last executing test programs: 2.714869597s ago: executing program 0 (id=1273): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x1c}}, 0x0) r1 = syz_open_dev$sndpcmc(&(0x7f0000004240), 0x8, 0x3b200) ioctl$SNDRV_PCM_IOCTL_STATUS64(r1, 0xc0884123, 0x0) eventfd2(0x5, 0x80801) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={0x14, r4, 0x731, 0x0, 0x0, {0x38}}, 0x14}, 0x1, 0x2}, 0x0) r5 = dup(r2) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000580)) write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c) syz_io_uring_setup(0x8d5, &(0x7f00000000c0)={0x0, 0x0, 0x3010}, &(0x7f0000000040)=0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(0xffffffffffffffff, 0x47ba, 0x3e80, 0x25, 0x0, 0x0) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000ac0), r8) sendmsg$NFC_CMD_ENABLE_SE(r8, &(0x7f0000000880)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x24, 0x0, 0x0, 0x70bd25, 0x25dfdbfd, {}, [@NFC_ATTR_SE_INDEX={0x8, 0x15, 0xc0}, @NFC_ATTR_SE_INDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x4) sendmsg$IEEE802154_LLSEC_SETPARAMS(r8, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f00000003c0)={0x14, r9, 0x300, 0x40000000, 0x0, {0x22}}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x200cc0d4) r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r11 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000000), r10) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="01000000000000000000037400062c00070073797352656d5f753a6f626a6563745f723a756465765f68656c7065725f657865635f743a7330000800020000000000080007002609090914000600626f6e64300000000000000000000000080003"], 0x78}, 0x1, 0xffffffff00000003}, 0x0) sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r8, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)=ANY=[@ANYBLOB="5c581f00", @ANYRES16=r11, @ANYBLOB="01002bbd7000fddbdf250600000008000500e00000012900070073797374656d5f753a6f626a6563745f723a617564697463746c5f657865635f743a733000000000140006007465616d5f736c6176655f3000000000"], 0x5c}}, 0x81) getpid() getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f00000001c0)={0x0, @initdev, @multicast2}, &(0x7f00000003c0)=0xc) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x1b, &(0x7f0000000700)=ANY=[@ANYBLOB, @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000c10700007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000820000000626070018000000184900000600"/88], &(0x7f0000000140)='GPL\x00', 0x7, 0x6c, &(0x7f0000000340)=""/108, 0x41100, 0x26, '\x00', r12, 0x0, r5, 0x8, &(0x7f0000000400)={0x3, 0x1}, 0x8, 0x10, &(0x7f0000000440)={0x5, 0xd, 0x9, 0x3}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000480)=[r5], 0x0, 0x10, 0x3, @void, @value}, 0x94) 2.548740884s ago: executing program 3 (id=1277): bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000060000000000000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000d8ffffffb702000008000000b7030000000080008500000006000000b7080000ff000000dbaaf8fff1000000b5080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYBLOB="0000000000000000b705000008000000850000006a00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r0}, 0xc) 2.548588397s ago: executing program 3 (id=1278): bpf$TOKEN_CREATE(0x24, &(0x7f0000000000), 0x8) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYRESHEX=0x0], &(0x7f0000000340)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141041) r1 = dup(r0) getegid() bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x80) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1}) r5 = socket$kcm(0x29, 0x7, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x89e2, 0x0) io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0) r6 = syz_init_net_socket$rose(0xb, 0x5, 0x0) listen(r6, 0x0) accept4$rose(r6, 0x0, 0x0, 0x0) 2.109174898s ago: executing program 0 (id=1280): r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) lseek(r0, 0x7ff, 0x1) 2.017434705s ago: executing program 0 (id=1281): r0 = epoll_create1(0x80000) r1 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_FORWARD(r1, 0x40044149, &(0x7f0000000080)) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) r3 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000040)={0xa0000004}) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000000)={0x20002005}) poll(&(0x7f00000000c0)=[{r3, 0x1009}], 0x1, 0x8000007) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000900)={0x1, &(0x7f00000008c0)=[{0x6}]}) socket$inet(0x2, 0x3, 0x2) munmap(&(0x7f0000584000/0x800000)=nil, 0x800000) syz_open_dev$tty20(0xc, 0x4, 0x0) r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000240)={0x3, &(0x7f00000001c0)=[{0x6, 0x27, 0x15, 0x4}, {0x200, 0x1, 0x4, 0x1}, {0x800, 0x1, 0x3}]}) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x40000012}) socket$inet_tcp(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000180)={0x0, 0x1, &(0x7f0000000340)=[r5], &(0x7f0000000280)=[0x1], &(0x7f0000000200), &(0x7f0000000240), 0x0, 0x7f}) 1.748448895s ago: executing program 2 (id=1282): r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x8002, 0x0) pwritev(r0, 0x0, 0x0, 0x0, 0x0) 1.748163971s ago: executing program 2 (id=1283): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) write(r0, 0x0, 0x0) 1.699489946s ago: executing program 2 (id=1284): r0 = openat$sysfs(0xffffff9c, 0x0, 0x20140, 0x8) read$FUSE(r0, &(0x7f0000001b00)={0x2020}, 0x2020) 1.699260349s ago: executing program 2 (id=1285): bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r0, r1, 0x2, 0x2, 0x0, @void, @value}, 0x10) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)=ANY=[@ANYRES32=r4, @ANYRES32=r3, @ANYBLOB="0200000002"], 0x10) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r2, r3, 0x2, 0x2, 0x0, @void, @value}, 0x10) 1.647016269s ago: executing program 2 (id=1286): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$6lowpan_control(r0, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000680), 0x40000, 0x19) 1.646098647s ago: executing program 3 (id=1287): mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xe, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x0, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0xffffffffffffffff, 0x4}, 0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x3a, 0x20000000) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10138, 0x2, 0x0) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r5 = syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x0) ioctl$DRM_IOCTL_GET_MAGIC(r5, 0x80046402, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) ioctl$DRM_IOCTL_AUTH_MAGIC(r7, 0x40046411, &(0x7f0000000000)=0x1) ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="000000000100010000000000"]) ioctl$SG_SET_TIMEOUT(r4, 0x2201, &(0x7f0000000000)=0xc) r8 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) r9 = epoll_create(0x3) epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r8, &(0x7f00000003c0)={0x8000201c}) syz_clone(0x20304000, 0x0, 0x0, 0x0, 0x0, 0x0) 1.579201082s ago: executing program 2 (id=1288): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x1c}}, 0x0) r1 = syz_open_dev$sndpcmc(&(0x7f0000004240), 0x8, 0x3b200) ioctl$SNDRV_PCM_IOCTL_STATUS64(r1, 0xc0884123, 0x0) eventfd2(0x5, 0x80801) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={0x14, r4, 0x731, 0x0, 0x0, {0x38}}, 0x14}, 0x1, 0x2}, 0x0) r5 = dup(r2) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000580)) write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c) syz_io_uring_setup(0x8d5, &(0x7f00000000c0)={0x0, 0x0, 0x3010}, &(0x7f0000000040)=0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(0xffffffffffffffff, 0x47ba, 0x3e80, 0x25, 0x0, 0x0) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000ac0), r8) sendmsg$NFC_CMD_ENABLE_SE(r8, &(0x7f0000000880)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x24, 0x0, 0x0, 0x70bd25, 0x25dfdbfd, {}, [@NFC_ATTR_SE_INDEX={0x8, 0x15, 0xc0}, @NFC_ATTR_SE_INDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x4) sendmsg$IEEE802154_LLSEC_SETPARAMS(r8, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f00000003c0)={0x14, r9, 0x300, 0x40000000, 0x0, {0x22}}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x200cc0d4) r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r11 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000000), r10) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="01000000000000000000037400062c00070073797352656d5f753a6f626a6563745f723a756465765f68656c7065725f657865635f743a7330000800020000000000080007002609090914000600626f6e64300000000000000000000000080003"], 0x78}, 0x1, 0xffffffff00000003}, 0x0) sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r8, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)=ANY=[@ANYBLOB="5c581f00", @ANYRES16=r11, @ANYBLOB="01002bbd7000fddbdf250600000008000500e00000012900070073797374656d5f753a6f626a6563745f723a617564697463746c5f657865635f743a733000000000140006007465616d5f736c6176655f3000000000"], 0x5c}}, 0x81) getpid() getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f00000001c0)={0x0, @initdev, @multicast2}, &(0x7f00000003c0)=0xc) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x1b, &(0x7f0000000700)=ANY=[@ANYBLOB, @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000c10700007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000820000000626070018000000184900000600"/88], &(0x7f0000000140)='GPL\x00', 0x7, 0x6c, &(0x7f0000000340)=""/108, 0x41100, 0x26, '\x00', r12, 0x0, r5, 0x8, &(0x7f0000000400)={0x3, 0x1}, 0x8, 0x10, &(0x7f0000000440)={0x5, 0xd, 0x9, 0x3}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000480)=[r5], 0x0, 0x10, 0x3, @void, @value}, 0x94) 1.349058919s ago: executing program 1 (id=1289): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f7475"], 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x200000000003, &(0x7f0000000040)={0xffffffffffffffff}, 0x111, 0x9}}, 0x4c) write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000180)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e25, 0x10001, @local, 0xb}, r3}}, 0x30) write$RDMA_USER_CM_CMD_JOIN_MCAST(r2, &(0x7f0000000900)={0x16, 0x98, 0xfa00, {0x0, 0x4, r3, 0x10, 0x0, @in={0x2, 0x4e23, @loopback}}}, 0xa0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) r5 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r5, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000540)={0x2, 0x6, 0x2, 0x0, 0x2}, 0x10}}, 0x0) bind$bt_l2cap(r4, &(0x7f0000000180)={0x1f, 0x0, @any, 0x3}, 0xe) fcntl$getownex(r4, 0x10, &(0x7f0000000040)={0x0, 0x0}) prlimit64(r6, 0x6, &(0x7f0000000100)={0x4, 0x3}, &(0x7f0000000140)) setsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0xf, 0x0, 0x0) close(r4) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0xfffa, 0xfff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x7}]}, &(0x7f0000000540)=0x10) setsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f00000000c0)={r7, 0xfffffffd, 0x9}, 0x10) 1.078858378s ago: executing program 0 (id=1290): r0 = socket$packet(0x11, 0x3, 0x300) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) r2 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r2, 0x8922, &(0x7f0000000200)={'wlan1\x00', 0x5e}) r3 = dup(r1) write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c) r4 = syz_io_uring_setup(0x23b, &(0x7f0000000380)={0x0, 0xce09, 0x20, 0x3, 0x155, 0x0, r3}, &(0x7f0000001700)=0x0, &(0x7f0000001740)=0x0) write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c) syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100}, &(0x7f0000000180), 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000280)=@l2={0x1f, 0x7fff, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0xb}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000700)="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", 0xfff}, {&(0x7f00000005c0)="3c740b0c879fd9e7ec29a9ffba8a43380c311f5042aabe16775b87d3c453bb28600bc26d8570ae984c9e38dcf3a8ef41c12e46e2bf3335c1c814c395ca682c76f8dfb5939fc6612ff50287bf7f99d17e8a546cd8cd6cdc3fb49073137c50777b", 0x60}], 0x2}, 0x8000) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', 0x0}) r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001800)={0x6, 0x3, &(0x7f00000006c0)=@framed, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r8, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r10 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x801, 0x0, 0x25dfdbfd, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r9}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0) ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f00000004c0)={0xd, 0x3, 0x2, 0xc, 0x3, 0x0, [{0xbe3b, 0x1, 0x8, '\x00', 0x2100}, {0x2, 0x1ff, 0x100, '\x00', 0x1100}, {0xdd, 0x100000001, 0x8, '\x00', 0x1}]}) r11 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$IOCTL_VMCI_VERSION2(r11, 0x7a7, &(0x7f0000000000)=0x10000) ioctl$IOCTL_VMCI_INIT_CONTEXT(r11, 0x7a0, &(0x7f0000000100)={@local}) ioctl$IOCTL_VMCI_CTX_ADD_NOTIFICATION(r11, 0x7af, &(0x7f0000000080)={@hyper, 0x9}) ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r11, 0x7b1, &(0x7f00000000c0)={0x0, 0x1}) getsockopt$IP_VS_SO_GET_SERVICES(r2, 0x0, 0x482, &(0x7f0000000400)=""/186, &(0x7f0000000140)=0xba) syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1}) io_uring_enter(r4, 0x708, 0x41e3, 0x0, 0x0, 0x0) io_setup(0x8, &(0x7f0000000680)=0x0) io_pgetevents(r12, 0x2, 0x0, &(0x7f00000000c0)=[{}, {}], &(0x7f0000000240)={0x77359400}, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e21, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, 0x4}, 0x1c) 791.245099ms ago: executing program 1 (id=1291): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x60000000004, 0x1000000000, 0x5, 0x41, 0x2000000, 0x0, 0x2004cb, 0x0, 0xa1d, 0x68ff, 0x5, 0x0, 0x3, 0x2], 0x10000, 0x202}) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000007bc0)=[{{0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f00000000c0)="0acc6ded6c41b853b32d891da99ddeb4ba62bbb242e5b991d7bf80c6821fc0699e86ec03cfac662db2805f2ae8870c99cc92c61150d86160", 0x38}, {&(0x7f0000000680)="7a3eec524f465ab5f48ace024cf41f45cba28e8cd4b8dcab11a68b0054539be3eb3402b57e37fc1a00393eadb4ad1f145b896bf15a3864ac58149ef1fa40508a0415f0f7ab74d72f21c865e5de12166fa1e79fa5ba909e19b7a58bf963c570de6d2bf1fc12ec7a3ff6c377424f897a2133079b079db3c3b598bd9f986a4cec8bc2f281c37d62a5506e436b445a751458e2eec982aa9ee47a0a50645e84528f19e7df4fa0a21dfc764d9e6a4dc0239b6ebe075700efb05daa801e675dc9e344a1f00013185d3bbd51cb18de9490393927753c1139d1a9dda9b0", 0xd9}, {&(0x7f0000000780)="e44b8802ef24601c659751ec35ee0c19481f59ea7d815c343719ec4113c1be1026e0dea35c5c4a208efa8e6902c110223842c334072d5c6ae8c3e24d6ba6b12c52c5906ca7ac5f6301d62fd96edb7da6cbd4b15ea94fef801d33be85d533e438af4d1a0a3965d0d24e46913a3130bc375531b91465fae0d90997a32b8c5934e984f08d7fd2391fef9bc81f7195c4a1b268ae8ef303f8412a2cdc7eb50486c60f4a1445dda8f531be5aee408d5db580c896fb07fdde3b7f541820370903377b8cf7850a6b35c218183ed1eb27505d6af7a29bfc55ff53d6c7773b0e000ba27ed7e22c9df23e3f2a", 0xe7}, {&(0x7f00000002c0)="fc159482da8d170a6812444dd343fd83d7d20a8e9d8b83df7e4c717ff7c428869031d95ac432b8a058cbc0b44c3cd9cf5ce6a80e0305f08e87a22c1018e631492ae0b90de3c050bfb809314183f0db3aeb3c3190a9dad94f8c265ce2ab9474b431d0b9ad5f05e07f4fae15458b141e6392e21b54940f7e", 0x77}, {&(0x7f0000000880)="e0c90f581ea320c255829a11ea2fad45f3c0726a9ee10ca28b92fb1dce0e0b3352514c301f634c98b55b5c81dda336592161c5f4a87774301820c442347abd6a29a17a09e7860c12cf322bc9f05058d2681c599f0ef4ac53d467d2a9ddea00"/105, 0x69}, {&(0x7f0000000900)="57cebd12796a81f14fe9b3f17a05c483e4ce615c4dd1fad946c893d42c95d3331a44d903962a05c61051a5a2d3451676d3f7009838613a3b01a2630d019b813db8498448ba40ab1055ef5ad646aa85135bc3288bfd46aa831107978ef3aafe206bada39461a9094459e12b988cb65510253913127601626d1c7d3e525ee1e0ec95435168823fd27661f0ab7050c7d0286ddd2fd875d2f93dfd46720be534841393c0f2c8d309a13de000652d4b0e649c2dcb5f91431361aebb34f402b0b83f6787af476d10dd0680c4c7cbd751e20c96c790cab7613bc91886cbf321", 0xdc}], 0x6, &(0x7f00000012c0)=ANY=[@ANYBLOB="1c400000010000000100f66e57d8fd9a553457369b3c2045d8d580ea3b57145b9d7896b2ff30c6068449923381861d45bbb94e6a826be2c4ed60370449c812fa39f01405c06339fa9629e2dac9ab1e2ffa3e201927e962de7b45acf88e9d1801014a4132f5d5feaf6e07a388e0a7ae4a47b2f4976cf85bdc046f78db5a37476ece8b0f097799a89de5f900c58a22ddeda29a779eee33d3245178aa2c56c23c1828eeadcc2d80ec0e276ff9677b49dbc35d19e9711f1841", @ANYRES32, @ANYRES32=r1, @ANYRES32, @ANYRES32, @ANYBLOB="300000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYRES32, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32], 0x4c, 0x800}}], 0x1, 0x41) ioctl$KVM_RUN(r2, 0xae80, 0x0) 716.665347ms ago: executing program 3 (id=1292): mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x9) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]}) r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) mknodat$loop(r0, &(0x7f0000000000)='./file1\x00', 0xc000, 0x0) chdir(&(0x7f00000003c0)='./bus\x00') linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) 715.120037ms ago: executing program 1 (id=1293): r0 = openat$sysfs(0xffffff9c, 0x0, 0x20140, 0x8) read$FUSE(r0, &(0x7f0000001b00)={0x2020}, 0x2020) 714.770674ms ago: executing program 1 (id=1294): bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r0, r1, 0x2, 0x2, 0x0, @void, @value}, 0x10) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)=ANY=[@ANYRES32=r4, @ANYRES32=r3, @ANYBLOB="0200000002"], 0x10) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r2, r3, 0x2, 0x2, 0x0, @void, @value}, 0x10) 638.259071ms ago: executing program 0 (id=1295): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f74"], 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x200000000003, &(0x7f0000000040)={0xffffffffffffffff}, 0x111, 0x9}}, 0x4c) write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000180)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e25, 0x10001, @local, 0xb}, r3}}, 0x30) write$RDMA_USER_CM_CMD_JOIN_MCAST(r2, &(0x7f0000000900)={0x16, 0x98, 0xfa00, {0x0, 0x4, r3, 0x10, 0x0, @in={0x2, 0x4e23, @loopback}}}, 0xa0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) r5 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r5, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000540)={0x2, 0x6, 0x2, 0x0, 0x2}, 0x10}}, 0x0) bind$bt_l2cap(r4, &(0x7f0000000180)={0x1f, 0x0, @any, 0x3}, 0xe) fcntl$getownex(r4, 0x10, &(0x7f0000000040)={0x0, 0x0}) prlimit64(r6, 0x6, &(0x7f0000000100)={0x4, 0x3}, &(0x7f0000000140)) setsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0xf, 