last executing test programs: 3m34.491793398s ago: executing program 1 (id=6739): r0 = socket$caif_seqpacket(0x25, 0x5, 0x3) ppoll(&(0x7f00000061c0)=[{r0, 0x104}], 0x1, 0x0, 0x0, 0x0) 3m33.597295202s ago: executing program 1 (id=6799): r0 = socket(0x10, 0x3, 0x0) connect$unix(r0, &(0x7f0000000100)=@abs={0x0, 0x0, 0x4e24}, 0x6e) 3m33.537021072s ago: executing program 1 (id=6803): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$sock_buf(r0, 0x1, 0x4a, 0x0, &(0x7f0000000280)) 3m33.522645802s ago: executing program 1 (id=6807): mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000140)=0xfffffffffffffffe, 0xb, 0x3) 3m33.462682808s ago: executing program 1 (id=6810): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8}) 3m33.45009262s ago: executing program 1 (id=6813): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000880)={0x30, 0x3e, 0x107, 0x0, 0x0, {0x4, 0x7c}, [@nested={0x4, 0x12}, @nested={0x18, 0x1, 0x0, 0x1, [@typed={0x14, 0xb3, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}]}]}, 0x30}}, 0x0) 3m23.291898773s ago: executing program 2 (id=7354): unshare(0x2a020480) r0 = memfd_create(&(0x7f0000000000)='\t^\x1ax1\xc7\xbe\xa1\xc6F\xfa\x9cq\xb1w&\xdfP\xba\xdf\xf9F\xc1\xd4x\xaa\x92~srQ\xeaS\x88\xad\xd1Js\\\xb2\xc5\xed\xe8\x7f\xdc(\x01\xcey\xc7\x15?\n\xad\xe7R\x9e\xe1K\xfd\xc95f@O}\\\xdd\xca!;\xf38\'D9\xcb\xda\xa1\xc1p\xd4)\x18x\x17\xab7\x06\x9f\xe3X\v\xf2\xcc\x05\xb4( m\xde\x0f\xf3\xf8\x1b\vW\x00\x90\x01\xfe\x1e<\xabL-3\xe6\x81V\x8d3\x1b$\x0e\x00\x00\x00\x00\x00\x00\x94&\xac\x88\x95\xff\xda\x14d\xcbx\bx\x95\xab\xcb@\x8d\xa0\xe4I\xff\x87\x90\xd9\x89O\x98\x90\x86\xff\xcc\xc1\xf5\r\xea\x19c\xba\xa9\"d$\x01h\x0f&/B\xa5\x18%\xc7\x00\x17\x00\x00sH\xc7ex#\xb0\xe4\x1b\xce\x0f\xear,-\n\xe6gB#\x8ch=:F$\xe6\x87\xf0AF\xd5\x84c\xd5\xd5(\xb3\xac\x9b\x80\x81y\xf1\a\x0f \xbb\xfa\xd3\x88\xad=5J\x13>u\x8c\x00\x00\x00\x00\xff\xff\xff\xff\xb8~\xaa-\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1f\xdf\xcf\b\x9f\xb6\xf2\x84\xbag\xe5.\xe4\x1f\xb3\xf4\xc6\xad\x06\x1btb\"\x87\x0f\xd7\xf9\x10~\xdc7\xe7\xdc\x11\xd8?\x040\xc5%%\x1c\x8d\xe0\xb99\x10\x11\x84\xbb\xa9\x9em\x1d\xfd\xd4\xcf\x8cH\xa6\x980\xadg\x9b\x8b$\x0e\x04\xd8\xaa\x17\xac\xf4\xda\xd0z\x87H\x03Du\x91\x839\xec\xd7\xde\xf2P\xf6dj-b\x84\x18\xe9\fy`\xca\x86Za7\xe4P\x95B\xeefTdk\x83\xcc\xa4\xa5\b\x1e\x998\x042\xb2\xdd\x8a\xea\xefQ\xf3-Z\a\xd3\xbb\xd5\x80\xb7\v\xa9\xae*\xca\xd90\xc8\xf4_\xe9N7*K:\xe1\xa4\xf7G\a\xd4Q\f7\xdeK,&\xf8\xe7\xffj\xd1\xae\xa1\x04\xf9\xd5\xc5\\\xcc:\xb1\xa70\x84\xf72 \xd1\xcb}Ky\xa5\x9bx&\xad\xf0U\x1aK\x8bN\xcd\xf50\xa3\xc7\xee\x7f\x1a#\xc9\xb3^\xdd/\x13\xb6\xe9%\xed\x04\xf4o}\x17U\x16C\xb2\xea7C\xb6fH$\xd6\xeb\x03\xd2\xa9\xa0\x9a\x93\xed-S\xe5p\xa28*\x98C\xa9\xf5\xf1*\xaa3\xb9\x88\xb3E\x03\x06\xf7\xa7', 0xa) fchmod(r0, 0x184) 3m23.239537463s ago: executing program 2 (id=7356): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee6, 0x8031, 0xffffffffffffffff, 0x85494000) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) 3m22.841861506s ago: executing program 2 (id=7372): capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000040)) r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000002000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 3m22.775399235s ago: executing program 2 (id=7374): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8010aebb, &(0x7f0000000740)={0x0, 0x12c, @pic={0x0, 0x0, 0x0, 0x0, 0x1}}) 3m22.67670091s ago: executing program 2 (id=7378): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8}) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) 3m22.623638813s ago: executing program 2 (id=7379): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x800c0}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xd}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x78}, 0x1, 0x0, 0x0, 0x41}, 0x80) 3m18.421056291s ago: executing program 32 (id=6813): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000880)={0x30, 0x3e, 0x107, 0x0, 0x0, {0x4, 0x7c}, [@nested={0x4, 0x12}, @nested={0x18, 0x1, 0x0, 0x1, [@typed={0x14, 0xb3, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}]}]}, 0x30}}, 0x0) 3m7.650666206s ago: executing program 33 (id=7379): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x800c0}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xd}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x78}, 0x1, 0x0, 0x0, 0x41}, 0x80) 2m55.67483025s ago: executing program 5 (id=8148): r0 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_SET_LINK_TOL(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x68, r0, 0x1, 0x70bd2c, 0x25dfdbfc, {{}, {}, {0x4c, 0x18, {0x2, @media='ib\x00'}}}}, 0x68}, 0x1, 0x0, 0x0, 0x800}, 0x80) 2m55.627568761s ago: executing program 5 (id=8154): r0 = syz_open_dev$vcsn(&(0x7f0000000000), 0x6, 0x242) fsetxattr$security_capability(r0, &(0x7f0000001cc0), &(0x7f0000001d00)=@v2={0x2000000, [{0x101, 0x7}, {0x4, 0x20000000}]}, 0x14, 0x1) write$USERIO_CMD_SEND_INTERRUPT(r0, &(0x7f0000001d80)={0x2, 0x4}, 0x2) 2m55.591518825s ago: executing program 5 (id=8157): r0 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f00000000c0)='asymmetric\x00', &(0x7f0000000100)=@chain={'key_or_keyring:', r1}) 2m55.566899167s ago: executing program 5 (id=8159): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000004300090000000000000000000300000008000200", @ANYRES32=r0], 0x1c}}, 0x24000044) 2m55.519789301s ago: executing program 5 (id=8161): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8}) fstat(r0, &(0x7f0000000300)) 2m55.510098943s ago: executing program 5 (id=8165): r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x213) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000980)=@ipv6_getaddr={0x20, 0x16, 0x1, 0x0, 0x0, {}, [@IFA_TARGET_NETNSID={0x8}]}, 0x20}}, 0x0) 2m40.501983987s ago: executing program 34 (id=8165): r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x213) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000980)=@ipv6_getaddr={0x20, 0x16, 0x1, 0x0, 0x0, {}, [@IFA_TARGET_NETNSID={0x8}]}, 0x20}}, 0x0) 1m53.478711054s ago: executing program 0 (id=10134): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)=@newlink={0x48, 0x10, 0x40d, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x24d10, 0x300}, [@IFLA_IFALIAS={0x14, 0x14, 'sit0\x00'}, @IFLA_ALT_IFNAME={0x14, 0x35, 'macvlan0\x00'}]}, 0x48}}, 0x0) sendmsg$inet(r0, &(0x7f0000000140)={0x0, 0x5b, &(0x7f0000000100), 0x1, 0x0, 0x0, 0x1f000801}, 0x40) 1m53.477937883s ago: executing program 0 (id=10135): r0 = timerfd_create(0x0, 0x80000) timerfd_settime(r0, 0x3, &(0x7f00000000c0)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0) timerfd_settime(r0, 0x1, &(0x7f0000000000)={{0x0, 0x3938700}}, 0x0) 1m53.406947026s ago: executing program 0 (id=10138): r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x9) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x17) 1m53.406161961s ago: executing program 0 (id=10141): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount$bind(&(0x7f0000000180)='.\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x45110, 0x0) mount$tmpfs(0x0, &(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000300)={[{@gid}]}) 1m53.352604872s ago: executing program 0 (id=10144): r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_ifreq(r0, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x4}) ioctl$sock_netdev_private(r0, 0x89f0, &(0x7f0000000000)) 1m53.051391627s ago: executing program 0 (id=10154): mkdir(&(0x7f0000000180)='./file0\x00', 0x30) mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='nr_inodes=2']) symlink(&(0x7f0000000200)='./file0/file1\x00', &(0x7f0000000240)='./file0/file1\x00') 1m52.939658865s ago: executing program 35 (id=10154): mkdir(&(0x7f0000000180)='./file0\x00', 0x30) mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='nr_inodes=2']) symlink(&(0x7f0000000200)='./file0/file1\x00', &(0x7f0000000240)='./file0/file1\x00') 18.04223617s ago: executing program 7 (id=12784): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000300), 0x10) syz_init_net_socket$ax25(0x3, 0x3, 0x0) sendmsg$can_bcm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000640)=ANY=[@ANYRES32=r0], 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x0) 17.951081885s ago: executing program 7 (id=12786): r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc) writev(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_mreqsrc(r0, 0x0, 0x28, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc) 17.950844572s ago: executing program 7 (id=12788): r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48) r2 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000001c0)={r0, r1, 0x5, 0x0, @void}, 0x10) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000040)={r2, r0, 0x4, r0}, 0x6) 17.896826663s ago: executing program 7 (id=12790): bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f00000000c0)='cpu.stat\x00', 0x275a, 0x0) preadv(r1, &(0x7f00000004c0)=[{&(0x7f0000001740)=""/12, 0xc}], 0x1, 0x4, 0x0) 17.894390608s ago: executing program 7 (id=12792): r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x83) sendmsg$nl_route_sched_retired(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newtaction={0xf0, 0x32, 0x205, 0x70bd2d, 0x25dfdbfc, {}, [{0xc9}]}, 0xf0}, 0x1, 0x0, 0x0, 0x85}, 0x8000) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000)) fstat(r0, &(0x7f0000000340)) 17.812027248s ago: executing program 7 (id=12793): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) bind$unix(r0, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) r1 = socket$unix(0x1, 0x2, 0x0) sendmsg$unix(r1, &(0x7f00000036c0)={&(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x40800}, 0x0) 2.822202773s ago: executing program 36 (id=12793): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) bind$unix(r0, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) r1 = socket$unix(0x1, 0x2, 0x0) sendmsg$unix(r1, &(0x7f00000036c0)={&(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x40800}, 0x0) 1.241915033s ago: executing program 6 (id=13242): r0 = socket$netlink(0x10, 0x3, 0x15) setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x0, @dev={0xac, 0x14, 0x14, 0x1b}, 0x0, 0x0, 'dh\x00'}, 0x2c) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2c00000010000000fcffffffffdb000400c6dd00", @ANYRES32=0x0, @ANYBLOB="0000000000000000090001"], 0x2c}, 0x1, 0x0, 0x0, 0x4000080}, 0x0) sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="04010000100053"], 0x104}, 0x1, 0x0, 0x0, 0x20040890}, 0x200080c0) 1.197508394s ago: executing program 6 (id=13241): r0 = epoll_create1(0x0) r1 = socket(0x10, 0x803, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0xc0002006}) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00') read$eventfd(r2, &(0x7f0000000340), 0x8) 1.051411313s ago: executing program 6 (id=13244): r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4d8, 0xdd, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xa0, 0x8, [{{0x9, 0x4, 0x0, 0xfe, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0xffff, 0xfd, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x3, 0x0, 0xfd}}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000080)={0x2c, &(0x7f00000012c0)={0x0, 0xb, 0x5, {0x5, 0xc, "26ed60"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$I2C(&(0x7f0000000280), 0x2, 0x1) ioctl$I2C_SMBUS(r1, 0x720, &(0x7f00000000c0)={0x1, 0x0, 0x5, &(0x7f0000000040)={0x2c, "178bc42ade35af5ea78400"}}) 501.221508ms ago: executing program 6 (id=13258): ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vcan0\x00'}) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) setrlimit(0x2, &(0x7f0000000040)={0x4, 0x23ffffd}) r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x2000002, 0x4052, r0, 0x0) 431.455301ms ago: executing program 6 (id=13259): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_X86_DISABLE_EXITS(r1, 0x4068aea3, &(0x7f0000000100)={0x8f, 0x0, 0xa}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, 0x0}], 0x1, 0x5b, 0x0, 0x0) 430.907391ms ago: executing program 6 (id=13263): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, 0x0) syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={{0x14}, [], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x28}}, 0x0) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11) 359.008168ms ago: executing program 8 (id=13266): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x1fd6b38443af8512}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_RAW={0x8, 0xc, 0x1}]}}]}, 0x3c}}, 0x4) 356.891916ms ago: executing program 4 (id=13273): bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000100)='cgroup.events\x00', 0x275a, 0x0) preadv(r1, &(0x7f00000013c0)=[{&(0x7f0000000040)=""/20, 0x14}], 0x1, 0x1000000, 0x0) 322.781957ms ago: executing program 4 (id=13268): r0 = userfaultfd(0x801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3}) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8) 322.218868ms ago: executing program 8 (id=13269): r0 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0\x00', 0x0}) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@ipv4_deladdr={0x20, 0x15, 0x1, 0xfffffffd, 0x0, {0x2, 0x18, 0x0, 0x7e, r1}, [@IFA_ADDRESS={0x8, 0x1, @multicast1}]}, 0x20}}, 0x0) 261.184529ms ago: executing program 4 (id=13271): r0 = socket$inet6(0xa, 0x5, 0x0) setsockopt$sock_int(r0, 0x1, 0x4000000000000002, &(0x7f0000fee000)=0x3fa, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) listen(r0, 0x621) 260.819987ms ago: executing program 4 (id=13272): r0 = socket$inet(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=@newqdisc={0x2c, 0x24, 0xf0b, 0x70bd2b, 0xfffffffd, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8801}, 0x0) 260.492237ms ago: executing program 8 (id=13274): r0 = userfaultfd(0x80001) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) ioctl$UFFDIO_CONTINUE(r0, 0xc020aa07, &(0x7f0000000100)={{&(0x7f0000428000/0x4000)=nil, 0x4000}}) 245.923251ms ago: executing program 3 (id=13275): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=@ipv6_newrule={0x38, 0x20, 0x1, 0x72bd27, 0x0, {0xa, 0x0, 0x20, 0x40, 0x0, 0x0, 0x0, 0x7}, [@FIB_RULE_POLICY=@FRA_DPORT_RANGE={0x8, 0x18, {0x4e20, 0x4e21}}, @FRA_SRC={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x17}}]}, 0x38}, 0x1, 0x0, 0x0, 0x24040804}, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='\\\x00\x00\x00!'], 0x5c}}, 0x0) 219.83696ms ago: executing program 4 (id=13283): mkdir(&(0x7f0000000440)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x200c008, &(0x7f0000000300)='usrquota') chdir(&(0x7f0000000280)='./file1\x00') r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000080)='.log\x00', 0x1812c1, 0x0) quotactl_fd$Q_GETFMT(r0, 0xffffffff80000400, 0x0, &(0x7f0000000240)) 219.49712ms ago: executing program 8 (id=13276): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2002, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece) read$FUSE(r2, &(0x7f00000022c0)={0x2020}, 0x2020) 219.365197ms ago: executing program 4 (id=13277): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'hsr0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="680000001000030500000000fcdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="00000000008000004800128008000100687372003c000280060005000180000008000100", @ANYRES32=r2, @ANYBLOB="0500060001000000050007000000000005000300df00000008000200", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r1], 0x68}}, 0x0) 215.384945ms ago: executing program 3 (id=13278): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-aesni\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) r1 = accept4(r0, 0x0, 0x0, 0x800) sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, &(0x7f00000021c0)=[@assoc={0x18, 0x117, 0x4, 0x6}], 0x18}], 0x1, 0x40800) 151.423823ms ago: executing program 3 (id=13279): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)=0x15) ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000002c0)=0x7e) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x7e) 151.31424ms ago: executing program 3 (id=13280): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(md5)\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000040)="b66f4e", 0x3}], 0x1, 0x0, 0x0, 0x4000}, 0x0) 100.213571ms ago: executing program 3 (id=13281): capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x3}) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6) io_setup(0x8f0, &(0x7f0000002400)=0x0) io_submit(r1, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r0, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}]) 99.959695ms ago: executing program 8 (id=13282): openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) socket$alg(0x26, 0x5, 0x0) r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f00000000c0)="240000005a001f001007f4f9002304000a04f51108000400020100020800038005000000", 0x24) 99.875014ms ago: executing program 8 (id=13284): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$kcm(0x2, 0x1, 0x84) sendmsg$inet(r0, &(0x7f0000000600)={&(0x7f00000001c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000640)="80", 0x26892}], 0x1}, 0xfc) sendmsg$inet(r0, &(0x7f0000000ac0)={&(0x7f00000005c0)={0x2, 0x4e24, @local}, 0x10, &(0x7f00000007c0)=[{&(0x7f0000000840)="9c", 0x1}], 0x1}, 0x10) 0s ago: executing program 3 (id=13285): timer_create(0x8, &(0x7f00000002c0)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r0 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r0, &(0x7f0000000200)={0x28, 0x0, 0xffffffff}, 0x10) kernel console output (not intermixed with test programs): 7110][ T5545] netlink: 'syz.4.10392': attribute type 1 has an invalid length. [ 285.769210][ T5563] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10398'. [ 285.772501][ T5563] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 285.775066][ T5563] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 285.778924][ T5563] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 285.781360][ T5563] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 285.785917][ T5563] batman_adv: batadv0: Interface deactivated: team0 [ 285.788027][ T5563] batman_adv: batadv0: Removing interface: team0 [ 286.484284][ T6115] Bluetooth: hci0: command 0x040f tx timeout [ 286.487948][ T6119] Bluetooth: hci0: Opcode 0x206a failed: -110 [ 286.952198][ T40] kauditd_printk_skb: 5 callbacks suppressed [ 286.952214][ T40] audit: type=1400 audit(286.892:55465): avc: denied { write } for pid=5612 comm="syz.6.10413" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 287.002177][ T5618] netlink: 'syz.6.10415': attribute type 8 has an invalid length. [ 287.051098][ T40] audit: type=1400 audit(286.992:55466): avc: denied { read } for pid=5621 comm="syz.6.10417" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 287.065854][ T6208] usb 12-1: new high-speed USB device number 2 using dummy_hcd [ 287.228041][ T6208] usb 12-1: Using ep0 maxpacket: 8 [ 287.237222][ T6208] usb 12-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 287.240226][ T6208] usb 12-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 287.243243][ T6208] usb 12-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 287.246703][ T6208] usb 12-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 287.250777][ T6208] usb 12-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 287.253603][ T6208] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 287.364156][ C0] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured! [ 287.463843][ T6208] usb 12-1: GET_CAPABILITIES returned 0 [ 287.465879][ T6208] usbtmc 12-1:16.0: can't read capabilities [ 287.664855][ T6208] usb 12-1: USB disconnect, device number 2 [ 287.774152][ T6122] Bluetooth: hci3: Entering manufacturer mode failed (-110) [ 287.774380][ T6119] Bluetooth: hci3: command 0xfc11 tx timeout [ 287.805288][ T5559] sp0: Synchronizing with TNC [ 287.876411][ T5695] netlink: 'syz.4.10436': attribute type 10 has an invalid length. [ 287.881646][ T5695] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 287.885011][ T5695] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 287.893721][ T5695] netlink: 'syz.4.10436': attribute type 10 has an invalid length. [ 287.896928][ T5695] netlink: 40 bytes leftover after parsing attributes in process `syz.4.10436'. [ 287.900535][ T5695] batadv0: entered promiscuous mode [ 287.902253][ T5695] batadv0: entered allmulticast mode [ 287.905110][ T5695] bond0: (slave batadv0): Releasing backup interface [ 287.935680][ T5695] bridge0: port 3(batadv0) entered blocking state [ 287.937897][ T5695] bridge0: port 3(batadv0) entered disabled state [ 287.984317][ T1153] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 287.988154][ T1153] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 288.126730][ T5720] netlink: 36 bytes leftover after parsing attributes in process `syz.4.10444'. [ 288.130469][ T5720] netlink: 36 bytes leftover after parsing attributes in process `syz.4.10444'. [ 288.331361][ T5753] GUP no longer grows the stack in syz.6.10457 (5753): 200000007000-20000000a000 (200000004000) [ 288.336033][ T5753] CPU: 0 UID: 0 PID: 5753 Comm: syz.6.10457 Not tainted syzkaller #0 PREEMPT(full) [ 288.336047][ T5753] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 288.336054][ T5753] Call Trace: [ 288.336059][ T5753] [ 288.336063][ T5753] dump_stack_lvl+0x16c/0x1f0 [ 288.336080][ T5753] gup_vma_lookup+0x1d2/0x220 [ 288.336094][ T5753] __get_user_pages+0x243/0x34a0 [ 288.336112][ T5753] ? xsk_setsockopt+0x6db/0x9a0 [ 288.336127][ T5753] ? do_sock_setsockopt+0xf3/0x1d0 [ 288.336140][ T5753] ? __sys_setsockopt+0x1a0/0x230 [ 288.336150][ T5753] ? __x64_sys_setsockopt+0xbd/0x160 [ 288.336160][ T5753] ? __pfx___get_user_pages+0x10/0x10 [ 288.336178][ T5753] __gup_longterm_locked+0x2dd/0x17e0 [ 288.336194][ T5753] ? __lock_acquire+0xb50/0x1ce0 [ 288.336212][ T5753] ? __pfx___gup_longterm_locked+0x10/0x10 [ 288.336233][ T5753] pin_user_pages+0x13c/0x160 [ 288.336248][ T5753] ? __pfx_pin_user_pages+0x10/0x10 [ 288.336263][ T5753] ? xdp_umem_create+0x652/0x1270 [ 288.336282][ T5753] xdp_umem_create+0x73c/0x1270 [ 288.336301][ T5753] xsk_setsockopt+0x6db/0x9a0 [ 288.336317][ T5753] ? __pfx_xsk_setsockopt+0x10/0x10 [ 288.336332][ T5753] ? find_held_lock+0x2b/0x80 [ 288.336347][ T5753] ? selinux_socket_setsockopt+0x6a/0x80 [ 288.336361][ T5753] ? __pfx_xsk_setsockopt+0x10/0x10 [ 288.336377][ T5753] do_sock_setsockopt+0xf3/0x1d0 [ 288.336392][ T5753] __sys_setsockopt+0x1a0/0x230 [ 288.336404][ T5753] __x64_sys_setsockopt+0xbd/0x160 [ 288.336414][ T5753] ? do_syscall_64+0x91/0x4c0 [ 288.336426][ T5753] ? lockdep_hardirqs_on+0x7c/0x110 [ 288.336437][ T5753] do_syscall_64+0xcd/0x4c0 [ 288.336449][ T5753] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.336460][ T5753] RIP: 0033:0x7fc23398ebe9 [ 288.336469][ T5753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 288.336479][ T5753] RSP: 002b:00007fc234792038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 288.336507][ T5753] RAX: ffffffffffffffda RBX: 00007fc233bc5fa0 RCX: 00007fc23398ebe9 [ 288.336515][ T5753] RDX: 0000000000000004 RSI: 000000000000011b RDI: 0000000000000003 [ 288.336521][ T5753] RBP: 00007fc233a11e19 R08: 0000000000000020 R09: 0000000000000000 [ 288.336528][ T5753] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000 [ 288.336535][ T5753] R13: 00007fc233bc6038 R14: 00007fc233bc5fa0 R15: 00007ffe43103558 [ 288.336550][ T5753] [ 288.478927][ T5776] MPI: mpi too large (16392 bits) [ 288.828460][ T5821] netlink: 20 bytes leftover after parsing attributes in process `syz.6.10482'. [ 288.886966][ T5826] netlink: 8 bytes leftover after parsing attributes in process `syz.6.10484'. [ 288.892426][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state [ 288.960311][ T5843] netlink: 80 bytes leftover after parsing attributes in process `syz.6.10492'. [ 289.048065][ T5863] pimreg: entered allmulticast mode [ 289.051023][ T5863] pimreg: left allmulticast mode [ 289.237101][ T5882] netlink: 20 bytes leftover after parsing attributes in process `syz.7.10504'. [ 289.240707][ T5882] netlink: 28 bytes leftover after parsing attributes in process `syz.7.10504'. [ 289.278681][ T5891] netlink: 24 bytes leftover after parsing attributes in process `syz.4.10510'. [ 289.544120][T28960] usb 12-1: new high-speed USB device number 3 using dummy_hcd [ 289.705377][T28960] usb 12-1: config 0 has no interfaces? [ 289.708356][T28960] usb 12-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 289.711506][T28960] usb 12-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 289.714269][T28960] usb 12-1: Product: syz [ 289.715789][T28960] usb 12-1: Manufacturer: syz [ 289.719145][T28960] usb 12-1: config 0 descriptor?? [ 289.740168][ T5913] netlink: 'syz.3.10515': attribute type 25 has an invalid length. [ 289.742890][ T5913] netlink: 'syz.3.10515': attribute type 8 has an invalid length. [ 289.848094][ T40] audit: type=1400 audit(289.792:55467): avc: denied { watch } for pid=5922 comm="syz.3.10525" path="/2721/file0" dev="tmpfs" ino=13732 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 289.927334][ T6122] Bluetooth: hci1: adv larger than maximum supported [ 289.927386][ T6122] Bluetooth: hci1: Unknown advertising packet type: 0x7f [ 289.927741][ T6181] usb 12-1: USB disconnect, device number 3 [ 289.929921][ T6122] Bluetooth: hci1: Malformed LE Event: 0x0d [ 289.941529][ T40] audit: type=1400 audit(289.882:55468): avc: denied { accept } for pid=5931 comm="syz.3.10522" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 290.473829][ T5951] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2 [ 290.843580][ T6106] hid_parser_main: 73 callbacks suppressed [ 290.843593][ T6106] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 290.848561][ T6106] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 290.850884][ T6106] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 290.853322][ T6106] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 290.856076][ T6106] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 290.859187][ T6106] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 290.861815][ T6106] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 290.864485][ T6106] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 290.867524][ T6106] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 290.870179][ T6106] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 290.878470][ T6106] hid-generic 0003:0004:0000.0007: hidraw1: USB HID v0.00 Device [syz0] on syz1 [ 290.915105][ T6208] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 291.922464][ T6007] netlink: 8 bytes leftover after parsing attributes in process `syz.7.10547'. [ 291.937423][ T40] audit: type=1400 audit(291.882:55469): avc: denied { getopt } for pid=6008 comm="syz.3.10549" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 291.938048][ T6011] openvswitch: netlink: Tunnel attr 16370 out of range max 16 [ 291.975181][ T40] audit: type=1326 audit(291.922:55470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6017 comm="syz.6.10553" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc23398ebe9 code=0x0 [ 292.039831][ T6024] e1000 0000:00:06.0 eth0: Unsupported Speed/Duplex configuration [ 292.159436][ T6039] netlink: 16 bytes leftover after parsing attributes in process `syz.7.10560'. [ 292.279164][ T40] audit: type=1400 audit(292.222:55471): avc: denied { mounton } for pid=6045 comm="syz.7.10564" path="/proc/184/task/185/net" dev="proc" ino=94049 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1 [ 292.837384][ T40] audit: type=1400 audit(292.782:55472): avc: denied { ioctl } for pid=6060 comm="syz.6.10566" path="socket:[96508]" dev="sockfs" ino=96508 ioctlcmd=0x8983 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 292.935228][ T6068] netlink: 24 bytes leftover after parsing attributes in process `syz.4.10569'. [ 292.939552][ T6068] netlink: 24 bytes leftover after parsing attributes in process `syz.4.10569'. [ 292.989778][ T6074] loop6: detected capacity change from 0 to 63 [ 292.993510][ T6074] buffer_io_error: 11 callbacks suppressed [ 292.993520][ T6074] Buffer I/O error on dev loop6, logical block 0, lost async page write [ 292.998462][ T6074] Buffer I/O error on dev loop6, logical block 1, lost async page write [ 293.001104][ T6074] Buffer I/O error on dev loop6, logical block 2, lost async page write [ 293.004642][ T6074] Buffer I/O error on dev loop6, logical block 3, lost async page write [ 293.008758][ T6074] Buffer I/O error on dev loop6, logical block 4, lost async page write [ 293.008872][ T439] Buffer I/O error on dev loop6, logical block 6, lost async page write [ 293.011801][ T6074] Buffer I/O error on dev loop6, logical block 5, lost async page write [ 293.048649][ T6081] netlink: 'syz.4.10574': attribute type 9 has an invalid length. [ 294.671883][ T40] audit: type=1400 audit(294.612:55473): avc: denied { remount } for pid=6241 comm="syz.6.10627" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 294.870906][ T40] audit: type=1400 audit(294.812:55474): avc: denied { listen } for pid=6268 comm="syz.6.10639" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 294.911971][ T6274] netlink: 'syz.7.10641': attribute type 4 has an invalid length. [ 294.925994][ T40] audit: type=1400 audit(294.872:55475): avc: denied { ioctl } for pid=6275 comm="syz.4.10642" path="socket:[97338]" dev="sockfs" ino=97338 ioctlcmd=0x4947 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 294.947687][ T6280] erspan0: entered promiscuous mode [ 295.007531][ T6294] tc_dump_action: action bad kind [ 295.039987][ T6302] netlink: 'syz.4.10653': attribute type 1 has an invalid length. [ 295.042495][ T6302] netlink: 'syz.4.10653': attribute type 1 has an invalid length. [ 295.046170][ T6302] __nla_validate_parse: 6 callbacks suppressed [ 295.046179][ T6302] netlink: 160 bytes leftover after parsing attributes in process `syz.4.10653'. [ 295.051001][ T6302] netlink: 'syz.4.10653': attribute type 1 has an invalid length. [ 295.053591][ T6302] netlink: 12 bytes leftover after parsing attributes in process `syz.4.10653'. [ 295.206329][ T6330] netlink: 8 bytes leftover after parsing attributes in process `syz.6.10663'. [ 295.209371][ T6330] netlink: 12 bytes leftover after parsing attributes in process `syz.6.10663'. [ 295.212345][ T6330] netlink: 'syz.6.10663': attribute type 7 has an invalid length. [ 295.242265][ T6337] netlink: 'syz.6.10665': attribute type 12 has an invalid length. [ 295.246308][ T6337] netlink: 120 bytes leftover after parsing attributes in process `syz.6.10665'. [ 295.334175][ T6181] usb 9-1: new high-speed USB device number 7 using dummy_hcd [ 295.485733][ T6181] usb 9-1: config index 0 descriptor too short (expected 39, got 27) [ 295.489085][ T6181] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 295.493211][ T6181] usb 9-1: config 0 interface 0 has no altsetting 0 [ 295.503932][ T6181] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 295.507942][ T6181] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 295.510671][ T6181] usb 9-1: Product: syz [ 295.512161][ T6181] usb 9-1: Manufacturer: syz [ 295.513949][ T6181] usb 9-1: SerialNumber: syz [ 295.517260][ T6181] usb 9-1: config 0 descriptor?? [ 295.520386][ T6181] hub 9-1:0.0: bad descriptor, ignoring hub [ 295.522341][ T6181] hub 9-1:0.0: probe with driver hub failed with error -5 [ 295.530217][ T6181] usb 9-1: selecting invalid altsetting 0 [ 295.551907][ T40] audit: type=1400 audit(295.492:55476): avc: denied { read } for pid=6401 comm="syz.3.10686" name="mice" dev="devtmpfs" ino=939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1 [ 295.584132][ T6106] usb 11-1: new high-speed USB device number 4 using dummy_hcd [ 295.755059][ T6106] usb 11-1: Using ep0 maxpacket: 8 [ 295.765790][ T6106] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 295.768853][ T6106] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 295.771831][ T6106] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 295.775701][ T6106] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 295.779764][ T6106] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 295.782895][ T6106] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 295.844226][ T6122] Bluetooth: hci0: command 0x040f tx timeout [ 295.894385][ T6428] misc userio: Can't change port type on an already running userio instance [ 295.993622][ T6106] usb 11-1: GET_CAPABILITIES returned 0 [ 295.996837][ T6106] usbtmc 11-1:16.0: can't read capabilities [ 296.008356][ T6443] tap0: tun_chr_ioctl cmd 1074025675 [ 296.010106][ T6443] tap0: persist disabled [ 296.197026][ T6181] usb 11-1: USB disconnect, device number 4 [ 296.252257][ T40] audit: type=1400 audit(296.192:55477): avc: denied { ioctl } for pid=6464 comm="syz.7.10700" path="socket:[96852]" dev="sockfs" ino=96852 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 296.287465][ T6465] bridge0: port 2(bridge_slave_1) entered disabled state [ 296.414226][ T40] audit: type=1400 audit(296.362:55478): avc: denied { create } for pid=6481 comm="syz.7.10705" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1 [ 296.418696][T28960] usb 9-1: USB disconnect, device number 7 [ 296.422128][ T40] audit: type=1400 audit(296.362:55479): avc: denied { sys_admin } for pid=6481 comm="syz.7.10705" capability=21 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1 [ 296.574151][T28960] usb 9-1: new full-speed USB device number 8 using dummy_hcd [ 296.736995][T28960] usb 9-1: config index 0 descriptor too short (expected 39, got 27) [ 296.739916][T28960] usb 9-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 296.743023][T28960] usb 9-1: config 0 interface 0 has no altsetting 0 [ 296.747035][T28960] usb 9-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 296.749903][T28960] usb 9-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 296.752496][T28960] usb 9-1: Product: syz [ 296.753869][T28960] usb 9-1: Manufacturer: syz [ 296.755978][T28960] usb 9-1: SerialNumber: syz [ 296.759463][T28960] usb 9-1: config 0 descriptor?? [ 296.762686][T28960] hub 9-1:0.0: bad descriptor, ignoring hub [ 296.765343][T28960] hub 9-1:0.0: probe with driver hub failed with error -5 [ 296.769729][T28960] usb 9-1: selecting invalid altsetting 0 [ 296.982970][ T6582] netlink: 72 bytes leftover after parsing attributes in process `syz.6.10727'. [ 297.009118][ T6585] sch_tbf: peakrate 5120 is lower than or equals to rate 4294927007 ! [ 297.084433][ T6106] usb 9-1: USB disconnect, device number 8 [ 297.142311][ T40] audit: type=1400 audit(297.082:55480): avc: denied { read } for pid=6605 comm="syz.6.10731" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 297.744129][ T6106] usb 9-1: new high-speed USB device number 9 using dummy_hcd [ 297.904138][ T6106] usb 9-1: Using ep0 maxpacket: 8 [ 297.907142][ T6106] usb 9-1: config 0 has an invalid interface number: 55 but max is 0 [ 297.909811][ T6106] usb 9-1: config 0 has no interface number 0 [ 297.912210][ T6106] usb 9-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 297.915852][ T6106] usb 9-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 297.919493][ T6106] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 297.923438][ T6106] usb 9-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 297.927751][ T6106] usb 9-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 297.930871][ T6106] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 297.934948][ T6106] usb 9-1: config 0 descriptor?? [ 297.939023][ T6106] ldusb 9-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 297.964111][ T6181] usb 12-1: new high-speed USB device number 4 using dummy_hcd [ 298.114105][ T6181] usb 12-1: Using ep0 maxpacket: 16 [ 298.117236][ T6181] usb 12-1: config 0 has no interfaces? [ 298.119743][ T6181] usb 12-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 298.122629][ T6181] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 298.125270][ T6181] usb 12-1: SerialNumber: syz [ 298.129443][ T6181] usb 12-1: config 0 descriptor?? [ 298.140749][T28960] usb 9-1: USB disconnect, device number 9 [ 298.144018][T28960] ldusb 9-1:0.55: LD USB Device #0 now disconnected [ 298.335600][ T6106] usb 12-1: USB disconnect, device number 4 [ 298.462568][ T6672] sctp: Trying to GSO but underlying device doesn't support it. [ 298.932056][ T40] audit: type=1400 audit(298.872:55481): avc: denied { bind } for pid=6703 comm="syz.6.10755" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 299.060080][ T6715] netlink: 4 bytes leftover after parsing attributes in process `syz.6.10759'. [ 299.088550][ T6718] netlink: 20 bytes leftover after parsing attributes in process `syz.6.10760'. [ 299.146293][ T6725] netlink: 4 bytes leftover after parsing attributes in process `syz.6.10763'. [ 299.331079][ T40] audit: type=1400 audit(299.272:55482): avc: denied { getopt } for pid=6738 comm="syz.6.10767" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 299.454125][ T10] usb 12-1: new high-speed USB device number 5 using dummy_hcd [ 299.522706][ T6749] vimc link validate: Scaler:src:16x16 (0x33524742, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0) [ 299.604513][ T10] usb 12-1: Using ep0 maxpacket: 8 [ 299.609662][ T10] usb 12-1: config 168 descriptor has 1 excess byte, ignoring [ 299.612845][ T10] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 299.618132][ T10] usb 12-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 299.622873][ T10] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 299.628748][ T10] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 299.633433][ T10] usb 12-1: config 168 descriptor has 1 excess byte, ignoring [ 299.636511][ T10] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 299.639926][ T10] usb 12-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 299.644329][ T10] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 299.648913][ T10] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 299.655561][ T10] usb 12-1: config 168 descriptor has 1 excess byte, ignoring [ 299.658651][ T10] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 299.663211][ T10] usb 12-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 299.667455][ T10] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 299.671598][ T10] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 299.679190][ T10] usb 12-1: string descriptor 0 read error: -22 [ 299.681244][ T10] usb 12-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 299.684364][ T10] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 299.690495][ T10] adutux 12-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 299.846470][ T6788] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 299.885535][ T6797] could not open pipe file descriptor [ 299.894319][ T10] usb 12-1: USB disconnect, device number 5 [ 300.282402][ T6860] netlink: 12 bytes leftover after parsing attributes in process `syz.3.10809'. [ 300.304194][ T6184] usb 11-1: new full-speed USB device number 5 using dummy_hcd [ 300.465838][ T6184] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 300.469033][ T6184] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 300.472279][ T6184] usb 11-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8 [ 300.476121][ T6184] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 300.482879][ T6184] usb 11-1: config 0 descriptor?? [ 300.489001][ T6184] dvb-usb: found a 'Artec T1 USB2.0' in warm state. [ 300.491473][ T6184] dvb-usb: bulk message failed: -22 (3/0) [ 300.495305][ T6184] dvb-usb: will use the device's hardware PID filter (table count: 16). [ 300.498509][ T6184] dvbdev: DVB: registering new adapter (Artec T1 USB2.0) [ 300.500899][ T6184] usb 11-1: media controller created [ 300.503561][ T6184] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 300.510839][ T6184] dvb-usb: bulk message failed: -22 (6/0) [ 300.512861][ T6184] dvb-usb: no frontend was attached by 'Artec T1 USB2.0' [ 300.516795][ T6184] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.6/usb11/11-1/input/input28 [ 300.520987][ T6184] dvb-usb: schedule remote query interval to 150 msecs. [ 300.523172][ T6184] dvb-usb: Artec T1 USB2.0 successfully initialized and connected. [ 300.676311][ T6184] dvb-usb: bulk message failed: -22 (1/0) [ 300.679842][ T6184] dvb-usb: error while querying for an remote control event. [ 300.690564][ T6832] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 300.693821][ T6832] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 300.699812][ T6184] usb 11-1: USB disconnect, device number 5 [ 300.779649][ T6184] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected. [ 300.851882][ T6942] can0: slcan on ttyS3. [ 300.914672][ T6942] can0 (unregistered): slcan off ttyS3. [ 300.941367][ T6959] SELinux: failure in selinux_parse_skb(), unable to parse packet [ 300.966251][ T40] audit: type=1400 audit(300.912:55483): avc: denied { mounton } for pid=6963 comm="syz.7.10837" path="/159/file0" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:devpts_t tclass=dir permissive=1 [ 301.058371][ T6969] hid-generic 0003:0627:0001.0003: pid 6969 passed too short report [ 301.270890][ T6994] dvmrp17: entered allmulticast mode [ 301.294999][ T6994] dvmrp17: left allmulticast mode [ 301.369068][ T7018] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0 [ 301.393838][ T7020] block nbd3: Attempted send on invalid socket [ 301.396132][ T7020] I/O error, dev nbd3, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 301.399312][ T7020] block nbd3: Attempted send on invalid socket [ 301.399703][ T40] audit: type=1400 audit(301.342:55484): avc: denied { remount } for pid=7021 comm="syz.7.10857" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 301.401624][ T7020] I/O error, dev nbd3, sector 256 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 301.411196][ T7020] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 301.414681][ T7020] block nbd3: Attempted send on invalid socket [ 301.416933][ T7020] I/O error, dev nbd3, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 301.422385][ T7020] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 301.427365][ T7020] block nbd3: Attempted send on invalid socket [ 301.429734][ T7020] I/O error, dev nbd3, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 301.433000][ T7020] block nbd3: Attempted send on invalid socket [ 301.436979][ T7020] I/O error, dev nbd3, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 301.439927][ T7020] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 301.442993][ T7020] block nbd3: Attempted send on invalid socket [ 301.445851][ T7020] I/O error, dev nbd3, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 301.449417][ T7020] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 301.452737][ T7020] block nbd3: Attempted send on invalid socket [ 301.455016][ T7020] I/O error, dev nbd3, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 301.458989][ T7020] block nbd3: Attempted send on invalid socket [ 301.461016][ T7020] I/O error, dev nbd3, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 301.463998][ T7020] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 301.467498][ T7020] block nbd3: Attempted send on invalid socket [ 301.469479][ T7020] I/O error, dev nbd3, sector 2048 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 301.472455][ T7020] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 301.476176][ T7020] block nbd3: Attempted send on invalid socket [ 301.478129][ T7020] I/O error, dev nbd3, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 301.481151][ T7020] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 301.485111][ T7020] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 301.490763][ T7020] UDF-fs: warning (device nbd3): udf_fill_super: No partition found (1) [ 301.574722][ T7045] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10864'. [ 301.589041][ T7047] netlink: 28 bytes leftover after parsing attributes in process `syz.6.10865'. [ 301.591949][ T7047] netlink: 32 bytes leftover after parsing attributes in process `syz.6.10865'. [ 301.596175][ T7047] netlink: 28 bytes leftover after parsing attributes in process `syz.6.10865'. [ 301.599134][ T7047] netlink: 32 bytes leftover after parsing attributes in process `syz.6.10865'. [ 301.762261][ T7071] netlink: 20 bytes leftover after parsing attributes in process `syz.6.10876'. [ 301.838725][ T7077] netlink: 32 bytes leftover after parsing attributes in process `syz.6.10877'. [ 301.869648][ T7081] sp0: Synchronizing with TNC [ 301.869664][ T7083] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10880'. [ 302.124586][ T6181] usb 12-1: new high-speed USB device number 6 using dummy_hcd [ 302.284293][ T6181] usb 12-1: Using ep0 maxpacket: 16 [ 302.289155][ T6181] usb 12-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 302.292662][ T6181] usb 12-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 302.296293][ T6181] usb 12-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18 [ 302.301004][ T6181] usb 12-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 302.303803][ T6181] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 302.307884][ T6181] usb 12-1: SerialNumber: syz [ 302.311786][ T6181] cdc_ether 12-1:1.0: probe with driver cdc_ether failed with error -22 [ 302.445642][ T40] audit: type=1400 audit(302.392:55485): avc: denied { getopt } for pid=7151 comm="syz.6.10900" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 302.468121][ T7154] netlink: 'syz.6.10901': attribute type 17 has an invalid length. [ 302.470607][ T7154] netlink: 5 bytes leftover after parsing attributes in process `syz.6.10901'. [ 302.473367][ T7154] macvtap0: entered allmulticast mode [ 302.475469][ T7154] veth0_macvtap: entered allmulticast mode [ 302.478423][ T7154] A link change request failed with some changes committed already. Interface macvtap0 may have been left with an inconsistent configuration, please check. [ 302.519746][ T6106] usb 12-1: USB disconnect, device number 6 [ 302.539536][ T40] audit: type=1400 audit(302.482:55486): avc: denied { connect } for pid=7169 comm="syz.6.10904" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 302.734469][ T6058] usb 9-1: new high-speed USB device number 10 using dummy_hcd [ 302.736255][ T7182] SELinux: ebitmap: truncated map [ 302.741916][ T7182] SELinux: failed to load policy [ 302.836872][ T7189] raw_sendmsg: syz.6.10912 forgot to set AF_INET. Fix it! [ 302.895775][ T6058] usb 9-1: too many configurations: 9, using maximum allowed: 8 [ 302.898929][ T6058] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 302.901930][ T6058] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 302.905978][ T6058] usb 9-1: config 0 interface 0 has no altsetting 0 [ 302.908771][ T6058] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 302.911572][ T6058] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 302.915432][ T6058] usb 9-1: config 0 interface 0 has no altsetting 0 [ 302.918272][ T6058] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 302.921069][ T6058] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 302.926027][ T6058] usb 9-1: config 0 interface 0 has no altsetting 0 [ 302.928994][ T6058] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 302.931811][ T6058] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 302.935522][ T6058] usb 9-1: config 0 interface 0 has no altsetting 0 [ 302.938306][ T6058] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 302.941172][ T6058] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 302.944666][ T6058] usb 9-1: config 0 interface 0 has no altsetting 0 [ 302.947817][ T6058] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 302.950670][ T6058] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 302.954699][ T6058] usb 9-1: config 0 interface 0 has no altsetting 0 [ 302.959478][ T6058] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 302.962395][ T6058] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 302.965789][ T6058] usb 9-1: config 0 interface 0 has no altsetting 0 [ 302.972267][ T6058] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 302.975410][ T6058] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 302.978746][ T6058] usb 9-1: config 0 interface 0 has no altsetting 0 [ 302.982309][ T6058] usb 9-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 302.985206][ T6058] usb 9-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 302.987842][ T6058] usb 9-1: Product: syz [ 302.989170][ T6058] usb 9-1: Manufacturer: syz [ 302.990638][ T6058] usb 9-1: SerialNumber: syz [ 302.993437][ T6058] usb 9-1: config 0 descriptor?? [ 302.997839][ T6058] yurex 9-1:0.0: USB YUREX device now attached to Yurex #0 [ 303.203065][ T6106] usb 9-1: USB disconnect, device number 10 [ 303.206458][ T6106] yurex 9-1:0.0: USB YUREX #0 now disconnected [ 303.294460][ T6181] usb 11-1: new high-speed USB device number 6 using dummy_hcd [ 303.347515][ T40] audit: type=1400 audit(303.292:55487): avc: denied { ioctl } for pid=7252 comm="syz.3.10933" path="socket:[98156]" dev="sockfs" ino=98156 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 303.448253][ T6181] usb 11-1: config index 0 descriptor too short (expected 39, got 27) [ 303.450832][ T6181] usb 11-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 303.453990][ T6181] usb 11-1: config 0 interface 0 has no altsetting 0 [ 303.458396][ T6181] usb 11-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 303.461301][ T6181] usb 11-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 303.463894][ T6181] usb 11-1: Product: syz [ 303.465551][ T6181] usb 11-1: Manufacturer: syz [ 303.467073][ T6181] usb 11-1: SerialNumber: syz [ 303.470057][ T6181] usb 11-1: config 0 descriptor?? [ 303.472836][ T6181] hub 11-1:0.0: bad descriptor, ignoring hub [ 303.475214][ T6181] hub 11-1:0.0: probe with driver hub failed with error -5 [ 303.480039][ T6181] usb 11-1: selecting invalid altsetting 0 [ 304.353181][ T5342] hid_parser_main: 8 callbacks suppressed [ 304.353193][ T5342] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 304.358018][ T5342] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 304.360296][ T5342] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 304.363344][ T5342] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 304.366617][ T5342] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 304.368940][ T5342] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 304.371390][ T5342] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 304.373697][ T5342] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 304.376288][ T5342] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 304.378443][ T5342] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 304.383438][ T5342] hid-generic 0000:0000:0000.0008: hidraw1: HID v0.00 Device [Zw[ba|\rn)A#6oү?aIs5hV3(; [ 304.383438][ T5342] ѝP$zɷX$w[SRezxuSrl[5l'ZCz2] on tDKY縣Ϫ򞿹,UOp{"ixA[ewÒ}ZXA [ 304.393015][ T7212] usb 11-1: reset high-speed USB device number 6 using dummy_hcd [ 304.547989][ T7212] usb 11-1: device firmware changed [ 304.556100][ T6181] usb 11-1: USB disconnect, device number 6 [ 304.710189][ T6181] usb 11-1: new high-speed USB device number 7 using dummy_hcd [ 304.847630][ T7387] : left promiscuous mode [ 304.881796][ T6181] usb 11-1: config index 0 descriptor too short (expected 39, got 27) [ 304.884551][ T6181] usb 11-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 304.887538][ T6181] usb 11-1: config 0 interface 0 has no altsetting 0 [ 304.895171][ T6181] usb 11-1: string descriptor 0 read error: -22 [ 304.897208][ T6181] usb 11-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 304.900013][ T6181] usb 11-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 304.903726][ T6181] usb 11-1: config 0 descriptor?? [ 304.907789][ T6181] hub 11-1:0.0: bad descriptor, ignoring hub [ 304.909717][ T6181] hub 11-1:0.0: probe with driver hub failed with error -5 [ 304.928148][ T6181] usb 11-1: selecting invalid altsetting 0 [ 305.126098][ T7433] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check. [ 305.136475][ T7440] erspan0: entered promiscuous mode [ 305.224321][ T5342] usb 11-1: USB disconnect, device number 7 [ 305.322539][ T7478] mkiss: ax0: crc mode is auto. [ 305.621474][ T7519] kvm: kvm [7517]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x40000050) = 0x0 [ 305.756041][ T6122] block nbd0: Receive control failed (result -32) [ 305.890519][ T7548] __nla_validate_parse: 4 callbacks suppressed [ 305.890537][ T7548] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11028'. [ 305.898579][ T7548] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 305.905203][ T7548] bridge0: port 2(bridge_slave_1) entered disabled state [ 305.910091][ T7548] bridge0: port 1(bridge_slave_0) entered disabled state [ 306.229225][ T7587] tap0: tun_chr_ioctl cmd 1074025677 [ 306.231606][ T7587] tap0: linktype set to 270 [ 306.261272][ T7600] netlink: 'syz.3.11048': attribute type 6 has an invalid length. [ 306.264004][ T7600] netlink: 36 bytes leftover after parsing attributes in process `syz.3.11048'. [ 306.267891][ T7600] bridge0: port 2(bridge_slave_1) entered disabled state [ 306.271119][ T7600] bridge0: port 1(bridge_slave_0) entered disabled state [ 306.374780][ T1145] batman_adv: batadv0: IGMP Querier appeared [ 306.376805][ T1145] batman_adv: batadv0: MLD Querier appeared [ 306.414508][ T6122] Bluetooth: hci4: unexpected event for opcode 0x2011 [ 306.525418][ T7629] netlink: 12 bytes leftover after parsing attributes in