last executing test programs: 45.572469713s ago: executing program 2 (id=19240): openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/stat\x00', 0x0, 0x0) write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x806, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x4d, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x7, 0xffff, 0x0, 0x5, 0x24, 0x1, 0x7, 0x3c5b, 0x1, 0x24, 0x6, 0x5, 0x5, 0x2, 0xe661, 0x4, 0x7, 0x5, 0x8, 0x4c74, 0x80000000, 0x40000, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x407, 0x5, 0x3e, 0x8f, 0x4006, 0x6, 0x0, 0x0, 0x4, 0x8, 0x400, 0x80, 0x0, 0x5, 0x7, 0xa, 0x4, 0xfffffffe, 0x40], [0x10000007, 0xf0000000, 0x8000012f, 0x8004, 0x5, 0x6, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x2, 0xea4, 0xffffffff, 0x4, 0x7, 0x7fff, 0x1005a7c, 0x420, 0x401, 0x6, 0x0, 0xff, 0x1, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x9, 0x47, 0x8000, 0x1, 0xfe000000, 0x10003, 0xfffffffe, 0x7, 0x9, 0x5, 0x3, 0xb, 0x1, 0x200, 0x6c0, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x8004, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x0, 0x7fff, 0x0, 0x5, 0x8, 0x4, 0x9, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x10000, 0x3, 0x5, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0xfa, 0x6, 0x1, 0x800007, 0x1fc, 0x80, 0x3, 0x4, 0x2950bfaf, 0xffe, 0xa2, 0x3, 0xa9, 0x5, 0x9, 0xac8, 0xbf, 0x1, 0x3, 0x7ff, 0x12b, 0x4, 0x80000001, 0xfffffffa, 0x0, 0x4, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce7, 0x9, 0x2, 0x55, 0x5, 0x3, 0x101, 0x10000, 0x4, 0x7fff, 0xffff, 0x2000a620, 0x2, 0x5, 0x1, 0x2, 0x5, 0xe7, 0x1, 0x16, 0xffffffff, 0x80000003, 0x5, 0x4, 0xc8, 0x9, 0xfffff000, 0x10000, 0x3, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x8, 0x6, 0x226, 0x8, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0x20000d7, 0x200, 0xffff3441, 0x10000fff]}, 0x45c) ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0) 45.494807107s ago: executing program 2 (id=19242): timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) kexec_load(0x0, 0x1, &(0x7f00000012c0)=[{0x0, 0x0, 0x80000000, 0x1000000}], 0x160000) 44.391919379s ago: executing program 2 (id=19270): sendmsg$MPTCP_PM_CMD_ANNOUNCE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x14, 0x0, 0x1, 0x70bd2b, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x40000c0) r0 = syz_open_dev$sg(&(0x7f0000000180), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000040)=ANY=[@ANYBLOB="00000000010000001d04"]) 44.281163298s ago: executing program 2 (id=19274): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0) umount2(&(0x7f0000000100)='./file0\x00', 0x8) 44.237326165s ago: executing program 2 (id=19277): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f00000000c0)={0x18, 0x0, {0x4, @local, 'erspan0\x00'}}, 0x1e) ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f0000000040)={0x18, 0x0, {0x4, @local, 'veth0_virt_wifi\x00'}}) 43.972194419s ago: executing program 2 (id=19288): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'pcl726\x00', [0x4f26, 0x0, 0x2, 0x401, 0x1, 0xcc7, 0xfff, 0x5c952399, 0x5, 0x3ff, 0x802, 0x1600, 0x1, 0x1, 0x9, 0xe1cb, 0x6, 0x4, 0x4, 0x395, 0x80001089, 0xfffffffd, 0x0, 0xfffffff5, 0xffffeadb, 0x3, 0x40003e, 0x8, 0x4, 0x8000000, 0x100]}) 43.841076713s ago: executing program 32 (id=19288): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'pcl726\x00', [0x4f26, 0x0, 0x2, 0x401, 0x1, 0xcc7, 0xfff, 0x5c952399, 0x5, 0x3ff, 0x802, 0x1600, 0x1, 0x1, 0x9, 0xe1cb, 0x6, 0x4, 0x4, 0x395, 0x80001089, 0xfffffffd, 0x0, 0xfffffff5, 0xffffeadb, 0x3, 0x40003e, 0x8, 0x4, 0x8000000, 0x100]}) 1.275299797s ago: executing program 0 (id=19962): r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000002340)=0x4) ioctl$FIONREAD(r0, 0x541b, &(0x7f0000000080)) 1.262968532s ago: executing program 0 (id=19964): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_MAX_VCPU_ID(r1, 0x4068aea3, &(0x7f0000000100)={0x80, 0x0, 0x100000001}) 1.262454796s ago: executing program 1 (id=19965): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000000000)={0xc, {"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", 0x1000}}, 0x1006) 1.169152919s ago: executing program 1 (id=19968): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) fsopen(&(0x7f00000001c0)='iso9660\x00', 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 1.132258648s ago: executing program 1 (id=19971): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000040)={0x3, &(0x7f0000000340)=[{0x20, 0xc, 0x77, 0xfffff038}, {0x28, 0x0, 0x0, 0xfffff034}, {0x6, 0x0, 0x0, 0x2}]}, 0x8) sendmmsg(r0, &(0x7f0000001c00), 0x400000000000159, 0x40840) 1.110188056s ago: executing program 0 (id=19973): r0 = io_uring_setup(0x54a0, &(0x7f0000000000)={0x0, 0x70e6, 0x2, 0x2, 0xf2}) io_uring_register$IORING_UNREGISTER_IOWQ_AFF(r0, 0x12, 0x0, 0x0) io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r0, 0x13, &(0x7f0000000240)=[0x40, 0x8], 0x2) 1.007978093s ago: executing program 1 (id=19974): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/address_bits', 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 749.642027ms ago: executing program 0 (id=19979): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000002c0)={0xaf9, 0x5, 0x0, 'queue1\x00'}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x402c5342, &(0x7f0000000040)={0x0, 0x3, 0x0, {0x0, 0x1}, 0x52, 0x10009}) 748.643136ms ago: executing program 0 (id=19981): syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0) syz_usb_disconnect(0xffffffffffffffff) ioprio_set$pid(0x2, 0x0, 0x4007) 375.993818ms ago: executing program 3 (id=19992): sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d080c48000000e8fe55a1180015000600142603600e120900210000000401a80016000a0001", 0x37}], 0x1}, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0xfe33) 300.812879ms ago: executing program 3 (id=19993): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) r0 = socket$inet_smc(0x2b, 0x1, 0x0) getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000000)=""/108, &(0x7f0000000080)=0x18) 299.902226ms ago: executing program 4 (id=19994): ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'}) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl(r0, 0x8b2c, &(0x7f0000000040)) 299.667104ms ago: executing program 3 (id=19995): capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000040)) r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCSETA(r0, 0x4b6a, 0x0) 221.534382ms ago: executing program 4 (id=19996): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$pokeuser(0x6, r0, 0x115, 0x6000003f) 218.470081ms ago: executing program 3 (id=19997): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) mount$fuse(0x0, &(0x7f0000002880)='.\x00', &(0x7f00000028c0), 0x4001, &(0x7f0000000180)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000040)={0x2a, 0x4, 0x0, {0x1, 0xffffffffffdfffff, 0x2, 0x0, [0x0, 0x0]}}, 0x2a) 209.179209ms ago: executing program 1 (id=19998): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_HYPERV_EVENTFD(r1, 0x400caed0, &(0x7f0000000100)={0x82, 0xffffffffffffffff, 0xffffffff}) 176.938246ms ago: executing program 3 (id=19999): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c80)={'ip6gre0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000018c0)=@newqdisc={0x148, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0xc, 0xa}}, [@qdisc_kind_options=@q_red={{0x8}, {0x11c, 0x2, [@TCA_RED_STAB={0x104, 0x2, "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"}, @TCA_RED_PARMS={0x14, 0x1, {0x8, 0x3ff, 0x80, 0x1a, 0x20, 0x12, 0x1}}]}}]}, 0x148}}, 0x2200c810) 106.429113ms ago: executing program 4 (id=20000): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x34, r1, 0x1, 0x70bd2e, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_RX_MAX_FRAMES_HIGH={0x8, 0x14, 0x58}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x0) 104.179642ms ago: executing program 4 (id=20001): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x34, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0xfc}]}, 0x34}}, 0x0) 53.022171ms ago: executing program 4 (id=20002): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) sendmsg$inet(r0, &(0x7f0000002940)={0x0, 0x0, &(0x7f0000002100)=[{&(0x7f0000000340)="5c00000012006bab9a3fe3d86edabf0a046b876c1d0048007ea60864160af36504001d0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509debbfbffa8499c69ac76dd752d00", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) 18.952723ms ago: executing program 0 (id=20003): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = dup(r0) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, 0x0, &(0x7f00000000c0)) 12.267406ms ago: executing program 1 (id=20004): r0 = syz_open_dev$swradio(&(0x7f00000001c0), 0x0, 0x2) read(r0, &(0x7f0000000380)=""/238, 0xee) ioctl$VIDIOC_ENUM_FMT(r0, 0xc0585611, &(0x7f00000000c0)={0x0, 0xb, 0x0, "3e58f67896b2f2098200902177392faff604cb7ef87e7610bc39ef64257f5d33"}) 9.149648ms ago: executing program 3 (id=20005): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'c6xdigio\x00', [0x4f27, 0x1f, 0x2, 0x401, 0x1, 0xcc7, 0xfff, 0x5c952399, 0x1, 0x3ff, 0x2, 0xc986, 0x74, 0x1, 0x9, 0xe1cb, 0x0, 0x1a449, 0x3, 0x1ff, 0x80000089, 0xfffffffd, 0x401, 0x20001e56, 0xfffffffc, 0x0, 0x2, 0x8, 0x4, 0x8000000, 0xdffffffa]}) 0s ago: executing program 4 (id=20006): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x5c, r1, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @mcast2}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @empty}]}, 0x5c}, 0x1, 0x620b}, 0x0) kernel console output (not intermixed with test programs): 6363][ T3620] netlink: 4 bytes leftover after parsing attributes in process `syz.1.14588'. [ 345.694014][ T3634] tmpfs: Bad value for 'mpol' [ 345.821296][ T3639] (unnamed net_device) (uninitialized): option arp_validate: invalid value (524288) [ 346.032724][ T3398] syz.3.14484 (3398) used greatest stack depth: 18856 bytes left [ 346.453994][ T3693] tmpfs: Bad value for 'mpol' [ 346.575574][ T3474] syz.1.14519 (3474) used greatest stack depth: 18416 bytes left [ 346.660934][ T3717] (unnamed net_device) (uninitialized): option arp_validate: invalid value (524288) [ 346.693560][ T3721] tmpfs: Bad value for 'mpol' [ 347.446387][ T3796] netlink: 132 bytes leftover after parsing attributes in process `syz.3.14675'. [ 347.619690][ T3817] QAT: Stopping all acceleration devices. [ 347.738112][ T3811] infiniband syz2: set down [ 347.739675][ T3831] netlink: 'syz.2.14693': attribute type 1 has an invalid length. [ 347.740428][ T3811] infiniband syz2: added ipvlan0 [ 347.744796][ T3831] netlink: 224 bytes leftover after parsing attributes in process `syz.2.14693'. [ 347.791245][ T3811] RDS/IB: syz2: added [ 347.795198][ T3811] smc: adding ib device syz2 with port count 1 [ 347.798804][ T3811] smc: ib device syz2 port 1 has pnetid [ 347.837547][ T3842] netlink: 40 bytes leftover after parsing attributes in process `syz.0.14698'. [ 347.995244][ T3862] QAT: Stopping all acceleration devices. [ 348.082061][ T3873] netlink: 'syz.0.14713': attribute type 1 has an invalid length. [ 348.085381][ T3873] netlink: 224 bytes leftover after parsing attributes in process `syz.0.14713'. [ 348.480470][ T3919] netlink: 40 bytes leftover after parsing attributes in process `syz.2.14735'. [ 348.568860][ T3932] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 348.604418][ T3934] netlink: 8 bytes leftover after parsing attributes in process `syz.1.14745'. [ 348.650256][ T3945] netlink: 24 bytes leftover after parsing attributes in process `syz.3.14748'. [ 348.758113][ T3961] openvswitch: netlink: IP tunnel dst address not specified [ 348.888691][ T3979] netlink: 24 bytes leftover after parsing attributes in process `syz.2.14765'. [ 348.981773][ T3990] ata1.00: non-matching transfer count (1530558389/0) [ 349.090730][ T4008] netlink: 24 bytes leftover after parsing attributes in process `syz.0.14777'. [ 349.123580][ T4014] openvswitch: netlink: IP tunnel dst address not specified [ 349.156131][ T4017] PKCS8: Unsupported PKCS#8 version [ 349.273500][ T4035] openvswitch: netlink: IP tunnel dst address not specified [ 349.426360][ T4055] ata1.00: non-matching transfer count (1530558389/0) [ 349.641913][ T4085] rdma_rxe: rxe_newlink: failed to add ipvlan0 [ 350.306003][ T4186] overlay: Bad value for 'workdir' [ 350.401792][ T4197] netlink: 196 bytes leftover after parsing attributes in process `syz.2.14858'. [ 350.406564][ T4197] netlink: 196 bytes leftover after parsing attributes in process `syz.2.14858'. [ 350.414311][ T4197] netlink: 19 bytes leftover after parsing attributes in process `syz.2.14858'. [ 350.463143][ T4209] BIDI support in bsg has been removed. [ 350.489859][ T4211] netlink: 4 bytes leftover after parsing attributes in process `syz.3.14866'. [ 350.560966][ T4227] netlink: 196 bytes leftover after parsing attributes in process `syz.0.14873'. [ 350.568782][ T4227] netlink: 196 bytes leftover after parsing attributes in process `syz.0.14873'. [ 350.571721][ T4227] netlink: 19 bytes leftover after parsing attributes in process `syz.0.14873'. [ 350.874928][ T4270] netlink: 16 bytes leftover after parsing attributes in process `syz.1.14889'. [ 350.917908][ T4276] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 351.123559][ T4305] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 351.240720][ T4318] deleting an unspecified loop device is not supported. [ 351.287181][ T4326] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 351.397606][ T4342] netlink: 16 bytes leftover after parsing attributes in process `syz.0.14924'. [ 351.485115][ T4354] cgroup: name respecified [ 351.545112][ T4366] netlink: 228 bytes leftover after parsing attributes in process `syz.2.14935'. [ 351.677321][ T4388] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 351.829530][ T4413] cgroup: name respecified [ 351.871605][ T4419] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on [ 351.930354][ T4427] random: crng reseeded on system resumption [ 352.019812][ T4439] cgroup: name respecified [ 352.094784][ T4452] random: crng reseeded on system resumption [ 352.128740][ T4455] netlink: 'syz.1.14981': attribute type 1 has an invalid length. [ 352.173673][ T4463] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 352.277056][ T4477] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on [ 352.376105][ T4490] random: crng reseeded on system resumption [ 352.401964][ T40] audit: type=1400 audit(2000000111.982:774): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=4491 comm="syz.1.14997" [ 352.436267][ T4498] bridge0: port 1(bridge_slave_0) entered forwarding state [ 352.494002][ T4506] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on [ 352.745302][ T40] audit: type=1400 audit(2000000112.349:775): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=4540 comm="syz.3.15021" [ 353.007930][ T4573] netlink: 'syz.2.15039': attribute type 1 has an invalid length. [ 353.011234][ T4573] netlink: 'syz.2.15039': attribute type 1 has an invalid length. [ 353.724011][ T4675] trusted_key: encrypted_key: keyword 'neul' not recognized [ 353.806807][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 353.811050][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 354.004159][ T4707] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 354.655906][ T4776] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 354.702154][ T4782] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 355.421595][ T4858] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 355.996386][ T4916] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 356.353617][ T4942] : left promiscuous mode [ 356.863885][ T4991] __nla_validate_parse: 8 callbacks suppressed [ 356.863901][ T4991] netlink: 10 bytes leftover after parsing attributes in process `syz.2.15243'. [ 356.934965][ T5002] netlink: 'syz.3.15249': attribute type 1 has an invalid length. [ 357.666577][ T5060] netlink: 4 bytes leftover after parsing attributes in process `syz.3.15279'. [ 357.703874][ T5065] IPv6: sit2: Disabled Multicast RS [ 358.199675][ T5108] netlink: 'syz.0.15301': attribute type 1 has an invalid length. [ 358.797876][ T5132] netlink: 4 bytes leftover after parsing attributes in process `syz.2.15311'. [ 358.832978][ T5136] netlink: 8 bytes leftover after parsing attributes in process `syz.0.15315'. [ 358.886668][ T5144] netlink: 4 bytes leftover after parsing attributes in process `syz.2.15320'. [ 358.939266][ T5151] netlink: 8 bytes leftover after parsing attributes in process `syz.2.15328'. [ 359.038524][ T5163] mac80211_hwsim hwsim5 wlan1: entered allmulticast mode [ 359.241499][ T5177] netlink: 8 bytes leftover after parsing attributes in process `syz.1.15334'. [ 359.267164][ T5179] IPv6: sit1: Disabled Multicast RS [ 359.533264][ T40] audit: type=1326 audit(2000000119.477:776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5207 comm="syz.2.15349" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 359.544928][ T40] audit: type=1326 audit(2000000119.477:777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5207 comm="syz.2.15349" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 359.555042][ T40] audit: type=1326 audit(2000000119.477:778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5207 comm="syz.2.15349" exe="/syz-executor" sig=0 arch=40000003 syscall=243 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 