last executing test programs: 5m35.922682717s ago: executing program 0 (id=16151): mount$fuseblk(0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0420eb00000000000100090000007fe708000000bdc8a0930136388520a54a95a0a1094ada47f103d4dda5db7d9eddd63c0d1832120bb29b66c45420de69818b4a042d06"]) r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) add_key(&(0x7f0000000080)='pkcs7_test\x00', 0x0, &(0x7f0000000200)="3081a3", 0x1001, r0) 5m35.871804472s ago: executing program 0 (id=16154): r0 = socket$inet_sctp(0x2, 0x1, 0x84) munmap(&(0x7f0000001000/0x4000)=nil, 0x4000) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000a00)=@nat={'nat\x00', 0x1b, 0x5, 0x5a8, 0x318, 0x70, 0xffffffff, 0x0, 0x318, 0x538, 0x538, 0xffffffff, 0x538, 0x538, 0x5, 0x0, {[{{@ip={@local, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xffffffff, 0xffffffff, 'geneve1\x00', 'gretap0\x00', {}, {0xff}, 0x32, 0x1}, 0x0, 0xb8, 0xf0, 0x0, {}, [@common=@unspec=@state={{0x28}, {0x1}}, @common=@socket0={{0x20}}]}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x4, @local, @multicast2, @icmp_id=0x66, @icmp_id=0x200}}}}, {{@ip={@private=0xa010100, @multicast1, 0xff000000, 0xffffffff, 'wg0\x00', 'bridge0\x00', {0xff}, {0xff}, 0x32, 0x2}, 0x0, 0x1f0, 0x228, 0x0, {}, [@common=@ttl={{0x28}, {0x3, 0x9}}, @common=@inet=@policy={{0x158}, {[{@ipv4=@rand_addr=0x64010102, [0xff000000, 0xffffff, 0xffffffff], @ipv6=@mcast2, [0xffffffff, 0xffffff00, 0xff000000, 0xffffffff], 0x4d4, 0x3504, 0x32, 0x0, 0x4, 0x18}, {@ipv6=@private0={0xfc, 0x0, '\x00', 0x1}, [0xffffffff, 0xff000000, 0xffffff00, 0xffffff00], @ipv6=@dev={0xfe, 0x80, '\x00', 0x1f}, [0xffffff00, 0x1fe0000ff, 0x0, 0xff], 0x4d3, 0x0, 0xa, 0x0, 0x0, 0x11}, {@ipv6=@empty, [0xff, 0xff000000, 0xffffff00, 0xff000000], @ipv4=@empty, [0xffffff00, 0xff, 0xffffff00, 0xff000000], 0x4d2, 0x3505, 0x16, 0x1, 0x5, 0x2}, {@ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}, [0x0, 0xff, 0xffffff00, 0xff], @ipv4=@dev={0xac, 0x14, 0x14, 0x39}, [0xff000000, 0xff, 0xffffff00, 0xff], 0x4d5, 0x0, 0x28, 0x1, 0x7}], 0x8}}]}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x8, @broadcast, @rand_addr=0x64010100, @gre_key=0x9, @icmp_id=0x65}}}}, {{@uncond, 0x0, 0xf0, 0x128, 0x0, {}, [@common=@osf={{0x50}, {'syz0\x00', 0x0, 0x8, 0x2}}, @common=@ah={{0x30}, {[0x1, 0x1]}}]}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x8, @multicast1, @private=0xa010101, @port=0x4e24, @icmp_id=0x68}}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x4, [0x1, 0x2, 0x0, 0x0, 0x6, 0x1], 0x2, 0x3}, {0x4, [0x6, 0x6, 0x0, 0x1, 0x0, 0x1], 0x2, 0x5}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x608) 5m35.84724742s ago: executing program 0 (id=16158): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000008d00), r0) sendmsg$NLBL_UNLABEL_C_ACCEPT(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, r1, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0xfc}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2400cc00}, 0x0) 5m35.814106887s ago: executing program 0 (id=16160): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0) umount2(&(0x7f0000000100)='./file0\x00', 0x8) 5m35.747956285s ago: executing program 0 (id=16163): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x3081, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_X86_USER_SPACE_MSR(r1, 0x4068aea3, &(0x7f0000000100)={0xbc, 0x0, 0x4}) 5m35.385340861s ago: executing program 0 (id=16186): r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) sendmsg$netlink(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000080)={0x18, 0x14, 0x1, 0x70bd2c, 0x0, "", [@typed={0x8, 0x10e, 0x0, 0x0, @fd=r0}]}, 0x18}], 0x1, 0x0, 0x0, 0x4080}, 0x0) 5m35.310781251s ago: executing program 32 (id=16186): r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) sendmsg$netlink(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000080)={0x18, 0x14, 0x1, 0x70bd2c, 0x0, "", [@typed={0x8, 0x10e, 0x0, 0x0, @fd=r0}]}, 0x18}], 0x1, 0x0, 0x0, 0x4080}, 0x0) 5m28.659400057s ago: executing program 1 (id=16333): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]}) r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000180)={[0x4000000000]}, 0x8, 0x0) faccessat2(r0, &(0x7f0000000040)='\x00', 0x2, 0x1200) 5m28.575986324s ago: executing program 1 (id=16334): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)={{0x14}, [@NFT_MSG_NEWRULE={0x78, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x5}, [@NFTA_RULE_EXPRESSIONS={0x4c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @osf={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x4}]}}}, {0x30, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_NAT_FLAGS={0x8}, @NFTA_NAT_TYPE={0x8}, @NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0x14}, @NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0xa0}, 0x1, 0x0, 0x0, 0x850}, 0x0) 5m28.538281683s ago: executing program 1 (id=16336): mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}}) 5m28.501173944s ago: executing program 1 (id=16338): bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50) ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000440)={&(0x7f0000800000/0x800000)=nil, &(0x7f000051f000/0x4000)=nil, 0x800000, 0x1, 0xfe}) syz_io_uring_setup(0xe14, &(0x7f0000000400)={0x0, 0x6, 0x4000, 0x2, 0xc3}, 0x0, 0x0) 5m28.496307733s ago: executing program 1 (id=16340): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0x40}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @osf={{0x8}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_OSF_TTL={0x5, 0x2, 0x2}]}}}]}]}], {0x14}}, 0x78}}, 0x0) 5m28.420531259s ago: executing program 1 (id=16343): syz_clone(0x40288300, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) syz_clone(0x100b300, 0x0, 0x0, 0x0, 0x0, 0x0) 5m14.007921169s ago: executing program 33 (id=16343): syz_clone(0x40288300, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) syz_clone(0x100b300, 0x0, 0x0, 0x0, 0x0, 0x0) 3m29.59524583s ago: executing program 5 (id=20555): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0) r1 = syz_io_uring_setup(0x231, &(0x7f0000000240)={0x0, 0x15d2, 0x30101}, &(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x0, 0x4007, @fd=r0, 0xffffffffffffffff, 0x0}) io_uring_enter(r1, 0x7a98, 0x0, 0x4, 0x0, 0x0) 3m29.557187243s ago: executing program 5 (id=20556): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x3a8bc000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) setitimer(0x0, 0x0, 0x0) 3m29.304137701s ago: executing program 5 (id=20558): r0 = fsopen(&(0x7f0000000180)='proc\x00', 0x1) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) fsmount(r0, 0x0, 0xa) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) 3m29.217929733s ago: executing program 5 (id=20562): mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0xb101e, 0x0) umount2(&(0x7f0000000180)='./file0/../file0\x00', 0x4) 3m29.213499764s ago: executing program 5 (id=20564): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000040), r1) sendmsg$NFC_CMD_DISABLE_SE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x1c, r2, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000) 3m28.690138339s ago: executing program 5 (id=20580): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}}, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000080), 0xf9ba, 0x14b082) write$binfmt_aout(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="080107a40d020000"], 0x38) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000580)={0x53, 0x0, 0x6, 0x4, @buffer={0x0, 0x1004, &(0x7f00000018c0)=""/4100}, &(0x7f0000000440)="1518a7a093f1", 0x0, 0x84, 0x0, 0x0, 0x0}) 3m28.59440772s ago: executing program 34 (id=20580): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}}, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000080), 0xf9ba, 0x14b082) write$binfmt_aout(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="080107a40d020000"], 0x38) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000580)={0x53, 0x0, 0x6, 0x4, @buffer={0x0, 0x1004, &(0x7f00000018c0)=""/4100}, &(0x7f0000000440)="1518a7a093f1", 0x0, 0x84, 0x0, 0x0, 0x0}) 3.378618419s ago: executing program 6 (id=24482): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r0}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x68, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0x3}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_EXPRESSIONS={0x24, 0x12, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0x8}]}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x120}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xb0}}, 0x20050800) 3.304784723s ago: executing program 6 (id=24485): mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) r0 = userfaultfd(0x80001) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000140)) ioctl$UFFDIO_COPY(r0, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000/0x3000)=nil, 0x3000}) 3.182687894s ago: executing program 6 (id=24491): r0 = userfaultfd(0x80801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x48}) io_setup(0x8, &(0x7f0000004200)=0x0) io_submit(r1, 0x1, &(0x7f0000004540)=[&(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x2eb, r0, 0x0, 0x0, 0x6}]) 3.032016409s ago: executing program 6 (id=24495): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000280)='./file0\x00', 0x0, 0x97801, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x112) 2.999832902s ago: executing program 6 (id=24496): madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x103001, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_clone(0x2910a000, 0x0, 0x37, 0x0, 0x0, 0x0) 2.592947062s ago: executing program 6 (id=24509): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) ioctl$IOCTL_STOP_ACCEL_DEV(r1, 0x40046104, &(0x7f0000000240)) 2.551303944s ago: executing program 35 (id=24509): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) ioctl$IOCTL_STOP_ACCEL_DEV(r1, 0x40046104, &(0x7f0000000240)) 866.010204ms ago: executing program 4 (id=24549): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x3a8bc000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) getresuid(&(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)) 744.238896ms ago: executing program 2 (id=24550): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0xa31e3000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) setgroups(0x24, 0xffffffffffffffff) 673.038496ms ago: executing program 4 (id=24554): openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x42000, 0x0) r0 = syz_io_uring_setup(0x28cb, &(0x7f0000000200)={0x0, 0xd365, 0x10100, 0x3, 0x80000000}, &(0x7f0000000080)=0x0, &(0x7f0000000000)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22}) io_uring_enter(r0, 0x48e9, 0x225e, 0x2, 0x0, 0x0) 618.155574ms ago: executing program 4 (id=24556): timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000)) timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) getgid() 573.044122ms ago: executing program 4 (id=24559): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00'}) syz_usb_connect$uac1(0x2, 0x0, 0x0, &(0x7f0000000480)={0x0, 0x0, 0x5, &(0x7f00000001c0)={0x5, 0xf, 0x5}}) write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8) 565.159017ms ago: executing program 2 (id=24560): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000340)={0x1, 0x0, [{0x400000b1, 0x0, 0x3908}]}) 438.530932ms ago: executing program 3 (id=24561): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x200}}, &(0x7f0000000100)='GPL\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='contention_end\x00', r0}, 0x18) r1 = socket$xdp(0x2c, 0x3, 0x0) getsockopt$XDP_STATISTICS(r1, 0x11b, 0x8, &(0x7f0000003140), &(0x7f0000000040)=0x30) 435.219431ms ago: executing program 3 (id=24562): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000004c0)=ANY=[@ANYBLOB="0c0000000000000084000040"]) 434.386437ms ago: executing program 2 (id=24563): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', 0x0}) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@base={0x1, 0x200007, 0x2261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r1}, 0x50) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000d80)={{r2}, &(0x7f0000000d00), &(0x7f0000000d40)='%+9llu \x00', 0xc00}, 0x20) 335.439588ms ago: executing program 2 (id=24564): r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f00000000c0)={0x1, 0x5d5c, 0x9}) mmap(&(0x7f00008c9000/0x3000)=nil, 0x3000, 0x2000001, 0x13, r0, 0x100300) mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x3000004, 0x42031, 0xffffffffffffffff, 0x0) 327.987829ms ago: executing program 2 (id=24565): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 306.54783ms ago: executing program 3 (id=24566): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000240)=ANY=[@ANYBLOB="0300000000000000040000407f0000000200000001ffffff060000003b0000000000000000000000000000000000000001000040020000000000000048762331"]) 276.900486ms ago: executing program 2 (id=24567): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='setgroups\x00') syz_usb_connect(0x0, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="1201fb0009030320d812010079de01ec020109021b0001000003000904000001785ecc00090585020004"], 0x0) syz_open_dev$char_usb(0xc, 0xb4, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 126.279175ms ago: executing program 3 (id=24568): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0xe, 0x4, &(0x7f0000000b00)=ANY=[@ANYRES8, @ANYRESHEX, @ANYBLOB="3511fc61a61765cf023c17a5e84a0d757456565b6dcfa2b9e1e8e3970ae318ff1bf824f017541003b7153655a9f263da68065b6b429a92"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x94) r0 = socket$kcm(0x2, 0x1, 0x84) setsockopt$sock_attach_bpf(r0, 0x84, 0x85, &(0x7f0000000ac0), 0x90) sendmsg$inet(r0, &(0x7f00000006c0)={&(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)="93", 0x1}], 0x1}, 0xe0) 124.644535ms ago: executing program 3 (id=24569): mkdir(&(0x7f00000003c0)='./file0\x00', 0x21) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0) setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0) lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], 0x0, 0x11) 69.473442ms ago: executing program 3 (id=24570): socketpair$nbd(0x1, 0x1, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000400)={'wlan0\x00', {0x2, 0x4e22, @private=0xa010102}}) 412.137µs ago: executing program 4 (id=24571): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(0xffffffffffffffff, 0x84, 0x15, &(0x7f0000000040)={0x6}, 0x1) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x10, 0x48}, [@ldst={0x3, 0x0, 0x6}], {0x95, 0x0, 0xc00}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48) 0s ago: executing program 4 (id=24572): r0 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r1, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x5c, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r1, {0xb, 0xfff3}, {}, {0x7, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x2c, 0x2, [@TCA_BASIC_EMATCHES={0x28, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_META={0x18, 0x1, 0x0, 0x0, {{0x7, 0x4, 0x4}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0xe, 0x1}, {0x5, 0xc0}}}]}}]}]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20041090}, 0x0) kernel console output (not intermixed with test programs): 77.253600][ T5334] input input55: unable to receive magic message: -110 [ 477.339108][ T5334] input input55: unable to receive magic message: -32 [ 477.406419][ T34] usb 11-1: USB disconnect, device number 3 [ 477.408462][ C3] xpad 11-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 478.111971][T18404] sctp: [Deprecated]: syz.4.21122 (pid 18404) Use of int in maxseg socket option. [ 478.111971][T18404] Use struct sctp_assoc_value instead [ 478.121488][ T60] kernel read not supported for file /10615/net/udp6 (pid: 60 comm: kworker/3:1) [ 478.466740][T18435] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only [ 478.470773][T18435] overlayfs: fs on '.' does not support file handles, falling back to index=off,nfs_export=off. [ 478.474940][T18435] overlayfs: failed to set uuid (1287/file0, err=-13); falling back to uuid=null. [ 479.397495][ T8735] usb 9-1: new high-speed USB device number 6 using dummy_hcd [ 479.549030][ T8735] usb 9-1: Using ep0 maxpacket: 32 [ 479.554984][ T8735] usb 9-1: config index 0 descriptor too short (expected 156, got 27) [ 479.557589][ T8735] usb 9-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 479.561286][ T8735] usb 9-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 479.564781][ T8735] usb 9-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 479.569574][ T8735] usb 9-1: config 0 interface 0 has no altsetting 0 [ 479.573587][ T8735] usb 9-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 479.577153][ T8735] usb 9-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 479.581107][ T8735] usb 9-1: Product: syz [ 479.586107][ T8735] usb 9-1: Manufacturer: syz [ 479.588453][ T8735] usb 9-1: SerialNumber: syz [ 479.591645][ T8735] usb 9-1: config 0 descriptor?? [ 479.597273][ T8735] ldusb 9-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 479.607415][ T8735] ldusb 9-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 479.799942][ T8735] usb 9-1: USB disconnect, device number 6 [ 479.799998][ C2] ldusb 9-1:0.0: usb_submit_urb failed (-19) [ 479.815529][ T8735] ldusb 9-1:0.0: LD USB Device #0 now disconnected [ 480.004287][T18499] ldusb: No device or device unplugged -19 [ 481.130326][ T60] usb 8-1: new high-speed USB device number 11 using dummy_hcd [ 481.291958][ T60] usb 8-1: Using ep0 maxpacket: 32 [ 481.297950][T18550] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 481.303054][T18550] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 481.307604][ T60] usb 8-1: unable to get BOS descriptor or descriptor too short [ 481.311910][ T60] usb 8-1: unable to read config index 0 descriptor/start: -71 [ 481.314966][ T60] usb 8-1: can't read