last executing test programs:

5m15.110408456s ago: executing program 1 (id=5383):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0700000000000000000005000000180001801400020073797a5f74756e0000000000000000000500020000000000080009000200"], 0x3c}}, 0x0)

5m15.07077215s ago: executing program 1 (id=5386):
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0xa102, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000200)=0x12)
readv(r0, &(0x7f0000001480)=[{&(0x7f00000000c0)=""/194, 0xc2}], 0x1)

5m15.002154915s ago: executing program 1 (id=5388):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000003b810000850000007d000000850000005000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000100)='sys_exit\x00', r0}, 0x10)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x9)

5m15.000871841s ago: executing program 1 (id=5390):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={{0x14}, [@NFT_MSG_NEWRULE={0x70, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x44, 0x4, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x30, 0x2, 0x0, 0x1, [@NFTA_MATCH_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_MATCH_INFO={0x18, 0x3, "c6a41d10f5ffffffffffffff02f5ffffff000000"}, @NFTA_MATCH_NAME={0xa, 0x1, 'owner\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x98}}, 0x810)

5m14.938497272s ago: executing program 1 (id=5392):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8})
fstat(r0, &(0x7f00000007c0))

5m14.936157506s ago: executing program 1 (id=5394):
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

4m59.919223386s ago: executing program 32 (id=5394):
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

4m33.470980503s ago: executing program 0 (id=7029):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r0, 0xc0182101, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000004c0)={<r1=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, &(0x7f0000000240)={r1, 0x0, r0})

4m32.540932168s ago: executing program 0 (id=7059):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000002240)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040), 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000700)={r0, 0xe0, &(0x7f0000000580)={0x0, <r1=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
r2 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000840)={r1}, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x2f00020b, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0xae5b, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

4m32.481224137s ago: executing program 0 (id=7061):
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="9c0000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff010000000000000000000000000001"], 0x9c}, 0x1, 0x0, 0x0, 0x8800}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e20, 0x2, @local}}, 0x0, 0x8001}, &(0x7f00000003c0)=0x90)

4m32.475822768s ago: executing program 0 (id=7063):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f00000001c0)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

4m32.378091026s ago: executing program 0 (id=7066):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
fsetxattr$system_posix_acl(r1, &(0x7f0000000000)='system.posix_acl_access\x00', 0x0, 0x0, 0x1)

4m32.377393914s ago: executing program 0 (id=7067):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x2000300, 0xe, 0xf000, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

4m17.363365013s ago: executing program 33 (id=7067):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x2000300, 0xe, 0xf000, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

4m6.120816478s ago: executing program 5 (id=7841):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000140), 0x802, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000001400))
writev(r0, &(0x7f0000000080)=[{&(0x7f00000006c0)="2e31b69c9bd4beb2ce56518bf0aea548722f054677edd0cb67e2afb987c3e16e3b65bfe50c4d55086a56832bebeb32802ecd8e61032995b891d24c782afea345ed2f0a87bc1bfc6101fa7d1d2c2e57f889dbb28fe7b7e2fc562acebfd86566be11c267f5c5c5e1707a44f2795400fb26cd4170d76c6807d8270435f365d737751f", 0x81}, {&(0x7f00000012c0)="361880853a70294931a79d1451eaa604703c25909bb1e9fac5d8a149d894f3950f32a11202b51f30d8c727a4ecd53f466a002eb67964e39b014ebbd9228f09", 0x3f}], 0x2)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)

4m6.082361135s ago: executing program 5 (id=7846):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x40000001, 0x4, 0x0, 0x2, "0062ba7d8207000000ecf5000000f7ffffff00"})
r1 = syz_open_pts(r0, 0x22040)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000280)=0x13)

4m6.044658638s ago: executing program 5 (id=7848):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, 0x0, 0x0)
bind$inet(r0, &(0x7f00000002c0)={0x2, 0x4e21, @remote}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)

4m5.996967683s ago: executing program 5 (id=7851):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
mkdir(&(0x7f0000000140)='./control\x00', 0x5)
rmdir(&(0x7f0000000100)='./control\x00')

4m5.992267251s ago: executing program 5 (id=7853):
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@mcast2, 0x1, 0x0, 0x2, 0x6, 0x9, 0x2}, 0x20)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'virt_wifi0\x00', 0x2})
ioctl(r0, 0x8b32, &(0x7f0000000040))

4m5.74105667s ago: executing program 5 (id=7864):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x16519000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
times(0x0)

4m5.637386379s ago: executing program 34 (id=7864):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x16519000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
times(0x0)

4m3.021124686s ago: executing program 4 (id=7897):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

4m2.979805209s ago: executing program 4 (id=7900):
r0 = socket$igmp6(0xa, 0x3, 0x2)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'ip6tnl0\x00', <r2=>0x0})
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f00000005c0)={@dev={0xfe, 0x80, '\x00', 0x40}, @remote, @remote, 0x3, 0x2, 0x5, 0x400, 0xb7, 0xc20022, r2})

4m2.944738366s ago: executing program 4 (id=7902):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000240)='blkio.bfq.empty_time\x00', 0x0, 0x0)
preadv(r1, &(0x7f0000000340)=[{&(0x7f0000000480)=""/247, 0xf7}], 0x1, 0x0, 0x0)

4m2.882162232s ago: executing program 4 (id=7904):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x16)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='numa_maps\x00')
lseek(r0, 0x1000000, 0x0)

4m2.833594451s ago: executing program 4 (id=7906):
prctl$PR_SET_SECUREBITS(0x1c, 0x2c)
setuid(0xee00)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8})

4m2.773093522s ago: executing program 4 (id=7908):
r0 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x2c, r0, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}]}, 0x2c}}, 0xc800)
sendmsg$SMC_PNETID_DEL(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x14, r0, 0xe27, 0x0, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x0)

3m47.58347102s ago: executing program 35 (id=7908):
r0 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x2c, r0, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}]}, 0x2c}}, 0xc800)
sendmsg$SMC_PNETID_DEL(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x14, r0, 0xe27, 0x0, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x0)

1m7.712775775s ago: executing program 3 (id=12501):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r0, &(0x7f00000000c0)={0x1f, 0x7, @none, 0xb8}, 0xe)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r1, &(0x7f00000000c0)={0x1f, 0x7, @none}, 0xe)

1m7.630131654s ago: executing program 3 (id=12502):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x801}, 0x48050)
r0 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000000)={r0, r0, r0}, 0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={'sha1-ssse3\x00'}})

1m7.569998777s ago: executing program 3 (id=12504):
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000280), 0x40900, 0x0)
r0 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100, 0x3}, &(0x7f0000002000)=<r1=>0x0, &(0x7f0000000000)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22})
io_uring_enter(r0, 0x48e9, 0x0, 0x2, 0x0, 0x0)

1m7.541750874s ago: executing program 3 (id=12506):
mkdir(&(0x7f0000001c00)='./file0\x00', 0x8)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f0000000340)='./file0\x00')
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000580), 0x0, 0x0)

1m7.480155028s ago: executing program 3 (id=12508):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x21)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$FUSE_NOTIFY_POLL(r1, &(0x7f0000000280)={0x18, 0x6}, 0x18)

1m7.080463805s ago: executing program 3 (id=12522):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="640000000206030000000000000000000000000005000100070000000900020073797a320000000014000780080013400000000008001240000020000500050002000000050004"], 0x64}}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d0eab070004000523"], 0xfe33)
r0 = socket$inet6(0x10, 0x2, 0x0)
sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

1m7.01293256s ago: executing program 36 (id=12522):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="640000000206030000000000000000000000000005000100070000000900020073797a320000000014000780080013400000000008001240000020000500050002000000050004"], 0x64}}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d0eab070004000523"], 0xfe33)
r0 = socket$inet6(0x10, 0x2, 0x0)
sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

4.116526406s ago: executing program 2 (id=13954):
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
writev(r1, &(0x7f0000002a80)=[{&(0x7f0000000a00)="1b", 0x1}], 0x1)
pipe(&(0x7f0000000380)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$cgroup_pid(r2, &(0x7f0000000000), 0xffffff98)
splice(r0, 0x0, r2, 0x0, 0x80, 0x6)

3.299760535s ago: executing program 2 (id=13976):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000580)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f000905", @ANYRES16], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0xf, {[@local=@item_4={0x3, 0x2, 0x0, "f896e404"}, @local=@item_012={0x1, 0x2, 0x2, 'e'}, @main=@item_012={0x2, 0x0, 0x9, "f792"}, @main=@item_4={0x3, 0x0, 0x0, "9ef12d19"}]}}, 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCGUSAGE(r1, 0x501c4814, &(0x7f00000000c0)={0x2, 0xffffffff})

2.78202126s ago: executing program 6 (id=13998):
getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)
rseq(&(0x7f0000000140), 0x20, 0x0, 0x0)
unshare(0x8000000)
semget$private(0x0, 0x4000, 0x0)
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000740))

2.660405749s ago: executing program 6 (id=14001):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x84, @multicast2, 0x15, 0x3, 'wrr\x00', 0x1, 0x4, 0x55}, 0x2c)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000000)={{0x84, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e21, 0x3, 'wrr\x00', 0x23, 0x81, 0x5}, {@rand_addr=0xac1414aa, 0x4e23, 0x10000, 0x1cb, 0x12d5e, 0x12d58}}, 0x44)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000000)={{0x84, @rand_addr=0x64010100, 0x4e20, 0x3, 'lc\x00', 0x8, 0x323b, 0x55}, {@remote, 0x4e23, 0x2000, 0x0, 0x12d5c, 0x12d5c}}, 0x44)

2.587079495s ago: executing program 6 (id=13994):
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000018000100000000000000000002000000000000090000000006001500040000001400168010000880"], 0x38}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)

1.691817752s ago: executing program 6 (id=14012):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x54}, 0x1, 0x0, 0x0, 0x8010}, 0x4000800)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)={0x38, 0x7, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x2}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x4040}, 0x0)

1.663046741s ago: executing program 2 (id=14013):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_usb_connect$uac1(0x69a90eab3db9c902, 0x0, 0x0, 0x0)
read$FUSE(r1, &(0x7f0000001740)={0x2020}, 0x2020)

1.653426229s ago: executing program 6 (id=14014):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f000905", @ANYRES16], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x22, 0xf, {[@local=@item_4={0x3, 0x2, 0x0, "2e2b5aa4"}, @local=@item_4={0x3, 0x2, 0x0, "f85edaca"}, @main=@item_4={0x3, 0x0, 0x8}]}}, 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCSFLAG(r1, 0x4004480f, &(0x7f0000000000)=0x3)

992.89091ms ago: executing program 2 (id=14015):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="9e", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback, 0xe}, 0x1c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x2, 0x10}, 0xc)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000340)=',', 0x34000}], 0x1)

451.955395ms ago: executing program 8 (id=14031):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000380)='devtmpfs\x00', 0x4000, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000180)='tmpfs\x00', 0x3200890, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, 0x0, 0x262)

396.927104ms ago: executing program 8 (id=14032):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'netdevsim0\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000f80)={0x6, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000300000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffd62, @void, @value}, 0x1a)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="3400000010000100"/20, @ANYRES32=r1, @ANYBLOB="000000000000000014002b80080003000800000008000100", @ANYRES32=r2], 0x34}, 0x1, 0x0, 0x0, 0x88000}, 0x0)

375.656788ms ago: executing program 8 (id=14034):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x2)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
mkdir(&(0x7f0000000640)='./bus\x00', 0x149)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

308.606649ms ago: executing program 7 (id=14035):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000100)=0x1000009, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'vlan0\x00', <r2=>0x0})
sendto$packet(r0, &(0x7f00000003c0)="02030e00d38adf9e08c422eebb66", 0xe, 0x0, &(0x7f00000001c0)={0x11, 0x10, r2, 0x1, 0x4, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x14)

307.397544ms ago: executing program 8 (id=14037):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
splice(r1, 0x0, r2, 0x0, 0x4ffe6, 0x1000000000000000)
close_range(r0, 0xffffffffffffffff, 0x0)

237.091332ms ago: executing program 7 (id=14038):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=@dellink={0x20, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xa000}}, 0x20}}, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f00000004c0)=@assoc_value={<r2=>0x0}, &(0x7f0000000740)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000080)={r2, 0xfffe, 0x1, "bd"}, 0x9)

236.187157ms ago: executing program 8 (id=14039):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f00000000c0)={0x1f, 0xffff, 0x3}, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002040)={0x18, 0x3, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000004095"], &(0x7f0000000340)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0xf, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
write(r0, &(0x7f0000000000)="3f000000010000", 0x7)

235.925083ms ago: executing program 7 (id=14040):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r0, &(0x7f0000000000)="e6", 0x1, 0x20008005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10)
shutdown(r0, 0x1)
recvfrom(r0, 0x0, 0x4d, 0x10023, 0x0, 0xffffffffffffffd1)

227.276718ms ago: executing program 8 (id=14041):
r0 = signalfd(0xffffffffffffffff, &(0x7f00000002c0)={[0x7fffffff]}, 0x8)
r1 = gettid()
timer_create(0x0, &(0x7f0000000180)={0x0, 0x11, 0x4, @tid=r1}, &(0x7f0000000080))
read$FUSE(r0, &(0x7f00000008c0)={0x2020}, 0xfffffef0)
timer_settime(0x0, 0x0, &(0x7f0000000300)={{0x0, 0x1}, {0x0, 0xe4c}}, 0x0)

136.710643ms ago: executing program 7 (id=14042):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "fc7771", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x3, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x2}}}}}}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x7e, @empty, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x4, 0x5, 0xc2}}}}}}}, 0x0)

135.799579ms ago: executing program 7 (id=14043):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback, 0x7}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000780)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x2, @loopback, 0x3}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000380)="06", 0x1}], 0x1}}], 0x1, 0x3404c8d4)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000003c0)=ANY=[], 0x1000f)

81.196301ms ago: executing program 2 (id=14044):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x4cfb, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001c00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x29)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000005000000850000008200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r2}, 0x10)
unlink(&(0x7f0000000140)='./cgroup\x00')

80.579462ms ago: executing program 7 (id=14045):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f000905", @ANYRES64], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000b00)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000f00000009003d140f3c369197d09647190890"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCGUSAGE(r1, 0xd01c4813, &(0x7f00000000c0)={0x2, 0x0, 0x0, 0x4719})

70.020956ms ago: executing program 2 (id=14046):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000140)={0x1, 0x0, @pic={0x1, 0x1, 0x3, 0x3, 0x4, 0x5, 0x93, 0x5, 0x8, 0x0, 0xfb, 0xc, 0x1, 0x5, 0xc, 0xc}})
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000380)={0xa, 0x7})

0s ago: executing program 6 (id=14047):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeed, 0x8031, 0xffffffffffffffff, 0xf6d0d000)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

