last executing test programs: 1m34.282850707s ago: executing program 1 (id=2833): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]}) syz_open_procfs(0x0, 0x0) timer_create(0x7, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000)) timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) 1m33.40224088s ago: executing program 1 (id=2844): bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff) sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c010000", @ANYRES16=r1, @ANYBLOB="01000000000000000000170000000c00060001000000010000000c01308014000400976f1044852bca665354bd217b6b9037200001800c0005000400000200000200080001000300000005000200030000000500020008000000240003"], 0x12c}, 0x1, 0x0, 0x0, 0x24004821}, 0x0) 1m33.351931998s ago: executing program 1 (id=2848): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xaece, 0x2) read(r2, &(0x7f0000000040)=""/8, 0x8) 1m33.142123889s ago: executing program 1 (id=2851): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000002400)=ANY=[@ANYBLOB="0100000000f2ffff700500"]) 1m32.963158819s ago: executing program 1 (id=2856): prctl$PR_SET_SECUREBITS(0x1c, 0x2c) setuid(0xee00) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8}) 1m32.925894987s ago: executing program 1 (id=2858): socket$inet6(0x2d, 0x2, 0x0) r0 = syz_io_uring_setup(0x1e1e, &(0x7f0000000140)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=0x0, &(0x7f0000000000)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22}) io_uring_enter(r0, 0x48e9, 0x300, 0x2, 0x0, 0x0) 1m17.907325668s ago: executing program 32 (id=2858): socket$inet6(0x2d, 0x2, 0x0) r0 = syz_io_uring_setup(0x1e1e, &(0x7f0000000140)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=0x0, &(0x7f0000000000)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22}) io_uring_enter(r0, 0x48e9, 0x300, 0x2, 0x0, 0x0) 1m9.240243586s ago: executing program 4 (id=3453): r0 = socket$l2tp6(0xa, 0x2, 0x73) bind$l2tp6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x20) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000001c0)={{{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @in=@remote, 0x4e22, 0xeb, 0x4e20, 0x1, 0xa, 0x80, 0x120, 0x73}, {0x5, 0x9, 0x0, 0xeb, 0x70000, 0x5, 0x4, 0x3}, {0x8, 0x7, 0x80000001, 0x400}, 0x6, 0x0, 0x0, 0x1, 0x2, 0x3}, {{@in=@rand_addr=0x64010101, 0x4d5, 0x33}, 0x2, @in=@private=0xa010102, 0x3502, 0x4, 0x2, 0x1, 0x201, 0x9, 0xb03}}, 0xe8) syz_emit_ethernet(0x46, &(0x7f0000000440)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd60f91e2e00107300fc040000000000000000000000000000ff02000000000000000000000000000100000000ff"], 0x0) 1m9.153118508s ago: executing program 4 (id=3455): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000400)={0x3, 0x0, [{0x1, 0x0, 0x5}, {0x4572, 0x0, 0xbc5}, {0x0, 0x0, 0x95}]}) 1m9.078649301s ago: executing program 4 (id=3456): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$PTRACE_SETSIGMASK(0x420b, r0, 0x8, &(0x7f0000000080)) 1m8.960309646s ago: executing program 4 (id=3460): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20) mkdir(&(0x7f0000000140)='./control\x00', 0x5) rmdir(&(0x7f0000000100)='./control\x00') 1m8.902923827s ago: executing program 4 (id=3463): unshare(0x6a040000) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000000900010073797a3100000000e8010000030a01020000000000000000010000000900030073797a3200000000280004800800024000000000080001400000000514000300626174616476300000000000000000000900010073797a31000000000900010073797a3100000000340008800c00024000000000000080010c00024000000000000000040c00014000000000000000000c00014000000000000000014c000480080002404c82f47c080001400000000008000140000000010800014000000003080002404f32945f080001400000000308000140000000020800024019885f270800014000000003fd000c00a03ac330bf11a2145946e6d945deece8485ee69dbc29a8dd5dbce127f829a3adf5c4171b4bedbbc9b913a67b9ee679020f0200000064419faae0136b893d91d95b1174f115798a1abfdc06983fb83f2116a85a00dd35cdf9d8f81683e5e2ebcca132a712e0be44c12c02ac92fbbb86ed717ce0cbd6a0134f899e23ca6d2f063d26be86555cc0e9c7a25d77e6c0f4217794be96b5d797e3116d874c3adfb096e0567ec28bd1e4d8d6713109695f1f3a877d89d20e19304501aeb851d14c4f9b2d769d554fe5308810d19bb040c1977bce50b894f2c45a1f0e80c8256b6dcb072f9d91d94a67bba9f62eb2f192fa4b3786d9a774b99aa332dfbb000000080007006e6174"], 0x25c}}, 0x0) 1m7.792116099s ago: executing program 4 (id=3473): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x8800, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x14) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)=0x7) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) 1m7.743604803s ago: executing program 33 (id=3473): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x8800, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x14) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)=0x7) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) 1.616418231s ago: executing program 0 (id=5417): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x122c42) ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f0000001ac0)={r0, 0x10000, {0x0, 0x0, 0x0, 0x2ead, 0x7fff, 0x0, 0x0, 0x0, 0x4, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "24431a1e77a68e174ff10000000000000010e200"}}) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0) futex(&(0x7f0000000300)=0x4, 0x10b, 0x4, 0x0, &(0x7f0000048000), 0x0) 1.553509987s ago: executing program 0 (id=5421): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01f71800000000000000240000002400000002000000000000000000000400000003000000000000000000000000000000000000000d0200000000000006"], 0xffffffffffffffff, 0x3e, 0x0, 0xa, 0x0, 0x0, @void, @value}, 0x28) r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newtaction={0x48, 0x30, 0x53b, 0x0, 0x0, {0x9}, [{0x34, 0x1, [@m_sample={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x4, {0x3}}}}]}]}, 0x48}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="680000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000400012800c0001006d6163766c616e0030000280080006"], 0x68}}, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003f000b05d25a806c8c6394f90324fc60100002000a000300053582c137153e3704020180fc0b09000c00", 0x33fe0}], 0x1}, 0x0) 1.551053353s ago: executing program 0 (id=5422): openat$adsp1(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) sendmsg$ETHTOOL_MSG_LINKSTATE_GET(0xffffffffffffffff, 0x0, 0x4) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_MEDIA_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000200)={0x6c, r1, 0x1, 0x7c000000, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x13}, 0xf8}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @mcast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x6c}}, 0x0) 1.44143164s ago: executing program 0 (id=5426): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-sse2\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000004140)=[{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f00000001c0)="14", 0x1}], 0x1}], 0x1, 0x0) 1.416894576s ago: executing program 0 (id=5428): r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3) connect$bt_rfcomm(r0, &(0x7f0000000040)={0x1f, @none, 0x2}, 0xa) r1 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3) connect$bt_rfcomm(r1, &(0x7f00000001c0)={0x1f, @none, 0x1}, 0xa) shutdown(r0, 0x1) 1.166143053s ago: executing program 3 (id=5437): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000001040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x28, r1, 0x601, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x20004000) 1.081972752s ago: executing program 3 (id=5438): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x9}, 0x1c) listen(r0, 0x3) setsockopt$inet6_int(r0, 0x29, 0x8, &(0x7f0000000000)=0x3, 0x4) syz_emit_ethernet(0x4a, &(0x7f0000000240)={@local, @dev, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0) 1.081839219s ago: executing program 3 (id=5439): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ff7fffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000100)='sys_enter\x00', r1}, 0x10) clock_gettime(0x0, &(0x7f00000001c0)) 920.732024ms ago: executing program 3 (id=5442): r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000140)={0x1, [0x0]}, &(0x7f0000000240)=0x8) sendmsg$inet_sctp(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[@sndinfo={0x1c, 0x84, 0x2, {0x6, 0x4, 0x28, 0x200000e, r2}}], 0x1c, 0x2400e044}, 0x6) 850.959825ms ago: executing program 2 (id=5445): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000012c0)={{0x14}, [@NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @redir={{0xa}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x6c}}, 0x0) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) close_range(r1, 0xffffffffffffffff, 0x0) 849.364133ms ago: executing program 2 (id=5446): mremap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil) r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f00000005c0), 0x10) recvmmsg(r0, &(0x7f0000007f00)=[{{0x0, 0x0, 0x0}, 0xc251}, {{0x0, 0x0, &(0x7f0000005480)=[{&(0x7f0000004340)=""/49, 0x31}], 0x1}, 0x40}], 0x2, 0x10002, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="050000007f0000000000010000000000", @ANYRES64=0x0, @ANYRES64=0x2710], 0x48}}, 0x30) 712.706752ms ago: executing program 2 (id=5447): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4) r1 = socket(0x2, 0x3, 0xff) bind$inet(r1, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10) connect$inet(r1, &(0x7f00000000c0)={0x2, 0xfff9, @multicast1}, 0x10) 712.307207ms ago: executing program 2 (id=5448): socket$nl_generic(0x10, 0x3, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) r0 = io_uring_setup(0x6ddd, &(0x7f00000002c0)) io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xd, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0}, 0x20) io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xe, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000040)=[{0x0, 0xffffffff00000005}], &(0x7f0000000180)=[0xffffffff, 0x7fffffff, 0x2, 0x6, 0x101, 0x1], 0x7}, 0x20) 642.675672ms ago: executing program 2 (id=5449): mount$overlay(0x0, 0x0, &(0x7f0000000200), 0xd4, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x10, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000100)={r0, 0x58, &(0x7f0000000080)={0x0, 0x0}}, 0x10) r2 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000140)={r1}, 0xc) bpf$BPF_GET_PROG_INFO(0x4, &(0x7f0000000000)={r2, 0xe0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8, 0x0, 0x0}}, 0x10) 642.513573ms ago: executing program 2 (id=5450): socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$lock(r0, 0x7, &(0x7f0000002000)={0x1, 0x0, 0x0, 0x4}) fcntl$lock(r0, 0x26, &(0x7f0000000080)={0x0, 0x0, 0x2}) fcntl$lock(r0, 0x7, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x3}) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x1}) 512.911945ms ago: executing program 0 (id=5452): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xd) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) ioctl$sock_inet_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000140)) 432.985078ms ago: executing program 5 (id=5454): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = fcntl$dupfd(r0, 0x0, r0) capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb}) r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000000)={0x20000000}) 432.680475ms ago: executing program 5 (id=5455): r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newsa={0xf0, 0x10, 0x300, 0x70bd28, 0x0, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, @in=@local, 0x4e23, 0x1, 0x0, 0x0, 0xa, 0x0, 0x0, 0x2b}, {@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x32}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {0x0, 0x0, 0x8, 0x100000001, 0x6}, {0x0, 0x0, 0x2, 0xfffffffffffffffc}, {0xc}, 0x70bd27, 0x0, 0xa, 0x0, 0x2}}, 0xf0}, 0x1, 0x0, 0x0, 0xc0}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newtaction={0x48, 0x30, 0x53b, 0x0, 0x0, {0x9}, [{0x34, 0x1, [@m_sample={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x4, {0x3}}}}]}]}, 0x48}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000040)=@RTM_NEWMDB={0x38, 0x54, 0x1, 0x1, 0x0, {}, [@MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x1, 0x0, 0x3, {@ip4=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x86dd}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003f000b05d25a806c8c6394f90324fc60100002000a000300053582c137153e3704020180fc0b09000c00", 0x33fe0}], 0x1}, 0x0) 372.955872ms ago: executing program 5 (id=5456): socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0) close(r1) r2 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r2, &(0x7f0000000080)=[{&(0x7f0000000180)="580000001400192340834b80040d8c561e067f0202ff000000020000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100001000c0c100000000000000003a0", 0x58}], 0x1) 280.689699ms ago: executing program 5 (id=5457): mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2000001, 0x59033, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x404}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000200)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4}) ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000080)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x800000, 0x3}) 280.141514ms ago: executing program 5 (id=5458): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110e22fff6) ioctl$TUNGETVNETLE(r0, 0x400c744d, &(0x7f0000000180)) 1.097905ms ago: executing program 3 (id=5459): socket$inet_tcp(0x2, 0x1, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000d0000000b70000000000000095000000000000003fba6a7d36d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f010c5077da80fb982c1e9400c603146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef7f9606056fe5c34665c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763288d01aa27ae8b09e13e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468082089b302d7bff8f06f7f918d65eae391cb41336023cdcedb5e0125ebbccbddcf10cb2364149215108355ee570f8078be5cab389cd65e7133719acd97cfa107d40224edc5465a932b77e74e712a0d42bc6099ad23000000803a90bce6dc3a13871765df961c2ed3b1006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f40cab87b1586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9f081d6a08000000ea2b1a52496dfcaf99431412fd13f4cec49669e443dcb924cfe5f3185418d60532be9c4d2ec7c32f2095e63c8cdc28f74d043ef8dba2f23b01a9ae44cf945b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142bdda5e6c5d50b83bae616b5054d1e7c13b1355d6f4a8245eaa4997da9c77af40000000000000005f58351d599e9b61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a41326eea31ae4e0f75057df3c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57010000009700ce0b4b8bc22941330000000000000000000300000000000000000000000010008bc0d955f2a83366b99711e6e8861c46495ba585a4b2d02edc3e28dd279a896249ed85b9806f0b6c4a000000002b43dcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad883ef07000000000000006da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff72943327d830689da6b53ffffffff631c7771429d1200000033ed846197fcff5e1c7c3d1d6e3a52872baef9753fffffffffffffe09fec2271fe010cd7bb2366fde4a59429738fcc917a57f94f6c453cea623cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcd41df54cdbd9d10a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce978275d5bc8955778567bc79e13b78249788f11f708008b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822aea68a660e717a04becff0f719107000000000000002d7e927123d8ecbbc55bf404571be54c72d978cf2804107f0238abccd32368e57040906df0042e19000000000000002c06f815312e086dd022c074eb8a322fb0bf47c0a8d154b405a07feaf3dd95f6ef44cd1fe582786105c7df8be4877084d4173731efe895efc71f665c4d75cf2458e35d2c9062ece84c99e061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb2b5e518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad055e4af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457ac0eaaa99bf0bdc14ae358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3fdf242b985bf16b99c9cc0ad1857036f1a985f369191ae954febb3df464bfe0f773ee9afe72f32a2befb89d3777399f5874c553a2ebe9061fe86e669642e09c0e5a3bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f8a9778cb26e22a2a998de5eaeadea10d3cfb41b92ecbb422a40da8daccf080842a486721737390cbf3a74cb2003efb9a101b51ab63e9600040000b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defd83871c5191e10096e7e60fc3541a2c905a1a95e9571bf38aebd15172f94e3245c582909e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f90100000000000000abf9010000007740890200d627e87306703be8672dc84eeadba6a41891c170d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d10a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7ef8c08acaf30235b920500d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69b93e9960ff5f74562adae283d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff85000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a31c72ad53bc19faa5401120000793ac48c1b539c75ab40743b00020000a1f68df75cf43f8ecc8d3726602111b40e761fd210a1920382f14d12ca3c3431ee97471c781d0d1280fb00818654a53b6df4b2c97cc1c98d85fda8f80fe908b65550b4412331d73062197655b7f0469250a5989cef0e10773920ed3ccee42d2c3eb80159da5c002511e6eb93842054cfce2ac306cb6e472db3fd67a49b6855a694a8d359add43907003223a47a7fae4f3748d5a432825bc40a03aaef1c8488d86dc211dd2a3ba71e0f45492ef1f8b65ccb3dcd251a61b152d02c29ca0a3328fa7753a5cddea1acaae55ae8263fb284b7a6ab2a8826c1b948207c498cf4824ab1ea3225a53072423b907c6682f8999e0311da5b8378bc841e1787e3a8128dda381a26cb2b365702ff8a27831375b2ddaa2f56e21169f7ca4fd9655ccd4a584acd244e965a0afedaff7c415ff682a4044b3381cc2df28278c9a6824c52048a7cfabda294925cc0956bffa8e950ff5e49f41ae600d830207bf728cd9807933c3c16d80bbea611a18becc2dc38ca0a6f5740f340b76edcd100fcffff007231dcef58c7b88b5aeedaf9626cb51ce1737c10ab37d4f98a934b0f900e0eb639878a1200629f5503cf679154d27681d7a3744cbcd42af59407c9c8e39c5271868917954e604352ba26171d004f1cb2976fab3fa19c7d3ef9678bff79f5155524f061378f94fb453786c3a6f78b10d383b49e31d1568bd43ee34ce6e6be235aa6207285665c2fba773671da41959f51610963b48930658e2d6125a26085001345b0473240b7e5e91811312c43663e76f711c6529ecdec75c7ea1cf0f8f8fff40247d59bbde2ebb8659197e0f37a71be1b12a182ed7de3acba28561a04b807f7a4647e2ea6d8fb92541d07c3d5e4ba077d3cad9f8ba1919592014c00c8eccb2ca5d48ba7b1c3fb185a4bb79700cf51f818b0c701c8de47d12281a67bdaf4b0c50bee9e8f5936250df2e15c1172e7ea6619f7db330700d1e9e42a035e6fd532f61fbfed9c4a7124a1e38eee50a6bbcd1d4e3f68c3f27dd9a70f1a7c6046237ddfb0b26e197322226367d998010458cd4df10af249ce717f6f45e5176e0ddae3054d7289d4e13ab0912703ee39ce264572b89194fdf7acecc35cf8309d4b680a08eed367dad855fce210f1a7c7222dd360eafb4bef7d58bf83362930af6e3f3f851abdc0003bdf9401b533019e90feb069189100007a82df8d9b5f44ebf9355e7b1b01c9470608d4f306d21004730396a4d6c6d46e1ffac97aa93c36123532a36186575266be4981c847160079421d0137801e553069f8d025c40f287378810defc7f2ed4e15f6af17b21153394f8bcfa6a23a77c8d61c9bbc127a57b8d631f36558d9093dee08bc53d97a8003363421738650a22c8fd87b13026799caf58e59951b125e7f161ca34e2c0dd65a23d01a3cb191e743de07247c7f993cf01166fa2ac1ba02f60550e63a7f50422e478c6b5d87f9bd0567a279a9d85a380db25c43bd0529ad783b9d64aaac1b793afb44b7126e17d2b7c0d6be650de7eeef3f3605af344015d03c3e7819145cb9fe1978c98bf9cf10773db59505ae33708c728844c872dfd2cb0b29008000000000000005ca18cb72f0944d0e4fea0a0abd0285bdaf1b000000c089d640c2facb0d1e6243873ac4b1e1068c45c715b68effb7d58d1f9e726dbf6bd910ca4ce0e075658ede42192cf393a50dcc197b03402fed75083628e5dd38213d353b9049e71f037064b05e73ec00c710f1ffc5737d397d555d1cf8859cc030ea8dc3c6a5b3b6fa1c81707479db1833d593a271253aa11efd936b74784f2fc286814848e92d8ee541bc179813297a0a4cc3c8f80c28701185bea091f32475e859479b734727afc110e1abcff460172fd1b42e3c0e2a4bf94a060069000010000087c7572a1e7596f89e5c3d5e70640c90815f77b7b13d0000000085a1e1e84900000000000000000000000000b422fc160a458ee5a91a2471e6e56fdabec6c73ce8983fc68f0b7cdcdde632e6f54a07620e8aa116ce9e84fc3cd5e8288a333dcebb233da9186796995ba69487d8f77d2f8800f02d690fc70a08b231cad1bdcf3740a95d4dd1cfe0f417f275493cf33b19ffff93dfdaf7eb00b8ad87cdf7c21bab5af8e2bac54ee5597e6508c1158124a538c36f9bb11fea7d8b8c7e954b1bc7811654a6636b33f271d0923e9ecd1b724b8feffadfc23c07000000f0785fb722f346d6a5dffe1884d4d0cd8f00000092c85ed44db68ab800001f00000000406e6ed9b219ad07125381087298e75965d1cc5932ddf9e66351b9332a34bee3e3d562c914c629933f0b8724cf680889ade72558d191d9890c69a718f9018586c5131c8dc8e0379bafda1a0fd2997ff115215ce23dca8db7236c1554cdaaadcce2f31834c1bd1908d8e1b361034db56be76acb7654a195bc3e98df3a5dffd5b0783883ef7da3433110e37f7c7cb7f3800de7f99abf910d6949e062747a9c87dcfcc716d6a9c0ec53b9cffe3cfd1df69a76f373d7f997edb9b80bdea1a99c2a6fbb25e035deadaadd7917ebfedd6304a19491769476208684e343f86b4d55a7dbbb07283cb1e35a138d24ebc5b4f8e35a82d3a7f84cb1e02a5a92b53567088be0b1ca023ccd518c0e0715b1c8760801a419ebd2e26440ff7493019bdb655cc88d72d6d7b6bca5a2e19b63ec52fce43d8c53a8031e64026e0d36b6401064c49a729f11ab377f7132c5232bb80195dd5d43d29646a9378eea0761b7ed9d2172e33ed87c7413c843b180cc00000000006bedf2ed716ca43a941119b96d82b26d9061de240d85ec2cfa462bd52104489bb7a7548d7cc53627031e909c69cb824233975a1ea645de63522407c3a240a37e946f30ebf075ea97846a0a8d2286f3f446b1b99ab83a12ddf8a1c06294eadc3eb3e339591afd5c00000000000000000000000000000000000000000000000000579dad8347a3d16976bb7483840b32db0158fb6c809349333325a7866ca5d3133e33ef1a183cefdb65a79fa71800988c8445029e024822dbcfcab49c3a0aec9bd43e6e14078b260700d849a2aa14c9b593f6dcb1de334c065ecfd65031606e55949c185bcda9fde4f9b46a76b8a24bbcd31b22373eb0473248150cd179405ee1af1183b0c0ce3483dc1d9bf732b0751b78fb211d6706b55960c6431afbc02b3c7e08086573939290bb9e590a3875f02a828b07f1dc7df9c8e5da22dfb9dacbf5529e4e994128d835f85465173ea7bbcc519a0c9798ce8b1b07567e3e07169c8c3e4da8bf725c050000000000000000000000000000000000000000004775abdf0c62728eb55a9e2849a1ce05bed60dfe4cc9fa43f9684297c02382c0a35829be7a86305792a9d2e80ca9e8fc50f31f6e0fa810303da03d8b74b42c1ebaf16bb343256405a3a07229a54de09a97b269cd29e8b2f0b0d46c51a6a93eec37f4bc6e29a8e19120ae050ab682662e9b2cc3263a4aba62b63ca9123a53c0f4bf3c4463b8144c89bf058a0af0ae9fc2b7cdfc4817703e267cddc193637d7fd97646090da37093657643daae3840c7f5c10f93524f7ae4791ec6e9d9722e5f670ccb358e051a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x5a, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000a40)={@fallback=r1, r0, 