last executing test programs: 4.890661428s ago: executing program 1 (id=551): chdir(0x0) request_key(&(0x7f00000013c0)='big_key\x00', &(0x7f0000001400)={'syz', 0x1}, &(0x7f0000001440)='/\x00', 0xfffffffffffffffe) add_key(&(0x7f00000018c0)='big_key\x00', &(0x7f0000001900)={'syz', 0x1}, &(0x7f0000001940)='\f', 0x1, 0xfffffffffffffffe) r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./bus\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f00000000c0)={0x8}) copy_file_range(r0, 0x0, r0, 0x0, 0x6, 0x0) syz_emit_ethernet(0xf87, &(0x7f0000000000)={@local, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "640ca6", 0xf51, 0x0, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, @local, {[@routing={0x84}], "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"}}}}}, 0x0) syz_open_dev$vcsu(&(0x7f0000000fc0), 0xff, 0x200000) r2 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000004c0)={{{@in6=@empty, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, 0x0, 0x32}, 0x0, @in=@broadcast}}, 0xe4) r3 = socket$key(0xf, 0x3, 0x2) setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f00000001c0), 0x4) sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="020b000102"], 0x10}}, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e04004220"], 0x7) sendmsg$key(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0) r4 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x2, 0x12, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 4.740889857s ago: executing program 1 (id=552): r0 = creat(&(0x7f00000005c0)='./file0\x00', 0x0) close(r0) r1 = socket$xdp(0x2c, 0x3, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', 0x0}) setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4) r4 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f00000001c0)=0x100, 0x4) setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c) setsockopt$XDP_UMEM_COMPLETION_RING(r4, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$XDP_RX_RING(r4, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00'}) setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000180)=0x10, 0x4) setsockopt$XDP_UMEM_FILL_RING(r4, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4) bind$xdp(r1, &(0x7f0000000240)={0x2c, 0x1, r3, 0x0, r4}, 0x10) 4.675283188s ago: executing program 1 (id=553): r0 = msgget$private(0x0, 0xfffffffffffffffd) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) fchdir(0xffffffffffffffff) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_DELETE(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000000202010100100000000000"], 0x14}}, 0x0) msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000100)=""/250) msgctl$MSG_STAT_ANY(r0, 0xd, &(0x7f0000000000)=""/225) 3.861679362s ago: executing program 2 (id=559): ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, 0x0) socket$packet(0x11, 0x3, 0x300) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) socket$inet6_sctp(0xa, 0x5, 0x84) r2 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) r3 = openat$uinput(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$UI_SET_LEDBIT(0xffffffffffffffff, 0x40045569, 0x13) ioctl$UI_DEV_SETUP(r3, 0x405c5503, &(0x7f0000000100)={{}, 'syz0\x00'}) ioctl$UI_DEV_CREATE(r3, 0x5501) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=ANY=[], 0x54}}, 0x0) creat(0x0, 0xc2) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x0, 0x0) read$FUSE(r4, &(0x7f0000000480)={0x2020}, 0x2020) 3.675031883s ago: executing program 1 (id=560): r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$IP6T_SO_SET_ADD_COUNTERS(r1, 0x29, 0x41, &(0x7f0000000880)={'filter\x00', 0x4, [{}, {}, {}, {}]}, 0x64) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0) r3 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(r2, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f}) ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r3) ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3}) ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74}) ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]}) ioctl$VHOST_SET_VRING_ERR(r2, 0x4008af22, &(0x7f00000002c0)={0x1, r3}) ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000000)=0x1) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xf, @void, @value}, 0x90) 3.411961354s ago: executing program 2 (id=563): syz_emit_vhci(0x0, 0x7) bpf$BPF_PROG_TEST_RUN(0xe, 0x0, 0x0) r0 = socket(0xa, 0x2, 0x0) getsockopt$bt_BT_SECURITY(r0, 0x29, 0x42, 0x0, 0x20000000) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) r2 = dup(r1) ioctl$TIOCL_SETSEL(r2, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0x0, 0x0, 0x0, 0x300}}) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000bc0)={0xffffffffffffffff, 0xe0, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000009c0), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10) r3 = socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r3, 0x28, 0x2, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff) mount$fuse(0x20000000, &(0x7f0000000400)='./file0\x00', 0x0, 0x223216, 0x0) chdir(&(0x7f0000000100)='./file0\x00') mkdir(&(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) rename(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f0000000800)='./file0\x00') 3.411047467s ago: executing program 2 (id=564): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) syz_io_uring_setup(0x239, 0x0, &(0x7f00000002c0)=0x0, 0x0) syz_io_uring_submit(r2, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x2def, 0x4000, 0x0, 0x0, 0x0) mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000040)='nv\x00', 0x3) connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) mlock2(&(0x7f0000018000/0x2000)=nil, 0x2000, 0x0) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) 2.961830895s ago: executing program 2 (id=565): socket$nl_netfilter(0x10, 0x3, 0xc) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f0000000080)=0x7f) r2 = socket(0x10, 0x803, 0x0) r3 = syz_create_resource$binfmt(&(0x7f0000000e40)='./file0\x00') r4 = openat$binfmt(0xffffff9c, r3, 0x41, 0x1ff) write$binfmt_script(r4, &(0x7f0000001140)={'#! ', './file0', [{0x20, '@]!+\x00]!\b\x00\x00\x00\x00\x00\x00\x00[)\\#.'}]}, 0x20) execve(&(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0) execve(&(0x7f0000001040)='./file0\x00', 0x0, &(0x7f0000000040)={[&(0x7f0000000080)='#! ']}) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x8, &(0x7f0000006680)) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) setitimer(0x1, 0x0, 0x0) sendmsg$nl_route(r2, 0x0, 0x0) ioctl$SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f00000000c0)) 2.851374567s ago: executing program 0 (id=567): socket$packet(0x11, 0x3, 0x300) connect$llc(0xffffffffffffffff, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0) chdir(&(0x7f0000000280)='./file0\x00') socket(0xa, 0x80006, 0xffffd628) r0 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xa) setresgid(0x0, 0xffffffffffffffff, r1) setregid(0xffffffffffffffff, r1) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) socket$nl_route(0x10, 0x3, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) fchmod(r2, 0x504) 2.847394659s ago: executing program 1 (id=568): r0 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x804402) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000000)=0x639) r1 = syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="0d01000009000008250592d20700006a3b010902241700fa0074980904e4ff11070103000905010200ffe0000009058202"], 0x0) syz_usb_control_io(r1, 0x0, &(0x7f0000000200)={0x84, 0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB=' '], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_open_dev$char_usb(0xc, 0xb4, 0x0) syz_usb_disconnect(r1) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_DEL(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r2, 0x200, 0x70bd29, 0x25dfdbfc, {}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}]}, 0x1c}}, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000380)={[0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x0, 0x0, 0x0, 0xfffffffffffffffe], 0x0, 0xa00}) preadv2(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000001740)=""/4096, 0x1000}, {&(0x7f0000000440)=""/237, 0xed}], 0x2, 0x0, 0x0, 0x0) syz_open_dev$char_usb(0xc, 0xb4, 0x0) syz_usb_connect$uac1(0x0, 0xa5, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902"], 0x0) readv(r0, &(0x7f00000002c0)=[{&(0x7f0000000140)=""/122, 0x7a}], 0x1) readv(r0, 0x0, 0x0) 2.701400406s ago: executing program 0 (id=569): socket$nl_route(0x10, 0x3, 0x0) syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86ddf9fffffffffffffffc010000000000000000000000000000fe8000000000000000000000000000aa"], 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c"], 0x1c}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_open_dev$sndctrl(&(0x7f00000000c0), 0x0, 0x2) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66b80e010f00d0b0060f21a20f01c40f009b2700000066b80c008ee00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a00b9730200000f32328fe858b660002fb90d090000b800680000ba000000000f30", 0x65}], 0x1, 0x0, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2.389510526s ago: executing program 3 (id=573): r0 = userfaultfd(0x80001) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1}) madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, 0x0) r1 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/59, 0x304000, 0x800}, 0x20) socket$nl_route(0x10, 0x3, 0x0) socket(0xa, 0x3, 0x3a) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) socket$key(0xf, 0x3, 0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000002fc0)=""/102400, 0x19000) getsockopt$IP_VS_SO_GET_TIMEOUT(r1, 0x0, 0x486, &(0x7f0000000180), 0x0) ioctl$UFFDIO_COPY(r0, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000/0x3000)=nil, 0x3000}) 1.849809244s ago: executing program 2 (id=574): openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1}) ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xa, [{}, {0x10}, {}, {}, {}, {0x0, 0x20}], 0x0, 0x0, 0x1, 0x0, 0x2}}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000280)={@mcast2, 0x800, 0x0, 0x2, 0x1, 0x4}, 0x33) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000000c0)={@mcast1, 0x800, 0x0, 0x2, 0x0, 0x0, 0x300}, 0x20) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0) syz_80211_inject_frame(0x0, 0x0, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) munlockall() madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8) 1.591234956s ago: executing program 0 (id=575): socket$packet(0x11, 0x3, 0x300) connect$llc(0xffffffffffffffff, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0) chdir(&(0x7f0000000280)='./file0\x00') socket(0xa, 0x80006, 0xffffd628) r0 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xa) setresgid(0x0, 0xffffffffffffffff, r1) setregid(0xffffffffffffffff, r1) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) socket$nl_route(0x10, 0x3, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) 1.488202963s ago: executing program 0 (id=576): bpf$BPF_LINK_CREATE(0x8, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff, 0x34, 0x0, @void}, 0x10) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r1 = syz_open_dev$dri(0x0, 0x1, 0x0) fcntl$dupfd(r0, 0x0, r1) syz_open_dev$sg(0x0, 0xf9ba, 0x14b082) openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000) preadv(0xffffffffffffffff, &(0x7f0000000200)=[{0x0}], 0x1, 0x0, 0x0) socket$caif_stream(0x25, 0x1, 0x2) close(0x3) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x0, '.