last executing test programs: 2.910869939s ago: executing program 2 (id=407): r0 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x34f}, &(0x7f00000002c0)=0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x0, &(0x7f0000000200)}, 0x8) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc}) io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0) 2.850404546s ago: executing program 2 (id=408): socket$inet(0x2, 0x4000000000000001, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) socket$inet_udp(0x2, 0x2, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) getuid() socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x18, 0x30, 0x1, 0x0, 0x0, {}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f00000001c0)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) connect$inet6(r3, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000000c0), 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4) setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58", ' \x00'}, 0x28) sendmsg$inet(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000c40)=[{&(0x7f0000000240)='n7', 0x2}], 0x1}, 0x0) setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28) write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x4d, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x0, 0x7, 0x40, 0x1, 0x24, 0xd, 0x1, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0xffffb8f3, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8f, 0x6, 0x6, 0x0, 0x5, 0x4, 0x8, 0x3ff, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8004, 0x5, 0xfffffff3, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x40000, 0x1ef, 0x4, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0xa9, 0x5, 0x6, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x0, 0x10000, 0x4, 0x7fff, 0xffff, 0xa620, 0x1, 0x80000005, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x7f, 0xffffffff, 0x80000000, 0x5, 0x4, 0xc8, 0x1, 0xfffff000, 0x10000, 0x3, 0x7e, 0x100, 0x9602, 0x47, 0xaf, 0x8, 0x6, 0x226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x8, 0x5, 0xb1e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c) write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, &(0x7f0000000180)={0x30}, 0x30) 2.76070762s ago: executing program 1 (id=410): r0 = epoll_create(0xeed) r1 = openat$random(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0)={0x20000003}) ppoll(&(0x7f0000000000)=[{r0, 0x452e}], 0x1, 0x0, 0x0, 0x0) 1.930530393s ago: executing program 2 (id=412): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000000)='sched_switch\x00', r0, 0x0, 0xffffffffffffffff}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) ioctl$FIBMAP(0xffffffffffffffff, 0x1, &(0x7f0000000280)) syz_io_uring_setup(0x3b, &(0x7f0000000080)={0x0, 0x0, 0x18132, 0x80000000}, &(0x7f00000001c0), &(0x7f0000000100)) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r4) r5 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_tcp_int(r4, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2) connect$inet6(r4, 0x0, 0x0) sendto$inet6(r5, 0x0, 0x0, 0x44810, 0x0, 0x0) 1.861050106s ago: executing program 1 (id=413): r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000380)=@bpf_tracing={0x1a, 0x29, &(0x7f0000000100)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000000600000083000000bf0000000000000055090100000000009500000000000000b7080000000000007b8af8ff000080fbb70800000b000010000000bfa10000", @ANYRES32, @ANYBLOB="0000000000000000b705000008000000850000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00', @ANYRES32=0x1, @ANYBLOB="0000000000000000b70200000000000085000000860000001840000006"], 0x0, 0xe, 0x3b, &(0x7f0000000080)=""/59, 0x40f00, 0x1, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x169a0, 0xffffffffffffffff, 0x1, &(0x7f0000000300)=[0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x1, 0x1], &(0x7f0000000340)=[{0x10000002, 0x2, 0x0, 0x3}], 0x10, 0x1, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000680)={r0, 0x0, 0x0, 0x6e, 0x0, &(0x7f00000004c0)=""/110, 0x9, 0x0, 0x0, 0x0, &(0x7f0000000540), &(0x7f0000000580), 0x0, 0x0, 0x607}, 0x50) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) r3 = accept4(r2, 0x0, 0x0, 0x800) sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800) recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r4, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r5, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0) 1.860923501s ago: executing program 1 (id=414): bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x5, 0x3, &(0x7f0000000200)=@framed={{0x85, 0x0, 0x0, 0x0, 0x19, 0x4}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 1.790817698s ago: executing program 1 (id=415): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000900)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000840)={0x84, &(0x7f0000000180)=ANY=[@ANYBLOB="00000100000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 1.410740214s ago: executing program 3 (id=418): r0 = syz_io_uring_setup(0x792, &(0x7f0000000000)={0x0, 0x35b3, 0x1000, 0x3, 0xc4}, &(0x7f0000000080), &(0x7f00000000c0)) io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000240)=[0xffffffffffffffff], 0x1) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000940)={0x6, 0x0, &(0x7f0000000900)=[r0]}, 0x1) 1.410575484s ago: executing program 3 (id=419): syz_emit_ethernet(0x0, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="540000000a0601020000000000000000020000000900020073797a310000000005000100070000002c0007800c00018008000140ffffffff05000700"], 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80) 1.350794361s ago: executing program 3 (id=420): socket$packet(0x11, 0xa, 0x300) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2688f54c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, 0x0, 0x8, 0x0) 1.210296599s ago: executing program 3 (id=424): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.106179419s ago: executing program 3 (id=425): fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x10, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000003c0)) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0x1c, &(0x7f0000000040)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0900000000000055090100000000009500000000000000b7020000000000007b88f8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b705000008000000a5000000bf"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) ptrace$getregset(0x4205, r0, 0x1, &(0x7f0000000080)={&(0x7f00000000c0)=""/120, 0x78}) 1.105933562s ago: executing program 3 (id=427): r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000a8f4dd086d0492082a6d0000000109021b0001000000000904"], 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000480)={0x2c, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000cc0)={0x24, &(0x7f0000000500)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f00000008c0)={0x84, &(0x7f0000000300)={0x20, 0xb, 0x2, "df0a"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 1.020551036s ago: executing program 2 (id=431): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r0}, 0x10) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000003ac0)=[{{&(0x7f0000000180)={0x2, 0x4e23, @empty}, 0x10, 0x0}}], 0x1, 0x20044840) r1 = openat$kvm(0x0, &(0x7f0000000300), 0x2802, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0xc048aeca, &(0x7f0000000180)) 900.671186ms ago: executing program 2 (id=432): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mkdir(&(0x7f00000000c0)='./bus\x00', 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x6e1cd000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mkdir(&(0x7f0000000440)='./file1\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@nfs_export_on}]}) chdir(&(0x7f00000001c0)='./bus\x00') rmdir(&(0x7f0000000380)='./file0/../file0\x00') 440.762655ms ago: executing program 1 (id=433): keyctl$dh_compute(0x17, &(0x7f0000000240), &(0x7f0000000280)=""/4096, 0x1000, &(0x7f00000012c0)={0x0}) 440.633183ms ago: executing program 1 (id=434): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendmmsg$inet6(r0, &(0x7f0000000480)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x80020}, 0x1c, &(0x7f0000000500)=[{&(0x7f00000034c0)='\x00', 0x1}], 0x1}}], 0x1, 0x34000811) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000040)=@sack_info={0x0, 0x1, 0x9}, 0xc) 160.818843ms ago: executing program 0 (id=435): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_ADD_DEV(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="4d7e00000000000000002a00000008002f00f9ffffff05003600000000000c000500000000000000000008000200", @ANYRES32=r2], 0x38}, 0x4, 0x700000000000000}, 0x0) 160.65862ms ago: executing program 0 (id=436): capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000100)) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="050000000000000071100a000000000006000000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd96, &(0x7f0000000080)=""/201, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffd56, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) 90.769755ms ago: executing program 0 (id=437): syz_emit_ethernet(0x0, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="540000000a0601020000000000000000020000000900020073797a310000000005000100070000002c0007800c00018008000140ffffffff0500070029000000060004404e21"], 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80) 90.45971ms ago: executing program 0 (id=438): r0 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x34f}, &(0x7f00000002c0)=0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x2000000000000176, &(0x7f0000000200)=[{0x30, 0x0, 0x8, 0x4}]}, 0x10) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_io_uring_submit(r1, r2, 0x0) io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0) 282.206µs ago: executing program 0 (id=439): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000180)={0x58, r0, 0x1, 0xf0bd25, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x21, 0x33, @action_no_ack={{{0x0, 0x0, 0xe, 0x0, 0x0, 0x1}, {0x3d8e}, @broadcast, @device_a, @from_mac, {0x1, 0x1}}, @tdls_setup_cfm={0xc, 0x2, {0x13, 0x6}}}}, @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}], @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x5}, @NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x58}}, 0x48054) 136.857µs ago: executing program 2 (id=440): syz_open_procfs(0x0, &(0x7f0000000040)='net/sco\x00') syz_open_procfs(0x0, &(0x7f0000000080)='net/protocols\x00') 0s ago: executing program 0 (id=441): bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000), 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_GET_SUPPORTED_CPUID(r0, 0xc008ae09, &(0x7f0000000000)) 0s ago: executing program 2 (id=442): creat(&(0x7f0000000240)='./file0\x00', 0x148) pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15) r2 = dup(r1) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000004c0), 0x10400, &(0x7f0000000700)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) chmod(&(0x7f0000000340)='./file0\x00', 0x0) r3 = open$dir(&(0x7f0000000180)='./file0\x00', 0x1, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0) ftruncate(r4, 0x57) sendfile(r3, r4, 0x0, 0x7ffff000) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:58752' (ED25519) to the list of known hosts. [ 42.249633][ T5868] cgroup: Unknown subsys name 'net' [ 42.397828][ T5868] cgroup: Unknown subsys name 'cpuset' [ 42.401642][ T5868] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 43.264584][ T5868] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 46.523947][ T5954] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 46.523947][ T5953] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 46.524861][ T5953] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 46.527255][ T5954] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 46.531429][ T5953] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 46.533879][ T5954] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 46.536095][ T5953] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 46.538599][ T5954] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 46.539517][ T5957] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 46.540655][ T5957] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 46.542635][ T5953] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 46.542947][ T5954] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 46.545292][ T5957] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 46.545441][ T5958] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 46.546041][ T5958] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 46.546497][ T5958] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 46.546934][ T5954] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 46.548236][ T5953] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 46.550144][ T5957] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 46.567369][ T5957] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 46.792965][ T5941] chnl_net:caif_netlink_parms(): no params data found [ 46.838699][ T5942] chnl_net:caif_netlink_parms(): no params data found [ 46.912239][ T5944] chnl_net:caif_netlink_parms(): no params data found [ 46.993243][ T5941] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.995773][ T5941] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.998237][ T5941] bridge_slave_0: entered allmulticast mode [ 47.000918][ T5941] bridge_slave_0: entered promiscuous mode [ 47.040235][ T5943] chnl_net:caif_netlink_parms(): no params data found [ 47.044996][ T5941] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.047273][ T5941] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.049677][ T5941] bridge_slave_1: entered allmulticast mode [ 47.052274][ T5941] bridge_slave_1: entered promiscuous mode [ 47.094126][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.096513][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.098850][ T5942] bridge_slave_0: entered allmulticast mode [ 47.101489][ T5942] bridge_slave_0: entered promiscuous mode [ 47.154859][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.157103][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.159346][ T5942] bridge_slave_1: entered allmulticast mode [ 47.161896][ T5942] bridge_slave_1: entered promiscuous mode [ 47.182337][ T5941] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.232064][ T5941] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.262840][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.325083][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.327308][ T5944] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.329572][ T5944] bridge_slave_0: entered allmulticast mode [ 47.332183][ T5944] bridge_slave_0: entered promiscuous mode [ 47.336595][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.339910][ T5943] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.342601][ T5943] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.345403][ T5943] bridge_slave_0: entered allmulticast mode [ 47.348739][ T5943] bridge_slave_0: entered promiscuous mode [ 47.370988][ T5941] team0: Port device team_slave_0 added [ 47.373342][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.376044][ T5944] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.378481][ T5944] bridge_slave_1: entered allmulticast mode [ 47.381118][ T5944] bridge_slave_1: entered promiscuous mode [ 47.412559][ T5943] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.415095][ T5943] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.417392][ T5943] bridge_slave_1: entered allmulticast mode [ 47.420140][ T5943] bridge_slave_1: entered promiscuous mode [ 47.439504][ T5941] team0: Port device team_slave_1 added [ 47.459196][ T5944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.545433][ T5944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.551348][ T5942] team0: Port device team_slave_0 added [ 47.555255][ T5943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.558613][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.560775][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.569385][ T5941] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.589707][ T5942] team0: Port device team_slave_1 added [ 47.593728][ T5943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.597115][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.599349][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.607299][ T5941] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.682328][ T5944] team0: Port device team_slave_0 added [ 47.708888][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.711109][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.719261][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.726730][ T5943] team0: Port device team_slave_0 added [ 47.729784][ T5944] team0: Port device team_slave_1 added [ 