0x0, 0x0) close(r4) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0xfffa, 0xfff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x7}]}, &(0x7f0000000540)=0x10) setsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f00000000c0)={r7, 0xfffffffd, 0x9}, 0x10) 637.870443ms ago: executing program 1 (id=1296): getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000080)=0x0, &(0x7f0000000180)=0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYRESHEX=0x0], &(0x7f0000000340)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', r0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141041) r2 = dup(r1) getegid() bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x80) write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c) r3 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r2}, &(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1}) r6 = socket$kcm(0x29, 0x7, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, 0x0) io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0) r7 = syz_init_net_socket$rose(0xb, 0x5, 0x0) listen(r7, 0x0) accept4$rose(r7, 0x0, 0x0, 0x0) 584.490485ms ago: executing program 3 (id=1297): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f0000000080)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006a00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r1}, 0xc) 505.801151ms ago: executing program 3 (id=1298): bpf$TOKEN_CREATE(0x24, &(0x7f0000000000), 0x8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0xffffffffffffff6b}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) close(0xffffffffffffffff) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) setsockopt$sock_int(r3, 0x1, 0x7, &(0x7f0000000180)=0x7, 0x4) sendmmsg(r3, &(0x7f0000000900)=[{{0x0, 0x0, &(0x7f00000000c0)=[{0x0}], 0x1}}], 0x1, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r5) sendmsg$NLBL_CIPSOV4_C_REMOVE(r5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004004}, 0x0) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) shmctl$SHM_INFO(0x0, 0xe, &(0x7f00000004c0)=""/93) r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000f40), r6) sendmsg$IEEE802154_ADD_IFACE(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="3400839faf562e7eb37327c500006fddd01f3b32aa40bdbd40ff398a488ff45cc9b76325777119084f06380c9f6434eac2161749de2e9bd8e7adf24a6f23969b", @ANYRES16=r7, @ANYBLOB="0100fcff7f00000000002100000009001f0070687930000000000c00050000000000000000000500200000000000"], 0x34}}, 0x0) sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r5, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000440)={&(0x7f0000000540)={0x54, r7, 0x200, 0x70bd2d, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0xe}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x0, 0x35, 0x1}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x54}, 0x1, 0x0, 0x0, 0x20040080}, 0x0) syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x854}, 0x10) 385.131295ms ago: executing program 0 (id=1299): r0 = epoll_create1(0x80000) r1 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_FORWARD(r1, 0x40044149, &(0x7f0000000080)) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) r3 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000040)={0xa0000004}) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000000)={0x20002005}) poll(&(0x7f00000000c0)=[{r3, 0x1009}], 0x1, 0x8000007) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000900)={0x1, &(0x7f00000008c0)=[{0x6}]}) socket$inet(0x2, 0x3, 0x2) munmap(&(0x7f0000584000/0x800000)=nil, 0x800000) syz_open_dev$tty20(0xc, 0x4, 0x0) r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000240)={0x3, &(0x7f00000001c0)=[{0x6, 0x27, 0x15, 0x4}, {0x200, 0x1, 0x4, 0x1}, {0x800, 0x1, 0x3}]}) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x40000012}) socket$inet_tcp(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000180)={0x0, 0x1, &(0x7f0000000340)=[r5], &(0x7f0000000280)=[0x1], &(0x7f0000000200), &(0x7f0000000240), 0x0, 0x7f}) 0s ago: executing program 1 (id=1300): mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xe, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x0, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0xffffffffffffffff, 0x4}, 0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x3a, 0x20000000) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10138, 0x2, 0x0) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r5 = syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x0) ioctl$DRM_IOCTL_GET_MAGIC(r5, 0x80046402, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) ioctl$DRM_IOCTL_AUTH_MAGIC(r7, 0x40046411, &(0x7f0000000000)=0x1) ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="000000000100010000000000"]) ioctl$SG_SET_TIMEOUT(r4, 0x2201, &(0x7f0000000000)=0xc) r8 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) r9 = epoll_create(0x3) epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r8, &(0x7f00000003c0)={0x8000201c}) syz_clone(0x20304000, 0x0, 0x0, 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): valid length. [ 152.402679][ T8122] netlink: 'syz.2.600': attribute type 1 has an invalid length. [ 152.405043][ T8122] netlink: 1156 bytes leftover after parsing attributes in process `syz.2.600'. [ 152.415798][ T10] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 152.569813][ T10] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 152.572569][ T10] usb 5-1: config 1 has an invalid descriptor of length 247, skipping remainder of the config [ 152.575872][ T10] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 152.578811][ T10] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 152.584158][ T10] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 152.587329][ T10] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 152.589799][ T10] usb 5-1: Product: syz [ 152.591106][ T10] usb 5-1: Manufacturer: syz [ 152.599109][ T10] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22 [ 152.638210][ T8136] ptrace attach of "/syz-executor exec"[5944] was attempted by ""[8136] [ 152.751170][ T40] audit: type=1326 audit(1749051695.675:1371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8134 comm="syz.3.604" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f25579 code=0x7ffc0000 [ 152.758632][ T40] audit: type=1326 audit(1749051695.675:1372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8134 comm="syz.3.604" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f25579 code=0x7ffc0000 [ 152.767589][ T40] audit: type=1326 audit(1749051695.675:1373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8134 comm="syz.3.604" exe="/syz-executor" sig=0 arch=40000003 syscall=393 compat=1 ip=0xf7f25579 code=0x7ffc0000 [ 152.774120][ T40] audit: type=1326 audit(1749051695.675:1374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8134 comm="syz.3.604" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f25579 code=0x7ffc0000 [ 152.780787][ T40] audit: type=1326 audit(1749051695.675:1375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8134 comm="syz.3.604" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f25579 code=0x7ffc0000 [ 152.788564][ T40] audit: type=1326 audit(1749051695.675:1376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8134 comm="syz.3.604" exe="/syz-executor" sig=0 arch=40000003 syscall=394 compat=1 ip=0xf7f25579 code=0x7ffc0000 [ 152.794930][ T40] audit: type=1326 audit(1749051695.675:1377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8134 comm="syz.3.604" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f25579 code=0x7ffc0000 [ 152.801416][ T40] audit: type=1326 audit(1749051695.675:1378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8134 comm="syz.3.604" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f25579 code=0x7ffc0000 [ 152.808849][ T40] audit: type=1326 audit(1749051695.675:1379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8134 comm="syz.3.604" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f25579 code=0x7ffc0000 [ 152.815348][ T40] audit: type=1326 audit(1749051695.675:1380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8134 comm="syz.3.604" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f25579 code=0x7ffc0000 [ 152.855596][ T6207] usb 5-1: USB disconnect, device number 13 [ 153.472295][ T8155] rdma_rxe: rxe_newlink: failed to add syz_tun [ 153.776099][ T8173] xt_cgroup: invalid path, errno=-2 [ 153.935525][ T8179] siw: device registration error -23 [ 153.942708][ T8179] netlink: 16 bytes leftover after parsing attributes in process `syz.0.610'. [ 154.259665][ T8178] lo speed is unknown, defaulting to 1000 [ 154.567994][ T5955] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 154.575220][ T5955] Bluetooth: hci2: Injecting HCI hardware error event [ 154.583386][ T5308] Bluetooth: hci2: hardware error 0x00 [ 154.649590][ T8195] syz1: rxe_newlink: already configured on syz_tun [ 154.882863][ T8214] FAULT_INJECTION: forcing a failure. [ 154.882863][ T8214] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 154.888372][ T8214] CPU: 2 UID: 0 PID: 8214 Comm: syz.0.630 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) [ 154.888392][ T8214] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 154.888400][ T8214] Call Trace: [ 154.888405][ T8214] [ 154.888410][ T8214] dump_stack_lvl+0x16c/0x1f0 [ 154.888436][ T8214] should_fail_ex+0x512/0x640 [ 154.888455][ T8214] strncpy_from_user+0x3b/0x2e0 [ 154.888471][ T8214] getname_flags.part.0+0x8f/0x550 [ 154.888490][ T8214] getname_flags+0x93/0xf0 [ 154.888508][ T8214] do_sys_openat2+0xb8/0x1d0 [ 154.888527][ T8214] ? __pfx_do_sys_openat2+0x10/0x10 [ 154.888548][ T8214] ? __fget_files+0x20e/0x3c0 [ 154.888568][ T8214] ? handle_mm_fault+0x1f0/0xd10 [ 154.888592][ T8214] __ia32_compat_sys_openat+0x16d/0x210 [ 154.888607][ T8214] ? __pfx___ia32_compat_sys_openat+0x10/0x10 [ 154.888620][ T8214] ? ksys_write+0x1ac/0x250 [ 154.888638][ T8214] ? rcu_is_watching+0x12/0xc0 [ 154.888652][ T8214] __do_fast_syscall_32+0x7c/0x3a0 [ 154.888664][ T8214] do_fast_syscall_32+0x32/0x80 [ 154.888675][ T8214] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 154.888689][ T8214] RIP: 0023:0xf707e579 [ 154.888697][ T8214] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 154.888707][ T8214] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000127 [ 154.888717][ T8214] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000800001c0 [ 154.888724][ T8214] RDX: 000000000000275a RSI: 0000000000000000 RDI: 0000000000000000 [ 154.888730][ T8214] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 154.888735][ T8214] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 154.888741][ T8214] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 154.888754][ T8214] [ 155.004773][ T8226] netlink: 'syz.1.633': attribute type 12 has an invalid length. [ 155.028161][ T8227] netlink: 'syz.2.627': attribute type 10 has an invalid length. [ 155.034626][ T8227] batman_adv: batadv0: Adding interface: team0 [ 155.039436][ T8227] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 155.049583][ T8227] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 155.327690][ T8240] befs: (nullb0): No write support. Marking filesystem read-only [ 155.333652][ T8240] befs: (nullb0): invalid magic header [ 155.376411][ T8234] input: syz0 as /devices/virtual/input/input8 [ 155.676458][ T53] usb 8-1: new high-speed USB device number 17 using dummy_hcd [ 155.825802][ T53] usb 8-1: Using ep0 maxpacket: 16 [ 155.830306][ T53] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 155.835237][ T53] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 155.841520][ T53] usb 8-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00 [ 155.845944][ T53] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 155.853587][ T53] usb 8-1: config 0 descriptor?? [ 155.870624][ T53] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input9 [ 156.107143][ T53] usb 8-1: USB disconnect, device number 17 [ 156.109720][ C2] pxrc 8-1:0.0: pxrc_usb_irq - usb_submit_urb failed with result: -19 [ 156.167091][ T8254] rdma_rxe: rxe_newlink: failed to add syz_tun [ 156.620162][ T8276] afs: Unknown parameter 'dynS0 -W- (EC a) 4:64 [ 156.620162][ T8276] netcon0 ' [ 156.645831][ T5308] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 157.041190][ T8295] befs: (nullb0): No write support. Marking filesystem read-only [ 157.044645][ T8295] befs: (nullb0): invalid magic header [ 157.694729][ T8303] overlayfs: failed to resolve './file0': -2 [ 157.778830][ T8310] syz1: rxe_newlink: already configured on syz_tun [ 157.798550][ T8311] netlink: 240 bytes leftover after parsing attributes in process `syz.2.652'. [ 158.733986][ T8336] overlayfs: failed to resolve './file0': -2 [ 159.432531][ T8347] xt_CT: You must specify a L4 protocol and not use inversions on it [ 159.551784][ T8354] rdma_rxe: rxe_newlink: failed to add syz_tun [ 159.579124][ T8356] befs: (nullb0): No write support. Marking filesystem read-only [ 159.581963][ T8356] befs: (nullb0): invalid magic header [ 159.816083][ T8367] netlink: 'syz.2.671': attribute type 21 has an invalid length. [ 159.908789][ T8372] netlink: 240 bytes leftover after parsing attributes in process `syz.1.669'. [ 160.052752][ T8377] overlayfs: failed to resolve './file1': -2 [ 160.188532][ T8380] netlink: 44 bytes leftover after parsing attributes in process `syz.0.670'. [ 160.819163][ T8396] netlink: 'syz.0.678': attribute type 5 has an invalid length. [ 160.867318][ T8399] tipc: Started in network mode [ 160.868911][ T8399] tipc: Node identity ac14140f, cluster identity 4711 [ 160.871097][ T8399] tipc: New replicast peer: 172.30.1.1 [ 160.873805][ T8399] tipc: Enabled bearer , priority 10 [ 160.913045][ T8402] rdma_rxe: rxe_newlink: failed to add syz_tun [ 160.970549][ T8407] overlayfs: failed to resolve './file1': -2 [ 160.975629][ T8404] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 161.016168][ T8404] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 161.216082][ T53] usb 7-1: new full-speed USB device number 16 using dummy_hcd [ 161.231698][ T8424] netlink: 240 bytes leftover after parsing attributes in process `syz.3.685'. [ 161.378106][ T53] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 161.378131][ T53] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 161.378170][ T53] usb 7-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8 [ 161.378190][ T53] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 161.393482][ T53] usb 7-1: config 0 descriptor?? [ 161.403902][ T53] dvb-usb: found a 'Artec T1 USB2.0' in warm state. [ 161.404175][ T53] dvb-usb: bulk message failed: -22 (3/0) [ 161.413197][ T53] dvb-usb: will use the device's hardware PID filter (table count: 16). [ 161.414439][ T53] dvbdev: DVB: registering new adapter (Artec T1 USB2.0) [ 161.414490][ T53] usb 7-1: media controller created [ 161.419554][ T53] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 161.430433][ T53] dvb-usb: bulk message failed: -22 (6/0) [ 161.430561][ T53] dvb-usb: no frontend was attached by 'Artec T1 USB2.0' [ 161.436106][ T53] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb7/7-1/input/input10 [ 161.446768][ T53] dvb-usb: schedule remote query interval to 150 msecs. [ 161.446786][ T53] dvb-usb: Artec T1 USB2.0 successfully initialized and connected. [ 161.607932][ T53] dvb-usb: bulk message failed: -22 (1/0) [ 161.607988][ T53] dvb-usb: error while querying for an remote control event. [ 161.775753][ T53] dvb-usb: bulk message failed: -22 (1/0) [ 161.775791][ T53] dvb-usb: error while querying for an remote control event. [ 161.777355][ T838] usb 7-1: USB disconnect, device number 16 [ 161.836514][ T838] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected. [ 161.877520][ T53] tipc: Node number set to 2886997007 [ 162.041092][ T8430] netlink: 'syz.3.688': attribute type 4 has an invalid length. [ 162.243495][ T8440] overlayfs: failed to resolve './file1': -2 [ 162.366559][ T8446] syz1: rxe_newlink: already configured on syz_tun [ 162.675247][ T8457] netlink: 240 bytes leftover after parsing attributes in process `syz.0.696'. [ 162.842165][ T8465] overlayfs: failed to resolve './file1': -2 [ 162.886042][ T5308] Bluetooth: hci0: Opcode 0x1407 failed: -110 [ 162.886496][ T5308] Bluetooth: hci0: command 0x040f tx timeout [ 163.062695][ T8473] netlink: 24 bytes leftover after parsing attributes in process `syz.2.703'. [ 163.096177][ T8475] ata1.00: invalid multi_count 128 ignored [ 163.316045][ T8479] befs: (nullb0): No write support. Marking filesystem read-only [ 163.316579][ T8479] befs: (nullb0): invalid magic header [ 163.473888][ T8483] rdma_rxe: rxe_newlink: failed to add syz_tun [ 163.637092][ T8493] overlayfs: failed to resolve './file1': -2 [ 164.506892][ T8522] netlink: 240 bytes leftover after parsing attributes in process `syz.0.717'. [ 164.562248][ T8524] FAULT_INJECTION: forcing a failure. [ 164.562248][ T8524] name failslab, interval 1, probability 0, space 0, times 0 [ 164.562277][ T8524] CPU: 2 UID: 0 PID: 8524 Comm: syz.2.718 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) [ 164.562296][ T8524] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 164.562303][ T8524] Call Trace: [ 164.562307][ T8524] [ 164.562311][ T8524] dump_stack_lvl+0x16c/0x1f0 [ 164.562334][ T8524] should_fail_ex+0x512/0x640 [ 164.562347][ T8524] ? fs_reclaim_acquire+0xae/0x150 [ 164.562363][ T8524] ? tomoyo_encode2+0x100/0x3e0 [ 164.562373][ T8524] should_failslab+0xc2/0x120 [ 164.562385][ T8524] __kmalloc_noprof+0xd2/0x510 [ 164.562406][ T8524] tomoyo_encode2+0x100/0x3e0 [ 164.562419][ T8524] tomoyo_encode+0x29/0x50 [ 164.562429][ T8524] tomoyo_realpath_from_path+0x18f/0x6e0 [ 164.562442][ T8524] ? tomoyo_profile+0x47/0x60 [ 164.562456][ T8524] tomoyo_path_number_perm+0x245/0x580 [ 164.562472][ T8524] ? tomoyo_path_number_perm+0x237/0x580 [ 164.562490][ T8524] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 164.562522][ T8524] ? find_held_lock+0x2b/0x80 [ 164.562533][ T8524] ? hook_file_ioctl_common+0x145/0x410 [ 164.562552][ T8524] ? __fget_files+0x20e/0x3c0 [ 164.562567][ T8524] ? __fput_deferred+0x460/0x480 [ 164.562581][ T8524] security_file_ioctl_compat+0x9b/0x240 [ 164.562600][ T8524] __ia32_compat_sys_ioctl+0xc3/0x370 [ 164.562616][ T8524] __do_fast_syscall_32+0x7c/0x3a0 [ 164.562629][ T8524] do_fast_syscall_32+0x32/0x80 [ 164.562640][ T8524] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 164.562654][ T8524] RIP: 0023:0xf7f87579 [ 164.562662][ T8524] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 164.562673][ T8524] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 164.562684][ T8524] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000000000890c [ 164.562691][ T8524] RDX: 0000000080000340 RSI: 0000000000000000 RDI: 0000000000000000 [ 164.562697][ T8524] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 164.562704][ T8524] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 164.562710][ T8524] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 164.562724][ T8524] [ 164.562732][ T8524] ERROR: Out of memory at tomoyo_realpath_from_path. [ 164.637347][ T8527] syz1: rxe_newlink: already configured on syz_tun [ 164.714475][ T8531] overlayfs: failed to resolve './file1': -2 [ 164.748032][ T8533] overlayfs: missing 'lowerdir' [ 165.006803][ T838] usb 7-1: new high-speed USB device number 17 using dummy_hcd [ 165.166738][ T838] usb 7-1: Using ep0 maxpacket: 32 [ 165.168021][ T838] usb 7-1: config index 0 descriptor too short (expected 65316, got 36) [ 165.172630][ T838] usb 7-1: config 255 has too many interfaces: 255, using maximum allowed: 32 [ 165.172651][ T838] usb 7-1: config 255 has an invalid descriptor of length 0, skipping remainder of the config [ 165.172666][ T838] usb 7-1: config 255 has 0 interfaces, different from the descriptor's value: 255 [ 165.172699][ T838] usb 7-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 165.172717][ T838] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 165.370226][ T8546] tipc: Enabled bearer , priority 27 [ 165.386450][ T838] usb 7-1: USB disconnect, device number 17 [ 165.653515][ T8552] syz1: rxe_newlink: already configured on syz_tun [ 165.691619][ T8555] syz.1.729: attempt to access beyond end of device [ 165.691619][ T8555] nbd1: rw=2048, sector=2, nr_sectors = 1 limit=0 [ 165.744486][ T8558] overlayfs: failed to resolve './file0': -2 [ 166.166003][ T53] usb 7-1: new high-speed USB device number 18 using dummy_hcd [ 166.325837][ T5308] Bluetooth: hci3: command 0x0405 tx timeout [ 166.331667][ T53] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 166.335324][ T53] usb 7-1: config 1 has an invalid descriptor of length 247, skipping remainder of the config [ 166.339589][ T53] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 166.343457][ T53] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 166.351082][ T53] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 166.354478][ T53] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 166.357065][ T53] usb 7-1: Product: syz [ 166.358402][ T53] usb 7-1: Manufacturer: syz [ 166.362768][ T53] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22 [ 166.567523][ T838] usb 7-1: USB disconnect, device number 18 [ 167.300964][ T8584] rdma_rxe: rxe_newlink: failed to add syz_tun [ 167.352665][ T8585] netlink: 240 bytes leftover after parsing attributes in process `syz.3.738'. [ 167.507471][ T8594] overlayfs: failed to resolve './file0': -2 [ 168.146968][ T8605] input: syz0 as /devices/virtual/input/input11 [ 168.446502][ T61] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 168.597904][ T61] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 168.601464][ T61] usb 6-1: config 1 has an invalid descriptor of length 247, skipping remainder of the config [ 168.605632][ T61] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 168.609626][ T61] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 168.616298][ T61] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 168.619990][ T61] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 168.622739][ T61] usb 6-1: Product: syz [ 168.624034][ T61] usb 6-1: Manufacturer: syz [ 168.628980][ T61] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22 [ 168.731634][ T8627] overlayfs: failed to resolve './file0': -2 [ 168.830262][ T61] usb 6-1: USB disconnect, device number 4 [ 169.149499][ T8638] netlink: 240 bytes leftover after parsing attributes in process `syz.0.757'. [ 170.229212][ T8668] FAULT_INJECTION: forcing a failure. [ 170.229212][ T8668] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 170.234571][ T8668] CPU: 0 UID: 0 PID: 8668 Comm: syz.0.767 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) [ 170.234594][ T8668] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 170.234605][ T8668] Call Trace: [ 170.234612][ T8668] [ 170.234636][ T8668] dump_stack_lvl+0x16c/0x1f0 [ 170.234670][ T8668] should_fail_ex+0x512/0x640 [ 170.234693][ T8668] _copy_to_user+0x32/0xd0 [ 170.234718][ T8668] simple_read_from_buffer+0xcb/0x170 [ 170.234744][ T8668] proc_fail_nth_read+0x197/0x270 [ 170.234766][ T8668] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 170.234788][ T8668] ? rw_verify_area+0xcf/0x680 [ 170.234810][ T8668] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 170.234833][ T8668] vfs_read+0x1e1/0xc60 [ 170.234859][ T8668] ? fdget_pos+0x2a2/0x370 [ 170.234887][ T8668] ? __pfx_vfs_read+0x10/0x10 [ 170.234909][ T8668] ? find_held_lock+0x2b/0x80 [ 170.234935][ T8668] ? __fget_files+0x20e/0x3c0 [ 170.234968][ T8668] ksys_read+0x12a/0x250 [ 170.234993][ T8668] ? __pfx_ksys_read+0x10/0x10 [ 170.235019][ T8668] ? rcu_is_watching+0x12/0xc0 [ 170.235042][ T8668] __do_fast_syscall_32+0x7c/0x3a0 [ 170.235064][ T8668] do_fast_syscall_32+0x32/0x80 [ 170.235081][ T8668] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 170.235103][ T8668] RIP: 0023:0xf707e579 [ 170.235117][ T8668] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 170.235134][ T8668] RSP: 002b:00000000f506e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 170.235157][ T8668] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f506e620 [ 170.235170][ T8668] RDX: 000000000000000f RSI: 00000000f73e2ff4 RDI: 0000000000000000 [ 170.235180][ T8668] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 170.235191][ T8668] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 170.235202][ T8668] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 170.235227][ T8668] [ 170.255561][ T839] usb 8-1: new high-speed USB device number 18 using dummy_hcd [ 170.465793][ T839] usb 8-1: Using ep0 maxpacket: 8 [ 170.469995][ T839] usb 8-1: config index 0 descriptor too short (expected 301, got 45) [ 170.473282][ T839] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 170.477525][ T839] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 170.481384][ T839] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 170.485273][ T839] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 170.491820][ T839] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 170.495520][ T839] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 170.545938][ T838] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 170.716954][ T839] usb 8-1: GET_CAPABILITIES returned 0 [ 170.717848][ T838] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 170.719011][ T839] usbtmc 8-1:16.0: can't read capabilities [ 170.722077][ T838] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 170.722120][ T838] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 170.748735][ T838] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 170.752275][ T838] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 170.765757][ T838] usb 5-1: Product: syz [ 170.767105][ T838] usb 5-1: Manufacturer: syz [ 170.772390][ T838] cdc_wdm 5-1:1.0: skipping garbage [ 170.773996][ T838] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22 [ 170.981375][ T839] usb 5-1: USB disconnect, device number 14 [ 171.275141][ T8682] netlink: 32 bytes leftover after parsing attributes in process `syz.3.763'. [ 171.339546][ T5987] usb 8-1: USB disconnect, device number 18 [ 171.439415][ T8690] netlink: 240 bytes leftover after parsing attributes in process `syz.2.773'. [ 172.916338][ T8719] netlink: 'syz.3.780': attribute type 11 has an invalid length. [ 172.934192][ T8719] syzkaller1: entered promiscuous mode [ 172.938046][ T8719] syzkaller1: entered allmulticast mode [ 173.205435][ T8735] netlink: 240 bytes leftover after parsing attributes in process `syz.1.786'. [ 173.286674][ T10] usb 8-1: new high-speed USB device number 19 using dummy_hcd [ 173.497033][ T10] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 173.500177][ T10] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 173.500210][ T10] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 173.501389][ T10] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 173.501404][ T10] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 173.501415][ T10] usb 8-1: Product: syz [ 173.501422][ T10] usb 8-1: Manufacturer: syz [ 173.504646][ T10] cdc_wdm 8-1:1.0: skipping garbage [ 173.521393][ T10] cdc_wdm 8-1:1.0: probe with driver cdc_wdm failed with error -22 [ 173.767974][ T5987] usb 8-1: USB disconnect, device number 19 [ 174.300578][ T8757] bridge0: port 2(bridge_slave_1) entered disabled state [ 174.304143][ T8757] bridge0: port 1(bridge_slave_0) entered disabled state [ 174.351832][ T8757] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 174.360731][ T8757] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 174.400638][ T8757] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 174.403399][ T8757] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 174.406987][ T8757] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 174.409873][ T8757] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 174.439703][ T5987] lo speed is unknown, defaulting to 1000 [ 174.442772][ T838] syz1: Port: 1 Link DOWN [ 174.444848][ T5987] syz0: Port: 1 Link DOWN [ 174.748459][ T8783] netlink: 240 bytes leftover after parsing attributes in process `syz.3.799'. [ 175.405154][ T8800] lo speed is unknown, defaulting to 1000 [ 175.575819][ T839] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 175.727388][ T839] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 175.730170][ T839] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 175.732946][ T839] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 175.743283][ T839] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 175.753200][ T839] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 175.756564][ T839] usb 6-1: Product: syz [ 175.758259][ T839] usb 6-1: Manufacturer: syz [ 175.778226][ T839] cdc_wdm 6-1:1.0: skipping garbage [ 175.780458][ T839] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22 [ 175.814196][ T8820] netlink: set zone limit has 4 unknown bytes [ 175.866698][ T8822] rdma_rxe: rxe_newlink: failed to add syz_tun [ 175.979329][ T839] usb 6-1: USB disconnect, device number 5 [ 176.615163][ T8839] netlink: 240 bytes leftover after parsing attributes in process `syz.2.817'. [ 176.989410][ T8848] rdma_rxe: rxe_newlink: failed to add syz_tun [ 177.220871][ T8851] FAULT_INJECTION: forcing a failure. [ 177.220871][ T8851] name failslab, interval 1, probability 0, space 0, times 0 [ 177.224949][ T8851] CPU: 1 UID: 0 PID: 8851 Comm: syz.1.820 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) [ 177.224985][ T8851] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 177.224995][ T8851] Call Trace: [ 177.225001][ T8851] [ 177.225007][ T8851] dump_stack_lvl+0x16c/0x1f0 [ 177.225038][ T8851] should_fail_ex+0x512/0x640 [ 177.225055][ T8851] ? __kmalloc_noprof+0xbf/0x510 [ 177.225082][ T8851] ? nla_strdup+0xc6/0x150 [ 177.225096][ T8851] should_failslab+0xc2/0x120 [ 177.225112][ T8851] __kmalloc_noprof+0xd2/0x510 [ 177.225132][ T8851] nla_strdup+0xc6/0x150 [ 177.225146][ T8851] nf_tables_newtable+0xdeb/0x1b40 [ 177.225165][ T8851] ? __pfx___nla_validate_parse+0x10/0x10 [ 177.225182][ T8851] ? __pfx_nf_tables_newtable+0x10/0x10 [ 177.225202][ T8851] ? __nla_parse+0x40/0x60 [ 177.225219][ T8851] nfnetlink_rcv_batch+0x18ed/0x2330 [ 177.225243][ T8851] ? __pfx_nfnetlink_rcv_batch+0x10/0x10 [ 177.225265][ T8851] ? kmem_cache_alloc_node_noprof+0x1d5/0x3b0 [ 177.225300][ T8851] ? __pfx___schedule+0x10/0x10 [ 177.225347][ T8851] ? __nla_parse+0x40/0x60 [ 177.225373][ T8851] nfnetlink_rcv+0x3c1/0x430 [ 177.225395][ T8851] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 177.225419][ T8851] ? is_vmalloc_addr+0x86/0xa0 [ 177.225447][ T8851] netlink_unicast+0x53d/0x7f0 [ 177.225471][ T8851] ? __pfx_netlink_unicast+0x10/0x10 [ 177.225497][ T8851] netlink_sendmsg+0x8d1/0xdd0 [ 177.225521][ T8851] ? __pfx_netlink_sendmsg+0x10/0x10 [ 177.225543][ T8851] ? __import_iovec+0x1dd/0x650 [ 177.225570][ T8851] ____sys_sendmsg+0xa95/0xc70 [ 177.225592][ T8851] ? __pfx_____sys_sendmsg+0x10/0x10 [ 177.225611][ T8851] ? get_compat_msghdr+0x11a/0x170 [ 177.225636][ T8851] ___sys_sendmsg+0x134/0x1d0 [ 177.225654][ T8851] ? __pfx____sys_sendmsg+0x10/0x10 [ 177.225683][ T8851] ? find_held_lock+0x2b/0x80 [ 177.225720][ T8851] __sys_sendmsg+0x16d/0x220 [ 177.225731][ T8851] ? __pfx___sys_sendmsg+0x10/0x10 [ 177.225749][ T8851] ? rcu_is_watching+0x12/0xc0 [ 177.225766][ T8851] __do_fast_syscall_32+0x7c/0x3a0 [ 177.225785][ T8851] do_fast_syscall_32+0x32/0x80 [ 177.225801][ T8851] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 177.225821][ T8851] RIP: 0023:0xf711e579 [ 177.225833][ T8851] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 177.225844][ T8851] RSP: 002b:00000000f50cc55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 177.225856][ T8851] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000800000c0 [ 177.225863][ T8851] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 177.225869][ T8851] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 177.225875][ T8851] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 177.225882][ T8851] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 177.225895][ T8851] [ 177.905798][ T839] usb 8-1: new high-speed USB device number 20 using dummy_hcd [ 178.153442][ T8885] rdma_rxe: rxe_newlink: failed to add syz_tun [ 178.174974][ T839] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 178.181025][ T839] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 178.185405][ T839] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 178.204636][ T839] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 178.209335][ T839] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 178.211886][ T839] usb 8-1: Product: syz [ 178.215782][ T839] usb 8-1: Manufacturer: syz [ 178.245795][ T839] cdc_wdm 8-1:1.0: skipping garbage [ 178.247502][ T839] cdc_wdm 8-1:1.0: skipping garbage [ 178.249148][ T839] cdc_wdm 8-1:1.0: probe with driver cdc_wdm failed with error -22 [ 178.443395][ T839] usb 8-1: USB disconnect, device number 20 [ 178.505410][ T8892] netlink: 240 bytes leftover after parsing attributes in process `syz.0.832'. [ 179.316376][ T8904] netlink: zone id is out of range [ 179.317956][ T8904] netlink: zone id is out of range [ 179.319591][ T8904] netlink: zone id is out of range [ 179.325757][ T8904] netlink: zone id is out of range [ 179.327373][ T8904] netlink: zone id is out of range [ 179.328994][ T8904] netlink: zone id is out of range [ 179.331482][ T8904] netlink: zone id is out of range [ 179.344522][ T8904] netlink: zone id is out of range [ 179.354899][ T8904] netlink: zone id is out of range [ 179.617009][ T8919] rdma_rxe: rxe_newlink: failed to add syz_tun [ 180.657963][ T8948] netlink: 240 bytes leftover after parsing attributes in process `syz.3.846'. [ 180.815867][ T6207] usb 7-1: new high-speed USB device number 19 using dummy_hcd [ 180.977874][ T6207] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 180.977891][ T6207] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 180.977911][ T6207] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 180.979252][ T6207] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 180.993262][ T6207] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 180.995823][ T6207] usb 7-1: Product: syz [ 180.995837][ T6207] usb 7-1: Manufacturer: syz [ 181.002774][ T6207] cdc_wdm 7-1:1.0: skipping garbage [ 181.002786][ T6207] cdc_wdm 7-1:1.0: skipping garbage [ 181.002797][ T6207] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22 [ 181.030953][ T8955] rdma_rxe: rxe_newlink: failed to add syz_tun [ 181.073034][ T8957] binder: 8956:8957 ioctl 4018620d 0 returned -22 [ 181.124375][ T8958] binder: 8956:8958 ioctl c018620c 0 returned -14 [ 181.223113][ T6207] usb 7-1: USB disconnect, device number 19 [ 181.241487][ T8965] overlayfs: missing 'lowerdir' [ 182.274842][ T8993] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 182.344726][ T8997] overlayfs: missing 'lowerdir' [ 182.352270][ T9000] rdma_rxe: rxe_newlink: failed to add syz_tun [ 182.573330][ T9016] netlink: 240 bytes leftover after parsing attributes in process `syz.1.864'. [ 182.765820][ T54] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 182.939961][ T54] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 182.940054][ T54] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 182.940275][ T54] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 182.946260][ T54] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 182.959365][ T54] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 182.962855][ T54] usb 5-1: Product: syz [ 182.965020][ T54] usb 5-1: Manufacturer: syz [ 182.987121][ T54] cdc_wdm 5-1:1.0: skipping garbage [ 182.987164][ T54] cdc_wdm 5-1:1.0: skipping garbage [ 182.987208][ T54] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22 [ 183.200469][ T54] usb 5-1: USB disconnect, device number 15 [ 183.418542][ T9031] netlink: 'syz.1.871': attribute type 10 has an invalid length. [ 183.424278][ T9031] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 183.482755][ T9035] overlayfs: missing 'lowerdir' [ 183.527459][ T9041] rdma_rxe: rxe_newlink: failed to add syz_tun [ 183.766119][ T9045] FAULT_INJECTION: forcing a failure. [ 183.766119][ T9045] name failslab, interval 1, probability 0, space 0, times 0 [ 183.770626][ T9045] CPU: 1 UID: 0 PID: 9045 Comm: syz.1.876 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) [ 183.770653][ T9045] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 183.770660][ T9045] Call Trace: [ 183.770664][ T9045] [ 183.770669][ T9045] dump_stack_lvl+0x16c/0x1f0 [ 183.770692][ T9045] should_fail_ex+0x512/0x640 [ 183.770704][ T9045] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 183.770722][ T9045] should_failslab+0xc2/0x120 [ 183.770733][ T9045] __kmalloc_cache_noprof+0x6a/0x3e0 [ 183.770749][ T9045] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 183.770766][ T9045] ? genl_start+0x1e8/0x980 [ 183.770782][ T9045] genl_start+0x1e8/0x980 [ 183.770798][ T9045] __netlink_dump_start+0x60e/0x990 [ 183.770820][ T9045] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 183.770837][ T9045] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 183.770852][ T9045] ? genl_op_from_small+0x25/0x440 [ 183.770869][ T9045] ? __pfx_genl_get_cmd+0x10/0x10 [ 183.770882][ T9045] ? __pfx_genl_start+0x10/0x10 [ 183.770895][ T9045] ? __pfx_genl_dumpit+0x10/0x10 [ 183.770909][ T9045] ? __pfx_genl_done+0x10/0x10 [ 183.770926][ T9045] ? __radix_tree_lookup+0x1a5/0x2c0 [ 183.770945][ T9045] genl_rcv_msg+0x46e/0x800 [ 183.770962][ T9045] ? __pfx_genl_rcv_msg+0x10/0x10 [ 183.770977][ T9045] ? __pfx_tcp_metrics_nl_dump+0x10/0x10 [ 183.770992][ T9045] ? __lock_acquire+0x622/0x1c90 [ 183.771010][ T9045] netlink_rcv_skb+0x155/0x420 [ 183.771023][ T9045] ? __pfx_genl_rcv_msg+0x10/0x10 [ 183.771039][ T9045] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 183.771059][ T9045] ? netlink_deliver_tap+0x1ae/0xd30 [ 183.771071][ T9045] ? is_vmalloc_addr+0x86/0xa0 [ 183.771099][ T9045] genl_rcv+0x28/0x40 [ 183.771114][ T9045] netlink_unicast+0x53d/0x7f0 [ 183.771129][ T9045] ? __pfx_netlink_unicast+0x10/0x10 [ 183.771146][ T9045] netlink_sendmsg+0x8d1/0xdd0 [ 183.771162][ T9045] ? __pfx_netlink_sendmsg+0x10/0x10 [ 183.771177][ T9045] ? __import_iovec+0x1dd/0x650 [ 183.771195][ T9045] ____sys_sendmsg+0xa95/0xc70 [ 183.771211][ T9045] ? __pfx_____sys_sendmsg+0x10/0x10 [ 183.771224][ T9045] ? get_compat_msghdr+0x11a/0x170 [ 183.771243][ T9045] ___sys_sendmsg+0x134/0x1d0 [ 183.771255][ T9045] ? __pfx____sys_sendmsg+0x10/0x10 [ 183.771273][ T9045] ? find_held_lock+0x2b/0x80 [ 183.771293][ T9045] __sys_sendmsg+0x16d/0x220 [ 183.771305][ T9045] ? __pfx___sys_sendmsg+0x10/0x10 [ 183.771322][ T9045] ? rcu_is_watching+0x12/0xc0 [ 183.771335][ T9045] __do_fast_syscall_32+0x7c/0x3a0 [ 183.771348][ T9045] do_fast_syscall_32+0x32/0x80 [ 183.771359][ T9045] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 183.771373][ T9045] RIP: 0023:0xf711e579 [ 183.771382][ T9045] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 183.771393][ T9045] RSP: 002b:00000000f50cc55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 183.771404][ T9045] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180 [ 183.771411][ T9045] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 183.771417][ T9045] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 183.771423][ T9045] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 183.771429][ T9045] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 183.771443][ T9045] [ 183.944049][ T9047] tipc: Resetting bearer [ 183.973439][ T9047] bridge0: port 2(bridge_slave_1) entered disabled state [ 183.976648][ T9047] bridge0: port 1(bridge_slave_0) entered disabled state [ 184.098010][ T9047] veth0_macvtap: left allmulticast mode [ 184.107876][ T9047] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.111314][ T9047] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.114855][ T9047] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.120648][ T9047] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 184.386862][ T9055] netlink: 240 bytes leftover after parsing attributes in process `syz.0.878'. [ 184.506749][ T9064] overlayfs: missing 'lowerdir' [ 185.415830][ T6207] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 185.567244][ T6207] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 185.576859][ T6207] usb 5-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config [ 185.580512][ T6207] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 185.583499][ T9093] rdma_rxe: rxe_newlink: failed to add syz_tun [ 185.583694][ T6207] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 185.592866][ T6207] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 185.596502][ T6207] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 185.599732][ T6207] usb 5-1: Product: syz [ 185.601472][ T6207] usb 5-1: Manufacturer: syz [ 185.608577][ T6207] cdc_wdm 5-1:1.0: skipping garbage [ 185.610365][ T6207] cdc_wdm 5-1:1.0: skipping garbage [ 185.612041][ T6207] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22 [ 185.706398][ T9096] overlayfs: missing 'lowerdir' [ 185.808874][ T54] usb 5-1: USB disconnect, device number 16 [ 185.902101][ T9102] netlink: 240 bytes leftover after parsing attributes in process `syz.3.893'. [ 186.587648][ T9110] netlink: 20 bytes leftover after parsing attributes in process `syz.0.896'. [ 187.174922][ T9130] overlayfs: missing 'lowerdir' [ 187.575006][ T9140] rdma_rxe: rxe_newlink: failed to add syz_tun [ 187.625952][ T54] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 187.777625][ T54] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 187.780328][ T54] usb 5-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config [ 187.783413][ T54] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 187.786300][ T54] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 187.791721][ T54] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 187.794535][ T54] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 187.797285][ T54] usb 5-1: Product: syz [ 187.798718][ T54] usb 5-1: Manufacturer: syz [ 187.802556][ T54] cdc_wdm 5-1:1.0: skipping garbage [ 187.804216][ T54] cdc_wdm 5-1:1.0: skipping garbage [ 187.805983][ T54] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22 [ 187.852666][ T9146] netlink: 240 bytes leftover after parsing attributes in process `syz.2.906'. [ 188.006640][ T10] usb 5-1: USB disconnect, device number 17 [ 188.193213][ T9148] netlink: 'syz.1.907': attribute type 2 has an invalid length. [ 188.193244][ T9148] netlink: 244 bytes leftover after parsing attributes in process `syz.1.907'. [ 188.425842][ T61] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 188.645854][ T9156] overlayfs: missing 'workdir' [ 188.671695][ T61] usb 6-1: Using ep0 maxpacket: 16 [ 188.679055][ T61] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 188.683463][ T61] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 188.686856][ T61] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 188.690845][ T61] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 188.693798][ T61] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 188.697492][ T61] usb 6-1: config 0 descriptor?? [ 188.738443][ T9164] FAULT_INJECTION: forcing a failure. [ 188.738443][ T9164] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 188.742881][ T9164] CPU: 2 UID: 0 PID: 9164 Comm: syz.0.913 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) [ 188.742899][ T9164] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 188.742907][ T9164] Call Trace: [ 188.742912][ T9164] [ 188.742917][ T9164] dump_stack_lvl+0x16c/0x1f0 [ 188.742941][ T9164] should_fail_ex+0x512/0x640 [ 188.742956][ T9164] _copy_from_user+0x2e/0xd0 [ 188.742972][ T9164] kstrtouint_from_user+0xd6/0x1d0 [ 188.742989][ T9164] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 188.743006][ T9164] ? __lock_acquire+0xb8a/0x1c90 [ 188.743023][ T9164] ? __bpf_trace_contention_end+0xc9/0x110 [ 188.743042][ T9164] proc_fail_nth_write+0x83/0x250 [ 188.743058][ T9164] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 188.743075][ T9164] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 188.743088][ T9164] vfs_write+0x2a0/0x1150 [ 188.743108][ T9164] ? __pfx_vfs_write+0x10/0x10 [ 188.743123][ T9164] ? find_held_lock+0x2b/0x80 [ 188.743137][ T9164] ? __fget_files+0x20e/0x3c0 [ 188.743157][ T9164] ksys_write+0x12a/0x250 [ 188.743173][ T9164] ? __pfx_ksys_write+0x10/0x10 [ 188.743191][ T9164] ? rcu_is_watching+0x12/0xc0 [ 188.743205][ T9164] __do_fast_syscall_32+0x7c/0x3a0 [ 188.743218][ T9164] do_fast_syscall_32+0x32/0x80 [ 188.743229][ T9164] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 188.743244][ T9164] RIP: 0023:0xf707e579 [ 188.743253][ T9164] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 188.743264][ T9164] RSP: 002b:00000000f506e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 188.743275][ T9164] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f506e620 [ 188.743282][ T9164] RDX: 0000000000000001 RSI: 00000000f73e2ff4 RDI: 0000000000000000 [ 188.743288][ T9164] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 188.743294][ T9164] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 188.743300][ T9164] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 188.743314][ T9164] [ 189.200747][ T61] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 189.203248][ T61] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 189.205551][ T61] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 189.215034][ T61] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 189.217767][ T61] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 189.220126][ T61] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 189.222470][ T61] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 189.224888][ T61] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 189.227495][ T61] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 189.229845][ T61] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 189.232164][ T61] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 189.234504][ T61] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 189.236976][ T61] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 189.239322][ T61] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 189.241713][ T61] microsoft 0003:045E:07DA.0003: unknown main item tag 0x0 [ 189.253602][ T61] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:045E:07DA.0003/input/input13 [ 189.299946][ T61] microsoft 0003:045E:07DA.0003: input,hidraw1: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 189.453228][ T54] usb 6-1: USB disconnect, device number 6 [ 189.477357][ T9177] rdma_rxe: rxe_newlink: failed to add syz_tun [ 189.766960][ T9186] overlayfs: missing 'workdir' [ 189.822954][ T9193] netlink: 32 bytes leftover after parsing attributes in process `syz.0.923'. [ 189.827051][ T9193] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 189.830832][ T9193] IPv6: NLM_F_CREATE should be set when creating new route [ 189.833853][ T9193] IPv6: NLM_F_CREATE should be set when creating new route [ 189.837417][ T9193] netlink: 32 bytes leftover after parsing attributes in process `syz.0.923'. [ 189.841141][ T9193] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 189.886440][ T9197] netlink: 240 bytes leftover after parsing attributes in process `syz.3.919'. [ 190.034428][ T9200] syz1: rxe_newlink: already configured on syz_tun [ 190.035773][ T54] usb 7-1: new high-speed USB device number 20 using dummy_hcd [ 190.197092][ T54] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 190.200038][ T54] usb 7-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config [ 190.203389][ T54] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 190.207074][ T54] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 190.213898][ T54] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 190.213921][ T54] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 190.213932][ T54] usb 7-1: Product: syz [ 190.213940][ T54] usb 7-1: Manufacturer: syz [ 190.218968][ T54] cdc_wdm 7-1:1.0: skipping garbage [ 190.235968][ T54] cdc_wdm 7-1:1.0: skipping garbage [ 190.237742][ T54] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22 [ 190.425427][ T10] usb 7-1: USB disconnect, device number 20 [ 190.537580][ T9213] netlink: 8 bytes leftover after parsing attributes in process `syz.1.928'. [ 190.537594][ T9213] netlink: 4 bytes leftover after parsing attributes in process `syz.1.928'. [ 191.184331][ T9225] overlayfs: missing 'workdir' [ 191.247105][ T9231] rdma_rxe: rxe_newlink: failed to add syz_tun [ 191.810269][ T9246] netlink: 240 bytes leftover after parsing attributes in process `syz.2.937'. [ 192.145788][ T54] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 192.203454][ T9252] fuse: Bad value for 'user_id' [ 192.203466][ T9252] fuse: Bad value for 'user_id' [ 192.297770][ T54] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 192.297795][ T54] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 192.297812][ T54] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 192.297850][ T54] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 192.302425][ T54] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 192.316535][ T54] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 192.316550][ T54] usb 5-1: Product: syz [ 192.316558][ T54] usb 5-1: Manufacturer: syz [ 192.320528][ T54] cdc_wdm 5-1:1.0: skipping garbage [ 192.325840][ T54] cdc_wdm 5-1:1.0: skipping garbage [ 192.325855][ T54] cdc_wdm 5-1:1.0: skipping garbage [ 192.325877][ T54] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22 [ 192.528343][ T54] usb 5-1: USB disconnect, device number 18 [ 192.570949][ T9255] overlayfs: missing 'lowerdir' [ 193.257278][ T9271] rdma_rxe: rxe_newlink: failed to add syz_tun [ 193.695290][ T1420] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.697422][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 193.877206][ T9289] overlayfs: missing 'lowerdir' [ 194.174799][ T9296] netlink: 240 bytes leftover after parsing attributes in process `syz.3.951'. [ 194.593472][ T9304] rdma_rxe: rxe_newlink: failed to add syz_tun [ 194.765802][ T6207] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 194.938190][ T6207] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 194.940896][ T6207] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 194.944003][ T6207] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 194.947760][ T6207] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 194.953216][ T6207] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 194.958589][ T6207] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 194.961048][ T6207] usb 5-1: Product: syz [ 194.962869][ T6207] usb 5-1: Manufacturer: syz [ 194.976783][ T6207] cdc_wdm 5-1:1.0: skipping garbage [ 194.978448][ T6207] cdc_wdm 5-1:1.0: skipping garbage [ 194.980082][ T6207] cdc_wdm 5-1:1.0: skipping garbage [ 194.981666][ T6207] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22 [ 195.010977][ T9317] overlayfs: missing 'lowerdir' [ 195.149517][ T9320] sp0: Synchronizing with TNC [ 195.236494][ T54] usb 5-1: USB disconnect, device number 19 [ 196.008004][ T9334] rdma_rxe: rxe_newlink: failed to add syz_tun [ 196.111339][ T9346] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 196.114073][ T9346] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 196.194847][ T9352] netlink: 240 bytes leftover after parsing attributes in process `syz.3.965'. [ 196.907368][ T837] usb 5-1: new high-speed USB device number 20 using dummy_hcd [ 197.051791][ T9376] netlink: 4 bytes leftover after parsing attributes in process `syz.2.977'. [ 197.052052][ T9378] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 197.057224][ T837] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 197.060100][ T9378] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 197.061289][ T837] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 197.067902][ T837] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 197.070706][ T837] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 197.076056][ T837] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 197.078860][ T837] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 197.081335][ T837] usb 5-1: Product: syz [ 197.082676][ T837] usb 5-1: Manufacturer: syz [ 197.086991][ T837] cdc_wdm 5-1:1.0: skipping garbage [ 197.088963][ T837] cdc_wdm 5-1:1.0: skipping garbage [ 197.090644][ T837] cdc_wdm 5-1:1.0: skipping garbage [ 197.092299][ T837] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22 [ 197.109915][ T9380] rdma_rxe: rxe_newlink: failed to add syz_tun [ 197.295903][ T837] usb 5-1: USB disconnect, device number 20 [ 197.449658][ T9389] netlink: 24 bytes leftover after parsing attributes in process `syz.2.982'. [ 197.736668][ T9404] netlink: 240 bytes leftover after parsing attributes in process `syz.2.984'. [ 197.820257][ T9406] netlink: 240 bytes leftover after parsing attributes in process `syz.1.985'. [ 198.210466][ T9416] rdma_rxe: rxe_newlink: failed to add syz_tun [ 198.508452][ T9420] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 198.508479][ T9420] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 198.571592][ T9424] input: syz1 as /devices/virtual/input/input14 [ 198.897178][ T9441] rdma_rxe: rxe_newlink: failed to add syz_tun [ 198.905790][ T837] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 199.058323][ T837] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 199.061108][ T837] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 199.064397][ T837] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 199.071058][ T837] usb 6-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87 [ 199.076887][ T837] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64 [ 199.084606][ T837] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 199.089940][ T837] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 199.095529][ T837] usb 6-1: Product: syz [ 199.097673][ T837] usb 6-1: Manufacturer: syz [ 199.103683][ T837] cdc_wdm 6-1:1.0: skipping garbage [ 199.108027][ T837] cdc_wdm 6-1:1.0: skipping garbage [ 199.110894][ T837] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22 [ 199.309431][ T837] usb 6-1: USB disconnect, device number 7 [ 199.351375][ T9448] program syz.2.999 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 199.829717][ T9458] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1003'. [ 199.833336][ T9458] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1003'. [ 199.870997][ T9462] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1002'. [ 200.141850][ T9467] program syz.0.1004 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 201.795940][ T6207] usb 8-1: new high-speed USB device number 21 using dummy_hcd [ 201.957295][ T6207] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 201.960066][ T6207] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 201.963359][ T6207] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 201.967513][ T6207] usb 8-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87 [ 201.971107][ T6207] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64 [ 201.977210][ T6207] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 201.980115][ T6207] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 201.982643][ T6207] usb 8-1: Product: syz [ 201.985139][ T6207] usb 8-1: Manufacturer: syz [ 201.988953][ T6207] cdc_wdm 8-1:1.0: skipping garbage [ 201.990704][ T6207] cdc_wdm 8-1:1.0: skipping garbage [ 201.992672][ T6207] cdc_wdm 8-1:1.0: probe with driver cdc_wdm failed with error -22 [ 202.043158][ T9516] netlink: 240 bytes leftover after parsing attributes in process `syz.0.1017'. [ 202.192517][ T837] usb 8-1: USB disconnect, device number 21 [ 202.277191][ T9522] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1018'. [ 202.798833][ T9525] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1021'. [ 203.162379][ T9539] program syz.3.1023 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 204.592103][ T9558] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1029'. [ 205.305837][ T3338] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 205.528186][ T3338] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 205.530895][ T3338] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 205.534038][ T3338] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 205.536831][ T3338] usb 6-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87 [ 205.540792][ T3338] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64 [ 205.548792][ T3338] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 205.552379][ T3338] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 205.555494][ T3338] usb 6-1: Product: syz [ 205.565862][ T3338] usb 6-1: Manufacturer: syz [ 205.577132][ T3338] cdc_wdm 6-1:1.0: skipping garbage [ 205.578777][ T3338] cdc_wdm 6-1:1.0: skipping garbage [ 205.580429][ T3338] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22 [ 205.780476][ T6207] usb 6-1: USB disconnect, device number 8 [ 206.189893][ T9596] FAULT_INJECTION: forcing a failure. [ 206.189893][ T9596] name failslab, interval 1, probability 0, space 0, times 0 [ 206.193787][ T9596] CPU: 3 UID: 0 PID: 9596 Comm: syz.2.1040 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) [ 206.193803][ T9596] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 206.193810][ T9596] Call Trace: [ 206.193814][ T9596] [ 206.193819][ T9596] dump_stack_lvl+0x16c/0x1f0 [ 206.193841][ T9596] should_fail_ex+0x512/0x640 [ 206.193855][ T9596] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 206.193879][ T9596] should_failslab+0xc2/0x120 [ 206.193891][ T9596] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 206.193908][ T9596] ? __alloc_skb+0x2b2/0x380 [ 206.193928][ T9596] __alloc_skb+0x2b2/0x380 [ 206.193945][ T9596] ? __pfx___alloc_skb+0x10/0x10 [ 206.193964][ T9596] ? __pfx_netlink_autobind.isra.0+0x10/0x10 [ 206.193981][ T9596] netlink_alloc_large_skb+0x69/0x130 [ 206.193995][ T9596] netlink_sendmsg+0x6a1/0xdd0 [ 206.194011][ T9596] ? __pfx_netlink_sendmsg+0x10/0x10 [ 206.194025][ T9596] ? __import_iovec+0x1dd/0x650 [ 206.194044][ T9596] ____sys_sendmsg+0xa95/0xc70 [ 206.194059][ T9596] ? __pfx_____sys_sendmsg+0x10/0x10 [ 206.194073][ T9596] ? get_compat_msghdr+0x11a/0x170 [ 206.194091][ T9596] ___sys_sendmsg+0x134/0x1d0 [ 206.194102][ T9596] ? __pfx____sys_sendmsg+0x10/0x10 [ 206.194120][ T9596] ? find_held_lock+0x2b/0x80 [ 206.194140][ T9596] __sys_sendmsg+0x16d/0x220 [ 206.194163][ T9596] ? __pfx___sys_sendmsg+0x10/0x10 [ 206.194181][ T9596] ? rcu_is_watching+0x12/0xc0 [ 206.194195][ T9596] __do_fast_syscall_32+0x7c/0x3a0 [ 206.194208][ T9596] do_fast_syscall_32+0x32/0x80 [ 206.194219][ T9596] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 206.194233][ T9596] RIP: 0023:0xf7f87579 [ 206.194242][ T9596] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 206.194252][ T9596] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 206.194263][ T9596] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800002c0 [ 206.194269][ T9596] RDX: 0000000000000850 RSI: 0000000000000000 RDI: 0000000000000000 [ 206.194276][ T9596] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 206.194282][ T9596] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 206.194288][ T9596] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 206.194301][ T9596] [ 206.801226][ T9620] program syz.0.1044 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 207.100954][ T9619] netlink: 240 bytes leftover after parsing attributes in process `syz.1.1047'. [ 208.916073][ T6207] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 209.067314][ T6207] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 209.070044][ T6207] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 209.073216][ T6207] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 209.077432][ T6207] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 209.081157][ T6207] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 209.086481][ T6207] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 209.089647][ T6207] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 209.092324][ T6207] usb 6-1: Product: syz [ 209.093926][ T6207] usb 6-1: Manufacturer: syz [ 209.097827][ T6207] cdc_wdm 6-1:1.0: skipping garbage [ 209.099531][ T6207] cdc_wdm 6-1:1.0: skipping garbage [ 209.102793][ T6207] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device [ 209.104678][ T6207] cdc_wdm 6-1:1.0: Unknown control protocol [ 209.117561][ T9665] rdma_rxe: rxe_newlink: failed to add syz_tun [ 209.310175][ T6207] usb 6-1: USB disconnect, device number 9 [ 209.463852][ T9677] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1059'. [ 209.566693][ T9679] random: crng reseeded on system resumption [ 210.381592][ T9693] tipc: Started in network mode [ 210.383323][ T9693] tipc: Node identity 4, cluster identity 4711 [ 210.385669][ T9693] tipc: Node number set to 4 [ 210.726206][ T6207] usb 5-1: new high-speed USB device number 21 using dummy_hcd [ 210.887116][ T6207] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 210.889910][ T6207] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 210.893056][ T6207] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 210.896578][ T6207] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 210.899908][ T6207] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 210.907045][ T6207] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 210.909844][ T6207] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 210.912322][ T6207] usb 5-1: Product: syz [ 210.913671][ T6207] usb 5-1: Manufacturer: syz [ 210.917536][ T6207] cdc_wdm 5-1:1.0: skipping garbage [ 210.919192][ T6207] cdc_wdm 5-1:1.0: skipping garbage [ 210.921522][ T6207] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 210.923432][ T6207] cdc_wdm 5-1:1.0: Unknown control protocol [ 211.119860][ T6207] usb 5-1: USB disconnect, device number 21 [ 212.327863][ T9733] netlink: 240 bytes leftover after parsing attributes in process `syz.0.1073'. [ 213.270720][ T9742] random: crng reseeded on system resumption [ 213.487358][ T838] usb 5-1: new high-speed USB device number 22 using dummy_hcd [ 213.638380][ T838] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 213.642359][ T838] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 213.648253][ T838] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 213.651939][ T838] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 213.656417][ T838] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 213.662769][ T838] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 213.666276][ T838] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 213.668769][ T838] usb 5-1: Product: syz [ 213.670024][ T838] usb 5-1: Manufacturer: syz [ 213.686582][ T838] cdc_wdm 5-1:1.0: skipping garbage [ 213.688866][ T838] cdc_wdm 5-1:1.0: skipping garbage [ 213.694836][ T838] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 213.697105][ T838] cdc_wdm 5-1:1.0: Unknown control protocol [ 213.884805][ T838] usb 5-1: USB disconnect, device number 22 [ 214.456060][ T9762] rdma_rxe: rxe_newlink: failed to add syz_tun [ 214.707515][ T9764] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1083'. [ 214.970769][ T9785] netlink: 240 bytes leftover after parsing attributes in process `syz.0.1087'. [ 215.031750][ T9783] can0: slcan on ttyprintk. [ 216.066103][ T9768] can0 (unregistered): slcan off ttyprintk. [ 216.084267][ T9797] random: crng reseeded on system resumption [ 216.093684][ T9797] xt_SECMARK: invalid mode: 0 [ 216.327613][ T9805] netlink: 'syz.1.1093': attribute type 10 has an invalid length. [ 217.299605][ T9820] rdma_rxe: rxe_newlink: failed to add syz_tun [ 217.388101][ T9824] befs: (nullb0): No write support. Marking filesystem read-only [ 217.391939][ T9824] befs: (nullb0): invalid magic header [ 218.055172][ T9836] bond_slave_1: entered promiscuous mode [ 218.058430][ T9836] bond_slave_1: left promiscuous mode [ 218.212174][ T838] IPVS: starting estimator thread 0... [ 218.316654][ T9843] IPVS: using max 42 ests per chain, 100800 per kthread [ 218.503725][ T9846] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1102'. [ 218.768375][ T9851] sch_tbf: burst 4398 is lower than device lo mtu (65550) ! [ 218.925817][ T9853] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1104'. [ 218.976662][ T9849] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 219.203273][ T9868] befs: (nullb0): No write support. Marking filesystem read-only [ 219.207678][ T9868] befs: (nullb0): invalid magic header [ 219.971869][ T9888] lo speed is unknown, defaulting to 1000 [ 220.314037][ T9889] macvtap0: entered allmulticast mode [ 220.315900][ T9889] veth0_macvtap: entered allmulticast mode [ 220.319312][ T9889] netlink: 'syz.1.1116': attribute type 3 has an invalid length. [ 220.322082][ T9889] net_ratelimit: 207 callbacks suppressed [ 220.322090][ T9889] A link change request failed with some changes committed already. Interface macvtap0 may have been left with an inconsistent configuration, please check. [ 220.623070][ T9902] siw: device registration error -23 [ 220.626472][ T9902] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1117'. [ 220.810374][ T9899] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 220.814435][ T9899] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 220.822592][ T9899] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 221.265931][ T6207] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 221.347336][ T9915] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 221.349229][ T9916] netlink: 'syz.2.1124': attribute type 10 has an invalid length. [ 221.415780][ T6207] usb 6-1: Using ep0 maxpacket: 32 [ 221.419501][ T6207] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11 [ 221.423001][ T6207] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 221.426501][ T6207] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 221.430086][ T6207] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 221.433589][ T6207] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 221.438769][ T6207] usb 6-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68 [ 221.441631][ T6207] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 221.444171][ T6207] usb 6-1: Product: syz [ 221.445487][ T6207] usb 6-1: Manufacturer: syz [ 221.447013][ T6207] usb 6-1: SerialNumber: syz [ 221.449587][ T6207] usb 6-1: config 0 descriptor?? [ 221.451819][ T9909] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 221.456586][ T6207] input: Generic X-Box pad as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input15 [ 221.460499][ T5343] xpad 6-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 221.466993][ T5343] xpad 6-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 221.470952][ T5343] xpad 6-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 221.474765][ T5343] xpad 6-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 221.658381][ T9909] xpad 6-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 221.665334][ T9909] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 221.669134][ T9909] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 221.683086][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.685540][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.688191][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.690721][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.693215][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.695573][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.698050][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.701442][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.703928][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.706484][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.708847][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.711222][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.713768][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.717100][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.719509][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.721919][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.724567][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.727056][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.729466][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.731842][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.735066][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.738161][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.741441][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.743889][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.746469][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.748918][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.751923][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.754914][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.758312][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.760723][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.763127][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.765540][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.768099][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.770570][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.773059][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.775330][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.778567][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.781075][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.783522][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.785985][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.788373][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.790736][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.793231][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: unknown main item tag 0x0 [ 221.798446][ T6207] hid-generic 0000:007F:FFFFFFFE.0004: hidraw1: HID v0.00 Device [syz1] on syz0 [ 221.913985][ T838] usb 6-1: USB disconnect, device number 10 [ 222.253770][ T9936] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1127'. [ 222.441722][ T9941] lo speed is unknown, defaulting to 1000 [ 222.778787][ T9942] macvtap0: entered allmulticast mode [ 222.778810][ T9942] veth0_macvtap: entered allmulticast mode [ 222.780356][ T9942] netlink: 'syz.2.1129': attribute type 3 has an invalid length. [ 222.785593][ T9942] A link change request failed with some changes committed already. Interface macvtap0 may have been left with an inconsistent configuration, please check. [ 222.885834][ T5955] Bluetooth: hci3: command 0x0405 tx timeout [ 222.896218][ T5955] Bluetooth: hci1: command 0x0c1a tx timeout [ 223.354126][ T9946] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 223.355152][ T9946] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 223.358756][ T9946] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 223.786165][ T9972] siw: device registration error -23 [ 224.565995][ T5955] Bluetooth: hci0: command 0x040f tx timeout [ 224.942447][ T9987] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1140'. [ 225.003426][ T9987]  (unregistering): (slave bond_slave_0): Releasing backup interface [ 225.007443][ T9987]  (unregistering): (slave bond_slave_1): Releasing backup interface [ 225.010332][ T9987]  (unregistering): Released all slaves [ 225.365889][ T5308] Bluetooth: hci1: command 0x0c1a tx timeout [ 225.365924][ T5955] Bluetooth: hci3: command 0x0405 tx timeout [ 225.594864][ C3] sr 2:0:0:0: [sr0] tag#18 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 225.599153][ C3] sr 2:0:0:0: [sr0] tag#18 CDB: Mode Select(10) 55 a3 43 96 8b 00 [ 225.647407][T10011] rdma_rxe: rxe_newlink: failed to add syz_tun [ 225.747641][T10013] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1146'. [ 225.871697][T10016] rdma_rxe: rxe_newlink: failed to add syz_tun [ 226.314298][T10028] netlink: 'syz.1.1154': attribute type 10 has an invalid length. [ 227.543671][ T61] usb 5-1: new high-speed USB device number 23 using dummy_hcd [ 227.710857][ T61] usb 5-1: Using ep0 maxpacket: 32 [ 227.739399][ T61] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11 [ 227.745043][ T61] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 227.750284][ T61] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 227.754987][ T61] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 227.760633][ T61] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 227.767006][ T61] usb 5-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68 [ 227.771998][ T61] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 227.775634][ T61] usb 5-1: Product: syz [ 227.777065][ T61] usb 5-1: Manufacturer: syz [ 227.779628][ T61] usb 5-1: SerialNumber: syz [ 227.783588][ T61] usb 5-1: config 0 descriptor?? [ 227.788219][T10046] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 227.793770][ T61] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input16 [ 227.801007][ T5343] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 227.804987][ T5343] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 227.808592][ T5343] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 227.814903][ T5343] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 227.991994][T10046] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 227.997272][ T838] usb 5-1: USB disconnect, device number 23 [ 228.290861][T10071] netlink: 