\x00'}}) 1.172825646s ago: executing program 3 (id=577): socket$packet(0x11, 0x3, 0x300) connect$llc(0xffffffffffffffff, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0) chdir(&(0x7f0000000280)='./file0\x00') socket(0xa, 0x80006, 0xffffd628) r0 = socket(0xa, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xa) setresgid(0x0, 0xffffffffffffffff, r1) setregid(0xffffffffffffffff, r1) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) socket$nl_route(0x10, 0x3, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) 1.051541991s ago: executing program 3 (id=578): r0 = accept4$nfc_llcp(0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000000)=0x58, 0x80000) ioctl$EXT4_IOC_CLEAR_ES_CACHE(r0, 0x6628) socket$inet6(0xa, 0x3, 0xb) ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0) openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r2, &(0x7f0000000040)={0x50, 0x0, r3, {0x7, 0x1f}}, 0x50) syz_fuse_handle_req(r2, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) acct(&(0x7f00000001c0)='./file0\x00') acct(0x0) umount2(&(0x7f0000000000)='./file0\x00', 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 708.793891ms ago: executing program 3 (id=579): r0 = creat(&(0x7f00000005c0)='./file0\x00', 0x0) close(r0) r1 = socket$xdp(0x2c, 0x3, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', 0x0}) setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4) r4 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f00000001c0)=0x100, 0x4) setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c) setsockopt$XDP_UMEM_COMPLETION_RING(r4, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$XDP_RX_RING(r4, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00', 0x0}) setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000180)=0x10, 0x4) bind$xdp(r4, &(0x7f0000000100)={0x2c, 0x0, r6}, 0x10) bind$xdp(r1, &(0x7f0000000240)={0x2c, 0x1, r3, 0x0, r4}, 0x10) 621.830545ms ago: executing program 3 (id=580): creat(&(0x7f0000000140)='./file0\x00', 0x100) socket$packet(0x11, 0x3, 0x300) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) io_setup(0x9, &(0x7f0000000240)=0x0) io_submit(r1, 0x1, &(0x7f00000005c0)=[&(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x7, r0, &(0x7f0000000340)="e25b51ae7029d1d2cba228009b5ea3897388d5930a687d37177389380eacee7d330ef7c1b6bfda3137cdd1e18838d39efd2956868b680d7aec324bee9365b1c379fe3221d4d52d", 0x47, 0x226d}]) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_MSRS(r4, 0xc048aeca, &(0x7f0000000200)) r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='setgroups\x00') close_range(r5, 0xffffffffffffffff, 0x0) r6 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x14, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}}, 0x14}}, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x48, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r9, {0x0, 0x2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x8}}}]}, 0x48}}, 0x0) 521.547172ms ago: executing program 0 (id=581): bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="14000000040000000400000001"], 0x48) socket$nl_route(0x10, 0x3, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_generic(0x10, 0x3, 0x10) socket$inet6_sctp(0xa, 0x5, 0x84) io_uring_setup(0x696a, &(0x7f0000000340)={0x0, 0x7828, 0x2, 0x3}) socket$inet6_sctp(0xa, 0x5, 0x84) socket$nl_netfilter(0x10, 0x3, 0xc) creat(&(0x7f0000000280)='./file0\x00', 0x10) socket$inet6(0xa, 0x2, 0x0) r0 = syz_io_uring_setup(0x24fd, &(0x7f00000004c0)={0x0, 0x0, 0x10100}, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000002c0)={'ip6gre0\x00', &(0x7f0000000180)={'syztnl1\x00', 0x0, 0x2f, 0x0, 0x2, 0x1000000, 0x2c, @mcast2, @private0, 0x7800, 0x80, 0x20003, 0x270}}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='pids.events\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, &(0x7f0000000180)=ANY=[@ANYRES64=r3], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0}) io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0) 471.23724ms ago: executing program 0 (id=582): socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'macvlan0\x00'}) mknod(0x0, 0x40, 0x80000000) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x10, 0x11, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, 0x0, &(0x7f0000000380)) syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0) r2 = dup(r1) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r2, 0x0) getrandom(&(0x7f0000000600)=""/274, 0xffffff4f, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9) 311.324612ms ago: executing program 3 (id=583): socket$nl_route(0x10, 0x3, 0x0) syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86ddf9fffffffffffffffc010000000000000000000000000000fe8000000000000000000000000000aa"], 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c"], 0x1c}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_open_dev$sndctrl(&(0x7f00000000c0), 0x0, 0x2) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66b80e010f00d0b0060f21a20f01c40f009b2700000066b80c008ee00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a00b9730200000f32328fe858b660002fb90d090000b800680000ba000000000f30", 0x65}], 0x1, 0x0, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 237.352µs ago: executing program 1 (id=584): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r1 = dup(r0) r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_ifreq(r2, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7}) ioctl$sock_netdev_private(r2, 0x8949, &(0x7f0000000000)) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) syz_io_uring_submit(0x0, 0x0, 0x0) r3 = socket$inet(0x2, 0x3, 0x1) setsockopt$inet_msfilter(r3, 0x0, 0x8, &(0x7f0000000100)=ANY=[], 0x1) getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000240)={0x0, @local, @local}, &(0x7f0000000140)=0xc) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@dev={0xfe, 0x80, '\x00', 0x27}, 0x78, r4}) r5 = socket(0xa, 0x1, 0x0) ioctl(r5, 0x8916, &(0x7f0000000000)) ioctl(r5, 0x8936, &(0x7f0000000000)) r6 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r6, 0x560a, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x20}) 0s ago: executing program 2 (id=585): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) syz_emit_ethernet(0x86, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r2 = dup(r1) write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c) syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYBLOB="04040a000000000000546792"], 0xd) bind$inet6(0xffffffffffffffff, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0) r3 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1000}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(r3, 0x3516, 0x0, 0x0, 0x0, 0x0) 0s ago: executing program 2 (id=587): bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, 0x0, 0x0) ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc0585609, 0x0) ioctl$VIDIOC_DQEVENT(0xffffffffffffffff, 0x80885659, 0x0) r0 = socket$inet6(0xa, 0x1, 0x0) connect$inet6(r0, 0x0, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4001c00) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0) r2 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$NBD_SET_SOCK(r2, 0xab00, r3) r4 = syz_open_dev$ndb(&(0x7f00000000c0), 0x0, 0x0) ioctl$NBD_SET_FLAGS(r4, 0xab0a, 0x1000001000104) ioctl$NBD_SET_SOCK(r4, 0xab00, r3) ioctl$NBD_DO_IT(r2, 0xab03) close_range(r1, 0xffffffffffffffff, 0x0) openat$vimc2(0xffffffffffffff9c, 0x0, 0x2, 0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:7305' (ED25519) to the list of known hosts. [ 33.304983][ T5879] cgroup: Unknown subsys name 'net' [ 33.430831][ T5879] cgroup: Unknown subsys name 'cpuset' [ 33.433711][ T5879] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 34.340012][ T5879] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 36.601276][ T5963] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 36.603978][ T5963] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 36.606240][ T5963] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 36.608255][ T5963] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 36.612922][ T5971] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 36.615501][ T5971] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 36.615620][ T5969] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 36.617547][ T5971] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 36.622077][ T5969] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 36.622420][ T5971] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 36.624011][ T5969] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 36.626020][ T5971] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 36.627032][ T5970] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 36.628890][ T5313] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 36.629762][ T5971] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 36.632041][ T5970] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 36.635475][ T5975] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 36.638264][ T5970] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 36.639803][ T5975] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 36.642963][ T5970] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 36.643289][ T5975] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 36.646281][ T5970] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 36.646883][ T5975] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 36.650391][ T5975] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 36.804163][ T5960] chnl_net:caif_netlink_parms(): no params data found [ 36.840079][ T5967] chnl_net:caif_netlink_parms(): no params data found [ 36.857451][ T5964] chnl_net:caif_netlink_parms(): no params data found [ 36.863838][ T5972] chnl_net:caif_netlink_parms(): no params data found [ 36.877543][ T5960] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.880595][ T5960] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.883439][ T5960] bridge_slave_0: entered allmulticast mode [ 36.887315][ T5960] bridge_slave_0: entered promiscuous mode [ 36.940714][ T5960] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.943311][ T5960] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.945877][ T5960] bridge_slave_1: entered allmulticast mode [ 36.949608][ T5960] bridge_slave_1: entered promiscuous mode [ 37.002354][ T5967] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.004768][ T5967] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.007502][ T5967] bridge_slave_0: entered allmulticast mode [ 37.010293][ T5967] bridge_slave_0: entered promiscuous mode [ 37.023131][ T5960] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 37.045147][ T5967] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.047649][ T5967] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.049554][ T5967] bridge_slave_1: entered allmulticast mode [ 37.051587][ T5967] bridge_slave_1: entered promiscuous mode [ 37.070403][ T5960] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 37.145136][ T5967] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 37.150301][ T5960] team0: Port device team_slave_0 added [ 37.161865][ T5972] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.163771][ T5972] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.165742][ T5972] bridge_slave_0: entered allmulticast mode [ 37.168225][ T5972] bridge_slave_0: entered promiscuous mode [ 37.172366][ T5964] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.174245][ T5964] bridge0: port 1(bridge_slave_0) entered disabled state [ 37.176559][ T5964] bridge_slave_0: entered allmulticast mode [ 37.178632][ T5964] bridge_slave_0: entered promiscuous mode [ 37.182671][ T5967] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 37.185575][ T5960] team0: Port device team_slave_1 added [ 37.195487][ T5972] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.197429][ T5972] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.199376][ T5972] bridge_slave_1: entered allmulticast mode [ 37.201629][ T5972] bridge_slave_1: entered promiscuous mode [ 37.203576][ T5964] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.205501][ T5964] bridge0: port 2(bridge_slave_1) entered disabled state [ 37.207662][ T5964] bridge_slave_1: entered allmulticast mode [ 37.209975][ T5964] bridge_slave_1: entered promiscuous mode [ 37.271947][ T5960] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 37.273795][ T5960] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.280843][ T5960] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 37.285958][ T5960] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 37.288100][ T5960] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.294611][ T5960] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 37.299044][ T5972] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 37.302677][ T5964] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 37.306021][ T5972] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 37.310257][ T5967] team0: Port device team_slave_0 added [ 37.315681][ T5964] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 37.328687][ T5967] team0: Port device team_slave_1 added [ 37.356048][ T5972] team0: Port device team_slave_0 added [ 37.385577][ T5972] team0: Port device team_slave_1 added [ 37.387474][ T5967] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 37.389325][ T5967] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.396078][ T5967] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 37.400894][ T5964] team0: Port device team_slave_0 added [ 37.424642][ T5967] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 37.426681][ T5967] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.433249][ T5967] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 37.438780][ T5964] team0: Port device team_slave_1 added [ 37.443870][ T5960] hsr_slave_0: entered promiscuous mode [ 37.446899][ T5960] hsr_slave_1: entered promiscuous mode [ 37.459323][ T5972] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 37.461870][ T5972] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.468856][ T5972] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 37.472994][ T5972] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 37.474812][ T5972] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.481710][ T5972] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 37.515512][ T5964] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 37.517479][ T5964] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.524051][ T5964] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 37.527994][ T5964] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 37.529842][ T5964] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.536658][ T5964] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 37.576593][ T5967] hsr_slave_0: entered promiscuous mode [ 37.578594][ T5967] hsr_slave_1: entered promiscuous mode [ 37.580753][ T5967] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 37.583095][ T5967] Cannot create hsr debugfs directory [ 37.632607][ T5964] hsr_slave_0: entered promiscuous mode [ 37.634786][ T5964] hsr_slave_1: entered promiscuous mode [ 37.636938][ T5964] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 37.639051][ T5964] Cannot create hsr debugfs directory [ 37.643431][ T5972] hsr_slave_0: entered promiscuous mode [ 37.646326][ T5972] hsr_slave_1: entered promiscuous mode [ 37.648920][ T5972] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 37.651694][ T5972] Cannot create hsr debugfs directory [ 37.838651][ T5960] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 37.844025][ T5960] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 37.847708][ T5960] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 37.852444][ T5960] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 37.874608][ T5967] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 37.878201][ T5967] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 37.881779][ T5967] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 37.887017][ T5967] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 37.905970][ T5964] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 37.910507][ T5964] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 37.915083][ T5964] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 37.927216][ T5964] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 37.944402][ T5972] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 37.948338][ T5972] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 37.956239][ T5972] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 37.959245][ T5972] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 37.976013][ T5960] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.989626][ T5960] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.994076][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.996048][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.008972][ T45] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.010864][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.053052][ T5967] 8021q: adding VLAN 0 to HW filter on device bond0 [ 38.078906][ T5967] 8021q: adding VLAN 0 to HW filter on device team0 [ 38.082631][ T5964] 8021q: adding VLAN 0 to HW filter on device bond0 [ 38.091362][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.093314][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.098463][ T5964] 8021q: adding VLAN 0 to HW filter on device team0 [ 38.102572][ T69] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.104432][ T69] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.108766][ T5972] 8021q: adding VLAN 0 to HW filter on device bond0 [ 38.117120][ T1165] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.119097][ T1165] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.124166][ T5972] 8021q: adding VLAN 0 to HW filter on device team0 [ 38.144244][ T5960] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 38.148367][ T1165] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.150275][ T1165] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.158846][ T1165] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.160714][ T1165] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.171138][ T1165] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.173048][ T1165] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.230793][ T5960] veth0_vlan: entered promiscuous mode [ 38.242777][ T5960] veth1_vlan: entered promiscuous mode [ 38.260505][ T5967] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 38.264742][ T5960] veth0_macvtap: entered promiscuous mode [ 38.270288][ T5960] veth1_macvtap: entered promiscuous mode [ 38.280519][ T5960] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 38.288444][ T5960] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 38.293472][ T5960] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.298831][ T5960] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.301711][ T5960] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.304030][ T5960] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.331108][ T5972] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 38.335359][ T5967] veth0_vlan: entered promiscuous mode [ 38.340857][ T5964] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 38.363761][ T5967] veth1_vlan: entered promiscuous mode [ 38.379086][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.382054][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.402468][ T5972] veth0_vlan: entered promiscuous mode [ 38.410805][ T5964] veth0_vlan: entered promiscuous mode [ 38.421065][ T5967] veth0_macvtap: entered promiscuous mode [ 38.423719][ T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.426069][ T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.434721][ T5967] veth1_macvtap: entered promiscuous mode [ 38.440989][ T5964] veth1_vlan: entered promiscuous mode [ 38.443283][ T5972] veth1_vlan: entered promiscuous mode [ 38.454691][ T5967] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 38.458986][ T5967] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 38.462316][ T5967] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 38.468844][ T5960] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 38.470552][ T5967] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 38.475757][ T5967] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 38.480604][ T5967] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 38.484921][ T5967] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.487533][ T5967] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.490314][ T5967] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.492705][ T5967] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.513342][ T5964] veth0_macvtap: entered promiscuous mode [ 38.520639][ T5964] veth1_macvtap: entered promiscuous mode [ 38.530693][ T5972] veth0_macvtap: entered promiscuous mode [ 38.538698][ T5964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 38.542324][ T5964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 38.544878][ T5964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 38.549072][ T5964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 38.552821][ T5964] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 38.555994][ T5972] veth1_macvtap: entered promiscuous mode [ 38.562509][ T5964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 38.565364][ T5964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 38.568506][ T5964] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 38.571937][ T5964] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 38.575426][ T5964] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 38.579030][ T5964] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.582035][ T5964] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.584487][ T5964] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.587131][ T5964] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.593797][ T69] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.597458][ T69] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.614062][ T5972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 38.617919][ T5972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 38.621352][ T5972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 38.624982][ T5972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 38.628875][ T5972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 38.632606][ T5972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 38.637237][ T5972] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 38.648397][ T104] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.650478][ T5972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 38.651263][ T104] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.654641][ T5972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 38.654650][ T5972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 38.654658][ T5972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 38.654663][ T5972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 38.669151][ T5972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 38.673555][ T5972] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 38.683843][ T5972] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.686569][ T5975] Bluetooth: hci1: command tx timeout [ 38.687234][ T5963] Bluetooth: hci0: command tx timeout [ 38.687485][ T5972] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.687530][ T5972] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.687555][ T5972] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.688488][ T5975] Bluetooth: hci3: command tx timeout [ 38.698453][ T64] Bluetooth: hci2: command tx timeout [ 38.720231][ T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.723841][ T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.759894][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.764545][ T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.765456][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.766898][ T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.804837][ T104] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 38.807320][ T104] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 38.891986][ T6036] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 38.894444][ T6036] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 38.897180][ T6036] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 38.900609][ T6036] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 38.905161][ T6036] netdevsim netdevsim2 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0 [ 38.909014][ T6036] netdevsim netdevsim2 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0 [ 38.912035][ T6036] netdevsim netdevsim2 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0 [ 38.915032][ T6036] netdevsim netdevsim2 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0 [ 38.918683][ T6036] geneve2: entered promiscuous mode [ 38.920088][ T6036] geneve2: entered allmulticast mode [ 38.994351][ T6043] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7'. [ 39.004862][ T6043] netlink: 64 bytes leftover after parsing attributes in process `syz.3.7'. [ 39.126743][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 40.042572][ T5975] Bluetooth: unknown link type 8 [ 40.044389][ T5975] Bluetooth: hci3: connection err: -111 [ 40.767131][ T5975] Bluetooth: hci2: command tx timeout [ 40.767196][ T64] Bluetooth: hci0: command tx timeout [ 40.769190][ T5975] Bluetooth: hci1: command tx timeout [ 41.124150][ T6078] netlink: 392 bytes leftover after parsing attributes in process `syz.1.17'. [ 42.825675][ T5975] Bluetooth: unknown link type 8 [ 42.827155][ T5975] Bluetooth: hci2: connection err: -111 [ 42.847089][ T5975] Bluetooth: hci1: command tx timeout [ 42.847195][ T5963] Bluetooth: hci0: command tx timeout [ 42.856423][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 43.007168][ T5963] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0 [ 43.010262][ T5963] Bluetooth: hci3: Injecting HCI hardware error event [ 43.013680][ T5963] Bluetooth: hci3: hardware error 0x00 [ 43.086568][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 44.006539][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 44.009270][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 44.011954][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 44.376491][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 44.927141][ T5975] Bluetooth: hci0: command tx timeout [ 44.928300][ T64] Bluetooth: hci1: command tx timeout [ 45.045847][ T6151] netlink: 4 bytes leftover after parsing attributes in process `syz.3.35'. [ 45.050626][ T6151] netlink: 4 bytes leftover after parsing attributes in process `syz.3.35'. [ 45.086631][ T5963] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 45.128280][ T6151] bond0: (slave bond_slave_1): Releasing backup interface [ 45.166277][ T5963] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 45.168629][ T5963] Bluetooth: hci2: Injecting HCI hardware error event [ 45.171228][ T5963] Bluetooth: hci2: hardware error 0x00 [ 46.476748][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 46.476772][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 46.476841][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 47.256249][ T5963] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 48.006626][ T6189] sch_fq: defrate 0 ignored. [ 48.159194][ T6194] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 49.344463][ T1134] Bluetooth: hci4: Frame reassembly failed (-84) [ 49.586227][ T823] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 49.597176][ T6212] Cannot find del_set index 4 as target [ 49.604379][ T6212] ipvlan2: entered promiscuous mode [ 49.607147][ T6212] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 49.609635][ T6212] team0: Device ipvlan2 is already an upper device of the team interface [ 49.756223][ T823] usb 6-1: Using ep0 maxpacket: 32 [ 49.762604][ T823] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0 [ 49.766059][ T823] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0 [ 49.773476][ T823] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 49.776510][ T823] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 49.779468][ T823] usb 6-1: Product: syz [ 49.780996][ T823] usb 6-1: Manufacturer: syz [ 49.782869][ T823] usb 6-1: SerialNumber: syz [ 49.797576][ T823] usb 6-1: config 0 descriptor?? [ 50.022094][ T823] usb 6-1: USB disconnect, device number 2 [ 51.416290][ T64] Bluetooth: hci4: command 0xfc11 tx timeout [ 51.416358][ T5963] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 56.565060][ T5963] Bluetooth: unknown link type 8 [ 56.567369][ T5963] Bluetooth: hci1: connection err: -111 [ 56.736274][ T6004] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 56.886235][ T6004] usb 8-1: Using ep0 maxpacket: 8 [ 56.891971][ T6004] usb 8-1: config 0 has an invalid interface number: 1 but max is 0 [ 56.894083][ T6004] usb 8-1: config 0 has no interface number 0 [ 56.895687][ T6004] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 101, changing to 10 [ 56.912375][ T6004] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 59093, setting to 1024 [ 56.915507][ T6004] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 56.918125][ T6004] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 56.923676][ T6004] usb 8-1: config 0 descriptor?? [ 56.925904][ T6303] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 56.940270][ T6004] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 57.192379][ T6006] usb 8-1: USB disconnect, device number 2 [ 57.193996][ C2] iowarrior 8-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19 [ 57.200194][ T6006] iowarrior 8-1:0.1: I/O-Warror #0 now disconnected [ 60.359775][ T6363] pim6reg: entered allmulticast mode [ 60.618393][ T6004] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 60.776283][ T6004] usb 5-1: Using ep0 maxpacket: 8 [ 60.781652][ T6004] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 60.785273][ T6004] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 60.788926][ T6004] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10 [ 60.793199][ T6004] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024 [ 60.797971][ T6004] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 60.801236][ T6004] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 60.810137][ T6004] hub 5-1:1.0: bad descriptor, ignoring hub [ 60.812250][ T6004] hub 5-1:1.0: probe with driver hub failed with error -5 [ 60.815277][ T6004] cdc_wdm 5-1:1.0: skipping garbage [ 60.817283][ T6004] cdc_wdm 5-1:1.0: skipping garbage [ 60.821007][ T6004] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 60.823217][ T6004] cdc_wdm 5-1:1.0: Unknown control protocol [ 60.910158][ T6370] ======================================================= [ 60.910158][ T6370] WARNING: The mand mount option has been deprecated and [ 60.910158][ T6370] and is ignored by this kernel. Remove the mand [ 60.910158][ T6370] option from the mount to silence this warning. [ 60.910158][ T6370] ======================================================= [ 61.206298][ T6006] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 61.356313][ T6006] usb 8-1: Using ep0 maxpacket: 32 [ 61.360757][ T6006] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 61.363559][ T6006] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 61.366500][ T6006] usb 8-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00 [ 61.369790][ T6006] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 61.374861][ T6006] usb 8-1: config 0 descriptor?? [ 61.671298][ T6006] usbhid 8-1:0.0: can't add hid device: -71 [ 61.673524][ T6006] usbhid 8-1:0.0: probe with driver usbhid failed with error -71 [ 61.679451][ T6006] usb 8-1: USB disconnect, device number 3 [ 63.338086][ T5961] usb 5-1: USB disconnect, device number 2 [ 63.393326][ T6408] netlink: 3 bytes leftover after parsing attributes in process `syz.2.98'. [ 63.395756][ T6408] 0X: renamed from caif0 [ 63.400345][ T6408] 0X: entered allmulticast mode [ 63.402391][ T6408] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 63.846343][ T6022] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 64.236332][ T6022] usb 7-1: Using ep0 maxpacket: 8 [ 64.240645][ T6022] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 64.243918][ T6022] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 64.288498][ T6022] usb 7-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 64.297078][ T6022] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 64.363685][ T6022] usb 7-1: config 0 descriptor?? [ 64.621949][ T6438] overlayfs: failed to get inode (-116) [ 64.624510][ T6438] overlayfs: failed to get inode (-116) [ 64.647703][ T4427] usb 7-1: USB disconnect, device number 2 [ 64.666468][ T6391] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 64.817501][ T6391] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 64.820373][ T6391] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 64.822919][ T6391] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 64.825434][ T6391] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 64.830519][ T6429] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 64.835139][ T6391] usb 8-1: Quirk or no altset; falling back to MIDI 1.0 [ 65.035940][ T6006] usb 8-1: USB disconnect, device number 4 [ 65.189426][ T6448] loop7: detected capacity change from 0 to 16384 [ 65.197830][ T6451] evm: overlay not supported [ 65.245327][ T6448] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0 [ 65.248338][ T6448] Buffer I/O error on dev loop7, logical block 0, lost async page write [ 65.249745][ T6452] pim6reg: entered allmulticast mode [ 65.304132][ T6456] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 16 prio class 0 [ 65.306804][ T6456] Buffer I/O error on dev loop7, logical block 0, lost async page write [ 65.309029][ T6456] Buffer I/O error on dev loop7, logical block 1, lost async page write [ 65.311147][ T6456] Buffer I/O error on dev loop7, logical block 2, lost async page write [ 65.313290][ T6456] Buffer I/O error on dev loop7, logical block 3, lost async page write [ 65.315602][ T6456] Buffer I/O error on dev loop7, logical block 4, lost async page write [ 65.318928][ T6456] Buffer I/O error on dev loop7, logical block 5, lost async page write [ 65.321159][ T6456] Buffer I/O error on dev loop7, logical block 6, lost async page write [ 65.323317][ T6456] Buffer I/O error on dev loop7, logical block 7, lost async page write [ 65.325447][ T6456] Buffer I/O error on dev loop7, logical block 8, lost async page write [ 65.506314][ T4427] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 65.656225][ T4427] usb 7-1: Using ep0 maxpacket: 8 [ 65.660677][ T4427] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 65.664090][ T4427] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 65.667418][ T4427] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10 [ 65.671510][ T4427] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024 [ 65.675164][ T4427] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 65.677902][ T4427] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 65.682103][ T4427] hub 7-1:1.0: bad descriptor, ignoring hub [ 65.683745][ T4427] hub 7-1:1.0: probe with driver hub failed with error -5 [ 65.685764][ T4427] cdc_wdm 7-1:1.0: skipping garbage [ 65.688420][ T4427] cdc_wdm 7-1:1.0: skipping garbage [ 65.691236][ T4427] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device [ 65.693290][ T4427] cdc_wdm 7-1:1.0: Unknown control protocol [ 67.346573][ T39] audit: type=1326 audit(1732324064.937:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6480 comm="syz.0.122" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff0579 code=0x0 [ 68.208069][ T5961] usb 7-1: USB disconnect, device number 3 [ 69.093211][ T6527] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 69.111896][ T6527] kvm: pic: single mode not supported [ 69.118594][ T6527] kvm: pic: single mode not supported [ 69.120325][ T6527] kvm: pic: level sensitive irq not supported [ 69.122469][ T6527] kvm: pic: non byte write [ 69.125946][ T6527] kvm: pic: single mode not supported [ 69.126519][ T6527] kvm: pic: single mode not supported [ 69.716667][ T25] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 70.517251][ T6564] netlink: 28 bytes leftover after parsing attributes in process `syz.1.146'. [ 70.699051][ T1406] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.700878][ T1406] ieee802154 phy1 wpan1: encryption failed: -22 [ 72.086310][ T6004] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 72.237906][ T6004] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 72.240413][ T6004] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 72.242570][ T6004] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 72.245485][ T6004] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 72.247779][ T6004] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 72.251752][ T6004] usb 7-1: config 0 descriptor?? [ 72.663804][ T6004] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0 [ 72.666443][ T6004] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving [ 72.673154][ T6004] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 72.917488][ T6604] netlink: 'syz.2.154': attribute type 1 has an invalid length. [ 72.927868][ T6006] usb 7-1: USB disconnect, device number 4 [ 73.402874][ T9] cfg80211: failed to load regulatory.db [ 74.575423][ T6669] Bluetooth: MGMT ver 1.23 [ 74.687711][ T6672] netlink: 28 bytes leftover after parsing attributes in process `syz.1.180'. [ 74.690046][ T6672] netlink: 8 bytes leftover after parsing attributes in process `syz.1.180'. [ 74.710296][ T6672] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.712598][ T6672] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.798736][ T6677] vivid-003: disconnect [ 74.956593][ T25] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 75.048531][ T6674] vivid-003: reconnect [ 76.411139][ T6705] tipc: Started in network mode [ 76.413785][ T6705] tipc: Node identity 2a0d79f66d3, cluster identity 4711 [ 76.416639][ T6705] tipc: Enabled bearer , priority 10 [ 76.626371][ T6705] tipc: Resetting bearer [ 76.769236][ T1165] tipc: Resetting bearer [ 77.160151][ T6700] tipc: Resetting bearer [ 77.451526][ T6006] tipc: Node number set to 1195211254 [ 78.158542][ T6719] syz.0.192 (6719) used greatest stack depth: 20912 bytes left [ 78.414581][ T6700] tipc: Disabling bearer [ 79.215442][ T6731] vim2m vim2m.0: vidioc_s_fmt queue busy [ 79.223590][ T6736] random: crng reseeded on system resumption [ 79.236180][ T6736] overlayfs: failed to resolve './file0': -2 [ 79.797157][ T6761] Zero length message leads to an empty skb [ 79.800960][ C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 80.725396][ T6771] netlink: 'syz.2.203': attribute type 1 has an invalid length. [ 80.764327][ T6771] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link [ 80.770334][ T1134] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond [ 80.775447][ T6771] 8021q: adding VLAN 0 to HW filter on device bond1 [ 80.877761][ T1165] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond [ 80.909571][ T6777] input: syz1 as /devices/virtual/input/input5 [ 81.899248][ T6803] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 82.002314][ T6812] usb usb8: check_ctrlrecip: process 6812 (syz.0.211) requesting ep 01 but needs 81 [ 82.004778][ T6812] usb usb8: usbfs: process 6812 (syz.0.211) did not claim interface 0 before use [ 82.015801][ T6812] can0: slcan on pts0. [ 82.069003][ T6815] Driver unsupported XDP return value 0 on prog (id 31) dev N/A, expect packet loss! [ 82.208566][ T6812] can0 (unregistered): slcan off pts0. [ 82.246019][ T6006] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 82.315713][ T6826] netlink: 4 bytes leftover after parsing attributes in process `syz.1.214'. [ 82.957900][ T25] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 83.106273][ T25] usb 7-1: Using ep0 maxpacket: 8 [ 83.109830][ T25] usb 7-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config [ 83.113420][ T25] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 83.115980][ T25] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 83.121334][ T25] usb 7-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 83.124814][ T25] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 83.129162][ T25] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 83.133524][ T25] usbtmc 7-1:16.0: bulk endpoints not found [ 85.745470][ T62] usb 7-1: USB disconnect, device number 5 [ 101.459958][ T6886] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 101.464821][ T6886] overlayfs: failed to set xattr on upper [ 101.467423][ T6886] overlayfs: ...falling back to redirect_dir=nofollow. [ 101.470871][ T6886] overlayfs: ...falling back to index=off. [ 101.473048][ T6886] overlayfs: ...falling back to uuid=null. [ 101.726562][ T9] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 101.886227][ T9] usb 5-1: Using ep0 maxpacket: 8 [ 101.890561][ T9] usb 5-1: config index 0 descriptor too short (expected 