47.732040][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.734281][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.743020][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.756218][ T5943] team0: Port device team_slave_1 added [ 47.809186][ T5941] hsr_slave_0: entered promiscuous mode [ 47.811452][ T5941] hsr_slave_1: entered promiscuous mode [ 47.850395][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.852554][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.860422][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.865085][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.867265][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.875034][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.892182][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.894678][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.902568][ T5943] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.937391][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.939751][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.951935][ T5943] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.974360][ T5942] hsr_slave_0: entered promiscuous mode [ 47.976860][ T5942] hsr_slave_1: entered promiscuous mode [ 47.979032][ T5942] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 47.981523][ T5942] Cannot create hsr debugfs directory [ 48.095392][ T5943] hsr_slave_0: entered promiscuous mode [ 48.097600][ T5943] hsr_slave_1: entered promiscuous mode [ 48.099653][ T5943] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 48.102001][ T5943] Cannot create hsr debugfs directory [ 48.126031][ T5944] hsr_slave_0: entered promiscuous mode [ 48.128254][ T5944] hsr_slave_1: entered promiscuous mode [ 48.130259][ T5944] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 48.132598][ T5944] Cannot create hsr debugfs directory [ 48.388297][ T5941] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 48.393868][ T5941] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 48.398559][ T5941] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 48.408598][ T5941] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 48.432738][ T5943] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 48.437205][ T5943] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 48.441266][ T5943] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 48.445452][ T5943] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 48.496147][ T5942] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 48.501666][ T5942] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 48.518771][ T5942] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 48.524883][ T5942] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 48.555149][ T5957] Bluetooth: hci0: command tx timeout [ 48.555505][ T5945] Bluetooth: hci1: command tx timeout [ 48.570601][ T5941] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.572976][ T5944] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 48.580488][ T5944] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 48.586824][ T5944] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 48.591496][ T5944] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 48.613325][ T5941] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.630225][ T5943] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.634562][ T5945] Bluetooth: hci2: command tx timeout [ 48.635217][ T5957] Bluetooth: hci3: command tx timeout [ 48.645694][ T220] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.648274][ T220] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.660614][ T220] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.663090][ T220] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.671585][ T5943] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.696941][ T64] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.699392][ T64] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.703245][ T64] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.706017][ T64] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.718901][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.762056][ T5942] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.773477][ T220] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.775833][ T220] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.788016][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.792489][ T64] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.794827][ T64] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.818603][ T5944] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.834375][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.836737][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.849746][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.852723][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.902265][ T5941] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.932764][ T5941] veth0_vlan: entered promiscuous mode [ 48.945414][ T5943] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.950597][ T5941] veth1_vlan: entered promiscuous mode [ 48.985564][ T5943] veth0_vlan: entered promiscuous mode [ 48.994242][ T5941] veth0_macvtap: entered promiscuous mode [ 48.999915][ T5943] veth1_vlan: entered promiscuous mode [ 49.005482][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 49.008385][ T5941] veth1_macvtap: entered promiscuous mode [ 49.030521][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 49.040150][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 49.043330][ T5943] veth0_macvtap: entered promiscuous mode [ 49.051003][ T5943] veth1_macvtap: entered promiscuous mode [ 49.056078][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 49.066765][ T5941] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.069584][ T5941] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.072287][ T5941] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.075734][ T5941] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.087753][ T5942] veth0_vlan: entered promiscuous mode [ 49.109390][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 49.111873][ T5942] veth1_vlan: entered promiscuous mode [ 49.118104][ T5944] veth0_vlan: entered promiscuous mode [ 49.121871][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 49.130750][ T5944] veth1_vlan: entered promiscuous mode [ 49.133671][ T5943] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.136864][ T5943] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.139610][ T5943] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.142275][ T5943] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.170279][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.172837][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.187314][ T5942] veth0_macvtap: entered promiscuous mode [ 49.208070][ T5944] veth0_macvtap: entered promiscuous mode [ 49.210791][ T5942] veth1_macvtap: entered promiscuous mode [ 49.214151][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.217496][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.227484][ T220] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.229018][ T5944] veth1_macvtap: entered promiscuous mode [ 49.229953][ T220] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.243938][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 49.248721][ T5941] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 49.266211][ T1147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.267285][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 49.268996][ T1147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.280310][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 49.292262][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 49.296699][ T5944] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.299362][ T5944] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.302599][ T5944] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.305712][ T5944] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.312115][ T5942] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.316095][ T5942] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.319648][ T5942] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.323541][ T5942] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.339973][ T6009] netlink: 'syz.0.5': attribute type 8 has an invalid length. [ 49.343353][ T6009] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5'. [ 