359.562004][ T5211] netlink: 4 bytes leftover after parsing attributes in process `syz.0.15357'. [ 359.567781][ T40] audit: type=1326 audit(2000000119.477:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5207 comm="syz.2.15349" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 359.580650][ T40] audit: type=1326 audit(2000000119.477:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5207 comm="syz.2.15349" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 360.136196][ T40] audit: type=1326 audit(2000000120.107:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5291 comm="syz.0.15389" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 360.153977][ T40] audit: type=1326 audit(2000000120.107:782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5291 comm="syz.0.15389" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 360.170439][ T40] audit: type=1326 audit(2000000120.118:783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5291 comm="syz.0.15389" exe="/syz-executor" sig=0 arch=40000003 syscall=243 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 360.180333][ T40] audit: type=1326 audit(2000000120.118:784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5291 comm="syz.0.15389" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 360.195839][ T40] audit: type=1326 audit(2000000120.118:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5291 comm="syz.0.15389" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 360.851997][ T5365] IPVS: length: 143 != 24 [ 361.034519][ T5392] tipc: Can't bind to reserved service type 1 [ 361.063737][ T5398] IPVS: length: 143 != 24 [ 361.229166][ T5425] IPVS: length: 143 != 24 [ 361.246945][ T5431] netlink: 'syz.3.15455': attribute type 21 has an invalid length. [ 361.251091][ T5431] netlink: 'syz.3.15455': attribute type 20 has an invalid length. [ 361.410512][ T5457] openvswitch: netlink: Invalid VLAN frame [ 361.502005][ T5467] program syz.2.15469 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 361.553499][ T5473] Invalid option length (1048180) for dns_resolver key [ 361.801349][ T5510] program syz.3.15492 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 361.940429][ T5531] netlink: 21 bytes leftover after parsing attributes in process `syz.2.15506'. [ 361.945414][ T5531] macvtap0: entered allmulticast mode [ 361.948339][ T5531] veth0_macvtap: entered allmulticast mode [ 362.022149][ T5541] Invalid option length (1048180) for dns_resolver key [ 362.094882][ T5549] Invalid option length (1048180) for dns_resolver key [ 362.143563][ T5557] netlink: 21 bytes leftover after parsing attributes in process `syz.3.15513'. [ 362.143798][ T5558] program syz.0.15512 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 362.247070][ T5571] netlink: 'syz.2.15520': attribute type 1 has an invalid length. [ 362.251223][ T5571] netlink: 4 bytes leftover after parsing attributes in process `syz.2.15520'. [ 362.535614][ T5608] netlink: 'syz.2.15534': attribute type 1 has an invalid length. [ 362.700046][ T5633] netlink: 'syz.0.15546': attribute type 1 has an invalid length. [ 362.703684][ T5633] netlink: 4 bytes leftover after parsing attributes in process `syz.0.15546'. [ 362.751675][ T5640] netlink: 'syz.3.15549': attribute type 1 has an invalid length. [ 362.898443][ T5661] netlink: 'syz.3.15560': attribute type 1 has an invalid length. [ 362.903132][ T5661] netlink: 4 bytes leftover after parsing attributes in process `syz.3.15560'. [ 363.744411][ T5779] netlink: 'syz.2.15607': attribute type 1 has an invalid length. [ 363.813918][ T5793] A link change request failed with some changes committed already. Interface may have been left with an inconsistent configuration, please check. [ 363.831055][ T5795] netlink: 'syz.2.15614': attribute type 2 has an invalid length. [ 363.997374][ T5816] netlink: 'syz.0.15630': attribute type 1 has an invalid length. [ 364.094603][ T5825] lo: left promiscuous mode [ 364.096798][ T5825] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 364.104383][ T5826] netlink: 'syz.0.15627': attribute type 1 has an invalid length. [ 364.276154][ T5843] netlink: 'syz.0.15635': attribute type 2 has an invalid length. [ 364.537889][ T5873] tmpfs: Bad value for 'usrquota_inode_hardlimit' [ 364.729822][ T5895] netlink: 128 bytes leftover after parsing attributes in process `syz.1.15655'. [ 364.735101][ T5895] netlink: 3 bytes leftover after parsing attributes in process `syz.1.15655'. [ 365.116234][ T5958] openvswitch: netlink: IP tunnel dst address not specified [ 365.302588][ T5980] trusted_key: encrypted_key: master key parameter is missing [ 365.393758][ T5988] dlm: no locking on control device [ 365.520213][ T6002] bridge0: mtu less than device minimum [ 365.526525][ T6002] bridge0: port 4(dummy0) entered disabled state [ 365.532073][ T6002] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 365.810718][ T6038] netlink: 2384 bytes leftover after parsing attributes in process `syz.0.15727'. [ 365.958794][ T6048] macvlan1: entered allmulticast mode [ 365.984179][ T6048] macvlan1: entered promiscuous mode [ 365.989712][ T6048] team0: Port device macvlan1 added [ 366.161631][ T6082] netlink: 224 bytes leftover after parsing attributes in process `syz.0.15749'. [ 366.209245][ T40] kauditd_printk_skb: 5 callbacks suppressed [ 366.209255][ T40] audit: type=1326 audit(2000000126.479:791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.0.15752" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 366.222590][ T40] audit: type=1326 audit(2000000126.479:792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.0.15752" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 366.233769][ T40] audit: type=1326 audit(2000000126.479:793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.0.15752" exe="/syz-executor" sig=0 arch=40000003 syscall=393 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 366.244511][ T40] audit: type=1326 audit(2000000126.479:794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.0.15752" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 366.256909][ T40] audit: type=1326 audit(2000000126.479:795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.0.15752" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 366.545630][ T6122] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 366.555181][ T6125] netlink: 4 bytes leftover after parsing attributes in process `syz.0.15770'. [ 366.713081][ T6143] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 366.753726][ T6149] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 367.806828][ T40] audit: type=1326 audit(2000000128.170:796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.1.15795" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 367.808736][ T6190] netlink: zone id is out of range [ 367.821819][ T40] audit: type=1326 audit(2000000128.170:797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.1.15795" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 367.830396][ T6190] netlink: zone id is out of range [ 367.832122][ T40] audit: type=1326 audit(2000000128.180:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.1.15795" exe="/syz-executor" sig=0 arch=40000003 syscall=424 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 367.833369][ T6190] netlink: zone id is out of range [ 367.844384][ T40] audit: type=1326 audit(2000000128.180:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.1.15795" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 367.847860][ T6190] netlink: zone id is out of range [ 367.856206][ T40] audit: type=1326 audit(2000000128.180:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6185 comm="syz.1.15795" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 367.879844][ T6190] netlink: zone id is out of range [ 367.887881][ T6190] netlink: zone id is out of range [ 367.890941][ T6190] netlink: zone id is out of range [ 367.920630][ T6223] netlink: 216 bytes leftover after parsing attributes in process `syz.3.15802'. [ 367.926816][ T6223] netlink: 220 bytes leftover after parsing attributes in process `syz.3.15802'. [ 367.971180][ T6230] netlink: 4 bytes leftover after parsing attributes in process `syz.1.15805'. [ 368.107292][ T6269] netlink: 4 bytes leftover after parsing attributes in process `syz.1.15816'. [ 368.116140][ T6268] netlink: 224 bytes leftover after parsing attributes in process `syz.3.15814'. [ 368.208777][ T6282] libceph: resolve '400' (ret=-3): failed [ 368.504456][ T6315] validate_nla: 7 callbacks suppressed [ 368.504469][ T6315] netlink: 'syz.0.15836': attribute type 3 has an invalid length. [ 368.510265][ T6315] netlink: 224 bytes leftover after parsing attributes in process `syz.0.15836'. [ 368.789505][ T6333] netlink: 'syz.1.15844': attribute type 14 has an invalid length. [ 369.203092][ T6376] dlm: no locking on control device [ 369.206639][ T6377] /dev/sg0: Can't lookup blockdev [ 369.423035][ T6409] netlink: 128 bytes leftover after parsing attributes in process `syz.2.15882'. [ 369.612165][ T6439] netlink: 'syz.1.15896': attribute type 2 has an invalid length. [ 369.616219][ T6439] netlink: 51 bytes leftover after parsing attributes in process `syz.1.15896'. [ 369.697780][ T1417] ieee802154 phy1 wpan1: encryption failed: -22 [ 369.723592][ T6453] comedi comedi4: bad chanlist[1]=0xfffffffd chan=65533 range length=2 [ 369.995043][ T6488] netlink: 4 bytes leftover after parsing attributes in process `syz.3.15920'. [ 370.088442][ T6496] netlink: 'syz.3.15924': attribute type 5 has an invalid length. [ 370.391830][ T6536] usb usb9: usbfs: process 6536 (syz.3.15943) did not claim interface 0 before use [ 370.458833][ T6547] netlink: 168 bytes leftover after parsing attributes in process `syz.3.15949'. [ 370.676900][ T6581] netlink: 'syz.0.15966': attribute type 1 has an invalid length. [ 370.907092][ T6599] veth5: entered promiscuous mode [ 370.909682][ T6599] veth5: entered allmulticast mode [ 370.985264][ T6616] Zero length message leads to an empty skb [ 371.232577][ T6650] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode 802.3ad(4) [ 371.928075][ T6763] random: crng reseeded on system resumption [ 371.944813][ T6763] Hibernate inconsistent memory map detected! [ 371.952105][ T6763] PM: hibernation: Image mismatch: architecture specific data [ 372.091430][ T6788] autofs4:pid:6788:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(4294967071.1), cmd(0xc018937e) [ 372.099105][ T6788] autofs4:pid:6788:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e) [ 372.462077][ T6842] netdevsim netdevsim1 netdevsim1: entered allmulticast mode [ 372.463616][ T6841] netlink: 'syz.3.16092': attribute type 10 has an invalid length. [ 372.473103][ T6841] macvlan1: entered allmulticast mode [ 372.674732][ T6860] autofs4:pid:6860:validate_dev_ioctl: path string terminator missing for cmd(0xc018937e) [ 372.874694][ T6878] befs: (loop7): No write support. Marking filesystem read-only [ 372.879616][ T6878] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 372.906837][ T6878] befs: (loop7): unable to read superblock [ 373.051374][ T6896] net_ratelimit: 83 callbacks suppressed [ 373.051394][ T6896] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 373.564282][ T6955] __nla_validate_parse: 20 callbacks suppressed [ 373.564301][ T6955] netlink: 4 bytes leftover after parsing attributes in process `syz.3.16148'. [ 374.097334][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 374.097349][ T40] audit: type=1326 audit(2000000134.762:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7006 comm="syz.0.16178" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 374.144138][ T40] audit: type=1326 audit(2000000134.762:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7006 comm="syz.0.16178" exe="/syz-executor" sig=0 arch=40000003 syscall=424 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 374.158671][ T40] audit: type=1326 audit(2000000134.762:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7006 comm="syz.0.16178" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 374.171401][ T40] audit: type=1326 audit(2000000134.762:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7006 comm="syz.0.16178" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 374.821802][ T7075] dlm: no locking on control device [ 375.287164][ T7098] random: crng reseeded on system resumption [ 375.351596][ T7108] netlink: 4 bytes leftover after parsing attributes in process `syz.2.16218'. [ 375.559905][ T7131] netlink: 168 bytes leftover after parsing attributes in process `syz.2.16228'. [ 375.684304][ T7147] netlink: 'syz.2.16238': attribute type 1 has an invalid length. [ 375.873415][ T7169] XFS (nullb0): Invalid superblock magic number [ 376.040771][ T7202] netlink: 80 bytes leftover after parsing attributes in process `syz.3.16262'. [ 376.045197][ T7202] netlink: 80 bytes leftover after parsing attributes in process `syz.3.16262'. [ 376.153354][ T7219] netlink: 'syz.2.16271': attribute type 21 has an invalid length. [ 376.156710][ T7219] netlink: 128 bytes leftover after parsing attributes in process `syz.2.16271'. [ 376.162672][ T7219] netlink: 'syz.2.16271': attribute type 5 has an invalid length. [ 376.166368][ T7219] netlink: 'syz.2.16271': attribute type 6 has an invalid length. [ 376.169987][ T7219] netlink: 3 bytes leftover after parsing attributes in process `syz.2.16271'. [ 376.425336][ T40] audit: type=1326 audit(2000000137.208:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7264 comm="syz.3.16294" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 376.440628][ T40] audit: type=1326 audit(2000000137.208:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7264 comm="syz.3.16294" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 376.452891][ T40] audit: type=1326 audit(2000000137.219:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7264 comm="syz.3.16294" exe="/syz-executor" sig=0 arch=40000003 syscall=29 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 376.467335][ T7273] netlink: 4 bytes leftover after parsing attributes in process `syz.1.16297'. [ 376.511884][ T7275] netlink: 'syz.1.16300': attribute type 1 has an invalid length. [ 376.651976][ T7289] binder: 7287:7289 ioctl c018620c 80000000 returned -1 [ 376.830546][ T7309] random: crng reseeded on system resumption [ 376.847908][ T7309] Hibernate inconsistent memory map detected! [ 376.852425][ T7309] PM: hibernation: Image mismatch: architecture specific data [ 376.995548][ T40] audit: type=1326 audit(2000000137.807:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7326 comm="syz.2.16324" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 377.028987][ T40] audit: type=1326 audit(2000000137.807:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7326 comm="syz.2.16324" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 377.053603][ T40] audit: type=1326 audit(2000000137.807:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7326 comm="syz.2.16324" exe="/syz-executor" sig=0 arch=40000003 syscall=138 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 377.222532][ T7349] rtc_cmos 00:05: Alarms can be up to one day in the future [ 377.557214][ T7391] netlink: 'syz.1.16354': attribute type 10 has an invalid length. [ 377.573557][ C3] vkms_vblank_simulate: vblank timer overrun [ 377.645677][ T7391] macvlan1: entered allmulticast mode [ 377.657905][ T7391] team0: Port device macvlan1 added [ 377.658117][ T7397] netlink: 'syz.3.16358': attribute type 2 has an invalid length. [ 377.671878][ T7397] netlink: 'syz.3.16358': attribute type 1 has an invalid length. [ 377.703606][ C3] vkms_vblank_simulate: vblank timer overrun [ 377.710443][ T7397] netlink: 224 bytes leftover after parsing attributes in process `syz.3.16358'. [ 377.803256][ T7408] netlink: 'syz.0.16365': attribute type 1 has an invalid length. [ 377.808033][ T7408] netlink: 'syz.0.16365': attribute type 1 has an invalid length. [ 377.947172][ T7429] openvswitch: netlink: Unknown key attributes 2 [ 377.978290][ T7431] netlink: 180 bytes leftover after parsing attributes in process `syz.1.16375'. [ 378.715000][ T7529] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 379.414194][ T7584] __nla_validate_parse: 2 callbacks suppressed [ 379.414210][ T7584] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16451'. [ 379.475579][ T7590] netlink: 40 bytes leftover after parsing attributes in process `syz.0.16454'. [ 379.672910][ T7608] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16462'. [ 380.144265][ T7652] syz.3.16484: page allocation failure: order:10, mode:0x40dc0(GFP_KERNEL|__GFP_ZERO|__GFP_COMP), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 380.153407][ T7652] CPU: 3 UID: 0 PID: 7652 Comm: syz.3.16484 Not tainted syzkaller #0 PREEMPT(full) [ 380.153577][ T7652] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 380.153592][ T7652] Call Trace: [ 380.153600][ T7652] [ 380.153610][ T7652] dump_stack_lvl+0x16c/0x1f0 [ 380.153651][ T7652] warn_alloc+0x248/0x3a0 [ 380.153679][ T7652] ? __pfx_warn_alloc+0x10/0x10 [ 380.153703][ T7652] ? psi_memstall_leave+0x1e6/0x2d0 [ 380.153731][ T7652] ? __alloc_pages_direct_compact+0x466/0x580 [ 380.153758][ T7652] ? __pfx___alloc_pages_direct_compact+0x10/0x10 [ 380.153783][ T7652] ? psi_memstall_leave+0x1e1/0x2d0 [ 380.153809][ T7652] ? psi_memstall_leave+0x1e6/0x2d0 [ 380.153840][ T7652] __alloc_frozen_pages_noprof+0xea2/0x23f0 [ 380.153887][ T7652] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 380.153915][ T7652] ? find_held_lock+0x2b/0x80 [ 380.153943][ T7652] ? find_held_lock+0x2b/0x80 [ 380.153965][ T7652] ? aa_file_perm+0x28f/0x12e0 [ 380.153999][ T7652] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 380.154033][ T7652] ? policy_nodemask+0xea/0x4e0 [ 380.154063][ T7652] alloc_pages_mpol+0x1fb/0x550 [ 380.154087][ T7652] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 380.154108][ T7652] ? stack_trace_save+0x8e/0xc0 [ 380.154130][ T7652] ? __pfx_stack_trace_save+0x10/0x10 [ 380.154157][ T7652] ? qrtr_tun_write_iter+0xc1/0x1b0 [ 380.154178][ T7652] ___kmalloc_large_node+0xed/0x160 [ 380.154207][ T7652] ? qrtr_tun_write_iter+0xc1/0x1b0 [ 380.154227][ T7652] __kmalloc_large_node_noprof+0x1c/0x70 [ 380.154255][ T7652] __kmalloc_noprof.cold+0xc/0x61 [ 380.154281][ T7652] ? common_file_perm+0x1a9/0x340 [ 380.154308][ T7652] ? bpf_lsm_file_permission+0x9/0x10 [ 380.154343][ T7652] qrtr_tun_write_iter+0xc1/0x1b0 [ 380.154370][ T7652] aio_write+0x3b9/0x910 [ 380.154396][ T7652] ? __pfx_aio_write+0x10/0x10 [ 380.154418][ T7652] ? __lock_acquire+0xb97/0x1ce0 [ 380.154459][ T7652] ? __might_fault+0xe3/0x190 [ 380.154480][ T7652] ? __might_fault+0x13b/0x190 [ 380.154505][ T7652] ? io_submit_one+0x1243/0x1df0 [ 380.154527][ T7652] io_submit_one+0x1243/0x1df0 [ 380.154553][ T7652] ? __lock_acquire+0xb97/0x1ce0 [ 380.154583][ T7652] ? __pfx_io_submit_one+0x10/0x10 [ 380.154613][ T7652] ? __might_fault+0xe3/0x190 [ 380.154634][ T7652] ? __might_fault+0x13b/0x190 [ 380.154664][ T7652] ? __ia32_compat_sys_io_submit+0x1ad/0x3a0 [ 380.154690][ T7652] __ia32_compat_sys_io_submit+0x1ad/0x3a0 [ 380.154719][ T7652] ? __pfx___ia32_compat_sys_io_submit+0x10/0x10 [ 380.154753][ T7652] ? rcu_is_watching+0x12/0xc0 [ 380.154773][ T7652] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 380.154809][ T7652] __do_fast_syscall_32+0x7c/0x300 [ 380.154984][ T7652] do_fast_syscall_32+0x32/0x80 [ 380.155003][ T7652] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 380.155025][ T7652] RIP: 0023:0xf702e579 [ 380.155042][ T7652] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 380.155061][ T7652] RSP: 002b:00000000f541e55c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8 [ 380.155081][ T7652] RAX: ffffffffffffffda RBX: 00000000f7f1c000 RCX: 0000000000000001 [ 380.155095][ T7652] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000 [ 380.155108][ T7652] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 380.155119][ T7652] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 380.155130][ T7652] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 380.155155][ T7652] [ 380.155163][ T7652] Mem-Info: [ 380.168373][ T7655] Bluetooth: MGMT ver 1.23 [ 380.169736][ T7652] active_anon:719 inactive_anon:732 isolated_anon:0 [ 380.169736][ T7652] active_file:7880 inactive_file:3744 isolated_file:0 [ 380.169736][ T7652] unevictable:1743 dirty:232 writeback:0 [ 380.169736][ T7652] slab_reclaimable:6715 slab_unreclaimable:68900 [ 380.169736][ T7652] mapped:21921 shmem:1790 pagetables:1357 [ 380.169736][ T7652] sec_pagetables:337 bounce:0 [ 380.169736][ T7652] kernel_misc_reclaimable:0 [ 380.169736][ T7652] free:40761 free_pcp:380 free_cma:0 [ 380.421312][ T7652] Node 0 active_anon:1444kB inactive_anon:180kB active_file:5324kB inactive_file:0kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:2200kB dirty:68kB writeback:0kB shmem:3540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8172kB pagetables:1492kB sec_pagetables:1192kB all_unreclaimable? yes Balloon:0kB [ 380.439866][ T7652] Node 1 active_anon:2068kB inactive_anon:1088kB active_file:24380kB inactive_file:10056kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:85588kB dirty:916kB writeback:0kB shmem:3544kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5720kB pagetables:4432kB sec_pagetables:156kB all_unreclaimable? no Balloon:0kB [ 380.460037][ C3] vkms_vblank_simulate: vblank timer overrun [ 380.462933][ T7652] Node 0 DMA free:2260kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 380.476437][ T7652] lowmem_reserve[]: 0 288 288 288 288 [ 380.481612][ T7652] Node 0 DMA32 free:16448kB boost:0kB min:13220kB low:16524kB high:19828kB reserved_highatomic:0KB free_highatomic:0KB active_anon:1368kB inactive_anon:180kB active_file:5320kB inactive_file:0kB unevictable:3536kB writepending:68kB present:1032196kB managed:295084kB mlocked:0kB bounce:0kB free_pcp:1156kB local_pcp:32kB free_cma:0kB [ 380.494404][ T7652] lowmem_reserve[]: 0 0 0 0 0 [ 380.497224][ T7652] Node 1 DMA32 free:146320kB boost:0kB min:47140kB low:58924kB high:70708kB reserved_highatomic:0KB free_highatomic:0KB active_anon:2068kB inactive_anon:1088kB active_file:24380kB inactive_file:10056kB unevictable:3536kB writepending:916kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:4536kB local_pcp:688kB free_cma:0kB [ 380.513046][ T7652] lowmem_reserve[]: 0 0 0 0 0 [ 380.519021][ T7652] Node 0 DMA: 41*4kB (UM) 4*8kB (U) 5*16kB (UM) 8*32kB (UM) 1*64kB (M) 1*128kB (M) 0*256kB 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 2260kB [ 380.539918][ C3] vkms_vblank_simulate: vblank timer overrun [ 380.544400][ T7652] Node 0 DMA32: 114*4kB (U) 103*8kB (UME) 56*16kB (UME) 99*32kB (UME) 49*64kB (UME) 28*128kB (UME) 11*256kB (UM) 3*512kB (UME) 0*1024kB 0*2048kB 0*4096kB = 16416kB [ 380.557374][ T7652] Node 1 DMA32: 1759*4kB (UME) 1422*8kB (UME) 862*16kB (UME) 724*32kB (UME) 406*64kB (UME) 178*128kB (UME) 54*256kB (UME) 35*512kB (UM) 10*1024kB (UM) 0*2048kB 0*4096kB = 146124kB [ 380.578379][ T7652] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 380.603513][ T7652] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 380.607804][ T7652] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 380.613335][ T7652] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 380.618005][ T7652] 12626 total pagecache pages [ 380.620553][ T7652] 919 pages in swap cache [ 380.623313][ T7652] Free swap = 67704kB [ 380.625231][ T7652] Total swap = 124996kB [ 380.627587][ T7652] 524155 pages RAM [ 380.629294][ T7652] 0 pages HighMem/MovableOnly [ 380.632235][ T7652] 209489 pages reserved [ 380.634491][ T7652] 0 pages cma reserved [ 381.179529][ T7736] validate_nla: 42 callbacks suppressed [ 381.179546][ T7736] netlink: 'syz.0.16525': attribute type 1 has an invalid length. [ 381.266958][ T7747] netlink: 16 bytes leftover after parsing attributes in process `syz.2.16530'. [ 381.272167][ T7747] netlink: 16 bytes leftover after parsing attributes in process `syz.2.16530'. [ 381.337821][ T7760] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes. [ 381.470723][ T2294] kernel write not supported for file /vcs (pid: 2294 comm: kworker/0:2) [ 381.581540][ T40] kauditd_printk_skb: 3 callbacks suppressed [ 381.581558][ T40] audit: type=1800 audit(2000000142.625:815): pid=7782 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.3.16547" name="/newroot/3978/bus/#20027//deleted" dev="tmpfs" ino=20027 res=0 errno=0 [ 381.650160][ T7799] comedi comedi3: comedi_test: 20263 microvolt, 2 microsecond waveform attached [ 381.715453][ T7809] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16558'. [ 381.737819][ T7809] bridge0: entered promiscuous mode [ 381.752132][ T7809] bridge0: port 7(macvlan0) entered blocking state [ 381.755046][ T7809] bridge0: port 7(macvlan0) entered disabled state [ 381.766889][ T7809] macvlan0: entered allmulticast mode [ 381.769253][ T7809] bridge0: entered allmulticast mode [ 381.793119][ T7809] macvlan0: left allmulticast mode [ 381.797019][ T7809] bridge0: left allmulticast mode [ 381.802273][ T7809] bridge0: left promiscuous mode [ 381.873977][ T7821] netlink: 'syz.1.16563': attribute type 10 has an invalid length. [ 382.232290][ T7846] comedi comedi3: pcl711: I/O port conflict (0x4f27,16) [ 382.821478][ T7877] tipc: Started in network mode [ 382.824478][ T7877] tipc: Node identity 040000000000000006, cluster identity 4711 [ 383.173549][T23917] kernel write not supported for file /vcs (pid: 23917 comm: kworker/2:4) [ 383.346964][ T7937] [U] : [ 383.349241][ T7937] [U] [ 383.350475][ T7937] [U] [ 383.351648][ T7937] [U] [ 383.353523][ T7937] [U] [ 383.354699][ T7937] [U] [ 383.355871][ T7937] [U] [ 383.356995][ T7937] [U] [ 383.360945][ T7937] [U] [ 383.362421][ T7937] [U] [ 383.363958][ T7937] [U] [ 383.365443][ T7937] [U] [ 383.366868][ T7937] [U] [ 383.368114][ T7937] [U] [ 383.369210][ T7937] [U] [ 383.370352][ T7937] [U] [ 383.374498][ T7937] [U] [ 383.375724][ T7937] [U] [ 383.377225][ T7937] [U] [ 383.378370][ T7937] [U] [ 383.379475][ T7937] [U] [ 383.380877][ T7937] [U] [ 383.382071][ T7937] [U] [ 383.383330][ T7937] [U] [ 383.385822][ T7937] [U] [ 383.387217][ T7937] [U] [ 383.388498][ T7937] [U] [ 383.389944][ T7937] [U] [ 383.391136][ T7937] [U] [ 383.392324][ T7937] [U] [ 383.393513][ T7937] [U] [ 383.394734][ T7937] [U] [ 383.399621][ T7937] [U] [ 383.401713][ T7937] [U] [ 383.403294][ T7937] [U] [ 383.404515][ T7937] [U] [ 383.405717][ T7937] [U] [ 383.406766][ T7937] [U] [ 383.407988][ T7937] [U] [ 383.409216][ T7937] [U] [ 383.411542][ T7937] [U] [ 383.412602][ T7937] [U] [ 383.413830][ T7937] [U] [ 383.414980][ T7937] [U] [ 383.416143][ T7937] [U] [ 383.417314][ T7937] [U] [ 383.418506][ T7937] [U] [ 383.419858][ T7937] [U] [ 383.421528][ T7937] [U] [ 383.422879][ T7937] [U] [ 383.424206][ T7937] [U] [ 383.425630][ T7937] [U] [ 383.426981][ T7937] [U] [ 383.428247][ T7937] [U] [ 383.429445][ T7937] [U] [ 383.430642][ T7937] [U] [ 383.431932][ T6261] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 383.432068][ T7937] [U] [ 383.436260][ T7937] [U] [ 383.437311][ T7937] [U] [ 383.438476][ T7937] [U] [ 383.439942][ T7937] [U] [ 383.441220][ T7937] [U] [ 383.442386][ T7937] [U] [ 383.443465][ T7937] [U] [ 383.446375][ T7937] [U] [ 383.447676][ T7937] [U] [ 383.448886][ T7937] [U] [ 383.450103][ T7937] [U] [ 383.451813][ T7937] [U] [ 383.453245][ T7937] [U] [ 383.454690][ T7937] [U] [ 383.456009][ T7937] [U] [ 383.457700][ T7937] [U] [ 383.458980][ T7937] [U] [ 383.460190][ T7937] [U] [ 383.461383][ T7937] [U] [ 383.462731][ T7937] [U] [ 383.464121][ T7937] [U] [ 383.465557][ T7937] [U] [ 383.467177][ T7937] [U] [ 383.469712][ T7937] [U] [ 383.471043][ T7937] [U] [ 383.472294][ T7937] [U] [ 383.473531][ T7937] [U] [ 383.474869][ T7937] [U] [ 383.476350][ T7937] [U] [ 383.477624][ T7937] [U] [ 383.478879][ T7937] [U] [ 383.480309][ T7937] [U] [ 383.481678][ T7937] [U] [ 383.482811][ T7937] [U] [ 383.484043][ T7937] [U] [ 383.485288][ T7937] [U] [ 383.486646][ T7937] [U] [ 383.487906][ T7937] [U] [ 383.489245][ T7937] [U] [ 383.490970][ T7937] [U] [ 383.492353][ T7937] [U] [ 383.493990][ T7937] [U] [ 383.495251][ T7937] [U] [ 383.496411][ T7937] [U] [ 383.497692][ T7937] [U] [ 383.498850][ T7937] [U] [ 383.500184][ T7937] [U] [ 383.505149][ T7937] [U] [ 383.509929][ T7937] [U] [ 383.511509][ T7937] [U] [ 383.513016][ T7937] [U] [ 383.514338][ T7937] [U] [ 383.516020][ T7937] [U] [ 383.517379][ T7937] [U] [ 383.518655][ T7937] [U] [ 383.520954][ T7937] [U] [ 383.522375][ T7937] [U] [ 383.523721][ T7937] [U] [ 383.525548][ T7937] [U] [ 383.527316][ T7937] [U] [ 383.529084][ T7937] [U] [ 383.529122][ T7937] [U] [ 383.529157][ T7937] [U] [ 383.529486][ T7937] [U] [ 383.529525][ T7937] [U] [ 383.529561][ T7937] [U] [ 383.530269][ T7937] [U] [ 383.552122][ T2294] kernel write not supported for file /vcs (pid: 2294 comm: kworker/0:2) [ 383.554099][ T7937] [U] [ 383.567337][ T7937] [U] [ 383.568729][ T7937] [U] [ 383.579184][ T7954] nbd: must specify a size in bytes for the device [ 383.582064][ T7936] [U] [ 383.606874][ T6261] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 383.625916][ T6261] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 383.631315][ T6261] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 383.638526][ T6261] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 383.652454][ T7925] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 383.668100][ T6261] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 383.863088][ T6261] usb 7-1: USB disconnect, device number 9 [ 384.085776][ T6259] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 384.247293][ T6259] usb 5-1: Using ep0 maxpacket: 16 [ 384.253480][ T6259] usb 5-1: config 0 has an invalid interface number: 8 but max is 0 [ 384.262032][ T6259] usb 5-1: config 0 has no interface number 0 [ 384.282541][ T6259] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 384.287240][ T6259] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 384.293260][ T6259] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 384.302604][ T6259] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 384.306350][ T6259] usb 5-1: Product: syz [ 384.308073][ T6259] usb 5-1: SerialNumber: syz [ 384.311598][ T6259] usb 5-1: config 0 descriptor?? [ 384.319933][ T6259] cm109 5-1:0.8: invalid payload size 0, expected 4 [ 384.327471][ T6259] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.8/input/input40 [ 384.333206][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 384.522234][ C3] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 384.522383][ T2294] usb 5-1: USB disconnect, device number 8 [ 384.525945][ C3] cm109 5-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 384.537413][ T7987] netlink: 12 bytes leftover after parsing attributes in process `syz.1.16642'. [ 384.570761][ T2294] cm109 5-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 384.713865][ T7984] syz.2.16641 (7984): drop_caches: 1 [ 384.738802][ T7984] syz.2.16641 (7984): drop_caches: 1 [ 384.950853][ T7997] tmpfs: Cannot disable swap on remount [ 385.104665][ T8001] netlink: 56 bytes leftover after parsing attributes in process `syz.0.16650'. [ 385.560926][ T8017] comedi comedi3: pcmda12: I/O port conflict (0x4f27,16) [ 385.775993][ T8028] netlink: 24 bytes leftover after parsing attributes in process `syz.0.16662'. [ 385.853798][ T8033] wireguard: wg2: Could not create IPv4 socket [ 386.021233][ T8045] tmpfs: Cannot disable swap on remount [ 386.350429][ T8065] netlink: 40 bytes leftover after parsing attributes in process `syz.0.16681'. [ 386.528577][ T8081] binder: 8080:8081 unknown command 176 [ 386.531105][ T8081] binder: 8080:8081 ioctl c0306201 800001c0 returned -22 [ 386.604921][ T8085] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16691'. [ 386.608020][ T8085] netlink: 12 bytes leftover after parsing attributes in process `syz.1.16691'. [ 386.613024][ T8085] netlink: 'syz.1.16691': attribute type 20 has an invalid length. [ 387.069193][ T40] audit: type=1326 audit(2000000148.389:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8113 comm="syz.0.16703" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x0 [ 387.309275][ T8130] sg_write: data in/out 41084/1 bytes for SCSI command 0x1c-- guessing data in; [ 387.309275][ T8130] program syz.3.16710 not setting count and/or reply_len properly [ 387.376010][ T8132] sp0: Synchronizing with TNC [ 387.399533][ T8131] [U] ` [ 388.256132][ T8158] Bluetooth: MGMT ver 1.23 [ 388.443228][ T8172] comedi comedi3: aio_iiro_16: I/O port conflict (0x4f27,8) [ 388.670815][ T8194] netlink: 76 bytes leftover after parsing attributes in process `syz.2.16741'. [ 388.731920][ T8202] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 388.959174][ T8222] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16755'. [ 389.275333][ T8235] netlink: 32 bytes leftover after parsing attributes in process `syz.2.16760'. [ 389.418757][ T8243] autofs: Bad value for 'fd' [ 389.799812][ T8291] overlay: ./file0 is not a directory [ 389.997185][ T8314] mkiss: ax0: crc mode is auto. [ 390.214564][ T8326] netlink: 212 bytes leftover after parsing attributes in process `syz.1.16798'. [ 390.249156][ T8330] can0: slcan on ptm0. [ 390.319419][ T8338] netlink: 'syz.3.16804': attribute type 5 has an invalid length. [ 390.399797][ T8328] can0 (unregistered): slcan off ptm0. [ 390.451822][ T8348] netlink: 16 bytes leftover after parsing attributes in process `syz.3.16808'. [ 390.550726][ T8361] overlayfs: conflicting lowerdir path [ 390.657942][ T8376] netlink: 'syz.0.16820': attribute type 11 has an invalid length. [ 392.211917][ T40] audit: type=1326 audit(2000000153.774:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8516 comm="syz.2.16884" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 392.233185][ T40] audit: type=1326 audit(2000000153.774:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8516 comm="syz.2.16884" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 392.243521][ T40] audit: type=1326 audit(2000000153.806:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8516 comm="syz.2.16884" exe="/syz-executor" sig=0 arch=40000003 syscall=332 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 392.255767][ T40] audit: type=1326 audit(2000000153.806:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8516 comm="syz.2.16884" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 392.289331][ T40] audit: type=1326 audit(2000000153.806:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8516 comm="syz.2.16884" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 392.298903][ T40] audit: type=1326 audit(2000000153.806:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8516 comm="syz.2.16884" exe="/syz-executor" sig=0 arch=40000003 syscall=292 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 392.311180][ T40] audit: type=1326 audit(2000000153.806:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8516 comm="syz.2.16884" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 392.335050][ T40] audit: type=1326 audit(2000000153.806:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8516 comm="syz.2.16884" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 392.357299][ C0] vkms_vblank_simulate: vblank timer overrun [ 393.525167][ T8621] Bluetooth: MGMT ver 1.23 [ 393.948753][ T8665] ipvlan2: entered promiscuous mode [ 394.455022][ T8715] binder: 8713:8715 ioctl 541b 0 returned -22 [ 394.647271][ T8728] sg_write: process 8759 (syz.0.16982) changed security contexts after opening file descriptor, this is not allowed. [ 395.324295][ T8801] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4) [ 395.327362][ T8801] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 395.333942][ T8801] vhci_hcd vhci_hcd.0: Device attached [ 395.348776][ T8802] vhci_hcd: connection closed [ 395.351439][ T594] vhci_hcd: stop threads [ 395.357033][ T594] vhci_hcd: release socket [ 395.359642][ T594] vhci_hcd: disconnect device [ 395.376444][ T8807] netlink: 'syz.0.17016': attribute type 6 has an invalid length. [ 397.036247][ T8876] sp0: Synchronizing with TNC [ 397.499249][ T8927] random: crng reseeded on system resumption [ 397.542947][ T8932] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present [ 398.144153][ T8998] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17108'. [ 398.144969][ T8998] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17108'. [ 398.298822][ T9014] netlink: 8 bytes leftover after parsing attributes in process `syz.2.17115'. [ 398.332092][ T40] audit: type=1326 audit(2000000160.209:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9016 comm="syz.3.17118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 398.342479][ T40] audit: type=1326 audit(2000000160.209:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9016 comm="syz.3.17118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 398.353617][ T40] audit: type=1326 audit(2000000160.209:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9016 comm="syz.3.17118" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 398.362248][ T40] audit: type=1326 audit(2000000160.209:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9016 comm="syz.3.17118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 398.375644][ T40] audit: type=1326 audit(2000000160.209:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9016 comm="syz.3.17118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 398.384540][ T40] audit: type=1326 audit(2000000160.209:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9016 comm="syz.3.17118" exe="/syz-executor" sig=0 arch=40000003 syscall=52 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 398.396186][ T40] audit: type=1326 audit(2000000160.241:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9016 comm="syz.3.17118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 398.407413][ T40] audit: type=1326 audit(2000000160.241:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9016 comm="syz.3.17118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 398.459020][ T9034] netlink: 32 bytes leftover after parsing attributes in process `syz.1.17125'. [ 398.665007][ T6259] kernel write not supported for file /sg0 (pid: 6259 comm: kworker/3:3) [ 398.690138][ T9061] netlink: 'syz.2.17137': attribute type 1 has an invalid length. [ 399.330728][ T9119] netlink: 'syz.2.17166': attribute type 2 has an invalid length. [ 399.900106][ T9160] comedi comedi3: pcl711: I/O port conflict (0x4f27,16) [ 399.906899][ T9162] netlink: 'syz.3.17187': attribute type 2 has an invalid length. [ 400.699372][ T9225] macsec0: entered promiscuous mode [ 400.703487][ T9225] macsec0: entered allmulticast mode [ 400.785809][ T9234] netlink: 44 bytes leftover after parsing attributes in process `syz.3.17222'. [ 400.790511][ T9234] netlink: 84 bytes leftover after parsing attributes in process `syz.3.17222'. [ 400.953715][ T40] audit: type=1326 audit(2000000162.949:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9247 comm="syz.1.17232" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 400.986592][ T40] audit: type=1326 audit(2000000162.970:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9247 comm="syz.1.17232" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 401.123168][ T9259] tmpfs: Bad value for 'usrquota_block_hardlimit' [ 401.346369][ T9276] netlink: 8 bytes leftover after parsing attributes in process `syz.2.17245'. [ 401.401714][ T9282] comedi comedi3: das16m1: I/O port conflict (0x4f27,16) [ 401.626614][ T9307] netlink: 12 bytes leftover after parsing attributes in process `syz.3.17258'. [ 401.634802][ T9307] netlink: 'syz.3.17258': attribute type 1 has an invalid length. [ 401.656017][ T9307] netlink: 28 bytes leftover after parsing attributes in process `syz.3.17258'. [ 401.661864][ T9311] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 401.813711][ T9325] netlink: 4 bytes leftover after parsing attributes in process `syz.3.17268'. [ 401.942442][ T9338] veth1_macvtap: left allmulticast mode [ 401.945528][ T9338] veth1_macvtap: left promiscuous mode [ 401.953528][ T9338] veth1_macvtap: entered promiscuous mode [ 401.956745][ T9338] veth1_macvtap: entered allmulticast mode [ 401.960181][ T9338] macsec0: left promiscuous mode [ 401.972300][ T9338] macsec0: left allmulticast mode [ 401.974432][ T9338] veth1_macvtap: left allmulticast mode [ 402.133782][ T9360] tipc: Started in network mode [ 402.136231][ T9360] tipc: Node identity aaaaaaaaaa3, cluster identity 4711 [ 402.140195][ T9360] tipc: Enabled bearer , priority 10 [ 402.184660][ T9362] xt_time: unknown flags 0xf4 [ 402.395960][ T9376] xt_socket: unknown flags 0x50 [ 402.525736][ T9394] fuse: Invalid rootmode [ 402.697750][ T9406] nbd: socks must be embedded in a SOCK_ITEM attr [ 402.978912][ T9423] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17314'. [ 403.100549][ T6261] tipc: Node number set to 10136234 [ 403.258650][ T9441] netlink: 12 bytes leftover after parsing attributes in process `syz.1.17319'. [ 403.263391][ T9441] netlink: 'syz.1.17319': attribute type 1 has an invalid length. [ 403.266666][ T9441] netlink: 28 bytes leftover after parsing attributes in process `syz.1.17319'. [ 403.455246][ T40] kauditd_printk_skb: 11 callbacks suppressed [ 403.455263][ T40] audit: type=1400 audit(2000000165.584:846): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name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usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 404.123455][ T9506] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 404.242321][ T9516] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17354'. [ 404.298326][ T6261] usb 5-1: Using ep0 maxpacket: 32 [ 404.330436][ T6261] usb 5-1: config index 0 descriptor too short (expected 35577, got 27) [ 404.334203][ T6261] usb 5-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 404.355246][ T6261] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 404.360310][ T6261] usb 5-1: config 1 has no interface number 0 [ 404.364023][ T6261] usb 5-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 404.384166][ T6261] usb 5-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 404.390024][ T6261] usb 5-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 404.403438][ T6261] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 404.429928][ T9526] can0: slcan on ttyS3. [ 404.456709][ T6261] snd_usb_pod 5-1:1.1: Line 6 Pocket POD found [ 404.538261][ T9525] can0 (unregistered): slcan off ttyS3. [ 404.976452][ T9562] netlink: 4 bytes leftover after parsing attributes in process `syz.2.17377'. [ 405.009247][ T6261] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now attached [ 405.069541][ T9569] sp0: Synchronizing with TNC [ 405.220914][ T6263] usb 5-1: USB disconnect, device number 9 [ 405.232335][ T6263] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now disconnected [ 406.529224][ T54] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 407.612970][ T9672] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 407.617220][ T9672] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 407.627543][ T9672] vhci_hcd vhci_hcd.0: Device attached [ 407.804396][ T54] vhci_hcd: vhci_device speed not set [ 407.871463][ T54] usb 39-1: new high-speed USB device number 3 using vhci_hcd [ 407.880044][ T6261] usb 6-1: new low-speed USB device number 11 using dummy_hcd [ 408.035076][ T6261] usb 6-1: config 0 has no interfaces? [ 408.038300][ T6261] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 408.049776][ T6261] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 408.061977][ T6261] usb 6-1: config 0 descriptor?? [ 408.080671][ T9723] netlink: 8 bytes leftover after parsing attributes in process `syz.2.17438'. [ 408.211142][ T9733] comedi comedi3: das16m1: I/O port conflict (0x4f27,16) [ 408.267103][ T9674] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 2 [ 408.280735][ T2294] usb 6-1: USB disconnect, device number 11 [ 408.295227][T32341] vhci_hcd: stop threads [ 408.297054][T19069] kernel write not supported for file /media3 (pid: 19069 comm: kworker/3:5) [ 408.297915][T32341] vhci_hcd: release socket [ 408.306586][T32341] vhci_hcd: disconnect device [ 408.812806][ T9772] netlink: 24 bytes leftover after parsing attributes in process `syz.3.17462'. [ 408.885774][ T9779] mkiss: ax0: crc mode is auto. [ 408.960599][ T9782] bridge0: port 2(bridge_slave_1) entered disabled state [ 409.094189][ T9796] IPVS: sync thread started: state = BACKUP, mcast_ifn = geneve0, syncid = 2, id = 0 [ 409.100245][ T9797] IPVS: sync thread started: state = BACKUP, mcast_ifn = geneve0, syncid = 2, id = 1 [ 409.102478][ T9798] IPVS: sync thread started: state = BACKUP, mcast_ifn = geneve0, syncid = 2, id = 2 [ 409.110211][ T9799] IPVS: sync thread started: state = BACKUP, mcast_ifn = geneve0, syncid = 2, id = 3 [ 409.144250][ T9803] netlink: 24 bytes leftover after parsing attributes in process `syz.0.17475'. [ 409.151632][ T9805] ucma_write: process 8520 (syz.3.17476) changed security contexts after opening file descriptor, this is not allowed. [ 409.292385][ T9824] 9pnet_virtio: no channels available for device 3$~VP [ 409.342018][ T9830] netlink: 'syz.1.17494': attribute type 83 has an invalid length. [ 409.505229][ T9847] netlink: 32 bytes leftover after parsing attributes in process `syz.0.17492'. [ 409.509907][ T9847] netlink: 'syz.0.17492': attribute type 3 has an invalid length. [ 409.563965][ T9852] vivid-007: disconnect [ 409.570082][ T9848] vivid-007: reconnect [ 409.788891][ T9875] program syz.1.17505 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 410.053743][ T9890] comedi comedi3: aio_iiro_16: I/O port conflict (0x4f27,8) [ 410.070716][ T9892] netlink: 'syz.1.17512': attribute type 1 has an invalid length. [ 410.303557][ T9912] IPVS: persistence engine module ip_vs_pe_s not found [ 410.753775][ T9943] netlink: 'syz.1.17531': attribute type 2 has an invalid length. [ 410.757780][ T9943] netlink: 784 bytes leftover after parsing attributes in process `syz.1.17531'. [ 410.808134][ T9947] comedi comedi3: pcm3724: I/O port conflict (0x5,16) [ 411.262072][ T9981] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 411.491442][T23917] usb 6-1: new low-speed USB device number 12 using dummy_hcd [ 411.498683][T10007] binder: 10006:10007 ioctl c0306201 0 returned -14 [ 411.588328][ T40] audit: type=1326 audit(2000000174.119:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10013 comm="syz.2.17568" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 411.599173][ T40] audit: type=1326 audit(2000000174.119:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10013 comm="syz.2.17568" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 411.609451][ T40] audit: type=1326 audit(2000000174.119:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10013 comm="syz.2.17568" exe="/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 411.620326][ T40] audit: type=1326 audit(2000000174.119:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10013 comm="syz.2.17568" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 411.633619][ T40] audit: type=1326 audit(2000000174.119:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10013 comm="syz.2.17568" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 411.636194][T23917] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 411.644322][ T40] audit: type=1326 audit(2000000174.119:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10013 comm="syz.2.17568" exe="/syz-executor" sig=0 arch=40000003 syscall=106 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 411.647905][T23917] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 411.659195][ T40] audit: type=1326 audit(2000000174.119:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10013 comm="syz.2.17568" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 411.666220][T23917] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 411.676769][ T40] audit: type=1326 audit(2000000174.119:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10013 comm="syz.2.17568" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 411.699268][T23917] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 411.704795][T23917] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 411.713056][T23917] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 411.716078][T23917] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 411.722444][T23917] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 411.727581][T23917] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 411.732569][T23917] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 411.739462][T23917] usb 6-1: config 168 descriptor has 1 excess byte, ignoring [ 411.746807][T23917] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 411.751915][T23917] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 411.756754][T23917] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 411.763901][T23917] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 411.772866][T23917] usb 6-1: string descriptor 0 read error: -22 [ 411.775515][T23917] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 411.779313][T23917] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 411.793576][T23917] adutux 6-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 411.854851][T10029] fuse: blksize only supported for fuseblk [ 412.576695][T10054] netlink: 12 bytes leftover after parsing attributes in process `syz.3.17587'. [ 412.741411][ T54] vhci_hcd: vhci_device speed not set [ 413.270355][T10102] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 413.274386][T10102] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 413.281759][T10102] vhci_hcd vhci_hcd.0: Device attached [ 413.462304][T19069] vhci_hcd: vhci_device speed not set [ 413.535455][T19069] usb 41-1: new high-speed USB device number 2 using vhci_hcd [ 413.538797][ T6259] usb 7-1: new low-speed USB device number 10 using dummy_hcd [ 413.694189][ T6259] usb 7-1: config 0 has no interfaces? [ 413.696554][ T6259] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 413.700646][ T6259] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 413.707010][ T6259] usb 7-1: config 0 descriptor?? [ 413.909414][T10103] vhci_hcd: connection closed [ 413.910061][ T54] usb 7-1: USB disconnect, device number 10 [ 413.911785][ T88] vhci_hcd: stop threads [ 413.916702][ T88] vhci_hcd: release socket [ 413.918787][ T88] vhci_hcd: disconnect device [ 413.969154][T19069] vhci_hcd: vhci_device speed not set [ 415.958591][ T2294] usb 6-1: USB disconnect, device number 12 [ 416.325843][ T40] audit: type=1326 audit(2000000179.095:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10144 comm="syz.1.17622" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 416.345389][ T40] audit: type=1326 audit(2000000179.106:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10144 comm="syz.1.17622" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 416.359302][ T40] audit: type=1326 audit(2000000179.137:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10144 comm="syz.1.17622" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 416.372447][ T40] audit: type=1326 audit(2000000179.137:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10144 comm="syz.1.17622" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 416.386119][ T40] audit: type=1326 audit(2000000179.137:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10144 comm="syz.1.17622" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 416.397114][ T40] audit: type=1326 audit(2000000179.137:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10144 comm="syz.1.17622" exe="/syz-executor" sig=0 arch=40000003 syscall=236 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 416.407012][ T40] audit: type=1326 audit(2000000179.137:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10144 comm="syz.1.17622" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 