240 bytes leftover after parsing attributes in process `syz.1.1165'. [ 229.101907][ T40] kauditd_printk_skb: 274 callbacks suppressed [ 229.101917][ T40] audit: type=1326 audit(1749051772.025:1655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.2.1168" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000 [ 229.113292][ T40] audit: type=1326 audit(1749051772.035:1656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.2.1168" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000 [ 229.120439][ T40] audit: type=1326 audit(1749051772.035:1657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.2.1168" exe="/syz-executor" sig=0 arch=40000003 syscall=321 compat=1 ip=0xf7f87579 code=0x7ffc0000 [ 229.124245][T10086] netlink: 'syz.1.1169': attribute type 21 has an invalid length. [ 229.128795][ T40] audit: type=1326 audit(1749051772.035:1658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.2.1168" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000 [ 229.137303][ T40] audit: type=1326 audit(1749051772.035:1659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.2.1168" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000 [ 229.144235][ T40] audit: type=1326 audit(1749051772.035:1660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.2.1168" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f87579 code=0x7ffc0000 [ 229.151298][ T40] audit: type=1326 audit(1749051772.035:1661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.2.1168" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000 [ 229.158314][ T40] audit: type=1326 audit(1749051772.035:1662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.2.1168" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000 [ 229.165619][ T40] audit: type=1326 audit(1749051772.035:1663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.2.1168" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f87579 code=0x7ffc0000 [ 229.172326][ T40] audit: type=1326 audit(1749051772.035:1664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10083 comm="syz.2.1168" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f87579 code=0x7ffc0000 [ 230.126634][T10100] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1173'. [ 230.236166][T10116] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1182'. [ 230.383594][T10121] netlink: 240 bytes leftover after parsing attributes in process `syz.1.1177'. [ 231.157639][T10137] can0: slcan on ttyprintk. [ 231.856677][T10134] can0 (unregistered): slcan off ttyprintk. [ 232.237420][T10149] netlink: 'syz.3.1184': attribute type 21 has an invalid length. [ 232.559796][T10161] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1187'. [ 232.610863][T10163] netlink: 'syz.2.1188': attribute type 10 has an invalid length. [ 232.707665][T10155] can0: slcan on ttyprintk. [ 232.788806][T10170] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1200'. [ 233.256028][T10150] can0 (unregistered): slcan off ttyprintk. [ 233.336523][T10183] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 233.754526][T10189] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 233.756785][T10189] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 233.758774][T10189] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 234.405802][ C1] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 234.980465][T10205] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1202'. [ 235.122092][T10214] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1203'. [ 235.456968][T10223] can0: slcan on ttyprintk. [ 235.685911][ T5308] Bluetooth: hci0: command 0x040f tx timeout [ 235.765901][ T5955] Bluetooth: hci1: command 0x0c1a tx timeout [ 235.768626][ T5308] Bluetooth: hci3: command 0x0405 tx timeout [ 236.273946][T10215] can0 (unregistered): slcan off ttyprintk. [ 236.742319][T10243] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1213'. [ 236.764557][T10246] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 236.766603][T10246] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 236.776046][T10246] vhci_hcd vhci_hcd.0: Device attached [ 237.095913][ T61] usb 39-1: new low-speed USB device number 2 using vhci_hcd [ 237.400647][T10268] [U] : [ 237.401830][T10268] [U] [ 237.402692][T10268] [U] [ 237.403580][T10268] [U] [ 237.404867][T10268] [U] [ 237.405772][T10268] [U] [ 237.406633][T10268] [U] [ 237.407485][T10268] [U] [ 237.415681][T10268] [U] [ 237.416550][T10268] [U] [ 237.417356][T10268] [U] [ 237.418174][T10268] [U] [ 237.419408][T10268] [U] [ 237.420262][T10268] [U] [ 237.421075][T10268] [U] [ 237.421912][T10268] [U] [ 237.423068][T10268] [U] [ 237.423902][T10268] [U] [ 237.424707][T10268] [U] [ 237.425507][T10268] [U] [ 237.470811][T10268] [U] [ 237.471783][T10268] [U] [ 237.472659][T10268] [U] [ 237.473532][T10268] [U] [ 237.476017][T10268] [U] [ 237.476933][T10268] [U] [ 237.477812][T10268] [U] [ 237.478692][T10268] [U] [ 237.496118][T10268] [U] [ 237.497034][T10268] [U] [ 237.497921][T10268] [U] [ 237.498805][T10268] [U] [ 237.516625][T10268] [U] [ 237.517546][T10268] [U] [ 237.518422][T10268] [U] [ 237.519289][T10268] [U] [ 237.520669][T10268] [U] [ 237.521568][T10268] [U] [ 237.522470][T10268] [U] [ 237.523359][T10268] [U] [ 237.524837][T10268] [U] [ 237.525740][T10268] [U] [ 237.526615][T10268] [U] [ 237.527498][T10268] [U] [ 237.528960][T10268] [U] [ 237.529857][T10268] [U] [ 237.530731][T10268] [U] [ 237.531667][T10268] [U] [ 237.533096][T10268] [U] [ 237.533990][T10268] [U] [ 237.534863][T10268] [U] [ 237.535750][T10268] [U] [ 237.537491][T10268] [U] [ 237.538397][T10268] [U] [ 237.539314][T10268] [U] [ 237.540195][T10268] [U] [ 237.566185][T10268] [U] [ 237.567114][T10268] [U] [ 237.567995][T10268] [U] [ 237.568888][T10268] [U] [ 237.586367][T10268] [U] [ 237.587318][T10268] [U] [ 237.588203][T10268] [U] [ 237.589081][T10268] [U] [ 237.590515][T10268] [U] [ 237.591433][T10268] [U] [ 237.592350][T10268] [U] [ 237.593229][T10268] [U] [ 237.594405][T10268] [U] [ 237.595319][T10268] [U] [ 237.596203][T10268] [U] [ 237.597085][T10268] [U] [ 237.598396][T10268] [U] [ 237.599311][T10268] [U] [ 237.600187][T10268] [U] [ 237.601069][T10268] [U] [ 237.606076][T10268] [U] [ 237.607004][T10268] [U] [ 237.607892][T10268] [U] [ 237.608759][T10268] [U] [ 237.616042][T10268] [U] [ 237.616961][T10268] [U] [ 237.617846][T10268] [U] [ 237.618722][T10268] [U] [ 237.727620][T10247] vhci_hcd: connection reset by peer [ 237.731688][ T60] vhci_hcd: stop threads [ 237.733065][ T60] vhci_hcd: release socket [ 237.735242][T10268] [U] [ 237.736161][T10268] [U] [ 237.737043][T10268] [U] [ 237.737921][T10268] [U] [ 237.739058][ T60] vhci_hcd: disconnect device [ 237.739330][T10268] [U] [ 237.741456][T10268] [U] [ 237.742376][T10268] [U] [ 237.743275][T10268] [U] [ 237.744536][T10268] [U] [ 237.745442][T10268] [U] [ 237.746339][T10268] [U] [ 237.747235][T10268] [U] [ 237.750337][T10268] [U] [ 237.751167][T10268] [U] [ 237.752049][T10268] [U] [ 237.752925][T10268] [U] [ 237.754134][T10268] [U] [ 237.755028][T10268] [U] [ 237.755926][T10268] [U] [ 237.756807][T10268] [U] [ 237.758410][T10268] [U] [ 237.759334][T10268] [U] [ 237.760218][T10268] [U] [ 237.761098][T10268] [U] [ 237.762291][T10268] [U] [ 237.763214][T10268] [U] [ 237.764094][T10268] [U] [ 237.764973][T10268] [U] [ 237.766583][T10268] [U] [ 237.767509][T10268] [U] [ 237.768393][T10268] [U] [ 237.769269][T10268] [U] [ 237.770494][T10268] [U] [ 237.771410][T10268] [U] [ 237.772288][T10268] [U] [ 237.773168][T10268] [U] [ 237.774360][T10268] [U] [ 237.775285][T10268] [U] [ 237.776165][T10268] [U] [ 237.777042][T10268] [U] [ 237.778176][T10268] [U] [ 237.779113][T10268] [U] [ 237.780053][T10268] [U] [ 237.896830][T10268] [U] [ 238.405595][T10284] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 238.878603][T10290] team0: Device gtp0 is of different type [ 238.885307][T10295] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1227'. [ 239.011727][T10302] FAULT_INJECTION: forcing a failure. [ 239.011727][T10302] name failslab, interval 1, probability 0, space 0, times 0 [ 239.015831][T10302] CPU: 3 UID: 0 PID: 10302 Comm: syz.0.1229 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) [ 239.015847][T10302] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 239.015854][T10302] Call Trace: [ 239.015858][T10302] [ 239.015863][T10302] dump_stack_lvl+0x16c/0x1f0 [ 239.015885][T10302] should_fail_ex+0x512/0x640 [ 239.015898][T10302] ? __kmalloc_noprof+0xbf/0x510 [ 239.015916][T10302] ? nla_strdup+0xc6/0x150 [ 239.015928][T10302] should_failslab+0xc2/0x120 [ 239.015940][T10302] __kmalloc_noprof+0xd2/0x510 [ 239.015960][T10302] nla_strdup+0xc6/0x150 [ 239.015975][T10302] nf_tables_newtable+0xdeb/0x1b40 [ 239.015994][T10302] ? __pfx___nla_validate_parse+0x10/0x10 [ 239.016011][T10302] ? __pfx_nf_tables_newtable+0x10/0x10 [ 239.016031][T10302] ? __nla_parse+0x40/0x60 [ 239.016048][T10302] nfnetlink_rcv_batch+0x18ed/0x2330 [ 239.016072][T10302] ? __pfx_nfnetlink_rcv_batch+0x10/0x10 [ 239.016091][T10302] ? kmem_cache_alloc_node_noprof+0x1d5/0x3b0 [ 239.016107][T10302] ? kmalloc_reserve+0x18b/0x2c0 [ 239.016120][T10302] ? __alloc_skb+0x166/0x380 [ 239.016136][T10302] ? netlink_alloc_large_skb+0x69/0x130 [ 239.016149][T10302] ? netlink_sendmsg+0x6a1/0xdd0 [ 239.016182][T10302] ? __nla_parse+0x40/0x60 [ 239.016199][T10302] nfnetlink_rcv+0x3c1/0x430 [ 239.016214][T10302] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 239.016230][T10302] ? is_vmalloc_addr+0x86/0xa0 [ 239.016249][T10302] netlink_unicast+0x53d/0x7f0 [ 239.016264][T10302] ? __pfx_netlink_unicast+0x10/0x10 [ 239.016286][T10302] netlink_sendmsg+0x8d1/0xdd0 [ 239.016302][T10302] ? __pfx_netlink_sendmsg+0x10/0x10 [ 239.016317][T10302] ? __import_iovec+0x1dd/0x650 [ 239.016334][T10302] ____sys_sendmsg+0xa95/0xc70 [ 239.016350][T10302] ? __pfx_____sys_sendmsg+0x10/0x10 [ 239.016364][T10302] ? get_compat_msghdr+0x11a/0x170 [ 239.016382][T10302] ___sys_sendmsg+0x134/0x1d0 [ 239.016394][T10302] ? __pfx____sys_sendmsg+0x10/0x10 [ 239.016412][T10302] ? find_held_lock+0x2b/0x80 [ 239.016434][T10302] __sys_sendmsg+0x16d/0x220 [ 239.016444][T10302] ? __pfx___sys_sendmsg+0x10/0x10 [ 239.016462][T10302] ? rcu_is_watching+0x12/0xc0 [ 239.016476][T10302] __do_fast_syscall_32+0x7c/0x3a0 [ 239.016489][T10302] do_fast_syscall_32+0x32/0x80 [ 239.016500][T10302] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 239.016514][T10302] RIP: 0023:0xf707e579 [ 239.016523][T10302] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 239.016534][T10302] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 239.016545][T10302] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800003c0 [ 239.016551][T10302] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 239.016558][T10302] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 239.016567][T10302] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 239.016573][T10302] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 239.016587][T10302] [ 239.406756][T10314] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 239.705788][ T838] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 239.855848][ T838] usb 6-1: Using ep0 maxpacket: 32 [ 239.870612][ T838] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11 [ 239.875286][ T838] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 239.880927][ T838] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 239.884460][ T838] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 239.900957][ T838] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 239.908342][ T838] usb 6-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68 [ 239.915880][ T838] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 239.918319][ T838] usb 6-1: Product: syz [ 239.919634][ T838] usb 6-1: Manufacturer: syz [ 239.921076][ T838] usb 6-1: SerialNumber: syz [ 239.929057][ T838] usb 6-1: config 0 descriptor?? [ 239.945889][T10320] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 239.957785][ T838] input: Generic X-Box pad as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input17 [ 239.961548][ T5343] xpad 6-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 239.966633][ T5343] xpad 6-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 239.968946][T10330] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 239.972753][T10330] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 239.975914][ T5343] xpad 6-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 239.980562][ T5343] xpad 6-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 239.988207][T10330] vhci_hcd vhci_hcd.0: Device attached [ 240.162484][T10320] xpad 6-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 240.192645][ T838] usb 6-1: USB disconnect, device number 11 [ 240.245944][ T3338] usb 37-1: new low-speed USB device number 2 using vhci_hcd [ 240.563733][T10331] vhci_hcd: connection reset by peer [ 240.565583][ T60] vhci_hcd: stop threads [ 240.566989][ T60] vhci_hcd: release socket [ 240.568573][ T60] vhci_hcd: disconnect device [ 241.035957][ T838] usb 8-1: new high-speed USB device number 22 using dummy_hcd [ 241.185780][ T838] usb 8-1: Using ep0 maxpacket: 32 [ 241.188639][ T838] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11 [ 241.192039][ T838] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 241.194974][ T838] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 241.198573][ T838] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 241.202244][ T838] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 241.208053][ T838] usb 8-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68 [ 241.210878][ T838] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 241.213359][ T838] usb 8-1: Product: syz [ 241.214667][ T838] usb 8-1: Manufacturer: syz [ 241.217668][ T838] usb 8-1: SerialNumber: syz [ 241.220318][ T838] usb 8-1: config 0 descriptor?? [ 241.222508][T10348] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 241.227277][ T838] input: Generic X-Box pad as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input18 [ 241.246077][ T5343] xpad 8-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 241.266486][ T5343] xpad 8-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 241.286965][ T5343] xpad 8-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 241.292281][ T5343] xpad 8-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 241.370052][T10359] random: crng reseeded on system resumption [ 241.433081][T10348] xpad 8-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 241.441400][T10348] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 241.444206][T10348] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 241.454393][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.476008][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.478484][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.480900][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.491579][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.494609][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.497430][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.500332][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.505892][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.509063][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.515834][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.519220][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.522104][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.524540][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.529825][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.540774][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.545656][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.549219][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.552415][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.554994][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.557531][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.560108][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.562817][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.566474][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.569148][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.572252][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.574818][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.578009][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.580365][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.583185][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.585825][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.588346][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.591219][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.594415][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.597545][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.600129][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.602774][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.605347][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.608070][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.610680][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.613251][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.615958][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.618628][ T838] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 241.629108][ T838] hid-generic 0000:007F:FFFFFFFE.0005: hidraw1: HID v0.00 Device [syz1] on syz0 [ 241.878179][ T54] usb 8-1: USB disconnect, device number 22 [ 242.015862][ T838] usb 7-1: new high-speed USB device number 21 using dummy_hcd [ 242.026003][T10368] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1244'. [ 242.030590][T10368] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1244'. [ 242.155831][ T838] usb 7-1: device descriptor read/64, error -71 [ 242.235890][ T61] vhci_hcd: vhci_device speed not set [ 242.246220][T10370] netlink: 'syz.1.1245': attribute type 21 has an invalid length. [ 242.395796][ T838] usb 7-1: new high-speed USB device number 22 using dummy_hcd [ 242.447576][T10372] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 242.449986][T10372] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 242.453984][T10372] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 242.526236][ T838] usb 7-1: device descriptor read/64, error -71 [ 242.637098][ T838] usb usb7-port1: attempt power cycle [ 