49.409412][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.411966][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.421534][ T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.425995][ T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.460073][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.463382][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.484734][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 49.488331][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.573086][ T6015] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6'. [ 49.579220][ T6015] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode [ 49.582439][ T6015] macsec1: entered allmulticast mode [ 49.584248][ T6015] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode [ 49.589336][ T6015] mac80211_hwsim hwsim2 wlan0: left allmulticast mode [ 49.591553][ T6015] mac80211_hwsim hwsim2 wlan0: left promiscuous mode [ 50.258243][ T6043] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 50.361936][ T6049] Driver unsupported XDP return value 0 on prog (id 4) dev N/A, expect packet loss! [ 50.506110][ T6056] ======================================================= [ 50.506110][ T6056] WARNING: The mand mount option has been deprecated and [ 50.506110][ T6056] and is ignored by this kernel. Remove the mand [ 50.506110][ T6056] option from the mount to silence this warning. [ 50.506110][ T6056] ======================================================= [ 50.645132][ T5957] Bluetooth: hci1: command tx timeout [ 50.645447][ T5945] Bluetooth: hci0: command tx timeout [ 50.716376][ T5945] Bluetooth: hci2: command tx timeout [ 50.716403][ T5957] Bluetooth: hci3: command tx timeout [ 50.826433][ T6073] nr0: tun_chr_ioctl cmd 1074025681 [ 51.066958][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 51.194519][ T6013] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 51.293423][ T5985] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 51.298540][ T5985] hid-generic 0000:0000:0000.0002: hidraw1: HID v0.00 Device [syz1] on syz0 [ 51.355226][ T6013] usb 7-1: Using ep0 maxpacket: 8 [ 51.362731][ T6013] usb 7-1: New USB device found, idVendor=0458, idProduct=7003, bcdDevice=7a.1a [ 51.365967][ T6013] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 51.368761][ T6013] usb 7-1: Product: syz [ 51.370290][ T6013] usb 7-1: Manufacturer: syz [ 51.371935][ T6013] usb 7-1: SerialNumber: syz [ 51.375744][ T6013] usb 7-1: config 0 descriptor?? [ 51.381438][ T6013] gspca_main: sn9c2028-2.14.0 probing 0458:7003 [ 51.534972][ T2145] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 51.580979][ T6013] gspca_sn9c2028: read1 error -32 [ 51.684578][ T2145] usb 5-1: Using ep0 maxpacket: 16 [ 51.696203][ T2145] usb 5-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 1024 [ 51.700395][ T2145] usb 5-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 64 [ 51.704834][ T2145] usb 5-1: config 1 interface 0 altsetting 93 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 51.710089][ T2145] usb 5-1: config 1 interface 0 has no altsetting 0 [ 51.725107][ T2145] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 51.728778][ T2145] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 51.731977][ T2145] usb 5-1: SerialNumber: syz [ 51.747359][ T6093] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 51.749831][ T6093] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 51.785863][ T6013] gspca_sn9c2028: read1 error -71 [ 51.787578][ T6013] sn9c2028 7-1:0.0: probe with driver sn9c2028 failed with error -71 [ 51.791640][ T6013] usb 7-1: USB disconnect, device number 2 [ 51.958090][ T2145] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -71 [ 51.971499][ T2145] usb 5-1: USB disconnect, device number 2 [ 52.666524][ T6144] warning: `syz.1.54' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 52.714655][ T5957] Bluetooth: hci0: command tx timeout [ 52.714861][ T5945] Bluetooth: hci1: command tx timeout [ 52.794531][ T5945] Bluetooth: hci3: command tx timeout [ 52.805076][ T5945] Bluetooth: hci2: command tx timeout [ 53.494529][ T6013] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 53.643340][ T6172] netlink: 4 bytes leftover after parsing attributes in process `syz.1.65'. [ 53.648899][ T6013] usb 7-1: New USB device found, idVendor=0b95, idProduct=772b, bcdDevice=a2.4c [ 53.652437][ T6013] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 53.655245][ T6013] usb 7-1: Product: syz [ 53.656579][ T6013] usb 7-1: Manufacturer: syz [ 53.658081][ T6013] usb 7-1: SerialNumber: syz [ 53.660771][ T6013] usb 7-1: config 0 descriptor?? [ 53.679860][ T6176] syz.0.68 uses obsolete (PF_INET,SOCK_PACKET) [ 53.686660][ T6178] syz_tun: entered promiscuous mode [ 53.700714][ T6177] syz_tun: left promiscuous mode [ 54.076913][ T5951] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 54.224488][ T5951] usb 5-1: Using ep0 maxpacket: 16 [ 54.227761][ T5951] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 54.230881][ T5951] usb 5-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 54.234166][ T5951] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0 [ 54.239786][ T5951] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 54.242666][ T5951] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 54.245211][ T5951] usb 5-1: Manufacturer: syz [ 54.247960][ T5951] usb 5-1: config 0 descriptor?? [ 54.270158][ T6013] asix 7-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 54.273284][ T6013] asix 7-1:0.0: probe with driver asix failed with error -71 [ 54.279404][ T6013] usb 7-1: USB disconnect, device number 3 [ 54.454921][ T5951] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 54.459449][ T5951] usb 5-1: USB disconnect, device number 3 [ 54.796386][ T5945] Bluetooth: hci0: command tx timeout [ 54.796438][ T5957] Bluetooth: hci1: command tx timeout [ 54.874563][ T5957] Bluetooth: hci2: command tx timeout [ 54.874579][ T5945] Bluetooth: hci3: command tx timeout [ 54.939228][ T6222] netlink: 372 bytes leftover after parsing attributes in process `syz.3.82'. [ 55.135508][ T6229] Bluetooth: MGMT ver 1.23 [ 55.144677][ T10] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 55.164477][ T6232] capability: warning: `syz.2.90' uses deprecated v2 capabilities in a way that may be insecure [ 55.294539][ T10] usb 6-1: Using ep0 maxpacket: 32 [ 55.298279][ T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 55.301650][ T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 55.304981][ T10] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 55.307836][ T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 55.312332][ T10] usb 6-1: config 0 descriptor?? [ 55.322878][ T10] hub 6-1:0.0: USB hub found [ 55.391878][ T40] audit: type=1326 audit(1747949222.395:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6243 comm="syz.2.96" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x0 [ 55.402596][ T6245] tipc: Started in network mode [ 55.404287][ T6245] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 55.407606][ T6245] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 55.410567][ T6245] tipc: Enabled bearer , priority 10 [ 55.524961][ T10] hub 6-1:0.0: 1 port detected [ 55.864594][ T1332] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 56.024523][ T1332] usb 8-1: Using ep0 maxpacket: 16 [ 56.028337][ T1332] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 56.032609][ T1332] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 56.036715][ T1332] usb 8-1: New USB device found, idVendor=0079, idProduct=1803, bcdDevice= 0.00 [ 56.040304][ T1332] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 56.045538][ T1332] usb 8-1: config 0 descriptor?? [ 56.129125][ T10] hub 6-1:0.0: activate --> -90 [ 56.260412][ T6253] mac80211_hwsim hwsim7 wlan1: entered promiscuous mode [ 56.263785][ T6253] lo: entered promiscuous mode [ 56.266607][ T6252] lo: left promiscuous mode [ 56.269007][ T6252] mac80211_hwsim hwsim7 wlan1: left promiscuous mode [ 56.456776][ T1332] hid_mf 0003:0079:1803.0003: unknown main item tag 0x0 [ 56.459551][ T1332] hid_mf 0003:0079:1803.0003: unknown main item tag 0x0 [ 56.462427][ T1332] hid_mf 0003:0079:1803.0003: unknown main item tag 0x0 [ 56.466565][ T1332] hid_mf 0003:0079:1803.0003: unknown main item tag 0x0 [ 56.471254][ T1332] hid_mf 0003:0079:1803.0003: unknown main item tag 0x0 [ 56.477941][ T1332] hid_mf 0003:0079:1803.0003: hidraw1: USB HID v0.00 Device [HID 