416.422756][ T40] audit: type=1326 audit(2000000179.137:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10144 comm="syz.1.17622" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 416.566604][T10155] netlink: 'syz.1.17629': attribute type 5 has an invalid length. [ 416.703173][T10167] tmpfs: Bad value for 'nr_blocks' [ 416.930127][T10196] support for the xor transformation has been removed. [ 417.040148][T10209] IPVS: ip_vs_edit_dest(): lower threshold is higher than upper threshold [ 417.099425][T10217] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17658'. [ 417.211414][T10231] 9pnet_rdma: rdma_create_trans (10231): problem binding to privport: 13 [ 417.267068][T10237] [U] [ 417.268854][T10237] [U] [ 417.270110][T10237] [U] [ 417.271270][T10237] [U] [ 417.273116][T10237] [U] [ 417.274357][T10237] [U] [ 417.275634][T10237] [U] [ 417.276989][T10237] [U] [ 417.278522][T10237] [U] [ 417.279843][T10237] [U] [ 417.280982][T10237] [U] [ 417.282113][T10237] [U] [ 417.283707][T10237] [U] [ 417.284951][T10237] [U] [ 417.286288][T10237] [U] [ 417.287715][T10237] [U] [ 417.289145][T10237] [U] [ 417.290327][T10237] [U] [ 417.291466][T10237] [U] [ 417.292514][T10237] [U] [ 417.293844][T10237] [U] [ 417.298988][T10237] [U] [ 417.300151][T10237] [U] [ 417.301638][T10237] [U] [ 417.303258][T10237] [U] [ 417.304806][T10237] [U] [ 417.306325][T10237] [U] [ 417.307655][T10237] [U] [ 417.308927][T10237] [U] [ 417.310057][T10237] [U] [ 417.311505][T10237] [U] [ 417.312770][T10237] [U] [ 417.314407][T10237] [U] [ 417.315743][T10237] [U] [ 417.317977][T10237] [U] [ 417.319185][T10237] [U] [ 417.320673][T10237] [U] [ 417.322116][T10237] [U] [ 417.323403][T10237] [U] [ 417.324655][T10237] [U] [ 417.326030][T10237] [U] [ 417.327295][T10237] [U] [ 417.328626][T10237] [U] [ 417.329991][T10237] [U] [ 417.331408][T10237] [U] [ 417.332634][T10237] [U] [ 417.333842][T10237] [U] [ 417.335420][T10237] [U] [ 417.336787][T10237] [U] [ 417.338390][T10237] [U] [ 417.339746][T10237] [U] [ 417.341126][T10237] [U] [ 417.342649][T10237] [U] [ 417.343968][T10237] [U] [ 417.345377][T10237] [U] [ 417.346751][T10237] [U] [ 417.348033][T10237] [U] [ 417.348984][T10237] [U] [ 417.350413][T10237] [U] [ 417.351616][T10237] [U] [ 417.353119][T10237] [U] [ 417.354500][T10237] [U] [ 417.355901][T10237] [U] [ 417.357288][T10237] [U] [ 417.359031][T10237] [U] [ 417.360306][T10237] [U] [ 417.361549][T10237] [U] [ 417.362715][T10237] [U] [ 417.364058][T10237] [U] [ 417.365320][T10237] [U] [ 417.366518][T10237] [U] [ 417.367721][T10237] [U] [ 417.369182][T10237] [U] [ 417.370520][T10237] [U] [ 417.372132][T10237] [U] [ 417.373994][T10237] [U] [ 417.375797][T10237] [U] [ 417.377329][T10237] [U] [ 417.378548][T10237] [U] [ 417.379388][T10237] [U] [ 417.380555][T10237] [U] [ 417.381673][T10237] [U] [ 417.382759][T10237] [U] [ 417.383957][T10237] [U] [ 417.385419][T10237] [U] [ 417.386895][T10237] [U] [ 417.388351][T10237] [U] [ 417.389630][T10237] [U] [ 417.391177][T10237] [U] [ 417.392718][T10237] [U] [ 417.393951][T10237] [U] [ 417.395148][T10237] [U] [ 417.396603][T10237] [U] [ 417.398040][T10237] [U] [ 417.399582][T10237] [U] [ 417.401289][T10237] [U] [ 417.403283][T10237] [U] [ 417.404841][T10237] [U] [ 417.406420][T10237] [U] [ 417.407685][T10237] [U] [ 417.409710][T10237] [U] [ 417.410916][T10237] [U] [ 417.412041][T10237] [U] [ 417.413193][T10237] [U] [ 417.414423][T10237] [U] [ 417.415582][T10237] [U] [ 417.417098][T10237] [U] [ 417.418188][T10237] [U] [ 417.420668][T10237] [U] [ 417.421883][T10237] [U] [ 417.423237][T10237] [U] [ 417.425037][T10237] [U] [ 417.427262][T10237] [U] [ 417.428790][T10237] [U] [ 417.430704][T10237] [U] [ 417.431848][T10237] [U] [ 417.433578][T10237] [U] [ 417.434940][T10237] [U] [ 417.436168][T10237] [U] [ 417.437410][T10237] [U] [ 417.439327][T10237] [U] [ 417.440634][T10237] [U] [ 417.441802][T10237] [U] [ 417.442944][T10237] [U] [ 417.444668][T10237] [U] [ 417.445929][T10237] [U] [ 417.447172][T10237] [U] [ 417.486836][T10234] [U] [ 417.601563][T10269] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17681'. [ 417.683128][ T2294] usb 5-1: new full-speed USB device number 10 using dummy_hcd [ 417.728799][T10279] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17686'. [ 417.733307][T10279] openvswitch: netlink: nsh attribute has 2338 unknown bytes. [ 417.736926][T10279] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 417.761847][T10281] Bluetooth: MGMT ver 1.23 [ 417.836825][ T2294] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 417.843545][ T2294] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 417.851775][ T2294] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8 [ 417.856995][ T2294] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 417.865717][ T2294] usb 5-1: config 0 descriptor?? [ 417.870657][ T2294] dvb-usb: found a 'Artec T1 USB2.0' in warm state. [ 417.874079][ T2294] dvb-usb: bulk message failed: -22 (3/0) [ 417.895634][ T2294] dvb-usb: will use the device's hardware PID filter (table count: 16). [ 417.901588][ T2294] dvbdev: DVB: registering new adapter (Artec T1 USB2.0) [ 417.905009][ T2294] usb 5-1: media controller created [ 417.912983][ T2294] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 417.926634][ T2294] dvb-usb: bulk message failed: -22 (6/0) [ 417.934664][ T2294] dvb-usb: no frontend was attached by 'Artec T1 USB2.0' [ 417.944369][ T2294] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb5/5-1/input/input45 [ 417.954075][ T2294] dvb-usb: schedule remote query interval to 150 msecs. [ 417.958249][ T2294] dvb-usb: Artec T1 USB2.0 successfully initialized and connected. [ 418.001485][ T40] audit: type=1326 audit(2000000180.859:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10299 comm="syz.2.17697" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x0 [ 418.070496][ T2294] usb 5-1: USB disconnect, device number 10 [ 418.174540][ T2294] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected. [ 418.322881][T10331] comedi comedi3: das16m1: I/O port conflict (0x4f27,16) [ 418.853511][T10375] bond0: (slave macsec1): Error -34 calling dev_set_mtu [ 418.901494][ T29] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 419.063602][ T29] usb 5-1: Using ep0 maxpacket: 16 [ 419.072522][ T29] usb 5-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 419.078794][ T29] usb 5-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 419.082413][ T29] usb 5-1: Product: syz [ 419.084383][ T29] usb 5-1: Manufacturer: syz [ 419.086358][ T29] usb 5-1: SerialNumber: syz [ 419.094296][ T29] usb 5-1: config 0 descriptor?? [ 419.303125][ T29] usb 5-1: USB disconnect, device number 11 [ 419.472769][T10425] netlink: 8 bytes leftover after parsing attributes in process `syz.2.17757'. [ 419.665356][T10433] netlink: 16 bytes leftover after parsing attributes in process `syz.1.17761'. [ 419.953087][T10458] netlink: 28 bytes leftover after parsing attributes in process `syz.1.17773'. [ 419.957262][T10458] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17773'. [ 420.067160][T10468] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17778'. [ 420.120390][T10470] program syz.3.17779 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 420.220913][T10475] comedi comedi3: mpc624: I/O port conflict (0x4f27,16) [ 420.879187][T10541] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17813'. [ 420.970016][T10547] ntfs3(loop1): try to read out of volume at offset 0x0 [ 421.307165][ T40] audit: type=1326 audit(2000000184.323:864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10570 comm="syz.0.17828" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 421.318170][ T40] audit: type=1326 audit(2000000184.323:865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10570 comm="syz.0.17828" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 421.327054][T10573] trusted_key: encrypted_key: key trusted:syz not found [ 421.331344][ T40] audit: type=1326 audit(2000000184.323:866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10570 comm="syz.0.17828" exe="/syz-executor" sig=0 arch=40000003 syscall=428 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 421.359339][ T40] audit: type=1326 audit(2000000184.323:867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10570 comm="syz.0.17828" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 421.369922][ T40] audit: type=1326 audit(2000000184.323:868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10570 comm="syz.0.17828" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 421.380843][ T40] audit: type=1326 audit(2000000184.323:869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10570 comm="syz.0.17828" exe="/syz-executor" sig=0 arch=40000003 syscall=442 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 421.393005][ T40] audit: type=1326 audit(2000000184.334:870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10570 comm="syz.0.17828" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 421.409368][ T40] audit: type=1326 audit(2000000184.334:871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10570 comm="syz.0.17828" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 421.467326][T10582] netlink: 4 bytes leftover after parsing attributes in process `syz.1.17833'. [ 421.728661][T10605] [U]  [ 422.043781][T10636] __nla_validate_parse: 2 callbacks suppressed [ 422.043799][T10636] netlink: 36 bytes leftover after parsing attributes in process `syz.1.17859'. [ 422.479153][ T40] audit: type=1326 audit(2000000185.552:872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10678 comm="syz.0.17880" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf702e579 code=0x0 [ 422.600902][T10690] netlink: 'syz.1.17884': attribute type 9 has an invalid length. [ 422.604776][T10690] netlink: 212384 bytes leftover after parsing attributes in process `syz.1.17884'. [ 422.611965][T10690] openvswitch: netlink: Message has 5 unknown bytes. [ 423.034231][ T40] audit: type=1326 audit(2000000186.140:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10714 comm="syz.1.17895" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000 [ 424.917296][T10816] program syz.3.17941 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 424.953192][T10818] tipc: Enabling of bearer rejected, media not registered [ 425.036198][ T29] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 425.178523][ T29] usb 5-1: Using ep0 maxpacket: 32 [ 425.184071][ T29] usb 5-1: config 0 has an invalid interface number: 247 but max is 0 [ 425.187613][ T29] usb 5-1: config 0 has no interface number 0 [ 425.195158][ T29] usb 5-1: New USB device found, idVendor=1d50, idProduct=60c6, bcdDevice=62.9b [ 425.200158][ T29] usb 5-1: New USB device strings: Mfr=1, Product=3, SerialNumber=0 [ 425.203625][ T29] usb 5-1: Product: syz [ 425.205448][ T29] usb 5-1: Manufacturer: syz [ 425.211967][ T29] usb 5-1: config 0 descriptor?? [ 425.326880][T10829] tipc: Started in network mode [ 425.329765][T10829] tipc: Node identity , cluster identity 3865 [ 425.334309][T10829] tipc: Failed to obtain node identity [ 425.336787][T10829] tipc: Enabling of bearer rejected, failed to enable media [ 425.437741][T10841] netlink: 'syz.2.17955': attribute type 5 has an invalid length. [ 425.448265][T10843] tmpfs: Bad value for 'nr_blocks' [ 425.572105][T10858] support for the xor transformation has been removed. [ 426.175538][T10902] 9pnet_rdma: rdma_create_trans (10902): problem binding to privport: 13 [ 426.233365][T19069] IPVS: starting estimator thread 0... [ 426.233921][T10910] IPVS: ip_vs_edit_dest(): lower threshold is higher than upper threshold [ 426.241635][T10913] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17995'. [ 426.321595][T10912] IPVS: using max 26 ests per chain, 62400 per kthread [ 426.482618][ T841] usb 5-1: USB disconnect, device number 12 [ 427.461346][T10999] netlink: 'syz.3.18023': attribute type 11 has an invalid length. [ 427.576871][T11011] netlink: 32 bytes leftover after parsing attributes in process `syz.3.18031'. [ 427.943967][T11052] netlink: 4 bytes leftover after parsing attributes in process `syz.2.18051'. [ 427.943981][T11053] netlink: 'syz.3.18049': attribute type 3 has an invalid length. [ 427.944001][T11053] netlink: 'syz.3.18049': attribute type 1 has an invalid length. [ 427.955299][T11053] netlink: 193500 bytes leftover after parsing attributes in process `syz.3.18049'. [ 428.027295][ T40] kauditd_printk_skb: 12 callbacks suppressed [ 428.027312][ T40] audit: type=1800 audit(2000000191.389:886): pid=11059 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.18054" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0 [ 428.174850][T11073] pim6reg: entered allmulticast mode [ 428.187599][T11073] pim6reg: left allmulticast mode [ 428.217271][T11081] netlink: 40 bytes leftover after parsing attributes in process `syz.0.18065'. [ 428.242745][ T1417] ieee802154 phy1 wpan1: encryption failed: -22 [ 428.294696][T11088] sch_fq: defrate 4294967295 ignored. [ 429.283684][T11189] devtmpfs: Too small a size for current use [ 429.357669][T11196] netlink: 4 bytes leftover after parsing attributes in process `syz.2.18121'. [ 429.565911][T11213] sch_fq: defrate 4294967295 ignored. [ 429.712290][T11223] devpts: Bad value for 'max' [ 429.756525][T11227] usb usb8: usbfs: process 11227 (syz.1.18133) did not claim interface 0 before use [ 429.934650][T11239] sch_fq: defrate 4294967295 ignored. [ 430.775065][ T40] audit: type=1326 audit(2000000194.265:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11291 comm="syz.1.18165" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf706e579 code=0x0 [ 430.908516][T11302] trusted_key: encrypted_key: key trusted:syz not found [ 431.184430][T11328] netlink: 12 bytes leftover after parsing attributes in process `syz.2.18182'. [ 431.639652][T11371] usb usb8: usbfs: process 11371 (syz.0.18201) did not claim interface 0 before use [ 431.768438][T11384] netlink: 'syz.2.18208': attribute type 9 has an invalid length. [ 431.772001][T11384] netlink: 212384 bytes leftover after parsing attributes in process `syz.2.18208'. [ 431.776234][T11384] openvswitch: netlink: Message has 5 unknown bytes. [ 432.114948][T11409] netlink: 16215 bytes leftover after parsing attributes in process `syz.0.18228'. [ 432.241355][T11420] netlink: 'syz.0.18224': attribute type 7 has an invalid length. [ 432.245900][T11420] netlink: 'syz.0.18224': attribute type 8 has an invalid length. [ 432.604889][T11456] netlink: 128 bytes leftover after parsing attributes in process `syz.0.18239'. [ 432.629566][T11456] netlink: 8 bytes leftover after parsing attributes in process `syz.0.18239'. [ 432.951616][T11494] sock: sock_timestamping_bind_phc: sock not bind to device [ 433.009786][T11492] netlink: 136 bytes leftover after parsing attributes in process `syz.0.18253'. [ 433.095391][T11505] netlink: 56 bytes leftover after parsing attributes in process `syz.0.18259'. [ 433.099158][T11505] netlink: 8 bytes leftover after parsing attributes in process `syz.0.18259'. [ 433.196652][T11515] openvswitch: netlink: IPv4 frag type 255 is out of range max 2 [ 433.397650][T11535] xt_AUDIT: Audit type out of range (valid range: 0..2) [ 433.640202][T11559] netlink: 128 bytes leftover after parsing attributes in process `syz.0.18285'. [ 433.813175][T11568] netlink: 32 bytes leftover after parsing attributes in process `syz.1.18290'. [ 433.918536][T11572] ALSA: mixer_oss: invalid OSS volume 'Y{UDD ' [ 433.924216][T11572] ALSA: mixer_oss: invalid OSS volume 'ߧ4cT󯆩"m!lT.Π' [ 433.928648][T11572] ALSA: mixer_oss: invalid OSS volume 'lg' [ 433.932374][T11572] ALSA: mixer_oss: invalid OSS volume ')nkKi,rWY\ZV?J`G' [ 433.940069][T11572] ALSA: mixer_oss: invalid OSS volume 'kO0$g{pl{y;_ARW' [ 433.947155][T11572] ALSA: mixer_oss: invalid OSS volume '' [ 433.956798][T11572] ALSA: mixer_oss: invalid OSS volume 'sv Fu{Qby>h%w]' [ 433.961928][T11572] ALSA: mixer_oss: invalid OSS volume 'E= v?@48@hL' [ 433.965177][T11572] ALSA: mixer_oss: invalid OSS volume '+?