process `syz.3.11061'. [ 306.570167][ T7639] netlink: 4 bytes leftover after parsing attributes in process `syz.4.11065'. [ 306.925060][ T7665] block nbd1: server does not support multiple connections per device. [ 306.928427][ T7665] block nbd1: shutting down sockets [ 307.470620][ T40] audit: type=1400 audit(307.412:55488): avc: denied { shutdown } for pid=7748 comm="syz.7.11109" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 307.749786][ T7805] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes. [ 307.807662][ T7813] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11137'. [ 307.888646][ T40] audit: type=1400 audit(307.832:55489): avc: denied { mount } for pid=7818 comm="syz.3.11139" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 308.351317][ T7870] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11157'. [ 308.509362][ T7890] dvmrp1: entered allmulticast mode [ 309.619336][ T7978] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7978 comm=syz.6.11195 [ 309.831790][ T8003] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0 [ 309.878100][ T8009] netlink: 'syz.4.11207': attribute type 1 has an invalid length. [ 309.885065][ T8011] netlink: 16 bytes leftover after parsing attributes in process `syz.3.11208'. [ 310.485496][ T6122] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 310.488242][ T6122] Bluetooth: hci4: Injecting HCI hardware error event [ 310.492024][ T6122] Bluetooth: hci4: hardware error 0x00 [ 310.539516][ T8074] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11233'. [ 311.073166][ T8121] binder: 8120:8121 ioctl 4018620d 0 returned -22 [ 311.153068][ T40] audit: type=1400 audit(311.092:55490): avc: denied { setopt } for pid=8128 comm="syz.3.11252" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 311.857848][ T8172] netlink: 28 bytes leftover after parsing attributes in process `syz.7.11266'. [ 311.952309][ T40] audit: type=1400 audit(311.892:55491): avc: denied { ioctl } for pid=8179 comm="syz.7.11270" path="socket:[101864]" dev="sockfs" ino=101864 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sock_file permissive=1 [ 312.084463][ T6119] Bluetooth: hci1: command 0x041b tx timeout [ 312.415129][ T8222] netlink: 28 bytes leftover after parsing attributes in process `syz.6.11287'. [ 312.443017][ T8224] bond0: option mode: unable to set because the bond device has slaves [ 312.496364][ T40] audit: type=1326 audit(312.442:55492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8229 comm="syz.7.11291" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1b9f78ebe9 code=0x0 [ 312.574281][ T6122] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 312.605160][ T8242] netlink: 4 bytes leftover after parsing attributes in process `syz.6.11296'. [ 312.609089][ T8242] netlink: 32 bytes leftover after parsing attributes in process `syz.6.11296'. [ 312.652395][ T40] audit: type=1326 audit(312.592:55493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8245 comm="syz.6.11298" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc23398ebe9 code=0x0 [ 312.670088][ T8248] macvlan2: entered promiscuous mode [ 312.671820][ T8248] bridge0: entered promiscuous mode [ 312.863911][ T8260] Attempt to restore checkpoint with obsolete wellknown handles [ 313.376494][ T8270] veth1_to_batadv: entered promiscuous mode [ 313.533214][ T8289] netlink: 'syz.4.11313': attribute type 11 has an invalid length. [ 313.536024][ T8289] netlink: 44 bytes leftover after parsing attributes in process `syz.4.11313'. [ 313.615021][ T8298] netlink: 44 bytes leftover after parsing attributes in process `syz.4.11316'. [ 313.751434][ T10] IPVS: starting estimator thread 0... [ 313.751552][ T8318] IPVS: ovf: FWM 3 0x00000003 - no destination available [ 313.837840][ T8329] netlink: 12 bytes leftover after parsing attributes in process `syz.6.11329'. [ 313.856064][ T8319] IPVS: using max 48 ests per chain, 115200 per kthread [ 313.866529][ T8333] loop7: detected capacity change from 0 to 7 [ 313.872125][ C3] blk_print_req_error: 2 callbacks suppressed [ 313.872135][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 313.877056][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 313.879891][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 313.882909][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 313.885761][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 313.889475][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 313.892917][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 313.896725][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 313.900076][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 313.903962][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 313.907526][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 313.911922][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 313.916489][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 313.920298][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 313.923414][ T8333] ldm_validate_partition_table(): Disk read failed. [ 313.944678][ T8340] Invalid logical block size (6) [ 313.950144][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 313.953859][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 313.956776][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 313.960863][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 313.964698][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 313.968473][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 313.974991][ T8333] Dev loop7: unable to read RDB block 0 [ 313.977768][ T8333] loop7: unable to read partition table [ 313.980334][ T8333] loop7: partition table beyond EOD, truncated [ 313.982839][ T8333] loop_reread_partitions: partition scan of loop7 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 314.049412][ T6058] hid-generic 0004:0004:0007.0009: item fetching failed at offset 5/9 [ 314.052685][ T6058] hid-generic 0004:0004:0007.0009: probe with driver hid-generic failed with error -22 [ 314.374689][ T6208] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 314.955029][ T6208] usb 9-1: new high-speed USB device number 11 using dummy_hcd [ 315.114134][ T6208] usb 9-1: Using ep0 maxpacket: 8 [ 315.117171][ T6208] usb 9-1: config 0 has no interfaces? [ 315.120786][ T6208] usb 9-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04 [ 315.124794][ T6208] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 315.128090][ T6208] usb 9-1: Product: syz [ 315.129892][ T6208] usb 9-1: Manufacturer: syz [ 315.131811][ T6208] usb 9-1: SerialNumber: syz [ 315.136988][ T6208] usb 9-1: config 0 descriptor?? [ 315.341683][ T6208] usb 9-1: USB disconnect, device number 11 [ 315.436692][ T8454] syzkaller1: tun_chr_ioctl cmd 1074025678 [ 315.438756][ T8454] syzkaller1: group set to 15 [ 315.470728][ T8462] netlink: 8 bytes leftover after parsing attributes in process `syz.6.11359'. [ 315.759524][ T8499] input: syz1 as /devices/virtual/input/input29 [ 315.877396][ T8521] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11380'. [ 315.887313][ T8521] macvlan3: entered allmulticast mode [ 315.889779][ T8521] veth1_vlan: entered allmulticast mode [ 315.931373][ T8532] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11383'. [ 316.170425][ T8574] loop7: detected capacity change from 0 to 524255232 [ 316.285553][ T40] audit: type=1400 audit(316.232:55494): avc: denied { read } for pid=8590 comm="syz.3.11403" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="9p" ino=35913964 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 316.308221][ T40] audit: type=1400 audit(316.252:55495): avc: denied { connect } for pid=8593 comm="syz.6.11404" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 316.314855][ T40] audit: type=1400 audit(316.252:55496): avc: denied { read } for pid=8593 comm="syz.6.11404" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 316.404134][ T10] usb 9-1: new high-speed USB device number 12 using dummy_hcd [ 316.577281][ T10] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 316.580685][ T10] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 316.583742][ T10] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 316.587321][ T10] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 316.591400][ T8568] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 316.595377][ T10] usb 9-1: Quirk or no altset; falling back to MIDI 1.0 [ 316.800564][ T6058] usb 9-1: USB disconnect, device number 12 [ 316.804318][ C0] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured! [ 317.054172][ T6119] Bluetooth: hci1: command 0x041b tx timeout [ 317.451923][ T1421] aoe: packet could not be sent on bond0. consider increasing tx_queue_len [ 318.839153][ T8793] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11466'. [ 318.899241][ T8801] netlink: 36 bytes leftover after parsing attributes in process `syz.4.11468'. [ 319.433742][ T8858] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11491'. [ 319.437003][ T8858] netlink: 12 bytes leftover after parsing attributes in process `syz.7.11491'. [ 320.113132][ T8903] netlink: 'syz.7.11508': attribute type 32 has an invalid length. [ 320.115982][ T8903] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11508'. [ 320.118937][ T8903] (unnamed net_device) (uninitialized): Setting coupled_control to off (0) [ 320.434798][ T40] audit: type=1400 audit(320.382:55497): avc: denied { mount } for pid=8979 comm="syz.7.11524" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 320.442449][ T40] audit: type=1400 audit(320.382:55498): avc: denied { unmount } for pid=8979 comm="syz.7.11524" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 320.636015][ T9009] netlink: 'syz.4.11537': attribute type 1 has an invalid length. [ 320.638356][ T9009] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 320.712403][ T9018] IPv6: NLM_F_CREATE should be specified when creating new route [ 320.714951][ T9018] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 320.717227][ T9018] IPv6: NLM_F_CREATE should be set when creating new route [ 320.721796][ T9020] mkiss: ax0: crc mode is auto. [ 320.793775][ T9034] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=9034 comm=syz.6.11545 [ 320.858581][ T40] audit: type=1400 audit(320.802:55499): avc: denied { map } for pid=9038 comm="syz.6.11548" path="/dev/iommu" dev="devtmpfs" ino=632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 320.869101][ T40] audit: type=1400 audit(320.802:55500): avc: denied { execute } for pid=9038 comm="syz.6.11548" path="/dev/iommu" dev="devtmpfs" ino=632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 320.979951][ T9050] batadv_slave_1: entered promiscuous mode [ 320.982270][ T9050] batadv_slave_1: left promiscuous mode [ 321.053877][ T9055] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.11553'. [ 321.098631][ T9061] input: syz0 as /devices/virtual/input/input30 [ 321.203412][ T9074] openvswitch: netlink: IP tunnel TTL not specified. [ 321.611626][ T9106] netlink: 'syz.7.11572': attribute type 29 has an invalid length. [ 322.304754][T28960] usb 12-1: new high-speed USB device number 7 using dummy_hcd [ 322.466695][T28960] usb 12-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 322.469542][T28960] usb 12-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 322.472661][T28960] usb 12-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 322.475608][T28960] usb 12-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 322.479023][T28960] usb 12-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 322.483578][T28960] usb 12-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 322.486629][T28960] usb 12-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 322.489146][T28960] usb 12-1: Product: syz [ 322.490510][T28960] usb 12-1: Manufacturer: syz [ 322.498404][T28960] cdc_wdm 12-1:1.0: skipping garbage [ 322.500039][T28960] cdc_wdm 12-1:1.0: skipping garbage [ 322.503952][T28960] cdc_wdm 12-1:1.0: cdc-wdm0: USB WDM device [ 322.505979][T28960] cdc_wdm 12-1:1.0: Unknown control protocol [ 322.704981][ T6208] usb 12-1: USB disconnect, device number 7 [ 323.209294][ T9211] netlink: 24 bytes leftover after parsing attributes in process `syz.6.11604'. [ 323.642373][ T9223] netlink: 'syz.4.11608': attribute type 29 has an invalid length. [ 324.057396][ T40] audit: type=1400 audit(579.997:55501): avc: denied { read } for pid=9240 comm="syz.4.11614" laddr=::1 lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 324.139030][ T9245] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 324.162165][ T9250] loop4: detected capacity change from 0 to 524255232 [ 324.224311][ T9245] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 324.234448][ T9250] loop4: detected capacity change from 524255232 to 524287956 [ 324.288680][ T9245] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 324.394248][ T9245] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 324.544209][ T6208] usb 11-1: new full-speed USB device number 8 using dummy_hcd [ 324.549093][ T61] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 324.559493][ T82] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 324.569314][ T82] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 324.579259][ T82] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 324.691067][ T9291] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 324.693899][ T9291] IPv6: NLM_F_CREATE should be set when creating new route [ 324.696761][ T9291] IPv6: NLM_F_CREATE should be set when creating new route [ 324.700600][ T9291] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 324.707494][ T6208] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 27750, setting to 64 [ 324.712420][ T6208] usb 11-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 324.716250][ T6208] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 324.725982][ T6208] usb 11-1: Product: syz [ 324.727507][ T6208] usb 11-1: Manufacturer: syz [ 324.729133][ T6208] usb 11-1: SerialNumber: syz [ 324.732003][ T6208] usb 11-1: config 0 descriptor?? [ 324.863141][ T40] audit: type=1400 audit(580.797:55502): avc: denied { create } for pid=9306 comm="syz.4.11629" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 325.148742][ T840] usb 11-1: USB disconnect, device number 8 [ 325.509152][ T9361] netlink: 'syz.7.11641': attribute type 10 has an invalid length. [ 325.516231][ T9361] hsr_slave_0: left promiscuous mode [ 325.518543][ T9361] hsr_slave_1: left promiscuous mode [ 325.672752][ T9367] netlink: 28 bytes leftover after parsing attributes in process `syz.7.11642'. [ 325.763022][ T9379] batadv_slave_1: entered promiscuous mode [ 325.775158][ T9378] batadv_slave_1: left promiscuous mode [ 325.792488][ T9383] netlink: 12 bytes leftover after parsing attributes in process `syz.6.11649'. [ 325.796446][ T9383] netlink: 12 bytes leftover after parsing attributes in process `syz.6.11649'. [ 326.068980][ T9410] netlink: 24 bytes leftover after parsing attributes in process `syz.7.11660'. [ 326.174354][ T9425] netlink: 'syz.3.11665': attribute type 10 has an invalid length. [ 326.176992][ T9425] netlink: 'syz.3.11665': attribute type 28 has an invalid length. [ 326.179506][ T9425] netlink: 'syz.3.11665': attribute type 5 has an invalid length. [ 326.181944][ T9425] netlink: 'syz.3.11665': attribute type 8 has an invalid length. [ 326.184737][ T9425] netlink: 'syz.3.11665': attribute type 31 has an invalid length. [ 327.124539][T28960] usb 11-1: new high-speed USB device number 9 using dummy_hcd [ 327.201630][ T9512] netlink: 20 bytes leftover after parsing attributes in process `syz.7.11699'. [ 327.222344][ T9512] netlink: 20 bytes leftover after parsing attributes in process `syz.7.11699'. [ 327.286733][T28960] usb 11-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 327.289743][T28960] usb 11-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 327.292700][T28960] usb 11-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 327.299601][T28960] usb 11-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41 [ 327.302436][T28960] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11 [ 327.305261][T28960] usb 11-1: Product: syz [ 327.306617][T28960] usb 11-1: Manufacturer: syz [ 327.308103][T28960] usb 11-1: SerialNumber: syz [ 327.312654][ T9524] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11705'. [ 327.520464][T28960] usblp 11-1:1.0: usblp0: USB Unidirectional printer dev 9 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 327.608694][ T9555] loop7: detected capacity change from 0 to 524255232 [ 327.720767][ T6289] usb 11-1: USB disconnect, device number 9 [ 327.725645][ T6289] usblp0: removed [ 327.738948][ T9577] netlink: 12 bytes leftover after parsing attributes in process `syz.4.11719'. [ 327.785314][ T40] audit: type=1400 audit(583.727:55503): avc: denied { map } for pid=9578 comm="syz.7.11720" path="socket:[109595]" dev="sockfs" ino=109595 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 327.927677][ T40] audit: type=1326 audit(583.867:55504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9499 comm="syz.3.11696" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f536518ebe9 code=0x7fc00000 [ 328.127129][ T9605] loop7: detected capacity change from 0 to 524255232 [ 328.214916][ T6208] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 328.279866][ T9620] SELinux: security_context_str_to_sid () failed with errno=-22 [ 329.672654][ T40] audit: type=1400 audit(585.607:55505): avc: denied { setopt } for pid=9695 comm="syz.7.11759" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 330.121035][ T9743] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11777'. [ 330.185853][ T9752] vxcan1: tx address claim with dlc 0 [ 330.309672][ T9766] geneve2: entered promiscuous mode [ 330.311558][ T9766] geneve2: entered