last executing test programs: 2m27.081061515s ago: executing program 3 (id=5428): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000280)='ns/net\x00') bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000480)={@cgroup=r1, 0x11, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0}, 0x40) 2m27.012363506s ago: executing program 3 (id=5433): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0xf6272000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) timer_gettime(0x0, 0x0) 2m26.796520763s ago: executing program 3 (id=5443): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000100000000000a20000000000a01010000000000000000010000000900010073797a300000000068000000090a010400000000000000000100000008000a4000000000200011800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30000000000900020073797a3200000000080005400000001f0c000980080001400037"], 0xb0}}, 0x0) sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[@ANYBLOB="00010000010a0101"], 0x100}, 0x1, 0x0, 0x0, 0x4040000}, 0x0) 2m26.445793392s ago: executing program 3 (id=5462): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f00000007c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000780)='./file0\x00', 0x0) 2m26.401493636s ago: executing program 3 (id=5463): socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r0 = io_uring_setup(0x3d68, &(0x7f0000000000)={0x0, 0xef52, 0x1, 0x1, 0x2ae}) io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0x14, &(0x7f0000003480)={0x4, 0x0, 0x4, &(0x7f00000001c0)=[{0x0}, {0x0}, {0x0}, {0x0}], 0x0}, 0x2) io_uring_enter(r0, 0x18, 0x0, 0x1f, 0x0, 0x0) 2m26.177795229s ago: executing program 3 (id=5473): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_netprio_ifpriomap(r0, &(0x7f0000000080), 0x2, 0x0) sendfile(r1, r1, 0x0, 0x200) 2m26.082683156s ago: executing program 32 (id=5473): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_netprio_ifpriomap(r0, &(0x7f0000000080), 0x2, 0x0) sendfile(r1, r1, 0x0, 0x200) 1m50.387124515s ago: executing program 1 (id=6467): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r0 = socket$kcm(0x2, 0x200000000000001, 0x106) sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x30004001) setsockopt$sock_attach_bpf(r0, 0x1, 0x24, &(0x7f0000000000), 0x4) 1m50.317904118s ago: executing program 1 (id=6468): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000000000000000000ff0f0000020000000900000041757468"]) 1m50.263655014s ago: executing program 1 (id=6470): r0 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) fsmount(r0, 0x0, 0x88) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) 1m50.190883102s ago: executing program 1 (id=6472): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000280)='./file0\x00', 0x0, 0x97801, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x112) 1m50.190180413s ago: executing program 1 (id=6473): syz_open_dev$tty20(0xc, 0x4, 0x0) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000006a80), 0x101101, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000100)='./cgroup.net/cgroup.procs\x00', &(0x7f0000000140), 0x21c804, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 1m49.910450354s ago: executing program 1 (id=6477): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_STATION(r1, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000480)={0x2c, r0, 0x9, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_STA_EXT_CAPABILITY={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x4000000) 1m49.82825082s ago: executing program 33 (id=6477): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_STATION(r1, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000480)={0x2c, r0, 0x9, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_STA_EXT_CAPABILITY={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x4000000) 1m24.216309533s ago: executing program 4 (id=7114): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd2d, 0x0, {{@in6=@empty, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x407ffffffffffe, 0x800000000000002}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in=@remote, 0x0, 0x3c}, 0x2, @in6=@local, 0x6, 0x4, 0x3, 0x0, 0x401}]}]}, 0xfc}}, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e24, 0x2, @rand_addr, 0x6}, 0x1c) 1m23.375582655s ago: executing program 4 (id=7137): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000080)={0x44, 0x0, &(0x7f0000000140)=[@reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0}) dup3(r0, 0xffffffffffffffff, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x100000000000000, &(0x7f00000004c0)="f4"}) 1m23.288026345s ago: executing program 4 (id=7138): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f00000004c0)={r1, @in={{0x2, 0xfffe, @empty}}, 0x1, 0x7ffe}, 0x90) 1m23.287514782s ago: executing program 4 (id=7139): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount$nfs(&(0x7f00000001c0)='..\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x85000, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) close(r0) 1m23.237775029s ago: executing program 4 (id=7140): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) sendmmsg$inet6(r0, &(0x7f0000000900)=[{{&(0x7f0000000240)={0xa, 0x4e24, 0x9, @dev={0xfe, 0x80, '\x00', 0x14}, 0x6}, 0x1c, &(0x7f00000003c0)=[{&(0x7f0000000280)='Q', 0x1}], 0x1}}, {{&(0x7f0000000040)={0xa, 0x4e23, 0xa2cc, @local, 0xf}, 0x1c, &(0x7f0000000880)=[{&(0x7f0000000080)='\\', 0x1}], 0x1}}], 0x2, 0x4000844) shutdown(r0, 0x1) getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000500)=@assoc_value={0x0, 0x80}, &(0x7f0000000540)=0x8) 1m23.010875604s ago: executing program 4 (id=7145): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x7fc00101}]}) epoll_create1(0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000004c0)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x80082102, &(0x7f0000000000)={r1, 0x3}) 1m22.906107268s ago: executing program 34 (id=7145): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x7fc00101}]}) epoll_create1(0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000004c0)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x80082102, &(0x7f0000000000)={r1, 0x3}) 556.937542ms ago: executing program 6 (id=9665): munmap(&(0x7f0000001000/0x4000)=nil, 0x4000) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000cc0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)=""/233, 0xe9}], 0x1, &(0x7f0000001d00)=""/4080, 0xff0}, 0x0) close(r0) 478.402856ms ago: executing program 6 (id=9670): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_CQM(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)={0x2c, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_CQM={0x10, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x4}, @NL80211_ATTR_CQM_RSSI_HYST={0x8}]}]}, 0x2c}}, 0x0) 443.466203ms ago: executing program 6 (id=9674): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000002, 0x200000005c832, 0xffffffffffffffff, 0x0) 439.169436ms ago: executing program 2 (id=9676): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000001c0)={'wg0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001380)={&(0x7f00000013c0)=@ipv4_newroute={0x2c, 0x1a, 0x1, 0x70bd29, 0x0, {0x2, 0x20, 0x20, 0x5, 0x0, 0x3, 0x0, 0x5, 0x2000}, [@RTA_DST={0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x2e}}, @RTA_OIF={0x8, 0x4, r2}]}, 0x2c}}, 0x0) 304.892276ms ago: executing program 2 (id=9682): r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000300)={'vxcan1\x00', 0x0}) bind$can_raw(r0, &(0x7f0000000000)={0x1d, r1}, 0x10) setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, &(0x7f00000000c0), 0xf00) 300.733495ms ago: executing program 2 (id=9684): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) connect$inet(r0, &(0x7f0000000280)={0x2, 0x4e24, @multicast2}, 0x10) connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e20, @multicast2}, 0x10) 249.898874ms ago: executing program 5 (id=9686): r0 = socket$netlink(0x10, 0x3, 0x15) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000040)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4543(authenc(crct10dif-pclmul,cbc(aes)))\x00'}, 0x58) sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="04010000100053"], 0x104}, 0x1, 0x0, 0x0, 0x20040890}, 0x200080c0) 249.671271ms ago: executing program 2 (id=9687): socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)) epoll_ctl$EPOLL_CTL_ADD(r1, 0x2, r0, 0x0) 245.547289ms ago: executing program 0 (id=9688): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000380)=ANY=[@ANYBLOB="8400000010000305000000040000000000000000", @ANYRES32=0x0, @ANYBLOB="1546010000000000540012800c0001006d6163766c616e0044000280060002000100000008000900010000000800030003000000080007000500000008000100100000000600020001000000100005800a000400aaaaaaaaaa2e000008000500", @ANYRES32=r1], 0x84}}, 0x20008040) 245.059662ms ago: executing program 2 (id=9689): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="020000000000000010"]) 202.411048ms ago: executing program 0 (id=9690): r0 = socket$can_raw(0x1d, 0x3, 0x1) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000000c0)={'batadv0\x00', 0x0}) sendto$packet(r1, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @link_local}, 0x14) 197.664758ms ago: executing program 6 (id=9691): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f00000002c0)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r0, 0xc05064a7, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000003c0), 0x0, 0x5, 0x0, 0x0, r1}) 140.016034ms ago: executing program 0 (id=9692): r0 = syz_open_procfs(0x0, &(0x7f0000000480)='task\x00') fchdir(r0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0x1c8, 0x12) 139.476652ms ago: executing program 6 (id=9693): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000100)={r1, 0x0, 0x3, 0x0, 0x10, 0x7}, 0x14) 129.347017ms ago: executing program 0 (id=9694): openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xc) r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x87) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x580000a, 0x13, r0, 0x0) 128.153646ms ago: executing program 6 (id=9695): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000680), 0x40000, 0x19) 120.099425ms ago: executing program 2 (id=9696): r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x20880) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000080)=0x4) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1]) 111.390044ms ago: executing program 5 (id=9697): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'tunl0\x00', 0x0}) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0x3da, 0x4) sendto$packet(r0, &(0x7f00000000c0)="3f03fe7f0302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c153cfdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r1, 0x1, 0x0, 0x6, @multicast}, 0x14) 67.199059ms ago: executing program 0 (id=9698): ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000001440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r0, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1) 66.661664ms ago: executing program 5 (id=9699): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e78, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x80}}]}, {0x2}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x40000) syz_open_dev$mouse(&(0x7f0000000000), 0x0, 0x8042) r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x822b01) write$char_usb(r0, &(0x7f0000000040)="e2", 0x12d8) 66.279966ms ago: executing program 0 (id=9700): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x1, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)={0x1, 0x0, [{0x3f1, 0x0, 0x1}]}) 63.887912ms ago: executing program 5 (id=9701): setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x30, 0x0, 0x0, 0x400}]}, 0x10) capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7}) r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5393, &(0x7f0000000000)) 2.953206ms ago: executing program 5 (id=9702): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000800000095000000"], &(0x7f0000000200)='syzkaller\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='contention_end\x00', r0}, 0x18) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCMSET(r1, 0x5418, &(0x7f0000000140)=0xffffbdfb) 0s ago: executing program 5 (id=9703): r0 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_ERR_FILTER(r0, 0x65, 0x7, &(0x7f00000001c0)=0x8, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'vcan0\x00', 0x0}) sendmsg$can_raw(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x1d, r1}, 0x10, &(0x7f00000005c0)={&(0x7f0000000100)=@can={{}, 0x80, 0x3, 0x4, 0x2, "07000000008000"}, 0x210}}, 0x0) kernel console output (not intermixed with test programs): 4, lost async page write [ 204.179299][T19481] Buffer I/O error on dev loop6, logical block 5, lost async page write [ 204.182188][T19481] Buffer I/O error on dev loop6, logical block 6, lost async page write [ 204.261128][T19489] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present [ 204.328028][T19495] netlink: 'syz.0.6257': attribute type 11 has an invalid length. [ 204.330807][T19495] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6257'. [ 204.863854][T19553] netlink: 'syz.4.6284': attribute type 2 has an invalid length. [ 205.138258][T19576] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6293'. [ 205.581499][T19616] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6310'. [ 206.138033][T19674] [U] [ 206.139971][T19674] [U] [ 206.141131][T19674] [U] [ 206.142298][T19674] [U] [ 206.143536][T19674] [U] [ 206.144464][T19674] [U] [ 206.145386][T19674] [U] [ 206.146427][T19674] [U] [ 206.148637][T19674] [U] [ 206.149900][T19674] [U] [ 206.151117][T19674] [U] [ 206.152309][T19674] [U] [ 206.153610][T19674] [U] [ 206.154835][T19674] [U] [ 206.156064][T19674] [U] [ 206.157309][T19674] [U] [ 206.158813][T19674] [U] [ 206.160035][T19674] [U] [ 206.161231][T19674] [U] [ 206.162426][T19674] [U] [ 206.163713][T19674] [U] [ 206.164939][T19674] [U] [ 206.166163][T19674] [U] [ 206.167356][T19674] [U] [ 206.170411][T19674] [U] [ 206.171627][T19674] [U] [ 206.172819][T19674] [U] [ 206.174003][T19674] [U] [ 206.175861][T19674] [U] [ 206.177099][T19674] [U] [ 206.178293][T19674] [U] [ 206.179481][T19674] [U] [ 206.182593][T19674] [U] [ 206.183809][T19674] [U] [ 206.185069][T19674] [U] [ 206.186284][T19674] [U] [ 206.187715][T19674] [U] [ 206.188634][T19674] [U] [ 206.189521][T19674] [U] [ 206.190429][T19674] [U] [ 206.191489][T19674] [U] [ 206.192987][T19674] [U] [ 206.194162][T19674] [U] [ 206.195285][T19674] [U] [ 206.197336][T19674] [U] [ 206.198557][T19674] [U] [ 206.199740][T19674] [U] [ 206.200964][T19674] [U] [ 206.202290][T19674] [U] [ 206.203485][T19674] [U] [ 206.204645][T19674] [U] [ 206.205851][T19674] [U] [ 206.207815][T19674] [U] [ 206.208991][T19674] [U] [ 206.210212][T19674] [U] [ 206.211412][T19674] [U] [ 206.212674][T19674] [U] [ 206.213792][T19674] [U] [ 206.214959][T19674] [U] [ 206.216122][T19674] [U] [ 206.218033][T19674] [U] [ 206.219204][T19674] [U] [ 206.220348][T19674] [U] [ 206.221534][T19674] [U] [ 206.222758][T19674] [U] [ 206.223955][T19674] [U] [ 206.225221][T19674] [U] [ 206.226427][T19674] [U] [ 206.227740][T19674] [U] [ 206.228928][T19674] [U] [ 206.230104][T19674] [U] [ 206.231311][T19674] [U] [ 206.232536][T19674] [U] [ 206.233708][T19674] [U] [ 206.234862][T19674] [U] [ 206.235763][T19674] [U] [ 206.236749][T19674] [U] [ 206.237637][T19674] [U] [ 206.238524][T19674] [U] [ 206.239407][T19674] [U] [ 206.240305][T19674] [U] [ 206.241186][T19674] [U] [ 206.242068][T19674] [U] [ 206.243112][T19674] [U] [ 206.244006][T19674] [U] [ 206.244901][T19674] [U] [ 206.246012][T19674] [U] [ 206.246994][T19674] [U] [ 206.247968][T19674] [U] [ 206.248855][T19674] [U] [ 206.249734][T19674] [U] [ 206.250625][T19674] [U] [ 206.251541][T19674] [U] [ 206.252455][T19674] [U] [ 206.253528][T19674] [U] [ 206.254463][T19674] [U] [ 206.255453][T19674] [U] [ 206.256365][T19674] [U] [ 206.257237][T19674] [U] [ 206.258136][T19674] [U] [ 206.259046][T19674] [U] [ 206.259941][T19674] [U] [ 206.260827][T19674] [U] [ 206.261714][T19674] [U] [ 206.262658][T19674] [U] [ 206.263536][T19674] [U] [ 206.264412][T19674] [U] [ 206.265339][T19674] [U] [ 206.266312][T19674] [U] [ 206.267199][T19674] [U] [ 206.268079][T19674] [U] [ 206.268954][T19674] [U] [ 206.269846][T19674] [U] [ 206.270727][T19674] [U] [ 206.271612][T19674] [U] [ 206.272529][T19674] [U] [ 206.273437][T19674] [U] [ 206.274347][T19674] [U] [ 206.275247][T19674] [U] [ 206.276151][T19674] [U] [ 206.277135][T19674] [U] [ 206.278020][T19674] [U] [ 206.278914][T19674] [U] [ 206.279797][T19674] [U] [ 206.280738][T19674] [U] [ 206.281637][T19674] [U] [ 206.282606][T19674] [U] [ 206.322337][T19673] [U] [ 206.654569][ T10] usb 6-1: new full-speed USB device number 9 using dummy_hcd [ 206.807268][ T10] usb 6-1: config 0 has no interfaces? [ 206.809576][ T10] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 206.813216][ T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 206.823991][ T10] usb 6-1: config 0 descriptor?? [ 206.916662][T19713] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6353'. [ 206.990938][T19720] netlink: 'syz.2.6356': attribute type 21 has an invalid length. [ 