last executing test programs: 5.080484725s ago: executing program 0 (id=2789): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x6, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000007d00000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$packet_drop_memb(0xffffffffffffffff, 0x107, 0x2, &(0x7f0000000280)={0x0, 0x1, 0x6, @multicast}, 0x10) setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x60, &(0x7f0000000240)={0x0, @local, 0x0, 0x0, 'rr\x00', 0x31}, 0x2c) 5.080080479s ago: executing program 0 (id=2791): mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000300)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) 5.016828069s ago: executing program 0 (id=2792): r0 = epoll_create1(0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) ioctl$UI_DEV_SETUP(r2, 0x405c5503, &(0x7f00000000c0)={{}, 'syz1\x00'}) ioctl$UI_DEV_CREATE(r2, 0x5501) 4.960405918s ago: executing program 0 (id=2793): syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) personality(0x500006) prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ff9000/0x4000)=nil) prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x4000)=nil) munmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000) brk(0x20ffc004) 4.370478958s ago: executing program 3 (id=2803): ioctl$SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc2c45512, 0x0) syz_usb_connect(0x0, 0x2d, &(0x7f0000001600)=ANY=[@ANYBLOB="12010000ec31f8104c1302007eec010203010902"], 0x0) syz_open_dev$evdev(&(0x7f0000000040), 0x4, 0x18) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x4, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) 3.230208728s ago: executing program 3 (id=2811): r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r1) r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x8, 0xd, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xa}, {}, {0x7, 0x0, 0xb, 0x7}}, @tail_call={{0x18, 0x2, 0x1, 0x0, r3}, {}, {0x85, 0x0, 0x0, 0x5}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 3.23003676s ago: executing program 3 (id=2812): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa20000000000000002000000000000b703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xe, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000e27b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c250000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10) 3.138690232s ago: executing program 3 (id=2813): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x13, r2, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x13, r3, 0x0) 2.92461447s ago: executing program 3 (id=2814): mkdir(&(0x7f0000000580)='./bus\x00', 0x0) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000)='sysfs\x00', 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000180)='./bus\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000300)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) chdir(&(0x7f0000000080)='./bus\x00') mount$overlay(0x0, &(0x7f0000000180)='./bus\x00', &(0x7f0000000500), 0x0, &(0x7f0000000440)={[{@lowerdir={'lowerdir', 0x3d, './bus'}, 0x3a}], [], 0x2f}) 2.840627807s ago: executing program 3 (id=2815): mkdir(&(0x7f0000000280)='./file0\x00', 0x0) write$FUSE_NOTIFY_STORE(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB='/'], 0x2) mount$fuse(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0xa6d214, 0x0) mount$fuse(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0xa6d214, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mountstats\x00') read$FUSE(r0, &(0x7f000001c8c0)={0x2020}, 0x160e) 1.08048624s ago: executing program 1 (id=2837): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) write$uinput_user_dev(r0, &(0x7f0000001100)={'syz1\x00'}, 0x45c) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x4) r1 = dup(r0) ioctl$UI_DEV_CREATE(r1, 0x5501) write$tun(r1, &(0x7f0000000240)={@void, @val, @ipv6=@icmpv6={0x0, 0x6, "41b0ca", 0x78, 0x3a, 0x0, @rand_addr=' \x01\x00', @empty, {[@routing={0x0, 0x4, 0x0, 0x0, 0x0, [@empty, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}, @hopopts={0x0, 0x0, '\x00', [@generic]}, @fragment, @dstopts={0x0, 0x2, '\x00', [@pad1, @calipso={0x7, 0x8}, @jumbo]}, @srh={0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4}], @ni={0x8c}}}}, 0xaa) 1.020520077s ago: executing program 1 (id=2838): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(fcrypt)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)="415b7ac700000000", 0x8) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)={{0x14}, [@NFT_MSG_DELOBJ={0x40, 0x14, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_OBJ_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_USERDATA={0x11, 0x8, "52a2d6a867f5e66511dcdd4661"}]}], {0x14}}, 0x68}}, 0x0) recvmmsg(r1, &(0x7f0000001900)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000440)=""/101, 0x65}, {&(0x7f00000001c0)=""/174, 0xae}], 0x2}}], 0x1, 0x0, 0x0) 879.911063ms ago: executing program 0 (id=2794): r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f00000002c0)=0xa0000) r1 = dup(r0) ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000040)={@my=0x0}) ioctl$IOCTL_VMCI_DATAGRAM_SEND(r1, 0x7ab, &(0x7f0000000080)={&(0x7f0000000300)={{@my=0x0}, {@my=0x0}, 0x400, "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"}, 0x418}) ioctl$IOCTL_VMCI_DATAGRAM_RECEIVE(r0, 0x7ac, &(0x7f0000000140)={0x0}) 790.54634ms ago: executing program 0 (id=2839): mknod(&(0x7f0000000540)='./file1\x00', 0x1000, 0x0) r0 = getpgid(0x0) r1 = syz_pidfd_open(r0, 0x0) r2 = open(&(0x7f0000000000)='./file1\x00', 0x8a80, 0x0) mount$9p_fd(0x0, &(0x7f0000000180)='./file1\x00', &(0x7f0000000040), 0x0, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}}) openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x802, 0x0) 460.161994ms ago: executing program 2 (id=2841): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3) write$binfmt_elf64(r1, &(0x7f00000004c0)=ANY=[], 0x78) sendfile(r0, r1, &(0x7f00000001c0), 0x8bb98) fcntl$addseals(r1, 0x409, 0x8) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000)) 192.660728ms ago: executing program 2 (id=2842): r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$pppl2tp(0x18, 0x1, 0x1) r2 = socket$inet_udp(0x2, 0x2, 0x0) connect$pppl2tp(r1, &(0x7f0000000980)=@pppol2tpin6={0x18, 0x1, {0x0, r2, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x32) connect$pppl2tp(r0, &(0x7f0000000980)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}, 0x1, 0x3}}, 0x26) getsockopt$bt_BT_SECURITY(r0, 0x111, 0x5, 0x0, 0x20001f00) 192.417871ms ago: executing program 2 (id=2843): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r1 = socket$kcm(0x29, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000002000)=[{&(0x7f0000000880)='\x00', 0x1}], 0x1}, 0xc080) r2 = socket$unix(0x1, 0x5, 0x0) r3 = dup2(r2, r0) close_range(r3, 0xffffffffffffffff, 0x0) 192.251758ms ago: executing program 1 (id=2844): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(aes)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18) r1 = accept4(r0, 0x0, 0x0, 0x0) ioctl$int_in(r1, 0x5452, &(0x7f00000010c0)=0xffff) recvmsg(r1, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x0) 89.72489ms ago: executing program 1 (id=2845): mkdir(&(0x7f0000000280)='./file0\x00', 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) rmdir(&(0x7f0000000000)='./file0\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) r1 = open_tree(r0, &(0x7f0000000280)='\x00', 0x89901) move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) 89.391684ms ago: executing program 2 (id=2846): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)={0x1c, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_ABORT_SCAN(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x1c, r2, 0xd9b2794f6a139537, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0) 89.231761ms ago: executing program 1 (id=2847): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000000)=0x20, 0x4) setsockopt$sock_attach_bpf(r1, 0x1, 0x34, &(0x7f00000000c0)=r0, 0x4) listen(r1, 0x0) close(r1) 88.870103ms ago: executing program 2 (id=2848): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0) chdir(&(0x7f0000000280)='./file0\x00') r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000005, 0x13, r1, 0x0) 363.608µs ago: executing program 1 (id=2849): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='attr\x00') fchdir(r0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000002c0)={0x1, &(0x7f0000000280)=[{0x6}]}) socket$nl_route(0x10, 0x3, 0x0) r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r1, 0x0, 0x0) 0s ago: executing program 2 (id=2850): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @rand_addr=0x64010102}]}, &(0x7f0000000180)=0x10) r1 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000000c0)={r2, @in6={{0xa, 0x0, 0x0, @empty}}, 0x2, 0x1, 0x0, 0x0, 0x594}, 0x9c) 0s ago: executing program 0 (id=2851): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x200401, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"]) chdir(&(0x7f0000000280)='./file0\x00') r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) umount2(&(0x7f0000000040)='./file0\x00', 0xb) kernel console output (not intermixed with test programs): > 9 [ 126.297569][ T4779] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 126.300712][ T4779] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 126.304559][ T4779] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 126.347802][ T76] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 126.435245][ T76] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 126.519338][ T76] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 126.529729][ T8656] chnl_net:caif_netlink_parms(): no params data found [ 126.609684][ T8656] bridge0: port 1(bridge_slave_0) entered blocking state [ 126.612185][ T8656] bridge0: port 1(bridge_slave_0) entered disabled state [ 126.615328][ T8656] bridge_slave_0: entered allmulticast mode [ 126.618158][ T8656] bridge_slave_0: entered promiscuous mode [ 126.626248][ T8656] bridge0: port 2(bridge_slave_1) entered blocking state [ 126.628607][ T8656] bridge0: port 2(bridge_slave_1) entered disabled state [ 126.631062][ T8656] bridge_slave_1: entered allmulticast mode [ 126.633974][ T8656] bridge_slave_1: entered promiscuous mode [ 126.666882][ T8656] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 126.672788][ T8656] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 126.758966][ T8656] team0: Port device team_slave_0 added [ 126.773596][ T8656] team0: Port device team_slave_1 added [ 126.791881][ T76] bridge_slave_1: left allmulticast mode [ 126.797625][ T76] bridge_slave_1: left promiscuous mode [ 126.799629][ T76] bridge0: port 2(bridge_slave_1) entered disabled state [ 126.807378][ T76] bridge_slave_0: left allmulticast mode [ 126.809377][ T76] bridge_slave_0: left promiscuous mode [ 126.811325][ T76] bridge0: port 1(bridge_slave_0) entered disabled state [ 127.095767][ T4779] Bluetooth: hci1: command 0x0c1a tx timeout [ 127.095816][ T5351] Bluetooth: hci3: command 0x0c1a tx timeout [ 127.174965][ T5351] Bluetooth: hci2: command 0x0c1a tx timeout [ 127.187941][ T76] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 127.192158][ T76] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 127.198962][ T76] bond0 (unregistering): (slave macvlan0): Releasing backup interface [ 127.201746][ T76] veth1_vlan: left allmulticast mode [ 127.206618][ T76] bond0 (unregistering): Released all slaves [ 127.219349][ T8656] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 127.221146][ T8656] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 127.228276][ T8656] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 127.238379][ T8681] bridge_slave_0: left allmulticast mode [ 127.240357][ T8681] bridge_slave_0: left promiscuous mode [ 127.242440][ T8681] bridge0: port 1(bridge_slave_0) entered disabled state [ 127.251837][ T8681] bridge_slave_1: left allmulticast mode [ 127.255487][ T8681] bridge_slave_1: left promiscuous mode [ 127.263040][ T8681] bridge0: port 2(bridge_slave_1) entered disabled state [ 127.296654][ T8681] bond0: (slave bond_slave_0): Releasing backup interface [ 127.304779][ T8681] bond0: (slave bond_slave_1): Releasing backup interface [ 127.325582][ T8681] team0: Port device team_slave_0 removed [ 127.343693][ T8681] team0: Port device team_slave_1 removed [ 127.346016][ T8681] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 127.348491][ T8681] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 127.354391][ T8681] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 127.356491][ T8681] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 127.385873][ T8656] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 127.387658][ T8656] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 127.393981][ T8656] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 127.547467][ T8656] hsr_slave_0: entered promiscuous mode [ 127.549510][ T8656] hsr_slave_1: entered promiscuous mode [ 127.551283][ T8656] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 127.554068][ T8656] Cannot create hsr debugfs directory [ 127.830636][ T76] hsr_slave_0: left promiscuous mode [ 127.841630][ T76] hsr_slave_1: left promiscuous mode [ 127.848661][ T76] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 127.851000][ T76] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 127.855277][ T76] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 127.857984][ T76] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 127.881630][ T76] veth1_macvtap: left promiscuous mode [ 127.883896][ T76] veth0_macvtap: left promiscuous mode [ 127.885447][ T76] veth1_vlan: left promiscuous mode [ 127.886811][ T76] veth0_vlan: left promiscuous mode [ 128.375573][ T5351] Bluetooth: hci0: command tx timeout [ 128.758679][ T76] team0 (unregistering): Port device team_slave_1 removed [ 128.851328][ T76] team0 (unregistering): Port device team_slave_0 removed [ 129.174201][ T5351] Bluetooth: hci3: command 0x0c1a tx timeout [ 129.183124][ T5351] Bluetooth: hci1: command 0x0c1a tx timeout [ 129.253029][ T5351] Bluetooth: hci2: command 0x0c1a tx timeout [ 129.556739][ T8772] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1334'. [ 129.898381][ T39] audit: type=1800 audit(1728156705.732:104): pid=8788 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1340" name="bus" dev="9p" ino=35922926 res=0 errno=0 [ 129.908125][ T8788] netfs: Couldn't get user pages (rc=-14) [ 129.964275][ T8790] netdevsim netdevsim2 netdevsim0: entered promiscuous mode [ 129.969838][ T8789] netdevsim netdevsim2 netdevsim0: left promiscuous mode [ 130.059292][ T8656] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 130.083940][ T8656] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 130.089963][ T8656] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 130.103571][ T8656] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 130.164150][ T8656] 8021q: adding VLAN 0 to HW filter on device bond0 [ 130.175146][ T8656] 8021q: adding VLAN 0 to HW filter on device team0 [ 130.180230][ T1203] bridge0: port 1(bridge_slave_0) entered blocking state [ 130.182218][ T1203] bridge0: port 1(bridge_slave_0) entered forwarding state [ 130.195353][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 130.197271][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 130.311207][ T8656] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 130.318378][ T8829] input: syz1 as /devices/virtual/input/input17 [ 130.356606][ T8656] veth0_vlan: entered promiscuous mode [ 130.367139][ T8656] veth1_vlan: entered promiscuous mode [ 130.381596][ T8656] veth0_macvtap: entered promiscuous mode [ 130.386649][ T8656] veth1_macvtap: entered promiscuous mode [ 130.395103][ T8656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 130.397932][ T8656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 130.400517][ T8656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 130.403938][ T8656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 130.407378][ T8656] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 130.412286][ T8656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 130.415414][ T8656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 130.417961][ T8656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 130.420618][ T8656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 130.424063][ T8656] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 130.428615][ T8656] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 130.431300][ T8656] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 130.434064][ T8656] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 130.436318][ T8656] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 130.453423][ T5351] Bluetooth: hci0: command tx timeout [ 130.456799][ T8835] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 130.482016][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 130.493192][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 130.503072][ T9] usb 8-1: new high-speed USB device number 21 using dummy_hcd [ 130.522362][ T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 130.526597][ T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 130.623276][ T8847] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1359'. [ 130.653990][ T9] usb 8-1: too many configurations: 9, using maximum allowed: 8 [ 130.657496][ T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 130.660828][ T9] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 130.666378][ T9] usb 8-1: config 0 interface 0 has no altsetting 0 [ 130.669044][ T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 130.671615][ T9] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 130.675359][ T9] usb 8-1: config 0 interface 0 has no altsetting 0 [ 130.678352][ T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 130.680634][ T9] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 130.685184][ T9] usb 8-1: config 0 interface 0 has no altsetting 0 [ 130.687632][ T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 130.690073][ T9] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 130.693459][ T9] usb 8-1: config 0 interface 0 has no altsetting 0 [ 130.696464][ T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 130.698874][ T9] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 130.701768][ T9] usb 8-1: config 0 interface 0 has no altsetting 0 [ 130.709727][ T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 130.718086][ T9] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 130.720988][ T9] usb 8-1: config 0 interface 0 has no altsetting 0 [ 130.733108][ T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 130.735438][ T9] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 130.738150][ T9] usb 8-1: config 0 interface 0 has no altsetting 0 [ 130.740520][ T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 130.742793][ T9] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 130.747233][ T9] usb 8-1: config 0 interface 0 has no altsetting 0 [ 130.753000][ T5386] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 130.756763][ T9] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 130.759353][ T9] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 130.761699][ T9] usb 8-1: Product: syz [ 130.762947][ T9] usb 8-1: Manufacturer: syz [ 130.764396][ T9] usb 8-1: SerialNumber: syz [ 130.767837][ T9] usb 8-1: config 0 descriptor?? [ 130.774633][ T9] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0 [ 130.902977][ T5386] usb 5-1: Using ep0 maxpacket: 8 [ 130.905715][ T5386] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 130.908092][ T5386] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 130.910639][ T5386] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 130.915099][ T5386] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 130.917517][ T5386] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 130.919617][ T5386] usb 5-1: Product: syz [ 130.920765][ T5386] usb 5-1: Manufacturer: syz [ 130.922017][ T5386] usb 5-1: SerialNumber: syz [ 130.984200][ T5410] usb 8-1: USB disconnect, device number 21 [ 130.988203][ T5410] yurex 8-1:0.0: USB YUREX #0 now disconnected [ 131.141514][ T5386] usb 5-1: 0:2 : does not exist [ 131.146583][ T5386] usb 5-1: USB disconnect, device number 19 [ 131.158543][ T5561] udevd[5561]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 131.253042][ T5351] Bluetooth: hci1: command 0x0c1a tx timeout [ 131.253059][ T4779] Bluetooth: hci3: command 0x0c1a tx timeout [ 131.333106][ T4779] Bluetooth: hci2: command 0x0c1a tx timeout [ 131.523403][ T8864] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 131.678763][ T8871] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 131.950897][ T8901] netlink: 'syz.3.1382': attribute type 9 has an invalid length. [ 131.954098][ T8901] netlink: 134660 bytes leftover after parsing attributes in process `syz.3.1382'. [ 132.067188][ T39] audit: type=1326 audit(1728156707.902:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.3.1384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 132.075297][ T39] audit: type=1326 audit(1728156707.902:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.3.1384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 132.081000][ T39] audit: type=1326 audit(1728156707.912:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.3.1384" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 132.087356][ T39] audit: type=1326 audit(1728156707.912:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.3.1384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 132.092902][ T39] audit: type=1326 audit(1728156707.912:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.3.1384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 132.100070][ T39] audit: type=1326 audit(1728156707.932:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.3.1384" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 132.106654][ T39] audit: type=1326 audit(1728156707.932:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.3.1384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 132.113818][ T39] audit: type=1326 audit(1728156707.932:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.3.1384" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 132.121489][ T39] audit: type=1326 audit(1728156707.932:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8905 comm="syz.3.1384" exe="/syz-executor" sig=0 arch=40000003 syscall=365 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 132.136629][ T1375] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.138368][ T1375] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.313099][ T9] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 132.484295][ T9] usb 6-1: too many configurations: 9, using maximum allowed: 8 [ 132.487844][ T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 132.490694][ T9] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 132.493907][ T9] usb 6-1: config 0 interface 0 has no altsetting 0 [ 132.497248][ T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 132.500451][ T9] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 132.504157][ T9] usb 6-1: config 0 interface 0 has no altsetting 0 [ 132.507596][ T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 132.510606][ T9] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 132.514556][ T9] usb 6-1: config 0 interface 0 has no altsetting 0 [ 132.518056][ T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 132.521412][ T9] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 132.525520][ T9] usb 6-1: config 0 interface 0 has no altsetting 0 [ 132.529024][ T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 132.532127][ T9] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 132.536361][ T9] usb 6-1: config 0 interface 0 has no altsetting 0 [ 132.543014][ T4779] Bluetooth: hci0: command tx timeout [ 132.543835][ T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 132.550804][ T9] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 132.554824][ T9] usb 6-1: config 0 interface 0 has no altsetting 0 [ 132.558329][ T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 132.561133][ T9] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 132.564405][ T9] usb 6-1: config 0 interface 0 has no altsetting 0 [ 132.567243][ T9] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 132.569716][ T9] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 132.573062][ T9] usb 6-1: config 0 interface 0 has no altsetting 0 [ 132.579149][ T9] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 132.583225][ T9] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 132.585779][ T9] usb 6-1: Product: syz [ 132.587693][ T9] usb 6-1: Manufacturer: syz [ 132.589516][ T9] usb 6-1: SerialNumber: syz [ 132.592185][ T9] usb 6-1: config 0 descriptor?? [ 132.598653][ T9] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0 [ 132.820261][ T62] usb 6-1: USB disconnect, device number 11 [ 132.823814][ T62] yurex 6-1:0.0: USB YUREX #0 now disconnected [ 133.332969][ T4779] Bluetooth: hci1: command 0x0c1a tx timeout [ 133.413999][ T4779] Bluetooth: hci2: command 0x0c1a tx timeout [ 133.416127][ T5410] usb 8-1: new full-speed USB device number 22 using dummy_hcd [ 133.539739][ T8948] overlayfs: workdir and upperdir must reside under the same mount [ 133.574894][ T5410] usb 8-1: config 0 has no interfaces? [ 133.576896][ T5410] usb 8-1: New USB device found, idVendor=1668, idProduct=0323, bcdDevice=5f.ca [ 133.579635][ T5410] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 133.585478][ T5410] usb 8-1: config 0 descriptor?? [ 133.625643][ T8952] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1404'. [ 133.628563][ T8952] netlink: 'syz.1.1404': attribute type 1 has an invalid length. [ 133.630697][ T8952] netlink: 'syz.1.1404': attribute type 2 has an invalid length. [ 133.633076][ T8952] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1404'. [ 133.800098][ T5410] usb 8-1: USB disconnect, device number 22 [ 134.336507][ T8981] random: crng reseeded on system resumption [ 134.543025][ T9] usb 7-1: new high-speed USB device number 16 using dummy_hcd [ 134.613145][ T4779] Bluetooth: hci0: command tx timeout [ 134.694367][ T9] usb 7-1: too many configurations: 9, using maximum allowed: 8 [ 134.698573][ T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 134.701974][ T9] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 134.706045][ T9] usb 7-1: config 0 interface 0 has no altsetting 0 [ 134.709694][ T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 134.712914][ T9] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 134.715747][ T9] usb 7-1: config 0 interface 0 has no altsetting 0 [ 134.718406][ T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 134.720781][ T9] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 134.723639][ T9] usb 7-1: config 0 interface 0 has no altsetting 0 [ 134.726905][ T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 134.729413][ T9] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 134.732768][ T9] usb 7-1: config 0 interface 0 has no altsetting 0 [ 134.735722][ T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 134.738885][ T9] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 134.742965][ T9] usb 7-1: config 0 interface 0 has no altsetting 0 [ 134.746357][ T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 134.749743][ T9] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 134.753751][ T9] usb 7-1: config 0 interface 0 has no altsetting 0 [ 134.757128][ T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 134.760704][ T9] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 134.764779][ T9] usb 7-1: config 0 interface 0 has no altsetting 0 [ 134.768786][ T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 134.772179][ T9] usb 7-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 134.776352][ T9] usb 7-1: config 0 interface 0 has no altsetting 0 [ 134.780637][ T9] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 134.784149][ T9] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 134.787221][ T9] usb 7-1: Product: syz [ 134.788829][ T9] usb 7-1: Manufacturer: syz [ 134.790576][ T9] usb 7-1: SerialNumber: syz [ 134.795290][ T9] usb 7-1: config 0 descriptor?? [ 134.800377][ T9] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0 [ 134.970483][ T8988] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1419'. [ 135.005961][ T62] usb 7-1: USB disconnect, device number 16 [ 135.014279][ T62] yurex 7-1:0.0: USB YUREX #0 now disconnected [ 135.548134][ T9001] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1427'. [ 135.551467][ T9001] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1427'. [ 135.561258][ T9001] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1427'. [ 135.610841][ T39] kauditd_printk_skb: 34 callbacks suppressed [ 135.610856][ T39] audit: type=1326 audit(1728156711.442:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.1.1428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 135.620546][ T39] audit: type=1326 audit(1728156711.442:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.1.1428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 135.626382][ T39] audit: type=1326 audit(1728156711.452:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.1.1428" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 135.633950][ T39] audit: type=1326 audit(1728156711.452:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.1.1428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 135.640344][ T39] audit: type=1326 audit(1728156711.452:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.1.1428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 135.648267][ T39] audit: type=1326 audit(1728156711.452:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.1.1428" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 135.654112][ T39] audit: type=1326 audit(1728156711.452:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.1.1428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 135.659713][ T39] audit: type=1326 audit(1728156711.452:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.1.1428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 135.666069][ T39] audit: type=1326 audit(1728156711.452:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.1.1428" exe="/syz-executor" sig=0 arch=40000003 syscall=451 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 135.671725][ T39] audit: type=1326 audit(1728156711.452:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9004 comm="syz.1.1428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 136.060149][ T9011] netdevsim netdevsim3 netdevsim0: entered promiscuous mode [ 136.062197][ T9011] macvtap1: entered allmulticast mode [ 136.065744][ T9011] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 136.104688][ T9011] netdevsim netdevsim3 netdevsim0: left allmulticast mode [ 136.106630][ T9011] netdevsim netdevsim3 netdevsim0: left promiscuous mode [ 136.235957][ T9015] @: renamed from vlan0 (while UP) [ 136.541011][ T9040] tipc: Started in network mode [ 136.542371][ T9040] tipc: Node identity ffffffff, cluster identity 4711 [ 136.544403][ T9040] tipc: Node number set to 4294967295 [ 136.626474][ T9051] netlink: 'syz.3.1445': attribute type 1 has an invalid length. [ 137.508545][ T9061] overlayfs: workdir and upperdir must reside under the same mount [ 137.671597][ T9079] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1460'. [ 137.743048][ T69] usb 7-1: new high-speed USB device number 17 using dummy_hcd [ 137.892941][ T69] usb 7-1: Using ep0 maxpacket: 8 [ 137.895519][ T69] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 137.898586][ T69] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 137.901009][ T69] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 137.904636][ T69] usb 7-1: config 0 descriptor?? [ 138.112714][ T69] iowarrior 7-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0 [ 138.505616][ T9090] overlayfs: workdir and upperdir must reside under the same mount [ 138.534984][ T9094] ptrace attach of "/syz-executor exec"[8656] was attempted by ""[9094] [ 138.587082][ T9100] netlink: 'syz.3.1468': attribute type 9 has an invalid length. [ 138.593359][ T9100] netlink: 134660 bytes