configurations, error -71 [ 481.508883][ T40] kauditd_printk_skb: 314 callbacks suppressed [ 481.508895][ T40] audit: type=1326 audit(1020.976:34039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18557 comm="syz.6.21186" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 481.518499][ T40] audit: type=1326 audit(1020.976:34040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18557 comm="syz.6.21186" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 481.526089][ T40] audit: type=1326 audit(1020.976:34041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18557 comm="syz.6.21186" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 481.533030][ T40] audit: type=1326 audit(1020.976:34042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18557 comm="syz.6.21186" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 481.540190][ T40] audit: type=1326 audit(1020.976:34043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18557 comm="syz.6.21186" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 481.547086][ T40] audit: type=1326 audit(1020.976:34044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18557 comm="syz.6.21186" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 481.553844][ T40] audit: type=1326 audit(1020.976:34045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18557 comm="syz.6.21186" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 481.558603][T18560] dummy0: entered promiscuous mode [ 481.560760][ T40] audit: type=1326 audit(1020.976:34046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18557 comm="syz.6.21186" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 481.563226][T18559] dummy0: left promiscuous mode [ 481.569060][ T40] audit: type=1326 audit(1020.976:34047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18557 comm="syz.6.21186" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 481.577435][ T40] audit: type=1326 audit(1020.976:34048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18557 comm="syz.6.21186" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000 [ 481.577716][ T6054] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 481.581028][ T5300] Bluetooth: hci4: command 0x1003 tx timeout [ 481.964378][T18586] netlink: 4 bytes leftover after parsing attributes in process `syz.3.21198'. [ 482.028116][T18586] tipc: Disabling bearer [ 482.536468][T18609] netlink: 24 bytes leftover after parsing attributes in process `syz.3.21209'. [ 483.046783][T18651] netlink: 8 bytes leftover after parsing attributes in process `syz.6.21228'. [ 483.854863][ T6054] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 483.903892][T18660] netlink: 28 bytes leftover after parsing attributes in process `syz.6.21233'. [ 483.907477][T18660] netlink: 28 bytes leftover after parsing attributes in process `syz.6.21233'. [ 485.919428][T18788] netlink: 8 bytes leftover after parsing attributes in process `syz.6.21287'. [ 485.921169][T18789] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0 [ 486.085207][T18801] 9pnet_virtio: no channels available for device syz [ 486.293590][ T5300] Bluetooth: hci4: command 0x1003 tx timeout [ 486.296847][ T6054] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 486.297632][ T1417] ieee802154 phy1 wpan1: encryption failed: -22 [ 486.349320][T18824] netlink: 332 bytes leftover after parsing attributes in process `syz.6.21309'. [ 486.352883][T18824] netlink: 196 bytes leftover after parsing attributes in process `syz.6.21309'. [ 486.356828][T18823] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 486.869915][T18866] netlink: 4 bytes leftover after parsing attributes in process `syz.3.21321'. [ 487.001752][ T8735] hid_parser_main: 12 callbacks suppressed [ 487.001766][ T8735] hid-generic 0000:0000:0000.0007: unknown main item tag 0x7 [ 487.006427][ T8735] hid-generic 0000:0000:0000.0007: ignoring exceeding usage max [ 487.013432][ T8735] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 487.015742][ T8735] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 487.018358][ T8735] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 487.020670][ T8735] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 487.023192][ T8735] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 487.026233][ T8735] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 487.028889][ T8735] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 487.031376][ T8735] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 487.033744][ T8735] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 487.042230][ T8735] hid-generic 0000:0000:0000.0007: hidraw0: HID v0.00 Device [syz0] on syz0 [ 487.075680][T18884] fido_id[18884]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 487.091412][ T40] kauditd_printk_skb: 493 callbacks suppressed [ 487.091423][ T40] audit: type=1800 audit(1026.834:34542): pid=18890 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.21333" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 487.135016][T18896] Malformed UNC in devname [ 487.135016][T18896] [ 487.137158][T18896] CIFS: VFS: Malformed UNC in devname [ 487.461761][T18917] trusted_key: encrypted_key: keyword 'upd' not recognized [ 487.513603][ T40] audit: type=1326 audit(1027.285:34543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18920 comm="syz.4.21348" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 487.521123][ T40] audit: type=1326 audit(1027.285:34544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18920 comm="syz.4.21348" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707d598 code=0x7ffc0000 [ 487.528888][ T40] audit: type=1326 audit(1027.285:34545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18920 comm="syz.4.21348" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707d598 code=0x7ffc0000 [ 487.535775][ T40] audit: type=1326 audit(1027.285:34546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18920 comm="syz.4.21348" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707d598 code=0x7ffc0000 [ 487.543322][ T40] audit: type=1326 audit(1027.285:34547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18920 comm="syz.4.21348" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707d598 code=0x7ffc0000 [ 487.551428][ T40] audit: type=1326 audit(1027.285:34548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18920 comm="syz.4.21348" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 487.558490][ T40] audit: type=1326 audit(1027.285:34549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18920 comm="syz.4.21348" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707d598 code=0x7ffc0000 [ 487.566501][ T40] audit: type=1326 audit(1027.285:34550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18920 comm="syz.4.21348" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707d598 code=0x7ffc0000 [ 487.574116][ T40] audit: type=1326 audit(1027.285:34551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18920 comm="syz.4.21348" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 487.931274][T11043] usb 8-1: new high-speed USB device number 13 using dummy_hcd [ 488.084025][T11043] usb 8-1: Using ep0 maxpacket: 32 [ 488.087171][T11043] usb 8-1: config index 0 descriptor too short (expected 156, got 27) [ 488.089677][T11043] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 488.093224][T11043] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 488.097444][T11043] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 488.102450][T11043] usb 8-1: config 0 interface 0 has no altsetting 0 [ 488.107260][T11043] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 488.110326][T11043] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 488.113309][T11043] usb 8-1: Product: syz [ 488.114717][T11043] usb 8-1: Manufacturer: syz [ 488.116171][T11043] usb 8-1: SerialNumber: syz [ 488.118898][T11043] usb 8-1: config 0 descriptor?? [ 488.124513][T11043] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 488.128271][T11043] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 488.318392][T11043] usb 8-1: USB disconnect, device number 13 [ 488.320266][ C0] ldusb 8-1:0.0: usb_submit_urb failed (-19) [ 488.326654][T11043] ldusb 8-1:0.0: LD USB Device #0 now disconnected [ 488.382179][T18943] dummy0: entered promiscuous mode [ 488.384274][T18942] dummy0: left promiscuous mode [ 488.519410][T18931] ldusb: No device or device unplugged -19 [ 488.923016][T18982] netlink: 24 bytes leftover after parsing attributes in process `syz.2.21377'. [ 488.936944][T18984] Context (ID=0x1) not attached to queue pair (handle=0x1:0x81) [ 489.048437][T18994] netlink: 4 bytes leftover after parsing attributes in process `syz.3.21383'. [ 490.575759][T19050] netlink: 60 bytes leftover after parsing attributes in process `syz.6.21410'. [ 490.770625][ T8735] e1000 0000:00:06.0 eth0: Reset adapter [ 490.893418][T19057] macvtap1: entered promiscuous mode [ 490.895380][T19057] macvtap1: entered allmulticast mode [ 490.898370][T19057] dummy0: entered promiscuous mode [ 490.902090][T19057] dummy0: entered allmulticast mode [ 490.907524][T19057] team0: Device macvtap1 failed to register rx_handler [ 490.941637][T19057] dummy0: left allmulticast mode [ 490.943463][T19057] dummy0: left promiscuous mode [ 492.847359][ T34] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX [ 501.461507][ T6054] Bluetooth: hci1: unexpected event for opcode 0x2011 [ 501.477562][T19127] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 501.749677][T19158] kvm: kvm [19156]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x11e) = 0x1 [ 501.753856][T19153] block nbd2: server does not support multiple connections per device. [ 501.760242][T19153] block nbd2: shutting down sockets [ 502.434508][T19208] loop8: detected capacity change from 0 to 7 [ 502.437129][T19208] loop8: [CUMANA/ADFS] p1 [Linux] p2 [ADFS] p1 [Linux] p2 [ 502.439650][T19208] loop8: partition table partially beyond EOD, truncated [ 502.442167][T19208] loop8: p1 size 3651402975 extends beyond EOD, truncated [ 502.445271][T19208] loop8: p2 start 956478 is beyond EOD, truncated [ 502.461244][T19111] udevd[19111]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory [ 502.534373][ T40] kauditd_printk_skb: 71 callbacks suppressed [ 502.534385][ T40] audit: type=1326 audit(1043.043:34623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19216 comm="syz.6.21475" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000 [ 502.542997][ T40] audit: type=1326 audit(1043.053:34624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19216 comm="syz.6.21475" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000 [ 502.550963][ T40] audit: type=1326 audit(1043.053:34625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19216 comm="syz.6.21475" exe="/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf702d579 code=0x7ffc0000 [ 502.562113][ T40] audit: type=1326 audit(1043.053:34626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19216 comm="syz.6.21475" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000 [ 502.569046][ T40] audit: type=1326 audit(1043.053:34627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19216 comm="syz.6.21475" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000 [ 502.575737][ T40] audit: type=1326 audit(1043.053:34628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19216 comm="syz.6.21475" exe="/syz-executor" sig=0 arch=40000003 syscall=16 compat=1 ip=0xf702d579 code=0x7ffc0000 [ 502.582939][ T40] audit: type=1326 audit(1043.053:34629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19216 comm="syz.6.21475" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000 [ 503.829459][T17365] usb 11-1: new high-speed USB device number 4 using dummy_hcd [ 503.991362][T17365] usb 11-1: Using ep0 maxpacket: 32 [ 503.994430][T17365] usb 11-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64 [ 503.997504][T17365] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 504.001606][T17365] usb 11-1: config 0 descriptor?? [ 504.007879][T17365] as10x_usb: device has been detected [ 504.009946][T17365] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle) [ 504.019555][T17365] usb 11-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)... [ 504.042320][T17365] as10x_usb: error during firmware upload part1 [ 504.044558][T17365] Registered device nBox DVB-T Dongle [ 504.144710][T19260] netlink: 'syz.2.21492': attribute type 3 has an invalid length. [ 504.151735][T19273] syzkaller1: tun_chr_ioctl cmd 1074025672 [ 504.154381][T19273] syzkaller1: ignored: set checksum disabled [ 504.200302][T17365] usb 11-1: USB disconnect, device number 4 [ 504.214493][T17365] Unregistered device nBox DVB-T Dongle [ 504.215228][T17365] as10x_usb: device has been disconnected [ 504.687083][T17365] usb 8-1: new high-speed USB device number 14 using dummy_hcd [ 504.848681][T17365] usb 8-1: Using ep0 maxpacket: 8 [ 504.852096][T17365] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 504.855208][T17365] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 504.858352][T17365] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 504.861514][T17365] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 504.865604][T17365] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 504.868626][T17365] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 505.068271][T17365] usb 8-1: GET_CAPABILITIES returned 0 [ 505.070089][T17365] usbtmc 8-1:16.0: can't read capabilities [ 505.261406][ T8735] usb 8-1: USB disconnect, device number 14 [ 505.908565][T19375] GUP no longer grows the stack in syz.3.21546 (19375): 80004000-80005000 (80001000) [ 505.912298][T19375] CPU: 3 UID: 0 PID: 19375 Comm: syz.3.21546 Not tainted syzkaller #0 PREEMPT(full) [ 505.912315][T19375] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 505.912322][T19375] Call Trace: [ 505.912370][T19375] [ 505.912375][T19375] dump_stack_lvl+0x16c/0x1f0 [ 505.912433][T19375] gup_vma_lookup+0x1d2/0x220 [ 505.912448][T19375] __get_user_pages+0x241/0x3530 [ 505.912467][T19375] ? look_up_lock_class+0x59/0x150 [ 505.912478][T19375] ? __kmalloc_noprof+0x32f/0x880 [ 505.912496][T19375] ? __pfx___get_user_pages+0x10/0x10 [ 505.912514][T19375] __gup_longterm_locked+0xa92/0x17e0 [ 505.912533][T19375] ? __pfx___gup_longterm_locked+0x10/0x10 [ 505.912555][T19375] pin_user_pages_remote+0xed/0x140 [ 505.912572][T19375] ? __pfx_pin_user_pages_remote+0x10/0x10 [ 505.912587][T19375] ? mm_access+0x22d/0x2e0 [ 505.912605][T19375] process_vm_rw_core.constprop.0+0x41b/0x970 [ 505.912621][T19375] ? trace_kmalloc+0x2b/0xd0 [ 505.912637][T19375] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 505.912650][T19375] ? iovec_from_user+0xbb/0x140 [ 505.912693][T19375] ? iovec_from_user+0xbb/0x140 [ 505.912712][T19375] process_vm_rw+0x216/0x2c0 [ 505.912726][T19375] ? __pfx_process_vm_rw+0x10/0x10 [ 505.912742][T19375] ? __pfx___mm_populate+0x10/0x10 [ 505.912771][T19375] ? xfd_validate_state+0x61/0x180 [ 505.912790][T19375] __ia32_sys_process_vm_writev+0xdf/0x1b0 [ 505.912804][T19375] ? lockdep_hardirqs_on+0x7c/0x110 [ 505.912816][T19375] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 505.912829][T19375] __do_fast_syscall_32+0x7c/0x300 [ 505.912844][T19375] do_fast_syscall_32+0x32/0x80 [ 505.912856][T19375] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 505.912870][T19375] RIP: 0023:0xf70ed579 [ 505.912878][T19375] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 505.912889][T19375] RSP: 002b:00000000f54dd55c EFLAGS: 00000296 ORIG_RAX: 000000000000015c [ 505.912900][T19375] RAX: ffffffffffffffda RBX: 0000000000002a00 RCX: 0000000080c22000 [ 505.912907][T19375] RDX: 000000000000002b RSI: 0000000080c22fa0 RDI: 0000000000000001 [ 505.912913][T19375] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 505.912919][T19375] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 505.912925][T19375] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 505.912939][T19375] [ 505.991649][ C3] vkms_vblank_simulate: vblank timer overrun [ 506.230442][T17365] usb 8-1: new high-speed USB device number 15 using dummy_hcd [ 506.402630][T17365] usb 8-1: Using ep0 maxpacket: 16 [ 506.406822][T17365] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 506.412485][T17365] usb 8-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 506.415392][T17365] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 506.417896][T17365] usb 8-1: Product: syz [ 506.419234][T17365] usb 8-1: Manufacturer: syz [ 506.421716][T17365] usb 8-1: SerialNumber: syz [ 506.425445][T17365] usb 8-1: config 0 descriptor?? [ 506.428913][T17365] em28xx 8-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 506.432339][T17365] em28xx 8-1:0.0: DVB interface 0 found: bulk [ 506.646045][T19411] macvlan2: entered promiscuous mode [ 506.697074][T17365] em28xx 8-1:0.0: unknown em28xx chip ID (0) [ 506.769269][T17365] em28xx 8-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 506.772659][T17365] em28xx 8-1:0.0: board has no eeprom [ 506.832297][T19380] em28xx 8-1:0.0: reading from i2c device at 0xc failed (error=-5) [ 506.839466][T17365] em28xx 8-1:0.0: Identified as PCTV tripleStick (292e) (card=94) [ 506.842236][T17365] em28xx 8-1:0.0: dvb set to bulk mode. [ 506.844595][T11043] em28xx 8-1:0.0: Binding DVB extension [ 506.855292][T17365] usb 8-1: USB disconnect, device number 15 [ 506.857953][T17365] em28xx 8-1:0.0: Disconnecting em28xx [ 506.879132][T11043] em28xx 8-1:0.0: Registering input extension [ 506.881331][T17365] em28xx 8-1:0.0: Closing input extension [ 506.894775][T17365] em28xx 8-1:0.0: Freeing device [ 507.183524][T19435] netem: change failed [ 507.581797][T19470] netlink: 36 bytes leftover after parsing attributes in process `syz.3.21589'. [ 507.874257][T19500] netlink: 36 bytes leftover after parsing attributes in process `syz.4.21603'. [ 508.538910][T19536] bridge0: entered promiscuous mode [ 508.540582][T19536] macvlan2: entered promiscuous mode [ 508.668755][ T24] usb 9-1: new high-speed USB device number 7 using dummy_hcd [ 508.811381][ T24] usb 9-1: Using ep0 maxpacket: 8 [ 508.814338][ T24] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 508.817354][ T24] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 508.820363][ T24] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 508.823805][ T24] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 508.827796][ T24] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 508.830808][ T24] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 509.031146][ T24] usb 9-1: GET_CAPABILITIES returned 0 [ 509.032893][ T24] usbtmc 9-1:16.0: can't read capabilities [ 509.224960][T11043] usb 9-1: USB disconnect, device number 7 [ 510.770719][ T40] audit: type=1326 audit(1051.693:34630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19550 comm="syz.4.21626" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707d579 code=0x0 [ 511.090388][T19567] netlink: 92 bytes leftover after parsing attributes in process `syz.2.21634'. [ 511.822111][T19620] ieee802154 phy1 wpan1: encryption failed: -126 [ 513.022757][ T24] e1000 0000:00:06.0 eth0: Reset adapter [ 513.155624][T19699] netlink: 60 bytes leftover after parsing attributes in process `syz.3.21693'. [ 515.099854][ T60] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX [ 524.219341][T19773] openvswitch: netlink: nsh attribute has 65288 unknown bytes. [ 524.222831][T19773] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 524.922520][T19835] netlink: 24 bytes leftover after parsing attributes in process `syz.4.21740'. [ 525.414885][T19886] netlink: 4 bytes leftover after parsing attributes in process `syz.6.21759'. [ 525.927992][T19936] netlink: 8 bytes leftover after parsing attributes in process `syz.6.21782'. [ 525.992035][T19940] netlink: 8 bytes leftover after parsing attributes in process `syz.6.21784'. [ 525.994899][T19940] netlink: 24 bytes leftover after parsing attributes in process `syz.6.21784'. [ 526.518578][T19976] netlink: 'syz.2.21800': attribute type 1 has an invalid length. [ 526.593517][ T40] audit: type=1804 audit(1068.301:34631): pid=19982 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.21803" name="/newroot/5327/file1" dev="tmpfs" ino=26823 res=1 errno=0 [ 526.605042][ T40] audit: type=1800 audit(1068.311:34632): pid=19982 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.21803" name="file1" dev="tmpfs" ino=26823 res=0 errno=0 [ 528.064821][T20064] loop2: detected capacity change from 0 to 7 [ 528.069010][T19846] Dev loop2: unable to read RDB block 7 [ 528.071242][T19846] loop2: unable to read partition table [ 528.075990][T19846] loop2: partition table beyond EOD, truncated [ 528.080577][T20064] Dev loop2: unable to read RDB block 7 [ 528.082779][T20064] loop2: unable to read partition table [ 528.084777][T20064] loop2: partition table beyond EOD, truncated [ 528.088674][T20064] loop_reread_partitions: partition scan of loop2 (被x ) failed (rc=-5) [ 528.097362][ T5349] Dev loop2: unable to read RDB block 7 [ 528.099598][ T5349] loop2: unable to read partition table [ 528.102711][ T5349] loop2: partition table beyond EOD, truncated [ 528.282212][ T5300] Bluetooth: hci4: command 0x1003 tx timeout [ 528.282279][ T6054] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 528.592971][T20082] netlink: 24 bytes leftover after parsing attributes in process `syz.6.21852'. [ 528.916557][T20091] kvm: user requested TSC rate below hardware speed [ 529.149334][T20101] program syz.6.21861 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 529.241706][T20109] blkio.reset_stats is deprecated [ 529.282605][T20115] input: syz1 as /devices/virtual/input/input57 [ 529.849744][T17352] hid_parser_main: 12 callbacks suppressed [ 529.849756][T17352] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 529.863365][T17352] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 529.865943][T17352] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 529.868990][T17352] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 529.871371][T17352] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 529.873905][T17352] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 529.876306][T17352] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 529.878820][T17352] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 529.881151][T17352] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 529.888758][T17352] hid-generic 0001:0000:0000.0008: unknown main item tag 0x0 [ 529.893393][T17352] hid-generic 0001:0000:0000.0008: hidraw0: HID vffffff.ff Device [syz0] on syz0 [ 529.899379][T20190] netlink: 4 bytes leftover after parsing attributes in process `syz.3.21902'. [ 529.962067][T20191] fido_id[20191]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 530.417496][T20236] netlink: 8 bytes leftover after parsing attributes in process `syz.6.21922'. [ 530.451084][T20238] netlink: 'syz.6.21923': attribute type 10 has an invalid length. [ 530.454666][T20238] netlink: 152 bytes leftover after parsing attributes in process `syz.6.21923'. [ 530.967355][T20258] netlink: 20 bytes leftover after parsing attributes in process `syz.6.21934'. [ 531.009499][T20262] netlink: 8 bytes leftover after parsing attributes in process `syz.4.21935'. [ 531.012680][T20262] netlink: 12 bytes leftover after parsing attributes in process `syz.4.21935'. [ 531.026526][T20266] netlink: 4 bytes leftover after parsing attributes in process `syz.3.21936'. [ 531.396031][T20300] binder: 20299:20300 ioctl 400c620e 80000040 returned -22 [ 531.835134][T11043] usb 11-1: new full-speed USB device number 5 using dummy_hcd [ 531.851068][T20341] netlink: 56 bytes leftover after parsing attributes in process `syz.3.21970'. [ 531.988477][T11043] usb 11-1: config 0 has no interfaces? [ 531.990333][T11043] usb 11-1: New USB device found, idVendor=12d1, idProduct=42f7, bcdDevice=aa.47 [ 531.993174][T11043] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 531.996966][T11043] usb 11-1: config 0 descriptor?? [ 532.225087][T13894] usb 11-1: USB disconnect, device number 5 [ 532.244739][ T6054] Bluetooth: hci0: command tx timeout [ 532.909872][T20386] netlink: 4 bytes leftover after parsing attributes in process `syz.2.21983'. [ 532.918335][T20386] netlink: 4 bytes leftover after parsing attributes in process `syz.2.21983'. [ 533.018965][T20404] input: syz1 as /devices/virtual/input/input58 [ 533.189578][T20416] bridge0: port 3(syz_tun) entered disabled state [ 534.701025][T20479] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2 [ 534.706366][ T1181] Bluetooth: hci4: Frame reassembly failed (-84) [ 534.710101][ T1181] Bluetooth: hci4: Frame reassembly failed (-84) [ 535.218010][T20501] __nla_validate_parse: 2 callbacks suppressed [ 535.218024][T20501] netlink: 12 bytes leftover after parsing attributes in process `syz.2.22040'. [ 535.223113][T20501] netlink: 12 bytes leftover after parsing attributes in process `syz.2.22040'. [ 535.260019][T20505] input: syz1 as /devices/virtual/input/input59 [ 535.548505][T20518] netlink: 24 bytes leftover after parsing attributes in process `syz.2.22048'. [ 535.552692][T20518] netlink: 24 bytes leftover after parsing attributes in process `syz.2.22048'. [ 536.405423][T20559] netlink: 4 bytes leftover after parsing attributes in process `syz.6.22067'. [ 536.664731][ T8763] Bluetooth: hci4: command 0x1003 tx timeout [ 536.667046][ T6054] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 537.069685][T20591] netlink: 'syz.3.22081': attribute type 8 has an invalid length. [ 537.081482][ T40] audit: type=1326 audit(1080.311:34633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20602 comm="syz.2.22085" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 537.092703][ T40] audit: type=1326 audit(1080.311:34634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20602 comm="syz.2.22085" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 537.110770][ T40] audit: type=1326 audit(1080.321:34635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20602 comm="syz.2.22085" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 537.117700][ T40] audit: type=1326 audit(1080.321:34636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20602 comm="syz.2.22085" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 537.131293][ T40] audit: type=1326 audit(1080.321:34637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20602 comm="syz.2.22085" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 537.137763][ T40] audit: type=1326 audit(1080.321:34638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20602 comm="syz.2.22085" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 537.148074][ T40] audit: type=1326 audit(1080.321:34639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20602 comm="syz.2.22085" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 537.154886][ T40] audit: type=1326 audit(1080.321:34640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20602 comm="syz.2.22085" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 537.163051][ T40] audit: type=1326 audit(1080.321:34641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20602 comm="syz.2.22085" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 537.172994][ T40] audit: type=1326 audit(1080.321:34642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20602 comm="syz.2.22085" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 537.627373][T20660] input: syz1 as /devices/virtual/input/input60 [ 537.756336][T20674] comedi comedi3: aio_aio12_8: I/O port conflict (0x4f27,32) [ 538.084156][T17352] usb 9-1: new high-speed USB device number 8 using dummy_hcd [ 538.231977][T17352] usb 9-1: unable to get BOS descriptor or descriptor too short [ 538.235489][T17352] usb 9-1: unable to read config index 0 descriptor/start: -71 [ 538.239096][T17352] usb 9-1: can't read configurations, error -71 [ 538.417085][ T6054] Bluetooth: hci5: command 0x1003 tx timeout [ 538.420131][ T5300] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 538.927823][T20704] kvm: kvm [20703]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x4000006f) = 0x6 [ 539.814171][T20749] netlink: 'syz.2.22146': attribute type 6 has an invalid length. [ 541.235116][T20803] netlink: 4 bytes leftover after parsing attributes in process `syz.6.22169'. [ 541.591520][T20819] tun0: tun_chr_ioctl cmd 1074025675 [ 541.593593][T20819] tun0: persist disabled [ 541.951698][T20857] comedi comedi3: das16m1: I/O port conflict (0x4f2a,16) [ 542.432233][T20896] netlink: 4 bytes leftover after parsing attributes in process `syz.6.22214'. [ 543.675420][T20958] input: syz1 as /devices/virtual/input/input63 [ 543.922807][T13894] usb 8-1: new high-speed USB device number 16 using dummy_hcd [ 544.068220][T13894] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 544.072113][T13894] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 544.075230][T13894] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 544.078468][T13894] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 544.082656][T20960] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 544.087898][T13894] usb 8-1: Quirk or no altset; falling back to MIDI 1.0 [ 544.210528][T21003] bond0: entered promiscuous mode [ 544.212172][T21003] bond_slave_0: entered promiscuous mode [ 544.214146][T21003] bond_slave_1: entered promiscuous mode [ 544.216849][T21003] batadv_slave_0: entered promiscuous mode [ 544.224013][T21003] batadv_slave_0: left promiscuous mode [ 544.241206][T21003] bond0: left promiscuous mode [ 544.242764][T21003] bond_slave_0: left promiscuous mode [ 544.244572][T21003] bond_slave_1: left promiscuous mode [ 544.282496][T13894] usb 8-1: USB disconnect, device number 16 [ 544.404994][T21014] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 544.408342][T21014] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 544.642948][T21021] input: syz1 as /devices/virtual/input/input64 [ 544.830888][ T1417] ieee802154 phy1 wpan1: encryption failed: -22 [ 545.130849][ T40] kauditd_printk_skb: 126 callbacks suppressed [ 545.130861][ T40] audit: type=1326 audit(1088.762:34769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21038 comm="syz.3.22279" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 545.141626][ T40] audit: type=1326 audit(1088.762:34770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21038 comm="syz.3.22279" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 545.150094][ T40] audit: type=1326 audit(1088.772:34771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21038 comm="syz.3.22279" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 545.158464][ T40] audit: type=1326 audit(1088.772:34772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21038 comm="syz.3.22279" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 545.166927][ T40] audit: type=1326 audit(1088.772:34773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21038 comm="syz.3.22279" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 545.175234][ T40] audit: type=1326 audit(1088.772:34774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21038 comm="syz.3.22279" exe="/syz-executor" sig=0 arch=40000003 syscall=245 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 545.183571][ T40] audit: type=1326 audit(1088.772:34775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21038 comm="syz.3.22279" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 545.191919][ T40] audit: type=1326 audit(1088.772:34776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21038 comm="syz.3.22279" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 545.200262][ T40] audit: type=1326 audit(1088.772:34777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21038 comm="syz.3.22279" exe="/syz-executor" sig=0 arch=40000003 syscall=385 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 545.208482][ T40] audit: type=1326 audit(1088.772:34778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21038 comm="syz.3.22279" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 545.377808][T21048] tipc: Enabled bearer , priority 15 [ 545.459397][T21059] pim6reg1: tun_chr_ioctl cmd 1074025677 [ 545.461354][T21059] pim6reg1: linktype set to 780 [ 545.958908][T21107] netlink: 12 bytes leftover after parsing attributes in process `syz.4.22310'. [ 546.691449][T21178] netlink: 36 bytes leftover after parsing attributes in process `syz.4.22344'. [ 546.790742][T21194] binder: 21192:21194 ioctl c0306201 80000480 returned -22 [ 547.075868][ T6093] usb 9-1: new high-speed USB device number 10 using dummy_hcd [ 547.221258][ T6093] usb 9-1: too many configurations: 178, using maximum allowed: 8 [ 547.226244][ T6093] usb 9-1: config index 0 descriptor too short (expected 65137, got 72) [ 547.231156][ T6093] usb 9-1: config index 1 descriptor too short (expected 65137, got 72) [ 547.236191][ T6093] usb 9-1: config index 2 descriptor too short (expected 65137, got 72) [ 547.241178][ T6093] usb 9-1: config index 3 descriptor too short (expected 65137, got 72) [ 547.246016][ T6093] usb 9-1: config index 4 descriptor too short (expected 65137, got 72) [ 547.250936][ T6093] usb 9-1: config index 5 descriptor too short (expected 65137, got 72) [ 547.255228][ T6093] usb 9-1: config index 6 descriptor too short (expected 65137, got 72) [ 547.258791][ T6093] usb 9-1: config index 7 descriptor too short (expected 65137, got 72) [ 547.263008][ T6093] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 547.266897][ T6093] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 547.273821][ T6093] usb 9-1: Product: syz [ 547.275311][ T6093] usb 9-1: Manufacturer: syz [ 547.276925][ T6093] usb 9-1: SerialNumber: syz [ 547.283645][ T6093] usb 9-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 547.298121][ T8735] usb 9-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 547.546738][ T10] usb 9-1: USB disconnect, device number 10 [ 548.323979][ T8735] ath9k_htc 9-1:1.0: ath9k_htc: Target is unresponsive [ 548.331730][ T8735] ath9k_htc: Failed to initialize the device [ 548.335250][ T10] usb 9-1: ath9k_htc: USB layer deinitialized [ 548.632957][T13894] kernel write not supported for file /sequencer (pid: 13894 comm: kworker/1:7) [ 548.774807][T21327] ipvlan2: entered promiscuous mode [ 548.776653][T21327] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 549.162139][ T6054] Bluetooth: hci0: command 0x0405 tx timeout [ 549.213950][T21383] kvm: kvm [21381]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x4000006f) = 0x6 [ 549.944736][T21406] netlink: 'syz.6.22443': attribute type 4 has an invalid length. [ 550.478347][T21450] netlink: 'syz.6.22465': attribute type 6 has an invalid length. [ 551.085795][T21480] netlink: 20 bytes leftover after parsing attributes in process `syz.3.22476'. [ 551.144843][ T6054] Bluetooth: hci0: command 0x0405 tx timeout [ 551.222246][ T10] kernel read not supported for file /dsp (pid: 10 comm: kworker/0:1) [ 553.364151][T11043] kernel read not supported for file /dsp1 (pid: 11043 comm: kworker/0:0) [ 553.414196][T21624] netlink: 8 bytes leftover after parsing attributes in process `syz.3.22529'. [ 553.733784][T21650] overlayfs: failed to clone lowerpath [ 553.847172][T21666] could not open pipe file descriptor [ 554.010594][T17352] usb 9-1: new high-speed USB device number 11 using dummy_hcd [ 554.175299][T17352] usb 9-1: config index 0 descriptor too short (expected 23569, got 27) [ 554.178125][T17352] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 554.182456][T17352] usb 9-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 554.185703][T17352] usb 9-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 554.188533][T17352] usb 9-1: Manufacturer: syz [ 554.191716][T17352] usb 9-1: config 0 descriptor?? [ 