0079:1803] on usb-dummy_hcd.3-1/input0 [ 56.482213][ T1332] hid_mf 0003:0079:1803.0003: Force feedback for HJZ Mayflash game controller adapters by Marcel Hasler [ 56.490833][ T6259] sch_tbf: burst 4398 is lower than device lo mtu (65550) ! [ 56.531157][ T5985] usb 6-1: USB disconnect, device number 2 [ 56.535499][ T6013] tipc: Node number set to 1 [ 56.655159][ T1332] usb 8-1: USB disconnect, device number 2 [ 56.754555][ T10] usb 6-1-port1: config error [ 56.894548][ T6013] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 56.989056][ T6271] Zero length message leads to an empty skb [ 57.065134][ T6013] usb 7-1: Using ep0 maxpacket: 16 [ 57.076199][ T6013] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xC6, changing to 0x86 [ 57.080369][ T6013] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x86 has invalid wMaxPacketSize 0 [ 57.083540][ T6013] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x86 has invalid maxpacket 0 [ 57.088938][ T6013] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 57.092943][ T6013] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 57.100435][ T6013] usb 7-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=c2.87 [ 57.104491][ T6013] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 57.114453][ T6013] usb 7-1: Product: syz [ 57.116292][ T6013] usb 7-1: Manufacturer: syz [ 57.118284][ T6013] usb 7-1: SerialNumber: syz [ 57.122338][ T6013] usb 7-1: config 0 descriptor?? [ 57.127819][ T6013] port100 7-1:0.0: NFC: Could not get supported command types [ 57.279393][ T6283] usb 2-1: USB disconnect, device number 2 [ 57.328486][ T6013] usb 7-1: USB disconnect, device number 4 [ 57.334347][ T6287] mmap: syz.3.114 (6287) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 57.424252][ T6292] batadv_slave_1: entered promiscuous mode [ 57.427003][ T6292] team_slave_0: entered promiscuous mode [ 57.430251][ T6292] netlink: 4 bytes leftover after parsing attributes in process `syz.3.116'. [ 57.440003][ T6292] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 57.475419][ T6292] batadv_slave_1 (unregistering): left promiscuous mode [ 57.477680][ T6292] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 57.546374][ T6294] netlink: 4768 bytes leftover after parsing attributes in process `syz.1.111'. [ 57.571885][ T6291] team_slave_0: left promiscuous mode [ 58.127329][ T6310] IPVS: rr: UDP 224.0.0.2:0 - no destination available [ 58.129657][ T65] IPVS: starting estimator thread 0... [ 58.217757][ T6319] IPVS: using max 44 ests per chain, 105600 per kthread [ 58.430502][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 58.576177][ T1332] IPVS: starting estimator thread 0... [ 58.664830][ T6351] IPVS: using max 44 ests per chain, 105600 per kthread [ 58.971853][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 59.014501][ T1332] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 59.176159][ T1332] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 59.179754][ T1332] usb 8-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d [ 59.182773][ T1332] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 59.187729][ T1332] usb 8-1: config 0 descriptor?? [ 59.383756][ T6404] netlink: 4 bytes leftover after parsing attributes in process `syz.0.161'. [ 59.391198][ T1332] usb 8-1: USB disconnect, device number 3 [ 59.555602][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 59.674658][ T6013] usb 6-1: new full-speed USB device number 3 using dummy_hcd [ 59.828975][ T6013] usb 6-1: New USB device found, idVendor=0bda, idProduct=0139, bcdDevice=b4.99 [ 59.831928][ T6013] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 59.834377][ T6013] usb 6-1: Product: syz [ 59.836270][ T6013] usb 6-1: Manufacturer: syz [ 59.837898][ T6013] usb 6-1: SerialNumber: syz [ 59.840495][ T6013] usb 6-1: config 0 descriptor?? [ 59.955165][ T6013] rtsx_usb 6-1:0.0: probe with driver rtsx_usb failed with error -22 [ 59.996982][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 60.046031][ T0] NOHZ tick-stop error: local softirq work is pending, handler #01!!! [ 60.049559][ T10] usb 6-1: USB disconnect, device number 3 [ 60.094844][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 61.018073][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 61.022823][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 61.026496][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 61.034539][ T6374] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 61.694479][ T65] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 61.847425][ T65] usb 6-1: New USB device found, idVendor=0547, idProduct=6801, bcdDevice=43.6f [ 61.850291][ T65] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 61.852915][ T65] usb 6-1: Product: syz [ 61.854222][ T65] usb 6-1: Manufacturer: syz [ 61.855768][ T65] usb 6-1: SerialNumber: syz [ 61.858446][ T65] usb 6-1: config 0 descriptor?? [ 61.862191][ T65] gspca_main: touptek-2.14.0 probing 0547:6801 [ 62.004539][ T2145] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 62.066113][ T65] usb 6-1: USB disconnect, device number 4 [ 62.154930][ T2145] usb 5-1: Using ep0 maxpacket: 32 [ 62.157953][ T2145] usb 5-1: config 0 has an invalid interface number: 244 but max is 0 [ 62.160511][ T2145] usb 5-1: config 0 has no interface number 0 [ 62.162489][ T2145] usb 5-1: config 0 interface 244 altsetting 2 endpoint 0x2 has invalid maxpacket 512, setting to 64 [ 62.166299][ T2145] usb 5-1: config 0 interface 244 has no altsetting 0 [ 62.170500][ T2145] usb 5-1: New USB device found, idVendor=0e41, idProduct=4750, bcdDevice=26.9c [ 62.173340][ T2145] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 62.176379][ T2145] usb 5-1: Product: syz [ 62.177746][ T2145] usb 5-1: Manufacturer: syz [ 62.179276][ T2145] usb 5-1: SerialNumber: syz [ 62.184225][ T2145] usb 5-1: config 0 descriptor?? [ 62.195382][ T2145] snd_usb_toneport 5-1:0.244: Line 6 GuitarPort found [ 62.397067][ T2145] snd_usb_toneport 5-1:0.244: cannot get proper max packet size [ 62.400257][ T2145] snd_usb_toneport 5-1:0.244: Line 6 GuitarPort now disconnected [ 62.406274][ T2145] snd_usb_toneport 5-1:0.244: probe with driver snd_usb_toneport failed with error -22 [ 62.597470][ T2145] usb 5-1: USB disconnect, device number 4 [ 62.721745][ T6507] kvm: pic: non byte read [ 62.724925][ T6507] kvm: pic: level sensitive irq not supported [ 62.725176][ T6507] kvm: pic: non byte read [ 62.730138][ T6507] kvm: pic: level sensitive irq not supported [ 62.730368][ T6507] kvm: pic: non byte read [ 62.735064][ T6507] kvm: pic: level sensitive irq not supported [ 62.735299][ T6507] kvm: pic: non byte read [ 62.923084][ T40] audit: type=1326 audit(1747949229.925:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6510 comm="syz.1.204" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x0 [ 63.151026][ T6514] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 63.554552][ T1332] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 63.633345][ T6554] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 63.706299][ T1332] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 63.709950][ T1332] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 63.715865][ T1332] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 63.720283][ T1332] usb 8-1: New USB device found, idVendor=0079, idProduct=0011, bcdDevice= 0.00 [ 63.721319][ T6558] vcan0: tx drop: invalid da for name 0x0000000000000001 [ 63.723426][ T1332] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 63.724928][ T1332] usb 8-1: config 0 descriptor?? [ 63.780649][ T6570] tipc: Started in network mode [ 63.782775][ T6570] tipc: Node identity aaaaaaaaaa3, cluster identity 4711 [ 63.788129][ T6570] tipc: Enabled bearer , priority 10 [ 63.813796][ T6572] ipvlan2: entered promiscuous mode [ 63.817013][ T6572] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 63.819903][ T6572] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 64.054530][ T837] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 64.147646][ T1332] dragonrise 0003:0079:0011.0004: item fetching failed at offset 1/5 [ 64.151100][ T1332] dragonrise 0003:0079:0011.0004: parse failed [ 64.153782][ T1332] dragonrise 0003:0079:0011.0004: probe with driver dragonrise failed with error -22 [ 64.161451][ T40] audit: type=1800 audit(1747949231.165:4): pid=6593 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.239" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 