206.993542][T19720] netlink: 16166 bytes leftover after parsing attributes in process `syz.2.6356'. [ 207.033881][ T10] usb 6-1: USB disconnect, device number 9 [ 207.350633][T19746] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 207.767000][T19784] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6385'. [ 207.903679][T19802] netlink: 27 bytes leftover after parsing attributes in process `syz.0.6389'. [ 208.274403][T19845] netlink: 212336 bytes leftover after parsing attributes in process `syz.1.6414'. [ 208.524790][T19876] overlay: filesystem on ./bus not supported [ 208.603317][T19880] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6428'. [ 208.706273][T19891] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6434'. [ 208.999428][ T1933] kernel write not supported for file /amidi2 (pid: 1933 comm: kworker/2:3) [ 209.153410][T19922] sg_write: data in/out 489/14 bytes for SCSI command 0xb-- guessing data in; [ 209.153410][T19922] program syz.1.6446 not setting count and/or reply_len properly [ 209.473844][T19957] __nla_validate_parse: 1 callbacks suppressed [ 209.473856][T19957] netlink: 96 bytes leftover after parsing attributes in process `syz.4.6464'. [ 209.641149][T19967] Invalid ELF header magic: != ELF [ 209.744790][ T61] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 209.900872][ T61] usb 9-1: Using ep0 maxpacket: 32 [ 209.905383][ T61] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 209.909703][ T61] usb 9-1: config 0 has no interfaces? [ 209.911975][ T61] usb 9-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 209.915880][ T61] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 209.921246][ T61] usb 9-1: config 0 descriptor?? [ 210.050753][T19983] misc userio: Can't change port type on an already running userio instance [ 210.130244][T19959] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 210.134999][T19959] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 210.142452][ T6043] usb 9-1: USB disconnect, device number 3 [ 210.170992][T18340] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 210.174699][T18340] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 210.259554][ T5986] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 210.268420][ T5986] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 210.271078][T18340] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 210.272086][ T5986] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 210.274272][T18340] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 210.277907][ T5986] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 210.283262][ T5986] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 210.345787][T18340] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 210.349004][T18340] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 210.411998][T18340] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 210.417765][T18340] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 210.495153][T19987] chnl_net:caif_netlink_parms(): no params data found [ 210.637396][T19987] bridge0: port 1(bridge_slave_0) entered blocking state [ 210.639911][T19987] bridge0: port 1(bridge_slave_0) entered disabled state [ 210.642194][T19987] bridge_slave_0: entered allmulticast mode [ 210.645331][T19987] bridge_slave_0: entered promiscuous mode [ 210.659945][T19987] bridge0: port 2(bridge_slave_1) entered blocking state [ 210.662709][T19987] bridge0: port 2(bridge_slave_1) entered disabled state [ 210.666037][T19987] bridge_slave_1: entered allmulticast mode [ 210.668710][T19987] bridge_slave_1: entered promiscuous mode [ 210.747578][T20027] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6493'. [ 210.751416][T20027] netlink: 277 bytes leftover after parsing attributes in process `syz.2.6493'. [ 210.754904][T20027] netlink: 277 bytes leftover after parsing attributes in process `syz.2.6493'. [ 210.761112][T19987] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 210.767119][T19987] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 210.815030][ T5982] Bluetooth: hci2: command 0x0405 tx timeout [ 210.962348][T18340] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 210.965389][T18340] bond_slave_0: left promiscuous mode [ 210.968430][T18340] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 210.971388][T18340] bond_slave_1: left promiscuous mode [ 210.973996][T18340] bond0 (unregistering): Released all slaves [ 211.013926][T19987] team0: Port device team_slave_0 added [ 211.017703][T19987] team0: Port device team_slave_1 added [ 211.064303][T19987] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 211.067395][T19987] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 211.078678][T19987] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 211.082403][T18340] tipc: Disabling bearer [ 211.086609][T18340] tipc: Left network mode [ 211.087240][T19987] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 211.090403][T19987] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 211.100171][T19987] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 211.154372][T19987] hsr_slave_0: entered promiscuous mode [ 211.159363][T19987] hsr_slave_1: entered promiscuous mode [ 211.161439][T19987] debugfs: 'hsr0' already exists in 'hsr' [ 211.163277][T19987] Cannot create hsr debugfs directory [ 211.265363][T18340] hsr_slave_0: left promiscuous mode [ 211.267550][T18340] hsr_slave_1: left promiscuous mode [ 211.269605][T18340] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 211.271952][T18340] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 211.274672][T18340] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 211.276981][T18340] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 211.294259][T18340] batadv_slave_1: left promiscuous mode [ 211.296214][T18340] veth1_macvtap: left promiscuous mode [ 211.297985][T18340] veth0_macvtap: left promiscuous mode [ 211.299724][T18340] veth1_vlan: left promiscuous mode [ 211.301352][T18340] veth0_vlan: left promiscuous mode [ 211.350022][T18340] pimreg (unregistering): left allmulticast mode [ 211.912367][T18340] team0 (unregistering): Port device team_slave_1 removed [ 211.950238][T18340] team0 (unregistering): Port device team_slave_0 removed [ 212.337400][ T5989] Bluetooth: hci0: command tx timeout [ 212.521722][T19987] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 212.525821][T19987] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 212.529651][T19987] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 212.533541][T19987] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 212.589627][T19987] 8021q: adding VLAN 0 to HW filter on device bond0 [ 212.600572][T19987] 8021q: adding VLAN 0 to HW filter on device team0 [ 212.605971][ T1143] bridge0: port 1(bridge_slave_0) entered blocking state [ 212.608659][ T1143] bridge0: port 1(bridge_slave_0) entered forwarding state [ 212.616021][T18335] bridge0: port 2(bridge_slave_1) entered blocking state [ 212.618322][T18335] bridge0: port 2(bridge_slave_1) entered forwarding state [ 212.749334][T19987] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 212.824389][T18340] IPVS: stop unused estimator thread 0... [ 212.970250][T19987] veth0_vlan: entered promiscuous mode [ 212.977002][T19987] veth1_vlan: entered promiscuous mode [ 212.997079][T19987] veth0_macvtap: entered promiscuous mode [ 213.002635][T19987] veth1_macvtap: entered promiscuous mode [ 213.020056][T19987] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 213.028003][T19987] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 213.038264][T18376] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 213.041034][T18376] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 213.044089][T18376] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 213.047806][T18376] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 213.090594][T18380] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 213.093018][T18380] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 213.108103][T18355] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 213.110626][T18355] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 213.146981][T20047] netlink: 'syz.5.6478': attribute type 1 has an invalid length. [ 213.154189][T20049] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6502'. [ 213.531459][T20100] netlink: 830 bytes leftover after parsing attributes in process `syz.2.6518'. [ 213.536395][T20100] bond_slave_0: entered promiscuous mode [ 213.539217][T20100] bond_slave_1: entered promiscuous mode [ 214.030587][T20147] loop6: detected capacity change from 0 to 63 [ 214.040705][T20147] Buffer I/O error on dev loop6, logical block 0, lost async page write [ 214.044120][T20147] Buffer I/O error on dev loop6, logical block 1, lost async page write [ 214.047781][T20147] Buffer I/O error on dev loop6, logical block 2, lost async page write [ 214.051281][T20147] Buffer I/O error on dev loop6, logical block 3, lost async page write [ 214.055153][T20147] Buffer I/O error on dev loop6, logical block 4, lost async page write [ 214.058032][T20147] Buffer I/O error on dev loop6, logical block 5, lost async page write [ 214.061842][T20147] Buffer I/O error on dev loop6, logical block 6, lost async page write [ 214.404585][ T5989] Bluetooth: hci0: command tx timeout [ 215.498508][T20220] input: syz1 as /devices/virtual/input/input29 [ 215.564551][T20226] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6573'. [ 215.583581][ T40] audit: type=1326 audit(2000000050.693:2751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20227 comm="syz.0.6574" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 215.590940][ T40] audit: type=1326 audit(2000000050.693:2752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20227 comm="syz.0.6574" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 215.595644][ T6616] usb 10-1: new high-speed USB device number 2 using dummy_hcd [ 215.598466][ T40] audit: type=1326 audit(2000000050.693:2753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20227 comm="syz.0.6574" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 215.607374][ T40] audit: type=1326 audit(2000000050.693:2754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20227 comm="syz.0.6574" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 215.616151][ T40] audit: type=1326 audit(2000000050.703:2755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20227 comm="syz.0.6574" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 215.622889][ T40] audit: type=1326 audit(2000000050.703:2756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20227 comm="syz.0.6574" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 215.630026][ T40] audit: type=1326 audit(2000000050.703:2757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20227 comm="syz.0.6574" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 215.636816][ T40] audit: type=1326 audit(2000000050.703:2758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20227 comm="syz.0.6574" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 215.644069][ T40] audit: type=1326 audit(2000000050.703:2759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20227 comm="syz.0.6574" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 215.651075][ T40] audit: type=1326 audit(2000000050.703:2760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20227 comm="syz.0.6574" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 215.689345][T20235] netlink: 'syz.2.6577': attribute type 10 has an invalid length. [ 215.699406][T20235] netdevsim netdevsim2 netdevsim0: entered promiscuous mode [ 215.758656][ T6616] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 215.761879][ T6616] usb 10-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 215.765315][ T6616] usb 10-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 215.770908][ T6616] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice=20.41 [ 215.773882][ T6616] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11 [ 215.776830][ T6616] usb 10-1: Product: syz [ 215.778264][ T6616] usb 10-1: Manufacturer: syz [ 215.779863][ T6616] usb 10-1: SerialNumber: syz [ 215.995869][ T6616] usblp 10-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 216.122769][T20255] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6586'. [ 216.128004][T20255] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6586'. [ 216.134905][ T6616] kernel read not supported for file /dsp1 (pid: 6616 comm: kworker/2:4) [ 216.197663][ T6029] usb 10-1: USB disconnect, device number 2 [ 216.202006][ T6029] usblp0: removed [ 216.269060][T20267] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6591'. [ 216.326214][T20271] netlink: 52 bytes leftover after parsing attributes in process `syz.4.6593'. [ 216.484605][ T5989] Bluetooth: hci0: command tx timeout [ 216.509840][T20287] dummy0: entered promiscuous mode [ 216.512266][T20287] macsec2: entered allmulticast mode [ 216.516267][T20287] dummy0: left promiscuous mode [ 217.047284][ T34] hid_parser_main: 95 callbacks suppressed [ 217.047303][ T34] hid-generic 0005:16BF:5505.0007: unknown main item tag 0x0 [ 217.052924][ T34] hid-generic 0005:16BF:5505.0007: unknown main item tag 0x0 [ 217.056552][ T34] hid-generic 0005:16BF:5505.0007: reserved main item tag 0xe [ 217.058927][ T34] hid-generic 0005:16BF:5505.0007: item fetching failed at offset 16/18 [ 217.062229][ T34] hid-generic 0005:16BF:5505.0007: probe with driver hid-generic failed with error -22 [ 217.066712][ T29] hid-generic 0006:0004:0009.0008: unknown main item tag 0x0 [ 217.069163][ T29] hid-generic 0006:0004:0009.0008: unknown main item tag 0x0 [ 217.071830][ T29] hid-generic 0006:0004:0009.0008: unknown main item tag 0x0 [ 217.074214][ T29] hid-generic 0006:0004:0009.0008: unknown main item tag 0x0 [ 217.076807][ T29] hid-generic 0006:0004:0009.0008: unknown main item tag 0x0 [ 217.079162][ T29] hid-generic 0006:0004:0009.0008: unknown main item tag 0x0 [ 217.081583][ T29] hid-generic 0006:0004:0009.0008: unknown main item tag 0x0 [ 217.084211][ T29] hid-generic 0006:0004:0009.0008: unknown main item tag 0x0 [ 217.088072][ T29] hid-generic 0006:0004:0009.0008: hidraw0: VIRTUAL HID v0.04 Device [syz1] on syz0 [ 217.121385][T20358] fido_id[20358]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 217.495145][T18380] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 0 [ 218.191705][T20419] veth1_to_batadv: entered promiscuous mode [ 218.193696][T20419] macsec2: entered promiscuous mode [ 218.564825][ T5982] Bluetooth: hci0: command tx timeout [ 218.989074][T20421] [U] [ 218.990007][T20421] [U] [ 218.990912][T20421] [U] [ 218.991901][T20421] [U] [ 218.993111][T20421] [U] [ 218.994309][T20421] [U] [ 218.995214][T20421] [U] [ 218.996144][T20421] [U] [ 218.997165][T20421] [U] [ 218.998087][T20421] [U] [ 218.998998][T20421] [U] [ 218.999895][T20421] [U] [ 219.000802][T20421] [U] [ 219.001691][T20421] [U] [ 219.002664][T20421] [U] [ 219.003656][T20421] [U] [ 219.004652][T20421] [U] [ 219.005615][T20421] [U] [ 219.006533][T20421] [U] [ 219.007429][T20421] [U] [ 219.008524][T20421] [U] [ 219.009495][T20421] [U] [ 219.010405][T20421] [U] [ 219.011314][T20421] [U] [ 219.012332][T20421] [U] [ 219.013603][T20421] [U] [ 219.014817][T20421] [U] [ 219.015818][T20421] [U] [ 219.017897][T20421] [U] [ 219.019319][T20421] [U] [ 219.020513][T20421] [U] [ 219.021705][T20421] [U] [ 219.022975][T20421] [U] [ 219.024161][T20421] [U] [ 219.025360][T20421] [U] [ 219.026523][T20421] [U] [ 219.028045][T20421] [U] [ 219.029241][T20421] [U] [ 219.030454][T20421] [U] [ 219.031662][T20421] [U] [ 219.032866][T20421] [U] [ 219.034059][T20421] [U] [ 219.035262][T20421] [U] [ 219.036481][T20421] [U] [ 219.037858][T20421] [U] [ 219.039068][T20421] [U] [ 219.040289][T20421] [U] [ 219.041475][T20421] [U] [ 219.042698][T20421] [U] [ 219.044274][T20421] [U] [ 219.045359][T20421] [U] [ 219.046257][T20421] [U] [ 219.047272][T20421] [U] [ 219.048465][T20421] [U] [ 219.049660][T20421] [U] [ 219.050850][T20421] [U] [ 219.052958][T20421] [U] [ 219.054187][T20421] [U] [ 219.055403][T20421] [U] [ 219.056595][T20421] [U] [ 219.058470][T20421] [U] [ 219.059581][T20421] [U] [ 219.060771][T20421] [U] [ 219.061960][T20421] [U] [ 219.063159][T20421] [U] [ 219.064162][T20421] [U] [ 219.065063][T20421] [U] [ 219.066002][T20421] [U] [ 219.067510][T20421] [U] [ 219.068663][T20421] [U] [ 219.069850][T20421] [U] [ 219.071065][T20421] [U] [ 219.072388][T20421] [U] [ 219.073596][T20421] [U] [ 219.074817][T20421] [U] [ 219.076011][T20421] [U] [ 219.077849][T20421] [U] [ 219.079081][T20421] [U] [ 219.080245][T20421] [U] [ 219.081326][T20421] [U] [ 219.082504][T20421] [U] [ 219.083702][T20421] [U] [ 219.084926][T20421] [U] [ 219.086161][T20421] [U] [ 219.087762][T20421] [U] [ 219.088976][T20421] [U] [ 219.090198][T20421] [U] [ 219.091386][T20421] [U] [ 219.092597][T20421] [U] [ 219.093805][T20421] [U] [ 219.095016][T20421] [U] [ 219.096211][T20421] [U] [ 219.097508][T20421] [U] [ 219.098713][T20421] [U] [ 219.099911][T20421] [U] [ 219.101112][T20421] [U] [ 219.102385][T20421] [U] [ 219.103558][T20421] [U] [ 219.104797][T20421] [U] [ 219.106004][T20421] [U] [ 