554.249635][T17352] rc_core: IR keymap rc-hauppauge not found [ 554.251913][T17352] Registered IR keymap rc-empty [ 554.254838][T17352] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/rc/rc0 [ 554.259941][T17352] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/rc/rc0/input65 [ 554.393009][T21716] netlink: 28 bytes leftover after parsing attributes in process `syz.6.22570'. [ 554.393831][T11043] usb 9-1: USB disconnect, device number 11 [ 555.256658][T21749] netlink: 4 bytes leftover after parsing attributes in process `syz.3.22585'. [ 555.397093][T21761] input: syz1 as /devices/virtual/input/input66 [ 555.796307][T21787] netlink: 'syz.3.22603': attribute type 2 has an invalid length. [ 556.016791][T21816] IPVS: rr: SCTP 172.20.20.187:0 - no destination available [ 556.348220][T21845] misc userio: Begin command sent, but we're already running [ 556.522194][T21851] loop6: detected capacity change from 0 to 524287999 [ 556.526724][T19846] buffer_io_error: 23 callbacks suppressed [ 556.526735][T19846] Buffer I/O error on dev loop6, logical block 0, async page read [ 556.532435][T19846] Buffer I/O error on dev loop6, logical block 0, async page read [ 556.535783][T19846] Buffer I/O error on dev loop6, logical block 0, async page read [ 556.538316][T19846] Buffer I/O error on dev loop6, logical block 0, async page read [ 556.540737][T19846] Buffer I/O error on dev loop6, logical block 0, async page read [ 556.543387][T19846] Buffer I/O error on dev loop6, logical block 0, async page read [ 556.546188][T19846] Buffer I/O error on dev loop6, logical block 0, async page read [ 556.548830][T19846] Buffer I/O error on dev loop6, logical block 0, async page read [ 556.552562][T19846] ldm_validate_partition_table(): Disk read failed. [ 556.557237][T19846] Buffer I/O error on dev loop6, logical block 0, async page read [ 556.560143][T19846] Buffer I/O error on dev loop6, logical block 0, async page read [ 556.563053][T19846] Dev loop6: unable to read RDB block 0 [ 556.565681][T19846] loop6: unable to read partition table [ 556.568545][T21851] ldm_validate_partition_table(): Disk read failed. [ 556.571020][T21851] Dev loop6: unable to read RDB block 0 [ 556.574594][T21851] loop6: unable to read partition table [ 556.578507][T21851] loop_reread_partitions: partition scan of loop6 (3 xC) failed (rc=-5) [ 556.613836][T17064] ldm_validate_partition_table(): Disk read failed. [ 556.616130][T17064] Dev loop6: unable to read RDB block 0 [ 556.618095][T17064] loop6: unable to read partition table [ 556.621815][T21854] ldm_validate_partition_table(): Disk read failed. [ 556.624629][T21854] Dev loop6: unable to read RDB block 0 [ 556.627461][T21854] loop6: unable to read partition table [ 556.632858][T21854] loop_reread_partitions: partition scan of loop6 (3 xC) failed (rc=-5) [ 556.641571][T21860] openvswitch: netlink: Unknown nsh attribute 0 [ 556.644611][T21860] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 556.705048][T21868] netlink: 4 bytes leftover after parsing attributes in process `syz.3.22635'. [ 556.782741][T21874] mkiss: ax0: crc mode is auto. [ 556.893053][T21879] No such timeout policy "syz0" [ 556.942935][T21883] netlink: 4 bytes leftover after parsing attributes in process `syz.4.22640'. [ 556.974957][T21887] netlink: 'syz.4.22643': attribute type 8 has an invalid length. [ 557.786174][T21939] loop7: detected capacity change from 0 to 7 [ 557.792632][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 557.796305][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 557.799445][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 557.802508][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 557.806266][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 557.809927][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 557.812803][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 557.815347][T19846] ldm_validate_partition_table(): Disk read failed. [ 557.817305][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 557.820354][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 557.825352][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 557.828898][T19846] Dev loop7: unable to read RDB block 0 [ 557.831596][T19846] loop7: unable to read partition table [ 557.833635][T19846] loop7: partition table beyond EOD, truncated [ 557.844433][T21939] ldm_validate_partition_table(): Disk read failed. [ 557.846942][T21939] Dev loop7: unable to read RDB block 0 [ 557.848852][T21939] loop7: unable to read partition table [ 557.852046][T21939] loop7: partition table beyond EOD, truncated [ 557.854054][T21939] loop_reread_partitions: partition scan of loop7 () failed (rc=-5) [ 557.864001][ T5349] ldm_validate_partition_table(): Disk read failed. [ 557.868401][ T5349] Dev loop7: unable to read RDB block 0 [ 557.872472][ T5349] loop7: unable to read partition table [ 557.875358][ T5349] loop7: partition table beyond EOD, truncated [ 558.586814][T21951] can0: slcan on ttyS3. [ 558.688446][T21952] can0 (unregistered): slcan off ttyS3. [ 558.785740][T21964] overlayfs: upper fs does not support file handles, falling back to index=off. [ 558.788811][T21964] overlayfs: fs on '.' does not support file handles, falling back to xino=off. [ 559.252444][T21996] gfs2: gfs2 mount does not exist [ 559.486382][T22010] netlink: 4 bytes leftover after parsing attributes in process `syz.4.22696'. [ 559.697885][T22026] kvm: kvm [22025]: vcpu128, guest rIP: 0xfff0 Unhandled RDMSR(0x40000076) [ 559.853012][T22039] loop6: detected capacity change from 0 to 524287999 [ 559.855822][T22039] ldm_validate_partition_table(): Disk read failed. [ 559.858163][T22039] Dev loop6: unable to read RDB block 0 [ 559.860719][T22039] loop6: unable to read partition table [ 559.862743][T22039] loop_reread_partitions: partition scan of loop6 (3 xC) failed (rc=-5) [ 559.899710][T22039] ldm_validate_partition_table(): Disk read failed. [ 559.902060][T22039] Dev loop6: unable to read RDB block 0 [ 559.904172][T22039] loop6: unable to read partition table [ 559.906061][T22039] loop_reread_partitions: partition scan of loop6 (3 xC) failed (rc=-5) [ 559.965809][ T1458] usb 11-1: new high-speed USB device number 6 using dummy_hcd [ 560.086780][ T40] kauditd_printk_skb: 187 callbacks suppressed [ 560.086792][ T40] audit: type=1326 audit(1104.467:34966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22057 comm="syz.3.22725" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 560.096271][ T40] audit: type=1326 audit(1104.467:34967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22057 comm="syz.3.22725" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 560.103420][ T40] audit: type=1326 audit(1104.467:34968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22057 comm="syz.3.22725" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ed598 code=0x7ffc0000 [ 560.111495][ T40] audit: type=1326 audit(1104.467:34969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22057 comm="syz.3.22725" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 560.119134][ T40] audit: type=1326 audit(1104.467:34970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22057 comm="syz.3.22725" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 560.127285][ T40] audit: type=1326 audit(1104.467:34971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22057 comm="syz.3.22725" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 560.134522][ T40] audit: type=1326 audit(1104.467:34972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22057 comm="syz.3.22725" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 560.135874][ T1458] usb 11-1: Using ep0 maxpacket: 32 [ 560.141259][ T40] audit: type=1326 audit(1104.467:34973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22057 comm="syz.3.22725" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ed598 code=0x7ffc0000 [ 560.144196][ T1458] usb 11-1: config index 0 descriptor too short (expected 156, got 27) [ 560.150085][ T40] audit: type=1326 audit(1104.467:34974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22057 comm="syz.3.22725" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 560.153520][ T1458] usb 11-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 560.159568][ T40] audit: type=1326 audit(1104.467:34975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22057 comm="syz.3.22725" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ed598 code=0x7ffc0000 [ 560.163158][ T1458] usb 11-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 560.174180][ T1458] usb 11-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 560.178260][ T1458] usb 11-1: config 0 interface 0 has no altsetting 0 [ 560.181924][ T1458] usb 11-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 560.184922][ T1458] usb 11-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 560.187710][ T1458] usb 11-1: Product: syz [ 560.189130][ T1458] usb 11-1: Manufacturer: syz [ 560.190739][ T1458] usb 11-1: SerialNumber: syz [ 560.194654][ T1458] usb 11-1: config 0 descriptor?? [ 560.197940][ T1458] ldusb 11-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 560.201783][ T1458] ldusb 11-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 560.398422][T11043] usb 11-1: USB disconnect, device number 6 [ 560.403891][T11043] ldusb 11-1:0.0: LD USB Device #0 now disconnected [ 560.442041][T22080] netlink: 'syz.2.22729': attribute type 4 has an invalid length. [ 560.568343][ T5300] Bluetooth: hci1: unexpected event for opcode 0x0419 [ 560.787507][T22102] netlink: 4 bytes leftover after parsing attributes in process `syz.3.22739'. [ 560.894269][T22112] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0 [ 560.919242][T22114] random: crng reseeded on system resumption [ 560.944660][T22119] loop6: detected capacity change from 0 to 63 [ 560.948371][ T5349] ldm_validate_partition_table(): Disk read failed. [ 560.951578][ T5349] Dev loop6: unable to read RDB block 0 [ 560.958688][ T5349] loop6: unable to read partition table [ 560.962138][T22119] ldm_validate_partition_table(): Disk read failed. [ 560.966062][T22119] Dev loop6: unable to read RDB block 0 [ 560.968227][T22119] loop6: unable to read partition table [ 560.970150][T22119] loop_reread_partitions: partition scan of loop6 (3 ) failed (rc=-5) [ 560.977315][ T5349] ldm_validate_partition_table(): Disk read failed. [ 560.981134][ T5349] Dev loop6: unable to read RDB block 0 [ 560.984572][ T5349] loop6: unable to read partition table [ 561.100527][ T8735] usb 8-1: new high-speed USB device number 17 using dummy_hcd [ 561.250464][ T8735] usb 8-1: Using ep0 maxpacket: 16 [ 561.254201][ T8735] usb 8-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 561.258825][ T8735] usb 8-1: config 0 interface 0 has no altsetting 0 [ 561.262892][ T8735] usb 8-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00 [ 561.265892][ T8735] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 561.270624][ T8735] usb 8-1: config 0 descriptor?? [ 561.385079][T22154] openvswitch: netlink: nsh attr 255 is out of range max 3 [ 561.388127][T22154] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 561.661131][ T8735] usbhid 8-1:0.0: can't add hid device: -71 [ 561.663535][ T8735] usbhid 8-1:0.0: probe with driver usbhid failed with error -71 [ 561.669959][ T8735] usb 8-1: USB disconnect, device number 17 [ 562.395598][T22241] vxcan0: tx address claim with dlc 0 [ 562.938408][T22276] binder: 22275:22276 ioctl c0306201 80000b80 returned -14 [ 563.890145][T22340] batadv_slave_1: entered promiscuous mode [ 563.892271][T22343] batadv_slave_1: left promiscuous mode [ 563.931560][ T1458] kernel read not supported for file /dsp1 (pid: 1458 comm: kworker/1:2) [ 564.079515][ T60] usb 9-1: new high-speed USB device number 12 using dummy_hcd [ 564.222330][ T60] usb 9-1: Using ep0 maxpacket: 32 [ 564.225321][ T60] usb 9-1: config 0 has no interfaces? [ 564.227254][ T60] usb 9-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7 [ 564.230317][ T60] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 564.234872][ T60] usb 9-1: config 0 descriptor?? [ 564.405031][ T5300] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 564.408168][ T5300] Bluetooth: hci1: Injecting HCI hardware error event [ 564.437224][ T5300] Bluetooth: hci1: unexpected event for opcode 0x0c46 [ 564.438025][ T60] usb 9-1: USB disconnect, device number 12 [ 564.889249][ T1458] usb 8-1: new high-speed USB device number 18 using dummy_hcd [ 565.032043][T11043] usb 11-1: new high-speed USB device number 7 using dummy_hcd [ 565.053232][ T1458] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 565.057597][ T1458] usb 8-1: config 0 interface 0 has no altsetting 0 [ 565.063577][ T1458] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 565.066581][ T1458] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 565.070122][ T1458] usb 8-1: Product: syz [ 565.072011][ T1458] usb 8-1: Manufacturer: syz [ 565.073983][ T1458] usb 8-1: SerialNumber: syz [ 565.079921][ T1458] usb 8-1: config 0 descriptor?? [ 565.088168][ T1458] usb 8-1: selecting invalid altsetting 0 [ 565.185246][T11043] usb 11-1: Using ep0 maxpacket: 8 [ 565.189733][T11043] usb 11-1: New USB device found, idVendor=12d1, idProduct=fae2, bcdDevice=70.8b [ 565.192642][T11043] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 565.195477][T11043] usb 11-1: Product: syz [ 565.196917][T11043] usb 11-1: Manufacturer: syz [ 565.198562][T11043] usb 11-1: SerialNumber: syz [ 565.201396][T11043] usb 11-1: config 0 descriptor?? [ 565.206489][T11043] option 11-1:0.0: GSM modem (1-port) converter detected [ 565.281581][ T6113] usb 8-1: USB disconnect, device number 18 [ 565.369206][ T40] kauditd_printk_skb: 54 callbacks suppressed [ 565.369220][ T40] audit: type=1326 audit(1110.010:35030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22428 comm="syz.2.22880" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 565.379052][ T40] audit: type=1326 audit(1110.010:35031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22428 comm="syz.2.22880" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 565.386261][ T40] audit: type=1326 audit(1110.010:35032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22428 comm="syz.2.22880" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 565.393020][ T40] audit: type=1326 audit(1110.010:35033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22428 comm="syz.2.22880" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 565.400480][ T40] audit: type=1326 audit(1110.010:35034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22428 comm="syz.2.22880" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 565.405004][T11043] usb 11-1: USB disconnect, device number 7 [ 565.411224][T11043] option 11-1:0.0: device disconnected [ 565.484903][T22439] bridge: RTM_NEWNEIGH with unconfigured vlan 1 on bridge0 [ 565.518398][T22443] input: syz1 as /devices/virtual/input/input68 [ 566.243329][T22493] vivid-006: disconnect [ 566.329963][T22500] netlink: 20 bytes leftover after parsing attributes in process `syz.4.22910'. [ 566.446728][ T6113] hid_parser_main: 19 callbacks suppressed [ 566.446748][ T6113] hid-generic 0007:FFFFFFF8:0FFF.0009: unknown main item tag 0x0 [ 566.452283][ T6113] hid-generic 0007:FFFFFFF8:0FFF.0009: unknown main item tag 0x0 [ 566.454863][ T6113] hid-generic 0007:FFFFFFF8:0FFF.0009: unknown main item tag 0x0 [ 566.457442][ T6113] hid-generic 0007:FFFFFFF8:0FFF.0009: unknown main item tag 0x0 [ 566.460093][ T6113] hid-generic 0007:FFFFFFF8:0FFF.0009: unknown main item tag 0x0 [ 566.463304][ T6113] hid-generic 0007:FFFFFFF8:0FFF.0009: unknown main item tag 0x0 [ 566.465693][ T6113] hid-generic 0007:FFFFFFF8:0FFF.0009: unknown main item tag 0x0 [ 566.468128][ T6113] hid-generic 0007:FFFFFFF8:0FFF.0009: unknown main item tag 0x0 [ 566.470593][ T6113] hid-generic 0007:FFFFFFF8:0FFF.0009: unknown main item tag 0x0 [ 566.473086][ T6113] hid-generic 0007:FFFFFFF8:0FFF.0009: unknown main item tag 0x0 [ 566.478469][ T6113] hid-generic 0007:FFFFFFF8:0FFF.0009: hidraw0: HID v0.07 Device [syz1] on syz0 [ 566.689061][ T8735] usb 9-1: new high-speed USB device number 13 using dummy_hcd [ 566.847725][ T8735] usb 9-1: unable to get BOS descriptor or descriptor too short [ 566.851783][ T8735] usb 9-1: unable to read config index 0 descriptor/start: -71 [ 566.854628][ T8735] usb 9-1: can't read configurations, error -71 [ 566.975133][T22492] vivid-006: reconnect [ 567.260000][ T40] audit: type=1800 audit(1111.994:35035): pid=22541 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.22927" name="file1" dev="tmpfs" ino=28770 res=0 errno=0 [ 567.369304][T22551] netlink: 'syz.3.22932': attribute type 9 has an invalid length. [ 567.372425][T22551] netlink: 8 bytes leftover after parsing attributes in process `syz.3.22932'. [ 568.137375][T17352] usb 9-1: new high-speed USB device number 15 using dummy_hcd [ 568.298204][T17352] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 568.302784][T17352] usb 9-1: config 0 interface 0 has no altsetting 0 [ 568.308023][T17352] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 568.312418][T17352] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 568.316037][T17352] usb 9-1: Product: syz [ 568.318151][T17352] usb 9-1: Manufacturer: syz [ 568.319841][T17352] usb 9-1: SerialNumber: syz [ 568.322763][T17352] usb 9-1: config 0 descriptor?? [ 568.326835][T17352] usb 9-1: selecting invalid altsetting 0 [ 568.542292][T17352] usb 9-1: USB disconnect, device number 15 [ 569.208874][T22667] ALSA: mixer_oss: invalid OSS volume '' [ 569.243579][T22674] netlink: 8 bytes leftover after parsing attributes in process `syz.3.22990'. [ 569.274639][T22682] bad cache= option: none: no [ 569.274639][T22682] type : aead [ 569.274639][T22682] async : no [ 569.274639][T22682] blocksize : 16 [ 569.274639][T22682] ivsize : 16 [ 569.274639][T22682] maxauthsize : 20 [ 569.274639][T22682] geniv : [ 569.274639][T22682] [ 569.274639][T22682] name : rfc3686(ctr(aes)) [ 569.274639][T22682] driver : rfc3686(ctr-aes-aesni) [ 569.274639][T22682] module : kernel [ 569.274639][T22682] priority : 400 [ 569.274639][T22682] refcnt : 1 [ 569.274639][T22682] selftest : passed [ 569.274639][T22682] internal : no [ 569.274639][T22682] type : skcipher [ 569.274639][T22682] async : no [ 569.274639][T22682] blocksize : 1 [ 569.274639][T22682] min keysize : 20 [ 569.274639][T22682] max keysize : 36 [ 569.274639][T22682] ivsize : 8 [ 569.274639][T22682] chunksize : 16 [ 569.274639][T22682] walksize : 16 [ 569.274639][T22682] statesize : 0 [ 569.274639][T22682] [ 569.274639][T22682] name : xts(aes) [ 569.274639][T22682] driver : xts(ecb-aes-aesni) [ 569.274639][T22682] module : kernel [ 569.274639][T22682] priority : 400 [ 569.274639][T22682] refcnt : 1 [ 569.274639][T22682] selftest : passed [ 569.274639][T22682] internal : no [ 569.274639][T22682] type : skcipher [ 569.274639][T22682] async : no [ 569.274639][T22682] blocksize : 16 [ 569.274639][T22682] min keysize : 32 [ 569.274639][T22682] max keysize : 64 [ 569.274639][T22682] ivsize : 16 [ 569.274639][T22682] chunksize : 16 [ 569.274639][T22682] walksize : 16 [ 569.274639][T22682] statesize : 0 [ 569.274639][T22682] [ 569.274639][T22682] name : xts(serpent) [ 569.274639][T22682] driver : xts(ecb-serpent-avx2) [ 569.274639][T22682] module : kernel [ 569.274639][T22682] priority : 600 [ 569.274639][T22682] refcnt : 1 [ 569.274872][T22682] CIFS: VFS: bad cache= option: none: no [ 569.274872][T22682] type : aead [ 569.274872][T22682] async : no [ 569.274872][T22682] blocksize : 16 [ 569.274872][T22682] ivsize : 16 [ 569.274872][T22682] maxauthsize : 20 [ 569.274872][T22682] geniv : [ 569.274872][T22682] [ 569.274872][T22682] name : rfc3686(ctr(aes)) [ 569.274872][T22682] driver : rfc3686(ctr-aes-aesni) [ 569.274872][T22682] module : kernel [ 569.274872][T22682] priority : 400 [ 569.274872][T22682] refcnt : 1 [ 569.274872][T22682] selftest : passed [ 569.274872][T22682] internal : no [ 569.274872][T22682] type : skcipher [ 569.274872][T22682] async : no [ 569.274872][T22682] blocksize : 1 [ 569.274872][T22682] min keysize : 20 [ 569.274872][T22682] max keysize : 36 [ 569.274872][T22682] ivsize : 8 [ 569.274872][T22682] chunksize : 16 [ 569.274872][T22682] walksize : 16 [ 569.274872][T22682] statesize : 0 [ 569.274872][T22682] [ 569.274872][T22682] name : xts(aes) [ 569.274872][T22682] driver : xts(ecb-aes-aesni) [ 569.274872][T22682] module : kernel [ 569.274872][T22682] priority : 400 [ 569.274872][T22682] refcnt : 1 [ 569.274872][T22682] selftest : passed [ 569.274872][T22682] internal : no [ 569.274872][T22682] type : skcipher [ 569.274872][T22682] async : no [ 569.274872][T22682] blocksize : 16 [ 569.274872][T22682] min keysize : 32 [ 569.274872][T22682] max keysize : 64 [ 569.274872][T22682] ivsize : 16 [ 569.274872][T22682] chunksize : 16 [ 569.274872][T22682] walksize : 16 [ 569.274872][T22682] statesize : 0 [ 569.274872][T22682] [ 569.274872][T22682] name : xts(serpent) [ 569.274872][T22682] driver : xts(ecb-serpent-avx2) [ 569.274872][T22682] module : kernel [ 569.274872][T22682] priority : 600 [ 569.274872][T22682] refcnt : 1 [ 569.370250][T22691] sch_tbf: burst 0 is lower than device lo mtu (18) ! [ 569.429910][ C0] vkms_vblank_simulate: vblank timer overrun [ 569.444618][T22696] block nbd4: not configured, cannot reconfigure [ 569.515752][T22709] netlink: 1 bytes leftover after parsing attributes in process `syz.4.23005'. [ 569.820604][T22743] netlink: 4 bytes leftover after parsing attributes in process `syz.3.23020'. [ 569.844538][ T40] audit: type=1326 audit(1114.713:35036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22744 comm="syz.6.23021" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf702d579 code=0x7ffc0000 [ 569.852543][ T40] audit: type=1326 audit(1114.713:35037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22744 comm="syz.6.23021" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf702d5a7 code=0x7ffc0000 [ 569.859021][ T40] audit: type=1326 audit(1114.713:35038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22744 comm="syz.6.23021" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf702d579 code=0x7ffc0000 [ 569.866551][ T40] audit: type=1326 audit(1114.713:35039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22744 comm="syz.6.23021" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf702d5a7 code=0x7ffc0000 [ 569.926889][T22753] debugfs: 'ttyS3' already exists in 'caif_serial' [ 570.210036][ T40] kauditd_printk_skb: 26 callbacks suppressed [ 570.210055][ T40] audit: type=1326 audit(1115.091:35066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22775 comm="syz.4.23033" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707d598 code=0x7ffc0000 [ 570.222581][ T40] audit: type=1326 audit(1115.091:35067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22775 comm="syz.4.23033" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707d598 code=0x7ffc0000 [ 570.232595][ T40] audit: type=1326 audit(1115.091:35068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22775 comm="syz.4.23033" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 570.241400][ T40] audit: type=1326 audit(1115.091:35069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22775 comm="syz.4.23033" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707d598 code=0x7ffc0000 [ 570.257987][ T40] audit: type=1326 audit(1115.091:35070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22775 comm="syz.4.23033" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 570.266046][ T40] audit: type=1326 audit(1115.091:35071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22775 comm="syz.4.23033" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 570.274586][ T40] audit: type=1326 audit(1115.091:35072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22775 comm="syz.4.23033" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707d598 code=0x7ffc0000 [ 570.283295][ T40] audit: type=1326 audit(1115.091:35073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22775 comm="syz.4.23033" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 570.290523][ T40] audit: type=1326 audit(1115.091:35074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22775 comm="syz.4.23033" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707d598 code=0x7ffc0000 [ 570.297596][ T40] audit: type=1326 audit(1115.091:35075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22775 comm="syz.4.23033" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 571.019703][T22784] netlink: 'syz.4.23034': attribute type 14 has an invalid length. [ 571.576114][T11043] usb 8-1: new high-speed USB device number 19 using dummy_hcd [ 571.737457][T11043] usb 8-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00 [ 571.741468][T11043] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 571.744739][T11043] usb 8-1: Product: syz [ 571.746644][T11043] usb 8-1: Manufacturer: syz [ 571.752106][T11043] usb 8-1: SerialNumber: syz [ 571.988693][T11043] rtl8150 8-1:1.0: couldn't reset the device [ 571.990935][T11043] rtl8150 8-1:1.0: probe with driver rtl8150 failed with error -5 [ 572.001756][T11043] usb 8-1: USB disconnect, device number 19 [ 572.499819][T22882] sctp: [Deprecated]: syz.3.23077 (pid 22882) Use of int in maxseg socket option. [ 572.499819][T22882] Use struct sctp_assoc_value instead [ 572.950922][T22914] netlink: 1084 bytes leftover after parsing attributes in process `syz.3.23094'. [ 573.088329][T22930] netlink: 4 bytes leftover after parsing attributes in process `syz.3.23099'. [ 573.092906][T22930] netlink: 4 bytes leftover after parsing attributes in process `syz.3.23099'. [ 573.469647][T22961] Attempt to restore checkpoint with obsolete wellknown handles [ 573.642176][T22986] netlink: 'syz.6.23126': attribute type 1 has an invalid length. [ 573.649378][T22986] netlink: 24 bytes leftover after parsing attributes in process `syz.6.23126'. [ 573.805939][T23007] netlink: 92 bytes leftover after parsing attributes in process `syz.4.23136'. [ 575.107090][T23084] mkiss: ax0: crc mode is auto. [ 575.969349][ T8763] block nbd2: Receive control failed (result -32) [ 576.113787][ T40] kauditd_printk_skb: 125 callbacks suppressed [ 576.113799][ T40] audit: type=1326 audit(1121.295:35201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23115 comm="syz.2.23187" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 576.123880][ T40] audit: type=1326 audit(1121.295:35202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23115 comm="syz.2.23187" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 576.130777][ T40] audit: type=1326 audit(1121.295:35203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23115 comm="syz.2.23187" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 576.137987][ T40] audit: type=1326 audit(1121.295:35204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23115 comm="syz.2.23187" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x0 [ 576.972013][T23136] Failed to get privilege flags for destination (handle=0x2:0xd) [ 577.219134][T23158] vimc link validate: Scaler:src:16x16 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 577.376927][T23173] netlink: 4 bytes leftover after parsing attributes in process `syz.6.23212'. [ 577.815544][ T5300] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 578.200527][T23230] tun0: tun_chr_ioctl cmd 1074025676 [ 578.202373][T23230] tun0: owner set to 0 [ 578.317873][T23239] input: syz0 as /devices/virtual/input/input69 [ 578.645194][T23264] erspan0: entered promiscuous mode [ 578.949585][ T8735] usb 8-1: new high-speed USB device number 20 using dummy_hcd [ 579.101158][ T8735] usb 8-1: Using ep0 maxpacket: 32 [ 579.105882][ T8735] usb 8-1: config index 0 descriptor too short (expected 156, got 27) [ 579.109982][ T8735] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 579.115608][ T8735] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 579.121078][ T8735] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 579.126427][ T8735] usb 8-1: config 0 interface 0 has no altsetting 0 [ 579.131038][ T8735] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 579.133735][ T8735] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 579.136531][ T8735] usb 8-1: Product: syz [ 579.138137][ T8735] usb 8-1: Manufacturer: syz [ 579.139990][ T8735] usb 8-1: SerialNumber: syz [ 579.142990][ T8735] usb 8-1: config 0 descriptor?? [ 579.146066][ T8735] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 579.149958][ T8735] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 579.234913][ T1458] usb 9-1: new high-speed USB device number 16 using dummy_hcd [ 579.344773][ T8735] usb 8-1: USB disconnect, device number 20 [ 579.348039][ T8735] ldusb 8-1:0.0: LD USB Device #0 now disconnected [ 579.378043][ T1458] usb 9-1: too many configurations: 9, using maximum allowed: 8 [ 579.381419][ T1458] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 579.384666][ T1458] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 579.388227][ T1458] usb 9-1: config 0 interface 0 has no altsetting 0 [ 579.391060][ T1458] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 579.393960][ T1458] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 579.397873][ T1458] usb 9-1: config 0 interface 0 has no altsetting 0 [ 579.401044][ T1458] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 579.403733][ T1458] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 579.407037][ T1458] usb 9-1: config 0 interface 0 has no altsetting 0 [ 579.410137][ T1458] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 579.413503][ T1458] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 579.417171][ T1458] usb 9-1: config 0 interface 0 has no altsetting 0 [ 579.420037][ T1458] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 579.422845][ T1458] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 579.426204][ T1458] usb 9-1: config 0 interface 0 has no altsetting 0 [ 579.429041][ T1458] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 579.432242][ T1458] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 579.435972][ T1458] usb 9-1: config 0 interface 0 has no altsetting 0 [ 579.438798][ T1458] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 579.441454][ T1458] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 579.444853][ T1458] usb 9-1: config 0 interface 0 has no altsetting 0 [ 579.447972][ T1458] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 579.451155][ T1458] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 579.454539][ T1458] usb 9-1: config 0 interface 0 has no altsetting 0 [ 579.458278][ T1458] usb 9-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 579.461118][ T1458] usb 9-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 579.463985][ T1458] usb 9-1: Product: syz [ 579.465532][ T1458] usb 9-1: Manufacturer: syz [ 579.467271][ T1458] usb 9-1: SerialNumber: syz [ 579.470714][ T1458] usb 9-1: config 0 descriptor?? [ 579.475371][ T1458] yurex 9-1:0.0: USB YUREX device now attached to Yurex #0 [ 579.675628][T11043] usb 9-1: USB disconnect, device number 16 [ 579.678546][T11043] yurex 9-1:0.0: USB YUREX #0 now disconnected [ 580.205546][T23305] batman_adv: batadv0: Adding interface: macvtap1 [ 580.207815][T23305] batman_adv: batadv0: The MTU of interface macvtap1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 580.215616][T23305] batman_adv: batadv0: Not using interface macvtap1 (retrying later): interface not active [ 580.301414][T23315] ptrace attach of ""[23316] was attempted by "/syz-executor exec"[23315] [ 580.495266][ T40] audit: type=1326 audit(1125.893:35205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23328 comm="syz.6.23280" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 580.502868][ T40] audit: type=1326 audit(1125.893:35206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23328 comm="syz.6.23280" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 580.510345][ T40] audit: type=1326 audit(1125.893:35207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23328 comm="syz.6.23280" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 580.518110][ T40] audit: type=1326 audit(1125.893:35208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23328 comm="syz.6.23280" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 580.526866][ T40] audit: type=1326 audit(1125.893:35209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23328 comm="syz.6.23280" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 580.536248][ T40] audit: type=1326 audit(1125.893:35210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23328 comm="syz.6.23280" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 580.692065][ T60] usb 8-1: new full-speed USB device number 21 using dummy_hcd [ 580.836906][ T60] usb 8-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 580.840349][ T60] usb 8-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0 [ 580.843740][ T60] usb 8-1: config 0 interface 0 has no altsetting 0 [ 580.846847][ T60] usb 8-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00 [ 580.850601][ T60] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 580.855307][ T60] usb 8-1: config 0 descriptor?? [ 580.980506][T23366] netlink: 4 bytes leftover after parsing attributes in process `syz.6.23297'. [ 581.247957][ T60] hid_parser_main: 68 callbacks suppressed [ 581.247971][ T60] hid-steam 0003:28DE:1102.000A: unknown main item tag 0x0 [ 581.252384][ T60] hid-steam 0003:28DE:1102.000A: unknown main item tag 0x0 [ 581.256684][ T60] hid-steam 0003:28DE:1102.000A: : USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.3-1/input0 [ 581.311550][ T60] hid-steam 0003:28DE:1102.000A: Steam Controller 'XXXXXXXXXX' connected [ 581.317080][ T60] input: Steam Controller as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/0003:28DE:1102.000A/input/input70 [ 581.328830][ T60] hid-steam 0003:28DE:1102.000B: unknown main item tag 0x0 [ 581.331431][ T60] hid-steam 0003:28DE:1102.000B: unknown main item tag 0x0 [ 581.337425][ T60] hid-steam 0003:28DE:1102.000B: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.3-1/input0 [ 581.437816][ T60] usb 8-1: USB disconnect, device number 21 [ 581.561781][ T60] hid-steam 0003:28DE:1102.000A: Steam Controller 'XXXXXXXXXX' disconnected [ 581.951194][T23408] netlink: 64 bytes leftover after parsing attributes in process `syz.3.23315'. [ 582.775414][T23457] netlink: 64 bytes leftover after parsing attributes in process `syz.6.23336'. [ 583.344143][T23486] random: crng reseeded on system resumption [ 583.390599][T23488] misc userio: Can't change port type on an already running userio instance [ 584.319591][T23547] vivid-007: disconnect [ 584.321687][T23546] vivid-007: reconnect [ 584.431783][T23557] netlink: 132 bytes leftover after parsing attributes in process `syz.4.23381'. [ 584.449100][T23557] netlink: 'syz.4.23381': attribute type 12 has an invalid length. [ 584.454556][T23557] netlink: 132 bytes leftover after parsing attributes in process `syz.4.23381'. [ 584.463098][T23561] syz.6.23383: attempt to access beyond end of device [ 584.463098][T23561] mtdblock0: rw=2048, sector=3656, nr_sectors = 8 limit=256 [ 585.719234][T23647] netlink: 4 bytes leftover after parsing attributes in process `syz.3.23422'. [ 585.724249][T23647] netlink: 104 bytes leftover after parsing attributes in process `syz.3.23422'. [ 585.727378][T23647] netlink: 104 bytes leftover after parsing attributes in process `syz.3.23422'. [ 586.128864][T23693] netlink: 71 bytes leftover after parsing attributes in process `syz.3.23443'. [ 586.180850][T11043] kernel write not supported for file /uhid (pid: 