last executing test programs: 37.053079485s ago: executing program 0 (id=10175): r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0) write$rfkill(r0, &(0x7f0000000080)={0x5, 0x1, 0x3, 0x3, 0xfd}, 0x8) write$rfkill(r0, &(0x7f0000000000)={0x0, 0x8, 0x2, 0x1}, 0x8) 37.052542547s ago: executing program 0 (id=10177): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006) 36.882045346s ago: executing program 0 (id=10184): capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000001a40)=[@in={0x2, 0x80, @dev={0xac, 0x14, 0x14, 0x12}}], 0x10) 36.781276924s ago: executing program 0 (id=10185): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0) umount2(&(0x7f0000000100)='./file0\x00', 0x8) 36.721543644s ago: executing program 0 (id=10188): openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x60042, 0x1) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) renameat2(r0, &(0x7f0000000180)='./file0\x00', r0, &(0x7f0000000240)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4) 36.171481177s ago: executing program 0 (id=10202): r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="18000000", @ANYRES16=r0, @ANYBLOB="05f300000000000000002000000004000380"], 0x18}}, 0x0) 36.07351853s ago: executing program 32 (id=10202): r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="18000000", @ANYRES16=r0, @ANYBLOB="05f300000000000000002000000004000380"], 0x18}}, 0x0) 1.635464587s ago: executing program 3 (id=11012): r0 = syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x0) ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000000)=0x11) ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000080)=0xd0) 1.58442934s ago: executing program 3 (id=11013): r0 = fsopen(&(0x7f0000000280)='pvfs2\x00', 0x1) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) 770.682154ms ago: executing program 4 (id=11029): socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_open_dev$video4linux(&(0x7f00000042c0), 0x6, 0x242) poll(&(0x7f0000004300)=[{r0, 0x200}], 0x1, 0x7) 707.832202ms ago: executing program 4 (id=11031): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000080), 0x10) sendmsg$can_bcm(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001000)=ANY=[@ANYBLOB="0500000000e0fffffffffeff", @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES16, @ANYBLOB="0000008001", @ANYBLOB="152532ada9b261533dbc8c"], 0x48}, 0x1, 0x0, 0x0, 0x40084}, 0x40000) 651.102123ms ago: executing program 3 (id=11034): r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x8502, 0x0) mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x0) write$sndseq(r0, &(0x7f0000000100)=[{0x12, 0x4, 0x7, 0xd, @time={0x9, 0x62}, {0x68, 0xb}, {0x9, 0xff}, @queue={0x2, {0x0, 0x3ff}}}, {0xa0, 0xa, 0x2, 0x8, @tick=0x3, {0xa2, 0x76}, {0x3, 0xbd}, @queue={0x1, {0x101, 0xfff}}}, {0xc, 0x6, 0x5, 0x2, @tick=0x3, {0x10, 0x2}, {0x5, 0x1}, @ext={0x0, 0x0}}, {0x18, 0xc, 0x6, 0x9, @tick=0xa656, {0xb, 0xb}, {0x9, 0x1}, @control={0x0, 0x40, 0xd3}}], 0x70) 587.35026ms ago: executing program 3 (id=11036): mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r0 = socket$netlink(0x10, 0x3, 0xf) setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0x5, &(0x7f0000000040)=0x200, 0x4) 587.147598ms ago: executing program 4 (id=11037): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@ipv6_newroute={0x44, 0x18, 0x1, 0x70bd2c, 0x25dfdbfc, {0xa, 0x80, 0x0, 0x0, 0xff, 0x0, 0xff, 0x0, 0x400}, [@RTA_OIF={0x8, 0x4, r1}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x3}, @RTA_ENCAP={0x18, 0x16, 0x0, 0x1, @SEG6_IPTUNNEL_SRH={0x14, 0x1, {{0x1, {0x5c, 0x0, 0x4, 0x0, 0x87, 0x58, 0x7}}}}}]}, 0x44}}, 0x0) 498.529132ms ago: executing program 3 (id=11038): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0xd4) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x8017, &(0x7f0000000400)=ANY=[@ANYBLOB="fc198b4afdb2fa847472616e733d76697274696f2c63616368653d726561646168656164"]) openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) 495.870642ms ago: executing program 4 (id=11039): r0 = openat$panthor(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000) ioctl$DRM_IOCTL_PANTHOR_VM_CREATE(r0, 0xc0106441, &(0x7f0000000080)={0x0, 0x0, 0xfffffffffffffff9}) 495.624864ms ago: executing program 2 (id=11040): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000004340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)={0x24, r1, 0x331, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0xd}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x24}}, 0x0) 407.731125ms ago: executing program 1 (id=11041): r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) r1 = fcntl$dupfd(r0, 0x0, r0) write$P9_RGETLOCK(r1, &(0x7f0000000100)={0x28, 0x37, 0x1, {0x1, 0x8a, 0x6d4, 0x0, 0xa, 'syzkaller\x00'}}, 0x28) 407.422986ms ago: executing program 4 (id=11042): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="08000000040000000400000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0x14, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000025000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000005c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000300)="0000ffffffffa000f2710263d2ac", 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 396.105138ms ago: executing program 2 (id=11043): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_GET_LINKS(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r1, 0x1, 0x0, 0x0, {{}, {}, {0x8}}}, 0x24}}, 0x0) 367.05409ms ago: executing program 3 (id=11044): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42642) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00'}) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000040)={0x217, @time={0x65757100, 0x8}, 0x4, {0x0, 0x4}, 0x67, 0x2}) 297.56571ms ago: executing program 1 (id=11045): capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) r0 = socket$kcm(0x2d, 0x2, 0x0) sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000000c0)={&(0x7f0000000280)={0x2d, 0x0, 0x1f, 0x80000}, 0xc, &(0x7f0000000080)={0x0}}, 0x41) 295.147408ms ago: executing program 2 (id=11046): capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff, 0x6}) r0 = syz_open_dev$loop(&(0x7f00000000c0), 0x5, 0x141200) ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, 0x0) 233.83423ms ago: executing program 1 (id=11047): setfsgid(0xee00) r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc4}, &(0x7f0000000100)={0x0, "de442bfc7910e10ac69ac014b0fa7807b11d2c99ed1f40d47a6edb3367b5cc888e1fd5102ae2d3d05f251f8d49025ceab4152b6e6d87cd6088e97a9d06d29143"}, 0x48, 0xffffffffffffffff) keyctl$chown(0x4, r0, 0x0, 0x0) 233.457959ms ago: executing program 4 (id=11048): r0 = syz_open_dev$usbfs(&(0x7f0000000200), 0x200, 0xa401) ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000000000)={0x0, 0x0, "ec9fe44d4dbe56a60274fcffffffffffffff14e315eeb406bfdd73835e57efa94b1a0275781c647aa7e3470c6028643b17832b10b386a6f73791011c26a9aa141f406e312295ee620a9a46577b9249b738fe7750bec83bf6ed5b67213fa7d6c0823fd154ed29ede1ff379742c3f0b46caa357d70ee438f901d7645c3f87e4b21482b76f2ad8eaac090272081f98fd2e3e5a63e006204df635e731a5bfcf142f4529517454618de595cd179445b4bdbf698b9986356f0ebf7d25a57774ef474f86a3ad24ae9f0bf94b99e6b87de5f79d383d05bb32701daed400785a49788f08caecc9e0c48a3740bbe6e1c1fd400cfdfe756bc00d08e36655c00"}) ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000400)=@urb_type_interrupt={0x1, {0x1, 0x1}, 0x0, 0x60, &(0x7f0000000300)='M', 0x1, 0xc, 0x0, 0x0, 0x5, 0x5f8480, 0x0}) 229.280695ms ago: executing program 2 (id=11049): r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0) fcntl$setlease(r0, 0x400, 0x1) rename(&(0x7f0000000000)='./file1\x00', &(0x7f0000000080)='./file2\x00') 128.502664ms ago: executing program 1 (id=11050): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x6, 0xb}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000380)={r1}, 0xc) 125.63662ms ago: executing program 2 (id=11051): r0 = syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0) tkill(r0, 0x13) tkill(r0, 0x12) 62.55394ms ago: executing program 1 (id=11052): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040)={0xffffffffffffffff}, 0x106, 0x8}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000240)={0x13, 0x10, 0xfa00, {&(0x7f0000000c00), r1, 0x2}}, 0x18) 369.917µs ago: executing program 1 (id=11053): ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0), 0x0, 0x0}) r0 = syz_open_dev$dvb_frontend(&(0x7f0000000000), 0x0, 0x40002) ioctl$FE_SET_PROPERTY(r0, 0x40106f52, &(0x7f00000001c0)={0x1e, 0x0}) 0s ago: executing program 2 (id=11054): socketpair$tipc(0x1e, 0x4, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="fb6bba8839fe8bc048c0cdafd1f8a9918bc4055eaaeb6db4ee9bcb25b1811dbf40b3a7da5a8a64db04ed6dd26eea2e37229c339b1f91201c2796173864", 0x3d}], 0x1}, 0x0) recvmsg(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/60, 0x3c}], 0x1, 0x0, 0xffd5}, 0x400061de) kernel console output (not intermixed with test programs): s no interface number 0 [ 185.212570][ T39] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 185.219604][ T39] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 185.223400][ T39] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 185.227017][ T39] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 185.231849][ T39] usb 5-1: config 0 descriptor?? [ 185.234054][T21756] netlink: 'syz.2.7603': attribute type 16 has an invalid length. [ 185.237247][T21756] netlink: 64138 bytes leftover after parsing attributes in process `syz.2.7603'. [ 185.242429][ T39] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 185.360328][ T2297] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 185.382386][T21770] netlink: 'syz.1.7617': attribute type 13 has an invalid length. [ 185.385201][T21770] netlink: 'syz.1.7617': attribute type 17 has an invalid length. [ 185.439270][T21712] iowarrior 5-1:0.1: Error -90 while submitting URB [ 185.445797][ T39] usb 5-1: USB disconnect, device number 5 [ 185.549539][ T2297] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 185.553224][ T2297] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 185.556600][ T2297] usb 8-1: Product: syz [ 185.558543][ T2297] usb 8-1: Manufacturer: syz [ 185.561203][ T2297] usb 8-1: SerialNumber: syz [ 185.573044][ T2297] usb 8-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 185.592651][ T6182] usb 8-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 185.643046][T21782] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7611'. [ 185.645839][T21770] bridge0: left allmulticast mode [ 185.779783][T21770] net_ratelimit: 2 callbacks suppressed [ 185.779791][T21770] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 185.803309][ T54] usb 8-1: USB disconnect, device number 3 [ 186.388769][T21857] netlink: 'syz.0.7650': attribute type 3 has an invalid length. [ 186.391719][T21857] netlink: 'syz.0.7650': attribute type 1 has an invalid length. [ 186.394597][T21857] netlink: 228 bytes leftover after parsing attributes in process `syz.0.7650'. [ 186.498838][T21875] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7659'. [ 186.502043][T21875] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7659'. [ 186.562352][T21882] netlink: 'syz.1.7662': attribute type 3 has an invalid length. [ 186.565098][T21882] netlink: 'syz.1.7662': attribute type 1 has an invalid length. [ 186.629830][ T6182] ath9k_htc 8-1:1.0: ath9k_htc: Target is unresponsive [ 186.632173][ T6182] ath9k_htc: Failed to initialize the device [ 186.634768][ T54] usb 8-1: ath9k_htc: USB layer deinitialized [ 186.660525][T21893] netlink: 'syz.2.7668': attribute type 1 has an invalid length. [ 186.702365][T21887] sr 2:0:0:0: [sr0] CDROM not ready. Make sure there is a disc in the drive. [ 187.100030][T21915] netlink: 'syz.3.7676': attribute type 3 has an invalid length. [ 187.102531][T21915] netlink: 'syz.3.7676': attribute type 1 has an invalid length. [ 187.263522][ T40] audit: type=1326 audit(2000000032.869:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21945 comm="syz.2.7694" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 187.279863][ T40] audit: type=1326 audit(2000000032.869:1132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21945 comm="syz.2.7694" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 187.288927][ T40] audit: type=1326 audit(2000000032.879:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21945 comm="syz.2.7694" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 187.306292][ T40] audit: type=1326 audit(2000000032.879:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21945 comm="syz.2.7694" exe="/syz-executor" sig=0 arch=40000003 syscall=401 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 187.314400][ T40] audit: type=1326 audit(2000000032.879:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21945 comm="syz.2.7694" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 187.322281][ T40] audit: type=1326 audit(2000000032.879:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21945 comm="syz.2.7694" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 187.329667][ T40] audit: type=1326 audit(2000000032.879:1137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21945 comm="syz.2.7694" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 187.337895][ T40] audit: type=1326 audit(2000000032.879:1138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21945 comm="syz.2.7694" exe="/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 187.348101][ T40] audit: type=1326 audit(2000000032.879:1139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21945 comm="syz.2.7694" exe="/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 187.421499][T21968] /dev/sg0: Can't lookup blockdev [ 188.621486][T22072] __nla_validate_parse: 10 callbacks suppressed [ 188.621503][T22072] netlink: 20 bytes leftover after parsing attributes in process `syz.3.7758'. [ 188.905418][T22110] trusted_key: encrypted_key: hex blob is missing [ 189.074908][T22137] trusted_key: encrypted_key: hex blob is missing [ 189.122749][T22132] sr 2:0:0:0: [sr0] CDROM not ready. Make sure there is a disc in the drive. [ 189.129814][T22142] program syz.3.7792 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 189.168851][T22147] overlayfs: missing 'lowerdir' [ 189.179147][T22151] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7797'. [ 189.224042][T22155] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 189.406874][T22184] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7814'. [ 189.467681][T22189] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7815'. [ 189.742770][T22223] bond7: entered promiscuous mode [ 189.744726][T22223] 8021q: adding VLAN 0 to HW filter on device bond7 [ 189.774199][T22227] netlink: 96 bytes leftover after parsing attributes in process `syz.2.7834'. [ 189.778061][T22227] netlink: 658 bytes leftover after parsing attributes in process `syz.2.7834'. [ 189.783780][T22227] netlink: 1 bytes leftover after parsing attributes in process `syz.2.7834'. [ 189.891535][T22248] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7844'. [ 189.903549][T22248] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 190.055668][T22274] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7857'. [ 190.061590][T22274] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 190.662534][T22364] validate_nla: 5 callbacks suppressed [ 190.662563][T22364] netlink: 'syz.0.7899': attribute type 1 has an invalid length. [ 190.668155][T22364] netlink: 96 bytes leftover after parsing attributes in process `syz.0.7899'. [ 191.806706][T22416] tmpfs: Bad value for 'mpol' [ 191.904585][T22426] bond0: (slave macsec0): Error: Device can not be enslaved while up [ 191.932817][T22428] PM: Enabling pm_trace changes system date and time during resume. [ 191.932817][T22428] PM: Correct system time has to be restored manually after resume. [ 192.012852][T22436] netlink: 'syz.1.7936': attribute type 21 has an invalid length. [ 192.466486][T22457] PM: Enabling pm_trace changes system date and time during resume. [ 192.466486][T22457] PM: Correct system time has to be restored manually after resume. [ 192.486139][T22459] openvswitch: netlink: IP tunnel dst address not specified [ 192.531804][T22465] mkiss: ax0: crc mode is auto. [ 192.548724][T22467] bond8: option arp_interval: invalid value (18446744073709551615) [ 