leftover after parsing attributes in process `syz.3.1468'. [ 138.717092][ T9117] binder: 9116:9117 ioctl c018620c 200005c0 returned -1 [ 138.980987][ T35] usb 7-1: USB disconnect, device number 17 [ 138.984439][ T35] iowarrior 7-1:0.0: I/O-Warror #0 now disconnected [ 140.359832][ T9167] netdevsim netdevsim1 netdevsim0: entered promiscuous mode [ 140.363152][ T9167] macvtap1: entered allmulticast mode [ 140.364692][ T9167] netdevsim netdevsim1 netdevsim0: entered allmulticast mode [ 140.368206][ T9167] netdevsim netdevsim1 netdevsim0: left allmulticast mode [ 140.370346][ T9167] netdevsim netdevsim1 netdevsim0: left promiscuous mode [ 140.419196][ T9174] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1507'. [ 140.421576][ T9174] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1507'. [ 140.436239][ T9174] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1507'. [ 140.561042][ T9185] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 141.612939][ T4779] Bluetooth: hci3: command 0x0c1a tx timeout [ 142.022971][ T35] usb 7-1: new high-speed USB device number 18 using dummy_hcd [ 142.028887][ T9225] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1512'. [ 142.031191][ T9225] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1512'. [ 142.042093][ T9225] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1512'. [ 142.120490][ T9233] Process accounting resumed [ 142.182913][ T35] usb 7-1: Using ep0 maxpacket: 16 [ 142.185535][ T35] usb 7-1: config 0 has no interfaces? [ 142.187003][ T35] usb 7-1: New USB device found, idVendor=1e7d, idProduct=31ce, bcdDevice= 0.00 [ 142.189374][ T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 142.192411][ T35] usb 7-1: config 0 descriptor?? [ 143.202565][ T9256] netlink: 1072 bytes leftover after parsing attributes in process `syz.0.1521'. [ 143.396711][ T9216] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 143.400693][ T9216] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 143.405445][ T5384] usb 7-1: USB disconnect, device number 18 [ 143.405528][ T9274] Process accounting resumed [ 143.626996][ T9292] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 143.629970][ T9292] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 144.014320][ T9316] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 144.017475][ T9316] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 144.020671][ T9316] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 144.022470][ T9316] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 144.024991][ T9316] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 144.026784][ T9316] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 144.029799][ T9316] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 144.447347][ T9334] loop0: detected capacity change from 0 to 128 [ 144.449330][ T9334] loop0: [CUMANA/ADFS] p1 [ADFS] p1 [ 144.450630][ T9334] loop0: partition table partially beyond EOD, truncated [ 144.452556][ T9334] loop0: p1 size 348879409 extends beyond EOD, truncated [ 144.465778][ T5561] udevd[5561]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 144.569350][ T9345] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1566'. [ 144.634800][ T9347] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 144.636469][ T9347] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 144.642982][ T9347] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 144.644603][ T9347] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 144.721103][ T9360] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1561'. [ 144.765767][ T9371] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 144.768129][ T9371] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 145.112980][ T1414] usb 8-1: new high-speed USB device number 23 using dummy_hcd [ 145.275068][ T1414] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 145.278287][ T1414] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 145.281946][ T1414] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 145.285634][ T1414] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 145.289947][ T1414] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 145.295670][ T1414] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 145.298635][ T1414] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 145.301415][ T1414] usb 8-1: Product: syz [ 145.302994][ T1414] usb 8-1: Manufacturer: syz [ 145.310730][ T1414] cdc_wdm 8-1:1.0: skipping garbage [ 145.312985][ T1414] cdc_wdm 8-1:1.0: skipping garbage [ 145.316669][ T1414] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device [ 145.318714][ T1414] cdc_wdm 8-1:1.0: Unknown control protocol [ 145.550942][ T1414] usb 8-1: USB disconnect, device number 23 [ 145.778612][ T9409] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 145.781058][ T9409] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 145.783434][ T9409] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 145.785779][ T9409] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 145.825372][ T39] kauditd_printk_skb: 3 callbacks suppressed [ 145.825384][ T39] audit: type=1800 audit(1728156721.662:161): pid=9415 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1579" name="bus" dev="9p" ino=35922926 res=0 errno=0 [ 145.832649][ T9415] netfs: Couldn't get user pages (rc=-14) [ 145.919013][ T9426] ax25_connect(): syz.0.1585 uses autobind, please contact jreuter@yaina.de [ 146.310430][ T9466] netlink: 'syz.3.1604': attribute type 9 has an invalid length. [ 146.312970][ T9466] netlink: 134660 bytes leftover after parsing attributes in process `syz.3.1604'. [ 146.479744][ T9490] ax25_connect(): syz.3.1614 uses autobind, please contact jreuter@yaina.de [ 146.971304][ T39] audit: type=1326 audit(1728156722.802:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9532 comm="syz.2.1633" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f6f579 code=0x0 [ 147.056520][ T9540] loop9: detected capacity change from 0 to 7 [ 147.060795][ T9540] loop9: [CUMANA/ADFS] p1 [ADFS] p1 [ 147.062208][ T9540] loop9: partition table partially beyond EOD, truncated [ 147.064299][ T9540] loop9: p1 size 1139518251 extends beyond EOD, truncated [ 147.076973][ T5561] udevd[5561]: inotify_add_watch(7, /dev/loop9p1, 10) failed: No such file or directory [ 147.663672][ T9555] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1642'. [ 147.666250][ T9555] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1642'. [ 147.669613][ T9555] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 147.813038][ T4779] Bluetooth: hci0: command 0x0c1a tx timeout [ 147.813064][ T5351] Bluetooth: hci2: command 0x0c1a tx timeout [ 147.815207][ T4779] Bluetooth: hci1: command 0x0c1a tx timeout [ 147.817274][ T5354] Bluetooth: hci3: command 0x0c1a tx timeout [ 147.869220][ T9570] mac80211_hwsim hwsim13 wlan1: entered allmulticast mode [ 147.878837][ T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 147.881855][ T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 149.308372][ T39] audit: type=1326 audit(1728156725.142:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9599 comm="syz.3.1661" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x0 [ 149.332952][ T62] usb 7-1: new high-speed USB device number 19 using dummy_hcd [ 149.498847][ T62] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 149.503070][ T62] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 149.506814][ T62] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 149.510090][ T62] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 149.515326][ T9596] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 149.520048][ T62] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 149.724883][ T35] usb 7-1: USB disconnect, device number 19 [ 149.893637][ T5351] Bluetooth: hci3: command 0x0c1a tx timeout [ 149.893655][ T5354] Bluetooth: hci0: command 0x0c1a tx timeout [ 150.401489][ T9634] syzkaller1: entered promiscuous mode [ 150.405888][ T9634] syzkaller1: entered allmulticast mode [ 150.441691][ T9638] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 150.828194][ T9678] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1701'. [ 150.951133][ T9685] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.970306][ T5351] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 150.975979][ T5351] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 150.980225][ T5351] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 150.986308][ T5351] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 150.988637][ T5351] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 150.991770][ T5351] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 151.035882][ T9685] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.115345][ T9685] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.162676][ T9686] chnl_net:caif_netlink_parms(): no params data found [ 151.224244][ T9685] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.256163][ T9686] bridge0: port 1(bridge_slave_0) entered blocking state [ 151.258105][ T9686] bridge0: port 1(bridge_slave_0) entered disabled state [ 151.260066][ T9686] bridge_slave_0: entered allmulticast mode [ 151.262240][ T9686] bridge_slave_0: entered promiscuous mode [ 151.269097][ T9686] bridge0: port 2(bridge_slave_1) entered blocking state [ 151.271217][ T9686] bridge0: port 2(bridge_slave_1) entered disabled state [ 151.273415][ T9686] bridge_slave_1: entered allmulticast mode [ 151.277543][ T9686] bridge_slave_1: entered promiscuous mode [ 151.311694][ T9686] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 151.317065][ T9686] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 151.351393][ T9685] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 151.358975][ T9686] team0: Port device team_slave_0 added [ 151.364263][ T9685] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 151.367194][ T9686] team0: Port device team_slave_1 added [ 151.370999][ T9685] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 151.396980][ T9685] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 151.399494][ T9686] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 151.401382][ T9686] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 151.408820][ T9686] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 151.412528][ T9686] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 151.414640][ T9686] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 151.421215][ T9686] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 151.458325][ T9686] hsr_slave_0: entered promiscuous mode [ 151.460326][ T9686] hsr_slave_1: entered promiscuous mode [ 151.462235][ T9686] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 151.464660][ T9686] Cannot create hsr debugfs directory [ 151.546206][ T9686] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.604452][ T9714] siw: device registration error -23 [ 151.616773][ T9686] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.937138][ T9686] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.973124][ T5354] Bluetooth: hci0: command 0x0c1a tx timeout [ 152.015911][ T9686] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 152.507194][ T45] bond0 (unregistering): Released all slaves [ 152.540818][ T9719] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 152.583227][ T45] : left promiscuous mode [ 152.591917][ T9686] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 152.597389][ T9686] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 152.600965][ T9686] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 152.606196][ T9686] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 152.637995][ T9719] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 152.653468][ T9686] 8021q: adding VLAN 0 to HW filter on device bond0 [ 152.660638][ T9686] 8021q: adding VLAN 0 to HW filter on device team0 [ 152.664619][ T1104] bridge0: port 1(bridge_slave_0) entered blocking state [ 152.666557][ T1104] bridge0: port 1(bridge_slave_0) entered forwarding state [ 152.672182][ T76] bridge0: port 2(bridge_slave_1) entered blocking state [ 152.674136][ T76] bridge0: port 2(bridge_slave_1) entered forwarding state [ 152.781190][ T9686] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 152.801705][ T9686] veth0_vlan: entered promiscuous mode [ 152.802957][ T4802] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 152.812629][ T9686] veth1_vlan: entered promiscuous mode [ 152.825128][ T9719] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 152.842259][ T9686] veth0_macvtap: entered promiscuous mode [ 152.847085][ T9686] veth1_macvtap: entered promiscuous mode [ 152.856128][ T9686] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 152.859702][ T9686] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 152.865330][ T9686] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 152.868236][ T9686] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 152.870432][ T9686] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 152.872775][ T9686] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 152.875851][ T9686] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 152.881576][ T9686] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 152.890172][ T9686] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 152.892755][ T9686] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 152.896242][ T9686] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 152.898807][ T9686] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 152.901522][ T9686] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 152.904899][ T9686] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 152.923016][ T9686] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 152.925353][ T9686] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 152.927628][ T9686] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 152.929911][ T9686] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 152.955637][ T1104] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 152.960790][ T1104] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 152.962936][ T4802] usb 6-1: Using ep0 maxpacket: 8 [ 152.973636][ T4802] usb 6-1: config index 0 descriptor too short (expected 301, got 45) [ 152.975804][ T4802] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 152.978321][ T4802] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 152.980850][ T4802] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 152.984639][ T9719] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 152.991501][ T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 152.992874][ T4802] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 152.994448][ T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 152.996964][ T4802] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 153.001260][ T4802] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 153.013398][ T5354] Bluetooth: hci3: command tx timeout [ 153.123879][ T9719] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.134035][ T9719] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.139357][ T9719] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.146082][ T9719] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.200009][ T45] hsr_slave_0: left promiscuous mode [ 153.205002][ T45] hsr_slave_1: left promiscuous mode [ 153.214938][ T4802] usb 6-1: usb_control_msg returned -32 [ 153.216428][ T4802] usbtmc 6-1:16.0: can't read capabilities [ 153.234055][ T45] veth1_macvtap: left promiscuous mode [ 153.235562][ T45] veth0_macvtap: left promiscuous mode [ 153.237031][ T45] veth1_vlan: left promiscuous mode [ 153.238426][ T45] veth0_vlan: left promiscuous mode [ 153.413164][ T25] usb 5-1: new high-speed USB device number 21 using dummy_hcd [ 153.564264][ T25] usb 5-1: Using ep0 maxpacket: 8 [ 153.576815][ T25] usb 5-1: config index 0 descriptor too short (expected 301, got 45) [ 153.578841][ T25] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 153.581205][ T25] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 153.584683][ T25] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 153.587228][ T25] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 