last executing test programs: 4.280082333s ago: executing program 1 (id=896): socket(0x11, 0x3, 0x0) socket(0x11, 0x3, 0x8) socket(0x11, 0xa, 0x8) syz_emit_ethernet(0x2a, &(0x7f0000000080)=ANY=[@ANYBLOB="4aa164e4aaaabbbbbbbbbbbb0800452e001c006600000801907800000000ffffffff1100907800000000"], 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x40000) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f0000000140)=0xb00, 0x4) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) sendmsg$can_raw(r2, &(0x7f0000000440)={&(0x7f0000000780)={0x1d, r3}, 0x10, &(0x7f0000000200)={&(0x7f0000001100)=@can={{0x0, 0x0, 0x0, 0x1}, 0x1, 0x1, 0x0, 0x0, "09151995c95f32cc"}, 0x10}}, 0x44001) recvmmsg(r2, &(0x7f0000000c80)=[{{0x0, 0x0, 0x0}, 0xeb}, {{0x0, 0x0, 0x0}, 0x8001}], 0x2, 0x2021, 0x0) r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='rpc_buf_alloc\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18) sendmsg$netlink(r4, &(0x7f0000000040)={0x0, 0x2f, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@ipv4_newrule={0x1c, 0x20, 0x301, 0x70bd2c, 0x25dfdbff, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x1c}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0) 3.310669802s ago: executing program 1 (id=904): bind$inet6(0xffffffffffffffff, 0x0, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000040)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0x18, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x0, {[@mptcp=@ack={0x1e, 0x4, 0x75c}]}}}}}}}}, 0x0) 3.310280809s ago: executing program 1 (id=905): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000080000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0, 0x0, 0x7ff}, 0x18) mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103) acct(&(0x7f00000001c0)='./file0\x00') clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) nanosleep(&(0x7f0000000040)={r1, r2+60000000}, 0x0) 3.11072628s ago: executing program 0 (id=907): r0 = syz_clone(0x10000400, 0x0, 0xfe26, 0x0, 0x0, 0x0) ptrace(0x10, r0) r1 = socket$kcm(0x2, 0x1, 0x84) r2 = openat$pidfd(0xffffff9c, &(0x7f0000000100), 0x101000, 0x0) r3 = openat$snapshot(0xffffff9c, &(0x7f0000000140), 0x40000, 0x0) pidfd_getfd(r2, r3, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014}, 0x48) sendmsg$inet(r1, &(0x7f0000000680)={&(0x7f0000000000)={0x2, 0x4e24, @rand_addr=0x640100ff}, 0x10, &(0x7f0000000540)=[{&(0x7f0000000240)="f9", 0x1}], 0x1}, 0x4000080) socket$nl_netfilter(0x10, 0x3, 0xc) r4 = socket(0x10, 0x3, 0x0) r5 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_rx_ring(r5, 0x107, 0x5, &(0x7f0000000280)=@req3={0x1000, 0x80000000, 0x10, 0x39, 0x3, 0x0, 0x3}, 0x17) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) r6 = open(&(0x7f0000000140)='./file0\x00', 0x800, 0x70) mknodat$loop(r6, &(0x7f0000001600)='./file1\x00', 0x400, 0x0) chdir(&(0x7f0000000140)='./bus\x00') link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00') unlinkat(r6, &(0x7f0000000000)='./file1\x00', 0x0) unlink(&(0x7f0000000040)='./file1\x00') open(&(0x7f0000000200)='./bus\x00', 0x1612c2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'veth0_to_team\x00', 0x0}) r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x7, 0xfff, 0x7}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=r9, @ANYRES64=r7], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) r10 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r10, 0x2000300, 0xe, 0x0, &(0x7f0000000400)="63eced8e460100000002acf12a04", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=@newqdisc={0x78, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r8, {0x0, 0xd}, {0xffff, 0xffff}, {0x0, 0xc}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x3, 0x0, 0x8000, 0x4, 0x3a4c}, 0xffffff51, 0x1, 0x3, 0x10001, 0x6, 0xb, 0x1e, 0x9a, 0x7, 0x4, {0x5, 0xd, 0x4, 0x7fff, 0xd347, 0xcc}}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x4044000}, 0x44000) 2.430995879s ago: executing program 1 (id=916): socket$nl_route(0x10, 0x3, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000380)={'vcan0\x00', 0x0}) r2 = socket$can_j1939(0x1d, 0x2, 0x7) bind$can_j1939(r2, &(0x7f0000000080)={0x1d, r1, 0x0, {0x0, 0x0, 0x4}}, 0x18) sendmsg$can_j1939(r2, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee) setsockopt$SO_J1939_FILTER(r2, 0x6b, 0x1, &(0x7f00000003c0)=[{0x0, 0x0, {0x2, 0xf0}, {0x1, 0xf0, 0x4}, 0xff, 0xfd}, {0x2, 0x80, {0x2, 0xf0, 0x3}, {0x1, 0x1, 0x2}, 0x2, 0xff}, {0x0, 0x2, {0x0, 0xf0}, {0x0, 0x1, 0x2}}], 0x60) close(r2) sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=@newtfilter={0x24, 0x11, 0x101, 0x70bd25, 0x100000, {0x0, 0x0, 0x74, r1, {0xa, 0x8}, {0x5, 0xfff3}, {0xfff1, 0xffe0}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4010}, 0xc4) socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000300)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg(r4, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0) r5 = socket$inet6(0xa, 0x1, 0x0) creat(&(0x7f00000002c0)='./file0\x00', 0x0) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r6, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x1], 0x0, 0xfffffffffffffffd, 0x1, 0x1}}, 0x40) r7 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r7, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="020300090a0000000000000004000000030006000000000002000000ac1414000000000000000000020001000000000000000002fffffffb030005000000000002"], 0x50}}, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000180)={{{@in=@private, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@local, 0x0, 0x6c}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0x4}}, 0xe8) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) r8 = socket$key(0xf, 0x3, 0x2) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r9, 0xae03, 0xbe) sendmsg$key(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="02090000020000000000000000006ed50d169fd1259a4008814b921f312bdff9490675285f56e698679723b433298a597a017f02c5d6ebed91840ceb992d349e05fa69619c"], 0x10}}, 0x0) 2.216272548s ago: executing program 0 (id=920): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009c0000000b"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000380)='sys_enter\x00', r1}, 0x18) fstat64(0xffffffffffffffff, &(0x7f0000000200)) 2.159734861s ago: executing program 0 (id=921): socket(0x11, 0x3, 0x0) socket(0x11, 0x3, 0x8) socket(0x11, 0xa, 0x8) syz_emit_ethernet(0x2a, &(0x7f0000000080)=ANY=[@ANYBLOB="4aa164e4aaaabbbbbbbbbbbb0800452e001c006600000801907800000000ffffffff1100907800000000"], 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x40000) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f0000000140)=0xb00, 0x4) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) sendmsg$can_raw(r2, &(0x7f0000000440)={&(0x7f0000000780)={0x1d, r3}, 0x10, &(0x7f0000000200)={&(0x7f0000001100)=@can={{0x0, 0x0, 0x0, 0x1}, 0x1, 0x1, 0x0, 0x0, "09151995c95f32cc"}, 0x10}}, 0x44001) recvmmsg(r2, &(0x7f0000000c80)=[{{0x0, 0x0, 0x0}, 0xeb}, {{0x0, 0x0, 0x0}, 0x8001}], 0x2, 0x2021, 0x0) r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='rpc_buf_alloc\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18) sendmsg$netlink(r4, &(0x7f0000000040)={0x0, 0x2f, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@ipv4_newrule={0x1c, 0x20, 0x301, 0x70bd2c, 0x25dfdbff, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x1c}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000e0384e8ce57134a37cabcaadfdc9c59c9da1a67e64121fb5edab2300e770e58dd2a3b508afc8f457c738dc1aa248db89ae71ab4b563459f3fc109a03fa2a3a7235b238b6c559a339ac01e913ff9eb6ddcb386237f52575b01da9f240696329895288dba18d149b8071f4fbd3d9bbd40760c386023a"], &(0x7f0000000000)='syzkaller\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bind$rxrpc(0xffffffffffffffff, &(0x7f0000000000)=@in6={0x21, 0x2000, 0x2, 0x1c, {0xa, 0x4e20, 0x800, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x6}}, 0x24) ioctl$BLKPG(0xffffffffffffffff, 0x1269, &(0x7f00000001c0)={0x1, 0x0, 0x98, &(0x7f00000000c0)={0x0, 0x1000, 0xd}}) 1.222928754s ago: executing program 0 (id=922): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(blake2b-256-generic)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) getpid() sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}, @IFLA_MTU={0x8, 0x4, 0xffe1}]}, 0x3c}}, 0x0) syz_io_uring_setup(0x6a95, 0x0, 0x0, 0x0) syz_io_uring_setup(0x10d, &(0x7f00000006c0)={0x0, 0x1885, 0x80, 0x2}, 0x0, 0x0) socket$rds(0x15, 0x5, 0x0) r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="1c0000002d000100000000000000000004000080050011802e"], 0x1c}], 0x1}, 0x300) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000940)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000000c0)='contention_begin\x00', r3}, 0x18) r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f00000002c0)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f0000000400)=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x1}}, 0x20) syz_io_uring_setup(0x24fa, 0x0, &(0x7f0000000100), 0x0) sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@ipv6_delrule={0x30, 0x21, 0x1, 0x70bd26, 0x25dfdbfb, {0xa, 0x14, 0x20, 0x1, 0x8, 0x0, 0x0, 0x6, 0xf799ab692c18ca67}, [@FRA_SRC={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x34}}]}, 0x30}}, 0x0) r6 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) read$char_usb(r6, 0x0, 0x0) syz_usb_disconnect(0xffffffffffffffff) 1.222616765s ago: executing program 1 (id=923): socket(0x11, 0x3, 0x0) socket(0x11, 0x3, 0x8) socket(0x11, 0xa, 0x8) syz_emit_ethernet(0x2a, &(0x7f0000000080)=ANY=[@ANYBLOB="4aa164e4aaaabbbbbbbbbbbb0800452e001c006600000801907800000000ffffffff1100907800000000"], 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x40000) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f0000000140)=0xb00, 0x4) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) sendmsg$can_raw(r2, &(0x7f0000000440)={&(0x7f0000000780)={0x1d, r3}, 0x10, &(0x7f0000000200)={&(0x7f0000001100)=@can={{0x0, 0x0, 0x0, 0x1}, 0x1, 0x1, 0x0, 0x0, "09151995c95f32cc"}, 0x10}}, 0x44001) recvmmsg(r2, &(0x7f0000000c80)=[{{0x0, 0x0, 0x0}, 0xeb}, {{0x0, 0x0, 0x0}, 0x8001}], 0x2, 0x2021, 0x0) r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='rpc_buf_alloc\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18) sendmsg$netlink(r4, &(0x7f0000000040)={0x0, 0x2f, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@ipv4_newrule={0x1c, 0x20, 0x301, 0x70bd2c, 0x25dfdbff, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x1c}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000e0384e8ce57134a37cabcaadfdc9c59c9da1a67e64121fb5edab2300e770e58dd2a3b508afc8f457c738dc1aa248db89ae71ab4b563459f3fc109a03fa2a3a7235b238b6c559a339ac01e913ff9eb6ddcb386237f52575b01da9f240696329895288dba18d149b8071f4fbd3d9bbd40760c386023a"], &(0x7f0000000000)='syzkaller\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bind$rxrpc(0xffffffffffffffff, &(0x7f0000000000)=@in6={0x21, 0x2000, 0x2, 0x1c, {0xa, 0x4e20, 0x800, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x6}}, 0x24) ioctl$BLKPG(0xffffffffffffffff, 0x1269, &(0x7f00000001c0)={0x1, 0x0, 0x98, &(0x7f00000000c0)={0x0, 0x1000, 0xd}}) 1.222465779s ago: executing program 3 (id=924): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000400)=ANY=[@ANYBLOB="caf4f4b31fc98862d5e0efb71d4cf2f893e1f9e011400c81150bbcc0e25801506c79d65febdad5e3ec34546c8da991865e174b64e7653bd8232583c850fea36604c958c4794d3138698af2150476becb6600fb58615c0ada316cec9ea852f72197e17a215864ad"], &(0x7f0000000040)='syzkaller\x00', 0xffff0001, 0x0, 0x0, 0x41000, 0x9}, 0x94) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000140)=0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @tid=r0}, &(0x7f0000000300)=0x0) syz_emit_ethernet(0x32, &(0x7f0000000000)={@multicast, @empty, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @multicast1}, {{0x0, 0x6558, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "d8621b", 0x0, "2c17a9"}}}}}}, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x8}) timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) socket(0x2, 0x3, 0x0) ioctl$TCXONC(r2, 0x540a, 0x2) ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000000)=0x6) r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x6) write(r3, &(0x7f0000000100)="9e", 0x1) write(r3, &(0x7f00000002c0)="d7abd6190ba31fe44bf0e31036913d653596915a", 0x14) ioctl$TCSETS2(r3, 0x402c542b, &(0x7f0000000040)={0x2, 0x2, 0x8000, 0xf, 0x4, "fd955c6d99d4beff89d9ef00", 0x4, 0xa}) 1.008310416s ago: executing program 3 (id=925): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000002f80), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_SB_POOL_SET(r1, &(0x7f0000003280)={0x0, 0x0, &(0x7f0000003240)={&(0x7f0000002fc0)={0x54, r2, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x6}, {0x6, 0x11, 0x1}, {0x8, 0x13, 0xb39}, {0x5, 0x14, 0x1}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4c000}, 0x4000) ptrace$pokeuser(0x6, r0, 0x118, 0x4) ptrace$pokeuser(0x6, r0, 0x118, 0x6000003f) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"]) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0) sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=@newqdisc={0x70, 0x24, 0xe0b, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0x9}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x40, 0x2, {{0x1ff, 0x6, 0xfffffffd, 0x0, 0xfffffffd, 0x32d}, [@TCA_NETEM_ECN={0x8, 0x7, 0x1}, @TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0xfffff800, 0x8, 0x99f5, 0x2, 0x2}}]}]}}}]}, 0x70}}, 0x0) sendto$packet(r3, &(0x7f0000000580)="44c394f305916c4516999da20800", 0x36, 0x0, &(0x7f0000000440)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}, 0x14) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f0000000a00)={0x414, 0x1f, 0x1, 0x0, 0x0, "", [@nested={0x403, 0x0, 0x0, 0x1, [@typed={0xc, 0x1, 0x0, 0x0, @u64}, @nested={0x268, 0x2f, 0x0, 0x1, [@nested={0xc, 0xa2, 0x0, 0x1, [@typed={0x8, 0xed, 0x0, 0x0, @str='syz\x00'}]}, @typed={0x14, 0x136, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @nested={0x8, 0x88, 0x0, 0x1, [@typed={0x4, 0xc7}]}, @nested={0x141, 0x6c, 0x0, 0x1, [@generic="89ed77aab594e82d4130765cfe27a0474702f92d05922f9058b43bbd4ec0aaa9a29b63124516a94dcb22e6b848ff43c4ec16d62c5c5519d4f3be551d", @generic="d39fcaea8aedd4f2d112542cb024be83f11e60b3eb0431b54bf552948680dc1be5500553ff7ec1e37664c17a09e6c5aeaf6a93b6a435f09861142251f6b6d7ad9fff375e4e5fb5524271d4582c9bccc461c18bb51b9f4b80e2ae039a7154e85e51b21b87e65348e6a31ecd8b4686", @typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @generic="a68c349c349d87b44b6ccb4c6165748f623009feaff556951d44fa69d1b6c74e019e3ae39d8a1bf06ce795da916b38ef8bfc3b4a34f16b2770bd536bd71fd0b8ca2a2ca1d4c27481f11dea854f922c6eedf306c6eaefaaef25d38008e27e8079b660bf4c383fa855ba1c48c024da9ca571f91ea7e6740fc095d1505551418b7a3e7d2f3cb3b946d42bef99"]}, @nested={0xf5, 0x34, 0x0, 0x1, [@nested={0xa1, 0x58, 0x0, 0x1, [@generic="d5814ea826aa7f73f6edca3c5d5131ea47f09be4a580c1621f22b58b98dfde0bc50dc80408c634fb958a3349e70a7cc6d07d3875969a012ca44d37092de8ca6eaa444a5c6aa178a6e4e7b9497e96c5899f744933d157688bfc805a5f5e480946c8f23f08e88018474058b9ad1374ff20cdc3e9da42a4c44ed5a145460aad1349116b75058b1c9dbdadbce9d318aefabc9e3d195f540d8a2110", @nested={0x4}]}, @nested={0x8, 0xb8, 0x0, 0x1, [@nested={0x4, 0x108}]}, @generic="7558a560cc5cb15e4f38d09a7a05c4e9637e7a6cfae3f02923b74b46eeb09f54d7a254d9115d647375b576520350c2781ebe799dc9060dcf8c7b1a4f8b", @typed={0x8, 0xae, 0x0, 0x0, @u32=0x81}]}]}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe8101000000010000008b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d43eb640dc5061dc35817c8a66c29be82fdbebd9798785e3ed62d512eaab02faf14e764c1b01bf101ee86478dd1981937508b906e98a23c9615867bc5a86bd5e49ce0872231494c29fee4fc315c7340b47bd96f942cc707ae3596528172ed032a24053a1d27449dc197c28f06b02ed97b99ac9b995cb76ef9c78d6e830607914e325fe44684bcae218b28b230c4dd5ede4b048da336b35f7c90f3663e3303ba9f8fe2fcb69223f0d2f72f71980246d5804215601265a8469aeb46a436df7533"]}]}, 0x414}], 0x1}, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f00000000c0)='./bus\x00') chdir(&(0x7f0000000100)='./file0\x00') open(&(0x7f0000000580)='./file0\x00', 0x181242, 0x1df2a23c5997fa5f) 939.565873ms ago: executing program 3 (id=926): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000400)=ANY=[@ANYBLOB="caf4f4b31fc98862d5e0efb71d4cf2f893e1f9e011400c81150bbcc0e25801506c79d65febdad5e3ec34546c8da991865e174b64e7653bd8232583c850fea36604c958c4794d3138698af2150476becb6600fb58615c0ada316cec9ea852f72197e17a215864ad"], &(0x7f0000000040)='syzkaller\x00', 0xffff0001, 0x0, 0x0, 0x41000, 0x9}, 0x94) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000140)=0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @tid=r0}, &(0x7f0000000300)=0x0) syz_emit_ethernet(0x32, &(0x7f0000000000)={@multicast, @empty, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @multicast1}, {{0x0, 0x6558, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "d8621b", 0x0, "2c17a9"}}}}}}, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x8}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) socket(0x2, 0x3, 0x0) ioctl$TCXONC(r2, 0x540a, 0x2) ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000000)=0x6) r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x6) write(r3, &(0x7f0000000100)="9e", 0x1) write(r3, &(0x7f00000002c0)="d7abd6190ba31fe44bf0e31036913d653596915a", 0x14) ioctl$TCSETS2(r3, 0x402c542b, &(0x7f0000000040)={0x2, 0x2, 0x8000, 0xf, 0x4, "fd955c6d99d4beff89d9ef00", 0x4, 0xa}) 560.44536ms ago: executing program 2 (id=931): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x1) ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000480)={{0xfffc, 0x3, 0x0, 0x5}, 'syz0\x00', 0x32}) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440) r2 = accept4(r1, 0x0, 0x0, 0x0) sendmsg$TIPC_NL_MON_SET(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000d80)={0x24, 0x0, 0x100, 0x70bd2a, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x40004}, 0x40008c0) ioctl$UI_SET_KEYBIT(r0, 0x40045565, 0x1f9) ioctl$UI_DEV_CREATE(r0, 0x5501) 560.016877ms ago: executing program 2 (id=932): socket(0x11, 0x3, 0x0) socket(0x11, 0x3, 0x8) socket(0x11, 0xa, 0x8) syz_emit_ethernet(0x2a, &(0x7f0000000080)=ANY=[@ANYBLOB="4aa164e4aaaabbbbbbbbbbbb0800452e001c006600000801907800000000ffffffff1100907800000000"], 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x40000) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f0000000140)=0xb00, 