11043 comm: kworker/0:0) [ 586.829038][T23749] netlink: 36 bytes leftover after parsing attributes in process `syz.3.23468'. [ 587.415972][ T40] kauditd_printk_skb: 256 callbacks suppressed [ 587.415985][ T40] audit: type=1804 audit(1133.158:35467): pid=23799 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm=01 name="/newroot/5775/file0" dev="tmpfs" ino=29102 res=1 errno=0 [ 587.499367][T23808] netlink: 4 bytes leftover after parsing attributes in process `syz.3.23495'. [ 588.836548][T17352] usb 11-1: new full-speed USB device number 8 using dummy_hcd [ 589.010060][T17352] usb 11-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 589.014873][T17352] usb 11-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0 [ 589.018938][T17352] usb 11-1: config 0 interface 0 has no altsetting 0 [ 589.021586][T17352] usb 11-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00 [ 589.026539][T17352] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 589.032835][T17352] usb 11-1: config 0 descriptor?? [ 589.284765][T23943] netlink: 'syz.4.23554': attribute type 3 has an invalid length. [ 589.287566][T23943] netlink: 64 bytes leftover after parsing attributes in process `syz.4.23554'. [ 589.290467][T23943] nbd: couldn't find a device at index 0 [ 589.428017][T17352] hid-steam 0003:28DE:1102.000C: unknown main item tag 0x0 [ 589.430720][T17352] hid-steam 0003:28DE:1102.000C: unknown main item tag 0x0 [ 589.435521][T17352] hid-steam 0003:28DE:1102.000C: : USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.6-1/input0 [ 589.503322][T17352] hid-steam 0003:28DE:1102.000C: Steam Controller 'XXXXXXXXXX' connected [ 589.509161][T17352] input: Steam Controller as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/0003:28DE:1102.000C/input/input72 [ 589.517128][T17352] hid-steam 0003:28DE:1102.000D: unknown main item tag 0x0 [ 589.520035][T17352] hid-steam 0003:28DE:1102.000D: unknown main item tag 0x0 [ 589.525019][T17352] hid-steam 0003:28DE:1102.000D: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.6-1/input0 [ 589.623505][ T6113] usb 11-1: USB disconnect, device number 8 [ 589.762823][ T6113] hid-steam 0003:28DE:1102.000C: Steam Controller 'XXXXXXXXXX' disconnected [ 590.196092][T24020] macsec2: entered allmulticast mode [ 590.197941][T24020] dummy0: entered allmulticast mode [ 590.228033][T24020] dummy0: left allmulticast mode [ 590.522284][T13894] usb 9-1: new full-speed USB device number 17 using dummy_hcd [ 590.685602][T13894] usb 9-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 590.689390][T13894] usb 9-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0 [ 590.693061][T13894] usb 9-1: config 0 interface 0 has no altsetting 0 [ 590.696433][T13894] usb 9-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00 [ 590.699270][T13894] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 590.702820][T13894] usb 9-1: config 0 descriptor?? [ 590.721167][T24054] netlink: 8 bytes leftover after parsing attributes in process `syz.3.23605'. [ 590.724063][T24054] netlink: 12 bytes leftover after parsing attributes in process `syz.3.23605'. [ 590.727089][T24054] netlink: 'syz.3.23605': attribute type 15 has an invalid length. [ 591.098161][T13894] hid-steam 0003:28DE:1102.000E: unknown main item tag 0x0 [ 591.100471][T13894] hid-steam 0003:28DE:1102.000E: unknown main item tag 0x0 [ 591.103010][T13894] hid-steam 0003:28DE:1102.000E: : USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.4-1/input0 [ 591.162031][T13894] hid-steam 0003:28DE:1102.000E: Steam Controller 'XXXXXXXXXX' connected [ 591.168374][T13894] input: Steam Controller as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/0003:28DE:1102.000E/input/input73 [ 591.176292][T13894] hid-steam 0003:28DE:1102.000F: unknown main item tag 0x0 [ 591.178629][T13894] hid-steam 0003:28DE:1102.000F: unknown main item tag 0x0 [ 591.181928][T13894] hid-steam 0003:28DE:1102.000F: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.4-1/input0 [ 591.296066][T17352] usb 9-1: USB disconnect, device number 17 [ 591.409047][T17352] hid-steam 0003:28DE:1102.000E: Steam Controller 'XXXXXXXXXX' disconnected [ 591.818997][T24114] netlink: 8 bytes leftover after parsing attributes in process `syz.6.23633'. [ 591.822143][T24114] netlink: 12 bytes leftover after parsing attributes in process `syz.6.23633'. [ 591.826804][T24114] netlink: 8 bytes leftover after parsing attributes in process `syz.6.23633'. [ 591.829815][T24114] netlink: 12 bytes leftover after parsing attributes in process `syz.6.23633'. [ 592.434819][T24157] overlayfs: workdir and upperdir must reside under the same mount [ 592.561504][ T40] audit: type=1326 audit(1139.567:35468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24163 comm="syz.4.23652" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 592.568726][ T40] audit: type=1326 audit(1139.567:35469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24163 comm="syz.4.23652" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf707d5a7 code=0x7ffc0000 [ 592.576480][ T40] audit: type=1326 audit(1139.567:35470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24163 comm="syz.4.23652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 592.583712][ T40] audit: type=1326 audit(1139.567:35471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24163 comm="syz.4.23652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 592.591907][ T40] audit: type=1326 audit(1139.567:35472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24163 comm="syz.4.23652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 592.599828][ T40] audit: type=1326 audit(1139.567:35473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24163 comm="syz.4.23652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 592.607662][ T40] audit: type=1326 audit(1139.567:35474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24163 comm="syz.4.23652" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 592.615545][ T40] audit: type=1326 audit(1139.567:35475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24163 comm="syz.4.23652" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf707d5a7 code=0x7ffc0000 [ 592.622719][ T40] audit: type=1326 audit(1139.567:35476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24163 comm="syz.4.23652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 592.629635][ T40] audit: type=1326 audit(1139.567:35477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24163 comm="syz.4.23652" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf707d579 code=0x7ffc0000 [ 592.743147][T24179] cgroup: fork rejected by pids controller in /syz4 [ 593.002434][T24205] netlink: 212368 bytes leftover after parsing attributes in process `syz.3.23670'. [ 593.057589][T24207] bridge0: port 2(bridge_slave_1) entered disabled state [ 593.373295][T24231] netlink: 4 bytes leftover after parsing attributes in process `syz.6.23682'. [ 595.215372][T24277] bridge_slave_0: invalid flags given to default FDB implementation [ 595.380104][T24281] kvm: kvm [24280]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010015) = 0x40600 [ 596.304963][ T8735] usb 11-1: new high-speed USB device number 9 using dummy_hcd [ 596.447056][ T8735] usb 11-1: Using ep0 maxpacket: 8 [ 596.456378][ T8735] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 596.460793][ T8735] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 596.465081][ T8735] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 596.469909][ T8735] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 596.475274][ T8735] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 596.479098][ T8735] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 596.528655][T24316] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 596.683759][ T8735] usb 11-1: GET_CAPABILITIES returned 0 [ 596.686273][ T8735] usbtmc 11-1:16.0: can't read capabilities [ 596.875955][T11043] usb 11-1: USB disconnect, device number 9 [ 598.118849][ T40] kauditd_printk_skb: 94 callbacks suppressed [ 598.118860][ T40] audit: type=1326 audit(1145.393:35572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.3.23747" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 598.128845][ T40] audit: type=1326 audit(1145.393:35573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.3.23747" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 598.135590][ T40] audit: type=1326 audit(1145.393:35574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.3.23747" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ed598 code=0x7ffc0000 [ 598.142168][ T40] audit: type=1326 audit(1145.393:35575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.3.23747" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 598.149108][ T40] audit: type=1326 audit(1145.393:35576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.3.23747" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 598.156671][ T40] audit: type=1326 audit(1145.393:35577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.3.23747" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ed598 code=0x7ffc0000 [ 598.164953][ T40] audit: type=1326 audit(1145.393:35578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.3.23747" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 598.171643][ T40] audit: type=1326 audit(1145.393:35579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.3.23747" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 598.178279][ T40] audit: type=1326 audit(1145.393:35580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.3.23747" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ed598 code=0x7ffc0000 [ 598.186934][ T40] audit: type=1326 audit(1145.393:35581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24384 comm="syz.3.23747" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 598.300714][T24391] netlink: 32 bytes leftover after parsing attributes in process `syz.3.23750'. [ 598.438175][ T1458] usb 11-1: new high-speed USB device number 10 using dummy_hcd [ 598.581719][ T1458] usb 11-1: Using ep0 maxpacket: 16 [ 598.584949][ T1458] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 598.590298][ T1458] usb 11-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 598.593813][ T1458] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 598.596788][ T1458] usb 11-1: Product: syz [ 598.598523][ T1458] usb 11-1: Manufacturer: syz [ 598.600557][ T1458] usb 11-1: SerialNumber: syz [ 598.604155][ T1458] usb 11-1: config 0 descriptor?? [ 598.607454][ T1458] hub 11-1:0.0: bad descriptor, ignoring hub [ 598.609680][ T1458] hub 11-1:0.0: probe with driver hub failed with error -5 [ 598.614259][ T1458] input: syz syz as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/input/input75 [ 599.823943][ T6054] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 599.827310][ T6054] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 599.830479][ T6054] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 599.834267][ T6054] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 599.837051][ T6054] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 599.945064][T24415] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0) [ 599.948495][T24416] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0) [ 599.995064][ T13] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 600.034227][T24430] netlink: 27 bytes leftover after parsing attributes in process `syz.2.23767'. [ 600.054541][T24427] netlink: 40 bytes leftover after parsing attributes in process `syz.6.23766'. [ 600.058811][T24427] netlink: 40 bytes leftover after parsing attributes in process `syz.6.23766'. [ 600.061987][T24427] netlink: 40 bytes leftover after parsing attributes in process `syz.6.23766'. [ 600.064980][T24427] netlink: 40 bytes leftover after parsing attributes in process `syz.6.23766'. [ 600.069695][T24427] netlink: 40 bytes leftover after parsing attributes in process `syz.6.23766'. [ 600.072697][T24427] netlink: 40 bytes leftover after parsing attributes in process `syz.6.23766'. [ 600.144058][T24427] netlink: 40 bytes leftover after parsing attributes in process `syz.6.23766'. [ 600.165671][ T13] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 600.313298][ T1458] usb 11-1: USB disconnect, device number 10 [ 600.678328][T24450] loop7: detected capacity change from 0 to 7 [ 600.682891][ C1] blk_print_req_error: 40 callbacks suppressed [ 600.682902][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 600.688448][ C1] buffer_io_error: 187 callbacks suppressed [ 600.688461][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 600.693151][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 600.696226][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 600.699165][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 600.702080][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 600.704833][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 600.707801][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 600.710621][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 600.714549][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 600.719486][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 600.722330][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 600.725009][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 600.728262][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 600.731095][T24450] ldm_validate_partition_table(): Disk read failed. [ 600.734368][T24427] netlink: 40 bytes leftover after parsing attributes in process `syz.6.23766'. [ 600.763086][T24451] loop7: detected capacity change from 7 to 0 [ 600.763240][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 600.769092][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 600.772593][T24450] Dev loop7: unable to read RDB block 0 [ 600.775105][T24450] loop7: unable to read partition table [ 600.777763][T24450] loop7: partition table beyond EOD, truncated [ 600.780558][T24450] loop_reread_partitions: partition scan of loop7 (SJ_+]֋ S'(J^Z (633)eeDϫ?Ƣ4+) failed (rc=-5) [ 600.788064][ T13] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 600.906952][ T13] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 600.987544][T24420] chnl_net:caif_netlink_parms(): no params data found [ 601.259567][T24420] bridge0: port 1(bridge_slave_0) entered blocking state [ 601.261998][T24420] bridge0: port 1(bridge_slave_0) entered disabled state [ 601.264398][T24420] bridge_slave_0: entered allmulticast mode [ 601.267014][T24420] bridge_slave_0: entered promiscuous mode [ 601.270973][T24420] bridge0: port 2(bridge_slave_1) entered blocking state [ 601.274139][T24420] bridge0: port 2(bridge_slave_1) entered disabled state [ 601.277140][T24420] bridge_slave_1: entered allmulticast mode [ 601.280152][T24420] bridge_slave_1: entered promiscuous mode [ 601.423276][T24420] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 601.432097][T24420] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 601.514710][ T60] usb 8-1: new high-speed USB device number 22 using dummy_hcd [ 601.560933][T24420] team0: Port device team_slave_0 added [ 601.564505][T24420] team0: Port device team_slave_1 added [ 601.657653][ T60] usb 8-1: Using ep0 maxpacket: 8 [ 601.665102][ T60] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 601.668515][ T60] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 601.671745][ T60] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 601.675086][ T60] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 601.679137][ T60] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 601.681905][ T60] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 601.820198][ T5300] Bluetooth: hci1: command tx timeout [ 601.882191][ T60] usb 8-1: GET_CAPABILITIES returned 0 [ 601.883989][ T60] usbtmc 8-1:16.0: can't read capabilities [ 602.078086][ T8735] usb 8-1: USB disconnect, device number 22 [ 602.639603][ T13] bridge0 (unregistering): left allmulticast mode [ 603.358064][ T1417] ieee802154 phy1 wpan1: encryption failed: -22 [ 603.801347][ T5300] Bluetooth: hci1: command tx timeout [ 603.888332][ T13] bond0 (unregistering): Released all slaves [ 603.897379][ T13] bond1 (unregistering): Released all slaves [ 603.935563][T24420] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 603.938729][T24420] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 603.949843][T24420] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 603.954812][T24420] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 603.957588][T24420] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 603.965752][T24420] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 604.177437][T24511] __nla_validate_parse: 26 callbacks suppressed [ 604.177448][T24511] netlink: 72 bytes leftover after parsing attributes in process `syz.6.23802'. [ 604.202644][ T13] tipc: Left network mode [ 604.283034][T24420] hsr_slave_0: entered promiscuous mode [ 604.285705][T24420] hsr_slave_1: entered promiscuous mode [ 604.288088][T24420] debugfs: 'hsr0' already exists in 'hsr' [ 604.289904][T24420] Cannot create hsr debugfs directory [ 604.487480][ T13] IPVS: stopping backup sync thread 16719 ... [ 604.762683][ T40] kauditd_printk_skb: 65 callbacks suppressed [ 604.762701][ T40] audit: type=1326 audit(1152.364:35647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24503 comm="syz.2.23799" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7fc00000 [ 605.061369][T24556] loop6: detected capacity change from 0 to 524287999 [ 605.469571][T24583] netlink: 4 bytes leftover after parsing attributes in process `syz.3.23836'. [ 605.557815][ T40] audit: type=1326 audit(1153.204:35648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24590 comm="syz.3.23840" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 605.564955][ T40] audit: type=1326 