219.107302][T20421] [U] [ 219.108783][T20421] [U] [ 219.109984][T20421] [U] [ 219.111186][T20421] [U] [ 219.112339][T20421] [U] [ 219.113535][T20421] [U] [ 219.114766][T20421] [U] [ 219.115917][T20421] [U] [ 219.117121][T20421] [U] [ 219.118284][T20421] [U] [ 219.119495][T20421] [U] [ 219.120679][T20421] [U] [ 219.121938][T20421] [U] [ 219.123151][T20421] [U] [ 219.124356][T20421] [U] [ 219.125587][T20421] [U] [ 219.126906][T20421] [U] [ 219.128080][T20421] [U] [ 219.129263][T20421] [U] [ 219.130469][T20421] [U] [ 219.131676][T20421] [U] [ 219.132855][T20421] [U] [ 219.134138][T20421] [U] [ 219.135270][T20421] [U] [ 219.136294][T20421] [U] [ 219.137213][T20421] [U] [ 219.138432][T20421] [U] [ 219.167847][T20420] [U] [ 219.534594][ T5982] Bluetooth: hci4: command 0x1003 tx timeout [ 219.534994][ T5989] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 219.599741][T20444] loop7: detected capacity change from 0 to 7 [ 219.605139][ C1] blk_print_req_error: 10 callbacks suppressed [ 219.605152][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 219.610111][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 219.613169][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 219.617379][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 219.620648][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 219.624494][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 219.627910][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 219.630931][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 219.634002][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 219.637163][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 219.639921][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 219.643058][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 219.646808][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 219.649988][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 219.653445][T19433] ldm_validate_partition_table(): Disk read failed. [ 219.656277][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 219.659141][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 219.661849][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 219.664829][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 219.667580][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 219.670757][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 219.675221][T19433] Dev loop7: unable to read RDB block 0 [ 219.677675][T19433] loop7: unable to read partition table [ 219.680209][T19433] loop7: partition table beyond EOD, truncated [ 219.691174][T20444] ldm_validate_partition_table(): Disk read failed. [ 219.694397][T20444] Dev loop7: unable to read RDB block 0 [ 219.697143][T20444] loop7: unable to read partition table [ 219.699063][T20444] loop7: partition table beyond EOD, truncated [ 219.701074][T20444] loop_reread_partitions: partition scan of loop7 () failed (rc=-5) [ 219.900242][T20475] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.6684'. [ 219.910286][T20477] netlink: 108 bytes leftover after parsing attributes in process `syz.4.6685'. [ 220.087258][T20495] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6694'. [ 220.328126][T20481] syz.4.6687 (20481): drop_caches: 2 [ 220.745361][T20547] Bluetooth: MGMT ver 1.23 [ 221.001750][T20563] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6725'. [ 221.004773][T20563] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6725'. [ 221.751010][ T40] kauditd_printk_skb: 133 callbacks suppressed [ 221.751026][ T40] audit: type=1326 audit(2000000005.049:2894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20594 comm="syz.2.6740" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x0 [ 221.973899][T20625] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6754'. [ 221.977932][T20625] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6754'. [ 222.004553][ T40] audit: type=1326 audit(2000000005.299:2895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20626 comm="syz.4.6755" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f26598 code=0x7ffc0000 [ 222.011475][ T40] audit: type=1326 audit(2000000005.299:2896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20626 comm="syz.4.6755" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f26598 code=0x7ffc0000 [ 222.020072][ T40] audit: type=1326 audit(2000000005.299:2897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20626 comm="syz.4.6755" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f26598 code=0x7ffc0000 [ 222.026831][ T40] audit: type=1326 audit(2000000005.299:2898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20626 comm="syz.4.6755" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26579 code=0x7ffc0000 [ 222.033441][ T40] audit: type=1326 audit(2000000005.299:2899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20626 comm="syz.4.6755" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f26598 code=0x7ffc0000 [ 222.040682][ T40] audit: type=1326 audit(2000000005.299:2900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20626 comm="syz.4.6755" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f26598 code=0x7ffc0000 [ 222.047761][ T40] audit: type=1326 audit(2000000005.299:2901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20626 comm="syz.4.6755" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26579 code=0x7ffc0000 [ 222.054242][ T40] audit: type=1326 audit(2000000005.299:2902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20626 comm="syz.4.6755" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f26598 code=0x7ffc0000 [ 222.061299][ T40] audit: type=1326 audit(2000000005.299:2903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20626 comm="syz.4.6755" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26579 code=0x7ffc0000 [ 222.153457][T20641] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6762'. [ 222.418813][T20677] netlink: 'syz.5.6779': attribute type 3 has an invalid length. [ 222.519714][T20690] kvm: apic: phys broadcast and lowest prio [ 222.601327][T20692] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6786'. [ 222.605957][T20692] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6786'. [ 222.704523][ T6029] usb 10-1: new high-speed USB device number 3 using dummy_hcd [ 222.864629][ T6029] usb 10-1: Using ep0 maxpacket: 32 [ 222.868358][ T6029] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 222.872433][ T6029] usb 10-1: config 0 has no interfaces? [ 222.874240][ T6029] usb 10-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 222.878020][ T6029] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 222.882560][ T6029] usb 10-1: config 0 descriptor?? [ 223.099274][T20684] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 223.103549][T20684] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 223.109822][ T6616] usb 10-1: USB disconnect, device number 3 [ 223.349522][T20727] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6801'. [ 223.398416][T20729] block device autoloading is deprecated and will be removed. [ 224.097173][T20766] 9pnet: p9_errstr2errno: server reported unknown error [ 224.754594][ T34] usb 9-1: new high-speed USB device number 4 using dummy_hcd [ 224.755609][T20840] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6852'. [ 224.789091][T20844] netlink: 'syz.5.6854': attribute type 1 has an invalid length. [ 224.791853][T20844] netlink: 224 bytes leftover after parsing attributes in process `syz.5.6854'. [ 224.904587][ T34] usb 9-1: Using ep0 maxpacket: 32 [ 224.907686][ T34] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 224.912815][ T34] usb 9-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 224.916041][ T34] usb 9-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 224.918690][ T34] usb 9-1: Product: syz [ 224.920080][ T34] usb 9-1: Manufacturer: syz [ 224.921556][ T34] usb 9-1: SerialNumber: syz [ 224.926488][ T34] usb 9-1: config 0 descriptor?? [ 224.928580][T20818] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22 [ 225.140444][ T6060] usb 9-1: USB disconnect, device number 4 [ 226.354602][ T5848] usb 10-1: new high-speed USB device number 4 using dummy_hcd [ 226.504563][ T5848] usb 10-1: Using ep0 maxpacket: 32 [ 226.507567][ T5848] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 226.511094][ T5848] usb 10-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 226.516508][ T5848] usb 10-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 226.519547][ T5848] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 226.523854][ T5848] usb 10-1: config 0 descriptor?? [ 226.529531][ T5848] hub 10-1:0.0: bad descriptor, ignoring hub [ 226.531893][ T5848] hub 10-1:0.0: probe with driver hub failed with error -5 [ 226.535824][ T5848] usbhid 10-1:0.0: couldn't find an input interrupt endpoint [ 226.844783][ T24] usb 10-1: USB disconnect, device number 4 [ 227.071725][ T40] kauditd_printk_skb: 130 callbacks suppressed [ 227.071740][ T40] audit: type=1326 audit(2000000010.369:3034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20918 comm="syz.4.6888" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f26598 code=0x7ffc0000 [ 227.082086][ T40] audit: type=1326 audit(2000000010.369:3035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20918 comm="syz.4.6888" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f26598 code=0x7ffc0000 [ 227.089447][ T40] audit: type=1326 audit(2000000010.369:3036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20918 comm="syz.4.6888" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f26598 code=0x7ffc0000 [ 227.098633][ T40] audit: type=1326 audit(2000000010.369:3037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20918 comm="syz.4.6888" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f26598 code=0x7ffc0000 [ 227.107986][ T40] audit: type=1326 audit(2000000010.369:3038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20918 comm="syz.4.6888" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f26598 code=0x7ffc0000 [ 227.117472][ T40] audit: type=1326 audit(2000000010.369:3039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20918 comm="syz.4.6888" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f26598 code=0x7ffc0000 [ 227.126727][ T40] audit: type=1326 audit(2000000010.369:3040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20918 comm="syz.4.6888" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f26598 code=0x7ffc0000 [ 227.135771][ T40] audit: type=1326 audit(2000000010.369:3041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20918 comm="syz.4.6888" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f26598 code=0x7ffc0000 [ 227.144919][ T40] audit: type=1326 audit(2000000010.369:3042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20918 comm="syz.4.6888" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f26598 code=0x7ffc0000 [ 227.152714][ T40] audit: type=1326 audit(2000000010.369:3043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20918 comm="syz.4.6888" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f26598 code=0x7ffc0000 [ 227.292666][T20927] Process accounting resumed [ 227.831870][T20965] netlink: 'syz.2.6909': attribute type 1 has an invalid length. [ 227.834267][T20965] netlink: 'syz.2.6909': attribute type 1 has an invalid length. [ 227.837395][T20965] netlink: 160 bytes leftover after parsing attributes in process `syz.2.6909'. [ 227.840631][T20965] netlink: 'syz.2.6909': attribute type 1 has an invalid length. [ 227.843190][T20965] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6909'. [ 228.014058][T20985] (syz.4.6918,20985,0):dlmfs_mkdir:421 ERROR: invalid domain name for directory. [ 228.051398][T20989] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6920'. [ 228.076217][T20989] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6920'. [ 228.684674][T21027] vxcan0: tx address claim with dlc 0 [ 228.811189][T21047] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 228.814396][T21047] block device autoloading is deprecated and will be removed. [ 229.059118][T21073] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6957'. [ 229.122402][T21082] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6962'. [ 229.127141][T21082] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6962'. [ 229.414985][T21099] netlink: 'syz.4.6969': attribute type 9 has an invalid length. [ 230.395198][ T72] kernel write not supported for file /input/mouse0 (pid: 72 comm: kworker/3:2) [ 230.828602][T21148] netlink: 52 bytes leftover after parsing attributes in process `syz.5.6991'. [ 231.207009][T21177] netlink: 'syz.4.7003': attribute type 19 has an invalid length. [ 231.269603][T21182] netlink: 'syz.5.7005': attribute type 5 has an invalid length. [ 231.317733][T21189] 8021q: VLANs not supported on lo [ 231.662296][T21215] random: crng reseeded on system resumption [ 231.677147][T21215] Restarting kernel threads ... [ 231.679778][T21215] Done restarting kernel threads. [ 231.964573][ T6060] usb 9-1: new high-speed USB device number 5 using dummy_hcd [ 232.116552][ T6060] usb 9-1: unable to get BOS descriptor or descriptor too short [ 232.120788][ T6060] usb 9-1: config 6 has an invalid interface number: 200 but max is 0 [ 232.124187][ T6060] usb 9-1: config 6 has no interface number 0 [ 232.126932][ T6060] usb 9-1: config 6 interface 200 has no altsetting 0 [ 232.131858][ T6060] usb 9-1: New USB device found, idVendor=05d8, idProduct=810c, bcdDevice=18.5f [ 232.135650][ T24] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 232.138877][ T6060] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 232.142217][ T6060] usb 9-1: Product: syz [ 232.144006][ T6060] usb 9-1: Manufacturer: syz [ 232.146241][ T6060] usb 9-1: SerialNumber: syz [ 232.304711][ T24] usb 5-1: Using ep0 maxpacket: 8 [ 232.309293][ T24] usb 5-1: New USB device found, idVendor=12d1, idProduct=fae2, bcdDevice=70.8b [ 232.312165][ T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 232.314740][ T24] usb 5-1: Product: syz [ 232.316100][ T24] usb 5-1: Manufacturer: syz [ 232.317622][ T24] usb 5-1: SerialNumber: syz [ 232.320436][ T24] usb 5-1: config 0 descriptor?? [ 232.325303][ T24] option 5-1:0.0: GSM modem (1-port) converter detected [ 232.525719][ T24] usb 5-1: USB disconnect, device number 9 [ 232.528386][ T24] option 5-1:0.0: device disconnected [ 232.569336][ T6060] dvb-usb: found a 'Artec T14 - USB2.0 DVB-T' in warm state. [ 232.779480][ T6060] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 232.783061][ T6060] dvbdev: DVB: registering new adapter (Artec T14 - USB2.0 DVB-T) [ 232.786389][ T6060] usb 9-1: media controller created [ 232.796479][ T6060] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 232.975809][ T6060] dvb-usb: bulk message failed: -71 (6/0) [ 232.979429][ T6060] dvb-usb: bulk message failed: -71 (6/0) [ 232.981337][ T6060] dvb-usb: no frontend was attached by 'Artec T14 - USB2.0 DVB-T' [ 232.985250][ T6060] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb9/9-1/input/input30 [ 232.990699][ T6060] dvb-usb: schedule remote query interval to 150 msecs. [ 232.992810][ T6060] dvb-usb: Artec T14 - USB2.0 DVB-T successfully initialized and connected. [ 232.996830][ T6060] usb 9-1: USB disconnect, device number 5 [ 233.016761][ T6060] dvb-usb: Artec T14 - USB2.0 DVB-T successfully deinitialized and disconnected. [ 233.057931][T21229] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7028'. [ 233.131713][ T5982] Bluetooth: hci4: sending frame failed (-49) [ 233.136761][ T5989] Bluetooth: hci4: Opcode 0x1003 failed: -49 [ 233.164102][T21239] netlink: 40 bytes leftover after parsing attributes in process `syz.2.7033'. [ 233.327990][T21257] kvm: apic: phys broadcast and lowest prio [ 233.647932][T21286] kvm: apic: phys broadcast and lowest prio [ 233.999035][T21307] veth1_macvtap: left promiscuous mode [ 234.005305][ T72] usb 10-1: new high-speed USB device number 5 using dummy_hcd [ 234.155929][ T72] usb 10-1: Using ep0 maxpacket: 32 [ 234.159854][ T72] usb 10-1: config 0 has no interfaces? [ 234.161870][ T72] usb 10-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 234.165948][ T72] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 234.171212][ T72] usb 10-1: config 0 descriptor?? [ 234.214581][ T6060] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 234.302101][T21316] input: syz1 as /devices/virtual/input/input31 [ 234.382349][ T6616] usb 10-1: USB disconnect, device number 5 [ 234.386151][ T6060] usb 5-1: unable to get BOS descriptor or descriptor too short [ 234.389955][ T6060] usb 5-1: config 6 has an invalid interface number: 200 but max is 0 [ 234.392611][ T6060] usb 5-1: config 6 has no interface number 0 [ 234.394783][ T6060] usb 5-1: config 6 interface 200 has no altsetting 0 [ 234.398891][ T6060] usb 5-1: New USB device found, idVendor=05d8, idProduct=810c, bcdDevice=18.5f [ 234.401902][ T6060] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 234.405386][ T6060] usb 5-1: Product: syz [ 234.406896][ T6060] usb 5-1: Manufacturer: syz [ 234.408344][ T6060] usb 5-1: SerialNumber: syz [ 234.821996][ T6060] dvb-usb: found a 'Artec T14 - USB2.0 DVB-T' in