0s ago: executing program 2 (id=14048):
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="0900000007000000000001"], 0x50)
r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x862b01)
r1 = syz_open_dev$evdev(&(0x7f0000000280), 0x0, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f0000000180)=0x800)
write$char_usb(r0, &(0x7f0000000040)="e2", 0x2250)

kernel console output (not intermixed with test programs):

my0: left allmulticast mode
[  361.471756][T30331] dummy0: left promiscuous mode
[  361.603722][T30348] netlink: 'syz.3.11308': attribute type 10 has an invalid length.
[  361.607646][T30348] netlink: 40 bytes leftover after parsing attributes in process `syz.3.11308'.
[  361.624234][T30348] team0: Port device geneve0 added
[  361.660941][T30358] netlink: 'syz.7.11313': attribute type 1 has an invalid length.
[  361.855651][T30375] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0
[  361.918067][T30383] netlink: 'syz.3.11321': attribute type 1 has an invalid length.
[  361.920600][T30383] netlink: 224 bytes leftover after parsing attributes in process `syz.3.11321'.
[  363.143467][T30426] e1000 0000:00:06.0 eth0: Unsupported Speed/Duplex configuration
[  363.270404][T30439] sp0: Synchronizing with TNC
[  363.384874][  T836] usb 11-1: new high-speed USB device number 14 using dummy_hcd
[  363.397686][T30447] ref_ctr_offset mismatch. inode: 0x3489 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x4
[  363.534977][  T836] usb 11-1: Using ep0 maxpacket: 16
[  363.538556][  T836] usb 11-1: config 0 has no interfaces?
[  363.542317][  T836] usb 11-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  363.547207][  T836] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  363.550134][  T836] usb 11-1: Product: syz
[  363.551875][  T836] usb 11-1: Manufacturer: syz
[  363.553880][  T836] usb 11-1: SerialNumber: syz
[  363.560491][  T836] usb 11-1: config 0 descriptor??
[  363.674106][T30471] netlink: 'syz.2.11362': attribute type 10 has an invalid length.
[  363.677176][T30471] netlink: 40 bytes leftover after parsing attributes in process `syz.2.11362'.
[  363.721063][T30475] netlink: 'syz.2.11363': attribute type 1 has an invalid length.
[  363.723557][T30475] netlink: 224 bytes leftover after parsing attributes in process `syz.2.11363'.
[  363.776656][  T836] usb 11-1: USB disconnect, device number 14
[  363.864942][T30485] netlink: 24 bytes leftover after parsing attributes in process `syz.3.11366'.
[  363.940419][T30489] netlink: 'syz.3.11369': attribute type 3 has an invalid length.
[  363.942747][T30489] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  363.951560][T30491] ref_ctr_offset mismatch. inode: 0x3c0e offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x4
[  364.093498][T30497] CIFS: VFS: Malformed UNC in devname
[  364.381814][T30509] macvlan0: entered allmulticast mode
[  364.383529][T30509] veth1_vlan: entered allmulticast mode
[  364.622075][T30527] netlink: 156 bytes leftover after parsing attributes in process `syz.7.11388'.
[  364.625746][T30527] netlink: 24 bytes leftover after parsing attributes in process `syz.7.11388'.
[  364.667544][T30529] bridge_slave_0: default FDB implementation only supports local addresses
[  364.694364][T30533] input: syz0 as /devices/virtual/input/input49
[  364.696642][T30531] tipc: Started in network mode
[  364.698198][T30531] tipc: Node identity ac14140f, cluster identity 4711
[  364.703032][T30531] tipc: New replicast peer: 255.255.255.255
[  364.708458][T30531] tipc: Enabled bearer <udp:syz2>, priority 10
[  364.711334][T30536] netlink: 60 bytes leftover after parsing attributes in process `syz.7.11393'.
[  364.714394][T30531] netlink: 12 bytes leftover after parsing attributes in process `syz.6.11389'.
[  364.722906][T30531] tipc: Disabling bearer <udp:syz2>
[  364.962963][T30564] tipc: Started in network mode
[  364.965357][T30564] tipc: Node identity ac14140f, cluster identity 4711
[  364.968251][T30564] tipc: New replicast peer: 255.255.255.255
[  364.972995][T30564] tipc: Enabled bearer <udp:syz2>, priority 10
[  364.981068][T30564] tipc: Disabling bearer <udp:syz2>
[  365.194756][T30576] mkiss: ax0: crc mode is auto.
[  365.247291][T30584] autofs: Bad value for 'fd'
[  365.324764][   T40] audit: type=1326 audit(2000787276.740:6841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30572 comm="syz.2.11411" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  365.349677][   T40] audit: type=1326 audit(2000787276.740:6842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30572 comm="syz.2.11411" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf711e598 code=0x7ffc0000
[  365.363651][   T40] audit: type=1326 audit(2000787276.740:6843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30572 comm="syz.2.11411" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf711e598 code=0x7ffc0000
[  365.365974][T30593] o2cb: This node has not been configured.
[  365.375070][T30593] o2cb: Cluster check failed. Fix errors before retrying.
[  365.375439][   T40] audit: type=1326 audit(2000787276.740:6844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30572 comm="syz.2.11411" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  365.378076][T30593] (syz.7.11420,30593,1):user_dlm_register:674 ERROR: status = -22
[  365.387832][   T40] audit: type=1326 audit(2000787276.740:6845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30572 comm="syz.2.11411" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf711e598 code=0x7ffc0000
[  365.395496][   T40] audit: type=1326 audit(2000787276.740:6846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30572 comm="syz.2.11411" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  365.402922][   T40] audit: type=1326 audit(2000787276.740:6847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30572 comm="syz.2.11411" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  365.404924][T30593] (syz.7.11420,30593,1):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file1"
[  365.410608][   T40] audit: type=1326 audit(2000787276.740:6848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30572 comm="syz.2.11411" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf711e598 code=0x7ffc0000
[  365.431186][   T40] audit: type=1326 audit(2000787276.740:6849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30572 comm="syz.2.11411" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  365.441948][  T836] hid-generic 00A1:0009:0003.0010: unknown main item tag 0x0
[  365.445479][  T836] hid-generic 00A1:0009:0003.0010: unknown main item tag 0x0
[  365.452140][  T836] hid-generic 00A1:0009:0003.0010: unknown main item tag 0x0
[  365.454532][  T836] hid-generic 00A1:0009:0003.0010: unknown main item tag 0x0
[  365.471169][  T836] hid-generic 00A1:0009:0003.0010: unknown main item tag 0x0
[  365.474015][  T836] hid-generic 00A1:0009:0003.0010: unknown main item tag 0x0
[  365.477149][  T836] hid-generic 00A1:0009:0003.0010: unknown main item tag 0x0
[  365.479891][  T836] hid-generic 00A1:0009:0003.0010: unknown main item tag 0x0
[  365.490364][  T836] hid-generic 00A1:0009:0003.0010: unknown main item tag 0x0
[  365.492889][  T836] hid-generic 00A1:0009:0003.0010: unknown main item tag 0x0
[  365.495627][  T836] hid-generic 00A1:0009:0003.0010: unknown main item tag 0x0
[  365.498526][  T836] hid-generic 00A1:0009:0003.0010: unknown main item tag 0x0
[  365.501116][  T836] hid-generic 00A1:0009:0003.0010: unknown main item tag 0x0
[  365.503516][  T836] hid-generic 00A1:0009:0003.0010: unknown main item tag 0x0
[  365.506258][  T836] hid-generic 00A1:0009:0003.0010: unknown main item tag 0x0
[  365.510081][  T836] hid-generic 00A1:0009:0003.0010: hidraw0: <UNKNOWN> HID v0.05 Device [syz1] on syz0
[  366.413164][T19042] kernel read not supported for file /dsp (pid: 19042 comm: kworker/3:4)
[  367.010006][T30716] __nla_validate_parse: 1 callbacks suppressed
[  367.010022][T30716] netlink: 28 bytes leftover after parsing attributes in process `syz.2.11478'.
[  367.087666][T30720] @: renamed from vlan0 (while UP)
[  368.424460][T30800] GUP no longer grows the stack in syz.2.11515 (30800): 80004000-80005000 (80001000)
[  368.425853][T30800] CPU: 2 UID: 0 PID: 30800 Comm: syz.2.11515 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) 
[  368.425879][T30800] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  368.425890][T30800] Call Trace:
[  368.425896][T30800]  <TASK>
[  368.425904][T30800]  dump_stack_lvl+0x16c/0x1f0
[  368.425937][T30800]  gup_vma_lookup+0x1d2/0x220
[  368.425958][T30800]  __get_user_pages+0x271/0x3b80
[  368.425986][T30800]  ? process_vm_rw_core.constprop.0+0x1d8/0x9a0
[  368.426015][T30800]  ? kasan_save_stack+0x42/0x60
[  368.426041][T30800]  ? __pfx___get_user_pages+0x10/0x10
[  368.426060][T30800]  ? register_lock_class+0x41/0x4c0
[  368.426084][T30800]  ? __ia32_sys_process_vm_writev+0xdf/0x1b0
[  368.426100][T30800]  ? __do_fast_syscall_32+0x7c/0x3a0
[  368.426124][T30800]  __gup_longterm_locked+0x20d/0x1850
[  368.426145][T30800]  ? __lock_acquire+0xb8a/0x1c90
[  368.426172][T30800]  ? __pfx___gup_longterm_locked+0x10/0x10
[  368.426205][T30800]  pin_user_pages_remote+0xed/0x140
[  368.426227][T30800]  ? __pfx_pin_user_pages_remote+0x10/0x10
[  368.426246][T30800]  ? mm_access+0x22d/0x2e0
[  368.426276][T30800]  process_vm_rw_core.constprop.0+0x41b/0x9a0
[  368.426309][T30800]  ? rcu_is_watching+0x12/0xc0
[  368.426332][T30800]  ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10
[  368.426363][T30800]  ? iovec_from_user+0xbb/0x140
[  368.426391][T30800]  ? iovec_from_user+0xbb/0x140
[  368.426410][T30800]  process_vm_rw+0x216/0x2c0
[  368.426439][T30800]  ? __pfx_process_vm_rw+0x10/0x10
[  368.426494][T30800]  ? __pfx___mm_populate+0x10/0x10
[  368.426543][T30800]  ? xfd_validate_state+0x61/0x180
[  368.426573][T30800]  __ia32_sys_process_vm_writev+0xdf/0x1b0
[  368.426591][T30800]  ? lockdep_hardirqs_on+0x7c/0x110
[  368.426617][T30800]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  368.426645][T30800]  __do_fast_syscall_32+0x7c/0x3a0
[  368.426665][T30800]  do_fast_syscall_32+0x32/0x80
[  368.426681][T30800]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  368.426703][T30800] RIP: 0023:0xf711e579
[  368.426716][T30800] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  368.426733][T30800] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 000000000000015c
[  368.426750][T30800] RAX: ffffffffffffffda RBX: 0000000000001913 RCX: 0000000080c22000
[  368.426761][T30800] RDX: 000000000000002b RSI: 0000000080c22fa0 RDI: 0000000000000001
[  368.426771][T30800] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  368.426781][T30800] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  368.426791][T30800] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  368.426815][T30800]  </TASK>
[  368.700595][T30822] netlink: 10 bytes leftover after parsing attributes in process `syz.6.11524'.
[  368.782917][T30830] kvm: kvm [30829]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x4000007c) = 0x0
[  369.305352][T30860] kvm: kvm [30859]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x4000007c) = 0x0
[  369.622815][T30884] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11553'.
[  369.657812][T30887] team0: Device lo is loopback device. Loopback devices can't be added as a team port
[  369.661883][T30887] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  369.684742][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  369.778198][T30898] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  369.789481][T30902] netlink: 'syz.2.11560': attribute type 5 has an invalid length.
[  369.792827][T30902] netlink: 'syz.2.11560': attribute type 5 has an invalid length.
[  370.250775][T19042] kernel write not supported for file /uhid (pid: 19042 comm: kworker/3:4)
[  370.307783][T30944] netlink: 20 bytes leftover after parsing attributes in process `syz.3.11579'.
[  370.337939][ T1138] bond0: (slave bond_slave_0): link status definitely down, disabling slave
[  370.342485][T30948] overlayfs: conflicting lowerdir path
[  370.413791][ T5944] Bluetooth: hci1: ISO packet too small
[  370.590896][T30975] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  370.596348][T30975] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  370.668664][T30981] Process accounting resumed
[  370.719597][T30988] bio_check_eod: 14 callbacks suppressed
[  370.719608][T30988] syz.6.11599: attempt to access beyond end of device
[  370.719608][T30988] nbd6: rw=0, sector=64, nr_sectors = 1 limit=0
[  370.726525][T30988] syz.6.11599: attempt to access beyond end of device
[  370.726525][T30988] nbd6: rw=0, sector=256, nr_sectors = 1 limit=0
[  370.730473][T30988] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=256, location=256
[  370.733483][T30988] syz.6.11599: attempt to access beyond end of device
[  370.733483][T30988] nbd6: rw=0, sector=512, nr_sectors = 1 limit=0
[  370.737805][T30988] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=512, location=512
[  370.741115][T30988] syz.6.11599: attempt to access beyond end of device
[  370.741115][T30988] nbd6: rw=0, sector=64, nr_sectors = 2 limit=0
[  370.745326][T30988] syz.6.11599: attempt to access beyond end of device
[  370.745326][T30988] nbd6: rw=0, sector=512, nr_sectors = 2 limit=0
[  370.749429][T30988] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=256, location=256
[  370.752382][T30988] syz.6.11599: attempt to access beyond end of device
[  370.752382][T30988] nbd6: rw=0, sector=1024, nr_sectors = 2 limit=0
[  370.757307][T30988] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=512, location=512
[  370.761044][T30988] syz.6.11599: attempt to access beyond end of device
[  370.761044][T30988] nbd6: rw=0, sector=64, nr_sectors = 4 limit=0
[  370.765881][T30988] syz.6.11599: attempt to access beyond end of device
[  370.765881][T30988] nbd6: rw=0, sector=1024, nr_sectors = 4 limit=0
[  370.771131][T30988] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=256, location=256
[  370.777002][T30988] syz.6.11599: attempt to access beyond end of device
[  370.777002][T30988] nbd6: rw=0, sector=2048, nr_sectors = 4 limit=0
[  370.781453][T30988] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=512, location=512
[  370.785949][T30988] syz.6.11599: attempt to access beyond end of device
[  370.785949][T30988] nbd6: rw=0, sector=64, nr_sectors = 8 limit=0
[  370.790910][T30988] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=256, location=256
[  370.798175][T30988] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=512, location=512
[  370.801355][T30988] UDF-fs: warning (device nbd6): udf_fill_super: No partition found (1)
[  371.284489][T31026] input: syz1 as /devices/virtual/input/input50
[  371.684913][T31038] block nbd1: server does not support multiple connections per device.
[  371.688698][T31038] block nbd1: shutting down sockets
[  371.773461][T31047] netlink: 36 bytes leftover after parsing attributes in process `syz.6.11627'.
[  371.784095][T31048] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11626'.
[  371.892572][T31061] netlink: 31 bytes leftover after parsing attributes in process `syz.3.11633'.
[  371.954079][T31067] netlink: 1 bytes leftover after parsing attributes in process `syz.2.11635'.
[  371.957907][T31067] netlink: 12 bytes leftover after parsing attributes in process `syz.2.11635'.
[  371.961109][T31067] netlink: 1 bytes leftover after parsing attributes in process `syz.2.11635'.
[  372.429100][T31096] Process accounting resumed
[  372.612910][T31109] batadv0: entered promiscuous mode
[  372.745619][T31119] ptrace attach of ""[31120] was attempted by "/syz-executor exec"[31119]
[  373.020616][T31138] netlink: 20 bytes leftover after parsing attributes in process `syz.6.11668'.
[  374.183360][   T40] kauditd_printk_skb: 104 callbacks suppressed
[  374.183374][   T40] audit: type=1326 audit(2000000007.069:6954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31161 comm="syz.6.11678" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x7ffc0000
[  374.195217][   T40] audit: type=1326 audit(2000000007.069:6955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31161 comm="syz.6.11678" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x7ffc0000
[  374.203998][   T40] audit: type=1326 audit(2000000007.089:6956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31161 comm="syz.6.11678" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf7f94579 code=0x7ffc0000
[  374.212962][   T40] audit: type=1326 audit(2000000007.089:6957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31161 comm="syz.6.11678" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x7ffc0000
[  374.222229][   T40] audit: type=1326 audit(2000000007.089:6958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31161 comm="syz.6.11678" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x7ffc0000
[  374.230761][   T40] audit: type=1326 audit(2000000007.089:6959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31161 comm="syz.6.11678" exe="/syz-executor" sig=0 arch=40000003 syscall=287 compat=1 ip=0xf7f94579 code=0x7ffc0000
[  374.239091][   T40] audit: type=1326 audit(2000000007.089:6960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31161 comm="syz.6.11678" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x7ffc0000
[  374.249831][   T40] audit: type=1326 audit(2000000007.089:6961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31161 comm="syz.6.11678" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x7ffc0000
[  374.593066][T31176] binder: 31175:31176 ioctl c018620c 80000000 returned -1
[  374.632540][T31178] netlink: 232 bytes leftover after parsing attributes in process `syz.6.11687'.
[  374.791630][T31186] netlink: 8 bytes leftover after parsing attributes in process `syz.6.11691'.
[  374.884772][ T5944] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  374.910620][T31194] netlink: 'syz.7.11695': attribute type 8 has an invalid length.
[  374.938363][T31196] netlink: 28 bytes leftover after parsing attributes in process `syz.6.11696'.
[  375.079514][T31209] input: syz1 as /devices/virtual/input/input51
[  375.256600][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x7
[  375.259633][  T836] hid-generic 0000:0000:0000.0011: ignoring exceeding usage max