192.555016][T22467] bond8: option arp_interval: allowed values 0 - 2147483647 [ 192.582413][T22467] bond8 (unregistering): Released all slaves [ 192.775236][T22500] netlink: 'syz.2.7966': attribute type 21 has an invalid length. [ 192.967732][T22533] netlink: 'syz.3.7982': attribute type 21 has an invalid length. [ 193.011565][T22539] xt_nat: multiple ranges no longer supported [ 193.070924][T22546] xt_ecn: cannot match TCP bits for non-tcp packets [ 193.182420][T22562] bond6: option arp_interval: invalid value (18446744073709551615) [ 193.184993][T22562] bond6: option arp_interval: allowed values 0 - 2147483647 [ 193.191915][T22567] netlink: 'syz.1.7998': attribute type 9 has an invalid length. [ 193.223906][T22562] bond6 (unregistering): Released all slaves [ 193.445916][T22598] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 193.639755][ T53] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 193.722072][T22629] __nla_validate_parse: 15 callbacks suppressed [ 193.722097][T22629] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8029'. [ 193.800159][ T53] usb 8-1: Using ep0 maxpacket: 16 [ 193.805734][ T53] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 193.812340][ T53] usb 8-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 193.815616][ T53] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 193.818187][ T53] usb 8-1: Product: syz [ 193.819516][ T53] usb 8-1: Manufacturer: syz [ 193.821096][ T53] usb 8-1: SerialNumber: syz [ 193.824392][ T53] usb 8-1: config 0 descriptor?? [ 193.828842][ T53] hub 8-1:0.0: bad descriptor, ignoring hub [ 193.831192][ T53] hub 8-1:0.0: probe with driver hub failed with error -5 [ 193.837288][ T53] input: syz syz as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input25 [ 194.228524][T22647] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8037'. [ 194.404061][T22661] netlink: 60 bytes leftover after parsing attributes in process `syz.0.8042'. [ 194.772670][ T40] kauditd_printk_skb: 9 callbacks suppressed [ 194.772692][ T40] audit: type=1326 audit(2000000040.379:1149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22706 comm="syz.2.8067" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 194.796951][ T40] audit: type=1326 audit(2000000040.379:1150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22706 comm="syz.2.8067" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 194.806450][ T40] audit: type=1326 audit(2000000040.379:1151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22706 comm="syz.2.8067" exe="/syz-executor" sig=0 arch=40000003 syscall=162 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 194.816047][ T40] audit: type=1326 audit(2000000040.379:1152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22706 comm="syz.2.8067" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 194.834161][T22715] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8071'. [ 194.837125][T22715] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8071'. [ 194.839711][ T40] audit: type=1326 audit(2000000040.379:1153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22706 comm="syz.2.8067" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 195.003442][T22738] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8080'. [ 195.205068][T22769] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8096'. [ 195.825042][T22864] netlink: 'syz.0.8134': attribute type 1 has an invalid length. [ 196.290845][T22919] sr 2:0:0:0: [sr0] CDROM not ready. Make sure there is a disc in the drive. [ 196.398667][T22949] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8176'. [ 196.683940][T22990] : renamed from bridge_slave_0 (while UP) [ 196.698144][T22993] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8195'. [ 196.891954][T23019] netlink: 312 bytes leftover after parsing attributes in process `syz.2.8207'. [ 196.900574][T23020] : renamed from bridge_slave_0 (while UP) [ 196.904016][T23022] netlink: 'syz.3.8208': attribute type 1 has an invalid length. [ 196.910772][T23003] sr 2:0:0:0: [sr0] CDROM not ready. Make sure there is a disc in the drive. [ 197.002345][T23030] QAT: Device 253 not found [ 197.099139][T23047] netlink: 'syz.1.8220': attribute type 1 has an invalid length. [ 197.406461][T23093] xt_hashlimit: size too large, truncated to 1048576 [ 197.542252][T23121] xt_CONNSECMARK: invalid mode: 5 [ 197.777851][ T6026] usb 8-1: USB disconnect, device number 4 [ 197.781650][T23172] comedi: valid board names for 8255 driver are: [ 197.783682][T23172] 8255 [ 197.784643][T23172] comedi: valid board names for vmk80xx driver are: [ 197.787162][T23172] vmk80xx [ 197.788711][T23172] comedi: valid board names for usbduxsigma driver are: [ 197.793935][T23172] usbduxsigma [ 197.796015][T23172] comedi: valid board names for usbduxfast driver are: [ 197.798306][T23172] usbduxfast [ 197.799411][T23172] comedi: valid board names for usbdux driver are: [ 197.802035][T23172] usbdux [ 197.803047][T23172] comedi: valid board names for ni6501 driver are: [ 197.805220][T23172] ni6501 [ 197.806488][T23172] comedi: valid board names for dt9812 driver are: [ 197.809046][T23172] dt9812 [ 197.811619][T23172] comedi: valid board names for ni_labpc_cs driver are: [ 197.814954][T23172] ni_labpc_cs [ 197.816179][T23172] comedi: valid board names for ni_daq_700 driver are: [ 197.818394][T23172] ni_daq_700 [ 197.819727][T23172] comedi: valid board names for labpc_pci driver are: [ 197.822152][T23172] labpc_pci [ 197.823347][T23172] comedi: valid board names for adl_pci9118 driver are: [ 197.826073][T23172] pci9118dg [ 197.827154][T23172] pci9118hg [ 197.828211][T23172] pci9118hr [ 197.830042][T23172] comedi: valid board names for 8255_pci driver are: [ 197.832580][T23172] 8255_pci [ 197.833803][T23172] comedi: valid board names for s526 driver are: [ 197.836655][T23172] s526 [ 197.837902][T23172] comedi: valid board names for multiq3 driver are: [ 197.841142][T23172] multiq3 [ 197.842770][T23172] comedi: valid board names for pcmuio driver are: [ 197.845971][T23172] pcmuio48 [ 197.847342][T23172] pcmuio96 [ 197.848600][T23172] comedi: valid board names for pcmmio driver are: [ 197.854274][T23172] pcmmio [ 197.855363][T23172] comedi: valid board names for pcmda12 driver are: [ 197.857644][T23172] pcmda12 [ 197.859231][T23172] comedi: valid board names for pcmad driver are: [ 197.861841][T23172] pcmad12 [ 197.862862][T23172] pcmad16 [ 197.863883][T23172] comedi: valid board names for ni_labpc driver are: [ 197.866048][T23172] lab-pc-1200 [ 197.867264][T23172] lab-pc-1200ai [ 197.868533][T23172] lab-pc+ [ 197.871246][T23172] comedi: valid board names for atmio16 driver are: [ 197.874061][T23172] atmio16 [ 197.875364][T23172] atmio16d [ 197.876683][T23172] comedi: valid board names for ni_at_ao driver are: [ 197.879372][T23172] at-ao-6 [ 197.882549][T23172] at-ao-10 [ 197.883991][T23172] comedi: valid board names for ni_at_a2150 driver are: [ 197.889729][T23172] ni_at_a2150 [ 197.891045][T23172] comedi: valid board names for adq12b driver are: [ 197.893494][T23172] adq12b [ 197.894705][T23172] comedi: valid board names for mpc624 driver are: [ 197.897090][T23172] mpc624 [ 197.898090][T23172] comedi: valid board names for c6xdigio driver are: [ 197.907741][T23190] netlink: 'syz.0.8292': attribute type 11 has an invalid length. [ 197.909655][T23172] c6xdigio [ 197.921226][T23172] comedi: valid board names for aio_iiro_16 driver are: [ 197.924247][T23172] aio_iiro_16 [ 197.925720][T23172] comedi: valid board names for aio_aio12_8 driver are: [ 197.928033][T23172] aio_aio12_8 [ 197.929492][T23172] aio_ai12_8 [ 197.933238][T23172] aio_ao12_4 [ 197.934833][T23172] comedi: valid board names for fl512 driver are: [ 197.938118][T23172] fl512 [ 197.939189][T23172] comedi: valid board names for dmm32at driver are: [ 197.942219][T23172] dmm32at [ 197.943424][T23172] comedi: valid board names for dt282x driver are: [ 197.945512][T23172] dt2821 [ 197.946814][T23172] dt2821-f [ 197.948147][T23172] dt2821-g [ 197.949478][T23172] dt2823 [ 197.951367][T23172] dt2824-pgh [ 197.952884][T23172] dt2824-pgl [ 197.954995][T23172] dt2825 [ 197.969791][T23172] dt2827 [ 197.971092][T23172] dt2828 [ 197.972113][T23172] dt2829 [ 197.973178][T23172] dt21-ez [ 197.974660][T23172] dt23-ez [ 197.976247][T23172] dt24-ez [ 197.977926][T23172] dt24-ez-pgl [ 197.979619][T23172] comedi: valid board names for dt2817 driver are: [ 197.982278][T23172] dt2817 [ 197.983525][T23172] comedi: valid board names for dt2815 driver are: [ 197.986243][T23172] dt2815 [ 197.987506][T23172] comedi: valid board names for dt2814 driver are: [ 197.991394][T23172] dt2814 [ 197.992658][T23172] comedi: valid board names for dt2811 driver are: [ 197.995131][T23172] dt2811-pgh [ 197.996421][T23172] dt2811-pgl [ 197.997631][T23172] comedi: valid board names for dt2801 driver are: [ 198.000200][T23172] dt2801 [ 198.001198][T23172] comedi: valid board names for das6402 driver are: [ 198.003440][T23172] das6402-12 [ 198.004589][T23172] das6402-16 [ 198.005762][T23172] comedi: valid board names for das1800 driver are: [ 198.008010][T23172] das-1701st [ 198.009266][T23172] das-1701st-da [ 198.011591][T23172] das-1702st [ 198.013157][T23172] das-1702st-da [ 198.014467][T23172] das-1702hr [ 198.015609][T23172] das-1702hr-da [ 198.016830][T23172] das-1701ao [ 198.017983][T23172] das-1702ao [ 198.019117][T23172] das-1801st [ 198.020677][T23172] das-1801st-da [ 198.021920][T23172] das-1802st [ 198.023048][T23172] das-1802st-da [ 198.024441][T23172] das-1802hr [ 198.025870][T23172] das-1802hr-da [ 198.027431][T23172] das-1801hc [ 198.028871][T23172] das-1802hc [ 198.030761][T23172] das-1801ao [ 198.031910][T23172] das-1802ao [ 198.033050][T23172] comedi: valid board names for das800 driver are: [ 198.035251][T23172] das-800 [ 198.036308][T23172] cio-das800 [ 198.037429][T23172] das-801 [ 198.038544][T23172] cio-das801 [ 198.039822][T23172] das-802 [ 198.040906][T23172] cio-das802 [ 198.042121][T23172] cio-das802/16 [ 198.043394][T23172] comedi: valid board names for isa-das08 driver are: [ 198.045854][T23172] isa-das08 [ 198.047154][T23172] das08-pgm [ 198.048455][T23172] das08-pgh [ 198.049829][T23172] das08-pgl [ 198.051017][T23172] das08-aoh [ 198.052153][T23172] das08-aol [ 198.053294][T23172] das08-aom [ 198.054451][T23172] das08/jr-ao [ 198.055624][T23172] das08jr-16-ao [ 198.056832][T23172] pc104-das08 [ 198.057998][T23172] das08jr/16 [ 198.059107][T23172] comedi: valid board names for das16m1 driver are: [ 198.062070][T23172] das16m1 [ 198.063900][T23172] comedi: valid board names for dac02 driver are: [ 198.071750][T23172] dac02 [ 198.072833][T23172] comedi: valid board names for rti802 driver are: [ 198.075423][T23172] rti802 [ 198.076437][T23172] comedi: valid board names for rti800 driver are: [ 198.079277][T23172] rti800 [ 198.080857][T23172] rti815 [ 198.082172][T23172] comedi: valid board names for pcm3724 driver are: [ 198.084888][T23172] pcm3724 [ 198.086100][T23172] comedi: valid board names for pcl818 driver are: [ 198.089016][T23172] pcl818l [ 198.090477][T23172] pcl818h [ 198.091668][T23172] pcl818hd [ 198.092779][T23172] pcl818hg [ 198.093908][T23172] pcl818 [ 198.094938][T23172] pcl718 [ 198.095945][T23172] pcm3718 [ 198.097184][T23172] comedi: valid board names for pcl816 driver are: [ 198.100606][T23172] pcl816 [ 198.102063][T23172] pcl814b [ 198.103293][T23172] comedi: valid board names for pcl812 driver are: [ 198.105487][T23172] pcl812 [ 198.106651][T23172] pcl812pg [ 198.108026][T23172] acl8112pg [ 198.109384][T23172] acl8112dg [ 198.110931][T23172] acl8112hg [ 198.112026][T23172] a821pgl [ 198.113222][T23172] a821pglnda [ 198.114685][T23172] a821pgh [ 198.116116][T23172] a822pgl [ 198.117741][T23172] a822pgh [ 198.119452][T23172] a823pgl [ 198.121675][T23172] a823pgh [ 198.123065][T23172] pcl813 [ 198.124416][T23172] pcl813b [ 198.125744][T23172] acl8113 [ 198.127130][T23172] iso813 [ 198.128486][T23172] acl8216 [ 198.129994][T23172] a826pg [ 198.131790][T23172] comedi: valid board names for pcl730 driver are: [ 198.134945][T23172] pcl730 [ 198.136467][T23172] iso730 [ 198.137940][T23172] acl7130 [ 198.139068][T23172] pcm3730 [ 198.140491][T23172] pcl725 [ 198.141489][T23172] p8r8dio [ 198.142633][T23172] acl7225b [ 198.143962][T23172] p16r16dio [ 198.145754][T23172] pcl733 [ 198.152471][T23172] pcl734 [ 198.153994][T23172] opmm-1616-xt [ 198.155592][T23172] pearl-mm-p [ 198.157120][T23172] ir104-pbf [ 198.158717][T23172] comedi: valid board names for pcl726 driver are: [ 198.161863][T23172] pcl726 [ 198.163019][T23172] pcl727 [ 198.164159][T23172] pcl728 [ 198.165115][T23172] acl6126 [ 198.166259][T23172] acl6128 [ 198.167850][T23172] comedi: valid board names for pcl724 driver are: [ 198.173228][T23172] pcl724 [ 198.174544][T23172] pcl722 [ 198.175809][T23172] pcl731 [ 198.177102][T23172] acl7122 [ 198.178473][T23172] acl7124 [ 198.180022][T23172] pet48dio [ 198.181389][T23172] pcmio48 [ 198.182661][T23172] onyx-mm-dio [ 198.184022][T23172] comedi: valid board names for pcl711 driver are: [ 198.186565][T23172] pcl711 [ 198.187787][T23172] pcl711b [ 198.189072][T23172] acl8112hg [ 198.191887][T23172] acl8112dg [ 198.193400][T23172] comedi: valid board names for amplc_pc263 driver are: [ 198.196821][T23172] pc263 [ 198.198293][T23172] comedi: valid board names for amplc_pc236 driver are: [ 198.201407][T23172] pc36at [ 198.203134][T23172] comedi: valid board names for amplc_dio200 driver are: [ 198.206003][T23172] pc212e [ 198.207261][T23172] pc214e [ 198.208454][T23172] pc215e [ 198.209973][T23172] pc218e [ 198.211478][T23172] pc272e [ 198.212707][T23172] comedi: valid board names for comedi_parport driver are: [ 198.215571][T23172] comedi_parport [ 198.217204][T23172] comedi: valid board names for comedi_test driver are: [ 198.220778][T23172] comedi_test [ 198.222261][T23172] comedi: valid board names for comedi_bond driver are: [ 198.225362][T23172] comedi_bond [ 198.314880][T23232] XFS (nullb0): Invalid superblock magic number [ 198.388892][T23249] netlink: 'syz.2.8318': attribute type 11 has an invalid length. [ 198.445237][T23257] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 198.469913][T23255] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 198.712125][T23275] sr 2:0:0:0: [sr0] CDROM not ready. Make sure there is a disc in the drive. [ 198.848993][T23320] netlink: 'syz.0.8353': attribute type 1 has an invalid length. [ 198.913954][T23332] __nla_validate_parse: 5 callbacks suppressed [ 198.913970][T23332] netlink: 68 bytes leftover after parsing attributes in process `syz.1.8359'. [ 198.919013][T23332] netlink: 68 bytes leftover after parsing attributes in process `syz.1.8359'. [ 198.933402][T23335] random: crng reseeded on system resumption [ 199.005536][T23348] netlink: 396 bytes leftover after parsing attributes in process `syz.2.8367'. [ 199.042020][T23352] openvswitch: netlink: VXLAN extension message has 12 unknown bytes. [ 199.100529][ T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0 [ 199.104262][ T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0 [ 199.107956][ T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0 [ 199.115064][ T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0 [ 199.157213][T23368] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined [ 199.294980][T23385] openvswitch: netlink: VXLAN extension message has 12 unknown bytes. [ 199.354103][T23395] tmpfs: Bad value for 'mpol' [ 199.383388][T23399] random: crng reseeded on system resumption [ 199.563085][T23421] netlink: 'syz.1.8403': attribute type 1 has an invalid length. [ 199.593184][ T1415] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.896402][T23466] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined [ 199.951561][T23465] bond6 (unregistering): Released all slaves [ 199.982906][T23476] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined [ 200.185399][T23505] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 200.245786][T23516] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8448'. [ 200.546134][T23564] xt_CT: No such helper "snmp" [ 200.620899][T23577] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined [ 200.727418][T23592] /dev/sg0: Can't lookup blockdev [ 200.798495][T23600] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8491'. [ 