allmulticast mode [ 330.459544][ T9778] netlink: 75 bytes leftover after parsing attributes in process `syz.6.11796'. [ 332.502096][ T9800] 8021q: VLANs not supported on gre0 [ 332.511669][ T9801] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 333.466602][ T9879] vxcan1: tx address claim with dest, not broadcast [ 333.488494][ T9882] bridge0: port 3(syz_tun) entered blocking state [ 333.491464][ T9882] bridge0: port 3(syz_tun) entered disabled state [ 333.494701][ T9882] syz_tun: entered allmulticast mode [ 333.498196][ T9882] syz_tun: entered promiscuous mode [ 333.502019][ T9884] netlink: 20 bytes leftover after parsing attributes in process `syz.7.11824'. [ 333.548171][ T9890] 9pnet_rdma: rdma_create_trans (9890): problem binding to privport: 13 [ 333.716916][ T40] audit: type=1400 audit(589.657:55506): avc: denied { override_creds } for pid=9900 comm="syz.3.11832" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 334.044187][ T6208] usb 11-1: new full-speed USB device number 10 using dummy_hcd [ 334.205374][ T6208] usb 11-1: config index 0 descriptor too short (expected 156, got 27) [ 334.208210][ T6208] usb 11-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 334.218479][ T6208] usb 11-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10 [ 334.222170][ T6208] usb 11-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64 [ 334.226556][ T6208] usb 11-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 334.230281][ T6208] usb 11-1: config 0 interface 0 has no altsetting 0 [ 334.236242][ T6208] usb 11-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 334.239309][ T6208] usb 11-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 334.242158][ T6208] usb 11-1: Product: syz [ 334.243509][ T6208] usb 11-1: Manufacturer: syz [ 334.245027][ T6208] usb 11-1: SerialNumber: syz [ 334.248971][ T6208] usb 11-1: config 0 descriptor?? [ 334.251344][ T9911] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 334.254817][ T6208] ldusb 11-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 334.268871][ T6208] ldusb 11-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 334.458773][ T9937] netlink: 16 bytes leftover after parsing attributes in process `syz.7.11842'. [ 334.625885][ T10] usb 11-1: USB disconnect, device number 10 [ 334.629101][ T10] ldusb 11-1:0.0: LD USB Device #0 now disconnected [ 334.662451][ T9954] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0 [ 334.663585][ T9955] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 1 [ 334.664262][ T9956] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 2 [ 334.664711][ T9957] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 3 [ 334.691968][ T9959] netlink: 108 bytes leftover after parsing attributes in process `syz.3.11845'. [ 335.097052][ T9988] 9p: Unknown uid 00000000004294967295 [ 335.475334][ T6122] Bluetooth: hci0: failed to read key size for handle 201 [ 335.479949][ T6122] Bluetooth: hci0: unexpected event for opcode 0x1408 [ 335.574406][T10006] netlink: 'syz.7.11862': attribute type 63 has an invalid length. [ 335.698149][ T40] audit: type=1400 audit(591.637:55507): avc: denied { listen } for pid=10013 comm="syz.7.11865" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 335.706008][ T40] audit: type=1400 audit(591.637:55508): avc: denied { accept } for pid=10013 comm="syz.7.11865" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 335.964432][ T6289] usb 11-1: new high-speed USB device number 11 using dummy_hcd [ 336.114394][ T6289] usb 11-1: Using ep0 maxpacket: 16 [ 336.117860][ T6289] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 336.121966][ T6289] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 336.126634][ T6289] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 336.132673][ T6289] usb 11-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 336.136494][ T6289] usb 11-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 336.139001][ T6289] usb 11-1: Manufacturer: syz [ 336.141736][ T6289] usb 11-1: config 0 descriptor?? [ 336.397481][ T6208] usb 11-1: USB disconnect, device number 11 [ 337.002364][T10059] gretap0: vlans aren't supported yet for dev_uc|mc_add() [ 337.280417][T10089] (unnamed net_device) (uninitialized): invalid ARP target 0.0.0.0 specified for addition [ 337.283630][T10089] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (0) [ 337.464210][ T10] usb 11-1: new high-speed USB device number 12 using dummy_hcd [ 337.645750][ T10] usb 11-1: config index 0 descriptor too short (expected 23569, got 27) [ 337.649157][ T10] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 337.653335][ T10] usb 11-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 337.656939][ T10] usb 11-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 337.659876][ T10] usb 11-1: Manufacturer: syz [ 337.664016][ T10] usb 11-1: config 0 descriptor?? [ 337.714427][ T10] rc_core: IR keymap rc-hauppauge not found [ 337.716911][ T10] Registered IR keymap rc-empty [ 337.722369][ T10] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/rc/rc0 [ 337.728601][ T10] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/rc/rc0/input32 [ 337.878024][ T10] usb 11-1: USB disconnect, device number 12 [ 337.924224][ C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 338.058422][T10137] debugfs: 'ttyS3' already exists in 'caif_serial' [ 338.179591][T10158] netlink: 52 bytes leftover after parsing attributes in process `syz.3.11897'. [ 338.197705][T10160] openvswitch: netlink: IP tunnel TTL not specified. [ 338.384186][T28960] usb 9-1: new high-speed USB device number 13 using dummy_hcd [ 338.545234][T28960] usb 9-1: Using ep0 maxpacket: 8 [ 338.549378][T28960] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 338.553135][T28960] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 338.556073][T28960] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 338.559780][T28960] usb 9-1: config 0 descriptor?? [ 338.659184][T10198] netlink: 8 bytes leftover after parsing attributes in process `syz.6.11910'. [ 338.662082][T10198] netlink: 'syz.6.11910': attribute type 30 has an invalid length. [ 338.665422][T10198] netlink: 4 bytes leftover after parsing attributes in process `syz.6.11910'. [ 338.768852][T28960] iowarrior 9-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0 [ 338.789788][T10216] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11915'. [ 338.799675][T10218] batadv_slave_1: entered promiscuous mode [ 338.807223][T10217] batadv_slave_1: left promiscuous mode [ 338.970116][T28960] usb 9-1: USB disconnect, device number 13 [ 339.020601][T10254] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 339.023057][T10254] IPv6: NLM_F_CREATE should be set when creating new route [ 339.025389][T10254] IPv6: NLM_F_CREATE should be set when creating new route [ 339.028245][T10254] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 339.114142][ T839] usb 11-1: new full-speed USB device number 13 using dummy_hcd [ 339.265777][ T839] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 339.269163][ T839] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 339.271895][ T839] usb 11-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8 [ 339.276136][ T839] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 339.280111][ T839] usb 11-1: config 0 descriptor?? [ 339.283325][ T839] dvb-usb: found a 'Artec T1 USB2.0' in warm state. [ 339.285506][ T839] dvb-usb: bulk message failed: -22 (3/0) [ 339.290292][ T839] dvb-usb: will use the device's hardware PID filter (table count: 16). [ 339.293814][ T839] dvbdev: DVB: registering new adapter (Artec T1 USB2.0) [ 339.296138][ T839] usb 11-1: media controller created [ 339.300149][ T839] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 339.305662][ T839] dvb-usb: bulk message failed: -22 (6/0) [ 339.307647][ T839] dvb-usb: no frontend was attached by 'Artec T1 USB2.0' [ 339.314703][ T839] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.6/usb11/11-1/input/input33 [ 339.319602][ T839] dvb-usb: schedule remote query interval to 150 msecs. [ 339.321915][ T839] dvb-usb: Artec T1 USB2.0 successfully initialized and connected. [ 339.474736][ T5342] dvb-usb: bulk message failed: -22 (1/0) [ 339.478758][ T5342] dvb-usb: error while querying for an remote control event. [ 339.487400][T10227] dvb-usb: bulk message failed: -22 (2/0) [ 339.490341][ T6208] usb 11-1: USB disconnect, device number 13 [ 339.524665][ T6122] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 339.528938][ T6122] Bluetooth: hci0: Injecting HCI hardware error event [ 339.533024][ T6122] Bluetooth: hci0: hardware error 0x00 [ 339.579220][ T6208] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected. [ 340.061773][ T40] audit: type=1400 audit(595.997:55509): avc: denied { append } for pid=10330 comm="syz.6.11941" path="/640/file0/cpuset.effective_cpus" dev="9p" ino=35913974 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 340.074533][ T6289] usb 12-1: new low-speed USB device number 8 using dummy_hcd [ 340.172849][T10336] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 340.235595][ T6289] usb 12-1: config 168 descriptor has 1 excess byte, ignoring [ 340.238252][ T6289] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 340.241848][ T6289] usb 12-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 340.246437][ T6289] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 340.250134][ T6289] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 340.254869][ T6289] usb 12-1: config 168 descriptor has 1 excess byte, ignoring [ 340.257366][ T6289] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 340.260534][ T6289] usb 12-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 340.264795][ T6289] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 340.269048][ T6289] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 340.273478][ T6289] usb 12-1: config 168 descriptor has 1 excess byte, ignoring [ 340.276692][ T6289] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 340.279658][ T6289] usb 12-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 340.282926][ T6289] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 340.286467][ T6289] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 340.291912][ T6289] usb 12-1: string descriptor 0 read error: -22 [ 340.294391][ T6289] usb 12-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 340.297307][ T6289] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 340.303441][ T6289] adutux 12-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 340.509679][ T839] usb 12-1: USB disconnect, device number 8 [ 340.642927][T10390] netlink: 8 bytes leftover after parsing attributes in process `syz.6.11957'. [ 340.940327][T10418] netlink: 6032 bytes leftover after parsing attributes in process `syz.6.11969'. [ 340.945990][T10416] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 340.949322][T10416] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 341.038871][T10416] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 341.042673][T10416] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 341.136290][T10416] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 341.139410][T10416] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 341.206086][T10416] netdevsim netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 341.209113][T10416] netdevsim netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 341.365796][ T82] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 341.368701][ T82] netdevsim netdevsim3 eth0: set [1, 1] type 2 family 0 port 20000 - 0 [ 341.377396][ T82] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 341.380230][ T82] netdevsim netdevsim3 eth1: set [1, 1] type 2 family 0 port 20000 - 0 [ 341.392445][ T82] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 341.396237][ T82] netdevsim netdevsim3 eth2: set [1, 1] type 2 family 0 port 20000 - 0 [ 341.407851][ T61] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 341.410475][ T61] netdevsim netdevsim3 eth3: set [1, 1] type 2 family 0 port 20000 - 0 [ 341.694485][ T6122] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 342.122944][ T40] audit: type=1400 audit(598.057:55510): avc: denied { name_bind } for pid=10521 comm="syz.7.12001" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1 [ 342.136372][T10524] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12003'. [ 342.150804][T10524] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12003'. [ 342.230404][ T6119] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 342.237793][ T6119] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 342.243103][ T6119] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 342.248300][ T6119] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 342.251862][ T6119] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 342.402681][T10533] chnl_net:caif_netlink_parms(): no params data found [ 342.539556][T10533] bridge0: port 1(bridge_slave_0) entered blocking state [ 342.542633][T10533] bridge0: port 1(bridge_slave_0) entered disabled state [ 342.547506][T10533] bridge_slave_0: entered allmulticast mode [ 342.550712][T10533] bridge_slave_0: entered promiscuous mode [ 342.553897][T10533] bridge0: port 2(bridge_slave_1) entered blocking state [ 342.557620][T10533] bridge0: port 2(bridge_slave_1) entered disabled state [ 342.559942][T10533] bridge_slave_1: entered allmulticast mode [ 342.562570][T10533] bridge_slave_1: entered promiscuous mode [ 342.630659][T10533] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 342.637106][T10533] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 342.682865][T10533] team0: Port device team_slave_0 added [ 342.687400][T10533] team0: Port device team_slave_1 added [ 342.723723][T10533] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 342.726364][T10533] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 342.735300][T10533] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 342.739806][T10533] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 342.741986][T10533] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 342.751748][T10533] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 342.793582][T10533] hsr_slave_0: entered promiscuous mode [ 342.796242][T10533] hsr_slave_1: entered promiscuous mode [ 342.798489][T10533] debugfs: 'hsr0' already exists in 'hsr' [ 342.800419][T10533] Cannot create hsr debugfs directory [ 342.934975][T10533] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 343.027021][T10533] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 343.087484][T10533] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 343.180789][T10533] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 343.343804][T11613] __vm_enough_memory: pid: 11613, comm: syz.7.12026, bytes: 21200309600256 not enough memory for the allocation [ 343.361794][T10533] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 343.374269][T10533] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 343.379423][T10533] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 343.383799][T10533] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 343.441531][T10533] 8021q: adding VLAN 0 to HW filter on device bond0 [ 343.462375][T10533] 8021q: adding VLAN 0 to HW filter on device team0 [ 343.472776][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 343.475180][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 343.482619][ T1145] bridge0: port 2(bridge_slave_1) entered blocking state [ 343.484969][ T1145] bridge0: port 2(bridge_slave_1) entered forwarding state [ 343.612074][T10533] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 343.646095][T28960] usb 9-1: new high-speed USB device number 14 using dummy_hcd [ 343.768426][T10533] veth0_vlan: entered promiscuous mode [ 343.774790][T10533] veth1_vlan: entered promiscuous mode [ 343.794580][T10533] veth0_macvtap: entered promiscuous mode [ 343.799906][T10533] veth1_macvtap: entered promiscuous mode [ 343.806663][T28960] usb 9-1: config index 0 descriptor too short (expected 23569, got 27) [ 343.809371][T10533] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 343.810249][T28960] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 343.817735][T10533] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 343.819016][T28960] usb 9-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 343.823484][T28960] usb 9-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 343.826210][ T82] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.827134][T28960] usb 9-1: Manufacturer: syz [ 343.830683][ T82] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.832026][T28960] usb 9-1: config 0 descriptor?? [ 343.835258][ T82] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.839951][ T82] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 343.881535][ T1145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 343.884909][ T1145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 343.887268][T28960] rc_core: IR keymap rc-hauppauge not found [ 343.889910][T28960] Registered IR keymap rc-empty [ 343.892819][T28960] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/rc/rc0 [ 343.900610][T28960] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/rc/rc0/input35 [ 343.901087][ T1145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 343.908171][ T1145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 343.926853][ T6181] usb 12-1: new full-speed USB device number 10 using dummy_hcd [ 344.028202][T11712] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12044'. [ 344.042399][T11632] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 344.046684][T11632] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 344.050691][T28960] usb 9-1: USB disconnect, device number 14 [ 344.087156][ T6181] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 