last executing test programs: 1.206719325s ago: executing program 3 (id=4868): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000240)={0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0xc) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000040)=r1, 0x4) 1.206437047s ago: executing program 3 (id=4869): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00'}, 0x94) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000002c0)='bdi_dirty_ratelimit\x00', r0}, 0x10) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000300)={r2, r1, 0x0, 0x1, 0xfffffffffffffffe}, 0x30) 1.165369373s ago: executing program 3 (id=4870): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000640)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)={0x30, r1, 0x1, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @crypto_settings=[@NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x890d}]]}, 0x30}, 0x1, 0x0, 0x0, 0x400a841}, 0x4004010) 1.164896448s ago: executing program 3 (id=4871): timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000)) timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) ioperm(0x0, 0x2, 0x2) ioperm(0x0, 0x9da9, 0x0) 1.106520805s ago: executing program 3 (id=4873): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000480)={0x34, r1, 0x1, 0x0, 0x25dfdbff, {{0x2}, {@val={0x8, 0x3, r2}, @void}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x912}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) 1.103804985s ago: executing program 3 (id=4875): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000040)={0x50, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x3}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x50}}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000ec0)=ANY=[@ANYBLOB="440000000906010200120000000c0000000000000900020073797a310000000005000100070000001c0007800c00018008000140fffffffe0c000280080001407f00"], 0x44}, 0x1, 0x0, 0x0, 0x10008086}, 0x4000050) 331.384315ms ago: executing program 2 (id=4878): r0 = socket$inet(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=@newqdisc={0xac, 0x24, 0xf0b, 0x70bd2b, 0xfffffffd, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x7c, 0x2, [@TCA_TAPRIO_ATTR_FLAGS={0x8, 0xa, 0x2}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8, 0x6, 0x0, 0x10]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0xc2}]}}]}, 0xac}}, 0x0) 259.354496ms ago: executing program 2 (id=4879): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) fcntl$lock(r0, 0x25, &(0x7f0000000040)={0x0, 0x1, 0x4, 0x2}) fcntl$lock(r0, 0x26, &(0x7f00000001c0)={0x1, 0x1, 0x7, 0x6}) fcntl$lock(r0, 0x24, &(0x7f0000000080)={0x2, 0x1, 0xbb7, 0x800}) 259.091637ms ago: executing program 2 (id=4880): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x5}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000007e40)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x0, @dev}, 0x18, 0x0}}], 0x6c00, 0x48) sendto$inet6(r0, 0x0, 0x0, 0x10, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}, 0xffffff69}, 0x1c) 171.723914ms ago: executing program 2 (id=4883): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6) io_setup(0x8, &(0x7f00000002c0)=0x0) io_submit(r1, 0x1, &(0x7f0000000000)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r0, &(0x7f0000000040)="0300ffff0097", 0x6}]) 171.346614ms ago: executing program 1 (id=4885): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r0}, 0x10) r1 = io_uring_setup(0x3d68, &(0x7f0000000000)={0x0, 0xef52, 0x1, 0x1, 0x2ae}) io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0x14, &(0x7f0000003480)={0x4, 0x0, 0x4, &(0x7f00000001c0)=[{0x0}, {0x0}, {0x0}, {0x0}], 0x0}, 0x2) 168.589562ms ago: executing program 0 (id=4886): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x30, r1, 0x1, 0x70bd25, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x14, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_FORWARDING={0x5}, @NL80211_MESHCONF_RSSI_THRESHOLD={0x8, 0x14, 0xffffffffffffff55}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x80) 164.640718ms ago: executing program 1 (id=4887): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x10, &(0x7f0000000200)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x43}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@call={0x85, 0x0, 0x0, 0xe}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='signal_generate\x00', r1}, 0x18) syz_open_procfs$namespace(0x0, 0xfffffffffffffffe) 160.922077ms ago: executing program 0 (id=4888): r0 = socket(0x1d, 0x2, 0x6) r1 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vcan0\x00', 0x0}) bind$can_j1939(r0, &(0x7f0000000000)={0x1d, r2, 0x80000003}, 0x18) 117.703164ms ago: executing program 1 (id=4889): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0xfffff274}]}}}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) syz_emit_ethernet(0x3e, &(0x7f0000000180)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb86dd6003190000082c00"], 0x0) 72.445553ms ago: executing program 0 (id=4890): r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) write$binfmt_elf32(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="7f454c4604070003070000000000000002000300060000000903000038000000000000000e000000000020000100050000000000000000000300000008000000f30000007f00000026"], 0x58) close(r0) execve(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) 71.56304ms ago: executing program 1 (id=4891): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0x4) bind$inet6(r0, &(0x7f0000000a00)={0xa, 0x4e20, 0xf, @empty, 0x5}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0xfffffff1, @empty, 0x2}, 0x1c) 71.206562ms ago: executing program 2 (id=4892): sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001b00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000740)=[@cred={{0x1c}}], 0x20, 0xc804}}], 0x1, 0x24040810) r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f00000004c0), 0x10) sendmsg$can_bcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000700)=ANY=[@ANYBLOB="05000000030000000000000000400000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYBLOB="0000000002"], 0x38}, 0x300}, 0x0) 68.685079ms ago: executing program 0 (id=4893): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000a00)={0x30, r1, 0x5, 0x0, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0xc, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}]]}, 0x30}}, 0x0) 24.448969ms ago: executing program 1 (id=4894): r0 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000000)={0x1, [0x0]}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f00000001c0)={r1}, &(0x7f00000002c0)=0x8) 5.293377ms ago: executing program 0 (id=4895): r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) setns(r1, 0x24020000) mount_setattr(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x9100, &(0x7f0000000200)={0x81, 0x0, 0x100000}, 0x20) 5.095341ms ago: executing program 2 (id=4896): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80) sendmsg$nl_route(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)=@setlink={0x48, 0x10, 0x401, 0x0, 0xfffffffc, {}, [@IFLA_IFNAME={0x14, 0x3, 'veth0_to_bond\x00'}, @IFLA_XDP={0x14, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r1}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x5}]}]}, 0x48}}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0xb8}}, 0x0) 1.169527ms ago: executing program 0 (id=4897): fsmount(0xffffffffffffffff, 0x0, 0x18) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000300)='mm_collapse_huge_page\x00', r0, 0x0, 0x9}, 0x18) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) 0s ago: executing program 1 (id=4904): mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0) r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000000)='.\x00', 0x40007c0) rename(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') kernel console output (not intermixed with test programs): m/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:20D6:CB17.0003/input/input12 [ 81.832761][ T6015] input: THQ uDraw Game Tablet for PS3 Pen as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:20D6:CB17.0003/input/input13 [ 81.841193][ T6015] input: THQ uDraw Game Tablet for PS3 Accelerometer as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:20D6:CB17.0003/input/input14 [ 81.895674][ T6015] hid-udraw 0003:20D6:CB17.0003: hidraw1: USB HID v0.00 Device [HID 20d6:cb17] on usb-dummy_hcd.2-1/input0 [ 82.042362][ T6029] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 82.050381][ T7990] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 82.056206][ T7990] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.058656][ T7990] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.088617][ T6015] usb 7-1: USB disconnect, device number 5 [ 82.214104][ T6029] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 82.217253][ T6029] usb 5-1: config 0 has no interfaces? [ 82.218963][ T6029] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 82.221792][ T6029] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 82.225648][ T6029] usb 5-1: config 0 descriptor?? [ 82.433150][ T9] usb 5-1: USB disconnect, device number 3 [ 83.101995][ T8059] team0: No ports can be present during mode change [ 83.625465][ T8120] @: renamed from vlan0 (while UP) [ 83.679611][ T8127] bridge0: port 3(syz_tun) entered blocking state [ 83.681649][ T8127] bridge0: port 3(syz_tun) entered disabled state [ 83.685228][ T8127] syz_tun: entered allmulticast mode [ 83.688660][ T8127] syz_tun: entered promiscuous mode [ 83.890909][ T8155] bridge0: port 3(syz_tun) entered blocking state [ 83.894369][ T8155] bridge0: port 3(syz_tun) entered disabled state [ 83.896867][ T8155] syz_tun: entered allmulticast mode [ 83.898378][ T8154] netlink: 'syz.3.925': attribute type 1 has an invalid length. [ 83.899355][ T8155] syz_tun: entered promiscuous mode [ 83.900642][ T8154] netlink: 4 bytes leftover after parsing attributes in process `syz.3.925'. [ 83.902759][ T8155] bridge0: port 3(syz_tun) entered blocking state [ 83.906814][ T8155] bridge0: port 3(syz_tun) entered forwarding state [ 83.964827][ T8162] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 84.200057][ T7176] kernel read not supported for file /dsp (pid: 7176 comm: kworker/0:5) [ 84.495059][ T8187] netlink: 'syz.2.938': attribute type 2 has an invalid length. [ 84.497554][ T8187] netlink: 116 bytes leftover after parsing attributes in process `syz.2.938'. [ 84.502387][ T8189] bridge0: port 3(syz_tun) entered blocking state [ 84.505100][ T8189] bridge0: port 3(syz_tun) entered disabled state [ 84.507638][ T8189] syz_tun: entered allmulticast mode [ 84.511360][ T8189] syz_tun: entered promiscuous mode [ 84.732535][ T7176] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 84.884996][ T7176] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 84.892295][ T7176] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 84.895382][ T7176] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 84.898918][ T7176] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 84.905299][ T7176] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 84.912275][ T7176] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 84.914818][ T7176] usb 6-1: Product: syz [ 84.916141][ T7176] usb 6-1: Manufacturer: syz [ 84.924498][ T7176] cdc_wdm 6-1:1.0: probe with driver cdc_wdm failed with error -22 [ 85.132010][ T1019] usb 6-1: USB disconnect, device number 3 [ 85.427625][ T8235] netlink: 'syz.0.961': attribute type 1 has an invalid length. [ 85.613340][ T8242] hub 1-0:1.0: USB hub found [ 85.614994][ T8242] hub 1-0:1.0: 2 ports detected [ 85.809869][ T8272] binder: BINDER_SET_CONTEXT_MGR already set [ 85.811767][ T8272] binder: 8271:8272 ioctl 4018620d 80000040 returned -16 [ 85.972561][ T40] audit: type=1326 audit(1756099903.442:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8298 comm="syz.2.993" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707e598 code=0x7ffc0000 [ 85.979473][ T40] audit: type=1326 audit(1756099903.442:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8298 comm="syz.2.993" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707e598 code=0x7ffc0000 [ 85.988271][ T40] audit: type=1326 audit(1756099903.442:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8298 comm="syz.2.993" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707e598 code=0x7ffc0000 [ 85.995784][ T40] audit: type=1326 audit(1756099903.442:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8298 comm="syz.2.993" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707e598 code=0x7ffc0000 [ 85.995831][ T40] audit: type=1326 audit(1756099903.442:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8298 comm="syz.2.993" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707e598 code=0x7ffc0000 [ 85.995893][ T40] audit: type=1326 audit(1756099903.442:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8298 comm="syz.2.993" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707e598 code=0x7ffc0000 [ 85.995929][ T40] audit: type=1326 audit(1756099903.442:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8298 comm="syz.2.993" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707e598 code=0x7ffc0000 [ 85.995980][ T40] audit: type=1326 audit(1756099903.442:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8298 comm="syz.2.993" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf707e598 code=0x7ffc0000 [ 86.055304][ T8307] netlink: 7 bytes leftover after parsing attributes in process `syz.0.997'. [ 86.091560][ T8316] o2cb: This node has not been configured. [ 86.094480][ T8316] o2cb: Cluster check failed. Fix errors before retrying. [ 86.096932][ T8316] (syz.3.1002,8316,1):user_dlm_register:674 ERROR: status = -22 [ 86.099394][ T8316] (syz.3.1002,8316,1):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file0" [ 86.298775][ T8335] netlink: 'syz.2.1010': attribute type 39 has an invalid length. [ 86.459473][ T8356] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1020'. [ 86.862878][ T6015] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 86.931101][ T8397] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1037'. [ 87.022361][ T6015] usb 8-1: Using ep0 maxpacket: 8 [ 87.023752][ T6015] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 87.028226][ T6015] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 87.028239][ T6015] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 87.030037][ T6015] usb 8-1: config 0 descriptor?? [ 87.613197][ T6015] iowarrior 8-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0 [ 87.617304][ T6015] usb 8-1: USB disconnect, device number 6 [ 87.802392][ T1019] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 87.963441][ T1019] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 87.966689][ T1019] usb 5-1: config 0 interface 0 has no altsetting 0 [ 87.970341][ T1019] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 87.973230][ T1019] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 87.975689][ T1019] usb 5-1: Product: syz [ 87.977089][ T1019] usb 5-1: Manufacturer: syz [ 87.978615][ T1019] usb 5-1: SerialNumber: syz [ 87.981368][ T1019] usb 5-1: config 0 descriptor?? [ 87.987024][ T1019] usb 5-1: selecting invalid altsetting 0 [ 88.232498][ T5980] Bluetooth: hci1: command 0x0405 tx timeout [ 88.243704][ T7176] usb 5-1: USB disconnect, device number 4 [ 88.617287][ T8473] macvlan2: entered promiscuous mode [ 88.619143][ T8473] bridge0: entered promiscuous mode [ 88.627150][ T8475] netlink: 7 bytes leftover after parsing attributes in process `syz.2.1068'. [ 88.761929][ T8479] kernel read not supported for file /blkio.throttle.io_service_bytes_recursive (pid: 8479 comm: syz.2.1071) [ 88.766479][ T40] kauditd_printk_skb: 250 callbacks suppressed [ 88.766495][ T40] audit: type=1800 audit(1756099906.242:614): pid=8479 