0x4) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) sendmsg$can_raw(r2, &(0x7f0000000440)={&(0x7f0000000780)={0x1d, r3}, 0x10, &(0x7f0000000200)={&(0x7f0000001100)=@can={{0x0, 0x0, 0x0, 0x1}, 0x1, 0x1, 0x0, 0x0, "09151995c95f32cc"}, 0x10}}, 0x44001) recvmmsg(r2, &(0x7f0000000c80)=[{{0x0, 0x0, 0x0}, 0xeb}, {{0x0, 0x0, 0x0}, 0x8001}], 0x2, 0x2021, 0x0) r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='rpc_buf_alloc\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18) sendmsg$netlink(r4, &(0x7f0000000040)={0x0, 0x2f, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@ipv4_newrule={0x1c, 0x20, 0x301, 0x70bd2c, 0x25dfdbff, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x1c}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000e0384e8ce57134a37cabcaadfdc9c59c9da1a67e64121fb5edab2300e770e58dd2a3b508afc8f457c738dc1aa248db89ae71ab4b563459f3fc109a03fa2a3a7235b238b6c559a339ac01e913ff9eb6ddcb386237f52575b01da9f240696329895288dba18d149b8071f4fbd3d9bbd40760c386023a"], &(0x7f0000000000)='syzkaller\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bind$rxrpc(0xffffffffffffffff, &(0x7f0000000000)=@in6={0x21, 0x2000, 0x2, 0x1c, {0xa, 0x4e20, 0x800, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x6}}, 0x24) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b26, &(0x7f0000000280)={'wlan1\x00'}) 495.310539ms ago: executing program 3 (id=933): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000400)=ANY=[@ANYBLOB="caf4f4b31fc98862d5e0efb71d4cf2f893e1f9e011400c81150bbcc0e25801506c79d65febdad5e3ec34546c8da991865e174b64e7653bd8232583c850fea36604c958c4794d3138698af2150476becb6600fb58615c0ada316cec9ea852f72197e17a215864ad"], &(0x7f0000000040)='syzkaller\x00', 0xffff0001, 0x0, 0x0, 0x41000, 0x9}, 0x94) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000140)=0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @tid=r0}, &(0x7f0000000300)=0x0) syz_emit_ethernet(0x32, &(0x7f0000000000)={@multicast, @empty, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @multicast1}, {{0x0, 0x6558, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "d8621b", 0x0, "2c17a9"}}}}}}, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x8}) timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) socket(0x2, 0x3, 0x0) ioctl$TCXONC(r2, 0x540a, 0x2) ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000000)=0x6) r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x6) write(r3, &(0x7f0000000100)="9e", 0x1) write(r3, &(0x7f00000002c0)="d7abd6190ba31fe44bf0e31036913d653596915a", 0x14) ioctl$TCSETS2(r3, 0x402c542b, &(0x7f0000000040)={0x2, 0x2, 0x8000, 0xf, 0x4, "fd955c6d99d4beff89d9ef00", 0x4, 0xa}) 358.310945ms ago: executing program 3 (id=934): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000002f80), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_SB_POOL_SET(r1, &(0x7f0000003280)={0x0, 0x0, &(0x7f0000003240)={&(0x7f0000002fc0)={0x54, r2, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x6}, {0x6, 0x11, 0x1}, {0x8, 0x13, 0xb39}, {0x5, 0x14, 0x1}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4c000}, 0x4000) ptrace$pokeuser(0x6, r0, 0x118, 0x4) ptrace$pokeuser(0x6, r0, 0x118, 0x6000003f) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"]) r3 = socket$packet(0x11, 0x3, 0x300) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r6, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0) sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=@newqdisc={0x70, 0x24, 0xe0b, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0x9}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x40, 0x2, {{0x1ff, 0x6, 0xfffffffd, 0x0, 0xfffffffd, 0x32d}, [@TCA_NETEM_ECN={0x8, 0x7, 0x1}, @TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0xfffff800, 0x8, 0x99f5, 0x2, 0x2}}]}]}}}]}, 0x70}}, 0x0) sendto$packet(r3, &(0x7f0000000580)="44c394f305916c4516999da20800", 0x36, 0x0, &(0x7f0000000440)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}, 0x14) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f0000000a00)={0x414, 0x1f, 0x1, 0x0, 0x0, "", [@nested={0x403, 0x0, 0x0, 0x1, [@typed={0xc, 0x1, 0x0, 0x0, @u64}, @nested={0x268, 0x2f, 0x0, 0x1, [@nested={0xc, 0xa2, 0x0, 0x1, [@typed={0x8, 0xed, 0x0, 0x0, @str='syz\x00'}]}, @typed={0x14, 0x136, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @nested={0x8, 0x88, 0x0, 0x1, [@typed={0x4, 0xc7}]}, @nested={0x141, 0x6c, 0x0, 0x1, [@generic="89ed77aab594e82d4130765cfe27a0474702f92d05922f9058b43bbd4ec0aaa9a29b63124516a94dcb22e6b848ff43c4ec16d62c5c5519d4f3be551d", @generic="d39fcaea8aedd4f2d112542cb024be83f11e60b3eb0431b54bf552948680dc1be5500553ff7ec1e37664c17a09e6c5aeaf6a93b6a435f09861142251f6b6d7ad9fff375e4e5fb5524271d4582c9bccc461c18bb51b9f4b80e2ae039a7154e85e51b21b87e65348e6a31ecd8b4686", @typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @generic="a68c349c349d87b44b6ccb4c6165748f623009feaff556951d44fa69d1b6c74e019e3ae39d8a1bf06ce795da916b38ef8bfc3b4a34f16b2770bd536bd71fd0b8ca2a2ca1d4c27481f11dea854f922c6eedf306c6eaefaaef25d38008e27e8079b660bf4c383fa855ba1c48c024da9ca571f91ea7e6740fc095d1505551418b7a3e7d2f3cb3b946d42bef99"]}, @nested={0xf5, 0x34, 0x0, 0x1, [@nested={0xa1, 0x58, 0x0, 0x1, [@generic="d5814ea826aa7f73f6edca3c5d5131ea47f09be4a580c1621f22b58b98dfde0bc50dc80408c634fb958a3349e70a7cc6d07d3875969a012ca44d37092de8ca6eaa444a5c6aa178a6e4e7b9497e96c5899f744933d157688bfc805a5f5e480946c8f23f08e88018474058b9ad1374ff20cdc3e9da42a4c44ed5a145460aad1349116b75058b1c9dbdadbce9d318aefabc9e3d195f540d8a2110", @nested={0x4}]}, @nested={0x8, 0xb8, 0x0, 0x1, [@nested={0x4, 0x108}]}, @generic="7558a560cc5cb15e4f38d09a7a05c4e9637e7a6cfae3f02923b74b46eeb09f54d7a254d9115d647375b576520350c2781ebe799dc9060dcf8c7b1a4f8b", @typed={0x8, 0xae, 0x0, 0x0, @u32=0x81}]}]}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe8101000000010000008b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d43eb640dc5061dc35817c8a66c29be82fdbebd9798785e3ed62d512eaab02faf14e764c1b01bf101ee86478dd1981937508b906e98a23c9615867bc5a86bd5e49ce0872231494c29fee4fc315c7340b47bd96f942cc707ae3596528172ed032a24053a1d27449dc197c28f06b02ed97b99ac9b995cb76ef9c78d6e830607914e325fe44684bcae218b28b230c4dd5ede4b048da336b35f7c90f3663e3303ba9f8fe2fcb69223f0d2f72f71980246d5804215601265a8469aeb46a436df7533"]}]}, 0x414}], 0x1}, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f00000000c0)='./bus\x00') chdir(&(0x7f0000000100)='./file0\x00') open(&(0x7f0000000580)='./file0\x00', 0x181242, 0x1df2a23c5997fa5f) 252.926181ms ago: executing program 3 (id=935): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(blake2b-256-generic)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) getpid() sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}, @IFLA_MTU={0x8, 0x4, 0xffe1}]}, 0x3c}}, 0x0) syz_io_uring_setup(0x6a95, 0x0, 0x0, 0x0) syz_io_uring_setup(0x10d, &(0x7f00000006c0)={0x0, 0x1885, 0x80, 0x2}, 0x0, 0x0) socket$rds(0x15, 0x5, 0x0) r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="1c0000002d000100000000000000000004000080050011802e"], 0x1c}], 0x1}, 0x300) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000940)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x1, &(0x7f00000000c0)={0xffffffffffffffff}, 0x13f, 0x9}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f00000002c0)={0xe, 0x18, 0xfa00, @id_tos={&(0x7f0000000400)=0xd, r4, 0x0, 0x0, 0x1}}, 0x20) syz_io_uring_setup(0x24fa, 0x0, &(0x7f0000000100), 0x0) sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@ipv6_delrule={0x30, 0x21, 0x1, 0x70bd26, 0x25dfdbfb, {0xa, 0x14, 0x20, 0x1, 0x8, 0x0, 0x0, 0x6, 0xf799ab692c18ca67}, [@FRA_SRC={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x34}}]}, 0x30}}, 0x0) r6 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) read$char_usb(r6, 0x0, 0x0) syz_usb_disconnect(0xffffffffffffffff) 232.465053ms ago: executing program 0 (id=936): gettid() clock_gettime(0x0, 0x0) r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) setsockopt$nfc_llcp_NFC_LLCP_MIUX(r0, 0x118, 0x1, &(0x7f0000000100)=0x2e4, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0) r1 = socket$inet6(0x10, 0x2, 0x4) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f00000000c0)='nv\x00', 0x3) sendto$inet6(r1, &(0x7f0000000080)="4c00000012001f15b9409b849ac00a00a5784002000000000000030038c88cc055c5ac27a6c5b068d0bf46d323452536005ad94a461cdbfee9bdb942352359a351d1ec0cffc8792cd8000080", 0x4c, 0x0, 0x0, 0x0) quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0) 161.117435ms ago: executing program 2 (id=937): r0 = fsopen(&(0x7f00000000c0)='iso9660\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040), 0x300) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) r1 = socket$kcm(0x28, 0x1, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x3c, &(0x7f0000000000), 0x4) r2 = socket$inet6(0xa, 0x1, 0x0) r3 = syz_open_dev$vcsa(&(0x7f0000000040), 0x7ff, 0x494382) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000480)={'wlan0\x00', 0x0}) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_CREATE(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)={0x48, r9, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @remote}]}, 0x48}}, 0x0) sendmsg$NL80211_CMD_SET_WIPHY(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="000128bd0700fbdbdf250200000008004000ffffffff05023d000600000008006b003f000000"], 0x2c}, 0x1, 0x0, 0x0, 0x4008091}, 0x41) sendmsg$NL80211_CMD_SET_COALESCE(r5, &(0x7f0000000200)={0x0, 0xffffffffffffff8c, &(0x7f0000000b00)={&(0x7f0000000040)={0x28, r6, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r7}, @void}}}, 0x28}}, 0x0) sendmsg$NL80211_CMD_ASSOCIATE(r3, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000200)={0x1c, r4, 0x408, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r7}, @void}}}, 0x1c}}, 0x2000814) sendto$inet6(r2, 0x0, 0x0, 0xfffffeffffff7ffe, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @loopback, 0x7}, 0x1c) 158.856511ms ago: executing program 0 (id=938): r0 = openat$comedi(0xffffff9c, &(0x7f0000000280)='/dev/comedi3\x00', 0x8000, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @multicast1}, 0x10) sendmmsg$inet(r1, &(0x7f0000000bc0)=[{{&(0x7f0000000180)={0x2, 0x4e23, @empty}, 0x10, 0x0}}], 0x1, 0x20004840) sendto$inet(r1, &(0x7f0000000240)="b4", 0x1, 0x4c095, 0x0, 0x0) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) splice(r1, 0x0, r2, 0x0, 0x7ffff000, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) r4 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f00000000c0)=@assoc_value, &(0x7f0000000180)=0x8) sendmsg$NFT_BATCH(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000003280)=ANY=[@ANYBLOB="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"], 0xb98}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000080)) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r5 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r5, &(0x7f0000000040)={0x28, 0x0, 0x2710, @local}, 0x10) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r6, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) write(r6, &(0x7f0000000140)="24000000010006", 0x7) listen(r5, 0x0) r7 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r7, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r8 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r9 = dup(r8) write$6lowpan_enable(r9, &(0x7f0000000000)='0', 0xfffffd2c) r10 = userfaultfd(0x80001) close(r10) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$COMEDI_INSNLIST(r0, 0x8008640b, &(0x7f00001aa780)={0x1, &(0x7f00001aa640)=[{0x8000000, 0x0, 0x0, 0x2, 0x800}]}) 110.507345ms ago: executing program 2 (id=939): r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x401, 0xfffffffe, 0x0, 0xffffffff}, 0x10) (async) close(r0) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000340)='ns/net\x00') ioctl$NS_GET_PARENT(r1, 0xb702, 0x0) 109.967104ms ago: executing program 2 (id=940): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800"/11, @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0, 0x0, 0x10}, 0x18) sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x20000056) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)={0x3c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x18, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @dev}}}]}, @CTA_TUPLE_REPLY={0x10, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x3c}}, 0x0) futex_waitv(&(0x7f0000001b00)=[{0xfff, 0x0, 0x6}], 0x1, 0x0, 0x0, 0x1) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x94) r1 = socket$kcm(0x29, 0x5, 0x0) write$cgroup_pressure(r1, &(0x7f0000000140)={'full'}, 0xfffffdef) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="180000003c0007010000fc802f6cce515d0591d5211b6369f1674ba7573f741cbe923d7d73f9393de029a04d0dbd13e021f362830227b94a6f6dac924da5d297a1b236cb38f7472f2c92ae69"], 0x18}, 0x1, 0x0, 0x0, 0xc000}, 0xc000) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, 0x0, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0) socket$nl_crypto(0x10, 0x3, 0x15) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) r5 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/tcp_timestamps\x00', 0x1, 0x0) sendfile(r5, r4, &(0x7f00000000c0)=0x8b, 0x100000500) r6 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r6, &(0x7f0000000300)={0x2, 0x4e21, @multicast2}, 0x10) connect$inet(r6, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) 62.386358ms ago: executing program 1 (id=941): mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000040)={0x15, 0x65, 0xffff, 0x1000, 0x8, '9P2000.u'}, 0x15) r2 = dup(r1) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) pipe(&(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000000340), 0x11000) mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000001780), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4]) r5 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000080), 0x3001, 0x0) getpeername$packet(r2, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000280)=0x14) ioctl$FBIOPUT_CON2FBMAP(r5, 0x4610, &(0x7f0000000180)={0x1}) ioctl$FBIOPUT_CON2FBMAP(r5, 0x4610, &(0x7f0000000000)={0x1, 0x1}) vmsplice(r3, &(0x7f00000002c0)=[{&(0x7f0000000500)}, {&(0x7f00000004c0)="536e95c8ff7cc203dac7785efbf6261e86e9957766b9e173e0bdfe01fd82ad8bba8d67f39b4dc3ed2eead5b7427c789dc259759f458d8676825cbf692c508e0c3655361ebf34920fe51146e86762f7d93088a76f922f7dc102dfc6ad1344129953b8f0c5c4e44fb120ade4b9f9ec7709ec97606d39808ca06db7818970eac227ffc84d47fb8c8e48c5a9279c80b190ed59f22c1106f5abf0a1899d6ecbe7848e35e74fc44cbe5c1460f4931492685b2412109a0f1f5e18c86a608ea8fceee33a9f35ce4ecd82f72f7cd106c7fa9d103d3cf4545be2c80afb4e170b2a6c0d34b401cf3825d4c74ef17e7e4ec896", 0xed}], 0x2, 0x0) write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0xa9}}, 0x18) write$FUSE_INIT(r2, &(0x7f00000001c0)={0x50, 0x0, 0x0, {0x7, 0x21, 0x1000, 0x14210000, 0x81, 0x1005, 0x0, 0xc, 0x0, 0x0, 0x80}}, 0x50) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000004380), 0x1814800, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB="2c6e6f6465f66d61702c6b"]) 0s ago: executing program 2 (id=942): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000400)=ANY=[@ANYBLOB="caf4f4b31fc98862d5e0efb71d4cf2f893e1f9e011400c81150bbcc0e25801506c79d65febdad5e3ec34546c8da991865e174b64e7653bd8232583c850fea36604c958c4794d3138698af2150476becb6600fb58615c0ada316cec9ea852f72197e17a215864ad"], &(0x7f0000000040)='syzkaller\x00', 0xffff0001, 0x0, 0x0, 0x41000, 0x9}, 0x94) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000140)=0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @tid=r0}, &(0x7f0000000300)=0x0) syz_emit_ethernet(0x32, &(0x7f0000000000)={@multicast, @empty, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @multicast1}, {{0x0, 0x6558, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "d8621b", 0x0, "2c17a9"}}}}}}, 0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x8}) timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) socket(0x2, 0x3, 0x0) ioctl$TCXONC(r2, 0x540a, 0x2) ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000000)=0x6) r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x6) write(r3, &(0x7f0000000100)="9e", 0x1) write(r3, &(0x7f00000002c0)="d7abd6190ba31fe44bf0e31036913d653596915a", 0x14) ioctl$TCSETS2(r3, 0x402c542b, &(0x7f0000000040)={0x2, 0x2, 0x8000, 0xf, 0x4, "fd955c6d99d4beff89d9ef00", 0x4, 0xa}) kernel console output (not intermixed with test programs): OS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 118.988088][ T8139] Call Trace: [ 118.988093][ T8139] [ 118.988099][ T8139] dump_stack_lvl+0x16c/0x1f0 [ 118.988121][ T8139] should_fail_ex+0x512/0x640 [ 118.988137][ T8139] _copy_from_user+0x2e/0xd0 [ 118.988151][ T8139] bpf_test_init.isra.0+0xe2/0x140 [ 118.988170][ T8139] bpf_prog_test_run_skb+0x245/0x2280 [ 118.988188][ T8139] ? __fget_files+0x204/0x3c0 [ 118.988204][ T8139] ? __fget_files+0x20e/0x3c0 [ 118.988214][ T8139] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 118.988232][ T8139] ? fput+0x9b/0xd0 [ 118.988250][ T8139] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 118.988266][ T8139] __sys_bpf+0x104d/0x4de0 [ 118.988285][ T8139] ? __pfx___sys_bpf+0x10/0x10 [ 118.988303][ T8139] ? ksys_write+0x190/0x250 [ 118.988317][ T8139] ? __mutex_unlock_slowpath+0x163/0x800 [ 118.988344][ T8139] ? fput+0x9b/0xd0 [ 118.988358][ T8139] ? ksys_write+0x1ac/0x250 [ 118.988370][ T8139] ? __pfx_ksys_write+0x10/0x10 [ 118.988384][ T8139] __ia32_sys_bpf+0x76/0xe0 [ 118.988402][ T8139] __do_fast_syscall_32+0x7c/0x3a0 [ 118.988421][ T8139] do_fast_syscall_32+0x32/0x80 [ 118.988438][ T8139] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 118.988452][ T8139] RIP: 0023:0xf7f83579 [ 118.988462][ T8139] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 118.988473][ T8139] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 118.988484][ T8139] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600 [ 118.988491][ T8139] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000 [ 118.988497][ T8139] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 118.988504][ T8139] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 118.988510][ T8139] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 118.988523][ T8139] [ 119.663949][ T34] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 119.833776][ T34] usb 5-1: Using ep0 maxpacket: 8 [ 119.845311][ T34] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 119.847863][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 119.851514][ T34] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 119.863877][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 