>3Iq0:iq|UDř' [ 433.968445][T11572] ALSA: mixer_oss: invalid OSS volume 'vӷ*xrN0ܗcAdh' [ 433.972338][T11572] ALSA: mixer_oss: invalid OSS volume 'JM %HJ[~S' [ 434.153165][T11593] bridge_slave_0: default FDB implementation only supports local addresses [ 434.194462][T11600] netlink: 8 bytes leftover after parsing attributes in process `syz.1.18305'. [ 434.198660][T11600] netlink: 12 bytes leftover after parsing attributes in process `syz.1.18305'. [ 434.509809][T11622] netlink: 40 bytes leftover after parsing attributes in process `syz.3.18316'. [ 434.649330][ T6261] usb 6-1: new low-speed USB device number 13 using dummy_hcd [ 434.805466][ T6261] usb 6-1: config 0 has an invalid interface number: 55 but max is 0 [ 434.828578][ T6261] usb 6-1: config 0 has no interface number 0 [ 434.834644][ T6261] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 434.847636][ T6261] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8 [ 434.858249][ T6261] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 434.880003][ T6261] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10 [ 434.884384][ T6261] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8 [ 434.889376][ T6261] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 434.897311][ T6261] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 434.902790][ T6261] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 434.914782][ T6261] usb 6-1: config 0 descriptor?? [ 434.923863][T11612] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 434.933069][T11612] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 434.946575][ T6261] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 435.043716][T11664] comedi comedi3: ni_at_a2150: I/O port conflict (0x1,28) [ 435.142769][T11612] ldusb 6-1:0.55: Write buffer overflow, 1 bytes dropped [ 435.151893][ T6259] usb 6-1: USB disconnect, device number 13 [ 435.158730][ T6259] ldusb 6-1:0.55: LD USB Device #0 now disconnected [ 435.349883][ T2294] kernel write not supported for file /dsp (pid: 2294 comm: kworker/0:2) [ 435.495326][T11721] openvswitch: netlink: Invalid MD length 0 for MD type 0 [ 435.501656][T11721] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 435.667213][T11733] netlink: 'syz.2.18368': attribute type 30 has an invalid length. [ 435.746780][T11742] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1536) ! [ 435.851413][T11750] comedi comedi3: multiq3: I/O port conflict (0x4f24,16) [ 435.884817][T11753] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 435.889073][ T6261] kernel write not supported for file /audio (pid: 6261 comm: kworker/1:5) [ 437.014083][ T2294] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 437.191256][T11875] binder: 11874:11875 ioctl c0385720 0 returned -22 [ 437.202454][ T2294] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 437.208924][ T2294] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 437.221015][ T2294] usb 5-1: Product: syz [ 437.224402][T11875] binder: 11874:11875 ioctl c0306201 80000480 returned -11 [ 437.228232][ T2294] usb 5-1: Manufacturer: syz [ 437.238327][ T2294] usb 5-1: SerialNumber: syz [ 437.243377][ T2294] usb 5-1: config 0 descriptor?? [ 437.446050][ T6259] usb 5-1: USB disconnect, device number 13 [ 437.509161][T11883] /dev/sr0: Can't open blockdev [ 437.514753][T11886] gfs2: gfs2 mount does not exist [ 437.567212][T11891] tmpfs: Invalid gid '0x00000000ffffffff' [ 438.153459][T11910] /dev/sr0: Can't open blockdev [ 438.158168][T11919] gfs2: gfs2 mount does not exist [ 438.557110][T11963] __nla_validate_parse: 3 callbacks suppressed [ 438.557129][T11963] netlink: 12 bytes leftover after parsing attributes in process `syz.2.18473'. [ 438.613019][ T6161] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 438.628581][ T6161] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz0] on syz0 [ 438.781095][T11971] fido_id[11971]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 438.853704][T11993] I/O error, dev loop0, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 438.860967][T11993] I/O error, dev loop0, sector 256 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 438.866219][T11993] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 438.872597][T11993] I/O error, dev loop0, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 438.877372][T11993] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512 [ 438.881587][T11993] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 438.885336][T11993] UDF-fs: Scanning with blocksize 512 failed [ 438.886502][T11997] netlink: 4 bytes leftover after parsing attributes in process `syz.3.18490'. [ 438.893363][T11993] I/O error, dev loop0, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 438.893929][T11997] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 438.898057][T11993] I/O error, dev loop0, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 438.898125][T11993] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 438.898233][T11993] I/O error, dev loop0, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 438.898279][T11993] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512 [ 438.898290][T11993] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 438.898298][T11993] UDF-fs: Scanning with blocksize 1024 failed [ 438.899787][T11993] I/O error, dev loop0, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 438.905896][T11997] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 438.907901][T11993] I/O error, dev loop0, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 438.940794][T11993] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 438.947830][T11993] I/O error, dev loop0, sector 2048 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 438.952280][T11993] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512 [ 438.957019][T11993] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 438.959917][T11993] UDF-fs: Scanning with blocksize 2048 failed [ 438.969764][T11993] I/O error, dev loop0, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 438.975006][T11993] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 438.979476][T11993] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512 [ 438.984987][T11993] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 438.988613][T11993] UDF-fs: Scanning with blocksize 4096 failed [ 438.993321][T11993] UDF-fs: warning (device loop0): udf_fill_super: No partition found (1) [ 439.312996][T12020] autofs: Bad value for 'uid' [ 439.318095][T12020] autofs: Bad value for 'uid' [ 439.688997][ C0] vkms_vblank_simulate: vblank timer overrun [ 439.836064][T12062] netlink: 276 bytes leftover after parsing attributes in process `syz.3.18521'. [ 439.994207][T12078] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 439.994467][T12078] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512 [ 439.994485][T12078] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 439.994497][T12078] UDF-fs: Scanning with blocksize 512 failed [ 439.995415][T12078] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 439.995597][T12078] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512 [ 439.995614][T12078] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 439.995626][T12078] UDF-fs: Scanning with blocksize 1024 failed [ 439.996239][T12078] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 439.996394][T12078] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512 [ 439.996411][T12078] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 439.996423][T12078] UDF-fs: Scanning with blocksize 2048 failed [ 439.996978][T12078] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 439.997121][T12078] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512 [ 439.997138][T12078] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 439.997149][T12078] UDF-fs: Scanning with blocksize 4096 failed [ 439.997157][T12078] UDF-fs: warning (device loop1): udf_fill_super: No partition found (1) [ 440.379675][T12121] netlink: 'syz.1.18550': attribute type 29 has an invalid length. [ 440.386657][T12121] netlink: 'syz.1.18550': attribute type 29 has an invalid length. [ 441.045171][T12153] genirq: Flags mismatch irq 4. 00200000 (pcl816) vs. 00200080 (ttyS0) [ 441.251533][T12169] comedi comedi3: pcl812: I/O port conflict (0x4f27,16) [ 441.252198][ T40] audit: type=1326 audit(2000000205.267:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm="syz.0.18572" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 441.267686][ T40] audit: type=1326 audit(2000000205.267:889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm="syz.0.18572" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 441.284568][ T40] audit: type=1326 audit(2000000205.267:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm="syz.0.18572" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 441.299262][ T40] audit: type=1326 audit(2000000205.267:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm=22 exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 441.311397][ T40] audit: type=1326 audit(2000000205.267:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm=22 exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 441.325925][ T40] audit: type=1326 audit(2000000205.267:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm=22 exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 441.338047][ T40] audit: type=1326 audit(2000000205.267:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm=22 exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 441.351653][ T40] audit: type=1326 audit(2000000205.267:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12168 comm=22 exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 441.505433][T12194] netlink: 32 bytes leftover after parsing attributes in process `syz.0.18584'. [ 441.769948][T12209] netlink: 48 bytes leftover after parsing attributes in process `syz.3.18592'. [ 442.071389][T12239] program syz.2.18607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 442.131352][T12246] netlink: 'syz.2.18610': attribute type 1 has an invalid length. [ 442.134866][T12246] netlink: 'syz.2.18610': attribute type 2 has an invalid length. [ 442.134884][T12246] netlink: 1172 bytes leftover after parsing attributes in process `syz.2.18610'. [ 443.277286][ T6261] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 443.280159][T12353] genirq: Flags mismatch irq 4. 00200000 (pcl816) vs. 00200080 (ttyS0) [ 443.430000][ T6261] usb 5-1: Using ep0 maxpacket: 16 [ 443.437526][ T6261] usb 5-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 443.448271][ T6261] usb 5-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 443.453639][ T6261] usb 5-1: Product: syz [ 443.473657][ T6261] usb 5-1: Manufacturer: syz [ 443.481414][ T6261] usb 5-1: SerialNumber: syz [ 443.500487][ T6261] usb 5-1: config 0 descriptor?? [ 443.727434][ T6261] usb 5-1: USB disconnect, device number 14 [ 444.451103][T12440] nbd: must specify a device to reconfigure [ 444.462535][T12442] netlink: 36 bytes leftover after parsing attributes in process `syz.3.18703'. [ 444.469122][T12442] netlink: 16 bytes leftover after parsing attributes in process `syz.3.18703'. [ 444.473740][T12442] netlink: 36 bytes leftover after parsing attributes in process `syz.3.18703'. [ 444.478837][T12442] netlink: 36 bytes leftover after parsing attributes in process `syz.3.18703'. [ 444.689618][T12465] netlink: 32 bytes leftover after parsing attributes in process `syz.3.18711'. [ 444.692742][T12467] IPVS: stopping master sync thread 31187 ... [ 445.122042][T12498] netlink: 4 bytes leftover after parsing attributes in process `syz.3.18724'. [ 445.198415][T12506] netlink: 24 bytes leftover after parsing attributes in process `syz.3.18728'. [ 445.796120][T12545] netlink: 'syz.3.18744': attribute type 2 has an invalid length. [ 445.799470][T12545] netlink: 137592 bytes leftover after parsing attributes in process `syz.3.18744'. [ 446.335469][T12570] IPVS: ip_vs_edit_dest(): server weight less than zero [ 446.689337][T12603] support for cryptoloop has been removed. Use dm-crypt instead. [ 446.771065][T12612] IPVS: ip_vs_edit_dest(): server weight less than zero [ 446.785143][T12610] netlink: 188 bytes leftover after parsing attributes in process `syz.1.18776'. [ 447.947063][T12680] netlink: 4 bytes leftover after parsing attributes in process `syz.1.18808'. [ 448.624443][T12739] e1000e 0000:00:02.0 eth1: NIC Link is Down [ 448.705103][T12753] binder: 12752:12753 ioctl c0306201 80000600 returned -22 [ 449.004374][T12789] program syz.1.18857 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 449.248194][T12817] netlink: 'syz.1.18869': attribute type 3 has an invalid length. [ 449.256884][T12817] netlink: 'syz.1.18869': attribute type 1 has an invalid length. [ 449.262529][T12817] __nla_validate_parse: 2 callbacks suppressed [ 449.262544][T12817] netlink: 192 bytes leftover after parsing attributes in process `syz.1.18869'. [ 449.277924][T12817] NCSI netlink: No device for ifindex 0 [ 449.436587][T12828] netlink: 16 bytes leftover after parsing attributes in process `syz.3.18873'. [ 449.516947][T12838] ieee802154 phy1 wpan1: encryption failed: -22 [ 449.636274][T12847] netlink: 16 bytes leftover after parsing attributes in process `syz.3.18880'. [ 449.815068][T12873] tipc: Enabling of bearer rejected, failed to enable media [ 450.304336][T12923] ieee802154 phy1 wpan1: encryption failed: -22 [ 451.061861][T12960] zonefs (nullb0) ERROR: Not a zoned block device [ 451.311226][ T40] audit: type=1326 audit(2000000215.828:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12940 comm="syz.2.18920" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7fc00000 [ 451.321333][ T40] audit: type=1326 audit(2000000215.828:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12940 comm="syz.2.18920" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70fe579 code=0x7fc00000 [ 451.342974][ T40] audit: type=1326 audit(2000000215.828:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12940 comm="syz.2.18920" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7fc00000 [ 451.360587][ T40] audit: type=1326 audit(2000000215.828:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12940 comm="syz.2.18920" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7fc00000 [ 451.375119][ T40] audit: type=1326 audit(2000000215.828:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12940 comm="syz.2.18920" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7fc00000 [ 451.384993][ T40] audit: type=1326 audit(2000000215.828:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12940 comm="syz.2.18920" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7fc00000 [ 451.398078][ T40] audit: type=1326 audit(2000000215.828:902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12940 comm="syz.2.18920" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7fc00000 [ 451.410652][ T40] audit: type=1326 audit(2000000215.828:903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12940 comm="syz.2.18920" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7fc00000 [ 451.426131][ T40] audit: type=1326 audit(2000000215.828:904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12940 comm="syz.2.18920" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7fc00000 [ 451.436391][ T40] audit: type=1326 audit(2000000215.828:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12940 comm="syz.2.18920" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7fc00000 [ 451.836335][T13025] netlink: 'syz.3.18960': attribute type 178 has an invalid length. [ 452.038304][T13051] xt_socket: unknown flags 0xd0 [ 453.426480][T13169] [U] 1WT`8H$09\ [ 453.428841][T13169] [U] ;2}UGVĥ#O9ե>-ߴSݢP [ 453.846207][T13193] blktrace: Concurrent blktraces are not allowed on sg0 [ 453.944322][ T6259] hid-generic 0000:0004:0009.0004: unknown main item tag 0x0 [ 453.951210][ T6259] hid-generic 0000:0004:0009.0004: unknown main item tag 0x0 [ 453.954314][ T6259] hid-generic 0000:0004:0009.0004: unknown main item tag 0x0 [ 453.967117][ T6259] hid-generic 0000:0004:0009.0004: hidraw0: HID v0.04 Device [syz0] on syz1 [ 454.147854][T13204] fido_id[13204]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 454.379897][T13235] IPVS: Error connecting to the multicast addr [ 454.632195][ T6259] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 454.658872][T13258] overlayfs: workdir and upperdir must be separate subtrees [ 454.799289][ T6259] usb 5-1: too many configurations: 9, using maximum allowed: 8 [ 454.806414][ T6259] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 454.810579][ T6259] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 454.816085][ T6259] usb 5-1: config 0 interface 0 has no altsetting 0 [ 454.821165][ T6259] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 454.829806][ T6259] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 454.848539][ T6259] usb 5-1: config 0 interface 0 has no altsetting 0 [ 454.854289][ T6259] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 454.854953][T13260] program syz.3.19070 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 454.859010][ T6259] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 454.870405][ T6259] usb 5-1: config 0 interface 0 has no altsetting 0 [ 454.877252][ T6259] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 454.885054][ T6259] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 454.891246][ T6259] usb 5-1: config 0 interface 0 has no altsetting 0 [ 454.897170][ T6259] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 454.900919][ T6259] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 454.906814][ T6259] usb 5-1: config 0 interface 0 has no altsetting 0 [ 454.920441][ T6259] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 454.925032][ T6259] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 454.929104][ T6259] usb 5-1: config 0 interface 0 has no altsetting 0 [ 454.933341][ T6259] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 454.937707][ T6259] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 454.945185][ T6259] usb 5-1: config 0 interface 0 has no altsetting 0 [ 454.949418][ T6259] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 454.954575][ T6259] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 454.960629][ T6259] usb 5-1: config 0 interface 0 has no altsetting 0 [ 454.966819][ T6259] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 454.974739][ T6259] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 454.979184][ T6259] usb 5-1: Product: syz [ 454.981043][ T6259] usb 5-1: Manufacturer: syz [ 454.998975][ T6259] usb 5-1: SerialNumber: syz [ 455.005023][ T6259] usb 5-1: config 0 descriptor?? [ 455.016892][ T6259] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0 [ 455.372829][ C1] vkms_vblank_simulate: vblank timer overrun [ 456.296495][T13302] IPVS: length: 139 != 8 [ 456.944446][T13349] netlink: 'syz.2.19112': attribute type 1 has an invalid length. [ 457.051097][T13355] program syz.2.19116 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 457.145918][T13363] netlink: 16 bytes leftover after parsing attributes in process `syz.2.19120'. [ 457.175316][ C3] usb 5-1: yurex_control_callback - control failed: -2 [ 457.191844][T13369] tmpfs: Cannot retroactively limit inodes [ 457.193164][ T6259] usb 5-1: USB disconnect, device number 15 [ 457.201859][ T6259] yurex 5-1:0.0: USB YUREX #0 now disconnected [ 457.275878][T13375] dummy0: entered allmulticast mode [ 457.280988][T13374] dummy0: left allmulticast mode [ 457.377742][T13384] netlink: 4 bytes leftover after parsing attributes in process `syz.3.19129'. [ 457.909695][ T40] kauditd_printk_skb: 8 callbacks suppressed [ 457.909711][ T40] audit: type=1326 audit(2000000222.757:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13423 comm="syz.1.19149" exe="/syz-executor" sig=31 arch=40000003 syscall=20 compat=1 ip=0xf706e579 code=0x0 [ 458.126066][T13441] xt_l2tp: invalid flags combination: 0 [ 458.201524][T13449] netlink: 32 bytes leftover after parsing attributes in process `syz.0.19159'. [ 458.253362][T13455] MTD: Couldn't look up 'mountinfo': -2 [ 459.305696][T13562] loop9: detected capacity change from 0 to 7 [ 459.315322][T13562] Buffer I/O error on dev loop9, logical block 0, async page read [ 459.323219][T13562] Buffer I/O error on dev loop9, logical block 0, async page read [ 459.327750][T13562] Buffer I/O error on dev loop9, logical block 0, async page read [ 459.334835][T13562] Buffer I/O error on dev loop9, logical block 0, async page read [ 459.341038][T13562] Buffer I/O error on dev loop9, logical block 0, async page read [ 459.345097][T13562] Buffer I/O error on dev loop9, logical block 0, async page read [ 459.366934][T13562] Buffer I/O error on dev loop9, logical block 0, async page read [ 459.370737][T13562] ldm_validate_partition_table(): Disk read failed. [ 459.373639][T13562] Buffer I/O error on dev loop9, logical block 0, async page read [ 459.378500][T13562] Buffer I/O error on dev loop9, logical block 0, async page read [ 459.384332][T13562] Buffer I/O error on dev loop9, logical block 0, async page read [ 459.390909][T13562] Dev loop9: unable to read RDB block 0 [ 459.393654][T13562] loop9: unable to read partition table [ 459.397754][T13562] loop9: partition table beyond EOD, truncated [ 459.400570][T13562] loop_reread_partitions: partition scan of loop9 (被xڬdGݡ [ 459.400570][T13562] ) failed (rc=-5) [ 459.498654][T13578] IPVS: Scheduler module ip_vs_sip not found [ 459.697307][T13599] tipc: Enabling of bearer rejected, failed to enable media [ 459.858140][T13614] netlink: 4 bytes leftover after parsing attributes in process `syz.0.19239'. [ 460.174722][T13633] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 460.197626][ T40] audit: type=1326 audit(2000000225.140:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13634 comm="syz.1.19250" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf706e579 code=0x0 [ 460.561517][T13653] misc userio: Invalid payload size [ 460.668537][T13659] netlink: 8 bytes leftover after parsing attributes in process `syz.3.19260'. [ 460.683960][T13659] netlink: 24 bytes leftover after parsing attributes in process `syz.3.19260'. [ 461.054807][T13680] program syz.2.19270 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 461.133275][T13688] netlink: 332 bytes leftover after parsing attributes in process `syz.0.19272'. [ 461.330929][T13702] netlink: 24 bytes leftover after parsing attributes in process `syz.0.19282'. [ 461.632597][ T594] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 461.638968][ T594] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0 [ 461.876598][ T5337] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 461.904321][ T5337] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 461.913401][ T5337] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 461.915279][ T594] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 461.917937][ T5337] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 461.922084][ T594] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0 [ 461.926318][ T5337] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 462.014192][T13746] wg1 speed is unknown, defaulting to 1000 [ 462.061386][T13764] sg_write: data in/out 124/36 bytes for SCSI command 0x1c-- guessing data in; [ 462.061386][T13764] program syz.0.19313 not setting count and/or reply_len properly [ 462.257225][ T594] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 462.261447][ T594] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0 [ 462.389954][T13785] blktrace: Concurrent blktraces are not allowed on sg0 [ 462.587342][ T594] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 462.592171][ T594] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0 [ 462.900331][T13746] chnl_net:caif_netlink_parms(): no params data found [ 463.051910][ T594] erspan0: left allmulticast mode [ 463.054544][ T594] erspan0: left promiscuous mode [ 463.056875][ T594] bridge0: port 1(erspan0) entered disabled state [ 463.805654][T13814] overlay: filesystem on ./file0 is read-only [ 463.891938][ T6183] Bluetooth: hci0: command tx timeout [ 464.079311][T13822] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method [ 464.315743][T13826] syz.0.19340 (13826): drop_caches: 4 [ 465.862982][ T6183] Bluetooth: hci0: command tx timeout [ 466.749363][ T594] bond0 (unregistering): (slave bridge_slave_1): Releasing backup interface [ 466.806273][ T594] bridge_slave_1: left promiscuous mode [ 466.810046][ T594] bond0 (unregistering): Released all slaves [ 466.821433][ T594] bond1 (unregistering): Released all slaves [ 466.829148][ T594] bond2 (unregistering): Released all slaves [ 466.838745][ T594] bond3 (unregistering): Released all slaves [ 467.645175][ T594] bond4 (unregistering): Released all slaves [ 467.656368][ T594] bond5 (unregistering): Released all slaves [ 467.667777][ T594] bond6 (unregistering): Released all slaves [ 467.853866][ T6183] Bluetooth: hci0: command tx timeout [ 468.484234][ T594] bond7 (unregistering): Released all slaves [ 468.495809][ T594] bond8 (unregistering): Released all slaves [ 468.502788][ T594] bond9 (unregistering): Released all slaves [ 469.274828][ T594] bond10 (unregistering): Released all slaves [ 469.285684][ T594] bond11 (unregistering): Released all slaves [ 469.297362][ T594] bond12 (unregistering): Released all slaves [ 469.309423][ T594] bond13 (unregistering): Released all slaves [ 469.519725][T13835] netlink: 24 bytes leftover after parsing attributes in process `syz.0.19344'. [ 469.640345][ T594] : left promiscuous mode [ 469.732406][T13843] veth0: entered promiscuous mode [ 469.769093][T13746] bridge0: port 1(bridge_slave_0) entered blocking state [ 469.773995][T13746] bridge0: port 1(bridge_slave_0) entered disabled state [ 469.780108][T13746] bridge_slave_0: entered allmulticast mode [ 469.785419][T13746] bridge_slave_0: entered promiscuous mode [ 469.791194][T13839] veth0: left promiscuous mode [ 469.828242][T13746] bridge0: port 2(bridge_slave_1) entered blocking state [ 469.835183][T13746] bridge0: port 2(bridge_slave_1) entered disabled state [ 469.837893][ T6183] Bluetooth: hci0: command tx timeout [ 469.839092][T13746] bridge_slave_1: entered allmulticast mode [ 469.842599][T13854] netlink: 8 bytes leftover after parsing attributes in process `syz.3.19351'. [ 469.849090][T13854] netlink: 4 bytes leftover after parsing attributes in process `syz.3.19351'. [ 469.855970][T13854] netlink: 'syz.3.19351': attribute type 11 has an invalid length. [ 469.862204][T13746] bridge_slave_1: entered promiscuous mode [ 470.213821][T13746] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 470.220807][T13746] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 471.128483][T13746] team0: Port device team_slave_0 added [ 471.133529][T13746] team0: Port device team_slave_1 added [ 471.489002][T13746] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 471.491983][T13746] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 471.503193][T13746] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 471.509180][T13746] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 471.516222][T13746] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 471.529030][T13746] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 471.917767][T13746] hsr_slave_0: entered promiscuous mode [ 471.921538][T13746] hsr_slave_1: entered promiscuous mode [ 472.422311][T13971] CUSE: DEVNAME unspecified [ 472.585644][T13982] netlink: 8 bytes leftover after parsing attributes in process `syz.3.19405'. [ 472.589578][T13982] netlink: 4 bytes leftover after parsing attributes in process `syz.3.19405'. [ 472.593738][T13982] netlink: 'syz.3.19405': attribute type 7 has an invalid length. [ 473.569109][ T594] hsr_slave_0: left promiscuous mode [ 473.601997][T14003] devpts: Bad value for 'max' [ 473.609465][ T594] hsr_slave_1: left promiscuous mode [ 473.682410][T14000] Falling back ldisc for ttyprintk. [ 473.682524][ T594] veth1_macvtap: left promiscuous mode [ 473.690580][ T594] veth0_macvtap: left allmulticast mode [ 473.693813][ T594] veth0_macvtap: left promiscuous mode [ 473.710100][ T594] veth1_vlan: left promiscuous mode [ 474.538480][T14009] ceph: No mds server is up or the cluster is laggy [ 474.732436][T14026] netlink: 10 bytes leftover after parsing attributes in process `syz.1.19422'. [ 486.560156][T13746] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 486.613842][T13746] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 486.656417][T13746] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 486.663376][T14034] netlink: 4 bytes leftover after parsing attributes in process `syz.1.19424'. [ 486.689015][T13746] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 486.747856][ T1417] ieee802154 phy1 wpan1: encryption failed: -22 [ 486.841705][T14034] veth3: entered promiscuous mode [ 486.907680][T14040] wg1 speed is unknown, defaulting to 1000 [ 486.979401][T13746] 8021q: adding VLAN 0 to HW filter on device bond0 [ 486.986212][T14064] binder: 14063:14064 ioctl c018620c 80000280 returned -22 [ 487.011490][T13746] 8021q: adding VLAN 0 to HW filter on device team0 [ 487.032410][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 487.036500][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 487.064211][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 487.067723][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 487.135440][T14074] netlink: 4 bytes leftover after parsing attributes in process `syz.0.19433'. [ 487.402758][T13746] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 487.440733][T14099] netlink: 35 bytes leftover after parsing attributes in process `syz.1.19440'. [ 487.442436][ T594] IPVS: stop unused estimator thread 0... [ 487.799306][T13746] veth0_vlan: entered promiscuous mode [ 487.813896][T13746] veth1_vlan: entered promiscuous mode [ 487.857117][T13746] veth0_macvtap: entered promiscuous mode [ 487.974403][T13746] veth1_macvtap: entered promiscuous mode [ 487.992986][T13746] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 488.005860][T13746] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 488.021417][T32341] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 488.025039][T32341] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 488.031090][T32341] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 488.040121][T32341] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 488.272211][T14155] program syz.0.19463 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 488.305824][ T93] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 488.309219][ T93] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 488.383142][T14157] overlayfs: maximum fs stacking depth exceeded [ 488.440924][ T1147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 488.454066][ T1147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 488.479257][T14159] team0: Device is already in use. [ 488.642860][T14174] netlink: 12 bytes leftover after parsing attributes in process `syz.3.19471'. [ 488.905842][ T40] audit: type=1326 audit(2000000255.279:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14195 comm="syz.1.19480" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf706e579 code=0x0 [ 489.394636][T14225] netlink: 'syz.4.19493': attribute type 5 has an invalid length. [ 489.492572][T19069] kernel write not supported for file /uinput (pid: 19069 comm: kworker/3:5) [ 489.543957][T14236] netlink: 4 bytes leftover after parsing attributes in process `syz.4.19498'. [ 490.369873][T14296] wg1 speed is unknown, defaulting to 1000 [ 490.504844][T14307] Bluetooth: MGMT ver 1.23 [ 490.699201][T14319] netlink: 24 bytes leftover after parsing attributes in process `syz.3.19533'. [ 491.082794][T14350] netlink: 12 bytes leftover after parsing attributes in process `syz.0.19548'. [ 491.096119][T14350] netlink: 56 bytes leftover after parsing attributes in process `syz.0.19548'. [ 491.102518][T14350] netlink: 8 bytes leftover after parsing attributes in process `syz.0.19548'. [ 491.211951][T14363] netlink: 168 bytes leftover after parsing attributes in process `syz.3.19554'. [ 491.328042][T14373] macsec0: entered promiscuous mode [ 491.560461][ C0] vkms_vblank_simulate: vblank timer overrun [ 492.137895][T14415] __nla_validate_parse: 1 callbacks suppressed [ 492.137914][T14415] netlink: 204 bytes leftover after parsing attributes in process `syz.3.19579'. [ 492.282039][T14153] kernel write not supported for file /input/mouse0 (pid: 14153 comm: kworker/1:3) [ 492.465161][ T5337] Bluetooth: hci0: command 0x0c1a tx timeout [ 492.469388][ T6183] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 492.531189][T14437] mkiss: ax0: crc mode is auto. [ 492.956092][T14474] usb usb8: selecting invalid altsetting 6 [ 493.062164][T14492] netlink: 56 bytes leftover after parsing attributes in process `syz.1.19613'. [ 493.326031][T14507] netlink: 12 bytes leftover after parsing attributes in process `syz.0.19621'. [ 494.261353][T14583] random: crng reseeded on system resumption [ 494.680990][T14604] comedi comedi3: pcl818: I/O port conflict (0x4f27,16) [ 494.909256][T14629] netlink: 8 bytes leftover after parsing attributes in process `syz.3.19680'. [ 494.924401][T14629] netlink: 12 bytes leftover after parsing attributes in process `syz.3.19680'. [ 494.929068][T14629] netlink: 'syz.3.19680': attribute type 6 has an invalid length. [ 495.086287][ T40] audit: type=1400 audit(2000000261.778:917): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=14645 comm="syz.3.19688" [ 495.234143][T14663] netlink: 8 bytes leftover after parsing attributes in process `syz.0.19697'. [ 495.483273][T14688] wg1 speed is unknown, defaulting to 1000 [ 495.541362][T14696] netlink: 12 bytes leftover after parsing attributes in process `syz.4.19710'. [ 495.656174][T14704] netlink: 4 bytes leftover after parsing attributes in process `syz.0.19715'. [ 496.022269][T14728] netlink: 12 bytes leftover after parsing attributes in process `syz.0.19726'. [ 496.572899][T14771] wg1 speed is unknown, defaulting to 1000 [ 497.631025][ T6261] usb 9-1: new high-speed USB device number 2 using dummy_hcd [ 497.792583][ T6261] usb 9-1: Using ep0 maxpacket: 8 [ 497.800986][ T6261] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 497.805810][ T6261] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 497.809701][ T6261] usb 9-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 497.814705][ T6261] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 497.826860][ T6261] hub 9-1:1.0: bad descriptor, ignoring hub [ 497.829202][ T6261] hub 9-1:1.0: probe with driver hub failed with error -5 [ 498.065186][T14819] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 498.096871][T14819] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 498.109436][ T6183] Bluetooth: hci0: Unknown advertising packet type: 0x5f [ 498.216203][T14153] usb 9-1: USB disconnect, device number 2 [ 498.739201][T14897] wg1 speed is unknown, defaulting to 1000 [ 499.306888][T14153] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 499.481148][T14153] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 499.488523][T14153] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 499.492697][T14153] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 499.496107][T14153] usb 9-1: Product: syz [ 499.498253][T14153] usb 9-1: Manufacturer: syz [ 499.500292][T14153] usb 9-1: SerialNumber: syz [ 499.505376][T14153] usb 9-1: config 0 descriptor?? [ 499.929666][T14153] usb 9-1: USB disconnect, device number 3 [ 499.969019][T14941] netlink: 40 bytes leftover after parsing attributes in process `syz.0.19818'. [ 500.732694][T14997] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 501.020392][T15032] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_hsr, syncid = 4, id = 0 [ 501.059032][T15034] xt_HMARK: proto mask must be zero with L3 