153.596811][ T25] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 153.599128][ T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 153.835278][ T25] usb 5-1: usb_control_msg returned -32 [ 153.836612][ T25] usbtmc 5-1:16.0: can't read capabilities [ 154.541241][ T9755] usbtmc 6-1:16.0: usb_control_msg returned -32 [ 154.546660][ T5386] usb 6-1: USB disconnect, device number 12 [ 154.870714][ T9759] e1000e 0000:00:02.0 eth1: NIC Link is Down [ 155.092976][ T5354] Bluetooth: hci3: command tx timeout [ 155.793805][ T9839] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1747'. [ 156.037729][ T9851] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1752'. [ 156.040124][ T9851] netlink: 'syz.1.1752': attribute type 7 has an invalid length. [ 156.042146][ T9851] netlink: 'syz.1.1752': attribute type 8 has an invalid length. [ 156.045081][ T9851] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1752'. [ 156.148096][ T9859] input: syz1 as /devices/virtual/input/input18 [ 156.151177][ T5410] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 156.154204][ T5410] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0 [ 156.180077][ T5410] hid-generic 0000:0000:0000.000D: hidraw1: HID v0.00 Device [syz0] on syz1 [ 156.188225][ T5386] usb 5-1: USB disconnect, device number 21 [ 156.291906][ T9866] input: syz1 as /devices/virtual/input/input19 [ 156.465014][ T9884] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1768'. [ 156.467483][ T9884] netlink: 'syz.0.1768': attribute type 7 has an invalid length. [ 156.469556][ T9884] netlink: 'syz.0.1768': attribute type 8 has an invalid length. [ 156.471666][ T9884] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1768'. [ 156.479638][ T9884] erspan0: entered promiscuous mode [ 156.485373][ T9884] batadv_slave_1: entered promiscuous mode [ 156.488160][ T9884] gretap0: entered promiscuous mode [ 156.603720][ T9886] syz.2.1769 (9886): drop_caches: 2 [ 156.798190][ T9913] netlink: 'syz.2.1782': attribute type 9 has an invalid length. [ 156.800278][ T9913] netlink: 134660 bytes leftover after parsing attributes in process `syz.2.1782'. [ 156.972437][ T9931] loop0: detected capacity change from 0 to 7 [ 156.975467][ T9931] Dev loop0: unable to read RDB block 7 [ 156.976971][ T9931] loop0: unable to read partition table [ 156.979055][ T9931] loop0: partition table beyond EOD, truncated [ 156.980667][ T9931] loop_reread_partitions: partition scan of loop0 (被xڬdƤݡ [ 156.980667][ T9931] ) failed (rc=-5) [ 157.016798][ T9937] input: syz1 as /devices/virtual/input/input20 [ 157.173045][ T5354] Bluetooth: hci3: command tx timeout [ 157.332945][ T5384] usb 6-1: new high-speed USB device number 13 using dummy_hcd [ 157.483021][ T5384] usb 6-1: Using ep0 maxpacket: 16 [ 157.491827][ T5384] usb 6-1: New USB device found, idVendor=04d8, idProduct=0a30, bcdDevice=ce.47 [ 157.495593][ T5384] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 157.498277][ T5384] usb 6-1: Product: syz [ 157.499658][ T5384] usb 6-1: Manufacturer: syz [ 157.501260][ T5384] usb 6-1: SerialNumber: syz [ 157.507541][ T5384] usb 6-1: config 0 descriptor?? [ 157.510945][ T5384] mcba_usb 6-1:0.0: Can't find endpoints [ 157.715008][ T5386] usb 6-1: USB disconnect, device number 13 [ 158.296898][ T9970] batadv_slave_1: entered promiscuous mode [ 158.299309][ T9969] batadv_slave_1: left promiscuous mode [ 158.339497][ T9975] netlink: 'syz.2.1810': attribute type 2 has an invalid length. [ 158.341811][ T9975] netlink: 100 bytes leftover after parsing attributes in process `syz.2.1810'. [ 159.273001][ T5354] Bluetooth: hci3: command tx timeout [ 162.108307][T10082] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1853'. [ 162.798543][T10131] loop0: detected capacity change from 0 to 7 [ 162.800791][T10131] Dev loop0: unable to read RDB block 7 [ 162.802256][T10131] loop0: AHDI p2 [ 162.806370][T10131] loop0: partition table partially beyond EOD, truncated [ 163.183386][ T1414] usb 8-1: new high-speed USB device number 25 using dummy_hcd [ 163.332967][ T1414] usb 8-1: Using ep0 maxpacket: 8 [ 163.335684][ T1414] usb 8-1: config index 0 descriptor too short (expected 301, got 45) [ 163.338038][ T1414] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 163.341260][ T1414] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 163.344702][ T1414] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 163.348158][ T1414] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 163.352503][ T1414] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 163.355429][ T1414] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 163.565158][ T1414] usb 8-1: usb_control_msg returned -32 [ 163.566709][ T1414] usbtmc 8-1:16.0: can't read capabilities [ 164.222936][ T1414] usb 6-1: new high-speed USB device number 14 using dummy_hcd [ 164.281403][T10181] usbtmc 8-1:16.0: usb_clear_halt returned -32 [ 164.374450][ T1414] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 253, changing to 11 [ 164.377056][ T1414] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 164.379267][ T1414] usb 6-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00 [ 164.381388][ T1414] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 164.384482][ T1414] usb 6-1: config 0 descriptor?? [ 164.483552][ T5386] usb 8-1: USB disconnect, device number 25 [ 164.557271][T10187] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 164.795469][ T1414] hid-steam 0003:28DE:1102.000E: : USB HID v0.00 Device [HID 28de:1102] on usb-dummy_hcd.1-1/input0 [ 164.854379][ T1414] hid-steam 0003:28DE:1102.000E: Steam Controller 'XXXXXXXXXX' connected [ 164.858633][ T1414] input: Steam Controller as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:28DE:1102.000E/input/input21 [ 164.882339][ T1414] hid-steam 0003:28DE:1102.000F: hidraw1: USB HID v0.00 Device [HID 28de:1102] on usb-dummy_hcd.1-1/input0 [ 164.904614][ T39] audit: type=1326 audit(1728156740.742:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10195 comm="syz.0.1898" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x0 [ 164.994863][ T1414] usb 6-1: USB disconnect, device number 14 [ 165.021878][ T1414] hid-steam 0003:28DE:1102.000E: Steam Controller 'XXXXXXXXXX' disconnected [ 165.533916][ T5354] Bluetooth: hci1: Malformed Event: 0x02 [ 165.583252][ T39] audit: type=1326 audit(1728156741.422:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.3.1905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 165.594455][ T39] audit: type=1326 audit(1728156741.422:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.3.1905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 165.602333][ T39] audit: type=1326 audit(1728156741.422:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.3.1905" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 165.611656][ T39] audit: type=1326 audit(1728156741.422:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.3.1905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 165.620768][ T39] audit: type=1326 audit(1728156741.422:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.3.1905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 165.629180][ T39] audit: type=1326 audit(1728156741.422:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.3.1905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 165.635691][ T39] audit: type=1326 audit(1728156741.422:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.3.1905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 165.642051][ T39] audit: type=1326 audit(1728156741.422:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.3.1905" exe="/syz-executor" sig=0 arch=40000003 syscall=176 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 165.649564][ T39] audit: type=1326 audit(1728156741.422:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10215 comm="syz.3.1905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x7ffc0000 [ 165.784718][T10219] vivid-007: disconnect [ 165.786918][T10218] vivid-007: reconnect [ 165.856393][T10226] tls_set_device_offload_rx: netdev not found [ 165.961730][T10237] bridge0: entered allmulticast mode [ 165.961736][T10239] capability: warning: `syz.0.1916' uses 32-bit capabilities (legacy support in use) [ 165.968599][T10237] pimreg: entered allmulticast mode [ 165.974610][T10237] pimreg: left allmulticast mode [ 165.976668][T10237] bridge0: left allmulticast mode [ 166.112981][T10250] ICMPv6: Received fragmented ndisc packet. Carefully consider disabling suppress_frag_ndisc. [ 166.583507][T10286] netem: change failed [ 166.623041][ T6073] usb 6-1: new high-speed USB device number 15 using dummy_hcd [ 166.782965][ T6073] usb 6-1: Using ep0 maxpacket: 8 [ 166.788628][ T6073] usb 6-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 166.790814][ T6073] usb 6-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 166.793568][ T6073] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 166.797500][ T6073] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 166.799728][ T6073] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 166.801690][ T6073] usb 6-1: Product: syz [ 166.802739][ T6073] usb 6-1: Manufacturer: syz [ 166.805782][ T6073] usb 6-1: SerialNumber: syz [ 167.016607][ T6073] usb 6-1: 0:2 : does not exist [ 167.029199][ T6073] usb 6-1: USB disconnect, device number 15 [ 167.041709][T10068] udevd[10068]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 168.231795][T10392] loop9: detected capacity change from 0 to 7 [ 168.241519][T10392] loop9: [CUMANA/ADFS] p1 [ADFS] p1 [ 168.243999][T10392] loop9: partition table partially beyond EOD, truncated [ 168.247052][T10392] loop9: p1 size 1139518251 extends beyond EOD, truncated [ 168.269935][T10068] udevd[10068]: inotify_add_watch(7, /dev/loop9p1, 10) failed: No such file or directory [ 168.294923][T10399] netem: change failed [ 168.812024][T10438] mac80211_hwsim hwsim21 wlan1: entered allmulticast mode [ 168.830667][ T1104] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 168.843093][ T1104] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 169.573515][ T5354] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 169.882979][ T62] usb 6-1: new high-speed USB device number 16 using dummy_hcd [ 169.922386][T10467] syzkaller1: entered promiscuous mode [ 169.923930][T10467] syzkaller1: entered allmulticast mode [ 170.034269][ T62] usb 6-1: config index 0 descriptor too short (expected 45, got 36) [ 170.036466][ T62] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 170.044439][ T62] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 170.049077][ T62] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 170.054194][ T62] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 170.057672][ T62] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 170.061194][ T62] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 170.071582][ T62] usb 6-1: config 0 descriptor?? [ 170.194074][ T5384] kernel read not supported for file /admmidi2 (pid: 5384 comm: kworker/3:4) [ 170.487269][ T62] plantronics 0003:047F:FFFF.0010: unknown main item tag 0xd [ 170.494026][ T62] plantronics 0003:047F:FFFF.0010: No inputs registered, leaving [ 170.504958][ T62] plantronics 0003:047F:FFFF.0010: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 170.744759][ T1414] usb 6-1: USB disconnect, device number 16 [ 171.173026][ T1414] usb 7-1: new high-speed USB device number 20 using dummy_hcd [ 171.332976][ T1414] usb 7-1: Using ep0 maxpacket: 8 [ 171.341008][ T1414] usb 7-1: config index 0 descriptor too short (expected 301, got 45) [ 171.343539][ T1414] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 171.346527][ T1414] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 171.349149][ T1414] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 171.351769][ T1414] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 171.357857][ T1414] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 171.360280][ T1414] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 171.574548][ T1414] usb 7-1: usb_control_msg returned -32 [ 171.576054][ T1414] usbtmc 7-1:16.0: can't read capabilities [ 171.602992][ T25] usb 6-1: new high-speed USB device number 17 using dummy_hcd [ 171.784914][ T25] usb 6-1: config index 0 descriptor too short (expected 23569, got 27) [ 171.787078][ T25] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 171.790486][ T25] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 171.793086][ T25] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 171.795936][ T25] usb 6-1: Manufacturer: syz [ 171.801612][ T25] usb 6-1: config 0 descriptor?? [ 171.843083][ T25] rc_core: IR keymap rc-hauppauge not found [ 171.844757][ T25] Registered IR keymap rc-empty [ 171.848430][ T25] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0 [ 171.858448][ T25] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input23 [ 172.013109][ T25] usb 6-1: USB disconnect, device number 17 [ 173.068083][ T1414] kernel read not supported for file /admmidi2 (pid: 1414 comm: kworker/0:2) [ 173.950743][ T25] usb 7-1: USB disconnect, device number 20 [ 174.443193][ T56] usb 5-1: new high-speed USB device number 22 using dummy_hcd [ 174.593580][ T56] usb 5-1: Using ep0 maxpacket: 8 [ 174.597137][ T56] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 174.601167][ T56] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 174.605100][ T56] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 174.610143][ T56] usb 5-1: config 0 descriptor?? [ 174.831310][ T39] kauditd_printk_skb: 18 callbacks suppressed [ 174.831328][ T39] audit: type=1326 audit(1728156750.662:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10585 comm="syz.1.2071" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 174.834350][ T56] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0 [ 174.843040][ T39] audit: type=1326 audit(1728156750.662:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10585 comm="syz.1.2071" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 174.850113][ T39] audit: type=1326 audit(1728156750.672:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10585 comm="syz.1.2071" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 174.858186][ T39] audit: type=1326 audit(1728156750.672:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10585 comm="syz.1.2071" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 174.866752][ T39] audit: type=1326 audit(1728156750.672:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10585 comm="syz.1.2071" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 174.872350][ T39] audit: type=1326 audit(1728156750.672:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10585 comm="syz.1.2071" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 174.878149][ T39] audit: type=1326 audit(1728156750.672:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10585 comm="syz.1.2071" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 174.887990][ T39] audit: type=1326 audit(1728156750.672:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10585 comm="syz.1.2071" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 174.895712][ T39] audit: type=1326 audit(1728156750.712:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10585 comm="syz.1.2071" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 174.903705][ T39] audit: type=1326 audit(1728156750.712:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10585 comm="syz.1.2071" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000 [ 175.706242][ T25] usb 5-1: USB disconnect, device number 22 [ 175.710633][ T25] iowarrior 5-1:0.0: I/O-Warror #0 now disconnected [ 176.324272][ T56] libceph: connect (1)[c::]:6789 error -101 [ 176.325956][ T56] libceph: mon0 (1)[c::]:6789 connect error [ 176.424136][T10650] sp0: Synchronizing with TNC [ 176.522970][ T25] usb 8-1: new high-speed USB device number 26 using dummy_hcd [ 176.583800][ T56] libceph: connect (1)[c::]:6789 error -101 [ 176.585972][ T56] libceph: mon0 (1)[c::]:6789 connect error [ 176.596192][T10664] binder: 10663:10664 ioctl c0306201 20000140 returned -14 [ 176.675094][ T25] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 