2a4ce4b71d4404bf9b1dd4727cf5cf1aa1825a47b9306067c59d323a136e584d5d142e09ab7d9108fcd8c0c31221ab071e69fdef51846e12133f825fefb419a2be5249c7568a9b25086b74664ef56345f3feeb9bc28898b06bbe47305c8e84ba04c7a960e11d6e8fbd4e199f6536861a32a5e7c78b9def3b7a642e3c628b0db889828839e8c51673a2c16284534fd07332ce17a72f351802885aeb92ffeb42b7566b9232a4762722e5a"}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}]}]}, 0x1b4}, 0x1, 0x0, 0x0, 0x800}, 0x4000) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioprio_get$pid(0x2, r1) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r4, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101}) socket(0x31, 0x4, 0xffffffff) r5 = syz_open_dev$tty20(0xc, 0x4, 0x1) acct(&(0x7f00000001c0)='./file0\x00') r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r6}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r7, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) write$binfmt_misc(r7, &(0x7f0000000000), 0xd) ioctl$TIOCL_GETMOUSEREPORTING(r5, 0x5412, &(0x7f0000000040)=0xd) unshare(0x62040200) 6m5.828212147s ago: executing program 0 (id=532): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), r1) sendmsg$DEVLINK_CMD_RATE_SET(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="0107000000000000000052"], 0x14}, 0x1, 0x0, 0x0, 0x4800}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) io_setup(0xb0, &(0x7f0000000200)=0x0) clock_adjtime(0x0, &(0x7f0000000680)={0x19b1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x10000, 0xe5, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf4b}) r5 = syz_open_dev$video4linux(&(0x7f0000000280), 0x2, 0x101000) io_submit(r4, 0x1, &(0x7f0000004540)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x5, 0x0, r5, 0x0}]) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000540)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_KEY(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)={0x1c, r0, 0x801, 0x70bd28, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x0) 6m5.78891625s ago: executing program 32 (id=532): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), r1) sendmsg$DEVLINK_CMD_RATE_SET(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="0107000000000000000052"], 0x14}, 0x1, 0x0, 0x0, 0x4800}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) io_setup(0xb0, &(0x7f0000000200)=0x0) clock_adjtime(0x0, &(0x7f0000000680)={0x19b1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x10000, 0xe5, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf4b}) r5 = syz_open_dev$video4linux(&(0x7f0000000280), 0x2, 0x101000) io_submit(r4, 0x1, &(0x7f0000004540)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x5, 0x0, r5, 0x0}]) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000540)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_KEY(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)={0x1c, r0, 0x801, 0x70bd28, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x0) 4.925069675s ago: executing program 1 (id=2436): sched_setaffinity(0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x9, 0x40}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x7528e000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4002, 0x1, 0x0, 0x0, @void, @value, @void, @value=0x11}, 0x48) syz_genetlink_get_family_id$nl80211(&(0x7f0000001ec0), 0xffffffffffffffff) r3 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000001f00)={'wlan0\x00'}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$BLKRRPART(0xffffffffffffffff, 0x125f, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000003c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CHANNEL_SWITCH(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)={0x2c, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x994}], @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x99}]}, 0x2c}}, 0x0) socket$inet6_sctp(0xa, 0x1, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) 4.514950374s ago: executing program 4 (id=2441): r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85512, &(0x7f0000000180)={{0x7}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x1fffffff, 0x6, 0xfffffffffffffffc, 0x0, 0x0, 0x2, 0x5, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x20000000, 0x0, 0x1000003, 0x3, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffdeffc]}) 4.441080136s ago: executing program 4 (id=2442): socket$netlink(0x10, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) ioctl$sock_SIOCBRDELBR(r0, 0x89a2, &(0x7f0000000000)='bridge0\x00') syz_emit_ethernet(0x2a, &(0x7f00000002c0)={@link_local, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @dev={0xac, 0x14, 0x14, 0x22}}, @address_request={0x11, 0x0, 0x0, 0x1}}}}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32], 0x4c}}, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x44, 0x10, 0x40d, 0x0, 0x0, {0x0, 0x0, 0x0, r4, 0x3000}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0xc, 0x5, 0x0, 0x1, [@IFLA_BRPORT_MULTICAST_ROUTER={0x5, 0x19, 0x2}]}}}]}, 0x44}}, 0x0) 4.33505396s ago: executing program 4 (id=2443): r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0) ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000180)=0xfffffff9) ioctl$TIOCGPTPEER(r0, 0x8004f50e, 0x1) capset(&(0x7f0000000380)={0x20071026}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x8}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000001c0)='\x00', 0x1}], 0x1, &(0x7f00000000c0)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x0) mq_open(0x0, 0x42, 0x0, 0x0) prlimit64(0x0, 0x7, &(0x7f0000000300), 0x0) sendmmsg$unix(r1, &(0x7f0000005400)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000100)='+', 0x1}], 0x1, &(0x7f0000000880)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}}], 0x1, 0x0) 4.334790476s ago: executing program 4 (id=2444): openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000200), 0x200000, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @fib={{0x8}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0x11}, @NFTA_FIB_RESULT={0x8, 0x2, 0x1, 0x0, 0x2}]}}}]}]}], {0x14}}, 0xc0}}, 0x0) io_setup(0x3, &(0x7f0000000180)=0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fe05000000000000000000009500"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r5, 0x0, 0x8}, 0x18) ioctl$DRM_IOCTL_MODE_ADDFB2(0xffffffffffffffff, 0xc06864b8, &(0x7f0000000580)={0x0, 0xc9, 0x80, 0x3231564e, 0x3, [0x2], [0x2000], [], [0x420000000000001]}) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB="58000000100003052cbd70000000200000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000300012800c0001006d6163766c616e0020000280080001001000000008000300010000000a000400aaaaaaaaaaaa000008000500", @ANYRES32=r8], 0x58}, 0x1, 0x0, 0x0, 0x4001}, 0x0) syz_open_dev$loop(&(0x7f0000000240), 0xdfffffffffffffff, 0x503080) sched_setaffinity(0x0, 0x0, 0x0) setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000040)=0x1008, 0x4) r9 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r9, 0x0, 0x52) r10 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000001a00), 0x2, 0x0) write$6lowpan_control(r10, &(0x7f0000001a40)='connect aa:aa:aa:aa:aa:10 2', 0x1b) io_submit(r1, 0x0, &(0x7f0000002340)) syz_open_dev$vbi(0x0, 0x0, 0x2) 4.0148794s ago: executing program 1 (id=2445): syz_usb_connect$cdc_ncm(0x4, 0x6e, &(0x7f0000000240)=ANY=[@ANYBLOB="122b4abe540000402505a1a440000102030109025c0002010000000904000001020d0000052406000105240000000d240f0100000000000000000006241a0000000905810300020000000904010000037f97930904010102020d000009058202"], 0x0) syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000020000402505a0"], 0x0) 3.455071531s ago: executing program 2 (id=2448): r0 = inotify_init1(0x0) inotify_add_watch(r0, &(0x7f0000000200)='.\x00', 0x10000a0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) 3.454901542s ago: executing program 2 (id=2449): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x4044090) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendmmsg$inet6(r0, &(0x7f0000000b40)=[{{&(0x7f0000000180)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="e9", 0x1}], 0x1}}], 0x1, 0x600c000) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)=ANY=[], 0x10448) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r1, 0x0) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000280)={0x0, @in={{0x2, 0x4e23, @loopback}}}, &(0x7f0000000100)=0x84) 3.304799616s ago: executing program 4 (id=2450): r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000007c0)=ANY=[@ANYBLOB="12010000ed3ec908cd0cb300ea2d010203010902120001000000000904"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f00000004c0)={0x1c, &(0x7f0000000dc0)=ANY=[], 0x0, 0x0}) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f00000003c0)={0x44, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$uac1(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$uac1(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f00000001c0)={0x1c, &(0x7f0000000000)=ANY=[], 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, 0x0) 3.204898188s ago: executing program 3 (id=2452): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', 0x0}) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1, 0x3, 0x261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000d80)={{r2}, &(0x7f0000000d00), &(0x7f0000000d40)='%+9llu \x00'}, 0x20) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000140)={r2, &(0x7f0000000040)}, 0x20) 3.154790262s ago: executing program 3 (id=2453): socket$nl_route(0x10, 0x3, 0x0) openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x0) socket(0x2a, 0x2, 0x0) read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8) syz_emit_vhci(&(0x7f0000000200)=@HCI_EVENT_PKT={0x4, @hci_ev_role_change={{0x12, 0x8}, {0x7, @none}}}, 0xb) syslog(0x2, 0x0, 0x0) 3.154560798s ago: executing program 3 (id=2454): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000001dc0)={0x1, &(0x7f00000019c0)=[{0x5, 0x6b, 0x89, 0x8}]}) 3.10523572s ago: executing program 3 (id=2455): r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x77, 0x29, 0x4, 0x20, 0x424, 0x9901, 0xc257, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x43, 0x0, 0x2, 0x31, 0x7d, 0x55, 0x0, [], [{{0x9, 0x5, 0x2, 0x2, 0x200, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000500)={0x44, &(0x7f00000001c0)={0x0, 0x13, 0x4, "f2c93366"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$uac1(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000580)={0x2c, &(0x7f00000002c0)={0x0, 0x12, 0x4, "f557a2e9"}, 0x0, 0x0, 0x0, 0x0}) 2.835135132s ago: executing program 1 (id=2456): socket$isdn(0x22, 0x3, 0x26) r0 = socket$kcm(0x10, 0x3, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0) setns(0xffffffffffffffff, 0x24020000) syz_clone(0x12000000, 0x0, 0x16, 0x0, 0x0, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)}], 0x1}, 0x0) 2.554937287s ago: executing program 2 (id=2457): r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x7, 0x0) ioctl$VIDIOC_ENUMSTD(r0, 0xc0485619, &(0x7f0000000080)={0x8, 0x1000000, "c6a6c5ad3c9b1f898f52b2d069ad840fb5090b17afdcb953", {0x8, 0xe}, 0x1}) 2.554827065s ago: executing program 2 (id=2458): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x1) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) openat$vnet(0xffffffffffffff9c, 0x0, 0x2, 0x0) r1 = socket$inet6(0xa, 0x3, 0x7) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev={0xac, 0x14, 0x14, 0x40}, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0xa, 0xffd519e15b492e1b, 0x20}, {0x80, 0x20000000, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x4, 0x2}, {}, 0x0, 0x6e6bb9, 0x1}, {{@in6=@mcast1, 0xfffffffc, 0x33}, 0x0, @in=@loopback, 0x0, 0x0, 0x2, 0x7, 0x1, 0x0, 0xfffffffe}}, 0xe8) sendmmsg(r1, &(0x7f0000000480), 0x2e9, 0x0) 2.295026073s ago: executing program 2 (id=2459): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000001180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xffffffffffffffff}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) openat$userio(0xffffffffffffff9c, 0x0, 0x40101, 0x0) syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0) fsopen(0x0, 0x0) r4 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r4, &(0x7f0000000140)={0x10, 0x30, 0x3, {0x0, 0x0, {0x2, 0x0, 0x0, @mcast1}}}, 0x38) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x2b, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000040)={r5, &(0x7f0000000340)="d0f4493570db", 0x20000000}, 0x20) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000780)={r5, &(0x7f0000000640), &(0x7f00000006c0)=""/172}, 0x20) r6 = socket$nl_audit(0x10, 0x3, 0x9) r7 = socket$caif_stream(0x25, 0x1, 0x0) sendmmsg$inet(r7, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000000)="92", 0x1}], 0x1}}], 0x1, 0x7c9ce320e12d300) ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000003ac0)={'wlan0\x00', &(0x7f0000000b80)=@ethtool_regs={0x4, 0x2}}) 1.935096084s ago: executing program 1 (id=2460): openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000440)={0x0, 0x6, &(0x7f0000000340)={&(0x7f0000000180)={0x1c, r1, 0x209, 0x0, 0x0, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}]}, 0x1c}}, 0x0) 1.934984114s ago: executing program 1 (id=2461): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c) sendto$packet(r0, 0x0, 0x0, 0x240400d1, &(0x7f0000000100)={0x11, 0x1a, 0x0, 0x1, 0xa, 0x6, @multicast}, 0x14) 1.864791014s ago: executing program 1 (id=2462): syz_usb_connect(0x0, 0x24, &(0x7f0000002040)=ANY=[@ANYBLOB="12010000fe76181004160780a6af011703010902120001000000000904"], 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x3, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) io_uring_register$IORING_REGISTER_PBUF_STATUS(0xffffffffffffffff, 0x1a, &(0x7f0000000080)={0x3}, 0x1) r3 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x2, 0xa0800) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r3, 0x80dc5521, &(0x7f0000003600)=""/120) 592.562129ms ago: executing program 4 (id=2464): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) r0 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0) read$msr(r0, &(0x7f0000032680)=""/102392, 0x18ff8) io_submit(0x0, 0x0, 0x0) ioctl$sock_SIOCSIFBR(0xffffffffffffffff, 0x890c, &(0x7f0000000000)=@generic={0x0, 0x2}) landlock_create_ruleset(0x0, 0x0, 0x0) r1 = getpid() r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RELOAD(r2, &(0x7f0000000100)={0x0, 0x4100, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r3, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r1}}]}, 0x3c}}, 0x0) syz_emit_ethernet(0x6e, &(0x7f00000002c0)={@random="1fe7e1de10bf", @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010101, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x11, 0x4, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x11, 0x0, @remote, @rand_addr, {[@lsrr={0x83, 0x3, 0x13}, @timestamp_prespec={0x44, 0x2c, 0x0, 0x3, 0x0, [{@empty, 0x10000}, {@private}, {@local}, {@multicast1}, {@private}]}]}}}}}}}, 0x0) syz_usb_connect(0x4, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="120100001517ee40f00a050902120001001a00008804007d077207490000000000000000"], 0x0) 303.078879ms ago: executing program 2 (id=2463): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x7, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bc8900000000000035090100000000009500000000000000b7080000000000007b9a00fe00000000b509000000000000c3aaf0fff1000000bf8600000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018220000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7050000080000004608ebff76000000bf9800000000000056080000000000008500000000000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 74.899569ms ago: executing program 3 (id=2465): timer_create(0x8, &(0x7f0000000200)={0x0, 0x0, 0x1, @thr={0x0, 0x0}}, &(0x7f0000000080)) timer_gettime(0x0, &(0x7f0000000140)) 0s ago: executing program 3 (id=2466): r0 = socket(0x2b, 0x1, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f00000004c0)={0x1ff, 0x100008b}, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) openat$nullb(0xffffffffffffff9c, 0x0, 0x80c080, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x2, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r2, 0xc0405602, &(0x7f00000001c0)={0x1b, 0x1, 0x0, "248f382cc6477de3f09bc9bf78137ed8b8220843ce36e1587258efc6b1287f63"}) kernel console output (not intermixed with test programs): netlink: 'syz.4.1959': attribute type 4 has an invalid length. [ 458.194754][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 458.649623][T13985] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 458.933586][T13997] usb 2-1: USB disconnect, device number 117 [ 458.950635][T13997] hub 2-0:1.0: USB hub found [ 458.952231][T13997] hub 2-0:1.0: 6 ports detected [ 459.141181][T13999] --map-set only usable from mangle table [ 459.144854][ T63] usb 9-1: new high-speed USB device number 6 using dummy_hcd [ 459.147970][ T834] usb 2-1: new high-speed USB device number 118 using ehci-pci [ 459.224835][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 459.302001][ T63] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 459.305984][ T63] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 459.308622][ T63] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 459.311990][ T63] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 459.314450][ T63] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 459.318265][ T63] usb 9-1: config 0 descriptor?? [ 459.328954][ T834] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 459.331446][ T834] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 459.333814][ T834] usb 2-1: Product: QEMU USB Tablet [ 