last executing test programs: 6.668704997s ago: executing program 0 (id=467): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kmem_cache_free\x00', r1, 0x0, 0x8000}, 0x18) memfd_secret(0x0) 6.500253228s ago: executing program 0 (id=469): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r2) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', 0x0}) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010328bd7000fedbdf251c0000000c00018008000100", @ANYRES32=r4], 0x20}}, 0x10) 6.362438567s ago: executing program 0 (id=471): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2) io_setup(0x7, &(0x7f0000000280)=0x0) syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) io_submit(r1, 0x2, &(0x7f0000000b40)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x7, 0x8655, r0, 0x0}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x8, r0, 0x0, 0x0, 0x5, 0x0, 0x6}]) 4.671122009s ago: executing program 0 (id=476): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x95) bpf$OBJ_PIN_PROG(0x6, &(0x7f00000002c0)=@o_path={&(0x7f0000000f40)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r1}, 0x18) 4.572062196s ago: executing program 0 (id=477): ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) socket(0x400000000010, 0x3, 0x0) syz_usb_ep_write(0xffffffffffffffff, 0x81, 0x8, &(0x7f0000000080)="00012c615bc20000") r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) readv(r0, &(0x7f0000000340)=[{&(0x7f0000002180)=""/4082, 0xff2}], 0x1) 4.502183591s ago: executing program 0 (id=478): r0 = syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000280)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7"], 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000b80)={0x44, &(0x7f0000000900)=ANY=[@ANYBLOB="0015b3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_ep_write(r0, 0x81, 0x8, &(0x7f0000000080)="00012c615bc20000") 1.360652229s ago: executing program 1 (id=490): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1802000000000000000000000110000085100000010000009500000000000000180100002020732500000000002020207b1af8ff00000000bfa10000000000000500000000000000a502000008180000b703000000000028850000007600000018000000090000000000000005ebff0095"], &(0x7f0000000000)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=@setlink={0x40, 0x13, 0x331, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, [@IFLA_TXQLEN={0x8, 0xd, 0xe}, @IFLA_IFNAME={0x14, 0x3, 'bridge_slave_1\x00'}, @IFLA_XDP={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000800}, 0x50) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="050000000400000099000000"], 0x48) r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r2}, 0x18) r3 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0202000311000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000002000100000007000000000b000000000200090000000000000000000000000005000600000000000a00000000000000fe8800000000000000000000000000010000000000000000010018"], 0x88}}, 0x0) r4 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r4, &(0x7f0000000000)={0x500, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="020200090f"], 0x78}}, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000001000080000000000000000018120000", @ANYRESDEC=r1, @ANYBLOB="0000000000000000b70300000000000085"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) unshare(0x22020600) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r5 = socket(0x400000000010, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0x5}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0) readv(0xffffffffffffffff, &(0x7f0000002940)=[{0x0}, {0x0}], 0x2) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00'}, 0x10) 680.934975ms ago: executing program 1 (id=491): bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1c, 0xd, &(0x7f0000000340)=@raw=[@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}}], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000f"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000740)='kfree\x00', r1}, 0x18) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000440)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_SET_MESH(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000340)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002abd7040010000000f00000008000300", @ANYRES32=r4, @ANYBLOB="05002f"], 0x24}}, 0x18) 401.209543ms ago: executing program 1 (id=492): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10) r2 = getpgid(0x0) r3 = syz_pidfd_open(r2, 0x0) pidfd_send_signal(r3, 0x21, 0x0, 0x4) 290.08836ms ago: executing program 1 (id=493): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = socket(0x10, 0x2, 0x0) sendto$inet6(r2, &(0x7f0000000000)="7800000018002507b9409b14ffff00000204be04020506050e0204094300080004000000040010000d0068d0bf46d32345653600648d0a0012000200000049935ade4a460c89b6ec0cff3959547f509058ba86c902000000004a32000400160005000a0000000000e000e218d1ddf66ed538f25232500000", 0x78, 0x0, 0x0, 0x0) 101.884253ms ago: executing program 1 (id=494): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300)={0xffffffffffffffff}, 0x106, 0x1}}, 0x4c) write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0xa, 0x4e22, 0xffffffff, @empty, 0xa09b}, {0xa, 0x4e1f, 0x8000009, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, r1, 0x4040099d}}, 0x48) writev(r0, &(0x7f0000000040)=[{0x0}], 0x1) 0s ago: executing program 1 (id=495): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001ac0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0xe, 0x0, &(0x7f0000000580)="072731a0de207a5d0a00000000da", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:37012' (ED25519) to the list of known hosts. syzkaller login: [ 73.313707][ T3309] cgroup: Unknown subsys name 'net' [ 73.495051][ T3309] cgroup: Unknown subsys name 'cpuset' [ 73.521982][ T3309] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 74.024309][ T3309] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 82.201180][ T3314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 82.243736][ T3314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 82.322535][ T3315] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 82.377248][ T3315] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 83.049006][ T3314] hsr_slave_0: entered promiscuous mode [ 83.052950][ T3314] hsr_slave_1: entered promiscuous mode [ 83.466145][ T3315] hsr_slave_0: entered promiscuous mode [ 83.470686][ T3315] hsr_slave_1: entered promiscuous mode [ 83.474583][ T3315] debugfs: 'hsr0' already exists in 'hsr' [ 83.475290][ T3315] Cannot create hsr debugfs directory [ 84.112494][ T3314] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 84.182724][ T3314] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 84.225384][ T3314] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 84.258307][ T3314] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 84.524146][ T3315] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 84.573000][ T3315] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 84.595156][ T3315] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 84.622088][ T3315] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 85.245054][ T3314] 8021q: adding VLAN 0 to HW filter on device bond0 [ 85.458012][ T3315] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.251447][ T3314] veth0_vlan: entered promiscuous mode [ 88.302387][ T3314] veth1_vlan: entered promiscuous mode [ 88.481108][ T3314] veth0_macvtap: entered promiscuous mode [ 88.544918][ T3314] veth1_macvtap: entered promiscuous mode [ 88.624669][ T3315] veth0_vlan: entered promiscuous mode [ 88.721421][ T3315] veth1_vlan: entered promiscuous mode [ 88.808530][ T106] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.811264][ T106] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.814664][ T106] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.819845][ T106] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.971780][ T3315] veth0_macvtap: entered promiscuous mode [ 89.028695][ T3315] veth1_macvtap: entered promiscuous mode [ 89.199877][ T55] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.200389][ T55] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.204853][ T55] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.215433][ T55] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.465801][ T3314] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 90.081523][ T3466] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2'. [ 90.630661][ T3470] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.1'. [ 90.638749][ T3470] ksmbd: Daemon and kernel module version mismatch. ksmbd: 36, kernel module: 1. User-space ksmbd should terminate. [ 98.048894][ T3500] netlink: 12 bytes leftover after parsing attributes in process `syz.0.13'. [ 106.682810][ T3542] fuse: Bad value for 'fd' [ 107.344957][ T3557] fuse: Bad value for 'fd' [ 107.714445][ T3564] syzkaller0: entered promiscuous mode [ 107.714961][ T3564] syzkaller0: entered allmulticast mode [ 107.767860][ T3460] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 107.927447][ T3460] usb 1-1: Using ep0 maxpacket: 32 [ 107.991449][ T3460] usb 1-1: config 0 has an invalid interface number: 184 but max is 0 [ 107.992038][ T3460] usb 1-1: config 0 has no interface number 0 [ 108.007255][ T3460] usb 1-1: config 0 interface 184 has no altsetting 0 [ 108.067123][ T3460] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 108.067567][ T3460] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 108.069207][ T3460] usb 1-1: Product: syz [ 108.069320][ T3460] usb 1-1: Manufacturer: syz [ 108.069417][ T3460] usb 1-1: SerialNumber: syz [ 108.102735][ T3460] usb 1-1: config 0 descriptor?? [ 108.151604][ T3460] smsc75xx v1.0.0 [ 108.798868][ T3460] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32 [ 108.799208][ T3460] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 109.252908][ T3567] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 109.265573][ T3567] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 110.259485][ T3460] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71 [ 110.259897][ T3460] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71 [ 110.265180][ T3460] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71 [ 110.277009][ T3460] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -71 [ 110.362549][ T3460] usb 1-1: USB disconnect, device number 2 [ 110.510029][ T3574] fuse: Bad value for 'fd' [ 111.407224][ T785] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 111.556981][ T785] usb 1-1: Using ep0 maxpacket: 32 [ 111.593032][ T785] usb 1-1: config 0 has an invalid interface number: 51 but max is 0 [ 111.593434][ T785] usb 1-1: config 0 has no interface number 0 [ 111.651226][ T785] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 111.651620][ T785] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 111.653711][ T785] usb 1-1: Product: syz [ 111.653800][ T785] usb 1-1: Manufacturer: syz [ 111.653898][ T785] usb 1-1: SerialNumber: syz [ 111.693811][ T785] usb 1-1: config 0 descriptor?? [ 111.753784][ T785] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 112.028842][ T785] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 112.105983][ T785] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 112.192088][ C1] quatech-serial ttyUSB0: qt2_process_read_urb - status message too short [ 112.437269][ C1] usb 1-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 112.443717][ T785] usb 1-1: USB disconnect, device number 3 [ 112.504586][ T785] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 112.530645][ T785] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 112.533219][ T785] quatech2 1-1:0.51: device disconnected [ 113.881779][ T3601] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 113.883315][ T3601] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 114.217158][ T3605] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 115.674262][ T3612] netlink: 8 bytes leftover after parsing attributes in process `syz.1.59'. [ 115.680906][ T3612] Zero length message leads to an empty skb [ 124.029335][ T3661] fuse: Bad value for 'fd' [ 127.463397][ T3675] fuse: Bad value for 'fd' [ 129.305357][ T993] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 129.911932][ T993] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 129.913600][ T993] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 129.913765][ T993] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 130.260555][ T3688] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 130.261935][ T3688] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 131.387851][ T3513] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 131.537131][ T3513] usb 1-1: Using ep0 maxpacket: 16 [ 131.550114][ T3513] usb 1-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 131.550313][ T3513] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 131.550451][ T3513] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 131.581809][ T3513] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 131.582156][ T3513] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 131.582870][ T3513] usb 1-1: Product: syz [ 131.583015][ T3513] usb 1-1: Manufacturer: syz [ 131.583073][ T3513] usb 1-1: SerialNumber: syz [ 132.961623][ T3513] usb 1-1: 0:2 : does not exist [ 133.238358][ T3513] usb 1-1: 1:0: cannot get min/max values for control 4 (id 1) [ 134.013418][ T3513] usb 1-1: USB disconnect, device number 4 [ 134.753312][ T3558] udevd[3558]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 141.837464][ T785] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 142.017094][ T785] usb 1-1: Using ep0 maxpacket: 16 [ 142.032833][ T785] usb 1-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 142.033243][ T785] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 142.036151][ T785] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 142.070338][ T785] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 142.070751][ T785] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 142.072762][ T785] usb 1-1: Product: syz [ 142.072844][ T785] usb 1-1: Manufacturer: syz [ 142.072900][ T785] usb 1-1: SerialNumber: syz [ 143.482005][ T785] usb 1-1: 0:2 : does not exist [ 143.754827][ T785] usb 1-1: 1:0: cannot get min/max values for control 4 (id 1) [ 143.861088][ T785] usb 1-1: USB disconnect, device number 5 [ 144.041517][ T3558] udevd[3558]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 144.573080][ T30] audit: type=1326 audit(144.400:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3732 comm="syz.0.103" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 144.588066][ T30] audit: type=1326 audit(144.420:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3732 comm="syz.0.103" exe="/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 144.591696][ T30] audit: type=1326 audit(144.420:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3732 comm="syz.0.103" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 144.598682][ T30] audit: type=1326 audit(144.400:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3732 comm="syz.0.103" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 144.600655][ T30] audit: type=1326 audit(144.430:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3732 comm="syz.0.103" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 144.601743][ T30] audit: type=1326 audit(144.420:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3732 comm="syz.0.103" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 144.603534][ T30] audit: type=1326 audit(144.430:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3732 comm="syz.0.103" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 144.604987][ T30] audit: type=1326 audit(144.430:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3732 comm="syz.0.103" exe="/syz-executor" sig=0 arch=c00000b7 syscall=23 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 144.627053][ T30] audit: type=1326 audit(144.450:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3732 comm="syz.0.103" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 144.630140][ T30] audit: type=1326 audit(144.460:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3732 comm="syz.0.103" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 144.854054][ T3735] syzkaller0: entered promiscuous mode [ 144.855664][ T3735] syzkaller0: entered allmulticast mode [ 145.904517][ T3745] syzkaller0: entered promiscuous mode [ 145.904851][ T3745] syzkaller0: entered allmulticast mode [ 149.093993][ T3765] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 149.095531][ T3765] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 149.333444][ T3767] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 149.348947][ T3767] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 149.595842][ T3768] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 149.599559][ T3768] block device autoloading is deprecated and will be removed. [ 149.630113][ T3771] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 149.650389][ T3771] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 152.813531][ T3781] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 152.814356][ T3781] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 152.942957][ T3783] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 152.944412][ T3783] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 153.433053][ T3793] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 153.458384][ T3793] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 153.624687][ T3795] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 153.633685][ T3795] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 154.252222][ T3460] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 154.416708][ T3460] usb 1-1: Using ep0 