176.678009][ T25] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 176.680951][ T25] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 176.684591][ T25] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 176.688763][ T25] usb 8-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 176.691223][ T25] usb 8-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 176.693649][ T25] usb 8-1: Manufacturer: syz [ 176.696633][ T25] usb 8-1: config 0 descriptor?? [ 177.093487][ T56] libceph: connect (1)[c::]:6789 error -101 [ 177.095143][ T56] libceph: mon0 (1)[c::]:6789 connect error [ 177.104183][ T25] appleir 0003:05AC:8243.0011: unknown main item tag 0x0 [ 177.106326][ T25] appleir 0003:05AC:8243.0011: No inputs registered, leaving [ 177.110860][ T25] appleir 0003:05AC:8243.0011: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0 [ 177.129941][T10626] ceph: No mds server is up or the cluster is laggy [ 177.553788][T10678] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2102'. [ 177.569121][T10680] syz.1.2103[10680] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 177.569239][T10680] syz.1.2103[10680] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 177.573706][T10680] syz.1.2103[10680] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 179.213491][ T62] usb 8-1: USB disconnect, device number 26 [ 179.232983][ T5407] usb 7-1: new high-speed USB device number 21 using dummy_hcd [ 179.394911][ T5407] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 179.398229][ T5407] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 179.400964][ T5407] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 179.403568][ T5407] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 179.407782][ T5407] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 179.410148][ T5407] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 179.413230][ T5407] usb 7-1: config 0 descriptor?? [ 179.825519][ T5407] plantronics 0003:047F:FFFF.0012: ignoring exceeding usage max [ 179.828486][ T5407] plantronics 0003:047F:FFFF.0012: No inputs registered, leaving [ 179.831632][ T5407] plantronics 0003:047F:FFFF.0012: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 181.954533][ T56] usb 7-1: USB disconnect, device number 21 [ 181.960157][T10776] netlink: 'syz.0.2144': attribute type 7 has an invalid length. [ 181.962443][T10776] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.2144'. [ 181.974272][T10776] netlink: 'syz.0.2144': attribute type 3 has an invalid length. [ 181.976290][T10776] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.2144'. [ 182.007999][T10780] syz.1.2146 (10780): drop_caches: 2 [ 182.009793][T10780] syz.1.2146 (10780): drop_caches: 2 [ 182.116097][T10798] syzkaller1: entered promiscuous mode [ 182.118150][T10798] syzkaller1: entered allmulticast mode [ 182.275621][ T1203] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 182.376983][ T1203] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 182.413322][T10814] bridge0: port 2(bridge_slave_1) entered disabled state [ 182.429936][ T5351] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 182.436275][ T5351] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 182.439279][ T5351] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 182.441899][ T5351] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 182.444438][ T5351] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 182.447186][ T5351] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 182.481209][ T1203] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 182.546129][ T1203] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 182.601479][T10835] syz.3.2168[10835] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 182.601570][T10835] syz.3.2168[10835] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 182.613206][T10835] syz.3.2168[10835] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 182.618098][T10815] chnl_net:caif_netlink_parms(): no params data found [ 182.716793][T10815] bridge0: port 1(bridge_slave_0) entered blocking state [ 182.720651][T10815] bridge0: port 1(bridge_slave_0) entered disabled state [ 182.722642][T10815] bridge_slave_0: entered allmulticast mode [ 182.728185][T10815] bridge_slave_0: entered promiscuous mode [ 182.749576][T10815] bridge0: port 2(bridge_slave_1) entered blocking state [ 182.751541][T10815] bridge0: port 2(bridge_slave_1) entered disabled state [ 182.755953][T10815] bridge_slave_1: entered allmulticast mode [ 182.758076][T10815] bridge_slave_1: entered promiscuous mode [ 182.771582][ T1203] bridge_slave_1: left allmulticast mode [ 182.776263][ T1203] bridge_slave_1: left promiscuous mode [ 182.777968][ T1203] bridge0: port 2(bridge_slave_1) entered disabled state [ 182.781230][ T1203] bridge_slave_0: left allmulticast mode [ 182.785760][ T1203] bridge_slave_0: left promiscuous mode [ 182.787375][ T1203] bridge0: port 1(bridge_slave_0) entered disabled state [ 183.133361][ T1203] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 183.137948][ T1203] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 183.142954][ T1203] bond0 (unregistering): Released all slaves [ 183.255951][T10815] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 183.261488][T10815] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 183.269076][ T1203] tipc: Left network mode [ 183.361405][T10815] team0: Port device team_slave_0 added [ 183.364484][T10815] team0: Port device team_slave_1 added [ 183.372364][T10870] syz.0.2179[10870] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 183.372487][T10870] syz.0.2179[10870] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 183.381658][T10870] syz.0.2179[10870] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 183.473784][T10815] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 183.483140][T10815] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 183.504260][T10815] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 183.508898][T10815] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 183.511300][T10815] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 183.529344][T10815] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 184.096827][ T1203] hsr_slave_0: left promiscuous mode [ 184.098709][ T1203] hsr_slave_1: left promiscuous mode [ 184.100567][ T1203] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 184.102519][ T1203] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 184.144450][ T1203] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 184.146418][ T1203] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 184.207660][ T1203] veth1_macvtap: left promiscuous mode [ 184.209095][ T1203] veth0_macvtap: left promiscuous mode [ 184.210478][ T1203] veth1_vlan: left promiscuous mode [ 184.211805][ T1203] veth0_vlan: left promiscuous mode [ 184.552909][ T5351] Bluetooth: hci2: command tx timeout [ 186.612937][ T5351] Bluetooth: hci2: command tx timeout [ 187.966270][ T1203] team0 (unregistering): Port device team_slave_1 removed [ 188.061211][ T1203] team0 (unregistering): Port device team_slave_0 removed [ 188.692983][ T5354] Bluetooth: hci2: command tx timeout [ 188.713005][T10815] hsr_slave_0: entered promiscuous mode [ 188.714955][T10815] hsr_slave_1: entered promiscuous mode [ 189.333143][ T5351] Bluetooth: hci1: Entering manufacturer mode failed (-110) [ 189.333439][ T5354] Bluetooth: hci1: command 0xfc11 tx timeout [ 189.398331][T10815] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 189.401828][T10815] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 189.407512][T10815] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 189.410957][T10815] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 189.442149][T10815] 8021q: adding VLAN 0 to HW filter on device bond0 [ 189.451999][T10815] 8021q: adding VLAN 0 to HW filter on device team0 [ 189.456796][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 189.458712][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 189.464364][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 189.466249][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 189.507339][ T1203] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 189.609438][T10815] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 189.618223][ T1203] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 189.653637][T10815] veth0_vlan: entered promiscuous mode [ 189.659243][T10815] veth1_vlan: entered promiscuous mode [ 189.671332][T10815] veth0_macvtap: entered promiscuous mode [ 189.674656][T10815] veth1_macvtap: entered promiscuous mode [ 189.681573][T10815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 189.684480][T10815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 189.688017][T10815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 189.690871][T10815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 189.693809][T10815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 189.696463][T10815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 189.699829][T10815] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 189.709947][ T1203] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 189.714511][T10815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 189.717704][T10815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 189.720755][T10815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 189.725588][T10815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 189.728141][T10815] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 189.730847][T10815] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 189.734359][T10815] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 189.738841][T10815] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 189.741570][T10815] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 189.744022][T10815] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 189.746324][T10815] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 189.775870][ T1203] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 189.782563][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 189.784814][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 189.795375][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 189.797474][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 189.911404][ T1203] bridge_slave_1: left allmulticast mode [ 189.913155][ T1203] bridge_slave_1: left promiscuous mode [ 189.915523][ T1203] bridge0: port 2(bridge_slave_1) entered disabled state [ 189.919006][ T1203] bridge_slave_0: left allmulticast mode [ 189.920558][ T1203] bridge_slave_0: left promiscuous mode [ 189.922138][ T1203] bridge0: port 1(bridge_slave_0) entered disabled state [ 189.980045][T10962] syz.2.2188[10962] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 189.980217][T10962] syz.2.2188[10962] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 189.983708][T10962] syz.2.2188[10962] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 190.088297][ T5354] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 190.095414][ T5354] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 190.107975][ T5354] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 190.121301][ T5354] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 190.131286][ T5354] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 190.133561][ T5354] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 190.139328][T10979] vivid-007: disconnect [ 190.141004][T10978] vivid-007: reconnect [ 190.187830][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 190.190346][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 190.193705][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 190.195928][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 190.198940][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 190.202020][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 190.335008][ T1203] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 190.339926][ T1203] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 190.344411][ T1203] bond0 (unregistering): Released all slaves [ 190.759736][T10972] chnl_net:caif_netlink_parms(): no params data found [ 190.773223][ T5354] Bluetooth: hci2: command tx timeout [ 190.861473][ T1203] hsr_slave_0: left promiscuous mode [ 190.866722][ T1203] hsr_slave_1: left promiscuous mode [ 190.869417][ T1203] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 190.871561][ T1203] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 190.879033][ T1203] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 190.881033][ T1203] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 190.898554][ T1203] veth1_macvtap: left promiscuous mode [ 190.900060][ T1203] veth0_macvtap: left promiscuous mode [ 190.901533][ T1203] veth1_vlan: left promiscuous mode [ 190.903773][ T1203] veth0_vlan: left promiscuous mode [ 190.929696][ T1203] infiniband syz1: set down [ 191.478894][T11031] netlink: 'syz.0.2215': attribute type 3 has an invalid length. [ 191.903641][ T1203] team0 (unregistering): Port device team_slave_1 removed [ 191.992745][ T1203] team0 (unregistering): Port device team_slave_0 removed [ 191.995772][ T12] smc: removing ib device syz1 [ 192.083011][ T4802] usb 6-1: new high-speed USB device number 18 using dummy_hcd [ 192.252933][ T4802] usb 6-1: Using ep0 maxpacket: 8 [ 192.256442][ T4802] usb 6-1: config 0 has no interfaces? [ 192.257963][ T4802] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 192.260520][ T4802] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 192.264185][ T4802] usb 6-1: config 0 descriptor?? [ 192.304072][ T5354] Bluetooth: hci1: command tx timeout [ 192.713168][T11031] netlink: 'syz.0.2215': attribute type 3 has an invalid length. [ 192.716340][T11034] netlink: 'syz.2.2216': attribute type 4 has an invalid length. [ 192.732117][T11035] netlink: 'syz.2.2216': attribute type 4 has an invalid length. [ 192.762318][T10972] bridge0: port 1(bridge_slave_0) entered blocking state [ 192.764259][T10972] bridge0: port 1(bridge_slave_0) entered disabled state [ 192.766185][T10972] bridge_slave_0: entered allmulticast mode [ 192.768314][T10972] bridge_slave_0: entered promiscuous mode [ 192.772532][T10972] bridge0: port 2(bridge_slave_1) entered blocking state [ 192.775329][T10972] bridge0: port 2(bridge_slave_1) entered disabled state [ 192.777127][T10972] bridge_slave_1: entered allmulticast mode [ 192.779555][T10972] bridge_slave_1: entered promiscuous mode [ 192.838429][T10972] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 192.842588][T10972] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 192.881911][T11053] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2223'. [ 192.915495][T10972] team0: Port device team_slave_0 added [ 192.940998][T10972] team0: Port device team_slave_1 added [ 193.081739][T10972] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 193.083699][T10972] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 193.090680][T10972] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 193.094741][T10972] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 193.097494][T10972] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 193.104974][T10972] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 193.141071][T10972] hsr_slave_0: entered promiscuous mode [ 193.144511][T10972] hsr_slave_1: entered promiscuous mode [ 193.146546][T10972] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 193.148769][T10972] Cannot create hsr debugfs directory [ 193.388463][ T39] kauditd_printk_skb: 6 callbacks suppressed [ 193.388478][ T39] audit: type=1800 audit(1728156769.222:208): pid=11102 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2238" name="bus" dev="9p" ino=35922926 res=0 errno=0 [ 193.396116][T11102] netfs: Couldn't get user pages (rc=-14) [ 193.583648][ T1375] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.585372][ T1375] ieee802154 phy1 wpan1: encryption failed: -22 [ 193.794799][T10972] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 193.813440][T10972] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 193.838672][T10972] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 