64.204552][ T837] usb 7-1: Using ep0 maxpacket: 8 [ 64.209280][ T837] usb 7-1: config index 0 descriptor too short (expected 301, got 45) [ 64.212019][ T837] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 64.218028][ T837] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 64.221134][ T837] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 64.224270][ T837] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 64.228299][ T837] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 64.233353][ T837] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 64.326488][ T6601] netlink: 44 bytes leftover after parsing attributes in process `syz.0.243'. [ 64.346869][ T1332] usb 8-1: USB disconnect, device number 4 [ 64.360020][ T6603] netlink: 64 bytes leftover after parsing attributes in process `syz.0.244'. [ 64.450694][ T837] usb 7-1: usb_control_msg returned -32 [ 64.452508][ T837] usbtmc 7-1:16.0: can't read capabilities [ 64.581993][ T40] audit: type=1326 audit(1747949231.585:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6618 comm="syz.0.252" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000 [ 64.588730][ T40] audit: type=1326 audit(1747949231.585:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6618 comm="syz.0.252" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000 [ 64.595644][ T40] audit: type=1326 audit(1747949231.595:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6618 comm="syz.0.252" exe="/syz-executor" sig=0 arch=40000003 syscall=163 compat=1 ip=0xf70be579 code=0x7ffc0000 [ 64.605413][ T40] audit: type=1326 audit(1747949231.595:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6618 comm="syz.0.252" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000 [ 64.613439][ T40] audit: type=1326 audit(1747949231.595:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6618 comm="syz.0.252" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000 [ 64.622020][ T40] audit: type=1326 audit(1747949231.595:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6618 comm="syz.0.252" exe="/syz-executor" sig=0 arch=40000003 syscall=241 compat=1 ip=0xf70be579 code=0x7ffc0000 [ 64.630133][ T40] audit: type=1326 audit(1747949231.595:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6618 comm="syz.0.252" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000 [ 64.637855][ T40] audit: type=1326 audit(1747949231.595:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6618 comm="syz.0.252" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000 [ 64.805134][ T6622] usbtmc 7-1:16.0: usb_control_msg returned -32 [ 64.807876][ T6013] usb 7-1: USB disconnect, device number 5 [ 64.877912][ T6626] input: syz0 as /devices/virtual/input/input5 [ 64.922007][ T6629] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input6 [ 65.005864][ T10] tipc: Node number set to 10136234 [ 65.387035][ T5951] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 65.457071][ T6651] netlink: 4 bytes leftover after parsing attributes in process `syz.2.265'. [ 65.463784][ T6651] netlink: 4 bytes leftover after parsing attributes in process `syz.2.265'. [ 65.544599][ T5951] usb 8-1: Using ep0 maxpacket: 32 [ 65.547732][ T5951] usb 8-1: config index 0 descriptor too short (expected 48155, got 27) [ 65.550516][ T5951] usb 8-1: config 249 has too many interfaces: 50, using maximum allowed: 32 [ 65.554269][ T5951] usb 8-1: config 249 has 2 interfaces, different from the descriptor's value: 50 [ 65.557644][ T5951] usb 8-1: config 249 has no interface number 1 [ 65.561251][ T5951] usb 8-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=20.a3 [ 65.564324][ T5951] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 65.567464][ T5951] usb 8-1: Product: syz [ 65.568844][ T5951] usb 8-1: Manufacturer: syz [ 65.570715][ T5951] usb 8-1: SerialNumber: syz [ 65.784692][ T5951] usb 8-1: Could not set interface, error -71 [ 65.791937][ T5951] usb 8-1: USB disconnect, device number 5 [ 65.809840][ T5956] udevd[5956]: setting owner of /dev/bus/usb/008/005 to uid=0, gid=0 failed: No such file or directory [ 65.861088][ T6692] capability: warning: `syz.0.283' uses 32-bit capabilities (legacy support in use) [ 65.968821][ T6699] netlink: 104 bytes leftover after parsing attributes in process `syz.1.286'. [ 66.076660][ T6703] netlink: 8 bytes leftover after parsing attributes in process `syz.0.288'. [ 67.464915][ T6757] block nbd0: NBD_DISCONNECT [ 67.694531][ T5951] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 67.774563][ T29] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 67.774564][ T5985] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 67.846276][ T5951] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 67.849749][ T5951] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 67.852958][ T5951] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 67.860650][ T5951] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 67.863852][ T5951] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 67.867281][ T5951] usb 7-1: Product: syz [ 67.869024][ T5951] usb 7-1: Manufacturer: syz [ 67.870945][ T5951] usb 7-1: SerialNumber: syz [ 67.876014][ T5951] cdc_ncm 7-1:1.0: CDC Union missing and no IAD found [ 67.878296][ T5951] cdc_ncm 7-1:1.0: bind() failure [ 67.924532][ T5985] usb 8-1: Using ep0 maxpacket: 16 [ 67.924607][ T29] usb 5-1: Using ep0 maxpacket: 16 [ 67.927531][ T5985] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 67.929987][ T29] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 67.931399][ T5985] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 67.935802][ T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 67.940385][ T5985] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 67.942955][ T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 67.945893][ T5985] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 67.949904][ T29] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 67.952398][ T5985] usb 8-1: Product: syz [ 67.956360][ T29] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 67.957703][ T5985] usb 8-1: Manufacturer: syz [ 67.963707][ T29] usb 5-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 67.963974][ T5985] usb 8-1: SerialNumber: syz [ 67.967754][ T29] usb 5-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 67.972311][ T29] usb 5-1: Manufacturer: syz [ 67.976971][ T29] usb 5-1: config 0 descriptor?? [ 68.080104][ T10] usb 7-1: USB disconnect, device number 6 [ 68.244513][ T29] rc_core: IR keymap rc-hauppauge not found [ 68.246806][ T29] Registered IR keymap rc-empty [ 68.248831][ T29] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 68.264620][ T29] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 68.285908][ T29] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0 [ 68.290656][ T29] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input7 [ 68.297993][ T29] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 68.314606][ T29] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 68.334567][ T29] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 68.354556][ T29] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 68.374671][ T29] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 68.380414][ T5985] usb 8-1: 0:2 : does not exist [ 68.388518][ T6769] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.391478][ T6769] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 68.394898][ T29] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 68.424585][ T29] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 68.444562][ T29] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 68.464589][ T29] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 68.484722][ T29] mceusb 5-1:0.0: Error: mce write submit urb error = -90 [ 68.505824][ T29] mceusb 5-1:0.0: Registered with mce emulator interface version 1 [ 68.508501][ T29] mceusb 5-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 68.614197][ T6785] netlink: 8 bytes leftover after parsing attributes in process `syz.2.321'. [ 68.620085][ T6785] netlink: 8 bytes leftover after parsing attributes in process `syz.2.321'. [ 68.638897][ T837] usb 5-1: USB disconnect, device number 5 [ 68.779106][ T5957] Bluetooth: hci1: Malformed Event: 0x13 [ 68.784677][ T5985] usb 8-1: 5:0: failed to get current value for ch 0 (-22) [ 68.809766][ T5985] usb 8-1: USB disconnect, device number 6 [ 68.823033][ T5956] udevd[5956]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 