maxpacket: 32 [ 154.428225][ T3460] usb 1-1: config 0 has an invalid interface number: 184 but max is 0 [ 154.428440][ T3460] usb 1-1: config 0 has no interface number 0 [ 154.431131][ T3460] usb 1-1: config 0 interface 184 has no altsetting 0 [ 154.444695][ T3460] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 154.444989][ T3460] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 154.446905][ T3460] usb 1-1: Product: syz [ 154.446985][ T3460] usb 1-1: Manufacturer: syz [ 154.447041][ T3460] usb 1-1: SerialNumber: syz [ 154.458516][ T3460] usb 1-1: config 0 descriptor?? [ 154.478734][ T3460] smsc75xx v1.0.0 [ 155.100330][ T3460] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32 [ 155.100865][ T3460] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 155.939069][ T3460] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32 [ 155.939586][ T3460] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -32 [ 155.946119][ T3460] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -32 [ 155.947498][ T3460] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -32 [ 155.976203][ T3460] usb 1-1: USB disconnect, device number 6 [ 156.239894][ T3812] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 156.241558][ T3812] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 156.680806][ T3821] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 156.682121][ T3821] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 159.187562][ T3769] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 159.337491][ T3769] usb 1-1: Using ep0 maxpacket: 32 [ 159.368112][ T3769] usb 1-1: config 0 has an invalid interface number: 184 but max is 0 [ 159.368464][ T3769] usb 1-1: config 0 has no interface number 0 [ 159.370180][ T3769] usb 1-1: config 0 interface 184 has no altsetting 0 [ 159.390856][ T3769] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 159.391240][ T3769] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 159.391401][ T3769] usb 1-1: Product: syz [ 159.391550][ T3769] usb 1-1: Manufacturer: syz [ 159.391619][ T3769] usb 1-1: SerialNumber: syz [ 159.405172][ T3769] usb 1-1: config 0 descriptor?? [ 159.432434][ T3769] smsc75xx v1.0.0 [ 159.432995][ T3769] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 159.435814][ T3769] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -22 [ 160.702633][ T3837] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 160.704829][ T3837] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 163.928679][ T3850] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 163.929512][ T3850] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 164.045462][ T3852] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 164.048885][ T3852] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 169.651470][ T784] usb 1-1: USB disconnect, device number 7 [ 170.207474][ T784] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 170.356699][ T784] usb 1-1: Using ep0 maxpacket: 32 [ 170.364824][ T784] usb 1-1: config 0 has an invalid interface number: 184 but max is 0 [ 170.365078][ T784] usb 1-1: config 0 has no interface number 0 [ 170.365256][ T784] usb 1-1: config 0 interface 184 has no altsetting 0 [ 170.383532][ T784] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 170.383741][ T784] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 170.388707][ T784] usb 1-1: Product: syz [ 170.390335][ T784] usb 1-1: Manufacturer: syz [ 170.390558][ T784] usb 1-1: SerialNumber: syz [ 170.407903][ T784] usb 1-1: config 0 descriptor?? [ 170.448828][ T784] smsc75xx v1.0.0 [ 170.992495][ T3870] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 170.997878][ T3870] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 171.120391][ T784] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32 [ 171.120643][ T784] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 171.301306][ T3875] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 171.305350][ T3875] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 171.374865][ T3877] netlink: 8 bytes leftover after parsing attributes in process `syz.1.157'. [ 171.722912][ T3881] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 171.729060][ T3881] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 171.791122][ T784] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000010: -32 [ 171.791596][ T784] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read HW_CFG: -32 [ 171.792352][ T784] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -32 [ 171.792845][ T784] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -32 [ 171.818408][ T784] usb 1-1: USB disconnect, device number 8 [ 172.546999][ T784] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 172.697132][ T784] usb 1-1: Using ep0 maxpacket: 32 [ 172.712452][ T784] usb 1-1: config 0 has an invalid interface number: 184 but max is 0 [ 172.712752][ T784] usb 1-1: config 0 has no interface number 0 [ 172.713130][ T784] usb 1-1: config 0 interface 184 has no altsetting 0 [ 172.735577][ T784] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 172.735845][ T784] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 172.736111][ T784] usb 1-1: Product: syz [ 172.736553][ T784] usb 1-1: Manufacturer: syz [ 172.736615][ T784] usb 1-1: SerialNumber: syz [ 173.693777][ T784] usb 1-1: config 0 descriptor?? [ 173.850404][ T784] smsc75xx v1.0.0 [ 174.292741][ T784] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32 [ 174.293580][ T784] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -32 [ 174.293758][ T784] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind [ 174.294738][ T784] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -32 [ 174.697498][ T784] usb 1-1: USB disconnect, device number 9 [ 175.177329][ T24] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 175.254401][ T3896] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 175.262954][ T3896] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 175.356804][ T24] usb 1-1: Using ep0 maxpacket: 32 [ 175.367216][ T24] usb 1-1: config 0 has an invalid interface number: 184 but max is 0 [ 175.369428][ T24] usb 1-1: config 0 has no interface number 0 [ 175.370347][ T24] usb 1-1: config 0 interface 184 has no altsetting 0 [ 175.386963][ T24] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 175.388071][ T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 175.389817][ T24] usb 1-1: Product: syz [ 175.392259][ T24] usb 1-1: Manufacturer: syz [ 175.393813][ T24] usb 1-1: SerialNumber: syz [ 175.401970][ T24] usb 1-1: config 0 descriptor?? [ 175.407498][ T3898] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 175.408813][ T3898] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 175.420633][ T24] smsc75xx v1.0.0 [ 176.064880][ T24] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32 [ 176.067617][ T24] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 177.368397][ T55] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.371481][ T55] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.373281][ T24] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71 [ 177.373483][ T55] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.373709][ T55] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.377261][ T24] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71 [ 177.378617][ T24] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71 [ 177.389273][ T24] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -71 [ 177.418268][ T24] usb 1-1: USB disconnect, device number 10 [ 177.563398][ T3909] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 177.564692][ T3909] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 177.877259][ T24] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 178.047198][ T24] usb 1-1: Using ep0 maxpacket: 32 [ 178.063164][ T24] usb 1-1: config 0 has an invalid interface number: 184 but max is 0 [ 178.063516][ T24] usb 1-1: config 0 has no interface number 0 [ 178.066619][ T24] usb 1-1: config 0 interface 184 has no altsetting 0 [ 178.081923][ T24] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 178.082289][ T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 178.082584][ T24] usb 1-1: Product: syz [ 178.082687][ T24] usb 1-1: Manufacturer: syz [ 178.082753][ T24] usb 1-1: SerialNumber: syz [ 178.101262][ T24] usb 1-1: config 0 descriptor?? [ 178.132252][ T24] smsc75xx v1.0.0 [ 178.544135][ T24] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32 [ 178.544328][ T24] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -32 [ 178.546006][ T24] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind [ 178.549425][ T24] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -32 [ 178.580970][ T24] usb 1-1: USB disconnect, device number 11 [ 179.307191][ T784] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 179.456988][ T784] usb 1-1: Using ep0 maxpacket: 32 [ 179.472286][ T784] usb 1-1: config 0 has