last executing test programs: 44.880911788s ago: executing program 0 (id=1223): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) read(r0, &(0x7f00000003c0)=""/136, 0x88) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x87}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb}, {0x0, 0x0, 0x200000000000000}}}, 0xb8}}, 0x2c004010) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@updpolicy={0xb8, 0x15, 0x105, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in6=@ipv4={'\x00', '\xff\xff', @loopback}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x10, 0x0, 0x2}, {0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x6e6bb5, 0x0, 0x0, 0x3, 0x3}}, 0xb8}, 0x1, 0x0, 0x0, 0x810}, 0x0) 44.820750595s ago: executing program 0 (id=1226): openat$zero(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=0x0, &(0x7f0000000000)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22}) io_uring_enter(r0, 0x48e9, 0x0, 0x2, 0x0, 0x0) 44.740356028s ago: executing program 0 (id=1229): bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x5, 0x2, 0x4}, 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b703000000000000850000007200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000300)='tlb_flush\x00', r1}, 0x10) 44.740211651s ago: executing program 0 (id=1230): mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0xb101e, 0x0) umount2(&(0x7f0000000180)='./file0/../file0\x00', 0x4) 44.689986995s ago: executing program 0 (id=1231): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000001d80)={0x0, @in6={{0xa, 0x4e23, 0x20006, @empty, 0x6}}, 0x7f, 0x2, 0x0, 0x5, 0x392, 0x94}, 0x9c) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, &(0x7f0000000100)=0x10) 44.431460188s ago: executing program 0 (id=1240): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0) close(r0) socket$xdp(0x2c, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r0, 0x8b19, &(0x7f0000000000)={'wlan1\x00', @random="0000230c1100"}) 44.407148504s ago: executing program 32 (id=1240): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0) close(r0) socket$xdp(0x2c, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r0, 0x8b19, &(0x7f0000000000)={'wlan1\x00', @random="0000230c1100"}) 1.925220156s ago: executing program 2 (id=2261): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'gre0\x00', 0x0}) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_pie={{0x8}, {0x14, 0x2, [@TCA_PIE_TARGET={0x6}, @TCA_PIE_TUPDATE={0x8, 0x3, 0x101}]}}]}, 0x8b}, 0x1, 0x0, 0x0, 0x8}, 0x0) 1.920630891s ago: executing program 1 (id=2262): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000d"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000a00)=ANY=[@ANYBLOB="18000000020000000000000004000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000006000000850000000600000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) 1.849464789s ago: executing program 2 (id=2264): r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000000100)={0x0, 0x3, 0x0, 0x1, 0x800}, 0x0, &(0x7f0000000240)={0x1f, 0x3}, 0x0, 0x0) write$dsp(r0, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000) 1.848999309s ago: executing program 1 (id=2266): r0 = socket(0x11, 0x800000003, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8b29, &(0x7f0000000000)={'wlan0\x00'}) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8b28, &(0x7f0000000000)={'wlan1\x00'}) 1.788886711s ago: executing program 1 (id=2268): mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001140)='net\x00') prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) getdents64(r0, 0x0, 0x0) 1.280983777s ago: executing program 4 (id=2275): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x9, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x6, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0x53, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x1e) 1.280262752s ago: executing program 4 (id=2276): open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000060000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0xa0c02, 0x0) 1.167349s ago: executing program 4 (id=2277): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='contention_begin\x00', r0, 0x0, 0x8}, 0x25) r1 = syz_open_procfs(0x0, &(0x7f0000000180)='net/ip_tables_matches\x00') pread64(r1, &(0x7f0000000040)=""/9, 0x9, 0x100) 983.283356ms ago: executing program 2 (id=2278): clock_gettime(0x7, &(0x7f0000000000)={0x0, 0x0}) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r2, &(0x7f0000847fff)='X', 0x34000, 0x600, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) clock_settime(0x0, &(0x7f0000000040)={r0, r1+10000000}) 973.552746ms ago: executing program 4 (id=2280): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x1, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x1000, 0x4000}) close(r1) 970.188364ms ago: executing program 1 (id=2281): r0 = syz_open_dev$dri(&(0x7f00000002c0), 0x2, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r0, 0xc05064a7, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000008c0)=[0x0], &(0x7f0000000900), 0x0, 0x1, 0x0, 0x0, r1}) ioctl$DRM_IOCTL_MODE_SETPROPERTY(r0, 0xc01064ab, &(0x7f00000009c0)={0x17df000000000000, r2, r1}) 890.447938ms ago: executing program 1 (id=2283): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x32cc0000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='numa_maps\x00') read$FUSE(r0, &(0x7f0000004a80)={0x2020}, 0xa2f) 830.739284ms ago: executing program 4 (id=2284): r0 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000000)=0xfffffffd, 0x4) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e21, 0x9, @private0={0xfc, 0x0, '\x00', 0x1}, 0xff}, 0x1c) getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000000)) 754.693204ms ago: executing program 1 (id=2287): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x4c9a0e7}}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) syz_usb_connect(0x5, 0x24, &(0x7f0000000140)={{0x12, 0x1, 0x110, 0x9, 0x28, 0xfc, 0x10, 0x5ac, 0x291, 0x4325, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x40, 0x0, [{{0x9, 0x4, 0x84, 0x0, 0x0, 0x3, 0xe1, 0x2}}]}}]}}, 0x0) openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x80082) 380.722246ms ago: executing program 3 (id=2297): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000003c0)=ANY=[@ANYBLOB="0100000000000000d901"]) 239.980781ms ago: executing program 3 (id=2298): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet_tcp_int(r0, 0x6, 0x18, &(0x7f0000000080)=0x80000049, 0x4) getsockopt$inet_tcp_int(r0, 0x6, 0x18, 0x0, &(0x7f0000000040)) 239.883243ms ago: executing program 3 (id=2299): mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount$tmpfs(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000080), 0x8000, &(0x7f00000024c0)=ANY=[@ANYBLOB='quota']) r0 = openat(0xffffffffffffff9c, &(0x7f0000004d00)='./file1\x00', 0x250942, 0x1cd) quotactl_fd$Q_GETNEXTQUOTA(r0, 0xffffffff80000901, 0xee00, 0x0) 239.719991ms ago: executing program 3 (id=2300): r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000280), 0x40900, 0x0) io_setup(0x3, &(0x7f00000003c0)=0x0) io_submit(r1, 0x1, &(0x7f0000000000)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}]) openat$nci(0xffffffffffffff9c, &(0x7f0000000480), 0x5400, 0x0) 110.574174ms ago: executing program 2 (id=2301): timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]}) process_madvise(0xffffffffffffffff, 0x0, 0x0, 0x3, 0x0) 110.401284ms ago: executing program 2 (id=2302): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000001c0), r0) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000200)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)={0x24, r1, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x2a, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000014}, 0x40000) 85.529351ms ago: executing program 3 (id=2303): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f00000001c0)=0x9, 0x4) r1 = socket$netlink(0x10, 0x3, 0x4) write(r1, &(0x7f0000005c00)="2700000014000707030e0000120f0a0011000100f5fe0012ff000000078a151f75080039000500", 0x27) 85.278356ms ago: executing program 2 (id=2304): bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="05000000050000000004000009"], 0x50) r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$UHID_CREATE(r0, &(0x7f00000000c0)={0x0, {'syz1\x00', 'syz1\x00', 'syz1\x00', &(0x7f00000006c0)=""/70, 0x46, 0x0, 0x9, 0x0, 0x41, 0x7f}}, 0x120) writev(r0, &(0x7f0000000780)=[{&(0x7f00000003c0)="0e000000", 0x4}, {&(0x7f00000006c0), 0x1000000}], 0x2) 135.774µs ago: executing program 3 (id=2305): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x5, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) get_robust_list(0x0, &(0x7f00000001c0)=0x0, &(0x7f0000000200)) 0s ago: executing program 4 (id=2306): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x400448cb, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f00000002c0), 0x40040, 0x0) syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="040e04141a0c"], 0x7) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:20704' (ED25519) to the list of known hosts. [ 42.066331][ T5918] cgroup: Unknown subsys name 'net' [ 42.192601][ T5918] cgroup: Unknown subsys name 'cpuset' [ 42.196304][ T5918] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 43.090780][ T5918] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 46.042194][ T5939] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 46.050942][ T5946] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 46.054449][ T5946] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 46.055487][ T5945] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 46.056951][ T5946] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 46.059597][ T5945] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 46.061896][ T5946] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 46.063792][ T5945] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 46.066039][ T5946] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 46.068378][ T5945] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 46.070891][ T5946] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 46.072410][ T5945] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 46.074916][ T5950] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 46.075751][ T5946] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 46.076491][ T5946] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 46.077098][ T5946] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 46.077523][ T5945] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 46.077712][ T5945] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 46.083614][ T5950] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 46.093738][ T5950] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 46.363325][ T5934] chnl_net:caif_netlink_parms(): no params data found [ 46.399771][ T5943] chnl_net:caif_netlink_parms(): no params data found [ 46.463622][ T5935] chnl_net:caif_netlink_parms(): no params data found [ 46.488485][ T5948] chnl_net:caif_netlink_parms(): no params data found [ 46.582462][ T5934] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.585161][ T5934] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.587555][ T5934] bridge_slave_0: entered allmulticast mode [ 46.590321][ T5934] bridge_slave_0: entered promiscuous mode [ 46.594785][ T5934] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.597000][ T5934] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.599263][ T5934] bridge_slave_1: entered allmulticast mode [ 46.601958][ T5934] bridge_slave_1: entered promiscuous mode [ 46.675543][ T5943] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.677869][ T5943] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.680566][ T5943] bridge_slave_0: entered allmulticast mode [ 46.683170][ T5943] bridge_slave_0: entered promiscuous mode [ 46.686606][ T5943] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.688846][ T5943] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.691194][ T5943] bridge_slave_1: entered allmulticast mode [ 46.693753][ T5943] bridge_slave_1: entered promiscuous mode [ 46.735986][ T5934] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.778070][ T5934] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.782001][ T5935] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.784380][ T5935] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.787085][ T5935] bridge_slave_0: entered allmulticast mode [ 46.791143][ T5935] bridge_slave_0: entered promiscuous mode [ 46.794795][ T5935] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.797013][ T5935] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.799259][ T5935] bridge_slave_1: entered allmulticast mode [ 46.801938][ T5935] bridge_slave_1: entered promiscuous mode [ 46.805531][ T5943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.853945][ T5943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.884799][ T5934] team0: Port device team_slave_0 added [ 46.902574][ T5935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.919521][ T5948] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.923066][ T5948] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.926489][ T5948] bridge_slave_0: entered allmulticast mode [ 46.930540][ T5948] bridge_slave_0: entered promiscuous mode [ 46.935164][ T5934] team0: Port device team_slave_1 added [ 46.938620][ T5935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.955136][ T5948] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.957422][ T5948] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.959662][ T5948] bridge_slave_1: entered allmulticast mode [ 46.962533][ T5948] bridge_slave_1: entered promiscuous mode [ 47.009299][ T5943] team0: Port device team_slave_0 added [ 47.036743][ T5934] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.038855][ T5934] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 47.046810][ T5934] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.051860][ T5934] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.054331][ T5934] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 47.063085][ T5934] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.090736][ T5935] team0: Port device team_slave_0 added [ 47.093499][ T5943] team0: Port device team_slave_1 added [ 47.097199][ T5948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.107268][ T5948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.111146][ T5935] team0: Port device team_slave_1 added [ 