459.336291][ T834] usb 2-1: Manufacturer: QEMU [ 459.337666][ T834] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1 [ 459.361688][ T834] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0079/input/input123 [ 459.428970][ T834] hid-generic 0003:0627:0001.0079: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 459.499850][T14001] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 459.500955][T14004] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1967'. [ 459.738600][ T63] plantronics 0003:047F:FFFF.007A: unknown main item tag 0x0 [ 459.740733][ T63] plantronics 0003:047F:FFFF.007A: unknown main item tag 0x0 [ 459.742764][ T63] plantronics 0003:047F:FFFF.007A: unknown main item tag 0x0 [ 459.760446][ T63] plantronics 0003:047F:FFFF.007A: unknown main item tag 0x0 [ 459.763174][ T63] plantronics 0003:047F:FFFF.007A: unknown main item tag 0x0 [ 459.766006][ T63] plantronics 0003:047F:FFFF.007A: unknown main item tag 0x0 [ 459.768655][ T63] plantronics 0003:047F:FFFF.007A: unknown main item tag 0x0 [ 459.771381][ T63] plantronics 0003:047F:FFFF.007A: unknown main item tag 0x0 [ 459.773969][ T63] plantronics 0003:047F:FFFF.007A: unknown main item tag 0x0 [ 459.785229][ T63] plantronics 0003:047F:FFFF.007A: unknown main item tag 0x0 [ 459.788102][ T63] plantronics 0003:047F:FFFF.007A: unknown main item tag 0x0 [ 459.794890][ T63] plantronics 0003:047F:FFFF.007A: unknown main item tag 0x0 [ 459.804847][ T63] plantronics 0003:047F:FFFF.007A: unknown main item tag 0x0 [ 459.807521][ T63] plantronics 0003:047F:FFFF.007A: unknown main item tag 0x0 [ 459.810133][ T63] plantronics 0003:047F:FFFF.007A: unknown main item tag 0x0 [ 459.813585][ T63] plantronics 0003:047F:FFFF.007A: No inputs registered, leaving [ 459.819024][ T63] plantronics 0003:047F:FFFF.007A: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 460.274734][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 460.535604][T14016] Cannot find add_set index 0 as target [ 460.967320][T14027] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1973'. [ 461.003376][T14032] FAULT_INJECTION: forcing a failure. [ 461.003376][T14032] name failslab, interval 1, probability 0, space 0, times 0 [ 461.007621][T14032] CPU: 3 UID: 0 PID: 14032 Comm: syz.1.1976 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 [ 461.011193][T14032] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 461.014756][T14032] Call Trace: [ 461.015888][T14032] [ 461.016898][T14032] dump_stack_lvl+0x16c/0x1f0 [ 461.018705][T14032] should_fail_ex+0x497/0x5b0 [ 461.020331][T14032] ? fs_reclaim_acquire+0xae/0x150 [ 461.022080][T14032] should_failslab+0xc2/0x120 [ 461.023378][T14032] kmem_cache_alloc_lru_noprof+0x73/0x3b0 [ 461.025190][T14032] ? hugetlbfs_alloc_inode+0x8c/0x1d0 [ 461.026916][T14032] hugetlbfs_alloc_inode+0x8c/0x1d0 [ 461.028719][T14032] ? __pfx_hugetlbfs_alloc_inode+0x10/0x10 [ 461.030654][T14032] alloc_inode+0x5d/0x230 [ 461.031799][T14032] new_inode+0x22/0x210 [ 461.032934][T14032] hugetlbfs_get_inode+0x358/0x740 [ 461.034277][T14032] hugetlb_file_setup+0x15b/0x620 [ 461.035656][T14032] ksys_mmap_pgoff+0x189/0x5c0 [ 461.036986][T14032] ? __ia32_sys_mmap_pgoff+0x11/0x1b0 [ 461.038752][T14032] __do_fast_syscall_32+0x73/0x120 [ 461.040546][T14032] do_fast_syscall_32+0x32/0x80 [ 461.042246][T14032] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 461.044461][T14032] RIP: 0023:0xf7f48579 [ 461.045848][T14032] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 461.052483][T14032] RSP: 002b:00000000f50c657c EFLAGS: 00000292 ORIG_RAX: 00000000000000c0 [ 461.055272][T14032] RAX: ffffffffffffffda RBX: 0000000020c00000 RCX: 0000000000000930 [ 461.057910][T14032] RDX: 0000000000000000 RSI: 0000000000043133 RDI: 00000000ffffffff [ 461.060586][T14032] RBP: 00000000f0000000 R08: 0000000000000000 R09: 0000000000000000 [ 461.063218][T14032] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 461.065874][T14032] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 461.068527][T14032] [ 461.072436][T13996] usb 9-1: string descriptor 0 read error: -71 [ 461.166990][T14042] Cannot find add_set index 0 as target [ 461.304779][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 461.459732][T14049] Cannot find add_set index 0 as target [ 461.776007][T14052] usb 2-1: USB disconnect, device number 118 [ 461.802989][T14052] hub 2-0:1.0: USB hub found [ 461.815027][T14052] hub 2-0:1.0: 6 ports detected [ 461.840753][ T30] usb 9-1: USB disconnect, device number 6 [ 461.864607][T14054] netlink: 92 bytes leftover after parsing attributes in process `syz.3.1982'. [ 461.984829][ T63] usb 2-1: new high-speed USB device number 119 using ehci-pci [ 462.109352][T14070] FAULT_INJECTION: forcing a failure. [ 462.109352][T14070] name failslab, interval 1, probability 0, space 0, times 0 [ 462.124796][T14070] CPU: 2 UID: 0 PID: 14070 Comm: syz.4.1985 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 [ 462.127898][T14070] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 462.131442][T14070] Call Trace: [ 462.132598][T14070] [ 462.133613][T14070] dump_stack_lvl+0x16c/0x1f0 [ 462.135238][T14070] should_fail_ex+0x497/0x5b0 [ 462.136886][T14070] ? fs_reclaim_acquire+0xae/0x150 [ 462.138617][T14070] should_failslab+0xc2/0x120 [ 462.140250][T14070] kmem_cache_alloc_node_noprof+0x72/0x3b0 [ 462.142217][T14070] ? __alloc_skb+0x2b3/0x380 [ 462.143677][T14070] __alloc_skb+0x2b3/0x380 [ 462.145234][T14070] ? __pfx___alloc_skb+0x10/0x10 [ 462.146910][T14070] ? aa_sk_perm+0x2f5/0xb20 [ 462.148449][T14070] ? __pfx_aa_sk_perm+0x10/0x10 [ 462.150113][T14070] pfkey_sendmsg+0x16e/0x840 [ 462.151698][T14070] ____sys_sendmsg+0x9ae/0xb40 [ 462.153315][T14070] ? __pfx_____sys_sendmsg+0x10/0x10 [ 462.155111][T14070] ? get_compat_msghdr+0x11b/0x170 [ 462.156882][T14070] ___sys_sendmsg+0x135/0x1e0 [ 462.158505][T14070] ? __pfx____sys_sendmsg+0x10/0x10 [ 462.160297][T14070] ? __pfx_lock_release+0x10/0x10 [ 462.162010][T14070] ? trace_lock_acquire+0x14e/0x1f0 [ 462.163776][T14070] ? __fget_files+0x206/0x3a0 [ 462.165377][T14070] __sys_sendmsg+0x16e/0x220 [ 462.166950][T14070] ? __pfx___sys_sendmsg+0x10/0x10 [ 462.168722][T14070] __do_fast_syscall_32+0x73/0x120 [ 462.170460][T14070] do_fast_syscall_32+0x32/0x80 [ 462.172107][T14070] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 462.174277][T14070] RIP: 0023:0xf7fe1579 [ 462.175611][T14070] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 462.182575][T14070] RSP: 002b:00000000f514557c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 462.185401][T14070] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000440 [ 462.188078][T14070] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000 [ 462.190785][T14070] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 462.193465][T14070] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 462.196132][T14070] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 462.198834][T14070] [ 462.225791][ T63] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 462.228473][ T63] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 462.230666][ T63] usb 2-1: Product: QEMU USB Tablet [ 462.232326][ T63] usb 2-1: Manufacturer: QEMU [ 462.233607][ T63] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1 [ 462.258549][ T63] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.007B/input/input124 [ 462.316684][ T63] hid-generic 0003:0627:0001.007B: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 462.344778][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 462.503943][T14111] siw: device registration error -23 [ 463.097166][ T63] usb 9-1: new high-speed USB device number 7 using dummy_hcd [ 463.260703][ T63] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 463.263565][ T63] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 463.266135][ T63] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 463.269401][ T63] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 463.271781][ T63] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 463.283800][ T63] usb 9-1: config 0 descriptor?? [ 463.384862][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 463.692728][ T63] plantronics 0003:047F:FFFF.007C: unknown main item tag 0x0 [ 463.698039][ T63] plantronics 0003:047F:FFFF.007C: unknown main item tag 0x0 [ 463.700218][ T63] plantronics 0003:047F:FFFF.007C: unknown main item tag 0x0 [ 463.702399][ T63] plantronics 0003:047F:FFFF.007C: unknown main item tag 0x0 [ 463.704501][ T63] plantronics 0003:047F:FFFF.007C: unknown main item tag 0x0 [ 463.707425][ T63] plantronics 0003:047F:FFFF.007C: unknown main item tag 0x0 [ 463.710177][ T63] plantronics 0003:047F:FFFF.007C: unknown main item tag 0x0 [ 463.713422][ T63] plantronics 0003:047F:FFFF.007C: unknown main item tag 0x0 [ 463.716878][ T63] plantronics 0003:047F:FFFF.007C: unknown main item tag 0x0 [ 463.720029][ T63] plantronics 0003:047F:FFFF.007C: unknown main item tag 0x0 [ 463.722726][ T63] plantronics 0003:047F:FFFF.007C: unknown main item tag 0x0 [ 463.725776][ T63] plantronics 0003:047F:FFFF.007C: unknown main item tag 0x0 [ 463.728603][ T63] plantronics 0003:047F:FFFF.007C: unknown main item tag 0x0 [ 463.731318][ T63] plantronics 0003:047F:FFFF.007C: unknown main item tag 0x0 [ 463.734091][ T63] plantronics 0003:047F:FFFF.007C: unknown main item tag 0x0 [ 463.738086][ T63] plantronics 0003:047F:FFFF.007C: No inputs registered, leaving [ 463.746699][ T63] plantronics 0003:047F:FFFF.007C: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 463.977539][ T833] usb 9-1: USB disconnect, device number 7 [ 464.365037][T14163] x_tables: ip6_tables: recent.0 match: invalid size 216 (kernel) != (user) 232 [ 464.424813][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 464.490580][T14170] usb 2-1: USB disconnect, device number 119 [ 464.649413][T14173] hub 2-0:1.0: USB hub found [ 464.653812][T14173] hub 2-0:1.0: 6 ports detected [ 465.195747][ T30] usb 2-1: new high-speed USB device number 120 using ehci-pci [ 465.464775][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 465.571563][ T30] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 465.574028][ T30] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 465.576238][ T30] usb 2-1: Product: QEMU USB Tablet [ 465.577623][ T30] usb 2-1: Manufacturer: QEMU [ 465.578852][ T30] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1 [ 465.598973][ T30] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.007D/input/input125 [ 465.667149][ T30] hid-generic 0003:0627:0001.007D: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 465.700260][T14209] Cannot find add_set index 0 as target [ 465.824832][ T63] usb 6-1: new high-speed USB device number 15 using dummy_hcd [ 465.986256][ T63] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 465.990276][ T63] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 465.993779][ T63] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 465.998529][ T63] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 466.001769][ T63] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 466.006532][ T63] usb 6-1: config 0 descriptor?? [ 466.101199][T14220] Cannot find add_set index 0 as target [ 466.380155][T14225] siw: device registration error -23 [ 466.431959][ T63] plantronics 0003:047F:FFFF.007E: unknown main item tag 0x0 [ 466.436867][ T63] plantronics 0003:047F:FFFF.007E: unknown main item tag 0x0 [ 466.439519][ T63] plantronics 0003:047F:FFFF.007E: unknown main item tag 0x0 [ 466.441493][ T63] plantronics 0003:047F:FFFF.007E: unknown main item tag 0x0 [ 466.443443][ T63] plantronics 0003:047F:FFFF.007E: unknown main item tag 0x0 [ 466.446127][ T63] plantronics 0003:047F:FFFF.007E: unknown main item tag 0x0 [ 466.448950][ T63] plantronics 0003:047F:FFFF.007E: unknown main item tag 0x0 [ 466.451584][ T63] plantronics 0003:047F:FFFF.007E: unknown main item tag 0x0 [ 466.454172][ T63] plantronics 0003:047F:FFFF.007E: unknown main item tag 0x0 [ 466.457453][ T63] plantronics 0003:047F:FFFF.007E: unknown main item tag 0x0 [ 466.460417][ T63] plantronics 0003:047F:FFFF.007E: unknown main item tag 0x0 [ 466.463059][ T63] plantronics 0003:047F:FFFF.007E: unknown main item tag 0x0 [ 466.467008][ T63] plantronics 0003:047F:FFFF.007E: unknown main item tag 0x0 [ 466.469391][ T63] plantronics 0003:047F:FFFF.007E: unknown main item tag 0x0 [ 466.471346][ T63] plantronics 0003:047F:FFFF.007E: unknown main item tag 0x0 [ 466.473454][ T63] plantronics 0003:047F:FFFF.007E: No inputs registered, leaving [ 466.476989][ T63] plantronics 0003:047F:FFFF.007E: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 466.514457][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 466.696464][ T63] usb 6-1: USB disconnect, device number 15 [ 467.109407][T14238] Cannot find add_set index 0 as target [ 467.241127][T14241] FAULT_INJECTION: forcing a failure. [ 467.241127][T14241] name failslab, interval 1, probability 0, space 0, times 0 [ 467.244588][T14241] CPU: 3 UID: 0 PID: 14241 Comm: syz.1.2028 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 [ 467.247311][T14241] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 467.250147][T14241] Call Trace: [ 467.251041][T14241] [ 467.251827][T14241] dump_stack_lvl+0x16c/0x1f0 [ 467.253086][T14241] should_fail_ex+0x497/0x5b0 [ 467.254371][T14241] ? fs_reclaim_acquire+0xae/0x150 [ 467.255714][T14241] should_failslab+0xc2/0x120 [ 467.256959][T14241] __kmalloc_cache_noprof+0x68/0x420 [ 467.258400][T14241] ? lockdep_hardirqs_on+0x7c/0x110 [ 467.259771][T14241] alloc_fs_context+0x57/0x9c0 [ 467.261036][T14241] __ia32_sys_fsopen+0xef/0x240 [ 467.262290][T14241] __do_fast_syscall_32+0x73/0x120 [ 467.263727][T14241] do_fast_syscall_32+0x32/0x80 [ 467.265254][T14241] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 467.266888][T14241] RIP: 0023:0xf7f48579 [ 467.267962][T14241] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 467.272984][T14241] RSP: 002b:00000000f50c657c EFLAGS: 00000292 ORIG_RAX: 00000000000001ae [ 467.275506][T14241] RAX: ffffffffffffffda RBX: 0000000020000040 RCX: 0000000000000000 [ 467.278264][T14241] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 467.281020][T14241] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 467.283427][T14241] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 467.285616][T14241] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 467.287990][T14241] [ 467.361014][T14247] overlay: Unknown parameter 'permit_directio' [ 467.554807][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 467.891512][T14256] usb 2-1: USB disconnect, device number 120 [ 468.004736][T14261] hub 2-0:1.0: USB hub found [ 468.007076][T14261] hub 2-0:1.0: 6 ports detected [ 468.256248][ T30] usb 2-1: new high-speed USB device number 121 using ehci-pci [ 468.500399][ T30] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 468.502828][ T30] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 468.505056][ T30] usb 2-1: Product: QEMU USB Tablet [ 468.506464][ T30] usb 2-1: Manufacturer: QEMU [ 468.507726][ T30] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1 [ 468.527009][ T30] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.007F/input/input126 [ 468.572757][T14269] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 468.584789][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 468.596622][ T30] hid-generic 0003:0627:0001.007F: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 469.062414][T14284] siw: device registration error -23 [ 469.563291][T14302] 9pnet_virtio: no channels available for device syz [ 469.589055][T14304] overlay: Unknown parameter 'permit_directio' [ 469.624811][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 470.664801][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 470.885907][T14322] trusted_key: syz.2.2052 sent an empty control message without MSG_MORE. [ 470.892630][T14331] FAULT_INJECTION: forcing a failure. [ 470.892630][T14331] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 470.896473][T14331] CPU: 0 UID: 0 PID: 14331 Comm: syz.4.2051 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 [ 470.899288][T14331] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 470.902099][T14331] Call Trace: [ 470.902991][T14331] [ 470.903782][T14331] dump_stack_lvl+0x16c/0x1f0 [ 470.905059][T14331] should_fail_ex+0x497/0x5b0 [ 470.906315][T14331] _copy_to_user+0x32/0xd0 [ 470.907508][T14331] simple_read_from_buffer+0xd0/0x160 [ 470.908946][T14331] proc_fail_nth_read+0x198/0x270 [ 470.910282][T14331] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 470.911743][T14331] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 470.913211][T14331] vfs_read+0x1df/0xbe0 [ 470.914325][T14331] ? __fget_files+0x1fc/0x3a0 [ 470.915572][T14331] ? __pfx___mutex_lock+0x10/0x10 [ 470.916915][T14331] ? __pfx_vfs_read+0x10/0x10 [ 470.918165][T14331] ? __fget_files+0x206/0x3a0 [ 470.919433][T14331] ksys_read+0x12b/0x250 [ 470.920561][T14331] ? __pfx_ksys_read+0x10/0x10 [ 470.921823][T14331] __do_fast_syscall_32+0x73/0x120 [ 470.923186][T14331] do_fast_syscall_32+0x32/0x80 [ 470.924489][T14331] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 470.926153][T14331] RIP: 0023:0xf7fe1579 [ 470.927228][T14331] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 470.932240][T14331] RSP: 002b:00000000f51665b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 470.934428][T14331] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5166620 [ 470.936499][T14331] RDX: 000000000000000f RSI: 00000000f746fff4 RDI: 0000000000000000 [ 