119.867516][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 119.873662][ T34] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 119.876657][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 119.880187][ T34] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 119.884036][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 119.887734][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 119.892264][ T34] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 119.896017][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 119.899941][ T34] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 119.903938][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 119.907442][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 119.913278][ T34] usb 5-1: string descriptor 0 read error: -22 [ 119.915926][ T34] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 119.919198][ T34] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 119.928781][ T34] adutux 5-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 119.984019][ T6050] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 120.136868][ T6050] usb 7-1: Using ep0 maxpacket: 8 [ 120.137995][ T34] usb 5-1: USB disconnect, device number 7 [ 120.142812][ T6050] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 120.152975][ T6050] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 120.158557][ T6050] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 120.162889][ T8195] netlink: 52 bytes leftover after parsing attributes in process `syz.3.430'. [ 120.163319][ T6050] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 120.181067][ T6050] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 120.187735][ T6050] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 120.190715][ T6050] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 120.202878][ T6050] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 120.208620][ T6050] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 120.213265][ T6050] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 120.226245][ T6050] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 120.229469][ T6050] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 120.243798][ T6050] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 120.247553][ T6050] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 120.251135][ T6050] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 120.257885][ T6050] usb 7-1: string descriptor 0 read error: -22 [ 120.260234][ T6050] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 120.263045][ T6050] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 120.272237][ T6050] adutux 7-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 120.522690][ T6050] usb 7-1: USB disconnect, device number 8 [ 122.132438][ T8254] fuse: Bad value for 'fd' [ 122.346917][ T8260] block nbd0: server does not support multiple connections per device. [ 122.354508][ T8260] block nbd0: shutting down sockets [ 122.464630][ T8237] Bluetooth: hci1: Opcode 0x0401 failed: -4 [ 122.548595][ T8271] IPVS: persistence engine module ip_vs_pe_ not found [ 122.749472][ T8279] netlink: 12 bytes leftover after parsing attributes in process `syz.2.447'. [ 122.867439][ T8282] netlink: 12 bytes leftover after parsing attributes in process `syz.1.448'. [ 122.888232][ T8282] netlink: 'syz.1.448': attribute type 1 has an invalid length. [ 122.890961][ T8282] netlink: 396 bytes leftover after parsing attributes in process `syz.1.448'. [ 122.896344][ T8282] NCSI netlink: No device for ifindex 0 [ 123.683924][ T5986] Bluetooth: hci1: command 0x0401 tx timeout [ 124.672754][ T8326] netlink: 12 bytes leftover after parsing attributes in process `syz.2.457'. [ 124.777971][ T8330] netlink: 12 bytes leftover after parsing attributes in process `syz.0.458'. [ 124.794691][ T8330] netlink: 'syz.0.458': attribute type 1 has an invalid length. [ 124.797410][ T8330] netlink: 396 bytes leftover after parsing attributes in process `syz.0.458'. [ 124.800398][ T8330] NCSI netlink: No device for ifindex 0 [ 125.243819][ T1328] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 125.316971][ T8361] netlink: 8 bytes leftover after parsing attributes in process `syz.2.459'. [ 125.403787][ T1328] usb 8-1: Using ep0 maxpacket: 8 [ 125.407677][ T1328] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 125.410985][ T1328] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 125.416073][ T1328] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 125.420862][ T1328] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 125.426619][ T1328] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 125.432547][ T1328] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 125.435907][ T1328] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 125.439995][ T1328] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 125.444166][ T1328] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 125.448009][ T1328] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 125.452367][ T1328] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 125.455023][ T1328] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 125.458655][ T1328] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 125.463044][ T1328] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 125.466672][ T1328] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 125.472543][ T1328] usb 8-1: string descriptor 0 read error: -22 [ 125.474634][ T1328] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 125.477710][ T1328] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 125.488468][ T1328] adutux 8-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 125.673006][ T8364] netlink: 4 bytes leftover after parsing attributes in process `syz.1.465'. [ 125.694693][ T6010] usb 8-1: USB disconnect, device number 6 [ 125.863314][ T8369] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 127.068672][ T8393] netlink: 12 bytes leftover after parsing attributes in process `syz.2.470'. [ 127.086381][ T8393] netlink: 'syz.2.470': attribute type 1 has an invalid length. [ 127.088991][ T8393] netlink: 396 bytes leftover after parsing attributes in process `syz.2.470'. [ 127.091926][ T8393] NCSI netlink: No device for ifindex 0 [ 127.603856][ T1328] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 127.764508][ T1328] usb 6-1: Using ep0 maxpacket: 8 [ 127.769098][ T1328] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 127.772685][ T1328] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 127.788764][ T1328] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 127.806419][ T1328] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 127.822168][ T1328] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 127.840546][ T1328] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 127.849759][ T1328] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 127.863809][ T1328] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 127.870059][ T1328] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 127.888420][ T1328] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 127.902316][ T1328] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 127.908432][ T1328] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 127.912596][ T1328] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 127.919238][ T1328] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 127.922943][ T1328] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 127.933340][ T1328] usb 6-1: string descriptor 0 read error: -22 [ 127.937309][ T1328] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 127.940203][ T1328] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 127.959127][ T1328] adutux 6-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 127.975753][ T8421] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11) [ 127.978005][ T8421] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 127.985488][ T8421] vhci_hcd vhci_hcd.0: Device attached [ 127.990388][ T8421] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(13) [ 127.992528][ T8421] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 127.997805][ T8421] vhci_hcd vhci_hcd.0: Device attached [ 128.001905][ T8421] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 128.007320][ T8421] vhci_hcd vhci_hcd.0: pdev(3) rhport(3) sockfd(17) [ 128.009671][ T8421] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 128.012573][ T8421] vhci_hcd vhci_hcd.0: Device attached [ 128.018368][ T8421] vhci_hcd vhci_hcd.0: pdev(3) rhport(4) sockfd(19) [ 128.020588][ T8421] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 128.023251][ T8421] vhci_hcd vhci_hcd.0: Device attached [ 128.029006][ T8421] vhci_hcd vhci_hcd.0: pdev(3) rhport(5) sockfd(21) [ 128.031343][ T8421] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 128.037229][ T8421] vhci_hcd vhci_hcd.0: Device attached [ 128.043648][ T8421] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 128.059467][ T8421] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 128.115020][ T8430] vhci_hcd: connection closed [ 128.115305][ T8428] vhci_hcd: connection closed [ 128.117553][ T95] vhci_hcd: stop threads [ 128.120757][ T8422] vhci_hcd: connection closed [ 128.120860][ T8426] vhci_hcd: connection closed [ 128.122480][ T8424] vhci_hcd: connection closed [ 128.140133][ T95] vhci_hcd: release socket [ 128.161372][ T6028] usb 6-1: USB disconnect, device number 12 [ 128.167699][ T1328] vhci_hcd: vhci_device speed not set [ 128.170624][ T95] vhci_hcd: disconnect device [ 128.172503][ T95] vhci_hcd: stop threads [ 128.188723][ T95] vhci_hcd: release socket [ 128.190294][ T95] vhci_hcd: disconnect device [ 128.201407][ T95] vhci_hcd: stop threads [ 128.202822][ T95] vhci_hcd: release socket [ 128.204377][ T95] vhci_hcd: disconnect device [ 128.213820][ T95] vhci_hcd: stop threads [ 128.215213][ T95] vhci_hcd: release socket [ 128.238761][ T1328] usb 43-1: new low-speed USB device number 3 using vhci_hcd [ 128.244016][ T1328] usb 43-1: enqueue for inactive port 0 [ 128.251280][ T95] vhci_hcd: disconnect device [ 128.253001][ T95] vhci_hcd: stop threads [ 128.274804][ T95] vhci_hcd: release socket [ 128.276877][ T95] vhci_hcd: disconnect device [ 128.313890][ T1328] vhci_hcd: vhci_device speed not set [ 128.370280][ T8435] tipc: Started in network mode [ 128.372335][ T8435] tipc: Node identity ac1414aa, cluster identity 4711 [ 128.377201][ T8435] tipc: Enabled bearer , priority 10 [ 128.683912][ T6028] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 128.751084][ T8461] netlink: 12 bytes leftover after parsing attributes in process `syz.3.481'. [ 128.766371][ T8461] netlink: 'syz.3.481': attribute type 1 has an invalid length. [ 128.769753][ T8461] netlink: 396 bytes leftover after parsing attributes in process `syz.3.481'. [ 128.772826][ T8461] NCSI netlink: No device for ifindex 0 [ 128.843906][ T6028] usb 7-1: Using ep0 maxpacket: 8 [ 128.846729][ T6028] usb 7-1: config index 0 descriptor too short (expected 301, got 45) [ 128.849495][ T6028] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 128.852481][ T6028] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 128.855746][ T6028] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 128.859379][ T6028] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 128.864484][ T6028] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 128.867295][ T6028] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 129.104041][ T6028] usb 7-1: usb_control_msg returned -32 [ 129.106701][ T6028] usbtmc 7-1:16.0: can't read capabilities [ 129.393809][ T34] tipc: Node number set to 2886997162 [ 129.541493][ T8494] usbtmc 7-1:16.0: usb_control_msg returned -71 [ 129.542408][ T6010] usb 7-1: USB disconnect, device number 9 [ 129.654691][ T29] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 129.663824][ T59] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 129.823996][ T29] usb 8-1: Using ep0 maxpacket: 32 [ 129.824030][ T59] usb 5-1: Using ep0 maxpacket: 8 [ 129.868903][ T59] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 129.872379][ T59] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 129.883402][ T59] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 129.899820][ T59] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 129.900552][ T29] usb 8-1: config index 0 descriptor too short (expected 156, got 27) [ 129.905221][ T59] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 129.907369][ T29] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 129.913301][ T59] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 129.916565][ T29] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 129.918773][ T59] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 129.922159][ T29] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 129.927094][ T59] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 129.929962][ T29] usb 8-1: config 0 interface 0 has no altsetting 0 [ 129.937243][ T59] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 129.938195][ T29] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 129.940706][ T59] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 129.943551][ T29] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 129.947997][ T59] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 129.950595][ T29] usb 8-1: Product: syz [ 129.952586][ T59] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 129.954118][ T29] usb 8-1: Manufacturer: syz [ 129.954128][ T29] usb 8-1: SerialNumber: syz [ 129.955347][ T29] usb 8-1: config 0 descriptor?? [ 129.962415][ T59] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 129.966626][ T29] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 129.970313][ T59] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 129.974765][ T59] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 129.977090][ T29] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 129.989363][ T59] usb 5-1: string descriptor 0 read error: -22 [ 129.991395][ T59] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 129.994496][ T59] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 130.020277][ T59] adutux 5-1:168.0: ADU100 now attached to /dev/usb/adutux1 [ 130.091593][ T8509] dlm: no locking on control device [ 130.178011][ T29] usb 8-1: USB disconnect, device number 7 [ 130.185530][ T29] ldusb 8-1:0.0: LD USB Device #0 now disconnected [ 130.200754][ T8517] netlink: 8 bytes leftover after parsing attributes in process `syz.2.490'. [ 130.214948][ T59] usb 5-1: USB disconnect, device number 8 [ 130.524137][ T24] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 130.683865][ T24] usb 7-1: Using ep0 maxpacket: 8 [ 130.688244][ T24] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 130.690592][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 130.694112][ T24] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 130.697661][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 130.701211][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 130.705903][ T24] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 130.708196][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 130.711573][ T24] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 130.715386][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 130.719715][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 130.723997][ T24] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 130.726275][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 130.729656][ T24] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 130.733153][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 130.736804][ T24] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 130.743068][ T24] usb 7-1: string descriptor 0 read error: -22 [ 130.745273][ T24] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 130.748076][ T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 130.758067][ T24] adutux 7-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 130.955789][ T61] usb 7-1: USB disconnect, device number 10 [ 131.243890][ T24] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 131.413911][ T24] usb 5-1: Using ep0 maxpacket: 8 [ 131.418204][ T24] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 131.421111][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 131.425112][ T24] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 131.429212][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 131.435233][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 131.439697][ T24] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 131.442171][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 131.446107][ T24] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 131.450013][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 131.453963][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 131.458605][ T24] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 131.460944][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 131.465111][ T24] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 131.469144][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 131.473355][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 131.479550][ T24] usb 5-1: string descriptor 0 read error: -22 [ 131.488904][ T24] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 131.492018][ T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 131.510017][ T24] adutux 5-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 131.706870][ T24] usb 5-1: USB disconnect, device number 9 [ 132.237610][ T1419] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.240761][ T1419] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.646295][ T8623] netlink: 8 bytes leftover after parsing attributes in process `syz.1.501'. [ 132.787137][ T8625] loop6: detected capacity change from 0 to 524287999 [ 132.828818][ T5975] Buffer I/O error on dev loop6, logical block 65535999, async page read [ 132.985815][ T24] usb 6-1: new high-speed USB device number 13 using dummy_hcd [ 133.143798][ T24] usb 6-1: Using ep0 maxpacket: 8 [ 133.147876][ T24] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 133.150617][ T24] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 133.154869][ T24] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 133.158733][ T24] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 133.162689][ T24] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 133.167711][ T24] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 133.170414][ T24] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 133.174897][ T24] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 133.178724][ T24] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 133.182356][ T24] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 133.187670][ T24] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 133.190181][ T24] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 133.194504][ T24] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 133.198375][ T24] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 133.201990][ T24] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 133.208599][ T24] usb 6-1: string descriptor 0 read error: -22 [ 133.210764][ T24] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 133.214987][ T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 133.230264][ T24] adutux 6-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 133.591859][ T24] usb 6-1: USB disconnect, device number 13 [ 134.045952][ T8671] netlink: 8 bytes leftover after parsing attributes in process `syz.3.506'. [ 134.368663][ T24] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 134.530674][ T8681] tipc: Enabling of bearer rejected, already enabled [ 134.533884][ T24] usb 5-1: Using ep0 maxpacket: 8 [ 134.537873][ T24] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 134.543526][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 134.553776][ T24] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 134.558689][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 134.562885][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 134.569847][ T24] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 134.573146][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 134.577528][ T24] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 134.582039][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 134.587110][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 134.592382][ T24] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 134.595486][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 134.613077][ T24] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 134.617323][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 134.621033][ T24] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 134.626788][ T24] usb 5-1: string descriptor 0 read error: -22 [ 134.628864][ T24] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 134.631981][ T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 134.640358][ T24] adutux 5-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 134.767735][ T8700] netlink: 12 bytes leftover after parsing attributes in process `syz.3.511'. [ 134.824307][ T8700] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 134.843151][ T24] usb 5-1: USB disconnect, device number 10 [ 135.088359][ T8707] netlink: 12 bytes leftover after parsing attributes in process `syz.3.512'. [ 135.353814][ T61] usb 8-1: new high-speed USB device number 8 using dummy_hcd [ 135.516738][ T61] usb 8-1: config index 0 descriptor too short (expected 65535, got 18) [ 135.519423][ T61] usb 8-1: config 255 has too many interfaces: 255, using maximum allowed: 32 [ 135.522585][ T61] usb 8-1: config 255 has an invalid descriptor of length 0, skipping remainder of the config [ 135.526753][ T61] usb 8-1: config 255 has 0 interfaces, different from the descriptor's value: 255 [ 135.530683][ T61] usb 8-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 135.534809][ T61] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 135.706140][ T8721] FAULT_INJECTION: forcing a failure. [ 135.706140][ T8721] name failslab, interval 1, probability 0, space 0, times 0 [ 135.710579][ T8721] CPU: 2 UID: 0 PID: 8721 Comm: syz.1.515 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full) [ 135.710596][ T8721] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 135.710603][ T8721] Call Trace: [ 135.710611][ T8721] [ 135.710616][ T8721] dump_stack_lvl+0x16c/0x1f0 [ 135.710637][ T8721] should_fail_ex+0x512/0x640 [ 135.710649][ T8721] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 135.710664][ T8721] should_failslab+0xc2/0x120 [ 135.710677][ T8721] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 135.710689][ T8721] ? find_held_lock+0x2b/0x80 [ 135.710700][ T8721] ? __d_alloc+0x32/0xae0 [ 135.710715][ T8721] __d_alloc+0x32/0xae0 [ 135.710729][ T8721] d_alloc+0x4a/0x1e0 [ 135.710742][ T8721] lookup_one_qstr_excl+0x175/0x250 [ 135.710757][ T8721] ? mnt_want_write+0x161/0x450 [ 135.710767][ T8721] filename_create+0x1e7/0x4a0 [ 135.710778][ T8721] ? __pfx_filename_create+0x10/0x10 [ 135.710795][ T8721] do_linkat+0x184/0x5a0 [ 135.710809][ T8721] ? __pfx_do_linkat+0x10/0x10 [ 135.710822][ T8721] ? strncpy_from_user+0x203/0x2e0 [ 135.710839][ T8721] ? getname_flags.part.0+0x1c5/0x550 [ 135.710858][ T8721] __ia32_sys_link+0x7c/0xa0 [ 135.710872][ T8721] __do_fast_syscall_32+0x7c/0x3a0 [ 135.710890][ T8721] do_fast_syscall_32+0x32/0x80 [ 135.710905][ T8721] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 135.710919][ T8721] RIP: 0023:0xf707e579 [ 135.710927][ T8721] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 135.710938][ T8721] RSP: 002b:00000000f504d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000009 [ 135.710949][ T8721] RAX: ffffffffffffffda RBX: 0000000080000280 RCX: 0000000080000400 [ 135.710955][ T8721] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 135.710961][ T8721] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 135.710967][ T8721] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 135.710973][ T8721] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 135.710986][ T8721] [ 137.564349][ T34] usb 5-1: new full-speed USB device number 11 using dummy_hcd [ 137.585673][ T8747] netlink: 8 bytes leftover after parsing attributes in process `syz.1.519'. [ 137.628485][ T8749] netlink: 12 bytes leftover after parsing attributes in process `syz.2.520'. [ 137.646805][ T8749] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 137.715200][ T34] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 137.718296][ T34] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 137.722706][ T34] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 137.725995][ T34] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 137.933192][ T34] usb 5-1: GET_CAPABILITIES returned 0 [ 137.935120][ T34] usbtmc 5-1:16.0: can't read capabilities [ 138.009453][ T61] usb 8-1: string descriptor 0 read error: -71 [ 138.013955][ T61] usb 8-1: USB disconnect, device number 8 [ 138.139812][ T1328] usb 5-1: USB disconnect, device number 11 [ 138.392740][ T8770] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6) [ 138.395645][ T8770] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 138.400438][ T8770] vhci_hcd vhci_hcd.0: Device attached [ 138.654767][ T6050] usb 41-1: new high-speed USB device number 2 using vhci_hcd [ 139.072252][ T8792] netlink: 12 bytes leftover after parsing attributes in process `syz.3.529'. [ 139.092529][ T8792] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 139.172111][ T8771] vhci_hcd: connection reset by peer [ 139.176943][ T82] vhci_hcd: stop threads [ 139.178612][ T82] vhci_hcd: release socket [ 139.180432][ T82] vhci_hcd: disconnect device [ 139.486530][ T8812] fuse: Bad value for 'fd' [ 139.864638][ T8833] netlink: 8 bytes leftover after parsing attributes in process `syz.0.534'. [ 140.788126][ T8867] netlink: 12 bytes leftover after parsing attributes in process `syz.0.546'. [ 140.802065][ T8867] netlink: 'syz.0.546': attribute type 1 has an invalid length. [ 140.805795][ T8867] netlink: 396 bytes leftover after parsing attributes in process `syz.0.546'. [ 140.808682][ T8867] NCSI netlink: No device for ifindex 0 [ 140.811205][ T8867] overlayfs: failed to resolve './file1': -2 [ 140.900678][ T8879] FAULT_INJECTION: forcing a failure. [ 140.900678][ T8879] name failslab, interval 1, probability 0, space 0, times 0 [ 140.906494][ T8879] CPU: 3 UID: 0 PID: 8879 Comm: syz.0.547 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full) [ 140.906511][ T8879] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 140.906518][ T8879] Call Trace: [ 140.906522][ T8879] [ 140.906527][ T8879] dump_stack_lvl+0x16c/0x1f0 [ 140.906547][ T8879] should_fail_ex+0x512/0x640 [ 140.906559][ T8879] ? fs_reclaim_acquire+0xae/0x150 [ 140.906580][ T8879] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 140.906593][ T8879] should_failslab+0xc2/0x120 [ 140.906607][ T8879] __kmalloc_noprof+0xd2/0x510 [ 140.906622][ T8879] tomoyo_realpath_from_path+0xc2/0x6e0 [ 140.906636][ T8879] ? tomoyo_profile+0x47/0x60 [ 140.906652][ T8879] tomoyo_path_number_perm+0x245/0x580 [ 140.906662][ T8879] ? tomoyo_path_number_perm+0x237/0x580 [ 140.906673][ T8879] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 140.906699][ T8879] ? find_held_lock+0x2b/0x80 [ 140.906709][ T8879] ? hook_file_ioctl_common+0x145/0x410 [ 140.906729][ T8879] ? __fget_files+0x20e/0x3c0 [ 140.906743][ T8879] security_file_ioctl_compat+0x9b/0x240 [ 140.906756][ T8879] __ia32_compat_sys_ioctl+0xc3/0x370 [ 140.906775][ T8879] __do_fast_syscall_32+0x7c/0x3a0 [ 140.906792][ T8879] do_fast_syscall_32+0x32/0x80 [ 140.906808][ T8879] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 140.906823][ T8879] RIP: 0023:0xf70ae579 [ 140.906832][ T8879] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 140.906843][ T8879] RSP: 002b:00000000f509e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 140.906854][ T8879] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000541c [ 140.906861][ T8879] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 140.906867][ T8879] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 140.906873][ T8879] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 140.906879][ T8879] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 140.906892][ T8879] [ 140.906897][ T8879] ERROR: Out of memory at tomoyo_realpath_from_path. [ 140.977628][ T34] usb 7-1: new high-speed USB device number 11 using dummy_hcd [ 141.124251][ T34] usb 7-1: too many configurations: 224, using maximum allowed: 8 [ 141.128224][ T34] usb 7-1: unable to read config index 0 descriptor/start: -61 [ 141.131111][ T34] usb 7-1: can't read configurations, error -61 [ 141.274898][ T34] usb 7-1: new high-speed USB device number 12 using dummy_hcd [ 141.439395][ T34] usb 7-1: too many configurations: 224, using maximum allowed: 8 [ 141.443537][ T34] usb 7-1: unable to read config index 0 descriptor/start: -61 [ 141.446584][ T34] usb 7-1: can't read configurations, error -61 [ 141.451290][ T34] usb usb7-port1: attempt power cycle [ 141.532039][ T8924] MPI: mpi too large (124808 bits) [ 141.794042][ T34] usb 7-1: new high-speed USB device number 13 using dummy_hcd [ 141.814695][ T34] usb 7-1: too many configurations: 224, using maximum allowed: 8 [ 141.818311][ T34] usb 7-1: unable to read config index 0 descriptor/start: -61 [ 141.820967][ T34] usb 7-1: can't read configurations, error -61 [ 141.825829][ T6010] usb 6-1: new high-speed USB device number 14 using dummy_hcd [ 141.963817][ T34] usb 7-1: new high-speed USB device number 14 using dummy_hcd [ 141.975969][ T6010] usb 6-1: Using ep0 maxpacket: 8 [ 141.979268][ T6010] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 141.981957][ T6010] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 141.985611][ T6010] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 141.989267][ T6010] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 141.993276][ T6010] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 141.994705][ T34] usb 7-1: too many configurations: 224, using maximum allowed: 8 [ 141.999406][ T6010] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 142.001165][ T34] usb 7-1: unable to read config index 0 descriptor/start: -61 [ 142.002217][ T6010] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 142.002234][ T6010] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 142.005797][ T34] usb 7-1: can't read configurations, error -61 [ 142.008696][ T6010] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 142.013613][ T34] usb usb7-port1: unable to enumerate USB device [ 142.016080][ T6010] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 142.024564][ T6010] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 142.026879][ T6010] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 142.030451][ T6010] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 142.035441][ T6010] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 142.039133][ T6010] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 142.045545][ T6010] usb 6-1: string descriptor 0 read error: -22 [ 142.047711][ T6010] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 142.050673][ T6010] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 142.061203][ T6010] adutux 6-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 142.157149][ T8956] netlink: 8 bytes leftover after parsing attributes in process `syz.0.553'. [ 143.163826][ T34] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 143.324305][ T34] usb 5-1: Using ep0 maxpacket: 8 [ 143.334646][ T34] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 143.337115][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 143.341739][ T34] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 143.347254][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 143.352164][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 143.358206][ T34] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 143.361165][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 143.364894][ T34] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 143.369584][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 143.374156][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 143.378698][ T34] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 143.381160][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 143.385092][ T34] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 143.389639][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 143.393487][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 143.402150][ T34] usb 5-1: string descriptor 0 read error: -22 [ 143.404296][ T34] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 143.407389][ T34] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 143.418598][ T34] adutux 5-1:168.0: ADU100 now attached to /dev/usb/adutux1 [ 143.614332][ T6010] usb 5-1: USB disconnect, device number 12 [ 143.834940][ T6050] vhci_hcd: vhci_device speed not set [ 144.433958][ T59] usb 8-1: new high-speed USB device number 9 using dummy_hcd [ 144.543491][ T34] usb 6-1: USB disconnect, device number 14 [ 144.585392][ T59] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 144.588864][ T59] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 24623, setting to 1024 [ 144.595262][ T59] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024 [ 144.599098][ T59] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 144.615530][ T59] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 144.619820][ T9037] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 144.626140][ T59] usb 8-1: Quirk or no altset; falling back to MIDI 1.0 [ 144.636822][ T29] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4 [ 144.639155][ T9049] netlink: 12 bytes leftover after parsing attributes in process `syz.1.568'. [ 144.639346][ T29] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2 [ 144.646309][ T29] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 144.648914][ T29] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 144.651478][ T29] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 144.655230][ T29] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 144.657633][ T29] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 144.660156][ T29] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 144.662899][ T29] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 144.680777][ T9049] netlink: 'syz.1.568': attribute type 1 has an invalid length. [ 144.683213][ T9049] netlink: 396 bytes leftover after parsing attributes in process `syz.1.568'. [ 144.683966][ T29] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 144.687790][ T9049] NCSI netlink: No device for ifindex 0 [ 144.692188][ T9049] overlayfs: failed to resolve './file1': -2 [ 144.693881][ T29] hid-generic 0000:3000000:0000.0002: hidraw1: HID v0.00 Device [sy] on syz0 [ 144.730514][ T9056] fido_id[9056]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 144.829810][ T9060] netlink: 12 bytes leftover after parsing attributes in process `syz.2.581'. [ 144.852764][ T9060] netlink: 'syz.2.581': attribute type 1 has an invalid length. [ 144.855727][ T9060] netlink: 396 bytes leftover after parsing attributes in process `syz.2.581'. [ 144.857937][ T6010] usb 8-1: USB disconnect, device number 9 [ 144.858571][ T9060] NCSI netlink: No device for ifindex 0 [ 144.866426][ T9060] overlayfs: failed to resolve './file1': -2 [ 144.995968][ T9079] netlink: 12 bytes leftover after parsing attributes in process `syz.2.577'. [ 145.017720][ T9079] netlink: 'syz.2.577': attribute type 1 has an invalid length. [ 145.020174][ T9079] netlink: 396 bytes leftover after parsing attributes in process `syz.2.577'. [ 145.023209][ T9079] NCSI netlink: No device for ifindex 0 [ 145.028218][ T9079] overlayfs: failed to resolve './file1': -2 [ 145.194202][ T29] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 145.343922][ T29] usb 5-1: Using ep0 maxpacket: 8 [ 145.351624][ T29] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 145.355481][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 145.360037][ T29] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 145.364828][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 145.371875][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 145.379682][ T29] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 145.391844][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 145.409904][ T29] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 145.414048][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 145.418430][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 145.424302][ T29] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 145.427483][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 145.432225][ T29] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 145.437591][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 145.442062][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 145.461442][ T29] usb 5-1: string descriptor 0 read error: -22 [ 145.465138][ T29] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 145.469745][ T29] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 145.503345][ T29] adutux 5-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 145.817889][ T6010] usb 5-1: USB disconnect, device number 13 [ 146.207181][ T6050] hid-generic 0000:3000000:0000.0003: hidraw1: HID v0.00 Device [sy] on syz0 [ 146.250761][ T9133] fido_id[9133]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 146.940082][ T9167] process 'syz.3.592' launched './file0' with NULL argv: empty string added [ 146.985115][ T34] usb 6-1: new high-speed USB device number 15 using dummy_hcd [ 146.993883][ T29] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 147.157234][ T34] usb 6-1: Using ep0 maxpacket: 8 [ 147.168836][ T34] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 147.171430][ T34] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 147.176727][ T34] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 147.180778][ T34] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 147.184337][ T34] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 147.188755][ T34] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 147.191154][ T34] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 147.196058][ T34] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 147.200008][ T34] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 147.203409][ T34] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 147.207977][ T34] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 147.209969][ T29] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 147.210521][ T34] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 147.214529][ T29] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 24623, setting to 1024 [ 147.218740][ T34] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 147.221477][ T29] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024 [ 147.226990][ T34] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 147.232887][ T34] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 147.233791][ T29] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 147.239328][ T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 147.242138][ T34] usb 6-1: string descriptor 0 read error: -22 [ 147.244253][ T34] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 147.247430][ T34] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 147.256721][ T9159] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 147.258580][ T34] adutux 6-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 147.261435][ T29] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 147.515003][ T34] usb 6-1: USB disconnect, device number 15 [ 147.532077][ T29] usb 5-1: USB disconnect, device number 14 [ 147.635159][ T9203] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 147.713785][ T6050] usb 8-1: new high-speed USB device number 10 using dummy_hcd [ 147.823951][ T61] usb 7-1: new high-speed USB device number 15 using dummy_hcd [ 147.863985][ T6050] usb 8-1: Using ep0 maxpacket: 8 [ 147.867354][ T6050] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 147.870005][ T6050] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 147.873680][ T6050] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 147.878243][ T6050] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 147.882372][ T6050] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 147.887266][ T6050] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 147.889659][ T6050] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 147.893043][ T6050] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 147.899149][ T6050] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 147.902999][ T6050] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 147.907562][ T6050] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 147.910050][ T6050] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 147.913923][ T6050] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 147.918107][ T6050] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 147.922085][ T6050] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 147.933159][ T6050] usb 8-1: string descriptor 0 read error: -22 [ 147.935386][ T6050] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 147.938313][ T6050] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 147.948086][ T6050] adutux 8-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 147.996252][ T61] usb 7-1: Using ep0 maxpacket: 32 [ 147.999780][ T61] usb 7-1: config index 0 descriptor too short (expected 156, got 27) [ 148.002568][ T61] usb 7-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 148.006887][ T61] usb 7-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 148.010483][ T61] usb 7-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 148.015039][ T61] usb 7-1: config 0 interface 0 has no altsetting 0 [ 148.019958][ T61] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 148.024458][ T61] usb 7-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 148.027286][ T61] usb 7-1: Product: syz [ 148.028763][ T61] usb 7-1: Manufacturer: syz [ 148.030283][ T61] usb 7-1: SerialNumber: syz [ 148.033447][ T61] usb 7-1: config 0 descriptor?? [ 148.037580][ T61] ldusb 7-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 148.041550][ T61] ldusb 7-1:0.0: LD USB Device #1 now attached to major 180 minor 1 [ 148.251727][ T6010] usb 8-1: USB disconnect, device number 10 [ 148.294728][ T5348] usb 7-1: USB disconnect, device number 15 [ 148.299232][ T5348] ldusb 7-1:0.0: LD USB Device #1 now disconnected [ 149.081112][ T9241] input: syz1 as /devices/virtual/input/input10 [ 150.503927][ T59] usb 8-1: new high-speed USB device number 11 using dummy_hcd [ 150.573668][ T9279] netlink: 12 bytes leftover after parsing attributes in process `syz.0.614'. [ 150.584294][ T9279] netlink: 'syz.0.614': attribute type 1 has an invalid length. [ 150.587894][ T9279] netlink: 396 bytes leftover after parsing attributes in process `syz.0.614'. [ 150.591682][ T9279] NCSI netlink: No device for ifindex 0 [ 150.596617][ T9279] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 150.663985][ T59] usb 8-1: Using ep0 maxpacket: 8 [ 150.668245][ T59] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 150.671194][ T59] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 150.676594][ T59] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 150.680232][ T59] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 150.683601][ T59] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 150.688444][ T59] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 150.691335][ T59] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 150.694905][ T59] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 150.698545][ T59] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 150.702078][ T59] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 150.707961][ T59] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 150.710573][ T59] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 150.714279][ T59] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 150.718067][ T59] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 150.721877][ T59] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 150.728435][ T59] usb 8-1: string descriptor 0 read error: -22 [ 150.730519][ T59] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 150.733335][ T59] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 150.742529][ T59] adutux 8-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 150.774053][ T29] usb 6-1: new high-speed USB device number 16 using dummy_hcd [ 150.783853][ T34] usb 7-1: new high-speed USB device number 16 using dummy_hcd [ 150.933763][ T34] usb 7-1: Using ep0 maxpacket: 8 [ 150.933872][ T29] usb 6-1: Using ep0 maxpacket: 8 [ 150.940855][ T29] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 150.941318][ T34] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 150.943472][ T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 150.946083][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 150.946102][ T34] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 150.946115][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 150.946127][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 150.952205][ T34] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 150.955755][ T29] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 150.973259][ T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 150.973438][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 150.978955][ T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 150.981038][ T34] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 150.987996][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 150.991582][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 150.994278][ T29] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 150.996411][ T5348] usb 8-1: USB disconnect, device number 11 [ 150.998559][ T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 151.008299][ T29] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 151.009444][ T34] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 151.011967][ T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 151.015101][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 151.018775][ T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 151.022327][ T34] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 151.022343][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 151.028656][ T29] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 151.029628][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 151.033927][ T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 151.042807][ T29] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 151.047916][ T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 151.051634][ T29] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 151.056100][ T34] usb 7-1: string descriptor 0 read error: -22 [ 151.058105][ T29] usb 6-1: string descriptor 0 read error: -22 [ 151.058110][ T34] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 151.060130][ T29] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 151.062875][ T34] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 151.066744][ T29] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 151.104168][ T29] adutux 6-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 151.104978][ T34] adutux 7-1:168.0: ADU100 now attached to /dev/usb/adutux1 [ 151.219423][ T40] audit: type=1326 audit(1754247922.527:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9315 comm="syz.0.619" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 151.231212][ T40] audit: type=1326 audit(1754247922.527:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9315 comm="syz.0.619" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 151.238452][ T40] audit: type=1326 audit(1754247922.527:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9315 comm="syz.0.619" exe="/syz-executor" sig=0 arch=40000003 syscall=445 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 151.245826][ T40] audit: type=1326 audit(1754247922.527:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9315 comm="syz.0.619" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 151.252792][ T40] audit: type=1326 audit(1754247922.527:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9315 comm="syz.0.619" exe="/syz-executor" sig=0 arch=40000003 syscall=146 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 151.259803][ T40] audit: type=1326 audit(1754247922.527:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9315 comm="syz.0.619" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 151.267802][ T40] audit: type=1326 audit(1754247922.527:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9315 comm="syz.0.619" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 151.275957][ T40] audit: type=1326 audit(1754247922.527:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9315 comm="syz.0.619" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 151.286013][ T40] audit: type=1326 audit(1754247922.527:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9315 comm="syz.0.619" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 151.295580][ T40] audit: type=1326 audit(1754247922.527:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9315 comm="syz.0.619" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 151.300287][ T34] usb 7-1: USB disconnect, device number 16 [ 151.332713][ T59] usb 6-1: USB disconnect, device number 16 [ 152.056236][ T9369] x_tables: ip_tables: udp match: only valid for protocol 17 [ 152.704039][ T9404] tmpfs: Bad value for 'mpol' [ 152.936018][ T29] usb 8-1: new high-speed USB device number 12 using dummy_hcd [ 153.163902][ T6050] usb 6-1: new high-speed USB device number 17 using dummy_hcd [ 153.233804][ T29] usb 8-1: Using ep0 maxpacket: 8 [ 153.274023][ T29] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 153.277242][ T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 153.282761][ T29] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 153.286576][ T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 153.290275][ T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 153.296003][ T29] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 153.298446][ T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 153.302226][ T29] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 153.306460][ T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 153.310292][ T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 153.315388][ T29] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 153.317896][ T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 153.321904][ T29] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 153.324888][ T6050] usb 6-1: Using ep0 maxpacket: 8 [ 153.326172][ T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 153.329367][ T6050] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 153.331531][ T29] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 153.336946][ T29] usb 8-1: string descriptor 0 read error: -22 [ 153.337168][ T29] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 153.350348][ T29] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 153.353072][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 153.357509][ T6050] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 153.361486][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 153.366234][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 153.370569][ T6050] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 153.373029][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 153.378273][ T6050] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 153.381974][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 153.385706][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 153.390406][ T6050] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 153.393195][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 153.397191][ T6050] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 153.400805][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 153.404356][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 153.410165][ T6050] usb 6-1: string descriptor 0 read error: -22 [ 153.412537][ T6050] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 153.416244][ T6050] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 153.472628][ T6050] adutux 6-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 153.490962][ T29] adutux 8-1:168.0: ADU100 now attached to /dev/usb/adutux1 [ 153.645413][ T6028] usb 6-1: USB disconnect, device number 17 [ 153.727042][ T6010] usb 8-1: USB disconnect, device number 12 [ 154.332775][ T9468] block device autoloading is deprecated and will be removed. [ 154.337806][ T9467] md: md2 stopped. [ 154.392533][ T9467] input: syz1 as /devices/virtual/input/input11 [ 154.443346][ T9480] bridge_slave_0: left allmulticast mode [ 154.446111][ T9480] bridge_slave_0: left promiscuous mode [ 154.448227][ T9480] bridge0: port 1(bridge_slave_0) entered disabled state [ 154.462584][ T9480] bridge_slave_1: left allmulticast mode [ 154.470488][ T9480] bridge_slave_1: left promiscuous mode [ 154.472504][ T9480] bridge0: port 2(bridge_slave_1) entered disabled state [ 154.480055][ T9480] bond0: (slave bond_slave_0): Releasing backup interface [ 154.488054][ T9480] bond0: (slave bond_slave_1): Releasing backup interface [ 154.503920][ T9480] team0: Port device team_slave_0 removed [ 154.510086][ T9480] team0: Port device team_slave_1 removed [ 154.512628][ T9480] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 154.516669][ T9480] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 154.520878][ T9480] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 154.523975][ T9480] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 155.554125][ T6028] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 155.713932][ T6028] usb 5-1: Using ep0 maxpacket: 8 [ 155.750914][ T6028] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 155.754036][ T6028] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 155.758062][ T6028] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 155.762019][ T6028] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 155.798177][ T6028] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 155.816694][ T6028] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 155.819150][ T6028] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 155.823686][ T6028] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 155.829124][ T6028] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 155.832719][ T6028] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 155.837421][ T6028] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 155.840417][ T6028] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 155.845129][ T6028] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 