47.164875][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.167449][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 47.177545][ T5943] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.184186][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.187129][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 47.196153][ T5943] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.231526][ T5948] team0: Port device team_slave_0 added [ 47.258326][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.261438][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 47.271515][ T5935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.278415][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.280917][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 47.288857][ T5935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.310341][ T5934] hsr_slave_0: entered promiscuous mode [ 47.312626][ T5934] hsr_slave_1: entered promiscuous mode [ 47.315832][ T5948] team0: Port device team_slave_1 added [ 47.389470][ T5935] hsr_slave_0: entered promiscuous mode [ 47.392406][ T5935] hsr_slave_1: entered promiscuous mode [ 47.394841][ T5935] debugfs: 'hsr0' already exists in 'hsr' [ 47.396682][ T5935] Cannot create hsr debugfs directory [ 47.422607][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.424809][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 47.433029][ T5948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.440008][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.442681][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 47.450872][ T5948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.508599][ T5943] hsr_slave_0: entered promiscuous mode [ 47.510903][ T5943] hsr_slave_1: entered promiscuous mode [ 47.513124][ T5943] debugfs: 'hsr0' already exists in 'hsr' [ 47.515140][ T5943] Cannot create hsr debugfs directory [ 47.550347][ T5948] hsr_slave_0: entered promiscuous mode [ 47.552559][ T5948] hsr_slave_1: entered promiscuous mode [ 47.554608][ T5948] debugfs: 'hsr0' already exists in 'hsr' [ 47.556377][ T5948] Cannot create hsr debugfs directory [ 47.812201][ T5934] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 47.817282][ T5934] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 47.822154][ T5934] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 47.832980][ T5934] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 47.862253][ T5948] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 47.867134][ T5948] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 47.871994][ T5948] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 47.876359][ T5948] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 47.919717][ T5943] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 47.925762][ T5943] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 47.935867][ T5943] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 47.940925][ T5943] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 47.980627][ T5934] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.992890][ T5935] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 48.000896][ T5935] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 48.012208][ T5935] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 48.017367][ T5935] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 48.036171][ T5934] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.045224][ T5948] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.055335][ T1142] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.057773][ T1142] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.067499][ T1142] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.069755][ T1142] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.083617][ T5948] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.108502][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.111387][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.115602][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.118333][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.161926][ T5950] Bluetooth: hci0: command tx timeout [ 48.162152][ T64] Bluetooth: hci2: command tx timeout [ 48.166559][ T5299] Bluetooth: hci3: command tx timeout [ 48.170681][ T5299] Bluetooth: hci1: command tx timeout [ 48.172461][ T5943] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.179954][ T5935] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.203506][ T5943] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.208215][ T5935] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.221080][ T1141] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.223664][ T1141] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.227351][ T1141] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.229909][ T1141] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.237929][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.240423][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.246745][ T1141] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.249125][ T1141] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.321275][ T5934] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.343358][ T5934] veth0_vlan: entered promiscuous mode [ 48.349067][ T5934] veth1_vlan: entered promiscuous mode [ 48.385709][ T5934] veth0_macvtap: entered promiscuous mode [ 48.394906][ T5948] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.401402][ T5934] veth1_macvtap: entered promiscuous mode [ 48.421304][ T5934] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.427316][ T5934] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.437532][ T5935] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.451818][ T5943] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.457229][ T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.461443][ T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.474436][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.477826][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.499689][ T5948] veth0_vlan: entered promiscuous mode [ 48.517046][ T5948] veth1_vlan: entered promiscuous mode [ 48.517604][ T1141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.521768][ T1141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.539950][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.543394][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.545517][ T5935] veth0_vlan: entered promiscuous mode [ 48.551520][ T5943] veth0_vlan: entered promiscuous mode [ 48.559434][ T5935] veth1_vlan: entered promiscuous mode [ 48.563799][ T5943] veth1_vlan: entered promiscuous mode [ 48.571082][ T5948] veth0_macvtap: entered promiscuous mode [ 48.577314][ T5948] veth1_macvtap: entered promiscuous mode [ 48.577834][ T5934] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 48.598941][ T5935] veth0_macvtap: entered promiscuous mode [ 48.603400][ T5935] veth1_macvtap: entered promiscuous mode [ 48.611112][ T5943] veth0_macvtap: entered promiscuous mode [ 48.618158][ T5943] veth1_macvtap: entered promiscuous mode [ 48.622714][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.624971][ T6025] input: syz1 as /devices/virtual/input/input5 [ 48.627930][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.641942][ T60] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.649620][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.652511][ T60] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.655326][ T60] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.663647][ T60] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.668020][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.671991][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.684311][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.693558][ T1141] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.696288][ T1141] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.708067][ T1141] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.711905][ T1141] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.726141][ T1141] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.728914][ T1141] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.736111][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.738630][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.745680][ T1141] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.757181][ T1141] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.776314][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.779831][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.796663][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.799073][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.823350][ T1142] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.826286][ T1142] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.863119][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.866533][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.896381][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.899131][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.925463][ T6037] process 'syz.1.8' launched '/dev/fd/3' with NULL argv: empty string added [ 48.978745][ T6043] kvm: kvm [6041]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010007) = 0x6 [ 49.200092][ T6071] Bluetooth: MGMT ver 1.23 [ 49.300767][ T6081] netlink: 71 bytes leftover after parsing attributes in process `syz.3.26'. [ 49.799910][ T6144] autofs: Bad value for 'fd' [ 49.918813][ T6160] ======================================================= [ 49.918813][ T6160] WARNING: The mand mount option has been deprecated and [ 49.918813][ T6160] and is ignored by this kernel. Remove the mand [ 49.918813][ T6160] option from the mount to silence this warning. [ 49.918813][ T6160] ======================================================= [ 50.014158][ T6174] loop7: detected capacity change from 0 to 7 [ 50.018883][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 50.021839][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 50.026076][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 50.028881][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 50.031661][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 50.034456][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 50.037713][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 50.040731][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 50.044252][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 50.047124][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 50.049651][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 50.052527][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 50.055090][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 50.058012][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 50.060812][ T5953] ldm_validate_partition_table(): Disk read failed. [ 50.063378][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 50.066267][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 50.068823][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 50.071718][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 50.074289][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 50.077101][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 50.080178][ T5953] Dev loop7: unable to read RDB block 0 [ 50.083308][ T5953] loop7: unable to read partition table [ 50.085134][ T5953] loop7: partition table beyond EOD, truncated [ 50.112922][ T6183] loop7: detected capacity change from 7 to 0 [ 50.120687][ T6174] ldm_validate_partition_table(): Disk read failed. [ 50.123163][ T6174] Dev loop7: unable to read RDB block 0 [ 50.125028][ T6174] loop7: unable to read partition table [ 50.130590][ T6174] loop7: partition table beyond EOD, truncated [ 50.136419][ T6174] loop_reread_partitions: partition scan of loop7 (SJ_+]֋ S'(J^Z (633)eeDϫ?Ƣ4+) failed (rc=-5) [ 50.240319][ T5299] Bluetooth: hci0: command tx timeout [ 50.242153][ T5299] Bluetooth: hci1: command tx timeout [ 50.243855][ T5299] Bluetooth: hci3: command tx timeout [ 50.245553][ T5299] Bluetooth: hci2: command tx timeout [ 50.434249][ T6229] capability: warning: `syz.2.98' uses deprecated v2 capabilities in a way that may be insecure [ 50.550306][ T6030] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 50.702695][ T6030] usb 8-1: unable to get BOS descriptor or descriptor too short [ 50.706644][ T6030] usb 8-1: config 129 has an invalid interface number: 135 but max is 0 [ 50.709170][ T6030] usb 8-1: config 129 has an invalid interface number: 5 but max is 0 [ 50.712448][ T6030] usb 8-1: config 129 has 2 interfaces, different from the descriptor's value: 1 [ 50.716098][ T6030] usb 8-1: config 129 has no interface number 0 [ 50.718481][ T6030] usb 8-1: config 129 has no interface number 1 [ 50.722478][ T6030] usb 8-1: config 129 interface 135 altsetting 6 has 0 endpoint descriptors, different from the interface descriptor's value: 5 [ 50.726796][ T6030] usb 8-1: too many endpoints for config 129 interface 5 altsetting 7: 37, using maximum allowed: 30 [ 50.731275][ T6030] usb 8-1: config 129 interface 5 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 37 [ 50.735611][ T6030] usb 8-1: config 129 interface 135 has no altsetting 0 [ 50.737999][ T6030] usb 8-1: config 129 interface 5 has no altsetting 0 [ 50.744912][ T6030] usb 8-1: string descriptor 0 read error: -22 [ 50.747020][ T6030] usb 8-1: New USB device found, idVendor=2040, idProduct=721f, bcdDevice=f2.00 [ 50.749961][ T6030] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 50.774624][ T6030] usb 8-1: Quirk or no altset; falling back to MIDI 1.0 [ 50.777208][ T6030] usb 8-1: MIDIStreaming interface descriptor not found [ 51.029350][ T5992] usb 8-1: USB disconnect, device number 2 [ 51.140495][ T6286] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 51.215954][ T6296] netlink: 4 bytes leftover after parsing attributes in process `syz.0.129'. [ 51.344725][ T6314] netlink: 4 bytes leftover after parsing attributes in process `syz.2.137'. [ 51.424150][ T6323] capability: warning: `syz.0.142' uses 32-bit capabilities (legacy support in use) [ 51.460383][ T6331] netlink: 4 bytes leftover after parsing attributes in process `syz.1.146'. [ 51.561990][ T6341] Zero length message leads to an empty skb [ 51.625913][ T1142] Bluetooth: hci4: Frame reassembly failed (-84) [ 51.629520][ T6348] Bluetooth: hci4: Frame reassembly failed (-84) [ 51.702319][ T6356] warning: `syz.2.158' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 