0x2f, 0x0, 0x0, @void, @value}, 0x20) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000480)={@cgroup=r0, r0, 0x2f, 0x4, 0x4, @void, @value=r0}, 0x20) 998.923µs ago: executing program 5 (id=5460): bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="0900000007000000000001"], 0x50) r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x862b01) r1 = syz_open_dev$evdev(&(0x7f0000000280), 0x0, 0x0) ioctl$int_in(r1, 0x5452, &(0x7f0000000180)=0x800) write$char_usb(r0, &(0x7f0000000040)="e2", 0x2250) 0s ago: executing program 3 (id=5461): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000300)={0x4376ea830d4d549b, 0x0, [0x8000000000000001, 0x8, 0x0, 0x4, 0x9, 0x3, 0xfffffffffffffffc, 0x1000800000]}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000006c0)={[0x7, 0x64f6, 0x9d5, 0xffffffffffffffad, 0x7, 0x3, 0x400, 0x1ff, 0xf0, 0xf1, 0xffffffffffff0000, 0xfffffffffffffeff, 0x2c0000000000000, 0x9, 0x0, 0x2], 0xeeee8000, 0x8040}) kernel console output (not intermixed with test programs): ode [ 122.020968][T10324] veth1_to_bond: left allmulticast mode [ 122.229629][T10339] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1981'. [ 122.237620][ T40] kauditd_printk_skb: 112 callbacks suppressed [ 122.237636][ T40] audit: type=1326 audit(1750563605.671:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10338 comm="syz.2.1982" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 122.249776][ T40] audit: type=1326 audit(1750563605.671:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10338 comm="syz.2.1982" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 122.259323][ T40] audit: type=1326 audit(1750563605.671:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10338 comm="syz.2.1982" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 122.270627][ T40] audit: type=1326 audit(1750563605.671:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10338 comm="syz.2.1982" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 122.280031][ T40] audit: type=1326 audit(1750563605.671:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10338 comm="syz.2.1982" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 122.288555][ T40] audit: type=1326 audit(1750563605.671:954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10338 comm="syz.2.1982" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 122.296845][ T40] audit: type=1326 audit(1750563605.671:955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10338 comm="syz.2.1982" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 122.307278][ T40] audit: type=1326 audit(1750563605.671:956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10338 comm="syz.2.1982" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 122.318232][ T40] audit: type=1326 audit(1750563605.671:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10338 comm="syz.2.1982" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 122.328330][ T40] audit: type=1326 audit(1750563605.671:958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10338 comm="syz.2.1982" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 123.573167][T10412] batadv1: entered promiscuous mode [ 123.982274][T10426] syz.0.2017: attempt to access beyond end of device [ 123.982274][T10426] loop0: rw=6144, sector=128, nr_sectors = 8 limit=0 [ 123.986834][T10426] gfs2: error -5 reading superblock [ 124.882912][T10467] netlink: 'syz.3.2035': attribute type 21 has an invalid length. [ 124.886705][T10467] netlink: 16166 bytes leftover after parsing attributes in process `syz.3.2035'. [ 125.262897][T10489] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x6 [ 125.327852][T10496] bridge: RTM_NEWNEIGH with invalid state 0x8 [ 125.445490][T10506] netlink: 256 bytes leftover after parsing attributes in process `syz.1.2052'. [ 125.448943][T10506] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2052'. [ 125.749385][T10531] bond0: entered promiscuous mode [ 125.751053][T10531] bond_slave_0: entered promiscuous mode [ 125.753577][T10531] bond_slave_1: entered promiscuous mode [ 125.756408][T10531] batadv0: entered promiscuous mode [ 125.759076][T10531] 8021q: adding VLAN 0 to HW filter on device hsr1 [ 125.952701][ T29] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 126.122621][ T29] usb 6-1: Using ep0 maxpacket: 8 [ 126.125539][ T29] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1023 [ 126.128672][ T29] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32 [ 126.139688][ T29] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 126.142678][ T29] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 126.145309][ T29] usb 6-1: Product: syz [ 126.146703][ T29] usb 6-1: Manufacturer: syz [ 126.148255][ T29] usb 6-1: SerialNumber: syz [ 126.242636][ T1326] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 126.362344][ T29] cdc_ncm 6-1:1.0: bind() failure [ 126.366359][ T29] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found [ 126.368507][ T29] cdc_ncm 6-1:1.1: bind() failure [ 126.371586][ T29] usb 6-1: USB disconnect, device number 5 [ 126.422579][ T1326] usb 5-1: Using ep0 maxpacket: 16 [ 126.426480][ T1326] usb 5-1: config 0 has an invalid interface number: 8 but max is 0 [ 126.429650][ T1326] usb 5-1: config 0 has no interface number 0 [ 126.432079][ T1326] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 126.436442][ T1326] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 126.441573][ T1326] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 126.445221][ T1326] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 126.447763][ T1326] usb 5-1: Product: syz [ 126.449439][ T1326] usb 5-1: SerialNumber: syz [ 126.452229][ T1326] usb 5-1: config 0 descriptor?? [ 126.455913][ T1326] cm109 5-1:0.8: invalid payload size 0, expected 4 [ 126.459140][ T1326] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.8/input/input19 [ 126.661419][ C3] cm109 5-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90 [ 126.870227][ C3] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 126.874810][ C3] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 126.877987][ C3] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 126.881218][ T1326] usb 5-1: USB disconnect, device number 7 [ 126.883701][ C3] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 126.883722][ C3] cm109 5-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 126.897637][ T1326] cm109 5-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 127.129857][T10603] 8021q: adding VLAN 0 to HW filter on device bond1 [ 127.134747][T10603] bond0: (slave bond1): Enslaving as an active interface with an up link [ 127.184152][T10609] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2097'. [ 127.304117][ T40] kauditd_printk_skb: 9 callbacks suppressed [ 127.304137][ T40] audit: type=1326 audit(1750563610.741:968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10616 comm="syz.2.2101" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 127.315729][ T40] audit: type=1326 audit(1750563610.741:969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10616 comm="syz.2.2101" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 127.325167][ T40] audit: type=1326 audit(1750563610.741:970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10616 comm="syz.2.2101" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 127.342605][ T40] audit: type=1326 audit(1750563610.741:971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10616 comm="syz.2.2101" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 127.349329][ T40] audit: type=1326 audit(1750563610.741:972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10616 comm="syz.2.2101" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf706e5a7 code=0x7ffc0000 [ 127.356044][ T40] audit: type=1326 audit(1750563610.741:973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10616 comm="syz.2.2101" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 127.362577][ T40] audit: type=1326 audit(1750563610.741:974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10616 comm="syz.2.2101" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 127.369175][ T40] audit: type=1326 audit(1750563610.741:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10616 comm="syz.2.2101" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 127.375914][ T40] audit: type=1326 audit(1750563610.741:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10616 comm="syz.2.2101" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 127.381893][ T40] audit: type=1326 audit(1750563610.741:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10616 comm="syz.2.2101" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 127.977654][T10671] capability: warning: `syz.2.2125' uses 32-bit capabilities (legacy support in use) [ 128.440485][T10695] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2135'. [ 129.101642][T10747] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2161'. [ 129.107757][T10749] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 129.160508][T10753] bridge_slave_0: default FDB implementation only supports local addresses [ 129.373350][T10772] loop9: detected capacity change from 0 to 8 [ 129.377262][T10772] Dev loop9: unable to read RDB block 8 [ 129.379184][T10772] loop9: unable to read partition table [ 129.381643][T10772] loop9: partition table beyond EOD, truncated [ 129.385767][T10772] loop_reread_partitions: partition scan of loop9 (被x ) failed (rc=-5) [ 129.730633][T10793] netlink: 104 bytes leftover after parsing attributes in process `syz.1.2181'. [ 129.735788][T10793] netlink: 104 bytes leftover after parsing attributes in process `syz.1.2181'. [ 130.316107][T10832] openvswitch: netlink: Multiple metadata blocks provided [ 130.886238][T10876] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2213'. [ 131.228363][T10904] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2225'. [ 131.232076][T10904] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2225'. [ 132.695465][T10999] ptrace attach of ""[11000] was attempted by "/syz-executor exec"[10999] [ 132.833410][T11008] bridge0: port 1(bridge_slave_0) entered disabled state [ 133.171528][T11033] netlink: 1 bytes leftover after parsing attributes in process `syz.0.2281'. [ 133.175389][T11033] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2281'. [ 133.178952][T11033] netlink: 1 bytes leftover after parsing attributes in process `syz.0.2281'. [ 133.949894][ T9] kernel read not supported for file /dsp (pid: 9 comm: kworker/0:0) [ 134.660467][T11138] veth1_macvtap: left promiscuous mode [ 135.208419][T11157] netem: incorrect ge model size [ 135.210664][T11157] netem: change failed [ 135.315076][T11165] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2339'. [ 135.611201][T11184] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0 [ 135.778960][T11201] Bluetooth: MGMT ver 1.23 [ 135.876104][T11196] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 135.878925][T11196] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 135.881585][T11196] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 135.887771][T11196] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 135.890407][T11196] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 135.906073][T11196] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 135.956499][T11218] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2364'. [ 136.010617][ T40] kauditd_printk_skb: 121 callbacks suppressed [ 136.010629][ T40] audit: type=1326 audit(1750563619.441:1099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2363" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 136.021968][ T40] audit: type=1326 audit(1750563619.441:1100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2363" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 136.037621][ T40] audit: type=1326 audit(1750563619.441:1101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2363" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 136.046281][ T40] audit: type=1326 audit(1750563619.441:1102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2363" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 136.058897][ T40] audit: type=1326 audit(1750563619.441:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2363" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 136.067846][ T40] audit: type=1326 audit(1750563619.441:1104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2363" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 136.079721][ T40] audit: type=1326 audit(1750563619.441:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2363" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 136.098149][ T40] audit: type=1326 audit(1750563619.441:1106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2363" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 136.105636][ T40] audit: type=1326 audit(1750563619.441:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2363" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 136.115894][ T40] audit: type=1326 audit(1750563619.441:1108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2363" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 136.197894][T11218] hsr_slave_1 (unregistering): left promiscuous mode [ 136.402023][T11243] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2375'. [ 136.678307][T11276] netlink: 'syz.3.2391': attribute type 1 has an invalid length. [ 136.873618][T11295] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2401'. [ 137.106023][T11318] netlink: 80 bytes leftover after parsing attributes in process `syz.2.2411'. [ 137.369375][ T1417] ieee802154 phy0 wpan0: encryption failed: -22 [ 137.371919][ T1417] ieee802154 phy1 wpan1: encryption failed: -22 [ 137.393322][ T29] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 137.546384][ T29] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 137.550571][ T29] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 137.556411][ T29] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 137.559995][ T29] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 137.566920][ T29] usb 5-1: config 0 descriptor?? [ 137.684378][T11378] dummy0: entered promiscuous mode [ 137.686817][T11378] macsec1: entered allmulticast mode [ 137.688628][T11378] dummy0: entered allmulticast mode [ 137.692169][T11378] dummy0: left allmulticast mode [ 137.695344][T11378] dummy0: left promiscuous mode [ 137.779213][ T24] usb 5-1: USB disconnect, device number 8 [ 137.844239][ T5954] Bluetooth: hci1: command 0x0c1a tx timeout [ 137.923022][ T5954] Bluetooth: hci0: command 0x0405 tx timeout [ 137.923059][ T5952] Bluetooth: hci3: command 0x0c1a tx timeout [ 137.925598][ T5954] Bluetooth: hci2: command 0x616d tx timeout [ 138.351112][ T9] kernel write not supported for file /snd/seq (pid: 9 comm: kworker/0:0) [ 138.731492][T11460] openvswitch: netlink: VXLAN extension message has 1 unknown bytes. [ 138.768368][T11464] kernel read not supported for file /,}@!