155.848960][ T6028] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 155.853535][ T6028] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 155.858509][ T34] usb 8-1: new high-speed USB device number 13 using dummy_hcd [ 155.870961][ T6028] usb 5-1: string descriptor 0 read error: -22 [ 155.873560][ T6028] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 155.879422][ T6028] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 155.897795][ T6028] adutux 5-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 156.017024][ T34] usb 8-1: Using ep0 maxpacket: 8 [ 156.020030][ T34] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 156.022929][ T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 156.027246][ T34] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 156.031172][ T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 156.034851][ T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 156.039194][ T34] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 156.041677][ T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 156.048444][ T34] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 156.052091][ T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 156.056540][ T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 156.061342][ T34] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 156.064464][ T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 156.068577][ T34] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 156.072194][ T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 156.075900][ T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 156.082098][ T34] usb 8-1: string descriptor 0 read error: -22 [ 156.087043][ T34] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 156.090604][ T34] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 156.097787][ T59] usb 5-1: USB disconnect, device number 15 [ 156.100894][ T34] adutux 8-1:168.0: ADU100 now attached to /dev/usb/adutux1 [ 156.298197][ T6010] usb 8-1: USB disconnect, device number 13 [ 157.117422][ T34] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 157.262301][ T9649] bridge_slave_0: left allmulticast mode [ 157.265455][ T9649] bridge_slave_0: left promiscuous mode [ 157.267437][ T9649] bridge0: port 1(bridge_slave_0) entered disabled state [ 157.273580][ T9649] bridge_slave_1: left allmulticast mode [ 157.276608][ T9649] bridge_slave_1: left promiscuous mode [ 157.279168][ T9649] bridge0: port 2(bridge_slave_1) entered disabled state [ 157.283825][ T34] usb 5-1: Using ep0 maxpacket: 8 [ 157.286979][ T9649] bond0: (slave bond_slave_0): Releasing backup interface [ 157.287043][ T34] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 157.291877][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 157.295952][ T34] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 157.299532][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 157.302791][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 157.309006][ T34] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 157.311680][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 157.316292][ T9649] bond0: (slave bond_slave_1): Releasing backup interface [ 157.318541][ T34] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 157.322134][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 157.328054][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 157.335595][ T34] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 157.338067][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 157.341632][ T34] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 157.348342][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 157.353893][ T34] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 157.368163][ T34] usb 5-1: string descriptor 0 read error: -22 [ 157.370483][ T34] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 157.373402][ T34] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 157.376675][ T9649] team0: Port device team_slave_0 removed [ 157.384955][ T34] adutux 5-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 157.388567][ T9649] team0: Port device team_slave_1 removed [ 157.391122][ T9649] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 157.394410][ T9649] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 157.415779][ T9649] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 157.418569][ T9649] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 157.638203][ T6388] usb 5-1: USB disconnect, device number 16 [ 157.710576][ T9673] tipc: Enabling of bearer rejected, failed to enable media [ 157.753205][ T9673] netlink: 12 bytes leftover after parsing attributes in process `syz.3.664'. [ 157.773885][ T34] usb 7-1: new high-speed USB device number 17 using dummy_hcd [ 157.953977][ T34] usb 7-1: Using ep0 maxpacket: 8 [ 157.960922][ T34] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 157.965335][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 157.968927][ T34] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 157.972635][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 157.978120][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 157.982357][ T34] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 157.984878][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 157.988482][ T34] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 157.992522][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 157.996606][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 158.000960][ T34] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 158.003289][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 158.007208][ T34] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 158.011597][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 158.015884][ T34] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 158.021713][ T34] usb 7-1: string descriptor 0 read error: -22 [ 158.023850][ T34] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 158.026642][ T34] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 158.034351][ T34] adutux 7-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 158.043843][ T6050] usb 6-1: new high-speed USB device number 18 using dummy_hcd [ 158.193918][ T6050] usb 6-1: Using ep0 maxpacket: 8 [ 158.197618][ T6050] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 158.200004][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 158.204731][ T6050] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 158.209868][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 158.213639][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 158.223834][ T6010] usb 8-1: new high-speed USB device number 14 using dummy_hcd [ 158.227659][ T6050] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 158.230259][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 158.235440][ T6050] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 158.239913][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 158.244613][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 158.249674][ T6050] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 158.252151][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 158.255700][ T6050] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 158.260293][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 158.264228][ T6050] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 158.269853][ T6050] usb 6-1: string descriptor 0 read error: -22 [ 158.272021][ T6050] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 158.275293][ T6050] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 158.281441][ T6050] adutux 6-1:168.0: ADU100 now attached to /dev/usb/adutux1 [ 158.340814][ T6388] usb 7-1: USB disconnect, device number 17 [ 158.394282][ T6010] usb 8-1: Using ep0 maxpacket: 8 [ 158.424261][ T6010] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 158.427693][ T6010] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 158.436277][ T6010] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 158.443666][ T6010] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 158.447421][ T6010] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 158.472607][ T6010] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 158.483879][ T6050] usb 6-1: USB disconnect, device number 18 [ 158.484387][ T6010] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 158.489904][ T6010] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 158.494679][ T6010] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 158.498343][ T6010] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 158.505054][ T6010] usb 8-1: config 168 descriptor has 1 excess byte, ignoring [ 158.508175][ T6010] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 158.512661][ T6010] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 158.517052][ T6010] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 158.520574][ T6010] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 158.545972][ T6010] usb 8-1: string descriptor 0 read error: -22 [ 158.549118][ T6010] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 158.552312][ T6010] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 158.612200][ T6010] adutux 8-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 158.835416][ T53] usb 8-1: USB disconnect, device number 14 [ 159.612868][ T9763] netlink: 8 bytes leftover after parsing attributes in process `syz.2.668'. [ 159.618425][ T9763] netlink: 'syz.2.668': attribute type 5 has an invalid length. [ 159.622920][ T9763] netlink: 20 bytes leftover after parsing attributes in process `syz.2.668'. [ 159.649971][ T9763] geneve3: entered promiscuous mode [ 159.651832][ T9763] geneve3: entered allmulticast mode [ 159.660989][ T220] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0 [ 159.667283][ T220] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0 [ 159.670114][ T220] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0 [ 159.673207][ T220] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0 [ 160.144720][ T9800] 9pnet_fd: Insufficient options for proto=fd [ 160.187230][ T9782] ubi31: attaching mtd0 [ 160.191253][ T9782] ubi31: scanning is finished [ 160.192935][ T9782] ubi31: empty MTD device detected [ 160.260892][ T9782] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB) [ 160.264366][ T9782] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 160.267022][ T9782] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 160.269798][ T9782] ubi31: VID header offset: 64 (aligned 64), data offset: 128 [ 160.272659][ T9782] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 160.275047][ T9782] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 160.277764][ T9782] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2634791306 [ 160.280968][ T9782] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 160.314058][ T9805] ubi31: background thread "ubi_bgt31d" started, PID 9805 [ 160.465296][ T9815] FAULT_INJECTION: forcing a failure. [ 160.465296][ T9815] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 160.470485][ T9815] CPU: 2 UID: 0 PID: 9815 Comm: syz.0.682 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full) [ 160.470501][ T9815] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 160.470507][ T9815] Call Trace: [ 160.470511][ T9815] [ 160.470516][ T9815] dump_stack_lvl+0x16c/0x1f0 [ 160.470536][ T9815] should_fail_ex+0x512/0x640 [ 160.470549][ T9815] _copy_to_user+0x32/0xd0 [ 160.470563][ T9815] simple_read_from_buffer+0xcb/0x170 [ 160.470582][ T9815] proc_fail_nth_read+0x197/0x240 [ 160.470594][ T9815] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 160.470605][ T9815] ? rw_verify_area+0xcf/0x6c0 [ 160.470616][ T9815] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 160.470626][ T9815] vfs_read+0x1e4/0xc60 [ 160.470640][ T9815] ? __pfx_vfs_read+0x10/0x10 [ 160.470655][ T9815] ? find_held_lock+0x2b/0x80 [ 160.470670][ T9815] ? __fget_files+0x20e/0x3c0 [ 160.470685][ T9815] ksys_read+0x12a/0x250 [ 160.470696][ T9815] ? __pfx_ksys_read+0x10/0x10 [ 160.470709][ T9815] ? rcu_is_watching+0x12/0xc0 [ 160.470722][ T9815] __do_fast_syscall_32+0x7c/0x3a0 [ 160.470739][ T9815] do_fast_syscall_32+0x32/0x80 [ 160.470754][ T9815] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 160.470768][ T9815] RIP: 0023:0xf70ae579 [ 160.470776][ T9815] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 160.470786][ T9815] RSP: 002b:00000000f509e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 160.470797][ T9815] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f509e620 [ 160.470803][ T9815] RDX: 000000000000000f RSI: 00000000f7414ff4 RDI: 0000000000000000 [ 160.470809][ T9815] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 160.470815][ T9815] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 160.470821][ T9815] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 160.470833][ T9815] [ 162.640391][ T9893] netlink: 12 bytes leftover after parsing attributes in process `syz.1.704'. [ 162.644247][ T9893] netlink: 'syz.1.704': attribute type 1 has an invalid length. [ 162.646712][ T9893] netlink: 396 bytes leftover after parsing attributes in process `syz.1.704'. [ 162.649526][ T9893] NCSI netlink: No device for ifindex 0 [ 162.653000][ T9893] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 162.734178][ T5981] Bluetooth: unknown link type 53 [ 162.735859][ T5981] Bluetooth: hci0: connection err: -111 [ 163.931925][ T9929] netlink: 8 bytes leftover after parsing attributes in process `syz.3.708'. [ 165.471381][ T9964] netlink: 12 bytes leftover after parsing attributes in process `syz.0.713'. [ 165.478105][ T9964] netlink: 'syz.0.713': attribute type 1 has an invalid length. [ 165.480652][ T9964] netlink: 396 bytes leftover after parsing attributes in process `syz.0.713'. [ 165.483687][ T9964] NCSI netlink: No device for ifindex 0 [ 165.487967][ T9964] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 166.046756][ T9987] netlink: 8 bytes leftover after parsing attributes in process `syz.0.719'. [ 166.368259][T10002] tipc: Enabled bearer , priority 0 [ 166.373327][T10002] syzkaller0: entered promiscuous mode [ 166.375913][T10002] syzkaller0: entered allmulticast mode [ 166.411402][T10002] tipc: Resetting bearer [ 166.972156][ T9995] tipc: Resetting bearer [ 166.985436][ T9995] tipc: Disabling bearer [ 166.997851][T10029] netlink: 12 bytes leftover after parsing attributes in process `syz.1.726'. [ 167.001875][T10029] netlink: 'syz.1.726': attribute type 1 has an invalid length. [ 167.004589][T10029] netlink: 396 bytes leftover after parsing attributes in process `syz.1.726'. [ 167.007667][T10029] NCSI netlink: No device for ifindex 0 [ 167.011453][T10029] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 167.075010][ T9] usb 8-1: new high-speed USB device number 15 using dummy_hcd [ 167.178999][T10039] netlink: 20 bytes leftover after parsing attributes in process `syz.1.728'. [ 167.187081][T10039] netlink: 32 bytes leftover after parsing attributes in process `syz.1.728'. [ 167.223790][ T9] usb 8-1: Using ep0 maxpacket: 16 [ 167.228386][ T9] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 167.236624][ T9] usb 8-1: config 0 has no interfaces? [ 167.239474][ T9] usb 8-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 167.243993][ T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 167.267868][ T9] usb 8-1: config 0 descriptor?? [ 167.486853][T10012] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 167.492634][T10012] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 167.501975][ T9] usb 8-1: USB disconnect, device number 15 [ 168.086181][T10047] raw_sendmsg: syz.1.730 forgot to set AF_INET. Fix it! [ 168.385455][T10063] netlink: 4 bytes leftover after parsing attributes in process `syz.0.732'. [ 168.388802][T10063] netlink: 12 bytes leftover after parsing attributes in process `syz.0.732'. [ 168.573988][T10071] usb usb8: usbfs: process 10071 (syz.2.734) did not claim interface 0 before use [ 168.803351][T10069] tmpfs: Bad value for 'mpol' [ 169.156767][T10088] __nla_validate_parse: 1 callbacks suppressed [ 169.156778][T10088] netlink: 12 bytes leftover after parsing attributes in process `syz.3.737'. [ 169.169418][T10088] netlink: 'syz.3.737': attribute type 1 has an invalid length. [ 169.171843][T10088] netlink: 396 bytes leftover after parsing attributes in process `syz.3.737'. [ 169.175956][T10088] NCSI netlink: No device for ifindex 0 [ 169.180119][T10088] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 170.165813][ T5988] Bluetooth: hci2: command 0x0406 tx timeout [ 170.167832][ T5988] Bluetooth: hci1: command 0x0401 tx timeout [ 171.106767][T10177] FAULT_INJECTION: forcing a failure. [ 171.106767][T10177] name failslab, interval 1, probability 0, space 0, times 0 [ 171.110833][T10177] CPU: 0 UID: 0 PID: 10177 Comm: syz.3.752 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full) [ 171.110847][T10177] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 171.110854][T10177] Call Trace: [ 171.110858][T10177] [ 171.110862][T10177] dump_stack_lvl+0x16c/0x1f0 [ 171.110881][T10177] should_fail_ex+0x512/0x640 [ 171.110892][T10177] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 171.110906][T10177] should_failslab+0xc2/0x120 [ 171.110920][T10177] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 171.110931][T10177] ? copy_process+0x4b6/0x7690 [ 171.110947][T10177] copy_process+0x4b6/0x7690 [ 171.110965][T10177] ? __pfx_copy_process+0x10/0x10 [ 171.110980][T10177] ? lockdep_init_map_type+0x5c/0x280 [ 171.110995][T10177] ? lockdep_init_map_type+0x5c/0x280 [ 171.111008][T10177] ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10 [ 171.111023][T10177] ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10 [ 171.111039][T10177] vhost_task_create+0x1d2/0x2e0 [ 171.111053][T10177] ? __pfx_vhost_task_create+0x10/0x10 [ 171.111072][T10177] ? __pfx_vhost_task_fn+0x10/0x10 [ 171.111092][T10177] kvm_mmu_post_init_vm+0x1b7/0x380 [ 171.111104][T10177] kvm_arch_vcpu_ioctl_run+0x66/0x1980 [ 171.111118][T10177] ? kvm_vcpu_ioctl+0x14c6/0x1690 [ 171.111134][T10177] kvm_vcpu_ioctl+0x5eb/0x1690 [ 171.111148][T10177] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 171.111161][T10177] ? tomoyo_path_number_perm+0x18d/0x580 [ 171.111174][T10177] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 171.111189][T10177] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 