51.831884][ T6369] netlink: 8 bytes leftover after parsing attributes in process `syz.0.164'. [ 52.045847][ T6390] input: syz1 as /devices/virtual/input/input6 [ 52.096550][ T6396] overlayfs: missing 'workdir' [ 52.266015][ T6419] dlm: no local IP address has been set [ 52.267906][ T6419] dlm: cannot start dlm midcomms -107 [ 52.320641][ T5299] Bluetooth: hci2: command tx timeout [ 52.320826][ T5950] Bluetooth: hci3: command tx timeout [ 52.323000][ T5299] Bluetooth: hci1: command tx timeout [ 52.324709][ T5950] Bluetooth: hci0: command tx timeout [ 52.440846][ T46] Bluetooth: hci5: Frame reassembly failed (-84) [ 52.444266][ T6432] Bluetooth: received HCILL_WAKE_UP_IND in state 2 [ 52.473791][ T6436] netlink: 4 bytes leftover after parsing attributes in process `syz.2.196'. [ 53.141825][ T6444] netlink: 12 bytes leftover after parsing attributes in process `syz.3.200'. [ 53.144608][ T6444] netlink: 12 bytes leftover after parsing attributes in process `syz.3.200'. [ 53.680246][ T5299] Bluetooth: hci4: command 0x1003 tx timeout [ 53.680352][ T64] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 53.791099][ T59] kernel read not supported for file /138/net/wireless (pid: 59 comm: kworker/2:1) [ 53.858597][ T6490] loop7: detected capacity change from 0 to 7 [ 53.862370][ T6490] ldm_validate_partition_table(): Disk read failed. [ 53.864759][ T6490] Dev loop7: unable to read RDB block 0 [ 53.871035][ T6490] loop7: unable to read partition table [ 53.873068][ T6490] loop7: partition table beyond EOD, truncated [ 53.875115][ T6490] loop_reread_partitions: partition scan of loop7 () failed (rc=-5) [ 53.993855][ T6506] macvlan0: entered promiscuous mode [ 53.998424][ T6506] netlink: 'syz.3.229': attribute type 1 has an invalid length. [ 54.001601][ T6506] netlink: 'syz.3.229': attribute type 2 has an invalid length. [ 54.096548][ T6521] loop5: detected capacity change from 0 to 7 [ 54.101949][ T6521] Dev loop5: unable to read RDB block 7 [ 54.103802][ T6521] loop5: AHDI p1 p2 [ 54.105065][ T6521] loop5: partition table partially beyond EOD, truncated [ 54.107430][ T6521] loop5: p1 start 1702000233 is beyond EOD, truncated [ 54.150462][ T6526] mmap: syz.2.238 (6526) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 54.410423][ T64] Bluetooth: hci3: command tx timeout [ 54.411448][ T5299] Bluetooth: hci0: command tx timeout [ 54.412181][ T64] Bluetooth: hci2: command tx timeout [ 54.412201][ T64] Bluetooth: hci1: command tx timeout [ 54.490406][ T5950] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 54.490515][ T5299] Bluetooth: hci5: command 0x1003 tx timeout [ 54.554082][ T40] audit: type=1326 audit(1762027222.008:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.0.261" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000 [ 54.562106][ T40] audit: type=1326 audit(1762027222.008:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.0.261" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000 [ 54.569120][ T40] audit: type=1326 audit(1762027222.018:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.0.261" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf70bd579 code=0x7ffc0000 [ 54.575747][ T40] audit: type=1326 audit(1762027222.018:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.0.261" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000 [ 54.582347][ T40] audit: type=1326 audit(1762027222.018:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.0.261" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf70bd579 code=0x7ffc0000 [ 54.590520][ T40] audit: type=1326 audit(1762027222.038:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.0.261" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70bd598 code=0x7ffc0000 [ 54.603928][ T40] audit: type=1326 audit(1762027222.048:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.0.261" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70bd598 code=0x7ffc0000 [ 54.613605][ T40] audit: type=1326 audit(1762027222.048:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.0.261" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000 [ 54.630203][ T40] audit: type=1326 audit(1762027222.048:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.0.261" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70bd598 code=0x7ffc0000 [ 54.637398][ T6582] Bluetooth: hci4: Frame reassembly failed (-84) [ 54.638864][ T40] audit: type=1326 audit(1762027222.048:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6573 comm="syz.0.261" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd579 code=0x7ffc0000 [ 54.639816][ T12] Bluetooth: hci4: Frame reassembly failed (-84) [ 54.755859][ T1142] Bluetooth: hci5: Frame reassembly failed (-84) [ 54.757922][ T6588] Bluetooth: received HCILL_WAKE_UP_IND in state 2 [ 54.877513][ T6595] netlink: 168 bytes leftover after parsing attributes in process `syz.3.270'. [ 55.422747][ T6614] cgroup: fork rejected by pids controller in /syz3 [ 55.693052][ T1142] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 55.754690][ T1142] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 55.776330][ T6619] openvswitch: netlink: nsh attr 0 has unexpected len 251 expected 0 [ 55.779810][ T6619] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 55.828991][ T1142] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 55.888141][ T64] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 55.891966][ T64] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 55.894653][ T64] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 55.899207][ T64] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 55.901885][ T64] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 55.905731][ T1142] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 56.026735][ T6622] chnl_net:caif_netlink_parms(): no params data found [ 56.057988][ T1142] bridge_slave_1: left allmulticast mode [ 56.059829][ T1142] bridge_slave_1: left promiscuous mode [ 56.063116][ T1142] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.067997][ T1142] bridge_slave_0: left allmulticast mode [ 56.069742][ T1142] bridge_slave_0: left promiscuous mode [ 56.072727][ T1142] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.266904][ T1142] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 56.271133][ T1142] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 56.274583][ T1142] bond0 (unregistering): Released all slaves [ 56.362109][ T6622] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.364997][ T6622] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.370228][ T6622] bridge_slave_0: entered allmulticast mode [ 56.373018][ T6622] bridge_slave_0: entered promiscuous mode [ 56.376134][ T6622] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.382782][ T6622] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.385237][ T6622] bridge_slave_1: entered allmulticast mode [ 56.388301][ T6622] bridge_slave_1: entered promiscuous mode [ 56.449713][ T6622] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 56.454623][ T6622] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.526255][ T6622] team0: Port device team_slave_0 added [ 56.529391][ T6622] team0: Port device team_slave_1 added [ 56.573275][ T6622] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 56.575549][ T6622] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 56.583541][ T6622] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 56.587854][ T6622] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 56.590438][ T6622] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 56.599075][ T6622] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 56.618255][ T1142] hsr_slave_0: left promiscuous mode [ 56.621953][ T1142] hsr_slave_1: left promiscuous mode [ 56.624114][ T1142] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 56.626454][ T1142] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 56.629301][ T1142] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 56.633573][ T1142] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 56.649645][ T1142] veth1_macvtap: left promiscuous mode [ 56.651762][ T64] Bluetooth: hci4: command 0x1003 tx timeout [ 56.651860][ T5950] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 56.653919][ T1142] veth0_macvtap: left promiscuous mode [ 56.657513][ T1142] veth1_vlan: left promiscuous mode [ 56.660696][ T1142] veth0_vlan: left promiscuous mode [ 56.810323][ T5950] Bluetooth: hci5: command 0x1003 tx timeout [ 56.810786][ T5299] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 57.108550][ T1142] team0 (unregistering): Port device team_slave_1 removed [ 57.153955][ T1142] team0 (unregistering): Port device team_slave_0 removed [ 57.555765][ T6622] hsr_slave_0: entered promiscuous mode [ 57.558027][ T6622] hsr_slave_1: entered promiscuous mode [ 57.561062][ T6622] debugfs: 'hsr0' already exists in 'hsr' [ 57.562980][ T6622] Cannot create hsr debugfs directory [ 57.930250][ T5299] Bluetooth: hci0: command tx timeout [ 58.120254][ T53] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 58.136052][ T6622] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 58.142132][ T6622] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 58.146890][ T6622] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 58.151099][ T6622] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 58.186736][ T6622] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.195809][ T6622] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.200878][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.203144][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.209017][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.211356][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.290154][ T53] usb 5-1: Using ep0 maxpacket: 32 [ 58.294261][ T53] usb 5-1: config 0 has no interfaces? [ 58.296010][ T53] usb 5-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7 [ 58.298829][ T53] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 58.303931][ T53] usb 5-1: config 0 descriptor?? [ 58.315011][ T6622] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.337892][ T6622] veth0_vlan: entered promiscuous mode [ 58.343052][ T6622] veth1_vlan: entered promiscuous mode [ 58.355972][ T6622] veth0_macvtap: entered promiscuous mode [ 58.359597][ T6622] veth1_macvtap: entered promiscuous mode [ 58.368799][ T6622] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 58.374842][ T6622] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 58.380487][ T46] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.383595][ T46] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.387008][ T46] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.391212][ T46] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.419076][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.422606][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.433095][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.435859][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.515918][ T53] usb 5-1: USB disconnect, device number 2 [ 58.820290][ T6787] netlink: 27 bytes leftover after parsing attributes in process `syz.1.331'. [ 58.915160][ T6791] netlink: 4 bytes leftover after parsing attributes in process `syz.3.333'. [ 59.134018][ T6799] netlink: 24 bytes leftover after parsing attributes in process `syz.0.337'. [ 60.000289][ T5299] Bluetooth: hci0: command tx timeout [ 60.428711][ T6818] bond1: option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 60.433318][ T6818] bond1 (unregistering): Released all slaves [ 60.557404][ T13] Bluetooth: hci4: Frame reassembly failed (-84) [ 60.559903][ T6827] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 60.562894][ T13] Bluetooth: hci4: Frame reassembly failed (-84) [ 60.755187][ T6847] sp0: Synchronizing with TNC [ 60.761279][ T6846] [U] [ 60.791266][ T40] kauditd_printk_skb: 376 callbacks suppressed [ 60.791276][ T40] audit: type=1326 audit(1762027228.248:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6848 comm="syz.2.357" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f53598 code=0x7ffc0000 [ 60.799883][ T40] audit: type=1326 audit(1762027228.248:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6848 comm="syz.2.357" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f53598 code=0x7ffc0000 [ 60.806746][ T40] audit: type=1326 audit(1762027228.248:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6848 comm="syz.2.357" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f53598 code=0x7ffc0000 [ 60.813493][ T40] audit: type=1326 audit(1762027228.248:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6848 comm="syz.2.357" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f53598 code=0x7ffc0000 [ 60.820040][ T40] audit: type=1326 audit(1762027228.248:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6848 comm="syz.2.357" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f53598 code=0x7ffc0000 [ 60.829340][ T40] audit: type=1326 audit(1762027228.248:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6848 comm="syz.2.357" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f53598 code=0x7ffc0000 [ 60.836107][ T40] audit: type=1326 audit(1762027228.248:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6848 comm="syz.2.357" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f53598 code=0x7ffc0000 [ 60.842781][ T40] audit: type=1326 audit(1762027228.248:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6848 comm="syz.2.357" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f53598 code=0x7ffc0000 [ 60.849302][ T40] audit: type=1326 audit(1762027228.248:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6848 comm="syz.2.357" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f53598 code=0x7ffc0000 [ 60.855983][ T40] audit: type=1326 audit(1762027228.248:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6848 comm="syz.2.357" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f53598 code=0x7ffc0000 [ 60.969157][ T6863] netlink: 4 bytes leftover after parsing attributes in process `syz.3.365'. [ 61.341502][ T6887] netlink: 'syz.3.375': attribute type 5 has an invalid length. [ 61.533314][ T6895] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 61.615899][ T6901] syz.3.382 uses obsolete (PF_INET,SOCK_PACKET) [ 62.080892][ T5950] Bluetooth: hci0: command tx timeout [ 62.134413][ T6922] input: syz1 as /devices/virtual/input/input7 [ 62.328804][ T6942] netlink: 36 bytes leftover after parsing attributes in process `syz.3.401'. [ 62.560897][ T5299] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 62.582372][ T6960] serio: Serial port ptm0 [ 62.601049][ T6962] veth1_to_batadv: entered promiscuous mode [ 62.603085][ T6962] macsec1: entered promiscuous mode [ 62.866828][ T5299] Bluetooth: hci3: unexpected cc 0x203e length: 2 > 1 [ 63.777465][ T7039] bond1: option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 63.783019][ T7039] bond1 (unregistering): Released all slaves [ 64.160239][ T5299] Bluetooth: hci0: command tx timeout [ 64.254543][ T7079] vivid-002: disconnect [ 64.257250][ T7078] vivid-002: reconnect [ 64.282808][ T7083] usb usb8: usbfs: process 7083 (syz.3.468) did not claim interface 0 before use [ 64.821325][ T7128] block nbd0: server does not support multiple connections per device. [ 64.825208][ T7128] block nbd0: shutting down sockets [ 64.830981][ T24] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 64.990254][ T24] usb 7-1: Using ep0 maxpacket: 8 [ 64.994602][ T24] usb 7-1: New USB device found, idVendor=12d1, idProduct=fae2, bcdDevice=70.8b [ 64.997441][ T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 64.999946][ T24] usb 7-1: Product: syz [ 65.001497][ T24] usb 7-1: Manufacturer: syz [ 65.003007][ T24] usb 7-1: SerialNumber: syz [ 65.006721][ T24] usb 7-1: config 0 descriptor?? [ 65.011039][ T24] option 7-1:0.0: GSM modem (1-port) converter detected [ 65.211506][ T24] usb 7-1: USB disconnect, device number 2 [ 65.214362][ T24] option 7-1:0.0: device disconnected [ 66.047280][ T7185] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 66.050537][ T7185] block device autoloading is deprecated and will be removed. [ 66.504101][ T7225] netlink: 24 bytes leftover after parsing attributes in process `syz.2.536'. [ 66.506917][ T7225] netlink: 24 bytes leftover after parsing attributes in process `syz.2.536'. [ 66.881235][ T5299] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 66.883840][ T5299] Bluetooth: hci3: Injecting HCI hardware error event [ 66.886792][ T5299] Bluetooth: hci3: hardware error 0x00 [ 66.911503][ T40] kauditd_printk_skb: 361 callbacks suppressed [ 66.911514][ T40] audit: type=1326 audit(1762027234.368:759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7248 comm="syz.2.548" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 66.920205][ T40] audit: type=1326 audit(1762027234.368:760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7248 comm="syz.2.548" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 66.926757][ T40] audit: type=1326 audit(1762027234.368:761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7248 comm="syz.2.548" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 66.933523][ T40] audit: type=1326 audit(1762027234.368:762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7248 comm="syz.2.548" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 66.940074][ T40] audit: type=1326 audit(1762027234.368:763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7248 comm="syz.2.548" exe="/syz-executor" sig=0 arch=40000003 syscall=373 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 66.947584][ T40] audit: type=1326 audit(1762027234.368:764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7248 comm="syz.2.548" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 66.954174][ T40] audit: type=1326 audit(1762027234.368:765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7248 comm="syz.2.548" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 66.960658][ T40] audit: type=1326 audit(1762027234.368:766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7248 comm="syz.2.548" exe="/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 66.966999][ T40] audit: type=1326 audit(1762027234.368:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7248 comm="syz.2.548" exe="/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 67.459756][ T7300] @: renamed from vlan0 (while UP) [ 67.544607][ T7310] netlink: 4 bytes leftover after parsing attributes in process `syz.1.575'. [ 67.553243][ T7312] netlink: 4 bytes leftover after parsing attributes in process `syz.2.576'. [ 67.556005][ T7312] netlink: 4 bytes leftover after parsing attributes in process `syz.2.576'. [ 67.820603][ T24] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 67.981939][ T24] usb 6-1: Using ep0 maxpacket: 8 [ 67.987671][ T24] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 67.991594][ T24] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 67.994783][ T24] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 67.997944][ T24] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 68.004281][ T24] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 68.007126][ T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 68.060872][ T7334] sp0: Synchronizing with TNC [ 68.216233][ T24] usb 6-1: GET_CAPABILITIES returned 0 [ 68.218059][ T24] usbtmc 6-1:16.0: can't read capabilities [ 68.340890][ T7351] input: syz1 as /devices/virtual/input/input8 [ 68.423396][ T24] usb 6-1: USB disconnect, device number 2 [ 68.468952][ T7357] Illegal XDP return value 4294967274 on prog (id 71) dev N/A, expect packet loss! [ 68.751088][ T7380] block nbd0: Unsupported socket: should be TCP or UNIX. [ 68.960322][ T5299] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 69.073963][ T5938] IPVS: starting estimator thread 0... [ 69.171196][ T7409] IPVS: using max 43 ests per chain, 103200 per kthread [ 69.780174][ T59] usb 7-1: new low-speed USB device number 3 using dummy_hcd [ 70.090310][ T7496] serio: Serial port ptm0 [ 70.097051][ T7499] netlink: 8 bytes leftover after parsing attributes in process `syz.3.663'. [ 70.099836][ T7499] netlink: 12 bytes leftover after parsing attributes in process `syz.3.663'. [ 70.103503][ T7499] netlink: 'syz.3.663': attribute type 14 has an invalid length. [ 70.299398][ T7513] mkiss: ax0: crc mode is auto. [ 70.327749][ T7520] vivid-006: disconnect [ 70.522317][ T7542] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5) [ 70.524469][ T7542] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 70.528253][ T7542] vhci_hcd vhci_hcd.0: Device attached [ 70.531265][ T7543] vhci_hcd: connection closed [ 70.531727][ T13] vhci_hcd: stop threads [ 70.535062][ T13] vhci_hcd: release socket [ 70.536581][ T13] vhci_hcd: disconnect device [ 70.604466][ T7551] netlink: 'syz.0.686': attribute type 5 has an invalid length. [ 70.606937][ T7551] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.686'. [ 70.803748][ T1419] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.805818][ T1419] ieee802154 phy1 wpan1: encryption failed: -22 [ 70.986425][ T7574] netlink: 60 bytes leftover after parsing attributes in process `syz.0.697'. [ 71.108776][ T7515] vivid-006: reconnect [ 71.461659][ T7595] netlink: 4 bytes leftover after parsing attributes in process `syz.2.706'. [ 71.615903][ T7606] input: syz1 as /devices/virtual/input/input9 [ 71.840195][ T6030] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 71.955756][ C3] IPv4: Oversized IP packet from 172.20.20.24 [ 71.984995][ T40] audit: type=1326 audit(1762027239.438:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.3.720" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 71.994868][ T40] audit: type=1326 audit(1762027239.438:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.3.720" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 72.000177][ T6030] usb 7-1: Using ep0 maxpacket: 8 [ 72.008274][ T40] audit: type=1326 audit(1762027239.438:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.3.720" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 72.011267][ T6030] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 72.016135][ T40] audit: type=1326 audit(1762027239.438:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.3.720" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 72.018277][ T6030] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 72.030172][ T40] audit: type=1326 audit(1762027239.438:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.3.720" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 72.030286][ T6030] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 72.039067][ T40] audit: type=1326 audit(1762027239.438:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.3.720" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 72.041581][ T6030] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 72.053061][ T6030] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 72.053628][ T40] audit: type=1326 audit(1762027239.438:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.3.720" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 72.055854][ T6030] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 72.064373][ T40] audit: type=1326 audit(1762027239.438:775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.3.720" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 72.076159][ T40] audit: type=1326 audit(1762027239.438:776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.3.720" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 72.084908][ T40] audit: type=1326 audit(1762027239.438:777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7621 comm="syz.3.720" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 72.119286][ T7634] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 72.275947][ T6030] usb 7-1: usb_control_msg returned -32 [ 72.277772][ T6030] usbtmc 7-1:16.0: can't read capabilities [ 72.284040][ T6030] usb 7-1: USB disconnect, device number 4 [ 72.539630][ T7680] input: syz1 as /devices/virtual/input/input10 [ 73.594531][ T7724] vivid-000: disconnect [ 73.596338][ T7723] vivid-000: reconnect [ 73.602751][ T7726] netlink: 4 bytes leftover after parsing attributes in process `syz.3.776'. [ 73.840912][ T7754] netlink: 8 bytes leftover after parsing attributes in process `syz.0.783'. [ 73.922585][ T1142] Bluetooth: hci5: Frame reassembly failed (-84) [ 73.925005][ T7760] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 73.927698][ T1142] Bluetooth: hci5: Frame reassembly failed (-84) [ 75.167163][ T7847] netlink: 4 bytes leftover after parsing attributes in process `syz.0.827'. [ 75.520303][ T5299] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 75.520617][ T64] Bluetooth: hci4: command 0xfc11 tx timeout [ 76.010418][ T5950] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 76.010427][ T5299] Bluetooth: hci5: command 0x1003 tx timeout [ 76.168573][ T7906] input: syz1 as /devices/virtual/input/input11 [ 76.201139][ T7912] netlink: 'syz.1.859': attribute type 83 has an invalid length. [ 76.230083][ T7918] netlink: 'syz.1.862': attribute type 12 has an invalid length. [ 76.234225][ T7918] netlink: 'syz.1.862': attribute type 3 has an invalid length. [ 76.237052][ T7918] netlink: 148 bytes leftover after parsing attributes in process `syz.1.862'. [ 76.266938][ T7924] netlink: 4 bytes leftover after parsing attributes in process `syz.1.865'. [ 76.272077][ T7924] netlink: 4 bytes leftover after parsing attributes in process `syz.1.865'. [ 77.647400][ T8004] Bluetooth: MGMT ver 1.23 [ 77.949171][ T8029] netlink: 4 bytes leftover after parsing attributes in process `syz.2.913'. [ 77.953008][ T8029] netlink: 4 bytes leftover after parsing attributes in process `syz.2.913'. [ 78.085963][ T8046] netlink: 'syz.2.922': attribute type 12 has an invalid length. [ 78.088479][ T8046] netlink: 'syz.2.922': attribute type 3 has an invalid length. [ 78.092287][ T8046] netlink: 148 bytes leftover after parsing attributes in process `syz.2.922'. [ 78.470079][ T8061] netlink: 4 bytes leftover after parsing attributes in process `syz.0.928'. [ 78.593348][ T8072] vivid-004: disconnect [ 78.594982][ T8071] vivid-004: reconnect [ 78.786709][ T53] IPVS: starting estimator thread 0... [ 78.890256][ T8086] IPVS: using max 43 ests per chain, 103200 per kthread [ 78.896961][ T40] kauditd_printk_skb: 210 callbacks suppressed [ 78.896970][ T40] audit: type=1326 audit(1762027246.348:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8100 comm="syz.3.947" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 78.906289][ T40] audit: type=1326 audit(1762027246.358:989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8100 comm="syz.3.947" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 78.913317][ T40] audit: type=1326 audit(1762027246.358:990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8100 comm="syz.3.947" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 78.920046][ T40] audit: type=1326 audit(1762027246.358:991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8100 comm="syz.3.947" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb4579 code=0x7ffc0000 [ 78.927484][ T40] audit: type=1326 audit(1762027246.358:992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8100 comm="syz.3.947" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 78.934734][ T40] audit: type=1326 audit(1762027246.358:993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8100 comm="syz.3.947" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb4579 code=0x7ffc0000 [ 78.949251][ T40] audit: type=1326 audit(1762027246.358:994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8100 comm="syz.3.947" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 78.956498][ T40] audit: type=1326 audit(1762027246.358:995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8100 comm="syz.3.947" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb4579 code=0x7ffc0000 [ 78.963720][ T40] audit: type=1326 audit(1762027246.358:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8100 comm="syz.3.947" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 78.970856][ T40] audit: type=1326 audit(1762027246.358:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8100 comm="syz.3.947" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fb4598 code=0x7ffc0000 [ 79.022442][ T8108] __nla_validate_parse: 1 callbacks suppressed [ 79.022453][ T8108] netlink: 4 bytes leftover after parsing attributes in process `syz.3.950'. [ 79.027939][ T8108] netlink: 104 bytes leftover after parsing attributes in process `syz.3.950'. [ 79.031164][ T8108] netlink: 104 bytes leftover after parsing attributes in process `syz.3.950'. [ 79.276922][ T8142] netlink: 28 bytes leftover after parsing attributes in process `syz.0.966'. [ 79.279982][ T8142] netlink: 28 bytes leftover after parsing attributes in process `syz.0.966'. [ 79.339385][ T1343] IPVS: starting estimator thread 0... [ 79.394545][ T8155] netlink: 