audit(1153.204:35649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24590 comm="syz.3.23840" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 605.572354][ T40] audit: type=1326 audit(1153.204:35650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24590 comm="syz.3.23840" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ed598 code=0x7ffc0000 [ 605.594745][ T40] audit: type=1326 audit(1153.204:35651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24590 comm="syz.3.23840" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ed598 code=0x7ffc0000 [ 605.602142][ T40] audit: type=1326 audit(1153.204:35652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24590 comm="syz.3.23840" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 605.609139][ T40] audit: type=1326 audit(1153.204:35653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24590 comm="syz.3.23840" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 605.615831][ T40] audit: type=1326 audit(1153.204:35654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24590 comm="syz.3.23840" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ed598 code=0x7ffc0000 [ 605.622625][ T40] audit: type=1326 audit(1153.204:35655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24590 comm="syz.3.23840" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 605.629559][ T40] audit: type=1326 audit(1153.204:35656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24590 comm="syz.3.23840" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ed598 code=0x7ffc0000 [ 605.782751][ T5300] Bluetooth: hci1: command tx timeout [ 605.801347][ T13] hsr_slave_0: left promiscuous mode [ 605.830605][ T13] hsr_slave_1: left promiscuous mode [ 605.833860][ T13] batman_adv: batadv0: Removing interface: vlan2 [ 605.926357][ T13] veth1_macvtap: left promiscuous mode [ 605.928183][ T13] veth0_macvtap: left promiscuous mode [ 605.929992][ T13] veth1_vlan: left promiscuous mode [ 605.931586][ T13] veth0_vlan: left promiscuous mode [ 607.763942][ T5300] Bluetooth: hci1: command tx timeout [ 617.950242][T24644] netlink: 12 bytes leftover after parsing attributes in process `syz.2.23863'. [ 617.994043][T24420] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 618.053639][T24420] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 618.099902][T24420] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 618.145894][T24420] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 618.225318][T24420] 8021q: adding VLAN 0 to HW filter on device bond0 [ 618.227290][T24662] netlink: 212368 bytes leftover after parsing attributes in process `syz.3.23869'. [ 618.235853][T24420] 8021q: adding VLAN 0 to HW filter on device team0 [ 618.241619][ T1181] bridge0: port 1(bridge_slave_0) entered blocking state [ 618.244398][ T1181] bridge0: port 1(bridge_slave_0) entered forwarding state [ 618.251871][ T1181] bridge0: port 2(bridge_slave_1) entered blocking state [ 618.254162][ T1181] bridge0: port 2(bridge_slave_1) entered forwarding state [ 618.371806][T24420] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 618.482928][T24683] netlink: 55 bytes leftover after parsing attributes in process `syz.3.23874'. [ 618.494531][T24420] veth0_vlan: entered promiscuous mode [ 618.499566][T24420] veth1_vlan: entered promiscuous mode [ 618.521059][T24420] veth0_macvtap: entered promiscuous mode [ 618.526393][T24420] veth1_macvtap: entered promiscuous mode [ 618.535361][T24420] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 618.545329][T24420] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 618.551136][ T62] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 618.553872][ T62] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 618.557348][ T62] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 618.560043][ T62] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 618.563142][T24691] netlink: 8 bytes leftover after parsing attributes in process `syz.3.23878'. [ 618.576882][T24691] netlink: 8 bytes leftover after parsing attributes in process `syz.3.23878'. [ 618.656989][ T13] IPVS: stop unused estimator thread 0... [ 618.714790][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 618.717275][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 618.731989][ T1181] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 618.735217][ T1181] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 619.154056][T24725] sp0: Synchronizing with TNC [ 619.160265][T24724] [U] `` [ 619.403539][T24748] netlink: 168 bytes leftover after parsing attributes in process `syz.6.23904'. [ 619.515873][ T40] kauditd_printk_skb: 80 callbacks suppressed [ 619.515885][ T40] audit: type=1326 audit(1167.848:35737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24756 comm="syz.2.23900" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 619.524737][ T40] audit: type=1326 audit(1167.848:35738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24756 comm="syz.2.23900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 619.531811][ T40] audit: type=1326 audit(1167.848:35739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24756 comm="syz.2.23900" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 619.540792][ T40] audit: type=1326 audit(1167.848:35740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24756 comm="syz.2.23900" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 619.548419][ T40] audit: type=1326 audit(1167.848:35741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24756 comm="syz.2.23900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 619.555242][ T40] audit: type=1326 audit(1167.848:35742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24756 comm="syz.2.23900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 619.558257][T24759] bond8: option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 619.562164][ T40] audit: type=1326 audit(1167.848:35743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24756 comm="syz.2.23900" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 619.572786][ T40] audit: type=1326 audit(1167.848:35744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24756 comm="syz.2.23900" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 619.580403][ T40] audit: type=1326 audit(1167.848:35745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24756 comm="syz.2.23900" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 619.587435][ T40] audit: type=1326 audit(1167.848:35746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24756 comm="syz.2.23900" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 619.588208][T24759] bond8 (unregistering): Released all slaves [ 619.709689][T24773] netlink: 184 bytes leftover after parsing attributes in process `syz.2.23914'. [ 619.739950][T24777] input: syz1 as /devices/virtual/input/input76 [ 619.834630][T24789] comedi comedi0: dt2815: I/O port conflict (0x4f27,2) [ 619.979952][T24810] netlink: 'syz.2.23932': attribute type 9 has an invalid length. [ 620.402554][T24838] kernel read not supported for file /eth0 (pid: 24838 comm: syz.4.23943) [ 620.745687][T24883] dlm: no local IP address has been set [ 620.747551][T24883] dlm: cannot start dlm midcomms -107 [ 620.908193][T24905] netlink: 32 bytes leftover after parsing attributes in process `syz.6.23976'. [ 620.911747][T24905] netlink: 16 bytes leftover after parsing attributes in process `syz.6.23976'. [ 621.255519][T24949] netlink: 'syz.2.23998': attribute type 2 has an invalid length. [ 621.395116][ T1458] usb 8-1: new high-speed USB device number 23 using dummy_hcd [ 621.413436][T24959] netlink: 830 bytes leftover after parsing attributes in process `syz.4.24002'. [ 621.548406][ T1458] usb 8-1: config 0 has an invalid interface number: 168 but max is 0 [ 621.551083][ T1458] usb 8-1: config 0 has no interface number 0 [ 621.553583][ T1458] usb 8-1: New USB device found, idVendor=05ab, idProduct=0060, bcdDevice=11.06 [ 621.556572][ T1458] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 621.560486][ T1458] usb 8-1: config 0 descriptor?? [ 621.698662][ T60] kernel write not supported for file /input/event2 (pid: 60 comm: kworker/3:1) [ 621.759424][ T1458] usb 8-1: string descriptor 0 read error: -71 [ 621.762030][ T1458] usb-storage 8-1:0.168: USB Mass Storage device detected [ 621.767383][ T1458] usb-storage 8-1:0.168: Quirks match for vid 05ab pid 0060: 2 [ 621.811278][ T1458] usb 8-1: USB disconnect, device number 23 [ 622.500771][T25030] loop6: detected capacity change from 0 to 390070272 [ 622.538449][T25030] loop6: detected capacity change from 390070272 to 524287951 [ 622.725359][T25055] netlink: 'syz.6.24044': attribute type 8 has an invalid length. [ 622.824611][T25059] input: syz1 as /devices/virtual/input/input77 [ 623.153173][T25097] Failed to get privilege flags for destination (handle=0x2:0xffffffff) [ 623.717346][T25142] __nla_validate_parse: 2 callbacks suppressed [ 623.717357][T25142] netlink: 4 bytes leftover after parsing attributes in process `syz.2.24087'. [ 624.310523][ T40] kauditd_printk_skb: 116 callbacks suppressed [ 624.310540][ T40] audit: type=1326 audit(1172.898:35863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25183 comm="syz.2.24107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 624.322638][ T40] audit: type=1326 audit(1172.898:35864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25183 comm="syz.2.24107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 624.329745][ T40] audit: type=1326 audit(1172.898:35865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25183 comm="syz.2.24107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 624.336481][ T40] audit: type=1326 audit(1172.898:35866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25183 comm="syz.2.24107" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 624.343429][ T40] audit: type=1326 audit(1172.898:35867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25183 comm="syz.2.24107" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 624.350092][ T40] audit: type=1326 audit(1172.898:35868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25183 comm="syz.2.24107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 624.357213][ T40] audit: type=1326 audit(1172.898:35869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25183 comm="syz.2.24107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 624.364482][ T40] audit: type=1326 audit(1172.898:35870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25183 comm="syz.2.24107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 624.371660][ T40] audit: type=1326 audit(1172.898:35871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25183 comm="syz.2.24107" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f33579 code=0x7ffc0000 [ 624.378378][ T40] audit: type=1326 audit(1172.898:35872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25183 comm="syz.2.24107" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f33598 code=0x7ffc0000 [ 624.428791][T25189] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2 [ 624.839856][T25225] netlink: 360 bytes leftover after parsing attributes in process `syz.3.24125'. [ 625.577201][T25269] ref_ctr_offset mismatch. inode: 0x130 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x4 [ 626.300975][T25291] netlink: 4 bytes leftover after parsing attributes in process `syz.6.24155'. [ 626.479460][T25301] SQUASHFS error: Failed to read block 0x0: -5 [ 627.033147][T25356] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 627.035985][T25356] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 627.477480][T25380] netlink: 'syz.2.24197': attribute type 3 has an invalid length. [ 627.481290][T25380] netlink: 4 bytes leftover after parsing attributes in process `syz.2.24197'. [ 627.550456][T25388] netlink: 4 bytes leftover after parsing attributes in process `syz.2.24201'. [ 627.555034][T25388] netlink: 4 bytes leftover after parsing attributes in process `syz.2.24201'. [ 627.829962][ T46] bond0: (slave bond_slave_0): interface is now down [ 627.836440][ T46] bond0: (slave bond_slave_1): interface is now down [ 627.839800][ T46] bond0: now running without any active interface! [ 628.200429][T25459] netlink: 'syz.6.24233': attribute type 5 has an invalid length. [ 628.203251][T25459] netlink: 3657 bytes leftover after parsing attributes in process `syz.6.24233'. [ 628.277055][T25467] serio: Serial port ptm1 [ 628.852462][T25486] sp0: Synchronizing with TNC [ 628.929413][ T29] usb 8-1: new high-speed USB device number 24 using dummy_hcd [ 628.992825][T25488] netlink: 'syz.6.24247': attribute type 27 has an invalid length. [ 628.995479][T25488] netlink: 'syz.6.24247': attribute type 1 has an invalid length. [ 628.998261][T25488] bridge0: port 1(bridge_slave_0) entered learning state [ 629.035107][ T5300] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 629.072805][ T29] usb 8-1: Using ep0 maxpacket: 16 [ 629.087050][ T29] usb 8-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 629.090118][ T29] usb 8-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 629.092843][ T29] usb 8-1: Product: syz [ 629.094212][ T29] usb 8-1: Manufacturer: syz [ 629.095740][ T29] usb 8-1: SerialNumber: syz [ 629.098403][ T29] usb 8-1: config 0 descriptor?? [ 629.119413][T25498] netlink: 'syz.6.24250': attribute type 9 has an invalid length. [ 629.302464][ T29] usb 8-1: USB disconnect, device number 24 [ 629.330140][T25519] wireguard0: entered promiscuous mode [ 629.332217][T25519] wireguard0: entered allmulticast mode [ 629.748042][ T40] kauditd_printk_skb: 122 callbacks suppressed [ 629.748054][ T40] audit: type=1326 audit(1407.593:35995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25545 comm="syz.2.24272" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f33579 code=0x0 [ 630.016184][ T6093] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 631.360889][T25623] sctp: [Deprecated]: syz.4.24301 (pid 25623) Use of int in max_burst socket option. [ 631.360889][T25623] Use struct sctp_assoc_value instead [ 631.395767][T25627] mkiss: ax0: crc mode is auto. [ 632.024200][T25668] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 632.026323][T25668] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 632.029549][T25668] vhci_hcd vhci_hcd.0: Device attached [ 632.164715][T25682] input: syz0 as /devices/virtual/input/input80 [ 632.254352][T11043] usb 41-1: new high-speed USB device number 2 using vhci_hcd [ 632.807380][T25746] netlink: 4 bytes leftover after parsing attributes in process `syz.3.24356'. [ 633.143381][T25767] netlink: 32 bytes leftover after parsing attributes in process `syz.3.24362'. [ 633.209071][T25773] netlink: 12 bytes leftover after parsing attributes in process `syz.3.24368'. [ 633.212286][T25773] netlink: 12 bytes leftover after parsing attributes in process `syz.3.24368'. [ 633.439114][ T6113] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 634.130900][ T46] wlan1: Trigger new scan to find an IBSS to join [ 634.437805][T25801] (syz.3.24382,25801,3):dlmfs_mkdir:421 ERROR: invalid domain name for directory. [ 634.895803][T25669] vhci_hcd: connection reset by peer [ 634.899000][ T13] vhci_hcd: stop threads [ 634.900415][ T13] vhci_hcd: release socket [ 634.908881][ T13] vhci_hcd: disconnect device [ 634.914680][T25848] netlink: 12 bytes leftover after parsing attributes in process `syz.2.24404'. [ 634.977568][T25857] netlink: 'syz.2.24408': attribute type 4 has an invalid length. [ 635.050212][ T29] kernel write not supported for file bpf-map (pid: 29 comm: kworker/1:0) [ 635.521490][T25859] netlink: 8 bytes leftover after parsing attributes in process `syz.6.24409'. [ 635.530662][ T29] usb 8-1: new high-speed USB device number 25 using dummy_hcd [ 635.707658][ T29] usb 8-1: unable to get BOS descriptor or descriptor too short [ 635.710963][ T29] usb 8-1: unable to read config index 0 descriptor/start: -71 [ 635.714740][ T29] usb 8-1: can't read configurations, error -71 [ 636.121655][ T62] wlan1: Trigger new scan to find an IBSS to join [ 636.966596][ T40] audit: type=1326 audit(1415.172:35996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25921 comm="syz.6.24440" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000 [ 636.975568][ T40] audit: type=1326 audit(1415.172:35997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25921 comm="syz.6.24440" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000 [ 636.982765][ T40] audit: type=1326 audit(1415.172:35998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25921 comm="syz.6.24440" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000 [ 636.990716][ T40] audit: type=1326 audit(1415.172:35999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25921 comm="syz.6.24440" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 636.997261][ T40] audit: type=1326 audit(1415.172:36000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25921 comm="syz.6.24440" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 637.003985][ T40] audit: type=1326 audit(1415.172:36001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25921 comm="syz.6.24440" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 637.011210][ T40] audit: type=1326 audit(1415.172:36002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25921 comm="syz.6.24440" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000 [ 637.017924][ T40] audit: type=1326 audit(1415.172:36003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25921 comm="syz.6.24440" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000 [ 637.024384][ T40] audit: type=1326 audit(1415.172:36004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25921 comm="syz.6.24440" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf702d598 code=0x7ffc0000 [ 637.032851][ T40] audit: type=1326 audit(1415.172:36005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25921 