warm state. [ 235.031414][ T6060] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 235.036058][ T6060] dvbdev: DVB: registering new adapter (Artec T14 - USB2.0 DVB-T) [ 235.038547][ T6060] usb 5-1: media controller created [ 235.047364][ T6060] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 235.225994][ T6060] dvb-usb: bulk message failed: -71 (6/0) [ 235.228118][ T6060] dvb-usb: bulk message failed: -71 (6/0) [ 235.230122][ T6060] dvb-usb: no frontend was attached by 'Artec T14 - USB2.0 DVB-T' [ 235.234371][ T6060] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb5/5-1/input/input32 [ 235.239185][ T6060] dvb-usb: schedule remote query interval to 150 msecs. [ 235.241328][ T6060] dvb-usb: Artec T14 - USB2.0 DVB-T successfully initialized and connected. [ 235.246007][ T6060] usb 5-1: USB disconnect, device number 10 [ 235.262226][ T6060] dvb-usb: Artec T14 - USB2.0 DVB-T successfully deinitialized and disconnected. [ 235.399316][T21371] netlink: 'syz.2.7095': attribute type 2 has an invalid length. [ 235.402069][T21371] netlink: 'syz.2.7095': attribute type 8 has an invalid length. [ 235.404695][T21371] netlink: 1148 bytes leftover after parsing attributes in process `syz.2.7095'. [ 235.406399][T21373] loop4: detected capacity change from 0 to 524287935 [ 235.571186][T21395] mkiss: ax0: crc mode is auto. [ 235.590853][T21397] input: syz1 as /devices/virtual/input/input33 [ 235.719360][T21411] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7114'. [ 236.579922][T21460] binder: 21459:21460 ioctl c0306201 80000540 returned -14 [ 236.757748][T21468] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7142'. [ 236.964033][ T1143] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 237.032641][ T1143] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 237.070611][T21479] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7149'. [ 237.111940][ T1143] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 237.212882][ T5982] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 237.219117][ T5982] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 237.219961][T21498] sctp: [Deprecated]: syz.5.7155 (pid 21498) Use of struct sctp_assoc_value in delayed_ack socket option. [ 237.219961][T21498] Use struct sctp_sack_info instead [ 237.222344][ T5982] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 237.230980][ T5982] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 237.239852][ T5982] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 237.246364][ T1143] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 237.358402][T21495] chnl_net:caif_netlink_parms(): no params data found [ 237.389845][T21525] netlink: 232 bytes leftover after parsing attributes in process `syz.0.7161'. [ 237.437451][T21536] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7170'. [ 237.479534][T21495] bridge0: port 1(bridge_slave_0) entered blocking state [ 237.481818][T21495] bridge0: port 1(bridge_slave_0) entered disabled state [ 237.484072][T21495] bridge_slave_0: entered allmulticast mode [ 237.487621][T21495] bridge_slave_0: entered promiscuous mode [ 237.490433][ T1143] bridge_slave_1: left allmulticast mode [ 237.492624][ T1143] bridge_slave_1: left promiscuous mode [ 237.498942][ T1143] bridge0: port 2(bridge_slave_1) entered disabled state [ 237.503383][ T1143] bridge_slave_0: left allmulticast mode [ 237.505368][ T1143] bridge_slave_0: left promiscuous mode [ 237.507098][ T1143] bridge0: port 1(bridge_slave_0) entered disabled state [ 237.762507][ T1143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 237.770460][ T1143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 237.777386][ T1143] bond0 (unregistering): Released all slaves [ 237.789293][T21495] bridge0: port 2(bridge_slave_1) entered blocking state [ 237.791714][T21495] bridge0: port 2(bridge_slave_1) entered disabled state [ 237.794164][T21495] bridge_slave_1: entered allmulticast mode [ 237.797126][T21495] bridge_slave_1: entered promiscuous mode [ 237.817333][ T6616] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 237.840783][T21495] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 237.847017][T21495] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 237.890888][ T1143] tipc: Disabling bearer [ 237.892816][ T1143] tipc: Left network mode [ 237.893893][T21495] team0: Port device team_slave_0 added [ 237.900376][T21495] team0: Port device team_slave_1 added [ 237.976873][ T6616] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 237.981368][ T6616] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 237.986202][ T6616] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 237.991377][ T6616] usb 5-1: New USB device found, idVendor=20d6, idProduct=cb17, bcdDevice= 0.00 [ 237.994102][ T6616] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 237.999310][ T6616] usb 5-1: config 0 descriptor?? [ 238.416917][ T6616] hid_parser_main: 9 callbacks suppressed [ 238.416933][ T6616] hid-udraw 0003:20D6:CB17.0009: unknown main item tag 0x0 [ 238.426553][ T6616] input: THQ uDraw Game Tablet for PS3 Joypad as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/0003:20D6:CB17.0009/input/input34 [ 238.496877][ T6616] input: THQ uDraw Game Tablet for PS3 Touchpad as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/0003:20D6:CB17.0009/input/input35 [ 238.510603][ T6616] input: THQ uDraw Game Tablet for PS3 Pen as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/0003:20D6:CB17.0009/input/input36 [ 238.527402][ T6616] input: THQ uDraw Game Tablet for PS3 Accelerometer as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/0003:20D6:CB17.0009/input/input37 [ 238.551890][T21495] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 238.554100][T21495] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 238.563766][T21495] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 238.564670][ T6616] hid-udraw 0003:20D6:CB17.0009: hidraw0: USB HID v0.00 Device [HID 20d6:cb17] on usb-dummy_hcd.0-1/input0 [ 238.597570][T21495] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 238.604522][T21495] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 238.615698][T21495] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 238.817671][ T6616] usb 5-1: USB disconnect, device number 11 [ 238.876967][T21495] hsr_slave_0: entered promiscuous mode [ 238.879164][T21495] hsr_slave_1: entered promiscuous mode [ 238.881105][T21495] debugfs: 'hsr0' already exists in 'hsr' [ 238.884231][T21495] Cannot create hsr debugfs directory [ 238.975660][ T1143] hsr_slave_0: left promiscuous mode [ 238.978971][ T1143] hsr_slave_1: left promiscuous mode [ 238.981550][ T1143] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 238.986730][ T1143] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 238.989469][ T1143] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 238.991809][ T1143] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 239.011621][ T1143] veth1_macvtap: left promiscuous mode [ 239.013382][ T1143] veth0_macvtap: left promiscuous mode [ 239.015425][ T1143] veth1_vlan: left promiscuous mode [ 239.017357][ T1143] veth0_vlan: left promiscuous mode [ 239.284648][ T5982] Bluetooth: hci2: command tx timeout [ 239.689991][ T1143] team0 (unregistering): Port device team_slave_1 removed [ 239.714644][T21615] block nbd1: server does not support multiple connections per device. [ 239.718049][T21615] block nbd1: shutting down sockets [ 239.752291][T21617] Failed to get privilege flags for destination (handle=0x2:0xd) [ 239.778759][ T1143] team0 (unregistering): Port device team_slave_0 removed [ 240.529303][T21495] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 240.535181][T21495] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 240.541083][T21495] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 240.547619][T21495] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 240.643988][T21495] 8021q: adding VLAN 0 to HW filter on device bond0 [ 240.656833][T21495] 8021q: adding VLAN 0 to HW filter on device team0 [ 240.663444][T18376] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.666209][T18376] bridge0: port 1(bridge_slave_0) entered forwarding state [ 240.673631][T18340] bridge0: port 2(bridge_slave_1) entered blocking state [ 240.676229][T18340] bridge0: port 2(bridge_slave_1) entered forwarding state [ 240.750620][T21659] netlink: 'syz.0.7226': attribute type 5 has an invalid length. [ 240.756497][T21659] netlink: 'syz.0.7226': attribute type 5 has an invalid length. [ 240.805224][T21495] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 240.894292][T21667] bond_slave_0: left promiscuous mode [ 240.897804][T21667] bond_slave_1: left promiscuous mode [ 240.994867][T21667] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 241.009716][T21667] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 241.059529][T21667] tipc: Resetting bearer [ 241.116974][T21667] batman_adv: batadv0: Interface deactivated: ipvlan3 [ 241.131429][T18335] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 241.135959][T18335] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 241.139504][T18335] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 241.142558][T18335] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 241.147889][T18335] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 241.151545][T18335] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 241.156663][T18355] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 241.159931][T18355] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 241.248042][T21495] veth0_vlan: entered promiscuous mode [ 241.255601][T21495] veth1_vlan: entered promiscuous mode [ 241.283646][T21495] veth0_macvtap: entered promiscuous mode [ 241.290208][T21495] veth1_macvtap: entered promiscuous mode [ 241.308645][T21495] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 241.316362][T21495] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 241.322837][T18376] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 241.326641][T18376] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 241.340013][T21690] macvlan3: entered promiscuous mode [ 241.341782][T21690] macvlan3: entered allmulticast mode [ 241.343834][T21690] gretap0: entered allmulticast mode [ 241.348040][T18376] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 241.351572][T18376] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 241.364767][ T5982] Bluetooth: hci2: command tx timeout [ 241.420736][T18355] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 241.423944][T18355] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 241.447053][T18340] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 241.449601][T18340] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 242.100296][T21769] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7265'. [ 242.361951][T21797] (unnamed net_device) (uninitialized): ARP target 9.0.0.0 is already present [ 242.366448][T21797] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (9) [ 242.650464][ T72] kernel write not supported for file /uhid (pid: 72 comm: kworker/3:2) [ 242.659800][T21847] kvm: kvm [21843]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000079) [ 242.833885][T21869] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7310'. [ 242.965308][T21882] veth0_to_bond: entered allmulticast mode [ 242.980217][ T40] kauditd_printk_skb: 390 callbacks suppressed [ 242.980232][ T40] audit: type=1326 audit(2000000026.279:3434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21883 comm="syz.5.7317" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f27598 code=0x7ffc0000 [ 242.991786][ T40] audit: type=1326 audit(2000000026.279:3435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21883 comm="syz.5.7317" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f27598 code=0x7ffc0000 [ 243.014699][ T40] audit: type=1326 audit(2000000026.279:3436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21883 comm="syz.5.7317" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f27598 code=0x7ffc0000 [ 243.029298][ T40] audit: type=1326 audit(2000000026.279:3437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21883 comm="syz.5.7317" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f27598 code=0x7ffc0000 [ 243.038668][ T40] audit: type=1326 audit(2000000026.279:3438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21883 comm="syz.5.7317" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f27598 code=0x7ffc0000 [ 243.048468][ T40] audit: type=1326 audit(2000000026.279:3439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21883 comm="syz.5.7317" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f27598 code=0x7ffc0000 [ 243.059566][ T40] audit: type=1326 audit(2000000026.279:3440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21883 comm="syz.5.7317" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f27598 code=0x7ffc0000 [ 243.067717][ T40] audit: type=1326 audit(2000000026.279:3441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21883 comm="syz.5.7317" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f27598 code=0x7ffc0000 [ 243.075870][ T40] audit: type=1326 audit(2000000026.279:3442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21883 comm="syz.5.7317" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f27598 code=0x7ffc0000 [ 243.082686][ T40] audit: type=1326 audit(2000000026.279:3443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21883 comm="syz.5.7317" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f27598 code=0x7ffc0000 [ 243.160161][T21899] bond0: entered promiscuous mode [ 243.162401][T21899] bond_slave_0: entered promiscuous mode [ 243.165150][T21899] bond_slave_1: entered promiscuous mode [ 243.168259][T21899] bond0: left promiscuous mode [ 243.169822][T21899] bond_slave_0: left promiscuous mode [ 243.171519][T21899] bond_slave_1: left promiscuous mode [ 243.257894][T21907] mkiss: ax0: crc mode is auto. [ 243.262146][T21909] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7329'. [ 243.444633][ T5989] Bluetooth: hci2: command tx timeout [ 243.503991][T21919] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 243.511026][T21919] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 243.534565][ T24] usb 10-1: new high-speed USB device number 6 using dummy_hcd [ 243.574944][ T72] usb 11-1: new high-speed USB device number 2 using dummy_hcd [ 243.596350][T18380] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 243.599619][T18380] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 243.604124][T18380] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 243.608694][T18380] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 243.611869][T18380] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 243.615049][T18380] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 243.617738][T18380] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 243.620979][T18380] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 243.700985][ T24] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 243.704713][ T24] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 243.707835][ T24] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 243.712086][ T24] usb 10-1: New USB device found, idVendor=20d6, idProduct=cb17, bcdDevice= 0.00 [ 243.715561][ T24] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 243.720771][ T24] usb 10-1: config 0 descriptor?? [ 243.744601][ T72] usb 11-1: Using ep0 maxpacket: 16 [ 243.756440][ T72] usb 11-1: config 0 has an invalid interface number: 8 but max is 0 [ 243.759609][ T72] usb 11-1: config 0 has no interface number 0 [ 243.761991][ T72] usb 11-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 243.766717][ T72] usb 11-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 243.772721][ T72] usb 11-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 243.777580][ T72] usb 11-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 243.780597][ T72] usb 11-1: Product: syz [ 243.782344][ T72] usb 11-1: SerialNumber: syz [ 243.785818][ T72] usb 11-1: config 0 descriptor?? [ 243.790142][ T72] cm109 11-1:0.8: invalid payload size 0, expected 4 [ 243.794394][ T72] input: CM109 USB driver as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.8/input/input40 [ 243.815583][T21936] netlink: 132 bytes leftover after parsing attributes in process `syz.2.7341'. [ 243.821203][T21936] netlink: 'syz.2.7341': attribute type 12 has an invalid length. [ 243.823661][T21936] netlink: 132 bytes leftover after parsing attributes in process `syz.2.7341'. [ 243.858393][T21938] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.7342'. [ 244.002939][ C3] cm109 11-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90 [ 244.130946][ T24] hid-udraw 0003:20D6:CB17.000A: unknown main item tag 0x0 [ 244.140351][ T24] input: THQ uDraw Game Tablet for PS3 Joypad as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:0.0/0003:20D6:CB17.000A/input/input41 [ 244.147622][ T24] input: THQ uDraw Game Tablet for PS3 Touchpad as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:0.0/0003:20D6:CB17.000A/input/input42 [ 244.158029][ T24] input: THQ uDraw