an invalid interface number: 184 but max is 0 [ 179.472605][ T784] usb 1-1: config 0 has no interface number 0 [ 179.472978][ T784] usb 1-1: config 0 interface 184 has no altsetting 0 [ 179.487544][ T784] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 179.487843][ T784] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 179.488109][ T784] usb 1-1: Product: syz [ 179.488184][ T784] usb 1-1: Manufacturer: syz [ 179.488243][ T784] usb 1-1: SerialNumber: syz [ 179.500886][ T784] usb 1-1: config 0 descriptor?? [ 179.520017][ T784] smsc75xx v1.0.0 [ 180.144704][ T784] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32 [ 180.145024][ T784] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 180.234186][ T3923] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 180.237757][ T3923] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 180.423439][ T3927] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 180.428783][ T3927] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 181.232381][ T784] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71 [ 181.232755][ T784] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to write PMT_CTL: -71 [ 181.237120][ T784] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71 [ 181.237914][ T784] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -71 [ 181.288535][ T784] usb 1-1: USB disconnect, device number 12 [ 185.729924][ T3933] syz.0.181 (3933): drop_caches: 2 [ 185.912350][ T3941] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 185.928229][ T3941] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 186.257064][ T10] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 186.406925][ T10] usb 1-1: Using ep0 maxpacket: 32 [ 186.433103][ T10] usb 1-1: config 0 has an invalid interface number: 184 but max is 0 [ 186.434642][ T10] usb 1-1: config 0 has no interface number 0 [ 186.439961][ T10] usb 1-1: config 0 interface 184 has no altsetting 0 [ 186.465749][ T10] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 186.467521][ T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 186.469427][ T10] usb 1-1: Product: syz [ 186.471357][ T10] usb 1-1: Manufacturer: syz [ 186.473898][ T10] usb 1-1: SerialNumber: syz [ 186.491607][ T10] usb 1-1: config 0 descriptor?? [ 186.521132][ T10] smsc75xx v1.0.0 [ 186.938975][ T10] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32 [ 186.941144][ T10] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -32 [ 186.944582][ T10] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind [ 186.949052][ T10] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -32 [ 186.979060][ T10] usb 1-1: USB disconnect, device number 13 [ 187.577270][ T3948] netlink: 20 bytes leftover after parsing attributes in process `syz.1.186'. [ 187.581184][ T3948] netlink: 20 bytes leftover after parsing attributes in process `syz.1.186'. [ 188.751086][ T3948] netlink: 20 bytes leftover after parsing attributes in process `syz.1.186'. [ 188.753385][ T3948] netlink: 20 bytes leftover after parsing attributes in process `syz.1.186'. [ 189.725609][ T3958] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 189.734004][ T3958] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 190.229187][ T3961] syz.0.188 (3961): drop_caches: 2 [ 192.473892][ T3966] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 192.485621][ T3966] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 192.603599][ T3970] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 192.608415][ T3970] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 192.717765][ T3972] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 192.719481][ T3972] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 193.431722][ T3983] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 193.438365][ T3983] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 193.709363][ T3989] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 193.712951][ T3989] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 193.832883][ T3991] netlink: 48 bytes leftover after parsing attributes in process `syz.1.202'. [ 193.930497][ T3993] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 193.933474][ T3993] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 195.527153][ T3383] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 195.687255][ T3383] usb 1-1: Using ep0 maxpacket: 32 [ 195.702502][ T3383] usb 1-1: config 0 has an invalid interface number: 184 but max is 0 [ 195.702885][ T3383] usb 1-1: config 0 has no interface number 0 [ 195.705231][ T3383] usb 1-1: config 0 interface 184 has no altsetting 0 [ 195.722556][ T3383] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 195.722834][ T3383] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 195.724284][ T3383] usb 1-1: Product: syz [ 195.724409][ T3383] usb 1-1: Manufacturer: syz [ 195.724472][ T3383] usb 1-1: SerialNumber: syz [ 195.738693][ T3383] usb 1-1: config 0 descriptor?? [ 195.768762][ T3383] smsc75xx v1.0.0 [ 196.182675][ T3383] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -61 [ 196.182839][ T3383] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -61 [ 196.182927][ T3383] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind [ 196.183366][ T3383] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -61 [ 196.391478][ T784] usb 1-1: USB disconnect, device number 14 [ 196.530398][ T4002] faux_driver vkms: [drm] Unknown color mode 11; guessing buffer size. [ 196.655168][ T4004] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 196.656023][ T4004] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 200.334406][ T4021] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 200.359898][ T4021] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 204.032768][ T4034] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 204.057804][ T4034] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 204.959347][ T3859] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 205.128419][ T3859] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 205.130485][ T3859] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 205.132434][ T3859] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 205.133043][ T3859] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 205.133209][ T3859] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 205.150754][ T3859] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 205.151311][ T3859] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 205.151636][ T3859] usb 1-1: Product: syz [ 205.151841][ T3859] usb 1-1: Manufacturer: syz [ 205.184481][ T3859] cdc_wdm 1-1:1.0: skipping garbage [ 205.184816][ T3859] cdc_wdm 1-1:1.0: skipping garbage [ 205.194552][ T3859] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device [ 206.915284][ T4044] xt_hashlimit: max too large, truncated to 1048576 [ 206.920218][ T4044] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 207.081766][ T4047] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 207.084524][ T4047] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 209.313239][ T3450] usb 1-1: USB disconnect, device number 15 [ 209.891996][ T4064] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 209.893304][ T4064] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 213.006985][ T3859] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 213.222421][ T3859] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 213.227790][ T3859] usb 1-1: New USB device found, idVendor=046d, idProduct=c50c, bcdDevice= 0.00 [ 213.230335][ T3859] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 213.245280][ T3859] usb 1-1: config 0 descriptor?? [ 213.696962][ T3859] hid-generic 0003:046D:C50C.0001: unknown main item tag 0x0 [ 213.698668][ T3859] hid-generic 0003:046D:C50C.0001: unknown main item tag 0x0 [ 213.701309][ T3859] hid-generic 0003:046D:C50C.0001: unknown main item tag 0x0 [ 213.703945][ T3859] hid-generic 0003:046D:C50C.0001: unknown main item tag 0x0 [ 213.706948][ T3859] hid-generic 0003:046D:C50C.0001: unknown main item tag 0x0 [ 213.708425][ T3859] hid-generic 0003:046D:C50C.0001: unknown main item tag 0x0 [ 213.709612][ T3859] hid-generic 0003:046D:C50C.0001: unknown main item tag 0x0 [ 213.721473][ T3859] hid-generic 0003:046D:C50C.0001: hidraw0: USB HID v0.00 Device [HID 046d:c50c] on usb-dummy_hcd.0-1/input0 [ 213.897874][ T3450] usb 1-1: USB disconnect, device number 16 [ 214.180113][ T4087] fido_id[4087]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory [ 225.994167][ T4161] input: syz1 as /devices/virtual/input/input1 [ 226.127096][ T3450] usb 1-1: new full-speed USB device number 17 using dummy_hcd [ 226.339649][ T3450] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64 [ 226.340036][ T3450] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 7 [ 226.343235][ T3450] usb 1-1: New USB device found, idVendor=0eef, idProduct=72c4, bcdDevice= 0.00 [ 226.347674][ T3450] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 226.370249][ T3450] usb 1-1: config 0 descriptor?? [ 226.609234][ T4159] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 226.882419][ T4159] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 226.903026][ T4159] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 226.914179][ T3450] usbhid 1-1:0.0: can't add hid device: -71 [ 226.917452][ T3450] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 226.935139][ T3450] usb 1-1: USB disconnect, device number 17 [ 227.398311][ T3450] usb 1-1: new high-speed USB device number 18 using dummy_hcd [ 227.567047][ T3450] usb 1-1: Using ep0 maxpacket: 32 [ 227.593763][ T3450] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 129, changing to 11 [ 227.598641][ T3450] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 7 [ 227.603553][ T3450] usb 1-1: New USB device found, idVendor=0eef, idProduct=72c4, bcdDevice= 0.00 [ 227.610164][ T3450] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 227.624362][ T3450] usb 1-1: config 0 descriptor?? [ 227.652617][ T3450] hub 1-1:0.0: bad descriptor, ignoring hub [ 227.653987][ T3450] hub 1-1:0.0: probe with driver hub failed with error -5 [ 228.110456][ T3450] hid-generic 0003:0EEF:72C4.0002: hidraw0: USB HID v0.00 Device [HID 0eef:72c4] on usb-dummy_hcd.0-1/input0 [ 228.408948][ T3383] usb 1-1: USB disconnect, device number 18 [ 228.754157][ T4168] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 228.755516][ T4168] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 229.737331][ T3450] usb 1-1: new high-speed USB device number 19 using dummy_hcd [ 230.807199][ T3450] usb 1-1: Using ep0 maxpacket: 32 [ 230.987295][ T3450] usb 1-1: config 0 has an invalid interface number: 184 but max is 0 [ 230.987686][ T3450] usb 1-1: config 0 has no interface number 0 [ 230.988117][ T3450] usb 1-1: config 0 interface 184 has no altsetting 0 [ 231.117925][ T3450] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 231.118694][ T3450] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 231.118978][ T3450] usb 1-1: Product: syz [ 231.119077][ T3450] usb 1-1: Manufacturer: syz [ 231.119144][ T3450] usb 1-1: SerialNumber: syz [ 231.130857][ T3450] usb 1-1: config 0 descriptor?? [ 231.175541][ T3450] smsc75xx v1.0.0 [ 231.175936][ T3450] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 231.177385][ T3450] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -22 [ 241.530282][ T784] usb 1-1: USB disconnect, device number 19 [ 241.752222][ T4208] process 'syz.0.282' launched '/dev/fd/3' with NULL argv: empty string added [ 242.337338][ T3383] usb 1-1: new high-speed USB device number 20 using dummy_hcd [ 242.487126][ T3383] usb 1-1: Using ep0 maxpacket: 32 [ 242.502880][ T3383] usb 1-1: config 0 has an invalid interface number: 51 but max is 0 [ 242.503188][ T3383] usb 1-1: config 0 has no interface number 0 [ 242.528392][ T3383] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 242.528680][ T3383] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 242.530223][ T3383] usb 1-1: Product: syz [ 242.530311][ T3383] usb 1-1: Manufacturer: syz [ 242.532193][ T3383] usb 1-1: SerialNumber: syz [ 242.544828][ T3383] usb 1-1: config 0 descriptor?? [ 242.571302][ T3383] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 242.772008][ T3383] usb 1-1: qt2_attach - failed to power on unit: -71 [ 242.772813][ T3383] quatech2 1-1:0.51: probe with driver quatech2 failed with error -71 [ 242.787310][ T3383] usb 1-1: USB disconnect, device number 20 [ 243.217097][ T3383] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 243.377194][ T3383] usb 1-1: Using ep0 maxpacket: 32 [ 243.390788][ T3383] usb 1-1: config 0 has an invalid interface number: 184 but max is 0 [ 243.390981][ T3383] usb 1-1: config 0 has no interface number 0 [ 243.391116][ T3383] usb 1-1: config 0 interface 184 has no altsetting 0 [ 243.417966][ T3383] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 243.418308][ T3383] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 243.418643][ T3383] usb 1-1: Product: syz [ 243.418708][ T3383] usb 1-1: Manufacturer: syz [ 243.418766][ T3383] usb 1-1: SerialNumber: syz [ 243.439337][ T3383] usb 1-1: config 0 descriptor?? [ 243.459849][ T3383] smsc75xx v1.0.0 [ 243.460203][ T3383] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 243.462534][ T3383] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -22 [ 243.807602][ T4222] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 243.815831][ T4222] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 243.908121][ T4224] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 243.911212][ T4224] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 249.358686][ T4237] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 249.371815][ T4237] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 249.458165][ T4239] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 249.468702][ T4239] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 252.138418][ T4245] netlink: 12 bytes leftover after parsing attributes in process `syz.1.296'. [ 252.139197][ T4245] netlink: 12 bytes leftover after parsing attributes in process `syz.1.296'. [ 252.395228][ T4251] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 252.399951][ T4251] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 253.690688][ T10] usb 1-1: USB disconnect, device number 21 [ 256.923795][ T4262] binder: 4261:4262 IncRefs 0 refcount change on invalid ref 1 ret -22 [ 257.437589][ T3383] usb 1-1: new high-speed USB device number 22 using dummy_hcd [ 257.587075][ T3383] usb 1-1: Using ep0 maxpacket: 32 [ 257.604994][ T3383] usb 1-1: config 0 has an invalid interface number: 184 but max is 0 [ 257.605259][ T3383] usb 1-1: config 0 has no interface number 0 [ 257.609961][ T3383] usb 1-1: config 0 interface 184 has no altsetting 0 [ 257.638721][ T3383] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 257.638989][ T3383] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 257.639245][ T3383] usb 1-1: Product: syz [ 257.639357][ T3383] usb 1-1: Manufacturer: syz [ 257.639417][ T3383] usb 1-1: SerialNumber: syz [ 257.652473][ T3383] usb 1-1: config 0 descriptor?? [ 257.700115][ T3383] smsc75xx v1.0.0 [ 257.700393][ T3383] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 257.704687][ T3383] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -22 [ 262.799959][ T4276] capability: warning: `syz.1.308' uses 32-bit capabilities (legacy support in use) [ 263.107871][ T4280] pimreg: tun_chr_ioctl cmd 2147767520 [ 263.271164][ T4282] binder: Bad value for 'max' [ 267.928379][ T3450] usb 1-1: USB disconnect, device number 22 [ 268.203494][ T4298] rdma_op 00000000c14f28cb conn xmit_rdma 0000000000000000 [ 268.537022][ T3450] usb 1-1: new high-speed USB device number 23 using dummy_hcd [ 268.687129][ T3450] usb 1-1: Using ep0 maxpacket: 32 [ 268.712196][ T3450] usb 1-1: config 0 has an invalid interface number: 51 but max is 0 [ 268.712511][ T3450] usb 1-1: config 0 has no interface number 0 [ 268.729660][ T3450] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 268.730031][ T3450] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 268.731670][ T3450] usb 1-1: Product: syz [ 268.731759][ T3450] usb 1-1: Manufacturer: syz [ 268.731817][ T3450] usb 1-1: SerialNumber: syz [ 268.743986][ T3450] usb 1-1: config 0 descriptor?? [ 268.762462][ T3450] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 269.168176][ T3450] usb 1-1: qt2_attach - failed to power on unit: -71 [ 269.168777][ T3450] quatech2 1-1:0.51: probe with driver quatech2 failed with error -71 [ 269.179297][ T3450] usb 1-1: USB disconnect, device number 23 [ 269.317615][ T4305] syz.0.317 uses obsolete (PF_INET,SOCK_PACKET) [ 269.480673][ T4309] ªªªªªª: renamed from vlan0 [ 269.619454][ T4315] netlink: 24 bytes leftover after parsing attributes in process `syz.1.321'. [ 269.740780][ T4317] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 269.742355][ T4317] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 272.178474][ T30] kauditd_printk_skb: 7 callbacks suppressed [ 272.182092][ T30] audit: type=1326 audit(272.010:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4325 comm="syz.0.326" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 272.185455][ T30] audit: type=1326 audit(272.010:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4325 comm="syz.0.326" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 272.190741][ T30] audit: type=1326 audit(272.010:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4325 comm="syz.0.326" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 272.195493][ T30] audit: type=1326 audit(272.020:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4325 comm="syz.0.326" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 272.200075][ T30] audit: type=1326 