301, got 45) [ 101.892787][ T9] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 101.895393][ T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 101.899994][ T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 101.902930][ T9] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 101.906969][ T9] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 101.910226][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 102.125332][ T9] usb 5-1: GET_CAPABILITIES returned 0 [ 102.127133][ T9] usbtmc 5-1:16.0: can't read capabilities [ 102.386782][ T6888] usbtmc 5-1:16.0: INITIATE_ABORT_BULK_OUT returned 0 [ 102.445918][ T6918] input: syz0 as /devices/virtual/input/input6 [ 103.848774][ T6933] Set syz1 is full, maxelem 65536 reached [ 104.456061][ T823] usb 5-1: USB disconnect, device number 3 [ 104.874949][ T6972] capability: warning: `syz.2.247' uses 32-bit capabilities (legacy support in use) [ 104.879004][ T6972] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 105.136189][ T74] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 105.288878][ T74] usb 7-1: Using ep0 maxpacket: 8 [ 105.302225][ T74] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024 [ 105.305040][ T74] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 105.307913][ T74] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 105.310440][ T74] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 105.313646][ T74] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 105.315980][ T74] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 105.526375][ T74] usb 7-1: usb_control_msg returned -32 [ 105.527847][ T74] usbtmc 7-1:16.0: can't read capabilities [ 105.889834][ T6993] usbtmc 7-1:16.0: INDICATOR_PULSE returned 0 [ 106.089004][ T6984] warning: `syz.1.251' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 106.090966][ T6391] usb 7-1: USB disconnect, device number 6 [ 106.130867][ T6995] syz.1.254 uses obsolete (PF_INET,SOCK_PACKET) [ 106.161450][ T6995] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 106.172344][ T6995] kvm: pic: level sensitive irq not supported [ 106.173533][ T6995] kvm: pic: non byte read [ 106.498277][ T7006] netlink: 4 bytes leftover after parsing attributes in process `syz.1.258'. [ 107.320941][ T39] audit: type=1326 audit(1732324104.917:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.1.267" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7fc00000 [ 107.327541][ T39] audit: type=1326 audit(1732324104.917:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.1.267" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf748e579 code=0x7fc00000 [ 107.333202][ T39] audit: type=1326 audit(1732324104.917:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.1.267" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7fc00000 [ 107.339259][ T39] audit: type=1326 audit(1732324104.917:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.1.267" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7fc00000 [ 107.344857][ T39] audit: type=1326 audit(1732324104.917:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.1.267" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7fc00000 [ 107.350641][ T39] audit: type=1326 audit(1732324104.917:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.1.267" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7fc00000 [ 107.356526][ T39] audit: type=1326 audit(1732324104.917:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.1.267" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7fc00000 [ 107.362086][ T39] audit: type=1326 audit(1732324104.917:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.1.267" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7fc00000 [ 107.367545][ T39] audit: type=1326 audit(1732324104.917:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.1.267" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7fc00000 [ 107.372787][ T39] audit: type=1326 audit(1732324104.917:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.1.267" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf748e579 code=0x7fc00000 [ 111.089376][ T7125] syz.1.291: attempt to access beyond end of device [ 111.089376][ T7125] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0 [ 111.093719][ T7125] FAT-fs (nbd1): unable to read boot sector [ 112.837694][ T7152] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 112.847264][ T7152] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 112.886648][ T7153] process 'syz.2.298' launched './file0' with NULL argv: empty string added [ 113.228363][ T7156] block device autoloading is deprecated and will be removed. [ 113.234967][ T7156] syz.3.299: attempt to access beyond end of device [ 113.234967][ T7156] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 114.616348][ T6391] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 114.806355][ T6391] usb 7-1: Using ep0 maxpacket: 8 [ 114.810520][ T6391] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 114.813327][ T6391] usb 7-1: config 0 has no interfaces? [ 114.815893][ T6391] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 114.818788][ T6391] usb 7-1: config 0 has no interfaces? [ 114.823074][ T6391] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 114.830255][ T6391] usb 7-1: config 0 has no interfaces? [ 114.868311][ T6391] usb 7-1: string descriptor 0 read error: -22 [ 114.870611][ T6391] usb 7-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 114.872950][ T6391] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 114.881213][ T6391] usb 7-1: config 0 descriptor?? [ 115.100140][ T6391] usb 7-1: USB disconnect, device number 7 [ 115.653697][ T7197] netlink: 24 bytes leftover after parsing attributes in process `syz.0.311'. [ 115.679855][ T7197] netlink: 8 bytes leftover after parsing attributes in process `syz.0.311'. [ 115.683250][ T7197] netlink: 4 bytes leftover after parsing attributes in process `syz.0.311'. [ 115.686022][ T7197] netlink: 'syz.0.311': attribute type 1 has an invalid length. [ 115.688279][ T7197] netlink: 24 bytes leftover after parsing attributes in process `syz.0.311'. [ 118.076389][ T9] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 118.228317][ T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 118.232323][ T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 118.235486][ T9] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 118.242151][ T9] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 118.244584][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 118.245235][ T7252] netlink: 12 bytes leftover after parsing attributes in process `syz.0.326'. [ 118.247837][ T9] usb 6-1: config 0 descriptor?? [ 118.729319][ T7239] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 118.830237][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.832195][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.834240][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.836411][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.838479][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.840507][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.842451][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.844391][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.846614][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.849085][ T7263] trusted_key: syz.0.330 sent an empty control message without MSG_MORE. [ 118.851484][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.853482][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.855404][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.857537][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.859482][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.862013][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.863952][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.865922][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.867917][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.869843][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.871767][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.873917][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.875854][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.877882][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.879813][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.881738][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.883668][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.885606][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.887596][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.889671][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.891610][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.893589][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.895480][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.897374][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.899268][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.901133][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.903077][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.904956][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.906969][ T9] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0 [ 118.909094][ T9] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving [ 118.926386][ T9] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw1: USB HID v0.00 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 119.177970][ T6006] usb 6-1: USB disconnect, device number 3 [ 119.311784][ T5963] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201' [ 119.314527][ T5963] CPU: 2 UID: 0 PID: 5963 Comm: kworker/u33:2 Not tainted 6.12.0-syzkaller-07834-g06afb0f36106 #0 [ 119.317319][ T5963] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 119.320119][ T5963] Workqueue: hci0 hci_rx_work [ 119.321440][ T5963] Call Trace: [ 119.322346][ T5963] [ 119.323143][ T5963] dump_stack_lvl+0x16c/0x1f0 [ 119.324415][ T5963] sysfs_warn_dup+0x7f/0xa0 [ 119.325652][ T5963] sysfs_create_dir_ns+0x24d/0x2b0 [ 119.327384][ T5963] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 119.328913][ T5963] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 119.330377][ T5963] ? kobject_add_internal+0x12d/0x990 [ 119.331819][ T5963] ? do_raw_spin_unlock+0x172/0x230 [ 119.333227][ T5963] kobject_add_internal+0x2c8/0x990 [ 119.334645][ T5963] kobject_add+0x16f/0x240 [ 119.335887][ T5963] ? __pfx_kobject_add+0x10/0x10 [ 119.337227][ T5963] ? class_to_subsys+0x3e/0x160 [ 119.338578][ T5963] ? do_raw_spin_unlock+0x172/0x230 [ 119.340136][ T5963] ? kobject_put+0xab/0x5a0 [ 119.341711][ T5963] device_add+0x289/0x1a70 [ 119.342922][ T5963] ? __pfx_dev_set_name+0x10/0x10 [ 119.344301][ T5963] ? __pfx_device_add+0x10/0x10 [ 119.345638][ T5963] ? mgmt_send_event_skb+0x2f2/0x460 [ 119.347059][ T5963] hci_conn_add_sysfs+0x17e/0x230 [ 119.348430][ T5963] le_conn_complete_evt+0xfc6/0x1cd0 [ 119.349847][ T5963] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 119.351371][ T5963] ? __mutex_lock+0x1cc/0xa60 [ 119.352828][ T5963] hci_le_conn_complete_evt+0x23c/0x370 [ 119.354753][ T5963] hci_le_meta_evt+0x2e2/0x5d0 [ 119.356399][ T5963] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 119.358526][ T5963] hci_event_packet+0x666/0x1190 [ 119.360231][ T5963] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 119.362057][ T5963] ? __pfx_hci_event_packet+0x10/0x10 [ 119.363894][ T5963] ? kcov_remote_start+0x3df/0x6e0 [ 119.365571][ T5963] hci_rx_work+0x2c5/0x16b0 [ 119.367119][ T5963] ? process_one_work+0x8bb/0x1b30 [ 119.369045][ T5963] process_one_work+0x958/0x1b30 [ 119.370553][ T5963] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 119.372058][ T5963] ? __pfx_process_one_work+0x10/0x10 [ 119.373514][ T5963] ? rcu_is_watching+0x12/0xc0 [ 119.374814][ T5963] ? assign_work+0x1a0/0x250 [ 119.376071][ T5963] worker_thread+0x6c8/0xf00 [ 119.377638][ T5963] ? __kthread_parkme+0x148/0x220 [ 119.379361][ T5963] ? __pfx_worker_thread+0x10/0x10 [ 119.380727][ T5963] kthread+0x2c1/0x3a0 [ 119.381841][ T5963] ? _raw_spin_unlock_irq+0x23/0x50 [ 119.383275][ T5963] ? __pfx_kthread+0x10/0x10 [ 119.384517][ T5963] ret_from_fork+0x45/0x80 [ 119.385734][ T5963] ? __pfx_kthread+0x10/0x10 [ 119.387000][ T5963] ret_from_fork_asm+0x1a/0x30 [ 119.388322][ T5963] [ 119.390625][ T5963] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 119.395187][ T5963] Bluetooth: hci0: failed to register connection device [ 119.544680][ T7280] netlink: 4 bytes leftover after parsing attributes in process `syz.1.333'. [ 119.828306][ T7284] netlink: 4 bytes leftover after parsing attributes in process `syz.0.335'. [ 119.831457][ T7284] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 119.893342][ T7284] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 120.202535][ T7289] capability: warning: `syz.3.337' uses deprecated v2 capabilities in a way that may be insecure [ 121.548451][ T7314] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 121.550287][ T7314] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 121.558260][ T7314] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 121.561178][ T7314] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 121.565171][ T7314] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 121.569651][ T7314] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 121.572067][ T7314] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 123.566321][ T64] Bluetooth: hci1: command 0x0c1a tx timeout [ 123.566349][ T5963] Bluetooth: hci0: command 0x0c1a tx timeout [ 124.610617][ T7379] netlink: 8 bytes leftover after parsing attributes in process `syz.2.361'. [ 124.612974][ T7379] netlink: 40 bytes leftover after parsing attributes in process `syz.2.361'. [ 125.646280][ T64] Bluetooth: hci0: command 0x0c1a tx timeout [ 125.656381][ T64] Bluetooth: hci1: command 0x0c1a tx timeout [ 126.320636][ T7418] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 126.614554][ T7429] netlink: 16 bytes leftover after parsing attributes in process `syz.0.376'. [ 126.756273][ T7427] nbd2: detected capacity change from 0 to 20 [ 126.763208][ T6879] block nbd2: Send control failed (result -89) [ 126.765056][ T6879] block nbd2: Request send failed, requeueing [ 126.778877][ T5963] block nbd2: Receive control failed (result -32) [ 126.779964][ T122] block nbd2: Dead connection, failed to find a fallback [ 126.782802][ T122] block nbd2: shutting down sockets [ 126.785169][ T122] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.789634][ T122] buffer_io_error: 7 callbacks suppressed [ 126.789643][ T122] Buffer I/O error on dev nbd2, logical block 0, async page read [ 126.794384][ T6879] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.797287][ T6879] Buffer I/O error on dev nbd2, logical block 0, async page read [ 126.799693][ T6879] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.802025][ T6879] Buffer I/O error on dev nbd2, logical block 0, async page read [ 126.804193][ T6879] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.807864][ T6879] Buffer I/O error on dev nbd2, logical block 0, async page read [ 126.809947][ T6879] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.812371][ T6879] Buffer I/O error on dev nbd2, logical block 0, async page read [ 126.816826][ T6879] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.819307][ T6879] Buffer I/O error on dev nbd2, logical block 0, async page read [ 126.821440][ T6879] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.823862][ T6879] Buffer I/O error on dev nbd2, logical block 0, async page read [ 126.826253][ T6879] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.829440][ T6879] Buffer I/O error on dev nbd2, logical block 0, async page read [ 126.832081][ T6879] ldm_validate_partition_table(): Disk read failed. [ 126.834719][ T6879] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.839422][ T6879] Buffer I/O error on dev nbd2, logical block 0, async page read [ 126.842199][ T6879] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 126.845167][ T6879] Buffer I/O error on dev nbd2, logical block 0, async page read [ 126.848049][ T6879] Dev nbd2: unable to read RDB block 0 [ 126.849642][ T6879] nbd2: unable to read partition table [ 126.851671][ T6879] nbd2: partition table beyond EOD, truncated [ 126.863848][ T7427] ldm_validate_partition_table(): Disk read failed. [ 126.875285][ T7427] Dev nbd2: unable to read RDB block 0 [ 126.877502][ T7427] nbd2: unable to read partition table [ 126.881066][ T7427] nbd2: partition table beyond EOD, truncated [ 126.886001][ T6879] ldm_validate_partition_table(): Disk read failed. [ 126.893489][ T7427] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256 [ 126.901804][ T6879] Dev nbd2: unable to read RDB block 0 [ 126.908756][ T6879] nbd2: unable to read partition table [ 126.910654][ T6879] nbd2: partition table beyond EOD, truncated [ 126.915914][ T7427] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=9, location=9 [ 126.921783][ T7427] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=8, location=8 [ 126.924366][ T7427] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=7, location=7 [ 126.935356][ T7427] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512 [ 126.940178][ T7427] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256 [ 126.943031][ T7427] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=4, location=4 [ 126.950554][ T7427] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=3, location=3 [ 126.953616][ T7427] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=2, location=2 [ 126.956783][ T7427] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512 [ 126.960474][ T7427] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256 [ 126.963579][ T7427] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=1, location=1 [ 126.966587][ T7427] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=0, location=0 [ 126.969023][ T7427] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512 [ 126.971512][ T7427] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1) [ 127.727430][ T64] Bluetooth: hci0: command 0x0c1a tx timeout [ 127.729094][ T5963] Bluetooth: hci1: command 0x0c1a tx timeout [ 128.346200][ T6391] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 128.516189][ T6391] usb 5-1: Using ep0 maxpacket: 32 [ 128.548114][ T6391] usb 5-1: config 0 has no interfaces? [ 128.589010][ T6391] usb 5-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 128.591291][ T6391] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 128.593251][ T6391] usb 5-1: Product: syz [ 128.594327][ T6391] usb 5-1: Manufacturer: syz [ 128.595512][ T6391] usb 5-1: SerialNumber: syz [ 128.599070][ T6391] usb 5-1: config 0 descriptor?? [ 128.827186][ T7453] netlink: 16 bytes leftover after parsing attributes in process `syz.0.383'. [ 128.973859][ T4427] usb 5-1: USB disconnect, device number 4 [ 129.470306][ T7480] netlink: 36 bytes leftover after parsing attributes in process `syz.3.389'. [ 129.596403][ T62] libceph: connect (1)[c::]:6789 error -101 [ 129.598325][ T62] libceph: mon0 (1)[c::]:6789 connect error [ 129.740934][ T7483] ceph: No mds server is up or the cluster is laggy [ 129.747606][ T6006] libceph: connect (1)[c::]:6789 error -101 [ 129.750791][ T6006] libceph: mon0 (1)[c::]:6789 connect error [ 129.753472][ T6006] libceph: connect (1)[c::]:6789 error -101 [ 129.755103][ T6006] libceph: mon0 (1)[c::]:6789 connect error [ 129.806292][ T64] Bluetooth: hci0: command 0x0c1a tx timeout [ 129.807954][ T5963] Bluetooth: hci1: command 0x0c1a tx timeout [ 130.028742][ T6006] libceph: connect (1)[c::]:6789 error -101 [ 130.030446][ T6006] libceph: mon0 (1)[c::]:6789 connect error [ 130.121601][ T7500] loop7: detected capacity change from 0 to 16384 [ 130.179850][ T7500] loop7: unable to read partition table [ 130.181911][ T7500] loop_reread_partitions: partition scan of loop7 (K>i) /480# $qZI[u@3bj!5MM]z) failed (rc=-5) [ 130.419273][ T7488] ceph: No mds server is up or the cluster is laggy [ 130.798681][ T7506] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 130.802307][ T7506] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 130.805546][ T7506] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 130.809124][ T7506] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 130.951639][ T7510] netlink: 28 bytes leftover after parsing attributes in process `syz.3.396'. [ 131.036276][ T6004] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 131.186257][ T6004] usb 5-1: Using ep0 maxpacket: 8 [ 131.192507][ T6004] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 131.194663][ T6004] usb 5-1: config 0 has no interface number 0 [ 131.196532][ T6004] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 101, changing to 10 [ 131.199704][ T6004] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 59093, setting to 1024 [ 131.202905][ T6004] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 131.205221][ T6004] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 131.208392][ T6004] usb 5-1: config 0 descriptor?? [ 131.210783][ T7508] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 131.214508][ T6004] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 131.457181][ T7532] netlink: 168 bytes leftover after parsing attributes in process `syz.3.403'. [ 131.515474][ T6004] usb 5-1: USB disconnect, device number 5 [ 131.515550][ C0] iowarrior 5-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19 [ 131.521286][ T6004] iowarrior 5-1:0.1: I/O-Warror #0 now disconnected [ 132.127572][ T1406] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.129514][ T1406] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.605447][ T7569] siw: device registration error -23 [ 133.637472][ T7572] netlink: 12 bytes leftover after parsing attributes in process `syz.2.413'. [ 133.712620][ T7574] binder_alloc: 7573: binder_alloc_buf, no vma [ 133.726837][ T7574] netlink: 'syz.0.415': attribute type 10 has an invalid length. [ 133.729025][ T7574] netlink: 55 bytes leftover after parsing attributes in process `syz.0.415'. [ 133.735496][ T7574] team0: Port device virt_wifi0 added [ 133.902131][ T74] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 134.046290][ T74] usb 6-1: Using ep0 maxpacket: 8 [ 134.051940][ T74] usb 6-1: config 0 has an invalid interface number: 1 but max is 0 [ 134.054193][ T74] usb 6-1: config 0 has no interface number 0 [ 134.055817][ T74] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 101, changing to 10 [ 134.059313][ T74] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 59093, setting to 1024 [ 134.062355][ T74] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 134.065521][ T74] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 134.072696][ T74] usb 6-1: config 0 descriptor?? [ 134.075975][ T7576] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 134.086232][ T74] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 134.338280][ T6004] usb 6-1: USB disconnect, device number 4 [ 134.338438][ C0] iowarrior 6-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19 [ 134.342300][ T6004] iowarrior 6-1:0.1: I/O-Warror #0 now disconnected [ 134.848065][ T64] Bluetooth: hci1: command 0x0c1a tx timeout [ 135.604962][ T7610] netlink: 4 bytes leftover after parsing attributes in process `syz.1.426'. [ 135.605308][ T7610] netlink: 312 bytes leftover after parsing attributes in process `syz.1.426'. [ 135.605318][ T7610] netlink: 312 bytes leftover after parsing attributes in process `syz.1.426'. [ 137.268831][ T6090] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 137.436237][ T6090] usb 7-1: Using ep0 maxpacket: 8 [ 137.439256][ T6090] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 137.441339][ T6090] usb 7-1: config 0 has no interface number 0 [ 137.442919][ T6090] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 101, changing to 10 [ 137.445741][ T6090] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 59093, setting to 1024 [ 137.450515][ T6090] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 137.452935][ T6090] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 137.455810][ T6090] usb 7-1: config 0 descriptor?? [ 137.458876][ T7636] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 137.462684][ T6090] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 137.722613][ T6004] usb 7-1: USB disconnect, device number 8 [ 137.722723][ C1] iowarrior 7-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19 [ 137.728666][ T6004] iowarrior 7-1:0.1: I/O-Warror #0 now disconnected [ 139.562059][ T7680] xt_CT: No such helper "netbios-ns" [ 142.153361][ T1165] Bluetooth: hci4: Frame reassembly failed (-84) [ 142.396218][ T5961] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 142.546221][ T5961] usb 5-1: Using ep0 maxpacket: 32 [ 142.548772][ T5961] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0 [ 142.551337][ T5961] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0 [ 142.555296][ T5961] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79 [ 142.557882][ T5961] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2 [ 142.560004][ T5961] usb 5-1: Product: syz [ 142.561100][ T5961] usb 5-1: Manufacturer: syz [ 142.562284][ T5961] usb 5-1: SerialNumber: syz [ 142.564462][ T5961] usb 5-1: config 0 descriptor?? [ 142.770551][ T74] usb 5-1: USB disconnect, device number 6 [ 144.206423][ T64] Bluetooth: hci4: command 0xfc11 tx timeout [ 144.207472][ T5963] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 146.593953][ T7790] overlayfs: failed to get inode (-116) [ 146.595548][ T7790] overlayfs: failed to get inode (-116) [ 146.906207][ T823] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 147.067581][ T823] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 147.070505][ T823] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 147.073116][ T823] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 147.075597][ T823] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 147.079204][ T7795] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 147.082407][ T823] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 147.286325][ T823] usb 7-1: USB disconnect, device number 9 [ 147.688462][ T6004] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 147.856479][ T6004] usb 5-1: Using ep0 maxpacket: 8 [ 147.916663][ T6004] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 