69.313335][ T6835] netlink: 24 bytes leftover after parsing attributes in process `syz.3.343'. [ 69.492999][ T6854] netlink: 72 bytes leftover after parsing attributes in process `syz.3.351'. [ 70.035897][ T6874] macsec0: entered promiscuous mode [ 70.038143][ T6874] macsec0: entered allmulticast mode [ 70.039963][ T6874] veth1_macvtap: entered allmulticast mode [ 70.537549][ T6890] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 70.540321][ T6890] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 70.552052][ T6890] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 70.555656][ T6896] netlink: 44 bytes leftover after parsing attributes in process `syz.3.370'. [ 70.566826][ T6890] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 70.571523][ T6890] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 70.580067][ T6890] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 70.583909][ T6890] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 70.591184][ T6890] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 70.623746][ T6890] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 70.821066][ T6916] netlink: 44 bytes leftover after parsing attributes in process `syz.3.379'. [ 70.872860][ T6922] 9pnet: p9_errstr2errno: server reported unknown error õ1 g;-‡~ [ 70.878147][ T1417] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.878929][ T6924] syzkaller1: entered promiscuous mode [ 70.880539][ T1417] ieee802154 phy1 wpan1: encryption failed: -22 [ 70.882230][ T6924] syzkaller1: entered allmulticast mode [ 70.926374][ T1332] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 71.012968][ T6928] bond0: entered promiscuous mode [ 71.017086][ T6928] bond_slave_0: entered promiscuous mode [ 71.019306][ T6928] bond_slave_1: entered promiscuous mode [ 71.085046][ T1332] usb 6-1: Using ep0 maxpacket: 8 [ 71.087948][ T1332] usb 6-1: config 0 has an invalid interface number: 145 but max is 0 [ 71.090525][ T1332] usb 6-1: config 0 has no interface number 0 [ 71.095941][ T6938] netlink: 44 bytes leftover after parsing attributes in process `syz.0.389'. [ 71.105597][ T1332] usb 6-1: New USB device found, idVendor=2833, idProduct=0201, bcdDevice=d8.06 [ 71.108471][ T1332] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 71.111324][ T1332] usb 6-1: Product: syz [ 71.112805][ T1332] usb 6-1: Manufacturer: syz [ 71.114279][ T1332] usb 6-1: SerialNumber: syz [ 71.118803][ T1332] usb 6-1: config 0 descriptor?? [ 71.221086][ T6946] netlink: 232 bytes leftover after parsing attributes in process `syz.0.392'. [ 71.338014][ T1332] usb 6-1: USB disconnect, device number 5 [ 71.484779][ T6963] netlink: 20 bytes leftover after parsing attributes in process `syz.0.400'. [ 71.687707][ T40] kauditd_printk_skb: 12 callbacks suppressed [ 71.687723][ T40] audit: type=1326 audit(1747949238.695:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.2.405" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000 [ 71.696967][ T40] audit: type=1326 audit(1747949238.695:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.2.405" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000 [ 71.703628][ T40] audit: type=1326 audit(1747949238.695:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.2.405" exe="/syz-executor" sig=0 arch=40000003 syscall=132 compat=1 ip=0xf707e579 code=0x7ffc0000 [ 71.710845][ T40] audit: type=1326 audit(1747949238.695:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.2.405" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000 [ 71.718571][ T40] audit: type=1326 audit(1747949238.695:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.2.405" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000 [ 71.726389][ T40] audit: type=1326 audit(1747949238.695:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.2.405" exe="/syz-executor" sig=0 arch=40000003 syscall=434 compat=1 ip=0xf707e579 code=0x7ffc0000 [ 71.733307][ T40] audit: type=1326 audit(1747949238.695:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.2.405" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000 [ 71.741378][ T40] audit: type=1326 audit(1747949238.695:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.2.405" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000 [ 71.750192][ T40] audit: type=1326 audit(1747949238.695:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.2.405" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf707e579 code=0x7ffc0000 [ 71.757115][ T40] audit: type=1326 audit(1747949238.705:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6972 comm="syz.2.405" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000 [ 71.859412][ T6982] netlink: 20 bytes leftover after parsing attributes in process `syz.1.409'. [ 71.966644][ T837] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 72.125967][ T837] usb 5-1: New USB device found, idVendor=041e, idProduct=3100, bcdDevice= 0.00 [ 72.128990][ T837] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 72.134015][ T837] usb 5-1: config 0 descriptor?? [ 72.216618][ T1332] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 72.379334][ T1332] usb 8-1: New USB device found, idVendor=0fc5, idProduct=1227, bcdDevice=da.8e [ 72.382869][ T1332] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 72.386520][ T1332] usb 8-1: Product: syz [ 72.388070][ T1332] usb 8-1: Manufacturer: syz [ 72.389576][ T1332] usb 8-1: SerialNumber: syz [ 72.392286][ T1332] usb 8-1: config 0 descriptor?? [ 72.398907][ T1332] usbsevseg 8-1:0.0: USB 7 Segment device now attached [ 72.544023][ T837] creative-sb0540 0003:041E:3100.0005: No inputs registered, leaving [ 72.548014][ T837] creative-sb0540 0003:041E:3100.0005: hidraw0: USB HID v1.01 Device [HID 041e:3100] on usb-dummy_hcd.0-1/input0 [ 72.554607][ T5945] Bluetooth: hci1: command 0x0c1a tx timeout [ 72.600411][ T1332] usb 8-1: USB disconnect, device number 7 [ 72.605382][ T1332] usbsevseg 8-1:0.0: USB 7 Segment now disconnected [ 72.634675][ T5945] Bluetooth: hci3: command 0x0c1a tx timeout [ 72.634710][ T5957] Bluetooth: hci2: command 0x0c1a tx timeout [ 72.746771][ T5985] usb 5-1: USB disconnect, device number 6 [ 73.074610][ T837] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 73.227520][ T837] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 73.230947][ T837] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 73.234192][ T7006] netlink: 20 bytes leftover after parsing attributes in process `syz.3.419'. [ 73.236873][ T837] usb 6-1: config 0 descriptor?? [ 73.240960][ T837] cp210x 6-1:0.0: cp210x converter detected [ 73.332280][ T7013] netlink: 72 bytes leftover after parsing attributes in process `syz.0.422'. [ 73.338970][ T7013] syz_tun: entered allmulticast mode [ 73.373012][ T7011] syz_tun: left allmulticast mode [ 73.539286][ T7024] netlink: 12 bytes leftover after parsing attributes in process `syz.0.428'. [ 73.648199][ T7033] sctp: [Deprecated]: syz.0.430 (pid 7033) Use of int in maxseg socket option. [ 73.648199][ T7033] Use struct sctp_assoc_value instead [ 73.650705][ T837] usb 6-1: cp210x converter now attached to ttyUSB0 [ 73.658208][ T837] usb 6-1: USB disconnect, device number 6 [ 73.664692][ T837] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 73.668983][ T837] cp210x 6-1:0.0: device disconnected [ 73.814556][ T6013] usb 8-1: new high-speed USB device number 8 using dummy_hcd [ 73.964555][ T6013] usb 8-1: Using ep0 maxpacket: 8 [ 73.968168][ T6013] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 73.971456][ T6013] usb 8-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a [ 73.974646][ T6013] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 73.979594][ T6013] usb 8-1: config 0 descriptor?? [ 73.984636][ T6013] gspca_main: vc032x-2.14.0 probing 046d:0892 [ 74.534358][ T7048] netlink: 12 bytes leftover after parsing attributes in process `syz.0.437'. [ 74.634616][ T5957] Bluetooth: hci1: command 0x0c1a tx timeout [ 74.692849][ T7058] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] SMP KASAN NOPTI [ 74.697262][ T7058] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f] [ 74.701846][ T7058] CPU: 1 UID: 0 PID: 7058 Comm: syz.2.442 Not tainted 6.15.0-rc7-syzkaller-00082-g5cdb2c77c4c3 #0 PREEMPT(full) [ 74.706332][ T7058] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 74.710597][ T7058] RIP: 0010:iter_file_splice_write+0xa4e/0x1150 [ 74.713120][ T7058] Code: 00 48 89 fa 48 c1 ea 03 80 3c 