470.938562][T14331] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 470.940651][T14331] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 470.942721][T14331] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 470.944805][T14331] [ 471.029496][T14339] usb 2-1: USB disconnect, device number 121 [ 471.072332][T14339] hub 2-0:1.0: USB hub found [ 471.074152][T14339] hub 2-0:1.0: 6 ports detected [ 471.165703][T14340] kvm: pic: non byte read [ 471.324960][T14346] siw: device registration error -23 [ 471.500992][ T5982] usb 2-1: new high-speed USB device number 122 using ehci-pci [ 471.579859][T14350] program syz.3.2057 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 471.679029][ T5982] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 471.682362][ T5982] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 471.685278][ T5982] usb 2-1: Product: QEMU USB Tablet [ 471.687063][ T5982] usb 2-1: Manufacturer: QEMU [ 471.688719][ T5982] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1 [ 471.699816][T14355] input: syz0 as /devices/virtual/input/input127 [ 471.704812][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 471.707582][ T5982] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0080/input/input128 [ 471.714394][ T5982] hid-generic 0003:0627:0001.0080: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 471.855177][ T8861] usb 6-1: new high-speed USB device number 16 using dummy_hcd [ 472.006767][ T8861] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 472.009524][ T8861] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 472.012291][ T8861] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 472.016101][ T8861] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 472.018475][ T8861] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 472.021741][ T8861] usb 6-1: config 0 descriptor?? [ 472.435034][ T8861] plantronics 0003:047F:FFFF.0081: unknown main item tag 0x0 [ 472.438542][ T8861] plantronics 0003:047F:FFFF.0081: unknown main item tag 0x0 [ 472.441784][ T8861] plantronics 0003:047F:FFFF.0081: unknown main item tag 0x0 [ 472.444540][ T8861] plantronics 0003:047F:FFFF.0081: unknown main item tag 0x0 [ 472.447717][ T8861] plantronics 0003:047F:FFFF.0081: unknown main item tag 0x0 [ 472.450520][ T8861] plantronics 0003:047F:FFFF.0081: unknown main item tag 0x0 [ 472.453410][ T8861] plantronics 0003:047F:FFFF.0081: unknown main item tag 0x0 [ 472.456473][ T8861] plantronics 0003:047F:FFFF.0081: unknown main item tag 0x0 [ 472.459094][ T8861] plantronics 0003:047F:FFFF.0081: unknown main item tag 0x0 [ 472.461681][ T8861] plantronics 0003:047F:FFFF.0081: unknown main item tag 0x0 [ 472.464402][ T8861] plantronics 0003:047F:FFFF.0081: unknown main item tag 0x0 [ 472.467630][ T8861] plantronics 0003:047F:FFFF.0081: unknown main item tag 0x0 [ 472.470414][ T8861] plantronics 0003:047F:FFFF.0081: unknown main item tag 0x0 [ 472.473091][ T8861] plantronics 0003:047F:FFFF.0081: unknown main item tag 0x0 [ 472.476385][ T8861] plantronics 0003:047F:FFFF.0081: unknown main item tag 0x0 [ 472.479969][ T8861] plantronics 0003:047F:FFFF.0081: No inputs registered, leaving [ 472.486972][ T8861] plantronics 0003:047F:FFFF.0081: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 472.699662][ T9] usb 6-1: USB disconnect, device number 16 [ 472.744846][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 473.232267][T14370] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 473.234548][T14370] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 473.238109][T14370] vhci_hcd vhci_hcd.0: Device attached [ 473.243006][T14370] netdevsim netdevsim1 netdevsim1: entered allmulticast mode [ 473.247990][ T5949] Bluetooth: hci0: Unable to find connection for big 0x00 [ 473.251123][T14371] vhci_hcd: connection closed [ 473.251572][ T11] vhci_hcd: stop threads [ 473.253932][ T11] vhci_hcd: release socket [ 473.259161][ T11] vhci_hcd: disconnect device [ 473.703455][T14367] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 473.706017][T14367] Bluetooth: hci0: Error when powering off device on rfkill (-4) [ 473.722773][T14367] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 473.725001][T14367] Bluetooth: hci1: Error when powering off device on rfkill (-4) [ 473.737823][T14367] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 473.739833][T14367] Bluetooth: hci2: Error when powering off device on rfkill (-4) [ 473.748914][T14367] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 473.750991][T14367] Bluetooth: hci3: Error when powering off device on rfkill (-4) [ 473.784820][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 473.885397][T14381] 9pnet_fd: Insufficient options for proto=fd [ 473.888119][T14381] program syz.4.2067 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 474.073541][T14386] siw: device registration error -23 [ 474.611470][T14393] FAULT_INJECTION: forcing a failure. [ 474.611470][T14393] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 474.615072][T14393] CPU: 2 UID: 0 PID: 14393 Comm: syz.2.2069 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 [ 474.617773][T14393] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 474.620439][T14393] Call Trace: [ 474.621317][T14393] [ 474.622074][T14393] dump_stack_lvl+0x16c/0x1f0 [ 474.623285][T14393] should_fail_ex+0x497/0x5b0 [ 474.624564][T14393] _copy_from_iter+0x29b/0x1400 [ 474.625947][T14393] ? __pfx__copy_from_iter+0x10/0x10 [ 474.627324][T14393] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 474.628822][T14393] ? __check_object_size+0xad/0x710 [ 474.630502][T14393] ping_common_sendmsg+0xc7/0x2d0 [ 474.632020][T14393] ping_v4_sendmsg+0x191/0x1a00 [ 474.633341][T14393] ? ip4_datagram_release_cb+0x21a/0xbb0 [ 474.634767][T14393] ? __pfx_lock_release+0x10/0x10 [ 474.636070][T14393] ? __pfx_ping_v4_sendmsg+0x10/0x10 [ 474.637438][T14393] ? release_sock+0x21/0x220 [ 474.638685][T14393] ? reacquire_held_locks+0x20b/0x4c0 [ 474.640107][T14393] ? inet_autobind+0x145/0x1a0 [ 474.641365][T14393] ? lock_acquire+0x2f/0xb0 [ 474.642533][T14393] ? inet_autobind+0x145/0x1a0 [ 474.644122][T14393] ? __local_bh_enable_ip+0xa4/0x120 [ 474.645590][T14393] ? inet_autobind+0x14a/0x1a0 [ 474.646894][T14393] ? __pfx_ping_v4_sendmsg+0x10/0x10 [ 474.648274][T14393] inet_sendmsg+0x119/0x140 [ 474.649639][T14393] ____sys_sendmsg+0x907/0xb40 [ 474.650925][T14393] ? __pfx_____sys_sendmsg+0x10/0x10 [ 474.652320][T14393] ? get_compat_msghdr+0x11b/0x170 [ 474.653769][T14393] ___sys_sendmsg+0x135/0x1e0 [ 474.655003][T14393] ? __pfx____sys_sendmsg+0x10/0x10 [ 474.656417][T14393] ? __pfx_lock_release+0x10/0x10 [ 474.657758][T14393] ? trace_lock_acquire+0x14e/0x1f0 [ 474.659159][T14393] ? __fget_files+0x206/0x3a0 [ 474.660709][T14393] __sys_sendmsg+0x16e/0x220 [ 474.662296][T14393] ? __pfx___sys_sendmsg+0x10/0x10 [ 474.664045][T14393] __do_fast_syscall_32+0x73/0x120 [ 474.665791][T14393] do_fast_syscall_32+0x32/0x80 [ 474.667091][T14393] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 474.668758][T14393] RIP: 0023:0xf7fb2579 [ 474.669938][T14393] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 474.675095][T14393] RSP: 002b:00000000f513657c EFLAGS: 00000292 ORIG_RAX: 0000000000000172 [ 474.677436][T14393] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000080 [ 474.679510][T14393] RDX: 0000000004000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 474.681597][T14393] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 474.683960][T14393] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 474.686045][T14393] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 474.688017][T14393] [ 474.711019][T14394] siw: device registration error -23 [ 474.824796][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 475.124861][T12076] usb 7-1: new high-speed USB device number 18 using dummy_hcd [ 475.173156][T14405] sd 0:0:0:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x24 ascq=0x0 [ 475.178548][T14406] siw: device registration error -23 [ 475.301740][T12076] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 475.306152][T12076] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 475.308772][T12076] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 475.312612][T12076] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 475.321976][T12076] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 475.336193][T12076] usb 7-1: config 0 descriptor?? [ 475.884787][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 476.519100][T12076] plantronics 0003:047F:FFFF.0082: unknown main item tag 0x0 [ 476.521385][T12076] plantronics 0003:047F:FFFF.0082: unknown main item tag 0x0 [ 476.523344][T12076] plantronics 0003:047F:FFFF.0082: unknown main item tag 0x0 [ 476.530116][T12076] plantronics 0003:047F:FFFF.0082: unknown main item tag 0x0 [ 476.532001][T12076] plantronics 0003:047F:FFFF.0082: unknown main item tag 0x0 [ 476.533899][T12076] plantronics 0003:047F:FFFF.0082: unknown main item tag 0x0 [ 476.535897][T12076] plantronics 0003:047F:FFFF.0082: unknown main item tag 0x0 [ 476.537758][T12076] plantronics 0003:047F:FFFF.0082: unknown main item tag 0x0 [ 476.539615][T12076] plantronics 0003:047F:FFFF.0082: unknown main item tag 0x0 [ 476.541480][T12076] plantronics 0003:047F:FFFF.0082: unknown main item tag 0x0 [ 476.543384][T12076] plantronics 0003:047F:FFFF.0082: unknown main item tag 0x0 [ 476.545398][T12076] plantronics 0003:047F:FFFF.0082: unknown main item tag 0x0 [ 476.547239][T12076] plantronics 0003:047F:FFFF.0082: unknown main item tag 0x0 [ 476.549146][T12076] plantronics 0003:047F:FFFF.0082: unknown main item tag 0x0 [ 476.551043][T12076] plantronics 0003:047F:FFFF.0082: unknown main item tag 0x0 [ 476.553327][T12076] plantronics 0003:047F:FFFF.0082: No inputs registered, leaving [ 476.559301][T12076] plantronics 0003:047F:FFFF.0082: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 476.566116][T12076] usb 7-1: USB disconnect, device number 18 [ 476.723811][T14434] usb 2-1: USB disconnect, device number 122 [ 476.905835][T14442] siw: device registration error -23 [ 476.914761][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 476.998967][T14441] Cannot find add_set index 0 as target [ 477.412407][T14439] hub 2-0:1.0: USB hub found [ 477.414568][T14439] hub 2-0:1.0: 6 ports detected [ 477.426680][T14446] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2081'. [ 477.694976][ T833] usb 2-1: new high-speed USB device number 123 using ehci-pci [ 477.899264][ T833] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 477.901819][ T833] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 477.904101][ T833] usb 2-1: Product: QEMU USB Tablet [ 477.906219][ T833] usb 2-1: Manufacturer: QEMU [ 477.907981][ T833] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1 [ 477.939697][ T833] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0083/input/input130 [ 477.954830][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 478.011819][ T833] hid-generic 0003:0627:0001.0083: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 478.218431][T14464] Cannot find add_set index 0 as target [ 478.593212][T14456] --map-set only usable from mangle table [ 478.738523][T12076] usb 9-1: new high-speed USB device number 8 using dummy_hcd [ 478.855936][T14474] FAULT_INJECTION: forcing a failure. [ 478.855936][T14474] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 478.860592][T14474] CPU: 2 UID: 0 PID: 14474 Comm: syz.1.2090 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 [ 478.864366][T14474] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 478.867104][T14475] Cannot find add_set index 0 as target [ 478.868086][T14474] Call Trace: [ 478.868095][T14474] [ 478.868104][T14474] dump_stack_lvl+0x16c/0x1f0 [ 478.868131][T14474] should_fail_ex+0x497/0x5b0 [ 478.875519][T14474] _copy_from_user+0x2e/0xd0 [ 478.877185][T14474] bpf_test_init.isra.0+0xf1/0x150 [ 478.879022][T14474] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 478.881081][T14474] bpf_prog_test_run_skb+0x250/0x22c0 [ 478.882992][T14474] ? __fget_files+0x40/0x3a0 [ 478.884658][T14474] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 478.886997][T14474] ? fput+0x67/0x440 [ 478.888433][T14474] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 478.890484][T14474] __sys_bpf+0x1921/0x57a0 [ 478.892051][T14474] ? __pfx_lock_release+0x10/0x10 [ 478.893799][T14474] ? __pfx___sys_bpf+0x10/0x10 [ 478.895443][T14474] ? vfs_write+0x306/0x1150 [ 478.897123][T14474] ? __mutex_unlock_slowpath+0x164/0x690 [ 478.899124][T14474] ? fput+0x67/0x440 [ 478.900540][T14474] ? ksys_write+0x1ba/0x250 [ 478.902155][T14474] ? __pfx_ksys_write+0x10/0x10 [ 478.903870][T14474] __ia32_sys_bpf+0x76/0xe0 [ 478.905179][T14474] __do_fast_syscall_32+0x73/0x120 [ 478.906509][T14474] do_fast_syscall_32+0x32/0x80 [ 478.907765][T14474] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 478.909399][T14474] RIP: 0023:0xf7f48579 [ 478.910504][T14474] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 478.915394][T14474] RSP: 002b:00000000f50c657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165 [ 478.917533][T14474] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020002c00 [ 478.919580][T14474] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000 [ 478.921578][T14474] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 478.923477][T14474] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 478.925472][T14474] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 478.927528][T14474] [ 478.933069][T12076] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 478.936290][T12076] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 478.939224][T12076] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 478.943179][T12076] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 478.955533][T12076] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 478.984753][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 478.985716][T12076] usb 9-1: config 0 descriptor?? [ 479.101244][T14481] program syz.2.2091 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 479.218159][T14484] siw: device registration error -23 [ 479.418342][T14490] FAULT_INJECTION: forcing a failure. [ 479.418342][T14490] name failslab, interval 1, probability 0, space 0, times 0 [ 479.421715][T14490] CPU: 3 UID: 0 PID: 14490 Comm: syz.2.2094 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 [ 479.424529][T14490] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 479.427276][T14490] Call Trace: [ 479.428141][T14490] [ 479.428916][T14490] dump_stack_lvl+0x16c/0x1f0 [ 479.430139][T14490] should_fail_ex+0x497/0x5b0 [ 479.431360][T14490] ? fs_reclaim_acquire+0xae/0x150 [ 479.432908][T14490] should_failslab+0xc2/0x120 [ 479.434407][T14490] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 479.436127][T14490] ? vm_area_dup+0x53/0x300 [ 479.437331][T14490] vm_area_dup+0x53/0x300 [ 479.438449][T14490] __split_vma+0x181/0x1210 [ 479.439679][T14490] ? __pfx___split_vma+0x10/0x10 [ 479.440980][T14490] vms_gather_munmap_vmas+0x38b/0x1730 [ 479.442419][T14490] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 479.444322][T14490] ? mas_walk+0x6a6/0x910 [ 479.445690][T14490] __mmap_region+0x31d/0x2670 [ 479.446975][T14490] ? __pfx___mmap_region+0x10/0x10 [ 479.448314][T14490] ? hlock_class+0x4e/0x130 [ 479.449496][T14490] ? mark_lock+0xb5/0xc60 [ 479.450611][T14490] ? __pfx___lock_acquire+0x10/0x10 [ 479.451978][T14490] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 479.453596][T14490] ? hugetlb_get_unmapped_area+0x1ac/0x2a0 [ 479.455147][T14490] ? hugetlb_get_unmapped_area+0x1b5/0x2a0 [ 479.456654][T14490] ? cap_mmap_addr+0x53/0x320 [ 479.457876][T14490] mmap_region+0x270/0x320 [ 479.459058][T14490] do_mmap+0xc00/0xfc0 [ 479.460262][T14490] vm_mmap_pgoff+0x1ba/0x360 [ 479.461470][T14490] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 479.462791][T14490] ? __fget_files+0x206/0x3a0 [ 479.464041][T14490] ksys_mmap_pgoff+0x32c/0x5c0 [ 479.465297][T14490] __do_fast_syscall_32+0x73/0x120 [ 479.466628][T14490] do_fast_syscall_32+0x32/0x80 [ 479.467890][T14490] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 479.469527][T14490] RIP: 0023:0xf7fb2579 [ 479.470582][T14490] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 479.475700][T14490] RSP: 002b:00000000f513657c EFLAGS: 00000292 ORIG_RAX: 00000000000000c0 [ 479.477884][T14490] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000 [ 479.479960][T14490] RDX: 0000000000000000 RSI: 0000000000000013 RDI: 0000000000000004 [ 479.482731][T14490] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 479.485583][T14490] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 479.487951][T14490] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 479.490040][T14490] [ 479.497580][T12076] plantronics 0003:047F:FFFF.0084: unknown main item tag 0x0 [ 479.499562][T12076] plantronics 0003:047F:FFFF.0084: unknown main item tag 0x0 [ 479.501500][T12076] plantronics 0003:047F:FFFF.0084: unknown main item tag 0x0 [ 479.503620][T12076] plantronics 0003:047F:FFFF.0084: unknown main item tag 0x0 [ 479.505769][T12076] plantronics 0003:047F:FFFF.0084: unknown main item tag 0x0 [ 479.507710][T12076] plantronics 0003:047F:FFFF.0084: unknown main item tag 0x0 [ 479.509620][T12076] plantronics 0003:047F:FFFF.0084: unknown main item tag 0x0 [ 479.511524][T12076] plantronics 0003:047F:FFFF.0084: unknown main item tag 0x0 [ 479.513588][T12076] plantronics 0003:047F:FFFF.0084: unknown main item tag 0x0 [ 479.515603][T12076] plantronics 