147.919373][ T6004] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 147.921733][ T6004] usb 5-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 147.924075][ T6004] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 147.929359][ T6004] usb 5-1: config 0 descriptor?? [ 148.247889][ T9] usb 5-1: USB disconnect, device number 7 [ 149.536218][ T5961] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 149.706272][ T5961] usb 6-1: Using ep0 maxpacket: 8 [ 149.709035][ T5961] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 149.711625][ T5961] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 149.713961][ T5961] usb 6-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 149.716705][ T5961] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 149.719622][ T5961] usb 6-1: config 0 descriptor?? [ 150.047583][ T823] usb 6-1: USB disconnect, device number 5 [ 151.786261][ T823] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 151.937682][ T823] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 151.942307][ T823] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 151.986233][ T823] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 151.989231][ T823] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 152.016866][ T7853] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 152.037193][ T823] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 152.253998][ T5961] usb 5-1: USB disconnect, device number 8 [ 152.666185][ T823] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 152.857501][ T823] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 152.860191][ T823] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 152.862533][ T823] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 152.864736][ T823] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 152.868362][ T7872] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 152.871714][ T823] usb 6-1: Quirk or no altset; falling back to MIDI 1.0 [ 153.075924][ T823] usb 6-1: USB disconnect, device number 6 [ 153.546212][ T823] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 153.706250][ T823] usb 8-1: Using ep0 maxpacket: 8 [ 153.710153][ T823] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 153.713714][ T823] usb 8-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 153.717766][ T823] usb 8-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 153.720964][ T823] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 153.725793][ T823] usb 8-1: config 0 descriptor?? [ 153.989058][ T5961] usb 8-1: USB disconnect, device number 5 [ 154.786640][ T25] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 155.274733][ T7918] rdma_rxe: rxe_newlink: failed to add bond_slave_1 [ 165.836677][ T25] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 167.759304][ T8018] Set syz1 is full, maxelem 65536 reached [ 172.997585][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies. [ 173.116691][ T25] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 183.307594][ T39] kauditd_printk_skb: 696 callbacks suppressed [ 183.307605][ T39] audit: type=1804 audit(1732324180.907:709): pid=8101 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.538" name="/newroot/131/file0/file0" dev="9p" ino=37617774 res=1 errno=0 [ 183.316837][ T8105] netlink: 4 bytes leftover after parsing attributes in process `syz.1.539'. [ 183.322374][ T8102] befs: Unknown parameter 'bFs ' [ 183.369504][ T39] audit: type=1804 audit(1732324180.967:710): pid=8112 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.538" name="/newroot/131/file0/file0" dev="9p" ino=37617774 res=1 errno=0 [ 184.896276][ T74] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 185.056829][ T74] usb 7-1: too many configurations: 9, using maximum allowed: 8 [ 185.059617][ T74] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 185.061846][ T74] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 185.065839][ T74] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.068338][ T74] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 185.070835][ T74] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 185.073422][ T74] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.075816][ T74] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 185.078183][ T74] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 185.081379][ T74] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.096475][ T74] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 185.098771][ T74] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 185.101627][ T74] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.104064][ T74] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 185.106747][ T74] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 185.109517][ T74] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.111933][ T74] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 185.114368][ T74] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 185.117616][ T74] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.120028][ T74] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 185.122496][ T74] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 185.125237][ T74] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.128268][ T74] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 185.130632][ T74] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 185.133428][ T74] usb 7-1: config 0 interface 0 has no altsetting 0 [ 185.137048][ T74] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 185.139482][ T74] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 185.141658][ T74] usb 7-1: Product: syz [ 185.142774][ T74] usb 7-1: Manufacturer: syz [ 185.144062][ T74] usb 7-1: SerialNumber: syz [ 185.157919][ T74] usb 7-1: config 0 descriptor?? [ 185.162186][ T74] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0 [ 185.570596][ C2] usb 7-1: yurex_control_callback - control failed: -71 [ 185.572267][ T6090] usb 7-1: USB disconnect, device number 10 [ 185.676606][ T8153] yurex 7-1:0.0: yurex_write - failed to send bulk msg, error -19 [ 185.676663][ T6090] yurex 7-1:0.0: USB YUREX #0 now disconnected [ 186.280517][ T39] audit: type=1326 audit(1732324183.877:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8169 comm="syz.0.556" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 186.287978][ T39] audit: type=1326 audit(1732324183.877:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8169 comm="syz.0.556" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 186.293561][ T39] audit: type=1326 audit(1732324183.877:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8169 comm="syz.0.556" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 186.299064][ T39] audit: type=1326 audit(1732324183.877:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8169 comm="syz.0.556" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 186.304494][ T39] audit: type=1326 audit(1732324183.877:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8169 comm="syz.0.556" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 186.310162][ T39] audit: type=1326 audit(1732324183.887:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8169 comm="syz.0.556" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 186.315694][ T39] audit: type=1326 audit(1732324183.897:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8169 comm="syz.0.556" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 186.323267][ T39] audit: type=1326 audit(1732324183.897:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8169 comm="syz.0.556" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff0579 code=0x7ffc0000 [ 187.538328][ T8199] syz.2.565 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 187.856197][ T4427] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 188.006410][ T4427] usb 6-1: Using ep0 maxpacket: 8 [ 188.011569][ T4427] usb 6-1: config index 0 descriptor too short (expected 5924, got 36) [ 188.016402][ T4427] usb 6-1: config 250 has an invalid interface number: 228 but max is -1 [ 188.023585][ T4427] usb 6-1: config 250 has 1 interface, different from the descriptor's value: 0 [ 188.027661][ T4427] usb 6-1: config 250 has no interface number 0 [ 188.033049][ T4427] usb 6-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024 [ 188.036908][ T4427] usb 6-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024 [ 188.040026][ T4427] usb 6-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0 [ 188.042679][ T4427] usb 6-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0 [ 188.045482][ T4427] usb 6-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17 [ 188.050333][ T4427] usb 6-1: config 250 interface 228 has no altsetting 0 [ 188.054847][ T4427] usb 6-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07 [ 188.057735][ T4427] usb 6-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59 [ 188.060481][ T4427] usb 6-1: Product: syz [ 188.062421][ T4427] usb 6-1: SerialNumber: syz [ 188.074143][ T4427] hub 6-1:250.228: bad descriptor, ignoring hub [ 188.077175][ T4427] hub 6-1:250.228: probe with driver hub failed with error -5 [ 188.276519][ T4427] usblp 6-1:250.228: usblp0: USB Bidirectional printer dev 7 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292 [ 189.115468][ T8228] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22 [ 189.118864][ T8228] netdevsim netdevsim0: Direct firmware load for . failed with error -22 [ 189.118957][ T8201] usb 6-1: reset high-speed USB device number 7 using dummy_hcd [ 189.121277][ T8228] netdevsim netdevsim0: Falling back to sysfs fallback for: . [ 189.129835][ T8201] usb 6-1: device reset changed ep0 maxpacket size! [ 189.138172][ T74] usb 6-1: USB disconnect, device number 7 [ 189.167782][ T74] usblp0: removed [ 189.306287][ T74] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 189.456282][ T74] usb 6-1: Using ep0 maxpacket: 16 [ 189.460216][ T8219] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 189.464117][ T74] usb 6-1: config 0 has no interfaces? [ 189.467833][ T74] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 189.470125][ T74] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 189.472194][ T74] usb 6-1: Product: syz [ 189.473771][ T74] usb 6-1: Manufacturer: syz [ 189.474947][ T74] usb 6-1: SerialNumber: syz [ 189.478830][ T74] usb 6-1: config 0 descriptor?? [ 189.704028][ T823] usb 6-1: USB disconnect, device number 8 [ 190.746907][ T6006] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 191.467745][ T8274] [ 191.468618][ T8274] ====================================================== [ 191.470631][ T8274] WARNING: possible circular locking dependency detected [ 191.472382][ T8274] 6.12.0-syzkaller-07834-g06afb0f36106 #0 Not tainted [ 191.474697][ T8274] ------------------------------------------------------ [ 191.477724][ T8274] syz.2.587/8274 is trying to acquire lock: [ 191.479320][ T8274] ffff8880437cdde0 (&q->sysfs_lock){+.+.}-{4:4}, at: __blk_mq_update_nr_hw_queues+0x446/0x1460 [ 191.482703][ T8274] [ 191.482703][ T8274] but task is already holding lock: [ 191.484822][ T8274] ffff8880437cd8b0 (&q->q_usage_counter(io)#51){++++}-{0:0}, at: __blk_mq_update_nr_hw_queues+0x1fc/0x1460 [ 191.488241][ T8274] [ 191.488241][ T8274] which lock already depends on the new lock. [ 191.488241][ T8274] [ 191.491816][ T8274] [ 191.491816][ T8274] the existing dependency chain (in reverse order) is: [ 191.494765][ T8274] [ 191.494765][ T8274] -> #4 (&q->q_usage_counter(io)#51){++++}-{0:0}: [ 191.497653][ T8274] blk_mq_submit_bio+0x1fb6/0x24c0 [ 191.499489][ T8274] __submit_bio+0x384/0x540 [ 191.500792][ T8274] submit_bio_noacct_nocheck+0x698/0xd70 [ 191.502389][ T8274] submit_bio_noacct+0x93a/0x1e20 [ 191.503813][ T8274] block_read_full_folio+0x812/0xa50 [ 191.505338][ T8274] filemap_read_folio+0xc6/0x2a0 [ 191.506767][ T8274] filemap_get_pages+0x155f/0x1be0 [ 191.508214][ T8274] filemap_read+0x3ca/0xd70 [ 191.509671][ T8274] blkdev_read_iter+0x187/0x480 [ 191.511606][ T8274] vfs_read+0x87f/0xbe0 [ 191.513242][ T8274] ksys_read+0x12b/0x250 [ 191.514861][ T8274] do_syscall_64+0xcd/0x250 [ 191.516575][ T8274] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 191.518693][ T8274] [ 191.518693][ T8274] -> #3 (mapping.invalidate_lock#2){++++}-{4:4}: [ 191.521454][ T8274] down_read+0x9a/0x330 [ 191.523007][ T8274] page_cache_ra_unbounded+0x173/0x6c0 [ 191.524996][ T8274] page_cache_ra_order+0x7d9/0xc90 [ 191.526865][ T8274] filemap_fault+0x1497/0x2820 [ 191.528665][ T8274] __do_fault+0x10a/0x490 [ 191.530246][ T8274] do_pte_missing+0x9a7/0x3e70 [ 191.531685][ T8274] __handle_mm_fault+0x100a/0x2a10 [ 191.533122][ T8274] handle_mm_fault+0x3fa/0xaa0 [ 191.534488][ T8274] __get_user_pages+0x8d9/0x3b50 [ 191.535876][ T8274] __gup_longterm_locked+0x5ff/0x1870 [ 191.537422][ T8274] pin_user_pages+0x13f/0x160 [ 191.538763][ T8274] xdp_umem_create+0x73c/0x1270 [ 191.540436][ T8274] xsk_setsockopt+0x7e7/0xac0 [ 191.542172][ T8274] do_sock_setsockopt+0x222/0x480 [ 191.544051][ T8274] __sys_setsockopt+0x1a0/0x230 [ 191.545895][ T8274] __ia32_sys_setsockopt+0xbc/0x160 [ 191.547787][ T8274] __do_fast_syscall_32+0x73/0x120 [ 191.549629][ T8274] do_fast_syscall_32+0x32/0x80 [ 191.551431][ T8274] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 191.553795][ T8274] [ 191.553795][ T8274] -> #2 (&mm->mmap_lock){++++}-{4:4}: [ 191.556421][ T8274] __might_fault+0x11b/0x190 [ 191.558193][ T8274] _copy_from_user+0x29/0xd0 [ 191.559999][ T8274] compat_blk_trace_setup+0xc9/0x200 [ 191.562059][ T8274] blk_trace_ioctl+0x24a/0x290 [ 191.563972][ T8274] compat_blkdev_ioctl+0x13c/0x750 [ 191.565948][ T8274] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 191.567507][ T8274] __do_fast_syscall_32+0x73/0x120 [ 191.568979][ T8274] do_fast_syscall_32+0x32/0x80 [ 191.570553][ T8274] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 191.572383][ T8274] [ 191.572383][ T8274] -> #1 (&q->debugfs_mutex){+.