audit(272.020:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4325 comm="syz.0.326" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 272.203882][ T30] audit: type=1326 audit(272.020:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4325 comm="syz.0.326" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 272.210148][ T30] audit: type=1326 audit(272.020:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4325 comm="syz.0.326" exe="/syz-executor" sig=0 arch=c00000b7 syscall=164 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 272.213568][ T30] audit: type=1326 audit(272.020:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4325 comm="syz.0.326" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 272.557114][ T10] usb 1-1: new high-speed USB device number 24 using dummy_hcd [ 272.737890][ T10] usb 1-1: Using ep0 maxpacket: 32 [ 272.749230][ T10] usb 1-1: config 0 has an invalid interface number: 51 but max is 0 [ 272.749566][ T10] usb 1-1: config 0 has no interface number 0 [ 272.765496][ T10] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 272.765955][ T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 272.766090][ T10] usb 1-1: Product: syz [ 272.766692][ T10] usb 1-1: Manufacturer: syz [ 272.766759][ T10] usb 1-1: SerialNumber: syz [ 272.798824][ T10] usb 1-1: config 0 descriptor?? [ 272.873466][ T10] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 273.291718][ T4346] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 273.294935][ T10] usb 1-1: qt2_attach - failed to power on unit: -71 [ 273.295880][ T10] quatech2 1-1:0.51: probe with driver quatech2 failed with error -71 [ 273.301350][ T4346] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 273.333062][ T10] usb 1-1: USB disconnect, device number 24 [ 273.751153][ T4358] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 273.758301][ T4358] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 274.139941][ T10] usb 1-1: new high-speed USB device number 25 using dummy_hcd [ 274.270112][ T4371] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 274.273404][ T4371] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 274.315585][ T10] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 274.315902][ T10] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 274.318888][ T10] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 274.319129][ T10] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 274.319575][ T10] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 274.362746][ T10] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 274.362949][ T10] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 274.364783][ T10] usb 1-1: Product: syz [ 274.364838][ T10] usb 1-1: Manufacturer: syz [ 274.380594][ T10] cdc_wdm 1-1:1.0: skipping garbage [ 274.380776][ T10] cdc_wdm 1-1:1.0: skipping garbage [ 274.391250][ T10] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device [ 274.411292][ T4373] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 274.419600][ T4373] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 277.541758][ T4382] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 277.558401][ T4382] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 277.649682][ T4384] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 277.651959][ T4384] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 277.771763][ T30] audit: type=1326 audit(277.600:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4385 comm="syz.1.353" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 277.774913][ T30] audit: type=1326 audit(277.600:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4385 comm="syz.1.353" exe="/syz-executor" sig=0 arch=c00000b7 syscall=24 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 277.779767][ T30] audit: type=1326 audit(277.600:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4385 comm="syz.1.353" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 277.786022][ T30] audit: type=1326 audit(277.610:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4385 comm="syz.1.353" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 277.865758][ T4388] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 277.869520][ T4388] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 278.311017][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 278.311185][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 278.311866][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 278.311916][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 278.312352][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 278.312407][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 278.314052][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 278.314095][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 278.314479][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 278.314523][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 278.314860][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 278.314925][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 278.315385][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 278.315440][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 278.316124][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 278.316268][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 278.317514][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 278.317556][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 278.326034][ C0] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 278.326098][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 278.349807][ C0] cdc_wdm 1-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19 [ 278.350118][ T10] usb 1-1: USB disconnect, device number 25 [ 278.530759][ T4394] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 278.531909][ T4394] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 278.643629][ T4397] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 278.652918][ T4397] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 279.739614][ T30] audit: type=1326 audit(279.570:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4392 comm="syz.0.356" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 279.743149][ T30] audit: type=1326 audit(279.570:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4392 comm="syz.0.356" exe="/syz-executor" sig=0 arch=c00000b7 syscall=459 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 279.758381][ T30] audit: type=1326 audit(279.570:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4392 comm="syz.0.356" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 279.762379][ T30] audit: type=1326 audit(279.580:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4392 comm="syz.0.356" exe="/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffa495a7d4 code=0x7ffc0000 [ 279.763309][ T30] audit: type=1326 audit(279.580:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4392 comm="syz.0.356" exe="/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffa495a7d4 code=0x7ffc0000 [ 279.763625][ T30] audit: type=1326 audit(279.580:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4392 comm="syz.0.356" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 281.098555][ T3450] usb 1-1: new high-speed USB device number 26 using dummy_hcd [ 281.267035][ T3450] usb 1-1: Using ep0 maxpacket: 32 [ 281.318012][ T3450] usb 1-1: config 0 has an invalid interface number: 184 but max is 0 [ 281.318308][ T3450] usb 1-1: config 0 has no interface number 0 [ 281.318752][ T3450] usb 1-1: config 0 interface 184 has no altsetting 0 [ 281.444597][ T3450] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 281.444782][ T3450] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 281.445753][ T3450] usb 1-1: Product: syz [ 281.445988][ T3450] usb 1-1: Manufacturer: syz [ 281.446054][ T3450] usb 1-1: SerialNumber: syz [ 281.461960][ T3450] usb 1-1: config 0 descriptor?? [ 281.502677][ T3450] smsc75xx v1.0.0 [ 281.936790][ T3450] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -32 [ 281.937201][ T3450] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -32 [ 281.940111][ T3450] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind [ 281.940875][ T3450] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -32 [ 282.666018][ T4446] netlink: 14 bytes leftover after parsing attributes in process `syz.1.379'. [ 282.923704][ T4450] syz.1.381 (4450): /proc/4449/oom_adj is deprecated, please use /proc/4449/oom_score_adj instead. [ 282.999136][ T4452] netlink: 'syz.1.382': attribute type 13 has an invalid length. [ 283.045250][ T4452] gretap0: refused to change device tx_queue_len [ 283.048780][ T4452] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 283.337121][ T30] kauditd_printk_skb: 18 callbacks suppressed [ 283.339746][ T30] audit: type=1326 audit(283.150:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4457 