242.938523][T10389] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 242.940609][T10389] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 242.943780][T10389] vhci_hcd vhci_hcd.0: Device attached [ 242.995812][ T838] usb 7-1: new high-speed USB device number 23 using dummy_hcd [ 243.016639][ T838] usb 7-1: device descriptor read/8, error -71 [ 243.255805][ T838] usb 7-1: new high-speed USB device number 24 using dummy_hcd [ 243.276307][ T838] usb 7-1: device descriptor read/8, error -71 [ 243.396039][ T838] usb usb7-port1: unable to enumerate USB device [ 243.517637][T10390] vhci_hcd: connection closed [ 243.517887][ T13] vhci_hcd: stop threads [ 243.522093][ T13] vhci_hcd: release socket [ 243.524124][ T13] vhci_hcd: disconnect device [ 243.575866][ T29] vhci_hcd: vhci_device speed not set [ 244.173406][T10402] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1254'. [ 244.405840][ T5955] Bluetooth: hci0: command 0x040f tx timeout [ 244.486101][ T5955] Bluetooth: hci3: command 0x0405 tx timeout [ 244.495776][ T5955] Bluetooth: hci1: command 0x0c1a tx timeout [ 244.812410][T10410] netlink: 'syz.2.1257': attribute type 21 has an invalid length. [ 244.845810][ T29] usb 5-1: new high-speed USB device number 24 using dummy_hcd [ 244.881205][T10416] loop8: detected capacity change from 0 to 7 [ 244.885578][T10416] Dev loop8: unable to read RDB block 7 [ 244.888649][T10416] loop8: unable to read partition table [ 244.890947][T10416] loop8: partition table beyond EOD, truncated [ 244.893414][T10416] loop_reread_partitions: partition scan of loop8 (被xڬdƤݡ [ 244.893414][T10416] ) failed (rc=-5) [ 245.015794][ T29] usb 5-1: Using ep0 maxpacket: 32 [ 245.018894][ T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11 [ 245.024063][ T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 245.027139][ T29] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 245.030791][ T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 245.034464][ T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 245.040150][ T29] usb 5-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68 [ 245.042921][ T29] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 245.045907][ T29] usb 5-1: Product: syz [ 245.047363][ T29] usb 5-1: Manufacturer: syz [ 245.048939][ T29] usb 5-1: SerialNumber: syz [ 245.051804][ T29] usb 5-1: config 0 descriptor?? [ 245.054124][T10406] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 245.059505][ T29] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input19 [ 245.246592][ T5343] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 245.255883][ T5343] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 245.260475][T10406] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 245.264257][ T5343] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 245.269401][T10406] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 245.272219][T10406] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 245.275135][ T5343] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 245.279401][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.281889][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.284309][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.286932][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.289381][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.291886][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.294311][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.296929][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.299448][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.301974][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.304404][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.307041][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.309480][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.312055][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.314696][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.317357][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.319900][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.322507][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.325155][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.355968][ T3338] vhci_hcd: vhci_device speed not set [ 245.370934][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.413898][T10432] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 245.418170][T10432] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 245.421679][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.423336][T10432] vhci_hcd vhci_hcd.0: Device attached [ 245.426850][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.431251][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.435830][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.440339][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.442929][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.445331][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.448179][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.451859][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.455412][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.458682][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.461309][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.463942][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.466413][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.468819][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.471209][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.473635][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.476309][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.478726][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.481118][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.483536][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.486010][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.488838][ T10] hid-generic 0000:007F:FFFFFFFE.0006: unknown main item tag 0x0 [ 245.496034][ T10] hid-generic 0000:007F:FFFFFFFE.0006: hidraw1: HID v0.00 Device [syz1] on syz0 [ 245.627038][ T10] usb 5-1: USB disconnect, device number 24 [ 245.655925][ T29] usb 39-1: new low-speed USB device number 3 using vhci_hcd [ 245.897726][T10437] FAULT_INJECTION: forcing a failure. [ 245.897726][T10437] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 245.901781][T10437] CPU: 0 UID: 0 PID: 10437 Comm: syz.3.1266 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) [ 245.901797][T10437] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 245.901804][T10437] Call Trace: [ 245.901808][T10437] [ 245.901813][T10437] dump_stack_lvl+0x16c/0x1f0 [ 245.901835][T10437] should_fail_ex+0x512/0x640 [ 245.901851][T10437] should_fail_alloc_page+0xe7/0x130 [ 245.901864][T10437] prepare_alloc_pages+0x3c2/0x610 [ 245.901881][T10437] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 245.901901][T10437] ? find_held_lock+0x2b/0x80 [ 245.901913][T10437] ? is_bpf_text_address+0x8a/0x1a0 [ 245.901928][T10437] ? bpf_ksym_find+0x124/0x1c0 [ 245.901941][T10437] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 245.901958][T10437] ? is_bpf_text_address+0x94/0x1a0 [ 245.901974][T10437] ? __kernel_text_address+0xd/0x40 [ 245.901991][T10437] ? unwind_get_return_address+0x59/0xa0 [ 245.902015][T10437] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 245.902033][T10437] ? policy_nodemask+0xea/0x4e0 [ 245.902045][T10437] alloc_pages_mpol+0x1fb/0x550 [ 245.902057][T10437] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 245.902067][T10437] ? kasan_save_stack+0x33/0x60 [ 245.902083][T10437] ? __kasan_kmalloc+0xaa/0xb0 [ 245.902109][T10437] ? __get_vm_area_node+0x101/0x330 [ 245.902127][T10437] alloc_pages_noprof+0x131/0x390 [ 245.902138][T10437] get_free_pages_noprof+0x10/0xb0 [ 245.902150][T10437] kasan_populate_vmalloc+0x89/0x1f0 [ 245.902169][T10437] alloc_vmap_area+0x959/0x29c0 [ 245.902188][T10437] ? __pfx_alloc_vmap_area+0x10/0x10 [ 245.902204][T10437] __get_vm_area_node+0x1ca/0x330 [ 245.902221][T10437] __vmalloc_node_range_noprof+0x271/0x14b0 [ 245.902236][T10437] ? bpf_prog_alloc_no_stats+0x54/0x630 [ 245.902255][T10437] ? bpf_prog_alloc_no_stats+0x54/0x630 [ 245.902274][T10437] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 245.902288][T10437] ? aa_get_newest_label+0x375/0x680 [ 245.902305][T10437] ? __pfx_aa_get_newest_label+0x10/0x10 [ 245.902321][T10437] ? bpf_prog_alloc_no_stats+0x54/0x630 [ 245.902335][T10437] __vmalloc_node_noprof+0xad/0xf0 [ 245.902349][T10437] ? bpf_prog_alloc_no_stats+0x54/0x630 [ 245.902366][T10437] bpf_prog_alloc_no_stats+0x54/0x630 [ 245.902380][T10437] ? security_capable+0x7e/0x260 [ 245.902395][T10437] bpf_prog_alloc+0x3b/0x230 [ 245.902409][T10437] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 245.902437][T10437] bpf_prog_load+0x1a04/0x2490 [ 245.902458][T10437] ? __pfx_bpf_prog_load+0x10/0x10 [ 245.902493][T10437] __sys_bpf+0x433c/0x4d80 [ 245.902505][T10437] ? __pfx___sys_bpf+0x10/0x10 [ 245.902515][T10437] ? ksys_write+0x190/0x250 [ 245.902534][T10437] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 245.902554][T10437] ? fput+0x70/0xf0 [ 245.902565][T10437] ? ksys_write+0x1ac/0x250 [ 245.902580][T10437] ? __pfx_ksys_write+0x10/0x10 [ 245.902599][T10437] __ia32_sys_bpf+0x76/0xe0 [ 245.902610][T10437] __do_fast_syscall_32+0x7c/0x3a0 [ 245.902623][T10437] do_fast_syscall_32+0x32/0x80 [ 245.902634][T10437] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 245.902648][T10437] RIP: 0023:0xf7f25579 [ 245.902657][T10437] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 245.902668][T10437] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 245.902678][T10437] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800012c0 [ 245.902686][T10437] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000 [ 245.902692][T10437] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 245.902698][T10437] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 245.902704][T10437] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 245.902717][T10437] [ 245.902924][T10437] syz.3.1266: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 246.028343][T10437] CPU: 3 UID: 0 PID: 10437 Comm: syz.3.1266 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) [ 246.028360][T10437] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 246.028367][T10437] Call Trace: [ 246.028371][T10437] [ 246.028375][T10437] dump_stack_lvl+0x16c/0x1f0 [ 246.028397][T10437] warn_alloc+0x248/0x3a0 [ 246.028415][T10437] ? __pfx_warn_alloc+0x10/0x10 [ 246.028433][T10437] ? kfree+0x2b4/0x4d0 [ 246.028450][T10437] ? __get_vm_area_node+0x208/0x330 [ 246.028467][T10437] __vmalloc_node_range_noprof+0xb2d/0x14b0 [ 246.028487][T10437] ? bpf_prog_alloc_no_stats+0x54/0x630 [ 246.028506][T10437] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 246.028521][T10437] ? aa_get_newest_label+0x375/0x680 [ 246.028537][T10437] ? __pfx_aa_get_newest_label+0x10/0x10 [ 246.028553][T10437] ? bpf_prog_alloc_no_stats+0x54/0x630 [ 246.028567][T10437] __vmalloc_node_noprof+0xad/0xf0 [ 246.028581][T10437] ? bpf_prog_alloc_no_stats+0x54/0x630 [ 246.028598][T10437] bpf_prog_alloc_no_stats+0x54/0x630 [ 246.028612][T10437] ? security_capable+0x7e/0x260 [ 246.028627][T10437] bpf_prog_alloc+0x3b/0x230 [ 246.028641][T10437] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 246.028658][T10437] bpf_prog_load+0x1a04/0x2490 [ 246.028679][T10437] ? __pfx_bpf_prog_load+0x10/0x10 [ 246.028710][T10437] __sys_bpf+0x433c/0x4d80 [ 246.028721][T10437] ? __pfx___sys_bpf+0x10/0x10 [ 246.028732][T10437] ? ksys_write+0x190/0x250 [ 246.028751][T10437] ? __mutex_unlock_slowpath+0x161/0x6a0 [ 246.028771][T10437] ? fput+0x70/0xf0 [ 246.028782][T10437] ? ksys_write+0x1ac/0x250 [ 246.028798][T10437] ? __pfx_ksys_write+0x10/0x10 [ 246.028816][T10437] __ia32_sys_bpf+0x76/0xe0 [ 246.028827][T10437] __do_fast_syscall_32+0x7c/0x3a0 [ 246.028840][T10437] do_fast_syscall_32+0x32/0x80 [ 246.028851][T10437] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 246.028865][T10437] RIP: 0023:0xf7f25579 [ 246.028874][T10437] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 246.028885][T10437] RSP: 002b:00000000f504655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165 [ 246.028895][T10437] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800012c0 [ 246.028901][T10437] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000 [ 246.028907][T10437] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 246.028913][T10437] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 246.028919][T10437] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 246.028933][T10437] [ 246.028937][T10437] Mem-Info: [ 246.065857][T10434] vhci_hcd: connection reset by peer [ 246.066815][T10437] active_anon:10966 inactive_anon:27 isolated_anon:0 [ 246.066815][T10437] active_file:12764 inactive_file:32184 isolated_file:0 [ 246.066815][T10437] unevictable:1749 dirty:251 writeback:0 [ 246.066815][T10437] slab_reclaimable:6239 slab_unreclaimable:55746 [ 246.066815][T10437] mapped:30131 shmem:8389 pagetables:1023 [ 246.066815][T10437] sec_pagetables:318 bounce:0 [ 246.066815][T10437] kernel_misc_reclaimable:0 [ 246.066815][T10437] free:50488 free_pcp:9969 free_cma:0 [ 246.073338][ T46] vhci_hcd: stop threads [ 246.073597][T10437] Node 0 active_anon:20kB inactive_anon:68kB active_file:0kB inactive_file:4kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:3212kB dirty:0kB writeback:0kB shmem:4760kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8144kB pagetables:1280kB sec_pagetables:1136kB all_unreclaimable? yes Balloon:0kB [ 246.075368][ T46] vhci_hcd: release socket [ 246.076601][T10437] Node 1 active_anon:43844kB inactive_anon:40kB active_file:51056kB inactive_file:128732kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:117312kB dirty:1004kB writeback:0kB shmem:28796kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4012kB pagetables:2812kB sec_pagetables:136kB all_unreclaimable? no Balloon:0kB [ 246.078083][ T46] vhci_hcd: disconnect device [ 246.079505][T10437] Node 0 DMA free:2096kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:640kB local_pcp:120kB free_cma:0kB [ 246.156406][T10437] lowmem_reserve[]: 0 289 289 289 289 [ 246.158265][T10437] Node 0 DMA32 free:26072kB boost:10240kB min:23572kB low:26904kB high:30236kB reserved_highatomic:4096KB free_highatomic:1304KB active_anon:20kB inactive_anon:68kB active_file:0kB inactive_file:4kB unevictable:3460kB writepending:0kB present:1032196kB managed:296832kB mlocked:0kB bounce:0kB free_pcp:13236kB local_pcp:3520kB free_cma:0kB [ 246.167560][T10437] lowmem_reserve[]: 0 0 0 0 0 [ 246.169065][T10437] Node 1 DMA32 free:173328kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:10240KB free_highatomic:3268KB active_anon:43744kB inactive_anon:40kB active_file:51056kB inactive_file:128732kB unevictable:3536kB writepending:1004kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:26176kB local_pcp:1252kB free_cma:0kB [ 246.179134][T10437] lowmem_reserve[]: 0 0 0 0 0 [ 246.180692][T10437] Node 0 DMA: 18*4kB (UM) 33*8kB (UM) 10*16kB (UM) 6*32kB (UM) 2*64kB (M) 0*128kB 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2096kB [ 246.185194][T10437] Node 0 DMA32: 416*4kB (UMEH) 317*8kB (UMEH) 159*16kB (UMEH) 242*32kB (UMH) 69*64kB (UMH) 34*128kB (UMH) 7*256kB (UM) 2*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 26072kB [ 246.190391][T10437] Node 1 DMA32: 352*4kB (UMEH) 168*8kB (UEH) 183*16kB (UMEH) 478*32kB (UMEH) 385*64kB (UMEH) 167*128kB (UMEH) 77*256kB (UME) 41*512kB (UME) 24*1024kB (ME) 14*2048kB (UM) 3*4096kB (U) = 173232kB [ 246.196437][T10437] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 246.199317][T10437] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB [ 246.202145][T10437] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 246.205025][T10437] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 246.208114][T10437] 53426 total pagecache pages [ 246.209657][T10437] 93 pages in swap cache [ 246.210979][T10437] Free swap = 122676kB [ 246.212318][T10437] Total swap = 124996kB [ 246.213619][T10437] 524155 pages RAM [ 246.214791][T10437] 0 pages HighMem/MovableOnly [ 246.216414][T10437] 209040 pages reserved [ 246.217709][T10437] 0 pages cma reserved [ 246.329058][T10447] lo speed is unknown, defaulting to 1000 [ 246.337470][ T40] kauditd_printk_skb: 480 callbacks suppressed [ 246.337481][ T40] audit: type=1326 audit(1749051789.255:2145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10444 comm="syz.0.1268" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x0 [ 246.346329][T10449] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7) [ 246.348319][T10449] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 246.353200][T10449] vhci_hcd vhci_hcd.0: Device attached [ 246.410467][T10443] [U] : [ 246.411434][T10443] [U] [ 246.412310][T10443] [U] [ 246.413186][T10443] [U] [ 246.414339][T10443] [U] [ 246.415224][T10443] [U] [ 246.416114][T10443] [U] [ 246.416994][T10443] [U] [ 246.418494][T10443] [U] [ 246.420559][T10443] [U] [ 246.420581][T10443] [U] [ 246.420601][T10443] [U] [ 246.421062][T10443] [U] [ 246.421082][T10443] [U] [ 246.421099][T10443] [U] [ 246.421116][T10443] [U] [ 246.422531][T10443] [U] [ 246.422551][T10443] [U] [ 246.422568][T10443] [U] [ 246.422586][T10443] [U] [ 246.423814][T10443] [U] [ 246.423835][T10443] [U] [ 246.423854][T10443] [U] [ 246.423872][T10443] [U] [ 246.424357][T10443] [U] [ 246.424377][T10443] [U] [ 246.424395][T10443] [U] [ 246.424412][T10443] [U] [ 246.425552][T10443] [U] [ 246.425572][T10443] [U] [ 246.425590][T10443] [U] [ 246.425609][T10443] [U] [ 246.425944][T10443] [U] [ 246.444867][T10443] [U] [ 246.444889][T10443] [U] [ 246.444908][T10443] [U] [ 246.447024][T10451] vhci_hcd: connection closed [ 246.448454][T10443] [U] [ 246.448475][T10443] [U] [ 246.448492][T10443] [U] [ 246.448509][T10443] [U] [ 246.448772][T10443] [U] [ 246.448791][T10443] [U] [ 246.448808][T10443] [U] [ 246.448825][T10443] [U] [ 246.449084][T10443] [U] [ 246.449103][T10443] [U] [ 246.449120][T10443] [U] [ 246.449137][T10443] [U] [ 246.449399][T10443] [U] [ 246.449418][T10443] [U] [ 246.449435][T10443] [U] [ 246.449452][T10443] [U] [ 246.449710][T10443] [U] [ 246.449730][T10443] [U] [ 246.449747][T10443] [U] [ 246.449764][T10443] [U] [ 246.450022][T10443] [U] [ 246.450041][T10443] [U] [ 