last executing test programs: 1m3.660309069s ago: executing program 1 (id=2052): r0 = epoll_create1(0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/wakeup_count', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0)={0xe000001d}) read$char_usb(r1, &(0x7f0000000100)=""/169, 0xa9) epoll_pwait(r0, &(0x7f0000000200)=[{}], 0x1, 0x0, 0x0, 0x0) 1m3.59047714s ago: executing program 1 (id=2055): mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0]) mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040)) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x1}}, './file0\x00'}) 1m3.517755305s ago: executing program 1 (id=2057): r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_PMK(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="98000000", @ANYRES16=r2, @ANYBLOB="01002dbd7000fcdbdf257b00000008000300", @ANYRES32=r3], 0x98}, 0x1, 0x0, 0x0, 0x4041}, 0x4000800) 1m3.514509264s ago: executing program 1 (id=2060): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000000)='binfmt_misc\x00', 0xc00, 0x0) chroot(&(0x7f0000000100)='./file0\x00') mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0) pivot_root(&(0x7f0000007b00)='./file0/../file0\x00', &(0x7f0000000280)='./file0\x00') 1m3.439204588s ago: executing program 1 (id=2061): r0 = userfaultfd(0x801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1}) ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}}) madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x4) 59.670734701s ago: executing program 1 (id=2098): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000080)=0x7, 0x4) syz_emit_ethernet(0x46, &(0x7f00000002c0)={@local, @random="fad1e048716e", @void, {@ipv4={0x800, @udp={{0xc, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@timestamp_addr={0x44, 0x1c, 0xa, 0x1, 0x8, [{@multicast2, 0x96}, {@private=0xa010100, 0x7}, {@dev={0xac, 0x14, 0x14, 0x20}, 0x8}]}]}}, {0x0, 0x4e20, 0x8}}}}}, 0x0) recvmmsg(r0, &(0x7f0000001980)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0) 59.60302354s ago: executing program 32 (id=2098): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000080)=0x7, 0x4) syz_emit_ethernet(0x46, &(0x7f00000002c0)={@local, @random="fad1e048716e", @void, {@ipv4={0x800, @udp={{0xc, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@timestamp_addr={0x44, 0x1c, 0xa, 0x1, 0x8, [{@multicast2, 0x96}, {@private=0xa010100, 0x7}, {@dev={0xac, 0x14, 0x14, 0x20}, 0x8}]}]}}, {0x0, 0x4e20, 0x8}}}}}, 0x0) recvmmsg(r0, &(0x7f0000001980)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0) 7.45565158s ago: executing program 3 (id=3235): r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) r2 = openat$cgroup_pressure(r1, &(0x7f0000002500)='io.pressure\x00', 0x2, 0x0) write$cgroup_pressure(r2, &(0x7f0000000040)={'full', 0x20, 0x2, 0x20, 0x7}, 0x2f) writev(r2, &(0x7f0000002480)=[{&(0x7f00000021c0)="aab090", 0x3}], 0x1) 7.388419668s ago: executing program 3 (id=3238): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f000905", @ANYRES16], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x22, 0xf, {[@local=@item_4={0x3, 0x2, 0x0, "2e2b5aa4"}, @local=@item_4={0x3, 0x2, 0x0, "f85edaca"}, @main=@item_4={0x3, 0x0, 0x8}]}}, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0) ioctl$HIDIOCGFIELDINFO(r1, 0xc038480a, &(0x7f0000000040)={0x1, 0x100, 0xf, 0x856a, 0x7, 0x5, 0x5, 0xfec, 0x8, 0x8, 0xfffff8a7, 0x7fffffff, 0xfffffff9, 0x8}) socket$inet6_udp(0xa, 0x2, 0x0) 4.329949095s ago: executing program 3 (id=3275): madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$poke(0x5, r0, &(0x7f0000000080), 0x0) 4.267017492s ago: executing program 3 (id=3278): mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x4, 0x3032, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x40980, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r0, 0x400455c8, 0x4) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000019080)=0x30) 2.625834805s ago: executing program 4 (id=3294): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000002300), 0x80802, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000240)={0x1, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000080)="0f20e06635800000000f22e066b9f508000066b882730000d1dc66b8d0a700000f23c00f21f8663501000d000f23f83e0fb082ff000f8401dfbaf80cf30fc7708fbafc0ced66b97e02000066b88a46723166ba8794bd590f300f01c50fff3cf466b80b00000066ef", 0x68}], 0x1, 0x49, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2.542114387s ago: executing program 4 (id=3297): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = socket(0x10, 0x803, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff3}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000200)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0xc, 0x4}, {}, {0xb, 0x9}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_HASH={0x8, 0x2, 0x2}]}}]}, 0x38}}, 0x20040054) 2.354231614s ago: executing program 4 (id=3302): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000200)={0x0, 0x22, 0xf, {[@global=@item_012={0x0, 0x1, 0xa}, @local=@item_4={0x3, 0x2, 0x2, "45501821"}, @global=@item_012={0x1, 0x1, 0x9, "f5"}, @global=@item_012={0x1, 0x1, 0x7, "84"}, @main=@item_4={0x3, 0x0, 0xb, "9e3ce0b2"}]}}, 0x0}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000780)={0x44, &(0x7f0000000300)={0x40, 0x6, 0x1, "bc"}, &(0x7f0000000380)={0x0, 0xa, 0x1, 0x4}, 0x0, 0x0, 0x0, &(0x7f0000000480)={0x40, 0x7, 0x2, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0) ioctl$HIDIOCGREPORT(r1, 0x400c4807, &(0x7f0000000040)={0x3, 0x100, 0x7}) 2.299445035s ago: executing program 0 (id=3303): timer_create(0x3, 0x0, &(0x7f0000044000)=0x0) timer_create(0x3, 0x0, &(0x7f0000044000)=0x0) timer_settime(r1, 0x1, &(0x7f0000040fe0)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) rt_sigprocmask(0x0, &(0x7f0000000040)={[0xfffffffffffffffb]}, 0x0, 0x8) timer_settime(r0, 0x1, &(0x7f0000040fe0)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) 2.299128755s ago: executing program 0 (id=3304): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$uinput_user_dev(r0, &(0x7f0000000080)={'syz0\x00', {}, 0x0, [0x80000000, 0x3, 0x3ff, 0x8, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x8, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xf5b1, 0xffffffff, 0x10000000, 0x99, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x8, 0x0, 0x0, 0x0, 0x4, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfffffffe, 0x0, 0x0, 0x1], [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xedc0, 0x0, 0x5ee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0000000, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffff8, 0x3, 0x0, 0x2000079, 0x400, 0x0, 0x0, 0x10000, 0x40000, 0x0, 0xc0800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdd, 0x0, 0x81, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x4771], [0x0, 0x7f, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffff, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x4000, 0x6, 0x0, 0x0, 0x0, 0x0, 0x200000, 0xdac7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0xfffffffc, 0x4], [0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, 0x0, 0x0, 0x0, 0x3, 0xfffffffc, 0x4, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, 0x7ff, 0xfffffffd, 0x1, 0x0, 0x8001, 0x80, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffe, 0x4, 0x0, 0x0, 0x0, 0xffffffff]}, 0x45c) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x5) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002100)='/proc/bus/input/devices\x00', 0x0, 0x0) read$FUSE(r1, &(0x7f0000002300)={0x2020}, 0xfcdd) 2.263421852s ago: executing program 0 (id=3306): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0) fcntl$lock(r0, 0x25, &(0x7f0000000000)={0x1}) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0) fcntl$lock(r1, 0x7, &(0x7f0000000380)={0x0, 0x2, 0x2000008, 0xffffffffffffffff}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0) fcntl$lock(r2, 0x26, &(0x7f0000000140)={0x0, 0x0, 0x2000007, 0x1}) 2.178969435s ago: executing program 3 (id=3308): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000300)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000001c0), 0x4) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000000)=@gcm_256={{0x303}, "56d4b8644126cd52", "47762ed4bdf0b0c49726627601ecccf0933591424a2f9b647e3a4a89ae88bd24", "8766e3b8", "e29f82ce64a42703"}, 0x38) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000c00)=@ccm_128={{0x304, 0x33}, "e371a5e6bee100", "a52c04ebffff7ba94ab06f060400001c", "45e67da3", "ebee76f27293fe23"}, 0x28) 2.116144098s ago: executing program 3 (id=3310): syz_usb_connect$uac1(0x3, 0xb1, &(0x7f00000003c0)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902"], 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @broadcast}) write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500561308005400000060ec970001983a00fc000018c6ba35000000000000000700ff02000000000000000000000000000100000000000000cc00000000000000000000000000000000860090780000000000000000000000000000ee3f000000002b036f8c006e64021d683910c3090b3188a7c747eb2278a273c1b80029442911892704"], 0xfdef) 2.11575292s ago: executing program 2 (id=3311): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x118) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000001c0)={'syzkaller1\x00', @broadcast}) write$tun(r0, &(0x7f0000001400)=ANY=[@ANYBLOB='\x00\x00\x00\f'], 0x152) 1.998491556s ago: executing program 2 (id=3312): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000010000507000000000004000000000000", @ANYRES32=r2, @ANYBLOB="00000016010000001800120008000100736974000c0002000800030036"], 0x38}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=@newlink={0x30, 0x10, 0x439, 0x70bd2c, 0xffffffea, {0x0, 0x0, 0xe403, r2, 0x40083}, [@IFLA_LINKINFO={0x10, 0x12, 0x0, 0x1, @sit={{0x8}, {0x4}}}]}, 0x30}, 0x1, 0x0, 0x0, 0x8000}, 0x4040) 1.953729181s ago: executing program 2 (id=3313): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f00000003c0)='cgroup.procs\x00', 0x2, 0x0) preadv(r1, &(0x7f0000002880)=[{&(0x7f0000000b80)=""/92, 0x5c}], 0x1, 0xa2e1, 0xc) r2 = openat$cgroup_procs(r0, &(0x7f0000000080)='tasks\x00', 0x2, 0x0) preadv(r2, &(0x7f00000039c0)=[{&(0x7f0000000140)=""/142, 0x8e}], 0x1, 0x4, 0x3) 1.864322912s ago: executing program 2 (id=3314): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x77, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='cdg\x00', 0x3) sendmmsg$inet(r0, &(0x7f0000001100)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000c40)="5c5eafd3ae55a73702d6befaee97f47f4be65587e1fca708cee084691e4587d887a5eaab43ac5edc4886496910cd7a153cd84b93208c7b1a625b3ea990092389b19dab4f61e30ee60a4d7e51ffc9a5accbe20844356dd0ce1925", 0x5a}, {&(0x7f0000000800)="104b0b7073fbd7f77a847bdbfdf6da474f70", 0x12}], 0x2}}, {{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000a80)="353a35d6094e4e", 0x7}], 0x1}}, {{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000640)="252caf3a209539dd4482324da34840047e322d094abd47ba796c5909ccd4e0046bb1cecbad790873c1e322ec988526e2dde59e7ff8a900c525297eea9df0d0bf652b6c78f435436a6ea7fef2d9effe14ba9d43db9cc558c50b7957a51d7e5bdec3a04a8df3113927462bd0027d86c1cc9fa13a3092e8bb88406aba1359947e1e77921c434c50461a14c4181a2dbb29e3509889c98bea7706731524d4384eba2975aef35f", 0xa4}], 0x1}}], 0x3, 0x0) 1.860752297s ago: executing program 2 (id=3315): capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7}) bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6) io_setup(0x8f0, &(0x7f0000002400)=0x0) io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r0, &(0x7f0000000180)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}]) 1.679856101s ago: executing program 2 (id=3316): r0 = syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040)) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0) r2 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc) ioctl$SNDRV_PCM_IOCTL_RESET(r2, 0x4141, 0x0) 1.379801631s ago: executing program 0 (id=3317): r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) write$qrtrtun(r0, &(0x7f0000000340)="66bb0b760dc0f4ff", 0x8) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], &(0x7f0000000240)=[0x2], 0x0, 0x9}}, 0x40) 1.338513815s ago: executing program 0 (id=3318): r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) setns(r1, 0x24020000) r2 = syz_clone(0x16040000, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = syz_pidfd_open(r2, 0x0) setns(r3, 0x40000000) 1.220080317s ago: executing program 0 (id=3319): r0 = syz_usb_connect(0x2, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0x4f, 0x8f, 0xc6, 0x10, 0x1608, 0x306, 0xa311, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x8, 0x4, 0x60, 0x1, [{{0x9, 0x4, 0x3c, 0xe, 0x0, 0x40, 0x34, 0x19, 0x3}}]}}]}}, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0}) syz_usb_disconnect(r0) ioctl$SG_BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0) r1 = syz_usb_connect$lan78xx(0x4, 0x3f, &(0x7f00000012c0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0x424, 0x7850, 0x0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d}}]}}, 0x0) syz_usb_control_io$lan78xx(r1, 0x0, 0x0) syz_usb_control_io$rtl8150(r0, 0x0, 0x0) 163.158496ms ago: executing program 4 (id=3320): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) socket$netlink(0x10, 0x3, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000002, 0xe, 0xfffffffffffffda9, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 80.746623ms ago: executing program 4 (id=3321): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(blowfish)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5", 0x4) r1 = accept4(r0, 0x0, 0x0, 0x80800) sendmsg$can_j1939(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)="0da3", 0x2}, 0x1, 0x0, 0x0, 0x44000}, 0x48800) sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x18}, 0x1, 0x0, 0x0, 0x44010}, 0x4004011) 0s ago: executing program 4 (id=3322): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts-aes-aesni\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="adcd1a9a3fc36e961ed00fe41b0cd695", 0x20) r1 = accept4$alg(r0, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f0000000b00)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000001080)=""/4096, 0x1000}], 0x1}, 0x40}], 0x1, 0x102, 0x0) write(r1, &(0x7f0000002200)="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", 0x1000) kernel console output (not intermixed with test programs): 0 (unregistering): Released all slaves [ 98.334658][ T24] usb 6-1: Using ep0 maxpacket: 16 [ 98.338135][ T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 98.341297][ T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 98.344213][ T24] usb 6-1: New USB device found, idVendor=0458, idProduct=5012, bcdDevice= 0.00 [ 98.351391][ T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 98.360798][ T24] usb 6-1: config 0 descriptor?? [ 98.442734][ T9360] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.469951][ T9360] veth0_vlan: entered promiscuous mode [ 98.475380][ T9360] veth1_vlan: entered promiscuous mode [ 98.496218][ T9360] veth0_macvtap: entered promiscuous mode [ 98.501627][ T9360] veth1_macvtap: entered promiscuous mode [ 98.513863][ T9360] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 98.521591][ T9360] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 98.528274][ T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.531147][ T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.536372][ T91] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.539321][ T91] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.604505][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.607100][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.622114][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.624755][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 98.656994][ T61] veth1_macvtap: left promiscuous mode [ 98.658909][ T61] veth0_macvtap: left promiscuous mode [ 98.660616][ T61] veth1_vlan: left promiscuous mode [ 98.662267][ T61] veth0_vlan: left promiscuous mode [ 98.797965][ T24] input: HID 0458:5012 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:0458:5012.0004/input/input7 [ 98.885408][ T24] input: HID 0458:5012 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:0458:5012.0004/input/input8 [ 98.936223][ T5333] Bluetooth: hci1: command tx timeout [ 98.966800][ T24] kye 0003:0458:5012.0004: input,hiddev1,hidraw2: USB HID v0.09 Device [HID 0458:5012] on usb-dummy_hcd.1-1/input0 [ 98.988222][ T24] usb 6-1: USB disconnect, device number 5 [ 99.021689][ T9420] fido_id[9420]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb6/6-1/report_descriptor': No such file or directory [ 99.266435][ T61] team0 (unregistering): Port device team_slave_1 removed [ 99.318200][ T61] team0 (unregistering): Port device team_slave_0 removed [ 99.756600][ T9431] TCP: TCP_TX_DELAY enabled [ 100.004290][ T40] audit: type=1400 audit(1757887673.370:399): avc: denied { ioctl } for pid=9450 comm="syz.1.1514" path="socket:[27007]" dev="sockfs" ino=27007 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 100.135290][ T9461] bridge0: port 2(bridge_slave_1) entered disabled state [ 100.137796][ T9461] bridge0: port 1(bridge_slave_0) entered disabled state [ 100.199030][ T9461] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 100.206005][ T9461] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 100.302033][ T1143] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 100.305394][ T10] usb 5-1: USB disconnect, device number 4 [ 100.306357][ T1143] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 100.311564][ T1143] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 100.314787][ T1143] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 100.400539][ T9470] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1523'. [ 100.403850][ T9470] netlink: 'syz.1.1523': attribute type 7 has an invalid length. [ 100.407182][ T9470] netlink: 'syz.1.1523': attribute type 8 has an invalid length. [ 100.410000][ T9470] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1523'. [ 100.416936][ T9468] block nbd3: NBD_DISCONNECT [ 100.417305][ T9470] gretap0: entered promiscuous mode [ 100.419413][ T9467] block nbd3: Disconnected due to user request. [ 100.421119][ T9470] batadv_slave_1: entered promiscuous mode [ 100.423068][ T9467] block nbd3: shutting down sockets [ 100.428085][ T9470] gretap0: left promiscuous mode [ 100.430215][ T9470] batadv_slave_1: left promiscuous mode [ 100.625157][ T9483] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1529'. [ 100.785508][ T5981] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 100.974011][ T40] audit: type=1400 audit(1757887674.340:400): avc: denied { create } for pid=9516 comm="syz.3.1545" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 100.980860][ T40] audit: type=1400 audit(1757887674.350:401): avc: denied { mounton } for pid=9516 comm="syz.3.1545" path="/23/file0" dev="tmpfs" ino=134 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 101.017460][ T5981] Bluetooth: hci1: command tx timeout [ 101.069565][ T9526] input: syz1 as /devices/virtual/input/input9 [ 101.075517][ T10] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 101.223563][ T9537] netlink: 212376 bytes leftover after parsing attributes in process `syz.3.1554'. [ 101.235156][ T10] usb 6-1: Using ep0 maxpacket: 8 [ 101.239413][ T10] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 101.243996][ T10] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 101.248275][ T10] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 101.251453][ T10] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 101.255697][ T10] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 101.258658][ T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 101.478589][ T10] usb 6-1: GET_CAPABILITIES returned 0 [ 101.480376][ T10] usbtmc 6-1:16.0: can't read capabilities [ 101.522339][ T9566] sysfs: cannot create duplicate filename '/class/ieee80211/!' [ 101.526419][ T9566] CPU: 0 UID: 0 PID: 9566 Comm: syz.0.1562 Not tainted syzkaller #0 PREEMPT(full) [ 101.526435][ T9566] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 101.526443][ T9566] Call Trace: [ 101.526447][ T9566] [ 101.526451][ T9566] dump_stack_lvl+0x16c/0x1f0 [ 101.526493][ T9566] sysfs_warn_dup+0x7f/0xa0 [ 101.526520][ T9566] sysfs_do_create_link_sd+0x124/0x140 [ 101.526542][ T9566] sysfs_create_link+0x61/0xc0 [ 101.526563][ T9566] device_add+0x62c/0x1aa0 [ 101.526592][ T9566] ? __pfx_device_add+0x10/0x10 [ 101.526616][ T9566] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 101.526641][ T9566] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 101.526660][ T9566] wiphy_register+0x1df4/0x29f0 [ 101.526674][ T9566] ? netdev_run_todo+0x864/0x1320 [ 101.526689][ T9566] ? __dev_printk+0x1d0/0x270 [ 101.526705][ T9566] ? __pfx_wiphy_register+0x10/0x10 [ 101.526726][ T9566] ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0 [ 101.526744][ T9566] ieee80211_register_hw+0x2546/0x4120 [ 101.526766][ T9566] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 101.526783][ T9566] ? find_held_lock+0x2b/0x80 [ 101.526797][ T9566] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 101.526810][ T9566] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 101.526823][ T9566] ? __hrtimer_setup+0x176/0x280 [ 101.526837][ T9566] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 101.526861][ T9566] ? trace_kmalloc+0x2b/0xd0 [ 101.526874][ T9566] ? __kmalloc_node_track_caller_noprof+0x23e/0x510 [ 101.526886][ T9566] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 101.526903][ T9566] ? hwsim_new_radio_nl+0xa0e/0x12c0 [ 101.526920][ T9566] ? __asan_memcpy+0x3c/0x60 [ 101.526939][ T9566] hwsim_new_radio_nl+0xb51/0x12c0 [ 101.526957][ T9566] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 101.526978][ T9566] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 101.527002][ T9566] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 101.527025][ T9566] genl_family_rcv_msg_doit+0x206/0x2f0 [ 101.527044][ T9566] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 101.527068][ T9566] ? bpf_lsm_capable+0x9/0x10 [ 101.527084][ T9566] ? security_capable+0x7e/0x260 [ 101.527100][ T9566] ? ns_capable+0xd7/0x110 [ 101.527114][ T9566] genl_rcv_msg+0x55c/0x800 [ 101.527132][ T9566] ? __pfx_genl_rcv_msg+0x10/0x10 [ 101.527148][ T9566] ? lockdep_unlock+0x64/0xe0 [ 101.527161][ T9566] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 101.527183][ T9566] netlink_rcv_skb+0x158/0x420 [ 101.527198][ T9566] ? __pfx_genl_rcv_msg+0x10/0x10 [ 101.527215][ T9566] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 101.527236][ T9566] ? netlink_deliver_tap+0x1ae/0xd30 [ 101.527248][ T9566] ? selinux_netlink_send+0x578/0x830 [ 101.527263][ T9566] ? is_vmalloc_addr+0x86/0xa0 [ 101.527275][ T9566] genl_rcv+0x28/0x40 [ 101.527289][ T9566] netlink_unicast+0x5a7/0x870 [ 101.527307][ T9566] ? __pfx_netlink_unicast+0x10/0x10 [ 101.527321][ T9566] ? __asan_memset+0x23/0x50 [ 101.527337][ T9566] ? __build_skb_around+0x278/0x3b0 [ 101.527351][ T9566] netlink_sendmsg+0x8d1/0xdd0 [ 101.527368][ T9566] ? __pfx_netlink_sendmsg+0x10/0x10 [ 101.527383][ T9566] ? trace_contention_end+0xdd/0x130 [ 101.527397][ T9566] sock_sendmsg+0x3cc/0x470 [ 101.527415][ T9566] ? __pfx_sock_sendmsg+0x10/0x10 [ 101.527441][ T9566] splice_to_socket+0xaf6/0x1110 [ 101.527462][ T9566] ? __pfx_splice_to_socket+0x10/0x10 [ 101.527480][ T9566] ? inode_has_perm+0x16f/0x1d0 [ 101.527506][ T9566] ? bpf_lsm_file_permission+0x9/0x10 [ 101.527520][ T9566] ? security_file_permission+0x71/0x210 [ 101.527537][ T9566] ? rw_verify_area+0xcf/0x6c0 [ 101.527554][ T9566] ? __pfx_splice_to_socket+0x10/0x10 [ 101.527567][ T9566] do_splice+0x1478/0x1fc0 [ 101.527579][ T9566] ? __lock_acquire+0x62e/0x1ce0 [ 101.527600][ T9566] ? __pfx_do_splice+0x10/0x10 [ 101.527610][ T9566] ? __pfx_pipe_clear_nowait+0x10/0x10 [ 101.527622][ T9566] ? find_held_lock+0x2b/0x80 [ 101.527636][ T9566] __do_splice+0x32a/0x360 [ 101.527654][ T9566] ? __pfx___do_splice+0x10/0x10 [ 101.527677][ T9566] __x64_sys_splice+0x187/0x250 [ 101.527698][ T9566] do_syscall_64+0xcd/0x4e0 [ 101.527736][ T9566] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 101.527755][ T9566] RIP: 0033:0x7fbfbed8eba9 [ 101.527768][ T9566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 101.527780][ T9566] RSP: 002b:00007fbfbfca0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 101.527790][ T9566] RAX: ffffffffffffffda RBX: 00007fbfbefd6090 RCX: 00007fbfbed8eba9 [ 101.527796][ T9566] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003 [ 101.527803][ T9566] RBP: 00007fbfbee11e19 R08: 000000000004ffe6 R09: 0000000000000000 [ 101.527809][ T9566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 101.527815][ T9566] R13: 00007fbfbefd6128 R14: 00007fbfbefd6090 R15: 00007fffc3e97ab8 [ 101.527830][ T9566] [ 101.683120][ C0] vkms_vblank_simulate: vblank timer overrun [ 101.691913][ T1340] usb 6-1: USB disconnect, device number 6 [ 102.277517][ T9608] Bluetooth: hci4: Frame reassembly failed (-84) [ 102.280596][ T12] Bluetooth: hci4: Frame reassembly failed (-84) [ 102.539495][ T9635] netlink: 5 bytes leftover after parsing attributes in process `syz.2.1592'. [ 102.632941][ T9642] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1596'. [ 102.675544][ T9648] Bluetooth: MGMT ver 1.23 [ 102.863490][ T9671] netlink: 92 bytes leftover after parsing attributes in process `syz.0.1610'. [ 103.105382][ T5333] Bluetooth: hci1: command tx timeout [ 103.148455][ T40] audit: type=1400 audit(1757887676.520:402): avc: denied { getopt } for pid=9692 comm="syz.2.1620" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 103.244889][ T5669] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 104.297146][ T5333] Bluetooth: hci4: command 0xfc11 tx timeout [ 104.298440][ T5981] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 104.339384][ T9716] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.423061][ T9716] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.427156][ T40] audit: type=1400 audit(1757887677.800:403): avc: denied { add_name } for pid=9724 comm="syz.1.1633" name="memory.events" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 104.436407][ T40] audit: type=1400 audit(1757887677.800:404): avc: denied { create } for pid=9724 comm="syz.1.1633" name="memory.events" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 104.444241][ T40] audit: type=1400 audit(1757887677.800:405): avc: denied { associate } for pid=9724 comm="syz.1.1633" name="memory.events" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 104.453112][ T40] audit: type=1400 audit(1757887677.800:406): avc: denied { read append open } for pid=9724 comm="syz.1.1633" path="/374/file0/memory.events" dev="9p" ino=71827751 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 104.519708][ T9716] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.600094][ T9716] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.675592][ T61] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.684843][ T61] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.692438][ T61] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.702175][ T61] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.785013][ T9734] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1636'. [ 104.931627][ T9740] netlink: 'syz.2.1639': attribute type 4 has an invalid length. [ 104.942342][ T9740] netlink: 'syz.2.1639': attribute type 4 has an invalid length. [ 105.174462][ T5981] Bluetooth: hci1: command tx timeout [ 105.614524][ T7138] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 105.624533][ T5669] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 105.764384][ T7138] usb 5-1: Using ep0 maxpacket: 8 [ 105.767477][ T7138] usb 5-1: config 0 interface 0 has no altsetting 0 [ 105.769917][ T7138] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 105.773205][ T7138] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 105.778068][ T7138] usb 5-1: config 0 descriptor?? [ 105.788431][ T5669] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 105.792065][ T5669] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 105.795463][ T5669] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 105.798486][ T5669] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 105.803221][ T9768] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 105.807907][ T5669] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 105.914766][ T1340] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 106.051567][ T9] usb 7-1: USB disconnect, device number 7 [ 106.064884][ T1340] usb 6-1: Using ep0 maxpacket: 8 [ 106.068724][ T1340] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 106.073276][ T1340] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 106.077325][ T1340] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 106.080390][ T1340] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 106.084759][ T1340] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 106.087569][ T1340] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 106.188370][ T7138] mcp2221 0003:04D8:00DD.0005: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0 [ 106.297138][ T1340] usb 6-1: GET_CAPABILITIES returned 0 [ 106.298848][ T1340] usbtmc 6-1:16.0: can't read capabilities [ 106.390595][ T1340] usb 5-1: USB disconnect, device number 5 [ 106.505236][ T6038] usb 6-1: USB disconnect, device number 7 [ 106.990759][ T9833] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1678'. [ 107.350721][ T9866] netlink: 212376 bytes leftover after parsing attributes in process `syz.3.1693'. [ 107.414830][ T7138] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 107.469481][ T40] audit: type=1400 audit(1757887680.840:407): avc: denied { map } for pid=9871 comm="syz.3.1696" path="socket:[27525]" dev="sockfs" ino=27525 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1 [ 107.576692][ T7138] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 107.580748][ T7138] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 107.584409][ T7138] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 107.587635][ T7138] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 107.591624][ T7138] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 107.594693][ T7138] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 107.598301][ T7138] usb 6-1: config 0 descriptor?? [ 107.645823][ T40] audit: type=1400 audit(1757887681.020:408): avc: denied { associate } for pid=9881 comm="syz.3.1699" name="file0" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 107.652607][ T40] audit: type=1400 audit(1757887681.020:409): avc: denied { lock } for pid=9881 comm="syz.3.1699" path="/70/file0/file0" dev="9p" ino=71827675 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 108.010684][ T7138] plantronics 0003:047F:FFFF.0006: ignoring exceeding usage max [ 108.021185][ T7138] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw2: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 108.278999][ T40] audit: type=1400 audit(1757887681.650:410): avc: denied { create } for pid=9909 comm="syz.0.1711" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 108.279199][ T9912] o2cb: This node has not been configured. [ 108.291460][ T9912] o2cb: Cluster check failed. Fix errors before retrying. [ 108.294494][ T9912] (syz.0.1711,9912,3):user_dlm_register:674 ERROR: status = -22 [ 108.298790][ T9912] (syz.0.1711,9912,3):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file0" [ 109.024450][ T60] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 109.174593][ T60] usb 5-1: Using ep0 maxpacket: 32 [ 109.181281][ T9943] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.1725'. [ 109.187946][ T60] usb 5-1: unable to get BOS descriptor or descriptor too short [ 109.191595][ T60] usb 5-1: unable to read config index 0 descriptor/start: -71 [ 109.194531][ T60] usb 5-1: can't read configurations, error -71 [ 109.990168][ T40] audit: type=1400 audit(1757887683.360:411): avc: denied { bind } for pid=9955 comm="syz.1.1731" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 110.034409][ T60] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 110.078656][ T5669] usb 6-1: USB disconnect, device number 8 [ 110.195194][ T60] usb 5-1: Using ep0 maxpacket: 8 [ 110.198047][ T60] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 110.200553][ T60] usb 5-1: config 0 has no interface number 0 [ 110.202462][ T60] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 110.206036][ T60] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 110.208886][ T60] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 110.212586][ T60] usb 5-1: config 0 descriptor?? [ 110.217078][ T60] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 110.418071][ T60] usb 5-1: USB disconnect, device number 7 [ 110.998815][ T9975] @: renamed from vlan0 [ 111.038500][ T9984] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1745'. [ 111.041495][ T9984] netlink: 'syz.2.1745': attribute type 21 has an invalid length. [ 111.286332][ T40] audit: type=1400 audit(1757887684.660:412): avc: denied { bind } for pid=10000 comm="syz.0.1753" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 111.394459][ T60] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 111.404117][T10022] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1763'. [ 111.545962][ T60] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 111.550597][ T60] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 111.556048][ T60] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 111.559375][ T60] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 111.564265][ T60] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 111.568286][ T60] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 111.575796][ T60] usb 6-1: config 0 descriptor?? [ 111.611445][T10045] netlink: 212376 bytes leftover after parsing attributes in process `syz.3.1774'. [ 111.691349][T10055] veth0_vlan: left promiscuous mode [ 112.001355][ T60] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 112.015263][ T60] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw2: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 112.165634][T10108] netlink: 'syz.2.1803': attribute type 29 has an invalid length. [ 112.169460][T10108] netlink: 'syz.2.1803': attribute type 29 has an invalid length. [ 112.173041][T10108] netlink: 500 bytes leftover after parsing attributes in process `syz.2.1803'. [ 112.258212][ T1462] usb 6-1: USB disconnect, device number 9 [ 112.296072][ T40] audit: type=1400 audit(1757887685.670:413): avc: denied { setattr } for pid=10121 comm="syz.3.1811" name="/" dev="9p" ino=71827673 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 112.394470][ T54] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 112.400001][ T40] audit: type=1400 audit(1757887685.770:414): avc: denied { mount } for pid=10125 comm="syz.3.1813" name="/" dev="autofs" ino=29214 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1 [ 112.412858][ T40] audit: type=1400 audit(1757887685.780:415): avc: denied { unmount } for pid=9360 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1 [ 112.545897][ T54] usb 5-1: Using ep0 maxpacket: 8 [ 112.549294][ T54] usb 5-1: config 0 interface 0 has no altsetting 0 [ 112.552140][ T54] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 112.556372][ T54] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 112.562302][ T54] usb 5-1: config 0 descriptor?? [ 112.690980][ T40] audit: type=1400 audit(1757887686.060:416): avc: denied { watch } for pid=10141 comm="syz.3.1820" path="/108/net_prio.prioidx" dev="tmpfs" ino=570 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 112.701076][ T40] audit: type=1400 audit(1757887686.060:417): avc: denied { watch_sb watch_reads } for pid=10141 comm="syz.3.1820" path="/108/net_prio.prioidx" dev="tmpfs" ino=570 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 112.773857][T10146] 9pnet: p9_errstr2errno: server reported unknown error 00000000000000000004 [ 112.973529][ T54] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x0 [ 112.975944][ T54] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x0 [ 112.978234][ T54] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x0 [ 112.980527][ T54] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x0 [ 112.982799][ T54] mcp2221 0003:04D8:00DD.0008: unknown main item tag 0x0 [ 112.986740][ T54] mcp2221 0003:04D8:00DD.0008: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0 [ 113.016163][ T40] audit: type=1400 audit(1757887686.390:418): avc: denied { read } for pid=10155 comm="syz.1.1827" name="msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 113.023889][ T40] audit: type=1400 audit(1757887686.390:419): avc: denied { open } for pid=10155 comm="syz.1.1827" path="/dev/cpu/0/msr" dev="devtmpfs" ino=87 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 113.171082][ T1340] usb 5-1: USB disconnect, device number 8 [ 113.249341][ T40] audit: type=1400 audit(1757887686.620:420): avc: denied { ioctl } for pid=10165 comm="syz.2.1830" path="socket:[28642]" dev="sockfs" ino=28642 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 113.675908][ T40] audit: type=1400 audit(1757887687.050:421): avc: denied { nosuid_transition } for pid=10191 comm="syz.1.1839" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process2 permissive=1 [ 113.684015][ T40] audit: type=1400 audit(1757887687.050:422): avc: denied { transition } for pid=10191 comm="syz.1.1839" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=2059 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process permissive=1 [ 113.697473][ T40] audit: type=1400 audit(1757887687.050:423): avc: denied { entrypoint } for pid=10191 comm="syz.1.1839" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=2059 scontext=system_u:object_r:hugetlbfs_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 113.707948][ T40] audit: type=1400 audit(1757887687.050:424): avc: denied { share } for pid=10191 comm="syz.1.1839" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process permissive=1 [ 113.714953][ T40] audit: type=1400 audit(1757887687.050:425): avc: denied { noatsecure } for pid=10191 comm="syz.1.1839" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process permissive=1 [ 113.729036][T10197] netlink: 'syz.1.1841': attribute type 2 has an invalid length. [ 113.732194][T10197] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.1841'. [ 113.737399][T10197] nbd: must specify a device to reconfigure [ 113.855743][T10209] kernel profiling enabled (shift: 6) [ 113.975056][T10221] netlink: 'syz.0.1852': attribute type 2 has an invalid length. [ 113.978231][T10221] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.1852'. [ 113.982078][T10221] nbd: must specify a device to reconfigure [ 114.104801][T10233] input: syz0 as /devices/virtual/input/input11 [ 114.385163][T10260] syzkaller1: entered promiscuous mode [ 114.387051][T10260] syzkaller1: entered allmulticast mode [ 114.425832][T10263] syzkaller1: entered promiscuous mode [ 114.427838][T10263] syzkaller1: entered allmulticast mode [ 114.437778][T10264] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 114.437778][T10264] The task syz.1.1868 (10264) triggered the difference, watch for misbehavior. [ 114.621787][T10271] mmap: syz.3.1875 (10271): VmData 29077504 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 114.791048][T10286] kernel read not supported for file /file1 (pid: 10286 comm: syz.0.1882) [ 115.073662][T10300] overlay: filesystem on ./bus is read-only [ 115.204426][ T54] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 115.364411][ T54] usb 5-1: Using ep0 maxpacket: 8 [ 115.368166][ T54] usb 5-1: config 0 interface 0 has no altsetting 0 [ 115.370814][ T54] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 115.374702][ T54] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 115.380962][ T54] usb 5-1: config 0 descriptor?? [ 115.704423][ T1462] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 115.793666][ T54] mcp2221 0003:04D8:00DD.0009: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0 [ 115.816512][T10337] netlink: 'syz.3.1903': attribute type 2 has an invalid length. [ 115.819862][T10337] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1903'. [ 115.826647][T10337] nbd: must specify a device to reconfigure [ 115.864447][ T1462] usb 7-1: Using ep0 maxpacket: 8 [ 115.868211][ T1462] usb 7-1: config 0 interface 0 has no altsetting 0 [ 115.870528][ T1462] usb 7-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 115.873545][ T1462] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 115.877900][ T1462] usb 7-1: config 0 descriptor?? [ 115.998950][ T54] usb 5-1: USB disconnect, device number 9 [ 116.032474][T10353] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1909'. [ 116.200533][ T5981] Bluetooth: hci1: Invalid handle: 0x8000 > 0x0eff [ 116.290442][ T1462] mcp2221 0003:04D8:00DD.000A: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0 [ 116.488532][ T1462] usb 7-1: USB disconnect, device number 8 [ 116.669647][T10403] netlink: 212376 bytes leftover after parsing attributes in process `syz.3.1932'. [ 116.707821][T10405] pim6reg1: entered promiscuous mode [ 116.709554][T10405] pim6reg1: entered allmulticast mode [ 116.774411][ T6038] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 116.935788][T10421] netlink: 'syz.3.1941': attribute type 10 has an invalid length. [ 116.936154][ T6038] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 116.938243][T10421] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1941'. [ 116.941502][ T6038] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 116.941522][ T6038] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 116.941548][ T6038] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 116.944584][T10421] dummy0: entered promiscuous mode [ 116.948257][ T6038] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.953830][ T6038] usb 5-1: config 0 descriptor?? [ 116.960371][T10421] bridge0: port 3(dummy0) entered blocking state [ 116.966308][T10421] bridge0: port 3(dummy0) entered disabled state [ 116.968455][T10421] dummy0: entered allmulticast mode [ 117.073188][T10433] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 117.074738][T10429] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 117.206302][T10427] netlink: 'syz.3.1944': attribute type 13 has an invalid length. [ 117.209004][T10427] netlink: 'syz.3.1944': attribute type 17 has an invalid length. [ 117.216129][T10427] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 117.383422][ T6038] plantronics 0003:047F:FFFF.000B: hiddev0,hidraw2: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 117.401516][T10456] ======================================================= [ 117.401516][T10456] WARNING: The mand mount option has been deprecated and [ 117.401516][T10456] and is ignored by this kernel. Remove the mand [ 117.401516][T10456] option from the mount to silence this warning. [ 117.401516][T10456] ======================================================= [ 117.503257][T10464] netlink: 'syz.3.1958': attribute type 29 has an invalid length. [ 117.509316][T10464] netlink: 'syz.3.1958': attribute type 29 has an invalid length. [ 117.513233][T10464] netlink: 500 bytes leftover after parsing attributes in process `syz.3.1958'. [ 117.517206][T10464] unsupported nla_type 58 [ 117.590410][T10468] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1961'. [ 117.593305][T10468] netlink: 'syz.3.1961': attribute type 30 has an invalid length. [ 117.602102][ T1143] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 117.605571][ T1143] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 117.608345][ T1143] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 117.611340][ T1143] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 117.633348][T10471] vxlan1: entered promiscuous mode [ 117.636170][T10471] vxlan1: entered allmulticast mode [ 118.539924][ T40] kauditd_printk_skb: 15 callbacks suppressed [ 118.539935][ T40] audit: type=1400 audit(1757887691.910:441): avc: denied { create } for pid=10494 comm="syz.1.1973" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 119.098062][T10518] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1982'. [ 119.269663][T10530] unknown channel width for channel at 909000KHz? [ 119.289570][T10532] tap0: tun_chr_ioctl cmd 1074025675 [ 119.292655][T10532] tap0: persist enabled [ 119.296126][T10532] tap0: tun_chr_ioctl cmd 1074025675 [ 119.298463][T10532] tap0: persist disabled [ 119.388349][ T40] audit: type=1400 audit(1757887693.756:442): avc: denied { getopt } for pid=10537 comm="syz.1.1993" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 119.430774][ T40] audit: type=1400 audit(1757887693.796:443): avc: denied { remount } for pid=10542 comm="syz.0.1995" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1 [ 119.486718][ T9] usb 5-1: USB disconnect, device number 10 [ 119.667945][T10564] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2003'. [ 120.196438][T10612] netlink: 360 bytes leftover after parsing attributes in process `syz.1.2026'. [ 120.241955][T10617] syzkaller1: entered promiscuous mode [ 120.244146][T10617] syzkaller1: entered allmulticast mode [ 120.306138][T10625] netlink: 348 bytes leftover after parsing attributes in process `syz.3.2031'. [ 120.588690][T10645] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 120.681360][T10645] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 120.759225][T10645] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 120.822587][T10645] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 120.905213][ T91] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.915365][ T91] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.926954][ T91] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 120.938415][ T91] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 121.199828][T10683] overlayfs: only single ':' or double '::' sequences of unescaped colons in lowerdir mount option allowed. [ 121.204874][T10684] netlink: 124 bytes leftover after parsing attributes in process `syz.1.2057'. [ 122.216035][ T40] audit: type=1400 audit(1757887696.586:444): avc: denied { setopt } for pid=10703 comm="syz.3.2067" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 122.223949][ T40] audit: type=1400 audit(1757887696.586:445): avc: denied { ioctl } for pid=10703 comm="syz.3.2067" path="socket:[32492]" dev="sockfs" ino=32492 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 122.250107][T10706] netlink: 'syz.3.2068': attribute type 39 has an invalid length. [ 122.424842][T10712] syzkaller1: entered promiscuous mode [ 122.427158][T10712] syzkaller1: entered allmulticast mode [ 122.642538][T10723] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 122.840079][T10729] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 123.371821][ T40] audit: type=1326 audit(1757887697.736:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10742 comm="syz.0.2085" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbfbed8eba9 code=0x0 [ 124.229130][T10749] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.2087'. [ 124.262796][T10751] macvlan2: entered promiscuous mode [ 124.265093][T10751] macvlan2: entered allmulticast mode [ 124.267399][T10751] veth1_vlan: entered allmulticast mode [ 124.271199][T10751] bond0: (slave macvlan2): Enslaving as an active interface with an up link [ 124.573852][ T40] audit: type=1400 audit(1757887698.936:447): avc: denied { write } for pid=10761 comm="syz.0.2093" name="uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 125.041712][ T12] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 125.121686][ T12] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 125.179083][ T12] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 125.259312][ T12] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 125.303509][ T5333] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 125.308511][ T5333] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 125.311685][ T5333] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 125.317739][ T5333] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 125.320879][ T5333] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 125.442883][ T12] bridge_slave_1: left allmulticast mode [ 125.444770][ T12] bridge_slave_1: left promiscuous mode [ 125.446569][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 125.455785][ T12] bridge_slave_0: left allmulticast mode [ 125.457785][ T12] bridge_slave_0: left promiscuous mode [ 125.461162][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 125.685226][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 125.691197][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 125.697783][ T12] bond0 (unregistering): (slave batadv_slave_0): Releasing backup interface [ 125.702042][ T12] bond0 (unregistering): Released all slaves [ 125.709015][ T12] bond1 (unregistering): Released all slaves [ 125.723154][T10774] chnl_net:caif_netlink_parms(): no params data found [ 125.728806][T10784] netlink: 830 bytes leftover after parsing attributes in process `syz.0.2101'. [ 125.837223][ T12] IPVS: stopping backup sync thread 7293 ... [ 125.837677][ T40] audit: type=1400 audit(1757887700.206:448): avc: denied { remove_name } for pid=10790 comm="syz.0.2103" name="file1" dev="9p" ino=71827677 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 125.850155][ T40] audit: type=1400 audit(1757887700.206:449): avc: denied { unlink } for pid=10790 comm="syz.0.2103" name="file1" dev="9p" ino=71827677 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 125.858163][ T40] audit: type=1400 audit(1757887700.206:450): avc: denied { link } for pid=10790 comm="syz.0.2103" name="file0" dev="9p" ino=71827675 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 125.862851][T10774] bridge0: port 1(bridge_slave_0) entered blocking state [ 125.869416][T10774] bridge0: port 1(bridge_slave_0) entered disabled state [ 125.872149][T10774] bridge_slave_0: entered allmulticast mode [ 125.876320][T10774] bridge_slave_0: entered promiscuous mode [ 125.910679][T10774] bridge0: port 2(bridge_slave_1) entered blocking state [ 125.913671][T10774] bridge0: port 2(bridge_slave_1) entered disabled state [ 125.917259][T10774] bridge_slave_1: entered allmulticast mode [ 125.921340][T10774] bridge_slave_1: entered promiscuous mode [ 125.973714][T10774] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 125.982857][T10774] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 126.046257][T10774] team0: Port device team_slave_0 added [ 126.050680][T10774] team0: Port device team_slave_1 added [ 126.074458][T10806] tun0: tun_chr_ioctl cmd 1074025675 [ 126.076997][T10806] tun0: persist enabled [ 126.080010][T10806] tun0: tun_chr_ioctl cmd 1074025675 [ 126.082529][T10806] tun0: persist enabled [ 126.111823][ T12] hsr_slave_0: left promiscuous mode [ 126.116359][ T12] hsr_slave_1: left promiscuous mode [ 126.118516][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 126.121191][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 126.147092][ T12] veth1_to_batadv: left promiscuous mode [ 126.149319][ T12] veth1_macvtap: left promiscuous mode [ 126.151124][ T12] veth0_macvtap: left promiscuous mode [ 126.154566][ T12] veth1_vlan: left promiscuous mode [ 126.156579][ T12] veth0_vlan: left promiscuous mode [ 126.866893][ T12] team0 (unregistering): Port device team_slave_1 removed [ 126.926535][ T12] team0 (unregistering): Port device team_slave_0 removed [ 127.388739][T10774] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 127.391119][T10774] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 127.399567][T10774] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 127.404873][T10774] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 127.407850][T10774] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 127.419314][T10774] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 127.424738][ T5981] Bluetooth: hci0: command tx timeout [ 127.435646][T10817] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2113'. [ 127.523021][T10774] hsr_slave_0: entered promiscuous mode [ 127.527539][T10774] hsr_slave_1: entered promiscuous mode [ 127.529962][T10774] debugfs: 'hsr0' already exists in 'hsr' [ 127.531939][T10774] Cannot create hsr debugfs directory [ 127.706643][T10774] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 127.711368][T10774] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 127.717513][T10774] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 127.722121][T10774] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 127.741822][ T12] IPVS: stop unused estimator thread 0... [ 127.778988][T10774] 8021q: adding VLAN 0 to HW filter on device bond0 [ 127.792861][T10774] 8021q: adding VLAN 0 to HW filter on device team0 [ 127.799640][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 127.802252][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 127.812698][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 127.815101][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 127.884436][ T1462] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 127.960440][T10774] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 128.054374][ T1462] usb 7-1: Using ep0 maxpacket: 16 [ 128.061365][ T1462] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 128.066112][ T1462] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 128.069535][ T1462] usb 7-1: New USB device found, idVendor=146b, idProduct=0902, bcdDevice= 0.00 [ 128.072462][ T1462] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 128.077203][ T1462] usb 7-1: config 0 descriptor?? [ 128.163096][T10774] veth0_vlan: entered promiscuous mode [ 128.171796][T10774] veth1_vlan: entered promiscuous mode [ 128.192008][T10774] veth0_macvtap: entered promiscuous mode [ 128.197029][T10774] veth1_macvtap: entered promiscuous mode [ 128.207860][T10774] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 128.214479][T10774] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 128.221275][ T1143] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.224782][ T1143] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.228921][ T1143] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.232862][ T1143] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.277565][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 128.283790][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 128.291845][ T1462] usbhid 7-1:0.0: can't add hid device: -71 [ 128.293812][ T1462] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 128.303395][ T1462] usb 7-1: USB disconnect, device number 9 [ 128.306277][ T91] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 128.309372][ T91] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 128.470926][ T40] audit: type=1400 audit(1757887702.836:451): avc: denied { firmware_load } for pid=10879 comm="syz.3.2123" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1 [ 128.569155][T10880] syz.3.2123 (10880) used greatest stack depth: 19576 bytes left [ 128.898550][ T40] audit: type=1400 audit(1757887703.266:452): avc: denied { read } for pid=10892 comm="syz.2.2128" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 129.142952][T10906] netlink: 604 bytes leftover after parsing attributes in process `syz.2.2134'. [ 129.494450][ T5981] Bluetooth: hci0: command tx timeout [ 129.530958][ T40] audit: type=1400 audit(1757887703.896:453): avc: denied { create } for pid=10934 comm="syz.3.2146" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 129.539082][ T40] audit: type=1400 audit(1757887703.906:454): avc: denied { bind } for pid=10934 comm="syz.3.2146" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 129.661930][ T40] audit: type=1400 audit(1757887704.026:455): avc: denied { mounton } for pid=10952 comm="syz.2.2154" path="/proc/1018/cgroup" dev="proc" ino=35955 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1 [ 129.731339][ T40] audit: type=1400 audit(1757887704.096:456): avc: denied { execmem } for pid=10959 comm="syz.3.2157" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 129.918063][T10981] (syz.0.2163,10981,0):dlmfs_mkdir:421 ERROR: invalid domain name for directory. [ 129.988262][T10989] io-wq is not configured for unbound workers [ 130.175005][ T40] audit: type=1326 audit(1757887704.546:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10993 comm="syz.0.2167" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfbed8eba9 code=0x7fc00000 [ 130.423040][T11008] openvswitch: netlink: VXLAN extension message has 1 unknown bytes. [ 130.501910][T11012] netlink: 14560 bytes leftover after parsing attributes in process `syz.4.2175'. [ 130.855366][ T40] audit: type=1326 audit(1757887705.216:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10993 comm="syz.0.2167" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fbfbed8eba9 code=0x7fc00000 [ 130.939095][ T40] audit: type=1400 audit(1757887705.306:459): avc: denied { create } for pid=11034 comm="syz.4.2187" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 130.951878][T11037] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2186'. [ 130.954209][ T40] audit: type=1400 audit(1757887705.316:460): avc: denied { write } for pid=11034 comm="syz.4.2187" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 130.989398][ T1143] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 130.992649][ T1143] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 130.994428][ T860] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 131.185143][ T860] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 131.189802][ T860] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 131.193241][ T860] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 131.199406][ T860] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 131.203633][ T860] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 131.207246][ T860] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 131.211513][ T860] usb 7-1: config 0 descriptor?? [ 131.213705][T11022] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 131.465272][ T40] audit: type=1400 audit(1757887705.836:461): avc: denied { create } for pid=11060 comm="syz.4.2197" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1 [ 131.574431][ T5981] Bluetooth: hci0: command tx timeout [ 131.627095][ T860] plantronics 0003:047F:FFFF.000C: reserved main item tag 0xd [ 131.634137][ T860] plantronics 0003:047F:FFFF.000C: hiddev0,hidraw2: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 131.889610][ T8162] usb 7-1: USB disconnect, device number 10 [ 132.184481][ T6038] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 132.346282][ T6038] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 132.350406][ T6038] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 132.353749][ T6038] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 132.356761][ T6038] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 132.363346][T11078] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 132.368791][ T6038] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 132.581896][ T1462] usb 5-1: USB disconnect, device number 11 [ 132.778947][ T1424] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.781546][ T1424] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.840457][T11111] netlink: 'syz.2.2220': attribute type 62 has an invalid length. [ 132.842978][T11111] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2220'. [ 133.374443][ T1462] usb 9-1: new high-speed USB device number 2 using dummy_hcd [ 133.490132][ T40] audit: type=1400 audit(1757887707.856:462): avc: denied { name_bind } for pid=11142 comm="syz.3.2234" src=65530 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=rawip_socket permissive=1 [ 133.541378][T11145] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2235'. [ 133.548778][ T1462] usb 9-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 133.551937][T11145] macvlan0: entered promiscuous mode [ 133.552579][ T1462] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 133.557041][T11145] batadv_slave_1: entered promiscuous mode [ 133.562110][ T1462] usb 9-1: Product: syz [ 133.564033][ T1462] usb 9-1: Manufacturer: syz [ 133.566419][ T1462] usb 9-1: SerialNumber: syz [ 133.571308][ T1462] usb 9-1: config 0 descriptor?? [ 133.657529][ T5981] Bluetooth: hci0: command tx timeout [ 133.703131][ T40] audit: type=1400 audit(1757887708.066:463): avc: denied { append } for pid=11157 comm="syz.2.2242" name="001" dev="devtmpfs" ino=761 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 133.775950][T11163] netlink: 304 bytes leftover after parsing attributes in process `syz.2.2244'. [ 133.784298][ T1462] usb 9-1: USB disconnect, device number 2 [ 133.935484][T11178] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2250'. [ 134.250277][T11200] IPv6: sit1: Disabled Multicast RS [ 134.252579][T11200] sit1: entered allmulticast mode [ 134.502233][T11211] netlink: 'syz.2.2264': attribute type 39 has an invalid length. [ 134.585269][ T8162] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 134.734417][ T8162] usb 5-1: Using ep0 maxpacket: 8 [ 134.737724][ T8162] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 134.740812][ T8162] usb 5-1: config 0 has no interface number 0 [ 134.743499][ T8162] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 134.750408][ T8162] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 134.754182][ T8162] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 134.759514][ T8162] usb 5-1: config 0 descriptor?? [ 134.769546][ T8162] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 135.014463][T11228] netlink: 348 bytes leftover after parsing attributes in process `syz.3.2271'. [ 135.076970][T11230] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2272'. [ 135.429418][T11255] kvm: kvm [11254]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010015) = 0x200000000680 [ 135.573689][T11261] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2286'. [ 135.694379][ T40] audit: type=1400 audit(1757887710.056:464): avc: denied { name_connect } for pid=11268 comm="syz.2.2290" dest=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1 [ 135.851056][T11279] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2294'. [ 135.963419][T11209] Set syz1 is full, maxelem 65536 reached [ 135.989505][ T54] usb 5-1: USB disconnect, device number 12 [ 136.508406][T11310] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2308'. [ 136.534530][ T9] usb 7-1: new high-speed USB device number 11 using dummy_hcd [ 136.704406][ T9] usb 7-1: Using ep0 maxpacket: 16 [ 136.707537][ T9] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 136.712072][ T9] usb 7-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00 [ 136.716241][ T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 136.720266][ T9] usb 7-1: config 0 descriptor?? [ 136.725306][ T9] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input13 [ 136.939353][ T5368] bcm5974 7-1:0.0: could not read from device [ 136.950766][ T9] bcm5974 7-1:0.0: could not read from device [ 136.955731][ T5368] bcm5974 7-1:0.0: could not read from device [ 136.965260][ T9] input: failed to attach handler mousedev to device input13, error: -5 [ 136.971437][ T5368] bcm5974 7-1:0.0: could not read from device [ 136.978597][ T5368] bcm5974 7-1:0.0: could not read from device [ 136.985223][ T9] usb 7-1: USB disconnect, device number 11 [ 136.989093][ T5971] bcm5974 7-1:0.0: could not read from device [ 137.033487][T11327] overlayfs: workdir and upperdir must reside under the same mount [ 137.141976][T11338] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2318'. [ 137.208956][ T40] audit: type=1326 audit(1757887711.576:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11343 comm="syz.2.2324" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2372d8eba9 code=0x50000 [ 137.219020][ T40] audit: type=1326 audit(1757887711.576:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11343 comm="syz.2.2324" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2372d8eba9 code=0x50000 [ 137.228998][ T40] audit: type=1326 audit(1757887711.576:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11343 comm="syz.2.2324" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2372d8eba9 code=0x50000 [ 137.239062][ T40] audit: type=1326 audit(1757887711.576:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11343 comm="syz.2.2324" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2372d8eba9 code=0x50000 [ 137.246614][ T40] audit: type=1326 audit(1757887711.576:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11343 comm="syz.2.2324" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2372d8eba9 code=0x50000 [ 137.253980][ T40] audit: type=1326 audit(1757887711.576:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11343 comm="syz.2.2324" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2372d8eba9 code=0x50000 [ 137.261482][ T40] audit: type=1326 audit(1757887711.576:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11343 comm="syz.2.2324" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2372d8eba9 code=0x50000 [ 137.269801][ T40] audit: type=1326 audit(1757887711.576:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11343 comm="syz.2.2324" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2372d8eba9 code=0x50000 [ 137.280084][ T40] audit: type=1326 audit(1757887711.576:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11343 comm="syz.2.2324" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2372d8eba9 code=0x50000 [ 137.565814][T11366] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2334'. [ 137.569179][T11366] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2334'. [ 137.574044][T11366] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2334'. [ 137.577159][T11366] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2334'. [ 137.620296][T11369] netlink: 'syz.0.2335': attribute type 29 has an invalid length. [ 137.626173][T11369] netlink: 'syz.0.2335': attribute type 29 has an invalid length. [ 137.630730][T11369] netlink: 500 bytes leftover after parsing attributes in process `syz.0.2335'. [ 138.216219][ T5981] Bluetooth: Wrong link type (-71) [ 138.218908][ T5981] Bluetooth: hci2: link tx timeout [ 138.221112][ T5981] Bluetooth: hci2: killing stalled connection 10:aa:aa:aa:aa:aa [ 138.224130][ T5981] Bluetooth: hci2: link tx timeout [ 138.226428][ T5981] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa [ 138.764510][ T9] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 138.916799][ T9] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 138.921523][ T9] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 138.926176][ T9] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 138.930246][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 138.937658][T11432] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 138.943318][ T9] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 139.064446][ T7138] usb 7-1: new high-speed USB device number 12 using dummy_hcd [ 139.148617][ T10] usb 5-1: USB disconnect, device number 13 [ 139.224571][ T7138] usb 7-1: Using ep0 maxpacket: 8 [ 139.227647][ T7138] usb 7-1: config 0 interface 0 has no altsetting 0 [ 139.230422][ T7138] usb 7-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 139.233270][ T7138] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 139.241565][ T7138] usb 7-1: config 0 descriptor?? [ 139.654104][ T7138] mcp2221 0003:04D8:00DD.000D: unknown main item tag 0x0 [ 139.658558][ T7138] mcp2221 0003:04D8:00DD.000D: unknown main item tag 0x0 [ 139.662163][ T7138] mcp2221 0003:04D8:00DD.000D: unknown main item tag 0x0 [ 139.665021][ T7138] mcp2221 0003:04D8:00DD.000D: unknown main item tag 0x0 [ 139.667488][ T7138] mcp2221 0003:04D8:00DD.000D: unknown main item tag 0x0 [ 139.670850][ T7138] mcp2221 0003:04D8:00DD.000D: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0 [ 139.829886][T11479] team0 (unregistering): Port device team_slave_0 removed [ 139.838298][T11479] team0 (unregistering): Port device team_slave_1 removed [ 139.855290][ T54] usb 7-1: USB disconnect, device number 12 [ 140.006441][T11494] overlayfs: invalid origin (0000) [ 140.101616][T11507] sctp: [Deprecated]: syz.0.2386 (pid 11507) Use of struct sctp_assoc_value in delayed_ack socket option. [ 140.101616][T11507] Use struct sctp_sack_info instead [ 140.304458][ T5981] Bluetooth: hci2: command 0x0406 tx timeout [ 140.624489][ T54] usb 7-1: new high-speed USB device number 13 using dummy_hcd [ 140.775252][ T54] usb 7-1: Using ep0 maxpacket: 8 [ 140.779046][ T54] usb 7-1: config 0 interface 0 has no altsetting 0 [ 140.781387][ T54] usb 7-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 140.785347][ T54] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 140.786572][ T40] kauditd_printk_skb: 73 callbacks suppressed [ 140.786584][ T40] audit: type=1400 audit(1757887715.156:547): avc: denied { read write } for pid=11521 comm="syz.3.2392" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 140.791245][ T54] usb 7-1: config 0 descriptor?? [ 140.801760][ T40] audit: type=1400 audit(1757887715.156:548): avc: denied { open } for pid=11521 comm="syz.3.2392" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 140.812168][ T40] audit: type=1400 audit(1757887715.156:549): avc: denied { map } for pid=11521 comm="syz.3.2392" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 140.877750][ T6038] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 141.024953][ T6038] usb 9-1: Using ep0 maxpacket: 8 [ 141.032293][ T6038] usb 9-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04 [ 141.035598][ T6038] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 141.038133][ T6038] usb 9-1: Product: syz [ 141.039430][ T6038] usb 9-1: Manufacturer: syz [ 141.040858][ T6038] usb 9-1: SerialNumber: syz [ 141.044773][ T6038] usb 9-1: config 0 descriptor?? [ 141.198075][T11530] UHID_CREATE from different security context by process 647 (syz.3.2395), this is not allowed. [ 141.206033][ T860] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0 [ 141.209372][ T860] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0 [ 141.212479][ T860] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0 [ 141.216742][ T860] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0 [ 141.219960][ T860] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0 [ 141.231077][ T860] hid-generic 0000:0000:0000.000E: hidraw1: HID v0.03 Device [syz1] on syz1 [ 141.240387][ T54] mcp2221 0003:04D8:00DD.000F: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0 [ 141.251794][ T6038] usb 9-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state [ 141.258244][ T6038] dvb_usb_rtl28xxu 9-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71 [ 141.261857][T11531] fido_id[11531]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 141.264849][ T6038] usb 9-1: USB disconnect, device number 3 [ 141.381458][T11537] syzkaller1: entered promiscuous mode [ 141.383478][T11537] syzkaller1: entered allmulticast mode [ 141.432655][ T1462] usb 7-1: USB disconnect, device number 13 [ 142.060884][T11561] netlink: 152 bytes leftover after parsing attributes in process `syz.0.2409'. [ 142.374684][ T1340] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 142.525983][ T1340] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 142.531472][ T1340] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 142.534948][ T53] usb 7-1: new high-speed USB device number 14 using dummy_hcd [ 142.537539][ T1340] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 142.540339][ T1340] usb 5-1: SerialNumber: syz [ 142.684503][ T53] usb 7-1: Using ep0 maxpacket: 16 [ 142.689301][ T53] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 142.693724][ T53] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 142.697387][ T53] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 142.701855][ T53] usb 7-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 142.704885][ T53] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 