193.842272][T10972] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 193.888374][T10972] 8021q: adding VLAN 0 to HW filter on device bond0 [ 193.897082][T10972] 8021q: adding VLAN 0 to HW filter on device team0 [ 193.901143][ T1203] bridge0: port 1(bridge_slave_0) entered blocking state [ 193.903025][ T1203] bridge0: port 1(bridge_slave_0) entered forwarding state [ 193.916438][ T1104] bridge0: port 2(bridge_slave_1) entered blocking state [ 193.918380][ T1104] bridge0: port 2(bridge_slave_1) entered forwarding state [ 193.931821][T10972] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 194.022405][T10972] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 194.041687][T10972] veth0_vlan: entered promiscuous mode [ 194.046816][T10972] veth1_vlan: entered promiscuous mode [ 194.064723][T10972] veth0_macvtap: entered promiscuous mode [ 194.068103][T10972] veth1_macvtap: entered promiscuous mode [ 194.078289][T10972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.081088][T10972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.085983][T10972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.088803][T10972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.091080][T10972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 194.095518][T10972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.099474][T10972] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 194.110680][T10972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.119138][T10972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.121769][T10972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.127707][T10972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.130255][T10972] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 194.135109][T10972] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 194.139843][T10972] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 194.146150][T10972] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.149352][T10972] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.156134][T10972] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.159377][T10972] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.205289][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 194.207457][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 194.231240][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 194.234497][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 194.373063][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 194.373080][ T5354] Bluetooth: hci1: command tx timeout [ 194.433594][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 194.859015][ T5384] usb 6-1: USB disconnect, device number 18 [ 195.339026][ C0] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 195.348801][T11236] kernel read not supported for file /blkio.throttle.io_service_bytes_recursive (pid: 11236 comm: syz.0.2269) [ 195.355530][ T39] audit: type=1800 audit(1728156771.192:209): pid=11236 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2269" name="blkio.throttle.io_service_bytes_recursive" dev="mqueue" ino=39314 res=0 errno=0 [ 195.419161][T11243] hsr0: entered promiscuous mode [ 195.446126][T11245] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2273'. [ 195.662988][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 196.176161][ T39] audit: type=1326 audit(1728156772.012:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2286" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 196.182949][ T39] audit: type=1326 audit(1728156772.012:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2286" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 196.188432][ T39] audit: type=1326 audit(1728156772.012:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2286" exe="/syz-executor" sig=0 arch=40000003 syscall=132 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 196.200649][ T39] audit: type=1326 audit(1728156772.012:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2286" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 196.207490][ T39] audit: type=1326 audit(1728156772.012:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2286" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 196.214369][ T39] audit: type=1326 audit(1728156772.012:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2286" exe="/syz-executor" sig=0 arch=40000003 syscall=434 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 196.220337][ T39] audit: type=1326 audit(1728156772.012:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2286" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 196.226326][ T39] audit: type=1326 audit(1728156772.012:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11274 comm="syz.3.2286" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x7ffc0000 [ 196.454820][ T5354] Bluetooth: hci1: command tx timeout [ 197.296955][T11325] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2306'. [ 198.088568][T11360] netlink: 'syz.3.2322': attribute type 10 has an invalid length. [ 198.091954][T11360] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 198.153156][ T69] usb 5-1: new high-speed USB device number 23 using dummy_hcd [ 198.207292][T11372] mac80211_hwsim hwsim25 wlan1: entered allmulticast mode [ 198.220353][ T1203] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 198.225896][ T1203] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 198.271945][T11379] netlink: 4272 bytes leftover after parsing attributes in process `syz.3.2331'. [ 198.275208][T11379] netlink: 'syz.3.2331': attribute type 3 has an invalid length. [ 198.277717][T11379] netlink: 105 bytes leftover after parsing attributes in process `syz.3.2331'. [ 198.305816][ T69] usb 5-1: config 0 has an invalid interface number: 104 but max is 0 [ 198.308393][ T69] usb 5-1: config 0 has no interface number 0 [ 198.310104][ T69] usb 5-1: config 0 interface 104 has no altsetting 0 [ 198.314231][ T69] usb 5-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=a1.c9 [ 198.321212][ T69] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 198.324222][ T69] usb 5-1: Product: syz [ 198.325421][ T69] usb 5-1: Manufacturer: syz [ 198.326692][ T69] usb 5-1: SerialNumber: syz [ 198.328938][ T69] usb 5-1: config 0 descriptor?? [ 198.332399][ T69] gspca_main: vc032x-2.14.0 probing 0ac8:0321 [ 198.402542][T11389] hub 9-0:1.0: USB hub found [ 198.410359][T11389] hub 9-0:1.0: 1 port detected [ 198.532972][ T5354] Bluetooth: hci1: command tx timeout [ 198.551788][ T69] gspca_vc032x: reg_r err -71 [ 198.553220][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.554681][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.556070][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.557486][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.558886][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.560326][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.561722][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.579583][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.581071][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.582480][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.584184][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.585589][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.586979][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.588459][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.589900][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.591291][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.592708][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.606295][ T69] gspca_vc032x: I2c Bus Busy Wait 00 [ 198.607739][ T69] gspca_vc032x: Unknown sensor... [ 198.609119][ T69] vc032x 5-1:0.104: probe with driver vc032x failed with error -22 [ 198.612002][ T69] usb 5-1: USB disconnect, device number 23 [ 198.665687][T11415] Bluetooth: MGMT ver 1.23 [ 199.163305][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 199.182155][ T5354] block nbd3: Wrong magic (0x28000000) [ 199.264091][T11450] block nbd3: shutting down sockets [ 199.348286][ T39] kauditd_printk_skb: 21 callbacks suppressed [ 199.348301][ T39] audit: type=1326 audit(1728156775.182:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11462 comm="syz.3.2368" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x0 [ 200.235373][T11468] could not open pipe file descriptor [ 200.573992][ T5351] Bluetooth: hci4: sending frame failed (-49) [ 200.576838][ T5354] Bluetooth: hci4: Opcode 0x1003 failed: -49 [ 200.639113][T11489] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 200.715650][T11499] netlink: 4272 bytes leftover after parsing attributes in process `syz.3.2383'. [ 200.718357][T11499] netlink: 'syz.3.2383': attribute type 2 has an invalid length. [ 200.720917][T11499] netlink: 113 bytes leftover after parsing attributes in process `syz.3.2383'. [ 201.336823][T11532] tipc: Started in network mode [ 201.338696][T11532] tipc: Node identity 7f000001, cluster identity 4711 [ 201.342518][T11532] tipc: Enabled bearer , priority 10 [ 201.355325][T11534] input: syz0 as /devices/virtual/input/input24 [ 201.382960][ T5410] usb 8-1: new high-speed USB device number 27 using dummy_hcd [ 201.449948][ T39] audit: type=1326 audit(1728156777.282:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11545 comm="syz.2.2405" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fc0579 code=0x0 [ 201.543534][ T5410] usb 8-1: Using ep0 maxpacket: 16 [ 201.546239][ T5410] usb 8-1: config 0 has no interfaces? [ 201.547683][ T5410] usb 8-1: New USB device found, idVendor=04d9, idProduct=a072, bcdDevice= 0.00 [ 201.550031][ T5410] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 201.556181][ T5410] usb 8-1: config 0 descriptor?? [ 201.768763][ T56] usb 8-1: USB disconnect, device number 27 [ 202.294283][ T56] usb 6-1: new full-speed USB device number 19 using dummy_hcd [ 202.355617][ T5384] tipc: Node number set to 2130706433 [ 202.486861][ T56] usb 6-1: config 0 has no interfaces? [ 202.488734][ T56] usb 6-1: New USB device found, idVendor=1668, idProduct=0323, bcdDevice=5f.ca [ 202.491883][ T56] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 202.496947][ T56] usb 6-1: config 0 descriptor?? [ 202.622995][ T5410] usb 5-1: new high-speed USB device number 24 using dummy_hcd [ 202.693052][ T4802] usb 7-1: new high-speed USB device number 22 using dummy_hcd [ 202.700610][ T56] usb 6-1: USB disconnect, device number 19 [ 202.773011][ T5410] usb 5-1: Using ep0 maxpacket: 8 [ 202.775704][ T5410] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 202.778252][ T39] audit: type=1326 audit(1728156778.612:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11608 comm="syz.3.2432" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x0 [ 202.778260][ T5410] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 202.778279][ T5410] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 202.778291][ T5410] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 202.795066][ T5410] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 202.797627][ T5410] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 202.844260][ T4802] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 202.847252][ T4802] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 202.850158][ T4802] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 202.853339][ T4802] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 202.857022][ T4802] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 202.859394][ T4802] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 202.862754][ T4802] usb 7-1: config 0 descriptor?? [ 202.865263][T11597] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22 [ 203.010531][ T5410] usb 5-1: GET_CAPABILITIES returned 0 [ 203.012046][ T5410] usbtmc 5-1:16.0: can't read capabilities [ 203.214358][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 203.216964][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 203.219549][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 203.222346][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 203.224791][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 203.227160][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 203.229713][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 203.232073][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 203.234486][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 203.236836][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 203.239155][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 203.241549][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 203.243863][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 203.246215][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 203.248568][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 203.251283][ C0] usbtmc 5-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -2 [ 203.258371][ T9] usb 5-1: USB disconnect, device number 24 [ 203.273662][ T4802] plantronics 0003:047F:FFFF.0013: unknown main item tag 0xd [ 203.280046][ T4802] plantronics 0003:047F:FFFF.0013: No inputs registered, leaving [ 203.292022][ T4802] plantronics 0003:047F:FFFF.0013: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 203.537109][ T9] usb 7-1: USB disconnect, device number 22 [ 204.684134][T11704] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2474'. [ 204.751835][T11716] netlink: 'syz.3.2481': attribute type 15 has an invalid length. [ 205.034594][ T5407] usb 6-1: new high-speed USB device number 20 using dummy_hcd [ 205.581163][ T4779] Bluetooth: hci5: sending frame failed (-49) [ 205.586070][ T5351] Bluetooth: hci5: Opcode 0x1003 failed: -49 [ 205.696346][T11748] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2494'. [ 205.875697][T11764] mmap: syz.0.2502 (11764) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 205.922147][T11770] overlayfs: failed to set uuid (89/file1, err=-1); falling back to uuid=null. [ 205.926040][T11770] overlayfs: failed to verify upper root origin [ 206.086980][T11784] pim6reg1: entered promiscuous mode [ 206.088489][T11784] pim6reg1: entered allmulticast mode [ 206.172926][ T56] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 206.326243][ T56] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 206.330092][ T56] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 206.334114][ T56] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 206.337235][ T56] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 206.342595][T11772] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 206.349654][ T56] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 206.558662][ T4802] usb 5-1: USB disconnect, device number 25 [ 206.851868][T11826] usb 2-1: USB disconnect, device number 2 [ 206.887599][T11826] hub 2-0:1.0: USB hub found [ 206.889607][T11826] hub 2-0:1.0: 6 ports detected [ 207.049183][T11841] binder: 11840:11841 ioctl c0306201 20000180 returned -22 [ 207.073527][ T4802] usb 2-1: new high-speed USB device number 3 using ehci-pci [ 207.259356][ T4802] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 207.261807][ T4802] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 207.264661][ T4802] usb 2-1: Product: QEMU USB Tablet [ 207.266049][ T4802] usb 2-1: Manufacturer: QEMU [ 207.267285][ T4802] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1 [ 207.285769][ T4802] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0014/input/input26 [ 207.296805][ T4779] Bluetooth: Wrong link type (-71) [ 207.353290][ T4802] hid-generic 0003:0627:0001.0014: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 207.401313][T11869] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2552'. [ 207.573161][ T5354] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 207.705388][T11896] 9p: Unknown uid 00000000004294967295 [ 207.873204][ T4802] usb 5-1: new high-speed USB device number 26 using dummy_hcd [ 208.036486][ T4802] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 208.039054][ T4802] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 208.041686][ T4802] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 208.044480][ T4802] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 208.048665][ T4802] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 208.051054][ T4802] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 208.053227][ T4802] usb 5-1: Product: syz [ 208.054353][ T4802] usb 5-1: Manufacturer: syz [ 208.058955][ T4802] cdc_wdm 5-1:1.0: skipping garbage [ 208.060432][ T4802] cdc_wdm 5-1:1.0: skipping garbage [ 208.062393][ T4802] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 208.065150][ T4802] cdc_wdm 5-1:1.0: Unknown control protocol [ 208.266195][ C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 208.267941][ C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 208.269688][ C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 208.271393][ C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 208.274593][ C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 208.276321][ C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 208.279059][ C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 208.280799][ C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 208.282487][ T5403] usb 5-1: USB disconnect, device number 26 [ 208.284099][ C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 208.284109][ C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 208.284116][ C2] cdc_wdm 5-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19 [ 208.819819][T11980] vivid-007: disconnect [ 208.821506][T11979] vivid-007: reconnect [ 208.921493][T11985] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2587'. [ 209.022958][ T4779] Bluetooth: hci1: command 0x0405 tx timeout [ 209.737551][T12027] netlink: 260 bytes leftover after parsing attributes in process `syz.0.2604'. [ 209.740156][T12027] netlink: 256 bytes leftover after parsing attributes in process `syz.0.2604'. [ 209.745749][T12027] unsupported nlmsg_type 40 [ 209.912983][ T5403] usb 8-1: new high-speed USB device number 28 using dummy_hcd [ 209.972968][ T5354] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 210.062984][ T5403] usb 8-1: Using ep0 maxpacket: 8 [ 210.069707][ T5403] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 210.073499][ T5403] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 210.076163][ T5403] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 115, changing to 10 [ 210.079182][ T5403] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 18277, setting to 1024 [ 210.082264][ T5403] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 210.093331][ T5403] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 210.101915][T12025] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 210.105361][ T5403] hub 8-1:1.0: bad descriptor, ignoring hub [ 210.122169][ T5403] hub 8-1:1.0: probe with driver hub failed with error -5 [ 210.128108][ T5403] cdc_wdm 8-1:1.0: skipping garbage [ 210.129636][ T5403] cdc_wdm 8-1:1.0: skipping garbage [ 210.133214][ T5403] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device [ 210.137939][ T5403] cdc_wdm 8-1:1.0: Unknown control protocol [ 210.728650][ T39] audit: type=1326 audit(1728156786.562:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12043 comm="syz.0.2613" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x0 [ 211.093306][T12025] usb 8-1: reset high-speed USB device number 28 using dummy_hcd [ 211.270208][T12025] usb 8-1: device firmware changed [ 211.278398][T12025] cdc_wdm 8-1:1.0: Error autopm - -16 [ 211.278525][ T5384] usb 8-1: USB disconnect, device number 28 [ 211.292948][ T5407] usb 7-1: new high-speed USB device number 23 using dummy_hcd [ 211.423023][ T5384] usb 8-1: new high-speed USB device number 29 using dummy_hcd [ 211.442934][ T5407] usb 7-1: Using ep0 maxpacket: 32 [ 211.446227][ T5407] usb 7-1: config index 0 descriptor too short (expected 29220, got 36) [ 211.448432][ T5407] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 211.450688][ T5407] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 211.453416][ T5407] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 211.456269][ T5407] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 211.458729][ T5407] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 211.462183][ T5407] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 211.465054][ T5407] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 211.468353][ T5407] usb 7-1: config 0 descriptor?? [ 211.612937][ T5384] usb 8-1: Using ep0 maxpacket: 8 [ 211.616912][ T5384] usb 8-1: config 1 has an invalid descriptor of length 108, skipping remainder of the config [ 211.622926][ T5384] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 211.625223][ T5384] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 211.628555][ T5384] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 211.630908][ T5384] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 211.647905][T12037] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 211.672019][ T5384] hub 8-1:1.0: bad descriptor, ignoring hub [ 211.674321][ T5407] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 23 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 211.677465][ T5384] hub 8-1:1.0: probe with driver hub failed with error -5 [ 211.680340][ T5384] cdc_wdm 8-1:1.0: skipping garbage [ 211.681712][ T5384] cdc_wdm 8-1:1.0: skipping garbage [ 211.692943][ T5384] cdc_wdm 8-1:1.0: probe with driver cdc_wdm failed with error -22 [ 211.818273][T12071] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2623'. [ 211.876346][ C0] usblp0: nonzero read bulk status received: -71 [ 211.878470][ T1414] usb 7-1: USB disconnect, device number 23 [ 211.983087][ T5407] usb 8-1: USB disconnect, device number 29 [ 212.086059][T12058] usblp0: removed [ 212.412999][ T1414] usb 6-1: new high-speed USB device number 21 using dummy_hcd [ 212.574293][ T1414] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 212.577440][ T1414] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 212.580096][ T1414] usb 6-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 212.582776][ T1414] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 212.587444][ T1414] usb 6-1: config 0 descriptor?? [ 212.651124][T12101] input: syz0 as /devices/virtual/input/input27 [ 212.790419][ T39] audit: type=1326 audit(1728156788.622:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12106 comm="syz.3.2638" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf745e579 code=0x0 [ 213.001189][ T1414] cm6533_jd 0003:0D8C:0022.0015: unknown main item tag 0x0 [ 213.003676][ T1414] cm6533_jd 0003:0D8C:0022.0015: unknown main item tag 0x0 [ 213.006721][ T1414] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:0D8C:0022.0015/input/input28 [ 213.013544][ T1414] cm6533_jd 0003:0D8C:0022.0015: input,hiddev0,hidraw1: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.1-1/input0 [ 213.055138][T12113] netlink: 'syz.0.2640': attribute type 4 has an invalid length. [ 213.062217][T12113] netlink: 'syz.0.2640': attribute type 4 has an invalid length. [ 213.203710][ T69] usb 6-1: USB disconnect, device number 21 [ 213.323433][ T5403] usb 7-1: new high-speed USB device number 24 using dummy_hcd [ 213.482994][ T5403] usb 7-1: Using ep0 maxpacket: 8 [ 213.489323][ T5403] usb 7-1: config index 0 descriptor too short (expected 301, got 45) [ 213.492466][ T5403] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 213.496434][ T5403] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 213.500001][ T5403] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 213.504525][ T5403] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 213.509175][ T5403] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 213.512141][ T5403] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 213.920064][ T35] usb 7-1: USB disconnect, device number 24 [ 214.156737][T12150] sch_fq: defrate 113 ignored. [ 214.617202][ T39] audit: type=1326 audit(1728156790.452:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12172 comm="syz.1.2665" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x0 [ 214.936046][T12181] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 215.546239][T12200] binder: 12198:12200 ioctl c0306201 0 returned -14 [ 215.626338][T12208] kvm: kvm [12206]: vcpu1, guest rIP: 0xfff0 Unhandled RDMSR(0x40000005) [ 216.080605][T12235] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 216.082640][T12235] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 216.086101][T12235] hsr_slave_0: left promiscuous mode [ 216.089572][T12235] hsr_slave_1: left promiscuous mode [ 216.509136][T12261] netlink: 16126 bytes leftover after parsing attributes in process `syz.3.2701'. [ 216.511333][T12261] netlink: 183228 bytes leftover after parsing attributes in process `syz.3.2701'. [ 217.049557][T12303] cgroup: release_agent respecified [ 217.092941][ T5351] Bluetooth: hci1: command 0x0405 tx timeout [ 217.350020][T12316] netlink: 'syz.0.2721': attribute type 9 has an invalid length. [ 217.352918][T12316] netlink: 134672 bytes leftover after parsing attributes in process `syz.0.2721'. [ 217.356347][T12316] openvswitch: netlink: Key 2 has unexpected len 20 expected 4 [ 217.644484][ T4802] kernel write not supported for file /adsp1 (pid: 4802 comm: kworker/1:2) [ 217.687485][T12334] netlink: 'syz.2.2729': attribute type 11 has an invalid length. [ 217.882990][ T25] usb 5-1: new high-speed USB device number 27 using dummy_hcd [ 218.053166][ T25] usb 5-1: Using ep0 maxpacket: 16 [ 218.055960][ T25] usb 5-1: config 0 has no interfaces? [ 218.057586][ T25] usb 5-1: New USB device found, idVendor=1294, idProduct=1320, bcdDevice= 0.00 [ 218.060163][ T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 218.066842][ T25] usb 5-1: config 0 descriptor?? [ 218.274073][T12330] loop2: detected capacity change from 0 to 7 [ 218.278916][T12330] Dev loop2: unable to read RDB block 7 [ 218.280474][T12330] loop2: AHDI p1 p2 [ 218.281500][T12330] loop2: partition table partially beyond EOD, truncated [ 218.305624][ T4802] usb 5-1: USB disconnect, device number 27 [ 218.310733][T10068] udevd[10068]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 218.635990][T12405] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 218.734826][ T62] libceph: connect (1)[c::]:6789 error -101 [ 218.738500][ T62] libceph: mon0 (1)[c::]:6789 connect error [ 218.798734][ T25] libceph: connect (1)[c::]:6789 error -101 [ 218.800526][ T25] libceph: mon0 (1)[c::]:6789 connect error [ 218.877210][T12426] netlink: 'syz.0.2766': attribute type 9 has an invalid length. [ 218.879328][T12426] netlink: 134660 bytes leftover after parsing attributes in process `syz.0.2766'. [ 219.003224][ T62] libceph: connect (1)[c::]:6789 error -101 [ 219.004915][ T62] libceph: mon0 (1)[c::]:6789 connect error [ 219.065707][ T25] libceph: connect (1)[c::]:6789 error -101 [ 219.068016][ T25] libceph: mon0 (1)[c::]:6789 connect error [ 219.514755][ T62] libceph: connect (1)[c::]:6789 error -101 [ 219.516949][ T62] libceph: mon0 (1)[c::]:6789 connect error [ 219.562157][T12416] ceph: No mds server is up or the cluster is laggy [ 219.564397][T12420] ceph: No mds server is up or the cluster is laggy [ 219.573324][ T25] libceph: connect (1)[c::]:6789 error -101 [ 219.575503][ T25] libceph: mon0 (1)[c::]:6789 connect error [ 220.656510][ T1008] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 220.744148][ T1008] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 220.753466][ T5354] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 220.758234][ T5354] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 220.762979][ T5354] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 220.767280][ T5354] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 220.769588][ T5354] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 220.773239][ T5354] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 220.830094][ T1008] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 220.854174][T12499] syzkaller1: entered promiscuous mode [ 220.856170][T12499] syzkaller1: entered allmulticast mode [ 220.904089][T12491] chnl_net:caif_netlink_parms(): no params data found [ 220.959294][ T1008] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 220.994821][T12491] bridge0: port 1(bridge_slave_0) entered blocking state [ 221.002961][T12491] bridge0: port 1(bridge_slave_0) entered disabled state [ 221.002976][ T5403] usb 6-1: new high-speed USB device number 22 using dummy_hcd [ 221.005231][T12491] bridge_slave_0: entered allmulticast mode [ 221.014475][T12491] bridge_slave_0: entered promiscuous mode [ 221.018289][T12491] bridge0: port 2(bridge_slave_1) entered blocking state [ 221.020709][T12491] bridge0: port 2(bridge_slave_1) entered disabled state [ 221.025431][T12491] bridge_slave_1: entered allmulticast mode [ 221.028169][T12491] bridge_slave_1: entered promiscuous mode [ 221.058689][T12491] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 221.067589][T12491] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 221.096992][T12491] team0: Port device team_slave_0 added [ 221.102766][T12491] team0: Port device team_slave_1 added [ 221.145272][T12491] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 221.147360][T12491] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 221.154711][T12491] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 221.161358][T12491] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 221.163672][T12491] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 221.170050][T12491] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 221.171455][ T5403] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 221.175600][ T5403] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 221.178351][ T5403] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 221.181098][ T5403] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 221.186199][ T5403] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 221.188680][ T5403] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 221.190771][ T5403] usb 6-1: Manufacturer: syz [ 221.193066][ T5403] usb 6-1: config 0 descriptor?? [ 221.201497][ T1008] bridge_slave_1: left allmulticast mode [ 221.203176][ T1008] bridge_slave_1: left promiscuous mode [ 221.204685][ T1008] bridge0: port 2(bridge_slave_1) entered disabled state [ 221.208702][ T1008] bridge_slave_0: left allmulticast mode [ 221.210180][ T1008] bridge_slave_0: left promiscuous mode [ 221.211683][ T1008] bridge0: port 1(bridge_slave_0) entered disabled state [ 221.338213][ T1008] erspan0 (unregistering): left promiscuous mode [ 221.352789][ T1008] gretap0 (unregistering): left promiscuous mode [ 221.473046][ T25] usb 8-1: new high-speed USB device number 30 using dummy_hcd [ 221.580373][ T1008] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 221.593691][ T1008] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 221.598642][ T1008] bond0 (unregistering): Released all slaves [ 221.604807][ T5403] appleir 0003:05AC:8243.0016: unknown main item tag 0x0 [ 221.606894][ T5403] appleir 0003:05AC:8243.0016: No inputs registered, leaving [ 221.610704][ T5403] appleir 0003:05AC:8243.0016: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0 [ 221.613764][T12491] hsr_slave_0: entered promiscuous mode [ 221.617052][T12491] hsr_slave_1: entered promiscuous mode [ 221.623175][ T25] usb 8-1: Using ep0 maxpacket: 16 [ 221.625808][ T25] usb 8-1: config 0 has no interfaces? [ 221.628827][ T25] usb 8-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 221.631173][ T25] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 221.633421][ T25] usb 8-1: Product: syz [ 221.634672][ T25] usb 8-1: Manufacturer: syz [ 221.635976][ T25] usb 8-1: SerialNumber: syz [ 221.638111][ T25] usb 8-1: config 0 descriptor?? [ 221.706296][ T1008] tipc: Disabling bearer [ 221.707994][ T1008] tipc: Left network mode [ 221.858562][ T5407] usb 8-1: USB disconnect, device number 30 [ 221.965928][ T1008] batadv_slave_1: left promiscuous mode [ 221.980306][ T1008] hsr_slave_0: left promiscuous mode [ 221.983402][ T1008] hsr_slave_1: left promiscuous mode [ 221.989806][ T1008] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 221.992606][ T1008] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 