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1071" name="blkio.throttle.io_service_bytes_recursive" dev="mqueue" ino=24683 res=0 errno=0 [ 89.126431][ T8515] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1094'. [ 89.582771][ T8536] veth1_to_batadv: entered promiscuous mode [ 89.584877][ T8536] macsec2: entered promiscuous mode [ 90.173174][ T8582] syz.1.1114 (8582): drop_caches: 1 [ 90.174641][ T8579] syz.1.1114 (8579): drop_caches: 1 [ 90.215182][ T8579] syz.1.1114 (8579): drop_caches: 1 [ 91.129313][ T8673] syz.3.1155 (8673): drop_caches: 1 [ 91.138527][ T8680] netlink: 'syz.1.1157': attribute type 39 has an invalid length. [ 91.172264][ T8678] syz.3.1155 (8678): drop_caches: 1 [ 91.172379][ T8673] syz.3.1155 (8673): drop_caches: 1 [ 91.274173][ T8685] loop7: detected capacity change from 0 to 7 [ 91.276758][ C3] blk_print_req_error: 6 callbacks suppressed [ 91.276768][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 91.281542][ C3] buffer_io_error: 6 callbacks suppressed [ 91.281550][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 91.286558][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 91.289452][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 91.292044][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 91.294979][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 91.297605][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 91.300405][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 91.302415][ T6022] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 91.304220][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 91.308031][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 91.310615][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 91.313569][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 91.316316][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 91.319936][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 91.323137][ T8685] ldm_validate_partition_table(): Disk read failed. [ 91.329940][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 91.332848][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 91.336197][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 91.339718][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 91.343050][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 91.344918][ T40] audit: type=1326 audit(1756099908.822:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8688 comm="syz.2.1162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000 [ 91.346656][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 91.353555][ T40] audit: type=1326 audit(1756099908.822:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8688 comm="syz.2.1162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x7ffc0000 [ 91.357734][ T8685] Dev loop7: unable to read RDB block 0 [ 91.364584][ T8685] loop7: unable to read partition table [ 91.366517][ T8685] loop7: partition table beyond EOD, truncated [ 91.368485][ T8685] loop_reread_partitions: partition scan of loop7 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 91.476032][ T6022] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 91.479641][ T6022] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 91.485982][ T6022] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 91.489747][ T6022] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 91.495027][ T6022] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 91.497868][ T6022] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 91.500400][ T6022] usb 5-1: Product: syz [ 91.501945][ T6022] usb 5-1: Manufacturer: syz [ 91.512856][ T6022] cdc_wdm 5-1:1.0: probe with driver cdc_wdm failed with error -22 [ 91.699393][ T8724] netlink: 'syz.3.1176': attribute type 39 has an invalid length. [ 91.710260][ T5984] Bluetooth: hci1: Malformed LE Event: 0x0d [ 91.716587][ T2298] usb 5-1: USB disconnect, device number 5 [ 91.790473][ T8731] binder: 8730:8731 ioctl c0306201 80000640 returned -22 [ 91.816668][ T8734] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 92.892319][ T8777] bridge0: port 3(syz_tun) entered disabled state [ 92.926317][ T71] bond0: (slave bond_slave_0): interface is now down [ 92.928918][ T71] bond0: (slave bond_slave_1): interface is now down [ 92.933887][ T71] bond0: now running without any active interface! [ 92.970002][ T8786] netlink: 'syz.0.1207': attribute type 39 has an invalid length. [ 93.062591][ T8794] veth1_to_batadv: entered promiscuous mode [ 93.064503][ T8794] macsec3: entered promiscuous mode [ 93.200384][ T8804] netlink: 'syz.3.1215': attribute type 2 has an invalid length. [ 93.206197][ T8804] netlink: 116 bytes leftover after parsing attributes in process `syz.3.1215'. [ 93.319484][ T8822] bond0: entered promiscuous mode [ 93.321534][ T8822] bond_slave_0: entered promiscuous mode [ 93.325104][ T8822] bond_slave_1: entered promiscuous mode [ 93.328277][ T8822] bond0: left promiscuous mode [ 93.330249][ T8822] bond_slave_0: left promiscuous mode [ 93.332627][ T8822] bond_slave_1: left promiscuous mode [ 93.862720][ T59] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 94.012394][ T6022] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 94.173545][ T6022] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 94.176407][ T6022] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 94.179567][ T6022] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 94.182466][ T6022] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 94.188020][ T6022] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 94.190856][ T6022] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 94.193591][ T6022] usb 8-1: Product: syz [ 94.195366][ T6022] usb 8-1: Manufacturer: syz [ 94.199134][ T6022] cdc_wdm 8-1:1.0: probe with driver cdc_wdm failed with error -22 [ 94.404399][ T34] usb 8-1: USB disconnect, device number 7 [ 95.190714][ T8947] gretap0: entered promiscuous mode [ 95.200194][ T8947] netlink: 31 bytes leftover after parsing attributes in process `syz.2.1283'. [ 95.322528][ T6022] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 95.472314][ T6022] usb 5-1: Using ep0 maxpacket: 8 [ 95.475299][ T6022] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 95.478375][ T6022] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 95.481441][ T6022] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 95.484495][ T6022] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 95.488837][ T6022] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 95.491642][ T6022] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 95.704261][ T6022] usb 5-1: GET_CAPABILITIES returned 0 [ 95.706036][ T6022] usbtmc 5-1:16.0: can't read capabilities [ 95.906887][ T7176] usb 5-1: USB disconnect, device number 6 [ 97.704775][ T9028] netlink: 'syz.0.1317': attribute type 9 has an invalid length. [ 97.796452][ T9042] tipc: Started in network mode [ 97.798123][ T9042] tipc: Node identity ac14140f, cluster identity 4711 [ 97.800898][ T9042] tipc: New replicast peer: 255.255.255.255 [ 97.803648][ T9042] tipc: Enabled bearer , priority 10 [ 97.808278][ T9042] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1324'. [ 97.811922][ T9042] tipc: Disabling bearer [ 97.869849][ T9053] netlink: 'syz.3.1329': attribute type 1 has an invalid length. [ 98.283325][ T9092] tipc: Started in network mode [ 98.284934][ T9092] tipc: Node identity ac14140f, cluster identity 4711 [ 98.287153][ T9092] tipc: New replicast peer: 255.255.255.255 [ 98.289764][ T9092] tipc: Enabled bearer , priority 10 [ 98.293162][ T9092] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1347'. [ 98.296109][ T9092] tipc: Disabling bearer [ 98.776595][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 99.066514][ T9157] netlink: 'syz.0.1376': attribute type 10 has an invalid length. [ 99.077167][ T9157] team0: Port device dummy0 added [ 99.079983][ T9159] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1377'. [ 99.085333][ T9157] netlink: 'syz.0.1376': attribute type 10 has an invalid length. [ 99.093141][ T9157] team0: Port device dummy0 removed [ 99.096747][ T9157] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 99.225045][ T9170] netlink: 196 bytes leftover after parsing attributes in process `syz.0.1382'. [ 99.277229][ T40] audit: type=1804 audit(1756099916.752:617): pid=9174 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1384" name="/newroot/215/file1" dev="tmpfs" ino=1107 res=1 errno=0 [ 99.284580][ T40] audit: type=1800 audit(1756099916.752:618): pid=9174 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1384" name="file1" dev="tmpfs" ino=1107 res=0 errno=0 [ 99.422413][ T7176] usb 8-1: new high-speed USB device number 8 using dummy_hcd [ 99.572794][ T7176] usb 8-1: Using ep0 maxpacket: 8 [ 99.577997][ T7176] usb 8-1: New USB device found, idVendor=12d1, idProduct=fae2, bcdDevice=70.8b [ 99.580758][ T7176] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 99.583315][ T7176] usb 8-1: Product: syz [ 99.584631][ T7176] usb 8-1: Manufacturer: syz [ 99.586166][ T7176] usb 8-1: SerialNumber: syz [ 99.588742][ T7176] usb 8-1: config 0 descriptor?? [ 99.591691][ T7176] option 8-1:0.0: GSM modem (1-port) converter detected [ 99.621531][ T9205] sctp: [Deprecated]: syz.0.1398 (pid 9205) Use of int in maxseg socket option. [ 99.621531][ T9205] Use struct sctp_assoc_value instead [ 99.794950][ T7176] usb 8-1: USB disconnect, device number 8 [ 99.797651][ T7176] option 8-1:0.0: device disconnected [ 99.987977][ T40] audit: type=1804 audit(1756099917.462:619): pid=9213 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1400" name="/newroot/359/file0" dev="tmpfs" ino=1843 res=1 errno=0 [ 99.994846][ T40] audit: type=1804 audit(1756099917.472:620): pid=9213 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1400" name="/newroot/359/file0" dev="tmpfs" ino=1843 res=1 errno=0 [ 100.405604][ T1328] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 100.453282][ T9249] netlink: 'syz.1.1418': attribute type 10 has an invalid length. [ 100.462139][ T9249] team0: Port device dummy0 added [ 100.471863][ T9249] netlink: 'syz.1.1418': attribute type 10 has an invalid length. [ 100.479233][ T9249] team0: Port device dummy0 removed [ 100.485893][ T9249] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 110.970159][ T9305] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1430'. [ 111.166630][ T9344] netlink: 133 bytes leftover after parsing attributes in process `syz.0.1448'. [ 111.256569][ T1019] IPVS: starting estimator thread 0... [ 111.282695][ T9368] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1458'. [ 111.342682][ T9361] IPVS: using max 43 ests per chain, 103200 per kthread [ 111.799116][ T9405] mkiss: ax0: crc mode is auto. [ 112.016111][ T9437] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1490'. [ 112.059297][ T9443] vxcan0: tx address claim with dlc 0 [ 112.115899][ T9449] netlink: 27 bytes leftover after parsing attributes in process `syz.3.1496'. [ 112.298531][ T9482] netlink: 'syz.2.1512': attribute type 1 has an invalid length. [ 112.300974][ T9482] netlink: 136 bytes leftover after parsing attributes in process `syz.2.1512'. [ 112.305127][ T9482] netlink: 'syz.2.1512': attribute type 2 has an invalid length. [ 112.307610][ T9482] netlink: 'syz.2.1512': attribute type 1 has an invalid length. [ 112.344390][ T9485] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 112.492524][ T9493] block nbd1: server does not support multiple connections per device. [ 112.495508][ T9493] block nbd1: shutting down sockets [ 112.575178][ T9507] netlink: 'syz.0.1524': attribute type 14 has an invalid length. [ 112.807234][ T2298] kernel write not supported for file bpf-map (pid: 2298 comm: kworker/0:2) [ 113.214201][ T6022] kernel read not supported for file /dsp1 (pid: 6022 comm: kworker/1:3) [ 113.635506][ T9601] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.1571'. [ 113.701662][ T9611] GUP no longer grows the stack in syz.0.1576 (9611): 80004000-80005000 (80001000) [ 113.706255][ T9611] CPU: 2 UID: 0 PID: 9611 Comm: syz.0.1576 Not tainted syzkaller #0 PREEMPT(full) [ 113.706285][ T9611] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 113.706293][ T9611] Call Trace: [ 113.706297][ T9611] [ 113.706302][ T9611] dump_stack_lvl+0x16c/0x1f0 [ 113.706321][ T9611] gup_vma_lookup+0x1d2/0x220 [ 113.706341][ T9611] __get_user_pages+0x243/0x34a0 [ 113.706363][ T9611] ? register_lock_class+0x41/0x4c0 [ 113.706379][ T9611] ? __pfx___get_user_pages+0x10/0x10 [ 113.706395][ T9611] ? do_fast_syscall_32+0x32/0x80 [ 113.706415][ T9611] __gup_longterm_locked+0xa92/0x17e0 [ 113.706433][ T9611] ? __lock_acquire+0xb97/0x1ce0 [ 113.706451][ T9611] ? __pfx___gup_longterm_locked+0x10/0x10 [ 113.706476][ T9611] pin_user_pages_remote+0xed/0x140 [ 113.706495][ T9611] ? __pfx_pin_user_pages_remote+0x10/0x10 [ 113.706511][ T9611] ? mm_access+0x22d/0x2e0 [ 113.706530][ T9611] process_vm_rw_core.constprop.0+0x41b/0x970 [ 113.706549][ T9611] ? rcu_is_watching+0x12/0xc0 [ 113.706563][ T9611] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 113.706580][ T9611] ? iovec_from_user+0xbb/0x140 [ 113.706606][ T9611] ? iovec_from_user+0xbb/0x140 [ 113.706619][ T9611] process_vm_rw+0x216/0x2c0 [ 113.706636][ T9611] ? __pfx_process_vm_rw+0x10/0x10 [ 113.706656][ T9611] ? __pfx___mm_populate+0x10/0x10 [ 113.706689][ T9611] ? xfd_validate_state+0x61/0x180 [ 113.706709][ T9611] __ia32_sys_process_vm_writev+0xdf/0x1b0 [ 113.706726][ T9611] ? lockdep_hardirqs_on+0x7c/0x110 [ 113.706741][ T9611] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 113.706758][ T9611] __do_fast_syscall_32+0x7c/0x3a0 [ 113.706775][ T9611] do_fast_syscall_32+0x32/0x80 [ 113.706790][ T9611] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 113.706804][ T9611] RIP: 0023:0xf704e579 [ 113.706813][ T9611] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 113.706824][ T9611] RSP: 002b:00000000f543e55c EFLAGS: 00000296 ORIG_RAX: 000000000000015c [ 113.706836][ T9611] RAX: ffffffffffffffda RBX: 0000000000000240 RCX: 0000000080c22000 [ 113.706844][ T9611] RDX: 000000000000002b RSI: 0000000080c22fa0 RDI: 0000000000000001 [ 113.706852][ T9611] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 113.706858][ T9611] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 113.706864][ T9611] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 113.706879][ T9611] [ 113.790663][ C2] vkms_vblank_simulate: vblank timer overrun [ 114.197233][ T9663] serio: Serial port ptm0 [ 114.215078][ T9665] binder: 9664:9665 ioctl 400c620e 80000040 returned -22 [ 114.248353][ T9667] netlink: 'syz.0.1603': attribute type 1 has an invalid length. [ 114.392499][ T5984] Bluetooth: hci0: command tx timeout [ 114.448168][ T9679] netlink: 'syz.3.1607': attribute type 1 has an invalid length. [ 114.450453][ T9679] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1607'. [ 115.075829][ T9717] misc userio: Can't change port type on an already running userio instance [ 115.294149][ T9729] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check. [ 115.367143][ T9738] Failed to get privilege flags for destination (handle=0x2:0x0) [ 115.501803][ T9751] binder: 9749:9751 ioctl 40046205 0 returned -22 [ 115.757859][ T9779] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1652'. [ 115.761091][ T9779] bond0: Removing last arp target with arp_interval on [ 116.048799][ T60] Bluetooth: hci4: Frame reassembly failed (-84) [ 116.170016][ T9841] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 116.228121][ T9848] capability: warning: `syz.1.1685' uses 32-bit capabilities (legacy support in use) [ 116.276771][ T1328] hid-generic 0005:16C0:0005.0004: item fetching failed at offset 0/1 [ 116.279705][ T1328] hid-generic 0005:16C0:0005.0004: probe with driver hid-generic failed with error -22 [ 