+.}-{4:4}: [ 191.574461][ T8274] __mutex_lock+0x19b/0xa60 [ 191.575775][ T8274] blk_register_queue+0x13c/0x550 [ 191.577281][ T8274] add_disk_fwnode+0x785/0x1300 [ 191.578706][ T8274] brd_alloc.isra.0+0x50a/0x7c0 [ 191.580509][ T8274] brd_init+0x12b/0x1d0 [ 191.582245][ T8274] do_one_initcall+0x128/0x630 [ 191.583655][ T8274] kernel_init_freeable+0x58f/0x8b0 [ 191.585171][ T8274] kernel_init+0x1c/0x2b0 [ 191.586468][ T8274] ret_from_fork+0x45/0x80 [ 191.587800][ T8274] ret_from_fork_asm+0x1a/0x30 [ 191.589239][ T8274] [ 191.589239][ T8274] -> #0 (&q->sysfs_lock){+.+.}-{4:4}: [ 191.591283][ T8274] __lock_acquire+0x249e/0x3c40 [ 191.592705][ T8274] lock_acquire.part.0+0x11b/0x380 [ 191.594158][ T8274] __mutex_lock+0x19b/0xa60 [ 191.595754][ T8274] __blk_mq_update_nr_hw_queues+0x446/0x1460 [ 191.598048][ T8274] blk_mq_update_nr_hw_queues+0x2a/0x40 [ 191.600104][ T8274] nbd_start_device+0x15b/0xd70 [ 191.601935][ T8274] nbd_ioctl+0x21a/0xfd0 [ 191.603570][ T8274] compat_blkdev_ioctl+0x2f7/0x750 [ 191.605532][ T8274] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 191.607532][ T8274] __do_fast_syscall_32+0x73/0x120 [ 191.609495][ T8274] do_fast_syscall_32+0x32/0x80 [ 191.611018][ T8274] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 191.613655][ T8274] [ 191.613655][ T8274] other info that might help us debug this: [ 191.613655][ T8274] [ 191.617343][ T8274] Chain exists of: [ 191.617343][ T8274] &q->sysfs_lock --> mapping.invalidate_lock#2 --> &q->q_usage_counter(io)#51 [ 191.617343][ T8274] [ 191.621690][ T8274] Possible unsafe locking scenario: [ 191.621690][ T8274] [ 191.623611][ T8274] CPU0 CPU1 [ 191.625014][ T8274] ---- ---- [ 191.626415][ T8274] lock(&q->q_usage_counter(io)#51); [ 191.627856][ T8274] lock(mapping.invalidate_lock#2); [ 191.630137][ T8274] lock(&q->q_usage_counter(io)#51); [ 191.632988][ T8274] lock(&q->sysfs_lock); [ 191.633765][ T8290] PM: Image not found (code -6) [ 191.634565][ T8274] [ 191.634565][ T8274] *** DEADLOCK *** [ 191.634565][ T8274] [ 191.638803][ T8274] 4 locks held by syz.2.587/8274: [ 191.640373][ T8274] #0: ffff888024483998 (&nbd->config_lock){+.+.}-{4:4}, at: nbd_ioctl+0x151/0xfd0 [ 191.642965][ T8274] #1: ffff8880244838d8 (&set->tag_list_lock){+.+.}-{4:4}, at: blk_mq_update_nr_hw_queues+0x20/0x40 [ 191.645829][ T8274] #2: ffff8880437cd8b0 (&q->q_usage_counter(io)#51){++++}-{0:0}, at: __blk_mq_update_nr_hw_queues+0x1fc/0x1460 [ 191.649841][ T8274] #3: ffff8880437cd8e8 (&q->q_usage_counter(queue)#35){+.+.}-{0:0}, at: __blk_mq_update_nr_hw_queues+0x1fc/0x1460 [ 191.654139][ T8274] [ 191.654139][ T8274] stack backtrace: [ 191.656279][ T8274] CPU: 0 UID: 0 PID: 8274 Comm: syz.2.587 Not tainted 6.12.0-syzkaller-07834-g06afb0f36106 #0 [ 191.659918][ T8274] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 191.663808][ T8274] Call Trace: [ 191.665071][ T8274] [ 191.665990][ T8274] dump_stack_lvl+0x116/0x1f0 [ 191.667288][ T8274] print_circular_bug+0x41c/0x610 [ 191.668623][ T8274] check_noncircular+0x31a/0x400 [ 191.670235][ T8274] ? __pfx_check_noncircular+0x10/0x10 [ 191.671939][ T8274] ? save_trace+0x42/0xa10 [ 191.673147][ T8274] ? add_lock_to_list+0x17d/0x390 [ 191.674532][ T8274] __lock_acquire+0x249e/0x3c40 [ 191.675885][ T8274] ? __pfx___lock_acquire+0x10/0x10 [ 191.677293][ T8274] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 191.678873][ T8274] ? stack_depot_save_flags+0x31b/0x900 [ 191.680373][ T8274] lock_acquire.part.0+0x11b/0x380 [ 191.681748][ T8274] ? __blk_mq_update_nr_hw_queues+0x446/0x1460 [ 191.683371][ T8274] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 191.684892][ T8274] ? rcu_is_watching+0x12/0xc0 [ 191.686241][ T8274] ? trace_lock_acquire+0x146/0x1e0 [ 191.687599][ T8274] ? __blk_mq_update_nr_hw_queues+0x446/0x1460 [ 191.689209][ T8274] ? lock_acquire+0x2f/0xb0 [ 191.690796][ T8274] ? __blk_mq_update_nr_hw_queues+0x446/0x1460 [ 191.692567][ T8274] __mutex_lock+0x19b/0xa60 [ 191.693749][ T8274] ? __blk_mq_update_nr_hw_queues+0x446/0x1460 [ 191.695378][ T8274] ? __blk_mq_update_nr_hw_queues+0x446/0x1460 [ 191.697009][ T8274] ? __pfx___mutex_lock+0x10/0x10 [ 191.698312][ T8274] ? __blk_mq_update_nr_hw_queues+0x446/0x1460 [ 191.699927][ T8274] __blk_mq_update_nr_hw_queues+0x446/0x1460 [ 191.701458][ T8274] ? lock_acquire.part.0+0x11b/0x380 [ 191.702809][ T8274] ? __mutex_trylock_common+0xea/0x250 [ 191.704155][ T8274] ? __pfx___mutex_trylock_common+0x10/0x10 [ 191.705685][ T8274] ? blk_mq_update_nr_hw_queues+0x20/0x40 [ 191.707164][ T8274] ? rcu_is_watching+0x12/0xc0 [ 191.708343][ T8274] ? __pfx___blk_mq_update_nr_hw_queues+0x10/0x10 [ 191.710099][ T8274] ? __pfx___mutex_trylock_common+0x10/0x10 [ 191.711680][ T8274] ? blk_mq_update_nr_hw_queues+0x20/0x40 [ 191.713453][ T8274] ? __pfx___mutex_lock+0x10/0x10 [ 191.715127][ T8274] ? trace_contention_end+0xea/0x140 [ 191.716913][ T8274] ? __mutex_lock+0x1cc/0xa60 [ 191.718482][ T8274] ? nbd_ioctl+0x151/0xfd0 [ 191.719983][ T8274] ? __pfx___mutex_lock+0x10/0x10 [ 191.721684][ T8274] blk_mq_update_nr_hw_queues+0x2a/0x40 [ 191.723515][ T8274] nbd_start_device+0x15b/0xd70 [ 191.725138][ T8274] ? bpf_lsm_capable+0x9/0x10 [ 191.726760][ T8274] nbd_ioctl+0x21a/0xfd0 [ 191.728216][ T8274] ? __pfx_nbd_ioctl+0x10/0x10 [ 191.729924][ T8274] ? __pfx_lock_release+0x10/0x10 [ 191.731767][ T8274] ? trace_lock_acquire+0x146/0x1e0 [ 191.733625][ T8274] ? __pfx_nbd_ioctl+0x10/0x10 [ 191.735339][ T8274] compat_blkdev_ioctl+0x2f7/0x750 [ 191.737089][ T8274] ? __pfx_compat_blkdev_ioctl+0x10/0x10 [ 191.739030][ T8274] ? __fget_files+0x206/0x3a0 [ 191.740675][ T8274] ? __pfx_compat_blkdev_ioctl+0x10/0x10 [ 191.742628][ T8274] __do_compat_sys_ioctl+0x1cb/0x2c0 [ 191.744473][ T8274] __do_fast_syscall_32+0x73/0x120 [ 191.746321][ T8274] do_fast_syscall_32+0x32/0x80 [ 191.748070][ T8274] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 191.750304][ T8274] RIP: 0023:0xf7f31579 [ 191.751665][ T8274] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 191.758424][ T8274] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 191.761412][ T8274] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ab03 [ 191.764221][ T8274] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 191.766993][ T8274] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 191.769695][ T8274] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 191.772340][ T8274] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 191.774914][ T8274] [ 191.810291][ T5963] block nbd2: Receive control failed (result -32) [ 191.812477][ T5963] block nbd2: Receive control failed (result -32) [ 191.889114][ T8274] block nbd2: shutting down sockets [ 192.606180][ T5963] Bluetooth: hci0: command 0x0c1a tx timeout [ 193.568006][ T1406] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.570286][ T1406] ieee802154 phy1 wpan1: encryption failed: -22 VM DIAGNOSIS: 01:09:49 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000064 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84fee6f5 RDI=ffffffff9a656460 RBP=ffffffff9a656420 RSP=ffffc9000416f000 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=732d302e32312e36 R12=0000000000000000 R13=0000000000000064 R14=ffffffff84fee690 R15=0000000000000000 RIP=ffffffff84fee71f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f30edc10 CR3=0000000070efc000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000001280000 Opmask01=0000000008000202 Opmask02=0000000000400000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffe14bb550 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f6e3a6d5e007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4b1f485e005600 0b56000041000b56 000040494a564b4a 460a5340410a000a ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 30202e30000a3239 3244653020636220 20313031303d000a 6d6469645064000a ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000517704 RBX=0000000000000001 RCX=ffffffff8b159f99 RDX=ffffed10056a6fee RSI=ffffffff8bb05ce0 RDI=ffffffff81646059 RBP=ffffed1003772910 RSP=ffffc90000477e08 R8 =0000000000000000 R9 =ffffed10056a6fed R10=ffff88802b537f6b R11=0000000000000001 R12=0000000000000001 R13=ffff88801bb94880 R14=ffffffff901cda10 R15=0000000000000000 RIP=ffffffff8b15b37f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b500000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00005627fb0faa18 CR3=0000000049290000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000006000800 Opmask01=00000000011000f0 Opmask02=000000000fffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff0000ffffffff ffff000000ff0000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdd7c45610 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e2e2e2e2e2e2e2e 2e2e2e2e2e2e2e2e ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff0000ffffffff ffff000000ff0000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7564203a73250074 656b636f53207465 6b63615000676e69 64726177726f662f ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5041051f56000051 404e464a53055140 4e46445000424b4c 41574452574a430a ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000181 0000000000000000 306e6170776f6c2f 74656e2f6c617574 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001001 3030303030303230 00316e6170772f74 656e2f317968702f ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 00005653545ed233 73656d5f70636864 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 725f0f70ee483661 72610f6ffa6f737f 65677773777fffff 7f7f7d7f75777965 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 0000726565666965 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 00006d5f65636864 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2b313423342c ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020 info registers vcpu 2 CPU#2 RAX=0000000000270a1c RBX=0000000000000002 RCX=ffffffff8b159f99 RDX=ffffed10056c6fee RSI=ffffffff8bb05ce0 RDI=ffffffff81646059 RBP=ffffed1003775000 RSP=ffffc90000487e08 R8 =0000000000000000 R9 =ffffed10056c6fed R10=ffff88802b637f6b R11=0000000000000001 R12=0000000000000002 R13=ffff88801bba8000 R14=ffffffff901cda10 R15=0000000000000000 RIP=ffffffff8b15b37f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000030603ff8 CR3=000000006f626000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000004080 Opmask01=0000000000000001 Opmask02=000000000000ffdf Opmask03=2040000404420020 Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdda6c5890 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000ff0000 00ff000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ffffffffffffffff ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8e54f71834717acd 737326f066d90c3d ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737373e2 7373737373737373 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000031 0000000000000000 44455a494c414954 494e495f43455355 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6f742079617272 6120656c75722079 7261726f706d6574 002a3f005b3f2a00 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a4a51055c445757 440540495057055c 5744574a55484051 000f1a005b1a0f00 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fd27846b470209be 0000558315abebb8 00000000000000d1 000000302f716d00 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000302f716d2f 33706f6f6c2f6b63 6f6c622f6c617574 7269762f73656369 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65642f3000021f4a 45191d0b432f1811 0a1a0b5d08615a11 1e1c12401e4a1010 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 777e7f7f7e3f3f6b 773f5fffff6f5fdf 7f7f7fdfbf7f7fdd 5f7f7fe77effdbdf ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 49383a3a2648383a 3a2633383a3a2632 383a3a263d383a3a 263c383a3a263f38 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 70632f2f2f716d2f 00006f6f6c2f5463 0000622f6c615874 0000000000003069 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000002f2f716d2f 00006f6f6c2f5163 0000622f6c615208 0000000000003069 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000198 RBX=0000000000000190 RCX=0000000000000007 RDX=0000000000000001 RSI=0000000000000000 RDI=ffff888024920581 RBP=ffff88802b728a80 RSP=ffffc90003447818 R8 =0000000000000004 R9 =0000000000000000 R10=0000000000000000 R11=00000000000a201e R12=ffff888024920000 R13=0000000000000002 R14=0000000000000000 R15=ffffffff8dca8000 RIP=ffffffff816750bc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020482000 CR3=000000006f626000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000