[  375.263965][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.267158][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.270116][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.272931][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.276682][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.279833][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.282885][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.286435][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.289695][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.292863][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.296354][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.299221][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.302283][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.305952][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.309001][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.311838][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.315236][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.318210][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.321314][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.324383][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.327715][  T836] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  375.333741][  T836] hid-generic 0000:0000:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  375.713184][T31235] loop6: detected capacity change from 0 to 524287999
[  375.725069][T31235] buffer_io_error: 6 callbacks suppressed
[  375.725079][T31235] Buffer I/O error on dev loop6, logical block 0, async page read
[  375.730817][T31235] Buffer I/O error on dev loop6, logical block 0, async page read
[  375.734107][T31235] Buffer I/O error on dev loop6, logical block 0, async page read
[  375.740015][T31235] Buffer I/O error on dev loop6, logical block 0, async page read
[  375.742798][T31235] Buffer I/O error on dev loop6, logical block 0, async page read
[  375.745825][T31235] Buffer I/O error on dev loop6, logical block 0, async page read
[  375.749600][T31235] Buffer I/O error on dev loop6, logical block 0, async page read
[  375.752846][T31235] Buffer I/O error on dev loop6, logical block 0, async page read
[  375.760141][T31235] ldm_validate_partition_table(): Disk read failed.
[  375.762642][T31235] Buffer I/O error on dev loop6, logical block 0, async page read
[  375.766448][T31235] Buffer I/O error on dev loop6, logical block 0, async page read
[  375.772154][T31235] Dev loop6: unable to read RDB block 0
[  375.775271][T31235]  loop6: unable to read partition table
[  375.778035][T31235] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[  375.846899][T31250] macsec0: entered promiscuous mode
[  375.849707][T31250] macsec5: entered allmulticast mode
[  375.851631][T31250] macsec0: entered allmulticast mode
[  375.853322][T31250] veth1_macvtap: entered allmulticast mode
[  375.902271][T31259] netlink: 'syz.3.11723': attribute type 11 has an invalid length.
[  375.905321][T31259] netlink: 44 bytes leftover after parsing attributes in process `syz.3.11723'.
[  376.968425][T31288] usb usb8: usbfs: process 31288 (syz.6.11738) did not claim interface 0 before use
[  377.187978][T31310] loop6: detected capacity change from 0 to 524287999
[  377.342516][T31324] netlink: 4 bytes leftover after parsing attributes in process `syz.6.11755'.
[  377.425041][T31334] wlan1 speed is unknown, defaulting to 1000
[  377.428404][T31334] wlan1 speed is unknown, defaulting to 1000
[  377.432257][T31334] wlan1 speed is unknown, defaulting to 1000
[  377.439976][T31334] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  377.449306][T31334] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  377.465509][T31334] wlan1 speed is unknown, defaulting to 1000
[  377.469729][T31334] wlan1 speed is unknown, defaulting to 1000
[  377.473150][T31334] wlan1 speed is unknown, defaulting to 1000
[  377.476271][T31334] wlan1 speed is unknown, defaulting to 1000
[  377.480079][T31334] wlan1 speed is unknown, defaulting to 1000
[  377.482662][T31334] wlan1 speed is unknown, defaulting to 1000
[  377.801748][T31367] sp0: Synchronizing with TNC
[  377.981158][  T836] kernel write not supported for file /input/event2 (pid: 836 comm: kworker/1:2)
[  378.016378][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  378.035199][T31388] netlink: 8 bytes leftover after parsing attributes in process `syz.6.11780'.
[  378.411424][T31418] input: syz0 as /devices/virtual/input/input52
[  379.114393][   T40] audit: type=1800 audit(2000000011.999:6962): pid=31450 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.11807" name="cgroup.controllers" dev="tmpfs" ino=15883 res=0 errno=0
[  379.925014][  T836] usb 7-1: new high-speed USB device number 28 using dummy_hcd
[  380.076879][  T836] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  380.081092][  T836] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  380.085158][  T836] usb 7-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  380.088863][  T836] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  380.097353][  T836] usb 7-1: config 0 descriptor??
[  380.260885][T31521] IPv6: NLM_F_CREATE should be specified when creating new route
[  380.267796][T31521] netlink: 'syz.6.11840': attribute type 8 has an invalid length.
[  380.309496][ T5948] usb 7-1: USB disconnect, device number 28
[  380.400585][T31528] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11844'.
[  380.862900][T31563] xt_cgroup: path and classid specified
[  380.941478][T31572] usb usb8: usbfs: process 31572 (syz.2.11865) did not claim interface 0 before use
[  381.323519][   T40] audit: type=1326 audit(2000000014.209:6963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31593 comm="syz.2.11871" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf711e579 code=0x0
[  381.560940][T31611] 9p: Unknown access argument `: -22
[  381.875099][T31638] netlink: 12 bytes leftover after parsing attributes in process `syz.3.11895'.
[  381.894284][T31642] netlink: 96 bytes leftover after parsing attributes in process `syz.6.11896'.
[  382.071809][T31660] cifs: Unknown parameter 'mode'
[  382.329110][T31691] netlink: 4 bytes leftover after parsing attributes in process `syz.2.11920'.
[  382.418896][T31703] netlink: 236 bytes leftover after parsing attributes in process `syz.7.11921'.
[  382.914769][   T34] usb 7-1: new full-speed USB device number 29 using dummy_hcd
[  383.080803][   T34] usb 7-1: config index 0 descriptor too short (expected 156, got 27)
[  383.083841][   T34] usb 7-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  383.087646][   T34] usb 7-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10
[  383.091175][   T34] usb 7-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64
[  383.094475][   T34] usb 7-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  383.098744][   T34] usb 7-1: config 0 interface 0 has no altsetting 0
[  383.102645][   T34] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  383.105797][   T34] usb 7-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  383.108450][   T34] usb 7-1: Product: syz
[  383.109878][   T34] usb 7-1: Manufacturer: syz
[  383.111427][   T34] usb 7-1: SerialNumber: syz
[  383.114443][   T34] usb 7-1: config 0 descriptor??
[  383.117421][T31720] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  383.120731][   T34] ldusb 7-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  383.127376][   T34] ldusb 7-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  383.300626][T31739] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11942'.
[  383.325593][ T5828] usb 7-1: USB disconnect, device number 29
[  383.328717][ T5828] ldusb 7-1:0.0: LD USB Device #0 now disconnected
[  383.414776][   T40] audit: type=1326 audit(2000000016.299:6964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31736 comm="syz.6.11941" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x7fc00000
[  384.140400][   T40] audit: type=1326 audit(2000000017.019:6965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31736 comm="syz.6.11941" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f94579 code=0x7fc00000
[  384.154738][   T40] audit: type=1326 audit(2000000017.019:6966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31736 comm="syz.6.11941" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x7fc00000
[  384.168553][   T40] audit: type=1326 audit(2000000017.019:6967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31736 comm="syz.6.11941" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x7fc00000
[  384.185202][   T40] audit: type=1326 audit(2000000017.019:6968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31736 comm="syz.6.11941" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x7fc00000
[  384.194889][   T40] audit: type=1326 audit(2000000017.019:6969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31736 comm="syz.6.11941" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x7fc00000
[  384.213855][   T40] audit: type=1326 audit(2000000017.019:6970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31736 comm="syz.6.11941" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x7fc00000
[  384.224768][   T40] audit: type=1326 audit(2000000017.019:6971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31736 comm="syz.6.11941" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x7fc00000
[  384.232608][   T40] audit: type=1326 audit(2000000017.019:6972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31736 comm="syz.6.11941" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x7fc00000
[  385.162153][T31819] netlink: 12 bytes leftover after parsing attributes in process `syz.6.11979'.
[  385.174680][T31819] netlink: 'syz.6.11979': attribute type 12 has an invalid length.
[  385.646657][T31872] netlink: 'syz.7.12001': attribute type 4 has an invalid length.
[  385.734490][T31882] random: crng reseeded on system resumption
[  386.172489][T31911] lo: entered promiscuous mode
[  386.174725][T31911] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  387.604772][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  387.624067][T31988] netlink: 4 bytes leftover after parsing attributes in process `syz.6.12055'.
[  387.845148][   T34] usb 12-1: new high-speed USB device number 10 using dummy_hcd
[  387.845337][ T5950] Bluetooth: hci1: command 0x0c1a tx timeout
[  387.913418][T32006] mkiss: ax0: crc mode is auto.
[  387.996007][   T34] usb 12-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  387.999657][   T34] usb 12-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  388.002806][   T34] usb 12-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  388.006131][   T34] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  388.010403][T31986] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  388.014255][   T34] usb 12-1: Quirk or no altset; falling back to MIDI 1.0
[  388.217572][ T5828] usb 12-1: USB disconnect, device number 10
[  388.518530][T32035] netlink: 52 bytes leftover after parsing attributes in process `syz.6.12075'.
[  389.543472][T32112] netlink: 4 bytes leftover after parsing attributes in process `syz.6.12110'.
[  389.563889][T32114] netlink: 3 bytes leftover after parsing attributes in process `syz.3.12111'.
[  389.570389][T32114] batadv1: entered promiscuous mode
[  389.572061][T32114] batadv1: entered allmulticast mode
[  390.001149][T32135] netlink: 'syz.3.12120': attribute type 12 has an invalid length.
[  390.419094][T32158] netlink: 3 bytes leftover after parsing attributes in process `syz.2.12131'.
[  390.424831][T32158] batadv0: entered promiscuous mode
[  390.426470][T32158] batadv0: entered allmulticast mode
[  391.280499][T32227] loop6: detected capacity change from 0 to 524287999
[  391.288186][T32230] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  391.292346][T32230] bridge0: port 1(bridge_slave_0) entered disabled state
[  391.300774][T32230] bridge0: left allmulticast mode
[  391.357473][T32232] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12165'.
[  391.361045][T32232] team_slave_0: left promiscuous mode
[  391.363354][T32232] team_slave_1: left promiscuous mode
[  391.419841][T32232] team0 (unregistering): Port device team_slave_0 removed
[  391.426055][T32232] team0 (unregistering): Port device team_slave_1 removed
[  391.436258][T32232] team0 (unregistering): Port device syz_tun removed
[  391.446247][   T13] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  392.003143][T32284] netlink: 108 bytes leftover after parsing attributes in process `syz.3.12189'.
[  392.509297][T32304] loop4: detected capacity change from 0 to 524255231
[  392.571367][T32308] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12202'.
[  392.580821][T32312] vxcan0: tx address claim with dest, not broadcast
[  392.613964][T32308] team0 (unregistering): Port device team_slave_0 removed
[  392.621483][T32308] team0 (unregistering): Port device team_slave_1 removed
[  392.632668][T32308] team0 (unregistering): Port device geneve0 removed
[  393.094880][ T5981] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[  393.256761][ T5981] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  393.260758][ T5981] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  393.263768][ T5981] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  393.267344][ T5981] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  393.271676][T32325] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  393.275629][ T5981] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  393.450741][T32357] netlink: 'syz.6.12222': attribute type 25 has an invalid length.
[  393.453284][T32357] netlink: 'syz.6.12222': attribute type 28 has an invalid length.
[  393.486944][ T5981] usb 7-1: USB disconnect, device number 30
[  393.801116][T32380] netlink: 4 bytes leftover after parsing attributes in process `syz.6.12232'.
[  394.343186][T32413] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12246'.
[  395.043783][T32444] netlink: 24 bytes leftover after parsing attributes in process `syz.7.12261'.
[  395.485269][ T5828] usb 7-1: new high-speed USB device number 31 using dummy_hcd
[  395.564839][   T34] usb 12-1: new high-speed USB device number 11 using dummy_hcd
[  395.650136][T32472] netlink: 4 bytes leftover after parsing attributes in process `syz.6.12274'.
[  395.655620][ T5828] usb 7-1: Using ep0 maxpacket: 16
[  395.658737][ T5828] usb 7-1: config 0 has no interfaces?
[  395.661617][ T5828] usb 7-1: New USB device found, idVendor=5b8d, idProduct=3fea, bcdDevice=15.fe
[  395.664497][ T5828] usb 7-1: New USB device strings: Mfr=188, Product=138, SerialNumber=0
[  395.667693][ T5828] usb 7-1: Product: syz
[  395.669058][ T5828] usb 7-1: Manufacturer: syz
[  395.676874][ T5828] usb 7-1: config 0 descriptor??
[  395.734819][   T34] usb 12-1: Using ep0 maxpacket: 8
[  395.744164][   T34] usb 12-1: unable to get BOS descriptor or descriptor too short
[  395.748375][   T34] usb 12-1: unable to read config index 0 descriptor/start: -71
[  395.751566][   T34] usb 12-1: can't read configurations, error -71
[  395.809113][T32476] hugetlbfs: syz.6.12276 (32476): Using mlock ulimits for SHM_HUGETLB is obsolete
[  395.892777][ T5948] usb 7-1: USB disconnect, device number 31
[  395.932782][T32484] binder: 32483:32484 ioctl c0306201 80000100 returned -14
[  396.311646][T32498] ip6gretap0: entered promiscuous mode
[  396.805222][   T24] usb 11-1: new full-speed USB device number 15 using dummy_hcd
[  396.977230][   T24] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  396.980430][   T24] usb 11-1: config 0 has 1 interface, different from the descriptor's value: 2
[  396.983289][   T24] usb 11-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  396.992925][   T24] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  396.998274][   T24] usb 11-1: config 0 descriptor??
[  397.001922][   T24] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  397.004112][   T24] dvb-usb: bulk message failed: -22 (3/0)
[  397.013609][   T24] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  397.017489][   T24] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  397.020398][   T24] usb 11-1: media controller created
[  397.022027][   T40] kauditd_printk_skb: 69 callbacks suppressed
[  397.022035][   T40] audit: type=1326 audit(2000000285.910:7042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32551 comm="syz.2.12312" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  397.023408][   T24] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  397.024512][   T40] audit: type=1326 audit(2000000285.910:7043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32551 comm="syz.2.12312" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  397.037432][   T24] dvb-usb: bulk message failed: -22 (6/0)
[  397.044111][   T40] audit: type=1326 audit(2000000285.930:7044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32551 comm="syz.2.12312" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf711e579 code=0x7ffc0000
[  397.044116][   T24] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  397.044222][   T40] audit: type=1326 audit(2000000285.930:7045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32551 comm="syz.2.12312" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  397.053469][   T24] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.6/usb11/11-1/input/input55
[  397.062902][   T40] audit: type=1326 audit(2000000285.940:7046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32551 comm="syz.2.12312" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  397.071791][   T40] audit: type=1326 audit(2000000285.950:7047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32551 comm="syz.2.12312" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf711e579 code=0x7ffc0000
[  397.072352][   T24] dvb-usb: schedule remote query interval to 150 msecs.
[  397.082953][   T24] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  397.094969][   T40] audit: type=1326 audit(2000000285.950:7048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32551 comm="syz.2.12312" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf711e598 code=0x7ffc0000
[  397.101763][   T40] audit: type=1326 audit(2000000285.950:7049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32551 comm="syz.2.12312" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf711e598 code=0x7ffc0000
[  397.109329][   T40] audit: type=1326 audit(2000000285.950:7050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32551 comm="syz.2.12312" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf711e598 code=0x7ffc0000
[  397.116610][   T40] audit: type=1326 audit(2000000285.950:7051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32551 comm="syz.2.12312" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf711e598 code=0x7ffc0000
[  397.207569][ T6024] usb 11-1: USB disconnect, device number 15