116.499830][ T9876] sp0: Synchronizing with TNC [ 116.724606][ T9890] netlink: 'syz.2.1705': attribute type 2 has an invalid length. [ 116.727075][ T9890] netlink: 'syz.2.1705': attribute type 8 has an invalid length. [ 116.729500][ T9890] netlink: 1148 bytes leftover after parsing attributes in process `syz.2.1705'. [ 116.954040][ T9895] block nbd1: server does not support multiple connections per device. [ 116.960349][ T9895] block nbd1: shutting down sockets [ 117.297580][ T40] audit: type=1326 audit(1756099934.772:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9948 comm="syz.2.1732" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf707e579 code=0x0 [ 117.476379][ T9960] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 118.062396][ T5984] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 118.062771][ T5980] Bluetooth: hci4: command 0x1003 tx timeout [ 118.159106][ T9973] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1742'. [ 118.197747][ T40] audit: type=1326 audit(2000000000.849:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9974 comm="syz.0.1744" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 118.205172][ T40] audit: type=1326 audit(2000000000.849:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9974 comm="syz.0.1744" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 118.212113][ T40] audit: type=1326 audit(2000000000.849:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9974 comm="syz.0.1744" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 118.218871][ T40] audit: type=1326 audit(2000000000.849:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9974 comm="syz.0.1744" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 118.226383][ T40] audit: type=1326 audit(2000000000.849:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9974 comm="syz.0.1744" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 118.233706][ T40] audit: type=1326 audit(2000000000.849:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9974 comm="syz.0.1744" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 118.240675][ T40] audit: type=1326 audit(2000000000.849:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9974 comm="syz.0.1744" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 118.247456][ T40] audit: type=1326 audit(2000000000.849:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9974 comm="syz.0.1744" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 118.254291][ T40] audit: type=1326 audit(2000000000.849:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9974 comm="syz.0.1744" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 119.030130][T10052] netlink: 'syz.3.1780': attribute type 21 has an invalid length. [ 119.034132][T10052] netlink: 16166 bytes leftover after parsing attributes in process `syz.3.1780'. [ 119.070146][ T1019] kernel write not supported for file /uhid (pid: 1019 comm: kworker/3:2) [ 119.136575][T10070] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1788'. [ 119.375599][T10095] misc userio: Can't change port type on an already running userio instance [ 119.874819][T10139] misc userio: Can't change port type on an already running userio instance [ 120.050504][T10151] netlink: 'syz.1.1827': attribute type 7 has an invalid length. [ 120.054173][T10151] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1827'. [ 120.432602][T10185] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check. [ 121.002406][T10141] comedi comedi2: reset error (fatal) [ 121.089664][T10210] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 121.412334][ T1328] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 121.582471][ T1328] usb 7-1: Using ep0 maxpacket: 8 [ 121.587103][ T1328] usb 7-1: New USB device found, idVendor=12d1, idProduct=fae2, bcdDevice=70.8b [ 121.590411][ T1328] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 121.598596][ T1328] usb 7-1: Product: syz [ 121.600368][ T1328] usb 7-1: Manufacturer: syz [ 121.602437][ T1328] usb 7-1: SerialNumber: syz [ 121.605901][ T1328] usb 7-1: config 0 descriptor?? [ 121.612029][ T1328] option 7-1:0.0: GSM modem (1-port) converter detected [ 121.817561][ T1019] usb 7-1: USB disconnect, device number 6 [ 121.822023][ T1019] option 7-1:0.0: device disconnected [ 121.926134][T10255] sp0: Synchronizing with TNC [ 122.282949][ T9] kernel write not supported for file /comedi4 (pid: 9 comm: kworker/0:0) [ 123.102891][ T5984] Bluetooth: hci0: command tx timeout [ 123.121316][ T40] kauditd_printk_skb: 38 callbacks suppressed [ 123.121327][ T40] audit: type=1326 audit(2000000005.769:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.0.1917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 123.132104][ T40] audit: type=1326 audit(2000000005.769:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.0.1917" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 123.139063][ T40] audit: type=1326 audit(2000000005.769:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.0.1917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 123.146210][ T40] audit: type=1326 audit(2000000005.779:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.0.1917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 123.153039][ T40] audit: type=1326 audit(2000000005.779:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.0.1917" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 123.159673][ T40] audit: type=1326 audit(2000000005.779:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.0.1917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 123.166431][ T40] audit: type=1326 audit(2000000005.779:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.0.1917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 123.173230][ T40] audit: type=1326 audit(2000000005.779:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.0.1917" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 123.181036][ T40] audit: type=1326 audit(2000000005.779:677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.0.1917" exe="/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 123.189018][ T40] audit: type=1326 audit(2000000005.779:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10347 comm="syz.0.1917" exe="/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 123.221501][T10364] binder: Binderfs stats mode cannot be changed during a remount [ 123.229874][T10366] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 123.232432][T10366] IPv6: NLM_F_CREATE should be set when creating new route [ 123.343717][T10393] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1939'. [ 123.391518][T10398] bond0: entered promiscuous mode [ 123.394614][T10398] bond_slave_0: entered promiscuous mode [ 123.396497][T10398] bond_slave_1: entered promiscuous mode [ 123.744885][T10445] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1964'. [ 124.002285][ T9] usb 8-1: new full-speed USB device number 9 using dummy_hcd [ 124.156017][ T9] usb 8-1: unable to get BOS descriptor or descriptor too short [ 124.159011][ T9] usb 8-1: no configurations [ 124.160511][ T9] usb 8-1: can't read configurations, error -22 [ 125.560382][T10494] openvswitch: netlink: VXLAN extension message has 4 unknown bytes. [ 125.640319][T10510] random: crng reseeded on system resumption [ 125.810494][T10512] syz.3.1995 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 125.995958][T10563] syz.3.2019 uses obsolete (PF_INET,SOCK_PACKET) [ 126.015571][T10566] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2020'. [ 126.056347][T10577] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2026'. [ 126.154022][T10591] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2032'. [ 126.522348][ T53] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 126.675753][ T53] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 126.679309][ T53] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 126.683464][ T53] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 126.686300][ T53] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 126.690847][T10596] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 126.695549][ T53] usb 6-1: Quirk or no altset; falling back to MIDI 1.0 [ 126.738038][T10616] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2045'. [ 126.833580][T10618] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2046'. [ 127.611001][ T53] usb 6-1: USB disconnect, device number 4 [ 128.000623][T10674] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2072'. [ 128.077413][T10691] random: crng reseeded on system resumption [ 128.154064][T10700] 9pnet: p9_errstr2errno: server reported unknown error [ 128.406949][ T40] kauditd_printk_skb: 26 callbacks suppressed [ 128.406963][ T40] audit: type=1326 audit(2000000011.059:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10738 comm="syz.3.2104" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70fe579 code=0x0 [ 128.535458][T10767] kernel read not supported for file /eth0 (pid: 10767 comm: syz.0.2117) [ 128.538374][ T40] audit: type=1800 audit(2000000011.189:706): pid=10767 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2117" name="eth0" dev="mqueue" ino=21515 res=0 errno=0 [ 128.693048][T10796] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2131'. [ 128.703477][T10800] input: syz0 as /devices/virtual/input/input22 [ 128.792862][T10813] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 128.796140][T10813] block device autoloading is deprecated and will be removed. [ 129.024319][T10848] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2156'. [ 129.027166][T10848] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2156'. [ 129.037643][ T13] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 129.040478][ T13] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 129.044474][ T13] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 129.047435][ T13] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 129.231117][T10867] overlayfs: conflicting lowerdir path [ 129.496227][T10890] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2169'. [ 129.496745][T10890] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2169'. [ 129.536047][T10894] netlink: 88 bytes leftover after parsing attributes in process `syz.3.2171'. [ 129.536226][T10894] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2171'. [ 129.571293][T10898] macvlan4: entered promiscuous mode [ 129.574304][T10898] bridge0: entered promiscuous mode [ 129.746092][ T40] audit: type=1800 audit(2000000012.399:707): pid=10911 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2179" name="file0" dev="9p" ino=35913903 res=0 errno=0 [ 129.895716][T10921] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2184'. [ 129.901136][T10921] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2184'. [ 129.952685][T10927] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2187'. [ 130.382964][T10984] input: syz1 as /devices/virtual/input/input23 [ 130.704346][T11025] sit0: entered promiscuous mode [ 130.706050][T11025] netlink: 'syz.0.2232': attribute type 1 has an invalid length. [ 132.314817][ T1420] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.316842][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.615125][T11153] syzkaller1: tun_chr_ioctl cmd 1074025672 [ 132.617015][T11153] syzkaller1: ignored: set checksum disabled [ 132.805633][ T40] audit: type=1326 audit(2000000015.459:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.0.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 132.814948][ T40] audit: type=1326 audit(2000000015.469:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.0.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 132.821716][ T40] audit: type=1326 audit(2000000015.469:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.0.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 132.828944][ T40] audit: type=1326 audit(2000000015.469:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.0.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 132.837467][ T40] audit: type=1326 audit(2000000015.469:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.0.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 132.844827][ T40] audit: type=1326 audit(2000000015.469:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.0.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 132.851500][ T40] audit: type=1326 audit(2000000015.469:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11167 comm="syz.0.2300" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 132.920586][T11182] netlink: zone id is out of range [ 132.922429][T11182] netlink: zone id is out of range [ 132.924084][T11182] netlink: zone id is out of range [ 132.925737][T11182] netlink: zone id is out of range [ 132.927458][T11182] netlink: zone id is out of range [ 132.929075][T11182] netlink: zone id is out of range [ 132.930712][T11182] netlink: zone id is out of range [ 132.932544][T11182] netlink: zone id is out of range [ 132.934227][T11182] netlink: zone id is out of range [ 132.935854][T11182] netlink: zone id is out of range [ 133.312270][ T9] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 133.485097][ T9] usb 5-1: too many configurations: 9, using maximum allowed: 8 [ 133.488528][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 133.491277][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 133.495403][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 133.498193][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 133.501017][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 133.505523][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 133.508405][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 133.511207][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 133.514962][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 133.517995][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 133.520846][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 133.524384][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 133.527269][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 133.530620][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 133.534129][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 133.537065][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 133.539886][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 133.543742][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 133.546573][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 133.549553][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 133.552935][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 133.555827][ T9] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 133.558619][ T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 133.561930][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 133.574342][ T9] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 133.577598][ T9] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 133.580521][ T9] usb 5-1: Product: syz [ 133.581828][ T9] usb 5-1: Manufacturer: syz [ 133.583831][ T9] usb 5-1: SerialNumber: syz [ 133.586547][ T9] usb 5-1: config 0 descriptor?? [ 133.591928][ T9] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0 [ 133.707988][T11297] netlink: 'syz.2.2334': attribute type 7 has an invalid length. [ 133.710482][T11297] __nla_validate_parse: 4 callbacks suppressed [ 133.710491][T11297] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2334'. [ 133.801214][ T9] usb 5-1: USB disconnect, device number 7 [ 133.806655][ T9] yurex 5-1:0.0: USB YUREX #0 now disconnected [ 133.983055][ T5980] Bluetooth: hci4: command 0xfc11 tx timeout [ 133.983279][ T5984] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 134.046776][ T29] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 134.193927][ T29] usb 7-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad [ 134.196894][ T29] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 134.200512][ T29] usb 7-1: config 0 descriptor?? [ 134.203817][ T29] gspca_main: spca508-2.14.0 probing 8086:0110 [ 134.301838][T11315] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2342'. [ 134.358571][ T40] kauditd_printk_skb: 256 callbacks suppressed [ 134.358583][ T40] audit: type=1326 audit(2000000017.009:971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11318 comm="syz.1.2344" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 134.367714][ T40] audit: type=1326 audit(2000000017.009:972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11318 comm="syz.1.2344" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 134.374461][ T40] audit: type=1326 audit(2000000017.009:973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11318 comm="syz.1.2344" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 134.381043][ T40] audit: type=1326 audit(2000000017.009:974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11318 comm="syz.1.2344" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 134.391038][ T40] audit: type=1326 audit(2000000017.009:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11318 comm="syz.1.2344" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 134.398502][ T40] audit: type=1326 audit(2000000017.009:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11318 comm="syz.1.2344" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 134.406153][ T40] audit: type=1326 audit(2000000017.009:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11318 comm="syz.1.2344" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 134.412045][ T29] gspca_spca508: reg_read err -71 [ 134.412861][ T40] audit: type=1326 audit(2000000017.009:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11318 comm="syz.1.2344" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 134.420850][ T40] audit: type=1326 audit(2000000017.009:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11318 comm="syz.1.2344" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 134.422576][ T29] gspca_spca508: reg_read err -71 [ 134.429290][ T40] audit: type=1326 audit(2000000017.009:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11318 comm="syz.1.2344" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 134.430259][ T29] gspca_spca508: reg_read err -71 [ 134.442585][ T29] gspca_spca508: reg_read err -71 [ 134.446187][ T29] gspca_spca508: reg_read err -71 [ 134.448032][ T29] gspca_spca508: reg write: error -71 [ 134.449766][ T29] spca508 7-1:0.0: probe with driver spca508 failed with error -71 [ 134.464027][ T29] usb 7-1: USB disconnect, device number 7 [ 134.541854][T11327] vxcan1: tx address claim with dest, not broadcast [ 134.593761][T11336] can0: slcan on ttyS3. [ 134.600075][T11337] netlink: 'syz.0.2353': attribute type 8 has an invalid length. [ 134.675522][T11336] can0 (unregistered): slcan off ttyS3. [ 134.943921][ T9] kernel write not supported for file /comedi4 (pid: 9 comm: kworker/0:0) [ 135.424183][ T1328] kernel write not supported for file /comedi4 (pid: 1328 comm: kworker/2:2) [ 135.813493][T11424] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2389'. [ 136.287350][T11466] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2409'. [ 137.964941][T11588] binder: Binderfs stats mode cannot be changed during a remount [ 138.375676][T11654] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 138.377945][T11654] IPv6: NLM_F_CREATE should be set when creating new route [ 138.378883][T11653] binder: Binderfs stats mode cannot be changed during a remount [ 138.793665][T11716] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2533'. [ 138.858587][T11720] netlink: 'syz.3.2530': attribute type 8 has an invalid length. [ 138.870618][T11724] can0: slcan on ttyS3. [ 138.932784][T11724] can0 (unregistered): slcan off ttyS3. [ 138.965464][T11738] netlink: 'syz.1.2546': attribute type 8 has an invalid length. [ 138.968740][T11740] vxcan1: tx address claim with dest, not broadcast [ 139.018490][T11743] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2538'. [ 139.101444][T11758] bond0: entered promiscuous mode [ 139.103317][T11758] bond_slave_0: entered promiscuous mode [ 139.105450][T11758] bond_slave_1: entered promiscuous mode [ 139.238365][T11773] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2556'. [ 139.619212][ T40] kauditd_printk_skb: 801 callbacks suppressed [ 139.619223][ T40] audit: type=1326 audit(2000000022.269:1782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11817 comm="syz.1.2578" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.628852][ T40] audit: type=1326 audit(2000000022.279:1783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11817 comm="syz.1.2578" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.635548][ T40] audit: type=1326 audit(2000000022.279:1784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11817 comm="syz.1.2578" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.642097][ T40] audit: type=1326 audit(2000000022.279:1785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11817 comm="syz.1.2578" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.648746][ T40] audit: type=1326 audit(2000000022.279:1786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11817 comm="syz.1.2578" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.655677][T11822] bond0: entered promiscuous mode [ 139.655823][ T40] audit: type=1326 audit(2000000022.279:1787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11817 comm="syz.1.2578" exe="/syz-executor" sig=0 arch=40000003 syscall=52 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.657389][T11822] bond_slave_0: entered promiscuous mode [ 139.664747][ T40] audit: type=1326 audit(2000000022.279:1788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11817 comm="syz.1.2578" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.664773][ T40] audit: type=1326 audit(2000000022.279:1789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11817 comm="syz.1.2578" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.664794][ T40] audit: type=1326 audit(2000000022.279:1790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11817 comm="syz.1.2578" exe="/syz-executor" sig=0 arch=40000003 syscall=10 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.664874][ T40] audit: type=1326 audit(2000000022.279:1791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11817 comm="syz.1.2578" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 139.694310][T11822] bond_slave_1: entered promiscuous mode [ 139.696145][T11822] dummy0: entered promiscuous mode [ 139.981310][T11848] bond0: entered promiscuous mode [ 139.983263][T11848] bond_slave_0: entered promiscuous mode [ 139.985393][T11848] bond_slave_1: entered promiscuous mode [ 139.987257][T11848] dummy0: entered promiscuous mode [ 140.962919][T11877] net_ratelimit: 4052 callbacks suppressed [ 140.962931][T11877] openvswitch: netlink: VXLAN extension message has 4 unknown bytes. [ 141.038634][T11889] random: crng reseeded on system resumption [ 142.029388][T11944] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2634'. [ 142.542364][ T1328] usb 6-1: new full-speed USB device number 5 using dummy_hcd [ 142.699895][ T1328] usb 6-1: unable to get BOS descriptor or descriptor too short [ 142.704020][ T1328] usb 6-1: no configurations [ 142.705975][ T1328] usb 6-1: can't read configurations, error -22 [ 143.234029][T11972] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2648'. [ 143.329974][T11983] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2663'. [ 143.419651][T11995] openvswitch: netlink: VXLAN extension message has 4 unknown bytes. [ 143.477464][T12009] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2666'. [ 143.485956][T12013] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2677'. [ 143.588013][T12031] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2680'. [ 144.132656][ T6022] usb 7-1: new full-speed USB device number 8 using dummy_hcd [ 144.289201][ T6022] usb 7-1: unable to get BOS descriptor or descriptor too short [ 144.292980][ T6022] usb 7-1: no configurations [ 144.294809][ T6022] usb 7-1: can't read configurations, error -22 [ 144.824174][T12071] random: crng reseeded on system resumption [ 145.216300][ T5984] Bluetooth: to_multiplier 0 < 10 [ 145.384433][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 145.384446][ T40] audit: type=1326 audit(2000000028.039:1793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12134 comm="syz.0.2735" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 145.395341][ T40] audit: type=1326 audit(2000000028.039:1794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12134 comm="syz.0.2735" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 145.408905][ T40] audit: type=1326 audit(2000000028.039:1795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12134 comm="syz.0.2735" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 145.417814][ T40] audit: type=1326 audit(2000000028.039:1796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12134 comm="syz.0.2735" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 145.424777][ T40] audit: type=1326 audit(2000000028.039:1797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12134 comm="syz.0.2735" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 145.431453][ T40] audit: type=1326 audit(2000000028.039:1798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12134 comm="syz.0.2735" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 145.439439][ T40] audit: type=1326 audit(2000000028.039:1799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12134 comm="syz.0.2735" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 145.445890][ T40] audit: type=1326 audit(2000000028.039:1800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12134 comm="syz.0.2735" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 145.452379][ T40] audit: type=1326 audit(2000000028.039:1801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12134 comm="syz.0.2735" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 145.458847][ T40] audit: type=1326 audit(2000000028.039:1802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12134 comm="syz.0.2735" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 145.499008][T12149] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2732'. [ 145.534201][T12153] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2737'. [ 145.540197][T12156] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2747'. [ 145.558870][T12159] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2738'. [ 145.576012][T12159] bond0: (slave dummy0): Releasing backup interface [ 145.578309][T12159] dummy0 (unregistering): left promiscuous mode [ 145.669780][T12167] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2742'. [ 145.785667][T12190] can0: slcan on ttyS3. [ 145.815062][T12195] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2756'. [ 145.824676][T12195] bond0: (slave dummy0): Releasing backup interface [ 145.826924][T12195] dummy0 (unregistering): left promiscuous mode [ 145.830877][T12196] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2758'. [ 145.852617][T12190] can0 (unregistered): slcan off ttyS3. [ 145.897478][T12204] vxcan1: tx address claim with dest, not broadcast [ 146.004799][T12223] sch_fq: defrate 0 ignored. [ 146.071411][T12228] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2773'. [ 146.075369][T12228] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2773'. [ 146.245138][T12249] sch_fq: defrate 0 ignored. [ 146.378980][T12262] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2786'. [ 146.569676][T12277] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check. [ 146.594756][T12279] sch_fq: defrate 0 ignored. [ 147.262344][ T5984] Bluetooth: hci1: command 0x0405 tx timeout [ 150.089734][T12502] random: crng reseeded on system resumption [ 150.180909][T12517] 9pnet: p9_errstr2errno: server reported unknown error [ 150.289405][T12528] 9pnet: p9_errstr2errno: server reported unknown error [ 150.442394][ T59] usb 8-1: new high-speed USB device number 11 using dummy_hcd [ 150.595010][ T59] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 150.598665][ T59] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 150.601698][ T59] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 150.605144][ T59] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 150.611121][T12521] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 150.618205][ T59] usb 8-1: Quirk or no altset; falling back to MIDI 1.0 [ 150.845225][ T59] usb 8-1: USB disconnect, device number 11 [ 151.473252][T12547] __nla_validate_parse: 6 callbacks suppressed [ 151.473265][T12547] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2914'. [ 151.622467][ T59] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 151.650900][T12569] random: crng reseeded on system resumption [ 151.754432][T12583] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2934'. [ 151.787392][ T59] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 151.790677][ T59] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 151.794403][ T59] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 151.797269][ T59] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 151.801271][T12535] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 151.805046][ T59] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 151.912612][T12609] ieee802154 phy0 wpan0: encryption failed: -22 [ 151.942973][T12619] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2950'. [ 151.945707][T12619] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2950'. [ 151.948970][T12619] netlink: 'syz.2.2950': attribute type 13 has an invalid length. [ 151.951373][T12619] netlink: 'syz.2.2950': attribute type 12 has an invalid length. [ 151.980551][T12626] netlink: 128 bytes leftover after parsing attributes in process `syz.2.2954'. [ 152.039166][ T9] usb 5-1: USB disconnect, device number 8 [ 152.202617][ T59] usb 8-1: new high-speed USB device number 12 using dummy_hcd [ 152.363526][ T59] usb 8-1: config 0 has no interfaces? [ 152.365349][ T59] usb 8-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 152.368154][ T59] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 152.371684][ T59] usb 8-1: config 0 descriptor?? [ 152.571407][T12682] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2981'. [ 152.575150][T12682] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2981'. [ 152.579036][ T1019] usb 8-1: USB disconnect, device number 12 [ 152.759186][ T40] kauditd_printk_skb: 283 callbacks suppressed [ 152.759196][ T40] audit: type=1326 audit(2000000035.409:2086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12715 comm="syz.0.2995" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704e579 code=0x0 [ 152.955614][T12731] overlayfs: conflicting lowerdir path [ 153.046906][T12740] input: syz0 as /devices/virtual/input/input24 [ 153.139358][T12749] kernel read not supported for file /eth0 (pid: 12749 comm: syz.2.3011) [ 153.142049][ T40] audit: type=1800 audit(2000000035.789:2087): pid=12749 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3011" name="eth0" dev="mqueue" ino=31336 res=0 errno=0 [ 153.317905][T12758] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3014'. [ 153.338777][T12760] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3018'. [ 153.343416][T12760] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3018'. [ 153.730673][ T40] audit: type=1800 audit(2000000000.059:2088): pid=12816 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3044" name="file0" dev="9p" ino=35913903 res=0 errno=0 [ 154.142798][ T9] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 154.294557][ T9] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 154.298120][ T9] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 154.301276][ T9] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 154.304313][ T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 154.308482][T12833] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 154.312374][ T9] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 154.557207][ T1019] usb 7-1: USB disconnect, device number 10 [ 154.903723][T12875] kernel read not supported for file /eth0 (pid: 12875 comm: syz.1.3071) [ 154.906916][ T40] audit: type=1800 audit(2000000001.239:2089): pid=12875 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3071" name="eth0" dev="mqueue" ino=10180 res=0 errno=0 [ 155.231617][T12907] input: syz0 as /devices/virtual/input/input25 [ 155.240464][T11249] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 155.252501][T11276] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 155.255367][T11276] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 155.259173][T11276] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 155.279153][T12917] overlayfs: conflicting lowerdir path [ 155.614770][T12965] sit0: entered promiscuous mode [ 155.616500][T12965] netlink: 'syz.2.3112': attribute type 1 has an invalid length. [ 156.275834][T13036] input: syz1 as /devices/virtual/input/input26 [ 156.991892][T13068] overlayfs: conflicting lowerdir path [ 157.583800][T13078] overlayfs: conflicting lowerdir path [ 157.647111][T13089] __nla_validate_parse: 9 callbacks suppressed [ 157.647123][T13089] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3173'. [ 157.659751][T13089] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3173'. [ 158.613245][T13105] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3171'. [ 158.616695][T13105] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3171'. [ 160.028338][T13168] netlink: 212376 bytes leftover after parsing attributes in process `syz.0.3203'. [ 160.103343][T13178] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 160.328358][ T5984] Bluetooth: hci1: unexpected event for opcode 0x041c [ 160.337213][ T5980] Bluetooth: hci4: sending frame failed (-49) [ 160.339899][ T5984] Bluetooth: hci4: Opcode 0x1003 failed: -49 [ 161.322470][T13204] comedi comedi2: reset error (fatal) [ 162.622298][ T5984] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 162.622595][ T5980] Bluetooth: hci4: command 0x1003 tx timeout [ 162.749218][T13290] syzkaller1: tun_chr_ioctl cmd 1074025672 [ 162.751414][T13290] syzkaller1: ignored: set checksum disabled [ 163.061159][T13315] netlink: 136784 bytes leftover after parsing attributes in process `syz.3.3270'. [ 163.064687][T13315] netlink: zone id is out of range [ 163.066414][T13315] netlink: zone id is out of range [ 163.068110][T13315] netlink: zone id is out of range [ 163.070105][T13315] netlink: zone id is out of range [ 163.071909][T13315] netlink: zone id is out of range [ 163.075321][T13315] netlink: zone id is out of range [ 163.077188][T13315] netlink: zone id is out of range [ 163.078947][T13315] netlink: zone id is out of range [ 163.080720][T13315] netlink: zone id is out of range [ 163.256366][ T40] audit: type=1326 audit(2000000009.589:2090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13317 comm="syz.1.3272" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 163.265343][ T40] audit: type=1326 audit(2000000009.589:2091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13317 comm="syz.1.3272" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 163.273242][ T40] audit: type=1326 audit(2000000009.589:2092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13317 comm="syz.1.3272" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 163.280594][ T40] audit: type=1326 audit(2000000009.589:2093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13317 comm="syz.1.3272" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 163.290341][ T40] audit: type=1326 audit(2000000009.589:2094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13317 comm="syz.1.3272" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 163.298013][ T40] audit: type=1326 audit(2000000009.589:2095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13317 comm="syz.1.3272" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 163.305455][ T40] audit: type=1326 audit(2000000009.589:2096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13317 comm="syz.1.3272" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 163.312938][ T40] audit: type=1326 audit(2000000009.589:2097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13317 comm="syz.1.3272" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 163.322510][ T40] audit: type=1326 audit(2000000009.589:2098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13317 comm="syz.1.3272" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 163.333107][ T40] audit: type=1326 audit(2000000009.589:2099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13317 comm="syz.1.3272" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 163.732447][T13280] comedi comedi2: reset error (fatal) [ 165.442253][T13370] comedi comedi2: reset error (fatal) [ 165.693538][T13438] sit0: entered promiscuous mode [ 165.699146][T13438] netlink: 'syz.1.3333': attribute type 1 has an invalid length. [ 165.699215][T11281] Bluetooth: hci4: Frame reassembly failed (-84) [ 165.701551][T13438] netlink: 1 bytes leftover after parsing attributes in process `syz.1.3333'. [ 166.925275][T13462] netlink: 88 bytes leftover after parsing attributes in process `syz.1.3337'. [ 166.927116][T13461] macvlan3: entered promiscuous mode [ 166.928121][T13462] netlink: 48 bytes leftover after parsing attributes in process `syz.1.3337'. [ 167.742403][ T5984] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 167.742999][ T5980] Bluetooth: hci4: command 0xfc11 tx timeout [ 168.490165][T13506] input: syz1 as /devices/virtual/input/input28 [ 168.842974][T13465] comedi comedi2: reset error (fatal) [ 169.693916][ T40] kauditd_printk_skb: 626 callbacks suppressed [ 169.693928][ T40] audit: type=1800 audit(2000000016.029:2726): pid=13534 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3363" name="file0" dev="9p" ino=35913903 res=0 errno=0 [ 169.868426][T13553] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3382'. [ 170.222402][ T5980] Bluetooth: hci2: command 0x0406 tx timeout [ 170.522264][T13515] comedi comedi2: reset error (fatal) [ 172.469648][T13641] netlink: 136784 bytes leftover after parsing attributes in process `syz.2.3424'. [ 172.473180][T13641] net_ratelimit: 4053 callbacks suppressed [ 172.473190][T13641] netlink: zone id is out of range [ 172.476703][T13641] netlink: zone id is out of range [ 172.478328][T13641] netlink: zone id is out of range [ 172.479880][T13641] netlink: zone id is out of range [ 172.481470][T13641] netlink: zone id is out of range [ 172.484312][T13641] netlink: zone id is out of range [ 172.485940][T13641] netlink: zone id is out of range [ 172.487610][T13641] netlink: zone id is out of range [ 172.489228][T13641] netlink: zone id is out of range [ 172.489755][ T40] audit: type=1326 audit(2000000018.819:2727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13642 comm="syz.3.3417" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 172.490826][T13641] netlink: zone id is out of range [ 172.504315][ T40] audit: type=1326 audit(2000000018.819:2728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13642 comm="syz.3.3417" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 172.510957][ T40] audit: type=1326 audit(2000000018.819:2729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13642 comm="syz.3.3417" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 172.517754][ T40] audit: type=1326 audit(2000000018.819:2730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13642 comm="syz.3.3417" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 172.525249][ T40] audit: type=1326 audit(2000000018.839:2731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13642 comm="syz.3.3417" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 172.532097][ T40] audit: type=1326 audit(2000000018.839:2732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13642 comm="syz.3.3417" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 172.539238][ T40] audit: type=1326 audit(2000000018.839:2733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13642 comm="syz.3.3417" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 172.545996][ T40] audit: type=1326 audit(2000000018.839:2734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13642 comm="syz.3.3417" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 172.552862][ T40] audit: type=1326 audit(2000000018.839:2735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13642 comm="syz.3.3417" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 172.928737][T13671] netlink: 212376 bytes leftover after parsing attributes in process `syz.3.3438'. [ 173.339102][ T5980] Bluetooth: hci4: sending frame failed (-49) [ 173.342520][ T5984] Bluetooth: hci4: Entering manufacturer mode failed (-49) [ 174.191295][T13762] syzkaller1: tun_chr_ioctl cmd 1074025672 [ 174.193495][T13762] syzkaller1: ignored: set checksum disabled [ 174.749769][T13801] ieee802154 phy0 wpan0: encryption failed: -22 [ 174.921849][T13828] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3502'. [ 174.926060][T13832] ieee802154 phy0 wpan0: encryption failed: -22 [ 174.927060][T13828] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3502'. [ 174.930920][T13828] netlink: 'syz.0.3502': attribute type 13 has an invalid length. [ 174.934431][T13828] netlink: 'syz.0.3502': attribute type 12 has an invalid length. [ 174.990024][T13841] netlink: 128 bytes leftover after parsing attributes in process `syz.0.3509'. [ 175.136902][T13856] netlink: 128 bytes leftover after parsing attributes in process `syz.3.3522'. [ 175.160281][T13860] ieee802154 phy0 wpan0: encryption failed: -22 [ 175.161176][T13861] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3515'. [ 175.165684][T13861] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3515'. [ 175.168713][T13861] netlink: 'syz.3.3515': attribute type 13 has an invalid length. [ 175.171247][T13861] netlink: 'syz.3.3515': attribute type 12 has an invalid length. [ 175.252337][ T34] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 175.403445][ T34] usb 6-1: config 0 has no interfaces? [ 175.405218][ T34] usb 6-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 175.407991][ T34] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 175.411474][ T34] usb 6-1: config 0 descriptor?? [ 175.619671][ T34] usb 6-1: USB disconnect, device number 7 [ 176.343997][T13892] netlink: 128 bytes leftover after parsing attributes in process `syz.1.3526'. [ 176.367158][T13900] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3529'. [ 176.369988][T13900] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3529'. [ 176.372949][T13900] netlink: 'syz.1.3529': attribute type 13 has an invalid length. [ 176.375487][T13900] netlink: 'syz.1.3529': attribute type 12 has an invalid length. [ 176.583477][ T59] usb 7-1: new high-speed USB device number 11 using dummy_hcd [ 176.733662][ T59] usb 7-1: config 0 has no interfaces? [ 176.735437][ T59] usb 7-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 176.738257][ T59] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 176.743362][ T59] usb 7-1: config 0 descriptor?? [ 176.950768][ T6022] usb 7-1: USB disconnect, device number 11 [ 178.478705][T13951] netlink: 'syz.2.3555': attribute type 14 has an invalid length. [ 178.512317][ T9] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 178.664127][ T9] usb 5-1: config 0 has no interfaces? [ 178.665964][ T9] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 178.668750][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 178.672291][ T9] usb 5-1: config 0 descriptor?? [ 178.879477][ T6022] usb 5-1: USB disconnect, device number 9 [ 179.792339][T13970] nbd4: detected capacity change from 0 to 8589934655 [ 179.795078][ T5984] block nbd4: Receive control failed (result -32) [ 180.058888][T14021] kvm: kvm [14019]: vcpu3, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010002) = 0xffffffffffffffff [ 180.280674][T14050] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3601'. [ 180.352464][ T34] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 180.513845][ T34] usb 5-1: config index 0 descriptor too short (expected 39, got 27) [ 180.516500][ T34] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 180.519609][ T34] usb 5-1: config 0 interface 0 has no altsetting 0 [ 180.524217][ T34] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 180.527792][ T34] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 180.530506][ T34] usb 5-1: Product: syz [ 180.531882][ T34] usb 5-1: Manufacturer: syz [ 180.533489][ T34] usb 5-1: SerialNumber: syz [ 180.536686][ T34] usb 5-1: config 0 descriptor?? [ 180.539317][ T34] hub 5-1:0.0: bad descriptor, ignoring hub [ 180.541284][ T34] hub 5-1:0.0: probe with driver hub failed with error -5 [ 180.546498][ T34] usb 5-1: selecting invalid altsetting 0 [ 181.357835][T14082] syz.1.3615 (14082): drop_caches: 2 [ 181.447716][ T59] usb 5-1: USB disconnect, device number 10 [ 181.583650][ T59] usb 5-1: new full-speed USB device number 11 using dummy_hcd [ 181.587506][T14125] could not open pipe file descriptor [ 181.729808][ T9] kernel write not supported for file /vcsa1 (pid: 9 comm: kworker/0:0) [ 181.734562][ T59] usb 5-1: config index 0 descriptor too short (expected 39, got 27) [ 181.737139][ T59] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 181.740147][ T59] usb 5-1: config 0 interface 0 has no altsetting 0 [ 181.744970][ T59] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 181.748417][ T59] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 181.751018][ T59] usb 5-1: Product: syz [ 181.752471][ T59] usb 5-1: Manufacturer: syz [ 181.754016][ T59] usb 5-1: SerialNumber: syz [ 181.756695][ T59] usb 5-1: config 0 descriptor?? [ 181.759547][ T59] hub 5-1:0.0: bad descriptor, ignoring hub [ 181.761479][ T59] hub 5-1:0.0: probe with driver hub failed with error -5 [ 181.767404][ T59] usb 5-1: selecting invalid altsetting 0 [ 181.894750][T14161] kvm_intel: kvm [14160]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0x2 [ 182.072782][ T59] usb 5-1: USB disconnect, device number 11 [ 182.094969][ T5984] block nbd5: Receive control failed (result -32) [ 182.120020][T14179] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 182.428379][T14207] netlink: 'syz.3.3675': attribute type 2 has an invalid length. [ 182.430849][T14207] netlink: 'syz.3.3675': attribute type 1 has an invalid length. [ 182.433359][T14207] netlink: 1164 bytes leftover after parsing attributes in process `syz.3.3675'. [ 182.757423][T14240] net_ratelimit: 4052 callbacks suppressed [ 182.757435][T14240] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 182.803677][T14244] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3692'. [ 182.857757][ T5984] Bluetooth: hci2: Unable to find connection for big 0x00 [ 182.860224][ T5984] Bluetooth: hci2: unexpected event for opcode 0x2060 [ 182.889043][ T40] kauditd_printk_skb: 87 callbacks suppressed [ 182.889055][ T40] audit: type=1326 audit(2000000003.269:2823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14251 comm="syz.3.3696" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 182.898264][ T40] audit: type=1326 audit(2000000003.269:2824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14251 comm="syz.3.3696" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 182.904875][ T40] audit: type=1326 audit(2000000003.269:2825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14251 