$ (pid: 11464 comm: syz.0.2462) [ 138.958365][T11467] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 138.960486][T11467] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 138.962667][T11467] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 138.967698][T11467] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 139.145553][T11493] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2475'. [ 139.173615][T11494] mkiss: ax0: crc mode is auto. [ 139.203934][ T61] wlan1: Trigger new scan to find an IBSS to join [ 139.603350][T11538] dlm: non-version read from control device 34 [ 139.627382][T11540] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2498'. [ 139.672961][T11547] loop6: detected capacity change from 0 to 524287999 [ 139.675905][T11547] Buffer I/O error on dev loop6, logical block 0, async page read [ 139.679520][T11547] Buffer I/O error on dev loop6, logical block 0, async page read [ 139.685758][T11547] Buffer I/O error on dev loop6, logical block 0, async page read [ 139.689455][T11547] Buffer I/O error on dev loop6, logical block 0, async page read [ 139.693281][T11547] Buffer I/O error on dev loop6, logical block 0, async page read [ 139.696672][T11547] Buffer I/O error on dev loop6, logical block 0, async page read [ 139.699692][T11547] Buffer I/O error on dev loop6, logical block 0, async page read [ 139.702418][T11547] Buffer I/O error on dev loop6, logical block 0, async page read [ 139.709873][T11547] ldm_validate_partition_table(): Disk read failed. [ 139.714059][T11547] Buffer I/O error on dev loop6, logical block 0, async page read [ 139.718189][T11547] Buffer I/O error on dev loop6, logical block 0, async page read [ 139.721669][T11547] Dev loop6: unable to read RDB block 0 [ 139.725612][T11547] loop6: unable to read partition table [ 139.727666][T11547] loop_reread_partitions: partition scan of loop6 (3 xC) failed (rc=-5) [ 139.857720][T11568] bridge_slave_0: left allmulticast mode [ 139.859882][T11568] bridge_slave_0: left promiscuous mode [ 139.862369][T11568] bridge0: port 1(bridge_slave_0) entered disabled state [ 140.004357][T11583] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 140.166081][T11568] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 140.368804][T11592] netlink: 'syz.1.2523': attribute type 1 has an invalid length. [ 140.371977][T11592] nbd: error processing sock list [ 140.377254][T11592] block nbd0: shutting down sockets [ 140.562864][ T60] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 140.744746][ T60] usb 7-1: config 0 has no interfaces? [ 140.748179][ T60] usb 7-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 140.751750][ T60] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 140.755319][ T60] usb 7-1: SerialNumber: syz [ 140.758868][ T60] usb 7-1: config 0 descriptor?? [ 140.856897][T11636] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 140.962891][ T5951] Bluetooth: hci1: command 0x0c1a tx timeout [ 140.965565][ T5954] Bluetooth: hci2: command 0x616d tx timeout [ 140.971031][ T60] usb 7-1: USB disconnect, device number 7 [ 141.042678][ T5954] Bluetooth: hci0: command 0x0405 tx timeout [ 141.042709][ T5951] Bluetooth: hci3: command 0x0c1a tx timeout [ 141.136098][ T40] kauditd_printk_skb: 110 callbacks suppressed [ 141.136111][ T40] audit: type=1326 audit(1750563624.571:1219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11647 comm="syz.3.2548" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7fc00000 [ 141.205222][T11652] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2549'. [ 141.517665][T11662] netlink: 11 bytes leftover after parsing attributes in process `syz.1.2553'. [ 141.612235][T11667] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2557'. [ 141.855217][T11675] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2560'. [ 141.884261][ T40] audit: type=1326 audit(1750563625.311:1220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11647 comm="syz.3.2548" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf705e579 code=0x7fc00000 [ 142.322815][ T1139] wlan1: Trigger new scan to find an IBSS to join [ 142.378899][T11713] Process accounting resumed [ 142.563454][T11720] serio: Serial port ptm0 [ 142.923453][ T6031] kernel read not supported for file /dsp (pid: 6031 comm: kworker/0:5) [ 143.089330][T11736] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2587'. [ 143.122561][ T5951] Bluetooth: hci0: command 0x0405 tx timeout [ 143.300443][T11754] program syz.2.2592 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 143.538660][T11774] mkiss: ax0: crc mode is auto. [ 143.686291][T11784] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2604'. [ 143.920012][ T40] audit: type=1326 audit(1750563627.351:1221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.2616" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000 [ 143.929020][ T40] audit: type=1326 audit(1750563627.351:1222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.2616" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000 [ 143.941590][ T40] audit: type=1326 audit(1750563627.361:1223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.2616" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f57598 code=0x7ffc0000 [ 143.957138][ T40] audit: type=1326 audit(1750563627.361:1224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.2616" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000 [ 143.966248][ T40] audit: type=1326 audit(1750563627.361:1225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.2616" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000 [ 143.975343][ T40] audit: type=1326 audit(1750563627.361:1226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.2616" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f57598 code=0x7ffc0000 [ 143.983190][ T40] audit: type=1326 audit(1750563627.361:1227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.2616" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f57598 code=0x7ffc0000 [ 143.991592][ T40] audit: type=1326 audit(1750563627.361:1228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11809 comm="syz.1.2616" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f57598 code=0x7ffc0000 [ 144.602769][ T24] kernel read not supported for file /dsp1 (pid: 24 comm: kworker/2:0) [ 145.212706][ T5954] Bluetooth: hci0: command 0x0405 tx timeout [ 145.285252][ T1139] wlan1: Trigger new scan to find an IBSS to join [ 145.346577][ T60] kernel write not supported for file [eventfd] (pid: 60 comm: kworker/1:1) [ 145.586445][T11928] netlink: 'syz.0.2670': attribute type 1 has an invalid length. [ 145.589696][T11928] netlink: 'syz.0.2670': attribute type 4 has an invalid length. [ 145.593150][T11928] netlink: 188 bytes leftover after parsing attributes in process `syz.0.2670'. [ 145.596912][T11928] NCSI netlink: No device for ifindex 0 [ 146.172612][ T60] usb 5-1: new full-speed USB device number 9 using dummy_hcd [ 146.203275][ T61] wlan1: Creating new IBSS network, BSSID a2:75:24:e6:98:56 [ 146.326828][ T60] usb 5-1: config index 0 descriptor too short (expected 156, got 27) [ 146.329722][ T60] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 146.333312][ T60] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10 [ 146.337392][ T60] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64 [ 146.340968][ T60] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 146.345217][ T60] usb 5-1: config 0 interface 0 has no altsetting 0 [ 146.350444][ T60] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 146.354351][ T60] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 146.357809][ T60] usb 5-1: Product: syz [ 146.359596][ T60] usb 5-1: Manufacturer: syz [ 146.361485][ T60] usb 5-1: SerialNumber: syz [ 146.365096][ T60] usb 5-1: config 0 descriptor?? [ 146.367382][T11945] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 146.371993][ T60] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 146.378132][ T60] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 146.581948][ T40] kauditd_printk_skb: 71 callbacks suppressed [ 146.581966][ T40] audit: type=1326 audit(1750563630.011:1300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11958 comm="syz.1.2685" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000 [ 146.593805][ T40] audit: type=1326 audit(1750563630.011:1301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11958 comm="syz.1.2685" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f57598 code=0x7ffc0000 [ 146.602650][ T40] audit: type=1326 audit(1750563630.011:1302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11958 comm="syz.1.2685" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000 [ 146.611238][ T40] audit: type=1326 audit(1750563630.011:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11958 comm="syz.1.2685" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f57598 code=0x7ffc0000 [ 146.620054][ T40] audit: type=1326 audit(1750563630.011:1304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11958 comm="syz.1.2685" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f57598 code=0x7ffc0000 [ 146.629557][ T40] audit: type=1326 audit(1750563630.011:1305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11958 comm="syz.1.2685" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f57598 code=0x7ffc0000 [ 146.638337][ T40] audit: type=1326 audit(1750563630.011:1306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11958 comm="syz.1.2685" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f57598 code=0x7ffc0000 [ 146.647240][ T40] audit: type=1326 audit(1750563630.011:1307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11958 comm="syz.1.2685" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f57598 code=0x7ffc0000 [ 146.656009][ T40] audit: type=1326 audit(1750563630.021:1308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11958 comm="syz.1.2685" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000 [ 146.664915][ T40] audit: type=1326 audit(1750563630.021:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11958 comm="syz.1.2685" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f57598 code=0x7ffc0000 [ 146.745897][ T1326] usb 5-1: USB disconnect, device number 9 [ 146.750802][ T1326] ldusb 5-1:0.0: LD USB Device #0 now disconnected [ 147.179936][T11990] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2699'. [ 147.238832][T11997] input: syz0 as /devices/virtual/input/input20 [ 147.276905][T12000] openvswitch: netlink: IP tunnel TTL not specified. [ 147.293955][ T5954] Bluetooth: hci0: command 0x0405 tx timeout [ 147.348326][T12007] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2705'. [ 147.889663][T12035] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2718'. [ 148.226423][T12061] @: renamed from vlan0 (while UP) [ 148.368986][T12074] sp0: Synchronizing with TNC [ 148.538297][T12088] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2742'. [ 148.772902][T12110] loop6: detected capacity change from 0 to 4194304 [ 149.014169][T12097] syz.0.2746 (12097): drop_caches: 1 [ 149.015279][T12102] syz.0.2746 (12102): drop_caches: 1 [ 149.055471][T12097] syz.0.2746 (12097): drop_caches: 1 [ 149.224070][T12130] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2761'. [ 149.439075][T12141] (syz.2.2765,12141,3):dlmfs_mkdir:421 ERROR: invalid domain name for directory. [ 149.848114][T12189] netlink: 'syz.0.2789': attribute type 1 has an invalid length. [ 150.172869][T12212] team0: Device gtp0 is of different type [ 150.362624][ T24] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 150.512788][ T24] usb 7-1: Using ep0 maxpacket: 16 [ 150.517472][ T24] usb 7-1: config 0 has an invalid interface number: 8 but max is 0 [ 150.520295][ T24] usb 7-1: config 0 has no interface number 0 [ 150.523333][ T24] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 150.527820][ T24] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 150.542641][ T24] usb 7-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 150.551736][ T24] usb 7-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 150.555610][ T24] usb 7-1: Product: syz [ 150.557419][ T24] usb 7-1: SerialNumber: syz [ 150.561854][ T24] usb 7-1: config 0 descriptor?? [ 150.570420][ T24] cm109 7-1:0.8: invalid payload size 0, expected 4 [ 150.571884][T12236] kvm: kvm [12235]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x4000007c) = 0x0 [ 150.575107][ T24] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.8/input/input21 [ 150.587631][T12238] team0: Device gtp0 is of different type [ 150.757921][T12247] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2817'. [ 150.814019][T12249] netlink: 'syz.1.2818': attribute type 1 has an invalid length. [ 150.817428][T12249] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2818'. [ 150.981742][ C2] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 150.985048][ C2] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 150.988313][ C2] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 150.991479][ C2] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 150.995197][ C2] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 151.004241][ C2] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 151.007127][ C2] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 151.011317][ C2] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 151.015089][ C2] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 151.018821][ C2] cm109 7-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 151.022042][ T24] usb 7-1: USB disconnect, device number 8 [ 151.024581][ C2] cm109 7-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 151.037690][ T24] cm109 7-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 151.248001][T12279] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2832'. [ 151.520726][ T24] kernel read not supported for file /video37 (pid: 24 comm: kworker/2:0) [ 152.159407][T12307] smc: net device bond0 applied user defined pnetid SYZ0 [ 152.163548][T12307] smc: net device bond0 erased user defined pnetid SYZ0 [ 152.174036][T12308] netlink: 168 bytes leftover after parsing attributes in process `syz.1.2844'. [ 152.225528][T12315] netlink: 'syz.3.2847': attribute type 4 has an invalid length. [ 152.410223][T12323] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2850'. [ 152.621778][T12337] smc: net device bond0 applied user defined pnetid SYZ0 [ 152.625082][T12337] smc: net device bond0 erased user defined pnetid SYZ0 [ 152.978556][T12351] netlink: 168 bytes leftover after parsing attributes in process `syz.3.2865'. [ 154.043233][ T59] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 155.153298][T12439] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2912'. [ 155.161977][T12439] team_slave_0: entered promiscuous mode [ 155.164143][T12439] team_slave_1: entered promiscuous mode [ 155.990332][T12467] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2918'. [ 156.048475][T12471] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2919'. [ 156.229501][T12480] kvm: kvm [12479]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000079) [ 156.723752][T12504] bridge0: port 3(syz_tun) entered blocking state [ 156.727400][T12504] bridge0: port 3(syz_tun) entered disabled state [ 156.730480][T12504] syz_tun: entered allmulticast mode [ 156.737783][T12504] syz_tun: entered promiscuous mode [ 156.742241][T12504] bridge0: port 3(syz_tun) entered blocking state [ 156.745650][T12504] bridge0: port 3(syz_tun) entered forwarding state [ 156.952427][T12518] hugetlbfs: syz.3.2940 (12518): Using mlock ulimits for SHM_HUGETLB is obsolete [ 157.378873][T12528] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.2944'. [ 158.393105][T12592] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2972'. [ 158.397053][T12592] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2972'. [ 158.789074][T12604] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2978'. [ 158.792405][T12604] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2978'. [ 159.706202][T12667] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3005'. [ 159.769379][T12669] overlay: filesystem on ./file0 not supported [ 159.781171][T12672] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3008'. [ 160.070154][ T40] kauditd_printk_skb: 87 callbacks suppressed [ 160.070169][ T40] audit: type=1326 audit(1750563643.501:1397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12695 comm="syz.3.3019" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 160.084165][ T40] audit: type=1326 audit(1750563643.501:1398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12695 comm="syz.3.3019" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 160.091428][ T40] audit: type=1326 audit(1750563643.501:1399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12695 comm="syz.3.3019" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 160.112777][ T40] audit: type=1326 audit(1750563643.501:1400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12695 comm="syz.3.3019" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 160.121663][ T40] audit: type=1326 audit(1750563643.501:1401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12695 comm="syz.3.3019" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 160.133410][ T40] audit: type=1326 audit(1750563643.511:1402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12695 comm="syz.3.3019" exe="/syz-executor" sig=0 arch=40000003 syscall=287 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 160.147751][ T40] audit: type=1326 audit(1750563643.511:1403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12695 comm="syz.3.3019" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 160.161912][ T40] audit: type=1326 audit(1750563643.511:1404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12695 comm="syz.3.3019" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 161.063142][ T60] usb 7-1: new low-speed USB device number 9 using dummy_hcd [ 161.227584][ T60] usb 7-1: unable to get BOS descriptor or descriptor too short [ 161.230852][ T60] usb 7-1: unable to read config index 0 descriptor/start: -71 [ 161.233417][ T60] usb 7-1: can't read configurations, error -71 [ 161.360747][T12725] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 161.769910][T12743] input: syz0 as /devices/virtual/input/input22 [ 161.864333][T12751] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3046'. [ 161.876513][T12753] vivid-004: disconnect [ 161.881638][T12752] vivid-004: reconnect [ 162.529786][T12793] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 162.608417][T12797] batadv_slave_1: entered promiscuous mode [ 162.614231][T12796] batadv_slave_1: left promiscuous mode [ 162.690165][ C3] IPv4: Oversized IP packet from 172.20.20.24 [ 162.775040][T12813] dlm: no local IP address has been set [ 162.778251][T12813] dlm: cannot start dlm midcomms -107 [ 163.718253][ T9] kernel write not supported for file /sg0 (pid: 9 comm: kworker/0:0) [ 164.496899][T12937] bridge_slave_0: invalid flags given to default FDB implementation [ 164.614619][T12948] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 164.618550][T12950] wlan1 speed is unknown, defaulting to 1000 [ 164.621107][T12950] wlan1 speed is unknown, defaulting to 1000 [ 164.625514][T12950] wlan1 speed is unknown, defaulting to 1000 [ 164.630927][T12950] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 164.640417][T12950] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 164.663612][T12950] wlan1 speed is unknown, defaulting to 1000 [ 164.667957][T12950] wlan1 speed is unknown, defaulting to 1000 [ 164.674712][T12950] wlan1 speed is unknown, defaulting to 1000 [ 164.678104][T12950] wlan1 speed is unknown, defaulting to 1000 [ 164.847842][T12971] netem: change failed [ 164.879270][T12975] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3147'. [ 164.882608][T12975] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3147'. [ 164.983760][T12983] [U] [ 164.985646][T12983] [U] [ 164.986856][T12983] [U] [ 164.988041][T12983] [U] [ 164.989372][T12983] [U] [ 164.990611][T12983] [U] [ 164.991816][T12983] [U] [ 164.993027][T12983] [U] [ 164.994561][T12983] [U] [ 164.995762][T12983] [U] [ 164.996899][T12983] [U] [ 164.998098][T12983] [U] [ 165.000428][T12983] [U] [ 165.001631][T12983] [U] [ 165.002832][T12983] [U] [ 165.004234][T12983] [U] [ 165.005663][T12983] [U] [ 165.006791][T12983] [U] [ 165.007996][T12983] [U] [ 165.009270][T12983] [U] [ 165.010602][T12983] [U] [ 165.011765][T12983] [U] [ 165.012974][T12983] [U] [ 165.014234][T12983] [U] [ 165.015830][T12983] [U] [ 165.017109][T12983] [U] [ 165.018305][T12983] [U] [ 165.019523][T12983] [U] [ 165.020991][T12983] [U] [ 165.022229][T12983] [U] [ 165.023442][T12983] [U] [ 165.024667][T12983] [U] [ 165.026335][T12983] [U] [ 165.027562][T12983] [U] [ 165.028777][T12983] [U] [ 165.029870][T12983] [U] [ 165.031211][T12983] [U] [ 165.032445][T12983] [U] [ 165.033664][T12983] [U] [ 165.034873][T12983] [U] [ 165.036920][T12983] [U] [ 165.038163][T12983] [U] [ 165.039265][T12983] [U] [ 165.040451][T12983] [U] [ 165.041786][T12983] [U] [ 165.043011][T12983] [U] [ 165.044217][T12983] [U] [ 165.045441][T12983] [U] [ 165.047529][T12983] [U] [ 165.048405][T12983] [U] [ 165.049199][T12983] [U] [ 165.049983][T12983] [U] [ 165.051182][T12983] [U] [ 165.052168][T12983] [U] [ 165.053400][T12983] [U] [ 165.054587][T12983] [U] [ 165.061639][T12983] [U] [ 165.062672][T12983] [U] [ 165.063556][T12983] [U] [ 165.064504][T12983] [U] [ 165.065728][T12983] [U] [ 165.066760][T12983] [U] [ 165.067647][T12983] [U] [ 165.068645][T12983] [U] [ 165.069623][T12983] [U] [ 165.070536][T12983] [U] [ 165.071447][T12983] [U] [ 165.072349][T12983] [U] [ 165.073605][T12983] [U] [ 165.074500][T12983] [U] [ 165.075412][T12983] [U] [ 165.076466][T12983] [U] [ 165.077426][T12983] [U] [ 165.078325][T12983] [U] [ 165.079210][T12983] [U] [ 165.080082][T12983] [U] [ 165.081044][T12983] [U] [ 165.081960][T12983] [U] [ 165.082797][T12983] [U] [ 165.083683][T12983] [U] [ 165.084692][T12983] [U] [ 165.085629][T12983] [U] [ 165.086640][T12983] [U] [ 165.087543][T12983] [U] [ 165.088503][T12983] [U] [ 165.089393][T12983] [U] [ 165.090340][T12983] [U] [ 165.091155][T12983] [U] [ 