20 bytes leftover after parsing attributes in process `syz.0.971'. [ 79.450473][ T8147] IPVS: using max 43 ests per chain, 103200 per kthread [ 79.638190][ T8182] loop8: detected capacity change from 0 to 8 [ 79.642750][ T8182] Dev loop8: unable to read RDB block 8 [ 79.645546][ T8182] loop8: unable to read partition table [ 79.647577][ T8182] loop8: partition table beyond EOD, truncated [ 79.649545][ T8182] loop_reread_partitions: partition scan of loop8 (被x^> ) failed (rc=-5) [ 79.654724][ T8186] netlink: 32 bytes leftover after parsing attributes in process `syz.0.986'. [ 79.897282][ T8217] veth1_to_bond: entered allmulticast mode [ 79.899406][ T8215] veth1_to_bond: left allmulticast mode [ 80.094184][ T8240] raw_sendmsg: syz.0.1011 forgot to set AF_INET. Fix it! [ 80.360191][ T1343] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 80.510280][ T1343] usb 8-1: Using ep0 maxpacket: 32 [ 80.515075][ T1343] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024 [ 80.522555][ T1343] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 80.526039][ T1343] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 80.528559][ T1343] usb 8-1: Product: syz [ 80.529885][ T1343] usb 8-1: Manufacturer: syz [ 80.531397][ T1343] usb 8-1: SerialNumber: syz [ 80.534347][ T1343] usb 8-1: config 0 descriptor?? [ 80.536365][ T8242] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 80.539663][ T1343] hub 8-1:0.0: bad descriptor, ignoring hub [ 80.541696][ T1343] hub 8-1:0.0: probe with driver hub failed with error -5 [ 80.850397][ T1343] usb 8-1: USB disconnect, device number 3 [ 81.045167][ T910] cfg80211: failed to load regulatory.db [ 81.260081][ T8265] erspan0: entered promiscuous mode [ 81.737468][ T8317] tun0: tun_chr_ioctl cmd 1074025675 [ 81.739280][ T8317] tun0: persist disabled [ 81.827600][ T8320] mkiss: ax0: crc mode is auto. [ 83.284089][ T8410] netlink: 212368 bytes leftover after parsing attributes in process `syz.0.1089'. [ 83.315088][ T8415] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 83.319049][ T8415] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 83.446758][ T8440] ptrace attach of "/syz-executor exec"[5948] was attempted by "/syz-executor exec"[8440] [ 83.495505][ T8449] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1107'. [ 83.499135][ T8449] netlink: 'syz.1.1107': attribute type 5 has an invalid length. [ 84.014553][ T8502] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1132'. [ 84.061782][ T8510] __nla_validate_parse: 1 callbacks suppressed [ 84.061793][ T8510] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1136'. [ 84.067222][ T8510] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1136'. [ 84.125503][ T8523] usb usb9: usbfs: process 8523 (syz.3.1142) did not claim interface 30 before use [ 84.249187][ T8535] SQUASHFS error: Failed to read block 0x0: -5 [ 84.584518][ T8572] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1164'. [ 84.698320][ T61] kernel read not supported for file /input/event1 (pid: 61 comm: kworker/1:1) [ 85.000501][ T24] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 85.150505][ T24] usb 6-1: Using ep0 maxpacket: 8 [ 85.153890][ T24] usb 6-1: config 0 has an invalid interface number: 55 but max is 0 [ 85.156418][ T24] usb 6-1: config 0 has no interface number 0 [ 85.158381][ T24] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 85.162394][ T24] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 85.166888][ T24] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 85.171202][ T24] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 85.176223][ T24] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 85.179760][ T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 85.184112][ T24] usb 6-1: config 0 descriptor?? [ 85.188113][ T24] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 85.390908][ T61] usb 6-1: USB disconnect, device number 3 [ 85.394183][ T61] ldusb 6-1:0.55: LD USB Device #0 now disconnected [ 85.413741][ T8602] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1175'. [ 85.493880][ T8610] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1179'. [ 85.496759][ T8610] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1179'. [ 85.672007][ T8624] loop6: detected capacity change from 0 to 524287999 [ 85.675236][ T8624] buffer_io_error: 26 callbacks suppressed [ 85.675244][ T8624] Buffer I/O error on dev loop6, logical block 0, async page read [ 85.679878][ T8624] Buffer I/O error on dev loop6, logical block 0, async page read [ 85.683299][ T8624] Buffer I/O error on dev loop6, logical block 0, async page read [ 85.686262][ T8624] Buffer I/O error on dev loop6, logical block 0, async page read [ 85.688724][ T8624] Buffer I/O error on dev loop6, logical block 0, async page read [ 85.692254][ T8624] Buffer I/O error on dev loop6, logical block 0, async page read [ 85.694799][ T8624] Buffer I/O error on dev loop6, logical block 0, async page read [ 85.697648][ T8624] Buffer I/O error on dev loop6, logical block 0, async page read [ 85.700471][ T8624] ldm_validate_partition_table(): Disk read failed. [ 85.702672][ T8624] Buffer I/O error on dev loop6, logical block 0, async page read [ 85.705411][ T8624] Buffer I/O error on dev loop6, logical block 0, async page read [ 85.708266][ T8624] Dev loop6: unable to read RDB block 0 [ 85.710526][ T8624] loop6: unable to read partition table [ 85.712374][ T8624] loop_reread_partitions: partition scan of loop6 (3 xC) failed (rc=-5) [ 85.736934][ T8631] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1189'. [ 85.781758][ T8624] ldm_validate_partition_table(): Disk read failed. [ 85.783980][ T8624] Dev loop6: unable to read RDB block 0 [ 85.785974][ T8624] loop6: unable to read partition table [ 85.787825][ T8624] loop_reread_partitions: partition scan of loop6 (3 xC) failed (rc=-5) [ 85.876941][ T8653] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1196'. [ 85.883242][ T8654] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0 [ 86.050377][ T910] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 86.173394][ T8682] pim6reg1: tun_chr_ioctl cmd 1074025677 [ 86.175375][ T8682] pim6reg1: linktype set to 780 [ 86.201608][ T910] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 86.204668][ T910] usb 8-1: config 0 interface 0 has no altsetting 0 [ 86.208292][ T910] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 86.212198][ T910] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 86.214762][ T910] usb 8-1: Product: syz [ 86.216107][ T910] usb 8-1: Manufacturer: syz [ 86.217656][ T910] usb 8-1: SerialNumber: syz [ 86.220499][ T910] usb 8-1: config 0 descriptor?? [ 86.225896][ T910] usb 8-1: selecting invalid altsetting 0 [ 86.429804][ T910] usb 8-1: USB disconnect, device number 4 [ 86.655570][ T8704] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1219'. [ 86.777719][ T8717] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1223'. [ 87.327067][ T5299] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 87.330083][ T5299] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 87.333295][ T5299] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 87.336275][ T5299] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 87.338867][ T5299] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 87.446131][ T8758] chnl_net:caif_netlink_parms(): no params data found [ 87.529771][ T8758] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.533774][ T8758] bridge0: port 1(bridge_slave_0) entered disabled state [ 87.536037][ T8758] bridge_slave_0: entered allmulticast mode [ 87.538645][ T8758] bridge_slave_0: entered promiscuous mode [ 87.544521][ T8758] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.546808][ T8758] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.549061][ T8758] bridge_slave_1: entered allmulticast mode [ 87.553620][ T8758] bridge_slave_1: entered promiscuous mode [ 87.583957][ T8758] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 87.588710][ T8758] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 87.622057][ T8758] team0: Port device team_slave_0 added [ 87.625229][ T8758] team0: Port device team_slave_1 added [ 87.631718][ T8794] kvm: kvm [8793]: vcpu128, guest rIP: 0xfff0 Unhandled RDMSR(0x40000076) [ 87.655951][ T8758] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.658213][ T8758] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 87.666494][ T8758] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.671449][ T8758] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.673598][ T8758] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 87.681898][ T8758] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.734300][ T8758] hsr_slave_0: entered promiscuous mode [ 87.736675][ T8758] hsr_slave_1: entered promiscuous mode [ 87.738883][ T8758] debugfs: 'hsr0' already exists in 'hsr' [ 87.741592][ T8758] Cannot create hsr debugfs directory [ 87.760637][ T5950] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 87.763882][ T5950] Bluetooth: hci1: Injecting HCI hardware error event [ 87.767205][ T5950] Bluetooth: hci1: hardware error 0x00 [ 87.857095][ T8758] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 87.861476][ T8758] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 87.865972][ T8758] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 87.869993][ T8758] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 87.912805][ T8758] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.925160][ T8758] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.930304][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.932591][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.938864][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 87.941097][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.067900][ T8758] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.197325][ T8758] veth0_vlan: entered promiscuous mode [ 88.202637][ T8758] veth1_vlan: entered promiscuous mode [ 88.218010][ T8758] veth0_macvtap: entered promiscuous mode [ 88.224379][ T8758] veth1_macvtap: entered promiscuous mode [ 88.236021][ T8758] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 88.242363][ T8758] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 88.248875][ T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.251785][ T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.255030][ T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.258265][ T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.286408][ T1141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.289182][ T1141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.302827][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 88.305285][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 88.351950][ T40] kauditd_printk_skb: 577 callbacks suppressed [ 88.351964][ T40] audit: type=1326 audit(1762027255.808:1575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8827 comm="syz.4.1242" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ed598 code=0x7ffc0000 [ 88.362597][ T40] audit: type=1326 audit(1762027255.808:1576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8827 comm="syz.4.1242" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ed598 code=0x7ffc0000 [ 88.369282][ T40] audit: type=1326 audit(1762027255.808:1577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8827 comm="syz.4.1242" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ed598 code=0x7ffc0000 [ 88.376524][ T40] audit: type=1326 audit(1762027255.808:1578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8827 comm="syz.4.1242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 88.383326][ T40] audit: type=1326 audit(1762027255.808:1579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8827 comm="syz.4.1242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 88.390035][ T40] audit: type=1326 audit(1762027255.808:1580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8827 comm="syz.4.1242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 88.396898][ T40] audit: type=1326 audit(1762027255.808:1581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8827 comm="syz.4.1242" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ed598 code=0x7ffc0000 [ 88.403815][ T40] audit: type=1326 audit(1762027255.808:1582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8827 comm="syz.4.1242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 88.410569][ T40] audit: type=1326 audit(1762027255.808:1583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8827 comm="syz.4.1242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 88.417698][ T40] audit: type=1326 audit(1762027255.808:1584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8827 comm="syz.4.1242" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 88.613817][ T8848] block nbd0: not configured, cannot reconfigure [ 88.639961][ T8852] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.642940][ T8852] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.961381][ T61] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 89.131717][ T61] usb 8-1: config 0 has no interfaces? [ 89.133451][ T61] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 89.136216][ T61] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 89.139754][ T61] usb 8-1: config 0 descriptor?? [ 89.170829][ T24] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 89.345981][ T6030] usb 8-1: USB disconnect, device number 5 [ 89.370415][ T5299] Bluetooth: hci3: command tx timeout [ 89.401719][ T8916] __nla_validate_parse: 1 callbacks suppressed [ 89.401730][ T8916] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1306'. [ 89.407064][ T8916] block nbd0: not configured, cannot reconfigure [ 89.840250][ T5950] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 90.285681][ T8935] tipc: Started in network mode [ 90.287531][ T8935] tipc: Node identity aaaaaaaaaa2a, cluster identity 4711 [ 90.290520][ T8935] tipc: Enabled bearer , priority 15 [ 90.542763][ T8957] netlink: 212368 bytes leftover after parsing attributes in process `syz.3.1325'. [ 90.609243][ T8961] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1327'. [ 90.685322][ T8965] serio: Serial port ptm0 [ 91.411635][ T6030] tipc: Node number set to 8432298 [ 91.450585][ T5950] Bluetooth: hci3: command tx timeout [ 91.506877][ T9012] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1350'. [ 91.731807][ T9025] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1356'. [ 91.920761][ T9049] mkiss: ax0: crc mode is auto. [ 91.980748][ T9049] Falling back ldisc for ttyS3. [ 92.206494][ T9077] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1379'. [ 92.294555][ T9095] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1388'. [ 92.476712][ T9134] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1407'. [ 92.587565][ T9159] kvm: apic: phys broadcast and lowest prio [ 92.892588][ T34] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 92.897079][ T34] hid-generic 0000:0000:0000.0002: hidraw1: HID v0.00 Device [syz1] on syz0 [ 93.191776][ T9220] C: renamed from team_slave_0 (while UP) [ 93.195214][ T9220] netlink: 'syz.4.1448': attribute type 2 has an invalid length. [ 93.197821][ T9220] netlink: 108 bytes leftover after parsing attributes in process `syz.4.1448'. [ 93.202732][ T9220] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 93.439246][ T9241] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1459'. [ 93.469067][ T9247] bridge_slave_0: vlans aren't supported yet for dev_uc|mc_add() [ 93.473052][ T9249] sctp: [Deprecated]: syz.2.1462 (pid 9249) Use of struct sctp_assoc_value in delayed_ack socket option. [ 93.473052][ T9249] Use struct sctp_sack_info instead [ 93.500170][ T34] usb 9-1: new high-speed USB device number 2 using dummy_hcd [ 93.520725][ T5950] Bluetooth: hci3: command tx timeout [ 93.627685][ T9276] Failed to get privilege flags for destination (handle=0x2:0xd) [ 93.648983][ T40] kauditd_printk_skb: 64 callbacks suppressed [ 93.648993][ T40] audit: type=1326 audit(1762027261.098:1649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9277 comm="syz.2.1475" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 93.658048][ T40] audit: type=1326 audit(1762027261.108:1650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9277 comm="syz.2.1475" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 93.660199][ T34] usb 9-1: Using ep0 maxpacket: 16 [ 93.665492][ T40] audit: type=1326 audit(1762027261.108:1651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9277 comm="syz.2.1475" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 93.668645][ T34] usb 9-1: config 0 has an invalid interface number: 132 but max is 0 [ 93.674945][ T40] audit: type=1326 audit(1762027261.108:1652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9277 comm="syz.2.1475" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 93.678311][ T34] usb 9-1: config 0 has no interface number 0 [ 93.686243][ T40] audit: type=1326 audit(1762027261.108:1653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9277 comm="syz.2.1475" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 93.689720][ T34] usb 9-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25 [ 93.695042][ T40] audit: type=1326 audit(1762027261.108:1654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9277 comm="syz.2.1475" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 93.697896][ T34] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 93.705938][ T40] audit: type=1326 audit(1762027261.108:1655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9277 comm="syz.2.1475" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 93.708751][ T34] usb 9-1: Product: syz [ 93.715454][ T40] audit: type=1326 audit(1762027261.108:1656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9277 comm="syz.2.1475" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 93.715480][ T40] audit: type=1326 audit(1762027261.108:1657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9277 comm="syz.2.1475" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 93.715500][ T40] audit: type=1326 audit(1762027261.108:1658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9277 comm="syz.2.1475" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f53598 code=0x7ffc0000 [ 93.739051][ T34] usb 9-1: Manufacturer: syz [ 93.740775][ T34] usb 9-1: SerialNumber: syz [ 93.743790][ T34] usb 9-1: config 0 descriptor?? [ 93.746790][ T34] hub 9-1:0.132: bad descriptor, ignoring hub [ 93.748720][ T34] hub 9-1:0.132: probe with driver hub failed with error -5 [ 93.753090][ T34] input: bcm5974 as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.132/input/input13 [ 94.191496][ T7452] usb 9-1: USB disconnect, device number 2 [ 94.585987][ T9364] [U] [ 94.587027][ T9364] [U] [ 94.587907][ T9364] [U] [ 94.588783][ T9364] [U] [ 94.589672][ T9364] [U] [ 94.590565][ T9364] [U] [ 94.591410][ T9364] [U] [ 94.592288][ T9364] [U] [ 94.594213][ T9364] [U] [ 94.595060][ T9364] [U] [ 94.595862][ T9364] [U] [ 94.596663][ T9364] [U] [ 94.597518][ T9364] [U] [ 94.598341][ T9364] [U] [ 94.599159][ T9364] [U] [ 94.599980][ T9364] [U] [ 94.601125][ T9364] [U] [ 94.601964][ T9364] [U] [ 94.602769][ T9364] [U] [ 94.603580][ T9364] [U] [ 94.604449][ T9364] [U] [ 94.605259][ T9364] [U] [ 94.606077][ T9364] [U] [ 94.606804][ T9364] [U] [ 94.607632][ T9364] [U] [ 94.608439][ T9364] [U] [ 94.609247][ T9364] [U] [ 94.610067][ T9364] [U] [ 94.611458][ T9364] [U] [ 94.612360][ T9364] [U] [ 94.613171][ T9364] [U] [ 94.613934][ T9364] [U] [ 94.615195][ T9364] [U] [ 94.616017][ T9364] [U] [ 94.616823][ T9364] [U] [ 94.617639][ T9364] [U] [ 94.618448][ T9364] [U] [ 94.619256][ T9364] [U] [ 94.620069][ T9364] [U] [ 94.620884][ T9364] [U] [ 94.622055][ T9364] [U] [ 94.622878][ T9364] [U] [ 94.623667][ T9364] [U] [ 94.624478][ T9364] [U] [ 94.625336][ T9364] [U] [ 94.626158][ T9364] [U] [ 94.626989][ T9364] [U] [ 94.627796][ T9364] [U] [ 94.628613][ T9364] [U] [ 94.629421][ T9364] [U] [ 94.630263][ T9364] [U] [ 94.631075][ T9364] [U] [ 94.632787][ T9364] [U] [ 94.633623][ T9364] [U] [ 94.634369][ T9364] [U] [ 94.635172][ T9364] [U] [ 94.636964][ T9364] [U] [ 94.637784][ T9364] [U] [ 94.638591][ T9364] [U] [ 94.639401][ T9364] [U] [ 94.640346][ T9364] [U] [ 94.641169][ T9364] [U] [ 94.641993][ T9364] [U] [ 94.642815][ T9364] [U] [ 94.643717][ T9364] [U] [ 94.644519][ T9364] [U] [ 94.645327][ T9364] [U] [ 94.646146][ T9364] [U] [ 94.646981][ T9364] [U] [ 94.647891][ T9364] [U] [ 94.648697][ T9364] [U] [ 94.649508][ T9364] [U] [ 94.650766][ T9364] [U] [ 94.651574][ T9364] [U] [ 94.652379][ T9364] [U] [ 94.653191][ T9364] [U] [ 94.654074][ T9364] [U] [ 94.654886][ T9364] [U] [ 94.655694][ T9364] [U] [ 94.656499][ T9364] [U] [ 94.657334][ T9364] [U] [ 94.658150][ T9364] [U] [ 94.658971][ T9364] [U] [ 94.659764][ T9364] [U] [ 94.660654][ T9364] [U] [ 94.661467][ T9364] [U] [ 94.662258][ T9364] [U] [ 94.663068][ T9364] [U] [ 94.663897][ T9364] [U] [ 94.664719][ T9364] [U] [ 94.665536][ T9364] [U] [ 94.666335][ T9364] [U] [ 94.668206][ T9364] [U] [ 94.669171][ T9364] [U] [ 94.670075][ T9364] [U] [ 94.670978][ T9364] [U] [ 94.672649][ T9364] [U] [ 94.673543][ T9364] [U] [ 94.674425][ T9364] [U] [ 94.675318][ T9364] [U] [ 94.676213][ T9364] [U] [ 94.677107][ T9364] [U] [ 94.678006][ T9364] [U] [ 94.678952][ T9364] [U] [ 94.679904][ T9364] [U] [ 94.680910][ T9364] [U] [ 94.681866][ T9364] [U] [ 94.682793][ T9364] [U] [ 94.683907][ T9364] [U] [ 94.684797][ T9364] [U] [ 94.685677][ T9364] [U] [ 94.686555][ T9364] [U] [ 94.687481][ T9364] [U] [ 94.688367][ T9364] [U] [ 94.689260][ T9364] [U] [ 94.690183][ T9364] [U] [ 94.691865][ T9364] [U] [ 94.692833][ T9364] [U] [ 94.693716][ T9364] [U] [ 94.694583][ T9364] [U] [ 94.695490][ T9364] [U] [ 94.696388][ T9364] [U] [ 94.697287][ T9364] [U] [ 94.698194][ T9364] [U] [ 94.699634][ T9364] [U] [ 94.700558][ T9364] [U] [ 94.701433][ T9364] [U] [ 94.707384][ T9363] [U] [ 94.762516][ T9379] syzkaller1: tun_chr_ioctl cmd 1074025672 [ 94.764366][ T9379] syzkaller1: ignored: set checksum disabled [ 95.092495][ T9416] __nla_validate_parse: 5 callbacks suppressed [ 95.092506][ T9416] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1539'. [ 95.513173][ T9446] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 95.600266][ T5950] Bluetooth: hci3: command tx timeout [ 95.762117][ T1343] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 95.849794][ T1333] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 95.860243][ T1333] hid-generic 0000:0000:0000.0003: hidraw1: HID v0.00 Device [syz1] on syz0 [ 96.764584][ T9471] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1564'. [ 96.775521][ T9477] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1566'. [ 96.954237][ T1343] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 96.957384][ T1343] hid-generic 0000:0000:0000.0004: hidraw1: HID v0.00 Device [syz1] on syz0 [ 96.961200][ T1343] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 98.029476][ T9519] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1586'. [ 98.903075][ T910] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 98.920536][ T910] hid-generic 0000:0000:0000.0005: hidraw1: HID v0.00 Device [syz1] on syz0 [ 99.001031][ T9536] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1591'. [ 99.010573][ T7452] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 99.116592][ T9554] netlink: 830 bytes leftover after parsing attributes in process `syz.4.1599'. [ 109.425396][ T9586] binder: 9584:9586 ioctl c0306201 80000400 returned -11 [ 109.606140][ T9610] dummy0: entered promiscuous mode [ 109.608584][ T9609] dummy0: left promiscuous mode [ 109.661448][ T40] kauditd_printk_skb: 692 callbacks suppressed [ 109.661460][ T40] audit: type=1326 audit(1762027277.118:2351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9617 comm="syz.2.1620" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 109.670024][ T40] audit: type=1326 audit(1762027277.118:2352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9617 comm="syz.2.1620" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 109.677415][ T40] audit: type=1326 audit(1762027277.118:2353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9617 comm="syz.2.1620" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 109.684390][ T40] audit: type=1326 audit(1762027277.118:2354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9617 comm="syz.2.1620" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 109.696750][ T40] audit: type=1326 audit(1762027277.118:2355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9617 comm="syz.2.1620" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 109.703649][ T40] audit: type=1326 audit(1762027277.118:2356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9617 comm="syz.2.1620" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 109.707008][ T9624] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1623'. [ 109.710631][ T40] audit: type=1326 audit(1762027277.118:2357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9617 comm="syz.2.1620" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f53598 code=0x7ffc0000 [ 109.719855][ T40] audit: type=1326 audit(1762027277.118:2358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9617 comm="syz.2.1620" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f53598 code=0x7ffc0000 [ 109.726718][ T40] audit: type=1326 audit(1762027277.118:2359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9617 comm="syz.2.1620" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f53598 code=0x7ffc0000 [ 109.733744][ T40] audit: type=1326 audit(1762027277.118:2360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9617 comm="syz.2.1620" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f53598 code=0x7ffc0000 [ 109.806392][ T9633] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1627'. [ 109.917127][ T9648] hugetlbfs: syz.1.1634 (9648): Using mlock ulimits for SHM_HUGETLB is obsolete [ 109.924335][ T9651] binder: 9649:9651 ioctl c0306201 80000640 returned -22 [ 110.094839][ T9669] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 110.097339][ T9669] IPv6: NLM_F_CREATE should be set when creating new route [ 110.099602][ T9669] IPv6: NLM_F_CREATE should be set when creating new route [ 110.101966][ T9669] IPv6: NLM_F_CREATE should be set when creating new route [ 110.210417][ T910] kernel write not supported for file /media0 (pid: 910 comm: kworker/0:2) [ 111.322042][ T9741] Context (ID=0x1) not attached to queue pair (handle=0x1:0x81) [ 111.454989][ T9750] gfs2: gfs2 mount does not exist [ 111.503512][ T34] hid-generic 0003:0003:0000.0006: unknown main item tag 0x0 [ 111.506676][ T34] hid-generic 0003:0003:0000.0006: unknown main item tag 0x0 [ 111.509376][ T34] hid-generic 0003:0003:0000.0006: unknown main item tag 0x0 [ 111.513495][ T34] hid-generic 0003:0003:0000.0006: unknown main item tag 0x0 [ 111.516523][ T34] hid-generic 0003:0003:0000.0006: unknown main item tag 0x0 [ 111.523775][ T34] hid-generic 0003:0003:0000.0006: unknown main item tag 0x0 [ 111.526842][ T34] hid-generic 0003:0003:0000.0006: unknown main item tag 0x0 [ 111.529502][ T34] hid-generic 0003:0003:0000.0006: unknown main item tag 0x0 [ 111.532991][ T34] hid-generic 0003:0003:0000.0006: unknown main item tag 0x0 [ 111.535854][ T34] hid-generic 0003:0003:0000.0006: unknown main item tag 0x0 [ 111.540034][ T34] hid-generic 0003:0003:0000.0006: hidraw1: USB HID v0.00 Device [syz1] on syz1 [ 111.970684][ T7452] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 112.130228][ T7452] usb 6-1: Using ep0 maxpacket: 32 [ 112.134414][ T7452] usb 6-1: config index 0 descriptor too short (expected 29220, got 36) [ 112.137002][ T7452] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 112.139718][ T7452] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 112.143425][ T7452] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 112.148222][ T7452] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 112.151456][ T7452] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 112.154466][ T7452] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 112.157473][ T7452] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 112.161706][ T7452] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 112.164529][ T7452] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 112.168103][ T7452] usb 6-1: config 0 descriptor?? [ 112.342425][ T9809] netlink: 'syz.2.1705': attribute type 4 has an invalid length. [ 112.376499][ T7452] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 112.577410][ T7452] usb 6-1: USB disconnect, device number 4 [ 112.581162][ T7452] usblp0: removed [ 115.170264][ T24] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 115.330586][ T24] usb 9-1: Using ep0 maxpacket: 8 [ 115.336865][ T24] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 115.339862][ T24] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 115.343266][ T24] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 115.346554][ T24] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 115.351112][ T24] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 115.353924][ T24] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 115.566139][ T24] usb 9-1: GET_CAPABILITIES returned 0 [ 115.567903][ T24] usbtmc 9-1:16.0: can't read capabilities [ 115.631967][T10007] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1795'. [ 115.686363][T10015] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1799'. [ 115.767150][ T5992] usb 9-1: USB disconnect, device number 3 [ 115.772677][T10034] blkio.reset_stats is deprecated [ 115.962601][ T1333] hid-generic 0005:07C0:5505.0007: hidraw1: BLUETOOTH HID ve7.ef Device [syz0] on aa:aa:aa:aa:aa:aa [ 116.159053][T10068] netlink: 'syz.1.1823': attribute type 8 has an invalid length. [ 116.216427][T10073] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0 [ 116.631531][T10129] ptrace attach of ""[10131] was attempted by "/syz-executor exec"[10129] [ 116.812691][T10152] input: syz1 as /devices/virtual/input/input18 [ 117.090275][ T5938] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 117.204394][T10183] block device autoloading is deprecated and will be removed. [ 117.240483][ T5938] usb 6-1: Using ep0 maxpacket: 16 [ 117.243399][ T5938] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0 [ 117.247983][ T5938] usb 6-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 117.251909][ T5938] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 117.254386][ T5938] usb 6-1: Product: syz [ 117.255703][ T5938] usb 6-1: Manufacturer: syz [ 117.257169][ T5938] usb 6-1: SerialNumber: syz [ 117.259711][ T5938] usb 6-1: config 0 descriptor?? [ 117.262986][ T5938] hub 6-1:0.0: bad descriptor, ignoring hub [ 117.264863][ T5938] hub 6-1:0.0: probe with driver hub failed with error -5 [ 117.268545][ T5938] input: syz syz as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input19 [ 117.301019][T10191] netlink: 'syz.3.1875': attribute type 11 has an invalid length. [ 117.317661][T10195] input: syz1 as /devices/virtual/input/input20 [ 117.360336][T10199] netlink: 88 bytes leftover after parsing attributes in process `syz.4.1883'. [ 117.611367][ T61] usb 6-1: USB disconnect, device number 5 [ 118.038439][T10244] block nbd4: not configured, cannot reconfigure [ 118.288199][ T64] Bluetooth: hci5: sending frame failed (-49) [ 118.290991][ T5299] Bluetooth: hci5: Opcode 0x1003 failed: -49 [ 118.474089][T10274] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1918'. [ 119.295294][T10254] Set syz1 is full, maxelem 65536 reached [ 119.397118][ T40] kauditd_printk_skb: 590 callbacks suppressed [ 119.397129][ T40] audit: type=1326 audit(1762027286.848:2951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10294 comm="syz.1.1927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35579 code=0x7ffc0000 [ 119.406422][ T40] audit: type=1326 audit(1762027286.848:2952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10294 comm="syz.1.1927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35579 code=0x7ffc0000 [ 119.414062][ T40] audit: type=1326 audit(1762027286.858:2953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10294 comm="syz.1.1927" exe="/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf7f35579 code=0x7ffc0000 [ 119.421550][ T40] audit: type=1326 audit(1762027286.858:2954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10294 comm="syz.1.1927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35579 code=0x7ffc0000 [ 119.428137][ T40] audit: type=1326 audit(1762027286.858:2955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10294 comm="syz.1.1927" exe="/syz-executor" sig=0 arch=40000003 syscall=16 compat=1 ip=0xf7f35579 code=0x7ffc0000 [ 119.435082][ T40] audit: type=1326 audit(1762027286.858:2956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10294 comm="syz.1.1927" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f35579 code=0x7ffc0000 [ 119.694909][T10322] Malformed UNC in devname [ 119.694909][T10322] [ 119.697193][T10322] CIFS: VFS: Malformed UNC in devname [ 119.961492][T10344] netlink: 'syz.2.1949': attribute type 10 has an invalid length. [ 119.963938][T10344] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1949'. [ 120.080569][ T5950] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 120.155125][T10371] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1963'. [ 120.360272][ T1333] usb 9-1: new high-speed USB device number 4 using dummy_hcd [ 120.363488][T10397] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1974'. [ 120.511898][ T1333] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 120.515435][ T1333] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 120.518471][ T1333] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 120.523022][ T1333] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 120.526895][ T1333] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 120.533017][ T1333] usb 9-1: config 0 descriptor?? [ 120.573099][T10409] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1980'. [ 120.576788][T10409] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1980'. [ 120.772546][ T1333] usbhid 9-1:0.0: can't add hid device: -71 [ 120.774485][ T1333] usbhid 9-1:0.0: probe with driver usbhid failed with error -71 [ 120.777828][ T1333] usb 9-1: USB disconnect, device number 4 [ 120.856920][T10425] ptrace attach of ""[10426] was attempted by "/syz-executor exec"[10425] [ 121.854834][T10450] ptrace attach of ""[10451] was attempted by "/syz-executor exec"[10450] [ 121.913401][T10459] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2002'. [ 121.918118][T10459] netlink: 72 bytes leftover after parsing attributes in process `syz.1.2002'. [ 122.163434][T10476] nfs: Unknown parameter 'ntext' [ 122.267683][T10483] af_packet: tpacket_rcv: packet too big, clamped from 3948 to 3944. macoff=96 [ 122.320230][ T5950] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 122.320826][ T5299] Bluetooth: hci4: command 0x1003 tx timeout [ 122.329336][ T1343] kernel write not supported for file /snd/midiC2D0 (pid: 1343 comm: kworker/2:2) [ 122.878130][T10542] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 122.959749][T10552] netlink: 'syz.2.2043': attribute type 3 has an invalid length. [ 123.050789][ T40] audit: type=1326 audit(1762027290.508:2957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10567 comm="syz.3.2053" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb4579 code=0x7ffc0000 [ 123.057392][ T40] audit: type=1326 audit(1762027290.508:2958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10567 comm="syz.3.2053" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb4579 code=0x7ffc0000 [ 123.065324][ T40] audit: type=1326 audit(1762027290.508:2959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10567 comm="syz.3.2053" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fb4579 code=0x7ffc0000 [ 123.072998][ T40] audit: type=1326 audit(1762027290.508:2960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10567 comm="syz.3.2053" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb4579 code=0x7ffc0000 [ 123.193870][T10580] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 123.401855][T10600] netlink: 'syz.3.2069': attribute type 1 has an invalid length. [ 123.506963][T10607] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2072'. [ 124.221292][T10562] Set syz1 is full, maxelem 65536 reached [ 124.253109][T10625] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2076'. [ 124.325968][T10639] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2088'. [ 124.560733][ T5299] Bluetooth: hci4: command 0x1003 tx timeout [ 124.560965][ T5950] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 124.580569][ T5938] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 124.732042][ T5938] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 124.736448][ T5938] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 124.739586][ T5938] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 124.745440][ T5938] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 124.749128][ T5938] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 124.754634][ T5938] usb 7-1: config 0 descriptor?? [ 124.990683][ T5938] usbhid 7-1:0.0: can't add hid device: -71 [ 124.992167][T10701] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2111'. [ 124.993075][ T5938] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 125.012726][ T5938] usb 7-1: USB disconnect, device number 5 [ 125.179235][ T40] kauditd_printk_skb: 7 callbacks suppressed [ 125.179244][ T40] audit: type=1326 audit(1762027292.628:2968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10712 comm="syz.4.2126" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x0 [ 125.321322][T10724] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 125.455805][ T1141] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 125.520697][ T1141] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 125.580794][ T1141] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 125.656705][ T1141] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 125.761969][ T1141] bridge_slave_1: left allmulticast mode [ 125.764210][ T1141] bridge_slave_1: left promiscuous mode [ 125.766547][ T1141] bridge0: port 2(bridge_slave_1) entered disabled state [ 125.772037][ T1141] bridge_slave_0: left allmulticast mode [ 125.774962][ T1141] bridge_slave_0: left promiscuous mode [ 125.777414][ T1141] bridge0: port 1(bridge_slave_0) entered disabled state [ 126.059310][ T1141] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 126.065857][ T1141] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 126.069576][ T1141] bond0 (unregistering): Released all slaves [ 126.086783][T10758] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 126.153270][ T1141] IPVS: stopping backup sync thread 8654 ... [ 126.258424][ T40] audit: type=1326 audit(1762027293.708:2969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10777 comm="syz.3.2147" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb4579 code=0x0 [ 126.321767][ T1141] hsr_slave_0: left promiscuous mode [ 126.323949][ T1141] hsr_slave_1: left promiscuous mode [ 126.325973][ T1141] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 126.328320][ T1141] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 126.331144][ T1141] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 126.333505][ T1141] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 126.347950][ T1141] veth1_to_batadv: left promiscuous mode [ 126.349888][ T1141] veth1_macvtap: left promiscuous mode [ 126.352371][ T1141] veth0_macvtap: left promiscuous mode [ 126.739220][ T1141] team0 (unregistering): Port device team_slave_1 removed [ 126.803228][ T1141] team0 (unregistering): Port device team_slave_0 removed [ 126.894684][ T40] audit: type=1326 audit(1762027294.348:2970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10812 comm="syz.2.2163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 126.903391][ T40] audit: type=1326 audit(1762027294.348:2971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10812 comm="syz.2.2163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 126.911489][ T40] audit: type=1326 audit(1762027294.348:2972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10812 comm="syz.2.2163" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 126.918587][ T40] audit: type=1326 audit(1762027294.348:2973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10812 comm="syz.2.2163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 126.926852][ T40] audit: type=1326 audit(1762027294.348:2974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10812 comm="syz.2.2163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 126.934670][ T40] audit: type=1326 audit(1762027294.358:2975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10812 comm="syz.2.2163" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 126.943480][ T40] audit: type=1326 audit(1762027294.368:2976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10812 comm="syz.2.2163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 126.953687][ T40] audit: type=1326 audit(1762027294.368:2977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10812 comm="syz.2.2163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 127.049463][T10819] netlink: 212340 bytes leftover after parsing attributes in process `syz.2.2167'. [ 127.053928][T10819] openvswitch: netlink: Port 167772160 exceeds max allowable 65535 [ 127.298164][T10798] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 127.305035][T10831] IPVS: sync thread started: state = BACKUP, mcast_ifn = hsr0, syncid = 4, id = 0 [ 127.333678][T10835] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2173'. [ 127.337634][T10835] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2173'. [ 127.367947][T10839] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2175'. [ 127.550012][T10856] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check. [ 127.664475][T10875] (syz.4.2192,10875,1):dlmfs_mkdir:421 ERROR: invalid domain name for directory. [ 127.708234][ T1141] IPVS: stop unused estimator thread 0... [ 127.853044][ T932] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 128.030201][ T932] usb 8-1: Using ep0 maxpacket: 16 [ 128.033209][ T932] usb 8-1: config 0 has an invalid interface number: 132 but max is 0 [ 128.036447][ T932] usb 8-1: config 0 has no interface number 0 [ 128.044260][ T932] usb 8-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25 [ 128.047078][ T932] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 128.049636][ T932] usb 8-1: Product: syz [ 128.051086][ T932] usb 8-1: Manufacturer: syz [ 128.052541][ T932] usb 8-1: SerialNumber: syz [ 128.055247][ T932] usb 8-1: config 0 descriptor?? [ 128.057836][ T932] hub 8-1:0.132: bad descriptor, ignoring hub [ 128.060198][ T932] hub 8-1:0.132: probe with driver hub failed with error -5 [ 128.064770][ T932] input: bcm5974 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.132/input/input21 [ 128.287028][T10915] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2212'. [ 128.309819][T10915] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2212'. [ 128.363318][T10919] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2 [ 128.551829][ T1343] kernel read not supported for file /dsp1 (pid: 1343 comm: kworker/2:2) [ 128.564090][ T5938] usb 8-1: USB disconnect, device number 