0003:047F:FFFF.0084: unknown main item tag 0x0 [ 479.517517][T12076] plantronics 0003:047F:FFFF.0084: unknown main item tag 0x0 [ 479.519430][T12076] plantronics 0003:047F:FFFF.0084: unknown main item tag 0x0 [ 479.521353][T12076] plantronics 0003:047F:FFFF.0084: unknown main item tag 0x0 [ 479.523265][T12076] plantronics 0003:047F:FFFF.0084: unknown main item tag 0x0 [ 479.527607][T12076] plantronics 0003:047F:FFFF.0084: unknown main item tag 0x0 [ 479.530563][T12076] plantronics 0003:047F:FFFF.0084: No inputs registered, leaving [ 479.538692][T12076] plantronics 0003:047F:FFFF.0084: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 479.639703][T14488] Cannot find add_set index 0 as target [ 479.756373][T12076] usb 9-1: USB disconnect, device number 8 [ 479.890477][T14501] 9pnet_fd: Insufficient options for proto=fd [ 479.893092][T14501] tipc: Started in network mode [ 479.894516][T14501] tipc: Node identity 7f000001, cluster identity 4711 [ 479.896854][T14501] tipc: Enabling of bearer rejected, failed to enable media [ 480.024832][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 480.367687][T14516] Cannot find add_set index 0 as target [ 480.672618][T14524] siw: device registration error -23 [ 480.917161][T14526] usb 2-1: USB disconnect, device number 123 [ 480.959431][T14526] hub 2-0:1.0: USB hub found [ 480.960874][T14526] hub 2-0:1.0: 6 ports detected [ 481.064891][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 481.164774][ T5982] usb 2-1: new high-speed USB device number 124 using ehci-pci [ 481.225002][T14550] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 481.366109][ T5982] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 481.369630][ T5982] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 481.371921][ T5982] usb 2-1: Product: QEMU USB Tablet [ 481.373328][ T5982] usb 2-1: Manufacturer: QEMU [ 481.374902][ T5982] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1 [ 481.445689][ T5982] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0085/input/input131 [ 481.482030][T14554] Cannot find add_set index 0 as target [ 481.531433][ T5982] hid-generic 0003:0627:0001.0085: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 481.614419][T14557] netlink: 'syz.4.2112': attribute type 10 has an invalid length. [ 481.912718][T14557] batman_adv: batadv0: Adding interface: team0 [ 481.920999][T14557] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 482.114766][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 482.294847][T14557] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 482.733545][T14566] usb 2-1: USB disconnect, device number 124 [ 482.874958][T14575] hub 2-0:1.0: USB hub found [ 482.878009][T14575] hub 2-0:1.0: 6 ports detected [ 482.899820][T14578] Cannot find add_set index 0 as target [ 483.084949][ T9] usb 2-1: new high-speed USB device number 125 using ehci-pci [ 483.144784][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 483.276740][ T9] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 483.281681][ T9] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 483.284531][ T9] usb 2-1: Product: QEMU USB Tablet [ 483.286685][ T9] usb 2-1: Manufacturer: QEMU [ 483.288685][ T9] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1 [ 483.435605][T14591] siw: device registration error -23 [ 483.542700][ T9] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0086/input/input132 [ 483.628967][ T9] hid-generic 0003:0627:0001.0086: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 483.864101][T14585] Set syz1 is full, maxelem 65536 reached [ 484.184757][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 484.301140][T14604] FAULT_INJECTION: forcing a failure. [ 484.301140][T14604] name failslab, interval 1, probability 0, space 0, times 0 [ 484.304797][T14604] CPU: 0 UID: 0 PID: 14604 Comm: syz.2.2125 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 [ 484.307557][T14604] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 484.310251][T14604] Call Trace: [ 484.311115][T14604] [ 484.311871][T14604] dump_stack_lvl+0x16c/0x1f0 [ 484.313069][T14604] should_fail_ex+0x497/0x5b0 [ 484.314284][T14604] ? fs_reclaim_acquire+0xae/0x150 [ 484.315596][T14604] should_failslab+0xc2/0x120 [ 484.315783][T14611] FAULT_INJECTION: forcing a failure. [ 484.315783][T14611] name failslab, interval 1, probability 0, space 0, times 0 [ 484.316768][T14604] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 484.316785][T14604] ? __pfx_lock_release+0x10/0x10 [ 484.316796][T14604] ? alloc_empty_file+0x73/0x1e0 [ 484.325124][T14604] alloc_empty_file+0x73/0x1e0 [ 484.326534][T14604] path_openat+0xe1/0x2d60 [ 484.327647][T14604] ? lockdep_hardirqs_on+0x7c/0x110 [ 484.328924][T14604] ? __schedule+0x3d6c/0x5ad0 [ 484.330048][T14604] ? __pfx_path_openat+0x10/0x10 [ 484.331253][T14604] do_filp_open+0x20c/0x470 [ 484.332370][T14604] ? __pfx_do_filp_open+0x10/0x10 [ 484.333641][T14604] ? find_held_lock+0x2d/0x110 [ 484.334876][T14604] ? alloc_fd+0x41f/0x760 [ 484.335978][T14604] do_sys_openat2+0x17a/0x1e0 [ 484.337204][T14604] ? __pfx_do_sys_openat2+0x10/0x10 [ 484.338527][T14604] __ia32_compat_sys_openat+0x16e/0x210 [ 484.339939][T14604] ? __pfx___ia32_compat_sys_openat+0x10/0x10 [ 484.341668][T14604] __do_fast_syscall_32+0x73/0x120 [ 484.342996][T14604] do_fast_syscall_32+0x32/0x80 [ 484.344223][T14604] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 484.345831][T14604] RIP: 0023:0xf7fb2579 [ 484.346931][T14604] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 484.351978][T14604] RSP: 002b:00000000f511557c EFLAGS: 00000292 ORIG_RAX: 0000000000000127 [ 484.354074][T14604] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000200 [ 484.355997][T14604] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 484.358165][T14604] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 484.360420][T14604] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 484.362407][T14604] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 484.364384][T14604] [ 484.375007][T14611] CPU: 2 UID: 0 PID: 14611 Comm: syz.1.2127 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 [ 484.377831][T14611] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 484.380587][T14611] Call Trace: [ 484.381451][T14611] [ 484.382209][T14611] dump_stack_lvl+0x16c/0x1f0 [ 484.383412][T14611] should_fail_ex+0x497/0x5b0 [ 484.384633][T14611] ? fs_reclaim_acquire+0xae/0x150 [ 484.385947][T14611] should_failslab+0xc2/0x120 [ 484.387132][T14611] kmem_cache_alloc_lru_noprof+0x73/0x3b0 [ 484.388581][T14611] ? __d_alloc+0x35/0x8c0 [ 484.389689][T14611] __d_alloc+0x35/0x8c0 [ 484.390711][T14611] d_alloc+0x4a/0x1e0 [ 484.391711][T14611] lookup_one_qstr_excl+0xcb/0x190 [ 484.393040][T14611] ? mnt_want_write+0x161/0x450 [ 484.394250][T14611] filename_create+0x1ed/0x530 [ 484.395463][T14611] ? __pfx_filename_create+0x10/0x10 [ 484.396808][T14611] ? __phys_addr_symbol+0x30/0x80 [ 484.398078][T14611] ? __check_object_size+0x488/0x710 [ 484.399438][T14611] do_mkdirat+0xab/0x3a0 [ 484.400509][T14611] ? __pfx_do_mkdirat+0x10/0x10 [ 484.401689][T14611] ? getname_flags.part.0+0x1c5/0x550 [ 484.403036][T14611] __ia32_sys_mkdir+0x61/0x80 [ 484.404239][T14611] __do_fast_syscall_32+0x73/0x120 [ 484.405657][T14611] do_fast_syscall_32+0x32/0x80 [ 484.406927][T14611] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 484.408448][T14611] RIP: 0023:0xf7f48579 [ 484.409494][T14611] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 484.414333][T14611] RSP: 002b:00000000f50a557c EFLAGS: 00000292 ORIG_RAX: 0000000000000027 [ 484.416483][T14611] RAX: ffffffffffffffda RBX: 0000000020000240 RCX: 0000000000000000 [ 484.418503][T14611] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 484.420553][T14611] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 484.422585][T14611] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 484.424611][T14611] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 484.426710][T14611] [ 484.434582][T14604] 9pnet_virtio: no channels available for device syz [ 484.444587][T14614] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 484.706935][T14608] Cannot find add_set index 0 as target [ 484.733766][T14598] Set syz1 is full, maxelem 65536 reached [ 484.883073][T14618] 9pnet_virtio: no channels available for device syz [ 484.956953][T14621] usb 2-1: USB disconnect, device number 125 [ 485.003064][T14620] hub 2-0:1.0: USB hub found [ 485.005053][T14620] hub 2-0:1.0: 6 ports detected [ 485.005246][T14618] overlayfs: missing 'lowerdir' [ 485.174827][ T5982] usb 2-1: new high-speed USB device number 126 using ehci-pci [ 485.224840][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 485.411154][T14638] FAULT_INJECTION: forcing a failure. [ 485.411154][T14638] name failslab, interval 1, probability 0, space 0, times 0 [ 485.414197][T14638] CPU: 2 UID: 0 PID: 14638 Comm: syz.2.2134 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 [ 485.416946][T14638] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 485.419661][T14638] Call Trace: [ 485.420673][T14638] [ 485.421447][T14638] dump_stack_lvl+0x16c/0x1f0 [ 485.422740][T14638] should_fail_ex+0x497/0x5b0 [ 485.424009][T14638] ? fs_reclaim_acquire+0xae/0x150 [ 485.425474][T14638] should_failslab+0xc2/0x120 [ 485.426713][T14638] kmem_cache_alloc_lru_noprof+0x73/0x3b0 [ 485.428268][T14638] ? __d_alloc+0x35/0x8c0 [ 485.429451][T14638] __d_alloc+0x35/0x8c0 [ 485.429549][ T5982] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 485.430564][T14638] d_alloc+0x4a/0x1e0 [ 485.430582][T14638] lookup_one_qstr_excl+0xcb/0x190 [ 485.433255][ T5982] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 485.434032][T14638] ? mnt_want_write+0x161/0x450 [ 485.434048][T14638] filename_create+0x1ed/0x530 [ 485.436017][ T5982] usb 2-1: Product: QEMU USB Tablet [ 485.437505][T14638] ? __pfx_filename_create+0x10/0x10 [ 485.437522][T14638] ? __phys_addr_symbol+0x30/0x80 [ 485.437536][T14638] ? __check_object_size+0x488/0x710 [ 485.439472][ T5982] usb 2-1: Manufacturer: QEMU [ 485.440475][T14638] do_mkdirat+0xab/0x3a0 [ 485.440493][T14638] ? __pfx_do_mkdirat+0x10/0x10 [ 485.440505][T14638] ? getname_flags.part.0+0x1c5/0x550 [ 485.440524][T14638] __ia32_sys_mkdir+0x61/0x80 [ 485.442368][ T5982] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1 [ 485.443635][T14638] __do_fast_syscall_32+0x73/0x120 [ 485.443655][T14638] do_fast_syscall_32+0x32/0x80 [ 485.443669][T14638] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 485.443685][T14638] RIP: 0023:0xf7fb2579 [ 485.459673][T14638] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 485.464809][T14638] RSP: 002b:00000000f511557c EFLAGS: 00000292 ORIG_RAX: 0000000000000027 [ 485.467006][T14638] RAX: ffffffffffffffda RBX: 00000000200000c0 RCX: 0000000000000000 [ 485.469047][T14638] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 485.471104][T14638] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 485.473184][T14638] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 485.475286][T14638] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 485.475593][ T5982] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0087/input/input134 [ 485.477350][T14638] [ 485.549493][ T5982] hid-generic 0003:0627:0001.0087: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 486.264754][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 486.328765][T14648] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 486.560658][T14652] 9pnet_virtio: no channels available for device syz [ 487.089424][T14667] usb 2-1: USB disconnect, device number 126 [ 487.199936][T14672] overlayfs: missing 'lowerdir' [ 487.304789][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 487.535950][T14667] hub 2-0:1.0: USB hub found [ 487.538282][T14667] hub 2-0:1.0: 6 ports detected [ 487.565526][T14679] can0: slcan on ttyS3. [ 487.745040][ T5982] usb 2-1: new high-speed USB device number 127 using ehci-pci [ 487.937358][ T5982] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 487.940400][ T5982] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 487.942275][T14685] 9pnet_virtio: no channels available for device syz [ 487.942670][ T5982] usb 2-1: Product: QEMU USB Tablet [ 487.948292][ T5982] usb 2-1: Manufacturer: QEMU [ 487.949725][ T5982] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1 [ 488.031821][ T5982] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0088/input/input135 [ 488.085500][T14668] can0 (unregistered): slcan off ttyS3. [ 488.096923][ T5982] hid-generic 0003:0627:0001.0088: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 488.344767][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 488.539769][T14701] overlay: Unknown parameter 'permit_directio' [ 488.781501][T14697] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 488.790555][T14707] --map-set only usable from mangle table [ 488.800845][T14697] FAULT_INJECTION: forcing a failure. [ 488.800845][T14697] name failslab, interval 1, probability 0, space 0, times 0 [ 488.804085][T14697] CPU: 0 UID: 0 PID: 14697 Comm: syz.1.2147 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 [ 488.806745][T14697] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 488.809389][T14697] Call Trace: [ 488.810231][T14697] [ 488.810965][T14697] dump_stack_lvl+0x16c/0x1f0 [ 488.812153][T14697] should_fail_ex+0x497/0x5b0 [ 488.813384][T14697] should_failslab+0xc2/0x120 [ 488.814576][T14697] kmem_cache_alloc_noprof+0x6e/0x3b0 [ 488.815955][T14697] ? sk_prot_alloc+0x60/0x2a0 [ 488.817153][T14697] ? rcu_preempt_deferred_qs_irqrestore+0x505/0xb80 [ 488.818813][T14697] sk_prot_alloc+0x60/0x2a0 [ 488.819939][T14697] sk_alloc+0x36/0xb90 [ 488.820984][T14697] inet_create+0x3a1/0x10a0 [ 488.822129][T14697] ? inet_create+0x90/0x10a0 [ 488.823289][T14697] __sock_create+0x335/0x8d0 [ 488.824465][T14697] __sys_socket+0x14f/0x260 [ 488.825604][T14697] ? __pfx___sys_socket+0x10/0x10 [ 488.826886][T14697] __ia32_sys_socket+0x72/0xb0 [ 488.828091][T14697] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 488.829727][T14697] __do_fast_syscall_32+0x73/0x120 [ 488.831001][T14697] do_fast_syscall_32+0x32/0x80 [ 488.832227][T14697] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 488.833819][T14697] RIP: 0023:0xf7f48579 [ 488.834846][T14697] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 488.839570][T14697] RSP: 002b:00000000f50a557c EFLAGS: 00000292 ORIG_RAX: 0000000000000167 [ 488.841665][T14697] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000000003 [ 488.843657][T14697] RDX: 00000000000000fa RSI: 0000000000000000 RDI: 0000000000000000 [ 488.845663][T14697] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 488.847645][T14697] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 488.849679][T14697] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 488.851723][T14697] [ 489.004026][T14710] random: crng reseeded on system resumption [ 489.011049][T14710] Restarting kernel threads ... done. [ 489.384852][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 489.586762][T14717] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 490.297428][T14733] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 490.301187][T14733] FAULT_INJECTION: forcing a failure. [ 490.301187][T14733] name failslab, interval 1, probability 0, space 0, times 0 [ 490.304576][T14733] CPU: 3 UID: 0 PID: 14733 Comm: syz.1.2158 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 [ 490.307317][T14733] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 490.310095][T14733] Call Trace: [ 490.310970][T14733] [ 490.311793][T14733] dump_stack_lvl+0x16c/0x1f0 [ 490.313048][T14733] should_fail_ex+0x497/0x5b0 [ 490.314280][T14733] ? fs_reclaim_acquire+0xae/0x150 [ 490.315689][T14733] should_failslab+0xc2/0x120 [ 490.316930][T14733] kmem_cache_alloc_lru_noprof+0x73/0x3b0 [ 490.318404][T14733] ? __d_alloc+0x35/0x8c0 [ 490.319552][T14733] __d_alloc+0x35/0x8c0 [ 490.320652][T14733] d_alloc+0x4a/0x1e0 [ 490.321745][T14733] d_alloc_parallel+0xe9/0x12b0 [ 490.323028][T14733] ? find_held_lock+0x2d/0x110 [ 490.324308][T14733] ? __pfx_d_alloc_parallel+0x10/0x10 [ 490.325769][T14733] ? lockdep_init_map_type+0x16d/0x7d0 [ 490.327182][T14733] ? lockdep_init_map_type+0x16d/0x7d0 [ 490.328618][T14733] __lookup_slow+0x194/0x460 [ 490.329827][T14733] ? __pfx___lookup_slow+0x10/0x10 [ 490.331188][T14733] ? walk_component+0x342/0x5b0 [ 490.332945][T14733] ? lookup_fast+0x155/0x540 [ 490.334673][T14733] walk_component+0x350/0x5b0 [ 490.335998][T14733] link_path_walk.part.0.constprop.0+0x669/0xd40 [ 490.337657][T14733] path_parentat+0xaa/0x1b0 [ 490.338862][T14733] __filename_parentat+0x22d/0x680 [ 490.340199][T14733] ? __pfx___filename_parentat+0x10/0x10 [ 490.341683][T14733] ? __pfx___lock_acquire+0x10/0x10 [ 490.343207][T14733] ? trace_lock_acquire+0x14e/0x1f0 [ 490.344584][T14733] ? lock_acquire+0x2f/0xb0 [ 490.346112][T14733] ? __virt_addr_valid+0x1a4/0x590 [ 490.347691][T14733] do_rmdir+0xd8/0x410 [ 490.348779][T14733] ? __phys_addr_symbol+0x30/0x80 [ 490.350090][T14733] ? __pfx_do_rmdir+0x10/0x10 [ 490.351521][T14733] ? getname_flags.part.0+0x1c5/0x550 [ 490.353333][T14733] __ia32_sys_rmdir+0xc4/0x110 [ 490.354612][T14733] __do_fast_syscall_32+0x73/0x120 [ 490.356038][T14733] do_fast_syscall_32+0x32/0x80 [ 490.357368][T14733] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 490.359088][T14733] RIP: 0023:0xf7f48579 [ 490.360193][T14733] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 490.365295][T14733] RSP: 002b:00000000f50a557c EFLAGS: 00000292 ORIG_RAX: 