[  397.221078][ T6024] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  398.013282][T32580] netlink: 8 bytes leftover after parsing attributes in process `syz.6.12323'.
[  398.148961][T32588] vti0: entered promiscuous mode
[  398.479645][T32621] bridge0: port 3(syz_tun) entered disabled state
[  398.481906][T32621] bridge0: port 1(bridge_slave_0) entered disabled state
[  398.531543][T32624] netlink: 36 bytes leftover after parsing attributes in process `syz.6.12344'.
[  398.562127][T32630] netlink: 20 bytes leftover after parsing attributes in process `syz.6.12347'.
[  398.656494][T32645] netlink: 4 bytes leftover after parsing attributes in process `syz.6.12355'.
[  398.814009][T32658] serio: Serial port ptm1
[  399.248442][T32673] bio_check_eod: 2 callbacks suppressed
[  399.248457][T32673] syz.6.12366: attempt to access beyond end of device
[  399.248457][T32673] nbd6: rw=0, sector=64, nr_sectors = 1 limit=0
[  399.257092][T32673] syz.6.12366: attempt to access beyond end of device
[  399.257092][T32673] nbd6: rw=0, sector=256, nr_sectors = 1 limit=0
[  399.262296][T32673] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=256, location=256
[  399.267837][T32673] syz.6.12366: attempt to access beyond end of device
[  399.267837][T32673] nbd6: rw=0, sector=512, nr_sectors = 1 limit=0
[  399.272974][T32673] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=512, location=512
[  399.279268][T32673] syz.6.12366: attempt to access beyond end of device
[  399.279268][T32673] nbd6: rw=0, sector=64, nr_sectors = 2 limit=0
[  399.285025][T32673] syz.6.12366: attempt to access beyond end of device
[  399.285025][T32673] nbd6: rw=0, sector=512, nr_sectors = 2 limit=0
[  399.290351][T32673] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=256, location=256
[  399.294360][T32673] syz.6.12366: attempt to access beyond end of device
[  399.294360][T32673] nbd6: rw=0, sector=1024, nr_sectors = 2 limit=0
[  399.299664][T32673] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=512, location=512
[  399.304430][T32673] syz.6.12366: attempt to access beyond end of device
[  399.304430][T32673] nbd6: rw=0, sector=64, nr_sectors = 4 limit=0
[  399.310318][T32673] syz.6.12366: attempt to access beyond end of device
[  399.310318][T32673] nbd6: rw=0, sector=1024, nr_sectors = 4 limit=0
[  399.314306][T32673] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=256, location=256
[  399.317910][T32673] syz.6.12366: attempt to access beyond end of device
[  399.317910][T32673] nbd6: rw=0, sector=2048, nr_sectors = 4 limit=0
[  399.322028][T32673] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=512, location=512
[  399.325645][T32673] syz.6.12366: attempt to access beyond end of device
[  399.325645][T32673] nbd6: rw=0, sector=64, nr_sectors = 8 limit=0
[  399.330208][T32673] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=256, location=256
[  399.333189][T32673] UDF-fs: error (device nbd6): udf_read_tagged: read failed, block=512, location=512
[  399.336413][T32673] UDF-fs: warning (device nbd6): udf_fill_super: No partition found (1)
[  400.111437][T32755] wlan1 speed is unknown, defaulting to 1000
[  400.547427][  T306] netlink: 212376 bytes leftover after parsing attributes in process `syz.6.12414'.
[  400.548068][ T5948] kernel read not supported for file /dsp (pid: 5948 comm: kworker/0:3)
[  400.625466][ T5948] kernel write not supported for file bpf-map (pid: 5948 comm: kworker/0:3)
[  400.696069][  T321] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12421'.
[  400.711725][  T323] netlink: 4 bytes leftover after parsing attributes in process `syz.7.12422'.
[  400.805020][ T5950] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  400.805342][ T5944] Bluetooth: hci4: command 0x1003 tx timeout
[  401.019752][  T346] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  401.021865][  T346] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  401.341387][  T373] openvswitch: netlink: VXLAN extension 2 out of range max 1
[  401.567970][  T396] openvswitch: netlink: Multiple metadata blocks provided
[  402.111313][  T452] openvswitch: netlink: Unknown VXLAN extension attribute 0
[  402.160459][  T458] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12485'.
[  402.326515][  T836] kernel write not supported for file /input/mouse0 (pid: 836 comm: kworker/1:2)
[  402.855683][ T7106] syz_tun (unregistering): left allmulticast mode
[  402.858712][ T7106] syz_tun (unregistering): left promiscuous mode
[  402.861704][ T7106] bridge0: port 3(syz_tun) entered disabled state
[  403.305387][ T5944] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  403.305801][  T544] block nbd7: shutting down sockets
[  403.312722][ T5944] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  403.316260][ T5944] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  403.319422][ T5944] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  403.320511][  T555] netlink: 136 bytes leftover after parsing attributes in process `syz.2.12531'.
[  403.327900][ T5944] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  403.328941][  T555] A link change request failed with some changes committed already. Interface wlan1 may have been left with an inconsistent configuration, please check.
[  403.352896][   T40] kauditd_printk_skb: 206 callbacks suppressed
[  403.352906][   T40] audit: type=1326 audit(2000000292.240:7258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=558 comm="syz.7.12532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  403.368904][  T552] wlan1 speed is unknown, defaulting to 1000
[  403.371665][   T40] audit: type=1326 audit(2000000292.240:7259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=558 comm="syz.7.12532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  403.379541][   T40] audit: type=1326 audit(2000000292.250:7260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=558 comm="syz.7.12532" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  403.386315][   T40] audit: type=1326 audit(2000000292.250:7261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=558 comm="syz.7.12532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  403.393459][   T40] audit: type=1326 audit(2000000292.250:7262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=558 comm="syz.7.12532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  403.400214][   T40] audit: type=1326 audit(2000000292.250:7263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=558 comm="syz.7.12532" exe="/syz-executor" sig=0 arch=40000003 syscall=41 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  403.407835][   T40] audit: type=1326 audit(2000000292.250:7264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=558 comm="syz.7.12532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  403.414244][   T40] audit: type=1326 audit(2000000292.250:7265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=558 comm="syz.7.12532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  403.425428][   T40] audit: type=1326 audit(2000000292.250:7266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=558 comm="syz.7.12532" exe="/syz-executor" sig=0 arch=40000003 syscall=197 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  403.433519][   T40] audit: type=1326 audit(2000000292.250:7267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=558 comm="syz.7.12532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  403.500780][  T552] chnl_net:caif_netlink_parms(): no params data found
[  403.639487][  T552] bridge0: port 1(bridge_slave_0) entered blocking state
[  403.641786][  T552] bridge0: port 1(bridge_slave_0) entered disabled state
[  403.644109][  T552] bridge_slave_0: entered allmulticast mode
[  403.647205][  T552] bridge_slave_0: entered promiscuous mode
[  403.650272][  T552] bridge0: port 2(bridge_slave_1) entered blocking state
[  403.652532][  T552] bridge0: port 2(bridge_slave_1) entered disabled state
[  403.655075][  T552] bridge_slave_1: entered allmulticast mode
[  403.657790][  T552] bridge_slave_1: entered promiscuous mode
[  403.697660][  T552] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  403.703133][  T552] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  403.742574][  T552] team0: Port device team_slave_0 added
[  403.746715][  T552] team0: Port device team_slave_1 added
[  403.786321][  T552] batman_adv: batadv0: Adding interface: batadv_slave_0
[  403.788525][  T552] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  403.799522][  T552] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  403.805149][  T552] batman_adv: batadv0: Adding interface: batadv_slave_1
[  403.808023][  T552] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  403.817685][  T552] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  403.915764][  T552] hsr_slave_0: entered promiscuous mode
[  403.918902][  T552] hsr_slave_1: entered promiscuous mode
[  403.921719][  T552] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  403.924079][  T552] Cannot create hsr debugfs directory
[  403.968639][  T604] netlink: 12 bytes leftover after parsing attributes in process `syz.2.12551'.
[  403.979062][  T606] misc userio: Begin command sent, but we're already running
[  404.012583][  T608] netlink: 48 bytes leftover after parsing attributes in process `syz.2.12553'.
[  404.099230][  T552] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  404.103509][  T552] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  404.107899][  T552] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  404.113146][  T552] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  404.179351][  T552] 8021q: adding VLAN 0 to HW filter on device bond0
[  404.194550][  T552] 8021q: adding VLAN 0 to HW filter on device team0
[  404.201754][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[  404.204430][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[  404.219691][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[  404.222605][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[  404.278972][  T552] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  404.307983][  T628] netlink: 28 bytes leftover after parsing attributes in process `syz.6.12559'.
[  404.403191][  T552] 8021q: adding VLAN 0 to HW filter on device batadv0
[  404.590733][  T552] veth0_vlan: entered promiscuous mode
[  404.596588][  T552] veth1_vlan: entered promiscuous mode
[  404.611586][  T552] veth0_macvtap: entered promiscuous mode
[  404.619829][  T552] veth1_macvtap: entered promiscuous mode
[  404.641775][  T552] batman_adv: batadv0: Interface activated: batadv_slave_0
[  404.650807][  T552] batman_adv: batadv0: Interface activated: batadv_slave_1
[  404.659634][  T552] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  404.663097][  T552] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  404.667233][  T552] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  404.670271][  T552] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  404.719699][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  404.722795][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  404.727789][  T658] program syz.6.12568 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  404.763467][   T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  404.767894][   T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  405.170592][  T691] kernel profiling enabled (shift: 9)
[  405.384013][  T567] Bluetooth: hci2: command tx timeout
[  405.401392][  T702] wlan1 speed is unknown, defaulting to 1000
[  405.444988][ T5944] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  405.845620][ T5981] usb 12-1: new high-speed USB device number 13 using dummy_hcd
[  406.004875][ T5981] usb 12-1: Using ep0 maxpacket: 32
[  406.010267][ T5981] usb 12-1: config index 0 descriptor too short (expected 35577, got 27)
[  406.014147][ T5981] usb 12-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  406.018928][ T5981] usb 12-1: config 0 has no interfaces?
[  406.021287][ T5981] usb 12-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  406.025789][ T5981] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  406.030973][ T5981] usb 12-1: config 0 descriptor??
[  406.366789][   T53] usb 12-1: USB disconnect, device number 13
[  406.791245][  T763] 8021q: adding VLAN 0 to HW filter on device bond2
[  406.795280][  T763] bond0: (slave bond2): Enslaving as an active interface with a down link
[  406.965005][ T1136] bond0: (slave bond2): link status definitely up
[  406.969139][ T1136] bond0: active interface up!
[  407.172364][  T790] program syz.8.12625 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  407.392872][  T816] IPv6: NLM_F_CREATE should be specified when creating new route
[  407.444726][ T5944] Bluetooth: hci2: command tx timeout
[  407.600040][  T849] overlay: filesystem on ./file0 not supported
[  407.655629][T19042] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[  407.805792][T19042] usb 7-1: Using ep0 maxpacket: 16
[  407.808748][T19042] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  407.811878][T19042] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7
[  407.816683][T19042] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x89 has invalid wMaxPacketSize 0
[  407.820146][T19042] usb 7-1: config 0 interface 0 has no altsetting 0
[  407.823823][T19042] usb 7-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  407.826982][T19042] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  407.829434][T19042] usb 7-1: Product: syz
[  407.830760][T19042] usb 7-1: Manufacturer: syz
[  407.832214][T19042] usb 7-1: SerialNumber: syz
[  407.834918][T19042] usb 7-1: config 0 descriptor??
[  408.041112][T19042] input: syz syz as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input57
[  408.044760][ T5335] synaptics_usb 7-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  408.052076][ T5335] synaptics_usb 7-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  408.056759][ T5335] synaptics_usb 7-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  408.061241][ T5335] synaptics_usb 7-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  408.240041][  T820] synaptics_usb 7-1:0.0: synusb_open - usb_submit_urb failed, error: -90
[  408.243880][T19042] usb 7-1: USB disconnect, device number 32
[  409.004220][  T915] netlink: 36 bytes leftover after parsing attributes in process `syz.8.12680'.
[  409.007517][  T915] netlink: 8 bytes leftover after parsing attributes in process `syz.8.12680'.
[  409.253723][  T928] block nbd8: not configured, cannot reconfigure
[  409.510308][T19042] kernel write not supported for file /amidi2 (pid: 19042 comm: kworker/3:4)
[  409.535580][ T5944] Bluetooth: hci2: command tx timeout
[  409.666185][  T991] netlink: 4 bytes leftover after parsing attributes in process `syz.8.12708'.
[  409.727104][  T997] overlay: filesystem on ./file0 not supported
[  409.850580][ T1014] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12718'.
[  409.857924][ T1014] netlink: 104 bytes leftover after parsing attributes in process `syz.2.12718'.
[  409.861711][ T1014] netlink: 104 bytes leftover after parsing attributes in process `syz.2.12718'.
[  410.198355][ T1051] netlink: 12 bytes leftover after parsing attributes in process `syz.7.12730'.
[  410.370506][ T1088] netlink: 292 bytes leftover after parsing attributes in process `syz.7.12744'.
[  410.467282][ T1108] netlink: 4 bytes leftover after parsing attributes in process `syz.7.12748'.
[  410.825346][T13681] usb 7-1: new high-speed USB device number 33 using dummy_hcd
[  410.986193][T13681] usb 7-1: Using ep0 maxpacket: 16
[  411.002361][T13681] usb 7-1: config 0 has no interfaces?
[  411.007753][T13681] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  411.011134][T13681] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  411.013971][T13681] usb 7-1: Product: syz
[  411.015918][T13681] usb 7-1: Manufacturer: syz
[  411.017442][T13681] usb 7-1: SerialNumber: syz
[  411.020204][T13681] usb 7-1: config 0 descriptor??
[  411.124834][   T13] bond0: (slave bond2): interface is now down
[  411.127245][   T13] bond0: now running without any active interface!
[  411.230688][T13681] usb 7-1: USB disconnect, device number 33
[  411.470100][ T1191] netlink: 12 bytes leftover after parsing attributes in process `syz.7.12775'.
[  411.604818][  T567] Bluetooth: hci2: command tx timeout
[  412.401517][ T1233] vlan3: entered allmulticast mode
[  412.403532][ T1233] macvtap0: entered allmulticast mode
[  412.740234][ T1255] vivid-004: disconnect
[  412.744437][ T1254] vivid-004: reconnect
[  413.044834][ T5944] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  413.045161][  T567] Bluetooth: hci4: command 0x1003 tx timeout
[  413.466155][ T1291] block nbd1: server does not support multiple connections per device.
[  413.469308][ T1296] netlink: 'syz.8.12823': attribute type 10 has an invalid length.
[  413.469764][ T1291] block nbd1: shutting down sockets
[  413.486545][ T1296] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  413.511008][ T1294] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  413.710522][ T1319] kvm: kvm [1318]: vcpu0, guest rIP: 0xfff0 Unhandled RDMSR(0x4000001b)
[  413.961120][ T1334] Bluetooth: hci0: load_link_keys: expected 51203 bytes, got 7 bytes
[  414.321297][ T1360] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x6
[  414.603287][ T1379] netlink: 'syz.8.12861': attribute type 1 has an invalid length.
[  414.868422][ T1402] __nla_validate_parse: 5 callbacks suppressed
[  414.868434][ T1402] netlink: 39 bytes leftover after parsing attributes in process `syz.6.12872'.
[  414.873963][ T1402] netlink: 8 bytes leftover after parsing attributes in process `syz.6.12872'.
[  415.020396][ T1418] netlink: 'syz.6.12878': attribute type 10 has an invalid length.
[  415.023263][ T1418] bridge_slave_1: left allmulticast mode
[  415.025991][ T1418] bridge_slave_1: left promiscuous mode
[  415.027849][ T1418] bridge0: port 2(bridge_slave_1) entered disabled state
[  415.033967][ T1418] bridge_slave_1: entered promiscuous mode
[  415.043006][ T1418] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  415.176315][ T1434] netlink: 'syz.6.12886': attribute type 10 has an invalid length.
[  415.192682][ T1434] mac80211_hwsim hwsim21 wlan1: entered promiscuous mode
[  415.200552][ T1434] bond0: (slave wlan1): Enslaving as an active interface with a down link
[  415.205457][   T34] wlan1 speed is unknown, defaulting to 1000
[  415.207872][T19042] wlan1 speed is unknown, defaulting to 1000
[  415.210065][T19042] syz0: Port: 1 Link DOWN