200.944581][T23621] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains [ 201.041966][T23632] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8505'. [ 201.122886][T23649] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 201.127776][T23650] netlink: 'syz.3.8513': attribute type 1 has an invalid length. [ 201.130800][T23650] netlink: 224 bytes leftover after parsing attributes in process `syz.3.8513'. [ 201.173535][T23658] netlink: 'syz.1.8521': attribute type 2 has an invalid length. [ 201.177162][T23658] netlink: 224 bytes leftover after parsing attributes in process `syz.1.8521'. [ 201.222434][T23664] nvme_fabrics: unknown parameter or missing value '0x0000000000000000' in ctrl creation request [ 201.452469][T23700] random: crng reseeded on system resumption [ 201.456959][T23693] xt_CT: No such helper "snmp" [ 201.584885][T23719] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains [ 201.675767][T23730] netlink: 40 bytes leftover after parsing attributes in process `syz.3.8553'. [ 201.777627][T23742] openvswitch: netlink: IP tunnel dst address not specified [ 201.944011][T23764] netlink: 'syz.1.8569': attribute type 1 has an invalid length. [ 201.947046][T23764] netlink: 224 bytes leftover after parsing attributes in process `syz.1.8569'. [ 201.961940][T23768] nvme_fabrics: unknown parameter or missing value '0x0000000000000000' in ctrl creation request [ 202.001583][T23771] MTD: Attempt to mount non-MTD device "/dev/sr0" [ 202.018568][T23775] openvswitch: netlink: Unknown key attributes 2 [ 202.182062][T23771] /dev/sr0: Can't open blockdev [ 202.455148][T23837] /dev/sg0: Can't lookup blockdev [ 202.574407][T23857] openvswitch: netlink: IP tunnel dst address not specified [ 202.852069][T23898] openvswitch: netlink: Unknown key attributes 2 [ 203.027344][T23920] openvswitch: netlink: EtherType 50a is less than min 600 [ 203.177334][T23936] bond6: option arp_validate: invalid value (524288) [ 203.204255][T23940] TCP: TCP_TX_DELAY enabled [ 203.217964][T23936] bond6 (unregistering): Released all slaves [ 203.407094][T23964] /dev/sg0: Can't lookup blockdev [ 203.635384][ T40] audit: type=1326 audit(2000000049.239:1154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23987 comm="syz.3.8677" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ff00000 [ 203.660551][ T40] audit: type=1326 audit(2000000049.239:1155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23987 comm="syz.3.8677" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ff00000 [ 203.660946][T23992] /dev/sg0: Can't lookup blockdev [ 203.673732][ T40] audit: type=1326 audit(2000000049.239:1156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23987 comm="syz.3.8677" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ff00000 [ 203.694436][ T40] audit: type=1326 audit(2000000049.239:1157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23987 comm="syz.3.8677" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ff00000 [ 203.705685][ T40] audit: type=1326 audit(2000000049.239:1158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23987 comm="syz.3.8677" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ff00000 [ 203.715217][ T40] audit: type=1326 audit(2000000049.239:1159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23987 comm="syz.3.8677" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ff00000 [ 203.726284][ T40] audit: type=1326 audit(2000000049.239:1160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23987 comm="syz.3.8677" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ff00000 [ 203.734188][ T40] audit: type=1326 audit(2000000049.239:1161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23987 comm="syz.3.8677" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ff00000 [ 203.745255][ T40] audit: type=1326 audit(2000000049.239:1162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23987 comm="syz.3.8677" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ff00000 [ 203.756037][ T40] audit: type=1326 audit(2000000049.239:1163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23987 comm="syz.3.8677" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ff00000 [ 204.146027][T24022] netlink: 'syz.0.8692': attribute type 1 has an invalid length. [ 204.154544][T24022] __nla_validate_parse: 6 callbacks suppressed [ 204.154560][T24022] netlink: 224 bytes leftover after parsing attributes in process `syz.0.8692'. [ 204.306119][T24036] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 204.322929][T24036] Error validating options; rc = [-22] [ 204.485627][T24056] netlink: 40 bytes leftover after parsing attributes in process `syz.1.8710'. [ 204.490144][T24056] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8710'. [ 204.692935][T24080] netlink: zone id is out of range [ 204.695023][T24080] netlink: zone id is out of range [ 204.697219][T24080] netlink: zone id is out of range [ 204.707325][T24080] netlink: zone id is out of range [ 204.709367][T24080] netlink: zone id is out of range [ 204.713783][T24080] netlink: zone id is out of range [ 204.716080][T24080] netlink: zone id is out of range [ 204.718814][T24080] netlink: zone id is out of range [ 204.721330][T24080] netlink: zone id is out of range [ 204.723353][T24080] netlink: zone id is out of range [ 204.913520][T24102] netlink: 40 bytes leftover after parsing attributes in process `syz.0.8730'. [ 204.918174][T24102] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8730'. [ 205.205114][T24124] netlink: 'syz.1.8743': attribute type 7 has an invalid length. [ 205.245722][T24128] i2c i2c-1: Invalid block write size 34 [ 205.267147][T24132] random: crng reseeded on system resumption [ 205.286839][T24131] xt_CT: No such helper "pptp" [ 206.062894][T24198] netlink: 'syz.1.8778': attribute type 3 has an invalid length. [ 206.067048][T24198] netlink: 'syz.1.8778': attribute type 1 has an invalid length. [ 206.075443][T24198] netlink: 228 bytes leftover after parsing attributes in process `syz.1.8778'. [ 206.221492][T24210] autofs4:pid:24210:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.768), cmd(0xc0189375) [ 206.227346][T24210] autofs4:pid:24210:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc0189375) [ 206.371652][T24224] ipt_REJECT: ECHOREPLY no longer supported. [ 206.471262][T24238] binder: BC_ATTEMPT_ACQUIRE not supported [ 206.473629][T24238] binder: 24237:24238 ioctl c0306201 80000540 returned -22 [ 206.540362][T24244] binder: 24243:24244 unknown command 0 [ 206.542829][T24244] binder: 24243:24244 ioctl c0306201 80000080 returned -22 [ 206.764602][T24271] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8814'. [ 206.769153][T24270] geneve3: entered allmulticast mode [ 206.905370][T24292] netlink: 128124 bytes leftover after parsing attributes in process `syz.1.8826'. [ 206.916172][T24294] netlink: 'syz.3.8825': attribute type 1 has an invalid length. [ 206.952054][T24300] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8829'. [ 206.998479][T24308] netlink: 72 bytes leftover after parsing attributes in process `syz.2.8833'. [ 207.142533][T24328] netlink: 'syz.0.8843': attribute type 21 has an invalid length. [ 207.145897][T24328] netlink: 'syz.0.8843': attribute type 20 has an invalid length. [ 207.168610][T24332] MTD: Couldn't look up './file0': -15 [ 207.391307][T24366] tmpfs: Bad value for 'usrquota_block_hardlimit' [ 207.999036][T24447] bond6: Unable to set peer notification delay as MII monitoring is disabled [ 208.014152][T24454] netlink: 'syz.1.8905': attribute type 4 has an invalid length. [ 208.018171][T24454] netlink: 'syz.1.8905': attribute type 1 has an invalid length. [ 208.042907][T24447] bond6 (unregistering): Released all slaves [ 208.250967][T24440] sr 2:0:0:0: [sr0] CDROM not ready. Make sure there is a disc in the drive. [ 208.371405][T24497] netlink: 'syz.1.8925': attribute type 3 has an invalid length. [ 208.437701][T24505] ip6t_REJECT: ECHOREPLY is not supported [ 208.615703][T24529] usb usb9: usbfs: process 24529 (syz.0.8941) did not claim interface 0 before use [ 208.863186][T24572] sd 0:0:0:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x24 ascq=0x0 [ 209.062415][T24606] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 209.072700][T24606] CIFS mount error: No usable UNC path provided in device string! [ 209.072700][T24606] [ 209.076480][T24606] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 209.129396][T24610] bond8: Unable to set peer notification delay as MII monitoring is disabled [ 209.160046][T24613] __nla_validate_parse: 5 callbacks suppressed [ 209.160072][T24613] netlink: 36 bytes leftover after parsing attributes in process `syz.1.8982'. [ 209.161867][T24610] bond8 (unregistering): Released all slaves [ 209.162715][T24613] netlink: 36 bytes leftover after parsing attributes in process `syz.1.8982'. [ 209.173276][T24613] netlink: 36 bytes leftover after parsing attributes in process `syz.1.8982'. [ 209.223558][T24604] can0: slcan on ttyS3. [ 209.244206][T24613] netlink: 36 bytes leftover after parsing attributes in process `syz.1.8982'. [ 209.247366][T24613] netlink: 36 bytes leftover after parsing attributes in process `syz.1.8982'. [ 209.270446][T24613] netlink: 36 bytes leftover after parsing attributes in process `syz.1.8982'. [ 209.290448][T24621] SET target dimension over the limit! [ 209.311815][ T6026] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 209.459654][ T6026] usb 7-1: Using ep0 maxpacket: 16 [ 209.463532][ T6026] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xD has an invalid bInterval 0, changing to 7 [ 209.469220][ T6026] usb 7-1: New USB device found, idVendor=4752, idProduct=0011, bcdDevice=32.4f [ 209.479610][ T6026] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 209.482514][ T6026] usb 7-1: Product: syz [ 209.483207][T24643] Device name not specified. [ 209.483207][T24643] [ 209.484163][ T6026] usb 7-1: Manufacturer: syz [ 209.488302][ T6026] usb 7-1: SerialNumber: syz [ 209.491672][ T6026] usb 7-1: config 0 descriptor?? [ 209.497332][ T6026] hub 7-1:0.0: bad descriptor, ignoring hub [ 209.499348][ T6026] hub 7-1:0.0: probe with driver hub failed with error -5 [ 209.504798][ T6026] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 209.590361][T24656] sctp: [Deprecated]: syz.0.8997 (pid 24656) Use of int in max_burst socket option deprecated. [ 209.590361][T24656] Use struct sctp_assoc_value instead [ 209.636126][T24662] Zero length message leads to an empty skb [ 209.713387][ T24] usb 7-1: USB disconnect, device number 8 [ 209.738426][T24674] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined [ 209.789880][T24678] net_ratelimit: 6 callbacks suppressed [ 209.789904][T24678] openvswitch: netlink: Unexpected mask (mask=200440, allowed=10048) [ 210.028928][T24704] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9021'. [ 210.175022][T24720] i2c i2c-1: Invalid block write size 34 [ 210.225142][T24724] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9031'. [ 210.388004][T24742] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 210.502893][T24755] xt_policy: output policy not valid in PREROUTING and INPUT [ 210.817536][T24789] JFS: charset not found [ 211.057428][ T40] kauditd_printk_skb: 16428 callbacks suppressed [ 211.057452][ T40] audit: type=1400 audit(2000000056.659:17592): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=24811 comm="syz.3.9074" [ 211.193225][T24826] autofs4:pid:24826:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.768), cmd(0xc0189375) [ 211.200556][T24826] autofs4:pid:24826:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc0189375) [ 211.205002][T24828] program syz.2.9082 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 211.395303][T24839] netlink: 16 bytes leftover after parsing attributes in process `syz.3.9087'. [ 211.449492][T24843] binder: BC_ATTEMPT_ACQUIRE not supported [ 211.451545][ T1111] ata1.00: exception Emask 0x0 SAct 0x0 SErr 0x0 action 0x0 [ 211.458834][T24843] binder: 24842:24843 ioctl c0306201 80000540 returned -22 [ 211.458904][ T1111] ata1.00: irq_stat 0x40000000 [ 211.464453][ T1111] ata1.00: failed command: ZAC MANAGEMENT OUT [ 211.469059][ T1111] ata1.00: cmd 9f/01:00:00:00:00/00:00:00:00:00/40 tag 5 [ 211.469059][ T1111] res 41/04:00:00:00:00/00:00:00:00:00/40 Emask 0x1 (device error) [ 211.477584][ T1111] ata1.00: status: { DRDY ERR } [ 211.479483][ T1111] ata1.00: error: { ABRT } [ 211.483490][ T1111] ata1.00: device reported invalid CHS sector 0 [ 211.605896][T24856] bond6: entered promiscuous mode [ 211.655975][T24862] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9105'. [ 211.722723][T24872] tmpfs: Bad value for 'mpol' [ 211.756259][T24874] netlink: 'syz.3.9102': attribute type 1 has an invalid length. [ 211.912745][T24898] SET target dimension over the limit! [ 212.034257][T24893] sr 2:0:0:0: [sr0] CDROM not ready. Make sure there is a disc in the drive. [ 212.047904][T24908] autofs4:pid:24908:validate_dev_ioctl: path string terminator missing for cmd(0xc0189379) [ 212.099008][T24914] overlayfs: cannot append lower layer [ 212.570852][T24967] netlink: 'syz.1.9150': attribute type 1 has an invalid length. [ 212.648115][ T12] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 212.652118][ T12] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 212.656116][ T12] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 212.661269][ T1237] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 213.496583][T25039] 8021q: adding VLAN 0 to HW filter on device bond6 [ 213.516331][T25044] openvswitch: netlink: Geneve opt len 17 is not a multiple of 4. [ 213.690824][T25058] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 213.842017][T25072] netlink: 'syz.1.9202': attribute type 1 has an invalid length. [ 213.867984][T25074] openvswitch: netlink: IP tunnel dst address not specified [ 214.023540][T13747] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 214.190120][T13747] usb 5-1: Using ep0 maxpacket: 16 [ 214.194839][T13747] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xD has an invalid bInterval 0, changing to 7 [ 214.202426][T13747] usb 5-1: New USB device found, idVendor=4752, idProduct=0011, bcdDevice=32.4f [ 214.206973][T13747] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 214.212510][T13747] usb 5-1: Product: syz [ 214.214390][T13747] usb 5-1: Manufacturer: syz [ 214.216410][T13747] usb 5-1: SerialNumber: syz [ 214.244091][T13747] usb 5-1: config 0 descriptor?? [ 214.260847][T13747] hub 5-1:0.0: bad descriptor, ignoring hub [ 214.263607][T13747] hub 5-1:0.0: probe with driver hub failed with error -5 [ 214.291781][T13747] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 214.459665][T13747] usb 5-1: USB disconnect, device number 6 [ 214.499296][T25113] Cannot find del_set index 65533 as target [ 214.548900][T25119] CIFS mount error: No usable UNC path provided in device string! [ 214.548900][T25119] [ 214.554926][T25119] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 214.854445][T25144] No source specified [ 215.117439][T25163] 8021q: adding VLAN 0 to HW filter on device bond8 [ 215.226701][T25173] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22 [ 215.230805][T25173] netdevsim netdevsim0: Direct firmware load for . failed with error -22 [ 215.236255][T25173] netdevsim netdevsim0: Falling back to sysfs fallback for: . [ 215.278243][T25175] __nla_validate_parse: 12 callbacks suppressed [ 215.278268][T25175] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9251'. [ 215.300140][T25175] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9251'. [ 215.818256][T25217] 8021q: adding VLAN 0 to HW filter on device bond7 [ 215.992737][T25239] bridge0: port 3(veth0_to_bridge) entered blocking state [ 215.996524][T25239] bridge0: port 3(veth0_to_bridge) entered disabled state [ 216.000898][T25241] syz.3.9282: vmalloc error: size 2147483264, exceeds total pages, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 216.001760][T25239] veth0_to_bridge: entered allmulticast mode [ 216.008253][T25241] CPU: 2 UID: 0 PID: 25241 Comm: syz.3.9282 Tainted: G L syzkaller #0 PREEMPT(full) [ 216.008295][T25241] Tainted: [L]=SOFTLOCKUP [ 216.008305][T25241] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 216.008318][T25241] Call Trace: [ 216.008330][T25241] [ 216.008340][T25241] dump_stack_lvl+0x100/0x190 [ 216.008387][T25241] warn_alloc.cold+0x95/0x1c1 [ 216.008429][T25241] ? __pfx_warn_alloc+0x10/0x10 [ 216.008472][T25241] ? __lock_acquire+0x4a5/0x2630 [ 216.008507][T25241] __vmalloc_node_range_noprof+0x1252/0x1530 [ 216.008545][T25241] ? do_replace+0x1c6/0x490 [ 216.008573][T25241] ? set_next_entity+0x11e/0x9c0 [ 216.008609][T25241] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 216.008641][T25241] ? __lock_acquire+0x4a5/0x2630 [ 216.008670][T25241] ? kvm_sched_clock_read+0x11/0x20 [ 216.008693][T25241] ? sched_clock+0x38/0x60 [ 216.008724][T25241] ? do_replace+0x1c6/0x490 [ 216.008749][T25241] __vmalloc_node_noprof+0xad/0xf0 [ 216.008775][T25241] ? do_replace+0x1c6/0x490 [ 216.008802][T25241] __vmalloc_noprof+0xa3/0x120 [ 216.008828][T25241] ? __pfx___vmalloc_noprof+0x10/0x10 [ 216.008862][T25241] do_replace+0x1c6/0x490 [ 216.008891][T25241] ? __pfx_do_replace+0x10/0x10 [ 216.008925][T25241] ? register_lock_class+0x40/0x560 [ 216.008959][T25241] compat_do_replace+0x589/0x7a0 [ 216.008984][T25241] ? lock_acquire+0x1cf/0x380 [ 216.009011][T25241] ? __pfx_compat_do_replace+0x10/0x10 [ 216.009040][T25241] ? rcu_is_watching+0x12/0xc0 [ 216.009080][T25241] ? bpf_lsm_capable+0x9/0x10 [ 216.009101][T25241] ? security_capable+0x80/0x260 [ 216.009131][T25241] do_ebt_set_ctl+0x2f5/0x3f0 [ 216.009165][T25241] ? __pfx_do_ebt_set_ctl+0x10/0x10 [ 216.009199][T25241] ? nf_sockopt_find.isra.0+0x222/0x290 [ 216.009229][T25241] nf_setsockopt+0x8d/0xf0 [ 216.009255][T25241] ip_setsockopt+0xcb/0xf0 [ 216.009284][T25241] raw_setsockopt+0x60/0x1b0 [ 216.009307][T25241] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 216.009334][T25241] do_sock_setsockopt+0xf3/0x1d0 [ 216.009361][T25241] __sys_setsockopt+0x119/0x190 [ 216.009396][T25241] __ia32_sys_setsockopt+0xbc/0x160 [ 216.009425][T25241] ? __do_fast_syscall_32+0x94/0x8c0 [ 216.009448][T25241] ? lockdep_hardirqs_on+0x78/0x100 [ 216.009468][T25241] __do_fast_syscall_32+0xe3/0x8c0 [ 216.009548][T25241] do_fast_syscall_32+0x32/0x70 [ 216.009574][T25241] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 216.009604][T25241] RIP: 0023:0xf7fe5f6c [ 216.009624][T25241] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8 [ 216.009641][T25241] RSP: 002b:00000000f54a650c EFLAGS: 00000292 ORIG_RAX: 000000000000016e [ 216.009664][T25241] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000 [ 216.009676][T25241] RDX: 0000000000000080 RSI: 0000000080001200 RDI: 0000000000000108 [ 216.009690][T25241] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 216.009701][T25241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 216.009714][T25241] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 216.009739][T25241] [ 216.012948][T25241] Mem-Info: [ 216.019328][T25239] veth0_to_bridge: entered promiscuous mode [ 216.023935][T25241] active_anon:3402 inactive_anon:78 isolated_anon:0 [ 216.023935][T25241] active_file:6216 inactive_file:16931 isolated_file:0 [ 216.023935][T25241] unevictable:1768 dirty:179 writeback:0 [ 216.023935][T25241] slab_reclaimable:6556 slab_unreclaimable:66670 [ 216.023935][T25241] mapped:23359 shmem:1891 pagetables:1095 [ 216.023935][T25241] sec_pagetables:302 bounce:0 [ 216.023935][T25241] kernel_misc_reclaimable:0 [ 216.023935][T25241] free:44149 free_pcp:12683 free_cma:0 [ 216.026228][T25239] bridge0: port 3(veth0_to_bridge) entered blocking state [ 216.026830][T25241] Node 0 active_anon:24kB inactive_anon:32kB active_file:2568kB inactive_file:56kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:68kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8576kB pagetables:1376kB sec_pagetables:1140kB all_unreclaimable? yes Balloon:0kB [ 216.029349][T25239] bridge0: port 3(veth0_to_bridge) entered forwarding state [ 216.031453][T25241] Node 1 active_anon:13584kB inactive_anon:280kB active_file:22296kB inactive_file:67668kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:93368kB dirty:716kB writeback:0kB shmem:4028kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5256kB pagetables:3004kB sec_pagetables:68kB all_unreclaimable? no Balloon:0kB [ 216.219021][T25241] Node 0 DMA free:2612kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:28kB local_pcp:12kB free_cma:0kB [ 216.249692][T25241] lowmem_reserve[]: 0 285 285 285 285 [ 216.252113][T25241] Node 0 DMA32 free:17988kB boost:2048kB min:15116kB low:18380kB high:21644kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24kB inactive_anon:28kB active_file:2560kB inactive_file:56kB unevictable:3536kB writepending:0kB zspages:0kB present:1032196kB managed:292460kB mlocked:0kB bounce:0kB free_pcp:5624kB local_pcp:1296kB free_cma:0kB [ 216.273138][T25241] lowmem_reserve[]: 0 0 0 0 0 [ 216.275346][T25241] Node 1 DMA32 free:155244kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:13460kB inactive_anon:280kB active_file:22296kB inactive_file:67668kB unevictable:3536kB writepending:732kB zspages:4152kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:45532kB local_pcp:2104kB free_cma:0kB [ 216.291424][T25241] lowmem_reserve[]: 0 0 0 0 0 [ 216.293566][T25241] Node 0 DMA: 55*4kB (UE) 15*8kB (UE) 6*16kB (UE) 24*32kB (UE) 4*64kB (UE) 1*128kB (E) 0*256kB 0*512kB 1*1024kB (E) 0*2048kB 0*4096kB = 2612kB [ 216.304106][T25241] Node 0 DMA32: 5*4kB (UE) 22*8kB (UE) 92*16kB (UE) 132*32kB (UME) 81*64kB (UME) 24*128kB (UME) 5*256kB (UM) 1*512kB (U) 2*1024kB (UM) 0*2048kB 0*4096kB = 17988kB [ 216.311325][T25241] Node 1 DMA32: 4979*4kB (UM) 4080*8kB (UM) 3184*16kB (UM) 483*32kB (UME) 192*64kB (UM) 47*128kB (UM) 14*256kB (UM) 6*512kB (ME) 7*1024kB (ME) 2*2048kB (M) 0*4096kB = 155180kB [ 216.321851][T25241] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 216.326098][T25241] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB [ 216.330140][T25241] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 216.334345][T25241] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 216.337987][T25241] 25719 total pagecache pages [ 216.340692][T25241] 685 pages in swap cache [ 216.342816][T25241] Free swap = 109500kB [ 216.344788][T25241] Total swap = 124996kB [ 216.347061][T25241] 524155 pages RAM [ 216.348615][T25241] 0 pages HighMem/MovableOnly [ 216.351316][T25241] 210147 pages reserved [ 216.352976][T25241] 0 pages cma reserved [ 216.398236][T25267] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9295'. [ 216.695184][T25304] netlink: 'syz.2.9312': attribute type 13 has an invalid length. [ 216.987779][T25339] QAT: failed to copy from user cfg_data. [ 216.997843][T25342] netlink: 'syz.3.9332': attribute type 10 has an invalid length. [ 217.002411][T25342] netlink: 40 bytes leftover after parsing attributes in process `syz.3.9332'. [ 217.006561][T25342] dummy0: entered promiscuous mode [ 217.008716][T25342] bridge0: port 3(dummy0) entered blocking state [ 217.013547][T25342] bridge0: port 3(dummy0) entered disabled state [ 217.016693][T25342] dummy0: entered allmulticast mode [ 217.021087][T25342] bridge0: port 3(dummy0) entered blocking state [ 217.024046][T25342] bridge0: port 3(dummy0) entered forwarding state [ 217.035126][T25344] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9333'. [ 217.354520][T25373] openvswitch: netlink: VXLAN extension 0 has unexpected len 2 expected 0 [ 217.390824][T25368] sr 2:0:0:0: [sr0] CDROM not ready. Make sure there is a disc in the drive. [ 217.415098][T25377] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined [ 217.512474][T25388] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9354'. [ 217.637025][T25404] netlink: 'syz.2.9362': attribute type 21 has an invalid length. [ 217.699360][T25412] xt_ecn: cannot match TCP bits for non-tcp packets [ 217.948049][T25438] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9375'. [ 218.245997][T25475] Cannot find add_set index 3 as target [ 218.316566][T25483] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9401'. [ 218.323042][T25483] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 218.435319][T25501] netlink: 'syz.3.9409': attribute type 32 has an invalid length. [ 218.440255][T25501] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9409'. [ 218.445654][T25501] netlink: 'syz.3.9409': attribute type 32 has an invalid length. [ 218.721188][T25531] netlink: 128 bytes leftover after parsing attributes in process `syz.3.9420'. [ 218.740911][ T7371] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 218.909793][ T7371] usb 6-1: Using ep0 maxpacket: 16 [ 218.921154][ T7371] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xD has an invalid bInterval 0, changing to 7 [ 218.930772][ T7371] usb 6-1: New USB device found, idVendor=4752, idProduct=0011, bcdDevice=32.4f [ 218.935543][ T7371] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 218.940514][ T7371] usb 6-1: Product: syz [ 218.942946][ T7371] usb 6-1: Manufacturer: syz [ 218.945528][ T7371] usb 6-1: SerialNumber: syz [ 218.964716][ T7371] usb 6-1: config 0 descriptor?? [ 218.971938][ T7371] hub 6-1:0.0: bad descriptor, ignoring hub [ 218.974898][ T7371] hub 6-1:0.0: probe with driver hub failed with error -5 [ 218.981439][ T7371] usb 6-1: Quirk or no altset; falling back to MIDI 1.0 [ 219.022781][T25557] SET target dimension over the limit! [ 219.178423][T13747] usb 6-1: USB disconnect, device number 7 [ 219.349775][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 219.352389][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 219.368060][T25581] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 219.420496][T25578] sr 2:0:0:0: [sr0] CDROM not ready. Make sure there is a disc in the drive. [ 219.831135][T13747] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 219.983835][T13747] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 219.987760][T13747] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 219.992325][T13747] usb 5-1: Product: syz [ 219.994383][T13747] usb 5-1: Manufacturer: syz [ 219.996689][T13747] usb 5-1: SerialNumber: syz [ 220.006585][T13747] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 220.032130][ T10] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 220.445026][ T7371] usb 5-1: USB disconnect, device number 7 [ 221.279977][ T10] usb 5-1: Service connection timeout for: 256 [ 221.284167][ T10] ath9k_htc 5-1:1.0: ath9k_htc: Unable to initialize HTC services [ 221.288399][ T10] ath9k_htc: Failed to initialize the device [ 221.292565][ T7371] usb 5-1: ath9k_htc: USB layer deinitialized [ 221.406536][T25686] A link change request failed with some changes committed already. Interface vlan1 may have been left with an inconsistent configuration, please check. [ 221.500972][T25693] sr 2:0:0:0: [sr0] CDROM not ready. Make sure there is a disc in the drive. [ 223.700660][T25823] can0 (unregistered): slcan off ttyS3. [ 224.462072][T25887] sp0: Synchronizing with TNC [ 224.798355][T25914] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9590'. [ 224.808632][T25913] xt_socket: unknown flags 0xd0 [ 224.860557][T25918] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9593'. [ 224.868805][T25918] bond_slave_0: entered promiscuous mode [ 224.871235][T25918] netdevsim netdevsim0 netdevsim0: entered promiscuous mode [ 224.877116][T25918] 8021q: adding VLAN 0 to HW filter on device macvtap0 [ 224.963157][T25918] bond_slave_0: left promiscuous mode [ 224.966314][T25918] netdevsim netdevsim0 netdevsim0: left promiscuous mode [ 225.136287][T25932] tipc: Started in network mode [ 225.139240][T25932] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 225.144181][T25932] tipc: Enabling of bearer rejected, failed to enable media [ 225.154358][T25940] CIFS: Unable to determine destination address [ 225.329685][T25952] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9609'. [ 225.491465][T25959] sp0: Synchronizing with TNC [ 225.649401][T25972] nbd: must specify a size in bytes for the device [ 225.704354][T25980] netlink: 72 bytes leftover after parsing attributes in process `syz.2.9623'. [ 225.788788][T25989] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9627'. [ 225.847895][T25992] sp0: Synchronizing with TNC [ 225.987399][T26002] tipc: Started in network mode [ 225.990747][T26002] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 225.994995][T26002] tipc: Enabling of bearer rejected, failed to enable media [ 226.215080][ T10] kernel read not supported for file /4850/net/snmp6 (pid: 10 comm: kworker/0:1) [ 226.312179][T26036] netlink: 'syz.3.9651': attribute type 5 has an invalid length. [ 226.342192][ T40] audit: type=1326 audit(2000000071.949:17593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26037 comm="syz.0.9652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 226.354210][ T40] audit: type=1326 audit(2000000071.949:17594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26037 comm="syz.0.9652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 226.369923][ T40] audit: type=1326 audit(2000000071.949:17595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26037 comm="syz.0.9652" exe="/syz-executor" sig=0 arch=40000003 syscall=329 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 226.378425][ T40] audit: type=1326 audit(2000000071.949:17596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26037 comm="syz.0.9652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 226.382504][T26031] sr 2:0:0:0: [sr0] CDROM not ready. Make sure there is a disc in the drive. [ 226.389051][ T40] audit: type=1326 audit(2000000071.949:17597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26037 comm="syz.0.9652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 226.403520][ T40] audit: type=1326 audit(2000000071.949:17598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26037 comm="syz.0.9652" exe="/syz-executor" sig=0 arch=40000003 syscall=256 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 226.413252][ T40] audit: type=1326 audit(2000000071.949:17599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26037 comm="syz.0.9652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 226.424767][ T40] audit: type=1326 audit(2000000071.949:17600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26037 comm="syz.0.9652" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 226.521579][T26056] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9660'. [ 226.875513][T26091] program syz.0.9676 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 226.885876][T26092] vimc link validate: Sensor B:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 1:snk:16x2160 (0x33424752, 8, 0, 0, 0) [ 227.069785][ T6010] usb 6-1: new full-speed USB device number 8 using dummy_hcd [ 227.225268][ T6010] usb 6-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 227.229091][ T6010] usb 6-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 227.235994][ T6010] usb 6-1: Product: syz [ 227.238434][ T6010] usb 6-1: Manufacturer: syz [ 227.246291][ T6010] usb 6-1: SerialNumber: syz [ 227.254248][ T6010] usb 6-1: config 0 descriptor?? [ 227.484961][ T53] usb 6-1: USB disconnect, device number 8 [ 227.789496][T26151] netlink: 'syz.2.9706': attribute type 10 has an invalid length. [ 227.793717][T26151] netlink: 40 bytes leftover after parsing attributes in process `syz.2.9706'. [ 227.797468][T26151] dummy0: entered promiscuous mode [ 227.800578][T26151] bridge0: port 4(dummy0) entered blocking state [ 227.803589][T26151] bridge0: port 4(dummy0) entered disabled state [ 227.806457][T26151] dummy0: entered allmulticast mode [ 227.810714][T26151] bridge0: port 4(dummy0) entered blocking state [ 227.813109][T26151] bridge0: port 4(dummy0) entered forwarding state [ 227.816611][T26151] bridge0: mtu less than device minimum [ 228.130538][T26176] netlink: 228 bytes leftover after parsing attributes in process `syz.0.9717'. [ 228.137607][T26176] netlink: 72 bytes leftover after parsing attributes in process `syz.0.9717'. [ 228.141157][T26176] netlink: 24 bytes leftover after parsing attributes in process `syz.0.9717'. [ 228.252042][T26183] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 228.761684][T26206] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 229.045913][T26239] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 229.061376][ T40] audit: type=1326 