171.111205][T10177] ? do_vfs_ioctl+0x128/0x14f0 [ 171.111221][T10177] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 171.111242][T10177] kvm_vcpu_compat_ioctl+0x20f/0x3d0 [ 171.111256][T10177] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 171.111269][T10177] ? __fget_files+0x20e/0x3c0 [ 171.111282][T10177] ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10 [ 171.111296][T10177] __ia32_compat_sys_ioctl+0x23f/0x370 [ 171.111317][T10177] __do_fast_syscall_32+0x7c/0x3a0 [ 171.111334][T10177] do_fast_syscall_32+0x32/0x80 [ 171.111349][T10177] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 171.111362][T10177] RIP: 0023:0xf709e579 [ 171.111370][T10177] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 171.111380][T10177] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 171.111390][T10177] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000000ae80 [ 171.111397][T10177] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 171.111402][T10177] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 171.111408][T10177] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 171.111414][T10177] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 171.111427][T10177] [ 171.133418][T10069] Set syz1 is full, maxelem 65536 reached [ 171.432638][T10193] usb usb8: usbfs: process 10193 (syz.2.757) did not claim interface 0 before use [ 172.265165][T10217] netlink: 160 bytes leftover after parsing attributes in process `syz.1.760'. [ 172.358022][T10225] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 172.545949][T10241] ptrace attach of "/syz-executor exec"[5982] was attempted by "/syz-executor exec"[10241] [ 173.871690][T10240] kernel profiling enabled (shift: 17) [ 175.592666][T10275] netlink: 4 bytes leftover after parsing attributes in process `syz.3.778'. [ 175.755069][T10280] FAULT_INJECTION: forcing a failure. [ 175.755069][T10280] name failslab, interval 1, probability 0, space 0, times 0 [ 175.760113][T10280] CPU: 3 UID: 0 PID: 10280 Comm: syz.0.780 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full) [ 175.760129][T10280] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 175.760136][T10280] Call Trace: [ 175.760140][T10280] [ 175.760144][T10280] dump_stack_lvl+0x16c/0x1f0 [ 175.760163][T10280] should_fail_ex+0x512/0x640 [ 175.760176][T10280] should_failslab+0xc2/0x120 [ 175.760190][T10280] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 175.760203][T10280] ? __alloc_skb+0x2b2/0x380 [ 175.760220][T10280] __alloc_skb+0x2b2/0x380 [ 175.760234][T10280] ? __pfx___alloc_skb+0x10/0x10 [ 175.760253][T10280] hci_sock_sendmsg+0x1a6f/0x25f0 [ 175.760272][T10280] ? __pfx_hci_sock_sendmsg+0x10/0x10 [ 175.760294][T10280] sock_write_iter+0x4ff/0x5b0 [ 175.760307][T10280] ? __pfx_sock_write_iter+0x10/0x10 [ 175.760324][T10280] ? bpf_lsm_file_permission+0x9/0x10 [ 175.760338][T10280] ? security_file_permission+0x71/0x210 [ 175.760352][T10280] ? rw_verify_area+0xcf/0x6c0 [ 175.760363][T10280] vfs_write+0x6c7/0x1150 [ 175.760375][T10280] ? __pfx_sock_write_iter+0x10/0x10 [ 175.760388][T10280] ? __pfx_vfs_write+0x10/0x10 [ 175.760398][T10280] ? find_held_lock+0x2b/0x80 [ 175.760418][T10280] ksys_write+0x1f8/0x250 [ 175.760429][T10280] ? __pfx_ksys_write+0x10/0x10 [ 175.760442][T10280] ? rcu_is_watching+0x12/0xc0 [ 175.760455][T10280] __do_fast_syscall_32+0x7c/0x3a0 [ 175.760472][T10280] do_fast_syscall_32+0x32/0x80 [ 175.760488][T10280] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 175.760501][T10280] RIP: 0023:0xf70ae579 [ 175.760510][T10280] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 175.760520][T10280] RSP: 002b:00000000f509e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 175.760531][T10280] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000000 [ 175.760541][T10280] RDX: 000000000000000d RSI: 0000000000000000 RDI: 0000000000000000 [ 175.760547][T10280] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 175.760553][T10280] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 175.760559][T10280] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 175.760575][T10280] [ 175.760583][T10280] Bluetooth: MGMT ver 1.23 [ 177.180746][T10301] netlink: 244 bytes leftover after parsing attributes in process `syz.3.786'. [ 179.036555][T10349] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7) [ 179.038958][T10349] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 179.043172][T10349] vhci_hcd vhci_hcd.0: Device attached [ 179.223859][ T34] vhci_hcd: vhci_device speed not set [ 179.293776][ T34] usb 37-1: new high-speed USB device number 3 using vhci_hcd [ 179.303794][ T53] usb 5-1: new low-speed USB device number 17 using dummy_hcd [ 179.339407][T10357] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2 [ 179.344752][T10357] FAULT_INJECTION: forcing a failure. [ 179.344752][T10357] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 179.348853][T10357] CPU: 3 UID: 0 PID: 10357 Comm: syz.3.803 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full) [ 179.348869][T10357] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 179.348876][T10357] Call Trace: [ 179.348880][T10357] [ 179.348884][T10357] dump_stack_lvl+0x16c/0x1f0 [ 179.348904][T10357] should_fail_ex+0x512/0x640 [ 179.348918][T10357] _copy_to_user+0x32/0xd0 [ 179.348932][T10357] simple_read_from_buffer+0xcb/0x170 [ 179.348951][T10357] proc_fail_nth_read+0x197/0x240 [ 179.348981][T10357] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 179.348995][T10357] ? rw_verify_area+0xcf/0x6c0 [ 179.349006][T10357] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 179.349017][T10357] vfs_read+0x1e4/0xc60 [ 179.349031][T10357] ? __pfx_vfs_read+0x10/0x10 [ 179.349042][T10357] ? find_held_lock+0x2b/0x80 [ 179.349061][T10357] ? __fget_files+0x20e/0x3c0 [ 179.349077][T10357] ksys_read+0x12a/0x250 [ 179.349088][T10357] ? __pfx_ksys_read+0x10/0x10 [ 179.349101][T10357] ? rcu_is_watching+0x12/0xc0 [ 179.349114][T10357] __do_fast_syscall_32+0x7c/0x3a0 [ 179.349135][T10357] do_fast_syscall_32+0x32/0x80 [ 179.349152][T10357] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 179.349166][T10357] RIP: 0023:0xf709e579 [ 179.349175][T10357] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 179.349186][T10357] RSP: 002b:00000000f508e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 179.349197][T10357] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f508e620 [ 179.349204][T10357] RDX: 000000000000000f RSI: 00000000f7404ff4 RDI: 0000000000000000 [ 179.349210][T10357] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 179.349216][T10357] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 179.349222][T10357] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 179.349236][T10357] [ 179.483835][ T53] usb 5-1: device descriptor read/64, error -71 [ 179.567574][T10368] block device autoloading is deprecated and will be removed. [ 179.570170][T10368] syz.3.807: attempt to access beyond end of device [ 179.570170][T10368] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 179.617022][ T5981] Bluetooth: unknown link type 53 [ 179.618702][ T5981] Bluetooth: hci3: connection err: -111 [ 179.658536][T10372] netlink: 'syz.2.816': attribute type 1 has an invalid length. [ 179.661043][T10372] netlink: 396 bytes leftover after parsing attributes in process `syz.2.816'. [ 179.665792][T10372] NCSI netlink: No device for ifindex 0 [ 179.669593][T10372] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 179.724646][ T53] usb 5-1: new low-speed USB device number 18 using dummy_hcd [ 179.853870][ T53] usb 5-1: device descriptor read/64, error -71 [ 179.964092][ T53] usb usb5-port1: attempt power cycle [ 180.314072][ T53] usb 5-1: new low-speed USB device number 19 using dummy_hcd [ 180.334673][ T53] usb 5-1: device descriptor read/8, error -71 [ 180.573888][ T53] usb 5-1: new low-speed USB device number 20 using dummy_hcd [ 180.594638][ T53] usb 5-1: device descriptor read/8, error -71 [ 180.704087][ T53] usb usb5-port1: unable to enumerate USB device [ 181.796825][T10350] vhci_hcd: connection reset by peer [ 181.801130][ T60] vhci_hcd: stop threads [ 181.802582][ T60] vhci_hcd: release socket [ 181.804452][ T60] vhci_hcd: disconnect device [ 182.843820][ T29] usb 5-1: new high-speed USB device number 21 using dummy_hcd [ 182.903983][T10419] netlink: 8 bytes leftover after parsing attributes in process `syz.2.820'. [ 182.960800][T10420] input: syz1 as /devices/virtual/input/input12 [ 182.993790][ T29] usb 5-1: Using ep0 maxpacket: 8 [ 182.998140][ T29] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 183.000687][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 183.004325][ T29] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 183.008012][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 183.011783][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 183.016549][ T29] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 183.019012][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 183.022498][ T29] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 183.026133][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 183.029692][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 183.035288][ T29] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 183.037948][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 183.042299][ T29] usb 5-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 183.046673][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 183.050352][ T29] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 183.057156][ T29] usb 5-1: string descriptor 0 read error: -22 [ 183.059363][ T29] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 183.062519][ T29] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 183.071880][ T29] adutux 5-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 183.093882][ T59] usb 6-1: new high-speed USB device number 19 using dummy_hcd [ 183.253898][ T59] usb 6-1: Using ep0 maxpacket: 8 [ 183.258256][ T59] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 183.261661][ T59] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 183.266684][ T59] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 183.271870][ T59] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 183.276651][ T59] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 183.279709][ T29] usb 5-1: USB disconnect, device number 21 [ 183.282841][ T59] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 183.287051][ T59] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 183.291996][ T59] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 183.297347][ T59] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 183.302138][ T59] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 183.307957][ T59] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 183.311235][ T59] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 183.316305][ T59] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 183.321262][ T59] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 183.326113][ T59] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 183.334919][ T59] usb 6-1: string descriptor 0 read error: -22 [ 183.337668][ T59] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 183.341455][ T59] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 183.350568][ T59] adutux 6-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 183.550992][ T59] usb 6-1: USB disconnect, device number 19 [ 184.320652][T10437] netlink: 12 bytes leftover after parsing attributes in process `syz.1.830'. [ 184.340319][T10437] netlink: 'syz.1.830': attribute type 1 has an invalid length. [ 184.342778][T10437] netlink: 396 bytes leftover after parsing attributes in process `syz.1.830'. [ 184.346136][T10437] NCSI netlink: No device for ifindex 0 [ 184.349980][T10437] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 184.403862][ T34] vhci_hcd: vhci_device speed not set [ 184.682965][T10455] netlink: 8 bytes leftover after parsing attributes in process `syz.1.833'. [ 185.661205][T10471] netlink: 12 bytes leftover after parsing attributes in process `syz.2.841'. [ 185.679716][T10471] netlink: 'syz.2.841': attribute type 1 has an invalid length. [ 185.682103][T10471] netlink: 396 bytes leftover after parsing attributes in process `syz.2.841'. [ 185.685036][T10471] NCSI netlink: No device for ifindex 0 [ 185.688819][T10471] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 186.445444][T10488] netlink: 16 bytes leftover after parsing attributes in process `syz.3.847'. [ 186.448991][T10488] netlink: 104 bytes leftover after parsing attributes in process `syz.3.847'. [ 186.451778][T10488] netlink: 104 bytes leftover after parsing attributes in process `syz.3.847'. [ 186.477807][T10490] netlink: 12 bytes leftover after parsing attributes in process `syz.3.848'. [ 186.489561][T10490] bond1: entered promiscuous mode [ 186.491367][T10490] 8021q: adding VLAN 0 to HW filter on device bond1 [ 187.230393][T10514] usb usb8: usbfs: process 10514 (syz.2.851) did not claim interface 0 before use [ 187.704102][T10520] netlink: 'syz.1.855': attribute type 1 has an invalid length. [ 187.706773][T10520] NCSI netlink: No device for ifindex 0 [ 189.005780][T10538] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 189.008620][T10538] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 189.017865][T10538] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 189.020568][T10538] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 189.026532][T10538] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 189.029579][T10538] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 189.311755][T10553] __nla_validate_parse: 4 callbacks suppressed [ 189.311793][T10553] netlink: 8 bytes leftover after parsing attributes in process `syz.1.862'. [ 190.089567][T10562] netlink: 12 bytes leftover after parsing attributes in process `syz.2.867'. [ 190.114682][T10562] netlink: 'syz.2.867': attribute type 1 has an invalid length. [ 190.117344][T10562] netlink: 396 bytes leftover after parsing attributes in process `syz.2.867'. [ 190.120143][T10562] NCSI netlink: No device for ifindex 0 [ 190.122652][T10562] overlayfs: failed to resolve './file0': -2 [ 190.319522][ T5981] Bluetooth: hci1: command 0x0401 tx timeout [ 190.698051][T10579] block device autoloading is deprecated and will be removed. [ 191.034073][ T5981] Bluetooth: hci3: command 0x0406 tx timeout [ 191.034086][ T5986] Bluetooth: hci2: command 0x0406 tx timeout [ 191.829414][T10596] netlink: 12 bytes leftover after parsing attributes in process `syz.0.877'. [ 191.845720][T10596] netlink: 'syz.0.877': attribute type 1 has an invalid length. [ 191.848375][T10596] netlink: 396 bytes leftover after parsing attributes in process `syz.0.877'. [ 191.851223][T10596] NCSI netlink: No device for ifindex 0 [ 191.853527][T10596] overlayfs: failed to resolve './file0': -2 [ 191.973050][T10602] netlink: 8 bytes leftover after parsing attributes in process `syz.0.879'. [ 192.394023][ T5986] Bluetooth: hci1: command 0x0401 tx timeout [ 192.524791][ T53] usb 6-1: new high-speed USB device number 20 using dummy_hcd [ 192.673857][ T53] usb 6-1: Using ep0 maxpacket: 8 [ 192.676932][ T53] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 192.679345][ T53] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 192.682729][ T53] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 192.686650][ T53] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 192.690203][ T53] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 192.694643][ T53] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 192.696960][ T53] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 192.700565][ T53] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 192.704460][ T53] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 192.708122][ T53] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 192.713452][ T53] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 192.715984][ T53] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 192.719485][ T53] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 192.723147][ T53] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 192.726634][ T53] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 192.732837][ T53] usb 6-1: string descriptor 0 read error: -22 [ 192.734941][ T53] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 192.737554][ T53] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 192.743323][ T53] adutux 6-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 192.949680][T10629] netlink: 12 bytes leftover after parsing attributes in process `syz.0.887'. [ 192.954487][ T9] usb 6-1: USB disconnect, device number 20 [ 192.967685][T10629] netlink: 'syz.0.887': attribute type 1 has an invalid length. [ 192.970194][T10629] netlink: 396 bytes leftover after parsing attributes in process `syz.0.887'. [ 192.973063][T10629] NCSI netlink: No device for ifindex 0 [ 192.976104][T10629] overlayfs: failed to resolve './file0': -2 [ 193.114380][ T5986] Bluetooth: hci2: command 0x0406 tx timeout [ 193.124444][ T5986] Bluetooth: hci3: command 0x0406 tx timeout [ 193.417338][T10639] netlink: 8 bytes leftover after parsing attributes in process `syz.2.889'. [ 193.678586][ T1419] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.682193][ T1419] ieee802154 phy1 wpan1: encryption failed: -22 [ 193.879600][T10652] FAULT_INJECTION: forcing a failure. [ 193.879600][T10652] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 193.883911][T10652] CPU: 2 UID: 0 PID: 10652 Comm: syz.1.893 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full) [ 193.883936][T10652] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 193.883943][T10652] Call Trace: [ 193.883947][T10652] [ 193.883951][T10652] dump_stack_lvl+0x16c/0x1f0 [ 193.883972][T10652] should_fail_ex+0x512/0x640 [ 193.883989][T10652] _copy_to_user+0x32/0xd0 [ 193.884004][T10652] simple_read_from_buffer+0xcb/0x170 [ 193.884022][T10652] proc_fail_nth_read+0x197/0x240 [ 193.884038][T10652] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 193.884050][T10652] ? rw_verify_area+0xcf/0x6c0 [ 193.884060][T10652] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 193.884071][T10652] vfs_read+0x1e4/0xc60 [ 193.884084][T10652] ? __pfx_vfs_read+0x10/0x10 [ 193.884094][T10652] ? find_held_lock+0x2b/0x80 [ 193.884109][T10652] ? __fget_files+0x20e/0x3c0 [ 