[  415.226982][ T1433] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  415.275825][ T1442] 8021q: adding VLAN 0 to HW filter on device bond1
[  415.651364][ T1463] netlink: 'syz.2.12899': attribute type 10 has an invalid length.
[  415.655707][ T1463] bridge_slave_1: left allmulticast mode
[  415.657688][ T1463] bridge_slave_1: left promiscuous mode
[  415.659596][ T1463] bridge0: port 2(bridge_slave_1) entered disabled state
[  415.668350][ T1463] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  416.622305][   T46] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  416.626520][   T46] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  416.757610][   T46] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  416.761097][   T46] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  416.839190][   T46] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  416.847006][   T46] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  416.936528][ T5954] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  416.941277][ T5954] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  416.946493][ T5954] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  416.950813][ T5954] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  416.953583][ T5954] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  416.973021][   T46] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  416.976557][   T46] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  416.997254][ T1504] wlan1 speed is unknown, defaulting to 1000
[  417.104792][   T46] bridge_slave_0: left allmulticast mode
[  417.106570][   T46] bridge_slave_0: left promiscuous mode
[  417.108508][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  417.343747][ T1517] relay: one or more items not logged [item size (56) > sub-buffer size (5)]
[  417.724024][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  417.732541][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  417.738043][   T46] bond0 (unregistering): (slave bond2): Releasing backup interface
[  417.741702][   T46] bond0 (unregistering): (slave bridge_slave_1): Releasing backup interface
[  417.750535][   T46] bond0 (unregistering): Released all slaves
[  417.758477][   T46] bond1 (unregistering): Released all slaves
[  417.846026][ T5944] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  417.846051][ T5954] Bluetooth: hci4: command 0x1003 tx timeout
[  417.897768][   T46] bond2 (unregistering): Released all slaves
[  417.931937][ T1532] netlink: 'syz.6.12929': attribute type 3 has an invalid length.
[  417.936845][ T1504] chnl_net:caif_netlink_parms(): no params data found
[  417.955502][   T40] kauditd_printk_skb: 41 callbacks suppressed
[  417.955514][   T40] audit: type=1326 audit(2000000306.850:7309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1533 comm="syz.7.12930" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  417.972638][   T40] audit: type=1326 audit(2000000306.850:7310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1533 comm="syz.7.12930" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  417.983544][   T40] audit: type=1326 audit(2000000306.850:7311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1533 comm="syz.7.12930" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  417.994467][   T40] audit: type=1326 audit(2000000306.850:7312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1533 comm="syz.7.12930" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  418.005977][   T46] : left promiscuous mode
[  418.007003][   T40] audit: type=1326 audit(2000000306.850:7313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1533 comm="syz.7.12930" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  418.031157][   T40] audit: type=1326 audit(2000000306.850:7314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1533 comm="syz.7.12930" exe="/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  418.042322][   T40] audit: type=1326 audit(2000000306.850:7315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1533 comm="syz.7.12930" exe="/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  418.185793][   T53] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  418.189888][   T46] tipc: Disabling bearer <eth:vlan0>
[  418.202446][   T46] tipc: Left network mode
[  418.241704][   T46] IPVS: stopping backup sync thread 30375 ...
[  418.281241][ T1504] bridge0: port 1(bridge_slave_0) entered blocking state
[  418.283597][ T1504] bridge0: port 1(bridge_slave_0) entered disabled state
[  418.289522][ T1504] bridge_slave_0: entered allmulticast mode
[  418.292287][ T1504] bridge_slave_0: entered promiscuous mode
[  418.316453][ T1504] bridge0: port 2(bridge_slave_1) entered blocking state
[  418.319540][ T1504] bridge0: port 2(bridge_slave_1) entered disabled state
[  418.322637][ T1504] bridge_slave_1: entered allmulticast mode
[  418.328644][ T1504] bridge_slave_1: entered promiscuous mode
[  418.387317][ T1504] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  418.400373][ T1504] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  418.451684][ T1504] team0: Port device team_slave_0 added
[  418.457762][ T1504] team0: Port device team_slave_1 added
[  418.490342][ T1504] batman_adv: batadv0: Adding interface: batadv_slave_0
[  418.493178][ T1504] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  418.504817][ T1504] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  418.519048][ T1504] batman_adv: batadv0: Adding interface: batadv_slave_1
[  418.522058][ T1504] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  418.533550][ T1504] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  418.551857][   T46] hsr_slave_0: left promiscuous mode
[  418.556253][   T46] hsr_slave_1: left promiscuous mode
[  418.582818][   T46] veth0_to_bond: left promiscuous mode
[  418.585376][   T46] veth1_macvtap: left promiscuous mode
[  418.587125][   T46] veth0_macvtap: left promiscuous mode
[  418.588930][   T46] veth1_vlan: left promiscuous mode
[  418.590703][   T46] veth0_vlan: left promiscuous mode
[  418.965046][ T5944] Bluetooth: hci3: command tx timeout
[  420.737866][ T1588] netlink: 8 bytes leftover after parsing attributes in process `syz.6.12954'.
[  420.741655][ T1584] netlink: 8 bytes leftover after parsing attributes in process `syz.7.12953'.
[  420.744515][ T1584] netlink: 128 bytes leftover after parsing attributes in process `syz.7.12953'.
[  420.761835][ T1504] hsr_slave_0: entered promiscuous mode
[  420.765528][ T1504] hsr_slave_1: entered promiscuous mode
[  420.772916][ T1504] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  420.775935][ T1504] Cannot create hsr debugfs directory
[  420.778082][ T1584] netlink: 8 bytes leftover after parsing attributes in process `syz.7.12953'.
[  421.054967][ T5944] Bluetooth: hci3: command tx timeout
[  421.247569][   T46] IPVS: stop unused estimator thread 0...
[  421.606601][ T1641] netlink: 4 bytes leftover after parsing attributes in process `syz.7.12978'.
[  421.609081][ T1504] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  421.615350][ T1504] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  421.620924][ T1504] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  421.628440][ T1504] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  421.651933][ T1647] netlink: 96 bytes leftover after parsing attributes in process `syz.7.12979'.
[  421.703423][ T1504] 8021q: adding VLAN 0 to HW filter on device bond0
[  421.718629][ T1504] 8021q: adding VLAN 0 to HW filter on device team0
[  421.723387][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  421.725836][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  421.732672][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  421.734991][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  421.816007][   T53] usb 11-1: new high-speed USB device number 17 using dummy_hcd
[  421.834181][ T1659] netlink: 212376 bytes leftover after parsing attributes in process `syz.7.12982'.
[  421.896655][ T1504] 8021q: adding VLAN 0 to HW filter on device batadv0
[  421.929386][ T1504] veth0_vlan: entered promiscuous mode
[  421.934622][ T1504] veth1_vlan: entered promiscuous mode
[  421.958613][ T1504] veth0_macvtap: entered promiscuous mode
[  421.965114][   T53] usb 11-1: Using ep0 maxpacket: 32
[  421.967241][ T1504] veth1_macvtap: entered promiscuous mode
[  421.970606][   T53] usb 11-1: config 8 has an invalid interface number: 197 but max is 0
[  421.973197][   T53] usb 11-1: config 8 has no interface number 0
[  421.976030][   T53] usb 11-1: config 8 interface 197 has no altsetting 0
[  421.981468][   T53] usb 11-1: New USB device found, idVendor=1b3d, idProduct=9303, bcdDevice=3e.5a
[  421.986367][ T1504] batman_adv: batadv0: Interface activated: batadv_slave_0
[  421.987455][   T53] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  421.993686][ T1504] batman_adv: batadv0: Interface activated: batadv_slave_1
[  422.002242][   T53] usb 11-1: Product: syz
[  422.003527][ T1504] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  422.003833][   T53] usb 11-1: Manufacturer: syz
[  422.008135][ T1504] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  422.010073][   T53] usb 11-1: SerialNumber: syz
[  422.013704][ T1504] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  422.019040][ T1504] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  422.073588][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  422.076750][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  422.110510][ T1138] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  422.113130][ T1138] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  422.164823][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  422.228021][   T53] ftdi_sio 11-1:8.197: FTDI USB Serial Device converter detected
[  422.231162][   T53] ftdi_sio ttyUSB0: unknown device type: 0x3e5a
[  422.235921][   T53] usb 11-1: USB disconnect, device number 17
[  422.239714][   T53] ftdi_sio 11-1:8.197: device disconnected
[  423.042333][   T40] audit: type=1326 audit(2000000311.930:7316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1712 comm="syz.7.13005" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  423.051803][   T40] audit: type=1326 audit(2000000311.930:7317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1712 comm="syz.7.13005" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  423.061440][   T40] audit: type=1326 audit(2000000311.930:7318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1712 comm="syz.7.13005" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f02598 code=0x7ffc0000
[  423.073351][   T40] audit: type=1326 audit(2000000311.930:7319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1712 comm="syz.7.13005" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  423.086938][   T40] audit: type=1326 audit(2000000311.930:7320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1712 comm="syz.7.13005" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7ffc0000
[  423.096956][   T40] audit: type=1326 audit(2000000311.930:7321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1712 comm="syz.7.13005" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f02598 code=0x7ffc0000
[  423.105887][   T40] audit: type=1326 audit(2000000311.930:7322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1712 comm="syz.7.13005" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f02598 code=0x7ffc0000
[  423.113603][   T40] audit: type=1326 audit(2000000311.930:7323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1712 comm="syz.7.13005" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f02598 code=0x7ffc0000
[  423.124763][ T5954] Bluetooth: hci3: command tx timeout
[  423.136025][   T40] audit: type=1326 audit(2000000311.930:7324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1712 comm="syz.7.13005" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f02598 code=0x7ffc0000
[  423.153086][   T40] audit: type=1326 audit(2000000311.930:7325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1712 comm="syz.7.13005" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f02598 code=0x7ffc0000
[  423.616091][ T1761] vlan0: entered promiscuous mode
[  423.618203][ T1761] bond0: entered promiscuous mode
[  423.619845][ T1761] bond_slave_0: entered promiscuous mode
[  423.621791][ T1761] bond_slave_1: entered promiscuous mode
[  424.137940][ T1804] syzkaller1: entered promiscuous mode
[  424.141291][ T1804] syzkaller1: entered allmulticast mode
[  424.204123][ T1812] netlink: 100 bytes leftover after parsing attributes in process `syz.8.13050'.
[  424.288938][ T1819] loop8: detected capacity change from 0 to 1
[  424.292544][ T1819] Dev loop8: unable to read RDB block 1
[  424.295251][ T1819]  loop8: unable to read partition table
[  424.297836][ T1819] loop8: partition table beyond EOD, truncated
[  424.300184][ T1819] loop_reread_partitions: partition scan of loop8 (þ被xü^>à– �) failed (rc=-5)
[  424.351233][ T1825] rtc_cmos 00:05: Alarms can be up to one day in the future
[  424.795725][ T6024] usb 13-1: new high-speed USB device number 2 using dummy_hcd
[  424.819158][ T1865] input input58: cannot allocate more than FF_MAX_EFFECTS effects
[  424.966102][ T6024] usb 13-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  424.969634][ T6024] usb 13-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  424.973171][ T6024] usb 13-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  424.978012][ T6024] usb 13-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  424.980973][ T6024] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  424.986022][ T6024] usb 13-1: config 0 descriptor??
[  425.046765][ T1881] netlink: 4 bytes leftover after parsing attributes in process `syz.6.13078'.
[  425.117772][   T53] rtc_cmos 00:05: Alarms can be up to one day in the future
[  425.134317][   T53] rtc_cmos 00:05: Alarms can be up to one day in the future
[  425.138630][   T53] rtc_cmos 00:05: Alarms can be up to one day in the future
[  425.142288][   T53] rtc_cmos 00:05: Alarms can be up to one day in the future
[  425.147542][   T53] rtc rtc0: __rtc_set_alarm: err=-22
[  425.204921][ T5954] Bluetooth: hci3: command 0x0419 tx timeout
[  425.422460][ T6024] plantronics 0003:047F:FFFF.0012: reserved main item tag 0xd
[  425.425922][ T6024] plantronics 0003:047F:FFFF.0012: No inputs registered, leaving
[  425.443003][ T6024] plantronics 0003:047F:FFFF.0012: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.8-1/input0
[  425.575800][   T53] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  425.613261][ T1920] netfs: Couldn't get user pages (rc=-14)
[  425.700776][   T34] usb 13-1: USB disconnect, device number 2
[  425.723028][ T1933] netlink: 40 bytes leftover after parsing attributes in process `syz.7.13101'.
[  426.696231][T13681] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  426.753461][ T1964] input: syz1 as /devices/virtual/input/input60
[  426.758005][ T1964] input: failed to attach handler leds to device input60, error: -6
[  427.285091][ T5944] Bluetooth: hci3: command 0x0419 tx timeout
[  427.737383][ T1972] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  427.959183][T13681] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  428.976145][ T2003] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13135'.
[  429.175841][T13681] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  430.250411][ T2052] netlink: 8 bytes leftover after parsing attributes in process `syz.8.13154'.
[  430.308088][ T2061] netlink: 'syz.7.13158': attribute type 2 has an invalid length.
[  430.311492][ T2061] netlink: 85376 bytes leftover after parsing attributes in process `syz.7.13158'.
[  430.346779][ T2068] veth1_to_bond: entered allmulticast mode
[  430.349452][ T2066] veth1_to_bond: left allmulticast mode
[  430.481273][ T2078] lo: Master is either lo or non-ether device
[  430.698996][ T2093] vxcan0: tx address claim with different name
[  430.792175][ T2100] openvswitch: netlink: IPv4 tun info is not correct
[  431.114703][   T34] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[  431.284989][   T34] usb 7-1: Using ep0 maxpacket: 8
[  431.292683][   T34] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  431.295764][   T34] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  431.299061][   T34] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  431.302048][   T34] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  431.305408][   T34] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  431.310361][   T34] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  431.313170][   T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  431.525692][   T34] usb 7-1: GET_CAPABILITIES returned 0
[  431.528085][   T34] usbtmc 7-1:16.0: can't read capabilities
[  431.728758][   T10] usb 7-1: USB disconnect, device number 34
[  432.626890][ T2159] netlink: 4 bytes leftover after parsing attributes in process `syz.8.13203'.
[  432.682263][ T2165] evm: overlay not supported
[  432.969507][ T2193] hub 6-0:1.0: USB hub found
[  432.971224][ T2193] hub 6-0:1.0: 1 port detected
[  432.997831][ T2198] loop2: detected capacity change from 0 to 7
[  433.001601][ T2198] Dev loop2: unable to read RDB block 7
[  433.003484][ T2198]  loop2: AHDI p1 p2
[  433.005964][ T2198] loop2: partition table partially beyond EOD, truncated
[  433.008285][ T2198] loop2: p1 size 4244635647 extends beyond EOD, truncated
[  433.155043][ T2210] overlayfs: upper fs does not support file handles, falling back to index=off.
[  433.159432][ T2210] overlayfs: fs on './file0' does not support file handles, falling back to xino=off.
[  433.297920][  T836] usb 12-1: new low-speed USB device number 14 using dummy_hcd
[  433.456607][  T836] usb 12-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  433.460980][  T836] usb 12-1: config 1 has 1 interface, different from the descriptor's value: 2
[  433.464770][  T836] usb 12-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 28528, setting to 8
[  433.469169][  T836] usb 12-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  433.473076][  T836] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  433.479256][ T2202] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  433.483750][  T836] hub 12-1:1.0: bad descriptor, ignoring hub
[  433.488816][  T836] hub 12-1:1.0: probe with driver hub failed with error -5
[  433.492226][  T836] cdc_wdm 12-1:1.0: skipping garbage
[  433.494684][  T836] cdc_wdm 12-1:1.0: skipping garbage
[  433.498206][  T836] cdc_wdm 12-1:1.0: cdc-wdm0: USB WDM device
[  433.500772][  T836] cdc_wdm 12-1:1.0: Unknown control protocol