mode [ 501.331895][T15056] netlink: 4 bytes leftover after parsing attributes in process `syz.3.19874'. [ 501.343597][T15056] netlink: 4 bytes leftover after parsing attributes in process `syz.3.19874'. [ 501.450828][ T40] audit: type=1326 audit(2000000268.465:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15063 comm="syz.0.19878" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 501.464324][ T40] audit: type=1326 audit(2000000268.465:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15063 comm="syz.0.19878" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 501.476626][ T40] audit: type=1326 audit(2000000268.465:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15063 comm="syz.0.19878" exe="/syz-executor" sig=0 arch=40000003 syscall=247 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 501.509714][ T40] audit: type=1326 audit(2000000268.528:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15063 comm="syz.0.19878" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 501.522745][ T40] audit: type=1326 audit(2000000268.528:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15063 comm="syz.0.19878" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000 [ 501.748536][T15087] netlink: 24 bytes leftover after parsing attributes in process `syz.0.19889'. [ 502.593734][T19069] kernel write not supported for file /bluetooth/6lowpan_control (pid: 19069 comm: kworker/3:5) [ 503.140437][T15182] IPVS: stopping master sync thread 17639 ... [ 503.238477][ T40] audit: type=1326 audit(2000000270.333:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15173 comm="syz.4.19928" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7fc00000 [ 503.850356][T15221] netlink: 4 bytes leftover after parsing attributes in process `syz.1.19954'. [ 503.863183][ T40] audit: type=1326 audit(2000000270.995:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15173 comm="syz.4.19928" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7fc00000 [ 503.912659][ T6263] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x4 [ 503.916749][ T6263] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x2 [ 503.920817][ T6263] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 503.923951][ T6263] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 503.927405][ T6263] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 503.931501][ T6263] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 503.935562][ T6263] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 503.938914][ T6263] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 503.942091][ T6263] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 503.945264][ T6263] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 503.954929][ T6263] hid-generic 0000:3000000:0000.0005: hidraw0: HID v0.00 Device [sy] on syz0 [ 504.090942][T15226] fido_id[15226]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 504.930835][T15295] netlink: 16 bytes leftover after parsing attributes in process `syz.3.19989'. [ 504.935543][T15295] netlink: 4 bytes leftover after parsing attributes in process `syz.3.19989'. [ 505.043251][T15301] netlink: 'syz.3.19992': attribute type 33 has an invalid length. [ 505.048191][T15301] netlink: 152 bytes leftover after parsing attributes in process `syz.3.19992'. [ 505.387220][T15322] netlink: 'syz.4.20002': attribute type 29 has an invalid length. [ 505.422100][T15326] comedi comedi3: c6xdigio: I/O port conflict (0x4f27,3) [ 505.425696][T15326] ------------[ cut here ]------------ [ 505.429165][T15326] kernfs: can not remove 'bind', no directory [ 505.436191][T15326] WARNING: CPU: 2 PID: 15326 at fs/kernfs/dir.c:1706 kernfs_remove_by_name_ns+0xff/0x110 [ 505.440412][T15326] Modules linked in: [ 505.442795][T15326] CPU: 2 UID: 0 PID: 15326 Comm: syz.3.20005 Not tainted syzkaller #0 PREEMPT(full) [ 505.450725][T15326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 505.458373][T15326] RIP: 0010:kernfs_remove_by_name_ns+0xff/0x110 [ 505.462006][T15326] Code: 48 89 df 31 db e8 61 a2 ff ff 48 89 ef e8 09 06 37 ff eb b1 e8 b2 70 5b ff 90 48 c7 c7 40 5a c3 8b 4c 89 e6 e8 22 68 1a ff 90 <0f> 0b 90 90 eb b4 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 [ 505.471967][T15326] RSP: 0018:ffffc900065ff700 EFLAGS: 00010282 [ 505.476620][T15326] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc9002aaa7000 [ 505.497009][T15326] RDX: 0000000000080000 RSI: ffffffff817a0305 RDI: 0000000000000001 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 505.506161][T15326] RBP: ffffffff8f504b00 R08: 0000000000000001 R09: 0000000000000000 [ 505.514022][T15326] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c427840 [ 505.523676][T15326] R13: 0000000000000000 R14: 0000000000000000 R15: ffff8880242af800 [ 505.528450][T15326] FS: 0000000000000000(0000) GS:ffff8880976ba000(0063) knlGS:00000000f541eb40 [ 505.528503][T15326] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 505.540016][T15326] CR2: 0000000057aac4c0 CR3: 000000004b8ad000 CR4: 0000000000352ef0 [ 505.540039][T15326] Call Trace: [ 505.540049][T15326] [ 505.540060][T15326] driver_remove_file+0x4a/0x60 [ 505.540086][T15326] bus_remove_driver+0x224/0x2c0 [ 505.540116][T15326] driver_unregister+0x76/0xb0 [ 505.540136][T15326] comedi_device_detach_locked+0x12f/0xa50 [ 505.540170][T15326] comedi_device_detach+0x67/0xb0 [ 505.540198][T15326] comedi_device_attach+0x43d/0x900 [ 505.540231][T15326] do_devconfig_ioctl+0x1b1/0x710 [ 505.540283][T15326] ? __mutex_lock+0x1c5/0x1060 [ 505.540316][T15326] ? __pfx_do_devconfig_ioctl+0x10/0x10 [ 505.540350][T15326] ? kasan_save_stack+0x42/0x60 [ 505.540371][T15326] ? kasan_save_stack+0x33/0x60 [ 505.540391][T15326] ? kasan_save_track+0x14/0x30 [ 505.540410][T15326] ? kasan_save_free_info+0x3b/0x60 [ 505.540426][T15326] ? __kasan_slab_free+0x60/0x70 [ 505.540447][T15326] ? kfree+0x2b4/0x4d0 [ 505.540462][T15326] ? tomoyo_path_number_perm+0x470/0x580 [ 505.540490][T15326] comedi_unlocked_ioctl+0x165d/0x2f00 [ 505.540525][T15326] ? __pfx_comedi_unlocked_ioctl+0x10/0x10 [ 505.540566][T15326] ? kasan_quarantine_put+0x10a/0x240 [ 505.540587][T15326] ? lockdep_hardirqs_on+0x7c/0x110 [ 505.540616][T15326] ? find_held_lock+0x2b/0x80 [ 505.540636][T15326] ? tomoyo_path_number_perm+0x295/0x580 [ 505.540670][T15326] ? tomoyo_path_number_perm+0x18d/0x580 [ 505.540695][T15326] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 505.540721][T15326] comedi_compat_ioctl+0x1d0/0x990 [ 505.540746][T15326] ? __pfx_comedi_compat_ioctl+0x10/0x10 [ 505.540772][T15326] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 505.540803][T15326] ? do_vfs_ioctl+0x128/0x14f0 [ 505.540832][T15326] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 505.540868][T15326] ? find_held_lock+0x2b/0x80 [ 505.540887][T15326] ? hook_file_ioctl_common+0x145/0x410 [ 505.540918][T15326] ? __fget_files+0x20e/0x3c0 [ 505.540938][T15326] ? __ia32_compat_sys_openat+0x120/0x210 [ 505.540963][T15326] ? __pfx_comedi_compat_ioctl+0x10/0x10 [ 505.540987][T15326] __ia32_compat_sys_ioctl+0x242/0x370 [ 505.541017][T15326] __do_fast_syscall_32+0x7c/0x300 [ 505.541047][T15326] do_fast_syscall_32+0x32/0x80 [ 505.541064][T15326] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 505.541085][T15326] RIP: 0023:0xf702e579 [ 505.541100][T15326] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 505.541120][T15326] RSP: 002b:00000000f541e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 505.541141][T15326] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040946400 [ 505.541154][T15326] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000 [ 505.541166][T15326] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 505.541176][T15326] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 505.541187][T15326] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 505.541211][T15326] [ 505.541222][T15326] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 505.541235][T15326] CPU: 2 UID: 0 PID: 15326 Comm: syz.3.20005 Not tainted syzkaller #0 PREEMPT(full) [ 505.541258][T15326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 505.541273][T15326] Call Trace: [ 505.541280][T15326] [ 505.541287][T15326] dump_stack_lvl+0x3d/0x1f0 [ 505.541316][T15326] vpanic+0x6e8/0x7a0 [ 505.541344][T15326] ? __pfx_vpanic+0x10/0x10 [ 505.541375][T15326] ? kernfs_remove_by_name_ns+0xff/0x110 [ 505.541400][T15326] panic+0xca/0xd0 [ 505.541423][T15326] ? __pfx_panic+0x10/0x10 [ 505.541456][T15326] check_panic_on_warn+0xab/0xb0 [ 505.541483][T15326] __warn+0xf6/0x3c0 [ 505.541503][T15326] ? preempt_schedule_notrace+0x62/0xe0 [ 505.541527][T15326] ? kernfs_remove_by_name_ns+0xff/0x110 [ 505.541554][T15326] report_bug+0x3c3/0x580 [ 505.541577][T15326] ? kernfs_remove_by_name_ns+0xff/0x110 [ 505.541604][T15326] handle_bug+0x184/0x210 [ 505.541621][T15326] exc_invalid_op+0x17/0x50 [ 505.541638][T15326] asm_exc_invalid_op+0x1a/0x20 [ 505.541654][T15326] RIP: 0010:kernfs_remove_by_name_ns+0xff/0x110 [ 505.541697][T15326] Code: 48 89 df 31 db e8 61 a2 ff ff 48 89 ef e8 09 06 37 ff eb b1 e8 b2 70 5b ff 90 48 c7 c7 40 5a c3 8b 4c 89 e6 e8 22 68 1a ff 90 <0f> 0b 90 90 eb b4 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 [ 505.541715][T15326] RSP: 0018:ffffc900065ff700 EFLAGS: 00010282 [ 505.541731][T15326] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffc9002aaa7000 [ 505.541743][T15326] RDX: 0000000000080000 RSI: ffffffff817a0305 RDI: 0000000000000001 [ 505.541754][T15326] RBP: ffffffff8f504b00 R08: 0000000000000001 R09: 0000000000000000 [ 505.541766][T15326] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff8c427840 [ 505.541776][T15326] R13: 0000000000000000 R14: 0000000000000000 R15: ffff8880242af800 [ 505.541795][T15326] ? __warn_printk+0x1a5/0x350 [ 505.541825][T15326] driver_remove_file+0x4a/0x60 [ 505.541845][T15326] bus_remove_driver+0x224/0x2c0 [ 505.541874][T15326] driver_unregister+0x76/0xb0 [ 505.541891][T15326] comedi_device_detach_locked+0x12f/0xa50 [ 505.541923][T15326] comedi_device_detach+0x67/0xb0 [ 505.541950][T15326] comedi_device_attach+0x43d/0x900 [ 505.541979][T15326] do_devconfig_ioctl+0x1b1/0x710 [ 505.541997][T15326] ? __mutex_lock+0x1c5/0x1060 [ 505.542023][T15326] ? __pfx_do_devconfig_ioctl+0x10/0x10 [ 505.542054][T15326] ? kasan_save_stack+0x42/0x60 [ 505.542073][T15326] ? kasan_save_stack+0x33/0x60 [ 505.542090][T15326] ? kasan_save_track+0x14/0x30 [ 505.542109][T15326] ? kasan_save_free_info+0x3b/0x60 [ 505.542124][T15326] ? __kasan_slab_free+0x60/0x70 [ 505.542144][T15326] ? kfree+0x2b4/0x4d0 [ 505.542160][T15326] ? tomoyo_path_number_perm+0x470/0x580 [ 505.542187][T15326] comedi_unlocked_ioctl+0x165d/0x2f00 [ 505.542216][T15326] ? __pfx_comedi_unlocked_ioctl+0x10/0x10 [ 505.542254][T15326] ? kasan_quarantine_put+0x10a/0x240 [ 505.542272][T15326] ? lockdep_hardirqs_on+0x7c/0x110 [ 505.542297][T15326] ? find_held_lock+0x2b/0x80 [ 505.542315][T15326] ? tomoyo_path_number_perm+0x295/0x580 [ 505.542341][T15326] ? tomoyo_path_number_perm+0x18d/0x580 [ 505.542365][T15326] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 505.542389][T15326] comedi_compat_ioctl+0x1d0/0x990 [ 505.542413][T15326] ? __pfx_comedi_compat_ioctl+0x10/0x10 [ 505.542436][T15326] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 505.542463][T15326] ? do_vfs_ioctl+0x128/0x14f0 [ 505.542491][T15326] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 505.542524][T15326] ? find_held_lock+0x2b/0x80 [ 505.542541][T15326] ? hook_file_ioctl_common+0x145/0x410 [ 505.542568][T15326] ? __fget_files+0x20e/0x3c0 [ 505.542585][T15326] ? __ia32_compat_sys_openat+0x120/0x210 [ 505.542607][T15326] ? __pfx_comedi_compat_ioctl+0x10/0x10 [ 505.542630][T15326] __ia32_compat_sys_ioctl+0x242/0x370 [ 505.542670][T15326] __do_fast_syscall_32+0x7c/0x300 [ 505.542699][T15326] do_fast_syscall_32+0x32/0x80 [ 505.542715][T15326] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 505.542737][T15326] RIP: 0023:0xf702e579 [ 505.542751][T15326] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 505.542767][T15326] RSP: 002b:00000000f541e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 505.542783][T15326] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040946400 [ 505.542794][T15326] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000 [ 505.542804][T15326] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 505.542815][T15326] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 505.542825][T15326] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 505.542847][T15326] [ 505.548612][T15326] Kernel Offset: disabled VM DIAGNOSIS: 11:09:55 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000046 RBX=ffffffff8e5c1420 RCX=00000000e753f3f5 RDX=0000000000000000 RSI=ffffffff8de29fdd RDI=ffffffff8c163700 RBP=0000000000000002 RSP=ffffc90006caf6d8 R8 =88fc01ed9af92abf R9 =0000000000000000 R10=0000000000000003 R11=0000000000000000 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff81976441 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880974ba000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002f11affc CR3=000000000e380000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000000 RBX=0000000000000008 RCX=ffffffff95e1cce0 RDX=0000000000000008 RSI=ffff88802658d3e8 RDI=ffff88802658c880 RBP=ffffc90002df6c00 RSP=ffffc90002df6b60 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000078 R11=0000000000000001 R12=ffff88802658d3e8 R13=ffff88802658c880 R14=0000000000000003 R15=ffff88802658c880 RIP=ffffffff81973517 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f96bec12300 ffffffff 00c00000 GS =0000 ffff8880975ba000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000561a5ee7ef40 CR3=000000004785d000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=79ff68804f181096 e371cebf4cc773fa 79ff68804f181096 e371cebf4cc773fa 79ff68804f181096 e371cebf4cc773fa 79ff68804f181096 e371cebf4cc773fa ZMM18=b162f008ccdc5454 df8280ea56b41a9a b162f008ccdc5454 df8280ea56b41a9a b162f008ccdc5454 df8280ea56b41a9a b162f008ccdc5454 df8280ea56b41a9a ZMM19=cc54000000000000 0000000000000004 cc54000000000000 0000000000000003 cc54000000000000 0000000000000002 cc54000000000000 0000000000000001 ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8803000800069803 0008000690030000 000208060688033a 0400068003068002 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 138003080ca00205 0c800204a4e60800 0100000008060601 3ba8000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c01ffffffffff ffffffdf080c8003 0208000608003a08 ZMM24=9cab692b9cab692b 9cab692b9cab692b 9cab692b9cab692b 9cab692b9cab692b 9cab692b9cab692b 9cab692b9cab692b 9cab692b9cab692b 9cab692b9cab692b ZMM25=6cae93b46cae93b4 6cae93b46cae93b4 6cae93b46cae93b4 6cae93b46cae93b4 6cae93b46cae93b4 6cae93b46cae93b4 6cae93b46cae93b4 6cae93b46cae93b4 ZMM26=e7d931fce7d931fc e7d931fce7d931fc e7d931fce7d931fc e7d931fce7d931fc e7d931fce7d931fc e7d931fce7d931fc e7d931fce7d931fc e7d931fce7d931fc ZMM27=78d4758578d47585 78d4758578d47585 78d4758578d47585 78d4758578d47585 78d4758578d47585 78d4758578d47585 78d4758578d47585 78d4758578d47585 ZMM28=000000c0000000bf 000000be000000bd 000000bc000000bb 000000ba000000b9 000000b8000000b7 000000b6000000b5 000000b4000000b3 000000b2000000b1 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=a05c0000a05c0000 a05c0000a05c0000 a05c0000a05c0000 a05c0000a05c0000 a05c0000a05c0000 a05c0000a05c0000 a05c0000a05c0000 a05c0000a05c0000 info registers vcpu 2 CPU#2 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8561dc95 RDI=ffffffff9b102740 RBP=ffffffff9b102700 RSP=ffffc900065ff0a8 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000020 R14=ffffffff9b102700 R15=ffffffff8561dc30 RIP=ffffffff8561dcbf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880976ba000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000057aac4c0 CR3=000000004b8ad000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000000 RBX=0000000000000000 RCX=0000000000000000 RDX=0000000000000001 RSI=0000000000000001 RDI=ffffffff8e78b060 RBP=0000000000000001 RSP=ffffc90006fdf440 R8 =0000000000000005 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000002000 R13=ffffc90006fdf5e0 R14=ffffc90006fdf5f4 R15=0000000000000000 RIP=ffffffff85131584 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880977ba000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000002e711ffc CR3=000000000e380000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 cb258b9aaa4efbfe 377c3ebaa453c652 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 921472a33b113bf4 9a2d3abe3afa496f ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 139508637ba0b37d 6a08f20d41810f10 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 91a5f586fd43cf7e 9d78c4e990d53d8d ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000004000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 24f11e0065696000 000133a300000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 04711c0042171500 2786400048760b00 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 25731000000133a3 00000001000133a3 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000133a300000000 b90bd400000133a2 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 60276150992ca27a 9b8784496af36c24 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 29e237e4aa75fc57 ecf7e15ab6495810 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000