165.092000][T12983] [U] [ 165.092814][T12983] [U] [ 165.093615][T12983] [U] [ 165.094401][T12983] [U] [ 165.095463][T12983] [U] [ 165.096386][T12983] [U] [ 165.097716][T12983] [U] [ 165.098697][T12983] [U] [ 165.100710][T12983] [U] [ 165.101688][T12983] [U] [ 165.102567][T12983] [U] [ 165.103443][T12983] [U] [ 165.104508][T12983] [U] [ 165.105426][T12983] [U] [ 165.106320][T12983] [U] [ 165.107206][T12983] [U] [ 165.108324][T12983] [U] [ 165.109531][T12983] [U] [ 165.110553][T12983] [U] [ 165.111396][T12983] [U] [ 165.112346][T12983] [U] [ 165.113242][T12983] [U] [ 165.114137][T12983] [U] [ 165.115014][T12983] [U] [ 165.116106][T12983] [U] [ 165.117021][T12983] [U] [ 165.117922][T12983] [U] [ 165.118715][T12983] [U] [ 165.119644][T12983] [U] [ 165.120746][T12983] [U] [ 165.121850][T12983] [U] [ 165.122925][T12983] [U] [ 165.127965][T12983] [U] [ 165.129122][T12983] [U] [ 165.130001][T12983] [U] [ 165.130980][T12983] [U] [ 165.131930][T12983] [U] [ 165.132855][T12983] [U] [ 165.133800][T12983] [U] [ 165.162269][T12982] [U] [ 165.431416][ T40] audit: type=1326 audit(2000000000.289:1405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13005 comm="syz.3.3161" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf705e579 code=0x0 [ 165.868239][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x7 [ 165.871032][ T24] hid-generic 0000:0000:0000.0002: ignoring exceeding usage max [ 165.875711][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.878154][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.881152][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.884179][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.886586][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.889257][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.891595][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.894799][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.897246][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.899711][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.902123][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.904772][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.907174][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.909595][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.912002][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.914716][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.916972][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.919504][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.922351][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.925848][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.928611][ T24] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.935376][ T24] hid-generic 0000:0000:0000.0002: hidraw1: HID v0.00 Device [syz0] on syz0 [ 165.991056][T13029] veth1_to_batadv: entered promiscuous mode [ 165.994694][T13029] macsec3: entered promiscuous mode [ 166.293354][T13038] netlink: 'syz.3.3174': attribute type 28 has an invalid length. [ 166.497050][T13047] netlink: 133 bytes leftover after parsing attributes in process `syz.3.3178'. [ 166.529233][ T5951] Bluetooth: hci1: ACL packet for unknown connection handle 201 [ 166.789249][ T40] audit: type=1326 audit(2000000001.649:1406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13066 comm="syz.0.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705e598 code=0x7ffc0000 [ 166.807470][ T40] audit: type=1326 audit(2000000001.649:1407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13066 comm="syz.0.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705e598 code=0x7ffc0000 [ 166.819389][ T40] audit: type=1326 audit(2000000001.649:1408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13066 comm="syz.0.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 166.827964][ T40] audit: type=1326 audit(2000000001.649:1409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13066 comm="syz.0.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 166.836870][ T40] audit: type=1326 audit(2000000001.669:1410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13066 comm="syz.0.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 166.845224][ T40] audit: type=1326 audit(2000000001.669:1411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13066 comm="syz.0.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 166.854291][ T40] audit: type=1326 audit(2000000001.669:1412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13066 comm="syz.0.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705e598 code=0x7ffc0000 [ 166.862349][ T40] audit: type=1326 audit(2000000001.669:1413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13066 comm="syz.0.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705e598 code=0x7ffc0000 [ 166.869282][ T40] audit: type=1326 audit(2000000001.669:1414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13066 comm="syz.0.3188" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705e598 code=0x7ffc0000 [ 167.773031][T13145] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3228'. [ 167.779553][T13145] bridge0: port 2(bridge_slave_1) entered disabled state [ 167.829548][ T5951] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 167.844664][ T5951] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 167.853249][ T5951] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 167.861501][ T5951] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 167.865343][ T5951] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 167.900627][T13145] bridge_slave_1 (unregistering): left allmulticast mode [ 167.902952][T13145] bridge_slave_1 (unregistering): left promiscuous mode [ 167.905358][T13145] bridge0: port 2(bridge_slave_1) entered disabled state [ 167.910786][T13147] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3227'. [ 167.913827][T13147] ipvlan1: vlans aren't supported yet for dev_uc|mc_add() [ 167.944426][T13148] wlan1 speed is unknown, defaulting to 1000 [ 168.047107][T13148] chnl_net:caif_netlink_parms(): no params data found [ 168.164922][ T61] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 168.168422][ T61] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.177061][T13148] bridge0: port 1(bridge_slave_0) entered blocking state [ 168.179361][T13148] bridge0: port 1(bridge_slave_0) entered disabled state [ 168.181774][T13148] bridge_slave_0: entered allmulticast mode [ 168.184605][T13148] bridge_slave_0: entered promiscuous mode [ 168.188292][T13148] bridge0: port 2(bridge_slave_1) entered blocking state [ 168.190663][T13148] bridge0: port 2(bridge_slave_1) entered disabled state [ 168.194667][T13148] bridge_slave_1: entered allmulticast mode [ 168.197825][T13148] bridge_slave_1: entered promiscuous mode [ 168.230611][T13148] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 168.235848][T13148] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 168.272180][ T61] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 168.275917][ T61] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.300667][T13148] team0: Port device team_slave_0 added [ 168.306048][T13148] team0: Port device team_slave_1 added [ 168.341839][T13148] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 168.346776][T13148] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 168.359251][T13148] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 168.374596][ T61] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 168.377810][ T61] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.388898][T13148] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 168.391194][T13148] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 168.401058][T13148] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 168.479804][ T61] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 168.485967][ T61] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.499058][T13148] hsr_slave_0: entered promiscuous mode [ 168.502219][T13148] hsr_slave_1: entered promiscuous mode [ 168.505437][T13148] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 168.508088][T13148] Cannot create hsr debugfs directory [ 168.672976][ T61] bridge_slave_1: left allmulticast mode [ 168.675549][ T61] bridge_slave_1: left promiscuous mode [ 168.678854][ T61] bridge0: port 2(bridge_slave_1) entered disabled state [ 168.951573][T13209] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3255'. [ 169.153921][ T61] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 169.159757][ T61] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 169.166320][ T61] bond0 (unregistering): Released all slaves [ 169.254508][T13148] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 169.265236][T13148] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 169.273024][T13148] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 169.278032][T13148] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 169.322867][ T61] IPVS: stopping backup sync thread 11184 ... [ 169.363991][T13148] 8021q: adding VLAN 0 to HW filter on device bond0 [ 169.373113][T13148] 8021q: adding VLAN 0 to HW filter on device team0 [ 169.380122][ T74] bridge0: port 1(bridge_slave_0) entered blocking state [ 169.382664][ T74] bridge0: port 1(bridge_slave_0) entered forwarding state [ 169.396137][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state [ 169.399131][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state [ 169.572356][ T61] hsr_slave_0: left promiscuous mode [ 169.575641][ T61] hsr_slave_1: left promiscuous mode [ 169.578336][ T61] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 169.580675][ T61] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 169.585912][ T61] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 169.592210][ T61] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 169.620113][ T61] veth1_macvtap: left promiscuous mode [ 169.621983][ T61] veth0_macvtap: left promiscuous mode [ 169.624178][ T61] veth1_vlan: left promiscuous mode [ 169.625961][ T61] veth0_vlan: left promiscuous mode [ 169.922830][ T5951] Bluetooth: hci4: command tx timeout [ 170.310924][ T61] team0 (unregistering): Port device team_slave_1 removed [ 170.407041][ T61] team0 (unregistering): Port device team_slave_0 removed [ 171.019449][T13148] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 171.217007][T13148] veth0_vlan: entered promiscuous mode [ 171.234760][T13148] veth1_vlan: entered promiscuous mode [ 171.256084][T13148] veth0_macvtap: entered promiscuous mode [ 171.261749][T13148] veth1_macvtap: entered promiscuous mode [ 171.276539][T13148] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 171.284735][T13148] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 171.291505][T13148] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.297314][T13148] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.302691][T13148] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.305960][T13148] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.355091][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 171.358012][ T61] IPVS: stop unused estimator thread 0... [ 171.364194][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 171.382960][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 171.385924][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 171.403252][T13330] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 171.528573][T13348] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3308'. [ 171.594402][T13356] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 171.675501][ T40] kauditd_printk_skb: 315 callbacks suppressed [ 171.675518][ T40] audit: type=1326 audit(2000000006.539:1730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.4.3316" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 171.689331][ T40] audit: type=1326 audit(2000000006.539:1731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.4.3316" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf704e5a7 code=0x7ffc0000 [ 171.698127][ T40] audit: type=1326 audit(2000000006.539:1732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.4.3316" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 171.706818][ T40] audit: type=1326 audit(2000000006.539:1733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.4.3316" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf704e5a7 code=0x7ffc0000 [ 171.715351][ T40] audit: type=1326 audit(2000000006.539:1734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.4.3316" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 171.723473][ T40] audit: type=1326 audit(2000000006.539:1735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.4.3316" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf704e5a7 code=0x7ffc0000 [ 171.730687][ T40] audit: type=1326 audit(2000000006.539:1736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.4.3316" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 171.739026][ T40] audit: type=1326 audit(2000000006.539:1737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.4.3316" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 171.745978][ T40] audit: type=1326 audit(2000000006.539:1738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.4.3316" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 171.752774][ T40] audit: type=1326 audit(2000000006.539:1739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.4.3316" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf704e5a7 code=0x7ffc0000 [ 171.836844][T13376] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 172.002689][ T5951] Bluetooth: hci4: command tx timeout [ 172.305845][T13402] kernel read not supported for file /blkio.throttle.io_service_bytes_recursive (pid: 13402 comm: syz.4.3334) [ 172.308980][T13403] loop8: detected capacity change from 0 to 1 [ 172.313590][T13403] Dev loop8: unable to read RDB block 1 [ 172.315806][T13403] loop8: unable to read partition table [ 172.318578][T13403] loop8: partition table beyond EOD, truncated [ 172.321009][T13403] loop_reread_partitions: partition scan of loop8 (被x^> ) failed (rc=-5) [ 172.419266][T13411] ref_ctr_offset mismatch. inode: 0x9f6 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x4 [ 172.669762][T13429] autofs: Bad value for 'fd' [ 172.805022][T13439] wlan1 speed is unknown, defaulting to 1000 [ 173.461137][T13483] netlink: 236 bytes leftover after parsing attributes in process `syz.0.3371'. [ 173.628779][T13493] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3376'. [ 173.997057][T13519] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3388'. [ 174.035705][T13521] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3389'. [ 174.038806][T13521] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3389'. [ 174.079260][T13525] PKCS7: Unknown OID: [5] 0.0 [ 174.082061][T13525] PKCS7: Only support pkcs7_signedData type [ 174.085901][ T5951] Bluetooth: hci4: command tx timeout [ 174.313319][T13535] overlayfs: conflicting lowerdir path [ 175.281987][T13584] vxcan0: tx address claim with dlc 0 [ 175.321252][T13587] input: syz1 as /devices/virtual/input/input23 [ 175.396514][T13597] netlink: 'syz.2.3425': attribute type 7 has an invalid length. [ 175.443014][T13601] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3427'. [ 175.451829][T13601] bridge0: port 3(vlan2) entered blocking state [ 175.454977][T13601] bridge0: port 3(vlan2) entered disabled state [ 175.457844][T13601] vlan2: entered allmulticast mode [ 175.459933][T13601] bridge0: entered allmulticast mode [ 175.467254][T13601] vlan2: left allmulticast mode [ 175.469470][T13601] bridge0: left allmulticast mode [ 175.493884][ T53] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 175.756223][ T53] usb 5-1: unable to get BOS descriptor or descriptor too short [ 175.759415][ T53] usb 5-1: unable to read config index 0 descriptor/start: -71 [ 175.762007][ T53] usb 5-1: can't read configurations, error -71 [ 175.978619][T13640] Bluetooth: hci3: received HCILL_GO_TO_SLEEP_ACK in state 2 [ 175.982551][ T1140] Bluetooth: hci3: Frame reassembly failed (-84) [ 176.161177][T13644] Bluetooth: hci0: load_link_keys: expected 51203 bytes, got 7 bytes [ 176.163502][ T5954] Bluetooth: hci4: command tx timeout [ 176.232736][ T13] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 176.303576][T13650] siw: device registration error -23 [ 176.576925][T13669] netlink: 'syz.0.3459': attribute type 4 has an invalid length. [ 176.703171][T13677] netlink: 'syz.3.3465': attribute type 8 has an invalid length. [ 177.753751][ T1140] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.764839][T13691] sch_fq: defrate 113 ignored. [ 177.841655][ T1140] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.925029][ T1140] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.933556][ T5952] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 177.937549][ T5952] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 177.940365][ T5952] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 177.948193][ T5952] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 177.951241][ T5952] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 177.975108][T13700] wlan1 speed is unknown, defaulting to 1000 [ 178.003280][ T5951] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 178.014340][ T1140] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.104148][T13700] chnl_net:caif_netlink_parms(): no params data found [ 178.146218][ T1140] bridge_slave_1: left allmulticast mode [ 178.148468][ T1140] bridge_slave_1: left promiscuous mode [ 178.150789][ T1140] bridge0: port 2(bridge_slave_1) entered disabled state [ 178.157535][ T1140] bridge_slave_0: left allmulticast mode [ 178.159735][ T1140] bridge_slave_0: left promiscuous mode [ 178.163226][ T1140] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.196595][T13723] netlink: 'syz.2.3485': attribute type 11 has an invalid length. [ 178.200063][T13723] netlink: 149476 bytes leftover after parsing attributes in process `syz.2.3485'. [ 178.234026][T13722] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 178.502193][ T1140] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 178.508685][ T1140] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 178.512433][ T1140] bond0 (unregistering): Released all slaves [ 178.583093][T13700] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.585517][T13700] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.588398][T13700] bridge_slave_0: entered allmulticast mode [ 178.597641][T13700] bridge_slave_0: entered promiscuous mode [ 178.604441][T13700] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.607039][T13700] bridge0: port 2(bridge_slave_1) entered disabled state [ 178.609577][T13700] bridge_slave_1: entered allmulticast mode [ 178.612225][T13700] bridge_slave_1: entered promiscuous mode [ 178.661413][T13700] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 178.666527][T13700] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 178.701206][T13700] team0: Port device team_slave_0 added [ 178.714206][T13700] team0: Port device team_slave_1 added [ 178.768805][T13700] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 178.771032][T13700] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 178.780345][T13700] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 178.787230][T13700] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 178.790038][T13700] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 178.799123][T13700] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 178.810279][ T1140] hsr_slave_0: left promiscuous mode [ 178.814163][ T1140] hsr_slave_1: left promiscuous mode [ 178.816775][ T1140] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 178.819090][ T1140] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 178.821898][ T1140] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 178.824586][ T1140] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 178.851507][ T1140] veth1_macvtap: left promiscuous mode [ 178.853642][ T1140] veth0_macvtap: left promiscuous mode [ 178.855640][ T1140] veth1_vlan: left promiscuous mode [ 178.857758][ T1140] veth0_vlan: left promiscuous mode [ 179.426130][T13769] netlink: 31 bytes leftover after parsing attributes in process `syz.0.3502'. [ 179.547757][ T1140] team0 (unregistering): Port device team_slave_1 removed [ 179.621409][ T1140] team0 (unregistering): Port device team_slave_0 removed [ 180.007249][ T5954] Bluetooth: hci4: command tx timeout [ 180.135857][T13764] gretap0: entered promiscuous mode [ 180.198124][T13700] hsr_slave_0: entered promiscuous mode [ 180.201241][T13700] hsr_slave_1: entered promiscuous mode [ 180.204150][T13700] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 180.207278][T13700] Cannot create hsr debugfs directory [ 180.407827][T13700] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 180.411774][T13700] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 180.418489][T13700] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 180.422896][T13700] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 180.473715][T13700] 8021q: adding VLAN 0 to HW filter on device bond0 [ 180.488045][T13700] 8021q: adding VLAN 0 to HW filter on device team0 [ 180.493934][ T1076] bridge0: port 1(bridge_slave_0) entered blocking state [ 180.496323][ T1076] bridge0: port 1(bridge_slave_0) entered forwarding state [ 180.504178][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 180.506466][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 180.625688][T13700] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 180.642700][ T5951] Bluetooth: hci3: Entering manufacturer mode failed (-110) [ 180.817170][T13700] veth0_vlan: entered promiscuous mode [ 180.822005][T13700] veth1_vlan: entered promiscuous mode [ 180.838943][T13700] veth0_macvtap: entered promiscuous mode [ 180.844963][T13700] veth1_macvtap: entered promiscuous mode [ 180.855589][T13700] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 180.862189][T13700] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 180.867954][T13700] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.870707][T13700] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.874498][T13700] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.877243][T13700] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.939782][ T40] kauditd_printk_skb: 166 callbacks suppressed [ 180.939798][ T40] audit: type=1326 audit(2000000008.829:1906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13828 comm="syz.3.3522" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 180.962725][ T40] audit: type=1326 audit(2000000008.829:1907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13828 comm="syz.3.3522" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf705e5a7 code=0x7ffc0000 [ 180.973329][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 180.974633][ T40] audit: type=1326 audit(2000000008.829:1908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13828 comm="syz.3.3522" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 180.982671][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 180.983965][ T40] audit: type=1326 audit(2000000008.829:1909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13828 comm="syz.3.3522" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf705e5a7 code=0x7ffc0000 [ 180.993788][ T40] audit: type=1326 audit(2000000008.829:1910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13828 comm="syz.3.3522" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 180.999827][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 181.000475][ T40] audit: type=1326 audit(2000000008.829:1911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13828 comm="syz.3.3522" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 181.003576][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 181.009927][ T40] audit: type=1326 audit(2000000008.829:1912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13828 comm="syz.3.3522" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 181.022547][ T40] audit: type=1326 audit(2000000008.829:1913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13828 comm="syz.3.3522" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf705e5a7 code=0x7ffc0000 [ 181.029163][ T40] audit: type=1326 audit(2000000008.829:1914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13828 comm="syz.3.3522" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 181.039399][ T40] audit: type=1326 audit(2000000008.829:1915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13828 comm="syz.3.3522" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf705e5a7 code=0x7ffc0000 [ 181.254881][T13855] bridge0: port 2(bridge_slave_1) entered disabled state [ 181.257439][T13855] bridge0: port 1(bridge_slave_0) entered disabled state [ 181.854809][T13902] netlink: 'syz.3.3557': attribute type 10 has an invalid length. [ 181.857071][T13902] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3557'. [ 181.880099][T13902] team0: Port device geneve0 added [ 181.925432][T13907] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3559'. [ 182.092692][ T5951] Bluetooth: hci4: command tx timeout [ 183.457706][T13990] lo: entered promiscuous mode [ 183.459705][T13990] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 183.640956][T14014] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3609'. [ 183.937865][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x7 [ 183.940285][ T838] hid-generic 0000:0000:0000.0003: ignoring exceeding usage max [ 183.944577][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.947042][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.949440][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.955189][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.957524][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.959771][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.962352][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.965097][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.967471][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.969826][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.972159][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.974686][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.977241][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.979617][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.981940][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.984391][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.986828][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.989048][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.991352][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.993845][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 183.996227][ T838] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 184.000780][ T838] hid-generic 0000:0000:0000.0003: hidraw1: HID v0.00 Device [syz0] on syz0 [ 184.162645][ T5951] Bluetooth: hci4: command tx timeout [ 184.758623][T14088] sg_write: data in/out 489/14 bytes for SCSI command 0x3-- guessing data in; [ 184.758623][T14088] program syz.5.3645 not setting count and/or reply_len properly [ 184.952566][ T10] usb 7-1: new high-speed USB device number 11 using dummy_hcd [ 185.102791][ T10] usb 7-1: Using ep0 maxpacket: 16 [ 185.106966][ T10] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0 [ 185.110838][ T10] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7 [ 185.116199][ T10] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0 [ 185.120249][ T10] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.126576][ T10] usb 7-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 185.130157][ T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 185.133654][ T10] usb 7-1: Product: syz [ 185.135009][ T10] usb 7-1: Manufacturer: syz [ 185.136493][ T10] usb 7-1: SerialNumber: syz [ 185.139095][ T10] usb 7-1: config 0 descriptor?? [ 185.353603][ T10] input: syz syz as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input24 [ 185.359009][ T5338] synaptics_usb 7-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 185.368455][ T5338] synaptics_usb 7-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 185.372061][ T5338] synaptics_usb 7-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 185.375814][ T5338] synaptics_usb 7-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 185.577709][T14152] IPv6: NLM_F_CREATE should be specified when creating new route [ 185.580351][T14152] netlink: 'syz.0.3674': attribute type 8 has an invalid length. [ 185.623024][T14082] synaptics_usb 7-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 185.630296][ T839] usb 7-1: USB disconnect, device number 11 [ 185.996950][T14186] tipc: Started in network mode [ 185.998962][T14186] tipc: Node identity ac14140f, cluster identity 4711 [ 186.002259][T14186] tipc: New replicast peer: 255.255.255.255 [ 186.005510][T14186] tipc: Enabled bearer , priority 10 [ 186.015709][T14188] vlan0: entered promiscuous mode [ 186.017242][T14188] bridge0: entered promiscuous mode [ 186.018822][T14188] vlan0: entered allmulticast mode [ 186.020392][T14188] bridge0: entered allmulticast mode [ 186.022583][T14186] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3690'. [ 186.026489][T14186] tipc: Disabling bearer [ 186.153092][T14197] ref_ctr_offset mismatch. inode: 0x1428 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x4 [ 186.248449][T14209] autofs: Bad value for 'fd' [ 186.252601][ T5951] Bluetooth: hci4: command tx timeout [ 186.286294][T14211] bridge0: port 3(syz_tun) entered disabled state [ 186.336239][T14217] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3703'. [ 186.356008][T14219] batadv_slave_1: entered promiscuous mode [ 186.358152][T14218] batadv_slave_1: left promiscuous mode [ 186.407159][T14227] Bluetooth: MGMT ver 1.23 [ 186.631844][T14252] netlink: 'syz.0.3721': attribute type 25 has an invalid length. [ 186.635375][T14252] netlink: 'syz.0.3721': attribute type 28 has an invalid length. [ 186.764508][ T10] kernel write not supported for file bpf-map (pid: 10 comm: kworker/0:1) [ 186.941983][T14284] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 186.944864][T14284] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 187.302285][T14323] wlan1 speed is unknown, defaulting to 1000 [ 187.316794][T14327] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3757'. [ 187.319642][T14327] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3757'. [ 187.429046][T14343] netlink: 236 bytes leftover after parsing attributes in process `syz.5.3761'. [ 187.525639][T14347] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3773'. [ 187.534408][T14347] bridge0: port 2(bridge_slave_1) entered disabled state [ 187.623681][ T40] kauditd_printk_skb: 930 callbacks suppressed [ 187.623693][ T40] audit: type=1326 audit(2000000000.349:2846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14350 comm="syz.3.3766" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 187.638963][ T40] audit: type=1326 audit(2000000000.349:2847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14350 comm="syz.3.3766" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 187.647462][ T40] audit: type=1326 audit(2000000000.359:2848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14350 comm="syz.3.3766" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 187.656929][ T40] audit: type=1326 audit(2000000000.359:2849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14350 comm="syz.3.3766" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 187.671875][ T40] audit: type=1326 audit(2000000000.359:2850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14350 comm="syz.3.3766" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 187.679813][ T40] audit: type=1326 audit(2000000000.369:2851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14350 comm="syz.3.3766" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 187.688712][ T40] audit: type=1326 audit(2000000000.369:2852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14350 comm="syz.3.3766" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 187.696171][ T40] audit: type=1326 audit(2000000000.369:2853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14350 comm="syz.3.3766" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 187.703192][ T40] audit: type=1326 audit(2000000000.369:2854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14350 comm="syz.3.3766" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 187.709839][ T40] audit: type=1326 audit(2000000000.369:2855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14350 comm="syz.3.3766" exe="/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 187.729152][T14347] bridge_slave_1 (unregistering): left allmulticast mode [ 187.731449][T14347] bridge_slave_1 (unregistering): left promiscuous mode [ 187.734140][T14347] bridge0: port 2(bridge_slave_1) entered disabled state [ 187.905018][T14366] overlayfs: conflicting lowerdir path [ 188.049591][T14382] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3782'. [ 188.121703][T14393] vxcan0: tx address claim with dlc 0 [ 188.192959][T14382] bridge_slave_1 (unregistering): left allmulticast mode [ 188.195270][T14382] bridge_slave_1 (unregistering): left promiscuous mode [ 188.197561][T14382] bridge0: port 2(bridge_slave_1) entered disabled state [ 188.204040][T14399] overlayfs: failed to clone lowerpath [ 188.337657][T14411] openvswitch: netlink: VXLAN extension 2 out of range max 1 [ 188.573484][T14424] overlayfs: conflicting lowerdir path [ 188.834851][T14458] input: syz1 as /devices/virtual/input/input25 [ 188.991945][T14472] loop2: detected capacity change from 0 to 7 [ 189.006378][T14472] Dev loop2: unable to read RDB block 7 [ 189.008305][T14472] loop2: unable to read partition table [ 189.008741][T14474] kvm_intel: kvm [14473]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0x2 [ 189.010612][T14472] loop2: partition table beyond EOD, truncated [ 189.016516][T14472] loop_reread_partitions: partition scan of loop2 (被x ) failed (rc=-5) [ 189.063686][T14476] netlink: 'syz.2.3827': attribute type 14 has an invalid length. [ 190.358005][T14570] netlink: 'syz.2.3870': attribute type 10 has an invalid length. [ 190.361091][T14570] veth0_macvtap: left promiscuous mode [ 190.366031][T14570] veth0_macvtap: entered promiscuous mode [ 190.370035][T14570] team0: Device macvtap0 failed to register rx_handler [ 190.374750][T14570] veth0_macvtap: left promiscuous mode [ 190.442656][ T10] usb 10-1: new high-speed USB device number 3 using dummy_hcd [ 190.551260][ T839] kernel write not supported for file /input/event2 (pid: 839 comm: kworker/1:2) [ 190.598736][ T10] usb 10-1: unable to get BOS descriptor or descriptor too short [ 190.603885][ T10] usb 10-1: unable to read config index 0 descriptor/start: -71 [ 190.606491][ T10] usb 10-1: can't read configurations, error -71 [ 190.936799][T14619] mkiss: ax0: crc mode is auto. [ 191.179534][T14628] netlink: 'syz.5.3897': attribute type 6 has an invalid length. [ 191.296307][T14634] netlink: 'syz.5.3900': attribute type 12 has an invalid length. [ 191.417581][T14642] gretap0: entered promiscuous mode [ 191.421129][T14642] vlan2: entered promiscuous mode [ 191.466542][T14646] netlink: 284 bytes leftover after parsing attributes in process `syz.3.3906'. [ 191.603795][T14660] team0: Device lo is loopback device. Loopback devices can't be added as a team port [ 191.608505][T14660] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 191.648238][T14664] mkiss: ax0: crc mode is auto. [ 191.856258][T14679] netlink: 'syz.2.3922': attribute type 12 has an invalid length. [ 191.911204][T14689] team0: Device lo is loopback device. Loopback devices can't be added as a team port [ 191.916008][T14689] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 191.934525][T14691] netlink: 'syz.3.3927': attribute type 6 has an invalid length. [ 192.316575][ T24] kernel write not supported for file /input/event2 (pid: 24 comm: kworker/2:0) [ 192.459081][T14753] gretap0: entered promiscuous mode [ 192.460786][T14753] vlan2: entered promiscuous mode [ 192.897213][T14793] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3977'. [ 193.692685][ C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 194.690573][T14869] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4019'. [ 194.695551][T14869] netlink: 104 bytes leftover after parsing attributes in process `syz.0.4019'. [ 194.697841][T14871] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4020'. [ 194.698556][T14869] netlink: 104 bytes leftover after parsing attributes in process `syz.0.4019'. [ 195.337297][T14913] usb 2-1: USB disconnect, device number 2 [ 195.396174][T14915] netlink: 36 bytes leftover after parsing attributes in process `syz.5.4034'. [ 196.180424][T14941] gretap0: entered promiscuous mode [ 196.182236][T14941] vlan2: entered promiscuous mode [ 196.357890][T14946] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4047'. [ 196.556101][ T40] kauditd_printk_skb: 13 callbacks suppressed [ 196.556118][ T40] audit: type=1326 audit(2000000008.779:2869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14962 comm="syz.2.4055" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 196.582551][ T40] audit: type=1326 audit(2000000008.779:2870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14962 comm="syz.2.4055" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 196.591403][ T40] audit: type=1326 audit(2000000008.779:2871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14962 comm="syz.2.4055" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 196.611384][ T40] audit: type=1326 audit(2000000008.779:2872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14962 comm="syz.2.4055" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 196.632541][ T40] audit: type=1326 audit(2000000008.779:2873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14962 comm="syz.2.4055" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 196.639816][ T40] audit: type=1326 audit(2000000008.779:2874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14962 comm="syz.2.4055" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 196.652758][ T40] audit: type=1326 audit(2000000008.779:2875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14962 comm="syz.2.4055" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 196.662441][ T40] audit: type=1326 audit(2000000008.779:2876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14962 comm="syz.2.4055" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 196.670050][ T40] audit: type=1326 audit(2000000008.779:2877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14962 comm="syz.2.4055" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 196.698771][ T40] audit: type=1326 audit(2000000008.779:2878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14962 comm="syz.2.4055" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 197.705153][T15033] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4088'. [ 197.834974][T15043] sysfs: cannot create duplicate filename '/class/ieee80211/!' [ 197.837841][T15043] CPU: 1 UID: 0 PID: 15043 Comm: syz.2.4093 Not tainted 6.16.0-rc2-syzkaller-00318-g739a6c93cc75 #0 PREEMPT(full) [ 197.837857][T15043] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 197.837864][T15043] Call Trace: [ 197.837869][T15043] [ 