audit(2000000074.669:17601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26238 comm="syz.1.9745" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe3f6c code=0x7ffc0000 [ 229.079662][ T40] audit: type=1326 audit(2000000074.669:17602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26238 comm="syz.1.9745" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe3f6c code=0x7ffc0000 [ 229.156090][T26251] 9pnet_virtio: no channels available for device syz [ 229.357271][T26267] netlink: 'syz.2.9760': attribute type 6 has an invalid length. [ 229.361807][T26267] netlink: 'syz.2.9760': attribute type 5 has an invalid length. [ 229.369723][T26269] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 229.914967][T26289] __nla_validate_parse: 4 callbacks suppressed [ 229.914988][T26289] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9769'. [ 229.922450][T26289] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9769'. [ 229.926524][T26289] netlink: 'syz.3.9769': attribute type 7 has an invalid length. [ 229.929898][T26289] netlink: 'syz.3.9769': attribute type 13 has an invalid length. [ 230.216597][T26308] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9776'. [ 230.222272][T26308] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9776'. [ 230.501157][T26323] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 231.085635][T26359] binder: 26357:26359 ioctl 541b 0 returned -22 [ 232.025968][T26439] sp0: Synchronizing with TNC [ 232.328418][T26463] netlink: 'syz.2.9848': attribute type 8 has an invalid length. [ 232.346644][T26463] netlink: 209840 bytes leftover after parsing attributes in process `syz.2.9848'. [ 232.448044][T26475] netlink: 40 bytes leftover after parsing attributes in process `syz.0.9854'. [ 232.636958][ T40] kauditd_printk_skb: 6 callbacks suppressed [ 232.636973][ T40] audit: type=1326 audit(2000000078.239:17609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26493 comm="syz.0.9861" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 232.648271][ T40] audit: type=1326 audit(2000000078.239:17610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26493 comm="syz.0.9861" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 232.660626][ T40] audit: type=1326 audit(2000000078.249:17611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26493 comm="syz.0.9861" exe="/syz-executor" sig=0 arch=40000003 syscall=375 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 232.690688][ T40] audit: type=1326 audit(2000000078.299:17612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26493 comm="syz.0.9861" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 232.697327][ T40] audit: type=1326 audit(2000000078.299:17613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26493 comm="syz.0.9861" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 232.749733][ T24] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 232.749733][ T6010] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 232.901698][ T6010] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 232.906175][ T6010] usb 6-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config [ 232.907569][ T24] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 232.914272][ T6010] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 232.919915][ T24] usb 7-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 232.923464][ T6010] usb 6-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 232.926830][ T24] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 232.932572][ T6010] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 232.946505][ T6010] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 232.953256][ T6010] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 232.957587][ T6010] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 232.968020][ T6010] usb 6-1: Product: syz [ 232.970275][ T6010] usb 6-1: Manufacturer: syz [ 232.971614][ T24] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 232.976425][ T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 232.979828][T26485] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 232.980673][ T24] usb 7-1: Product: syz [ 232.985194][ T24] usb 7-1: Manufacturer: syz [ 232.985782][ T6010] cdc_wdm 6-1:1.0: skipping garbage [ 232.987259][ T24] usb 7-1: SerialNumber: syz [ 232.990412][ T6010] cdc_wdm 6-1:1.0: skipping garbage [ 232.995390][ T6010] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device [ 232.997248][ T24] hub 7-1:1.0: bad descriptor, ignoring hub [ 233.001983][ T6010] cdc_wdm 6-1:1.0: Unknown control protocol [ 233.002576][ T24] hub 7-1:1.0: probe with driver hub failed with error -5 [ 233.195501][ C1] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 233.198940][ C1] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 233.202820][ C1] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 233.205704][ C1] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 233.210168][ C1] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 233.213270][ C1] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 233.216099][ C1] cdc_wdm 6-1:1.0: wdm_int_callback - usb_submit_urb failed with result -1 [ 233.222026][ T10] usb 6-1: USB disconnect, device number 9 [ 233.239033][ T24] usblp 7-1:1.0: usblp1: USB Unidirectional printer dev 9 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 233.311046][T26528] smc: net device wlan0 applied user defined pnetid SYZ0 [ 233.411421][T26536] netlink: 124 bytes leftover after parsing attributes in process `syz.3.9881'. [ 233.530847][ T24] usb 7-1: USB disconnect, device number 9 [ 233.537511][ T24] usblp1: removed [ 233.898896][T26566] hub 8-0:1.0: USB hub found [ 233.902965][T26566] hub 8-0:1.0: 1 port detected [ 234.082821][T26588] xt_AUDIT: Audit type out of range (valid range: 0..2) [ 234.106283][T26591] netlink: 'syz.0.9908': attribute type 8 has an invalid length. [ 234.109931][T26591] netlink: 209840 bytes leftover after parsing attributes in process `syz.0.9908'. [ 234.190889][T26595] netlink: 'syz.0.9909': attribute type 8 has an invalid length. [ 234.224964][T26599] tmpfs: Cannot enable quota on remount [ 234.289911][ T54] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 234.441783][ T54] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 234.446396][ T54] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 234.451594][ T54] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 234.455287][ T54] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 234.460006][ T40] audit: type=1326 audit(2000000080.059:17614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26612 comm="syz.3.9917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ffc0000 [ 234.463627][T26584] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 234.497996][ T40] audit: type=1326 audit(2000000080.059:17615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26612 comm="syz.3.9917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ffc0000 [ 234.515401][ T54] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 234.516701][ T40] audit: type=1326 audit(2000000080.069:17616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26612 comm="syz.3.9917" exe="/syz-executor" sig=0 arch=40000003 syscall=375 compat=1 ip=0xf7fe5f6c code=0x7ffc0000 [ 234.569822][ T40] audit: type=1326 audit(2000000080.179:17617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26612 comm="syz.3.9917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ffc0000 [ 234.600791][ T40] audit: type=1326 audit(2000000080.179:17618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26612 comm="syz.3.9917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ffc0000 [ 234.777002][ T6182] usb 7-1: USB disconnect, device number 10 [ 235.233064][T26669] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 235.332766][T26673] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9935'. [ 235.555981][T26690] xt_l2tp: wrong L2TP version: 0 [ 236.865989][T26764] netlink: 'syz.3.9978': attribute type 21 has an invalid length. [ 236.871023][T26764] IPv6: NLM_F_CREATE should be specified when creating new route [ 236.874765][T26764] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 236.886799][T26764] IPv6: NLM_F_CREATE should be set when creating new route [ 236.892225][T26764] IPv6: NLM_F_CREATE should be set when creating new route [ 236.897238][T26764] IPv6: NLM_F_CREATE should be set when creating new route [ 236.904314][T26764] netlink: 'syz.3.9978': attribute type 21 has an invalid length. [ 236.908400][T26764] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 236.970519][ T2297] usb 7-1: new high-speed USB device number 11 using dummy_hcd [ 237.141149][ T2297] usb 7-1: Using ep0 maxpacket: 8 [ 237.155837][ T2297] usb 7-1: unable to get BOS descriptor or descriptor too short [ 237.167889][ T2297] usb 7-1: unable to read config index 0 descriptor/start: -71 [ 237.171623][ T2297] usb 7-1: can't read configurations, error -71 [ 237.654637][T26811] 9p: Bad value for 'rfdno' [ 237.659737][T26813] netlink: 184 bytes leftover after parsing attributes in process `syz.1.9994'. [ 237.817061][T26822] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9998'. [ 237.825931][T26822] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9998'. [ 237.830714][T26822] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9998'. [ 237.835438][T26822] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9998'. [ 237.839484][T26822] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9998'. [ 238.470543][ T1021] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 238.594366][T26876] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10022'. [ 238.643183][ T1021] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 238.647518][ T1021] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 238.652307][ T1021] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 238.671060][ T1021] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 238.679861][ T1021] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 238.684625][ T1021] usb 8-1: Product: syz [ 238.697952][ T1021] usb 8-1: Manufacturer: syz [ 238.700276][ T1021] usb 8-1: SerialNumber: syz [ 238.714852][ T1021] hub 8-1:1.0: bad descriptor, ignoring hub [ 238.716937][ T1021] hub 8-1:1.0: probe with driver hub failed with error -5 [ 238.793505][T26892] mkiss: ax0: crc mode is auto. [ 238.928940][ T1021] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 5 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 239.202216][T26920] netlink: 504 bytes leftover after parsing attributes in process `syz.1.10043'. [ 239.251223][ T7371] usb 8-1: USB disconnect, device number 5 [ 239.256137][ T7371] usblp0: removed [ 239.364842][T26930] netlink: 'syz.1.10048': attribute type 6 has an invalid length. [ 239.427135][T26934] input input26: cannot allocate more than FF_MAX_EFFECTS effects [ 239.513127][T26938] netlink: 36 bytes leftover after parsing attributes in process `syz.0.10052'. [ 239.880275][ T7371] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 240.042543][ T7371] usb 6-1: Using ep0 maxpacket: 16 [ 240.052793][ T7371] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 240.058906][ T7371] usb 6-1: config 0 interface 0 has no altsetting 0 [ 240.077944][T26969] binder: 26968:26969 ioctl 4018620d 0 returned -22 [ 240.081740][T26969] binder: 26968:26969 ioctl c0306201 80000180 returned -11 [ 240.083715][ T7371] usb 6-1: New USB device found, idVendor=15c2, idProduct=0041, bcdDevice=1f.20 [ 240.090055][ T7371] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 240.108519][ T7371] usb 6-1: Product: syz [ 240.111736][ T7371] usb 6-1: Manufacturer: syz [ 240.113812][ T7371] usb 6-1: SerialNumber: syz [ 240.118324][ T7371] usb 6-1: config 0 descriptor?? [ 240.740973][T27010] Invalid ELF header magic: != ELF [ 241.034611][T27028] __nla_validate_parse: 5 callbacks suppressed [ 241.034639][T27028] netlink: 16 bytes leftover after parsing attributes in process `syz.0.10096'. [ 241.749065][T27073] netlink: 4 bytes leftover after parsing attributes in process `syz.0.10124'. [ 241.986540][T27092] sp0: Synchronizing with TNC [ 242.003192][T27092] sp0: Found TNC [ 242.270082][T27113] Bluetooth: MGMT ver 1.23 [ 242.659416][ C3] imon 6-1:0.0: imon usb_rx_callback_intf0: status(-71) [ 242.672864][ T7371] input: iMON Panel, Knob and Mouse(15c2:0041) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input27 [ 242.692796][ T7371] imon:send_packet: packet tx failed (-71) [ 242.715364][ T7371] imon 6-1:0.0: panel buttons/knobs setup failed [ 242.779878][ T7371] rc_core: IR keymap rc-imon-pad not found [ 242.782465][ T7371] Registered IR keymap rc-empty [ 242.785566][ T7371] imon 6-1:0.0: Looks like you're trying to use an IR protocol this device does not support [ 242.794906][ T7371] imon 6-1:0.0: Unsupported IR protocol specified, overriding to iMON IR protocol [ 242.802190][ T7371] imon:send_packet: packet tx failed (-71) [ 242.833642][ T7371] imon 6-1:0.0: remote input dev register failed [ 242.837348][ T7371] imon 6-1:0.0: imon_init_intf0: rc device setup failed [ 242.943738][ T40] audit: type=1326 audit(2000000088.549:17619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27160 comm="syz.1.10161" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fe3f6c code=0x0 [ 243.004630][ T7371] imon 6-1:0.0: unable to initialize intf0, err 0 [ 243.007414][ T7371] imon:imon_probe: failed to initialize context! [ 243.010424][ T7371] imon 6-1:0.0: unable to register, err -19 [ 243.016728][ T7371] usb 6-1: USB disconnect, device number 10 [ 243.054906][T27168] xt_limit: Overflow, try lower: 271964/0 [ 243.416242][T27200] binder: 27199:27200 ioctl 400c620e 800002c0 returned -22 [ 243.477299][T27202] netlink: 16 bytes leftover after parsing attributes in process `syz.3.10180'. [ 244.105968][T27226] sp0: Synchronizing with TNC [ 244.544375][ T5299] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 244.551096][ T5299] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 244.556962][ T5299] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 244.568431][ T5299] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 244.575130][ T5299] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 244.594072][ T63] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 244.597855][ T63] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 244.602457][ T63] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 244.608184][ T63] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 244.612945][ T63] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 244.724403][ T55] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 244.791378][T27258] lo speed is unknown, defaulting to 1000 [ 244.941945][ T55] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 245.192117][ T55] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 245.491196][ T55] bond0: (slave netdevsim0): Releasing backup interface [ 245.519451][ T6182] kernel write not supported for file /sg0 (pid: 6182 comm: kworker/2:5) [ 245.533630][ T55] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 245.582874][T27258] chnl_net:caif_netlink_parms(): no params data found [ 245.703737][T27258] bridge0: port 1(bridge_slave_0) entered blocking state [ 245.707536][T27258] bridge0: port 1(bridge_slave_0) entered disabled state [ 245.711650][T27258] bridge_slave_0: entered allmulticast mode [ 245.715864][T27258] bridge_slave_0: entered promiscuous mode [ 245.728835][T27258] bridge0: port 2(bridge_slave_1) entered blocking state [ 245.732451][T27258] bridge0: port 2(bridge_slave_1) entered disabled state [ 245.736397][T27258] bridge_slave_1: entered allmulticast mode [ 245.743847][T27258] bridge_slave_1: entered promiscuous mode [ 245.932587][T27258] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 245.941791][T27258] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 246.011593][T27258] team0: Port device team_slave_0 added [ 246.032728][T27258] team0: Port device team_slave_1 added [ 246.103158][T27258] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 246.112645][T27258] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 246.132355][T27258] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 246.151198][T27258] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 246.155361][T27258] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 