0000000000000028 [ 490.367502][T14733] RAX: ffffffffffffffda RBX: 0000000020000380 RCX: 0000000000000000 [ 490.369611][T14733] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 490.371702][T14733] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 490.373844][T14733] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 490.376307][T14733] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 490.378723][T14733] [ 490.397652][T14736] Cannot find add_set index 0 as target [ 490.424787][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 490.443421][T14738] overlay: Unknown parameter 'permit_directio' [ 491.391959][T14752] siw: device registration error -23 [ 491.464794][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 491.676672][T14748] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 491.692456][T14755] 9pnet_virtio: no channels available for device syz [ 492.223716][T14759] bridge_slave_0: left allmulticast mode [ 492.226231][T14759] bridge_slave_0: left promiscuous mode [ 492.228175][T14759] bridge0: port 1(bridge_slave_0) entered disabled state [ 492.233577][T14759] bridge_slave_1: left allmulticast mode [ 492.235571][T14759] bridge_slave_1: left promiscuous mode [ 492.237401][T14759] bridge0: port 2(bridge_slave_1) entered disabled state [ 492.242377][T14759] bond0: (slave bond_slave_0): Releasing backup interface [ 492.246476][T14759] bond0: (slave bond_slave_1): Releasing backup interface [ 492.251528][T14759] team0: Port device team_slave_0 removed [ 492.257393][T14759] team0: Port device team_slave_1 removed [ 492.259563][T14759] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 492.265337][T14759] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 492.271970][T14759] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 492.275108][T14759] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 492.278119][T14759] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 492.281195][T14759] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 492.284847][ T63] usb 9-1: new high-speed USB device number 9 using dummy_hcd [ 492.289868][T14759] team0: Port device geneve0 removed [ 492.295192][T14763] team0: Mode changed to "broadcast" [ 492.323103][T14759] vlan0: entered promiscuous mode [ 492.427829][T14765] siw: device registration error -23 [ 492.436481][ T63] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 492.439348][ T63] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 492.442609][T14763] syzkaller0: entered promiscuous mode [ 492.444113][T14763] syzkaller0: entered allmulticast mode [ 492.447391][ T63] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 492.451472][ T1135] syzkaller0: tun_net_xmit 48 [ 492.453226][ T63] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 492.457630][ T63] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 492.466793][ T63] usb 9-1: config 0 descriptor?? [ 492.504741][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 492.526049][T14763] syzkaller0: tun_chr_ioctl cmd 1074025677 [ 492.527693][T14763] syzkaller0: Linktype set failed because interface is up [ 492.897405][ T63] plantronics 0003:047F:FFFF.0089: unknown main item tag 0x0 [ 492.899377][ T63] plantronics 0003:047F:FFFF.0089: unknown main item tag 0x0 [ 492.901299][ T63] plantronics 0003:047F:FFFF.0089: unknown main item tag 0x0 [ 492.903201][ T63] plantronics 0003:047F:FFFF.0089: unknown main item tag 0x0 [ 492.909447][ T63] plantronics 0003:047F:FFFF.0089: unknown main item tag 0x0 [ 492.915371][ T63] plantronics 0003:047F:FFFF.0089: unknown main item tag 0x0 [ 492.917311][ T63] plantronics 0003:047F:FFFF.0089: unknown main item tag 0x0 [ 492.919233][ T63] plantronics 0003:047F:FFFF.0089: unknown main item tag 0x0 [ 492.921149][ T63] plantronics 0003:047F:FFFF.0089: unknown main item tag 0x0 [ 492.923057][ T63] plantronics 0003:047F:FFFF.0089: unknown main item tag 0x0 [ 492.925227][ T63] plantronics 0003:047F:FFFF.0089: unknown main item tag 0x0 [ 492.927145][ T63] plantronics 0003:047F:FFFF.0089: unknown main item tag 0x0 [ 492.929067][ T63] plantronics 0003:047F:FFFF.0089: unknown main item tag 0x0 [ 492.930978][ T63] plantronics 0003:047F:FFFF.0089: unknown main item tag 0x0 [ 492.932896][ T63] plantronics 0003:047F:FFFF.0089: unknown main item tag 0x0 [ 492.935123][ T63] plantronics 0003:047F:FFFF.0089: No inputs registered, leaving [ 492.938290][ T63] plantronics 0003:047F:FFFF.0089: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 493.328941][T14776] siw: device registration error -23 [ 493.507779][T14772] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 493.534252][T14775] FAULT_INJECTION: forcing a failure. [ 493.534252][T14775] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 493.537823][T14775] CPU: 0 UID: 0 PID: 14775 Comm: syz.3.2168 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 [ 493.540724][T14775] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 493.543462][T14775] Call Trace: [ 493.544343][T14775] [ 493.545094][T14775] dump_stack_lvl+0x16c/0x1f0 [ 493.545783][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 493.546328][T14775] should_fail_ex+0x497/0x5b0 [ 493.546361][T14775] _copy_to_user+0x32/0xd0 [ 493.546378][T14775] simple_read_from_buffer+0xd0/0x160 [ 493.546390][T14775] proc_fail_nth_read+0x198/0x270 [ 493.546407][T14775] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 493.546425][T14775] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 493.546440][T14775] vfs_read+0x1df/0xbe0 [ 493.546453][T14775] ? __fget_files+0x1fc/0x3a0 [ 493.546466][T14775] ? __pfx___mutex_lock+0x10/0x10 [ 493.546479][T14775] ? __pfx_vfs_read+0x10/0x10 [ 493.546494][T14775] ? __fget_files+0x206/0x3a0 [ 493.546510][T14775] ksys_read+0x12b/0x250 [ 493.546521][T14775] ? __pfx_ksys_read+0x10/0x10 [ 493.546537][T14775] __do_fast_syscall_32+0x73/0x120 [ 493.546551][T14775] do_fast_syscall_32+0x32/0x80 [ 493.546571][T14775] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 493.546596][T14775] RIP: 0023:0xf7f88579 [ 493.546609][T14775] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 493.546624][T14775] RSP: 002b:00000000f50c45b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 493.577415][T14775] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f50c4620 [ 493.579484][T14775] RDX: 000000000000000f RSI: 00000000f740fff4 RDI: 0000000000000000 [ 493.581583][T14775] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 493.583851][T14775] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 493.586284][T14775] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 493.588381][T14775] [ 494.241537][T14757] usb 9-1: string descriptor 0 read error: -71 [ 494.265587][T14757] raw-gadget.1 gadget.4: fail, usb_ep_queue returned -108 [ 494.584835][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 495.006915][ T63] usb 9-1: USB disconnect, device number 9 [ 495.101688][T14803] Bluetooth: hci0: load_link_keys: expected 3 bytes, got 7 bytes [ 495.582862][T14809] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 495.624951][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 496.331293][T14817] 9pnet_virtio: no channels available for device syz [ 496.362241][T14817] FAULT_INJECTION: forcing a failure. [ 496.362241][T14817] name failslab, interval 1, probability 0, space 0, times 0 [ 496.368232][T14817] CPU: 0 UID: 0 PID: 14817 Comm: syz.2.2181 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 [ 496.370878][T14817] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 496.373601][T14817] Call Trace: [ 496.374538][T14817] [ 496.375351][T14817] dump_stack_lvl+0x16c/0x1f0 [ 496.376611][T14817] should_fail_ex+0x497/0x5b0 [ 496.377779][T14817] ? fs_reclaim_acquire+0xae/0x150 [ 496.379180][T14817] should_failslab+0xc2/0x120 [ 496.380874][T14817] __kmalloc_cache_noprof+0x68/0x420 [ 496.382237][T14817] ? _copy_from_user+0x59/0xd0 [ 496.383521][T14817] copy_mount_options+0x55/0x190 [ 496.384775][T14817] __ia32_sys_mount+0x1ad/0x310 [ 496.385960][T14817] ? __pfx___ia32_sys_mount+0x10/0x10 [ 496.387321][T14817] __do_fast_syscall_32+0x73/0x120 [ 496.388646][T14817] do_fast_syscall_32+0x32/0x80 [ 496.389825][T14817] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 496.391406][T14817] RIP: 0023:0xf7fb2579 [ 496.392471][T14817] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 496.397196][T14817] RSP: 002b:00000000f511557c EFLAGS: 00000292 ORIG_RAX: 0000000000000015 [ 496.399287][T14817] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000200000c0 [ 496.401748][T14817] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000a00 [ 496.404108][T14817] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 496.406689][T14817] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 496.408872][T14817] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 496.410984][T14817] [ 496.664779][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 497.179568][T14832] siw: device registration error -23 [ 497.704761][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 498.564853][ T30] usb 9-1: new high-speed USB device number 10 using dummy_hcd [ 498.714861][ T30] usb 9-1: Using ep0 maxpacket: 8 [ 498.717424][ T30] usb 9-1: config index 0 descriptor too short (expected 301, got 45) [ 498.719560][ T30] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 498.721926][ T30] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 498.724262][ T30] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 498.729700][ T30] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 498.732813][ T30] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 498.735488][ T30] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 498.744791][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 498.925970][T14859] all: renamed from lo [ 498.942343][ T30] usb 9-1: usb_control_msg returned -32 [ 498.943733][ T30] usbtmc 9-1:16.0: can't read capabilities [ 499.228873][T14876] netlink: 'syz.1.2201': attribute type 4 has an invalid length. [ 499.314771][T14881] usbtmc 9-1:16.0: usb_control_msg returned -32 [ 499.483190][T12076] usb 9-1: USB disconnect, device number 10 [ 499.784771][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 500.304781][ T63] usb 7-1: new high-speed USB device number 19 using dummy_hcd [ 500.480465][ T63] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 500.483359][ T63] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 500.486404][ T63] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 500.489321][ T63] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 500.494650][ T63] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 500.500414][ T63] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 500.504899][ T63] usb 7-1: Manufacturer: syz [ 500.511069][ T63] usb 7-1: config 0 descriptor?? [ 500.746443][ T1412] ieee802154 phy0 wpan0: encryption failed: -22 [ 500.748179][ T1412] ieee802154 phy1 wpan1: encryption failed: -22 [ 500.834751][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 500.920784][ T63] appleir 0003:05AC:8243.008A: item fetching failed at offset 0/1 [ 500.922977][ T63] appleir 0003:05AC:8243.008A: parse failed [ 500.924464][ T63] appleir 0003:05AC:8243.008A: probe with driver appleir failed with error -22 [ 501.125765][T12076] usb 7-1: USB disconnect, device number 19 [ 501.587490][T14933] : renamed from bond0 (while UP) [ 501.864769][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 501.914847][ T30] usb 7-1: new high-speed USB device number 20 using dummy_hcd [ 502.074815][ T30] usb 7-1: Using ep0 maxpacket: 32 [ 502.077755][ T30] usb 7-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config [ 502.081661][ T30] usb 7-1: New USB device found, idVendor=3344, idProduct=22f0, bcdDevice=ef.4d [ 502.084149][ T30] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 502.089942][ T30] usb 7-1: Product: syz [ 502.091006][ T30] usb 7-1: Manufacturer: syz [ 502.092171][ T30] usb 7-1: SerialNumber: syz [ 502.315265][ T30] usb 7-1: selecting invalid altsetting 1 [ 502.317498][ T30] LME2510(C): Firmware Status: 00 00 00 00 00 00 [ 502.317543][ T30] dvb_usb_lmedm04 7-1:2.0: probe with driver dvb_usb_lmedm04 failed with error -22 [ 502.326603][ T30] usb 7-1: USB disconnect, device number 20 [ 502.904806][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 503.344821][T13367] usb 9-1: new low-speed USB device number 11 using dummy_hcd [ 503.499789][T13367] usb 9-1: config 0 has an invalid interface number: 1 but max is 0 [ 503.501828][T13367] usb 9-1: config 0 has no interface number 0 [ 503.503347][T13367] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10 [ 503.506346][T13367] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8 [ 503.509323][T13367] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 503.511692][T13367] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 503.515376][T13367] usb 9-1: config 0 descriptor?? [ 503.517107][T14963] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 503.523267][T13367] iowarrior 9-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 503.727397][T13367] usb 9-1: USB disconnect, device number 11 [ 503.944775][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 504.260227][T14977] virtio-fs: tag <(null)> not found [ 504.268844][T14979] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2236'. [ 504.614765][T12076] usb 9-1: new high-speed USB device number 12 using dummy_hcd [ 504.766331][T12076] usb 9-1: config 0 has an invalid interface number: 98 but max is 0 [ 504.769178][T12076] usb 9-1: config 0 has an invalid descriptor of length 10, skipping remainder of the config [ 504.772792][T12076] usb 9-1: config 0 has no interface number 0 [ 504.775133][T12076] usb 9-1: config 0 interface 98 has no altsetting 0 [ 504.778610][T12076] usb 9-1: New USB device found, idVendor=1110, idProduct=9024, bcdDevice=db.24 [ 504.780929][T12076] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 504.782939][T12076] usb 9-1: Product: syz [ 504.783980][T12076] usb 9-1: Manufacturer: syz [ 504.785334][T12076] usb 9-1: SerialNumber: syz [ 504.787480][T12076] usb 9-1: config 0 descriptor?? [ 504.984847][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 504.996183][T12076] usb 9-1: [ueagle-atm] ADSL device founded vid (0X1110) pid (0X9024) Rev (0XDB24): Eagle II [ 505.087118][T15003] : renamed from bond0 (while UP) [ 505.625495][T12076] usb 9-1: reset high-speed USB device number 12 using dummy_hcd [ 505.786407][T12076] usb 9-1: device firmware changed [ 505.791441][T12076] usb 9-1: [ueagle-atm] pre-firmware device, uploading firmware [ 505.794489][T12076] usb 9-1: [ueagle-atm] loading firmware ueagle-atm/eagleII.fw [ 505.799772][T12076] usb 9-1: USB disconnect, device number 12 [ 505.803394][ T9] usb 9-1: Direct firmware load for ueagle-atm/eagleII.fw failed with error -2 [ 505.806662][ T9] usb 9-1: Falling back to sysfs fallback for: ueagle-atm/eagleII.fw [ 505.828802][ T9] firmware ueagle-atm!eagleII.fw: fw_load_sysfs_fallback: device_register failed [ 505.832174][ T9] usb 9-1: [UEAGLE-ATM] firmware is not available [ 505.858239][ T39] audit: type=1326 audit(1733278057.867:22531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.1.2249" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000 [ 505.866165][ T39] audit: type=1326 audit(1733278057.867:22532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.1.2249" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000 [ 505.873540][ T39] audit: type=1326 audit(1733278057.867:22533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.1.2249" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f48579 code=0x7ffc0000 [ 505.884757][ T39] audit: type=1326 audit(1733278057.867:22534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.1.2249" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000 [ 505.898462][ T39] audit: type=1326 audit(1733278057.867:22535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.1.2249" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000 [ 505.905756][ T39] audit: type=1326 audit(1733278057.867:22536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.1.2249" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f48579 code=0x7ffc0000 [ 505.912932][ T39] audit: type=1326 audit(1733278057.867:22537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.1.2249" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000 [ 505.920308][ T39] audit: type=1326 audit(1733278057.867:22538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.1.2249" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000 [ 505.927591][ T39] audit: type=1326 audit(1733278057.867:22539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.1.2249" exe="/syz-executor" sig=0 arch=40000003 syscall=330 compat=1 ip=0xf7f48579 code=0x7ffc0000 [ 505.934540][ T39] audit: type=1326 audit(1733278057.867:22540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15012 comm="syz.1.2249" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000 [ 505.944799][T12076] usb 9-1: new high-speed USB device number 13 using dummy_hcd [ 506.024788][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 506.096955][T12076] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 506.102644][T12076] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 506.105316][T12076] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 506.107658][T12076] usb 9-1: Product: syz [ 506.108771][T12076] usb 9-1: Manufacturer: syz [ 506.114342][T12076] usb 9-1: SerialNumber: syz [ 506.124045][T12076] usb 9-1: config 0 descriptor?? [ 506.362428][T12076] usb 