comm="syz.1.385" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 283.343222][ T30] audit: type=1326 audit(283.150:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4457 comm="syz.1.385" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 283.348176][ T30] audit: type=1326 audit(283.170:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4457 comm="syz.1.385" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 283.351813][ T30] audit: type=1326 audit(283.170:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4457 comm="syz.1.385" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 283.355370][ T30] audit: type=1326 audit(283.180:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4457 comm="syz.1.385" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 283.358853][ T30] audit: type=1326 audit(283.180:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4457 comm="syz.1.385" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 283.362164][ T30] audit: type=1326 audit(283.180:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4457 comm="syz.1.385" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 283.365321][ T30] audit: type=1326 audit(283.180:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4457 comm="syz.1.385" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 283.368642][ T4458] syz.1.385 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 283.371209][ T30] audit: type=1326 audit(283.180:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4457 comm="syz.1.385" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 283.374454][ T30] audit: type=1326 audit(283.180:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4457 comm="syz.1.385" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 284.853955][ T4488] netlink: 'syz.1.397': attribute type 10 has an invalid length. [ 284.854311][ T4488] macvtap0: entered allmulticast mode [ 288.616819][ T30] kauditd_printk_skb: 12 callbacks suppressed [ 288.636870][ T30] audit: type=1326 audit(288.440:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4518 comm="syz.1.409" exe="/syz-executor" sig=0 arch=c00000b7 syscall=93 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 288.647270][ T30] audit: type=1326 audit(288.450:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4516 comm="syz.1.409" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 288.650213][ T30] audit: type=1326 audit(288.450:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4516 comm="syz.1.409" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 289.229100][ T30] audit: type=1326 audit(289.060:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4528 comm="syz.1.414" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 289.233633][ T30] audit: type=1326 audit(289.060:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4528 comm="syz.1.414" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 289.238321][ T30] audit: type=1326 audit(289.070:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4528 comm="syz.1.414" exe="/syz-executor" sig=0 arch=c00000b7 syscall=99 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 289.243475][ T30] audit: type=1326 audit(289.070:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4528 comm="syz.1.414" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 289.810629][ T30] audit: type=1326 audit(289.640:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4542 comm="syz.1.421" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 289.814397][ T30] audit: type=1326 audit(289.640:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4542 comm="syz.1.421" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 289.820416][ T30] audit: type=1326 audit(289.650:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4542 comm="syz.1.421" exe="/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 291.036051][ T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 291.038847][ T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 291.038974][ T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 291.039094][ T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 291.039177][ T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 291.039273][ T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 291.039413][ T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 291.039499][ T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 291.040050][ T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 291.040136][ T10] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 291.049967][ T10] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [sy] on syz0 [ 291.303188][ T4566] fido_id[4566]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 291.965951][ T3383] usb 1-1: USB disconnect, device number 26 [ 297.011212][ T4597] macsec0: entered promiscuous mode [ 297.011930][ T4597] macsec0: entered allmulticast mode [ 297.012020][ T4597] veth1_macvtap: entered allmulticast mode [ 297.624213][ T4613] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 297.625686][ T4613] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 297.710826][ T4615] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 297.770871][ T4617] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 297.781484][ T4617] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 298.078432][ T30] kauditd_printk_skb: 69 callbacks suppressed [ 298.080589][ T30] audit: type=1107 audit(297.910:156): pid=4626 uid=0 auid=4294967295 ses=4294967295 subj=_ msg='' [ 299.664949][ T30] audit: type=1326 audit(299.490:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4655 comm="syz.0.467" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 299.679955][ T30] audit: type=1326 audit(299.490:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4655 comm="syz.0.467" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 299.683029][ T30] audit: type=1326 audit(299.500:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4655 comm="syz.0.467" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 299.683750][ T30] audit: type=1326 audit(299.500:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4655 comm="syz.0.467" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 299.683969][ T30] audit: type=1326 audit(299.500:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4655 comm="syz.0.467" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 299.684175][ T30] audit: type=1326 audit(299.500:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4655 comm="syz.0.467" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 299.684369][ T30] audit: type=1326 audit(299.500:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4655 comm="syz.0.467" exe="/syz-executor" sig=0 arch=c00000b7 syscall=447 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 299.684595][ T30] audit: type=1326 audit(299.500:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4655 comm="syz.0.467" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495c3e8 code=0x7ffc0000 [ 299.715117][ T30] audit: type=1326 audit(299.540:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4657 comm="syz.1.468" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 299.952286][ T4664] serio: Serial port ptm0 [ 300.722804][ T4670] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 300.726087][ T4670] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 301.457638][ T4664] serio: Serial port ptm0 [ 302.047142][ T10] usb 1-1: new high-speed USB device number 27 using dummy_hcd [ 302.226828][ T10] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 302.229236][ T10] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 302.231705][ T10] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 302.237362][ T10] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 302.239070][ T10] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 302.261183][ T10] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 302.261514][ T10] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 302.261891][ T10] usb 1-1: Product: syz [ 302.261956][ T10] usb 1-1: Manufacturer: syz [ 302.300594][ T10] cdc_wdm 1-1:1.0: skipping garbage [ 302.300943][ T10] cdc_wdm 1-1:1.0: skipping garbage [ 302.316153][ T10] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device [ 305.897580][ T30] kauditd_printk_skb: 5 callbacks suppressed [ 305.897906][ T30] audit: type=1326 audit(305.730:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4721 comm="syz.1.492" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 305.901388][ T30] audit: type=1326 audit(305.730:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4721 comm="syz.1.492" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 305.905477][ T30] audit: type=1326 audit(305.730:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4721 comm="syz.1.492" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 305.908845][ T30] audit: type=1326 