Game Tablet for PS3 Pen as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:0.0/0003:20D6:CB17.000A/input/input43 [ 244.168031][ T24] input: THQ uDraw Game Tablet for PS3 Accelerometer as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:0.0/0003:20D6:CB17.000A/input/input44 [ 244.174588][ T24] hid-udraw 0003:20D6:CB17.000A: hidraw0: USB HID v0.00 Device [HID 20d6:cb17] on usb-dummy_hcd.5-1/input0 [ 244.211284][ C3] cm109 11-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 244.215346][ C3] cm109 11-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 244.218037][ C3] cm109 11-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 244.220451][ C3] cm109 11-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 244.222674][ T72] usb 11-1: USB disconnect, device number 2 [ 244.224660][ C3] cm109 11-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 244.224671][ C3] cm109 11-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 244.230826][ T72] cm109 11-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 244.407271][ T841] usb 10-1: USB disconnect, device number 6 [ 244.496487][T21926] orangefs_mount: mount request failed with -4 [ 244.800272][T21993] IPVS: sed: SCTP 172.20.20.187:0 - no destination available [ 244.851421][T22002] vivid-001: disconnect [ 244.855237][T21999] vivid-001: reconnect [ 244.905820][ T5848] kernel write not supported for file /input/mouse0 (pid: 5848 comm: kworker/0:3) [ 245.524696][ T5986] Bluetooth: hci2: command 0x0419 tx timeout [ 245.810309][T22062] netlink: 108 bytes leftover after parsing attributes in process `syz.0.7402'. [ 245.962047][T22085] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7413'. [ 247.298154][T22189] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 247.321303][T22191] bridge0: entered promiscuous mode [ 247.325840][T22191] macvtap1: entered allmulticast mode [ 247.327865][T22191] bridge0: entered allmulticast mode [ 247.330448][T22191] bridge0: port 3(macvtap1) entered blocking state [ 247.332714][T22191] bridge0: port 3(macvtap1) entered disabled state [ 247.337392][T22191] bridge0: left allmulticast mode [ 247.339071][T22191] bridge0: left promiscuous mode [ 247.604624][ T5982] Bluetooth: hci2: command 0x0419 tx timeout [ 248.864280][T22245] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7484'. [ 248.871512][T22245] vlan2: entered allmulticast mode [ 248.901101][T22249] bond0: entered promiscuous mode [ 248.902843][T22249] bond_slave_0: entered promiscuous mode [ 248.905786][T22249] bond_slave_1: entered promiscuous mode [ 249.042954][T22271] netlink: 44 bytes leftover after parsing attributes in process `syz.6.7498'. [ 249.209961][T22302] lo: entered promiscuous mode [ 249.215635][T22302] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 249.364625][ T5982] Bluetooth: hci0: command tx timeout [ 250.272625][T22368] macsec1: entered allmulticast mode [ 250.275728][T22368] macsec0: entered allmulticast mode [ 250.528989][T22390] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7552'. [ 250.672681][T22407] lo: entered promiscuous mode [ 250.676437][T22407] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 250.788197][ T40] kauditd_printk_skb: 217 callbacks suppressed [ 250.788218][ T40] audit: type=1800 audit(2000000034.089:3661): pid=22413 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.7563" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0 [ 251.064578][ T61] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 251.224666][ T61] usb 5-1: Using ep0 maxpacket: 16 [ 251.228530][ T61] usb 5-1: config 0 has an invalid interface number: 132 but max is 0 [ 251.232029][ T61] usb 5-1: config 0 has no interface number 0 [ 251.236861][ T61] usb 5-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25 [ 251.240575][ T61] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 251.243879][ T61] usb 5-1: Product: syz [ 251.245761][ T61] usb 5-1: Manufacturer: syz [ 251.247731][ T61] usb 5-1: SerialNumber: syz [ 251.251697][ T61] usb 5-1: config 0 descriptor?? [ 251.255272][ T61] hub 5-1:0.132: bad descriptor, ignoring hub [ 251.257835][ T61] hub 5-1:0.132: probe with driver hub failed with error -5 [ 251.263545][ T61] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.132/input/input45 [ 251.333153][T22423] netlink: 'syz.5.7568': attribute type 4 has an invalid length. [ 251.554950][ T9] usb 5-1: USB disconnect, device number 12 [ 251.580770][ T40] audit: type=1326 audit(2000000034.879:3662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22442 comm="syz.5.7577" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 251.590338][ T40] audit: type=1326 audit(2000000034.879:3663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22442 comm="syz.5.7577" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 251.600535][ T40] audit: type=1326 audit(2000000034.879:3664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22442 comm="syz.5.7577" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 251.611106][ T40] audit: type=1326 audit(2000000034.879:3665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22442 comm="syz.5.7577" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 251.619072][ T40] audit: type=1326 audit(2000000034.879:3666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22442 comm="syz.5.7577" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 251.627438][ T40] audit: type=1326 audit(2000000034.899:3667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22442 comm="syz.5.7577" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 251.637188][ T40] audit: type=1326 audit(2000000034.899:3668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22442 comm="syz.5.7577" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 251.646593][ T40] audit: type=1326 audit(2000000034.919:3669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22442 comm="syz.5.7577" exe="/syz-executor" sig=0 arch=40000003 syscall=156 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 251.655786][ T40] audit: type=1326 audit(2000000034.919:3670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22442 comm="syz.5.7577" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 251.710912][T22451] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7581'. [ 251.715392][T22451] netlink: 'syz.2.7581': attribute type 30 has an invalid length. [ 251.718693][T22451] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7581'. [ 251.726031][T22453] syz_tun: entered promiscuous mode [ 252.176568][T22496] netlink: 'syz.5.7600': attribute type 1 has an invalid length. [ 252.180220][T22496] netlink: 'syz.5.7600': attribute type 1 has an invalid length. [ 252.186516][T22496] netlink: 'syz.5.7600': attribute type 1 has an invalid length. [ 252.189396][T22496] nbd: error processing sock list [ 252.191668][T22496] block nbd1: shutting down sockets [ 252.242593][T22511] kernel read not supported for file /eth0 (pid: 22511 comm: syz.6.7610) [ 252.352909][T22523] Attempt to restore checkpoint with obsolete wellknown handles [ 252.396822][T22531] netlink: 212376 bytes leftover after parsing attributes in process `syz.6.7620'. [ 253.893879][T22645] openvswitch: netlink: VXLAN extension message has 3 unknown bytes. [ 254.090873][T22672] tun0: tun_chr_ioctl cmd 1074025675 [ 254.092601][T22672] tun0: persist disabled [ 254.178230][T22680] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7687'. [ 254.205888][T22682] netlink: 'syz.2.7688': attribute type 1 has an invalid length. [ 254.208488][T22682] netlink: 224 bytes leftover after parsing attributes in process `syz.2.7688'. [ 254.334539][ T61] usb 11-1: new high-speed USB device number 3 using dummy_hcd [ 254.387096][T22693] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 254.390652][T22693] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 254.393118][T22693] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 254.395142][T22695] netem: incorrect gi model size [ 254.395712][T22693] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 254.397545][T22695] netem: change failed [ 254.400004][T22693] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 254.403909][T22693] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 254.406439][T22693] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 254.408883][T22693] ICMPv6: RA: ndisc_router_discovery failed to add default route [ 254.484553][ T61] usb 11-1: Using ep0 maxpacket: 8 [ 254.488409][ T61] usb 11-1: config 0 has an invalid interface number: 55 but max is 0 [ 254.491495][ T61] usb 11-1: config 0 has no interface number 0 [ 254.494696][ T61] usb 11-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 254.499113][ T61] usb 11-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 254.503782][ T61] usb 11-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 254.508602][ T61] usb 11-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 254.513685][ T61] usb 11-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 254.517536][ T61] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 254.522352][ T61] usb 11-1: config 0 descriptor?? [ 254.528048][ T61] ldusb 11-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 254.730101][ T6029] usb 11-1: USB disconnect, device number 3 [ 254.733620][ T6029] ldusb 11-1:0.55: LD USB Device #0 now disconnected [ 254.772076][T22729] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7712'. [ 255.206313][ T1419] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.634806][T22773] nbd1: detected capacity change from 0 to 127 [ 255.639797][ T5982] block nbd1: Receive control failed (result -32) [ 256.472212][T22845] loop9: detected capacity change from 0 to 7 [ 256.479159][T22845] Dev loop9: unable to read RDB block 7 [ 256.481232][T22845] loop9: unable to read partition table [ 256.483262][T22845] loop9: partition table beyond EOD, truncated [ 256.485383][T22845] loop_reread_partitions: partition scan of loop9 (þ被xüÿÿÿÿÿÿÿ ) failed (rc=-5) [ 256.709175][ T40] kauditd_printk_skb: 68 callbacks suppressed [ 256.709191][ T40] audit: type=1326 audit(2000000040.009:3739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22806 comm="syz.5.7745" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7fc00000 [ 257.027617][ T40] audit: type=1800 audit(2000000040.329:3740): pid=22879 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.7773" name="cgroup.controllers" dev="tmpfs" ino=1405 res=0 errno=0 [ 257.157113][T22898] netlink: 20 bytes leftover after parsing attributes in process `syz.5.7785'. [ 257.444665][ T6029] usb 11-1: new high-speed USB device number 4 using dummy_hcd [ 257.594573][ T6029] usb 11-1: Using ep0 maxpacket: 16 [ 257.597748][ T6029] usb 11-1: config 0 has an invalid interface number: 132 but max is 0 [ 257.600174][ T6029] usb 11-1: config 0 has no interface number 0 [ 257.603545][ T6029] usb 11-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25 [ 257.606904][ T6029] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 257.609477][ T6029] usb 11-1: Product: syz [ 257.610897][ T6029] usb 11-1: Manufacturer: syz [ 257.612236][ T6029] usb 11-1: SerialNumber: syz [ 257.614731][ T6029] usb 11-1: config 0 descriptor?? [ 257.617254][ T6029] hub 11-1:0.132: bad descriptor, ignoring hub [ 257.619073][ T6029] hub 11-1:0.132: probe with driver hub failed with error -5 [ 257.623559][ T6029] input: bcm5974 as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.132/input/input47 [ 257.914819][ T24] usb 11-1: USB disconnect, device number 4 [ 258.515468][ T40] audit: type=1326 audit(2000000041.819:3741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22928 comm="syz.2.7798" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 258.524684][ T40] audit: type=1326 audit(2000000041.819:3742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22928 comm="syz.2.7798" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 258.531822][ T40] audit: type=1326 audit(2000000041.819:3743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22928 comm="syz.2.7798" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 258.538832][ T40] audit: type=1326 audit(2000000041.819:3744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22928 comm="syz.2.7798" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 258.545882][ T40] audit: type=1326 audit(2000000041.819:3745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22928 comm="syz.2.7798" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 258.552741][ T40] audit: type=1326 audit(2000000041.819:3746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22928 comm="syz.2.7798" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 258.559813][ T40] audit: type=1326 audit(2000000041.819:3747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22928 comm="syz.2.7798" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 258.567120][ T40] audit: type=1326 audit(2000000041.819:3748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22928 comm="syz.2.7798" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 258.842092][T22954] loop9: detected capacity change from 0 to 7 [ 258.844731][T22954] loop9: [CUMANA/ADFS] p1 [ADFS] p1 [ 258.847409][T22954] loop9: partition table partially beyond EOD, truncated [ 258.850389][T22954] loop9: p1 size 2437361653 extends beyond EOD, truncated [ 258.909901][T22965] netlink: 128 bytes leftover after parsing attributes in process `syz.5.7815'. [ 258.955510][ T24] kernel read not supported for file /dsp (pid: 24 comm: kworker/2:0) [ 259.168169][ T61] usb 11-1: new high-speed USB device number 5 using dummy_hcd [ 259.241174][T22991] netlink: 'syz.2.7825': attribute type 7 has an invalid length. [ 259.335945][ T61] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 259.339623][ T61] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 259.342624][ T61] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 259.346516][ T61] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 259.351679][T22967] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 259.355907][ T61] usb 11-1: Quirk or no altset; falling back to MIDI 1.0 [ 259.415908][T23010] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7842'. [ 259.595838][ T6029] usb 11-1: USB disconnect, device number 5 [ 260.272442][T23037] netlink: 60 bytes leftover after parsing attributes in process `syz.6.7849'. [ 260.390869][T23058] erspan0: entered promiscuous mode [ 260.937086][T23117] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7884'. [ 260.944738][T23117] netlink: 292 bytes leftover after parsing attributes in process `syz.6.7884'. [ 260.949688][T23117] netlink: 292 bytes leftover after parsing attributes in process `syz.6.7884'. [ 260.998581][T23125] libceph: resolve '0' (ret=-3): failed [ 261.446594][T23166] netlink: 'syz.6.7907': attribute type 1 has an invalid length. [ 261.449520][T23166] netlink: 224 bytes leftover after parsing attributes in process `syz.6.7907'. [ 261.615515][T23178] netlink: 136784 bytes leftover after parsing attributes in process `syz.0.7912'. [ 261.618862][T23178] net_ratelimit: 48 callbacks suppressed [ 261.618871][T23178] netlink: zone id is out of range [ 261.622377][T23178] netlink: zone id is out of range [ 261.624068][T23178] netlink: zone id is out of range [ 261.626523][T23178] netlink: zone id is out of range [ 261.628197][T23178] netlink: zone id is out of range [ 261.629910][T23178] netlink: zone id is out of range [ 261.631596][T23178] netlink: zone id is out of range [ 261.633466][T23178] netlink: zone id is out of range [ 261.635673][T23178] netlink: zone id is out of range [ 261.638417][T23178] netlink: zone id is out of range [ 261.898446][ T40] kauditd_printk_skb: 335 callbacks suppressed [ 261.898462][ T40] audit: type=1326 audit(2000000301.204:4084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23195 comm="syz.0.7920" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70fe579 code=0x0 [ 263.034561][ T6616] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 263.146098][T23236] input: syz0 as /devices/virtual/input/input48 [ 263.196266][ T6616] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 263.201092][ T6616] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 263.205954][ T6616] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 263.210134][ T6616] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 263.217214][T23216] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 263.227581][ T6616] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 263.424567][T23199] comedi comedi2: reset error (fatal) [ 263.437477][ T6616] usb 5-1: USB disconnect, device number 13 [ 263.827218][T23276] input: syz1 as /devices/virtual/input/input49 [ 263.920699][T23288] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7964'. [ 263.923756][T23288] netlink: 'syz.5.7964': attribute type 20 has an invalid length. [ 263.926439][T23288] netlink: 'syz.5.7964': attribute type 21 has an invalid length. [ 264.051577][T23301] comedi comedi0: Minor 7 could not be opened [ 264.265773][T23325] kernel read not supported for file / (pid: 23325 comm: syz.6.7981) [ 264.273799][ T40] audit: type=1800 audit(2000000303.574:4085): pid=23325 