246.450058][T10443] [U] [ 246.450076][T10443] [U] [ 246.450337][T10443] [U] [ 246.450356][T10443] [U] [ 246.450374][T10443] [U] [ 246.450393][T10443] [U] [ 246.450654][T10443] [U] [ 246.450673][T10443] [U] [ 246.450690][T10443] [U] [ 246.450707][T10443] [U] [ 246.451045][T10443] [U] [ 246.451066][T10443] [U] [ 246.451086][T10443] [U] [ 246.451105][T10443] [U] [ 246.451648][T10443] [U] [ 246.451681][T10443] [U] [ 246.451709][T10443] [U] [ 246.451737][T10443] [U] [ 246.453047][T10443] [U] [ 246.453067][T10443] [U] [ 246.453084][T10443] [U] [ 246.453101][T10443] [U] [ 246.453523][T10443] [U] [ 246.453552][T10443] [U] [ 246.453570][T10443] [U] [ 246.453587][T10443] [U] [ 246.453880][ T1204] vhci_hcd: stop threads [ 246.453890][ T1204] vhci_hcd: release socket [ 246.453898][ T1204] vhci_hcd: disconnect device [ 246.453991][T10443] [U] [ 246.454011][T10443] [U] [ 246.454031][T10443] [U] [ 246.454049][T10443] [U] [ 246.454319][T10443] [U] [ 246.454339][T10443] [U] [ 246.454357][T10443] [U] [ 246.454375][T10443] [U] [ 246.454611][T10443] [U] [ 246.454631][T10443] [U] [ 246.454649][T10443] [U] [ 246.454667][T10443] [U] [ 246.454925][T10443] [U] [ 246.515177][T10443] [U] [ 246.516060][T10443] [U] [ 246.516943][T10443] [U] [ 246.525846][T10443] [U] [ 246.526785][T10443] [U] [ 246.527731][T10443] [U] [ 246.528829][T10443] [U] [ 246.529983][T10443] [U] [ 246.530869][T10443] [U] [ 246.531791][T10443] [U] [ 246.532667][T10443] [U] [ 246.533784][T10443] [U] [ 246.534709][T10443] [U] [ 246.535605][T10443] [U] [ 246.536490][T10443] [U] [ 246.545829][T10443] [U] [ 246.546751][T10443] [U] [ 246.547822][T10443] [U] [ 246.548795][T10443] [U] [ 246.555986][T10443] [U] [ 246.556907][T10443] [U] [ 246.557809][T10443] [U] [ 246.558688][T10443] [U] [ 246.559640][T10443] [U] [ 246.560521][T10443] [U] [ 246.561402][T10443] [U] [ 246.562312][T10443] [U] [ 246.563250][T10443] [U] [ 246.564131][T10443] [U] [ 246.565015][T10443] [U] [ 246.798660][T10438] [U] [ 246.890216][T10459] program syz.1.1270 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 247.263143][T10470] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1274'. [ 247.288983][T10465] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 247.292879][T10465] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 247.297603][T10465] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 247.315859][T10473] wlan1: mtu less than device minimum [ 247.362359][T10471] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1273'. [ 247.445053][T10483] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 247.800495][T10489] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7) [ 247.803087][T10489] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 247.826592][T10489] vhci_hcd vhci_hcd.0: Device attached [ 247.842971][T10487] lo speed is unknown, defaulting to 1000 [ 247.936998][T10491] vhci_hcd: connection closed [ 247.942359][ T97] vhci_hcd: stop threads [ 247.950784][ T97] vhci_hcd: release socket [ 247.954106][ T97] vhci_hcd: disconnect device [ 248.040866][ T40] audit: type=1326 audit(1749051790.965:2146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10497 comm="syz.0.1281" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x0 [ 248.481201][T10515] program syz.3.1287 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 248.530247][ T5308] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 248.533295][ T5308] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 248.537171][ T5308] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 248.540405][ T5308] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 248.542968][ T5308] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 248.637507][T10518] lo speed is unknown, defaulting to 1000 [ 248.729766][T10518] chnl_net:caif_netlink_parms(): no params data found [ 249.043690][T10528] wlan1: mtu less than device minimum [ 249.045991][T10530] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 249.127931][T10518] bridge0: port 1(bridge_slave_0) entered blocking state [ 249.130255][T10518] bridge0: port 1(bridge_slave_0) entered disabled state [ 249.132529][T10518] bridge_slave_0: entered allmulticast mode [ 249.135281][T10518] bridge_slave_0: entered promiscuous mode [ 249.139352][T10518] bridge0: port 2(bridge_slave_1) entered blocking state [ 249.141621][T10518] bridge0: port 2(bridge_slave_1) entered disabled state [ 249.144272][T10518] bridge_slave_1: entered allmulticast mode [ 249.147081][T10518] bridge_slave_1: entered promiscuous mode [ 249.193955][T10518] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 249.198575][T10518] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 249.239231][T10518] team0: Port device team_slave_0 added [ 249.242650][T10518] team0: Port device team_slave_1 added [ 249.290456][T10518] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 249.293188][T10518] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 249.302575][T10518] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 249.306856][T10518] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 249.309404][T10518] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 249.318141][T10518] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 249.347069][ T13] smc: removing ib device syz1 [ 249.366391][ T5308] Bluetooth: hci3: command 0x0405 tx timeout [ 249.368427][ T5308] Bluetooth: hci1: command 0x0c1a tx timeout [ 249.423180][T10518] hsr_slave_0: entered promiscuous mode [ 249.428179][T10518] hsr_slave_1: entered promiscuous mode [ 249.430318][T10518] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 249.432469][T10518] Cannot create hsr debugfs directory [ 249.619742][ T97] bridge_slave_1: left allmulticast mode [ 249.623039][ T97] bridge_slave_1: left promiscuous mode [ 249.640137][ T97] bridge0: port 2(bridge_slave_1) entered disabled state [ 249.646455][ T97] bridge_slave_0: left allmulticast mode [ 249.648582][ T97] bridge_slave_0: left promiscuous mode [ 249.650367][ T97] bridge0: port 1(bridge_slave_0) entered disabled state [ 249.724215][ T40] audit: type=1326 audit(1749051792.645:2147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10553 comm="syz.0.1299" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x0 [ 249.968140][ T13] ------------[ cut here ]------------ [ 249.971043][ T13] GID entry ref leak for dev syz1 index 2 ref=7 [ 249.974260][ T13] WARNING: CPU: 3 PID: 13 at drivers/infiniband/core/cache.c:806 gid_table_release_one+0x387/0x4b0 [ 249.978932][ T13] Modules linked in: [ 249.981787][ T13] CPU: 3 UID: 0 PID: 13 Comm: kworker/u32:1 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) [ 249.986899][ T13] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 249.991254][ T13] Workqueue: ib-unreg-wq ib_unregister_work [ 249.993160][ T13] RIP: 0010:gid_table_release_one+0x387/0x4b0 [ 249.995053][ T13] Code: 07 00 00 48 85 f6 74 2b 48 89 74 24 38 e8 01 b5 35 f9 48 8b 74 24 38 44 89 f1 44 89 ea 48 c7 c7 00 03 99 8c e8 5a d3 f4 f8 90 <0f> 0b 90 90 e9 6e fe ff ff e8 db b4 35 f9 48 8d bd 48 07 00 00 48 [ 250.000850][ T13] RSP: 0018:ffffc900001f7b50 EFLAGS: 00010286 [ 250.002775][ T13] RAX: 0000000000000000 RBX: ffff888051132600 RCX: ffffffff817a92c8 [ 250.005163][ T13] RDX: ffff88801d6f0000 RSI: ffffffff817a92d5 RDI: 0000000000000001 [ 250.007665][ T13] RBP: ffff88806a64c000 R08: 0000000000000001 R09: 0000000000000000 [ 250.010088][ T13] R10: 0000000000000001 R11: 0000000000000001 R12: ffffed100a2264db [ 250.012466][ T13] R13: 0000000000000002 R14: 0000000000000007 R15: dffffc0000000000 [ 250.014820][ T13] FS: 0000000000000000(0000) GS:ffff888097a72000(0000) knlGS:0000000000000000 [ 250.017496][ T13] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 250.019465][ T13] CR2: 000000002f41eff8 CR3: 00000000681b7000 CR4: 0000000000352ef0 [ 250.021858][ T13] DR0: 0000000000000007 DR1: 0000000000000002 DR2: 0000000000000008 [ 250.024232][ T13] DR3: 0000000000000006 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 250.026752][ T13] Call Trace: [ 250.027826][ T13] [ 250.028737][ T13] ib_device_release+0xef/0x1e0 [ 250.030220][ T13] ? __pfx_ib_device_release+0x10/0x10 [ 250.031851][ T13] device_release+0xa1/0x240 [ 250.033319][ T13] kobject_put+0x1e7/0x5a0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 250.034724][ T13] put_device+0x1f/0x30 [ 250.036233][ T13] process_one_work+0x9cf/0x1b70 [ 250.037747][ T13] ? __pfx_process_one_work+0x10/0x10 [ 250.039380][ T13] ? assign_work+0x1a0/0x250 [ 250.040752][ T13] worker_thread+0x6c8/0xf10 [ 250.042231][ T13] ? __pfx_worker_thread+0x10/0x10 [ 250.043831][ T13] kthread+0x3c2/0x780 [ 250.045086][ T13] ? __pfx_kthread+0x10/0x10 [ 250.046534][ T13] ? rcu_is_watching+0x12/0xc0 [ 250.047949][ T13] ? __pfx_kthread+0x10/0x10 [ 250.049350][ T13] ret_from_fork+0x5d7/0x6f0 [ 250.051036][ T13] ? __pfx_kthread+0x10/0x10 [ 250.052644][ T13] ret_from_fork_asm+0x1a/0x30 [ 250.054328][ T13] [ 250.055553][ T13] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 250.057885][ T13] CPU: 3 UID: 0 PID: 13 Comm: kworker/u32:1 Not tainted 6.15.0-syzkaller-11796-g5abc7438f1e9 #0 PREEMPT(full) [ 250.061977][ T13] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 250.065123][ T13] Workqueue: ib-unreg-wq ib_unregister_work [ 250.067287][ T13] Call Trace: [ 250.068604][ T13] [ 250.069777][ T13] dump_stack_lvl+0x3d/0x1f0 [ 250.071640][ T13] panic+0x71c/0x800 [ 250.073162][ T13] ? __pfx_panic+0x10/0x10 [ 250.074937][ T13] ? show_trace_log_lvl+0x29b/0x3e0 [ 250.076985][ T13] ? check_panic_on_warn+0x1f/0xb0 [ 250.078957][ T13] ? gid_table_release_one+0x387/0x4b0 [ 250.081098][ T13] check_panic_on_warn+0xab/0xb0 [ 250.083070][ T13] __warn+0xf6/0x3c0 [ 250.084639][ T13] ? preempt_schedule_notrace+0x62/0xe0 [ 250.086785][ T13] ? gid_table_release_one+0x387/0x4b0 [ 250.088955][ T13] report_bug+0x3c3/0x580 [ 250.090680][ T13] ? gid_table_release_one+0x387/0x4b0 [ 250.092906][ T13] handle_bug+0x184/0x210 [ 250.094682][ T13] exc_invalid_op+0x17/0x50 [ 250.096749][ T13] asm_exc_invalid_op+0x1a/0x20 [ 250.098713][ T13] RIP: 0010:gid_table_release_one+0x387/0x4b0 [ 250.101053][ T13] Code: 07 00 00 48 85 f6 74 2b 48 89 74 24 38 e8 01 b5 35 f9 48 8b 74 24 38 44 89 f1 44 89 ea 48 c7 c7 00 03 99 8c e8 5a d3 f4 f8 90 <0f> 0b 90 90 e9 6e fe ff ff e8 db b4 35 f9 48 8d bd 48 07 00 00 48 [ 250.108928][ T13] RSP: 0018:ffffc900001f7b50 EFLAGS: 00010286 [ 250.111320][ T13] RAX: 0000000000000000 RBX: ffff888051132600 RCX: ffffffff817a92c8 [ 250.114427][ T13] RDX: ffff88801d6f0000 RSI: ffffffff817a92d5 RDI: 0000000000000001 [ 250.117522][ T13] RBP: ffff88806a64c000 R08: 0000000000000001 R09: 0000000000000000 [ 250.120633][ T13] R10: 0000000000000001 R11: 0000000000000001 R12: ffffed100a2264db [ 250.123699][ T13] R13: 0000000000000002 R14: 0000000000000007 R15: dffffc0000000000 [ 250.126807][ T13] ? __warn_printk+0x198/0x350 [ 250.128715][ T13] ? __warn_printk+0x1a5/0x350 [ 250.130620][ T13] ib_device_release+0xef/0x1e0 [ 250.132682][ T13] ? __pfx_ib_device_release+0x10/0x10 [ 250.134987][ T13] device_release+0xa1/0x240 [ 250.136915][ T13] kobject_put+0x1e7/0x5a0 [ 250.138673][ T13] put_device+0x1f/0x30 [ 250.140339][ T13] process_one_work+0x9cf/0x1b70 [ 250.142273][ T13] ? __pfx_process_one_work+0x10/0x10 [ 250.144456][ T13] ? assign_work+0x1a0/0x250 [ 250.146407][ T13] worker_thread+0x6c8/0xf10 [ 250.148390][ T13] ? __pfx_worker_thread+0x10/0x10 [ 250.150473][ T13] kthread+0x3c2/0x780 [ 250.152132][ T13] ? __pfx_kthread+0x10/0x10 [ 250.153955][ T13] ? rcu_is_watching+0x12/0xc0 [ 250.155700][ T13] ? __pfx_kthread+0x10/0x10 [ 250.157547][ T13] ret_from_fork+0x5d7/0x6f0 [ 250.159358][ T13] ? __pfx_kthread+0x10/0x10 [ 250.161171][ T13] ret_from_fork_asm+0x1a/0x30 [ 250.163095][ T13] [ 250.164932][ T13] Kernel Offset: disabled [ 250.166649][ T13] Rebooting in 86400 seconds.. VM DIAGNOSIS: 15:43:13 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff911d1592 RDX=0000000000000005 RSI=0000000000000001 RDI=ffffffff90997380 RBP=ffffc90003a47970 RSP=ffffc90003a478b8 R8 =ffffffff911d1596 R9 =0000000000000000 R10=0000000000000000 R11=0000000000007c29 R12=ffffc90003a47978 R13=ffffc90003a47928 R14=ffffc90003a4795d R15=0000000000000000 RIP=ffffffff816a7da5 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097772000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f3aefffc CR3=000000004db9e000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a 0000002c00000012 0004000000080024 0000000000280030 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000051c 0000001400000000 0000000000000000 0000000000000015 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0041f2002e01ffff fffffffffffffb08 0380030400000030 0000000100000001 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000001020800 1ffe080001000000 080606013ea80008 0000080003800206 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0041f2002e01ffff fffffffffffffb08 0380030400000030 0000000100000001 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000051c 0000001400000000 0000000000000000 0000000000000015 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a 0000002c00000012 0004000000080024 0000000000280030 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0001980800040105 b60fffffffff0204 080008848c080003 8002010000020806 ZMM25=8567a7418567a741 8567a7418567a741 8567a7418567a741 8567a7418567a741 8567a7418567a741 8567a7418567a741 8567a7418567a741 8567a7418567a741 ZMM26=2728573d2728573d 2728573d2728573d 2728573d2728573d 2728573d2728573d 2728573d2728573d 2728573d2728573d 2728573d2728573d 2728573d2728573d ZMM27=ff16589aff16589a ff16589aff16589a ff16589aff16589a ff16589aff16589a ff16589aff16589a ff16589aff16589a ff16589aff16589a ff16589aff16589a ZMM28=000000200000001f 0000001e0000001d 0000001c0000001b 0000001a00000019 0000001800000017 0000001600000015 0000001400000013 0000001200000011 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=9a0900009a090000 9a0900009a090000 9a0900009a090000 9a0900009a090000 9a0900009a090000 9a0900009a090000 9a0900009a090000 9a0900009a090000 info registers vcpu 1 CPU#1 RAX=0000000000000002 RBX=0000000000000002 RCX=0000000000000002 RDX=0000000000000003 RSI=ffff8880203b0b40 RDI=ffff8880203b0000 RBP=ffff8880203b0000 RSP=ffffc90000590be8 R8 =0000000000000000 R9 =0000000000000001 R10=ffffffff9087d657 R11=0000000000000001 R12=0000000000000002 R13=ffff8880203b0af0 R14=0000000000000000 R15=ffff8880695d7c40 RIP=ffffffff8197cf7d RFL=00000017 [----APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097872000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000004 CR3=000000006bb0f000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000000 RBX=ffff88806ba0dc70 RCX=ffffffff8a1ae04d RDX=ffff888024708000 RSI=0000000000000000 RDI=0000000000000001 RBP=0000000000000000 RSP=ffffc90003947530 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001 R12=0000052e401d4c69 R13=0000052e401d4c69 R14=ffff88806ba0dcef R15=0000000000000000 RIP=ffffffff8a1ae41a RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f2393643300 ffffffff 00c00000 GS =0000 ffff888097972000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f2392f225d0 CR3=000000004db9e000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a 0000002c00000012 0004000000080024 0000000000280030 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000051c 0000001400000000 0000000000000000 0000000000000015 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0041f2002e01ffff fffffffffffffb08 0380030400000030 0000000100000001 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 040003b003020400 03ac0302a0040003 a80300040003a403 00020003a2030002 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0003a00300080003 9803000800039003 020400038c036004 0003880302c80800 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0380030380020180 0301800202900300 08000288030fffff ffff020280030008 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000001020800 1ffe080001000000 080606013ea80008 0000080003800206 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0001980800040105 b60fffffffff0204 080008848c080003 8002010000020806 ZMM25=8567a7418567a741 8567a7418567a741 8567a7418567a741 8567a7418567a741 8567a7418567a741 8567a7418567a741 8567a7418567a741 8567a7418567a741 ZMM26=2728573d2728573d 2728573d2728573d 2728573d2728573d 2728573d2728573d 2728573d2728573d 2728573d2728573d 2728573d2728573d 2728573d2728573d ZMM27=ff16589aff16589a ff16589aff16589a ff16589aff16589a ff16589aff16589a ff16589aff16589a ff16589aff16589a ff16589aff16589a ff16589aff16589a ZMM28=000000200000001f 0000001e0000001d 0000001c0000001b 0000001a00000019 0000001800000017 0000001600000015 0000001400000013 0000001200000011 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=9a0900009a090000 9a0900009a090000 9a0900009a090000 9a0900009a090000 9a0900009a090000 9a0900009a090000 9a0900009a090000 9a0900009a090000 info registers vcpu 3 CPU#3 RAX=000000000000005b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8555fc15 RDI=ffffffff9ae5ca00 RBP=ffffffff9ae5c9c0 RSP=ffffc900001f74c0 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001 R12=0000000000000000 R13=000000000000005b R14=ffffffff9ae5c9c0 R15=ffffffff8555fbb0 RIP=ffffffff8555fc3f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097a72000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000002f41eff8 CR3=00000000681b7000 CR4=00352ef0 DR0=0000000000000007 DR1=0000000000000002 DR2=0000000000000008 DR3=0000000000000006 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1d3e24c057c819d1 b3f6649380882a49 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f2e697622340e023 49141dbf8092d134 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 daf5e28210d1274f eb019e9dbe1d48a7 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 aa97ebdaa8202453 a306718e93641f04 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001ec0 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000009888c505 9b00000098000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 986c90c300017d52 9892866c01e8e29e ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 987be94f12000000 ce000000fa000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8100000070000000 9888d7b100000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3ab9d9210d929a0f 78d692a063a54c2f ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 cd0449f6438338ff 7ef2aa7c647645ea ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000