197.837874][T15043] dump_stack_lvl+0x16c/0x1f0 [ 197.837897][T15043] sysfs_warn_dup+0x7f/0xa0 [ 197.837914][T15043] sysfs_do_create_link_sd+0x124/0x140 [ 197.837931][T15043] sysfs_create_link+0x61/0xc0 [ 197.837946][T15043] device_add+0x62c/0x1a70 [ 197.837960][T15043] ? __pfx_device_add+0x10/0x10 [ 197.837970][T15043] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 197.837989][T15043] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 197.838011][T15043] wiphy_register+0x1c9c/0x2850 [ 197.838023][T15043] ? netdev_run_todo+0x864/0x1320 [ 197.838039][T15043] ? __pfx_wiphy_register+0x10/0x10 [ 197.838059][T15043] ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0 [ 197.838073][T15043] ieee80211_register_hw+0x24ac/0x4140 [ 197.838091][T15043] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 197.838106][T15043] ? find_held_lock+0x2b/0x80 [ 197.838118][T15043] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 197.838135][T15043] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 197.838148][T15043] ? __hrtimer_setup+0x176/0x280 [ 197.838167][T15043] mac80211_hwsim_new_radio+0x3034/0x54d0 [ 197.838191][T15043] ? __kmalloc_node_track_caller_noprof+0x23e/0x510 [ 197.838210][T15043] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 197.838227][T15043] ? __asan_memcpy+0x3c/0x60 [ 197.838244][T15043] hwsim_new_radio_nl+0xb51/0x12c0 [ 197.838262][T15043] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 197.838283][T15043] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 197.838299][T15043] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 197.838317][T15043] genl_family_rcv_msg_doit+0x206/0x2f0 [ 197.838332][T15043] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 197.838346][T15043] ? trace_cap_capable+0x18d/0x200 [ 197.838369][T15043] ? bpf_lsm_capable+0x9/0x10 [ 197.838382][T15043] ? security_capable+0x7e/0x260 [ 197.838400][T15043] ? ns_capable+0xd7/0x110 [ 197.838420][T15043] genl_rcv_msg+0x55c/0x800 [ 197.838436][T15043] ? __pfx_genl_rcv_msg+0x10/0x10 [ 197.838451][T15043] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 197.838471][T15043] ? __lock_acquire+0x622/0x1c90 [ 197.838489][T15043] netlink_rcv_skb+0x155/0x420 [ 197.838501][T15043] ? __pfx_genl_rcv_msg+0x10/0x10 [ 197.838517][T15043] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 197.838536][T15043] ? netlink_deliver_tap+0x1ae/0xd30 [ 197.838547][T15043] ? is_vmalloc_addr+0x86/0xa0 [ 197.838565][T15043] genl_rcv+0x28/0x40 [ 197.838578][T15043] netlink_unicast+0x53a/0x7f0 [ 197.838592][T15043] ? __pfx_netlink_unicast+0x10/0x10 [ 197.838608][T15043] netlink_sendmsg+0x8d1/0xdd0 [ 197.838623][T15043] ? __pfx_netlink_sendmsg+0x10/0x10 [ 197.838636][T15043] ? __import_iovec+0x1dd/0x650 [ 197.838658][T15043] ____sys_sendmsg+0xa95/0xc70 [ 197.838672][T15043] ? __pfx_____sys_sendmsg+0x10/0x10 [ 197.838684][T15043] ? get_compat_msghdr+0x11a/0x170 [ 197.838706][T15043] ? __pfx_futex_wake_mark+0x10/0x10 [ 197.838724][T15043] ___sys_sendmsg+0x134/0x1d0 [ 197.838743][T15043] ? __pfx____sys_sendmsg+0x10/0x10 [ 197.838768][T15043] ? find_held_lock+0x2b/0x80 [ 197.838788][T15043] __sys_sendmsg+0x16d/0x220 [ 197.838805][T15043] ? __pfx___sys_sendmsg+0x10/0x10 [ 197.838822][T15043] ? __ia32_sys_futex_time32+0x1d9/0x460 [ 197.838843][T15043] ? rcu_is_watching+0x12/0xc0 [ 197.838856][T15043] __do_fast_syscall_32+0x7c/0x3a0 [ 197.838876][T15043] do_fast_syscall_32+0x32/0x80 [ 197.838894][T15043] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 197.838908][T15043] RIP: 0023:0xf706e579 [ 197.838917][T15043] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 197.838928][T15043] RSP: 002b:00000000f505e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 197.838939][T15043] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000040 [ 197.838946][T15043] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 197.838952][T15043] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 197.838963][T15043] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 197.838969][T15043] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 197.838983][T15043] [ 198.381192][T15076] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 198.384559][T15076] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 198.805751][ T1417] ieee802154 phy1 wpan1: encryption failed: -22 [ 198.951628][T15126] wlan1 speed is unknown, defaulting to 1000 [ 199.492278][T15158] wlan1 speed is unknown, defaulting to 1000 [ 200.399590][T15205] wlan1 speed is unknown, defaulting to 1000 [ 201.102563][ T6013] usb 10-1: new high-speed USB device number 5 using dummy_hcd [ 201.262530][ T6013] usb 10-1: Using ep0 maxpacket: 16 [ 201.265603][ T6013] usb 10-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0 [ 201.269001][ T6013] usb 10-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7 [ 201.273390][ T6013] usb 10-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0 [ 201.276633][ T6013] usb 10-1: config 0 interface 0 has no altsetting 0 [ 201.281527][ T6013] usb 10-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 201.286160][ T6013] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 201.289504][ T6013] usb 10-1: Product: syz [ 201.291291][ T6013] usb 10-1: Manufacturer: syz [ 201.293507][ T6013] usb 10-1: SerialNumber: syz [ 201.297625][ T6013] usb 10-1: config 0 descriptor?? [ 201.508312][ T6013] input: syz syz as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:0.0/input/input26 [ 201.521670][ T5338] synaptics_usb 10-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 201.526017][ T5338] synaptics_usb 10-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 201.535072][ T5338] synaptics_usb 10-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 201.538975][ T5338] synaptics_usb 10-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 201.577174][T15280] input: syz1 as /devices/virtual/input/input27 [ 201.713223][T15249] synaptics_usb 10-1:0.0: synusb_open - usb_submit_urb failed, error: -90 [ 201.722034][ T24] usb 10-1: USB disconnect, device number 5 [ 201.834465][ T6013] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 201.992695][ T6013] usb 5-1: Using ep0 maxpacket: 32 [ 201.996696][ T6013] usb 5-1: config index 0 descriptor too short (expected 156, got 27) [ 202.000675][ T6013] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 202.007995][ T6013] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 202.013958][ T6013] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 202.019164][ T6013] usb 5-1: config 0 interface 0 has no altsetting 0 [ 202.025779][ T6013] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 202.030235][ T6013] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 202.036344][ T6013] usb 5-1: Product: syz [ 202.038634][ T6013] usb 5-1: Manufacturer: syz [ 202.040614][ T6013] usb 5-1: SerialNumber: syz [ 202.044795][ T6013] usb 5-1: config 0 descriptor?? [ 202.050176][ T6013] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 202.054012][ T6013] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 202.312338][T15317] GUP no longer grows the stack in syz.5.4220 (15317): 80004000-80005000 (80001000) [ 202.317345][T15317] CPU: 0 UID: 0 PID: 15317 Comm: syz.5.4220 Not tainted 6.16.0-rc2-syzkaller-00318-g739a6c93cc75 #0 PREEMPT(full) [ 202.317367][T15317] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 202.317377][T15317] Call Trace: [ 202.317384][T15317] [ 202.317391][T15317] dump_stack_lvl+0x16c/0x1f0 [ 202.317414][T15317] gup_vma_lookup+0x1d2/0x220 [ 202.317428][T15317] __get_user_pages+0x271/0x3b80 [ 202.317452][T15317] ? __pfx___get_user_pages+0x10/0x10 [ 202.317465][T15317] ? find_held_lock+0x2b/0x80 [ 202.317485][T15317] __gup_longterm_locked+0x20d/0x1850 [ 202.317513][T15317] ? __pfx___gup_longterm_locked+0x10/0x10 [ 202.317548][T15317] pin_user_pages_remote+0xed/0x140 [ 202.317572][T15317] ? __pfx_pin_user_pages_remote+0x10/0x10 [ 202.317592][T15317] ? mm_access+0x22d/0x2e0 [ 202.317615][T15317] ? rcu_is_watching+0x12/0xc0 [ 202.317628][T15317] process_vm_rw_core.constprop.0+0x41b/0x9a0 [ 202.317649][T15317] ? rcu_is_watching+0x12/0xc0 [ 202.317663][T15317] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 202.317682][T15317] ? iovec_from_user+0xbb/0x140 [ 202.317707][T15317] ? iovec_from_user+0xbb/0x140 [ 202.317726][T15317] process_vm_rw+0x216/0x2c0 [ 202.317744][T15317] ? __pfx_process_vm_rw+0x10/0x10 [ 202.317765][T15317] ? __asan_memset+0x23/0x50 [ 202.317792][T15317] ? __pfx___ia32_sys_futex_time32+0x10/0x10 [ 202.317811][T15317] __ia32_sys_process_vm_writev+0xdf/0x1b0 [ 202.317822][T15317] ? lockdep_hardirqs_on+0x7c/0x110 [ 202.317838][T15317] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 202.317856][T15317] __do_fast_syscall_32+0x7c/0x3a0 [ 202.317875][T15317] do_fast_syscall_32+0x32/0x80 [ 202.317893][T15317] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 202.317907][T15317] RIP: 0023:0xf70fe579 [ 202.317916][T15317] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 202.317927][T15317] RSP: 002b:00000000f50ee55c EFLAGS: 00000296 ORIG_RAX: 000000000000015c [ 202.317938][T15317] RAX: ffffffffffffffda RBX: 0000000000000179 RCX: 0000000080c22000 [ 202.317945][T15317] RDX: 000000000000002b RSI: 0000000080c22fa0 RDI: 0000000000000001 [ 202.317951][T15317] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 202.317958][T15317] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 202.317964][T15317] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 202.317977][T15317] [ 202.431466][T15319] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4221'. [ 202.563852][ T5954] Bluetooth: hci4: command 0x0405 tx timeout [ 202.570298][T15335] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4229'. [ 203.212217][T15398] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0 [ 203.249474][T15403] can0: slcan on ptm0. [ 203.313234][T15402] can0 (unregistered): slcan off ptm0. [ 203.855402][T15434] block nbd5: not configured, cannot reconfigure [ 204.597451][ T53] usb 5-1: USB disconnect, device number 12 [ 204.606442][ T53] ldusb 5-1:0.0: LD USB Device #0 now disconnected [ 204.630731][ T40] kauditd_printk_skb: 664 callbacks suppressed [ 204.630746][ T40] audit: type=1804 audit(2000000016.849:3543): pid=15499 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.4301" name="/newroot/748/cgroup.controllers" dev="tmpfs" ino=3824 res=1 errno=0 [ 204.645911][ T40] audit: type=1800 audit(2000000016.869:3544): pid=15499 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4301" name="cgroup.controllers" dev="tmpfs" ino=3824 res=0 errno=0 [ 204.673914][ T40] audit: type=1800 audit(2000000016.869:3545): pid=15499 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4301" name="cgroup.controllers" dev="tmpfs" ino=3824 res=0 errno=0 [ 204.711580][T15505] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4305'. [ 204.714974][T15507] trusted_key: encrypted_key: keyword 'uew' not recognized [ 205.092387][T15501] syz.0.4302 (15501): drop_caches: 2 [ 205.095268][T15501] syz.0.4302 (15501): drop_caches: 2 [ 205.099698][ T53] kernel read not supported for file /vcs (pid: 53 comm: kworker/3:1) [ 205.189313][ T40] audit: type=1326 audit(2000000017.409:3546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15532 comm="syz.3.4317" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x0 [ 205.262366][T15539] syz.2.4320: attempt to access beyond end of device [ 205.262366][T15539] loop5: rw=0, sector=0, nr_sectors = 1 limit=0 [ 205.268988][T15539] FAT-fs (loop5): unable to read boot sector [ 205.652620][ T40] audit: type=1326 audit(2000000017.879:3547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15569 comm="syz.2.4336" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 205.661888][ T40] audit: type=1326 audit(2000000017.879:3548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15569 comm="syz.2.4336" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 205.670946][ T40] audit: type=1326 audit(2000000017.879:3549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15569 comm="syz.2.4336" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 205.677867][ T40] audit: type=1326 audit(2000000017.879:3550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15569 comm="syz.2.4336" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 205.684529][ T40] audit: type=1326 audit(2000000017.879:3551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15569 comm="syz.2.4336" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 205.691441][ T40] audit: type=1326 audit(2000000017.879:3552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15569 comm="syz.2.4336" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf706e598 code=0x7ffc0000 [ 205.874783][T15583] input: syz0 as /devices/virtual/input/input28 [ 206.018400][T15588] input: syz0 as /devices/virtual/input/input29 [ 206.274461][ T53] usb 7-1: new low-speed USB device number 12 using dummy_hcd [ 206.452293][ T53] usb 7-1: unable to get BOS descriptor or descriptor too short [ 206.455845][ T53] usb 7-1: unable to read config index 0 descriptor/start: -71 [ 206.458254][ T53] usb 7-1: can't read configurations, error -71 [ 206.700187][T15640] input: syz0 as /devices/virtual/input/input30 [ 206.702427][T15640] input: failed to attach handler leds to device input30, error: -6 [ 206.837031][T15652] netlink: 'syz.0.4371': attribute type 21 has an invalid length. [ 206.875113][T15656] bridge: RTM_NEWNEIGH with unconfigured vlan 2 on bridge0 [ 207.203735][T15692] netem: invalid attributes len -3 [ 207.205475][T15692] netem: change failed [ 207.503050][T15733] random: crng reseeded on system resumption [ 207.558298][T15743] syzkaller1: tun_chr_ioctl cmd 1074025675 [ 207.560451][T15743] syzkaller1: persist disabled [ 207.630310][T15757] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.4423'. [ 208.056143][T15808] cifs: Unknown parameter 'mode' [ 208.169363][T15821] netlink: 'syz.2.4452': attribute type 3 has an invalid length. [ 208.171849][T15821] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 208.249911][T15832] syz.5.4457 uses obsolete (PF_INET,SOCK_PACKET) [ 208.279675][T15835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 208.283420][T15835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 208.286251][T15835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 209.000965][T15864] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4472'. [ 209.076428][ T46] Bluetooth: hci3: Frame reassembly failed (-84) [ 209.079101][T15870] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 209.085494][ T46] Bluetooth: hci3: Frame reassembly failed (-84) [ 209.443417][T15902] loop8: detected capacity change from 0 to 1 [ 209.446810][T15902] Dev loop8: unable to read RDB block 1 [ 209.449810][T15902] loop8: unable to read partition table [ 209.452326][T15902] loop8: partition table beyond EOD, truncated [ 209.455360][T15902] loop_reread_partitions: partition scan of loop8 (被x^> ) failed (rc=-5) [ 209.786615][ C1] IPv4: Oversized IP packet from 172.20.20.24 [ 210.283090][T15966] wlan1 speed is unknown, defaulting to 1000 [ 210.530388][T15982] macsec0: entered promiscuous mode [ 210.535207][T15982] macsec4: entered allmulticast mode [ 210.537429][T15982] macsec0: entered allmulticast mode [ 210.539320][T15982] veth1_macvtap: entered allmulticast mode [ 211.122575][ T5951] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 211.122951][ T5952] Bluetooth: hci3: command 0x1003 tx timeout [ 211.128825][ T10] wlan1 speed is unknown, defaulting to 1000 [ 211.128965][ T10] syz0: Port: 1 Link DOWN [ 211.351313][T16018] block nbd0: Unsupported socket: shutdown callout must be supported. [ 211.352824][T16020] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4542'. [ 211.366222][T16020] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4542'. [ 211.504312][T16038] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4552'. [ 211.507328][T16038] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4552'. [ 211.549901][T16042] binder: 16041:16042 ioctl c0306201 800001c0 returned -14 [ 211.701514][T16066] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4565'. [ 211.792736][ T40] kauditd_printk_skb: 756 callbacks suppressed [ 211.792748][ T40] audit: type=1326 audit(2000000024.019:4309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16074 comm="syz.0.4569" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf705e579 code=0x0 [ 212.412641][ T5951] Bluetooth: hci4: command 0x0405 tx timeout [ 212.745383][T16113] netlink: 36 bytes leftover after parsing attributes in process `syz.0.4586'. [ 212.955698][T16119] vti0: entered promiscuous mode [ 212.997129][T16121] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4590'. [ 213.002402][T16121] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4590'. [ 213.263711][T16128] input: syz0 as /devices/virtual/input/input31 [ 213.461515][T16153] random: crng reseeded on system resumption [ 213.512893][T16157] syz.2.4603 (16157): drop_caches: 2 [ 213.937914][T16215] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4630'. [ 214.059563][ T40] audit: type=1326 audit(2000000026.279:4310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16227 comm="syz.3.4636" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf705e579 code=0x0 [ 214.599842][ T40] audit: type=1800 audit(2000000026.819:4311): pid=16269 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.4654" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0 [ 214.977247][T16284] syz.0.4660 (16284): drop_caches: 2 [ 215.684657][ T40] audit: type=1326 audit(2000000027.909:4312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16338 comm="syz.2.4687" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf706e579 code=0x0 [ 215.702270][T16341] syz.5.4688 (16341): drop_caches: 2 [ 215.781703][T16346] input: syz1 as /devices/virtual/input/input32 [ 215.841810][ T40] audit: type=1326 audit(2000000028.059:4313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16349 comm="syz.5.4691" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 215.853138][ T40] audit: type=1326 audit(2000000028.059:4314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16349 comm="syz.5.4691" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 215.861875][ T40] audit: type=1326 audit(2000000028.069:4315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16349 comm="syz.5.4691" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 215.871548][ T40] audit: type=1326 audit(2000000028.069:4316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16349 comm="syz.5.4691" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 215.881156][ T40] audit: type=1326 audit(2000000028.069:4317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16349 comm="syz.5.4691" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 215.890546][ T40] audit: type=1326 audit(2000000028.079:4318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16349 comm="syz.5.4691" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 216.132923][T16369] syz.3.4699 (16369): drop_caches: 2 [ 216.538705][T16392] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4714'. [ 216.724887][T16404] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4719'. [ 217.324296][T16437] can0: slcan on ptm0. [ 217.383115][T16436] can0 (unregistered): slcan off ptm0. [ 217.422615][T16445] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0 [ 217.505702][T16454] can0: slcan on ptm0. [ 217.582856][T16452] can0 (unregistered): slcan off ptm0. [ 217.676578][T16471] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0 [ 217.740757][T16481] block nbd2: not configured, cannot reconfigure [ 218.640165][T16567] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4792'. [ 218.653701][ T13] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) [ 218.748046][T16574] trusted_key: encrypted_key: keyword 'uew' not recognized [ 218.995670][T16593] syz.3.4807 (16593): drop_caches: 2 [ 218.999168][T16593] syz.3.4807 (16593): drop_caches: 2 [ 219.071329][T16601] syz.0.4810: attempt to access beyond end of device [ 219.071329][T16601] loop1: rw=0, sector=0, nr_sectors = 1 limit=0 [ 219.075835][T16601] FAT-fs (loop1): unable to read boot sector [ 219.305165][T16624] syz.2.4822 (16624): drop_caches: 2 [ 219.308509][T16624] syz.2.4822 (16624): drop_caches: 2 [ 219.394364][T16633] syz.5.4834 (16633): drop_caches: 2 [ 219.397845][T16633] syz.5.4834 (16633): drop_caches: 2 [ 219.506413][ T40] kauditd_printk_skb: 958 callbacks suppressed [ 219.506423][ T40] audit: type=1326 audit(2000000031.729:5277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16640 comm="syz.3.4832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 219.517424][ T40] audit: type=1326 audit(2000000031.739:5278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16640 comm="syz.3.4832" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705e598 code=0x7ffc0000 [ 219.527709][ T40] audit: type=1326 audit(2000000031.739:5279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16640 comm="syz.3.4832" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705e598 code=0x7ffc0000 [ 219.535068][ T40] audit: type=1326 audit(2000000031.739:5280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16640 comm="syz.3.4832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 219.542284][ T40] audit: type=1326 audit(2000000031.739:5281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16640 comm="syz.3.4832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 219.552729][ T40] audit: type=1326 audit(2000000031.739:5282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16640 comm="syz.3.4832" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf705e598 code=0x7ffc0000 [ 219.559342][ T40] audit: type=1326 audit(2000000031.739:5283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16640 comm="syz.3.4832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 219.567702][ T40] audit: type=1326 audit(2000000031.739:5284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16640 comm="syz.3.4832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 219.574911][ T40] audit: type=1326 audit(2000000031.739:5285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16640 comm="syz.3.4832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 219.582131][ T40] audit: type=1326 audit(2000000031.739:5286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16640 comm="syz.3.4832" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000 [ 220.629152][T16691] input: syz0 as /devices/virtual/input/input33 [ 221.602324][T16717] input: syz0 as /devices/virtual/input/input34 [ 222.016829][T16754] input: syz0 as /devices/virtual/input/input35 [ 222.018821][T16754] input: failed to attach handler leds to device input35, error: -6 [ 222.974099][T16820] random: crng reseeded on system resumption [ 223.124658][T16827] syzkaller1: tun_chr_ioctl cmd 1074025675 [ 223.126609][T16827] syzkaller1: persist disabled [ 223.709914][T16858] random: crng reseeded on system resumption [ 223.888456][T16873] random: crng reseeded on system resumption [ 223.952164][T16881] netlink: 'syz.5.4940': attribute type 3 has an invalid length. [ 223.955293][T16881] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 224.482565][ T53] usb 10-1: new low-speed USB device number 6 using dummy_hcd [ 224.637616][ T53] usb 10-1: unable to get BOS descriptor or descriptor too short [ 224.640433][ T53] usb 10-1: unable to read config index 0 descriptor/start: -71 [ 224.642671][ T53] usb 10-1: can't read configurations, error -71 [ 228.250680][T16931] loop8: detected capacity change from 0 to 1 [ 228.254262][T16931] Dev loop8: unable to read RDB block 1 [ 228.256134][T16931] loop8: unable to read partition table [ 228.258102][T16931] loop8: partition table beyond EOD, truncated [ 228.260316][T16931] loop_reread_partitions: partition scan of loop8 (被x^> ) failed (rc=-5) [ 228.702624][ T10] usb 5-1: new low-speed USB device number 13 using dummy_hcd [ 228.862670][ T10] usb 5-1: unable to get BOS descriptor or descriptor too short [ 228.867071][ T10] usb 5-1: unable to read config index 0 descriptor/start: -71 [ 228.870245][ T10] usb 5-1: can't read configurations, error -71 [ 228.902049][T16971] block nbd0: Unsupported socket: shutdown callout must be supported. [ 228.911954][T16973] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4982'. [ 228.963099][T16975] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 228.965858][ T61] Bluetooth: hci3: Frame reassembly failed (-84) [ 229.414144][T16985] binder: 16984:16985 ioctl c0306201 800001c0 returned -14 [ 229.551587][T16993] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5001'. [ 229.652829][T17005] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4996'. [ 229.655806][T17005] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4996'. [ 230.962602][ T5954] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 231.120266][T17065] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5025'. [ 231.209269][T17070] netlink: 36 bytes leftover after parsing attributes in process `syz.5.5028'. [ 231.271926][T17079] raw_sendmsg: syz.0.5030 forgot to set AF_INET. Fix it! [ 232.584539][ T53] usb 10-1: new high-speed USB device number 8 using dummy_hcd [ 232.611400][T17191] IPv6: NLM_F_CREATE should be specified when creating new route [ 232.733123][ T53] usb 10-1: Using ep0 maxpacket: 8 [ 232.736761][ T53] usb 10-1: config index 0 descriptor too short (expected 301, got 45) [ 232.740058][ T53] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 232.744145][ T53] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 232.747589][ T53] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 232.750599][ T53] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 232.755190][ T53] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 232.758330][ T53] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 232.864350][T17199] netlink: 'syz.0.5090': attribute type 14 has an invalid length. [ 232.971501][ T53] usb 10-1: GET_CAPABILITIES returned 0 [ 232.973425][ T53] usbtmc 10-1:16.0: can't read capabilities [ 232.974632][T17207] syzkaller1: entered promiscuous mode [ 232.977032][T17207] syzkaller1: entered allmulticast mode [ 233.137754][T17213] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5097'. [ 233.171365][T17217] netlink: 'syz.2.5098': attribute type 2 has an invalid length. [ 233.176138][ T10] usb 10-1: USB disconnect, device number 8 [ 233.439547][ T10] kernel write not supported for file /sequencer (pid: 10 comm: kworker/0:1) [ 233.784222][T13248] kernel write not supported for file /sequencer (pid: 13248 comm: kworker/2:5) [ 234.005210][T17329] netlink: 'syz.3.5159': attribute type 2 has an invalid length. [ 234.016681][T17332] syzkaller1: entered promiscuous mode [ 234.018469][T17332] syzkaller1: entered allmulticast mode [ 234.060679][T17339] random: crng reseeded on system resumption [ 234.177994][T17350] netlink: 'syz.2.5164': attribute type 14 has an invalid length. [ 234.179088][T17351] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5163'. [ 234.265709][T17360] random: crng reseeded on system resumption [ 234.469491][T17387] syz_tun: entered promiscuous mode [ 234.471934][T17387] syz_tun: left promiscuous mode [ 234.977298][T17435] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5204'. [ 234.980786][T17435] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5204'. [ 235.204870][T13248] usb 7-1: new high-speed USB device number 14 using dummy_hcd [ 235.363386][T13248] usb 7-1: too many configurations: 9, using maximum allowed: 8 [ 235.367332][T13248] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 235.371089][T13248] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 235.375797][T13248] usb 7-1: config 0 interface 0 has no altsetting 0 [ 235.379803][T13248] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 235.383587][T13248] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 235.388167][T13248] usb 7-1: config 0 interface 0 has no altsetting 0 [ 235.392065][T13248] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 235.395733][T13248] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 235.400178][T13248] usb 7-1: config 0 interface 0 has no altsetting 0 [ 235.404256][T13248] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 235.407972][T13248] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 235.412601][T13248] usb 7-1: config 0 interface 0 has no altsetting 0 [ 235.417023][T13248] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 235.420500][T13248] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 235.425009][T13248] usb 7-1: config 0 interface 0 has no altsetting 0 [ 235.429003][T13248] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 235.432134][T13248] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 235.435579][T13248] usb 7-1: config 0 interface 0 has no altsetting 0 [ 235.438704][T13248] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 235.442444][T13248] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 235.446841][T13248] usb 7-1: config 0 interface 0 has no altsetting 0 [ 235.450784][T13248] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 235.454788][T13248] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 235.459369][T13248] usb 7-1: config 0 interface 0 has no altsetting 0 [ 235.465791][T13248] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 235.469662][T13248] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 235.473295][T13248] usb 7-1: Product: syz [ 235.475122][T13248] usb 7-1: Manufacturer: syz [ 235.477120][T13248] usb 7-1: SerialNumber: syz [ 235.481228][T13248] usb 7-1: config 0 descriptor?? [ 235.487661][T13248] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0 [ 235.688749][T13248] usb 7-1: USB disconnect, device number 14 [ 235.693917][T13248] yurex 7-1:0.0: USB YUREX #0 now disconnected [ 237.669191][T17516] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0 [ 237.673742][T17513] IPVS: stopping master sync thread 17516 ... [ 238.613619][ T34] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 238.773294][ T34] usb 5-1: too many configurations: 9, using maximum allowed: 8 [ 238.776718][ T34] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 238.779675][ T34] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 238.783196][ T34] usb 5-1: config 0 interface 0 has no altsetting 0 [ 238.786026][ T34] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 238.788772][ T34] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 238.792240][ T34] usb 5-1: config 0 interface 0 has no altsetting 0 [ 238.796388][ T34] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 238.799567][ T34] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 238.803318][ T34] usb 5-1: config 0 interface 0 has no altsetting 0 [ 238.806569][ T34] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 238.809323][ T34] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 238.812813][ T34] usb 5-1: config 0 interface 0 has no altsetting 0 [ 238.815873][ T34] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 238.818709][ T34] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 238.822058][ T34] usb 5-1: config 0 interface 0 has no altsetting 0 [ 238.826234][ T34] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 238.829073][ T34] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 238.832403][ T34] usb 5-1: config 0 interface 0 has no altsetting 0 [ 238.835331][ T34] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 238.838162][ T34] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 238.841528][ T34] usb 5-1: config 0 interface 0 has no altsetting 0 [ 238.844596][ T34] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 238.847451][ T34] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 238.850825][ T34] usb 5-1: config 0 interface 0 has no altsetting 0 [ 238.855066][ T34] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 238.857968][ T34] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 238.860543][ T34] usb 5-1: Product: syz [ 238.861836][ T34] usb 5-1: Manufacturer: syz [ 238.863801][ T34] usb 5-1: SerialNumber: syz [ 238.866428][ T34] usb 5-1: config 0 descriptor?? [ 238.873245][ T34] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0 [ 239.078822][ T10] usb 5-1: USB disconnect, device number 15 [ 239.082093][ T10] yurex 5-1:0.0: USB YUREX #0 now disconnected [ 240.122047][T17651] netlink: 32 bytes leftover after parsing attributes in process `syz.5.5313'. [ 240.157020][T17653] input: syz1 as /devices/virtual/input/input36 [ 240.159052][T17653] input: failed to attach handler leds to device input36, error: -6 [ 240.468354][T17685] input: syz1 as /devices/virtual/input/input37 [ 240.470874][T17685] input: failed to attach handler leds to device input37, error: -6 [ 241.164574][T17730] block nbd2: shutting down sockets [ 241.177290][T17733] input: syz1 as /devices/virtual/input/input38 [ 241.260542][T17743] Bluetooth: hci3: Frame reassembly failed (-84) [ 241.266747][ T13] Bluetooth: hci3: Frame reassembly failed (-84) [ 241.794446][T17780] loop5: detected capacity change from 0 to 12111 [ 241.802796][T17780] loop5: detected capacity change from 12111 to 14175 [ 241.849830][T17782] tun1: tun_chr_ioctl cmd 1074025675 [ 241.852139][T17782] tun1: persist enabled [ 241.855273][T17782] tun1: tun_chr_ioctl cmd 1074025675 [ 241.857532][T17782] tun1: persist disabled [ 241.931482][T17784] netdevsim netdevsim3 netdevsim0: entered promiscuous mode [ 242.081007][T17791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 242.084519][T17791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 242.087270][T17791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 242.090412][T17791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 242.093566][T17791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 242.097008][T17791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 242.100304][T17791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 242.103882][T17791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 242.107405][T17791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 242.110754][T17791] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 242.422632][ T24] usb 7-1: new high-speed USB device number 15 using dummy_hcd [ 242.572578][ T24] usb 7-1: Using ep0 maxpacket: 32 [ 242.576497][ T24] usb 7-1: config index 0 descriptor too short (expected 156, got 27) [ 242.585634][ T24] usb 7-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 242.590193][ T24] usb 7-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 242.595337][ T24] usb 7-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 242.600719][ T24] usb 7-1: config 0 interface 0 has no altsetting 0 [ 242.605215][ T24] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 242.608040][ T24] usb 7-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 242.610808][ T24] usb 7-1: Product: syz [ 242.612193][ T24] usb 7-1: Manufacturer: syz [ 242.613792][ T24] usb 7-1: SerialNumber: syz [ 242.616632][ T24] usb 7-1: config 0 descriptor?? [ 242.619641][ T24] ldusb 7-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 242.626179][ T24] ldusb 7-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 242.825192][ T24] usb 7-1: USB disconnect, device number 15 [ 242.828481][ T24] ldusb 7-1:0.0: LD USB Device #0 now disconnected [ 243.282695][ T5954] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 243.284651][ T5951] Bluetooth: hci3: command 0x1003 tx timeout [ 243.341708][T17834] input: syz1 as /devices/virtual/input/input39 [ 243.459036][T17844] loop5: detected capacity change from 0 to 10807 [ 243.471210][T17844] loop5: detected capacity change from 10807 to 13903 [ 243.646680][T17856] netlink: 36 bytes leftover after parsing attributes in process `syz.0.5402'. [ 243.681061][T17860] input: syz1 as /devices/virtual/input/input40 [ 243.800547][T17874] netlink: 212376 bytes leftover after parsing attributes in process `syz.5.5410'. [ 243.874735][ T10] kernel read not supported for file /adsp1 (pid: 10 comm: kworker/0:1) [ 243.948619][T17887] netlink: 36 bytes leftover after parsing attributes in process `syz.3.5416'. [ 243.987154][T17899] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.5421'. [ 244.029660][T17902] tipc: Enabled bearer , priority 10 [ 244.247536][T17925] tipc: Started in network mode [ 244.249740][T17925] tipc: Node identity fe800000000000000000000000000013, cluster identity 4711 [ 244.256079][T17925] tipc: Enabled bearer , priority 10 [ 244.612972][ T10] kernel read not supported for file /adsp1 (pid: 10 comm: kworker/0:1) [ 245.034977][ T6013] tipc: Node number set to 2886997007 [ 245.075879][T17971] overlay: filesystem on ./bus not supported as upperdir [ 245.136423][T17976] netlink: 212376 bytes leftover after parsing attributes in process `syz.5.5455'. [ 245.372544][ T34] tipc: Node number set to 4269801491 [ 245.570219][T17988] [ 245.571281][T17988] ===================================================== [ 245.573584][T17988] WARNING: SOFTIRQ-safe -> SOFTIRQ-unsafe lock order detected [ 245.575947][T17988] 6.16.0-rc2-syzkaller-00318-g739a6c93cc75 #0 Not tainted [ 245.578401][T17988] ----------------------------------------------------- [ 245.581728][T17988] syz.5.5460/17988 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire: [ 245.584134][T17988] ffff888068d82360 (&new->fa_lock){....}-{3:3}, at: kill_fasync+0x138/0x510 [ 245.586841][T17988] [ 245.586841][T17988] and this task is already holding: [ 245.589125][T17988] ffff88806b6cb028 (&client->buffer_lock){....}-{3:3}, at: evdev_pass_values+0x10e/0x9b0 [ 245.592157][T17988] which would create a new lock dependency: [ 245.594035][T17988] (&client->buffer_lock){....}-{3:3} -> (&new->fa_lock){....}-{3:3} [ 245.596587][T17988] [ 245.596587][T17988] but this new dependency connects a SOFTIRQ-irq-safe lock: [ 245.599470][T17988] (&dev->event_lock#2){..-.}-{3:3} [ 245.599490][T17988] [ 245.599490][T17988] ... which became SOFTIRQ-irq-safe at: [ 245.603506][T17988] lock_acquire+0x179/0x350 [ 245.604978][T17988] _raw_spin_lock_irqsave+0x3a/0x60 [ 245.606632][T17988] input_inject_event+0x9f/0x390 [ 245.608230][T17988] kd_sound_helper+0x17a/0x280 [ 245.609764][T17988] input_handler_for_each_handle+0xd7/0x250 [ 245.611576][T17988] call_timer_fn+0x197/0x620 [ 245.613054][T17988] __run_timers+0x6ef/0x960 [ 245.614520][T17988] run_timer_base+0x114/0x190 [ 245.616040][T17988] run_timer_softirq+0x1a/0x40 [ 245.617582][T17988] handle_softirqs+0x216/0x8e0 [ 245.619121][T17988] __irq_exit_rcu+0x109/0x170 [ 245.620638][T17988] irq_exit_rcu+0x9/0x30 [ 245.622004][T17988] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 245.623808][T17988] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 245.625728][T17988] lock_is_held_type+0x107/0x150 [ 245.627326][T17988] lookup_page_ext+0x10d/0x1d0 [ 245.628858][T17988] page_table_check_set+0x1e6/0x750 [ 245.630518][T17988] __page_table_check_ptes_set+0x318/0x420 [ 245.632382][T17988] do_wp_page+0x26d4/0x4f20 [ 245.633851][T17988] __handle_mm_fault+0x2223/0x5490 [ 245.635514][T17988] handle_mm_fault+0x589/0xd10 [ 245.637094][T17988] do_user_addr_fault+0x60c/0x1370 [ 245.638719][T17988] exc_page_fault+0x5c/0xb0 [ 245.640205][T17988] asm_exc_page_fault+0x26/0x30 [ 245.641765][T17988] [ 245.641765][T17988] to a SOFTIRQ-irq-unsafe lock: [ 245.643943][T17988] (tasklist_lock){.+.