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.7981" name=18 dev="mqueue" ino=88834 res=0 errno=0 [ 264.818003][T23358] block device autoloading is deprecated and will be removed. [ 265.031474][T23377] serio: Serial port ptm0 [ 267.038001][ T40] audit: type=1326 audit(2000000306.344:4086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23503 comm="syz.5.8063" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 267.046600][ T40] audit: type=1326 audit(2000000306.344:4087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23503 comm="syz.5.8063" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 267.055954][ T40] audit: type=1326 audit(2000000306.344:4088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23503 comm="syz.5.8063" exe="/syz-executor" sig=0 arch=40000003 syscall=39 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 267.064303][ T40] audit: type=1326 audit(2000000306.344:4089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23503 comm="syz.5.8063" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 267.073440][ T40] audit: type=1326 audit(2000000306.344:4090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23503 comm="syz.5.8063" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 267.082848][ T40] audit: type=1326 audit(2000000306.344:4091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23503 comm="syz.5.8063" exe="/syz-executor" sig=0 arch=40000003 syscall=226 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 267.091198][ T40] audit: type=1326 audit(2000000306.344:4092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23503 comm="syz.5.8063" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 267.097812][ T40] audit: type=1326 audit(2000000306.344:4093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23503 comm="syz.5.8063" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 267.104282][ T40] audit: type=1326 audit(2000000306.344:4094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23503 comm="syz.5.8063" exe="/syz-executor" sig=0 arch=40000003 syscall=230 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 267.110884][ T40] audit: type=1326 audit(2000000306.344:4095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23503 comm="syz.5.8063" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 267.927914][T23554] tipc: Started in network mode [ 267.929503][T23554] tipc: Node identity ac141441, cluster identity 4711 [ 267.931999][T23554] tipc: Enabling of bearer rejected, failed to enable media [ 268.276857][T23577] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8094'. [ 268.856069][T23631] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8115'. [ 268.928944][T23637] syz.5.8118: vmalloc error: size 1969448307, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 268.933717][T23637] CPU: 1 UID: 0 PID: 23637 Comm: syz.5.8118 Not tainted syzkaller #0 PREEMPT(full) [ 268.933733][T23637] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 268.933740][T23637] Call Trace: [ 268.933745][T23637] [ 268.933749][T23637] dump_stack_lvl+0x16c/0x1f0 [ 268.933768][T23637] warn_alloc+0x248/0x3a0 [ 268.933783][T23637] ? __pfx_warn_alloc+0x10/0x10 [ 268.933801][T23637] ? __lock_acquire+0xb97/0x1ce0 [ 268.933818][T23637] ? ip_set_sockfn_get+0x18e/0xd30 [ 268.933830][T23637] __vmalloc_node_range_noprof+0xff5/0x14b0 [ 268.933846][T23637] ? ip_set_sockfn_get+0x18e/0xd30 [ 268.933859][T23637] ? trace_contention_end+0xdd/0x130 [ 268.933873][T23637] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 268.933883][T23637] ? rcu_is_watching+0x12/0xc0 [ 268.933894][T23637] ? aa_get_newest_label+0xd2/0x250 [ 268.933907][T23637] ? ip_set_sockfn_get+0x18e/0xd30 [ 268.933917][T23637] __vmalloc_node_noprof+0xad/0xf0 [ 268.933927][T23637] ? ip_set_sockfn_get+0x18e/0xd30 [ 268.933939][T23637] ip_set_sockfn_get+0x18e/0xd30 [ 268.933951][T23637] ? __pfx_ip_set_sockfn_get+0x10/0x10 [ 268.933963][T23637] ? nf_sockopt_find.constprop.0+0x222/0x290 [ 268.933981][T23637] nf_getsockopt+0x7c/0xe0 [ 268.933996][T23637] ip_getsockopt+0x18c/0x1e0 [ 268.934013][T23637] ? __pfx_ip_getsockopt+0x10/0x10 [ 268.934028][T23637] raw_getsockopt+0x4d/0x1f0 [ 268.934041][T23637] ? __pfx_sock_common_getsockopt+0x10/0x10 [ 268.934058][T23637] do_sock_getsockopt+0x34d/0x440 [ 268.934075][T23637] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 268.934091][T23637] ? __fget_files+0x204/0x3c0 [ 268.934108][T23637] __sys_getsockopt+0x123/0x1b0 [ 268.934124][T23637] __ia32_sys_getsockopt+0xbc/0x160 [ 268.934136][T23637] ? lockdep_hardirqs_on+0x7c/0x110 [ 268.934149][T23637] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 268.934163][T23637] __do_fast_syscall_32+0x7c/0x3a0 [ 268.934178][T23637] do_fast_syscall_32+0x32/0x80 [ 268.934192][T23637] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 268.934204][T23637] RIP: 0023:0xf7f27579 [ 268.934213][T23637] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 268.934223][T23637] RSP: 002b:00000000f543655c EFLAGS: 00000296 ORIG_RAX: 000000000000016d [ 268.934232][T23637] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000 [ 268.934238][T23637] RDX: 0000000000000053 RSI: 0000000000000000 RDI: 0000000080000080 [ 268.934244][T23637] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 268.934250][T23637] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 268.934255][T23637] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 268.934268][T23637] [ 268.934271][T23637] Mem-Info: [ 269.025152][T23637] active_anon:6269 inactive_anon:5 isolated_anon:0 [ 269.025152][T23637] active_file:21052 inactive_file:2392 isolated_file:0 [ 269.025152][T23637] unevictable:1768 dirty:604 writeback:0 [ 269.025152][T23637] slab_reclaimable:6616 slab_unreclaimable:55767 [ 269.025152][T23637] mapped:24115 shmem:3633 pagetables:1188 [ 269.025152][T23637] sec_pagetables:316 bounce:0 [ 269.025152][T23637] kernel_misc_reclaimable:0 [ 269.025152][T23637] free:62735 free_pcp:17481 free_cma:0 [ 269.039977][T23637] Node 0 active_anon:2020kB inactive_anon:8kB active_file:388kB inactive_file:32kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:2220kB dirty:0kB writeback:0kB shmem:3904kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8172kB pagetables:1464kB sec_pagetables:1132kB all_unreclaimable? yes Balloon:0kB [ 269.051580][T23637] Node 1 active_anon:23256kB inactive_anon:12kB active_file:83820kB inactive_file:9536kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:88940kB dirty:2416kB writeback:0kB shmem:10628kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:6376kB pagetables:3388kB sec_pagetables:132kB all_unreclaimable? no Balloon:0kB [ 269.061410][T23637] Node 0 DMA free:2084kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:724kB local_pcp:160kB free_cma:0kB [ 269.072585][T23637] lowmem_reserve[]: 0 288 288 288 288 [ 269.074328][T23637] Node 0 DMA32 free:18028kB boost:0kB min:13220kB low:16524kB high:19828kB reserved_highatomic:4096KB free_highatomic:1548KB active_anon:2020kB inactive_anon:8kB active_file:388kB inactive_file:32kB unevictable:3536kB writepending:0kB present:1032196kB managed:295132kB mlocked:0kB bounce:0kB free_pcp:13588kB local_pcp:3288kB free_cma:0kB [ 269.084167][T23637] lowmem_reserve[]: 0 0 0 0 0 [ 269.085817][T23637] Node 1 DMA32 free:234528kB boost:0kB min:47140kB low:58924kB high:70708kB reserved_highatomic:0KB free_highatomic:0KB active_anon:17856kB inactive_anon:12kB active_file:83820kB inactive_file:9536kB unevictable:3536kB writepending:2416kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:57268kB local_pcp:15176kB free_cma:0kB [ 269.097341][T23637] lowmem_reserve[]: 0 0 0 0 0 [ 269.098867][T23637] Node 0 DMA: 23*4kB (U) 23*8kB (UM) 11*16kB (U) 7*32kB (UM) 4*64kB (UM) 1*128kB (M) 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2084kB [ 269.103517][T23637] Node 0 DMA32: 165*4kB (UMEH) 165*8kB (UMEH) 77*16kB (UMEH) 69*32kB (UMEH) 29*64kB (UMEH) 42*128kB (UMEH) 13*256kB (UMEH) 2*512kB (M) 1*1024kB (U) 0*2048kB 0*4096kB = 18028kB [ 269.109341][T23637] Node 1 DMA32: 1264*4kB (UME) 205*8kB (UME) 571*16kB (ME) 338*32kB (UME) 164*64kB (UME) 364*128kB (UME) 135*256kB (UME) 47*512kB (UME) 48*1024kB (UME) 9*2048kB (UM) 6*4096kB (U) = 234520kB [ 269.115193][T23637] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 269.118150][T23637] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 269.121016][T23637] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 269.124132][T23637] Node 1 hugepages_total=4 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 269.127074][T23637] 26107 total pagecache pages [ 269.128540][T23637] 358 pages in swap cache [ 269.129916][T23637] Free swap = 122280kB [ 269.131244][T23637] Total swap = 124996kB [ 269.132556][T23637] 524155 pages RAM [ 269.133772][T23637] 0 pages HighMem/MovableOnly [ 269.135917][T23637] 209477 pages reserved [ 269.137258][T23637] 0 pages cma reserved [ 269.187399][T23652] loop4: detected capacity change from 0 to 524255232 [ 269.378191][T23674] input: syz1 as /devices/virtual/input/input50 [ 269.387305][T23673] netlink: 'syz.6.8136': attribute type 1 has an invalid length. [ 269.420177][T23678] netlink: 'syz.6.8138': attribute type 10 has an invalid length. [ 269.430290][T23678] team0: Port device netdevsim0 added [ 269.918356][T23716] netlink: 60 bytes leftover after parsing attributes in process `syz.2.8155'. [ 269.921252][T23716] netlink: 60 bytes leftover after parsing attributes in process `syz.2.8155'. [ 270.293369][T23729] net_ratelimit: 4052 callbacks suppressed [ 270.293383][T23729] openvswitch: netlink: IPv4 tunnel dst address is zero [ 270.908596][T23775] netlink: 'syz.5.8181': attribute type 1 has an invalid length. [ 270.997364][T23787] sch_fq: defrate 0 ignored. [ 271.316079][T23817] netlink: 44 bytes leftover after parsing attributes in process `syz.6.8198'. [ 271.318766][T23817] netem: unknown loss type 12 [ 271.320596][T23817] netem: change failed [ 271.462670][T23838] input: syz0 as /devices/virtual/input/input51 [ 271.494009][T23843] serio: Serial port ptm0 [ 271.930498][T23886] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8230'. [ 272.580608][T23922] 8021q: adding VLAN 0 to HW filter on device bond1 [ 272.583678][T23922] bond0: (slave bond1): Enslaving as an active interface with an up link [ 272.740296][T23936] input: syz1 as /devices/virtual/input/input52 [ 272.966529][T23955] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 272.971114][T23955] IPv6: NLM_F_CREATE should be set when creating new route [ 273.265755][ T5982] Bluetooth: hci1: unexpected event for opcode 0x1003 [ 273.454700][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 274.457368][T24085] binder: 24084:24085 ioctl 4018620d 0 returned -22 [ 275.120502][T24112] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8335'. [ 275.624677][ T24] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 275.795236][ T24] usb 5-1: Using ep0 maxpacket: 16 [ 275.798375][ T24] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 275.803629][ T24] usb 5-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00 [ 275.808458][ T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 275.822090][ T24] usb 5-1: config 0 descriptor?? [ 275.830422][ T24] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input53 [ 276.214578][T17900] usb 11-1: new high-speed USB device number 6 using dummy_hcd [ 276.394623][T17900] usb 11-1: Using ep0 maxpacket: 8 [ 276.398584][T17900] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 276.402597][T17900] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 276.406546][T17900] usb 11-1: config 16 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 276.410142][T17900] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 276.414531][T17900] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 276.418080][T17900] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 276.424202][T17900] usbtmc 11-1:16.0: bulk endpoints not found [ 277.286111][ T5982] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 277.289725][ T5982] Bluetooth: hci1: Injecting HCI hardware error event [ 277.296634][ T5986] Bluetooth: hci1: hardware error 0x00 [ 278.976298][ T5848] usb 11-1: USB disconnect, device number 6 [ 279.039537][T24183] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8368'. [ 279.141859][T24197] binder: 24195:24197 ioctl 400c620e 80000040 returned -22 [ 279.365027][ T5986] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 280.137668][T24274] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8406'. [ 280.263877][T24289] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8412'. [ 280.270915][T24289] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8412'. [ 280.664692][T24331] netlink: 'syz.5.8433': attribute type 21 has an invalid length. [ 280.835853][T24344] netlink: 'syz.6.8439': attribute type 83 has an invalid length. [ 281.127179][T24125] bcm5974 5-1:0.0: could not read from device [ 281.141491][T17900] usb 5-1: USB disconnect, device number 14 [ 281.870340][T24424] input: syz0 as /devices/virtual/input/input54 [ 281.939513][ T40] kauditd_printk_skb: 182 callbacks suppressed [ 281.939529][ T40] audit: type=1800 audit(2000000321.243:4278): pid=24435 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.8479" name="file1" dev="tmpfs" ino=2451 res=0 errno=0 [ 282.925739][T24466] sp0: Synchronizing with TNC [ 283.710607][ T40] audit: type=1326 audit(2000000323.013:4279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24527 comm="syz.6.8522" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 283.719629][ T40] audit: type=1326 audit(2000000323.013:4280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24527 comm="syz.6.8522" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 283.728762][ T40] audit: type=1326 audit(2000000323.013:4281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24527 comm="syz.6.8522" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 283.737681][ T40] audit: type=1326 audit(2000000323.013:4282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24527 comm="syz.6.8522" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 283.745965][ T40] audit: type=1326 audit(2000000323.013:4283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24527 comm="syz.6.8522" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 283.754098][ T40] audit: type=1326 audit(2000000323.013:4284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24527 comm="syz.6.8522" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7f56579 code=0x7ffc0000 [ 283.762978][ T40] audit: type=1326 audit(2000000323.013:4285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24527 comm="syz.6.8522" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f56598 code=0x7ffc0000 [ 283.771848][ T40] audit: type=1326 audit(2000000323.013:4286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24527 comm="syz.6.8522" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f56598 code=0x7ffc0000 [ 283.780180][ T40] audit: type=1326 audit(2000000323.013:4287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24527 comm="syz.6.8522" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f56598 code=0x7ffc0000 [ 284.754596][T24620] netlink: 3 bytes leftover after parsing attributes in process `syz.5.8564'. [ 284.764239][T24620] batadv1: entered promiscuous mode [ 284.766625][T24620] batadv1: entered allmulticast mode [ 284.773742][T24623] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8565'. [ 285.204664][ T6616] usb 10-1: new high-speed USB device number 7 using dummy_hcd [ 285.358184][ T6616] usb 10-1: unable to get BOS descriptor or descriptor too short [ 285.359961][ T6616] usb 10-1: config 6 has an invalid interface number: 200 but max is 0 [ 285.374663][ T6616] usb 10-1: config 6 has no interface number 0 [ 285.374690][ T6616] usb 10-1: config 6 interface 200 has no altsetting 0 [ 285.377885][ T6616] usb 10-1: New USB device found, idVendor=05d8, idProduct=810c, bcdDevice=18.5f [ 285.382910][ T6616] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 285.382922][ T6616] usb 10-1: Product: syz [ 285.382930][ T6616] usb 10-1: Manufacturer: syz [ 285.382938][ T6616] usb 10-1: SerialNumber: syz [ 285.645062][ T841] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 285.674767][ T61] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 285.826664][ T61] usb 5-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad [ 285.826689][ T61] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 285.828527][ T61] usb 5-1: config 0 descriptor?? [ 285.830364][ T61] gspca_main: spca508-2.14.0 probing 8086:0110 [ 285.959258][ T6616] dvb-usb: found a 'Artec T14 - USB2.0 DVB-T' in warm state. [ 285.962324][ T6616] dvb-usb: bulk message failed: -71 (3/0) [ 285.964136][ T6616] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 285.971261][ T6616] dvbdev: DVB: registering new adapter (Artec T14 - USB2.0 DVB-T) [ 285.971293][ T6616] usb 10-1: media controller created [ 285.986325][ T6616] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 285.993184][ T6616] dvb-usb: bulk message failed: -71 (6/0) [ 285.993652][ T6616] dvb-usb: bulk message failed: -71 (6/0) [ 285.998925][ T6616] dvb-usb: no frontend was attached