comm="syz.6.24440" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702d579 code=0x7ffc0000 [ 637.037179][ T62] wlan1: Trigger new scan to find an IBSS to join [ 637.104076][T11043] vhci_hcd: vhci_device speed not set [ 637.187704][T25950] netlink: 4 bytes leftover after parsing attributes in process `syz.3.24453'. [ 637.193773][T25950] netlink: 4 bytes leftover after parsing attributes in process `syz.3.24453'. [ 637.246994][T25957] overlayfs: missing 'lowerdir' [ 637.316153][T25966] netlink: 4 bytes leftover after parsing attributes in process `syz.3.24459'. [ 637.319997][T25966] netlink: 4 bytes leftover after parsing attributes in process `syz.3.24459'. [ 638.007859][T26011] netlink: 12 bytes leftover after parsing attributes in process `syz.3.24480'. [ 638.100858][T26030] netlink: 8 bytes leftover after parsing attributes in process `syz.3.24487'. [ 638.104923][T26030] netlink: 12 bytes leftover after parsing attributes in process `syz.3.24487'. [ 638.500205][T26062] netlink: 4 bytes leftover after parsing attributes in process `syz.2.24504'. [ 638.504383][T20218] syz_tun (unregistering): left allmulticast mode [ 638.506509][T20218] bridge0: port 3(syz_tun) entered disabled state [ 638.919022][ T6054] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 638.923041][ T6054] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 638.927166][ T6054] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 638.931266][ T6054] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 638.940045][ T6054] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 639.094205][T26075] netlink: 44 bytes leftover after parsing attributes in process `syz.3.24512'. [ 639.171173][T26088] ieee802154 phy1 wpan1: encryption failed: -126 [ 639.263476][ T12] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 639.342208][T26099] bridge0: entered promiscuous mode [ 639.344308][T26099] macvlan2: entered promiscuous mode [ 639.347028][T26099] bridge0: port 3(macvlan2) entered blocking state [ 639.349405][T26099] bridge0: port 3(macvlan2) entered disabled state [ 639.351997][T26099] macvlan2: entered allmulticast mode [ 639.353764][T26099] bridge0: entered allmulticast mode [ 639.436951][T26099] macvlan2: left allmulticast mode [ 639.439493][T26099] bridge0: left allmulticast mode [ 639.442947][T26099] bridge0: left promiscuous mode [ 639.773318][ T12] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 639.829337][T26110] netlink: 4 bytes leftover after parsing attributes in process `syz.4.24526'. [ 639.856026][ T1181] wlan1: Trigger new scan to find an IBSS to join [ 640.011690][ T12] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 640.063121][T26122] veth1_to_batadv: entered promiscuous mode [ 640.066418][T26122] macsec1: entered promiscuous mode [ 640.276789][ T12] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 640.355976][T26080] chnl_net:caif_netlink_parms(): no params data found [ 640.630278][T26080] bridge0: port 1(bridge_slave_0) entered blocking state [ 640.632455][T26080] bridge0: port 1(bridge_slave_0) entered disabled state [ 640.634779][T26080] bridge_slave_0: entered allmulticast mode [ 640.638097][T26080] bridge_slave_0: entered promiscuous mode [ 640.642874][T26080] bridge0: port 2(bridge_slave_1) entered blocking state [ 640.645226][T26080] bridge0: port 2(bridge_slave_1) entered disabled state [ 640.647880][T26080] bridge_slave_1: entered allmulticast mode [ 640.650570][T26080] bridge_slave_1: entered promiscuous mode [ 640.790017][ T13] wlan1: Creating new IBSS network, BSSID 32:05:0c:4b:5b:60 [ 640.803397][T26080] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 640.846475][ T62] wlan1: Trigger new scan to find an IBSS to join [ 640.850739][T26080] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 640.913220][ T6054] Bluetooth: hci0: command tx timeout [ 641.030226][T26080] team0: Port device team_slave_0 added [ 641.033915][T26080] team0: Port device team_slave_1 added [ 641.201524][T26080] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 641.203825][T26080] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 641.212601][T26080] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 641.218333][ T12] bridge_slave_1: left allmulticast mode [ 641.220589][ T12] bridge_slave_1: left promiscuous mode [ 641.222596][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 641.285452][ T12] bridge_slave_0: left allmulticast mode [ 641.287403][ T12] bridge_slave_0: left promiscuous mode [ 641.289339][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 641.779802][ T62] wlan1: Creating new IBSS network, BSSID 96:62:2e:0a:7e:5c [ 641.826436][ C3] ------------[ cut here ]------------ [ 641.828638][ C3] no supported rates for sta (null) (0xffffffff, band 0) in rate_mask 0x0 with flags 0x0 [ 641.832584][ C3] WARNING: CPU: 3 PID: 0 at net/mac80211/rate.c:401 __rate_control_send_low+0x667/0x780 [ 641.835862][ C3] Modules linked in: [ 641.837656][ C3] CPU: 3 UID: 0 PID: 0 Comm: swapper/3 Not tainted syzkaller #0 PREEMPT(full) [ 641.842904][ C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 641.846610][ C3] RIP: 0010:__rate_control_send_low+0x667/0x780 [ 641.849010][ C3] Code: a4 a0 d4 00 00 00 e8 b8 77 e9 f6 44 8b 44 24 24 45 89 e9 89 d9 48 8b 74 24 08 44 89 e2 48 c7 c7 80 0b e3 8c e8 0a f7 a7 f6 90 <0f> 0b 90 90 e9 20 fd ff ff 48 8b 3c 24 e8 87 0e 51 f7 e9 f5 fc ff [ 641.855885][ C3] RSP: 0018:ffffc900005e8930 EFLAGS: 00010282 [ 641.858177][ C3] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817aee58 [ 641.860905][ C3] RDX: ffff88801bf10000 RSI: ffffffff817aee65 RDI: 0000000000000001 [ 641.863400][ C3] RBP: ffff888027eaa668 R08: 0000000000000001 R09: 0000000000000000 [ 641.866218][ C3] R10: 0000000000000000 R11: 0000000000000001 R12: 00000000ffffffff [ 641.869179][ C3] R13: 0000000000000000 R14: 000000000000000c R15: ffff888027eaa670 [ 641.872289][ C3] FS: 0000000000000000(0000) GS:ffff888097b10000(0000) knlGS:0000000000000000 [ 641.875295][ C3] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 641.877623][ C3] CR2: 00000000f53e3248 CR3: 00000000133ef000 CR4: 0000000000352ef0 [ 641.880242][ C3] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 641.882865][ C3] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 641.885584][ C3] Call Trace: [ 641.886693][ C3] [ 641.887825][ C3] rate_control_send_low+0x52a/0x810 [ 641.889923][ C3] ? kmalloc_reserve+0x18b/0x2c0 [ 641.891732][ C3] rate_control_get_rate+0x1be/0x5e0 [ 641.893451][ C3] ieee80211_beacon_get_finish+0x467/0x670 [ 641.895351][ C3] ? __pfx_ieee80211_beacon_get_finish+0x10/0x10 [ 641.897451][ C3] __ieee80211_beacon_get+0xc56/0x1e40 [ 641.899236][ C3] ? __lock_acquire+0xb8a/0x1c90 [ 641.900958][ C3] ieee80211_beacon_get_tim+0xa6/0x280 [ 641.903094][ C3] ? __pfx_ieee80211_beacon_get_tim+0x10/0x10 [ 641.905604][ C3] mac80211_hwsim_beacon_tx+0x4dc/0xa40 [ 641.908115][ C3] __iterate_interfaces+0x2e5/0x650 [ 641.910341][ C3] ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10 [ 641.912583][ C3] ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10 [ 641.914799][ C3] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 641.916731][ C3] ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0 [ 641.918886][ C3] mac80211_hwsim_beacon+0x105/0x1b0 [ 641.920579][ C3] __hrtimer_run_queues+0x202/0xad0 [ 641.922256][ C3] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 641.924432][ C3] ? read_tsc+0x9/0x20 [ 641.925910][ C3] hrtimer_run_softirq+0x17d/0x350 [ 641.927931][ C3] handle_softirqs+0x219/0x8e0 [ 641.929956][ C3] ? __pfx_handle_softirqs+0x10/0x10 [ 641.932094][ C3] __irq_exit_rcu+0x109/0x170 [ 641.934022][ C3] irq_exit_rcu+0x9/0x30 [ 641.935636][ C3] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 641.937530][ C3] [ 641.938510][ C3] [ 641.939499][ C3] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 641.941838][ C3] RIP: 0010:pv_native_safe_halt+0xf/0x20 [ 641.944171][ C3] Code: c7 6f 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d e3 f3 2c 00 fb f4 3c 0a 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 [ 641.950617][ C3] RSP: 0018:ffffc9000048fde8 EFLAGS: 00000286 [ 641.952807][ C3] RAX: 000000000036d009 RBX: 0000000000000003 RCX: ffffffff8b5d32a9 [ 641.955524][ C3] RDX: 0000000000000000 RSI: ffffffff8da27c4d RDI: ffffffff8bf07540 [ 641.958758][ C3] RBP: ffffed10037e2000 R08: 0000000000000001 R09: ffffed10056a6655 [ 641.962150][ C3] R10: ffff88802b5332ab R11: 0000000000000001 R12: 0000000000000003 [ 641.964948][ C3] R13: ffff88801bf10000 R14: ffffffff908231d0 R15: 0000000000000000 [ 641.967423][ C3] ? ct_kernel_exit+0x139/0x190 [ 641.968922][ C3] default_idle+0x13/0x20 [ 641.970241][ C3] default_idle_call+0x6c/0xb0 [ 641.971780][ C3] do_idle+0x38d/0x500 [ 641.973032][ C3] ? __pfx_do_idle+0x10/0x10 [ 641.974506][ C3] ? trace_sched_exit_tp+0x2f/0x120 [ 641.976322][ C3] cpu_startup_entry+0x4f/0x60 [ 641.977909][ C3] start_secondary+0x21d/0x2b0 [ 641.979401][ C3] ? __pfx_start_secondary+0x10/0x10 [ 641.981255][ C3] common_startup_64+0x13e/0x148 [ 641.983171][ C3] [ 641.984386][ C3] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 641.986807][ C3] CPU: 3 UID: 0 PID: 0 Comm: swapper/3 Not tainted syzkaller #0 PREEMPT(full) [ 641.989747][ C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 641.993026][ C3] Call Trace: [ 641.994102][ C3] [ 641.995055][ C3] dump_stack_lvl+0x3d/0x1f0 [ 641.996453][ C3] vpanic+0x640/0x6f0 [ 641.997660][ C3] ? __rate_control_send_low+0x667/0x780 [ 641.999477][ C3] panic+0xca/0xd0 [ 642.000967][ C3] ? __pfx_panic+0x10/0x10 [ 642.002584][ C3] ? check_panic_on_warn+0x1f/0xb0 [ 642.004655][ C3] check_panic_on_warn+0xab/0xb0 [ 642.006318][ C3] __warn+0xf6/0x3c0 [ 642.007620][ C3] ? __pfx_vprintk_emit+0x10/0x10 [ 642.009274][ C3] ? __rate_control_send_low+0x667/0x780 [ 642.011045][ C3] report_bug+0x3c3/0x580 [ 642.012415][ C3] ? __rate_control_send_low+0x667/0x780 [ 642.014187][ C3] handle_bug+0x184/0x210 [ 642.015607][ C3] exc_invalid_op+0x17/0x50 [ 642.017223][ C3] asm_exc_invalid_op+0x1a/0x20 [ 642.018891][ C3] RIP: 0010:__rate_control_send_low+0x667/0x780 [ 642.020901][ C3] Code: a4 a0 d4 00 00 00 e8 b8 77 e9 f6 44 8b 44 24 24 45 89 e9 89 d9 48 8b 74 24 08 44 89 e2 48 c7 c7 80 0b e3 8c e8 0a f7 a7 f6 90 <0f> 0b 90 90 e9 20 fd ff ff 48 8b 3c 24 e8 87 0e 51 f7 e9 f5 fc ff [ 642.026885][ C3] RSP: 0018:ffffc900005e8930 EFLAGS: 00010282 [ 642.029026][ C3] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817aee58 [ 642.031742][ C3] RDX: ffff88801bf10000 RSI: ffffffff817aee65 RDI: 0000000000000001 [ 642.034237][ C3] RBP: ffff888027eaa668 R08: 0000000000000001 R09: 0000000000000000 [ 642.036659][ C3] R10: 0000000000000000 R11: 0000000000000001 R12: 00000000ffffffff [ 642.039102][ C3] R13: 0000000000000000 R14: 000000000000000c R15: ffff888027eaa670 [ 642.041565][ C3] ? __warn_printk+0x198/0x350 [ 642.043102][ C3] ? __warn_printk+0x1a5/0x350 [ 642.044709][ C3] rate_control_send_low+0x52a/0x810 [ 642.046511][ C3] ? kmalloc_reserve+0x18b/0x2c0 [ 642.048161][ C3] rate_control_get_rate+0x1be/0x5e0 [ 642.049871][ C3] ieee80211_beacon_get_finish+0x467/0x670 [ 642.051750][ C3] ? __pfx_ieee80211_beacon_get_finish+0x10/0x10 [ 642.053915][ C3] __ieee80211_beacon_get+0xc56/0x1e40 [ 642.055755][ C3] ? __lock_acquire+0xb8a/0x1c90 [ 642.057520][ C3] ieee80211_beacon_get_tim+0xa6/0x280 [ 642.059363][ C3] ? __pfx_ieee80211_beacon_get_tim+0x10/0x10 [ 642.061342][ C3] mac80211_hwsim_beacon_tx+0x4dc/0xa40 [ 642.063093][ C3] __iterate_interfaces+0x2e5/0x650 [ 642.064830][ C3] ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10 [ 642.066960][ C3] ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10 [ 642.069138][ C3] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 642.071056][ C3] ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0 [ 642.073253][ C3] mac80211_hwsim_beacon+0x105/0x1b0 [ 642.074876][ C3] __hrtimer_run_queues+0x202/0xad0 [ 642.076505][ C3] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 642.078347][ C3] ? read_tsc+0x9/0x20 [ 642.079682][ C3] hrtimer_run_softirq+0x17d/0x350 [ 642.081419][ C3] handle_softirqs+0x219/0x8e0 [ 642.083068][ C3] ? __pfx_handle_softirqs+0x10/0x10 [ 642.084891][ C3] __irq_exit_rcu+0x109/0x170 [ 642.086435][ C3] irq_exit_rcu+0x9/0x30 [ 642.087824][ C3] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 642.089578][ C3] [ 642.090478][ C3] [ 642.091398][ C3] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 642.093312][ C3] RIP: 0010:pv_native_safe_halt+0xf/0x20 [ 642.095041][ C3] Code: c7 6f 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d e3 f3 2c 00 fb f4 3c 0a 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 [ 642.101218][ C3] RSP: 0018:ffffc9000048fde8 EFLAGS: 00000286 [ 642.103308][ C3] RAX: 000000000036d009 RBX: 0000000000000003 RCX: ffffffff8b5d32a9 [ 642.105896][ C3] RDX: 0000000000000000 RSI: ffffffff8da27c4d RDI: ffffffff8bf07540 [ 642.108355][ C3] RBP: ffffed10037e2000 R08: 0000000000000001 R09: ffffed10056a6655 [ 642.110861][ C3] R10: ffff88802b5332ab R11: 0000000000000001 R12: 0000000000000003 [ 642.113395][ C3] R13: ffff88801bf10000 R14: ffffffff908231d0 R15: 0000000000000000 [ 642.115857][ C3] ? ct_kernel_exit+0x139/0x190 [ 642.117608][ C3] default_idle+0x13/0x20 [ 642.119293][ C3] default_idle_call+0x6c/0xb0 [ 642.121147][ C3] do_idle+0x38d/0x500 [ 642.122510][ C3] ? __pfx_do_idle+0x10/0x10 [ 642.124076][ C3] ? trace_sched_exit_tp+0x2f/0x120 [ 642.125863][ C3] cpu_startup_entry+0x4f/0x60 [ 642.127548][ C3] start_secondary+0x21d/0x2b0 [ 642.129192][ C3] ? __pfx_start_secondary+0x10/0x10 [ 642.130921][ C3] common_startup_64+0x13e/0x148 [ 642.132848][ C3] [ 642.134658][ C3] Kernel Offset: disabled [ 642.136050][ C3] Rebooting in 86400 seconds.. VM DIAGNOSIS: 03:58:50 Registers: info registers vcpu 0 CPU#0 RAX=0000000000415f55 RBX=0000000000000000 RCX=ffffffff8b5d32a9 RDX=0000000000000000 RSI=ffffffff8da27c4d RDI=ffffffff8bf07540 RBP=fffffbfff1c12f40 RSP=ffffffff8e007df8 R8 =0000000000000001 R9 =ffffed1005646655 R10=ffff88802b2332ab R11=0000000000000001 R12=0000000000000000 R13=ffffffff8e097a00 R14=ffffffff908231d0 R15=0000000000000000 RIP=ffffffff8b5d1d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097810000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000003331dffc CR3=000000000e182000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000362fdb RBX=0000000000000001 RCX=ffffffff8b5d32a9 RDX=0000000000000000 RSI=ffffffff8da27c4d RDI=ffffffff8bf07540 RBP=ffffed1003b5a490 RSP=ffffc9000046fde8 R8 =0000000000000001 R9 =ffffed1005666655 R10=ffff88802b3332ab R11=0000000000000001 R12=0000000000000001 R13=ffff88801dad2480 R14=ffffffff908231d0 R15=0000000000000000 RIP=ffffffff8b5d1d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097910000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000008000cf3d CR3=000000006c2e2000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000080000003 RBX=ffff888040470000 RCX=ffffffff81b53858 RDX=ffff888028690000 RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000000002 RSP=ffffc90003457508 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000003 R11=0000000000000001 R12=1ffff9200068aea4 R13=ffff888040470008 R14=0000000000000003 R15=ffff88804a1d8040 RIP=ffffffff81bc670c RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f39369ed300 ffffffff 00c00000 GS =0000 ffff888097a10000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000558c98f11f40 CR3=000000004b126000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=a1f64aceca0d4cd5 93e77441967cda05 a1f64aceca0d4cd5 93e77441967cda05 a1f64aceca0d4cd5 93e77441967cda05 a1f64aceca0d4cd5 93e77441967cda05 ZMM18=d1375019366f8c16 b6babd044eefa648 d1375019366f8c16 b6babd044eefa648 d1375019366f8c16 b6babd044eefa648 d1375019366f8c16 b6babd044eefa648 ZMM19=927f000000000000 0000000000000004 927f000000000000 0000000000000003 927f000000000000 0000000000000002 927f000000000000 0000000000000001 ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0d17ffffffff849a e703ffffffff814f 9298ffffffff89d5 2a79ffffffff8a96 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a35ffffffff892e 9ce9ffffffff81e6 3733ffffffff816a e501ffffffff849b ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0ab1ffffffff849a 3738ffffffff81cd d432ffffffff8ade aff0ffffffff8ade ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff81f8b23f ffffffff892efd59 ffffffff81e6345f ffffffff823f25d2 ZMM25=b6babd04b6babd04 b6babd04b6babd04 b6babd04b6babd04 b6babd04b6babd04 b6babd04b6babd04 b6babd04b6babd04 b6babd04b6babd04 b6babd04b6babd04 ZMM26=366f8c16366f8c16 366f8c16366f8c16 366f8c16366f8c16 366f8c16366f8c16 366f8c16366f8c16 366f8c16366f8c16 366f8c16366f8c16 366f8c16366f8c16 ZMM27=d1375019d1375019 d1375019d1375019 d1375019d1375019 d1375019d1375019 d1375019d1375019 d1375019d1375019 d1375019d1375019 d1375019d1375019 ZMM28=000000200000001f 0000001e0000001d 0000001c0000001b 0000001a00000019 0000001800000017 0000001600000015 0000001400000013 0000001200000011 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=917f0000917f0000 917f0000917f0000 917f0000917f0000 917f0000917f0000 917f0000917f0000 917f0000917f0000 917f0000917f0000 917f0000917f0000 info registers vcpu 3 CPU#3 RAX=0000000000000070 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff852674e5 RDI=ffffffff9adc2de0 RBP=ffffffff9adc2da0 RSP=ffffc900005e82a0 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001 R12=0000000000000000 R13=0000000000000070 R14=ffffffff9adc2da0 R15=ffffffff85267480 RIP=ffffffff8526750f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097b10000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f53e3248 CR3=00000000133ef000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000f400000000 0000000300000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000f400000000 0000000300000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000