1a 00 0f 85 1a 05 00 00 4d 8b 65 10 49 c7 45 10 00 00 00 00 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 <80> 3c 1a 00 0f 85 ee 04 00 00 49 8b 54 24 08 4c 89 ee 4c 89 f7 83 [ 74.714674][ T5957] Bluetooth: hci3: command 0x0c1a tx timeout [ 74.714856][ T5945] Bluetooth: hci2: command 0x0c1a tx timeout [ 74.720585][ T7058] RSP: 0018:ffffc90004c9f908 EFLAGS: 00010202 [ 74.720605][ T7058] RAX: 0000000000000ae4 RBX: dffffc0000000000 RCX: ffffc9000c402000 [ 74.720615][ T7058] RDX: 0000000000000001 RSI: ffffffff82418306 RDI: 0000000000000008 [ 74.720625][ T7058] RBP: 0000000000000001 R08: 0000000000000006 R09: 0000000000000000 [ 74.720635][ T7058] R10: 7fffffffffffffa8 R11: 0000000000000000 R12: 0000000000000000 [ 74.720644][ T7058] R13: ffff888022de7828 R14: ffff88804c69d000 R15: 7fffffffffffffa8 [ 74.720655][ T7058] FS: 0000000000000000(0000) GS:ffff8880978e7000(0063) knlGS:00000000f506eb40 [ 74.720687][ T7058] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 74.744655][ T7058] CR2: 000000000c3e6349 CR3: 000000006b2d0000 CR4: 0000000000352ef0 [ 74.747605][ T7058] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 74.750346][ T7058] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 74.753181][ T7058] Call Trace: [ 74.754260][ T7058] [ 74.755396][ T7058] ? __pfx_iter_file_splice_write+0x10/0x10 [ 74.757482][ T7058] ? __pfx_iter_file_splice_write+0x10/0x10 [ 74.759941][ T7058] direct_splice_actor+0x18f/0x6c0 [ 74.761833][ T7058] splice_direct_to_actor+0x342/0xa30 [ 74.763990][ T7058] ? __pfx_direct_splice_actor+0x10/0x10 [ 74.766318][ T7058] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 74.768778][ T7058] do_splice_direct+0x174/0x240 [ 74.770838][ T7058] ? __pfx_do_splice_direct+0x10/0x10 [ 74.773111][ T7058] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 74.775589][ T7058] ? rw_verify_area+0xcf/0x680 [ 74.777589][ T7058] do_sendfile+0xafd/0xe50 [ 74.779447][ T7058] ? __pfx_do_sendfile+0x10/0x10 [ 74.781505][ T7058] ? __ia32_sys_futex_time32+0x1d9/0x460 [ 74.783624][ T7058] ? __ia32_sys_futex_time32+0x2fc/0x460 [ 74.785455][ T7058] __ia32_compat_sys_sendfile+0x1e5/0x220 [ 74.787284][ T7058] ? __pfx___ia32_compat_sys_sendfile+0x10/0x10 [ 74.789221][ T7058] ? rcu_is_watching+0x12/0xc0 [ 74.790747][ T7058] ? rcu_is_watching+0x12/0xc0 [ 74.792245][ T7058] __do_fast_syscall_32+0x73/0x120 [ 74.793863][ T7058] do_fast_syscall_32+0x32/0x80 [ 74.795460][ T7058] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 74.797836][ T7058] RIP: 0023:0xf707e579 [ 74.799383][ T7058] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 74.805927][ T7058] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 00000000000000bb [ 74.809318][ T7058] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000000008 [ 74.811945][ T7058] RDX: 0000000000000000 RSI: 000000007ffff000 RDI: 0000000000000000 [ 74.814390][ T7058] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 74.817192][ T7058] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 74.820084][ T7058] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 74.823055][ T7058] [ 74.824038][ T7058] Modules linked in: [ 74.826014][ T7058] ---[ end trace 0000000000000000 ]--- [ 74.827997][ T7058] RIP: 0010:iter_file_splice_write+0xa4e/0x1150 [ 74.830740][ T7058] Code: 00 48 89 fa 48 c1 ea 03 80 3c 1a 00 0f 85 1a 05 00 00 4d 8b 65 10 49 c7 45 10 00 00 00 00 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 <80> 3c 1a 00 0f 85 ee 04 00 00 49 8b 54 24 08 4c 89 ee 4c 89 f7 83 [ 74.839603][ T7058] RSP: 0018:ffffc90004c9f908 EFLAGS: 00010202 [ 74.842164][ T7058] RAX: 0000000000000ae4 RBX: dffffc0000000000 RCX: ffffc9000c402000 [ 74.847218][ T7058] RDX: 0000000000000001 RSI: ffffffff82418306 RDI: 0000000000000008 [ 74.850531][ T7058] RBP: 0000000000000001 R08: 0000000000000006 R09: 0000000000000000 [ 74.853817][ T7058] R10: 7fffffffffffffa8 R11: 0000000000000000 R12: 0000000000000000 [ 74.857107][ T7058] R13: ffff888022de7828 R14: ffff88804c69d000 R15: 7fffffffffffffa8 [ 74.860430][ T7058] FS: 0000000000000000(0000) GS:ffff8880979e7000(0063) knlGS:00000000f506eb40 [ 74.864053][ T7058] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 74.867203][ T7058] CR2: 00000000f7423230 CR3: 000000006b2d0000 CR4: 0000000000352ef0 [ 74.870522][ T7058] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 74.873866][ T7058] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 74.877280][ T7058] Kernel panic - not syncing: Fatal exception [ 74.880550][ T7058] Kernel Offset: disabled [ 74.882324][ T7058] Rebooting in 86400 seconds.. VM DIAGNOSIS: 21:27:21 Registers: info registers vcpu 0 CPU#0 RAX=00000000000e46b4 RBX=0000000000000000 RCX=ffffffff8b6993e9 RDX=ffffed10056465be RSI=ffffffff8bf48be0 RDI=ffffffff81913731 RBP=fffffbfff1c12ee8 RSP=ffffffff8e007e10 R8 =0000000000000000 R9 =ffffed10056465bd R10=ffff88802b232deb R11=0000000000000000 R12=0000000000000000 R13=ffffffff8e097740 R14=ffffffff90854b10 R15=0000000000000000 RIP=ffffffff8b697c7f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880977e7000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f7456188 CR3=000000006c21c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff854c5b75 RDI=ffffffff9ade4c80 RBP=ffffffff9ade4c40 RSP=ffffc90004c9f300 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b R12=0000000000000000 R13=0000000000000030 R14=ffffffff9ade4c40 R15=ffffffff854c5b10 RIP=ffffffff854c5b9f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880978e7000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000000c3e6349 CR3=000000006b2d0000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=ffffffff81699a1d RBX=0000000000000001 RCX=ffffc90004630001 RDX=0000000000000000 RSI=ffffffff82359982 RDI=ffff888022ec2884 RBP=ffffc9000462f760 RSP=ffffc9000462f6a8 R8 =0000000000000000 R9 =0000000000000000 R10=ffffc9000462f718 R11=0000000000013595 R12=ffffffff81a69170 R13=ffffc9000462f718 R14=0000000000000000 R15=ffff888022ec2440 RIP=ffffffff81699a1d RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880979e7000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000005820d99c CR3=0000000065b22000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=ffff888000e92b00 RBX=ffff888000e92780 RCX=000000000020001a RDX=000000000020001b RSI=ffff888000e92780 RDI=ffffc90002c3fc20 RBP=ffffc90002c3fc50 RSP=ffffc90002c3fba0 R8 =0000000000000001 R9 =ffffffff821f4849 R10=0000000000000000 R11=0000000000000000 R12=ffff888000e92b00 R13=ffffea000003a480 R14=0000000000000000 R15=000000000020001a RIP=ffffffff82149850 RFL=00000242 [---Z---] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f18f039d880 ffffffff 00c00000 GS =0000 ffff888097ae7000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000080000000 CR3=00000000200b3000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000104080 Opmask01=000000000000001f Opmask02=00000000ffff7fdf Opmask03=0000000020400004 Opmask04=00000000fffffbff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0030706f6f6c2f6b 636f6c622f6c6175 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055df7fd0a720 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055df7fd04280 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f18efdf1b20 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 ffffffffffffffff ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5fbfb41dd991f1df 737326a9515599b6 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737372f2 7373737373737373 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 30706f6f6c2f6b63 6f6c622f6c617574 7269762f73656369 7665642f7379732f ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2cccc76eaae282ac 000055da2226cc93 00000000000000c1 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055df7fd06320 000055df7fd09c28 0000000000000041 000000000000302e ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f18efdf1c30 000055df7fd0f2d0 0000000000000121 0000003077617264 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c44422c43422c42 422c41422c39422c 38422c37422c3242 2c31422c30422c44 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 412c36412c35412c 34412c33412c3141 2c46392c45392c38 392c36392c45382c ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 43382c41382c3938 2c38382c37382c36 382c35382c34382c 33382c32382c3138 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00394132302c3841 32302c344132302c 314132302c323832 302c463532302c44 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000