246.166532][T27258] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 246.211615][T27324] sp0: Synchronizing with TNC [ 246.238076][T27258] hsr_slave_0: entered promiscuous mode [ 246.241046][T27326] tmpfs: Cannot enable quota on remount [ 246.243719][T27258] hsr_slave_1: entered promiscuous mode [ 246.247135][T27258] debugfs: 'hsr0' already exists in 'hsr' [ 246.249919][T27258] Cannot create hsr debugfs directory [ 246.253274][ T55] bridge_slave_1: left allmulticast mode [ 246.259711][ T55] bridge_slave_1: left promiscuous mode [ 246.264704][ T55] bridge0: port 2(bridge_slave_1) entered disabled state [ 246.363721][ T55] bridge_slave_0: left allmulticast mode [ 246.366032][ T55] bridge_slave_0: left promiscuous mode [ 246.368579][ T55] bridge0: port 1(bridge_slave_0) entered disabled state [ 246.630595][ T5299] Bluetooth: hci1: command tx timeout [ 246.712839][T27346] xt_AUDIT: Audit type out of range (valid range: 0..2) [ 247.062154][ T6182] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 247.251975][ T6182] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 247.256189][ T6182] usb 8-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config [ 247.262173][ T6182] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 247.266126][ T6182] usb 8-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 247.272172][ T6182] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 247.277078][ T6182] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 247.284935][ T6182] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 247.288736][ T6182] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 247.292818][ T6182] usb 8-1: Product: syz [ 247.293829][ T55] dvmrp0 (unregistering): left allmulticast mode [ 247.295431][ T6182] usb 8-1: Manufacturer: syz [ 247.305864][T27350] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 247.311521][ T6182] cdc_wdm 8-1:1.0: skipping garbage [ 247.314199][ T6182] cdc_wdm 8-1:1.0: skipping garbage [ 247.322765][ T6182] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device [ 247.325307][ T6182] cdc_wdm 8-1:1.0: Unknown control protocol [ 247.517439][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 247.520384][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 247.524195][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 247.527928][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 247.531204][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 247.534632][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 247.537728][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 247.541230][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 247.544597][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 247.547944][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 247.550861][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 247.554448][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 247.557952][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 247.561680][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 247.564839][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 247.567619][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 247.570509][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 247.573487][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 247.576790][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 247.580091][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 247.589400][ T53] usb 8-1: USB disconnect, device number 6 [ 247.814506][ T55] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 247.852319][ T55] bond0 (unregistering): Released all slaves [ 247.860111][ T55] bond1 (unregistering): Released all slaves [ 247.873282][ T55] bond2 (unregistering): Released all slaves [ 247.893877][ T55] bond3 (unregistering): Released all slaves [ 247.907168][ T55] bond4 (unregistering): Released all slaves [ 247.920291][ T55] bond5 (unregistering): Released all slaves [ 247.937988][ T55] bond6 (unregistering): Released all slaves [ 247.955997][ T55] bond7 (unregistering): Released all slaves [ 247.976516][ T55] bond8 (unregistering): Released all slaves [ 248.390127][T27348] IPVS: Unknown mcast interface: bridge_slave_0 [ 248.394792][ T55] : left promiscuous mode [ 248.551449][ T55] tipc: Left network mode [ 248.681994][T27258] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 248.733969][ T5299] Bluetooth: hci1: command tx timeout [ 249.208003][T27394] IPVS: Unknown mcast interface: bridge_slave_0 [ 249.239869][T27258] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 249.264512][T27258] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 249.311057][T27258] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 249.624669][T27258] 8021q: adding VLAN 0 to HW filter on device bond0 [ 249.725692][T27258] 8021q: adding VLAN 0 to HW filter on device team0 [ 249.725850][T27431] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10281'. [ 249.760818][T27431] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10281'. [ 249.882820][T27439] netlink: 20 bytes leftover after parsing attributes in process `syz.2.10285'. [ 249.888430][T27439] netlink: 20 bytes leftover after parsing attributes in process `syz.2.10285'. [ 249.901392][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 249.905209][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 249.927089][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 249.930375][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 250.120082][T27258] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 250.482905][T27258] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 250.710521][ T55] hsr_slave_0: left promiscuous mode [ 250.749861][ T55] hsr_slave_1: left promiscuous mode [ 250.790052][ T5299] Bluetooth: hci1: command tx timeout [ 250.850067][ T55] veth1_macvtap: left allmulticast mode [ 250.856238][ T55] veth1_macvtap: left promiscuous mode [ 250.880943][ T55] veth0_macvtap: left allmulticast mode [ 250.884510][ T55] veth0_macvtap: left promiscuous mode [ 250.887085][ T55] veth1_vlan: left promiscuous mode [ 250.891436][ T55] veth0_vlan: left promiscuous mode [ 251.488811][T27529] netlink: 'syz.2.10318': attribute type 1 has an invalid length. [ 252.845847][T27258] veth0_vlan: entered promiscuous mode [ 252.859870][T27258] veth1_vlan: entered promiscuous mode [ 252.869833][ T5299] Bluetooth: hci1: command tx timeout [ 252.906662][T27258] veth0_macvtap: entered promiscuous mode [ 252.919063][T27258] veth1_macvtap: entered promiscuous mode [ 252.944458][T27258] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 252.960546][T27258] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 252.977609][ T1149] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.991822][ T1149] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.997427][ T1149] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.056677][T27543] syz.2.10321: page allocation failure: order:2, mode:0xcc1(GFP_KERNEL|GFP_DMA), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 253.070922][T27543] CPU: 1 UID: 0 PID: 27543 Comm: syz.2.10321 Tainted: G L syzkaller #0 PREEMPT(full) [ 253.070963][T27543] Tainted: [L]=SOFTLOCKUP [ 253.070970][T27543] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 253.070982][T27543] Call Trace: [ 253.070991][T27543] [ 253.071000][T27543] dump_stack_lvl+0x100/0x190 [ 253.071044][T27543] warn_alloc.cold+0x95/0x1c1 [ 253.071079][T27543] ? __pfx_warn_alloc+0x10/0x10 [ 253.071110][T27543] ? __mutex_unlock_slowpath+0x15c/0x790 [ 253.071140][T27543] ? __alloc_frozen_pages_noprof+0xd68/0x2ba0 [ 253.071176][T27543] __alloc_frozen_pages_noprof+0xf36/0x2ba0 [ 253.071215][T27543] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 253.071242][T27543] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 253.071271][T27543] ? lockdep_hardirqs_on+0x78/0x100 [ 253.071290][T27543] ? stack_depot_save_flags+0x479/0x9d0 [ 253.071322][T27543] ? comedi_isadma_alloc+0x10c/0x6e0 [ 253.071350][T27543] ? kasan_save_stack+0x3f/0x50 [ 253.071367][T27543] ? kasan_save_stack+0x30/0x50 [ 253.071381][T27543] ? kasan_save_track+0x14/0x30 [ 253.071397][T27543] ? __kasan_kmalloc+0xaa/0xb0 [ 253.071416][T27543] ? __do_fast_syscall_32+0xe3/0x8c0 [ 253.071436][T27543] ? do_fast_syscall_32+0x32/0x70 [ 253.071454][T27543] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 253.071482][T27543] __alloc_pages_noprof+0xb/0x1b0 [ 253.071508][T27543] __dma_direct_alloc_pages.isra.0+0x47c/0x8f0 [ 253.071537][T27543] ? __pfx___dma_direct_alloc_pages.isra.0+0x10/0x10 [ 253.071558][T27543] ? dma_alloc_from_dev_coherent+0x2e0/0x570 [ 253.071581][T27543] dma_direct_alloc+0x8f/0x590 [ 253.071600][T27543] dma_alloc_attrs+0x185/0x2b0 [ 253.071624][T27543] ? __pfx_dma_alloc_attrs+0x10/0x10 [ 253.071647][T27543] ? dma_direct_supported+0xca/0x220 [ 253.071669][T27543] comedi_isadma_alloc+0x3dc/0x6e0 [ 253.071697][T27543] ? __pfx_comedi_isadma_alloc+0x10/0x10 [ 253.071720][T27543] ? request_threaded_irq+0x27b/0x3e0 [ 253.071747][T27543] pcl818_attach+0x1103/0x15b0 [ 253.071774][T27543] comedi_device_attach+0x40e/0x6b0 [ 253.071798][T27543] do_devconfig_ioctl+0x1b3/0x6d0 [ 253.071818][T27543] ? comedi_unlocked_ioctl+0x180/0x3310 [ 253.072294][T27543] ? __pfx_do_devconfig_ioctl+0x10/0x10 [ 253.072331][T27543] ? tomoyo_path_number_perm+0x46d/0x580 [ 253.072354][T27543] ? kasan_save_stack+0x3f/0x50 [ 253.072371][T27543] ? kasan_save_stack+0x30/0x50 [ 253.072385][T27543] ? kasan_save_track+0x14/0x30 [ 253.072400][T27543] ? kasan_save_free_info+0x3b/0x70 [ 253.072427][T27543] comedi_unlocked_ioctl+0x860/0x3310 [ 253.072459][T27543] ? __pfx_comedi_unlocked_ioctl+0x10/0x10 [ 253.072498][T27543] ? tomoyo_path_number_perm+0x46d/0x580 [ 253.072521][T27543] ? kasan_quarantine_put+0x104/0x240 [ 253.072545][T27543] ? lockdep_hardirqs_on+0x78/0x100 [ 253.072567][T27543] ? find_held_lock+0x2b/0x80 [ 253.072585][T27543] ? tomoyo_path_number_perm+0x28f/0x580 [ 253.072606][T27543] ? tomoyo_path_number_perm+0x28f/0x580 [ 253.072630][T27543] ? tomoyo_path_number_perm+0x188/0x580 [ 253.072655][T27543] comedi_compat_ioctl+0x438/0xe20 [ 253.072681][T27543] ? __pfx_comedi_compat_ioctl+0x10/0x10 [ 253.072705][T27543] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 253.072727][T27543] ? do_vfs_ioctl+0x226/0x13e0 [ 253.072754][T27543] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 253.072786][T27543] ? find_held_lock+0x2b/0x80 [ 253.072802][T27543] ? hook_file_ioctl_common+0x146/0x410 [ 253.072832][T27543] ? __fget_files+0x21f/0x3d0 [ 253.072853][T27543] ? __pfx_comedi_compat_ioctl+0x10/0x10 [ 253.072877][T27543] __ia32_compat_sys_ioctl+0x2cf/0x360 [ 253.072915][T27543] __do_fast_syscall_32+0xe3/0x8c0 [ 253.072937][T27543] do_fast_syscall_32+0x32/0x70 [ 253.072957][T27543] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 253.072980][T27543] RIP: 0023:0xf70bef6c [ 253.072996][T27543] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8 [ 253.073162][T27543] RSP: 002b:00000000f54ad50c EFLAGS: 00000292 ORIG_RAX: 0000000000000036 [ 253.073181][T27543] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040946400 [ 253.073211][T27543] RDX: 0000000080000540 RSI: 0000000000000000 RDI: 0000000000000000 [ 253.073220][T27543] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 253.073230][T27543] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 253.073240][T27543] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 253.073263][T27543] [ 253.073271][T27543] Mem-Info: [ 253.099680][ T79] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 253.102101][T27543] active_anon:1944 inactive_anon:89 isolated_anon:0 [ 253.102101][T27543] active_file:3542 inactive_file:5412 isolated_file:0 [ 253.102101][T27543] unevictable:1768 dirty:268 writeback:0 [ 253.102101][T27543] slab_reclaimable:6666 slab_unreclaimable:65243 [ 253.102101][T27543] mapped:22587 shmem:1775 pagetables:1230 [ 253.102101][T27543] sec_pagetables:306 bounce:0 [ 253.102101][T27543] kernel_misc_reclaimable:0 [ 253.102101][T27543] free:74502 free_pcp:0 free_cma:0 [ 253.326970][T27543] Node 0 active_anon:8kB inactive_anon:52kB active_file:88kB inactive_file:2528kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:92kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8532kB pagetables:1344kB sec_pagetables:1140kB all_unreclaimable? yes Balloon:0kB [ 253.343963][T27543] Node 0 DMA free:2764kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:8kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 253.357819][T27543] lowmem_reserve[]: 0 285 285 285 285 [ 253.360069][T27543] Node 0 DMA: 85*4kB (UE) 21*8kB (UE) 5*16kB (UE) 24*32kB (UE) 4*64kB (UE) 1*128kB (E) 0*256kB 0*512kB 1*1024kB (E) 0*2048kB 0*4096kB = 2764kB [ 253.367024][T27543] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 253.373232][T27543] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB [ 253.377860][T27543] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 253.382500][T27543] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 253.386302][T27543] 11365 total pagecache pages [ 253.388197][T27543] 640 pages in swap cache [ 253.390632][T27543] Free swap = 103056kB [ 253.392651][T27543] Total swap = 124996kB [ 253.395210][T27543] 524155 pages RAM [ 253.398660][T27543] 0 pages HighMem/MovableOnly [ 253.401897][T27543] 210147 pages reserved [ 253.403972][T27543] 0 pages cma reserved [ 253.578720][ T1149] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 253.587649][ T1149] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 253.618312][ T1149] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 253.622597][ T1149] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 253.723688][T27591] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 253.806920][T27595] netlink: 'syz.1.10344': attribute type 11 has an invalid length. [ 253.828972][T27595] netlink: 199788 bytes leftover after parsing attributes in process `syz.1.10344'. [ 253.926903][ T55] IPVS: stop unused estimator thread 0... [ 254.388840][T27632] binder: 27631:27632 ioctl 4018620d 0 returned -22 [ 254.396046][T27632] binder: 27631:27632 ioctl c0306201 80000180 returned -11 [ 254.427868][T27636] netlink: 504 bytes leftover after parsing attributes in process `syz.4.10361'. [ 254.474853][T27638] can0: slcan on ptm1. [ 254.583492][T27637] can0 (unregistered): slcan off ptm1. [ 255.686657][T27738] input input29: cannot allocate more than FF_MAX_EFFECTS effects [ 255.958306][T27756] netlink: 4 bytes leftover after parsing attributes in process `syz.4.10411'. [ 256.047984][T27760] input input30: cannot allocate more than FF_MAX_EFFECTS effects [ 256.589733][ T7371] usb 9-1: new high-speed USB device number 2 using dummy_hcd [ 256.621177][T27747] Bluetooth: hci0: Opcode 0x0401 failed: -4 [ 256.625165][T27750] Bluetooth: hci0: Opcode 0x0401 failed: -4 [ 256.796742][ T7371] usb 9-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 256.802058][ T7371] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 256.806609][ T7371] usb 9-1: Product: syz [ 256.808541][ T7371] usb 9-1: Manufacturer: syz [ 256.810913][ T7371] usb 9-1: SerialNumber: syz [ 256.815592][ T7371] usb 9-1: config 0 descriptor?? [ 257.035488][ T7371] usb 9-1: USB disconnect, device number 2 [ 257.040459][T27804] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10434'. [ 257.046700][T27804] netlink: 16 bytes leftover after parsing attributes in process `syz.3.10434'. [ 257.485633][T27819] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10441'. [ 257.834097][ T1149] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 257.843029][ T1149] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 257.853739][T27844] netlink: 20 bytes leftover after parsing attributes in process `syz.3.10453'. [ 257.869779][ T7371] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 257.900275][ T2297] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 258.099671][ T2297] usb 9-1: Using ep0 maxpacket: 32 [ 258.108341][ T2297] usb 9-1: New USB device found, idVendor=2304, idProduct=0222, bcdDevice=77.3f [ 258.120017][ T2297] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 258.123239][ T2297] usb 9-1: Product: syz [ 258.124985][ T2297] usb 9-1: Manufacturer: syz [ 258.127324][ T2297] usb 9-1: SerialNumber: syz [ 