comm="syz.3.3696" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 182.911478][ T40] audit: type=1326 audit(2000000003.269:2826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14251 comm="syz.3.3696" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 182.918197][ T40] audit: type=1326 audit(2000000003.269:2827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14251 comm="syz.3.3696" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 182.924997][ T40] audit: type=1326 audit(2000000003.269:2828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14251 comm="syz.3.3696" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 182.931555][ T40] audit: type=1326 audit(2000000003.269:2829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14251 comm="syz.3.3696" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 182.938417][ T40] audit: type=1326 audit(2000000003.269:2830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14251 comm="syz.3.3696" exe="/syz-executor" sig=0 arch=40000003 syscall=448 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 182.945342][ T40] audit: type=1326 audit(2000000003.269:2831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14251 comm="syz.3.3696" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000 [ 182.946999][T14258] input: syz1 as /devices/virtual/input/input29 [ 182.951934][ T40] audit: type=1326 audit(2000000003.269:2832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14251 comm="syz.3.3696" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000 [ 183.399754][T14323] ALSA: seq fatal error: cannot create timer (-19) [ 183.448827][T14340] netlink: 404 bytes leftover after parsing attributes in process `syz.1.3736'. [ 183.595021][T14358] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3745'. [ 184.129382][T14415] netlink: 'syz.2.3770': attribute type 2 has an invalid length. [ 184.131858][T14415] netlink: 'syz.2.3770': attribute type 1 has an invalid length. [ 184.134538][T14415] netlink: 1164 bytes leftover after parsing attributes in process `syz.2.3770'. [ 184.142957][ T5984] Bluetooth: hci0: command tx timeout [ 184.238046][T14425] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3776'. [ 184.953568][ T1019] kernel read not supported for file /dsp1 (pid: 1019 comm: kworker/3:2) [ 185.242716][T14468] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 185.266124][T14474] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3798'. [ 185.540033][T14507] ALSA: seq fatal error: cannot create timer (-19) [ 185.767616][T14538] ALSA: seq fatal error: cannot create timer (-19) [ 186.134272][T14574] input: syz1 as /devices/virtual/input/input30 [ 186.176564][ T5984] Bluetooth: hci1: Unable to find connection for big 0x00 [ 186.179521][ T5984] Bluetooth: hci1: unexpected event for opcode 0x2060 [ 186.378475][T14600] netlink: 404 bytes leftover after parsing attributes in process `syz.0.3854'. [ 187.263096][ T5984] Bluetooth: hci0: command tx timeout [ 187.883070][T14684] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3893'. [ 188.163553][ T5984] block nbd6: Receive control failed (result -32) [ 188.273573][T14710] kvm: kvm [14709]: vcpu3, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010002) = 0xffffffffffffffff [ 188.282450][ T59] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 188.433475][ T59] usb 6-1: config index 0 descriptor too short (expected 39, got 27) [ 188.436049][ T59] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 188.439075][ T59] usb 6-1: config 0 interface 0 has no altsetting 0 [ 188.442942][ T59] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 188.445780][ T59] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 188.448328][ T59] usb 6-1: Product: syz [ 188.449650][ T59] usb 6-1: Manufacturer: syz [ 188.451041][ T59] usb 6-1: SerialNumber: syz [ 188.453677][ T59] usb 6-1: config 0 descriptor?? [ 188.456181][ T59] hub 6-1:0.0: bad descriptor, ignoring hub [ 188.458058][ T59] hub 6-1:0.0: probe with driver hub failed with error -5 [ 188.461547][ T59] usb 6-1: selecting invalid altsetting 0 [ 189.081521][T14717] netlink: 'syz.0.3914': attribute type 14 has an invalid length. [ 189.354556][ T1019] usb 6-1: USB disconnect, device number 8 [ 189.383714][T14752] kvm: kvm [14751]: vcpu3, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010002) = 0xffffffffffffffff [ 189.404380][T14744] nbd7: detected capacity change from 0 to 8589934655 [ 189.407937][ T5984] block nbd7: Receive control failed (result -32) [ 189.512551][ T1019] usb 6-1: new full-speed USB device number 9 using dummy_hcd [ 189.675443][ T1019] usb 6-1: config index 0 descriptor too short (expected 39, got 27) [ 189.678013][ T1019] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 189.681023][ T1019] usb 6-1: config 0 interface 0 has no altsetting 0 [ 189.685365][ T1019] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 189.688133][ T1019] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 189.690633][ T1019] usb 6-1: Product: syz [ 189.691926][ T1019] usb 6-1: Manufacturer: syz [ 189.693463][ T1019] usb 6-1: SerialNumber: syz [ 189.695985][ T1019] usb 6-1: config 0 descriptor?? [ 189.698518][ T1019] hub 6-1:0.0: bad descriptor, ignoring hub [ 189.700391][ T1019] hub 6-1:0.0: probe with driver hub failed with error -5 [ 189.704093][ T1019] usb 6-1: selecting invalid altsetting 0 [ 190.012677][ T34] usb 6-1: USB disconnect, device number 9 [ 190.207043][T14767] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3929'. [ 190.429824][T14791] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3941'. [ 190.466177][T14798] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3945'. [ 190.554391][T14820] kvm_intel: kvm [14819]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0x2 [ 190.811362][T14855] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 190.942956][ T6050] usb 7-1: new high-speed USB device number 12 using dummy_hcd [ 191.114892][ T6050] usb 7-1: config index 0 descriptor too short (expected 39, got 27) [ 191.118172][ T6050] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 191.121902][ T6050] usb 7-1: config 0 interface 0 has no altsetting 0 [ 191.126477][ T6050] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 191.129937][ T6050] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 191.133270][ T6050] usb 7-1: Product: syz [ 191.134906][ T6050] usb 7-1: Manufacturer: syz [ 191.136760][ T6050] usb 7-1: SerialNumber: syz [ 191.139782][ T6050] usb 7-1: config 0 descriptor?? [ 191.142851][ T6050] hub 7-1:0.0: bad descriptor, ignoring hub [ 191.145226][ T6050] hub 7-1:0.0: probe with driver hub failed with error -5 [ 191.150373][ T6050] usb 7-1: selecting invalid altsetting 0 [ 191.188569][T14880] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3983'. [ 192.044900][ T6050] usb 7-1: USB disconnect, device number 12 [ 192.182449][ T6050] usb 7-1: new full-speed USB device number 13 using dummy_hcd [ 192.224919][T14930] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 192.227946][T14930] bond_slave_0: left promiscuous mode [ 192.232100][T14930] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 192.235313][T14930] bond_slave_1: left promiscuous mode [ 192.238447][T14930] bond0 (unregistering): Released all slaves [ 192.343557][ T6050] usb 7-1: config index 0 descriptor too short (expected 39, got 27) [ 192.346707][ T6050] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 192.350491][ T6050] usb 7-1: config 0 interface 0 has no altsetting 0 [ 192.355703][ T6050] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 192.359312][ T6050] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 192.364290][ T6050] usb 7-1: Product: syz [ 192.366235][ T6050] usb 7-1: Manufacturer: syz [ 192.368109][ T6050] usb 7-1: SerialNumber: syz [ 192.370967][ T6050] usb 7-1: config 0 descriptor?? [ 192.374371][ T6050] hub 7-1:0.0: bad descriptor, ignoring hub [ 192.376654][ T6050] hub 7-1:0.0: probe with driver hub failed with error -5 [ 192.380692][ T6050] usb 7-1: selecting invalid altsetting 0 [ 192.388903][T14943] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4009'. [ 192.682058][T14963] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4018'. [ 192.685915][ T29] usb 7-1: USB disconnect, device number 13 [ 192.749137][T14970] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4023'. [ 193.060678][T15000] netlink: 80 bytes leftover after parsing attributes in process `syz.3.4036'. [ 193.125411][ T40] kauditd_printk_skb: 264 callbacks suppressed [ 193.125423][ T40] audit: type=1326 audit(2000000013.509:3097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15009 comm="syz.1.4041" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 193.135312][ T40] audit: type=1326 audit(2000000013.509:3098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15009 comm="syz.1.4041" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 193.142039][ T40] audit: type=1326 audit(2000000013.509:3099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15009 comm="syz.1.4041" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 193.151541][ T40] audit: type=1326 audit(2000000013.519:3100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15009 comm="syz.1.4041" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 193.160537][ T40] audit: type=1326 audit(2000000013.519:3101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15009 comm="syz.1.4041" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 193.171128][ T40] audit: type=1326 audit(2000000013.519:3102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15009 comm="syz.1.4041" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 193.179353][T15021] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4046'. [ 193.187919][ T40] audit: type=1326 audit(2000000013.519:3103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15009 comm="syz.1.4041" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 193.194914][ T40] audit: type=1326 audit(2000000013.519:3104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15009 comm="syz.1.4041" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 193.201512][ T40] audit: type=1326 audit(2000000013.519:3105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15009 comm="syz.1.4041" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 193.208539][ T40] audit: type=1326 audit(2000000013.519:3106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15009 comm="syz.1.4041" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 193.219150][T15028] netlink: 60 bytes leftover after parsing attributes in process `syz.0.4049'. [ 193.222082][T15028] netlink: 60 bytes leftover after parsing attributes in process `syz.0.4049'. [ 193.244679][T15032] openvswitch: netlink: IP tunnel TTL not specified. [ 193.383319][T15055] sp0: Synchronizing with TNC [ 193.386911][T15055] sp0: Found TNC [ 193.429644][T15060] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4064'. [ 193.433361][T15060] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4064'. [ 193.505039][T15069] loop7: detected capacity change from 0 to 7 [ 193.507464][ C2] blk_print_req_error: 5 callbacks suppressed [ 193.507474][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 193.512758][ C2] buffer_io_error: 5 callbacks suppressed [ 193.512767][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 193.517724][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 193.520634][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 193.523309][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 193.526169][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 193.529901][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 193.532858][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 193.535411][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 193.538267][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 193.540811][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 193.543678][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 193.546399][ C3] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 193.549219][ C3] Buffer I/O error on dev loop7, logical block 0, async page read [ 193.551765][T15069] ldm_validate_partition_table(): Disk read failed. [ 193.554938][ C2] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 193.557915][ C2] Buffer I/O error on dev loop7, logical block 0, async page read [ 193.560485][T15069] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 193.563847][T15069] Buffer I/O error on dev loop7, logical block 0, async page read [ 193.566397][T15069] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 193.569216][T15069] Buffer I/O error on dev loop7, logical block 0, async page read [ 193.571709][T15069] Dev loop7: unable to read RDB block 0 [ 193.574800][T15069] loop7: unable to read partition table [ 193.576726][T15069] loop7: partition table beyond EOD, truncated [ 193.578620][T15069] loop_reread_partitions: partition scan of loop7 () failed (rc=-5) [ 193.745527][ T1420] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.747592][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.243722][T15104] binder: 15103:15104 ioctl 4018620d 0 returned -22 [ 194.677487][T15131] sp0: Synchronizing with TNC [ 194.682193][T15131] sp0: Found TNC [ 194.992401][ T34] usb 8-1: new high-speed USB device number 13 using dummy_hcd [ 195.162462][ T34] usb 8-1: Using ep0 maxpacket: 32 [ 195.165584][ T34] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 195.168775][ T34] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 195.172808][ T34] usb 8-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 195.175697][ T34] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 195.180270][ T34] usb 8-1: config 0 descriptor?? [ 195.184176][ T34] hub 8-1:0.0: bad descriptor, ignoring hub [ 195.186227][ T34] hub 8-1:0.0: probe with driver hub failed with error -5 [ 195.189212][ T34] usbhid 8-1:0.0: couldn't find an input interrupt endpoint [ 195.342367][T15174] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 2 [ 195.345780][T11276] Bluetooth: hci4: Frame reassembly failed (-84) [ 195.347893][ T13] Bluetooth: hci4: Frame reassembly failed (-84) [ 195.494370][ T6050] usb 8-1: USB disconnect, device number 13 [ 195.777223][T15205] netlink: 'syz.2.4132': attribute type 6 has an invalid length. [ 195.781754][T15205] netlink: 'syz.2.4132': attribute type 6 has an invalid length. [ 196.307153][T15266] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4161'. [ 196.311941][T15266] bridge0: port 2(bridge_slave_1) entered disabled state [ 196.314880][T15266] bridge0: port 1(bridge_slave_0) entered disabled state [ 196.587487][ T29] kernel write not supported for file /amidi2 (pid: 29 comm: kworker/1:0) [ 197.342398][ T5984] Bluetooth: hci4: command 0x1003 tx timeout [ 197.344053][ T5980] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 197.510664][T15346] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2 [ 197.540665][T15352] netlink: 'syz.0.4201': attribute type 2 has an invalid length. [ 197.670370][T15371] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4211'. [ 197.815822][T15391] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4221'. [ 197.983797][ T29] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 198.134147][ T29] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 198.141966][ T29] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 198.145618][ T29] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 198.149938][ T29] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 198.154772][ T29] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 198.158444][ T29] usb 6-1: config 0 descriptor?? [ 198.207664][ T40] kauditd_printk_skb: 136 callbacks suppressed [ 198.207675][ T40] audit: type=1326 