[  433.804797][  T836] usb 12-1: USB disconnect, device number 14
[  434.124787][  T836] usb 12-1: new low-speed USB device number 15 using dummy_hcd
[  434.296189][  T836] usb 12-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  434.299546][  T836] usb 12-1: config 1 has 1 interface, different from the descriptor's value: 2
[  434.302331][  T836] usb 12-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 28528, setting to 8
[  434.305920][  T836] usb 12-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  434.308765][  T836] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  434.313024][ T2202] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  434.316773][  T836] hub 12-1:1.0: bad descriptor, ignoring hub
[  434.318695][  T836] hub 12-1:1.0: probe with driver hub failed with error -5
[  434.321209][  T836] cdc_wdm 12-1:1.0: skipping garbage
[  434.323376][  T836] cdc_wdm 12-1:1.0: skipping garbage
[  434.328032][  T836] cdc_wdm 12-1:1.0: cdc-wdm0: USB WDM device
[  434.330211][  T836] cdc_wdm 12-1:1.0: Unknown control protocol
[  434.498997][ T2259] binder: 2258:2259 ioctl c0306201 80000480 returned -14
[  434.547494][ T2261] netlink: 32 bytes leftover after parsing attributes in process `syz.8.13248'.
[  434.634801][  T836] usb 12-1: USB disconnect, device number 15
[  434.829872][ T2272] hub 6-0:1.0: USB hub found
[  434.831521][ T2272] hub 6-0:1.0: 1 port detected
[  435.105050][ T2294] Bluetooth: hci4: Frame reassembly failed (-84)
[  435.234726][ T6024] usb 7-1: new high-speed USB device number 35 using dummy_hcd
[  435.394862][ T6024] usb 7-1: Using ep0 maxpacket: 8
[  435.398871][ T6024] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  435.402188][ T6024] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  435.406853][ T6024] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  435.410526][ T6024] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  435.414740][ T6024] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  435.420085][ T6024] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  435.423815][ T6024] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  435.455734][   T53] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  435.513876][ T2310] syzkaller1: entered promiscuous mode
[  435.516179][ T2310] syzkaller1: entered allmulticast mode
[  435.638066][ T6024] usb 7-1: usb_control_msg returned -32
[  435.639893][ T6024] usbtmc 7-1:16.0: can't read capabilities
[  436.596967][   T53] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  436.712222][ T2344] input: syz1 as /devices/virtual/input/input61
[  437.134826][ T5944] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  437.748371][ T2362] syzkaller1: entered promiscuous mode
[  437.750205][ T2362] syzkaller1: entered allmulticast mode
[  438.007841][ T6040] usb 7-1: USB disconnect, device number 35
[  438.033148][ T2385] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  438.034871][ T2384] IPVS: stopping master sync thread 2385 ...
[  438.041430][ T2388] loop7: detected capacity change from 0 to 6
[  438.098818][ T2388] Dev loop7: unable to read RDB block 6
[  438.100693][ T2388]  loop7: unable to read partition table
[  438.102608][ T2388] loop7: partition table beyond EOD, truncated
[  438.104986][ T2388] loop_reread_partitions: partition scan of loop7 (îÝ·ÂU@™:ÖB$Œ{
WÎÉ´å) failed (rc=-5)
[  438.199822][ T2400] wlan1 speed is unknown, defaulting to 1000
[  438.534763][ T6040] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[  438.691893][ T6040] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  438.695440][ T6040] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  438.698570][ T6040] usb 7-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  438.701400][ T6040] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  438.705098][ T6040] usb 7-1: config 0 descriptor??
[  438.845000][   T34] usb 13-1: new high-speed USB device number 3 using dummy_hcd
[  439.014900][   T34] usb 13-1: Using ep0 maxpacket: 8
[  439.018580][   T34] usb 13-1: config 0 has an invalid interface number: 55 but max is 0
[  439.019833][ T2447] input: syz0 as /devices/virtual/input/input62
[  439.021805][   T34] usb 13-1: config 0 has no interface number 0
[  439.021833][   T34] usb 13-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  439.021847][   T34] usb 13-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  439.021860][   T34] usb 13-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  439.021873][   T34] usb 13-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  439.041764][   T34] usb 13-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  439.044890][   T34] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  439.049119][   T34] usb 13-1: config 0 descriptor??
[  439.053371][   T34] ldusb 13-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  439.081145][ T2449] syzkaller1: entered promiscuous mode
[  439.083123][ T2449] syzkaller1: entered allmulticast mode
[  439.119062][ T6040] cm6533_jd 0003:0D8C:0022.0013: unknown main item tag 0x0
[  439.121647][ T6040] cm6533_jd 0003:0D8C:0022.0013: unknown main item tag 0x0
[  439.126197][ T6040] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:0D8C:0022.0013/input/input63
[  439.136258][ T6040] cm6533_jd 0003:0D8C:0022.0013: input,hiddev1,hidraw0: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.2-1/input0
[  439.257494][   T34] usb 13-1: USB disconnect, device number 3
[  439.261033][   T34] ldusb 13-1:0.55: LD USB Device #0 now disconnected
[  439.319007][ T6040] usb 7-1: USB disconnect, device number 36
[  439.445503][   T53] usb 11-1: new high-speed USB device number 18 using dummy_hcd
[  439.446600][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  439.596291][   T53] usb 11-1: Using ep0 maxpacket: 8
[  439.599320][   T53] usb 11-1: config index 0 descriptor too short (expected 301, got 45)
[  439.602281][   T53] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  439.606018][   T53] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  439.609182][   T53] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  439.612384][   T53] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  439.617369][   T53] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  439.620306][   T53] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  439.843739][   T53] usb 11-1: GET_CAPABILITIES returned 0
[  439.853535][   T53] usbtmc 11-1:16.0: can't read capabilities
[  439.861029][ T2458] netlink: 48 bytes leftover after parsing attributes in process `syz.2.13337'.
[  439.900735][ T2464] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  440.050354][T12515] usb 11-1: USB disconnect, device number 18
[  440.187521][ T2482] 8021q: adding VLAN 0 to HW filter on device bond0
[  440.195816][ T2482] bond0: (slave rose0): Enslaving as an active interface with an up link
[  440.840494][ T2532] syzkaller1: entered promiscuous mode
[  440.842942][ T2532] syzkaller1: entered allmulticast mode
[  441.244892][   T34] usb 13-1: new high-speed USB device number 4 using dummy_hcd
[  441.404831][   T34] usb 13-1: Using ep0 maxpacket: 8
[  441.405075][   T53] usb 12-1: new high-speed USB device number 16 using dummy_hcd
[  441.408101][   T34] usb 13-1: config index 0 descriptor too short (expected 301, got 45)
[  441.412333][   T34] usb 13-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  441.415810][   T34] usb 13-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  441.419059][   T34] usb 13-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  441.422282][   T34] usb 13-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  441.426789][   T34] usb 13-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  441.429713][   T34] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  441.464945][T12515] usb 11-1: new high-speed USB device number 19 using dummy_hcd
[  441.556810][   T53] usb 12-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  441.561811][   T53] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  441.566062][   T53] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  441.570280][   T53] usb 12-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  441.574408][   T53] usb 12-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  441.578576][   T53] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  441.582347][   T53] usb 12-1: config 0 descriptor??
[  441.639462][T12515] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  441.643198][   T34] usb 13-1: GET_CAPABILITIES returned 0
[  441.645499][   T34] usbtmc 13-1:16.0: can't read capabilities
[  441.647767][T12515] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  441.650915][T12515] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  441.651029][ T2592] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13385'.
[  441.656544][T12515] usb 11-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  441.661301][T12515] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  441.665023][T12515] usb 11-1: config 0 descriptor??
[  441.841653][T13681] usb 13-1: USB disconnect, device number 4
[  441.995303][   T53] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  441.998118][   T53] plantronics 0003:047F:FFFF.0014: No inputs registered, leaving
[  442.003488][   T53] plantronics 0003:047F:FFFF.0014: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.7-1/input0
[  442.077766][T12515] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  442.080348][T12515] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  442.082769][T12515] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  442.085527][T12515] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  442.087831][T12515] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  442.090311][T12515] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0
[  442.093131][T12515] plantronics 0003:047F:FFFF.0015: No inputs registered, leaving
[  442.097432][T12515] plantronics 0003:047F:FFFF.0015: hiddev1,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  442.256815][   T10] usb 12-1: USB disconnect, device number 16
[  442.279143][   T53] usb 11-1: USB disconnect, device number 19
[  442.478538][ T2621] wlan1 speed is unknown, defaulting to 1000
[  443.419602][ T2678] netlink: 'syz.2.13412': attribute type 3 has an invalid length.
[  443.874890][T12515] usb 7-1: new high-speed USB device number 37 using dummy_hcd
[  444.046636][T12515] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  444.058520][T12515] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  444.062797][T12515] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  444.066263][T12515] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  444.070255][T12515] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  444.073158][T12515] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  444.077448][T12515] usb 7-1: config 0 descriptor??
[  444.485449][T12515] plantronics 0003:047F:FFFF.0016: No inputs registered, leaving
[  444.489660][T12515] plantronics 0003:047F:FFFF.0016: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  444.736385][ T6040] usb 7-1: USB disconnect, device number 37
[  445.274143][ T2741] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  445.998978][   T40] kauditd_printk_skb: 59 callbacks suppressed
[  445.998989][   T40] audit: type=1326 audit(2000000334.890:7385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2732 comm="syz.6.13431" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x7fc00000
[  446.910047][ T2806] syzkaller1: entered promiscuous mode
[  446.912276][ T2806] syzkaller1: entered allmulticast mode
[  447.078784][ T6024] IPVS: starting estimator thread 0...
[  447.166134][ T2820] IPVS: using max 45 ests per chain, 108000 per kthread
[  447.171752][ T2834] sp0: Synchronizing with TNC
[  447.361634][ T2854] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13476'.
[  447.368112][ T2854] ipvlan2: entered promiscuous mode
[  447.430085][ T2863] netlink: 4 bytes leftover after parsing attributes in process `syz.6.13479'.
[  447.975061][  T836] usb 7-1: new high-speed USB device number 38 using dummy_hcd
[  448.000070][ T2924] netlink: 28 bytes leftover after parsing attributes in process `syz.6.13504'.
[  448.005106][ T2924] netlink: 28 bytes leftover after parsing attributes in process `syz.6.13504'.
[  448.058089][ T2928] wlan1 speed is unknown, defaulting to 1000
[  448.090125][ T2929] netlink: 12 bytes leftover after parsing attributes in process `syz.7.13505'.
[  448.136189][  T836] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  448.140296][  T836] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  448.143893][  T836] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  448.148838][  T836] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  448.153635][  T836] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  448.160381][  T836] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  448.164555][  T836] usb 7-1: config 0 descriptor??
[  448.167826][ T2901] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  448.179876][ T2935] Bluetooth: hci0: expected 2 bytes, got 7 bytes
[  448.386402][ T2941] bridge_slave_0: left allmulticast mode
[  448.388295][ T2941] bridge_slave_0: left promiscuous mode
[  448.390151][ T2941] bridge0: port 1(bridge_slave_0) entered disabled state
[  448.396480][ T2941] bond0: (slave bridge_slave_1): Releasing backup interface
[  448.399589][ T2941] bridge_slave_1: left promiscuous mode
[  448.404193][ T2941] bond0: (slave bond_slave_0): Releasing backup interface
[  448.407598][ T2941] bond_slave_0: left promiscuous mode
[  448.411288][ T2941] bond0: (slave bond_slave_1): Releasing backup interface
[  448.414187][ T2941] bond_slave_1: left promiscuous mode
[  448.427706][ T2941] team0: Port device team_slave_0 removed
[  448.439478][ T2941] team0: Port device team_slave_1 removed
[  448.442527][ T2941] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  448.446615][ T2941] batman_adv: batadv0: Removing interface: batadv_slave_0
[  448.450048][ T2941] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  448.452977][ T2941] batman_adv: batadv0: Removing interface: batadv_slave_1
[  448.462651][ T2941] bond0: (slave wlan1): Releasing backup interface
[  448.467397][ T2941] mac80211_hwsim hwsim21 wlan1: left promiscuous mode
[  448.474185][ T2941] batman_adv: batadv0: Interface deactivated: ipvlan2
[  448.477145][ T2941] batman_adv: batadv0: Removing interface: ipvlan2
[  448.497779][ T5948] wlan1 speed is unknown, defaulting to 1000
[  448.575565][  T836] plantronics 0003:047F:FFFF.0017: reserved main item tag 0xd
[  448.578855][  T836] plantronics 0003:047F:FFFF.0017: No inputs registered, leaving
[  448.582636][  T836] plantronics 0003:047F:FFFF.0017: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  448.707129][ T2958] loop8: detected capacity change from 0 to 7
[  448.709916][ T2958] Dev loop8: unable to read RDB block 7
[  448.711756][ T2958]  loop8: AHDI p1 p2 p3
[  448.713086][ T2958] loop8: partition table partially beyond EOD, truncated
[  448.715526][ T2958] loop8: p1 start 1601398130 is beyond EOD, truncated
[  448.717634][ T2958] loop8: p2 start 1702059890 is beyond EOD, truncated
[  448.765989][ T2958] Dev loop8: unable to read RDB block 7
[  448.767882][ T2958]  loop8: AHDI p1 p2 p3
[  448.769303][ T2958] loop8: partition table partially beyond EOD, truncated
[  448.771653][ T2958] loop8: p1 start 1601398130 is beyond EOD, truncated
[  448.774237][ T2958] loop8: p2 start 1702059890 is beyond EOD, truncated
[  448.837130][ T6040] usb 7-1: USB disconnect, device number 38
[  448.930521][ T2963] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13517'.
[  449.921621][ T3027] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13538'.
[  450.164300][ T3035] netlink: 24 bytes leftover after parsing attributes in process `syz.7.13542'.
[  450.754790][   T10] usb 11-1: new high-speed USB device number 20 using dummy_hcd
[  450.904860][   T10] usb 11-1: Using ep0 maxpacket: 8
[  450.907706][   T10] usb 11-1: config index 0 descriptor too short (expected 301, got 45)
[  450.910367][   T10] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  450.913440][   T10] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  450.916691][   T10] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  450.919794][   T10] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  450.923740][   T10] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  450.930591][   T10] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  451.139014][   T10] usb 11-1: usb_control_msg returned -32
[  451.140878][   T10] usbtmc 11-1:16.0: can't read capabilities
[  451.285269][ T6040] usb 7-1: new high-speed USB device number 39 using dummy_hcd
[  451.454737][ T6040] usb 7-1: Using ep0 maxpacket: 32
[  451.458974][ T6040] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  451.463776][ T6040] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  451.466937][ T6040] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  451.469555][ T6040] usb 7-1: Product: syz
[  451.470890][ T6040] usb 7-1: Manufacturer: syz
[  451.472388][ T6040] usb 7-1: SerialNumber: syz
[  451.475331][ T6040] usb 7-1: config 0 descriptor??
[  451.478286][ T3080] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  451.481683][ T6040] hub 7-1:0.0: bad descriptor, ignoring hub
[  451.483824][ T6040] hub 7-1:0.0: probe with driver hub failed with error -5
[  451.689403][   T40] audit: type=1326 audit(2000000340.580:7386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3105 comm="syz.8.13573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  451.699956][   T40] audit: type=1326 audit(2000000340.580:7387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3105 comm="syz.8.13573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  451.707195][   T40] audit: type=1326 audit(2000000340.590:7388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3105 comm="syz.8.13573" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  451.714057][   T40] audit: type=1326 audit(2000000340.590:7389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3105 comm="syz.8.13573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  451.722105][   T40] audit: type=1326 audit(2000000340.590:7390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3105 comm="syz.8.13573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  451.729303][   T40] audit: type=1326 audit(2000000340.590:7391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3105 comm="syz.8.13573" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  451.736367][   T40] audit: type=1326 audit(2000000340.590:7392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3105 comm="syz.8.13573" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f72598 code=0x7ffc0000