9-1: USB disconnect, device number 13 [ 506.557057][ T8213] udevd[8213]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 507.064779][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 508.104769][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 508.166128][T15060] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 508.175030][T15060] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 509.130333][ T63] IPVS: starting estimator thread 0... [ 509.144793][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 509.214902][T15104] IPVS: using max 38 ests per chain, 91200 per kthread [ 509.271222][T15110] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2283'. [ 509.325776][T15113] bridge0: port 2(bridge_slave_1) entered disabled state [ 509.327627][T15113] bridge0: port 1(bridge_slave_0) entered disabled state [ 509.367430][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.369418][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.371516][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.373467][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.376619][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.380935][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.386083][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.388539][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.390490][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.392439][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.394474][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.398210][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.400210][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.402131][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.404005][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.406331][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.408281][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.410212][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.412151][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.414095][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.417000][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.418932][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.420759][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.422661][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.424504][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.428644][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.430509][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.432400][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.434242][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.438719][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.440597][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.442433][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.444192][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.448256][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.450051][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.451920][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.453757][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.456101][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.457975][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.459838][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.461619][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.463459][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.466924][T13367] hid-generic 0000:0000:0000.008B: unknown main item tag 0x0 [ 509.470218][T13367] hid-generic 0000:0000:0000.008B: hidraw1: HID v0.00 Device [syz0] on syz0 [ 509.472216][T15113] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 509.484837][T15113] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 509.557636][T15113] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 509.560230][T15113] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 509.562564][T15113] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 509.569039][T15113] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 509.575239][T15113] netdevsim netdevsim3 netdevsim0: left allmulticast mode [ 509.584635][T15113] sit1: left promiscuous mode [ 509.586052][T15113] sit1: left allmulticast mode [ 510.034795][T13367] usb 7-1: new high-speed USB device number 21 using dummy_hcd [ 510.194754][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 510.200409][T13367] usb 7-1: Using ep0 maxpacket: 32 [ 510.202894][T13367] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 510.205943][T13367] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 510.209032][T13367] usb 7-1: New USB device found, idVendor=058f, idProduct=9410, bcdDevice= 0.00 [ 510.211800][T13367] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 510.214815][T13367] usb 7-1: config 0 descriptor?? [ 511.224910][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 511.239657][T15152] kvm: apic: phys broadcast and lowest prio [ 511.682613][T13367] usbhid 7-1:0.0: can't add hid device: -71 [ 511.684374][T13367] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 511.687930][T13367] usb 7-1: USB disconnect, device number 21 [ 512.264821][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 512.298341][T12076] usb 9-1: new high-speed USB device number 14 using dummy_hcd [ 512.444796][T12076] usb 9-1: Using ep0 maxpacket: 32 [ 512.449246][T12076] usb 9-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f [ 512.451939][T12076] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 512.454941][T12076] usb 9-1: Product: syz [ 512.456454][T12076] usb 9-1: Manufacturer: syz [ 512.458112][T12076] usb 9-1: SerialNumber: syz [ 512.461268][T12076] usb 9-1: config 0 descriptor?? [ 512.465230][T12076] gspca_main: stk1135-2.14.0 probing 174f:6a31 [ 512.474948][ T63] usb 7-1: new high-speed USB device number 22 using dummy_hcd [ 512.594808][ T6077] usb 6-1: new high-speed USB device number 17 using dummy_hcd [ 512.624832][ T63] usb 7-1: Using ep0 maxpacket: 8 [ 512.628961][ T63] usb 7-1: New USB device found, idVendor=0c45, idProduct=613a, bcdDevice=c4.6d [ 512.631320][ T63] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 512.633383][ T63] usb 7-1: Product: syz [ 512.634472][ T63] usb 7-1: Manufacturer: syz [ 512.635746][ T63] usb 7-1: SerialNumber: syz [ 512.637856][ T63] usb 7-1: config 0 descriptor?? [ 512.640521][ T63] gspca_main: sonixj-2.14.0 probing 0c45:613a [ 512.744978][ T6077] usb 6-1: Using ep0 maxpacket: 8 [ 512.747554][ T6077] usb 6-1: config 0 has an invalid interface number: 38 but max is 0 [ 512.749686][ T6077] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 512.752225][ T6077] usb 6-1: config 0 has no interface number 0 [ 512.753863][ T6077] usb 6-1: config 0 interface 38 altsetting 0 bulk endpoint 0xE has invalid maxpacket 32 [ 512.756697][ T6077] usb 6-1: config 0 interface 38 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 512.759138][ T6077] usb 6-1: config 0 interface 38 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 7 [ 512.763982][ T6077] usb 6-1: New USB device found, idVendor=04cc, idProduct=2533, bcdDevice=4b.63 [ 512.766637][ T6077] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 512.768754][ T6077] usb 6-1: Product: syz [ 512.769881][ T6077] usb 6-1: Manufacturer: syz [ 512.771121][ T6077] usb 6-1: SerialNumber: syz [ 512.773627][ T6077] usb 6-1: config 0 descriptor?? [ 512.776407][T15177] raw-gadget.3 gadget.1: fail, usb_ep_enable returned -22 [ 512.779000][ T6077] pn533_usb 6-1:0.38: NFC: Could not find bulk-in or bulk-out endpoint [ 512.867774][T12076] gspca_stk1135: reg_w 0x0 err -71 [ 512.870171][T12076] gspca_stk1135: serial bus timeout: status=0x00 [ 512.871816][T12076] gspca_stk1135: Sensor write failed [ 512.873235][T12076] gspca_stk1135: serial bus timeout: status=0x00 [ 512.875013][T12076] gspca_stk1135: Sensor write failed [ 512.876438][T12076] gspca_stk1135: serial bus timeout: status=0x00 [ 512.878058][T12076] gspca_stk1135: Sensor read failed [ 512.879466][T12076] gspca_stk1135: serial bus timeout: status=0x00 [ 512.881195][T12076] gspca_stk1135: Sensor read failed [ 512.882551][T12076] gspca_stk1135: Detected sensor type unknown (0x0) [ 512.884222][T12076] gspca_stk1135: serial bus timeout: status=0x00 [ 512.885984][T12076] gspca_stk1135: Sensor read failed [ 512.887353][T12076] gspca_stk1135: serial bus timeout: status=0x00 [ 512.889026][T12076] gspca_stk1135: Sensor read failed [ 512.890388][T12076] gspca_stk1135: serial bus timeout: status=0x00 [ 512.892029][T12076] gspca_stk1135: Sensor write failed [ 512.893407][T12076] gspca_stk1135: serial bus timeout: status=0x00 [ 512.895120][T12076] gspca_stk1135: Sensor write failed [ 512.896575][T12076] stk1135 9-1:0.0: probe with driver stk1135 failed with error -71 [ 512.899229][T12076] usb 9-1: USB disconnect, device number 14 [ 513.304912][ C3] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 514.344757][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 514.658948][ T63] gspca_sonixj: reg_w1 err -71 [ 514.660251][ T63] sonixj 7-1:0.0: probe with driver sonixj failed with error -71 [ 514.663329][ T63] usb 7-1: USB disconnect, device number 22 [ 514.734387][T15195] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2309'. [ 514.737950][T15195] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2309'. [ 515.209887][T15205] netlink: 72 bytes leftover after parsing attributes in process `syz.4.2313'. [ 515.258781][ T5982] usb 6-1: USB disconnect, device number 17 [ 515.313574][T15213] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2312'. [ 515.384762][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 516.069765][T15231] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2321'. [ 516.402030][T15240] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 516.408138][T15240] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 516.412830][T15240] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 516.416456][T15240] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 516.419502][T15240] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 516.422026][T15240] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 516.434745][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 516.435994][ T5949] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 516.439859][ T5949] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 516.441959][ T5949] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 516.445353][ T5949] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 516.448419][ T5949] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 516.451319][ T5949] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 516.582160][T15239] chnl_net:caif_netlink_parms(): no params data found [ 516.651484][T15239] bridge0: port 1(bridge_slave_0) entered blocking state [ 516.653386][T15239] bridge0: port 1(bridge_slave_0) entered disabled state [ 516.655341][T15239] bridge_slave_0: entered allmulticast mode [ 516.657338][T15239] bridge_slave_0: entered promiscuous mode [ 516.661043][T15239] bridge0: port 2(bridge_slave_1) entered blocking state [ 516.663012][T15239] bridge0: port 2(bridge_slave_1) entered disabled state [ 516.665903][T15239] bridge_slave_1: entered allmulticast mode [ 516.668199][T15239] bridge_slave_1: entered promiscuous mode [ 516.690793][T15239] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 516.694398][T15239] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 516.722316][T15239] team0: Port device team_slave_0 added [ 516.727568][T15239] team0: Port device team_slave_1 added [ 516.749226][T15239] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 516.751736][T15239] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 516.759886][T15239] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 516.764086][T15239] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 516.766733][T15239] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 516.774439][T15239] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 516.802556][T15239] hsr_slave_0: entered promiscuous mode [ 516.804636][T15239] hsr_slave_1: entered promiscuous mode [ 516.806805][T15239] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 516.809882][T15239] Cannot create hsr debugfs directory [ 517.038074][T15239] netdevsim netdevsim1 netdevsim1 (unregistering): left allmulticast mode [ 517.246938][T15239] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 517.251813][T15239] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 517.257446][T15239] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 517.261864][T15239] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 517.267594][T15262] sch_fq: defrate 2 ignored. [ 517.284165][T15239] bridge0: port 2(bridge_slave_1) entered blocking state [ 517.286815][T15239] bridge0: port 2(bridge_slave_1) entered forwarding state [ 517.290660][T15239] bridge0: port 1(bridge_slave_0) entered blocking state [ 517.293260][T15239] bridge0: port 1(bridge_slave_0) entered forwarding state [ 517.326729][T15239] 8021q: adding VLAN 0 to HW filter on device bond0 [ 517.332537][T15239] 8021q: adding VLAN 0 to HW filter on device team0 [ 517.336801][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 517.340075][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 517.358409][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 517.360199][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 517.366198][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 517.368132][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 517.438789][T15239] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 517.455928][T15239] veth0_vlan: entered promiscuous mode [ 517.459709][T15239] veth1_vlan: entered promiscuous mode [ 517.464769][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 517.470166][T15239] veth0_macvtap: entered promiscuous mode [ 517.473344][T15239] veth1_macvtap: entered promiscuous mode [ 517.480537][T15239] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 517.483231][T15239] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 517.487086][T15239] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 517.489809][T15239] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 517.493343][T15239] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 517.496880][T15239] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 517.499628][T15239] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 517.502160][T15239] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 517.505314][T15239] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 517.508402][T15239] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 517.512609][T15239] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 517.514971][T15239] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 517.517227][T15239] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 517.519529][T15239] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 517.551962][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 517.556390][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 517.564555][ T1134] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 517.567030][ T1134] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 518.504799][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 518.505708][T15240] Bluetooth: hci4: command tx timeout [ 519.540789][T15312] IPv6: Can't replace route, no match found [ 519.544852][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 520.011563][T15325] netlink: 80 bytes leftover after parsing attributes in process `syz.2.2345'. [ 520.186030][T15330] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 520.187972][T15330] IPv6: NLM_F_CREATE should be set when creating new route [ 520.189861][T15330] IPv6: NLM_F_CREATE should be set when creating new route [ 520.192664][T15330] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 520.584757][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 520.594887][T15240] Bluetooth: hci4: command tx timeout [ 520.634779][ T5979] usb 9-1: new high-speed USB device number 15 using dummy_hcd [ 520.784921][ T5979] usb 9-1: Using ep0 maxpacket: 8 [ 520.788548][ T5979] usb 9-1: config 0 has an invalid interface number: 1 but max is 0 [ 520.791463][ T5979] usb 9-1: config 0 has no interface number 0 [ 520.793706][ T5979] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 520.798084][ T5979] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 520.800615][ T5979] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 520.809483][ T5979] usb 9-1: config 0 descriptor?? [ 520.813050][ T5979] iowarrior 9-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 520.816803][T15340] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2354'. [ 521.314806][ T5979] usb 6-1: new high-speed USB device number 18 using dummy_hcd [ 521.464809][ T5979] usb 6-1: Using ep0 maxpacket: 8 [ 521.472534][ T5979] usb 6-1: New USB device found, idVendor=04a5, idProduct=3003, bcdDevice=3a.b2 [ 521.475008][ T5979] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 521.477112][ T5979] usb 6-1: Product: syz [ 521.478304][ T5979] usb 6-1: Manufacturer: syz [ 521.479548][ T5979] usb 6-1: SerialNumber: syz [ 521.481879][ T5979] usb 6-1: config 0 descriptor?? [ 521.624781][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 521.689705][ T5979] gspca_main: sunplus-2.14.0 probing 04a5:3003 [ 522.036968][ T63] usb 9-1: USB disconnect, device number 15 [ 522.565464][T15371] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2366'. [ 