27750, setting to 64 [ 344.095027][ T6181] usb 12-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 344.098829][ T6181] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 344.102110][ T6181] usb 12-1: Product: syz [ 344.103895][ T6181] usb 12-1: Manufacturer: syz [ 344.109990][ T6181] usb 12-1: SerialNumber: syz [ 344.114398][ T6181] usb 12-1: config 0 descriptor?? [ 344.324438][ T6122] Bluetooth: hci0: command tx timeout [ 344.394457][ T40] audit: type=1326 audit(600.327:55511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11759 comm="syz.3.12059" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f536518ebe9 code=0x7fc00000 [ 344.401190][ T40] audit: type=1326 audit(600.337:55512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11759 comm="syz.3.12059" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f536518ebe9 code=0x7fc00000 [ 344.409287][ T40] audit: type=1326 audit(600.337:55513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11759 comm="syz.3.12059" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f536518ebe9 code=0x7fc00000 [ 344.416842][ T40] audit: type=1326 audit(600.337:55514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11759 comm="syz.3.12059" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f536518ebe9 code=0x7fc00000 [ 344.424124][ T40] audit: type=1326 audit(600.337:55515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11759 comm="syz.3.12059" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f536518ebe9 code=0x7fc00000 [ 344.431873][ T40] audit: type=1326 audit(600.337:55516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11759 comm="syz.3.12059" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f536518ebe9 code=0x7fc00000 [ 344.439288][ T40] audit: type=1326 audit(600.337:55517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11759 comm="syz.3.12059" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f536518ebe9 code=0x7fc00000 [ 344.446320][ T40] audit: type=1326 audit(600.337:55518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11759 comm="syz.3.12059" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f536518ebe9 code=0x7fc00000 [ 344.534714][ T839] usb 12-1: USB disconnect, device number 10 [ 344.643926][T11808] netlink: 4 bytes leftover after parsing attributes in process `syz.6.12070'. [ 344.836592][T11837] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported [ 345.103436][T11869] netlink: 830 bytes leftover after parsing attributes in process `syz.6.12097'. [ 345.206387][T11883] SELinux: security_context_str_to_sid () failed with errno=-22 [ 345.311786][T11894] netlink: 'syz.6.12108': attribute type 2 has an invalid length. [ 345.315238][T11894] netlink: 132 bytes leftover after parsing attributes in process `syz.6.12108'. [ 345.356961][T11904] netlink: 12 bytes leftover after parsing attributes in process `syz.3.12112'. [ 345.420632][T11913] netlink: 27 bytes leftover after parsing attributes in process `syz.7.12115'. [ 345.506002][T11922] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci0/hci0:200/input37 [ 345.733177][T11966] Bluetooth: MGMT ver 1.23 [ 346.001932][T12023] Context (ID=0x4d8) not attached to queue pair (handle=0x4d9:0x0) [ 346.136196][T12031] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 346.404413][ T6122] Bluetooth: hci0: command tx timeout [ 346.456093][T12052] netlink: 'syz.3.12152': attribute type 1 has an invalid length. [ 346.458601][T12052] netlink: 24 bytes leftover after parsing attributes in process `syz.3.12152'. [ 346.704872][T12077] netlink: 36 bytes leftover after parsing attributes in process `syz.6.12161'. [ 346.729222][T12077] netlink: 8 bytes leftover after parsing attributes in process `syz.6.12161'. [ 347.364217][T28960] usb 12-1: new low-speed USB device number 11 using dummy_hcd [ 347.526825][T12164] netlink: 16 bytes leftover after parsing attributes in process `syz.6.12197'. [ 347.546050][T28960] usb 12-1: config 168 descriptor has 1 excess byte, ignoring [ 347.549423][T28960] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 347.553933][T28960] usb 12-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 347.560776][T28960] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 347.565879][T28960] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 347.572022][T28960] usb 12-1: config 168 descriptor has 1 excess byte, ignoring [ 347.575554][T28960] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 347.580147][T28960] usb 12-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 347.585583][T28960] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 347.590193][T28960] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 347.596496][T28960] usb 12-1: config 168 descriptor has 1 excess byte, ignoring [ 347.600028][T28960] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 347.604987][T28960] usb 12-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 347.610008][T28960] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 347.615422][T28960] usb 12-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 347.621997][T12171] batadv_slave_0: entered promiscuous mode [ 347.623230][T28960] usb 12-1: string descriptor 0 read error: -22 [ 347.627272][T12171] batadv_slave_0: left promiscuous mode [ 347.627278][T28960] usb 12-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 347.632947][T28960] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 347.642676][T28960] adutux 12-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 347.841012][T28960] usb 12-1: USB disconnect, device number 11 [ 348.068363][T12221] netem: change failed [ 348.280185][T12249] vxcan1: tx address claim with dlc 0 [ 348.375547][T12263] 8021q: VLANs not supported on gre0 [ 348.486062][ T6122] Bluetooth: hci0: command tx timeout [ 348.488129][T12278] A link change request failed with some changes committed already. Interface macsec0 may have been left with an inconsistent configuration, please check. [ 348.489561][T12277] serio: Serial port ptm0 [ 348.585023][T12299] 9pnet_rdma: rdma_create_trans (12299): problem binding to privport: 13 [ 348.764900][T12330] misc userio: Begin command sent, but we're already running [ 348.989020][T12356] sch_tbf: burst 0 is lower than device veth0_to_bridge mtu (1514) ! [ 349.067658][T12366] __nla_validate_parse: 5 callbacks suppressed [ 349.067670][T12366] netlink: 72 bytes leftover after parsing attributes in process `syz.4.12271'. [ 349.120019][T12370] netlink: 28 bytes leftover after parsing attributes in process `syz.4.12273'. [ 349.249713][T12396] netlink: 12 bytes leftover after parsing attributes in process `syz.4.12284'. [ 349.258253][T12396] team_slave_0: entered promiscuous mode [ 349.260840][T12396] team_slave_1: entered promiscuous mode [ 349.263844][T12396] 8021q: adding VLAN 0 to HW filter on device macvlan4 [ 349.376363][ T5342] usb 12-1: new high-speed USB device number 12 using dummy_hcd [ 349.425562][T12418] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12291'. [ 349.534657][ T10] usb 11-1: new high-speed USB device number 14 using dummy_hcd [ 349.539340][ T5342] usb 12-1: config 0 has no interfaces? [ 349.541767][ T5342] usb 12-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 349.545759][ T5342] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 349.551521][ T5342] usb 12-1: config 0 descriptor?? [ 349.684614][ T10] usb 11-1: Using ep0 maxpacket: 8 [ 349.687661][ T10] usb 11-1: config index 0 descriptor too short (expected 74, got 45) [ 349.690212][ T10] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024 [ 349.696430][ T10] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 349.700258][ T10] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 30768, setting to 1024 [ 349.703874][ T10] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 349.707410][ T10] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 349.711419][ T10] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 349.714612][ T10] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 349.757753][T28960] usb 12-1: USB disconnect, device number 12 [ 349.895494][T12469] netlink: 'syz.4.12305': attribute type 9 has an invalid length. [ 349.927202][ T10] usb 11-1: GET_CAPABILITIES returned 0 [ 349.929914][ T10] usbtmc 11-1:16.0: can't read capabilities [ 350.019204][T12486] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12308'. [ 350.131059][ T5342] usb 11-1: USB disconnect, device number 14 [ 350.393171][T12511] syz_tun: entered allmulticast mode [ 350.396319][T12510] syz_tun: left allmulticast mode [ 350.574190][ T6119] Bluetooth: hci0: command tx timeout [ 350.754163][ T6181] usb 9-1: new high-speed USB device number 15 using dummy_hcd [ 350.877430][T12561] openvswitch: netlink: Multiple metadata blocks provided [ 350.914297][ T6181] usb 9-1: Using ep0 maxpacket: 8 [ 350.918087][ T6181] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 350.922743][ T6181] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 350.926319][ T6181] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 350.930121][ T6181] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 350.934924][ T6181] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 350.937758][ T6181] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 350.949165][T12569] block nbd7: not configured, cannot reconfigure [ 351.146643][ T6181] usb 9-1: GET_CAPABILITIES returned 0 [ 351.148575][ T6181] usbtmc 9-1:16.0: can't read capabilities [ 351.224215][ T5342] usb 12-1: new full-speed USB device number 13 using dummy_hcd [ 351.349762][ T6181] usb 9-1: USB disconnect, device number 15 [ 351.377425][ T5342] usb 12-1: config index 0 descriptor too short (expected 156, got 27) [ 351.380706][ T5342] usb 12-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 351.385924][ T5342] usb 12-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10 [ 351.389522][ T5342] usb 12-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64 [ 351.392926][ T5342] usb 12-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 351.398362][ T5342] usb 12-1: config 0 interface 0 has no altsetting 0 [ 351.402104][ T5342] usb 12-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 351.405739][ T5342] usb 12-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 351.408447][ T5342] usb 12-1: Product: syz [ 351.409766][ T5342] usb 12-1: Manufacturer: syz [ 351.411306][ T5342] usb 12-1: SerialNumber: syz [ 351.415460][ T5342] usb 12-1: config 0 descriptor?? [ 351.417544][T12573] raw-gadget.2 gadget.7: fail, usb_ep_enable returned -22 [ 351.420900][ T5342] ldusb 12-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 351.425178][ T5342] ldusb 12-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 351.795481][T28960] usb 12-1: USB disconnect, device number 13 [ 351.798921][T28960] ldusb 12-1:0.0: LD USB Device #0 now disconnected [ 351.881865][T12612] netlink: 16 bytes leftover after parsing attributes in process `syz.4.12338'. [ 352.013888][T12624] 9p: Unknown uid 00000000004294967295 [ 352.229685][T12644] (unnamed net_device) (uninitialized): invalid ARP target 0.0.0.0 specified for addition [ 352.233021][T12644] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (0) [ 352.341144][T12663] netlink: 76 bytes leftover after parsing attributes in process `syz.6.12360'. [ 352.509122][T12683] veth1_vlan: left promiscuous mode [ 352.515304][T12686] netlink: 40 bytes leftover after parsing attributes in process `syz.4.12369'. [ 352.644781][ T6119] Bluetooth: hci0: command 0x0405 tx timeout [ 352.802182][T12719] netlink: 8 bytes leftover after parsing attributes in process `syz.4.12379'. [ 352.807006][T12719] netlink: 'syz.4.12379': attribute type 30 has an invalid length. [ 352.809669][T12719] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12379'. [ 352.837516][T12722] openvswitch: netlink: IP tunnel TTL not specified. [ 353.094302][ T6181] usb 12-1: new high-speed USB device number 14 using dummy_hcd [ 353.144165][ T2299] usb 9-1: new high-speed USB device number 16 using dummy_hcd [ 353.246394][ T6181] usb 12-1: config index 0 descriptor too short (expected 23569, got 27) [ 353.249154][ T6181] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 353.253795][ T6181] usb 12-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 353.257168][ T6181] usb 12-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 353.259702][ T6181] usb 12-1: Manufacturer: syz [ 353.262950][ T6181] usb 12-1: config 0 descriptor?? [ 353.294139][ T2299] usb 9-1: Using ep0 maxpacket: 8 [ 353.297156][ T2299] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 353.300520][ T2299] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E [ 353.304961][ T2299] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7 [ 353.308456][ T2299] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 353.311386][ T2299] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 353.317706][ T2299] usb 9-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46 [ 353.320459][ T2299] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35 [ 353.322865][ T2299] usb 9-1: Product: syz [ 353.324492][ T6181] rc_core: IR keymap rc-hauppauge not found [ 353.324936][ T2299] usb 9-1: Manufacturer: syz [ 353.326811][ T6181] Registered IR keymap rc-empty [ 353.328413][ T2299] usb 9-1: SerialNumber: syz [ 353.331636][ T6181] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.7/usb12/12-1/12-1:0.0/rc/rc0 [ 353.334410][ T2299] usb 9-1: config 0 descriptor?? [ 353.337469][ T6181] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.7/usb12/12-1/12-1:0.0/rc/rc0/input39 [ 353.473442][ T6181] usb 12-1: USB disconnect, device number 14 [ 353.548634][ T2299] radio-si470x 9-1:0.0: si470x_get_report: usb_control_msg returned -71 [ 353.551383][ T2299] radio-si470x 9-1:0.0: probe with driver radio-si470x failed with error -5 [ 353.560502][ T2299] usb 9-1: USB disconnect, device number 16 [ 354.035399][ T6181] e1000 0000:00:06.0 eth0: Reset adapter [ 354.139091][T12833] __nla_validate_parse: 1 callbacks suppressed [ 354.139108][T12833] netlink: 16 bytes leftover after parsing attributes in process `syz.7.12406'. [ 354.145787][T12833] team0: invalid flags given to default FDB implementation [ 354.180809][T12845] batadv_slave_1: entered promiscuous mode [ 354.183370][T12844] batadv_slave_1: left promiscuous mode [ 354.724476][ T6119] Bluetooth: hci0: command 0x0405 tx timeout [ 356.165292][ T6181] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX [ 357.298006][T12895] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 357.444157][ T5342] usb 12-1: new high-speed USB device number 15 using dummy_hcd [ 357.615669][ T5342] usb 12-1: Using ep0 maxpacket: 8 [ 357.619741][ T5342] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 357.623258][ T5342] usb 12-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 357.626922][ T5342] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 357.631111][ T5342] usb 12-1: config 0 descriptor?? [ 357.841796][ T5342] iowarrior 12-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0 [ 358.056283][ T2299] usb 12-1: USB disconnect, device number 15 [ 358.145724][T13011] fuse: Bad value for 'fd' [ 358.320842][ T40] kauditd_printk_skb: 9 callbacks suppressed [ 358.320856][ T40] audit: type=1400 audit(614.257:55528): avc: denied { read } for pid=13015 comm="syz.4.12454" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 358.440697][ T40] audit: type=1400 audit(614.377:55529): avc: denied { listen } for pid=13023 comm="syz.4.12456" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 358.814785][ T6208] usb 11-1: new low-speed USB device number 15 using dummy_hcd [ 358.977374][ T6208] usb 11-1: config 168 descriptor has 1 excess byte, ignoring [ 358.979985][ T6208] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 358.983590][ T6208] usb 11-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 358.988434][ T6208] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 358.992261][ T6208] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 358.997058][ T6208] usb 11-1: config 168 descriptor has 1 excess byte, ignoring [ 358.999542][ T6208] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 359.004742][ T6208] usb 11-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 359.009717][ T6208] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 359.015026][ T6208] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 359.020801][ T6208] usb 11-1: config 168 descriptor has 1 excess byte, ignoring [ 359.023942][ T6208] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8 [ 359.028511][ T6208] usb 11-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 359.033443][ T6208] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 359.038108][ T6208] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 359.044157][ T6208] usb 11-1: string descriptor 0 read error: -22 [ 359.046196][ T6208] usb 11-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 359.048918][ T6208] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 359.059305][ T6208] adutux 11-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 359.258881][ T6208] usb 11-1: USB disconnect, device number 15 [ 359.551599][ T40] audit: type=1326 audit(615.487:55530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13052 comm="syz.4.12467" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa43478ebe9 code=0x7fc00000 [ 359.705574][ T40] audit: type=1326 audit(615.647:55531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13097 comm="syz.7.12477" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b9f78ebe9 code=0x7fc00000 [ 359.713153][ T40] audit: type=1326 audit(615.647:55532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13097 comm="syz.7.12477" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1b9f78ebe9 code=0x7fc00000 [ 