142.709761][ T53] usb 7-1: config 0 descriptor?? [ 142.754112][ T1340] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -71 [ 142.776916][ T1340] usb 5-1: USB disconnect, device number 14 [ 142.934417][ T5981] Bluetooth: hci2: command 0x0406 tx timeout [ 142.955750][T11586] netlink: 64535 bytes leftover after parsing attributes in process `syz.4.2421'. [ 143.144887][ T53] usbhid 7-1:0.0: can't add hid device: -71 [ 143.148310][ T53] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 143.153938][ T53] usb 7-1: USB disconnect, device number 14 [ 143.352906][ T40] audit: type=1400 audit(1757887717.716:550): avc: denied { watch watch_reads } for pid=11606 comm="syz.2.2431" path="/553/file0" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=dir permissive=1 [ 143.460038][ T40] audit: type=1400 audit(1757887717.816:551): avc: denied { create } for pid=11616 comm="syz.4.2437" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1 [ 143.822578][T11654] syzkaller1: entered promiscuous mode [ 143.827187][T11654] syzkaller1: entered allmulticast mode [ 143.938305][ T40] audit: type=1400 audit(1757887718.306:552): avc: denied { setopt } for pid=11661 comm="syz.4.2456" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 144.158319][T11677] netlink: 'syz.4.2463': attribute type 29 has an invalid length. [ 144.186737][T11677] netlink: 'syz.4.2463': attribute type 29 has an invalid length. [ 144.238907][ T40] audit: type=1400 audit(1757887718.606:553): avc: denied { accept } for pid=11680 comm="syz.4.2464" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 144.290690][ T5333] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201' [ 144.294007][ T5333] CPU: 1 UID: 0 PID: 5333 Comm: kworker/u33:1 Not tainted syzkaller #0 PREEMPT(full) [ 144.294024][ T5333] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 144.294032][ T5333] Workqueue: hci0 hci_rx_work [ 144.294050][ T5333] Call Trace: [ 144.294055][ T5333] [ 144.294060][ T5333] dump_stack_lvl+0x16c/0x1f0 [ 144.294076][ T5333] sysfs_warn_dup+0x7f/0xa0 [ 144.294091][ T5333] sysfs_create_dir_ns+0x24b/0x2b0 [ 144.294108][ T5333] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 144.294121][ T5333] ? find_held_lock+0x2b/0x80 [ 144.294139][ T5333] ? do_raw_spin_unlock+0x172/0x230 [ 144.294152][ T5333] kobject_add_internal+0x2c4/0x9b0 [ 144.294170][ T5333] kobject_add+0x16e/0x240 [ 144.294187][ T5333] ? __pfx_kobject_add+0x10/0x10 [ 144.294203][ T5333] ? do_raw_spin_unlock+0x172/0x230 [ 144.294215][ T5333] ? kobject_put+0xab/0x5a0 [ 144.294234][ T5333] device_add+0x288/0x1aa0 [ 144.294251][ T5333] ? __pfx_dev_set_name+0x10/0x10 [ 144.294261][ T5333] ? __pfx_device_add+0x10/0x10 [ 144.294277][ T5333] ? mgmt_send_event_skb+0x2fb/0x460 [ 144.294293][ T5333] hci_conn_add_sysfs+0x17e/0x230 [ 144.294328][ T5333] le_conn_complete_evt+0x1075/0x1d70 [ 144.294342][ T5333] ? preempt_count_sub+0xb0/0x160 [ 144.294360][ T5333] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 144.294371][ T5333] ? hci_event_packet+0x459/0x11c0 [ 144.294388][ T5333] hci_le_conn_complete_evt+0x23c/0x370 [ 144.294404][ T5333] hci_le_meta_evt+0x357/0x5e0 [ 144.294417][ T5333] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 144.294431][ T5333] hci_event_packet+0x682/0x11c0 [ 144.294443][ T5333] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 144.294458][ T5333] ? __pfx_hci_event_packet+0x10/0x10 [ 144.294472][ T5333] ? kcov_remote_start+0x3c9/0x6d0 [ 144.294485][ T5333] ? lockdep_hardirqs_on+0x7c/0x110 [ 144.294502][ T5333] hci_rx_work+0x2c5/0x16b0 [ 144.294516][ T5333] ? rcu_is_watching+0x12/0xc0 [ 144.294558][ T5333] process_one_work+0x9cc/0x1b70 [ 144.294589][ T5333] ? __pfx_process_one_work+0x10/0x10 [ 144.294626][ T5333] ? assign_work+0x1a0/0x250 [ 144.294649][ T5333] worker_thread+0x6c8/0xf10 [ 144.294675][ T5333] ? __kthread_parkme+0x19e/0x250 [ 144.294691][ T5333] ? __pfx_worker_thread+0x10/0x10 [ 144.294703][ T5333] kthread+0x3c2/0x780 [ 144.294714][ T5333] ? __pfx_kthread+0x10/0x10 [ 144.294725][ T5333] ? rcu_is_watching+0x12/0xc0 [ 144.294739][ T5333] ? __pfx_kthread+0x10/0x10 [ 144.294750][ T5333] ret_from_fork+0x56a/0x730 [ 144.294760][ T5333] ? __pfx_kthread+0x10/0x10 [ 144.294772][ T5333] ret_from_fork_asm+0x1a/0x30 [ 144.294792][ T5333] [ 144.414175][ T5333] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 144.449861][ T5333] Bluetooth: hci0: failed to register connection device [ 144.707409][ T40] audit: type=1400 audit(1757887719.076:554): avc: denied { mount } for pid=11715 comm="syz.4.2478" name="/" dev="configfs" ino=2051 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 144.716955][ T40] audit: type=1400 audit(1757887719.076:555): avc: denied { search } for pid=11715 comm="syz.4.2478" name="/" dev="configfs" ino=2051 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 144.728459][ T40] audit: type=1400 audit(1757887719.076:556): avc: denied { search } for pid=11715 comm="syz.4.2478" name="/" dev="configfs" ino=2051 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 144.898632][T11734] 9pnet: p9_errstr2errno: server reported unknown error @íÿÿÿÿÿÿÿÿ [ 144.898664][T11735] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2487'. [ 145.044142][ T46] Bluetooth: hci4: Frame reassembly failed (-84) [ 145.184440][ T53] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 145.334459][ T53] usb 5-1: Using ep0 maxpacket: 8 [ 145.338209][ T53] usb 5-1: config 179 has an invalid interface number: 65 but max is 0 [ 145.341605][ T53] usb 5-1: config 179 has no interface number 0 [ 145.344249][ T53] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9 [ 145.348920][ T53] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024 [ 145.353567][ T53] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 101, changing to 10 [ 145.358453][ T53] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 24697, setting to 1024 [ 145.362903][ T53] usb 5-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 145.368437][ T53] usb 5-1: config 179 interface 65 has no altsetting 0 [ 145.371139][ T53] usb 5-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 145.374536][ T53] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 145.387373][ T53] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:179.65/input/input15 [ 145.436010][ T5368] input input15: unable to receive magic message: -110 [ 145.442492][ T5368] input input15: unable to receive magic message: -32 [ 145.447717][ T5368] input input15: unable to receive magic message: -32 [ 145.451748][ T5368] input input15: unable to receive magic message: -32 [ 145.456821][ T5368] input input15: unable to receive magic message: -32 [ 145.461060][ T5368] input input15: unable to receive magic message: -32 [ 145.497299][ T9] usb 7-1: new high-speed USB device number 15 using dummy_hcd [ 145.581746][T11741] input input15: unable to receive magic message: -32 [ 145.587155][ T1340] usb 5-1: USB disconnect, device number 15 [ 145.589670][ C2] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 145.656287][ T9] usb 7-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 145.663820][ T9] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 145.667610][ T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 145.670395][ T9] usb 7-1: SerialNumber: syz [ 145.940366][T11761] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2498'. [ 146.082836][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 146.082853][ T40] audit: type=1400 audit(1757887720.446:558): avc: denied { shutdown } for pid=11768 comm="syz.3.2502" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 146.246003][T11785] misc userio: Begin command sent, but we're already running [ 146.290040][ T9] cdc_ether 7-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.2-1, CDC Ethernet Device, 42:42:42:42:42:42 [ 146.315755][T11791] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2513'. [ 146.685899][ T7138] usb 7-1: USB disconnect, device number 15 [ 146.688814][ T7138] cdc_ether 7-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.2-1, CDC Ethernet Device [ 146.724639][ T1462] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 146.876382][ T1462] usb 5-1: config index 0 descriptor too short (expected 45, got 36) [ 146.879002][ T1462] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 146.882715][ T1462] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 146.886409][ T1462] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 146.890716][ T1462] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 146.893593][ T1462] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 146.897656][ T1462] usb 5-1: config 0 descriptor?? [ 146.900723][T11805] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 147.104510][ T5333] Bluetooth: hci4: command 0x1003 tx timeout [ 147.104812][ T5981] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 147.236256][ T40] audit: type=1400 audit(1757887721.606:559): avc: denied { rename } for pid=11849 comm="syz.2.2527" name="file0" dev="9p" ino=71827797 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=blk_file permissive=1 [ 147.246975][ T40] audit: type=1400 audit(1757887721.606:560): avc: denied { unlink } for pid=11849 comm="syz.2.2527" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="9p" ino=71827793 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 147.314238][ T1462] plantronics 0003:047F:FFFF.0010: reserved main item tag 0xd [ 147.325967][ T1462] plantronics 0003:047F:FFFF.0010: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 147.578862][ T53] usb 5-1: USB disconnect, device number 16 [ 147.636282][ T54] usb 7-1: new high-speed USB device number 16 using dummy_hcd [ 147.784475][ T54] usb 7-1: Using ep0 maxpacket: 16 [ 147.788437][ T54] usb 7-1: config 0 has no interfaces? [ 147.790793][ T54] usb 7-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 147.794976][ T54] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 147.801024][ T54] usb 7-1: config 0 descriptor?? [ 148.134473][ T54] usb 9-1: new high-speed USB device number 4 using dummy_hcd [ 148.210635][T11856] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 148.218508][T11856] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 148.223080][ T6025] usb 7-1: USB disconnect, device number 16 [ 148.231839][ T40] audit: type=1400 audit(1757887722.596:561): avc: denied { ioctl } for pid=11884 comm="syz.3.2542" path="socket:[41658]" dev="sockfs" ino=41658 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 148.306301][ T54] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 148.310790][ T54] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 148.315254][ T54] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 148.318729][ T54] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 148.323710][ T54] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 148.328426][ T54] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 148.333646][ T54] usb 9-1: config 0 descriptor?? [ 148.460390][ T40] audit: type=1400 audit(1757887722.826:562): avc: denied { bind } for pid=11901 comm="syz.3.2550" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 148.468029][ T40] audit: type=1400 audit(1757887722.826:563): avc: denied { name_bind } for pid=11901 comm="syz.3.2550" src=28196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1 [ 148.476648][ T40] audit: type=1400 audit(1757887722.826:564): avc: denied { node_bind } for pid=11901 comm="syz.3.2550" src=28196 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1 [ 148.499901][T11904] Bluetooth: MGMT ver 1.23 [ 148.748627][ T54] hid_parser_main: 78 callbacks suppressed [ 148.748640][ T54] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 148.754112][ T54] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 148.757428][ T54] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 148.760314][ T54] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 148.763241][ T54] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 148.764063][T11914] Failed to get privilege flags for destination (handle=0x2:0x9) [ 148.766726][ T54] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 148.773642][ T54] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 148.777086][ T54] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 148.779963][ T54] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 148.782864][ T54] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 148.793415][ T54] plantronics 0003:047F:FFFF.0011: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 148.945474][T11926] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2561'. [ 149.006314][ T53] usb 9-1: USB disconnect, device number 4 [ 149.167192][ T40] audit: type=1400 audit(1757887723.536:565): avc: denied { unlink } for pid=11938 comm="syz.3.2567" name="file0" dev="9p" ino=71827793 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 149.262116][ T40] audit: type=1400 audit(1757887723.626:566): avc: denied { mount } for pid=11941 comm="syz.3.2569" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1 [ 149.270245][ T40] audit: type=1400 audit(1757887723.626:567): avc: denied { search } for pid=11941 comm="syz.3.2569" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1 [ 149.583713][T11959] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 149.586980][T11959] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 149.593056][T11959] vhci_hcd vhci_hcd.0: Device attached [ 149.597512][T11962] vhci_hcd: connection closed [ 149.598124][ T46] vhci_hcd: stop threads [ 149.607363][ T46] vhci_hcd: release socket [ 149.608893][ T46] vhci_hcd: disconnect device [ 149.966829][T11990] usb usb8: usbfs: process 11990 (syz.2.2590) did not claim interface 0 before use [ 150.033505][T11994] binder: 11993:11994 ioctl 4018620d 0 returned -22 [ 150.052900][T11985] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 150.055790][T11985] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 150.063450][T11985] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 150.067537][T11985] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 150.069547][T11985] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 150.071907][T11985] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 150.077535][T11985] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 150.083653][T11985] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 150.085812][T11985] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 150.089018][T11985] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 150.092121][T11985] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 150.133184][T11998] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2594'. [ 150.603205][T12040] overlay: filesystem on ./bus not supported as upperdir [ 151.174192][T12061] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2622'. [ 151.266031][T12061] team0: Port device team_slave_0 removed [ 151.432943][T12072] geneve2: entered promiscuous mode [ 151.436487][T12072] geneve2: entered allmulticast mode [ 151.469571][T12076] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2629'. [ 151.588954][T12092] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.2637'. [ 151.695870][T12102] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5) [ 151.698138][T12102] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 151.702508][T12102] vhci_hcd vhci_hcd.0: Device attached [ 151.908655][T12129] loop6: detected capacity change from 0 to 63 [ 151.916725][ T5971] buffer_io_error: 138 callbacks suppressed [ 151.916739][ T5971] Buffer I/O error on dev loop6, logical block 0, async page read [ 151.920141][ T40] kauditd_printk_skb: 7 callbacks suppressed [ 151.920155][ T40] audit: type=1400 audit(1757887726.286:575): avc: denied { map } for pid=12127 comm="syz.3.2654" path="/dev/loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 151.927337][T12129] Buffer I/O error on dev loop6, logical block 0, async page read [ 151.937596][ T40] audit: type=1400 audit(1757887726.286:576): avc: denied { execute } for pid=12127 comm="syz.3.2654" path="/dev/loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 151.940713][ T5971] Buffer I/O error on dev loop6, logical block 0, async page read [ 151.944524][ T53] usb 37-1: new low-speed USB device number 2 using vhci_hcd [ 151.946919][ T6025] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 151.957041][T12129] Buffer I/O error on dev loop6, logical block 0, async page read [ 151.962667][ T5971] Buffer I/O error on dev loop6, logical block 0, async page read [ 151.967246][ T5971] Buffer I/O error on dev loop6, logical block 0, async page read [ 151.971063][ T5971] Buffer I/O error on dev loop6, logical block 0, async page read [ 152.064505][ T5333] Bluetooth: hci3: command 0x0c1a tx timeout [ 152.095638][ T6025] usb 5-1: Using ep0 maxpacket: 16 [ 152.110040][ T6025] usb 5-1: config 0 has no interfaces? [ 152.116619][ T6025] usb 5-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 152.119999][ T6025] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 152.128086][ T6025] usb 5-1: config 0 descriptor?? [ 152.135964][ T5979] Bluetooth: hci1: command 0x0c1a tx timeout [ 152.137323][ T5333] Bluetooth: hci0: command 0x0406 tx timeout [ 152.137942][ T5979] Bluetooth: hci2: command 0x0406 tx timeout [ 152.141956][ T5981] Bluetooth: hci0: Opcode 0x1407 failed: -110 [ 152.301272][T12146] ref_ctr_offset mismatch. inode: 0xbf0 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x4 [ 152.337012][T12103] vhci_hcd: connection closed [ 152.339569][ T91] vhci_hcd: stop threads [ 152.343581][ T91] vhci_hcd: release socket [ 152.347273][ T9] usb 5-1: USB disconnect, device number 17 [ 152.347360][ T91] vhci_hcd: disconnect device [ 152.408408][ T53] vhci_hcd: vhci_device speed not set [ 153.682532][T12218] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.2693'. [ 154.056265][T12235] netlink: 1792 bytes leftover after parsing attributes in process `syz.2.2701'. [ 154.144506][ T5981] Bluetooth: hci3: command 0x0c1a tx timeout [ 154.214428][ T5981] Bluetooth: hci0: command 0x0406 tx timeout [ 154.214689][ T5979] Bluetooth: hci1: command 0x0c1a tx timeout [ 154.315443][T12261] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2713'. [ 154.594059][ T5979] Bluetooth: hci0: unexpected event for opcode 0x200c [ 155.000343][ T40] audit: type=1400 audit(1757887729.366:577): avc: denied { setopt } for pid=12308 comm="syz.2.2734" lport=46516 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1 [ 155.307000][T12327] kvm: apic: phys broadcast and lowest prio [ 155.561868][T12338] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2747'. [ 155.991164][ T40] audit: type=1400 audit(1757887730.356:578): avc: denied { write } for pid=12356 comm="syz.3.2755" path="socket:[43412]" dev="sockfs" ino=43412 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 156.206508][T12371] netlink: 232 bytes leftover after parsing attributes in process `syz.4.2762'. [ 156.214438][ T5979] Bluetooth: hci3: command 0x0c1a tx timeout [ 156.271720][T12378] af_packet: tpacket_rcv: packet too big, clamped from 2916 to 4294967286. macoff=82 [ 156.294461][ T5979] Bluetooth: hci1: command 0x0c1a tx timeout [ 156.599525][ T40] audit: type=1400 audit(1757887730.966:579): avc: denied { execute } for pid=12402 comm="syz.0.2777" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 156.662819][T12411] IPVS: dh: FWM 3 0x00000003 - no destination available [ 156.671206][ C2] IPVS: dh: FWM 3 0x00000003 - no destination available [ 156.845455][ T40] audit: type=1400 audit(1757887731.206:580): avc: denied { link } for pid=12436 comm="syz.4.2792" name="file1" dev="9p" ino=71827675 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 157.125378][T12473] binder: 12472:12473 ioctl c0306201 2000000001c0 returned -14 [ 157.134963][ T40] audit: type=1400 audit(1757887731.506:581): avc: denied { watch_mount } for pid=12474 comm="syz.2.2806" path="/651" dev="tmpfs" ino=3327 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 157.695709][T12533] GUP no longer grows the stack in syz.3.2833 (12533): 200000004000-20000000a000 (200000002000) [ 157.699356][T12533] CPU: 2 UID: 0 PID: 12533 Comm: syz.3.2833 Not tainted syzkaller #0 PREEMPT(full) [ 157.699380][T12533] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 157.699392][T12533] Call Trace: [ 157.699399][T12533] [ 157.699406][T12533] dump_stack_lvl+0x16c/0x1f0 [ 157.699446][T12533] gup_vma_lookup+0x1d2/0x220 [ 157.699482][T12533] __get_user_pages+0x243/0x34a0 [ 157.699516][T12533] ? find_held_lock+0x2b/0x80 [ 157.699541][T12533] ? __pfx___get_user_pages+0x10/0x10 [ 157.699575][T12533] get_user_pages_remote+0x243/0xab0 [ 157.699600][T12533] ? mas_parent_gap+0x6f0/0x7b0 [ 157.699626][T12533] ? __pfx_get_user_pages_remote+0x10/0x10 [ 157.699654][T12533] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 157.699681][T12533] __access_remote_vm+0x24d/0x850 [ 157.699708][T12533] ? do_raw_spin_lock+0x12c/0x2b0 [ 157.699729][T12533] ? __pfx___access_remote_vm+0x10/0x10 [ 157.699759][T12533] proc_pid_cmdline_read+0x4de/0x8e0 [ 157.699782][T12533] ? __pfx_proc_pid_cmdline_read+0x10/0x10 [ 157.699807][T12533] ? rw_verify_area+0xcf/0x6c0 [ 157.699837][T12533] ? __pfx_proc_pid_cmdline_read+0x10/0x10 [ 157.699858][T12533] vfs_readv+0x5be/0x8b0 [ 157.699881][T12533] ? __pfx_vfs_readv+0x10/0x10 [ 157.699900][T12533] ? kmem_cache_free+0x2d1/0x4d0 [ 157.699934][T12533] ? __fget_files+0x20e/0x3c0 [ 157.699962][T12533] ? do_preadv+0x1a6/0x270 [ 157.699977][T12533] do_preadv+0x1a6/0x270 [ 157.699996][T12533] ? __pfx_do_preadv+0x10/0x10 [ 157.700022][T12533] do_syscall_64+0xcd/0x4e0 [ 157.700048][T12533] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 157.700067][T12533] RIP: 0033:0x7f78cf38eba9 [ 157.700082][T12533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 157.700100][T12533] RSP: 002b:00007f78d023c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 157.700117][T12533] RAX: ffffffffffffffda RBX: 00007f78cf5d5fa0 RCX: 00007f78cf38eba9 [ 157.700129][T12533] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000003 [ 157.700140][T12533] RBP: 00007f78cf411e19 R08: 0000000000000000 R09: 0000000000000000 [ 157.700151][T12533] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 157.700161][T12533] R13: 00007f78cf5d6038 R14: 00007f78cf5d5fa0 R15: 00007ffc95beb848 [ 157.700193][T12533] [ 157.784557][ T54] usb 7-1: new high-speed USB device number 17 using dummy_hcd [ 157.929407][T12548] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.2840'. [ 157.944534][ T54] usb 7-1: Using ep0 maxpacket: 8 [ 157.947427][ T54] usb 7-1: config 0 interface 0 has no altsetting 0 [ 157.949661][ T54] usb 7-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 157.952850][ T54] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 157.961793][ T54] usb 7-1: config 0 descriptor?? [ 158.371667][ T54] mcp2221 0003:04D8:00DD.0012: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0 [ 158.520199][T12572] netlink: 'syz.0.2851': attribute type 6 has an invalid length. [ 158.571133][ T6038] usb 7-1: USB disconnect, device number 17 [ 158.862353][ T40] audit: type=1326 audit(1757887733.226:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12554 comm="syz.4.2843" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d3258eba9 code=0x7fc00000 [ 158.906610][ T40] audit: type=1400 audit(1757887733.276:583): avc: denied { mounton } for pid=12584 comm="syz.4.2856" path="/187/file0" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=dir permissive=1 [ 159.140804][ T40] audit: type=1400 audit(1757887733.506:584): avc: denied { map } for pid=12597 comm="syz.2.2862" path="socket:[45757]" dev="sockfs" ino=45757 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 159.148244][ T40] audit: type=1400 audit(1757887733.506:585): avc: denied { read accept } for pid=12597 comm="syz.2.2862" path="socket:[45757]" dev="sockfs" ino=45757 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 159.227826][T12603] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2864'. [ 159.534365][ T40] audit: type=1400 audit(1757887733.896:586): avc: denied { load_policy } for pid=12611 comm="syz.0.2868" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 159.537101][T12612] SELinux: ebitmap: start bit 64 comes after start bit 1152 [ 159.551738][T12612] SELinux: failed to load policy [ 159.586523][T12620] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 159.631143][ T40] audit: type=1400 audit(1757887733.996:587): avc: denied { open } for pid=12624 comm="syz.0.2874" path="/dev/ptyq4" dev="devtmpfs" ino=131 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1 [ 159.640729][ T40] audit: type=1400 audit(1757887734.006:588): avc: denied { ioctl } for pid=12624 comm="syz.0.2874" path="/dev/ttyq4" dev="devtmpfs" ino=387 ioctlcmd=0x5437 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1 [ 160.084477][ T6038] usb 7-1: new high-speed USB device number 18 using dummy_hcd [ 160.204593][ T9] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 160.244410][ T6038] usb 7-1: Using ep0 maxpacket: 16 [ 160.248112][ T6038] usb 7-1: config 0 has no interfaces? [ 160.250390][ T6038] usb 7-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 160.254175][ T6038] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 160.259551][ T6038] usb 7-1: config 0 descriptor?? [ 160.354483][ T9] usb 5-1: Using ep0 maxpacket: 8 [ 160.358419][ T9] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 160.362481][ T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 160.366619][ T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 3 [ 160.370622][ T9] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 160.376085][ T9] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 160.379856][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 160.599703][ T9] usb 5-1: GET_CAPABILITIES returned 0 [ 160.602176][ T9] usbtmc 5-1:16.0: can't read capabilities [ 160.671273][T12647] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 160.675227][T12647] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 160.680981][ T53] usb 7-1: USB disconnect, device number 18 [ 160.806541][ C3] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 160.812469][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 160.816345][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 160.820130][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 160.824464][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 160.828319][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 160.834730][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 160.838748][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 160.842323][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 160.845991][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 160.849822][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 160.856615][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 160.860414][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 160.864157][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 160.867933][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 160.871852][ C1] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 160.879863][ T5669] usb 5-1: USB disconnect, device number 18 [ 161.102655][T12671] pim6reg13: entered allmulticast mode [ 161.218247][T12675] loop7: detected capacity change from 0 to 7 [ 161.258588][T12675] Dev loop7: unable to read RDB block 7 [ 161.260970][T12675] loop7: unable to read partition table [ 161.263485][T12675] loop7: partition table beyond EOD, truncated [ 161.267758][T12675] loop_reread_partitions: partition scan of loop7 (úùƒå¡™‰ü¾CêjÌ–ã¢P=ý?ã}X‹ºÐ œëÜ%õ«`ÉæÖ€ù…ˆ{í©Ö˜Èµ4FLQkÝŠ) failed (rc=-5) [ 161.394486][ T53] usb 9-1: new high-speed USB device number 5 using dummy_hcd [ 161.509351][ T40] audit: type=1326 audit(1757887735.876:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12683 comm="syz.0.2900" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbfbed8eba9 code=0x0 [ 161.556253][ T53] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 161.561374][ T53] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 161.566348][ T53] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 161.569756][ T53] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 161.573932][ T53] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 161.578403][ T53] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 161.585907][ T53] usb 9-1: config 0 descriptor?? [ 161.739315][T12700] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2905'. [ 161.742221][T12700] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2905'. [ 161.825568][ T1340] libceph: connect (1)[c::]:6789 error -101 [ 161.828006][ T1340] libceph: mon0 (1)[c::]:6789 connect error [ 161.862536][T12704] ceph: No mds server is up or the cluster is laggy [ 162.000305][ T53] plantronics 0003:047F:FFFF.0013: ignoring exceeding usage max [ 162.014182][ T53] plantronics 0003:047F:FFFF.0013: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 162.978488][T12758] hugetlbfs: syz.2.2932 (12758): Using mlock ulimits for SHM_HUGETLB is obsolete [ 163.574525][T12795] syzkaller1: entered promiscuous mode [ 163.576287][T12795] syzkaller1: entered allmulticast mode [ 164.026309][ T53] usb 9-1: USB disconnect, device number 5 [ 164.053287][ T5979] Bluetooth: hci3: SCO packet for unknown connection handle 200 [ 164.184427][T12835] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2966'. [ 164.469996][ T40] audit: type=1400 audit(1757887738.836:590): avc: denied { remount } for pid=12865 comm="syz.2.2982" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 164.920022][T12916] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3002'. [ 165.087548][ T40] audit: type=1400 audit(1757887739.456:591): avc: denied { read } for pid=12938 comm="syz.4.3014" name="btrfs-control" dev="devtmpfs" ino=1342 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1 [ 165.096687][ T40] audit: type=1400 audit(1757887739.456:592): avc: denied { open } for pid=12938 comm="syz.4.3014" path="/dev/btrfs-control" dev="devtmpfs" ino=1342 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1 [ 165.149783][ T40] audit: type=1400 audit(1757887739.516:593): avc: denied { rmdir } for pid=12941 comm="syz.0.3015" name="control" dev="9p" ino=71827805 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 165.286295][ T5981] Bluetooth: hci3: unexpected event for opcode 0x200c [ 165.296054][T12958] bridge0: port 1(bridge_slave_0) entered disabled state [ 165.320801][ T40] audit: type=1400 audit(1757887739.686:594): avc: denied { ioctl } for pid=12961 comm="syz.3.3024" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 165.653239][ T40] audit: type=1400 audit(1757887740.016:595): avc: denied { listen } for pid=12983 comm="syz.4.3033" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 165.698396][ T40] audit: type=1400 audit(1757887740.066:596): avc: denied { setopt } for pid=12986 comm="syz.4.3034" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 166.023799][ T40] audit: type=1400 audit(1757887740.386:597): avc: denied { ioctl } for pid=12995 comm="syz.0.3038" path="socket:[47437]" dev="sockfs" ino=47437 ioctlcmd=0x8916 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 166.079028][T13000] netlink: 76 bytes leftover after parsing attributes in process `syz.0.3040'. [ 166.860626][ T40] audit: type=1326 audit(1757887741.226:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13016 comm="syz.4.3045" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d3258eba9 code=0x0 [ 166.934538][ T5981] Bluetooth: hci4: command 0x1003 tx timeout [ 166.934562][ T5979] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 167.252345][T13026] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.3049'. [ 168.304634][ T5669] usb 7-1: new high-speed USB device number 19 using dummy_hcd [ 168.454436][ T5669] usb 7-1: Using ep0 maxpacket: 8 [ 168.458352][ T5669] usb 7-1: config index 0 descriptor too short (expected 301, got 45) [ 168.461899][ T5669] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 168.465223][ T5669] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 168.468220][ T5669] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 168.471806][ T5669] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 168.476710][ T5669] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 168.479528][ T5669] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 168.634663][T13053] netlink: 'syz.3.3062': attribute type 12 has an invalid length. [ 168.691119][ T5669] usb 7-1: GET_CAPABILITIES returned 0 [ 168.692758][ T5669] usbtmc 7-1:16.0: can't read capabilities [ 168.952490][T13051] usbtmc 7-1:16.0: usb_control_msg returned -71 [ 168.954883][ T5669] usb 7-1: USB disconnect, device number 19 [ 169.114286][ T40] audit: type=1400 audit(1757887743.476:599): avc: denied { ioctl } for pid=13076 comm="syz.4.3073" path="/dev/ndctl0" dev="devtmpfs" ino=109 ioctlcmd=0x4600 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 169.122030][T13077] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 169.979169][T13100] netlink: 'syz.0.3084': attribute type 4 has an invalid length. [ 169.981604][T13100] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3084'. [ 170.016128][T13110] netlink: 52 bytes leftover after parsing attributes in process `syz.2.3089'. [ 171.534981][T13152] kvm: kvm [13151]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x7 [ 171.539402][T13152] kvm: kvm [13151]: vcpu2, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x7 [ 171.703890][T13155] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3109'. [ 171.707689][T13155] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3109'. [ 171.727844][T13157] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.3110'. [ 171.848904][ C3] vcan0: j1939_tp_rxtimer: 0xffff888048fa0000: rx timeout, send abort [ 171.853088][ C3] vcan0: j1939_tp_rxtimer: 0xffff888048fa2400: rx timeout, send abort [ 171.856745][ T40] audit: type=1400 audit(1757887746.226:600): avc: denied { read } for pid=5365 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 171.857415][ C3] vcan0: j1939_xtp_rx_abort_one: 0xffff888048fa0000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 171.868819][ T40] audit: type=1400 audit(1757887746.226:601): avc: denied { search } for pid=5365 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 171.871465][ C3] vcan0: j1939_xtp_rx_abort_one: 0xffff888048fa2400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 171.878282][ T40] audit: type=1400 audit(1757887746.226:602): avc: denied { search } for pid=5365 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 171.892797][ T40] audit: type=1400 audit(1757887746.226:603): avc: denied { add_name } for pid=5365 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 171.898952][ T40] audit: type=1400 audit(1757887746.226:604): avc: denied { create } for pid=5365 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 171.905794][ T40] audit: type=1400 audit(1757887746.226:605): avc: denied { append open } for pid=5365 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 171.912903][ T40] audit: type=1400 audit(1757887746.226:606): avc: denied { getattr } for pid=5365 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 171.935972][ T9] hid_parser_main: 5 callbacks suppressed [ 171.935990][ T9] hid-generic 00A0:0008:0003.0014: unknown main item tag 0x0 [ 171.948185][ T9] hid-generic 00A0:0008:0003.0014: unknown main item tag 0x0 [ 171.951292][ T9] hid-generic 00A0:0008:0003.0014: unknown main item tag 0x0 [ 171.957539][ T9] hid-generic 00A0:0008:0003.0014: unknown main item tag 0x0 [ 171.960374][ T9] hid-generic 00A0:0008:0003.0014: unknown main item tag 0x0 [ 171.963267][ T9] hid-generic 00A0:0008:0003.0014: unknown main item tag 0x0 [ 171.967003][ T9] hid-generic 00A0:0008:0003.0014: unknown main item tag 0x0 [ 171.970021][ T9] hid-generic 00A0:0008:0003.0014: unknown main item tag 0x0 [ 171.978022][ T9] hid-generic 00A0:0008:0003.0014: hidraw1: HID v0.05 Device [syz1] on syz0 [ 