6 [ 128.638085][T10928] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2216'. [ 128.898939][T10945] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2223'. [ 128.995820][T10954] IPVS: sync thread started: state = BACKUP, mcast_ifn = hsr0, syncid = 4, id = 0 [ 129.080453][T10963] random: crng reseeded on system resumption [ 129.120362][ T5299] Bluetooth: hci3: command 0x0405 tx timeout [ 129.682184][ T5950] block nbd0: Receive control failed (result -32) [ 129.705946][T11029] netlink: 'syz.2.2261': attribute type 1 has an invalid length. [ 131.120382][ T5938] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 131.270369][ T5938] usb 6-1: Using ep0 maxpacket: 16 [ 131.273299][ T5938] usb 6-1: config 0 has an invalid interface number: 132 but max is 0 [ 131.275839][ T5938] usb 6-1: config 0 has no interface number 0 [ 131.279258][ T5938] usb 6-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25 [ 131.282334][ T5938] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 131.284773][ T5938] usb 6-1: Product: syz [ 131.286083][ T5938] usb 6-1: Manufacturer: syz [ 131.287508][ T5938] usb 6-1: SerialNumber: syz [ 131.292557][ T5938] usb 6-1: config 0 descriptor?? [ 131.295157][ T5938] hub 6-1:0.132: bad descriptor, ignoring hub [ 131.297063][ T5938] hub 6-1:0.132: probe with driver hub failed with error -5 [ 131.301420][ T5938] input: bcm5974 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.132/input/input23 [ 131.484928][ T40] kauditd_printk_skb: 68 callbacks suppressed [ 131.484939][ T40] audit: type=1326 audit(1762027554.933:3046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11120 comm="syz.2.2301" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 131.494470][ T40] audit: type=1326 audit(1762027554.933:3047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11120 comm="syz.2.2301" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f535a7 code=0x7ffc0000 [ 131.501137][ T40] audit: type=1326 audit(1762027554.933:3048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11120 comm="syz.2.2301" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 131.509903][ T40] audit: type=1326 audit(1762027554.933:3049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11120 comm="syz.2.2301" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 131.518446][ T40] audit: type=1326 audit(1762027554.933:3050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11120 comm="syz.2.2301" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f535a7 code=0x7ffc0000 [ 131.526590][ T40] audit: type=1326 audit(1762027554.933:3051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11120 comm="syz.2.2301" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 131.535088][ T40] audit: type=1326 audit(1762027554.933:3052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11120 comm="syz.2.2301" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f535a7 code=0x7ffc0000 [ 131.543976][ T40] audit: type=1326 audit(1762027554.933:3053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11120 comm="syz.2.2301" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 131.552327][ T40] audit: type=1326 audit(1762027554.933:3054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11120 comm="syz.2.2301" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f535a7 code=0x7ffc0000 [ 131.561010][ T40] audit: type=1326 audit(1762027554.933:3055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11120 comm="syz.2.2301" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000 [ 131.571251][ T53] hid_parser_main: 9 callbacks suppressed [ 131.571267][ T53] hid-generic 0000:0009:0000.0008: unknown main item tag 0x0 [ 131.576743][ T53] hid-generic 0000:0009:0000.0008: unknown main item tag 0x0 [ 131.579943][ T53] hid-generic 0000:0009:0000.0008: unknown main item tag 0x0 [ 131.586428][ T53] hid-generic 0000:0009:0000.0008: unknown main item tag 0x0 [ 131.589573][ T53] hid-generic 0000:0009:0000.0008: unknown main item tag 0x0 [ 131.592897][ T53] hid-generic 0000:0009:0000.0008: unknown main item tag 0x0 [ 131.595954][ T53] hid-generic 0000:0009:0000.0008: unknown main item tag 0x0 [ 131.598959][ T53] hid-generic 0000:0009:0000.0008: unknown main item tag 0x0 [ 131.602298][ T53] hid-generic 0000:0009:0000.0008: unknown main item tag 0x0 [ 131.605459][ T53] hid-generic 0000:0009:0000.0008: unknown main item tag 0x0 [ 131.611538][ T53] hid-generic 0000:0009:0000.0008: hidraw2: HID v0.41 Device [syz1] on syz1 [ 131.625772][T11131] ------------[ cut here ]------------ [ 131.627746][T11131] refcount_t: underflow; use-after-free. [ 131.629714][T11131] WARNING: CPU: 2 PID: 11131 at lib/refcount.c:28 refcount_warn_saturate+0x14a/0x210 [ 131.633021][T11131] Modules linked in: [ 131.634429][T11131] CPU: 2 UID: 0 PID: 11131 Comm: syz.4.2306 Not tainted syzkaller #0 PREEMPT(full) [ 131.639157][T11131] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 131.643707][T11131] RIP: 0010:refcount_warn_saturate+0x14a/0x210 [ 131.646079][T11131] Code: ff 89 de e8 d8 8d 1a fd 84 db 0f 85 66 ff ff ff e8 eb 92 1a fd c6 05 22 eb c8 0b 01 90 48 c7 c7 80 c3 ef 8b e8 47 12 d9 fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 c8 92 1a fd 0f b6 1d fd ea c8 0b 31 [ 131.652771][T11131] RSP: 0018:ffffc9000471f9f8 EFLAGS: 00010286 [ 131.654700][T11131] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc90028443000 [ 131.657335][T11131] RDX: 0000000000080000 RSI: ffffffff817aee65 RDI: 0000000000000001 [ 131.659806][T11131] RBP: ffff888013258078 R08: 0000000000000001 R09: 0000000000000000 [ 131.662618][T11131] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888013259400 [ 131.665101][T11131] R13: ffff888013258078 R14: ffffffff85d7d930 R15: ffffffff90657f20 [ 131.667619][T11131] FS: 0000000000000000(0000) GS:ffff888097a10000(0063) knlGS:00000000f54ddb40 [ 131.670660][T11131] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 131.672747][T11131] CR2: 0000000032b1dffc CR3: 000000004c44e000 CR4: 0000000000352ef0 [ 131.675460][T11131] Call Trace: [ 131.676540][T11131] [ 131.677496][T11131] klist_put+0x11b/0x1b0 [ 131.678849][T11131] klist_remove+0x13f/0x2e0 [ 131.680382][T11131] ? __pfx_klist_remove+0x10/0x10 [ 131.681983][T11131] ? kobject_move+0x15d/0x260 [ 131.683484][T11131] ? get_device_parent+0x1ed/0x4e0 [ 131.685101][T11131] device_move+0x12d/0x10d0 [ 131.686583][T11131] hci_conn_del_sysfs+0x81/0x180 [ 131.688153][T11131] hci_conn_del+0x657/0x1180 [ 131.689637][T11131] hci_conn_hash_flush+0x186/0x260 [ 131.691378][T11131] hci_dev_reset+0x249/0x610 [ 131.693092][T11131] ? __pfx_hci_dev_reset+0x10/0x10 [ 131.694749][T11131] ? bpf_lsm_capable+0x9/0x10 [ 131.696248][T11131] ? security_capable+0x7e/0x260 [ 131.697839][T11131] hci_sock_ioctl+0x493/0x7d0 [ 131.699334][T11131] ? __pfx_hci_sock_ioctl+0x10/0x10 [ 131.701072][T11131] ? do_vfs_ioctl+0x128/0x14f0 [ 131.702617][T11131] hci_sock_compat_ioctl+0x43/0x80 [ 131.704255][T11131] ? __pfx_hci_sock_compat_ioctl+0x10/0x10 [ 131.706114][T11131] compat_sock_ioctl+0x176/0x730 [ 131.707707][T11131] ? __pfx_compat_sock_ioctl+0x10/0x10 [ 131.709437][T11131] ? hook_file_ioctl_common+0x145/0x410 [ 131.711249][T11131] ? __fget_files+0x20e/0x3c0 [ 131.712970][T11131] ? __pfx_compat_sock_ioctl+0x10/0x10 [ 131.714692][T11131] __ia32_compat_sys_ioctl+0x242/0x370 [ 131.715885][ T5299] Bluetooth: hci3: unexpected event for opcode 0x0c1a [ 131.716420][T11131] __do_fast_syscall_32+0x7c/0x300 [ 131.720475][T11131] do_fast_syscall_32+0x32/0x80 [ 131.722038][T11131] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 131.724145][T11131] RIP: 0023:0xf70ed579 [ 131.725466][T11131] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 131.731593][T11131] RSP: 002b:00000000f54dd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 131.735100][T11131] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000400448cb [ 131.738283][T11131] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 131.741493][T11131] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 131.744558][T11131] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 131.747087][T11131] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 131.749673][T11131] [ 131.750761][T11131] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 131.753052][T11131] CPU: 2 UID: 0 PID: 11131 Comm: syz.4.2306 Not tainted syzkaller #0 PREEMPT(full) [ 131.756228][T11131] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 131.759599][T11131] Call Trace: [ 131.760698][T11131] [ 131.761670][T11131] dump_stack_lvl+0x3d/0x1f0 [ 131.763157][T11131] vpanic+0x640/0x6f0 [ 131.764456][T11131] ? refcount_warn_saturate+0x14a/0x210 [ 131.766236][T11131] panic+0xca/0xd0 [ 131.767454][T11131] ? __pfx_panic+0x10/0x10 [ 131.768898][T11131] check_panic_on_warn+0xab/0xb0 [ 131.770537][T11131] __warn+0xf6/0x3c0 [ 131.771803][T11131] ? refcount_warn_saturate+0x14a/0x210 [ 131.773585][T11131] report_bug+0x3c3/0x580 [ 131.774972][T11131] ? refcount_warn_saturate+0x14a/0x210 [ 131.776758][T11131] handle_bug+0x184/0x210 [ 131.778159][T11131] exc_invalid_op+0x17/0x50 [ 131.779882][T11131] asm_exc_invalid_op+0x1a/0x20 [ 131.781452][T11131] RIP: 0010:refcount_warn_saturate+0x14a/0x210 [ 131.783432][T11131] Code: ff 89 de e8 d8 8d 1a fd 84 db 0f 85 66 ff ff ff e8 eb 92 1a fd c6 05 22 eb c8 0b 01 90 48 c7 c7 80 c3 ef 8b e8 47 12 d9 fc 90 <0f> 0b 90 90 e9 43 ff ff ff e8 c8 92 1a fd 0f b6 1d fd ea c8 0b 31 [ 131.789449][T11131] RSP: 0018:ffffc9000471f9f8 EFLAGS: 00010286 [ 131.791403][T11131] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc90028443000 [ 131.793961][T11131] RDX: 0000000000080000 RSI: ffffffff817aee65 RDI: 0000000000000001 [ 131.796436][T11131] RBP: ffff888013258078 R08: 0000000000000001 R09: 0000000000000000 [ 131.798933][T11131] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888013259400 [ 131.801411][T11131] R13: ffff888013258078 R14: ffffffff85d7d930 R15: ffffffff90657f20 [ 131.804147][T11131] ? __pfx_klist_children_put+0x10/0x10 [ 131.805900][T11131] ? __warn_printk+0x1a5/0x350 [ 131.807441][T11131] ? refcount_warn_saturate+0x149/0x210 [ 131.809188][T11131] klist_put+0x11b/0x1b0 [ 131.810506][T11131] klist_remove+0x13f/0x2e0 [ 131.811964][T11131] ? __pfx_klist_remove+0x10/0x10 [ 131.813564][T11131] ? kobject_move+0x15d/0x260 [ 131.815134][T11131] ? get_device_parent+0x1ed/0x4e0 [ 131.816772][T11131] device_move+0x12d/0x10d0 [ 131.818231][T11131] hci_conn_del_sysfs+0x81/0x180 [ 131.819809][T11131] hci_conn_del+0x657/0x1180 [ 131.821305][T11131] hci_conn_hash_flush+0x186/0x260 [ 131.822955][T11131] hci_dev_reset+0x249/0x610 [ 131.824437][T11131] ? __pfx_hci_dev_reset+0x10/0x10 [ 131.826076][T11131] ? bpf_lsm_capable+0x9/0x10 [ 131.827871][T11131] ? security_capable+0x7e/0x260 [ 131.829459][T11131] hci_sock_ioctl+0x493/0x7d0 [ 131.830967][T11131] ? __pfx_hci_sock_ioctl+0x10/0x10 [ 131.832609][T11131] ? do_vfs_ioctl+0x128/0x14f0 [ 131.834165][T11131] hci_sock_compat_ioctl+0x43/0x80 [ 131.835784][T11131] ? __pfx_hci_sock_compat_ioctl+0x10/0x10 [ 131.837662][T11131] compat_sock_ioctl+0x176/0x730 [ 131.839239][T11131] ? __pfx_compat_sock_ioctl+0x10/0x10 [ 131.840960][T11131] ? hook_file_ioctl_common+0x145/0x410 [ 131.842712][T11131] ? __fget_files+0x20e/0x3c0 [ 131.844197][T11131] ? __pfx_compat_sock_ioctl+0x10/0x10 [ 131.845875][T11131] __ia32_compat_sys_ioctl+0x242/0x370 [ 131.847612][T11131] __do_fast_syscall_32+0x7c/0x300 [ 131.849244][T11131] do_fast_syscall_32+0x32/0x80 [ 131.850799][T11131] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 131.852784][T11131] RIP: 0023:0xf70ed579 [ 131.854372][T11131] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 131.860367][T11131] RSP: 002b:00000000f54dd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 131.863000][T11131] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000400448cb [ 131.865491][T11131] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 131.867975][T11131] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 131.870469][T11131] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 131.872978][T11131] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 131.875453][T11131] [ 131.877203][T11131] Kernel Offset: disabled [ 131.878620][T11131] Rebooting in 86400 seconds.. VM DIAGNOSIS: 20:01:39 Registers: info registers vcpu 0 CPU#0 RAX=00000000001497dd RBX=0000000000000000 RCX=ffffffff8b5d42a9 RDX=0000000000000000 RSI=ffffffff8da27d51 RDI=ffffffff8bf075c0 RBP=fffffbfff1c12f40 RSP=ffffffff8e007df8 R8 =0000000000000001 R9 =ffffed1005646655 R10=ffff88802b2332ab R11=0000000000000001 R12=0000000000000000 R13=ffffffff8e097a00 R14=ffffffff908239d0 R15=0000000000000000 RIP=ffffffff8b5d2d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097810000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f71f3c90 CR3=000000005f776000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000001 RBX=1ffff9200075ff5b RCX=ffffffff82075cd2 RDX=0000000000000000 RSI=00000000ffffffff RDI=ffffffff8e3c4540 RBP=0000000000000000 RSP=ffffc90003affac0 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000 R12=ffffffff8ccb6a20 R13=00000000000006f3 R14=00000000ff976714 R15=00000000ff97676c RIP=ffffffff8b5d35e0 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097910000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f73e6250 CR3=00000000671a4000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000004fffffff3 0000012800000094 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=000000000000006d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85267d75 RDI=ffffffff9adc2de0 RBP=ffffffff9adc2da0 RSP=ffffc9000471f360 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001 R12=0000000000000000 R13=000000000000006d R14=ffffffff9adc2da0 R15=ffffffff85267d10 RIP=ffffffff85267d9f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097a10000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000032b1dffc CR3=000000004c44e000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f7425ff4 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000000 RBX=0000000000000000 RCX=ffffc9003048b000 RDX=0000000000080000 RSI=ffffffff84893e2b RDI=ffffffff9ac8ecc8 RBP=0000000000000000 RSP=ffffc90006977370 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001 R12=dffffc0000000000 R13=0000000000000000 R14=ffffea0001452618 R15=04fff00000020001 RIP=ffffffff8b5d3766 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097b10000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000000c36ff86 CR3=0000000073791000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000