359.722440][ T40] audit: type=1326 audit(615.647:55533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13097 comm="syz.7.12477" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b9f78ebe9 code=0x7fc00000 [ 359.732404][ T40] audit: type=1326 audit(615.647:55534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13097 comm="syz.7.12477" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b9f78ebe9 code=0x7fc00000 [ 359.741635][ T40] audit: type=1326 audit(615.647:55535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13097 comm="syz.7.12477" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b9f78ebe9 code=0x7fc00000 [ 359.750902][ T40] audit: type=1326 audit(615.647:55536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13097 comm="syz.7.12477" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b9f78ebe9 code=0x7fc00000 [ 359.759585][ T40] audit: type=1326 audit(615.647:55537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13097 comm="syz.7.12477" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b9f78ebe9 code=0x7fc00000 [ 360.680062][T13148] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported [ 361.083851][T13181] netlink: 8 bytes leftover after parsing attributes in process `syz.4.12505'. [ 361.257275][ T6208] hid_parser_main: 6 callbacks suppressed [ 361.257292][ T6208] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 361.264682][ T6208] hid-generic 0000:0000:0000.000A: hidraw1: HID v0.00 Device [syz0] on syz0 [ 361.470387][T13219] netlink: 8 bytes leftover after parsing attributes in process `syz.6.12517'. [ 361.475397][T13219] netlink: 12 bytes leftover after parsing attributes in process `syz.6.12517'. [ 361.614912][ T6106] usb 12-1: new high-speed USB device number 16 using dummy_hcd [ 361.764897][ T6106] usb 12-1: too many configurations: 9, using maximum allowed: 8 [ 361.769129][ T6106] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 361.772960][ T6106] usb 12-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 361.777553][ T6106] usb 12-1: config 0 interface 0 has no altsetting 0 [ 361.781211][ T6106] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 361.785250][ T6106] usb 12-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 361.789577][ T6106] usb 12-1: config 0 interface 0 has no altsetting 0 [ 361.793593][ T6106] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 361.797425][ T6106] usb 12-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 361.801659][ T6106] usb 12-1: config 0 interface 0 has no altsetting 0 [ 361.805781][ T6106] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 361.809322][ T6106] usb 12-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 361.813797][ T6106] usb 12-1: config 0 interface 0 has no altsetting 0 [ 361.818101][ T6106] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 361.821801][ T6106] usb 12-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 361.826453][ T6106] usb 12-1: config 0 interface 0 has no altsetting 0 [ 361.830737][ T6106] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 361.834597][ T6106] usb 12-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 361.839057][ T6106] usb 12-1: config 0 interface 0 has no altsetting 0 [ 361.842207][ T6106] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 361.845501][ T6106] usb 12-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 361.848898][ T6106] usb 12-1: config 0 interface 0 has no altsetting 0 [ 361.851720][ T6106] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 361.854730][ T6106] usb 12-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 361.858140][ T6106] usb 12-1: config 0 interface 0 has no altsetting 0 [ 361.861737][ T6106] usb 12-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 361.864648][ T6106] usb 12-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 361.867242][ T6106] usb 12-1: Product: syz [ 361.868593][ T6106] usb 12-1: Manufacturer: syz [ 361.870074][ T6106] usb 12-1: SerialNumber: syz [ 361.872954][ T6106] usb 12-1: config 0 descriptor?? [ 361.880503][ T6106] yurex 12-1:0.0: USB YUREX device now attached to Yurex #0 [ 361.994767][T13233] netlink: 8 bytes leftover after parsing attributes in process `syz.6.12521'. [ 361.998986][T13233] netlink: 36 bytes leftover after parsing attributes in process `syz.6.12521'. [ 362.023863][T13237] 9p: Unknown access argument 18446744073709551615: -34 [ 362.089337][ T6181] usb 12-1: USB disconnect, device number 16 [ 362.094950][ T6181] yurex 12-1:0.0: USB YUREX #0 now disconnected [ 362.225591][T13266] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12532'. [ 362.459183][T13289] tipc: Started in network mode [ 362.460977][T13289] tipc: Node identity 2, cluster identity 4711 [ 362.462934][T13289] tipc: Node number set to 2 [ 362.888330][T13325] Context (ID=0x4e0) not attached to queue pair (handle=0x4e1:0x0) [ 362.990579][T13338] batadv_slave_1: entered promiscuous mode [ 362.993116][T13337] batadv_slave_1: left promiscuous mode [ 363.199094][T13360] netlink: 8 bytes leftover after parsing attributes in process `syz.7.12571'. [ 363.202842][ T1149] bond0: (slave bond_slave_0): interface is now down [ 363.207863][ T1149] bond0: (slave bond_slave_1): interface is now down [ 363.212277][ T1149] bond0: now running without any active interface! [ 363.754157][ T6106] usb 11-1: new high-speed USB device number 16 using dummy_hcd [ 363.904183][ T6106] usb 11-1: Using ep0 maxpacket: 8 [ 363.910498][ T6106] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 363.914013][ T6106] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 363.918501][ T6106] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 363.922474][ T6106] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 363.927534][ T6106] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 363.931012][ T6106] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 363.991668][T13426] netlink: 32 bytes leftover after parsing attributes in process `syz.4.12594'. [ 364.143598][ T6106] usb 11-1: GET_CAPABILITIES returned 0 [ 364.145478][ T6106] usbtmc 11-1:16.0: can't read capabilities [ 364.344678][ T6058] usb 11-1: USB disconnect, device number 16 [ 364.448705][T13461] netlink: 8 bytes leftover after parsing attributes in process `syz.4.12605'. [ 364.451493][T13461] netlink: 'syz.4.12605': attribute type 30 has an invalid length. [ 364.453914][T13461] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12605'. [ 364.580859][ T40] kauditd_printk_skb: 9 callbacks suppressed [ 364.580874][ T40] audit: type=1400 audit(620.517:55547): avc: denied { read } for pid=13472 comm="syz.7.12610" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 365.036034][T13535] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 365.366555][T13571] netlink: 'syz.7.12658': attribute type 19 has an invalid length. [ 365.594858][T28960] usb 11-1: new full-speed USB device number 17 using dummy_hcd [ 365.746968][T28960] usb 11-1: config index 0 descriptor too short (expected 156, got 27) [ 365.750327][T28960] usb 11-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 365.756062][T28960] usb 11-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10 [ 365.760761][T28960] usb 11-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64 [ 365.765463][T28960] usb 11-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 365.770805][T28960] usb 11-1: config 0 interface 0 has no altsetting 0 [ 365.776249][T28960] usb 11-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 365.779682][T28960] usb 11-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 365.782612][T28960] usb 11-1: Product: syz [ 365.783988][T28960] usb 11-1: Manufacturer: syz [ 365.785597][T28960] usb 11-1: SerialNumber: syz [ 365.788542][T28960] usb 11-1: config 0 descriptor?? [ 365.790841][T13566] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 365.794298][T28960] ldusb 11-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 365.798862][T28960] ldusb 11-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 365.999402][ T24] usb 11-1: USB disconnect, device number 17 [ 366.003249][ T24] ldusb 11-1:0.0: LD USB Device #0 now disconnected [ 366.100706][T13595] __nla_validate_parse: 6 callbacks suppressed [ 366.100721][T13595] netlink: 16 bytes leftover after parsing attributes in process `syz.4.12653'. [ 366.188811][T13606] netlink: 'syz.4.12665': attribute type 1 has an invalid length. [ 366.313698][T13619] sch_tbf: burst 0 is lower than device veth0_to_bridge mtu (1514) ! [ 366.557800][ T40] audit: type=1400 audit(878.497:55548): avc: denied { mounton } for pid=13635 comm="syz.7.12672" path="/650/file0" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1 [ 366.586885][T13638] netlink: 8 bytes leftover after parsing attributes in process `syz.4.12673'. [ 366.589712][T13638] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12673'. [ 367.198638][T13699] tmpfs: Invalid uid '0x00000000ffffffff' [ 367.303702][T13704] netlink: 28 bytes leftover after parsing attributes in process `syz.6.12695'. [ 367.467359][T13720] netlink: 72 bytes leftover after parsing attributes in process `syz.6.12703'. [ 367.700743][T13742] netlink: 27 bytes leftover after parsing attributes in process `syz.7.12720'. [ 367.826966][T13757] netlink: 8 bytes leftover after parsing attributes in process `syz.7.12719'. [ 368.316578][T13797] netlink: 8 bytes leftover after parsing attributes in process `syz.4.12738'. [ 368.398447][T13812] netlink: 4 bytes leftover after parsing attributes in process `syz.6.12744'. [ 368.533686][ T40] audit: type=1400 audit(880.467:55549): avc: denied { getopt } for pid=13831 comm="syz.6.12752" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 368.536370][T13832] tmpfs: Invalid gid '0x00000000ffffffff' [ 368.859902][T13873] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12778'. [ 369.205134][ T6106] usb 11-1: new high-speed USB device number 18 using dummy_hcd [ 369.238084][T13921] veth0_vlan: left promiscuous mode [ 369.364171][ T6106] usb 11-1: Using ep0 maxpacket: 16 [ 369.369729][ T6106] usb 11-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 369.373611][ T6106] usb 11-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 369.377110][ T6106] usb 11-1: Product: syz [ 369.378951][ T6106] usb 11-1: Manufacturer: syz [ 369.381100][ T6106] usb 11-1: SerialNumber: syz [ 369.388385][ T6106] usb 11-1: config 0 descriptor?? [ 369.599252][ T6208] usb 11-1: USB disconnect, device number 18 [ 370.207439][ T6208] IPVS: starting estimator thread 0... [ 370.304347][T13961] IPVS: using max 33 ests per chain, 79200 per kthread [ 371.144575][T14033] bpf: Bad value for 'uid' [ 371.624873][T14062] __nla_validate_parse: 2 callbacks suppressed [ 371.624884][T14062] netlink: 40 bytes leftover after parsing attributes in process `syz.6.12826'. [ 371.745637][T14071] netlink: 4 bytes leftover after parsing attributes in process `syz.6.12830'. [ 371.986721][T14087] openvswitch: netlink: Multiple metadata blocks provided [ 372.038680][T14091] netlink: 16 bytes leftover after parsing attributes in process `syz.6.12839'. [ 373.014460][T14160] netlink: 24 bytes leftover after parsing attributes in process `syz.4.12863'. [ 373.495181][T14178] bridge0: port 2(bridge_slave_1) entered disabled state [ 373.661002][T14199] netlink: 92 bytes leftover after parsing attributes in process `syz.3.12880'. [ 373.732547][T14205] team0: No ports can be present during mode change [ 374.249402][T14215] ptrace attach of "/syz-executor exec"[21981] was attempted by "/syz-executor exec"[14215] [ 374.310726][T14224] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 374.311514][ T40] audit: type=1400 audit(886.247:55550): avc: denied { name_bind 0x1000000 } for pid=14223 comm="syz.4.12891" path="socket:[119375]" dev="sockfs" ino=119375 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1 [ 374.313095][T14223] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 374.365529][T14229] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12893'. [ 374.831522][T14303] bond0: entered allmulticast mode [ 374.833224][T14303] bond_slave_0: entered allmulticast mode [ 374.840351][T14303] bond_slave_1: entered allmulticast mode [ 376.020916][T14351] netlink: 16 bytes leftover after parsing attributes in process `syz.4.12926'. [ 376.023691][T14351] team0: invalid flags given to default FDB implementation [ 376.803881][T14422] netlink: 20 bytes leftover after parsing attributes in process `syz.3.12959'. [ 376.839567][T14429] overlayfs: failed to clone upperpath [ 377.126945][T14467] __vm_enough_memory: pid: 14467, comm: syz.3.12975, bytes: 21200064892928 not enough memory for the allocation [ 377.722725][T14487] fuse: Bad value for 'fd' [ 378.591910][T14535] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13001'. [ 378.756919][T14542] netlink: 4 bytes leftover after parsing attributes in process `syz.4.13010'. [ 378.884576][ C0] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured! [ 378.900507][ T1421] aoe: packet could not be sent on bond0. consider increasing tx_queue_len [ 378.935385][T14563] overlayfs: failed to clone lowerpath [ 379.063811][ T40] audit: type=1326 audit(890.997:55551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14566 comm="syz.6.13015" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb798ebe9 code=0x7fc00000 [ 379.072783][ T40] audit: type=1326 audit(890.997:55552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14566 comm="syz.6.13015" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fbfb798ebe9 code=0x7fc00000 [ 379.087123][ T40] audit: type=1326 audit(890.997:55553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14566 comm="syz.6.13015" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb798ebe9 code=0x7fc00000 [ 379.097781][ T40] audit: type=1326 audit(890.997:55554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14566 comm="syz.6.13015" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb798ebe9 code=0x7fc00000 [ 379.106400][ T40] audit: type=1326 audit(890.997:55555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14566 comm="syz.6.13015" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb798ebe9 code=0x7fc00000 [ 379.113904][ T40] audit: type=1326 audit(890.997:55556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14566 comm="syz.6.13015" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb798ebe9 code=0x7fc00000 [ 379.121880][ T40] audit: type=1326 audit(890.997:55557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14566 comm="syz.6.13015" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb798ebe9 code=0x7fc00000 [ 379.135005][ T40] audit: type=1326 audit(890.997:55558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14566 comm="syz.6.13015" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfb798ebe9 code=0x7fc00000 [ 379.241906][ T40] audit: type=1400 audit(891.177:55559): avc: denied { getopt } for pid=14592 comm="syz.3.13033" lport=47728 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1 [ 379.522130][T14617] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 379.522130][T14617] The task syz.3.13042 (14617) triggered the difference, watch for misbehavior. [ 380.096500][T14626] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.13035'. [ 380.233121][T14641] netlink: 'syz.6.13044': attribute type 62 has an invalid length. [ 380.236722][T14641] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13044'. [ 380.295881][T14649] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported [ 381.256649][T14708] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13072'. [ 381.813354][T14753] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.13093'. [ 382.059446][T14768] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13099'. [ 382.195138][T14780] netlink: 12 bytes leftover after parsing attributes in process `syz.4.13105'. [ 382.277208][T14783] netlink: 27 bytes leftover after parsing attributes in process `syz.3.13106'. [ 382.326153][T14788] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13107'. [ 382.328960][T14788] netlink: 12 bytes leftover after parsing attributes in process `syz.4.13107'. [ 382.396840][T14797] netlink: 212892 bytes leftover after parsing attributes in process `syz.4.13112'. [ 382.728324][T14833] overlayfs: failed to clone lowerpath [ 382.844102][ T40] audit: type=1326 audit(894.777:55560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14836 comm="syz.4.13130" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa43478ebe9 code=0x0 [ 383.551407][T14861] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13137'. [ 383.555572][T14861] netlink: 36 bytes leftover after parsing attributes in process `syz.3.13137'. [ 383.640067][T14869] 9p: Unknown access argument 18446744073709551615: -34 [ 383.801965][T14919] netlink: 4 bytes leftover after parsing attributes in process `syz.3.13147'. [ 384.373617][ T40] audit: type=1400 audit(896.307:55561): avc: denied { create } for pid=15003 comm="syz.4.13183" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 384.423154][ T6119] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 384.427835][ T6119] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 384.430748][ T6119] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 384.434757][ T6119] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 384.437232][ T6119] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 384.555181][T15008] chnl_net:caif_netlink_parms(): no params data found [ 384.647186][T15008] bridge0: port 1(bridge_slave_0) entered blocking state [ 384.649595][T15008] bridge0: port 1(bridge_slave_0) entered disabled state [ 384.652081][T15008] bridge_slave_0: entered allmulticast mode [ 384.654874][T15008] bridge_slave_0: entered promiscuous mode [ 384.657881][T15008] bridge0: port 2(bridge_slave_1) entered blocking state [ 384.660140][T15008] bridge0: port 2(bridge_slave_1) entered disabled state [ 384.663033][T15008] bridge_slave_1: entered allmulticast mode [ 384.669458][T15008] bridge_slave_1: entered promiscuous mode [ 384.712565][T15008] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 384.731022][T15008] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 384.767194][T15008] team0: Port device team_slave_0 added [ 384.770650][T15008] team0: Port device team_slave_1 added [ 384.807909][T15008] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 384.810121][T15008] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 384.819292][T15008] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 384.823789][T15008] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 384.826503][T15008] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 384.834841][T15008] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 384.883531][T15008] hsr_slave_0: entered promiscuous mode [ 384.886458][T15008] hsr_slave_1: entered promiscuous mode [ 384.888639][T15008] debugfs: 'hsr0' already exists in 'hsr' [ 384.890478][T15008] Cannot create hsr debugfs directory [ 385.030190][T15008] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 385.034756][T15008] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 385.039177][T15008] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 385.043372][T15008] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 385.085784][T15008] 8021q: adding VLAN 0 to HW filter on device bond0 [ 385.101325][T15008] 8021q: adding VLAN 0 to HW filter on device team0 [ 385.109081][ T1149] bridge0: port 1(bridge_slave_0) entered blocking state [ 385.111467][ T1149] bridge0: port 1(bridge_slave_0) entered forwarding state [ 385.117095][ T1145] bridge0: port 2(bridge_slave_1) entered blocking state [ 385.119417][ T1145] bridge0: port 2(bridge_slave_1) entered forwarding state [ 385.233861][T15008] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 385.370478][T15008] veth0_vlan: entered promiscuous mode [ 385.376804][T15008] veth1_vlan: entered promiscuous mode [ 385.391790][T15008] veth0_macvtap: entered promiscuous mode [ 385.397514][T16095] batadv_slave_1: entered promiscuous mode [ 385.399775][T15008] veth1_macvtap: entered promiscuous mode [ 385.403245][T16094] batadv_slave_1: left promiscuous mode [ 385.412991][T15008] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 385.421635][T15008] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 385.426947][ T1149] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 385.429672][ T1149] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 385.433092][ T1149] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 385.436199][ T1149] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 385.471571][ T1153] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 385.474665][ T1153] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 385.491700][ T1145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 385.495106][ T1145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 385.663227][ T46] bond0: (slave bond_slave_0): interface is now down [ 385.666840][ T46] bond0: (slave bond_slave_1): interface is now down [ 385.673467][ T46] bond0: now running without any active interface! [ 385.909371][T16184] netlink: 'syz.6.13242': attribute type 1 has an invalid length. [ 385.949099][ T40] audit: type=1326 audit(897.887:55562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16193 comm="syz.3.13239" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f536518ebe9 code=0x0 [ 386.133570][ T40] audit: type=1326 audit(898.067:55563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16078 comm="syz.4.13204" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa43478ebe9 code=0x7fc00000 [ 386.485913][ T6122] Bluetooth: hci3: command tx timeout [ 386.632335][T16235] mmap: syz.6.13258 (16235): VmData 29077504 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 386.703462][ T6122] Bluetooth: hci0: unexpected event for opcode 0x1004 [ 386.827822][T16264] __nla_validate_parse: 5 callbacks suppressed [ 386.827833][T16264] netlink: 16 bytes leftover after parsing attributes in process `syz.3.13270'. [ 386.902388][T16276] netlink: 36 bytes leftover after parsing attributes in process `syz.3.13275'. [ 386.931097][T16281] batadv_slave_0: entered promiscuous mode [ 386.935465][T16281] batadv_slave_0: left promiscuous mode [ 387.176571][T16306] netlink: 32 bytes leftover after parsing attributes in process `syz.3.13286'. [ 387.204890][ T1145] ------------[ cut here ]------------ [ 387.207274][ T1145] RTNL: assertion failed at ./include/net/netdev_lock.h (72) [ 387.210119][ T1145] WARNING: CPU: 3 PID: 1145 at ./include/net/netdev_lock.h:72 __linkwatch_sync_dev+0x1ed/0x230 [ 387.213512][ T1145] Modules linked in: SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 387.216044][ T1145] CPU: 3 UID: 0 PID: 1145 Comm: kworker/u32:7 Not tainted syzkaller #0 PREEMPT(full) [ 387.220442][ T1145] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 387.222491][ T40] audit: type=1400 audit(899.147:55564): avc: denied { write } for pid=5919 comm="syz-executor" path="pipe:[7222]" dev="pipefs" ino=7222 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1 [ 387.225804][ T1145] Workqueue: bond0 bond_mii_monitor [ 387.233762][ T1145] RIP: 0010:__linkwatch_sync_dev+0x1ed/0x230 [ 387.235845][ T1145] Code: 05 ff ff ff e8 d4 d3 43 f8 c6 05 1d 05 1c 07 01 90 ba 48 00 00 00 48 c7 c6 20 fc e5 8c 48 c7 c7 c0 fb e5 8c e8 44 77 02 f8 90 <0f> 0b 90 90 e9 d6 fe ff ff 48 c7 c7 54 8e ab 90 e8 be 32 aa f8 e9 [ 387.242689][ T1145] RSP: 0018:ffffc90005c979f0 EFLAGS: 00010286 [ 387.244906][ T1145] RAX: 0000000000000000 RBX: ffff8880450ce000 RCX: ffffffff817a3388 [ 387.247293][ T1145] RDX: ffff888029602440 RSI: ffffffff817a3395 RDI: 0000000000000001 [ 387.249745][ T1145] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 387.252260][ T1145] R10: 0000000000000001 R11: 0000000000000000 R12: 1ffff92000b92f48 [ 387.254794][ T1145] R13: ffff8880450cecc1 R14: ffffffff8c59dec0 R15: ffffffff89b0dd10 [ 387.257239][ T1145] FS: 0000000000000000(0000) GS:ffff8880d69b8000(0000) knlGS:0000000000000000 [ 387.260186][ T1145] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 387.262584][ T1145] CR2: 0000555579a67808 CR3: 0000000052ac8000 CR4: 0000000000352ef0 [ 387.265203][ T1145] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 387.267691][ T1145] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 387.270395][ T1145] Call Trace: [ 387.271493][ T1145] [ 387.272469][ T1145] ethtool_op_get_link+0x1d/0x70 [ 387.274383][ T1145] bond_check_dev_link+0x3f9/0x710 [ 387.276061][ T1145] ? __pfx_bond_check_dev_link+0x10/0x10 [ 387.277862][ T1145] bond_mii_monitor+0x3c0/0x2dc0 [ 387.279451][ T1145] ? __pfx_bond_mii_monitor+0x10/0x10 [ 387.281239][ T1145] ? rcu_is_watching+0x12/0xc0 [ 387.282713][ T1145] process_one_work+0x9cc/0x1b70 [ 387.284308][ T1145] ? __pfx_process_one_work+0x10/0x10 [ 387.285959][ T1145] ? assign_work+0x1a0/0x250 [ 387.287444][ T1145] worker_thread+0x6c8/0xf10 [ 387.289037][ T1145] ? __pfx_worker_thread+0x10/0x10 [ 387.291048][ T1145] kthread+0x3c2/0x780 [ 387.292593][ T1145] ? __pfx_kthread+0x10/0x10 [ 387.294109][ T1145] ? rcu_is_watching+0x12/0xc0 [ 387.295641][ T1145] ? __pfx_kthread+0x10/0x10 [ 387.297108][ T1145] ret_from_fork+0x5d4/0x6f0 [ 387.298578][ T1145] ? __pfx_kthread+0x10/0x10 [ 387.300156][ T1145] ret_from_fork_asm+0x1a/0x30 [ 387.301680][ T1145] [ 387.302673][ T1145] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 387.304972][ T1145] CPU: 3 UID: 0 PID: 1145 Comm: kworker/u32:7 Not tainted syzkaller #0 PREEMPT(full) [ 387.307953][ T1145] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 387.311292][ T1145] Workqueue: bond0 bond_mii_monitor [ 387.312932][ T1145] Call Trace: [ 387.313990][ T1145] [ 387.314931][ T1145] dump_stack_lvl+0x3d/0x1f0 [ 387.316403][ T1145] vpanic+0x6e8/0x7a0 [ 387.317698][ T1145] ? __pfx_vpanic+0x10/0x10 [ 387.319142][ T1145] ? __linkwatch_sync_dev+0x1ed/0x230 [ 387.321292][ T1145] panic+0xca/0xd0 [ 387.322674][ T1145] ? __pfx_panic+0x10/0x10 [ 387.324112][ T1145] ? check_panic_on_warn+0x1f/0xb0 [ 387.325721][ T1145] check_panic_on_warn+0xab/0xb0 [ 387.327280][ T1145] __warn+0xf6/0x3c0 [ 387.328609][ T1145] ? preempt_schedule_notrace+0x62/0xe0 [ 387.330701][ T1145] ? __linkwatch_sync_dev+0x1ed/0x230 [ 387.332431][ T1145] report_bug+0x3c3/0x580 [ 387.333800][ T1145] ? __linkwatch_sync_dev+0x1ed/0x230 [ 387.335495][ T1145] handle_bug+0x184/0x210 [ 387.336875][ T1145] exc_invalid_op+0x17/0x50 [ 387.338311][ T1145] asm_exc_invalid_op+0x1a/0x20 [ 387.339819][ T1145] RIP: 0010:__linkwatch_sync_dev+0x1ed/0x230 [ 387.341684][ T1145] Code: 05 ff ff ff e8 d4 d3 43 f8 c6 05 1d 05 1c 07 01 90 ba 48 00 00 00 48 c7 c6 20 fc e5 8c 48 c7 c7 c0 fb e5 8c e8 44 77 02 f8 90 <0f> 0b 90 90 e9 d6 fe ff ff 48 c7 c7 54 8e ab 90 e8 be 32 aa f8 e9 [ 387.347537][ T1145] RSP: 0018:ffffc90005c979f0 EFLAGS: 00010286 [ 387.349432][ T1145] RAX: 0000000000000000 RBX: ffff8880450ce000 RCX: ffffffff817a3388 [ 387.351887][ T1145] RDX: ffff888029602440 RSI: ffffffff817a3395 RDI: 0000000000000001 [ 387.354362][ T1145] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 387.356822][ T1145] R10: 0000000000000001 R11: 0000000000000000 R12: 1ffff92000b92f48 [ 387.359279][ T1145] R13: ffff8880450cecc1 R14: ffffffff8c59dec0 R15: ffffffff89b0dd10 [ 387.361735][ T1145] ? __pfx_ethtool_op_get_link+0x10/0x10 [ 387.363512][ T1145] ? __warn_printk+0x198/0x350 [ 387.365036][ T1145] ? __warn_printk+0x1a5/0x350 [ 387.366563][ T1145] ethtool_op_get_link+0x1d/0x70 [ 387.368145][ T1145] bond_check_dev_link+0x3f9/0x710 [ 387.369718][ T1145] ? __pfx_bond_check_dev_link+0x10/0x10 [ 387.371455][ T1145] bond_mii_monitor+0x3c0/0x2dc0 [ 387.372971][ T1145] ? __pfx_bond_mii_monitor+0x10/0x10 [ 387.374658][ T1145] ? rcu_is_watching+0x12/0xc0 [ 387.376193][ T1145] process_one_work+0x9cc/0x1b70 [ 387.377772][ T1145] ? __pfx_process_one_work+0x10/0x10 [ 387.379472][ T1145] ? assign_work+0x1a0/0x250 [ 387.380945][ T1145] worker_thread+0x6c8/0xf10 [ 387.382409][ T1145] ? __pfx_worker_thread+0x10/0x10 [ 387.384033][ T1145] kthread+0x3c2/0x780 [ 387.385328][ T1145] ? __pfx_kthread+0x10/0x10 [ 387.386789][ T1145] ? rcu_is_watching+0x12/0xc0 [ 387.388310][ T1145] ? __pfx_kthread+0x10/0x10 [ 387.389764][ T1145] ret_from_fork+0x5d4/0x6f0 [ 387.391227][ T1145] ? __pfx_kthread+0x10/0x10 [ 387.392697][ T1145] ret_from_fork_asm+0x1a/0x30 [ 387.394225][ T1145] [ 387.395951][ T1145] Kernel Offset: disabled [ 387.397321][ T1145] Rebooting in 86400 seconds.. VM DIAGNOSIS: 14:32:09 Registers: info registers vcpu 0 CPU#0 RAX=ffffea00017c83c0 RBX=ffffea00017c83c0 RCX=ffffffff820ecd4b RDX=ffff88804963c880 RSI=0000000000000008 RDI=ffffea00017c83c0 RBP=0000000000000001 RSP=ffffc90021cef518 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000 R12=ffffea00017c83c0 R13=ffff88803808eb40 R14=ffffea00017c83c0 R15=ffffea00017c83c0 RIP=ffffffff8221f558 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d66b8000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000200000000100 CR3=00000000566a7000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000080040001 Opmask01=0000000020080810 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc6fc17160 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc6fc172e6 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc6fc172e6 00007ffc6fc172ec ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa732012e46 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa732012e53 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa732012e4d ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa732012e61 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa732012ee7 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa732012fc5 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000002818 RBX=ffffc90006b22818 RCX=ffffffff86b3977b RDX=0000000000000000 RSI=ffffffff86b39789 RDI=ffff8880297b0936 RBP=00000000000000d5 RSP=ffffc900006a09f8 R8 =0000000000000005 R9 =0000000000000000 R10=00000000000000d6 R11=0000000000000000 R12=00000000000000d6 R13=ffff8880297b0900 R14=00000000ffeeaf40 R15=0000000000000000 RIP=ffffffff86b397f2 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f2312279300 ffffffff 00c00000 GS =0000 ffff8880d67b8000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b33220ff8 CR3=000000002a3c3000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000010000000 Opmask04=0000000000000000 Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 33e6000000030000 0008000400080010 00080000000c0200 0000000000080008 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000080008 0007000c00080000 0000000000100000 0034000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d6c4000000000000 33e7000000040000 0008000400080010 00080000000c0200 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 c2440000d57c0000 0004000000000000 0000000000000000 0cf400000000016e ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3600000000180000 00200000000e0014 000c000000080004 0020000e00000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 33e6000000200000 0003000000100008 0000000000000004 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000c001a00100000 0014010000000000 000800080007000c 00080000000c0000 ZMM24=590e5e94590e5e94 590e5e94590e5e94 590e5e94590e5e94 590e5e94590e5e94 590e5e94590e5e94 590e5e94590e5e94 590e5e94590e5e94 590e5e94590e5e94 ZMM25=349a081f349a081f 349a081f349a081f 349a081f349a081f 349a081f349a081f 349a081f349a081f 349a081f349a081f 349a081f349a081f 349a081f349a081f ZMM26=dfc82615dfc82615 dfc82615dfc82615 dfc82615dfc82615 dfc82615dfc82615 dfc82615dfc82615 dfc82615dfc82615 dfc82615dfc82615 dfc82615dfc82615 ZMM27=32f0534532f05345 32f0534532f05345 32f0534532f05345 32f0534532f05345 32f0534532f05345 32f0534532f05345 32f0534532f05345 32f0534532f05345 ZMM28=00000200000001ff 000001fe000001fd 000001fc000001fb 000001fa000001f9 000001f8000001f7 000001f6000001f5 000001f4000001f3 000001f2000001f1 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0344000003440000 0344000003440000 0344000003440000 0344000003440000 0344000003440000 0344000003440000 0344000003440000 0344000003440000 info registers vcpu 2 CPU#2 RAX=ffffea0001a96c40 RBX=ffff88802c10b5c0 RCX=ffffffff82072751 RDX=ffff88802a6c4880 RSI=ffffffff82073c3d RDI=0000000000000000 RBP=0000000000000004 RSP=ffffc90003cef830 R8 =0000000000000006 R9 =0000000000013da7 R10=000000000006a5b1 R11=0000000000000000 R12=00007f6fee045000 R13=ffff888039cbb228 R14=dffffc0000000000 R15=ffffea0001659488 RIP=ffffffff82073c63 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d68b8000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f6feeef7d60 CR3=0000000031c2c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f6fee3976c3 00007f6fee3976c3 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffcc0fc6000 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555562492fd6 0000555562492e40 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000010 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555562492fd6 0000555562492e40 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000004080614e0 0300080014d00300 080014c803000800 14c0030fffffffff ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 010680041881a392 cc08000100000608 06060113f2000800 06a0030008000698 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0300080006880300 0000080806068003 0814d80805148004 18858392ce080001 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000806060113 ee00080015980330 8080800800159003 0008001588030008 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0015800300080014 f80300080014f003 00080014e8030000 0004080614e00300 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 666666666666660a 302e79656b5f5f20 6220303664633033 6239666666666666 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3033623966666666 666666660a312e79 656b5f5f20622030 6164633033623966 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2030326563303362 3966666666666666 660a322e79656b5f 5f20622030656463 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 79656b5f5f206220 3036323131336239 6666666666666666 0a736e5f72747271 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 66660a312e79656b 5f5f206220306132 3131336239666666 66666666660a302e ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 666666666666660a 312e79656b5f5f20 6220306532313133 6239666666666666 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3133623966666666 666666660a322e79 656b5f5f20622030 3233313133623966 info registers vcpu 3 CPU#3 RAX=0000000000000043 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85644675 RDI=ffffffff9b1120a0 RBP=ffffffff9b112060 RSP=ffffc90005c97360 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000043 R14=ffffffff9b112060 R15=ffffffff85644610 RIP=ffffffff8564469f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880d69b8000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000555579a67808 CR3=0000000052ac8000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000080040001 Opmask01=0000000002fefce0 Opmask02=0000000002fefcfe Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdb91b78f0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdb91b7a76 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdb91b7a76 00007ffdb91b7a7c ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5365212e46 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5365212e53 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5365212e4d ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5365212e61 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5365212ee7 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5365212fc5 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000