by 'Artec T14 - USB2.0 DVB-T' [ 286.004738][ T6616] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.5/usb10/10-1/input/input55 [ 286.006001][ T6616] dvb-usb: schedule remote query interval to 150 msecs. [ 286.012321][ T6616] dvb-usb: Artec T14 - USB2.0 DVB-T successfully initialized and connected. [ 286.014790][ T6616] usb 10-1: USB disconnect, device number 7 [ 286.035076][ T61] gspca_spca508: reg_read err -71 [ 286.035387][ T61] gspca_spca508: reg_read err -71 [ 286.035770][ T61] gspca_spca508: reg_read err -71 [ 286.043235][ T61] gspca_spca508: reg_read err -71 [ 286.043542][ T61] gspca_spca508: reg_read err -71 [ 286.047107][ T6616] dvb-usb: Artec T14 - USB2.0 DVB-T successfully deinitialized and disconnected. [ 286.047669][ T61] gspca_spca508: reg write: error -71 [ 286.052755][ T61] spca508 5-1:0.0: probe with driver spca508 failed with error -71 [ 286.055557][ T61] usb 5-1: USB disconnect, device number 15 [ 286.139543][ T5986] Bluetooth: hci3: unexpected event for opcode 0x1003 [ 286.783042][T24720] loop2: detected capacity change from 0 to 7 [ 286.811872][T24720] Dev loop2: unable to read RDB block 7 [ 286.814244][T24720] loop2: unable to read partition table [ 286.816508][T24720] loop2: partition table beyond EOD, truncated [ 286.819018][T24720] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5) [ 286.872423][T24729] netlink: 28 bytes leftover after parsing attributes in process `syz.6.8613'. [ 287.061884][T24741] netlink: 24 bytes leftover after parsing attributes in process `syz.5.8618'. [ 287.149618][T24753] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 287.276576][ T61] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 287.435629][ T61] usb 5-1: Using ep0 maxpacket: 8 [ 287.440470][ T61] usb 5-1: New USB device found, idVendor=12d1, idProduct=fae2, bcdDevice=70.8b [ 287.443968][ T61] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 287.450261][ T61] usb 5-1: Product: syz [ 287.451897][ T61] usb 5-1: Manufacturer: syz [ 287.454247][ T61] usb 5-1: SerialNumber: syz [ 287.458585][ T61] usb 5-1: config 0 descriptor?? [ 287.462032][ T61] option 5-1:0.0: GSM modem (1-port) converter detected [ 287.479967][T24794] netlink: 24 bytes leftover after parsing attributes in process `syz.6.8639'. [ 287.486256][ T72] IPVS: starting estimator thread 0... [ 287.585778][T24796] IPVS: using max 46 ests per chain, 110400 per kthread [ 287.667112][ T6060] usb 5-1: USB disconnect, device number 16 [ 287.669579][ T6060] option 5-1:0.0: device disconnected [ 288.474542][ T72] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 288.624560][ T72] usb 5-1: Using ep0 maxpacket: 16 [ 288.628148][ T72] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0 [ 288.633732][ T72] usb 5-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 288.637179][ T72] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 288.639782][ T72] usb 5-1: Product: syz [ 288.641336][ T72] usb 5-1: Manufacturer: syz [ 288.643072][ T72] usb 5-1: SerialNumber: syz [ 288.646960][ T72] usb 5-1: config 0 descriptor?? [ 288.652297][ T72] hub 5-1:0.0: bad descriptor, ignoring hub [ 288.654644][ T72] hub 5-1:0.0: probe with driver hub failed with error -5 [ 288.659889][ T72] input: syz syz as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input56 [ 288.935056][ T72] usb 5-1: USB disconnect, device number 17 [ 289.069616][T24885] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8679'. [ 289.517689][T24934] random: crng reseeded on system resumption [ 289.570026][T24944] CUSE: info not properly terminated [ 289.577715][T24947] loop6: detected capacity change from 0 to 63 [ 289.580127][T24947] buffer_io_error: 25 callbacks suppressed [ 289.580136][T24947] Buffer I/O error on dev loop6, logical block 0, async page read [ 289.585530][T24947] Buffer I/O error on dev loop6, logical block 0, async page read [ 289.588235][T24947] Buffer I/O error on dev loop6, logical block 0, async page read [ 289.591514][T24947] Buffer I/O error on dev loop6, logical block 0, async page read [ 289.595160][T24947] Buffer I/O error on dev loop6, logical block 0, async page read [ 289.598557][T24947] Buffer I/O error on dev loop6, logical block 0, async page read [ 289.601892][T24947] Buffer I/O error on dev loop6, logical block 0, async page read [ 289.605956][T24947] Buffer I/O error on dev loop6, logical block 0, async page read [ 289.609293][T24947] ldm_validate_partition_table(): Disk read failed. [ 289.612101][T24947] Buffer I/O error on dev loop6, logical block 0, async page read [ 289.615501][T24947] Buffer I/O error on dev loop6, logical block 0, async page read [ 289.618866][T24947] Dev loop6: unable to read RDB block 0 [ 289.621575][T24947] loop6: unable to read partition table [ 289.624067][T24947] loop_reread_partitions: partition scan of loop6 (3Ÿ ¾‚³˜) failed (rc=-5) [ 289.664036][T24954] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8712'. [ 289.670093][T24954] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8712'. [ 289.708769][T24957] mkiss: ax0: crc mode is auto. [ 289.723063][T24961] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8716'. [ 289.746667][ T40] kauditd_printk_skb: 144 callbacks suppressed [ 289.746678][ T40] audit: type=1326 audit(2000262729.050:4432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24962 comm="syz.5.8717" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 289.757059][ T40] audit: type=1326 audit(2000262729.050:4433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24962 comm="syz.5.8717" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 289.766725][ T40] audit: type=1326 audit(2000262729.050:4434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24962 comm="syz.5.8717" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 289.776905][ T40] audit: type=1326 audit(2000262729.050:4435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24962 comm="syz.5.8717" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 289.785013][ T40] audit: type=1326 audit(2000262729.050:4436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24962 comm="syz.5.8717" exe="/syz-executor" sig=0 arch=40000003 syscall=434 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 289.792743][ T40] audit: type=1326 audit(2000262729.050:4437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24962 comm="syz.5.8717" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 289.804196][ T40] audit: type=1326 audit(2000262729.050:4438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24962 comm="syz.5.8717" exe="/syz-executor" sig=0 arch=40000003 syscall=438 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 289.812197][ T40] audit: type=1326 audit(2000262729.050:4439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24962 comm="syz.5.8717" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000 [ 289.850955][T24977] input: syz1 as /devices/virtual/input/input57 [ 290.145232][ T841] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 290.164698][ T5986] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 290.168966][ T5986] Bluetooth: hci3: Injecting HCI hardware error event [ 290.174281][ T5982] Bluetooth: hci3: hardware error 0x00 [ 290.208386][T25006] autofs: Bad value for 'fd' [ 291.183821][ T61] kernel write not supported for file /snd/seq (pid: 61 comm: kworker/1:1) [ 291.211944][T25021] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8743'. [ 291.219655][T25023] input: syz0 as /devices/virtual/input/input58 [ 291.331247][T25032] bridge0: port 2(bridge_slave_1) entered disabled state [ 291.334326][T25032] bridge0: port 1(bridge_slave_0) entered disabled state [ 291.753372][ T40] audit: type=1800 audit(2000262731.050:4440): pid=25058 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.8760" name="file1" dev="tmpfs" ino=2234 res=0 errno=0 [ 291.757870][ T9] kernel read not supported for file /dsp (pid: 9 comm: kworker/0:0) [ 292.254768][ T5982] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 292.590359][T25133] netlink: 'syz.0.8794': attribute type 1 has an invalid length. [ 292.708346][T25154] netlink: 24 bytes leftover after parsing attributes in process `syz.6.8804'. [ 292.802011][T25172] netlink: 200 bytes leftover after parsing attributes in process `syz.5.8812'. [ 292.863621][T25183] erspan0: entered promiscuous mode [ 293.046842][T25210] sit0: entered promiscuous mode [ 293.048490][T25210] netlink: 'syz.0.8831': attribute type 1 has an invalid length. [ 293.050967][T25210] netlink: 1 bytes leftover after parsing attributes in process `syz.0.8831'. [ 293.182830][ T40] audit: type=1326 audit(2000262732.480:4441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25228 comm="syz.0.8839" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x0 [ 293.566034][T25268] kvm: kvm [25267]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x40000011) = 0x6 [ 294.146125][T25320] netlink: 'syz.2.8877': attribute type 39 has an invalid length. [ 294.173417][T25324] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8878'. [ 294.644993][ T841] e1000 0000:00:06.0 eth0: Reset adapter [ 294.764845][ T841] e1000 0000:00:06.0 eth0: Reset adapter [ 296.885933][ T841] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX [ 298.072320][T25387] pim6reg1: tun_chr_ioctl cmd 1074025677 [ 298.074269][T25387] pim6reg1: linktype set to 780 [ 298.134143][T25394] random: crng reseeded on system resumption [ 298.194645][T25400] netlink: 'syz.0.8912': attribute type 39 has an invalid length. [ 298.329793][T25417] openvswitch: netlink: IP tunnel TTL not specified. [ 298.348911][T25419] cifs: Unknown parameter 'mode' [ 298.454554][ T6060] usb 10-1: new high-speed USB device number 8 using dummy_hcd [ 298.485197][T25436] netlink: 'syz.6.8930': attribute type 39 has an invalid length. [ 298.614666][ T6060] usb 10-1: Using ep0 maxpacket: 16 [ 298.620358][ T6060] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 298.627663][ T6060] usb 10-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 298.631512][ T6060] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 298.638082][ T6060] usb 10-1: Product: syz [ 298.639919][ T6060] usb 10-1: Manufacturer: syz [ 298.641749][ T6060] usb 10-1: SerialNumber: syz [ 298.644377][ T6060] usb 10-1: config 0 descriptor?? [ 298.649510][ T6060] em28xx 10-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 298.653387][ T6060] em28xx 10-1:0.0: DVB interface 0 found: bulk [ 298.711553][T25454] tipc: Disabling bearer [ 298.749311][T25458] netlink: 'syz.6.8939': attribute type 4 has an invalid length. [ 298.915423][ T6060] em28xx 10-1:0.0: unknown em28xx chip ID (0) [ 298.986514][ T6060] em28xx 10-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 298.990350][ T6060] em28xx 10-1:0.0: board has no eeprom [ 299.054629][ T6060] em28xx 10-1:0.0: Identified as PCTV tripleStick (292e) (card=94) [ 299.057910][ T6060] em28xx 10-1:0.0: dvb set to bulk mode. [ 299.060577][ T61] em28xx 10-1:0.0: Binding DVB extension [ 299.064158][T25404] em28xx 10-1:0.0: reading from i2c device at 0x8 failed (error=-5) [ 299.069817][ T6060] usb 10-1: USB disconnect, device number 8 [ 299.073241][ T6060] em28xx 10-1:0.0: Disconnecting em28xx [ 299.098899][ T61] em28xx 10-1:0.0: Registering input extension [ 299.101848][ T6060] em28xx 10-1:0.0: Closing input extension [ 299.111747][ T6060] em28xx 10-1:0.0: Freeing device [ 299.602635][T25481] netlink: 'syz.5.8945': attribute type 39 has an invalid length. [ 300.317292][T25570] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8989'. [ 300.320844][T25570] netlink: 'syz.0.8989': attribute type 21 has an invalid length. [ 300.332977][T25572] macvlan3: entered promiscuous mode [ 300.336961][T25572] bridge0: entered promiscuous mode [ 301.075266][ T841] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 302.203205][T25670] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.9035'. [ 302.217730][T25672] netlink: 28 bytes leftover after parsing attributes in process `syz.6.9036'. [ 302.305731][ T5848] kernel write not supported for file /media0 (pid: 5848 comm: kworker/0:3) [ 303.375121][ T841] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 304.507653][T25787] random: crng reseeded on system resumption [ 304.589784][T25797] ip6gretap0: entered promiscuous mode [ 304.748813][T25817] netlink: 36 bytes leftover after parsing attributes in process `syz.0.9107'. [ 304.779364][T25819] netlink: 'syz.0.9108': attribute type 3 has an invalid length. [ 304.781851][T25819] netlink: 186932 bytes leftover after parsing attributes in process `syz.0.9108'. [ 304.813133][T25825] team0: Device gtp0 is of different type [ 304.828399][ T40] audit: type=1326 audit(2000262744.130:4442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25826 comm="syz.0.9112" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 304.842030][ T40] audit: type=1326 audit(2000262744.130:4443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25826 comm="syz.0.9112" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 304.849991][ T40] audit: type=1326 audit(2000262744.130:4444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25826 comm="syz.0.9112" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 304.857385][ T40] audit: type=1326 audit(2000262744.130:4445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25826 comm="syz.0.9112" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 304.864826][ T40] audit: type=1326 audit(2000262744.130:4446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25826 comm="syz.0.9112" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 304.872489][ T40] audit: type=1326 audit(2000262744.140:4447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25826 comm="syz.0.9112" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 304.879744][ T40] audit: type=1326 audit(2000262744.140:4448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25826 comm="syz.0.9112" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 304.886550][ T40] audit: type=1326 audit(2000262744.140:4449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25826 comm="syz.0.9112" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 304.893521][ T40] audit: type=1326 audit(2000262744.140:4450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25826 comm="syz.0.9112" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 304.903142][ T40] audit: type=1326 audit(2000262744.140:4451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25826 comm="syz.0.9112" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 304.942462][T25833] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 305.082324][T25851] vivid-000: disconnect [ 305.554915][ T6060] usb 11-1: new high-speed USB device number 7 using dummy_hcd [ 305.705263][ T6060] usb 11-1: Using ep0 maxpacket: 8 [ 305.710943][ T6060] usb 11-1: New USB device found, idVendor=12d1, idProduct=fae2, bcdDevice=70.8b [ 305.715798][ T6060] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 305.719272][ T6060] usb 11-1: Product: syz [ 305.721159][ T6060] usb 11-1: Manufacturer: syz [ 305.723171][ T6060] usb 11-1: SerialNumber: syz [ 305.727844][ T6060] usb 11-1: config 0 descriptor?? [ 305.732330][ T6060] option 11-1:0.0: GSM modem (1-port) converter detected [ 305.863743][T25845] vivid-000: reconnect [ 305.938361][ T6060] usb 11-1: USB disconnect, device number 7 [ 305.941903][ T6060] option 11-1:0.0: device disconnected [ 305.977792][T25905] loop4: detected capacity change from 0 to 524255232 [ 306.022060][T25907] ieee802154 phy1 wpan1: encryption failed: -22 [ 306.054772][T25905] loop4: detected capacity change from 524255232 to 524287956 [ 306.515810][T25940] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check. [ 306.782461][T25982] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9187'. [ 306.841425][ T5848] hid-generic 0001:0000:0000.000B: unknown main item tag 0x0 [ 306.844418][ T5848] hid-generic 0001:0000:0000.000B: unknown main item tag 0x0 [ 306.847132][ T5848] hid-generic 0001:0000:0000.000B: unknown main item tag 0x0 [ 306.849406][ T5848] hid-generic 0001:0000:0000.000B: unknown main item tag 0x0 [ 306.852030][ T5848] hid-generic 0001:0000:0000.000B: unknown main item tag 0x0 [ 306.855591][ T5848] hid-generic 0001:0000:0000.000B: unknown main item tag 0x0 [ 306.857922][ T5848] hid-generic 0001:0000:0000.000B: unknown main item tag 0x0 [ 306.860197][ T5848] hid-generic 0001:0000:0000.000B: unknown main item tag 0x0 [ 306.862520][ T5848] hid-generic 0001:0000:0000.000B: unknown main item tag 0x0 [ 306.864912][ T5848] hid-generic 0001:0000:0000.000B: unknown main item tag 0x0 [ 306.869064][ T5848] hid-generic 0001:0000:0000.000B: hidraw0: HID vffffff.ff Device [syz0] on syz0 [ 306.902316][ T5848] hid-generic 0000:0000:0000.000C: hidraw0: HID v0.03 Device [syz1] on syz1 [ 306.964590][ T5982] Bluetooth: hci0: command tx timeout [ 307.008188][T26007] Bluetooth: hci4: Frame reassembly failed (-84) [ 307.010899][ T5986] Bluetooth: hci4: sending frame failed (-49) [ 307.015483][ T5982] Bluetooth: hci4: Opcode 0x1003 failed: -49 [ 307.308577][T26032] sp0: Synchronizing with TNC [ 307.321293][T26034] tap0: tun_chr_ioctl cmd 2147767507 [ 307.630002][T26064] veth0_vlan: left promiscuous mode [ 308.273230][T26105] netlink: 44 bytes leftover after parsing attributes in process `syz.6.9243'. [ 308.277162][T26105] netlink: 43 bytes leftover after parsing attributes in process `syz.6.9243'. [ 308.280033][T26105] netlink: 'syz.6.9243': attribute type 6 has an invalid length. [ 308.282424][T26105] netlink: 'syz.6.9243': attribute type 5 has an invalid length. [ 308.284912][T26105] netlink: 43 bytes leftover after parsing attributes in process `syz.6.9243'. [ 308.317705][T26110] netem: incorrect ge model size [ 308.320509][T26110] netem: change failed [ 308.347510][T26113] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 308.401396][T26120] PKCS7: Unknown OID: [5] 0.0 [ 308.403383][T26120] PKCS7: Only support pkcs7_signedData type [ 308.453560][T26124] tap0: tun_chr_ioctl cmd 1074025678 [ 308.455745][T26124] tap0: group set to 0 [ 309.100810][T26181] netlink: 36 bytes leftover after parsing attributes in process `syz.5.9278'. [ 309.159029][T26187] netlink: 44 bytes leftover after parsing attributes in process `syz.5.9281'. [ 309.161991][T26187] netlink: 43 bytes leftover after parsing attributes in process `syz.5.9281'. [ 309.164948][T26187] netlink: 'syz.5.9281': attribute type 6 has an invalid length. [ 309.167446][T26187] netlink: 'syz.5.9281': attribute type 5 has an invalid length. [ 309.171959][T26187] netlink: 43 bytes leftover after parsing attributes in process `syz.5.9281'. [ 309.209897][T26192] loop4: detected capacity change from 0 to 524255232 [ 309.254731][T26192] loop4: detected capacity change from 524255232 to 524287956 [ 309.609409][T26213] netlink: 44 bytes leftover after parsing attributes in process `syz.0.9292'. [ 309.612419][T26213] netlink: 43 bytes leftover after parsing attributes in process `syz.0.9292'. [ 309.618011][T26213] netlink: 'syz.0.9292': attribute type 6 has an invalid length. [ 309.621257][T26213] netlink: 'syz.0.9292': attribute type 5 has an invalid length. [ 309.893212][T26245] netlink: 'syz.2.9306': attribute type 6 has an invalid length. [ 309.896270][T26245] netlink: 'syz.2.9306': attribute type 5 has an invalid length. [ 310.124898][T26269] can0: slcan on ttyS3. [ 310.186136][T26269] can0 (unregistered): slcan off ttyS3. [ 310.333487][T26296] netlink: 'syz.6.9330': attribute type 1 has an invalid length. [ 310.430782][T26308] dlm: non-version read from control device 34 [ 311.248319][T26360] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 311.365063][ T5986] Bluetooth: hci2: command 0x0419 tx timeout [ 311.768463][T26411] input: syz1 as /devices/virtual/input/input63 [ 311.900900][T26427] tun0: tun_chr_ioctl cmd 1074812118 [ 312.107566][T26435] dvmrp1: tun_chr_ioctl cmd 1074025676 [ 312.109335][T26435] dvmrp1: owner set to 0 [ 313.294775][ T5982] Bluetooth: hci0: command tx timeout [ 313.690302][T26543] bridge0: port 3(syz_tun) entered blocking state [ 313.693040][T26543] bridge0: port 3(syz_tun) entered disabled state [ 313.695500][T26543] syz_tun: entered allmulticast mode [ 313.699883][T26543] syz_tun: entered promiscuous mode [ 313.733654][T26547] __nla_validate_parse: 9 callbacks suppressed [ 313.733666][T26547] netlink: 31 bytes leftover after parsing attributes in process `syz.0.9448'. [ 314.125272][T26591] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9468'. [ 314.128110][T26591] netlink: 12 bytes leftover after parsing attributes in process `syz.5.9468'. [ 314.131740][T26591] netlink: 'syz.5.9468': attribute type 12 has an invalid length. [ 314.304743][ T841] kernel read not supported for file /dsp1 (pid: 841 comm: kworker/2:2) [ 314.337021][ T40] kauditd_printk_skb: 345 callbacks suppressed [ 314.337036][ T40] audit: type=1326 audit(2000262753.640:4797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26618 comm="syz.2.9482" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 314.348937][ T40] audit: type=1326 audit(2000262753.640:4798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26618 comm="syz.2.9482" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 314.359271][ T40] audit: type=1326 audit(2000262753.640:4799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26618 comm="syz.2.9482" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 314.375982][ T40] audit: type=1326 audit(2000262753.640:4800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26618 comm="syz.2.9482" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 314.394227][ T40] audit: type=1326 audit(2000262753.640:4801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26618 comm="syz.2.9482" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 314.407864][ T40] audit: type=1326 audit(2000262753.640:4802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26618 comm="syz.2.9482" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 314.416764][ T40] audit: type=1326 audit(2000262753.640:4803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26618 comm="syz.2.9482" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 314.426618][ T40] audit: type=1326 audit(2000262753.640:4804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26618 comm="syz.2.9482" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 314.436154][ T40] audit: type=1326 audit(2000262753.640:4805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26618 comm="syz.2.9482" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 314.446293][ T40] audit: type=1326 audit(2000262753.640:4806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26618 comm="syz.2.9482" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 314.530500][T26637] sp0: Synchronizing with TNC [ 314.537173][T26636] [U] è [ 314.784779][T26663] block nbd2: server does not support multiple connections per device. [ 314.788006][T26663] block nbd2: shutting down sockets [ 315.049817][T26703] 9pnet: p9_errstr2errno: server reported unknown error  [ 316.176233][T26787] kernel read not supported for file /blkio.throttle.io_service_bytes_recursive (pid: 26787 comm: syz.2.9560) [ 316.347176][T26808] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0 [ 316.421530][T26823] netlink: 'syz.6.9571': attribute type 1 has an invalid length. [ 316.555328][T26843] netlink: 888 bytes leftover after parsing attributes in process `syz.6.9580'. [ 316.646424][ T1419] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.055897][T26874] hub 1-0:1.0: USB hub found [ 317.058107][T26874] hub 1-0:1.0: 2 ports detected [ 317.937375][T26938] o2cb: This node has not been configured. [ 317.940034][T26938] o2cb: Cluster check failed. Fix errors before retrying. [ 317.942346][T26938] (syz.2.9625,26938,3):user_dlm_register:674 ERROR: status = -22 [ 317.946151][T26938] (syz.2.9625,26938,3):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file0" [ 318.067487][T26965] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9637'. [ 318.265153][T17900] usb 11-1: new high-speed USB device number 8 using dummy_hcd [ 318.436141][T17900] usb 11-1: config 0 has no interfaces? [ 318.437953][T17900] usb 11-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 318.440885][T17900] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 318.454887][T17900] usb 11-1: config 0 descriptor?? [ 318.644666][ T5986] Bluetooth: hci2: command 0x0419 tx timeout [ 318.666001][ T5848] usb 11-1: USB disconnect, device number 8 [ 319.163237][T26993] netlink: 'syz.5.9649': attribute type 1 has an invalid length. [ 319.518359][T27044] netlink: 'syz.5.9675': attribute type 10 has an invalid length. [ 319.521469][T27044] netlink: 152 bytes leftover after parsing attributes in process `syz.5.9675'. [ 319.678334][T27068] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9685'. [ 319.704239][T27075] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9688'. [ 319.710790][T27075] macvlan5: entered allmulticast mode [ 319.714499][T27075] veth1_vlan: entered allmulticast mode [ 319.727400][T27080] netlink: 36 bytes leftover after parsing attributes in process `syz.5.9686'. [ 319.788686][T27090] block device autoloading is deprecated and will be removed. [ 319.989480][T27096] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 319.991522][T27096] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 320.008650][T27096] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000b: 0000 [#1] SMP KASAN NOPTI [ 320.012477][T27096] KASAN: null-ptr-deref in range [0x0000000000000058-0x000000000000005f] [ 320.016224][T27096] CPU: 2 UID: 0 PID: 27096 Comm: syz.6.9695 Not tainted syzkaller #0 PREEMPT(full) [ 320.020451][T27096] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 320.024574][T27096] RIP: 0010:klist_put+0x4d/0x1b0 [ 320.026517][T27096] Code: c1 ea 03 80 3c 02 00 0f 85 5f 01 00 00 48 b8 00 00 00 00 00 fc ff df 4c 8b 23 49 83 e4 fe 49 8d 7c 24 58 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 2e 01 00 00 4c 89 e7 4d 8b 74 24 58 e8 8c 3e 0d [ 320.034040][T27096] RSP: 0018:ffffc90006cc72f0 EFLAGS: 00010202 [ 320.036456][T27096] RAX: dffffc0000000000 RBX: ffff8880617a6860 RCX: ffffc9000dd92000 [ 320.039558][T27096] RDX: 000000000000000b RSI: ffffffff8b864035 RDI: 0000000000000058 [ 320.042695][T27096] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff211cfac [ 320.045874][T27096] R10: ffffffff908e7d63 R11: 000000000000001e R12: 0000000000000000 [ 320.048978][T27096] R13: 0000000000000001 R14: 1ffff92000d98e66 R15: ffffffff908e7d20 [ 320.052099][T27096] FS: 0000000000000000(0000) GS:ffff8880976c0000(0063) knlGS:00000000f5466b40 [ 320.055420][T27096] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 320.057505][T27096] CR2: 000000000c733042 CR3: 0000000026ca7000 CR4: 0000000000352ef0 [ 320.060030][T27096] DR0: 0000000000000006 DR1: 0000000000000000 DR2: 0000000000000000 [ 320.062521][T27096] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 320.065250][T27096] Call Trace: [ 320.066635][T27096] [ 320.067933][T27096] klist_remove+0x13f/0x2e0 [ 320.069767][T27096] ? kobject_move+0x15d/0x260 [ 320.071653][T27096] ? __pfx_klist_remove+0x10/0x10 [ 320.073646][T27096] ? __pfx_kobject_move+0x10/0x10 [ 320.075649][T27096] ? get_device_parent+0x1ed/0x4e0 [ 320.077521][T27096] device_move+0x12d/0x10d0 [ 320.079308][T27096] hci_conn_del_sysfs+0x81/0x180 [ 320.081270][T27096] hci_conn_del+0x657/0x1180 [ 320.083079][T27096] hci_abort_conn_sync+0x76a/0xb20 [ 320.085176][T27096] ? __pfx_hci_abort_conn_sync+0x10/0x10 [ 320.087307][T27096] ? find_held_lock+0x2b/0x80 [ 320.089252][T27096] ? hci_disconnect_all_sync.constprop.0+0x77/0x3c0 [ 320.091828][T27096] ? hci_disconnect_all_sync.constprop.0+0x77/0x3c0 [ 320.094323][T27096] hci_disconnect_all_sync.constprop.0+0x104/0x3c0 [ 320.096884][T27096] hci_suspend_sync+0x821/0xb20 [ 320.098818][T27096] ? __pfx_enable_work+0x10/0x10 [ 320.100770][T27096] ? __pfx_hci_suspend_sync+0x10/0x10 [ 320.102893][T27096] hci_suspend_dev+0x308/0x500 [ 320.104805][T27096] ? __pfx_hci_suspend_dev+0x10/0x10 [ 320.106905][T27096] ? rcu_barrier+0x341/0x6e0 [ 320.108739][T27096] ? kobject_get+0xbb/0x150 [ 320.110558][T27096] hci_suspend_notifier+0x28d/0x2f0 [ 320.112494][T27096] notifier_call_chain+0xbc/0x410 [ 320.114502][T27096] ? __pfx_hci_suspend_notifier+0x10/0x10 [ 320.116756][T27096] blocking_notifier_call_chain_robust+0xc8/0x160 [ 320.119267][T27096] ? __pfx_blocking_notifier_call_chain_robust+0x10/0x10 [ 320.121967][T27096] ? do_raw_spin_unlock+0x172/0x230 [ 320.123993][T27096] pm_notifier_call_chain_robust+0x27/0x60 [ 320.126287][T27096] snapshot_open+0x189/0x2b0 [ 320.128096][T27096] ? __pfx_snapshot_open+0x10/0x10 [ 320.130111][T27096] misc_open+0x35d/0x420 [ 320.131770][T27096] ? __pfx_misc_open+0x10/0x10 [ 320.133617][T27096] chrdev_open+0x231/0x6a0 [ 320.135363][T27096] ? __pfx_apparmor_file_open+0x10/0x10 [ 320.137483][T27096] ? __pfx_chrdev_open+0x10/0x10 [ 320.139443][T27096] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 320.141967][T27096] do_dentry_open+0x97f/0x1530 [ 320.143859][T27096] ? __pfx_chrdev_open+0x10/0x10 [ 320.145863][T27096] vfs_open+0x82/0x3f0 [ 320.147490][T27096] path_openat+0x1de4/0x2cb0 [ 320.149374][T27096] ? __pfx_path_openat+0x10/0x10 [ 320.151313][T27096] ? __lock_acquire+0xb97/0x1ce0 [ 320.153250][T27096] do_filp_open+0x20b/0x470 [ 320.155121][T27096] ? __pfx_do_filp_open+0x10/0x10 [ 320.157120][T27096] ? _raw_spin_unlock+0x28/0x50 [ 320.159058][T27096] ? alloc_fd+0x471/0x7d0 [ 320.160776][T27096] do_sys_openat2+0x11b/0x1d0 [ 320.162663][T27096] ? __pfx_do_sys_openat2+0x10/0x10 [ 320.164729][T27096] __ia32_compat_sys_openat+0x16d/0x210 [ 320.166888][T27096] ? __pfx___ia32_compat_sys_openat+0x10/0x10 [ 320.169243][T27096] ? rcu_is_watching+0x12/0xc0 [ 320.171120][T27096] __do_fast_syscall_32+0x7c/0x3a0 [ 320.173129][T27096] do_fast_syscall_32+0x32/0x80 [ 320.175100][T27096] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 320.177587][T27096] RIP: 0023:0xf7f56579 [ 320.179193][T27096] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 320.186626][T27096] RSP: 002b:00000000f546655c EFLAGS: 00000296 ORIG_RAX: 0000000000000127 [ 320.189914][T27096] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000680 [ 320.193022][T27096] RDX: 0000000000040000 RSI: 0000000000000019 RDI: 0000000000000000 [ 320.196102][T27096] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 320.199192][T27096] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 320.202306][T27096] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 320.205450][T27096] [ 320.206683][T27096] Modules linked in: [ 320.208802][T27096] ---[ end trace 0000000000000000 ]--- [ 320.211260][T27096] RIP: 0010:klist_put+0x4d/0x1b0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 320.213185][T27096] Code: c1 ea 03 80 3c 02 00 0f 85 5f 01 00 00 48 b8 00 00 00 00 00 fc ff df 4c 8b 23 49 83 e4 fe 49 8d 7c 24 58 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 2e 01 00 00 4c 89 e7 4d 8b 74 24 58 e8 8c 3e 0d [ 320.221324][T27096] RSP: 0018:ffffc90006cc72f0 EFLAGS: 00010202 [ 320.223676][T27096] RAX: dffffc0000000000 RBX: ffff8880617a6860 RCX: ffffc9000dd92000 [ 320.227436][T27096] RDX: 000000000000000b RSI: ffffffff8b864035 RDI: 0000000000000058 [ 320.230467][T27096] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff211cfac [ 320.233546][T27096] R10: ffffffff908e7d63 R11: 000000000000001e R12: 0000000000000000 [ 320.249982][T27096] R13: 0000000000000001 R14: 1ffff92000d98e66 R15: ffffffff908e7d20 [ 320.252456][T27096] FS: 0000000000000000(0000) GS:ffff8880977c0000(0063) knlGS:00000000f5466b40 [ 320.264570][T27096] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 320.266685][T27096] CR2: 00007f867fa92000 CR3: 0000000026ca7000 CR4: 0000000000352ef0 [ 320.269191][T27096] DR0: 0000000000000006 DR1: 0000000000000000 DR2: 0000000000000000 [ 320.271698][T27096] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 320.274248][T27096] Kernel panic - not syncing: Fatal exception [ 320.276938][T27096] Kernel Offset: disabled [ 320.278314][T27096] Rebooting in 86400 seconds.. VM DIAGNOSIS: 11:23:34 Registers: info registers vcpu 0 CPU#0 RAX=000000000017fb84 RBX=0000000000000000 RCX=ffffffff8b90dbf9 RDX=ffffed1005646656 RSI=ffffffff8c162d80 RDI=ffffffff8190ca61 RBP=fffffbfff1c52ef8 RSP=ffffffff8e207e08 R8 =0000000000000000 R9 =ffffed1005646655 R10=ffff88802b2332ab R11=0000000000000000 R12=0000000000000000 R13=ffffffff8e2977c0 R14=ffffffff90ab8890 R15=0000000000000000 RIP=ffffffff8b90c75f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880974c0000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f733e828 CR3=000000002412c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=00000000001d3a74 RBX=0000000000000001 RCX=ffffffff8b90dbf9 RDX=ffffed1005666656 RSI=ffffffff8c162d80 RDI=ffffffff8190ca61 RBP=ffffed1003bdd488 RSP=ffffc9000046fdf8 R8 =0000000000000000 R9 =ffffed1005666655 R10=ffff88802b3332ab R11=0000000000000000 R12=0000000000000001 R13=ffff88801deea440 R14=ffffffff90ab8890 R15=0000000000000000 RIP=ffffffff8b90c75f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880975c0000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f7f155c0 CR3=000000002412c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff85617170 RDI=ffffffff9b0fc700 RBP=ffffffff9b0fc6c0 RSP=ffffc90006cc6c08 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552032203a555043 R12=0000000000000000 R13=0000000000000020 R14=fffffbfff361f932 R15=dffffc0000000000 RIP=ffffffff85617197 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880976c0000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000000c733042 CR3=0000000026ca7000 CR4=00352ef0 DR0=0000000000000006 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000170e14 RBX=0000000000000003 RCX=ffffffff8b90dbf9 RDX=ffffed10056a6656 RSI=ffffffff8c162d80 RDI=ffffffff8190ca61 RBP=ffffed1003862000 RSP=ffffc9000048fdf8 R8 =0000000000000000 R9 =ffffed10056a6655 R10=ffff88802b5332ab R11=0000000000000000 R12=0000000000000003 R13=ffff88801c310000 R14=ffffffff90ab8890 R15=0000000000000000 RIP=ffffffff8b90c75f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880977c0000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000005789699c CR3=000000002502b000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000