audit(2000000018.589:3243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15428 comm="syz.0.4237" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 198.217410][ T40] audit: type=1326 audit(2000000018.589:3244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15428 comm="syz.0.4237" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf704e5a7 code=0x7ffc0000 [ 198.226809][ T40] audit: type=1326 audit(2000000018.589:3245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15428 comm="syz.0.4237" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 198.234919][ T40] audit: type=1326 audit(2000000018.589:3246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15428 comm="syz.0.4237" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 198.243296][ T40] audit: type=1326 audit(2000000018.589:3247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15428 comm="syz.0.4237" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf704e5a7 code=0x7ffc0000 [ 198.251569][ T40] audit: type=1326 audit(2000000018.589:3248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15428 comm="syz.0.4237" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 198.260096][ T40] audit: type=1326 audit(2000000018.589:3249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15428 comm="syz.0.4237" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf704e5a7 code=0x7ffc0000 [ 198.270259][ T40] audit: type=1326 audit(2000000018.589:3250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15428 comm="syz.0.4237" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 198.278612][ T40] audit: type=1326 audit(2000000018.589:3251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15428 comm="syz.0.4237" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf704e5a7 code=0x7ffc0000 [ 198.287904][ T40] audit: type=1326 audit(2000000018.589:3252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15428 comm="syz.0.4237" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 198.315901][T15440] raw_sendmsg: syz.3.4243 forgot to set AF_INET. Fix it! [ 198.569017][ T29] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 198.571541][ T29] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 198.574372][ T29] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 198.576825][ T29] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 198.579198][ T29] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 198.582050][ T29] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 198.584497][ T29] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 198.586914][ T29] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 198.589231][ T29] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 198.591620][ T29] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0 [ 198.599680][ T29] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 198.824927][ T34] usb 6-1: USB disconnect, device number 10 [ 199.215416][T15509] netlink: 104 bytes leftover after parsing attributes in process `syz.2.4282'. [ 200.293236][T15620] block nbd8: server does not support multiple connections per device. [ 200.298034][T15620] block nbd8: shutting down sockets [ 200.482398][T15638] block nbd8: server does not support multiple connections per device. [ 200.485332][T15638] block nbd8: shutting down sockets [ 200.644891][T15645] hid-generic 0003:0627:0001.0001: pid 15645 passed too large report [ 200.666167][T15658] netlink: 'syz.1.4338': attribute type 1 has an invalid length. [ 200.668503][T15658] netlink: 'syz.1.4338': attribute type 4 has an invalid length. [ 200.670754][T15658] netlink: 188 bytes leftover after parsing attributes in process `syz.1.4338'. [ 200.673652][T15658] NCSI netlink: No device for ifindex 0 [ 200.769348][T15687] Bluetooth: received HCILL_WAKE_UP_IND in state 2 [ 200.773052][T11276] Bluetooth: hci4: Frame reassembly failed (-84) [ 200.822080][T15700] kernel read not supported for file /eth0 (pid: 15700 comm: syz.1.4363) [ 200.996516][T15727] openvswitch: netlink: Multiple metadata blocks provided [ 201.430597][T15774] overlay: filesystem on ./bus not supported [ 201.532484][ T29] usb 8-1: new high-speed USB device number 14 using dummy_hcd [ 201.702520][ T29] usb 8-1: Using ep0 maxpacket: 8 [ 201.715157][ T29] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 201.718668][ T29] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 201.721847][ T29] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 201.724998][ T29] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 201.728995][ T29] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 201.731793][ T29] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 201.950049][ T29] usb 8-1: GET_CAPABILITIES returned 0 [ 201.952830][ T29] usbtmc 8-1:16.0: can't read capabilities [ 202.151551][ T34] usb 8-1: USB disconnect, device number 14 [ 202.702008][ T9] kernel write not supported for file /input/mouse0 (pid: 9 comm: kworker/0:0) [ 202.741098][T15852] (unnamed net_device) (uninitialized): ARP target 9.0.0.0 is already present [ 202.745059][T15852] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (9) [ 202.782441][ T5984] Bluetooth: hci4: command 0x1003 tx timeout [ 202.787598][ T5980] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 202.834499][ T59] hid-generic 0005:15C2:8002.0006: collection stack underflow [ 202.837105][ T59] hid-generic 0005:15C2:8002.0006: item 0 0 0 12 parsing failed [ 202.842794][ T59] hid-generic 0005:15C2:8002.0006: probe with driver hid-generic failed with error -22 [ 202.874322][T15870] netlink: 'syz.0.4443': attribute type 4 has an invalid length. [ 202.877390][T15870] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4443'. [ 202.935656][T15878] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4447'. [ 202.939141][T15878] netlink: 43 bytes leftover after parsing attributes in process `syz.2.4447'. [ 202.941912][T15878] netlink: 'syz.2.4447': attribute type 6 has an invalid length. [ 202.945727][T15878] netlink: 'syz.2.4447': attribute type 5 has an invalid length. [ 202.948628][T15878] netlink: 43 bytes leftover after parsing attributes in process `syz.2.4447'. [ 203.152745][ T59] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None [ 213.426240][T15960] netlink: 428 bytes leftover after parsing attributes in process `syz.1.4472'. [ 213.429204][T15960] netlink: 32 bytes leftover after parsing attributes in process `syz.1.4472'. [ 213.457056][T15967] batadv_slave_1: entered promiscuous mode [ 213.459786][T15967] batadv_slave_1: left promiscuous mode [ 213.572735][T15981] mkiss: ax0: crc mode is auto. [ 213.661064][T15993] netlink: 'syz.2.4487': attribute type 10 has an invalid length. [ 213.677575][T15993] netdevsim netdevsim2 netdevsim0: entered promiscuous mode [ 213.683105][T15993] bond0: (slave netdevsim0): Enslaving as an active interface with a down link [ 214.149988][ T40] kauditd_printk_skb: 41 callbacks suppressed [ 214.150002][ T40] audit: type=1326 audit(2000000034.584:3294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16046 comm="syz.2.4513" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707e579 code=0x0 [ 214.215007][T16049] netlink: 96 bytes leftover after parsing attributes in process `syz.1.4514'. [ 214.871899][T16070] dvmrp1: tun_chr_ioctl cmd 1074025676 [ 214.874047][T16070] dvmrp1: owner set to 0 [ 215.709133][T16148] sg_write: data in/out 489/14 bytes for SCSI command 0xb-- guessing data in; [ 215.709133][T16148] program syz.2.4556 not setting count and/or reply_len properly [ 216.059820][T16175] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4570'. [ 216.457827][T16215] netlink: 68 bytes leftover after parsing attributes in process `syz.0.4588'. [ 216.552650][ T29] usb 8-1: new high-speed USB device number 15 using dummy_hcd [ 216.673534][T16226] netlink: 'syz.0.4593': attribute type 21 has an invalid length. [ 216.712408][ T29] usb 8-1: Using ep0 maxpacket: 32 [ 216.716221][ T29] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 9 [ 216.722072][ T29] usb 8-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 216.726592][ T29] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 216.730063][ T29] usb 8-1: Product: syz [ 216.731776][ T29] usb 8-1: Manufacturer: syz [ 216.735506][ T29] usb 8-1: SerialNumber: syz [ 216.741534][ T29] usb 8-1: config 0 descriptor?? [ 216.744354][T16203] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 216.750574][ T29] input: syz syz as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input31 [ 216.753165][ T34] kernel write not supported for file /uinput (pid: 34 comm: kworker/3:0) [ 217.034024][ T59] usb 8-1: USB disconnect, device number 15 [ 217.034091][ C1] usbtouchscreen 8-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19 [ 217.245739][T16290] Process accounting resumed [ 217.881205][T16350] libceph: resolve '0' (ret=-3): failed [ 217.942058][T16358] program syz.2.4654 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 217.960021][ T40] audit: type=1326 audit(2000000038.394:3295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16359 comm="syz.0.4655" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 217.968890][ T40] audit: type=1326 audit(2000000038.394:3296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16359 comm="syz.0.4655" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 217.976648][ T40] audit: type=1326 audit(2000000038.394:3297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16359 comm="syz.0.4655" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 217.983376][ T40] audit: type=1326 audit(2000000038.394:3298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16359 comm="syz.0.4655" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 217.990312][ T40] audit: type=1326 audit(2000000038.394:3299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16359 comm="syz.0.4655" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 217.999545][ T40] audit: type=1326 audit(2000000038.394:3300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16359 comm="syz.0.4655" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 218.007796][ T40] audit: type=1326 audit(2000000038.394:3301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16359 comm="syz.0.4655" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 218.017046][ T40] audit: type=1326 audit(2000000038.394:3302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16359 comm="syz.0.4655" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf704e598 code=0x7ffc0000 [ 218.024255][ T40] audit: type=1326 audit(2000000038.394:3303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16359 comm="syz.0.4655" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000 [ 218.233573][T16382] blk_print_req_error: 5 callbacks suppressed [ 218.233586][T16382] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 218.239387][T16382] FAT-fs (loop3): unable to read boot sector [ 218.625211][T16414] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 218.760969][T16421] input: syz0 as /devices/virtual/input/input32 [ 218.842762][T13921] syz_tun (unregistering): left allmulticast mode [ 218.844916][T13921] syz_tun (unregistering): left promiscuous mode [ 218.847079][T13921] bridge0: port 3(syz_tun) entered disabled state [ 219.168886][ T9] hid_parser_main: 5 callbacks suppressed [ 219.168900][ T9] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 219.175291][ T9] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 219.177833][ T9] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 219.180118][ T9] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 219.184243][ T9] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 219.186626][ T9] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 219.188945][ T9] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 219.191231][ T9] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 219.195465][ T9] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 219.197824][ T9] hid-generic 0003:0004:0000.0007: unknown main item tag 0x0 [ 219.202832][ T9] hid-generic 0003:0004:0000.0007: hidraw1: USB HID v0.00 Device [syz0] on syz1 [ 219.255110][ T5984] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 219.258224][ T5984] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 219.261477][ T5984] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 219.262653][T16448] block nbd8: server does not support multiple connections per device. [ 219.264652][ T5984] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 219.266581][T16448] block nbd8: shutting down sockets [ 219.269519][ T5984] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 219.374533][T16453] chnl_net:caif_netlink_parms(): no params data found [ 219.384107][T16473] openvswitch: netlink: IPv4 tunnel dst address is zero [ 219.413778][ T40] kauditd_printk_skb: 125 callbacks suppressed [ 219.413789][ T40] audit: type=1326 audit(2000000039.854:3429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16476 comm="syz.1.4710" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x0 [ 219.458358][T16453] bridge0: port 1(bridge_slave_0) entered blocking state [ 219.460645][T16453] bridge0: port 1(bridge_slave_0) entered disabled state [ 219.464036][T16453] bridge_slave_0: entered allmulticast mode [ 219.466732][T16453] bridge_slave_0: entered promiscuous mode [ 219.469917][T16453] bridge0: port 2(bridge_slave_1) entered blocking state [ 219.472358][T16453] bridge0: port 2(bridge_slave_1) entered disabled state [ 219.474934][T16453] bridge_slave_1: entered allmulticast mode [ 219.478457][T16453] bridge_slave_1: entered promiscuous mode [ 219.517044][T16453] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 219.522090][T16453] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 219.557754][T16453] team0: Port device team_slave_0 added [ 219.564018][T16453] team0: Port device team_slave_1 added [ 219.602013][T16453] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 219.605755][T16453] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 219.607382][ T6022] Process accounting resumed [ 219.615779][T16453] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 219.616876][T16453] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 219.625723][T16453] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 219.638978][T16453] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 219.678710][T16453] hsr_slave_0: entered promiscuous mode [ 219.680983][T16453] hsr_slave_1: entered promiscuous mode [ 219.683424][T16453] debugfs: 'hsr0' already exists in 'hsr' [ 219.686292][T16453] Cannot create hsr debugfs directory [ 219.810475][T16453] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 219.821260][T16512] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4723'. [ 219.824734][T16512] netem: unknown loss type 12 [ 219.826443][T16512] netem: change failed [ 219.897278][T16453] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 219.966188][T16453] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 220.021917][T16453] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 220.126284][T16453] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 220.130459][T16453] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 220.136229][T16453] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 220.141721][T16453] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 220.189913][T16453] 8021q: adding VLAN 0 to HW filter on device bond0 [ 220.201364][T16453] 8021q: adding VLAN 0 to HW filter on device team0 [ 220.207096][T11281] bridge0: port 1(bridge_slave_0) entered blocking state [ 220.209811][T11281] bridge0: port 1(bridge_slave_0) entered forwarding state [ 220.216114][T11276] bridge0: port 2(bridge_slave_1) entered blocking state [ 220.218360][T11276] bridge0: port 2(bridge_slave_1) entered forwarding state [ 220.295268][ T59] kernel