[  451.743332][   T40] audit: type=1326 audit(2000000340.590:7393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3105 comm="syz.8.13573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  451.751021][   T40] audit: type=1326 audit(2000000340.590:7394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3105 comm="syz.8.13573" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  451.758108][   T40] audit: type=1326 audit(2000000340.590:7395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3105 comm="syz.8.13573" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f72598 code=0x7ffc0000
[  451.796591][   T53] usb 7-1: USB disconnect, device number 39
[  452.125107][   T53] usb 7-1: new high-speed USB device number 40 using dummy_hcd
[  452.275264][   T53] usb 7-1: Using ep0 maxpacket: 32
[  452.278370][   T53] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  452.284182][   T53] usb 7-1: string descriptor 0 read error: -22
[  452.286433][   T53] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  452.289254][   T53] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  452.293066][   T53] usb 7-1: config 0 descriptor??
[  452.295476][ T3080] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  452.298489][   T53] hub 7-1:0.0: bad descriptor, ignoring hub
[  452.300534][   T53] hub 7-1:0.0: probe with driver hub failed with error -5
[  452.527278][ T3124] netlink: 28 bytes leftover after parsing attributes in process `syz.7.13582'.
[  452.530246][ T3124] netlink: 28 bytes leftover after parsing attributes in process `syz.7.13582'.
[  452.605244][   T53] usb 7-1: USB disconnect, device number 40
[  452.747599][ T3136] debugfs: Invalid gid '0x00000000ffffffff'
[  452.935609][ T3153] netlink: 4 bytes leftover after parsing attributes in process `syz.7.13593'.
[  452.938955][ T3153] vcan0: entered promiscuous mode
[  452.940657][ T3153] vcan0: entered allmulticast mode
[  453.346310][ T3196] netlink: 4 bytes leftover after parsing attributes in process `syz.7.13613'.
[  453.351520][ T3196] netlink: 'syz.7.13613': attribute type 1 has an invalid length.
[  453.354114][ T3196] netlink: 12 bytes leftover after parsing attributes in process `syz.7.13613'.
[  453.537692][   T53] usb 11-1: USB disconnect, device number 20
[  453.602747][ T3217] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13621'.
[  453.665330][ T3221] loop8: detected capacity change from 0 to 1
[  453.668098][ T3221] Dev loop8: unable to read RDB block 1
[  453.669892][ T3221]  loop8: unable to read partition table
[  453.671991][ T3221] loop8: partition table beyond EOD, truncated
[  453.674545][ T3221] loop_reread_partitions: partition scan of loop8 (þ被xü^>à– �) failed (rc=-5)
[  453.727855][ T3227] netlink: 12 bytes leftover after parsing attributes in process `syz.8.13628'.
[  454.237183][ T3255] openvswitch: netlink: IPv4 tun info is not correct
[  456.148026][ T3325] vlan3: entered allmulticast mode
[  456.150866][ T3325] bond0: entered allmulticast mode
[  457.263231][ T3427] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  457.295218][ T3427] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  457.312935][ T3433] netlink: 212376 bytes leftover after parsing attributes in process `syz.7.13719'.
[  457.493736][ T3457] netlink: 8 bytes leftover after parsing attributes in process `syz.7.13731'.
[  457.587851][ T3466] binder: 3464:3466 ioctl c0306201 800003c0 returned -14
[  457.621861][ T3470] wlan1 speed is unknown, defaulting to 1000
[  457.784275][ T3488] vxcan1: tx drop: invalid da for name 0x0000000000000001
[  457.811232][ T3491] syz_tun: left allmulticast mode
[  457.813461][ T3491] syz_tun: left promiscuous mode
[  457.815830][ T3491] bridge0: port 3(syz_tun) entered disabled state
[  457.825977][ T3491] bridge_slave_1: left allmulticast mode
[  457.828001][ T3491] bridge_slave_1: left promiscuous mode
[  457.829902][ T3491] bridge0: port 2(bridge_slave_1) entered disabled state
[  457.848888][ T3491] bond0: (slave bond_slave_0): Releasing backup interface
[  457.851516][ T3491] bond_slave_0: left promiscuous mode
[  457.859228][ T3491] bond0: (slave bond_slave_1): Releasing backup interface
[  457.862540][ T3491] bond_slave_1: left promiscuous mode
[  457.902645][ T3491] team0: Port device team_slave_0 removed
[  457.940904][ T3491] team0: Port device team_slave_1 removed
[  457.943165][ T3491] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  457.945961][ T3491] batman_adv: batadv0: Removing interface: batadv_slave_0
[  457.951390][ T3491] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  457.953880][ T3491] batman_adv: batadv0: Removing interface: batadv_slave_1
[  458.132153][ T3509] vlan0: entered allmulticast mode
[  458.133769][ T3509] gretap0: entered allmulticast mode
[  458.555703][   T53] usb 7-1: new high-speed USB device number 41 using dummy_hcd
[  458.603635][ T3527] bridge_slave_0: left allmulticast mode
[  458.605614][ T3527] bridge_slave_0: left promiscuous mode
[  458.608813][ T3527] bridge0: port 1(bridge_slave_0) entered disabled state
[  458.612843][ T3527] bridge_slave_1: left allmulticast mode
[  458.614922][ T3527] bridge_slave_1: left promiscuous mode
[  458.616896][ T3527] bridge0: port 2(bridge_slave_1) entered disabled state
[  458.622334][ T3527] bond0: (slave bond_slave_0): Releasing backup interface
[  458.630136][ T3527] bond0: (slave bond_slave_1): Releasing backup interface
[  458.645513][ T3527] team0: Port device team_slave_0 removed
[  458.653112][ T3527] team0: Port device team_slave_1 removed
[  458.657130][ T3527] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  458.659480][ T3527] batman_adv: batadv0: Removing interface: batadv_slave_0
[  458.662521][ T3527] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  458.665156][ T3527] batman_adv: batadv0: Removing interface: batadv_slave_1
[  458.671970][ T3527] bond0: (slave wlan1): Releasing backup interface
[  458.705176][   T53] usb 7-1: Using ep0 maxpacket: 8
[  458.709081][   T53] usb 7-1: config 0 has no interfaces?
[  458.712815][   T53] usb 7-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  458.716214][   T53] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  458.718690][   T53] usb 7-1: Product: syz
[  458.720111][   T53] usb 7-1: Manufacturer: syz
[  458.721662][   T53] usb 7-1: SerialNumber: syz
[  458.724520][   T53] usb 7-1: config 0 descriptor??
[  458.860488][   T40] kauditd_printk_skb: 52 callbacks suppressed
[  458.860498][   T40] audit: type=1326 audit(2000000347.750:7448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3544 comm="syz.8.13764" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  458.870138][   T40] audit: type=1326 audit(2000000347.750:7449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3544 comm="syz.8.13764" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  458.877333][   T40] audit: type=1326 audit(2000000347.760:7450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3544 comm="syz.8.13764" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  458.886583][   T40] audit: type=1326 audit(2000000347.760:7451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3544 comm="syz.8.13764" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  458.896981][   T40] audit: type=1326 audit(2000000347.760:7452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3544 comm="syz.8.13764" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  458.906338][   T40] audit: type=1326 audit(2000000347.760:7453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3544 comm="syz.8.13764" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  458.913810][   T40] audit: type=1326 audit(2000000347.760:7454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3544 comm="syz.8.13764" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  458.922704][   T40] audit: type=1326 audit(2000000347.760:7455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3544 comm="syz.8.13764" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  458.931416][   T40] audit: type=1326 audit(2000000347.760:7456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3544 comm="syz.8.13764" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  458.934256][ T3520] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  458.940905][   T40] audit: type=1326 audit(2000000347.760:7457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3544 comm="syz.8.13764" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f72579 code=0x7ffc0000
[  458.945813][ T3520] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  458.961255][T12515] usb 7-1: USB disconnect, device number 41
[  459.277055][ T3573] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  459.464351][ T3590] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  459.515085][ T3595] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13788'.
[  459.537823][ T3599] netlink: 4 bytes leftover after parsing attributes in process `syz.6.13790'.
[  459.756041][ T6040] usb 12-1: new high-speed USB device number 17 using dummy_hcd
[  459.794832][ T5948] usb 7-1: new high-speed USB device number 42 using dummy_hcd
[  459.914706][ T6040] usb 12-1: Using ep0 maxpacket: 16
[  459.917873][ T6040] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  459.921426][ T6040] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  459.924555][ T6040] usb 12-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  459.931462][ T6040] usb 12-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  459.934421][ T6040] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  459.938397][ T6040] usb 12-1: config 0 descriptor??
[  459.954723][ T5948] usb 7-1: Using ep0 maxpacket: 8
[  459.958733][ T5948] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[  459.961106][ T5948] usb 7-1: config 0 has no interface number 0
[  459.962849][ T5948] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  459.966472][ T5948] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  459.969734][ T5948] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  459.972774][ T5948] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  459.977434][ T5948] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  459.980440][ T5948] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  459.983857][ T5948] usb 7-1: config 0 descriptor??
[  459.991507][ T5948] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  460.042552][ T3617] netlink: 'syz.6.13805': attribute type 3 has an invalid length.
[  460.193810][ T5948] usb 7-1: USB disconnect, device number 42
[  460.199490][ T5948] ldusb 7-1:0.55: LD USB Device #0 now disconnected
[  460.346648][ T6040] shield 0003:0955:7214.0018: unknown main item tag 0x0
[  460.349418][ T6040] shield 0003:0955:7214.0018: unknown main item tag 0x0
[  460.351773][ T6040] shield 0003:0955:7214.0018: unknown main item tag 0x0
[  460.354854][ T6040] shield 0003:0955:7214.0018: unknown main item tag 0x0
[  460.358606][ T6040] shield 0003:0955:7214.0018: unknown main item tag 0x0
[  460.362725][ T6040] input: HID 0955:7214 Haptics as /devices/virtual/input/input67
[  460.372198][ T6040] shield 0003:0955:7214.0018: Registered Thunderstrike controller
[  460.377362][ T6040] shield 0003:0955:7214.0018: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.7-1/input0
[  460.544808][ T3597] random: crng reseeded on system resumption
[  460.552660][ T5981] shield 0003:0955:7214.0018: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  460.557348][  T836] usb 12-1: USB disconnect, device number 17
[  460.560055][ T5981] shield 0003:0955:7214.0018: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[  460.563659][ T5981] shield 0003:0955:7214.0018: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  460.571775][ T5981] shield 0003:0955:7214.0018: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[  460.658394][ T5944] Bluetooth: hci3: command 0x0419 tx timeout
[  460.690512][ T3644] netlink: 4 bytes leftover after parsing attributes in process `syz.8.13812'.
[  460.987440][ T3661] input: syz1 as /devices/virtual/input/input68
[  461.113578][ T3682] veth1_to_team: entered promiscuous mode
[  461.117649][ T3682] veth0: entered promiscuous mode
[  461.120370][ T3681] veth0: left promiscuous mode
[  461.122277][ T3681] veth1_to_team: left promiscuous mode
[  461.345137][ T3703] syzkaller1: entered promiscuous mode
[  461.346900][ T3703] syzkaller1: entered allmulticast mode
[  461.444388][ T3709] wlan1 speed is unknown, defaulting to 1000
[  462.356646][   T24] usb 7-1: new high-speed USB device number 43 using dummy_hcd
[  462.517763][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  462.521178][   T24] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  462.524134][   T24] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  462.528593][   T24] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  462.531383][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  462.535768][   T24] usb 7-1: config 0 descriptor??
[  462.715208][ T2599] usb 11-1: new full-speed USB device number 21 using dummy_hcd
[  462.877927][ T2599] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  462.882249][ T2599] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  462.886866][ T2599] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  462.889944][ T2599] usb 11-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  462.897357][ T2599] usb 11-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  462.900275][ T2599] usb 11-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  462.902801][ T2599] usb 11-1: Manufacturer: syz
[  462.906525][ T2599] usb 11-1: config 0 descriptor??
[  462.948468][   T24] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  462.951183][   T24] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  462.953636][   T24] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  462.956265][   T24] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  462.958652][   T24] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  462.961027][   T24] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  462.964021][   T24] plantronics 0003:047F:FFFF.0019: No inputs registered, leaving
[  462.969007][   T24] plantronics 0003:047F:FFFF.0019: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  463.175577][ T2599] rc_core: IR keymap rc-hauppauge not found
[  463.177455][ T2599] Registered IR keymap rc-empty
[  463.179317][ T2599] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  463.197013][ T2599] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  463.216970][ T2599] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/rc/rc0
[  463.221433][ T2599] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/rc/rc0/input69
[  463.227104][ T2599] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  463.245696][ T2599] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  463.275389][ T2599] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  463.295417][ T2599] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  463.310551][ T3795] netlink: 4 bytes leftover after parsing attributes in process `syz.7.13878'.
[  463.315238][ T2599] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  463.322274][ T3795] netdevsim netdevsim7 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  463.326133][ T3795] netdevsim netdevsim7 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  463.329456][ T3795] netdevsim netdevsim7 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  463.332851][ T3795] netdevsim netdevsim7 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  463.343552][ T3795] netdevsim netdevsim7 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  463.345703][ T2599] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  463.347148][ T3795] netdevsim netdevsim7 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  463.352789][ T3795] netdevsim netdevsim7 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  463.355689][ T3795] netdevsim netdevsim7 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  463.365511][ T2599] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  463.375423][ T3797] batadv_slave_1: entered promiscuous mode
[  463.378206][ T3796] batadv_slave_1: left promiscuous mode
[  463.385440][ T2599] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  463.406657][ T2599] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  463.425316][ T2599] mceusb 11-1:0.0: Error: mce write submit urb error = -90
[  463.446212][ T2599] mceusb 11-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  463.449727][ T2599] mceusb 11-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  463.454213][ T2599] usb 11-1: USB disconnect, device number 21
[  463.573271][ T3809] binder: 3808:3809 ioctl c0306201 80000040 returned -14
[  464.308716][ T3874] netlink: 4 bytes leftover after parsing attributes in process `syz.7.13915'.
[  464.473652][ T3890] 9pnet: p9_errstr2errno: server reported unknown error J7œÍ
[  464.600012][ T3899] netlink: 4 bytes leftover after parsing attributes in process `syz.7.13927'.
[  464.610571][ T3899] ipvlan2: entered promiscuous mode
[  464.807592][ T3911] input: syz0 as /devices/virtual/input/input70
[  464.864687][ T6040] usb 11-1: new high-speed USB device number 22 using dummy_hcd
[  465.037901][ T6040] usb 11-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  465.041699][ T6040] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  465.046764][ T6040] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  465.050004][ T6040] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  465.054086][ T6040] usb 11-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  465.057670][ T6040] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  465.062379][ T6040] usb 11-1: config 0 descriptor??
[  465.067456][  T836] usb 7-1: USB disconnect, device number 43
[  465.151338][ T3938] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input71
[  465.485134][ T6040] plantronics 0003:047F:FFFF.001A: unknown main item tag 0x0
[  465.488022][ T6040] plantronics 0003:047F:FFFF.001A: No inputs registered, leaving
[  465.493155][ T6040] plantronics 0003:047F:FFFF.001A: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  465.746081][T19042] usb 11-1: USB disconnect, device number 22
[  466.116275][ T3976] netlink: 28 bytes leftover after parsing attributes in process `syz.8.13959'.
[  466.120984][ T3976] netlink: 28 bytes leftover after parsing attributes in process `syz.8.13959'.