193.884124][T10652] ksys_read+0x12a/0x250 [ 193.884135][T10652] ? __pfx_ksys_read+0x10/0x10 [ 193.884147][T10652] ? rcu_is_watching+0x12/0xc0 [ 193.884160][T10652] __do_fast_syscall_32+0x7c/0x3a0 [ 193.884177][T10652] do_fast_syscall_32+0x32/0x80 [ 193.884193][T10652] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 193.884206][T10652] RIP: 0023:0xf707e579 [ 193.884214][T10652] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 193.884225][T10652] RSP: 002b:00000000f502c590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 193.884235][T10652] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 00000000f502c620 [ 193.884242][T10652] RDX: 000000000000000f RSI: 00000000f73e4ff4 RDI: 0000000000000000 [ 193.884248][T10652] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 193.884254][T10652] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 193.884259][T10652] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 193.884272][T10652] [ 194.172523][T10658] netlink: 12 bytes leftover after parsing attributes in process `syz.3.897'. [ 194.189476][T10658] netlink: 'syz.3.897': attribute type 1 has an invalid length. [ 194.192241][T10658] NCSI netlink: No device for ifindex 0 [ 194.197749][T10658] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 194.536420][T10665] FAULT_INJECTION: forcing a failure. [ 194.536420][T10665] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 194.540594][T10665] CPU: 0 UID: 0 PID: 10665 Comm: syz.2.899 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full) [ 194.540609][T10665] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 194.540616][T10665] Call Trace: [ 194.540619][T10665] [ 194.540623][T10665] dump_stack_lvl+0x16c/0x1f0 [ 194.540642][T10665] should_fail_ex+0x512/0x640 [ 194.540655][T10665] _copy_from_user+0x2e/0xd0 [ 194.540668][T10665] ? __pfx_binder_ioctl+0x10/0x10 [ 194.540679][T10665] binder_ioctl+0x51c/0x71f0 [ 194.540693][T10665] ? find_held_lock+0x2b/0x80 [ 194.540704][T10665] ? tomoyo_path_number_perm+0x295/0x580 [ 194.540717][T10665] ? tomoyo_path_number_perm+0x18d/0x580 [ 194.540729][T10665] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 194.540739][T10665] ? __pfx_binder_ioctl+0x10/0x10 [ 194.540754][T10665] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 194.540770][T10665] ? do_vfs_ioctl+0x128/0x14f0 [ 194.540786][T10665] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 194.540804][T10665] ? find_held_lock+0x2b/0x80 [ 194.540814][T10665] ? hook_file_ioctl_common+0x145/0x410 [ 194.540851][T10665] ? __fget_files+0x20e/0x3c0 [ 194.540864][T10665] ? __pfx_binder_ioctl+0x10/0x10 [ 194.540875][T10665] compat_ptr_ioctl+0x6b/0xa0 [ 194.540889][T10665] ? __pfx_compat_ptr_ioctl+0x10/0x10 [ 194.540903][T10665] __ia32_compat_sys_ioctl+0x23f/0x370 [ 194.540920][T10665] __do_fast_syscall_32+0x7c/0x3a0 [ 194.540938][T10665] do_fast_syscall_32+0x32/0x80 [ 194.540953][T10665] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 194.540966][T10665] RIP: 0023:0xf7f83579 [ 194.540975][T10665] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 194.540985][T10665] RSP: 002b:00000000f508555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 194.540995][T10665] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000c0306201 [ 194.541002][T10665] RDX: 0000000080000300 RSI: 0000000000000000 RDI: 0000000000000000 [ 194.541008][T10665] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 194.541013][T10665] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 194.541019][T10665] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 194.541032][T10665] [ 194.541036][T10665] binder: 10663:10665 ioctl c0306201 80000300 returned -14 [ 195.194516][T10680] __nla_validate_parse: 1 callbacks suppressed [ 195.194527][T10680] netlink: 12 bytes leftover after parsing attributes in process `syz.0.906'. [ 195.214081][T10680] netlink: 'syz.0.906': attribute type 1 has an invalid length. [ 195.216689][T10680] netlink: 396 bytes leftover after parsing attributes in process `syz.0.906'. [ 195.220104][T10680] NCSI netlink: No device for ifindex 0 [ 195.224662][T10680] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 195.585620][T10690] binder: Unknown parameter 'ita{g' [ 195.934802][T10677] Process accounting resumed [ 195.938714][T10705] netlink: 12 bytes leftover after parsing attributes in process `syz.3.915'. [ 195.957781][T10705] netlink: 'syz.3.915': attribute type 1 has an invalid length. [ 195.960287][T10705] netlink: 396 bytes leftover after parsing attributes in process `syz.3.915'. [ 195.963131][T10705] NCSI netlink: No device for ifindex 0 [ 195.966961][T10705] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 196.046369][T10711] netlink: 4 bytes leftover after parsing attributes in process `syz.1.916'. [ 196.049942][ C1] vcan0: j1939_session_tx_dat: 0xffff88806d004800: queue data error: -100 [ 196.161933][T10683] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 196.164689][T10683] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 196.166805][T10683] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 196.423790][ T6028] usb 7-1: new high-speed USB device number 18 using dummy_hcd [ 196.583800][ T6028] usb 7-1: Using ep0 maxpacket: 8 [ 196.591736][ T6028] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 196.594878][ T6028] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 196.599953][ T6028] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 196.604593][ T6028] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 196.608967][ T6028] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 196.617752][ T6028] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 196.621477][ T6028] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 196.625219][ T6028] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 196.629984][ T6028] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 196.633887][ T6028] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 196.639172][ T6028] usb 7-1: config 168 descriptor has 1 excess byte, ignoring [ 196.642443][ T6028] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 196.646366][ T6028] usb 7-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 196.650770][ T6028] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 196.654590][ T6028] usb 7-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 196.667392][ T6028] usb 7-1: string descriptor 0 read error: -22 [ 196.670664][ T6028] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 196.674592][ T6028] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 196.699986][ T6028] adutux 7-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 196.897573][ T9] usb 7-1: USB disconnect, device number 18 [ 197.384713][T10742] netlink: 12 bytes leftover after parsing attributes in process `syz.3.925'. [ 197.400974][T10742] netlink: 'syz.3.925': attribute type 1 has an invalid length. [ 197.403660][T10742] netlink: 396 bytes leftover after parsing attributes in process `syz.3.925'. [ 197.407143][T10742] NCSI netlink: No device for ifindex 0 [ 197.411227][T10742] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 197.443916][ T5986] Bluetooth: hci1: command 0x0401 tx timeout [ 197.819573][T10759] input: syz0 as /devices/virtual/input/input14 [ 198.042633][T10769] netlink: 12 bytes leftover after parsing attributes in process `syz.3.934'. [ 198.105518][T10771] netlink: 'syz.3.934': attribute type 1 has an invalid length. [ 198.108443][T10771] netlink: 396 bytes leftover after parsing attributes in process `syz.3.934'. [ 198.111387][T10771] NCSI netlink: No device for ifindex 0 [ 198.116771][T10771] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 198.243952][ T5986] Bluetooth: hci3: command 0x0406 tx timeout [ 198.246288][ T5981] Bluetooth: hci2: command 0x0406 tx timeout [ 198.507512][T10794] ================================================================== [ 198.507522][T10794] BUG: KASAN: vmalloc-out-of-bounds in sys_imageblit+0x1b3f/0x1e60 [ 198.507543][T10794] Write of size 8 at addr ffffc90004fa9000 by task syz.1.941/10794 [ 198.507552][T10794] [ 198.507559][T10794] CPU: 2 UID: 0 PID: 10794 Comm: syz.1.941 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full) [ 198.507573][T10794] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 198.507581][T10794] Call Trace: [ 198.507585][T10794] [ 198.507589][T10794] dump_stack_lvl+0x116/0x1f0 [ 198.507608][T10794] print_report+0xcd/0x630 [ 198.507622][T10794] ? __virt_addr_valid+0x81/0x610 [ 198.507637][T10794] ? sys_imageblit+0x1b3f/0x1e60 [ 198.507650][T10794] kasan_report+0xe0/0x110 [ 198.507663][T10794] ? sys_imageblit+0x1b3f/0x1e60 [ 198.507678][T10794] sys_imageblit+0x1b3f/0x1e60 [ 198.507693][T10794] ? __pfx_sys_imageblit+0x10/0x10 [ 198.507706][T10794] ? find_held_lock+0x2b/0x80 [ 198.507717][T10794] ? __queue_work+0x431/0x1160 [ 198.507728][T10794] ? preempt_schedule_notrace_thunk+0x16/0x30 [ 198.507746][T10794] ? queue_work_on+0x12a/0x1f0 [ 198.507755][T10794] ? fb_pad_unaligned_buffer+0x38d/0x440 [ 198.507774][T10794] drm_fbdev_shmem_defio_imageblit+0x20/0x130 [ 198.507793][T10794] bit_putcs+0x90f/0xde0 [ 198.507807][T10794] ? __pfx_bit_putcs+0x10/0x10 [ 198.507817][T10794] ? __vmap_pages_range_noflush+0x1d0/0x230 [ 198.507835][T10794] ? fb_get_color_depth+0x120/0x250 [ 198.507851][T10794] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 198.507869][T10794] ? __pfx_bit_putcs+0x10/0x10 [ 198.507879][T10794] fbcon_putcs+0x387/0x4a0 [ 198.507895][T10794] do_update_region+0x2e9/0x3f0 [ 198.507910][T10794] invert_screen+0x1e4/0x590 [ 198.507926][T10794] ? __pfx_invert_screen+0x10/0x10 [ 198.507943][T10794] ? __pfx_complement_pos+0x10/0x10 [ 198.507959][T10794] ? vc_do_resize+0x24d/0x10e0 [ 198.507974][T10794] ? __vmalloc_node_noprof+0xad/0xf0 [ 198.507992][T10794] clear_selection+0x59/0x70 [ 198.508007][T10794] vc_do_resize+0xd9b/0x10e0 [ 198.508025][T10794] ? __pfx_vc_do_resize+0x10/0x10 [ 198.508044][T10794] fbcon_set_disp+0x7ad/0xe40 [ 198.508059][T10794] set_con2fb_map+0x703/0x1060 [ 198.508082][T10794] fbcon_set_con2fb_map_ioctl+0x16c/0x220 [ 198.508093][T10794] ? __pfx_fbcon_set_con2fb_map_ioctl+0x10/0x10 [ 198.508105][T10794] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 198.508121][T10794] do_fb_ioctl+0x328/0x7e0 [ 198.508133][T10794] ? __pfx_do_fb_ioctl+0x10/0x10 [ 198.508145][T10794] ? lockdep_hardirqs_on+0x7c/0x110 [ 198.508162][T10794] ? find_held_lock+0x2b/0x80 [ 198.508179][T10794] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 198.508199][T10794] fb_compat_ioctl+0x55e/0x670 [ 198.508211][T10794] ? __pfx_fb_compat_ioctl+0x10/0x10 [ 198.508223][T10794] ? hook_file_ioctl_common+0x145/0x410 [ 198.508243][T10794] ? __fget_files+0x20e/0x3c0 [ 198.508256][T10794] ? __pfx_fb_compat_ioctl+0x10/0x10 [ 198.508269][T10794] __ia32_compat_sys_ioctl+0x23f/0x370 [ 198.508287][T10794] __do_fast_syscall_32+0x7c/0x3a0 [ 198.508304][T10794] do_fast_syscall_32+0x32/0x80 [ 198.508322][T10794] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 198.508338][T10794] RIP: 0023:0xf707e579 [ 198.508347][T10794] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 198.508358][T10794] RSP: 002b:00000000f502c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 198.508370][T10794] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000004610 [ 198.508378][T10794] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000 [ 198.508385][T10794] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 198.508392][T10794] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 198.508399][T10794] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 198.508409][T10794] [ 198.508413][T10794] [ 198.508416][T10794] The buggy address belongs to a 0-page vmalloc region starting at 0xffffc90004ca9000 allocated at drm_gem_shmem_vmap_locked+0x561/0x7e0 [ 198.508442][T10794] Memory state around the buggy address: [ 198.508449][T10794] ffffc90004fa8f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 198.508457][T10794] ffffc90004fa8f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 198.508465][T10794] >ffffc90004fa9000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 198.508471][T10794] ^ [ 198.508477][T10794] ffffc90004fa9080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 198.508485][T10794] ffffc90004fa9100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 198.508491][T10794] ================================================================== [ 198.508511][T10794] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 198.508519][T10794] CPU: 2 UID: 0 PID: 10794 Comm: syz.1.941 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full) [ 198.508534][T10794] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 198.508541][T10794] Call Trace: [ 198.508544][T10794] [ 198.508549][T10794] dump_stack_lvl+0x3d/0x1f0 [ 198.508566][T10794] vpanic+0x6a3/0x780 [ 198.508582][T10794] ? __pfx_vpanic+0x10/0x10 [ 198.508597][T10794] ? __pfx_vprintk_emit+0x10/0x10 [ 198.508611][T10794] ? sys_imageblit+0x1b3f/0x1e60 [ 198.508624][T10794] panic+0xca/0xd0 [ 198.508639][T10794] ? __pfx_panic+0x10/0x10 [ 198.508654][T10794] ? sys_imageblit+0x1b3f/0x1e60 [ 198.508667][T10794] ? preempt_schedule_common+0x44/0xc0 [ 198.508683][T10794] ? preempt_schedule_thunk+0x16/0x30 [ 198.508700][T10794] check_panic_on_warn+0xab/0xb0 [ 198.508716][T10794] end_report+0x107/0x170 [ 198.508729][T10794] kasan_report+0xee/0x110 [ 198.508743][T10794] ? sys_imageblit+0x1b3f/0x1e60 [ 198.508759][T10794] sys_imageblit+0x1b3f/0x1e60 [ 198.508774][T10794] ? __pfx_sys_imageblit+0x10/0x10 [ 198.508878][T10794] ? find_held_lock+0x2b/0x80 [ 198.508900][T10794] ? __queue_work+0x431/0x1160 [ 198.508911][T10794] ? preempt_schedule_notrace_thunk+0x16/0x30 [ 198.508929][T10794] ? queue_work_on+0x12a/0x1f0 [ 198.508942][T10794] ? fb_pad_unaligned_buffer+0x38d/0x440 [ 198.508961][T10794] drm_fbdev_shmem_defio_imageblit+0x20/0x130 [ 198.508983][T10794] bit_putcs+0x90f/0xde0 [ 198.508998][T10794] ? __pfx_bit_putcs+0x10/0x10 [ 198.509007][T10794] ? __vmap_pages_range_noflush+0x1d0/0x230 [ 198.509026][T10794] ? fb_get_color_depth+0x120/0x250 [ 198.509040][T10794] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 198.509058][T10794] ? __pfx_bit_putcs+0x10/0x10 [ 198.509067][T10794] fbcon_putcs+0x387/0x4a0 [ 198.509084][T10794] do_update_region+0x2e9/0x3f0 [ 198.509102][T10794] invert_screen+0x1e4/0x590 [ 198.509119][T10794] ? __pfx_invert_screen+0x10/0x10 [ 198.509134][T10794] ? __pfx_complement_pos+0x10/0x10 [ 198.509149][T10794] ? vc_do_resize+0x24d/0x10e0 [ 198.509163][T10794] ? __vmalloc_node_noprof+0xad/0xf0 [ 198.509183][T10794] clear_selection+0x59/0x70 [ 198.509198][T10794] vc_do_resize+0xd9b/0x10e0 [ 198.509215][T10794] ? __pfx_vc_do_resize+0x10/0x10 [ 198.509232][T10794] fbcon_set_disp+0x7ad/0xe40 [ 198.509248][T10794] set_con2fb_map+0x703/0x1060 [ 198.509264][T10794] fbcon_set_con2fb_map_ioctl+0x16c/0x220 [ 198.509275][T10794] ? __pfx_fbcon_set_con2fb_map_ioctl+0x10/0x10 [ 198.509286][T10794] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 198.509301][T10794] do_fb_ioctl+0x328/0x7e0 [ 198.509313][T10794] ? __pfx_do_fb_ioctl+0x10/0x10 [ 198.509346][T10794] ? lockdep_hardirqs_on+0x7c/0x110 [ 198.509365][T10794] ? find_held_lock+0x2b/0x80 [ 198.509381][T10794] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 198.509399][T10794] fb_compat_ioctl+0x55e/0x670 [ 198.509411][T10794] ? __pfx_fb_compat_ioctl+0x10/0x10 [ 198.509422][T10794] ? hook_file_ioctl_common+0x145/0x410 [ 198.509440][T10794] ? __fget_files+0x20e/0x3c0 [ 198.509453][T10794] ? __pfx_fb_compat_ioctl+0x10/0x10 [ 198.509464][T10794] __ia32_compat_sys_ioctl+0x23f/0x370 [ 198.509481][T10794] __do_fast_syscall_32+0x7c/0x3a0 [ 198.509497][T10794] do_fast_syscall_32+0x32/0x80 [ 198.509513][T10794] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 198.509530][T10794] RIP: 0023:0xf707e579 [ 198.509542][T10794] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 198.509553][T10794] RSP: 002b:00000000f502c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 198.509565][T10794] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000004610 [ 198.509571][T10794] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000 [ 198.509578][T10794] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 198.509584][T10794] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 198.509590][T10794] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 198.509599][T10794] [ 198.510203][T10794] Kernel Offset: disabled VM DIAGNOSIS: 19:06:09 Registers: info registers vcpu 0 CPU#0 RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81605730 RDX=ffffffff8e297780 RSI=ffffffff81605778 RDI=ffffffff93d9bfe0 RBP=0000000000000000 RSP=ffffc90000007fd0 R8 =0000000000000001 R9 =fffffbfff27b37fc R10=ffffffff93d9bfe7 R11=0000000000000000 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff81605779 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880974d6000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000080a0b000 CR3=0000000066e36000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81605730 RDX=ffff88805861c880 RSI=ffffffff81605778 RDI=ffffffff93d9bfe0 RBP=0000000000000001 RSP=ffffc90000590fd0 R8 =0000000000000001 R9 =fffffbfff27b37fc R10=ffffffff93d9bfe7 R11=0000000000000000 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff81605779 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880975d6000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000080aa5000 CR3=00000000792e3000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff855fb555 RDI=ffffffff9b0f6700 RBP=ffffffff9b0f66c0 RSP=ffffc90005abee30 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3030396366666666 R12=0000000000000000 R13=000000000000002e R14=ffffffff9b0f66c0 R15=ffffffff855fb4f0 RIP=ffffffff855fb57f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880976d6000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000000c398330 CR3=00000000792f6000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81605730 RDX=ffff88801c320000 RSI=ffffffff81605778 RDI=ffffffff93d9bfe0 RBP=0000000000000003 RSP=ffffc900005e8fd0 R8 =0000000000000001 R9 =fffffbfff27b37fc R10=ffffffff93d9bfe7 R11=0000000000000000 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff81605779 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880977d6000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f507d8a4 CR3=00000000691f9000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000