read not supported for file /dsp (pid: 59 comm: kworker/2:1) [ 220.348116][T16453] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 220.375322][T16453] veth0_vlan: entered promiscuous mode [ 220.388699][T16453] veth1_vlan: entered promiscuous mode [ 220.401943][T16453] veth0_macvtap: entered promiscuous mode [ 220.407284][T16453] veth1_macvtap: entered promiscuous mode [ 220.421505][T16453] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 220.427463][T16453] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 220.434690][T11281] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.437871][T11281] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.446424][T11281] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.464641][T11281] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 220.486845][T16556] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4739'. [ 220.491490][T11276] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 220.496069][T11276] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 220.512592][T11304] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 220.515176][T11304] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 220.584956][T16562] ref_ctr_offset mismatch. inode: 0x12 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x4 [ 220.588493][T16564] dlm: non-version read from control device 34 [ 220.667017][T16574] bridge: RTM_NEWNEIGH with invalid state 0x8 [ 220.746386][T16589] vivid-001: disconnect [ 220.749865][T16587] vivid-001: reconnect [ 220.845833][T16605] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4760'. [ 220.846734][T16604] input: syz1 as /devices/virtual/input/input33 [ 220.895499][T16616] Context (ID=0x0) not attached to queue pair (handle=0x1:0xfffffffa) [ 220.954289][T16627] openvswitch: netlink: IP tunnel dst address not specified [ 221.123064][ T2298] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 221.142480][ T29] usb 8-1: new high-speed USB device number 16 using dummy_hcd [ 221.280602][ T2298] usb 5-1: config index 0 descriptor too short (expected 23569, got 27) [ 221.300681][ T2298] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 221.303873][ T29] usb 8-1: Using ep0 maxpacket: 8 [ 221.308057][ T2298] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 221.314516][ T2298] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 221.315077][ T29] usb 8-1: config index 0 descriptor too short (expected 301, got 45) [ 221.318337][ T2298] usb 5-1: Manufacturer: syz [ 221.321325][ T29] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 221.326444][ T2298] usb 5-1: config 0 descriptor?? [ 221.327486][ T29] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 221.333065][ T29] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 221.336219][ T29] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 221.340463][ T29] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 221.342804][ T5984] Bluetooth: hci0: command tx timeout [ 221.344872][ T29] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 221.360541][T16658] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4773'. [ 221.392336][ T2298] rc_core: IR keymap rc-hauppauge not found [ 221.395491][ T2298] Registered IR keymap rc-empty [ 221.398199][ T2298] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0 [ 221.404484][ T2298] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input34 [ 221.539253][ T6042] usb 5-1: USB disconnect, device number 12 [ 221.556005][ T29] usb 8-1: GET_CAPABILITIES returned 0 [ 221.557699][ T29] usbtmc 8-1:16.0: can't read capabilities [ 221.690457][T16674] bridge0: port 3(syz_tun) entered disabled state [ 221.694645][T16674] bridge0: port 2(bridge_slave_1) entered disabled state [ 221.697548][T16674] bridge0: port 1(bridge_slave_0) entered disabled state [ 221.759654][ T2298] usb 8-1: USB disconnect, device number 16 [ 222.166812][ T40] audit: type=1326 audit(2000000042.604:3430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16694 comm="syz.1.4789" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 222.175549][ T40] audit: type=1326 audit(2000000042.604:3431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16694 comm="syz.1.4789" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 222.183661][ T40] audit: type=1326 audit(2000000042.604:3432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16694 comm="syz.1.4789" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 222.190509][ T40] audit: type=1326 audit(2000000042.604:3433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16694 comm="syz.1.4789" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 222.198884][ T40] audit: type=1326 audit(2000000042.604:3434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16694 comm="syz.1.4789" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 222.207059][ T40] audit: type=1326 audit(2000000042.604:3435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16694 comm="syz.1.4789" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 222.214583][ T40] audit: type=1326 audit(2000000042.604:3436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16694 comm="syz.1.4789" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000 [ 222.221506][ T40] audit: type=1326 audit(2000000042.604:3437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16694 comm="syz.1.4789" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 222.231159][ T40] audit: type=1326 audit(2000000042.604:3438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16694 comm="syz.1.4789" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 222.286342][T16705] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4794'. [ 222.713203][ T59] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 222.864601][ T59] usb 6-1: Using ep0 maxpacket: 8 [ 222.865848][ T59] usb 6-1: config index 0 descriptor too short (expected 301, got 45) [ 222.869200][ T59] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 222.869216][ T59] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 222.869228][ T59] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 222.869240][ T59] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 222.882973][ T59] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 222.882988][ T59] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 222.922511][T16751] Bluetooth: MGMT ver 1.23 [ 222.960228][T16753] netlink: 'syz.3.4817': attribute type 10 has an invalid length. [ 222.971769][T16753] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 223.090791][ T59] usb 6-1: GET_CAPABILITIES returned 0 [ 223.090818][ T59] usbtmc 6-1:16.0: can't read capabilities [ 223.222907][T16761] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.4821'. [ 223.298288][ T29] usb 6-1: USB disconnect, device number 11 [ 223.422578][ T5984] Bluetooth: hci0: command tx timeout [ 223.513066][T16796] netlink: 1041 bytes leftover after parsing attributes in process `syz.0.4834'. [ 223.945098][T16839] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4852'. [ 223.949766][T16839] netlink: 104 bytes leftover after parsing attributes in process `syz.2.4852'. [ 223.955542][T16839] netlink: 104 bytes leftover after parsing attributes in process `syz.2.4852'. [ 223.991041][T16844] kvm: kvm [16843]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x11e) = 0x1 [ 224.162345][ T59] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 224.299271][T16868] netem: incorrect ge model size [ 224.301096][T16868] netem: change failed [ 224.342542][ T59] usb 5-1: Using ep0 maxpacket: 8 [ 224.346841][ T59] usb 5-1: config index 0 descriptor too short (expected 301, got 45) [ 224.349628][ T59] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 224.352763][ T59] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 224.356652][ T59] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 224.360828][ T59] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 224.366024][ T59] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 224.369669][ T59] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 224.579712][ T59] usb 5-1: GET_CAPABILITIES returned 0 [ 224.581617][ T59] usbtmc 5-1:16.0: can't read capabilities [ 224.784427][ T59] usb 5-1: USB disconnect, device number 13 [ 225.503781][ T5984] Bluetooth: hci0: command tx timeout [ 225.657455][T13964] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000b: 0000 [#1] SMP KASAN NOPTI [ 225.661142][T13964] KASAN: null-ptr-deref in range [0x0000000000000058-0x000000000000005f] [ 225.664492][T13964] CPU: 0 UID: 0 PID: 13964 Comm: syz.0.3557 Not tainted syzkaller #0 PREEMPT(full) SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 225.668408][T13964] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 225.671772][T13964] RIP: 0010:klist_put+0x4d/0x1b0 [ 225.673398][T13964] Code: c1 ea 03 80 3c 02 00 0f 85 5f 01 00 00 48 b8 00 00 00 00 00 fc ff df 4c 8b 23 49 83 e4 fe 49 8d 7c 24 58 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 2e 01 00 00 4c 89 e7 4d 8b 74 24 58 e8 8c 3e 0d [ 225.680059][T13964] RSP: 0000:ffffc90007277740 EFLAGS: 00010202 [ 225.682037][T13964] RAX: dffffc0000000000 RBX: ffff888024071860 RCX: 0000000000000000 [ 225.684587][T13964] RDX: 000000000000000b RSI: ffffffff8b861035 RDI: 0000000000000058 [ 225.686936][T13964] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff211ced4 [ 225.689289][T13964] R10: ffffffff908e76a3 R11: 000000000000001e R12: 0000000000000000 [ 225.691682][T13964] R13: 0000000000000001 R14: 1ffff92000e4eef0 R15: ffffffff908e7660 [ 225.694237][T13964] FS: 0000000000000000(0000) GS:ffff8880974c3000(0000) knlGS:0000000000000000 [ 225.697080][T13964] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 225.699172][T13964] CR2: 000000000c34fda9 CR3: 000000006e89d000 CR4: 0000000000352ef0 [ 225.701807][T13964] Call Trace: [ 225.702953][T13964] [ 225.703907][T13964] klist_remove+0x13f/0x2e0 [ 225.705354][T13964] ? __pfx_klist_remove+0x10/0x10 [ 225.706960][T13964] ? get_device_parent+0x1ed/0x4e0 [ 225.708583][T13964] device_move+0x12d/0x10d0 [ 225.710132][T13964] hci_conn_del_sysfs+0x81/0x180 [ 225.711954][T13964] hci_conn_del+0x5b3/0xe70 [ 225.713598][T13964] hci_conn_hash_flush+0x186/0x260 [ 225.715365][T13964] hci_dev_close_sync+0x602/0x11d0 [ 225.717060][T13964] ? __pfx_hci_dev_close_sync+0x10/0x10 [ 225.718790][T13964] ? up_write+0x1b2/0x520 [ 225.720233][T13964] hci_dev_do_close+0x2e/0x90 [ 225.721742][T13964] hci_unregister_dev+0x227/0x640 [ 225.723328][T13964] ? __pfx_vhci_release+0x10/0x10 [ 225.724941][T13964] vhci_release+0x79/0xf0 [ 225.726328][T13964] __fput+0x402/0xb70 [ 225.727570][T13964] task_work_run+0x14d/0x240 [ 225.729038][T13964] ? __pfx_task_work_run+0x10/0x10 [ 225.730603][T13964] ? switch_task_namespaces+0xeb/0x100 [ 225.732334][T13964] do_exit+0x86f/0x2bf0 [ 225.733691][T13964] ? __pfx_do_exit+0x10/0x10 [ 225.735259][T13964] ? cgroup_update_frozen_flag+0x107/0x210 [ 225.737163][T13964] ? find_held_lock+0x2b/0x80 [ 225.738663][T13964] do_group_exit+0xd3/0x2a0 [ 225.740115][T13964] get_signal+0x2673/0x26d0 [ 225.741601][T13964] ? hrtimer_nanosleep+0x187/0x380 [ 225.743224][T13964] ? __pfx_get_signal+0x10/0x10 [ 225.744877][T13964] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 225.746540][T13964] arch_do_signal_or_restart+0x8f/0x790 [ 225.748294][T13964] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 225.750266][T13964] ? __pfx___ia32_sys_clock_nanosleep_time32+0x10/0x10 [ 225.752448][T13964] exit_to_user_mode_loop+0x84/0x110 [ 225.754133][T13964] __do_fast_syscall_32+0x2ac/0x3a0 [ 225.755837][T13964] do_fast_syscall_32+0x32/0x80 [ 225.757439][T13964] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 225.759456][T13964] RIP: 00bf:0xa5 [ 225.760678][T13964] Code: Unable to access opcode bytes at 0x7b. [ 225.762700][T13964] RSP: 002b:0000000000000000 EFLAGS: 00000202 ORIG_RAX: 0000000000000008 [ 225.765376][T13964] RAX: 0000000000002318 RBX: 000000000000a4bf RCX: 0000000000000000 [ 225.767837][T13964] RDX: 0000000000000407 RSI: 00000000fffffff0 RDI: 00000000000002b7 [ 225.770362][T13964] RBP: 0000000000000008 R08: 0000000000000000 R09: 0000000000000000 [ 225.773129][T13964] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 225.776343][T13964] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 225.778796][T13964] [ 225.780044][T13964] Modules linked in: [ 225.783756][T13964] ---[ end trace 0000000000000000 ]--- [ 225.791094][T13964] RIP: 0010:klist_put+0x4d/0x1b0 [ 225.793399][T13964] Code: c1 ea 03 80 3c 02 00 0f 85 5f 01 00 00 48 b8 00 00 00 00 00 fc ff df 4c 8b 23 49 83 e4 fe 49 8d 7c 24 58 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 2e 01 00 00 4c 89 e7 4d 8b 74 24 58 e8 8c 3e 0d [ 225.800843][T13964] RSP: 0000:ffffc90007277740 EFLAGS: 00010202 [ 225.803653][T13964] RAX: dffffc0000000000 RBX: ffff888024071860 RCX: 0000000000000000 [ 225.806990][T13964] RDX: 000000000000000b RSI: ffffffff8b861035 RDI: 0000000000000058 [ 225.810268][T13964] RBP: 0000000000000001 R08: 0000000000000000 R09: fffffbfff211ced4 [ 225.814685][T13964] R10: ffffffff908e76a3 R11: 000000000000001e R12: 0000000000000000 [ 225.818021][T13964] R13: 0000000000000001 R14: 1ffff92000e4eef0 R15: ffffffff908e7660 [ 225.821304][T13964] FS: 0000000000000000(0000) GS:ffff8880974c3000(0000) knlGS:0000000000000000 [ 225.825759][T13964] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 225.828510][T13964] CR2: 000000000c34fda9 CR3: 000000000e380000 CR4: 0000000000352ef0 [ 225.831800][T13964] Kernel panic - not syncing: Fatal exception [ 225.835259][T13964] Kernel Offset: disabled [ 225.837110][T13964] Rebooting in 86400 seconds.. VM DIAGNOSIS: 05:34:03 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85617045 RDI=ffffffff9b0f9700 RBP=ffffffff9b0f96c0 RSP=ffffc90007277140 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b R12=0000000000000000 R13=0000000000000030 R14=ffffffff9b0f96c0 R15=ffffffff85616fe0 RIP=ffffffff8561706f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880974c3000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000000c34fda9 CR3=000000006e89d000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=dffffc0000000000 RBX=0000000000000000 RCX=ffffffff816c8903 RDX=1ffff11007fff48c RSI=ffffffff816c891f RDI=0000000000000005 RBP=000000001c7a12d0 RSP=ffffc90002f37ae0 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=ffffffff9b06e5f8 R12=ffff88803fffa460 R13=ffff88807ffce400 R14=0000000000000000 R15=ffff88801b887000 RIP=ffffffff816c8934 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880975c3000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000080000240 CR3=0000000056cfe000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000000 RBX=000000000005a43a RCX=0000000000000013 RDX=ffff88802425c880 RSI=ffffffff822c1b45 RDI=0000000000000000 RBP=000000000000000b RSP=ffffc90003767728 R8 =0000000000000007 R9 =000fffffffffffff R10=000000000005a43a R11=0000000000000000 R12=0000000000000000 R13=0000000000000001 R14=dffffc0000000000 R15=0000000000000000 RIP=ffffffff822c1b5a RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880976c3000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f7f46e40 CR3=000000000e380000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f73e4ff4 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=dffffc0000000000 RBX=ffffc90006406b88 RCX=ffffc90006408001 RDX=1ffff92000c80d7a RSI=ffffffff8c162c80 RDI=ffffffff89d96ffc RBP=ffffc90006406bd0 RSP=ffffc90006406b68 R8 =0000000000000001 R9 =0000000000000000 R10=ffffc90006406b88 R11=000000000008d82c R12=ffffffff81a67480 R13=ffffc90006406c48 R14=0000000000000000 R15=ffff888023278000 RIP=ffffffff81841c50 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880977c3000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f7183b20 CR3=0000000076815000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000