522.664827][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 522.674850][T15240] Bluetooth: hci4: command tx timeout [ 523.131443][ T5979] gspca_sunplus: reg_r err -71 [ 523.132756][ T5979] sunplus 6-1:0.0: probe with driver sunplus failed with error -71 [ 523.145190][ T5979] usb 6-1: USB disconnect, device number 18 [ 523.220308][T15376] syz.3.2368 (15376): drop_caches: 2 [ 523.223645][T15376] syz.3.2368 (15376): drop_caches: 2 [ 523.640552][T15399] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2377'. [ 523.704783][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 523.836321][T15408] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 524.006208][T15408] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 524.110632][T15408] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 524.225986][T15408] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 524.339145][T15408] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 524.350547][T15408] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 524.361535][T15408] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 524.371769][T15408] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 524.744771][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 524.747318][T15240] Bluetooth: hci4: command tx timeout [ 525.025142][ T39] kauditd_printk_skb: 29 callbacks suppressed [ 525.025152][ T39] audit: type=1326 audit(1733278077.037:22570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15428 comm="syz.2.2385" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 525.035038][ T39] audit: type=1326 audit(1733278077.037:22571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15428 comm="syz.2.2385" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 525.040637][ T39] audit: type=1326 audit(1733278077.037:22572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15428 comm="syz.2.2385" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 525.050755][ T39] audit: type=1326 audit(1733278077.037:22573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15428 comm="syz.2.2385" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 525.056721][ T39] audit: type=1326 audit(1733278077.037:22574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15428 comm="syz.2.2385" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2579 code=0x7ffc0000 [ 525.059178][T15432] fuse: Unknown parameter '00000000000000000000' [ 525.470636][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.472649][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.474614][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.476768][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.478761][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.480732][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.482694][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.484670][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.487672][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.489727][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.491733][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.493773][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.495844][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.497886][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.499894][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.501830][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.503757][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.505785][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.507716][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.509724][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.511659][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.513592][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.515596][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.517577][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.519525][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.521522][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.523461][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.525467][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.527396][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.529343][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.531278][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.533228][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.535253][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.537182][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.539213][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.541147][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.543085][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.545065][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.552124][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.554080][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.556094][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.558953][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.562310][ T30] hid-generic 0000:0000:0000.008C: unknown main item tag 0x0 [ 525.572262][ T30] hid-generic 0000:0000:0000.008C: hidraw1: HID v0.00 Device [syz0] on syz0 [ 525.784793][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 526.220455][T15476] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2400'. [ 526.292086][T15480] fuse: Unknown parameter '00000000000000000000' [ 526.645919][T15494] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2407'. [ 526.824754][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 527.804245][T15526] usb usb8: usbfs: process 15526 (syz.2.2418) did not claim interface 0 before use [ 527.864761][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 528.477118][T15545] input: syz1 as /devices/virtual/input/input136 [ 528.634189][ T5949] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 528.639424][ T5949] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 528.644581][ T5949] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 528.647836][ T5949] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 528.650105][ T5949] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 528.652139][ T5949] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 528.713842][T15549] chnl_net:caif_netlink_parms(): no params data found [ 528.796447][T15549] bridge0: port 1(bridge_slave_0) entered blocking state [ 528.798288][T15549] bridge0: port 1(bridge_slave_0) entered disabled state [ 528.800177][T15549] bridge_slave_0: entered allmulticast mode [ 528.802154][T15549] bridge_slave_0: entered promiscuous mode [ 528.804555][T15549] bridge0: port 2(bridge_slave_1) entered blocking state [ 528.807229][T15549] bridge0: port 2(bridge_slave_1) entered disabled state [ 528.807694][T15563] netlink: 'syz.1.2429': attribute type 10 has an invalid length. [ 528.809093][T15549] bridge_slave_1: entered allmulticast mode [ 528.813092][T15549] bridge_slave_1: entered promiscuous mode [ 528.824535][T15563] bridge0: port 2(bridge_slave_1) entered disabled state [ 528.826590][T15563] bridge0: port 1(bridge_slave_0) entered disabled state [ 528.831029][T15563] bridge0: port 2(bridge_slave_1) entered blocking state [ 528.832892][T15563] bridge0: port 2(bridge_slave_1) entered forwarding state [ 528.834902][T15563] bridge0: port 1(bridge_slave_0) entered blocking state [ 528.836824][T15563] bridge0: port 1(bridge_slave_0) entered forwarding state [ 528.840048][T15563] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 528.847136][T15563] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2429'. [ 528.852308][T15563] bridge_slave_1: left allmulticast mode [ 528.853897][T15563] bridge_slave_1: left promiscuous mode [ 528.855748][T15563] bridge0: port 2(bridge_slave_1) entered disabled state [ 528.859450][T15563] bridge_slave_0: left allmulticast mode [ 528.860970][T15563] bridge_slave_0: left promiscuous mode [ 528.862516][T15563] bridge0: port 1(bridge_slave_0) entered disabled state [ 528.883753][T15563] bond0: (slave bridge0): Releasing backup interface [ 528.904818][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 528.959608][T15549] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 528.967847][T15549] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 529.003760][T15549] team0: Port device team_slave_0 added [ 529.009789][T15549] team0: Port device team_slave_1 added [ 529.053597][T15549] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 529.055574][T15549] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 529.062247][T15549] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 529.065150][T12076] usb 9-1: new high-speed USB device number 16 using dummy_hcd [ 529.066112][T15549] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 529.069623][T15549] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 529.076714][T15549] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 529.118724][T15549] hsr_slave_0: entered promiscuous mode [ 529.121800][T15549] hsr_slave_1: entered promiscuous mode [ 529.124498][T15549] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 529.127432][T15549] Cannot create hsr debugfs directory [ 529.234802][T12076] usb 9-1: Using ep0 maxpacket: 16 [ 529.237748][T12076] usb 9-1: config 0 has an invalid interface number: 26 but max is 0 [ 529.239908][T12076] usb 9-1: config 0 has no interface number 0 [ 529.244164][T12076] usb 9-1: New USB device found, idVendor=0130, idProduct=0130, bcdDevice=a7.1c [ 529.247378][T12076] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 529.249611][T12076] usb 9-1: Product: syz [ 529.250718][T12076] usb 9-1: Manufacturer: syz [ 529.251959][T12076] usb 9-1: SerialNumber: syz [ 529.254668][T12076] usb 9-1: config 0 descriptor?? [ 529.260176][T12076] gspca_main: spca508-2.14.0 probing 0130:0130 [ 529.461952][T12076] gspca_spca508: reg_read err -32 [ 529.463885][T12076] gspca_spca508: reg_read err -32 [ 529.571006][T15549] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 529.574092][T15549] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 529.577265][T15549] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 529.580484][T15549] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 529.605932][T15549] bridge0: port 2(bridge_slave_1) entered blocking state [ 529.607854][T15549] bridge0: port 2(bridge_slave_1) entered forwarding state [ 529.609799][T15549] bridge0: port 1(bridge_slave_0) entered blocking state [ 529.611670][T15549] bridge0: port 1(bridge_slave_0) entered forwarding state [ 529.645560][T15575] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 529.651105][T15549] 8021q: adding VLAN 0 to HW filter on device bond0 [ 529.661475][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 529.667494][T12076] gspca_spca508: reg_read err -71 [ 529.670261][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 529.674066][T12076] gspca_spca508: reg_read err -71 [ 529.676799][T12076] gspca_spca508: reg write: error -71 [ 529.681358][T12076] spca508 9-1:0.26: probe with driver spca508 failed with error -71 [ 529.693544][T12076] usb 9-1: USB disconnect, device number 16 [ 529.708019][T15549] 8021q: adding VLAN 0 to HW filter on device team0 [ 529.720863][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 529.723089][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 529.728395][ T1134] bridge0: port 2(bridge_slave_1) entered blocking state [ 529.730602][ T1134] bridge0: port 2(bridge_slave_1) entered forwarding state [ 529.784674][T15578] syz.1.2435 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 529.836204][T15549] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 529.851261][T15549] veth0_vlan: entered promiscuous mode [ 529.856063][T15549] veth1_vlan: entered promiscuous mode [ 529.865834][T15549] veth0_macvtap: entered promiscuous mode [ 529.869487][T15549] veth1_macvtap: entered promiscuous mode [ 529.874956][T15549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 529.878653][T15549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 529.881891][T15549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 529.884665][T15549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 529.887415][T15549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 529.890195][T15549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 529.893288][T15549] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 529.903557][T15549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 529.910513][T15549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 529.913726][T15549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 529.917242][T15549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 529.920476][T15549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 529.924010][T15549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 529.930549][T15549] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 529.935141][T15549] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 529.937742][T15549] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 529.944632][T15549] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 529.948800][T15549] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 529.954757][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 529.975632][ T1134] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 529.977819][ T1134] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 529.987214][ T1134] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 529.989269][ T1134] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 530.026519][T15589] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2426'. [ 530.028839][T15589] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2426'. [ 530.322948][T15605] bridge0: port 3(syz_tun) entered blocking state [ 530.329746][T15605] bridge0: port 3(syz_tun) entered disabled state [ 530.334157][T15605] syz_tun: entered allmulticast mode [ 530.340563][T15605] syz_tun: entered promiscuous mode [ 530.343930][T15605] bridge0: port 3(syz_tun) entered blocking state [ 530.345852][T15605] bridge0: port 3(syz_tun) entered forwarding state [ 530.361543][T15605] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2442'. [ 530.387331][T15605] bridge0: port 1(bridge_slave_0) entered disabled state [ 530.744935][T15240] Bluetooth: hci0: command tx timeout [ 530.984814][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 531.014792][T12076] usb 6-1: new high-speed USB device number 19 using dummy_hcd [ 531.166388][T12076] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 531.169870][T12076] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 531.173606][T12076] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 531.177148][T12076] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0 [ 531.180478][T12076] usb 6-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 531.186954][T12076] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice= 0.40 [ 531.189905][T12076] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 531.192511][T12076] usb 6-1: Product: syz [ 531.193902][T12076] usb 6-1: Manufacturer: syz [ 531.195721][T12076] usb 6-1: SerialNumber: syz [ 531.404557][T12076] cdc_ncm 6-1:1.0: bind() failure [ 531.406461][T12076] usbtest 6-1:1.0: Linux gadget zero [ 531.407872][T12076] usbtest 6-1:1.0: high-speed {control in/out int-in} tests (+alt) [ 531.411269][T12076] usbtest 6-1:1.1: couldn't get endpoints, -22 [ 531.412917][T12076] usbtest 6-1:1.1: probe with driver usbtest failed with error -22 [ 531.415477][T12076] usbhid 6-1:1.1: couldn't find an input interrupt endpoint [ 531.418071][T12076] usb 6-1: USB disconnect, device number 19 [ 531.684819][ T8861] usb 9-1: new high-speed USB device number 17 using dummy_hcd [ 531.854856][ T8861] usb 9-1: Using ep0 maxpacket: 8 [ 531.859223][ T8861] usb 9-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea [ 531.862054][ T8861] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 531.864596][ T8861] usb 9-1: Product: syz [ 531.866097][ T8861] usb 9-1: Manufacturer: syz [ 531.867786][ T8861] usb 9-1: SerialNumber: syz [ 531.871060][ T8861] usb 9-1: config 0 descriptor?? [ 532.024751][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 532.076695][ T8861] usb 9-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state [ 532.835143][T15240] Bluetooth: hci0: command tx timeout [ 533.064770][ C2] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 533.154848][ T30] usb 6-1: new high-speed USB device number 20 using dummy_hcd [ 533.315860][ T30] usb 6-1: Using ep0 maxpacket: 16 [ 533.325287][ T30] usb 6-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 533.327635][ T30] usb 6-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 533.329704][ T30] usb 6-1: Product: syz [ 533.330789][ T30] usb 6-1: Manufacturer: syz [ 533.331999][ T30] usb 6-1: SerialNumber: syz [ 533.334234][ T30] usb 6-1: config 0 descriptor?? [ 533.466073][ T5949] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 533.469200][ T5949] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 533.471856][ T5949] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 533.478237][ T5949] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 533.482459][ T5949] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 533.484637][ T5949] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 533.551122][T15660] chnl_net:caif_netlink_parms(): no params data found [ 533.585872][T15660] bridge0: port 1(bridge_slave_0) entered blocking state [ 533.587796][T15660] bridge0: port 1(bridge_slave_0) entered disabled state [ 533.589666][T15660] bridge_slave_0: entered allmulticast mode [ 533.591654][T15660] bridge_slave_0: entered promiscuous mode [ 533.594037][T15660] bridge0: port 2(bridge_slave_1) entered blocking state [ 533.596262][T15660] bridge0: port 2(bridge_slave_1) entered disabled state [ 533.598215][T15660] bridge_slave_1: entered allmulticast mode [ 533.600217][T15660] bridge_slave_1: entered promiscuous mode [ 533.620988][T15660] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 533.624426][T15660] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 533.648552][T15660] team0: Port device team_slave_0 added [ 533.652132][T15660] team0: Port device team_slave_1 added [ 533.669726][T15660] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 533.671533][T15660] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 533.678075][T15660] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 533.681487][T15660] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 533.683263][T15660] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 533.690701][T15660] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 533.698537][ T8861] dvb_usb_rtl28xxu 9-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71 [ 533.702988][ T8861] usb 9-1: USB disconnect, device number 17 [ 533.726124][T15660] hsr_slave_0: entered promiscuous mode [ 533.728111][T15660] hsr_slave_1: entered promiscuous mode [ 533.729941][T15660] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 533.732042][T15660] Cannot create hsr debugfs directory [ 534.083834][T15660] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 534.087709][T15660] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 534.090743][T15660] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 534.094609][T15660] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 534.103318][T15660] bridge0: port 2(bridge_slave_1) entered blocking state [ 534.105151][T15660] bridge0: port 2(bridge_slave_1) entered forwarding state [ 534.107041][T15660] bridge0: port 1(bridge_slave_0) entered blocking state [ 534.108885][T15660] bridge0: port 1(bridge_slave_0) entered forwarding state [ 534.138844][T15660] 8021q: adding VLAN 0 to HW filter on device bond0 [ 534.146671][ T1134] bridge0: port 1(bridge_slave_0) entered disabled state [ 534.149942][ T1134] bridge0: port 2(bridge_slave_1) entered disabled state [ 534.161023][T15660] 8021q: adding VLAN 0 to HW filter on device team0 [ 534.168189][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 534.170106][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 534.174077][ T1134] bridge0: port 2(bridge_slave_1) entered blocking state [ 534.176009][ T1134] bridge0: port 2(bridge_slave_1) entered forwarding state [ 534.254280][T15660] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 534.271240][T15660] veth0_vlan: entered promiscuous mode [ 534.276517][T15660] veth1_vlan: entered promiscuous mode [ 534.291011][T15660] veth0_macvtap: entered promiscuous mode [ 534.293859][T15660] veth1_macvtap: entered promiscuous mode [ 534.300945][T15660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 534.303629][T15660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 534.306866][T15660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 534.309584][T15660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 534.312079][T15660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 534.314880][T15660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 534.317421][T15660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 534.320115][T15660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 534.323516][T15660] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 534.357553][T15676] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 534.375693][T15660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 534.378489][T15660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 534.381030][T15660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 534.383707][T15660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 534.386440][T15660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 534.389163][T15660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 534.391704][T15660] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 534.394409][T15660] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 534.398186][T15660] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 534.403422][T15660] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 534.406027][T15660] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 534.408283][T15660] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 534.410911][T15660] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 534.453226][T15676] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 534.465458][ T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 534.467526][ T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 534.479039][ T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 534.481652][ T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 534.531354][T15676] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 534.611839][T15676] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 534.745243][T15676] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 534.765419][T15676] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 534.781313][T15676] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 534.789810][T15676] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 534.914776][T15240] Bluetooth: hci0: command tx timeout [ 535.238618][T15679] ================================================================== [ 535.241277][T15679] BUG: KASAN: vmalloc-out-of-bounds in push_insn_history+0x615/0x690 [ 535.243970][T15679] Write of size 4 at addr ffffc90002fda010 by task syz.2.2463/15679 [ 535.247932][T15679] [ 535.249076][T15679] CPU: 2 UID: 0 PID: 15679 Comm: syz.2.2463 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 [ 535.251852][T15679] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 535.254607][T15679] Call Trace: [ 535.255485][T15679] [ 535.256265][T15679] dump_stack_lvl+0x116/0x1f0 [ 535.257492][T15679] print_report+0xc3/0x620 [ 535.258673][T15679] ? __virt_addr_valid+0x5e/0x590 [ 535.260025][T15679] kasan_report+0xd9/0x110 [ 535.261192][T15679] ? push_insn_history+0x615/0x690 [ 535.262533][T15679] ? push_insn_history+0x615/0x690 [ 535.263883][T15679] push_insn_history+0x615/0x690 [ 535.265174][T15679] do_check_common+0xb78/0xd540 [ 535.266447][T15679] ? __pfx_mark_fastcall_pattern_for_call+0x10/0x10 [ 535.268173][T15679] ? __pfx_do_check_common+0x10/0x10 [ 535.269581][T15679] ? kvfree+0x47/0x50 [ 535.270619][T15679] ? check_cfg+0x403/0x840 [ 535.271792][T15679] bpf_check+0x77c2/0xc9b0 [ 535.272953][T15679] ? hlock_class+0x4e/0x130 [ 535.274137][T15679] ? __pfx_bpf_check+0x10/0x10 [ 535.275381][T15679] ? find_held_lock+0x2d/0x110 [ 535.276635][T15679] ? bpf_prog_load+0xd45/0x2670 [ 535.277898][T15679] ? __pfx_lock_release+0x10/0x10 [ 535.279211][T15679] ? trace_lock_acquire+0x14e/0x1f0 [ 535.280572][T15679] ? bpf_prog_load+0xd45/0x2670 [ 535.281832][T15679] ? lockdep_hardirqs_on+0x7c/0x110 [ 535.283174][T15679] ? read_tsc+0x9/0x20 [ 535.284242][T15679] ? ktime_get_with_offset+0x20f/0x3a0 [ 535.285652][T15679] ? bpf_obj_name_cpy+0x156/0x1b0 [ 535.286962][T15679] bpf_prog_load+0xe3f/0x2670 [ 535.288189][T15679] ? __pfx_bpf_prog_load+0x10/0x10 [ 535.289534][T15679] ? find_held_lock+0x2d/0x110 [ 535.290772][T15679] ? __might_fault+0x13b/0x190 [ 535.292019][T15679] ? __might_fault+0xe3/0x190 [ 535.293233][T15679] __sys_bpf+0x5677/0x57a0 [ 535.294384][T15679] ? __pfx___sys_bpf+0x10/0x10 [ 535.295610][T15679] ? __pfx_lock_release+0x10/0x10 [ 535.296921][T15679] ? do_futex+0x123/0x350 [ 535.298044][T15679] ? __pfx_do_futex+0x10/0x10 [ 535.299416][T15679] ? __pfx___ia32_sys_futex_time32+0x10/0x10 [ 535.301104][T15679] ? kcov_ioctl+0x265/0x730 [ 535.302278][T15679] __ia32_sys_bpf+0x76/0xe0 [ 535.303455][T15679] __do_fast_syscall_32+0x73/0x120 [ 535.304798][T15679] do_fast_syscall_32+0x32/0x80 [ 535.306063][T15679] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 535.307689][T15679] RIP: 0023:0xf7f00579 [ 535.308768][T15679] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 535.313726][T15679] RSP: 002b:00000000f508657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165 [ 535.315873][T15679] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000840 [ 535.317907][T15679] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000 [ 535.319991][T15679] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 535.322019][T15679] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 535.324062][T15679] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 535.326092][T15679] [ 535.326902][T15679] [ 535.327553][T15679] The buggy address belongs to the virtual mapping at [ 535.327553][T15679] [ffffc90002f5a000, ffffc90002fdc000) created by: [ 535.327553][T15679] kvrealloc_noprof+0xfc/0x150 [ 535.332042][T15679] [ 535.332665][T15679] The buggy address belongs to the physical page: [ 535.334309][T15679] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xefc48 pfn:0x5aa8b [ 535.336612][T15679] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff) [ 535.338467][T15679] raw: 04fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 535.340725][T15679] raw: 00000000000efc48 0000000000000000 00000001ffffffff 0000000000000000 [ 535.342907][T15679] page dumped because: kasan: bad access detected [ 535.344561][T15679] page_owner tracks the page as allocated [ 535.346008][T15679] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x102cc2(GFP_HIGHUSER|__GFP_NOWARN), pid 15679, tgid 15678 (syz.2.2463), ts 535238403572, free_ts 533530543082 [ 535.350397][T15679] post_alloc_hook+0x2d1/0x350 [ 535.351637][T15679] get_page_from_freelist+0xfce/0x2f80 [ 535.353046][T15679] __alloc_pages_noprof+0x6a6/0x25b0 [ 535.354408][T15679] alloc_pages_mpol_noprof+0x2c9/0x610 [ 535.355817][T15679] __vmalloc_node_range_noprof+0x724/0x1530 [ 535.357340][T15679] __kvmalloc_node_noprof+0x14f/0x1a0 [ 535.358739][T15679] kvrealloc_noprof+0xfc/0x150 [ 535.360054][T15679] push_insn_history+0x2ac/0x690 [ 535.361339][T15679] check_mem_access+0x4626/0x8860 [ 535.362634][T15679] do_check_common+0x4ce0/0xd540 [ 535.363918][T15679] bpf_check+0x77c2/0xc9b0 [ 535.365075][T15679] bpf_prog_load+0xe3f/0x2670 [ 535.366278][T15679] __sys_bpf+0x5677/0x57a0 [ 535.367423][T15679] __ia32_sys_bpf+0x76/0xe0 [ 535.368601][T15679] __do_fast_syscall_32+0x73/0x120 [ 535.369942][T15679] do_fast_syscall_32+0x32/0x80 [ 535.371210][T15679] page last free pid 64 tgid 64 stack trace: [ 535.372748][T15679] free_unref_page+0x661/0x1080 [ 535.374003][T15679] ringbuf_map_free+0xd7/0x130 [ 535.375235][T15679] bpf_map_free_deferred+0x1c2/0x400 [ 535.376605][T15679] process_one_work+0x958/0x1b30 [ 535.377882][T15679] worker_thread+0x6c8/0xf00 [ 535.379137][T15679] kthread+0x2c1/0x3a0 [ 535.380198][T15679] ret_from_fork+0x45/0x80 [ 535.381354][T15679] ret_from_fork_asm+0x1a/0x30 [ 535.382590][T15679] [ 535.383215][T15679] Memory state around the buggy address: [ 535.384662][T15679] ffffc90002fd9f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 535.386705][T15679] ffffc90002fd9f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 535.388767][T15679] >ffffc90002fda000: 00 00 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 535.390844][T15679] ^ [ 535.392010][T15679] ffffc90002fda080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 535.394075][T15679] ffffc90002fda100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 535.396163][T15679] ================================================================== SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 535.428501][T15679] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 535.430437][T15679] CPU: 3 UID: 0 PID: 15679 Comm: syz.2.2463 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 [ 535.433202][T15679] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 535.435969][T15679] Call Trace: [ 535.436845][T15679] [ 535.437623][T15679] dump_stack_lvl+0x3d/0x1f0 [ 535.438864][T15679] panic+0x71d/0x800 [ 535.439914][T15679] ? __pfx_panic+0x10/0x10 [ 535.441094][T15679] ? preempt_schedule_thunk+0x1a/0x30 [ 535.442512][T15679] ? preempt_schedule_common+0x44/0xc0 [ 535.443953][T15679] check_panic_on_warn+0xab/0xb0 [ 535.445268][T15679] end_report+0x117/0x180 [ 535.446409][T15679] kasan_report+0xe9/0x110 [ 535.447584][T15679] ? push_insn_history+0x615/0x690 [ 535.448935][T15679] ? push_insn_history+0x615/0x690 [ 535.450280][T15679] push_insn_history+0x615/0x690 [ 535.451586][T15679] do_check_common+0xb78/0xd540 [ 535.452885][T15679] ? __pfx_mark_fastcall_pattern_for_call+0x10/0x10 [ 535.454702][T15679] ? __pfx_do_check_common+0x10/0x10 [ 535.456102][T15679] ? kvfree+0x47/0x50 [ 535.457159][T15679] ? check_cfg+0x403/0x840 [ 535.458349][T15679] bpf_check+0x77c2/0xc9b0 [ 535.459527][T15679] ? hlock_class+0x4e/0x130 [ 535.460739][T15679] ? __pfx_bpf_check+0x10/0x10 [ 535.462002][T15679] ? find_held_lock+0x2d/0x110 [ 535.463266][T15679] ? bpf_prog_load+0xd45/0x2670 [ 535.464560][T15679] ? __pfx_lock_release+0x10/0x10 [ 535.465941][T15679] ? trace_lock_acquire+0x14e/0x1f0 [ 535.467309][T15679] ? bpf_prog_load+0xd45/0x2670 [ 535.468643][T15679] ? lockdep_hardirqs_on+0x7c/0x110 [ 535.469999][T15679] ? read_tsc+0x9/0x20 [ 535.471073][T15679] ? ktime_get_with_offset+0x20f/0x3a0 [ 535.472500][T15679] ? bpf_obj_name_cpy+0x156/0x1b0 [ 535.473819][T15679] bpf_prog_load+0xe3f/0x2670 [ 535.475058][T15679] ? __pfx_bpf_prog_load+0x10/0x10 [ 535.476493][T15679] ? find_held_lock+0x2d/0x110 [ 535.477756][T15679] ? __might_fault+0x13b/0x190 [ 535.479026][T15679] ? __might_fault+0xe3/0x190 [ 535.480278][T15679] __sys_bpf+0x5677/0x57a0 [ 535.481450][T15679] ? __pfx___sys_bpf+0x10/0x10 [ 535.482754][T15679] ? __pfx_lock_release+0x10/0x10 [ 535.484120][T15679] ? do_futex+0x123/0x350 [ 535.485267][T15679] ? __pfx_do_futex+0x10/0x10 [ 535.486503][T15679] ? __pfx___ia32_sys_futex_time32+0x10/0x10 [ 535.488081][T15679] ? kcov_ioctl+0x265/0x730 [ 535.489273][T15679] __ia32_sys_bpf+0x76/0xe0 [ 535.490466][T15679] __do_fast_syscall_32+0x73/0x120 [ 535.491812][T15679] do_fast_syscall_32+0x32/0x80 [ 535.493089][T15679] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 535.494743][T15679] RIP: 0023:0xf7f00579 [ 535.495824][T15679] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 535.500820][T15679] RSP: 002b:00000000f508657c EFLAGS: 00000292 ORIG_RAX: 0000000000000165 [ 535.502982][T15679] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000840 [ 535.505044][T15679] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000 [ 535.507104][T15679] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 535.509169][T15679] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 535.511222][T15679] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 535.513299][T15679] [ 535.514559][T15679] Kernel Offset: disabled [ 535.515697][T15679] Rebooting in 86400 seconds.. VM DIAGNOSIS: 02:08:07 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=0000000000000001 RCX=1ffff9200020ddf7 RDX=ffff88801f9ac880 RSI=ffffffff81e948b2 RDI=0000000000000005 RBP=ffffea00004cbd00 RSP=ffffc9000106ef58 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000002 R12=ffff88801e7dc3e0 R13=0000000000000000 R14=0000000000000000 R15=ffffea00004cbd00 RIP=ffffffff81e948b7 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b400000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000002e9e3ffc CR3=000000006a3c6000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000006000000000 0000000100000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001fc00000000 0000000500000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=dffffc0000000000 RBX=0000000000037f68 RCX=ffffffff81763879 RDX=1ffffffff1b0557d RSI=ffffffff8bb13640 RDI=ffffffff8d82abe8 RBP=0000000000000001 RSP=ffffc9000047faa8 R8 =0000000000000000 R9 =fffffbfff2039632 R10=ffffffff901cb197 R11=0000000000000000 R12=ffff88802b52ca18 R13=0000000000000086 R14=0000000000000000 R15=0000000100005b7a RIP=ffffffff817f0bf1 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b500000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020048000 CR3=000000006a3c6000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000006000000000 0000000100000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001fc00000000 0000000500000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff85153290 RDI=ffffffff9a6682c0 RBP=ffffffff9a668280 RSP=ffffc90003ebef60 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3030303963666657 R12=0000000000000000 R13=0000000000000060 R14=fffffbfff34cd0aa R15=dffffc0000000000 RIP=ffffffff851532b7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000002001d000 CR3=000000005a526000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000007000000000 0000000200000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000922405 RBX=0000000000000003 RCX=ffffffff8b1ab889 RDX=0000000000000000 RSI=ffffffff8b4cd0e0 RDI=ffffffff8bb136c0 RBP=ffffed10036ef488 RSP=ffffc9000049fe08 R8 =0000000000000001 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000000 R12=0000000000000003 R13=ffff88801b77a440 R14=ffffffff901cb190 R15=0000000000000000 RIP=ffffffff8b1acc6f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000002001f000 CR3=000000004e2f8000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000