172.228784][T13198] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3128'. [ 172.232149][T13198] chnl_net:caif_netlink_parms(): no params data found [ 172.382825][T13206] bond0: entered allmulticast mode [ 172.385517][T13206] bond_slave_0: entered allmulticast mode [ 172.387522][T13206] bond_slave_1: entered allmulticast mode [ 172.489941][T13210] "syz.2.3133" (13210) uses obsolete ecb(arc4) skcipher [ 172.825840][ T40] audit: type=1400 audit(1757887747.196:607): avc: denied { read } for pid=13214 comm="syz.3.3134" name="file1" dev="9p" ino=71827675 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 172.835186][ T40] audit: type=1400 audit(1757887747.196:608): avc: denied { open } for pid=13214 comm="syz.3.3134" path="/463/file0/file1" dev="9p" ino=71827675 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 172.843605][ T40] audit: type=1400 audit(1757887747.206:609): avc: denied { lock } for pid=13214 comm="syz.3.3134" path="/463/file0/file1" dev="9p" ino=71827675 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 174.044464][ T9] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 174.194449][ T9] usb 5-1: Using ep0 maxpacket: 8 [ 174.197329][ T9] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 174.200504][ T9] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 174.203362][ T9] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10 [ 174.207912][ T9] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024 [ 174.211573][ T9] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 174.214712][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 174.227406][ T9] hub 5-1:1.0: bad descriptor, ignoring hub [ 174.230397][ T9] hub 5-1:1.0: probe with driver hub failed with error -5 [ 174.233110][ T9] cdc_wdm 5-1:1.0: skipping garbage [ 174.234981][ T9] cdc_wdm 5-1:1.0: skipping garbage [ 174.240426][ T9] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 174.242426][ T9] cdc_wdm 5-1:1.0: Unknown control protocol [ 174.508562][T13285] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3165'. [ 174.775711][ T1340] usb 5-1: USB disconnect, device number 19 [ 174.790284][T13294] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3169'. [ 174.794965][T13294] (unnamed net_device) (uninitialized): Invalid ad_actor_system MAC address. [ 174.798541][T13294] (unnamed net_device) (uninitialized): option ad_actor_system: invalid value (255) [ 175.139816][T13307] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 175.325234][T13319] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3179'. [ 175.416763][T13322] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3180'. [ 175.671478][T13332] input: syz1 as /devices/virtual/input/input22 [ 175.728712][T13336] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3188'. [ 175.765636][T13340] tipc: Started in network mode [ 175.767381][T13340] tipc: Node identity ac14142f, cluster identity 4711 [ 175.770179][T13340] tipc: New replicast peer: 0.0.0.0 [ 175.772306][T13340] tipc: Enabled bearer , priority 10 [ 175.775342][T13340] tipc: New replicast peer: 255.255.255.255 [ 175.937102][T13349] kvm: kvm [13347]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010058) = 0x200000000240 [ 176.383835][T13396] netlink: 'syz.0.3212': attribute type 2 has an invalid length. [ 176.387037][T13396] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.3212'. [ 176.389896][T13396] nbd: must specify a device to reconfigure [ 176.535148][ T6025] usb 9-1: new high-speed USB device number 6 using dummy_hcd [ 176.629207][T13409] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3217'. [ 176.686250][ T6025] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 176.690763][ T6025] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 176.694763][ T6025] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7 [ 176.699220][ T6025] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 176.706150][ T6025] usb 9-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13 [ 176.710057][ T6025] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 176.713405][ T6025] usb 9-1: Product: syz [ 176.715326][ T6025] usb 9-1: Manufacturer: syz [ 176.717265][ T6025] usb 9-1: SerialNumber: syz [ 176.721398][ T6025] usb 9-1: config 0 descriptor?? [ 176.867289][T13418] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.3221'. [ 176.886751][ T54] tipc: Node number set to 2886997039 [ 176.943242][ T6025] adutux 9-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0 [ 177.053462][T13429] SELinux: failed to load policy [ 177.135212][ T9] usb 9-1: USB disconnect, device number 6 [ 177.208968][T13440] input: syz1 as /devices/virtual/input/input23 [ 177.261455][T13444] overlayfs: failed to set uuid (472/file0, err=-1); falling back to uuid=null. [ 177.264864][T13444] overlayfs: failed to verify upper root origin [ 177.504694][ T40] kauditd_printk_skb: 7 callbacks suppressed [ 177.504704][ T40] audit: type=1400 audit(1757887751.876:617): avc: denied { write } for pid=13464 comm="syz.0.3242" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 177.688234][ T40] audit: type=1400 audit(1757887752.056:618): avc: denied { create } for pid=13485 comm="syz.4.3252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 177.695137][ T40] audit: type=1400 audit(1757887752.056:619): avc: denied { connect } for pid=13485 comm="syz.4.3252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 177.742156][ T40] audit: type=1400 audit(1757887752.106:620): avc: denied { bind } for pid=13485 comm="syz.4.3252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1 [ 177.749880][ T61] wlan1: Trigger new scan to find an IBSS to join [ 177.938213][ T40] audit: type=1400 audit(1757887752.306:621): avc: denied { write } for pid=13496 comm="syz.2.3256" path="socket:[50227]" dev="sockfs" ino=50227 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 177.989760][ T40] audit: type=1400 audit(1757887752.356:622): avc: denied { read } for pid=13496 comm="syz.2.3256" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 178.665336][T13513] tls_set_device_offload: netdev not found [ 178.774937][ T54] usb 7-1: new high-speed USB device number 20 using dummy_hcd [ 178.936201][ T54] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 178.940713][ T54] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 178.945011][ T54] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7 [ 178.949453][ T54] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 178.961925][ T54] usb 7-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13 [ 178.966179][ T54] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 178.969501][ T54] usb 7-1: Product: syz [ 178.971016][ T54] usb 7-1: Manufacturer: syz [ 178.972682][ T54] usb 7-1: SerialNumber: syz [ 178.978968][ T54] usb 7-1: config 0 descriptor?? [ 178.986729][T13518] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3264'. [ 178.989787][T13518] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3264'. [ 179.000083][ T61] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 179.000149][T13518] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3264'. [ 179.003718][ T61] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 179.006777][T13518] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3264'. [ 179.015639][ T61] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 179.018950][ T61] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 179.188207][ T54] adutux 7-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0 [ 179.389845][ T1340] usb 7-1: USB disconnect, device number 20 [ 180.515547][T13551] Bluetooth: hci4: Frame reassembly failed (-84) [ 180.517817][ T12] Bluetooth: hci4: Frame reassembly failed (-84) [ 180.662491][T13559] syz.0.3281: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1 [ 180.668431][T13559] CPU: 0 UID: 0 PID: 13559 Comm: syz.0.3281 Not tainted syzkaller #0 PREEMPT(full) [ 180.668448][T13559] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 180.668455][T13559] Call Trace: [ 180.668460][T13559] [ 180.668464][T13559] dump_stack_lvl+0x16c/0x1f0 [ 180.668487][T13559] warn_alloc+0x248/0x3a0 [ 180.668519][T13559] ? __pfx_warn_alloc+0x10/0x10 [ 180.668538][T13559] ? __pfx_stack_trace_save+0x10/0x10 [ 180.668570][T13559] ? kasan_save_stack+0x42/0x60 [ 180.668586][T13559] ? kasan_save_stack+0x33/0x60 [ 180.668601][T13559] ? kasan_save_track+0x14/0x30 [ 180.668618][T13559] ? xskq_create+0x52/0x1d0 [ 180.668633][T13559] ? xsk_setsockopt+0x792/0x9a0 [ 180.668647][T13559] ? do_sock_setsockopt+0xf0/0x1d0 [ 180.668672][T13559] ? xskq_create+0xfb/0x1d0 [ 180.668691][T13559] __vmalloc_node_range_noprof+0xff5/0x14b0 [ 180.668732][T13559] ? xskq_create+0xfb/0x1d0 [ 180.668764][T13559] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 180.668799][T13559] ? xskq_create+0xfb/0x1d0 [ 180.668818][T13559] vmalloc_user_noprof+0x9e/0xe0 [ 180.668844][T13559] ? xskq_create+0xfb/0x1d0 [ 180.668864][T13559] xskq_create+0xfb/0x1d0 [ 180.668887][T13559] xsk_setsockopt+0x792/0x9a0 [ 180.668908][T13559] ? __pfx_xsk_setsockopt+0x10/0x10 [ 180.668928][T13559] ? find_held_lock+0x2b/0x80 [ 180.668951][T13559] ? selinux_socket_setsockopt+0x6a/0x80 [ 180.668968][T13559] ? __pfx_xsk_setsockopt+0x10/0x10 [ 180.668980][T13559] do_sock_setsockopt+0xf0/0x1d0 [ 180.668999][T13559] __sys_setsockopt+0x1a0/0x230 [ 180.669014][T13559] __x64_sys_setsockopt+0xbd/0x160 [ 180.669026][T13559] ? do_syscall_64+0x91/0x4e0 [ 180.669039][T13559] ? lockdep_hardirqs_on+0x7c/0x110 [ 180.669052][T13559] do_syscall_64+0xcd/0x4e0 [ 180.669068][T13559] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.669079][T13559] RIP: 0033:0x7fbfbed8eba9 [ 180.669088][T13559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 180.669099][T13559] RSP: 002b:00007fbfbfcc1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 180.669110][T13559] RAX: ffffffffffffffda RBX: 00007fbfbefd5fa0 RCX: 00007fbfbed8eba9 [ 180.669116][T13559] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000004 [ 180.669123][T13559] RBP: 00007fbfbee11e19 R08: 0000000000000004 R09: 0000000000000000 [ 180.669129][T13559] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000 [ 180.669135][T13559] R13: 00007fbfbefd6038 R14: 00007fbfbefd5fa0 R15: 00007fffc3e97ab8 [ 180.669149][T13559] [ 180.669153][T13559] Mem-Info: [ 180.704485][ T61] wlan1: Trigger new scan to find an IBSS to join [ 180.706203][T13559] active_anon:40579 inactive_anon:0 isolated_anon:0 [ 180.706203][T13559] active_file:5672 inactive_file:51431 isolated_file:0 [ 180.706203][T13559] unevictable:1768 dirty:327 writeback:0 [ 180.706203][T13559] slab_reclaimable:12802 slab_unreclaimable:74387 [ 180.706203][T13559] mapped:25013 shmem:30042 pagetables:1525 [ 180.706203][T13559] sec_pagetables:310 bounce:0 [ 180.706203][T13559] kernel_misc_reclaimable:0 [ 180.706203][T13559] free:411846 free_pcp:15327 free_cma:0 [ 180.771562][T13559] Node 0 active_anon:162216kB inactive_anon:0kB active_file:22636kB inactive_file:205524kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:99996kB dirty:1308kB writeback:0kB shmem:116632kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:2048kB kernel_stack:13232kB pagetables:5916kB sec_pagetables:1240kB all_unreclaimable? yes Balloon:0kB [ 180.783633][T13559] Node 1 active_anon:8kB inactive_anon:0kB active_file:52kB inactive_file:200kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:52kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:112kB pagetables:196kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 180.795135][T13559] Node 0 DMA free:13816kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:272kB local_pcp:0kB free_cma:0kB [ 180.806064][T13559] lowmem_reserve[]: 0 1233 1233 1233 1233 [ 180.808350][T13559] Node 0 DMA32 free:52796kB boost:16384kB min:43900kB low:50776kB high:57652kB reserved_highatomic:0KB free_highatomic:0KB active_anon:162124kB inactive_anon:0kB active_file:22636kB inactive_file:205524kB unevictable:3536kB writepending:1308kB present:2080628kB managed:1263424kB mlocked:0kB bounce:0kB free_pcp:29560kB local_pcp:8436kB free_cma:0kB [ 180.820691][T13559] lowmem_reserve[]: 0 0 0 0 0 [ 180.822533][T13559] Node 1 Normal free:1581384kB boost:0kB min:39720kB low:49648kB high:59576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:8kB inactive_anon:0kB active_file:52kB inactive_file:200kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781892kB mlocked:0kB bounce:0kB free_pcp:30704kB local_pcp:6608kB free_cma:0kB [ 180.833255][T13559] lowmem_reserve[]: 0 0 0 0 0 [ 180.835214][T13559] Node 0 DMA: 20*4kB (UM) 23*8kB (UM) 11*16kB (UM) 36*32kB (UM) 25*64kB (UM) 11*128kB (UM) 10*256kB (UM) 5*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 0*4096kB = 13816kB [ 180.841557][T13559] Node 0 DMA32: 883*4kB (UME) 168*8kB (ME) 71*16kB (ME) 94*32kB (UME) 164*64kB (UME) 78*128kB (UM) 31*256kB (UM) 14*512kB (UM) 8*1024kB (UM) 0*2048kB 0*4096kB = 52796kB [ 180.847936][T13559] Node 1 Normal: 5*4kB (UE) 7*8kB (UE) 12*16kB (UME) 24*32kB (UME) 19*64kB (UME) 5*128kB (UE) 4*256kB (ME) 5*512kB (UM) 10*1024kB (UME) 8*2048kB (UM) 378*4096kB (UM) = 1581388kB [ 180.855638][T13559] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 180.858898][T13559] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 180.861872][T13559] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 180.864920][T13559] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 180.867897][T13559] 87140 total pagecache pages [ 180.869527][T13559] 0 pages in swap cache [ 180.871057][T13559] Free swap = 124996kB [ 180.872500][T13559] Total swap = 124996kB [ 180.873800][T13559] 1048443 pages RAM [ 180.875112][T13559] 0 pages HighMem/MovableOnly [ 180.876594][T13559] 283274 pages reserved [ 180.877907][T13559] 0 pages cma reserved [ 182.101971][ T1340] IPVS: starting estimator thread 0... [ 182.205377][T13589] IPVS: using max 44 ests per chain, 105600 per kthread [ 182.254167][T13604] netlink: 'syz.0.3299': attribute type 30 has an invalid length. [ 182.436005][T13614] input: syz0 as /devices/virtual/input/input24 [ 182.534476][ T5981] Bluetooth: hci4: command 0x1003 tx timeout [ 182.536824][ T5979] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 182.622105][T13629] syzkaller1: entered promiscuous mode [ 182.624566][ T6038] usb 9-1: new high-speed USB device number 7 using dummy_hcd [ 182.625264][T13629] syzkaller1: entered allmulticast mode [ 182.638579][T13629] PF_CAN: dropped non conform CAN skbuff: dev type 280, len 324 [ 182.797441][ T6038] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 182.801053][ T6038] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 182.804019][ T6038] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 182.808029][ T6038] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 182.810740][ T6038] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 182.814604][ T6038] usb 9-1: config 0 descriptor?? [ 183.228895][ T6038] plantronics 0003:047F:FFFF.0015: ignoring exceeding usage max [ 183.239700][ T6038] plantronics 0003:047F:FFFF.0015: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 183.734435][ T54] usb 5-1: new full-speed USB device number 20 using dummy_hcd [ 183.814426][ T61] wlan1: Trigger new scan to find an IBSS to join [ 183.846049][ C3] plantronics 0003:047F:FFFF.0015: hid_field_extract() called with n (132) > 32! (swapper/3) [ 183.908362][ T54] usb 5-1: not running at top speed; connect to a high speed hub [ 183.911840][ T54] usb 5-1: config 8 has an invalid interface number: 60 but max is 0 [ 183.914448][ T54] usb 5-1: config 8 has no interface number 0 [ 183.916691][ T54] usb 5-1: config 8 interface 60 has no altsetting 0 [ 183.920297][ T54] usb 5-1: New USB device found, idVendor=1608, idProduct=0306, bcdDevice=a3.11 [ 183.923117][ T54] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 183.925682][ T54] usb 5-1: Product: syz [ 183.926984][ T54] usb 5-1: Manufacturer: syz [ 183.928406][ T54] usb 5-1: SerialNumber: syz [ 184.052248][ T1340] usb 9-1: USB disconnect, device number 7 [ 184.146434][ T54] io_ti 5-1:8.60: required endpoints missing [ 184.150164][ T54] usb 5-1: USB disconnect, device number 20 [ 184.766494][ T1143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 184.776950][ C2] ------------[ cut here ]------------ [ 184.779468][ C2] no supported rates for sta (null) (0xffffffff, band 0) in rate_mask 0x0 with flags 0x0 [ 184.783761][ C2] WARNING: CPU: 2 PID: 10774 at net/mac80211/rate.c:398 __rate_control_send_low+0x661/0x780 [ 184.787037][ C2] Modules linked in: [ 184.788666][ C2] CPU: 2 UID: 0 PID: 10774 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 184.793228][ C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 184.796503][ C2] RIP: 0010:__rate_control_send_low+0x661/0x780 [ 184.798440][ C2] Code: a4 a0 d4 00 00 00 e8 9e 58 b1 f6 44 8b 44 24 24 45 89 e9 89 d9 48 8b 74 24 08 44 89 e2 48 c7 c7 00 07 09 8d e8 30 fd 6f f6 90 <0f> 0b 90 90 e9 26 fd ff ff 48 8b 3c 24 e8 ad b7 17 f7 e9 fb fc ff [ 184.804463][ C2] RSP: 0018:ffffc90000648930 EFLAGS: 00010282 [ 184.806405][ C2] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817a4388 [ 184.808842][ C2] RDX: ffff888029e0a440 RSI: ffffffff817a4395 RDI: 0000000000000001 [ 184.811509][ C2] RBP: ffff888054972028 R08: 0000000000000001 R09: 0000000000000000 [ 184.814191][ C2] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000ffffffff [ 184.816756][ C2] R13: 0000000000000000 R14: 000000000000000c R15: ffff888054972030 [ 184.819223][ C2] FS: 000055557a341500(0000) GS:ffff8880d68b2000(0000) knlGS:0000000000000000 [ 184.822004][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 184.824056][ C2] CR2: 00007fff6463ecf8 CR3: 000000004d9d3000 CR4: 0000000000352ef0 [ 184.826610][ C2] Call Trace: [ 184.827681][ C2] [ 184.828603][ C2] rate_control_send_low+0x29a/0x820 [ 184.830283][ C2] ? trace_kmem_cache_alloc+0x28/0xc0 [ 184.832465][ C2] ? kmem_cache_alloc_node_noprof+0x225/0x3b0 [ 184.834808][ C2] rate_control_get_rate+0x1be/0x5e0 [ 184.836501][ C2] ieee80211_beacon_get_finish+0x467/0x670 [ 184.838324][ C2] ? __pfx_ieee80211_beacon_get_finish+0x10/0x10 [ 184.840297][ C2] __ieee80211_beacon_get+0xc56/0x1e40 [ 184.842035][ C2] ? __lock_acquire+0xb97/0x1ce0 [ 184.843582][ C2] ieee80211_beacon_get_tim+0xa6/0x280 [ 184.845372][ C2] ? __pfx_ieee80211_beacon_get_tim+0x10/0x10 [ 184.847290][ C2] mac80211_hwsim_beacon_tx+0x4d9/0xa40 [ 184.849025][ C2] __iterate_interfaces+0x2e5/0x650 [ 184.850714][ C2] ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10 [ 184.852714][ C2] ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10 [ 184.854698][ C2] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 184.856578][ C2] ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0 [ 184.858764][ C2] mac80211_hwsim_beacon+0x105/0x200 [ 184.860421][ C2] __hrtimer_run_queues+0x202/0xad0 [ 184.862217][ C2] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 184.864002][ C2] ? read_tsc+0x9/0x20 [ 184.865345][ C2] hrtimer_run_softirq+0x17d/0x350 [ 184.866979][ C2] handle_softirqs+0x219/0x8e0 [ 184.868473][ C2] ? __pfx_handle_softirqs+0x10/0x10 [ 184.870095][ C2] __irq_exit_rcu+0x109/0x170 [ 184.871587][ C2] irq_exit_rcu+0x9/0x30 [ 184.872889][ C2] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 184.874653][ C2] [ 184.875594][ C2] [ 184.876534][ C2] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 184.878426][ C2] RIP: 0010:lock_acquire+0x62/0x350 [ 184.880066][ C2] Code: 06 3f 12 83 f8 07 0f 87 bc 02 00 00 89 c0 48 0f a3 05 22 99 13 0f 0f 82 74 02 00 00 8b 35 da ca 13 0f 85 f6 0f 85 8d 00 00 00 <48> 8b 44 24 30 65 48 2b 05 79 06 3f 12 0f 85 c7 02 00 00 48 83 c4 [ 184.886232][ C2] RSP: 0018:ffffc90005fb7660 EFLAGS: 00000206 [ 184.888181][ C2] RAX: 0000000000000046 RBX: ffffffff8e5c15a0 RCX: 0000000025a6d233 [ 184.890723][ C2] RDX: 0000000000000000 RSI: ffffffff8de2d6e8 RDI: ffffffff8c163300 [ 184.893207][ C2] RBP: 0000000000000002 R08: e46e3c6b1d77a18c R09: 0000000000000000 [ 184.895744][ C2] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000 [ 184.898216][ C2] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 184.900689][ C2] ? unwind_next_frame+0x3f4/0x20a0 [ 184.902325][ C2] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 184.904245][ C2] unwind_next_frame+0xd1/0x20a0 [ 184.905857][ C2] ? unwind_next_frame+0xbd/0x20a0 [ 184.907472][ C2] ? shmem_evict_inode+0x182/0xbe0 [ 184.909071][ C2] ? unwind_get_return_address+0x59/0xa0 [ 184.910873][ C2] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 184.912795][ C2] arch_stack_walk+0x94/0x100 [ 184.914363][ C2] ? shmem_evict_inode+0x182/0xbe0 [ 184.915963][ C2] stack_trace_save+0x8e/0xc0 [ 184.917455][ C2] ? __pfx_stack_trace_save+0x10/0x10 [ 184.919152][ C2] ? __lock_acquire+0xb97/0x1ce0 [ 184.920761][ C2] kasan_save_stack+0x33/0x60 [ 184.922252][ C2] ? kasan_save_stack+0x33/0x60 [ 184.923772][ C2] ? kasan_save_track+0x14/0x30 [ 184.925364][ C2] ? kasan_save_free_info+0x3b/0x60 [ 184.927069][ C2] ? __kasan_slab_free+0x60/0x70 [ 184.928625][ C2] ? kfree+0x2b4/0x4d0 [ 184.929923][ C2] ? simple_xattrs_free+0x105/0x180 [ 184.931608][ C2] ? shmem_evict_inode+0x182/0xbe0 [ 184.933241][ C2] kasan_save_track+0x14/0x30 [ 184.934765][ C2] kasan_save_free_info+0x3b/0x60 [ 184.936333][ C2] __kasan_slab_free+0x60/0x70 [ 184.937829][ C2] kfree+0x2b4/0x4d0 [ 184.939197][ C2] ? simple_xattrs_free+0x105/0x180 [ 184.940842][ C2] simple_xattrs_free+0x105/0x180 [ 184.942430][ C2] shmem_evict_inode+0x182/0xbe0 [ 184.943976][ C2] ? __pfx_shmem_evict_inode+0x10/0x10 [ 184.945742][ C2] ? __pfx_inode_wait_for_writeback+0x10/0x10 [ 184.947652][ C2] ? find_held_lock+0x2b/0x80 [ 184.949083][ C2] ? evict+0x3a2/0x920 [ 184.950371][ C2] ? __pfx_shmem_evict_inode+0x10/0x10 [ 184.952072][ C2] evict+0x3e6/0x920 [ 184.953293][ C2] ? __pfx_evict+0x10/0x10 [ 184.954712][ C2] ? iput+0x519/0x880 [ 184.955963][ C2] iput+0x521/0x880 [ 184.957172][ C2] ? __pfx_generic_delete_inode+0x10/0x10 [ 184.958880][ C2] do_unlinkat+0x518/0x6a0 [ 184.960213][ C2] ? __pfx_do_unlinkat+0x10/0x10 [ 184.961788][ C2] ? getname_flags.part.0+0x1c5/0x550 [ 184.963407][ C2] __x64_sys_unlink+0xc5/0x110 [ 184.964929][ C2] do_syscall_64+0xcd/0x4e0 [ 184.966356][ C2] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.968112][ C2] RIP: 0033:0x7f1d3258e157 [ 184.969449][ C2] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 57 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 184.975430][ C2] RSP: 002b:00007fff6463f4a8 EFLAGS: 00000206 ORIG_RAX: 0000000000000057 [ 184.977959][ C2] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1d3258e157 [ 184.980398][ C2] RDX: 00007fff6463f4d0 RSI: 00007fff6463f560 RDI: 00007fff6463f560 [ 184.983003][ C2] RBP: 00007fff6463f560 R08: 0000000000000000 R09: 0000000000000000 [ 184.985463][ C2] R10: 0000000000000100 R11: 0000000000000206 R12: 00007fff646405f0 [ 184.987895][ C2] R13: 00007f1d32611c05 R14: 000000000002d141 R15: 00007fff64640630 [ 184.990277][ C2] [ 184.991262][ C2] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 184.993431][ C2] CPU: 2 UID: 0 PID: 10774 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 184.996334][ C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 184.999580][ C2] Call Trace: [ 185.000632][ C2] [ 185.001540][ C2] dump_stack_lvl+0x3d/0x1f0 [ 185.003000][ C2] vpanic+0x6e8/0x7a0 [ 185.004274][ C2] ? __pfx_vpanic+0x10/0x10 [ 185.005717][ C2] ? __rate_control_send_low+0x661/0x780 [ 185.007491][ C2] panic+0xca/0xd0 [ 185.008685][ C2] ? __pfx_panic+0x10/0x10 [ 185.010109][ C2] ? check_panic_on_warn+0x1f/0xb0 [ 185.011741][ C2] check_panic_on_warn+0xab/0xb0 [ 185.013310][ C2] __warn+0xf6/0x3c0 [ 185.014510][ C2] ? __pfx_vprintk_emit+0x10/0x10 [ 185.016082][ C2] ? __rate_control_send_low+0x661/0x780 [ 185.017852][ C2] report_bug+0x3c3/0x580 [ 185.019219][ C2] ? __rate_control_send_low+0x661/0x780 [ 185.020984][ C2] handle_bug+0x184/0x210 [ 185.022359][ C2] exc_invalid_op+0x17/0x50 [ 185.023794][ C2] asm_exc_invalid_op+0x1a/0x20 [ 185.025322][ C2] RIP: 0010:__rate_control_send_low+0x661/0x780 [ 185.027299][ C2] Code: a4 a0 d4 00 00 00 e8 9e 58 b1 f6 44 8b 44 24 24 45 89 e9 89 d9 48 8b 74 24 08 44 89 e2 48 c7 c7 00 07 09 8d e8 30 fd 6f f6 90 <0f> 0b 90 90 e9 26 fd ff ff 48 8b 3c 24 e8 ad b7 17 f7 e9 fb fc ff [ 185.033228][ C2] RSP: 0018:ffffc90000648930 EFLAGS: 00010282 [ 185.035132][ C2] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817a4388 [ 185.037581][ C2] RDX: ffff888029e0a440 RSI: ffffffff817a4395 RDI: 0000000000000001 [ 185.040053][ C2] RBP: ffff888054972028 R08: 0000000000000001 R09: 0000000000000000 [ 185.042421][ C2] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000ffffffff [ 185.044862][ C2] R13: 0000000000000000 R14: 000000000000000c R15: ffff888054972030 [ 185.047354][ C2] ? __warn_printk+0x198/0x350 [ 185.048860][ C2] ? __warn_printk+0x1a5/0x350 [ 185.050333][ C2] rate_control_send_low+0x29a/0x820 [ 185.051996][ C2] ? trace_kmem_cache_alloc+0x28/0xc0 [ 185.053696][ C2] ? kmem_cache_alloc_node_noprof+0x225/0x3b0 [ 185.055797][ C2] rate_control_get_rate+0x1be/0x5e0 [ 185.058021][ C2] ieee80211_beacon_get_finish+0x467/0x670 [ 185.060478][ C2] ? __pfx_ieee80211_beacon_get_finish+0x10/0x10 [ 185.063124][ C2] __ieee80211_beacon_get+0xc56/0x1e40 [ 185.065404][ C2] ? __lock_acquire+0xb97/0x1ce0 [ 185.067532][ C2] ieee80211_beacon_get_tim+0xa6/0x280 [ 185.069784][ C2] ? __pfx_ieee80211_beacon_get_tim+0x10/0x10 [ 185.072303][ C2] mac80211_hwsim_beacon_tx+0x4d9/0xa40 [ 185.074655][ C2] __iterate_interfaces+0x2e5/0x650 [ 185.076820][ C2] ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10 [ 185.079394][ C2] ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10 [ 185.081915][ C2] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 185.083764][ C2] ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0 [ 185.085934][ C2] mac80211_hwsim_beacon+0x105/0x200 [ 185.087603][ C2] __hrtimer_run_queues+0x202/0xad0 [ 185.089231][ C2] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 185.091149][ C2] ? read_tsc+0x9/0x20 [ 185.092373][ C2] hrtimer_run_softirq+0x17d/0x350 [ 185.093834][ C2] handle_softirqs+0x219/0x8e0 [ 185.095350][ C2] ? __pfx_handle_softirqs+0x10/0x10 [ 185.097028][ C2] __irq_exit_rcu+0x109/0x170 [ 185.098540][ C2] irq_exit_rcu+0x9/0x30 [ 185.099877][ C2] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 185.101672][ C2] [ 185.102616][ C2] [ 185.103565][ C2] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 185.105449][ C2] RIP: 0010:lock_acquire+0x62/0x350 [ 185.107092][ C2] Code: 06 3f 12 83 f8 07 0f 87 bc 02 00 00 89 c0 48 0f a3 05 22 99 13 0f 0f 82 74 02 00 00 8b 35 da ca 13 0f 85 f6 0f 85 8d 00 00 00 <48> 8b 44 24 30 65 48 2b 05 79 06 3f 12 0f 85 c7 02 00 00 48 83 c4 [ 185.113267][ C2] RSP: 0018:ffffc90005fb7660 EFLAGS: 00000206 [ 185.115176][ C2] RAX: 0000000000000046 RBX: ffffffff8e5c15a0 RCX: 0000000025a6d233 [ 185.117673][ C2] RDX: 0000000000000000 RSI: ffffffff8de2d6e8 RDI: ffffffff8c163300 [ 185.120123][ C2] RBP: 0000000000000002 R08: e46e3c6b1d77a18c R09: 0000000000000000 [ 185.122994][ C2] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000 [ 185.125437][ C2] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 185.127933][ C2] ? unwind_next_frame+0x3f4/0x20a0 [ 185.129789][ C2] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 185.131744][ C2] unwind_next_frame+0xd1/0x20a0 [ 185.133320][ C2] ? unwind_next_frame+0xbd/0x20a0 [ 185.134936][ C2] ? shmem_evict_inode+0x182/0xbe0 [ 185.136538][ C2] ? unwind_get_return_address+0x59/0xa0 [ 185.138307][ C2] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 185.140224][ C2] arch_stack_walk+0x94/0x100 [ 185.142127][ C2] ? shmem_evict_inode+0x182/0xbe0 [ 185.143932][ C2] stack_trace_save+0x8e/0xc0 [ 185.145424][ C2] ? __pfx_stack_trace_save+0x10/0x10 [ 185.147109][ C2] ? __lock_acquire+0xb97/0x1ce0 [ 185.148671][ C2] kasan_save_stack+0x33/0x60 [ 185.150167][ C2] ? kasan_save_stack+0x33/0x60 [ 185.151721][ C2] ? kasan_save_track+0x14/0x30 [ 185.153220][ C2] ? kasan_save_free_info+0x3b/0x60 [ 185.154869][ C2] ? __kasan_slab_free+0x60/0x70 [ 185.156464][ C2] ? kfree+0x2b4/0x4d0 [ 185.157769][ C2] ? simple_xattrs_free+0x105/0x180 [ 185.159394][ C2] ? shmem_evict_inode+0x182/0xbe0 [ 185.161085][ C2] kasan_save_track+0x14/0x30 [ 185.162576][ C2] kasan_save_free_info+0x3b/0x60 [ 185.164132][ C2] __kasan_slab_free+0x60/0x70 [ 185.165649][ C2] kfree+0x2b4/0x4d0 [ 185.166914][ C2] ? simple_xattrs_free+0x105/0x180 [ 185.168552][ C2] simple_xattrs_free+0x105/0x180 [ 185.170141][ C2] shmem_evict_inode+0x182/0xbe0 [ 185.171723][ C2] ? __pfx_shmem_evict_inode+0x10/0x10 [ 185.173458][ C2] ? __pfx_inode_wait_for_writeback+0x10/0x10 [ 185.175366][ C2] ? find_held_lock+0x2b/0x80 [ 185.176851][ C2] ? evict+0x3a2/0x920 [ 185.178152][ C2] ? __pfx_shmem_evict_inode+0x10/0x10 [ 185.179856][ C2] evict+0x3e6/0x920 [ 185.181346][ C2] ? __pfx_evict+0x10/0x10 [ 185.183151][ C2] ? iput+0x519/0x880 [ 185.184856][ C2] iput+0x521/0x880 [ 185.186521][ C2] ? __pfx_generic_delete_inode+0x10/0x10 [ 185.188936][ C2] do_unlinkat+0x518/0x6a0 [ 185.190845][ C2] ? __pfx_do_unlinkat+0x10/0x10 [ 185.192965][ C2] ? getname_flags.part.0+0x1c5/0x550 [ 185.195215][ C2] __x64_sys_unlink+0xc5/0x110 [ 185.197245][ C2] do_syscall_64+0xcd/0x4e0 [ 185.199159][ C2] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.201580][ C2] RIP: 0033:0x7f1d3258e157 [ 185.203433][ C2] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 57 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 185.211232][ C2] RSP: 002b:00007fff6463f4a8 EFLAGS: 00000206 ORIG_RAX: 0000000000000057 [ 185.214685][ C2] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1d3258e157 [ 185.217536][ C2] RDX: 00007fff6463f4d0 RSI: 00007fff6463f560 RDI: 00007fff6463f560 [ 185.219879][ C2] RBP: 00007fff6463f560 R08: 0000000000000000 R09: 0000000000000000 [ 185.222307][ C2] R10: 0000000000000100 R11: 0000000000000206 R12: 00007fff646405f0 [ 185.224689][ C2] R13: 00007f1d32611c05 R14: 000000000002d141 R15: 00007fff64640630 [ 185.227146][ C2] [ 185.228816][ C2] Kernel Offset: disabled [ 185.230142][ C2] Rebooting in 86400 seconds.. VM DIAGNOSIS: 22:05:02 Registers: info registers vcpu 0 CPU#0 RAX=00000000001e929b RBX=0000000000000000 RCX=ffffffff8b94bb49 RDX=0000000000000000 RSI=ffffffff8de52c58 RDI=ffffffff8c163300 RBP=fffffbfff1c52ef8 RSP=ffffffff8e207e08 R8 =0000000000000001 R9 =ffffed100d486655 R10=ffff88806a4332ab R11=0000000000000000 R12=0000000000000000 R13=ffffffff8e2977c0 R14=ffffffff90ab7290 R15=0000000000000000 RIP=ffffffff8b94a68f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d66b2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f1d33390f98 CR3=000000003d2e7000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000080040001 Opmask01=0000000020080810 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc95bebbd0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc95bebd56 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc95bebd56 00007ffc95bebd5c ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f78cf412e46 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f78cf412e53 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f78cf412e4d ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f78cf412e61 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f78cf412ee7 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f78cf412fc5 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000205393 RBX=0000000000000001 RCX=ffffffff8b94bb49 RDX=0000000000000000 RSI=ffffffff8de52c58 RDI=ffffffff8c163300 RBP=ffffed1003bd1488 RSP=ffffc90000177df8 R8 =0000000000000001 R9 =ffffed100d4a6655 R10=ffff88806a5332ab R11=0000000000000000 R12=0000000000000001 R13=ffff88801de8a440 R14=ffffffff90ab7290 R15=0000000000000000 RIP=ffffffff8b94a68f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d67b2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f0a631f69e8 CR3=000000003b512000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555565eca730 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555565edb891 0000555565edb670 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555565ecad84 0000555565ecad80 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555565ed0483 0000555565ed02b0 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555565ecc108 0000555565ecc100 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0401c70800060141 aa0030656c69662f 2e01ffffffffffff ffffef080880030c ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 80c0100002868004 0100000008060601 51c0601000048004 0100000008060601 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 030e080020030000 0002100610030008 00080301a0080000 0310028690020501 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0e080048030a0400 4403000400400342 8080900800380306 0800300356080028 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0870031008006803 1008006003000400 5c0300040058031f fffffffc08005003 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0101a01000000401 0000000806060177 fa00000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0001ffffffffffff ffffcf0870031008 0068031008006003 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0004005c03000400 58031ffffffffc08 0050030e08004803 0a04004403000400 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4003428080900800 3803060800300356 080028030e080020 0300000002100610 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=000000000000006b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8564b815 RDI=ffffffff9b1180e0 RBP=ffffffff9b1180a0 RSP=ffffc900006482a0 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=000000000000006b R14=ffffffff9b1180a0 R15=ffffffff8564b7b0 RIP=ffffffff8564b83f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 000055557a341500 ffffffff 00c00000 GS =0000 ffff8880d68b2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007fff6463ecf8 CR3=000000004d9d3000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000020081 Opmask01=0000000020080810 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff6463f4b0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff64640726 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff64640726 00007fff6464072c ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1d32612e46 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1d32612e53 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1d32612e4d ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1d32612e61 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1d32612ee7 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1d32612fc5 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 47414c46585f5346 2074657365720064 656c696166202973 2528746174736c00 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 47414c46585f5346 0551405640570041 40494c4443050c56 000d514451564900 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=000000000014d5f1 RBX=0000000000000003 RCX=ffffffff8b94bb49 RDX=0000000000000000 RSI=ffffffff8de52c58 RDI=ffffffff8c163300 RBP=ffffed1003c54000 RSP=ffffc90000197df8 R8 =0000000000000001 R9 =ffffed100d4e6655 R10=ffff88806a7332ab R11=0000000000000000 R12=0000000000000003 R13=ffff88801e2a0000 R14=ffffffff90ab7290 R15=0000000000000000 RIP=ffffffff8b94a68f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d69b2000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000563195411e68 CR3=000000004c0f6000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000080040001 Opmask01=0000000002fefce0 Opmask02=0000000002fefcfe Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd20964280 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd20964406 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd20964406 00007ffd2096440c ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2372e12e46 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2372e12e53 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2372e12e4d ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2372e12e61 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2372e12ee7 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f2372e12fc5 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000