+}-{3:3} [ 245.643961][T17988] [ 245.643961][T17988] ... which became SOFTIRQ-irq-unsafe at: [ 245.647930][T17988] ... [ 245.647935][T17988] lock_acquire+0x179/0x350 [ 245.650213][T17988] _raw_read_lock+0x5f/0x70 [ 245.651678][T17988] __do_wait+0x105/0x890 [ 245.653047][T17988] do_wait+0x21e/0x5a0 [ 245.654371][T17988] kernel_wait+0x9f/0x160 [ 245.655819][T17988] call_usermodehelper_exec_work+0xf1/0x170 [ 245.657711][T17988] process_one_work+0x9cc/0x1b70 [ 245.659315][T17988] worker_thread+0x6c8/0xf10 [ 245.660839][T17988] kthread+0x3c5/0x780 [ 245.662166][T17988] ret_from_fork+0x5d7/0x6f0 [ 245.663668][T17988] ret_from_fork_asm+0x1a/0x30 [ 245.665228][T17988] [ 245.665228][T17988] other info that might help us debug this: [ 245.665228][T17988] [ 245.668367][T17988] Chain exists of: [ 245.668367][T17988] &dev->event_lock#2 --> &client->buffer_lock --> tasklist_lock [ 245.668367][T17988] [ 245.672534][T17988] Possible interrupt unsafe locking scenario: [ 245.672534][T17988] [ 245.675139][T17988] CPU0 CPU1 [ 245.676829][T17988] ---- ---- [ 245.678501][T17988] lock(tasklist_lock); [ 245.679876][T17988] local_irq_disable(); [ 245.681956][T17988] lock(&dev->event_lock#2); [ 245.684231][T17988] lock(&client->buffer_lock); [ 245.686554][T17988] [ 245.687685][T17988] lock(&dev->event_lock#2); [ 245.689228][T17988] [ 245.689228][T17988] *** DEADLOCK *** [ 245.689228][T17988] [ 245.691750][T17988] 7 locks held by syz.5.5460/17988: [ 245.693400][T17988] #0: ffff8880269ec118 (&evdev->mutex){+.+.}-{4:4}, at: evdev_write+0x184/0x440 [ 245.696286][T17988] #1: ffff888043adc230 (&dev->event_lock#2){..-.}-{3:3}, at: input_inject_event+0x9f/0x390 [ 245.699415][T17988] #2: ffffffff8e5c4700 (rcu_read_lock){....}-{1:3}, at: input_inject_event+0xbb/0x390 [ 245.702417][T17988] #3: ffffffff8e5c4700 (rcu_read_lock){....}-{1:3}, at: input_pass_values+0x80/0x890 [ 245.705393][T17988] #4: ffffffff8e5c4700 (rcu_read_lock){....}-{1:3}, at: evdev_events+0x7b/0x390 [ 245.708243][T17988] #5: ffff88806b6cb028 (&client->buffer_lock){....}-{3:3}, at: evdev_pass_values+0x10e/0x9b0 [ 245.711426][T17988] #6: ffffffff8e5c4700 (rcu_read_lock){....}-{1:3}, at: kill_fasync+0x62/0x510 [ 245.714251][T17988] [ 245.714251][T17988] the dependencies between SOFTIRQ-irq-safe lock and the holding lock: [ 245.717471][T17988] -> (&dev->event_lock#2){..-.}-{3:3} { [ 245.719253][T17988] IN-SOFTIRQ-W at: [ 245.720576][T17988] lock_acquire+0x179/0x350 [ 245.722574][T17988] _raw_spin_lock_irqsave+0x3a/0x60 [ 245.724807][T17988] input_inject_event+0x9f/0x390 [ 245.726925][T17988] kd_sound_helper+0x17a/0x280 [ 245.729000][T17988] input_handler_for_each_handle+0xd7/0x250 [ 245.731412][T17988] call_timer_fn+0x197/0x620 [ 245.733434][T17988] __run_timers+0x6ef/0x960 [ 245.735459][T17988] run_timer_base+0x114/0x190 [ 245.737481][T17988] run_timer_softirq+0x1a/0x40 [ 245.739559][T17988] handle_softirqs+0x216/0x8e0 [ 245.741615][T17988] __irq_exit_rcu+0x109/0x170 [ 245.743652][T17988] irq_exit_rcu+0x9/0x30 [ 245.745577][T17988] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 245.747921][T17988] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 245.750366][T17988] lock_is_held_type+0x107/0x150 [ 245.752481][T17988] lookup_page_ext+0x10d/0x1d0 [ 245.754555][T17988] page_table_check_set+0x1e6/0x750 [ 245.756747][T17988] __page_table_check_ptes_set+0x318/0x420 [ 245.759143][T17988] do_wp_page+0x26d4/0x4f20 [ 245.761140][T17988] __handle_mm_fault+0x2223/0x5490 [ 245.763287][T17988] handle_mm_fault+0x589/0xd10 [ 245.765385][T17988] do_user_addr_fault+0x60c/0x1370 [ 245.767554][T17988] exc_page_fault+0x5c/0xb0 [ 245.769539][T17988] asm_exc_page_fault+0x26/0x30 [ 245.771615][T17988] INITIAL USE at: [ 245.772898][T17988] lock_acquire+0x179/0x350 [ 245.774880][T17988] _raw_spin_lock_irqsave+0x3a/0x60 [ 245.777049][T17988] input_inject_event+0x9f/0x390 [ 245.779172][T17988] led_set_brightness+0x217/0x290 [ 245.781283][T17988] kbd_led_trigger_activate+0xcb/0x110 [ 245.783525][T17988] led_trigger_set+0x59a/0xc50 [ 245.785611][T17988] led_trigger_set_default+0x1e0/0x2e0 [ 245.787808][T17988] led_classdev_register_ext+0x7b8/0xa10 [ 245.790120][T17988] input_leds_connect+0x552/0x8e0 [ 245.792240][T17988] input_attach_handler.isra.0+0x181/0x260 [ 245.794610][T17988] input_register_device+0xa84/0x1130 [ 245.796822][T17988] atkbd_connect+0x5da/0xa20 [ 245.798815][T17988] serio_driver_probe+0x74/0xb0 [ 245.800882][T17988] really_probe+0x23e/0xa90 [ 245.802798][T17988] __driver_probe_device+0x1de/0x440 [ 245.804997][T17988] driver_probe_device+0x4c/0x1b0 [ 245.807109][T17988] __driver_attach+0x283/0x580 [ 245.809160][T17988] bus_for_each_dev+0x13e/0x1d0 [ 245.811222][T17988] serio_handle_event+0x247/0xa50 [ 245.813327][T17988] process_one_work+0x9cc/0x1b70 [ 245.815425][T17988] worker_thread+0x6c8/0xf10 [ 245.817431][T17988] kthread+0x3c5/0x780 [ 245.819269][T17988] ret_from_fork+0x5d7/0x6f0 [ 245.821269][T17988] ret_from_fork_asm+0x1a/0x30 [ 245.823302][T17988] } [ 245.824157][T17988] ... key at: [] __key.7+0x0/0x40 [ 245.826413][T17988] -> (&client->buffer_lock){....}-{3:3} { [ 245.828230][T17988] INITIAL USE at: [ 245.829476][T17988] lock_acquire+0x179/0x350 [ 245.831381][T17988] _raw_spin_lock+0x2e/0x40 [ 245.833314][T17988] evdev_pass_values+0x10e/0x9b0 [ 245.835353][T17988] evdev_events+0x1bb/0x390 [ 245.837273][T17988] input_pass_values+0x6c4/0x890 [ 245.839342][T17988] input_handle_event+0xf00/0x14d0 [ 245.841429][T17988] input_inject_event+0x1cd/0x390 [ 245.843494][T17988] evdev_write+0x2e1/0x440 [ 245.845395][T17988] vfs_write+0x2a0/0x1150 [ 245.847249][T17988] ksys_write+0x1f8/0x250 [ 245.849130][T17988] __do_fast_syscall_32+0x7c/0x3a0 [ 245.851258][T17988] do_fast_syscall_32+0x32/0x80 [ 245.853302][T17988] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 245.855768][T17988] } [ 245.856588][T17988] ... key at: [] __key.1+0x0/0x40 [ 245.858795][T17988] ... acquired at: [ 245.860053][T17988] _raw_spin_lock+0x2e/0x40 [ 245.861477][T17988] evdev_pass_values+0x10e/0x9b0 [ 245.863078][T17988] evdev_events+0x1bb/0x390 [ 245.864606][T17988] input_pass_values+0x6c4/0x890 [ 245.866218][T17988] input_handle_event+0xf00/0x14d0 [ 245.867902][T17988] input_inject_event+0x1cd/0x390 [ 245.869574][T17988] evdev_write+0x2e1/0x440 [ 245.871281][T17988] vfs_write+0x2a0/0x1150 [ 245.872911][T17988] ksys_write+0x1f8/0x250 [ 245.874281][T17988] __do_fast_syscall_32+0x7c/0x3a0 [ 245.875936][T17988] do_fast_syscall_32+0x32/0x80 [ 245.877690][T17988] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 245.879907][T17988] [ 245.880785][T17988] [ 245.880785][T17988] the dependencies between the lock to be acquired [ 245.880792][T17988] and SOFTIRQ-irq-unsafe lock: [ 245.885267][T17988] -> (tasklist_lock){.+.+}-{3:3} { [ 245.886984][T17988] HARDIRQ-ON-R at: [ 245.888496][T17988] lock_acquire+0x179/0x350 [ 245.890776][T17988] _raw_read_lock+0x5f/0x70 [ 245.892905][T17988] __do_wait+0x105/0x890 [ 245.895039][T17988] do_wait+0x21e/0x5a0 [ 245.897077][T17988] kernel_wait+0x9f/0x160 [ 245.899375][T17988] call_usermodehelper_exec_work+0xf1/0x170 [ 245.902123][T17988] process_one_work+0x9cc/0x1b70 [ 245.904525][T17988] worker_thread+0x6c8/0xf10 [ 245.906807][T17988] kthread+0x3c5/0x780 [ 245.908953][T17988] ret_from_fork+0x5d7/0x6f0 [ 245.911295][T17988] ret_from_fork_asm+0x1a/0x30 [ 245.913668][T17988] SOFTIRQ-ON-R at: [ 245.915179][T17988] lock_acquire+0x179/0x350 [ 245.917391][T17988] _raw_read_lock+0x5f/0x70 [ 245.919506][T17988] __do_wait+0x105/0x890 [ 245.921730][T17988] do_wait+0x21e/0x5a0 [ 245.923867][T17988] kernel_wait+0x9f/0x160 [ 245.926081][T17988] call_usermodehelper_exec_work+0xf1/0x170 [ 245.928731][T17988] process_one_work+0x9cc/0x1b70 [ 245.930893][T17988] worker_thread+0x6c8/0xf10 [ 245.933148][T17988] kthread+0x3c5/0x780 [ 245.935085][T17988] ret_from_fork+0x5d7/0x6f0 [ 245.937273][T17988] ret_from_fork_asm+0x1a/0x30 [ 245.939771][T17988] INITIAL USE at: [ 245.941244][T17988] lock_acquire+0x179/0x350 [ 245.943575][T17988] _raw_write_lock_irq+0x36/0x50 [ 245.945910][T17988] copy_process+0x4caf/0x76a0 [ 245.948238][T17988] kernel_clone+0xfc/0x960 [ 245.950532][T17988] user_mode_thread+0xc7/0x110 [ 245.952890][T17988] rest_init+0x23/0x2b0 [ 245.955149][T17988] start_kernel+0x3ee/0x4d0 [ 245.957428][T17988] x86_64_start_reservations+0x18/0x30 [ 245.960155][T17988] x86_64_start_kernel+0x130/0x190 [ 245.962674][T17988] common_startup_64+0x13e/0x148 [ 245.965086][T17988] INITIAL READ USE at: [ 245.966686][T17988] lock_acquire+0x179/0x350 [ 245.969103][T17988] _raw_read_lock+0x5f/0x70 [ 245.971483][T17988] __do_wait+0x105/0x890 [ 245.973828][T17988] do_wait+0x21e/0x5a0 [ 245.976047][T17988] kernel_wait+0x9f/0x160 [ 245.978272][T17988] call_usermodehelper_exec_work+0xf1/0x170 [ 245.981001][T17988] process_one_work+0x9cc/0x1b70 [ 245.983307][T17988] worker_thread+0x6c8/0xf10 [ 245.985509][T17988] kthread+0x3c5/0x780 [ 245.987688][T17988] ret_from_fork+0x5d7/0x6f0 [ 245.990135][T17988] ret_from_fork_asm+0x1a/0x30 [ 245.992490][T17988] } [ 245.993445][T17988] ... key at: [] tasklist_lock+0x18/0x40 [ 245.996241][T17988] ... acquired at: [ 245.997501][T17988] _raw_read_lock+0x5f/0x70 [ 245.999147][T17988] send_sigurg+0xed/0xc80 [ 246.000726][T17988] sk_send_sigurg+0x76/0x360 [ 246.002384][T17988] unix_stream_sendmsg+0xeb3/0x11d0 [ 246.004184][T17988] ____sys_sendmsg+0xa95/0xc70 [ 246.005912][T17988] ___sys_sendmsg+0x134/0x1d0 [ 246.007509][T17988] __sys_sendmsg+0x16d/0x220 [ 246.009275][T17988] __do_fast_syscall_32+0x7c/0x3a0 [ 246.010978][T17988] do_fast_syscall_32+0x32/0x80 [ 246.012611][T17988] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 246.014707][T17988] [ 246.015560][T17988] -> (&f_owner->lock){....}-{3:3} { [ 246.017368][T17988] INITIAL USE at: [ 246.018643][T17988] lock_acquire+0x179/0x350 [ 246.020693][T17988] _raw_write_lock_irq+0x36/0x50 [ 246.022961][T17988] __f_setown+0x61/0x3c0 [ 246.025019][T17988] generic_setlease+0xeef/0x1300 [ 246.027233][T17988] kernel_setlease+0x106/0x140 [ 246.029445][T17988] vfs_setlease+0x258/0x2d0 [ 246.031505][T17988] fcntl_setlease+0x3ed/0x5a0 [ 246.033745][T17988] do_fcntl+0x751/0x15a0 [ 246.035834][T17988] do_compat_fcntl64+0x367/0x710 [ 246.038051][T17988] __do_fast_syscall_32+0x7c/0x3a0 [ 246.040348][T17988] do_fast_syscall_32+0x32/0x80 [ 246.042594][T17988] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 246.045492][T17988] INITIAL READ USE at: [ 246.047141][T17988] lock_acquire+0x179/0x350 [ 246.049533][T17988] _raw_read_lock_irqsave+0x74/0x90 [ 246.052145][T17988] send_sigio+0x31/0x3e0 [ 246.054570][T17988] kill_fasync+0x214/0x510 [ 246.056826][T17988] lease_break_callback+0x23/0x30 [ 246.059417][T17988] __break_lease+0x674/0x1810 [ 246.061791][T17988] do_dentry_open+0x6e1/0x1c10 [ 246.064170][T17988] vfs_open+0x82/0x3f0 [ 246.066245][T17988] path_openat+0x1de4/0x2cb0 [ 246.068525][T17988] do_filp_open+0x20b/0x470 [ 246.070765][T17988] do_sys_openat2+0x11b/0x1d0 [ 246.073012][T17988] __ia32_compat_sys_openat+0x16d/0x210 [ 246.075668][T17988] __do_fast_syscall_32+0x7c/0x3a0 [ 246.078135][T17988] do_fast_syscall_32+0x32/0x80 [ 246.080524][T17988] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 246.083364][T17988] } [ 246.084321][T17988] ... key at: [] __key.1+0x0/0x40 [ 246.086693][T17988] ... acquired at: [ 246.088126][T17988] _raw_read_lock_irqsave+0x74/0x90 [ 246.089944][T17988] send_sigio+0x31/0x3e0 [ 246.091412][T17988] kill_fasync+0x214/0x510 [ 246.092904][T17988] lease_break_callback+0x23/0x30 [ 246.094608][T17988] __break_lease+0x674/0x1810 [ 246.096255][T17988] do_dentry_open+0x6e1/0x1c10 [ 246.097866][T17988] vfs_open+0x82/0x3f0 [ 246.099221][T17988] path_openat+0x1de4/0x2cb0 [ 246.100822][T17988] do_filp_open+0x20b/0x470 [ 246.102410][T17988] do_sys_openat2+0x11b/0x1d0 [ 246.103920][T17988] __ia32_compat_sys_openat+0x16d/0x210 [ 246.105707][T17988] __do_fast_syscall_32+0x7c/0x3a0 [ 246.107516][T17988] do_fast_syscall_32+0x32/0x80 [ 246.109143][T17988] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 246.111188][T17988] [ 246.111976][T17988] -> (&new->fa_lock){....}-{3:3} { [ 246.113747][T17988] INITIAL USE at: [ 246.115003][T17988] lock_acquire+0x179/0x350 [ 246.116928][T17988] _raw_write_lock_irq+0x36/0x50 [ 246.118989][T17988] fasync_insert_entry+0x1ca/0x2a0 [ 246.121278][T17988] lease_setup+0x9d/0x160 [ 246.123157][T17988] generic_setlease+0xeef/0x1300 [ 246.125231][T17988] kernel_setlease+0x106/0x140 [ 246.127382][T17988] vfs_setlease+0x258/0x2d0 [ 246.129317][T17988] fcntl_setlease+0x3ed/0x5a0 [ 246.131276][T17988] do_fcntl+0x751/0x15a0 [ 246.133197][T17988] do_compat_fcntl64+0x367/0x710 [ 246.135279][T17988] __do_fast_syscall_32+0x7c/0x3a0 [ 246.137313][T17988] do_fast_syscall_32+0x32/0x80 [ 246.139320][T17988] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 246.142100][T17988] INITIAL READ USE at: [ 246.143750][T17988] lock_acquire+0x179/0x350 [ 246.146108][T17988] _raw_read_lock_irqsave+0x74/0x90 [ 246.148607][T17988] kill_fasync+0x138/0x510 [ 246.150800][T17988] lease_break_callback+0x23/0x30 [ 246.153129][T17988] __break_lease+0x674/0x1810 [ 246.155365][T17988] do_dentry_open+0x6e1/0x1c10 [ 246.157564][T17988] vfs_open+0x82/0x3f0 [ 246.159579][T17988] path_openat+0x1de4/0x2cb0 [ 246.161765][T17988] do_filp_open+0x20b/0x470 [ 246.163973][T17988] do_sys_openat2+0x11b/0x1d0 [ 246.166154][T17988] __ia32_compat_sys_openat+0x16d/0x210 [ 246.168654][T17988] __do_fast_syscall_32+0x7c/0x3a0 [ 246.170990][T17988] do_fast_syscall_32+0x32/0x80 [ 246.172960][ T5951] Bluetooth: hci4: command 0x0405 tx timeout [ 246.173323][T17988] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 246.173342][T17988] } [ 246.173347][T17988] ... key at: [] __key.0+0x0/0x40 [ 246.181417][T17988] ... acquired at: [ 246.182745][T17988] lock_acquire+0x179/0x350 [ 246.184218][T17988] _raw_read_lock_irqsave+0x74/0x90 [ 246.185931][T17988] kill_fasync+0x138/0x510 [ 246.187361][T17988] evdev_pass_values+0x619/0x9b0 [ 246.189030][T17988] evdev_events+0x1bb/0x390 [ 246.190675][T17988] input_pass_values+0x6c4/0x890 [ 246.192334][T17988] input_handle_event+0xf00/0x14d0 [ 246.194011][T17988] input_inject_event+0x1cd/0x390 [ 246.195699][T17988] evdev_write+0x2e1/0x440 [ 246.197138][T17988] vfs_write+0x2a0/0x1150 [ 246.198731][T17988] ksys_write+0x1f8/0x250 [ 246.200209][T17988] __do_fast_syscall_32+0x7c/0x3a0 [ 246.201870][T17988] do_fast_syscall_32+0x32/0x80 [ 246.203459][T17988] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 246.205581][T17988] [ 246.206436][T17988] [ 246.206436][T17988] stack backtrace: [ 246.208299][T17988] CPU: 1 UID: 0 PID: 17988 Comm: syz.5.5460 Not tainted 6.16.0-rc2-syzkaller-00318-g739a6c93cc75 #0 PREEMPT(full) [ 246.208314][T17988] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 246.208322][T17988] Call Trace: [ 246.208328][T17988] [ 246.208332][T17988] dump_stack_lvl+0x116/0x1f0 [ 246.208352][T17988] check_irq_usage+0x7dc/0x920 [ 246.208367][T17988] ? tracing_record_taskinfo_sched_switch+0x54/0x400 [ 246.208387][T17988] ? check_path.constprop.0+0x24/0x50 [ 246.208402][T17988] ? __lock_acquire+0x1285/0x1c90 [ 246.208416][T17988] __lock_acquire+0x1285/0x1c90 [ 246.208433][T17988] lock_acquire+0x179/0x350 [ 246.208447][T17988] ? kill_fasync+0x138/0x510 [ 246.208460][T17988] _raw_read_lock_irqsave+0x74/0x90 [ 246.208476][T17988] ? kill_fasync+0x138/0x510 [ 246.208486][T17988] kill_fasync+0x138/0x510 [ 246.208498][T17988] evdev_pass_values+0x619/0x9b0 [ 246.208515][T17988] evdev_events+0x1bb/0x390 [ 246.208530][T17988] input_pass_values+0x6c4/0x890 [ 246.208547][T17988] input_handle_event+0xf00/0x14d0 [ 246.208562][T17988] ? _copy_from_user+0x59/0xd0 [ 246.208581][T17988] input_inject_event+0x1cd/0x390 [ 246.208597][T17988] evdev_write+0x2e1/0x440 [ 246.208612][T17988] ? __pfx_evdev_write+0x10/0x10 [ 246.208627][T17988] ? bpf_lsm_file_permission+0x9/0x10 [ 246.208640][T17988] ? security_file_permission+0x71/0x210 [ 246.208655][T17988] ? rw_verify_area+0xcf/0x680 [ 246.208669][T17988] ? __pfx_evdev_write+0x10/0x10 [ 246.208683][T17988] vfs_write+0x2a0/0x1150 [ 246.208700][T17988] ? __pfx_vfs_write+0x10/0x10 [ 246.208714][T17988] ? find_held_lock+0x2b/0x80 [ 246.208725][T17988] ? __fget_files+0x204/0x3c0 [ 246.208741][T17988] ? __fget_files+0x20e/0x3c0 [ 246.208757][T17988] ksys_write+0x1f8/0x250 [ 246.208772][T17988] ? __pfx_ksys_write+0x10/0x10 [ 246.208788][T17988] ? rcu_is_watching+0x12/0xc0 [ 246.208800][T17988] __do_fast_syscall_32+0x7c/0x3a0 [ 246.208819][T17988] do_fast_syscall_32+0x32/0x80 [ 246.208837][T17988] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 246.208852][T17988] RIP: 0023:0xf70fe579 [ 246.208861][T17988] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 246.208872][T17988] RSP: 002b:00000000f50ee55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004 [ 246.208882][T17988] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040 [ 246.208889][T17988] RDX: 0000000000002250 RSI: 0000000000000000 RDI: 0000000000000000 [ 246.208895][T17988] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 246.208901][T17988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 246.208908][T17988] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 246.208917][T17988] [ 250.653332][ T46] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge) VM DIAGNOSIS: 03:38:20 Registers: info registers vcpu 0 CPU#0 RAX=000000000004ed94 RBX=ffff88802b33ff60 RCX=ffffc9000c402000 RDX=0000000000080000 RSI=ffffffff81af7589 RDI=0000000000000005 RBP=0000000000000001 RSP=ffffc90002e27a88 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=000000000000001e R12=dffffc0000000000 R13=0000000000000003 R14=ffffed1005667fed R15=ffff88802b23b6c0 RIP=ffffffff81af758b RFL=00000283 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097561000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000057aac4c0 CR3=0000000069438000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000018800000000 0000000700000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000038 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff855801d5 RDI=ffffffff9b06ba00 RBP=ffffffff9b06b9c0 RSP=ffffc90003147300 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d R12=0000000000000000 R13=0000000000000038 R14=ffffffff9b06b9c0 R15=ffffffff85580170 RIP=ffffffff855801ff RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097661000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000033f1bffc CR3=0000000070c58000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffff00 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000162394 RBX=0000000000000002 RCX=ffffffff8b7c3be9 RDX=ffffed1005686646 RSI=ffffffff8c156220 RDI=ffffffff81918571 RBP=ffffed1003bdb910 RSP=ffffc9000047fdf8 R8 =0000000000000000 R9 =ffffed1005686645 R10=ffff88802b43322b R11=0000000000000000 R12=0000000000000002 R13=ffff88801dedc880 R14=ffffffff90a82a50 R15=0000000000000000 RIP=ffffffff8b7c274f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097761000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000033f17ffc CR3=0000000070013000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000033800000000 0000000700000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000113bcc RBX=0000000000000003 RCX=ffffffff8b7c3be9 RDX=ffffed10056a6646 RSI=ffffffff8c156220 RDI=ffffffff81918571 RBP=ffffed1003860000 RSP=ffffc9000048fdf8 R8 =0000000000000000 R9 =ffffed10056a6645 R10=ffff88802b53322b R11=0000000000000001 R12=0000000000000003 R13=ffff88801c300000 R14=ffffffff90a82a50 R15=0000000000000000 RIP=ffffffff8b7c274f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097861000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002f81effc CR3=0000000069438000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000