221.997152][ T1008] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 221.999069][ T1008] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 222.031125][ T1008] veth1_macvtap: left promiscuous mode [ 222.032657][ T1008] veth0_macvtap: left promiscuous mode [ 222.034681][ T1008] veth1_vlan: left promiscuous mode [ 222.036059][ T1008] veth0_vlan: left promiscuous mode [ 222.438954][ T5407] usb 6-1: USB disconnect, device number 22 [ 222.868713][ T5354] Bluetooth: hci3: command tx timeout [ 222.960512][ T1008] team0 (unregistering): Port device team_slave_1 removed [ 223.020107][T12567] input: syz0 as /devices/virtual/input/input29 [ 223.207263][ T1008] team0 (unregistering): Port device team_slave_0 removed [ 223.960669][T12570] hsr0: entered promiscuous mode [ 224.105347][T12584] 9pnet: p9_errstr2errno: server reported unknown error 184467 [ 224.147492][T12587] netlink: 'syz.2.2829': attribute type 11 has an invalid length. [ 224.149542][T12587] netlink: 211132 bytes leftover after parsing attributes in process `syz.2.2829'. [ 224.252101][T12491] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 224.271561][T12491] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 224.279550][T12491] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 224.284379][T12491] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 224.342079][T12491] 8021q: adding VLAN 0 to HW filter on device bond0 [ 224.354659][T12491] 8021q: adding VLAN 0 to HW filter on device team0 [ 224.360378][ T1131] bridge0: port 1(bridge_slave_0) entered blocking state [ 224.362362][ T1131] bridge0: port 1(bridge_slave_0) entered forwarding state [ 224.375199][ T1203] bridge0: port 2(bridge_slave_1) entered blocking state [ 224.377115][ T1203] bridge0: port 2(bridge_slave_1) entered forwarding state [ 224.499621][T12491] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 224.533410][T12491] veth0_vlan: entered promiscuous mode [ 224.538539][T12625] input: syz1 as /devices/virtual/input/input30 [ 224.546840][T12491] veth1_vlan: entered promiscuous mode [ 224.567120][T12491] veth0_macvtap: entered promiscuous mode [ 224.572657][T12491] veth1_macvtap: entered promiscuous mode [ 224.579332][T12491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 224.582085][T12491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.588196][T12491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 224.590860][T12491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.593689][T12491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 224.596555][T12491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.600069][T12491] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 224.607863][T12491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 224.614851][T12491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.617372][T12491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 224.620099][T12491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.622612][T12491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 224.633379][T12491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 224.636970][T12491] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 224.642463][T12491] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.646146][T12491] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.649307][T12491] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.651771][T12491] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.706688][ T1203] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 224.709316][ T1203] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 224.730191][ T1203] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 224.732263][ T1203] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 224.943056][ T5354] Bluetooth: hci3: command tx timeout [ 225.623543][ T39] audit: type=1326 audit(1728156801.462:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12659 comm="syz.1.2849" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x0 [ 225.686881][T12662] ------------[ cut here ]------------ [ 225.688605][T12662] kmem_cache of name '9p-fcall-cache' already exists [ 225.690732][T12662] WARNING: CPU: 0 PID: 12662 at mm/slab_common.c:107 __kmem_cache_create_args+0xb0/0x3c0 [ 225.693399][T12662] Modules linked in: [ 225.694552][T12662] CPU: 0 UID: 0 PID: 12662 Comm: syz.0.2851 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0 [ 225.698947][T12662] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 225.702241][T12662] RIP: 0010:__kmem_cache_create_args+0xb0/0x3c0 [ 225.704276][T12662] Code: 98 48 3d 10 bb f1 8d 74 25 48 8b 7b 60 48 89 ee e8 c5 68 34 09 85 c0 75 e0 90 48 c7 c7 e8 1f 58 8d 48 89 ee e8 41 b1 7e ff 90 <0f> 0b 90 90 be 20 00 00 00 48 89 ef e8 4f 6a 34 09 48 85 c0 0f 85 [ 225.708993][T12662] RSP: 0018:ffffc9000cb078f0 EFLAGS: 00010286 [ 225.710514][T12662] RAX: 0000000000000000 RBX: ffff88805a6b6640 RCX: ffffc9000c403000 [ 225.712469][T12662] RDX: 0000000000040000 RSI: ffffffff814e28c6 RDI: 0000000000000001 [ 225.714536][T12662] RBP: ffffffff8ca1e320 R08: 0000000000000001 R09: 0000000000000000 [ 225.716629][T12662] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 225.718734][T12662] R13: 0000000000020018 R14: ffffc9000cb079e0 R15: 0000000000020018 [ 225.720932][T12662] FS: 0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:00000000f5766b40 [ 225.723278][T12662] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 225.724976][T12662] CR2: 0000000020001000 CR3: 0000000062812000 CR4: 0000000000352ef0 [ 225.726983][T12662] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 225.728972][T12662] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 225.730970][T12662] Call Trace: [ 225.731857][T12662] [ 225.732641][T12662] ? __warn+0xea/0x3d0 [ 225.733973][T12662] ? __kmem_cache_create_args+0xb0/0x3c0 [ 225.735452][T12662] ? report_bug+0x3c0/0x580 [ 225.736672][T12662] ? handle_bug+0x54/0xa0 [ 225.737880][T12662] ? exc_invalid_op+0x17/0x50 [ 225.739202][T12662] ? asm_exc_invalid_op+0x1a/0x20 [ 225.740625][T12662] ? __warn_printk+0x1a6/0x350 [ 225.741970][T12662] ? __kmem_cache_create_args+0xb0/0x3c0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 225.743654][T12662] p9_client_create+0xe04/0x1150 [ 225.745021][T12662] ? __pfx_p9_client_create+0x10/0x10 [ 225.746618][T12662] ? __raw_spin_lock_init+0x3a/0x110 [ 225.747956][T12662] v9fs_session_init+0x1f8/0x1a80 [ 225.749283][T12662] ? __pfx_v9fs_session_init+0x10/0x10 [ 225.750631][T12662] ? kasan_save_track+0x14/0x30 [ 225.751871][T12662] v9fs_mount+0xc6/0xa50 [ 225.753000][T12662] ? __pfx_v9fs_mount+0x10/0x10 [ 225.754296][T12662] ? __pfx_v9fs_mount+0x10/0x10 [ 225.755595][T12662] legacy_get_tree+0x109/0x220 [ 225.756865][T12662] vfs_get_tree+0x8f/0x380 [ 225.758054][T12662] path_mount+0x6e1/0x1f10 [ 225.759388][T12662] ? kmem_cache_free+0x152/0x4b0 [ 225.761196][T12662] ? __pfx_path_mount+0x10/0x10 [ 225.762549][T12662] ? putname+0x12e/0x170 [ 225.763829][T12662] __ia32_sys_mount+0x292/0x310 [ 225.765324][T12662] ? __pfx___ia32_sys_mount+0x10/0x10 [ 225.766956][T12662] __do_fast_syscall_32+0x73/0x120 [ 225.768424][T12662] do_fast_syscall_32+0x32/0x80 [ 225.769726][T12662] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 225.771406][T12662] RIP: 0023:0xf7fe7579 [ 225.772491][T12662] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 225.777633][T12662] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015 [ 225.780196][T12662] RAX: ffffffffffffffda RBX: 00000000200001c0 RCX: 0000000020000480 [ 225.783007][T12662] RDX: 00000000200004c0 RSI: 0000000000200401 RDI: 0000000020000840 [ 225.785106][T12662] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 225.787597][T12662] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 225.790102][T12662] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 225.792994][T12662] [ 225.794130][T12662] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 225.796166][T12662] CPU: 0 UID: 0 PID: 12662 Comm: syz.0.2851 Not tainted 6.12.0-rc1-syzkaller-00330-gfc20a3e57247 #0 [ 225.799021][T12662] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 225.801760][T12662] Call Trace: [ 225.802651][T12662] [ 225.803509][T12662] dump_stack_lvl+0x3d/0x1f0 [ 225.804817][T12662] panic+0x71d/0x800 [ 225.805862][T12662] ? __pfx_panic+0x10/0x10 [ 225.807048][T12662] ? show_trace_log_lvl+0x29d/0x3d0 [ 225.808472][T12662] ? __kmem_cache_create_args+0xb0/0x3c0 [ 225.810063][T12662] check_panic_on_warn+0xab/0xb0 [ 225.811381][T12662] __warn+0xf6/0x3d0 [ 225.812442][T12662] ? __kmem_cache_create_args+0xb0/0x3c0 [ 225.814202][T12662] report_bug+0x3c0/0x580 [ 225.815415][T12662] handle_bug+0x54/0xa0 [ 225.816539][T12662] exc_invalid_op+0x17/0x50 [ 225.817754][T12662] asm_exc_invalid_op+0x1a/0x20 [ 225.819055][T12662] RIP: 0010:__kmem_cache_create_args+0xb0/0x3c0 [ 225.820743][T12662] Code: 98 48 3d 10 bb f1 8d 74 25 48 8b 7b 60 48 89 ee e8 c5 68 34 09 85 c0 75 e0 90 48 c7 c7 e8 1f 58 8d 48 89 ee e8 41 b1 7e ff 90 <0f> 0b 90 90 be 20 00 00 00 48 89 ef e8 4f 6a 34 09 48 85 c0 0f 85 [ 225.825785][T12662] RSP: 0018:ffffc9000cb078f0 EFLAGS: 00010286 [ 225.827751][T12662] RAX: 0000000000000000 RBX: ffff88805a6b6640 RCX: ffffc9000c403000 [ 225.829963][T12662] RDX: 0000000000040000 RSI: ffffffff814e28c6 RDI: 0000000000000001 [ 225.832051][T12662] RBP: ffffffff8ca1e320 R08: 0000000000000001 R09: 0000000000000000 [ 225.834134][T12662] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 225.836274][T12662] R13: 0000000000020018 R14: ffffc9000cb079e0 R15: 0000000000020018 [ 225.838443][T12662] ? __warn_printk+0x1a6/0x350 [ 225.840151][T12662] p9_client_create+0xe04/0x1150 [ 225.841900][T12662] ? __pfx_p9_client_create+0x10/0x10 [ 225.843687][T12662] ? __raw_spin_lock_init+0x3a/0x110 [ 225.845298][T12662] v9fs_session_init+0x1f8/0x1a80 [ 225.846913][T12662] ? __pfx_v9fs_session_init+0x10/0x10 [ 225.848286][T12662] ? kasan_save_track+0x14/0x30 [ 225.849529][T12662] v9fs_mount+0xc6/0xa50 [ 225.850658][T12662] ? __pfx_v9fs_mount+0x10/0x10 [ 225.851949][T12662] ? __pfx_v9fs_mount+0x10/0x10 [ 225.853245][T12662] legacy_get_tree+0x109/0x220 [ 225.854486][T12662] vfs_get_tree+0x8f/0x380 [ 225.855616][T12662] path_mount+0x6e1/0x1f10 [ 225.856831][T12662] ? kmem_cache_free+0x152/0x4b0 [ 225.858141][T12662] ? __pfx_path_mount+0x10/0x10 [ 225.859388][T12662] ? putname+0x12e/0x170 [ 225.860473][T12662] __ia32_sys_mount+0x292/0x310 [ 225.861755][T12662] ? __pfx___ia32_sys_mount+0x10/0x10 [ 225.863178][T12662] __do_fast_syscall_32+0x73/0x120 [ 225.864556][T12662] do_fast_syscall_32+0x32/0x80 [ 225.865836][T12662] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 225.867490][T12662] RIP: 0023:0xf7fe7579 [ 225.868578][T12662] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 225.873552][T12662] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015 [ 225.875722][T12662] RAX: ffffffffffffffda RBX: 00000000200001c0 RCX: 0000000020000480 [ 225.877794][T12662] RDX: 00000000200004c0 RSI: 0000000000200401 RDI: 0000000020000840 [ 225.879877][T12662] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 225.881944][T12662] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 225.884012][T12662] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 225.886079][T12662] [ 225.887597][T12662] Kernel Offset: disabled [ 225.889244][T12662] Rebooting in 86400 seconds.. VM DIAGNOSIS: 19:33:21 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85034e45 RDI=ffffffff9a63a220 RBP=ffffffff9a63a1e0 RSP=ffffc9000cb07258 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000020 R14=ffffffff85034de0 R15=0000000000000000 RIP=ffffffff85034e6f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020001000 CR3=0000000062812000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 00c800a400000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000600000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=ffff88804bd043b8 RBX=dffffc0000000000 RCX=ffffffff816a9d5d RDX=1ffff110097a0877 RSI=ffff888074e68000 RDI=ffff88805b4564e8 RBP=ffffc900030bf7b8 RSP=ffffc900030bf680 R8 =0000000000000001 R9 =fffff52000617ebe R10=0000000000000003 R11=0000000000000000 R12=ffff888074e60000 R13=dead000000000122 R14=0000000000000003 R15=ffff88804bd043b8 RIP=ffffffff848de9bc RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000030a1fffc CR3=0000000021f5a000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000080000001 RBX=0000000000000001 RCX=1ffffffff3470b04 RDX=0000000000000000 RSI=ffffffff8bb120a0 RDI=0000000000000001 RBP=00000089c7782000 RSP=ffffc9000427fb30 R8 =0000000000000000 R9 =ffffed100fde8d18 R10=ffff88807ef468c7 R11=0000000000000000 R12=0000000000000002 R13=00000000000032c9 R14=ffffffff9a3b9480 R15=0000000000019d50 RIP=ffffffff815c09a2 RFL=00000213 [----A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000584a499c CR3=000000000db7c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 6b20657479622d32 3320646e61707865 ZMM17=25f357dcaaf6173d 4ce3ba178e016f8e 25f357dcaaf6173d 4ce3ba178e016f8e 25f357dcaaf6173d 4ce3ba178e016f8e 25f357dcaaf6173d 4ce3ba178e016f8e ZMM18=7a8452db33679848 f410b6aedca4cf7b 7a8452db33679848 f410b6aedca4cf7b 7a8452db33679848 f410b6aedca4cf7b 7a8452db33679848 f410b6aedca4cf7b ZMM19=9011000000000000 0000000000000008 9011000000000000 0000000000000007 9011000000000000 0000000000000006 9011000000000000 0000000000000005 ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=4ce3ba174ce3ba17 4ce3ba174ce3ba17 4ce3ba174ce3ba17 4ce3ba174ce3ba17 4ce3ba174ce3ba17 4ce3ba174ce3ba17 4ce3ba174ce3ba17 4ce3ba174ce3ba17 ZMM22=aaf6173daaf6173d aaf6173daaf6173d aaf6173daaf6173d aaf6173daaf6173d aaf6173daaf6173d aaf6173daaf6173d aaf6173daaf6173d aaf6173daaf6173d ZMM23=25f357dc25f357dc 25f357dc25f357dc 25f357dc25f357dc 25f357dc25f357dc 25f357dc25f357dc 25f357dc25f357dc 25f357dc25f357dc 25f357dc25f357dc ZMM24=dca4cf7bdca4cf7b dca4cf7bdca4cf7b dca4cf7bdca4cf7b dca4cf7bdca4cf7b dca4cf7bdca4cf7b dca4cf7bdca4cf7b dca4cf7bdca4cf7b dca4cf7bdca4cf7b ZMM25=f410b6aef410b6ae f410b6aef410b6ae f410b6aef410b6ae f410b6aef410b6ae f410b6aef410b6ae f410b6aef410b6ae f410b6aef410b6ae f410b6aef410b6ae ZMM26=3367984833679848 3367984833679848 3367984833679848 3367984833679848 3367984833679848 3367984833679848 3367984833679848 3367984833679848 ZMM27=7a8452db7a8452db 7a8452db7a8452db 7a8452db7a8452db 7a8452db7a8452db 7a8452db7a8452db 7a8452db7a8452db 7a8452db7a8452db 7a8452db7a8452db ZMM28=000000a00000009f 0000009e0000009d 0000009c0000009b 0000009a00000099 0000009800000097 0000009600000095 0000009400000093 0000009200000091 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=8f1100008f110000 8f1100008f110000 8f1100008f110000 8f1100008f110000 8f1100008f110000 8f1100008f110000 8f1100008f110000 8f1100008f110000 info registers vcpu 3 CPU#3 RAX=1ffffd4000176590 RBX=ffffea0000bb2c80 RCX=ffffffff81c852c7 RDX=fffff94000176591 RSI=0000000000000008 RDI=ffffea0000bb2c80 RBP=0000000000000000 RSP=ffffc90000eff360 R8 =0000000000000000 R9 =fffff94000176590 R10=ffffea0000bb2c87 R11=0000000000000000 R12=ffffea0000bb2c88 R13=ffffea0000bb2c80 R14=0000000000000000 R15=dffffc0000000000 RIP=ffffffff81c852d3 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000000c341bf3 CR3=000000000db7c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0ce1ccc1b108213e 36db31af0d448d51 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3b57cb78e02c3bb4 054f947f03d39080 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7a8fcd213d1bf0fe 766d0d5db1701bcc ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 85f96a6c1a2c93c6 15a28dcf6c457453 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000005140 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 89c4b6c0f6000000 89c568f13a008001 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 89c554d700000000 000000006a008001 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0e00800189c562c9 0000000064000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000089c58079 89c577fdae000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c210c742fe775600 34712a1e739097ed ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 31d51cb075ac5644 e94d515a6cf815aa ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000