258.144290][ T2297] usb 9-1: config 0 descriptor?? [ 258.153690][ T2297] dvb-usb: found a 'Pinnacle 450e DVB-S USB2.0' in warm state. [ 258.157878][ T2297] dvb-usb: bulk message failed: -22 (4/0) [ 258.162486][ T2297] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 258.168969][ T2297] dvb-usb: bulk message failed: -22 (5/0) [ 258.172127][ T2297] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 258.184788][ T2297] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 258.191460][ T2297] dvbdev: DVB: registering new adapter (Pinnacle 450e DVB-S USB2.0) [ 258.196340][ T2297] usb 9-1: media controller created [ 258.214478][ T2297] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 258.233663][ T7371] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 258.248771][ T2297] usb 9-1: selecting invalid altsetting 3 [ 258.252594][ T2297] ttusb2: set interface to alts=3 failed [ 258.290189][ T2297] DVB: Unable to find symbol tda10086_attach() [ 258.310181][ T2297] dvb-usb: no frontend was attached by 'Pinnacle 450e DVB-S USB2.0' [ 258.314441][ T2297] dvb-usb: bulk message failed: -22 (4/0) [ 258.316837][ T2297] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 258.328682][ T2297] dvb-usb: bulk message failed: -22 (5/0) [ 258.331359][ T2297] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 258.336268][ T2297] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully initialized and connected. [ 258.358274][T27829] dvb-usb: bulk message failed: -22 (7/0) [ 258.361753][T27829] ttusb2: there might have been an error during control message transfer. (rlen = 3, was 0) [ 258.366583][T27829] ttusb2: i2c transfer failed. [ 258.371228][ T2297] usb 9-1: USB disconnect, device number 3 [ 258.406174][ T2297] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully deinitialized and disconnected. [ 258.710961][ T7371] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 259.138410][T27890] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10472'. [ 259.195678][ T5299] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 259.314212][ C3] sr 2:0:0:0: [sr0] tag#20 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 259.319622][ C3] sr 2:0:0:0: [sr0] tag#20 CDB: Regenerate(16) 82 5a 86 a5 26 a3 50 1f b1 dd 8d ff 3e 90 d6 f5 [ 259.770059][T27958] Bluetooth: MGMT ver 1.23 [ 260.222692][ T7371] hid_parser_main: 24 callbacks suppressed [ 260.222720][ T7371] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 260.240152][ T7371] hid-generic 0000:0000:0000.0004: hidraw1: HID v0.00 Device [syz0] on syz0 [ 260.372816][T27999] fido_id[27999]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 260.398295][T28011] netlink: 'syz.1.10529': attribute type 62 has an invalid length. [ 260.771292][T28037] 9pnet_fd: p9_fd_create_tcp (28037): problem binding to privport [ 260.830328][ T40] audit: type=1326 audit(2000000106.439:17620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27973 comm="syz.3.10514" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7fc00000 [ 261.034540][ T1415] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.080894][T28052] [U] [ 261.341477][T28070] netlink: 436 bytes leftover after parsing attributes in process `syz.4.10558'. [ 261.345806][T28070] netlink: 16 bytes leftover after parsing attributes in process `syz.4.10558'. [ 261.839798][ C3] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 261.969870][ T6010] usb 9-1: new high-speed USB device number 4 using dummy_hcd [ 262.122300][ T6010] usb 9-1: Using ep0 maxpacket: 8 [ 262.126014][ T6010] usb 9-1: config 168 descriptor has 1 excess byte, ignoring [ 262.129512][ T6010] usb 9-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30 [ 262.134155][ T6010] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 262.138754][ T6010] usb 9-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 262.144537][ T6010] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 262.148691][ T6010] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 262.154899][ T6010] usb 9-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100 [ 262.161806][ T6010] usb 9-1: config 168 interface 0 has no altsetting 0 [ 262.167117][ T6010] usb 9-1: config 168 descriptor has 1 excess byte, ignoring [ 262.171830][ T6010] usb 9-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30 [ 262.177090][ T6010] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 262.182205][ T6010] usb 9-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 262.186714][ T6010] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 262.192919][ T6010] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 262.197636][ T6010] usb 9-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100 [ 262.203354][ T6010] usb 9-1: config 168 interface 0 has no altsetting 0 [ 262.206662][ T6010] usb 9-1: config 168 descriptor has 1 excess byte, ignoring [ 262.209053][ T6010] usb 9-1: too many endpoints for config 168 interface 0 altsetting 188: 100, using maximum allowed: 30 [ 262.214549][ T6010] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x3 has an invalid bInterval 255, changing to 11 [ 262.218382][ T6010] usb 9-1: config 168 interface 0 altsetting 188 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 262.222793][ T6010] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 262.227825][ T6010] usb 9-1: config 168 interface 0 altsetting 188 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 262.238052][ T6010] usb 9-1: config 168 interface 0 altsetting 188 has 2 endpoint descriptors, different from the interface descriptor's value: 100 [ 262.243980][ T6010] usb 9-1: config 168 interface 0 has no altsetting 0 [ 262.250552][ T6010] usb 9-1: string descriptor 0 read error: -22 [ 262.252735][ T6010] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 262.256475][ T6010] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 262.276669][ T6010] adutux 9-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 262.312826][T28092] CUSE: unknown device info "" [ 262.319681][T28092] CUSE: unknown device info "" [ 262.322540][T28092] CUSE: unknown device info "" [ 262.325004][T28092] CUSE: unknown device info "" [ 262.327407][T28092] CUSE: unknown device info "" [ 262.337182][T28092] CUSE: unknown device info "" [ 262.341061][T28092] CUSE: unknown device info "" [ 262.343408][T28092] CUSE: unknown device info "" [ 262.346292][T28092] CUSE: unknown device info "" [ 262.349621][T28092] CUSE: unknown device info "#" [ 262.352341][T28092] CUSE: unknown device info "" [ 262.354731][T28092] CUSE: unknown device info "" [ 262.357088][T28092] CUSE: unknown device info "" [ 262.363253][T28092] CUSE: DEVNAME unspecified [ 262.488175][ T10] usb 9-1: USB disconnect, device number 4 [ 262.987972][ T40] audit: type=1800 audit(2000000108.589:17621): pid=28123 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.1.10591" name="/newroot/2536/bus/#12765//deleted" dev="tmpfs" ino=12765 res=0 errno=0 [ 263.717369][T28182] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10603'. [ 263.999284][ T34] IPVS: starting estimator thread 0... [ 264.100308][T28205] IPVS: using max 32 ests per chain, 76800 per kthread [ 264.120779][ T6026] hid-generic FFFF:0008:0003.0005: item fetching failed at offset 0/1 [ 264.125385][ T6026] hid-generic FFFF:0008:0003.0005: probe with driver hid-generic failed with error -22 [ 264.286647][T28225] mkiss: ax0: crc mode is auto. [ 264.497597][T28241] warn_alloc: 4 callbacks suppressed [ 264.497620][T28241] syz.3.10629: page allocation failure: order:2, mode:0xcc1(GFP_KERNEL|GFP_DMA), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 264.510170][T28241] CPU: 2 UID: 0 PID: 28241 Comm: syz.3.10629 Tainted: G L syzkaller #0 PREEMPT(full) [ 264.510207][T28241] Tainted: [L]=SOFTLOCKUP [ 264.510216][T28241] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 264.510228][T28241] Call Trace: [ 264.510236][T28241] [ 264.510246][T28241] dump_stack_lvl+0x100/0x190 [ 264.510290][T28241] warn_alloc.cold+0x95/0x1c1 [ 264.510328][T28241] ? __pfx_warn_alloc+0x10/0x10 [ 264.510360][T28241] ? __mutex_unlock_slowpath+0x15c/0x790 [ 264.510390][T28241] ? __alloc_frozen_pages_noprof+0xd68/0x2ba0 [ 264.510436][T28241] __alloc_frozen_pages_noprof+0xf36/0x2ba0 [ 264.510487][T28241] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 264.510519][T28241] ? comedi_isadma_alloc+0x10c/0x6e0 [ 264.510549][T28241] ? __pfx_stack_trace_save+0x10/0x10 [ 264.510576][T28241] ? stack_depot_save_flags+0x27/0x9d0 [ 264.510613][T28241] ? comedi_isadma_alloc+0x10c/0x6e0 [ 264.510640][T28241] ? kasan_save_stack+0x3f/0x50 [ 264.510659][T28241] ? kasan_save_stack+0x30/0x50 [ 264.510676][T28241] ? kasan_save_track+0x14/0x30 [ 264.510692][T28241] ? __kasan_kmalloc+0xaa/0xb0 [ 264.510714][T28241] ? __do_fast_syscall_32+0xe3/0x8c0 [ 264.510737][T28241] ? do_fast_syscall_32+0x32/0x70 [ 264.510758][T28241] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 264.510790][T28241] __alloc_pages_noprof+0xb/0x1b0 [ 264.510822][T28241] __dma_direct_alloc_pages.isra.0+0x47c/0x8f0 [ 264.510853][T28241] ? __pfx___dma_direct_alloc_pages.isra.0+0x10/0x10 [ 264.510879][T28241] ? dma_alloc_from_dev_coherent+0x2e0/0x570 [ 264.510911][T28241] dma_direct_alloc+0x8f/0x590 [ 264.510949][T28241] dma_alloc_attrs+0x185/0x2b0 [ 264.510981][T28241] ? __pfx_dma_alloc_attrs+0x10/0x10 [ 264.511011][T28241] ? dma_direct_supported+0xca/0x220 [ 264.511039][T28241] comedi_isadma_alloc+0x3dc/0x6e0 [ 264.511070][T28241] ? __pfx_comedi_isadma_alloc+0x10/0x10 [ 264.511098][T28241] ? request_threaded_irq+0x27b/0x3e0 [ 264.511128][T28241] pcl818_attach+0x1103/0x15b0 [ 264.511159][T28241] comedi_device_attach+0x40e/0x6b0 [ 264.511188][T28241] do_devconfig_ioctl+0x1b3/0x6d0 [ 264.511214][T28241] ? comedi_unlocked_ioctl+0x180/0x3310 [ 264.511242][T28241] ? __pfx_do_devconfig_ioctl+0x10/0x10 [ 264.511278][T28241] ? tomoyo_path_number_perm+0x46d/0x580 [ 264.511302][T28241] ? kasan_save_stack+0x3f/0x50 [ 264.511320][T28241] ? kasan_save_stack+0x30/0x50 [ 264.511336][T28241] ? kasan_save_track+0x14/0x30 [ 264.511355][T28241] ? kasan_save_free_info+0x3b/0x70 [ 264.511384][T28241] comedi_unlocked_ioctl+0x860/0x3310 [ 264.511418][T28241] ? __pfx_comedi_unlocked_ioctl+0x10/0x10 [ 264.511459][T28241] ? tomoyo_path_number_perm+0x46d/0x580 [ 264.511484][T28241] ? kasan_quarantine_put+0x104/0x240 [ 264.511509][T28241] ? lockdep_hardirqs_on+0x78/0x100 [ 264.511531][T28241] ? find_held_lock+0x2b/0x80 [ 264.511551][T28241] ? tomoyo_path_number_perm+0x28f/0x580 [ 264.511573][T28241] ? tomoyo_path_number_perm+0x28f/0x580 [ 264.511598][T28241] ? tomoyo_path_number_perm+0x188/0x580 [ 264.511626][T28241] comedi_compat_ioctl+0x438/0xe20 [ 264.511654][T28241] ? __pfx_comedi_compat_ioctl+0x10/0x10 [ 264.511680][T28241] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 264.511702][T28241] ? do_vfs_ioctl+0x226/0x13e0 [ 264.511730][T28241] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 264.511763][T28241] ? find_held_lock+0x2b/0x80 [ 264.511780][T28241] ? hook_file_ioctl_common+0x146/0x410 [ 264.511810][T28241] ? __fget_files+0x21f/0x3d0 [ 264.511835][T28241] ? __pfx_comedi_compat_ioctl+0x10/0x10 [ 264.511862][T28241] __ia32_compat_sys_ioctl+0x2cf/0x360 [ 264.511894][T28241] __do_fast_syscall_32+0xe3/0x8c0 [ 264.511921][T28241] do_fast_syscall_32+0x32/0x70 [ 264.511954][T28241] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 264.511982][T28241] RIP: 0023:0xf7fe5f6c [ 264.512001][T28241] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8 [ 264.512021][T28241] RSP: 002b:00000000f54a650c EFLAGS: 00000292 ORIG_RAX: 0000000000000036 [ 264.512043][T28241] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040946400 [ 264.512055][T28241] RDX: 0000000080000540 RSI: 0000000000000000 RDI: 0000000000000000 [ 264.512065][T28241] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 264.512075][T28241] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 264.512085][T28241] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 264.512111][T28241] [ 264.512119][T28241] Mem-Info: [ 264.518323][T28245] netlink: 100 bytes leftover after parsing attributes in process `syz.4.10630'. [ 264.520271][T28241] active_anon:2540 inactive_anon:81 isolated_anon:0 [ 264.520271][T28241] active_file:8358 inactive_file:5522 isolated_file:0 [ 264.520271][T28241] unevictable:1768 dirty:385 writeback:0 [ 264.520271][T28241] slab_reclaimable:6619 slab_unreclaimable:65978 [ 264.520271][T28241] mapped:22734 shmem:1776 pagetables:1400 [ 264.520271][T28241] sec_pagetables:308 bounce:0 [ 264.520271][T28241] kernel_misc_reclaimable:0 [ 264.520271][T28241] free:63980 free_pcp:0 free_cma:0 [ 264.550774][T28247] netlink: 84 bytes leftover after parsing attributes in process `syz.1.10631'. [ 264.552269][T28241] Node 0 active_anon:4kB inactive_anon:56kB active_file:88kB inactive_file:2520kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:96kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8596kB pagetables:1344kB sec_pagetables:1140kB all_unreclaimable? yes Balloon:0kB [ 264.602521][T28241] Node 0 DMA free:2776kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 264.795362][T28241] lowmem_reserve[]: 0 285 285 285 285 [ 264.795416][T28241] Node 0 DMA: 84*4kB (UE) 19*8kB (UE) 7*16kB (UE) 24*32kB (UE) 4*64kB (UE) 1*128kB (E) 0*256kB 0*512kB 1*1024kB (E) 0*2048kB 0*4096kB = 2776kB [ 264.829635][T28241] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 264.833835][T28241] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB [ 264.838979][T28241] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 264.859672][T28241] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 264.864339][T28241] 16419 total pagecache pages [ 264.867291][T28241] 767 pages in swap cache [ 264.868996][T28241] Free swap = 103064kB [ 264.872115][T28241] Total swap = 124996kB [ 264.874165][T28241] 524155 pages RAM [ 264.876181][T28241] 0 pages HighMem/MovableOnly [ 264.878823][T28241] 210147 pages reserved [ 264.882288][T28241] 0 pages cma reserved [ 264.910259][T28260] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_vlan, syncid = 0, id = 0 [ 265.010546][T28270] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10642'. [ 265.254256][T28289] netlink: 'syz.3.10650': attribute type 25 has an invalid length. [ 265.299262][T28279] syz.4.10645 (28279) used greatest stack depth: 19088 bytes left [ 265.371318][T28297] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10654'. [ 265.393884][T28299] netlink: 24 bytes leftover after parsing attributes in process `syz.2.10655'. [ 265.842387][T28333] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 266.036392][T28346] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 266.568285][ T40] audit: type=1326 audit(2000000112.169:17622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28382 comm="syz.3.10695" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ffc0000 [ 266.579731][T28381] CUSE: unknown device info "xKJ H+ۤ2LhnL1`Ccn80(3նi" [ 266.584258][T28381] CUSE: unknown device info "ٮ,<_eF" [ 266.587674][T28381] CUSE: unknown device info "3ܟ,̘" [ 266.591739][ T40] audit: type=1326 audit(2000000112.169:17623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28382 comm="syz.3.10695" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ffc0000 [ 266.609843][T28381] CUSE: unknown device info "J2S Z !e/J+-na4\N4" [ 266.611259][ T40] audit: type=1326 audit(2000000112.169:17624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28382 comm="syz.3.10695" exe="/syz-executor" sig=0 arch=40000003 syscall=333 compat=1 ip=0xf7fe5f6c code=0x7ffc0000 [ 266.620001][T28381] CUSE: unknown device info " [ 266.620001][T28381] fzXS! [ 266.620001][T28381] AxjTǔw xRɐQ(hҏj pVdY0|M?2JIv^R@" [ 266.627651][ T40] audit: type=1326 audit(2000000112.169:17625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28382 comm="syz.3.10695" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ffc0000 [ 266.641898][T28381] CUSE: unknown device info "!To}ݝ&|L+Uoϲ"FstV:׌E gJ<@c4TM_/V{" [ 266.649722][ T40] audit: type=1326 audit(2000000112.179:17626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28382 comm="syz.3.10695" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5f6c code=0x7ffc0000 [ 266.668206][T28381] CUSE: unknown device info "whU~V߶ݸFsX,xkq/Q]3H" [ 266.675095][T28381] CUSE: zero length