audit(305.740:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4721 comm="syz.1.492" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 305.912120][ T30] audit: type=1326 audit(305.740:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4721 comm="syz.1.492" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 305.915582][ T30] audit: type=1326 audit(305.740:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4721 comm="syz.1.492" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 305.920215][ T30] audit: type=1326 audit(305.750:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4721 comm="syz.1.492" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 305.922335][ T30] audit: type=1326 audit(305.750:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4721 comm="syz.1.492" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 305.923172][ T30] audit: type=1326 audit(305.750:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4721 comm="syz.1.492" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 305.925625][ T30] audit: type=1326 audit(305.750:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4721 comm="syz.1.492" exe="/syz-executor" sig=0 arch=c00000b7 syscall=155 compat=0 ip=0xffffb215c3e8 code=0x7ffc0000 [ 306.017045][ T4724] netlink: 16 bytes leftover after parsing attributes in process `syz.1.493'. [ 306.290469][ T4730] ================================================================== [ 306.294037][ T4730] BUG: KASAN: invalid-access in __memcpy+0xc/0x54 [ 306.296389][ T4730] Write at addr f9ff80008690f2a0 by task syz.1.495/4730 [ 306.297038][ T4730] Pointer tag: [f9], memory tag: [fe] [ 306.297126][ T4730] [ 306.298010][ T4730] CPU: 1 UID: 0 PID: 4730 Comm: syz.1.495 Not tainted syzkaller #0 PREEMPT [ 306.298348][ T4730] Hardware name: linux,dummy-virt (DT) [ 306.298636][ T4730] Call trace: [ 306.298948][ T4730] show_stack+0x18/0x24 (C) [ 306.299299][ T4730] dump_stack_lvl+0x78/0x90 [ 306.299415][ T4730] print_report+0x108/0x61c [ 306.299474][ T4730] kasan_report+0x88/0xac [ 306.299525][ T4730] __do_kernel_fault+0x170/0x1c8 [ 306.299580][ T4730] do_bad_area+0x68/0x78 [ 306.299631][ T4730] do_tag_check_fault+0x34/0x44 [ 306.299719][ T4730] do_mem_abort+0x44/0x94 [ 306.299765][ T4730] el1_abort+0x44/0x68 [ 306.299810][ T4730] el1h_64_sync_handler+0x50/0xac [ 306.299855][ T4730] el1h_64_sync+0x6c/0x70 [ 306.299998][ T4730] __memcpy+0xc/0x54 (P) [ 306.300053][ T4730] do_misc_fixups+0x174/0x1afc [ 306.300106][ T4730] bpf_check+0x1384/0x293c [ 306.300184][ T4730] bpf_prog_load+0x63c/0xd40 [ 306.300235][ T4730] __sys_bpf+0x2e0/0x1a88 [ 306.300278][ T4730] __arm64_sys_bpf+0x24/0x34 [ 306.300322][ T4730] invoke_syscall+0x48/0x110 [ 306.300373][ T4730] el0_svc_common.constprop.0+0x40/0xe0 [ 306.300425][ T4730] do_el0_svc+0x1c/0x28 [ 306.300474][ T4730] el0_svc+0x34/0x128 [ 306.300521][ T4730] el0t_64_sync_handler+0xa0/0xe4 [ 306.300568][ T4730] el0t_64_sync+0x1a4/0x1a8 [ 306.300941][ T4730] [ 306.301319][ T4730] The buggy address belongs to a vmalloc virtual mapping [ 306.302905][ T4730] The buggy address belongs to the physical page: [ 306.303305][ T4730] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xf5f000000d3e77e0 pfn:0x4d3e7 [ 306.303927][ T4730] flags: 0x1ffd80000000000(node=0|zone=0|lastcpupid=0x7ff|kasantag=0x6) [ 306.304841][ T4730] raw: 01ffd80000000000 0000000000000000 dead000000000122 0000000000000000 [ 306.304897][ T4730] raw: f5f000000d3e77e0 0000000000000000 00000001ffffffff 0000000000000000 [ 306.305012][ T4730] page dumped because: kasan: bad access detected [ 306.305055][ T4730] [ 306.305087][ T4730] Memory state around the buggy address: [ 306.305356][ T4730] ffff80008690f000: f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 [ 306.305446][ T4730] ffff80008690f100: f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 fe fe [ 306.305498][ T4730] >ffff80008690f200: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 306.305552][ T4730] ^ [ 306.305790][ T4730] ffff80008690f300: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 306.305819][ T4730] ffff80008690f400: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 306.305925][ T4730] ================================================================== [ 306.307689][ T4730] Disabling lock debugging due to kernel taint SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 306.828287][ T10] usb 1-1: USB disconnect, device number 27 [ 307.541285][ T2700] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 307.595595][ T2700] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 307.641205][ T2700] bond0 (unregistering): Released all slaves [ 307.751013][ T2700] hsr_slave_0: left promiscuous mode [ 307.754342][ T2700] hsr_slave_1: left promiscuous mode [ 307.763796][ T2700] veth1_macvtap: left allmulticast mode [ 308.491069][ T2700] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 308.491446][ T2700] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 308.597316][ T2700] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 308.597672][ T2700] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 308.660416][ T2700] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 308.660714][ T2700] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 308.742306][ T2700] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 308.742701][ T2700] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 309.515915][ T2700] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 309.558389][ T2700] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 309.604357][ T2700] bond0 (unregistering): Released all slaves [ 309.723428][ T2700] hsr_slave_0: left promiscuous mode [ 309.726599][ T2700] hsr_slave_1: left promiscuous mode [ 309.748693][ T2700] veth1_macvtap: left promiscuous mode [ 309.749633][ T2700] veth0_macvtap: left promiscuous mode [ 309.751339][ T2700] veth1_vlan: left promiscuous mode [ 309.753703][ T2700] veth0_vlan: left promiscuous mode VM DIAGNOSIS: 05:45:56 Registers: info registers vcpu 0 CPU#0 PC=ffff800081b8a7fc X00=ffff800081b8a7f8 X01=ffff800081463dc0 X02=0000000000000000 X03=7fffffffffffffff X04=0000000000000041 X05=00000047488edc00 X06=0000004747f64580 X07=7fffffffffffffff X08=0000004747f64580 X09=ffff800082a045f0 X10=0000000000000136 X11=0000000000000001 X12=0000000000000004 X13=0000000000000001 X14=0000000000000136 X15=ffff8000831eba00 X16=ffff800082de8000 X17=fff07ffffcef4000 X18=00000000ffffffff X19=ffff800082d18cc0 X20=000000473f057400 X21=000000000000ed9a X22=0000004747f85aa9 X23=0000000000000003 X24=7fffffffffffffff X25=fff000007f8d0b0c X26=fff000007f8d0c30 X27=fff000007f8d0bf0 X28=fff000007f8d0bb0 X29=ffff800082deb400 X30=ffff800081463dd8 SP=ffff800082deb400 PSTATE=604020c9 -ZC- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:2525252525252525:2525252525252525 Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:6572207265767265:730073250a0d0a0d Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:5f6e6173616b2020:5d3033373454205b Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00ff00ff00000000 Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:000000000f0f0000 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:4e203539342e312e:7a7973203a6d6d6f Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:207265766f746665:6c20736574796220 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:746120676e697372:6170207265746661 Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffffd3305910:0000ffffd3305910 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd8:0000ffffd33058e0 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 info registers vcpu 1 CPU#1 PC=ffff800080149a64 X00=f0f0000003049c00 X01=ffff800080149a64 X02=0000000000000000 X03=ffff8000862cb7e0 X04=ffff8000862cb781 X05=ffff800080010000 X06=0000000000000000 X07=0000000000000000 X08=f4f000000b660000 X09=00000000000000c0 X10=0000000000000000 X11=0000000000006730 X12=000000000000000f X13=ffffffffffff8000 X14=0000000000000009 X15=000000000000f0ff X16=ffff800082df0000 X17=fff07ffffcf0d000 X18=ffff8000862cb9e8 X19=000000000000001a X20=f4f000000b660000 X21=ffff800082a03b18 X22=ffff800082e2000c X23=ffff800082e20000 X24=ffff8000829e0f00 X25=ffff800082b19000 X26=f9ff80008690f000 X27=ffff80008690f000 X28=f4f000000b660000 X29=ffff800082df3fa0 X30=ffff800080142bdc SP=ffff800082df3fa0 PSTATE=004028c9 ---- EL2h SVCR=00000000 -- BTYPE=2 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00524f5252450040:0000000000000000 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00524f5252450040:0000000000000000 Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:6edc4d3a2914b135:d8e9c869e2695c88 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:b20fae707afde253:388e9c6c4fa85ca0 Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000fffffd16e620:0000fffffd16e620 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd0:0000fffffd16e5f0 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000