info key specified [ 266.819353][ T34] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 266.832001][ T34] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 266.834480][ T34] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 266.837102][ T34] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 266.843513][T28404] Cannot find add_set index 46338 as target [ 266.844417][ T34] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 266.849435][ T34] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 266.853663][ T34] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 266.857981][ T34] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 266.861150][ T34] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 266.864037][ T34] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 266.880433][ T34] hid-generic 0000:0000:0000.0006: hidraw1: HID v0.03 Device [syz1] on syz1 [ 266.948153][T28408] fido_id[28408]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 267.030023][ T5299] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 267.073681][T28426] netlink: 12 bytes leftover after parsing attributes in process `syz.4.10716'. [ 267.109075][T28428] sg_write: data in/out 41084/1 bytes for SCSI command 0x1c-- guessing data in; [ 267.109075][T28428] program syz.2.10717 not setting count and/or reply_len properly [ 267.223334][T28430] : entered promiscuous mode [ 267.242738][T28440] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10722'. [ 267.481013][T27569] usb 9-1: new high-speed USB device number 5 using dummy_hcd [ 267.639724][T27569] usb 9-1: Using ep0 maxpacket: 32 [ 267.654658][T27569] usb 9-1: New USB device found, idVendor=2304, idProduct=0222, bcdDevice=77.3f [ 267.658868][T27569] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 267.663577][T27569] usb 9-1: Product: syz [ 267.665499][T27569] usb 9-1: Manufacturer: syz [ 267.667763][T27569] usb 9-1: SerialNumber: syz [ 267.683722][T27569] usb 9-1: config 0 descriptor?? [ 267.690049][T27569] dvb-usb: found a 'Pinnacle 450e DVB-S USB2.0' in warm state. [ 267.694180][T27569] dvb-usb: bulk message failed: -22 (4/0) [ 267.696543][T27569] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 267.700796][T27569] dvb-usb: bulk message failed: -22 (5/0) [ 267.703094][T27569] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 267.711714][T27569] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 267.716505][T27569] dvbdev: DVB: registering new adapter (Pinnacle 450e DVB-S USB2.0) [ 267.720629][T27569] usb 9-1: media controller created [ 267.728635][T27569] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 267.742095][T27569] usb 9-1: selecting invalid altsetting 3 [ 267.744701][T27569] ttusb2: set interface to alts=3 failed [ 267.752909][T28463] netlink: 'syz.1.10730': attribute type 7 has an invalid length. [ 267.757702][T28463] netlink: 'syz.1.10730': attribute type 8 has an invalid length. [ 267.793649][T27569] DVB: Unable to find symbol tda10086_attach() [ 267.796902][T27569] dvb-usb: no frontend was attached by 'Pinnacle 450e DVB-S USB2.0' [ 267.805344][T27569] dvb-usb: bulk message failed: -22 (4/0) [ 267.808961][T27569] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 267.815641][T27569] dvb-usb: bulk message failed: -22 (5/0) [ 267.819140][T27569] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 267.823850][T27569] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully initialized and connected. [ 267.867885][T28471] netlink: 'syz.2.10736': attribute type 3 has an invalid length. [ 267.905293][T28441] dvb-usb: bulk message failed: -22 (7/0) [ 267.912148][T28441] ttusb2: there might have been an error during control message transfer. (rlen = 3, was 0) [ 267.917489][T28441] ttusb2: i2c transfer failed. [ 267.923068][ T6026] usb 9-1: USB disconnect, device number 5 [ 267.960520][ T6026] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully deinitialized and disconnected. [ 268.498747][T28493] program syz.3.10750 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 268.590113][T28503] sch_fq: defrate 4294967295 ignored. [ 268.678977][T28515] netlink: 216 bytes leftover after parsing attributes in process `syz.3.10759'. [ 268.683765][T28515] netlink: 'syz.3.10759': attribute type 2 has an invalid length. [ 268.711057][T28517] program syz.1.10760 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 268.737345][T28519] CIFS: VFS: Malformed UNC in devname [ 269.152004][T27569] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 269.248808][T28544] netlink: 20 bytes leftover after parsing attributes in process `syz.1.10773'. [ 269.312931][T27569] usb 8-1: too many configurations: 9, using maximum allowed: 8 [ 269.320750][T27569] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 269.324637][T27569] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 269.329755][T27569] usb 8-1: config 0 interface 0 has no altsetting 0 [ 269.337912][T27569] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 269.344243][T27569] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 269.351401][T27569] usb 8-1: config 0 interface 0 has no altsetting 0 [ 269.355958][T27569] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 269.360780][T27569] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 269.366234][T27569] usb 8-1: config 0 interface 0 has no altsetting 0 [ 269.384088][T27569] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 269.389384][T27569] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 269.399885][T27569] usb 8-1: config 0 interface 0 has no altsetting 0 [ 269.411062][T27569] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 269.416097][T27569] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 269.423294][T27569] usb 8-1: config 0 interface 0 has no altsetting 0 [ 269.430685][T27569] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 269.435397][T27569] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 269.441189][T27569] usb 8-1: config 0 interface 0 has no altsetting 0 [ 269.446198][T27569] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 269.452084][T27569] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 269.457280][T27569] usb 8-1: config 0 interface 0 has no altsetting 0 [ 269.462134][T27569] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 269.465840][T27569] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 269.470769][T27569] usb 8-1: config 0 interface 0 has no altsetting 0 [ 269.476984][T27569] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 269.482096][T27569] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 269.485817][T27569] usb 8-1: Product: syz [ 269.487815][T27569] usb 8-1: Manufacturer: syz [ 269.490445][T27569] usb 8-1: SerialNumber: syz [ 269.495603][T27569] usb 8-1: config 0 descriptor?? [ 269.514109][T27569] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0 [ 269.529804][T28565] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0) [ 269.714244][T27569] usb 8-1: USB disconnect, device number 7 [ 269.728372][T27569] yurex 8-1:0.0: USB YUREX #0 now disconnected [ 269.999832][ C3] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 270.225274][T28608] trusted_key: encrypted_key: key trusted:syz not found [ 270.282261][T28613] ALSA: seq fatal error: cannot create timer (-22) [ 271.750641][T28690] netlink: 56 bytes leftover after parsing attributes in process `syz.4.10840'. [ 272.019494][T28710] vlan2: entered promiscuous mode [ 272.022200][T28710] bridge0: entered promiscuous mode [ 273.319820][T28789] sctp: [Deprecated]: syz.1.10890 (pid 28789) Use of int in max_burst socket option. [ 273.319820][T28789] Use struct sctp_assoc_value instead [ 274.144268][T28833] netlink: 44 bytes leftover after parsing attributes in process `syz.3.10910'. [ 275.521286][T28897] netlink: 'syz.4.10940': attribute type 16 has an invalid length. [ 275.525937][T28897] netlink: 'syz.4.10940': attribute type 2 has an invalid length. [ 275.529186][T28897] netlink: 64102 bytes leftover after parsing attributes in process `syz.4.10940'. [ 276.345832][T28935] netlink: 16 bytes leftover after parsing attributes in process `syz.4.10958'. [ 276.449793][ T6026] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 276.834950][ T6026] usb 6-1: Using ep0 maxpacket: 32 [ 277.180205][ T6026] usb 6-1: New USB device found, idVendor=2304, idProduct=0222, bcdDevice=77.3f [ 277.184089][ T6026] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 277.187253][ T6026] usb 6-1: Product: syz [ 277.189162][ T6026] usb 6-1: Manufacturer: syz [ 277.274783][ T6026] usb 6-1: SerialNumber: syz [ 277.316624][ T6026] usb 6-1: config 0 descriptor?? [ 277.369293][ T6026] dvb-usb: found a 'Pinnacle 450e DVB-S USB2.0' in warm state. [ 277.394829][ T6026] dvb-usb: bulk message failed: -22 (4/0) [ 277.398029][ T6026] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 277.425410][ T6026] dvb-usb: bulk message failed: -22 (5/0) [ 277.427912][ T6026] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 277.441144][T28989] netlink: 12 bytes leftover after parsing attributes in process `syz.3.10982'. [ 277.592507][ T6026] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 277.626318][ T6026] dvbdev: DVB: registering new adapter (Pinnacle 450e DVB-S USB2.0) [ 277.651145][ T6026] usb 6-1: media controller created [ 277.683257][T28926] dvb-usb: bulk message failed: -22 (7/0) [ 277.687917][ T6026] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 277.701475][T28926] ttusb2: there might have been an error during control message transfer. (rlen = 3, was 0) [ 277.701570][T28926] ttusb2: i2c transfer failed. [ 277.848335][ T6026] usb 6-1: selecting invalid altsetting 3 [ 277.873808][ T6026] ttusb2: set interface to alts=3 failed [ 278.013052][ T6026] DVB: Unable to find symbol tda10086_attach() [ 278.016361][ T6026] dvb-usb: no frontend was attached by 'Pinnacle 450e DVB-S USB2.0' [ 278.082538][ T63] Bluetooth: hci1: command 0x2016 tx timeout [ 278.099046][ T6026] dvb-usb: bulk message failed: -22 (4/0) [ 278.123898][ T6026] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 278.171912][ T6026] dvb-usb: bulk message failed: -22 (5/0) [ 278.174460][ T6026] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 278.178376][ T6026] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully initialized and connected. [ 278.301084][T29025] i2c i2c-1: Invalid block read size 34 [ 278.416341][ T6026] usb 6-1: USB disconnect, device number 11 [ 278.538904][T29041] netlink: 268 bytes leftover after parsing attributes in process `syz.4.11006'. [ 278.546556][T29041] netlink: 136 bytes leftover after parsing attributes in process `syz.4.11006'. [ 278.551525][T29041] netlink: 16 bytes leftover after parsing attributes in process `syz.4.11006'. [ 278.669736][T29045] netlink: 8 bytes leftover after parsing attributes in process `syz.3.11007'. [ 278.670903][ T6026] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully deinitialized and disconnected. [ 279.677719][T29056] orangefs_mount: mount request failed with -4 [ 279.752701][T29094] program syz.2.11032 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 279.862832][T29107] netlink: 'syz.4.11037': attribute type 1 has an invalid length. [ 280.154787][ T63] Bluetooth: hci1: command 0x2016 tx timeout [ 280.193270][T29126] usb 2-1: USB disconnect, device number 2 [ 280.421913][T29139] Oops: general protection fault, probably for non-canonical address 0xeac826e83f43c1fe: 0000 [#1] SMP KASAN NOPTI [ 280.428325][T29139] KASAN: maybe wild-memory-access in range [0x56415741fa1e0ff0-0x56415741fa1e0ff7] [ 280.432329][T29139] CPU: 3 UID: 0 PID: 29139 Comm: syz.1.11053 Tainted: G L syzkaller #0 PREEMPT(full) [ 280.437461][T29139] Tainted: [L]=SOFTLOCKUP [ 280.439622][T29139] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 280.444470][T29139] RIP: 0010:try_module_get+0x23/0xd0 [ 280.446840][T29139] Code: 90 90 90 90 90 90 90 f3 0f 1e fa 48 85 ff 0f 84 9b 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 55 48 c1 ea 03 53 48 89 fb <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e 89 00 00 00 83 3b 02 74 67 48 [ 280.455979][T29139] RSP: 0000:ffffc900307ff8b8 EFLAGS: 00010202 [ 280.459025][T29139] RAX: dffffc0000000000 RBX: 56415741fa1e0ff3 RCX: ffffc9000c402000 [ 280.462394][T29139] RDX: 0ac82ae83f43c1fe RSI: ffffffff87eaf370 RDI: 56415741fa1e0ff3 [ 280.465836][T29139] RBP: ffff8880001d4800 R08: 0000000000000001 R09: fffffbfff1fda801 [ 280.469698][T29139] R10: ffffffff8fed400f R11: 0000000000000000 R12: ffff888021ca76c0 [ 280.475470][T29139] R13: ffffffff8a16d150 R14: ffff888029cc94e8 R15: ffff888021ca7708 [ 280.479108][T29139] FS: 0000000000000000(0000) GS:ffff888097440000(0063) knlGS:00000000f54a6b40 [ 280.480008][T29132] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 280.483248][T29139] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 280.487679][T29132] usb usb2: usbfs: usb_submit_urb returned -22 [ 280.491276][T29139] CR2: 00000000f745a58c CR3: 000000007882c000 CR4: 0000000000352ef0 [ 280.491303][T29139] Call Trace: [ 280.491311][T29139] [ 280.491322][T29139] dvb_device_open+0x124/0x3b0 [ 280.491359][T29139] ? __pfx_dvb_device_open+0x10/0x10 [ 280.491380][T29139] chrdev_open+0x234/0x6a0 [ 280.507911][T29139] ? __pfx_apparmor_file_open+0x10/0x10 [ 280.510765][T29139] ? __pfx_chrdev_open+0x10/0x10 [ 280.512945][T29139] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 280.515842][T29139] do_dentry_open+0x6d8/0x1660 [ 280.518217][T29139] ? __pfx_chrdev_open+0x10/0x10 [ 280.520705][T29139] vfs_open+0x82/0x3f0 [ 280.522732][T29139] path_openat+0x208c/0x31a0 [ 280.524744][T29139] ? asm_int80_emulation+0x1a/0x20 [ 280.526971][T29139] ? __pfx_path_openat+0x10/0x10 [ 280.529107][T29139] do_file_open+0x20e/0x430 [ 280.531534][T29139] ? __pfx_do_file_open+0x10/0x10 [ 280.534156][T29139] ? _raw_spin_unlock+0x28/0x50 [ 280.536547][T29139] ? alloc_fd+0x476/0x790 [ 280.538381][T29139] do_sys_openat2+0x10d/0x1e0 [ 280.540653][T29139] ? __pfx_do_sys_openat2+0x10/0x10 [ 280.543468][T29139] ? __ia32_sys_futex_time32+0x2f4/0x470 [ 280.548000][T29139] __ia32_compat_sys_openat+0x12d/0x210 [ 280.550696][T29139] ? __pfx___ia32_compat_sys_openat+0x10/0x10 [ 280.553287][T29139] do_int80_emulation+0x141/0x6b0 [ 280.555758][T29139] asm_int80_emulation+0x1a/0x20 [ 280.557953][T29139] RIP: 0023:0xf71e5cab [ 280.560521][T29139] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53 [ 280.569523][T29139] RSP: 002b:00000000f54a603c EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 280.573483][T29139] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f54a6100 [ 280.576731][T29139] RDX: 0000000000040002 RSI: 0000000000000000 RDI: 0000000000000000 [ 280.580192][T29139] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 280.583647][T29139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 280.587684][T29139] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 280.592563][T29139] [ 280.594630][T29139] Modules linked in: [ 280.598216][T29139] ---[ end trace 0000000000000000 ]--- [ 280.613372][T29139] RIP: 0010:try_module_get+0x23/0xd0 [ 280.615804][T29139] Code: 90 90 90 90 90 90 90 f3 0f 1e fa 48 85 ff 0f 84 9b 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 55 48 c1 ea 03 53 48 89 fb <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e 89 00 00 00 83 3b 02 74 67 48 [ 280.630277][T29139] RSP: 0000:ffffc900307ff8b8 EFLAGS: 00010202 [ 280.633419][T29139] RAX: dffffc0000000000 RBX: 56415741fa1e0ff3 RCX: ffffc9000c402000 [ 280.637702][T29139] RDX: 0ac82ae83f43c1fe RSI: ffffffff87eaf370 RDI: 56415741fa1e0ff3 [ 280.644615][T29139] RBP: ffff8880001d4800 R08: 0000000000000001 R09: fffffbfff1fda801 [ 280.648778][T29139] R10: ffffffff8fed400f R11: 0000000000000000 R12: ffff888021ca76c0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 280.669876][T29139] R13: ffffffff8a16d150 R14: ffff888029cc94e8 R15: ffff888021ca7708 [ 280.673708][T29139] FS: 0000000000000000(0000) GS:ffff888097340000(0063) knlGS:00000000f54a6b40 [ 280.678379][T29139] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 280.682338][T29139] CR2: 00000000f2054460 CR3: 000000007882c000 CR4: 0000000000352ef0 [ 280.686422][T29139] Kernel panic - not syncing: Fatal exception [ 280.689952][T29139] Kernel Offset: disabled [ 280.691978][T29139] Rebooting in 86400 seconds..