[  466.356211][ T3999] netlink: 11 bytes leftover after parsing attributes in process `syz.6.13970'.
[  466.516884][ T4010] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13974'.
[  466.519819][ T4010] netlink: 12 bytes leftover after parsing attributes in process `syz.6.13974'.
[  466.531371][ T4010] netdevsim netdevsim6 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  466.534076][ T4010] netdevsim netdevsim6 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  466.537950][ T4010] netdevsim netdevsim6 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  466.540506][ T4010] netdevsim netdevsim6 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  466.960246][   T24] IPVS: starting estimator thread 0...
[  467.045715][ T4027] Bluetooth: hci0: expected 2 bytes, got 7 bytes
[  467.064793][ T4021] IPVS: using max 45 ests per chain, 108000 per kthread
[  467.105504][ T5948] usb 7-1: new high-speed USB device number 44 using dummy_hcd
[  467.178872][ T4033] syzkaller1: entered promiscuous mode
[  467.181173][ T4033] syzkaller1: entered allmulticast mode
[  467.266487][ T5948] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  467.270047][ T5948] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  467.273963][ T5948] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  467.277118][ T5948] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  467.281986][ T5948] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  467.285522][ T5948] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  467.290160][ T5948] usb 7-1: config 0 descriptor??
[  467.359016][ T4046] loop8: detected capacity change from 0 to 7
[  467.363436][ T4046] Dev loop8: unable to read RDB block 7
[  467.366572][ T4046]  loop8: AHDI p1 p2 p3
[  467.368376][ T4046] loop8: partition table partially beyond EOD, truncated
[  467.370747][ T4046] loop8: p1 start 1601398130 is beyond EOD, truncated
[  467.373299][ T4046] loop8: p2 start 1702059890 is beyond EOD, truncated
[  467.437795][ T4046] Dev loop8: unable to read RDB block 7
[  467.439737][ T4046]  loop8: AHDI p1 p2 p3
[  467.441122][ T4046] loop8: partition table partially beyond EOD, truncated
[  467.443383][ T4046] loop8: p1 start 1601398130 is beyond EOD, truncated
[  467.445884][ T4046] loop8: p2 start 1702059890 is beyond EOD, truncated
[  467.498676][  T836] IPVS: starting estimator thread 0...
[  467.584755][ T4052] IPVS: using max 46 ests per chain, 110400 per kthread
[  467.623569][ T4061] netlink: 12 bytes leftover after parsing attributes in process `syz.6.13994'.
[  467.682982][ T4065] netlink: 8 bytes leftover after parsing attributes in process `syz.8.13997'.
[  467.702239][ T5948] plantronics 0003:047F:FFFF.001B: unknown main item tag 0x0
[  467.705597][ T5948] plantronics 0003:047F:FFFF.001B: No inputs registered, leaving
[  467.710095][ T5948] plantronics 0003:047F:FFFF.001B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  467.763972][ T4069] syzkaller1: entered promiscuous mode
[  467.766242][ T4069] syzkaller1: entered allmulticast mode
[  467.956471][   T34] usb 7-1: USB disconnect, device number 44
[  468.013031][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  468.013054][   T40] audit: type=1326 audit(2000000356.900:7462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4034 comm="syz.7.13983" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x7fc00000
[  468.052453][   T40] audit: type=1326 audit(2000000356.940:7463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4077 comm="syz.7.14005" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x0
[  468.744788][ T5948] usb 11-1: new high-speed USB device number 23 using dummy_hcd
[  468.907698][ T5948] usb 11-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  468.911344][ T5948] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  468.914849][ T5948] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  468.917873][ T5948] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  468.921868][ T5948] usb 11-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  468.924862][ T5948] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  468.928534][ T5948] usb 11-1: config 0 descriptor??
[  469.339291][ T5948] plantronics 0003:047F:FFFF.001C: No inputs registered, leaving
[  469.344164][ T5948] plantronics 0003:047F:FFFF.001C: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  469.531139][ T4131] netlink: 16 bytes leftover after parsing attributes in process `syz.8.14025'.
[  469.606641][  T836] usb 11-1: USB disconnect, device number 23
[  469.780497][ T4151] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  469.783772][ T4151] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  469.983486][ T4170] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  470.207011][ T4182] 
[  470.207850][ T4182] =====================================================
[  470.210040][ T4182] WARNING: SOFTIRQ-safe -> SOFTIRQ-unsafe lock order detected
[  470.212701][ T4182] 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 Not tainted
[  470.216803][ T4182] -----------------------------------------------------
[  470.220014][ T4182] syz.2.14048/4182 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire:
[  470.223195][ T4182] ffff88806dec76a8 (&new->fa_lock){....}-{3:3}, at: kill_fasync+0x138/0x510
[  470.226812][ T4182] 
[  470.226812][ T4182] and this task is already holding:
[  470.229874][ T4182] ffff8880216de028 (&client->buffer_lock){....}-{3:3}, at: evdev_pass_values+0x10e/0x9b0
[  470.233177][ T4182] which would create a new lock dependency:
[  470.235034][ T4182]  (&client->buffer_lock){....}-{3:3} -> (&new->fa_lock){....}-{3:3}
[  470.237900][ T4182] 
[  470.237900][ T4182] but this new dependency connects a SOFTIRQ-irq-safe lock:
[  470.240901][ T4182]  (&dev->event_lock#2){..-.}-{3:3}
[  470.240932][ T4182] 
[  470.240932][ T4182] ... which became SOFTIRQ-irq-safe at:
[  470.246051][ T4182]   lock_acquire+0x179/0x350
[  470.247597][ T4182]   _raw_spin_lock_irqsave+0x3a/0x60
[  470.249281][ T4182]   input_inject_event+0x9f/0x390
[  470.251046][ T4182]   kd_sound_helper+0x17a/0x280
[  470.253119][ T4182]   input_handler_for_each_handle+0xd4/0x250
[  470.255566][ T4182]   call_timer_fn+0x19a/0x620
[  470.257585][ T4182]   __run_timers+0x6ef/0x960
[  470.259457][ T4182]   run_timer_base+0x114/0x190
[  470.261441][ T4182]   run_timer_softirq+0x1a/0x40
[  470.263479][ T4182]   handle_softirqs+0x216/0x8e0
[  470.265417][ T4182]   __irq_exit_rcu+0x109/0x170
[  470.267494][ T4182]   irq_exit_rcu+0x9/0x30
[  470.269271][ T4182]   sysvec_apic_timer_interrupt+0xa4/0xc0
[  470.271639][ T4182]   asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  470.274096][ T4182]   pv_native_safe_halt+0xf/0x20
[  470.276138][ T4182]   default_idle+0x13/0x20
[  470.278001][ T4182]   default_idle_call+0x6d/0xb0
[  470.279925][ T4182]   do_idle+0x391/0x510
[  470.281211][ T4182]   cpu_startup_entry+0x4f/0x60
[  470.282717][ T4182]   start_secondary+0x21d/0x2b0
[  470.284237][ T4182]   common_startup_64+0x13e/0x148
[  470.285778][ T4182] 
[  470.285778][ T4182] to a SOFTIRQ-irq-unsafe lock:
[  470.287937][ T4182]  (tasklist_lock){.+.+}-{3:3}
[  470.287953][ T4182] 
[  470.287953][ T4182] ... which became SOFTIRQ-irq-unsafe at:
[  470.291854][ T4182] ...
[  470.291859][ T4182]   lock_acquire+0x179/0x350
[  470.294220][ T4182]   _raw_read_lock+0x5f/0x70
[  470.295784][ T4182]   __do_wait+0x105/0x890
[  470.297569][ T4182]   do_wait+0x21e/0x5a0
[  470.299328][ T4182]   kernel_wait+0x9f/0x160
[  470.301240][ T4182]   call_usermodehelper_exec_work+0xf1/0x170
[  470.303712][ T4182]   process_one_work+0x9cc/0x1b70
[  470.305217][   T24] usb 12-1: new high-speed USB device number 18 using dummy_hcd
[  470.305809][ T4182]   worker_thread+0x6c8/0xf10
[  470.305837][ T4182]   kthread+0x3c5/0x780
[  470.312595][ T4182]   ret_from_fork+0x5d7/0x6f0
[  470.314524][ T4182]   ret_from_fork_asm+0x1a/0x30
[  470.316494][ T4182] 
[  470.316494][ T4182] other info that might help us debug this:
[  470.316494][ T4182] 
[  470.320585][ T4182] Chain exists of:
[  470.320585][ T4182]   &dev->event_lock#2 --> &client->buffer_lock --> tasklist_lock
[  470.320585][ T4182] 
[  470.325729][ T4182]  Possible interrupt unsafe locking scenario:
[  470.325729][ T4182] 
[  470.328901][ T4182]        CPU0                    CPU1
[  470.331071][ T4182]        ----                    ----
[  470.333246][ T4182]   lock(tasklist_lock);
[  470.334841][ T4182]                                local_irq_disable();
[  470.337389][ T4182]                                lock(&dev->event_lock#2);
[  470.340164][ T4182]                                lock(&client->buffer_lock);
[  470.342948][ T4182]   <Interrupt>
[  470.344382][ T4182]     lock(&dev->event_lock#2);
[  470.346329][ T4182] 
[  470.346329][ T4182]  *** DEADLOCK ***
[  470.346329][ T4182] 
[  470.349564][ T4182] 7 locks held by syz.2.14048/4182:
[  470.351663][ T4182]  #0: ffff8880277e0118 (&evdev->mutex){+.+.}-{4:4}, at: evdev_write+0x184/0x440
[  470.355354][ T4182]  #1: ffff888041379230 (&dev->event_lock#2){..-.}-{3:3}, at: input_inject_event+0x9f/0x390
[  470.359516][ T4182]  #2: ffffffff8e5c4700 (rcu_read_lock){....}-{1:3}, at: input_inject_event+0xbb/0x390
[  470.362910][ T4182]  #3: ffffffff8e5c4700 (rcu_read_lock){....}-{1:3}, at: input_pass_values+0x80/0x890
[  470.365896][ T4182]  #4: ffffffff8e5c4700 (rcu_read_lock){....}-{1:3}, at: evdev_events+0x7b/0x390
[  470.368916][ T4182]  #5: ffff8880216de028 (&client->buffer_lock){....}-{3:3}, at: evdev_pass_values+0x10e/0x9b0
[  470.372179][ T4182]  #6: ffffffff8e5c4700 (rcu_read_lock){....}-{1:3}, at: kill_fasync+0x62/0x510
[  470.374977][ T4182] 
[  470.374977][ T4182] the dependencies between SOFTIRQ-irq-safe lock and the holding lock:
[  470.378196][ T4182]  -> (&dev->event_lock#2){..-.}-{3:3} {
[  470.379981][ T4182]     IN-SOFTIRQ-W at:
[  470.381266][ T4182]                       lock_acquire+0x179/0x350
[  470.383250][ T4182]                       _raw_spin_lock_irqsave+0x3a/0x60
[  470.385458][ T4182]                       input_inject_event+0x9f/0x390
[  470.387585][ T4182]                       kd_sound_helper+0x17a/0x280
[  470.389702][ T4182]                       input_handler_for_each_handle+0xd4/0x250
[  470.392114][ T4182]                       call_timer_fn+0x19a/0x620
[  470.394114][ T4182]                       __run_timers+0x6ef/0x960
[  470.396088][ T4182]                       run_timer_base+0x114/0x190
[  470.398651][ T4182]                       run_timer_softirq+0x1a/0x40
[  470.401139][ T4182]                       handle_softirqs+0x216/0x8e0
[  470.403192][ T4182]                       __irq_exit_rcu+0x109/0x170
[  470.405263][ T4182]                       irq_exit_rcu+0x9/0x30
[  470.407228][ T4182]                       sysvec_apic_timer_interrupt+0xa4/0xc0
[  470.409579][ T4182]                       asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  470.412003][ T4182]                       pv_native_safe_halt+0xf/0x20
[  470.414073][ T4182]                       default_idle+0x13/0x20
[  470.416003][ T4182]                       default_idle_call+0x6d/0xb0
[  470.418340][ T4182]                       do_idle+0x391/0x510
[  470.420227][ T4182]                       cpu_startup_entry+0x4f/0x60
[  470.422284][ T4182]                       start_secondary+0x21d/0x2b0
[  470.424342][ T4182]                       common_startup_64+0x13e/0x148
[  470.426519][ T4182]     INITIAL USE at:
[  470.428216][ T4182]                      lock_acquire+0x179/0x350
[  470.430207][ T4182]                      _raw_spin_lock_irqsave+0x3a/0x60
[  470.432375][ T4182]                      input_inject_event+0x9f/0x390
[  470.434442][ T4182]                      led_set_brightness+0x217/0x290
[  470.436541][ T4182]                      kbd_led_trigger_activate+0xcb/0x110
[  470.438795][ T4182]                      led_trigger_set+0x59a/0xc50
[  470.440823][ T4182]                      led_trigger_set_default+0x1e0/0x2e0
[  470.442986][ T4182]                      led_classdev_register_ext+0x7b8/0xa10
[  470.445249][ T4182]                      input_leds_connect+0x552/0x8e0
[  470.447528][ T4182]                      input_attach_handler.isra.0+0x181/0x260
[  470.449885][ T4182]                      input_register_device+0xa84/0x1130
[  470.452081][ T4182]                      atkbd_connect+0x5da/0xa20
[  470.454059][ T4182]                      serio_driver_probe+0x77/0xb0
[  470.456092][ T4182]                      really_probe+0x23e/0xa90
[  470.457053][   T24] usb 12-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  470.458079][ T4182]                      __driver_probe_device+0x1de/0x440
[  470.458096][ T4182]                      driver_probe_device+0x4c/0x1b0
[  470.458111][ T4182]                      __driver_attach+0x283/0x580
[  470.458125][ T4182]                      bus_for_each_dev+0x13e/0x1d0
[  470.463232][   T24] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  470.465942][ T4182]                      serio_handle_event+0x247/0xa50
[  470.465974][ T4182]                      process_one_work+0x9cc/0x1b70
[  470.466000][ T4182]                      worker_thread+0x6c8/0xf10
[  470.466025][ T4182]                      kthread+0x3c5/0x780
[  470.466047][ T4182]                      ret_from_fork+0x5d7/0x6f0
[  470.466071][ T4182]                      ret_from_fork_asm+0x1a/0x30
[  470.466090][ T4182]   }
[  470.466096][ T4182]   ... key      at: [<ffffffff9b0bb6c0>] __key.7+0x0/0x40
[  470.466119][ T4182] -> (&client->buffer_lock){....}-{3:3} {
[  470.466146][ T4182]    INITIAL USE at:
[  470.466155][ T4182]                    lock_acquire+0x179/0x350
[  470.466178][ T4182]                    _raw_spin_lock+0x2e/0x40
[  470.466207][ T4182]                    evdev_pass_values+0x10e/0x9b0
[  470.466229][ T4182]                    evdev_events+0x1bb/0x390
[  470.466252][ T4182]                    input_pass_values+0x6c4/0x890
[  470.466276][ T4182]                    input_handle_event+0xf00/0x14d0
[  470.466300][ T4182]                    input_inject_event+0x1cd/0x390
[  470.466323][ T4182]                    evdev_write+0x2e1/0x440
[  470.466341][ T4182]                    vfs_write+0x29d/0x1150
[  470.466361][ T4182]                    ksys_write+0x1f8/0x250
[  470.466382][ T4182]                    __do_fast_syscall_32+0x7c/0x3a0
[  470.466398][ T4182]                    do_fast_syscall_32+0x32/0x80
[  470.466413][ T4182]                    entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  470.466433][ T4182]  }
[  470.466438][ T4182]  ... key      at: [<ffffffff9b0bbb40>] __key.1+0x0/0x40
[  470.466458][ T4182]  ... acquired at:
[  470.466464][ T4182]    _raw_spin_lock+0x2e/0x40
[  470.466485][ T4182]    evdev_pass_values+0x10e/0x9b0
[  470.466507][ T4182]    evdev_events+0x1bb/0x390
[  470.466529][ T4182]    input_pass_values+0x6c4/0x890
[  470.473013][   T24] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  470.474167][ T4182]    input_handle_event+0xf00/0x14d0
[  470.474187][ T4182]    input_inject_event+0x1cd/0x390
[  470.474200][ T4182]    evdev_write+0x2e1/0x440
[  470.481592][   T24] usb 12-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  470.481663][ T4182]    vfs_write+0x29d/0x1150
[  470.484569][   T24] usb 12-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  470.487033][ T4182]    ksys_write+0x1f8/0x250
[  470.489621][   T24] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  470.491543][ T4182]    __do_fast_syscall_32+0x7c/0x3a0
[  470.491557][ T4182]    do_fast_syscall_32+0x32/0x80
[  470.491566][ T4182]    entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  470.491579][ T4182] 
[  470.491582][ T4182] 
[  470.491582][ T4182] the dependencies between the lock to be acquired
[  470.491586][ T4182]  and SOFTIRQ-irq-unsafe lock:
[  470.505614][   T24] usb 12-1: config 0 descriptor??
[  470.507897][ T4182]   ->
[  470.511090][ T4176] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  470.513058][ T4182]  (tasklist_lock){.+.+}-{3:3} {
[  470.589363][ T4182]      HARDIRQ-ON-R at:
[  470.591137][ T4182]                         lock_acquire+0x179/0x350
[  470.593967][ T4182]                         _raw_read_lock+0x5f/0x70
[  470.596685][ T4182]                         __do_wait+0x105/0x890
[  470.599340][ T4182]                         do_wait+0x21e/0x5a0
[  470.601936][ T4182]                         kernel_wait+0x9f/0x160
[  470.604618][ T4182]                         call_usermodehelper_exec_work+0xf1/0x170
[  470.607883][ T4182]                         process_one_work+0x9cc/0x1b70
[  470.610812][ T4182]                         worker_thread+0x6c8/0xf10
[  470.613693][ T4182]                         kthread+0x3c5/0x780
[  470.616475][ T4182]                         ret_from_fork+0x5d7/0x6f0
[  470.620208][ T4182]                         ret_from_fork_asm+0x1a/0x30
[  470.623039][ T4182]      SOFTIRQ-ON-R at:
[  470.624589][ T4182]                         lock_acquire+0x179/0x350
[  470.626814][ T4182]                         _raw_read_lock+0x5f/0x70
[  470.629507][ T4182]                         __do_wait+0x105/0x890
[  470.632110][ T4182]                         do_wait+0x21e/0x5a0
[  470.634652][ T4182]                         kernel_wait+0x9f/0x160
[  470.637359][ T4182]                         call_usermodehelper_exec_work+0xf1/0x170
[  470.640506][ T4182]                         process_one_work+0x9cc/0x1b70
[  470.643037][ T4182]                         worker_thread+0x6c8/0xf10
[  470.645634][ T4182]                         kthread+0x3c5/0x780
[  470.647897][ T4182]                         ret_from_fork+0x5d7/0x6f0
[  470.650003][ T4182]                         ret_from_fork_asm+0x1a/0x30
[  470.652176][ T4182]      INITIAL USE at:
[  470.653667][ T4182]                        lock_acquire+0x179/0x350
[  470.656111][ T4182]                        _raw_write_lock_irq+0x36/0x50
[  470.658325][ T4182]                        copy_process+0x4caf/0x76a0
[  470.660607][ T4182]                        kernel_clone+0xfc/0x960
[  470.663124][ T4182]                        user_mode_thread+0xc7/0x110
[  470.665915][ T4182]                        rest_init+0x23/0x2b0
[  470.668460][ T4182]                        start_kernel+0x3ee/0x4d0
[  470.671141][ T4182]                        x86_64_start_reservations+0x18/0x30
[  470.674070][ T4182]                        x86_64_start_kernel+0x130/0x190
[  470.676310][ T4182]                        common_startup_64+0x13e/0x148
[  470.678539][ T4182]      INITIAL READ USE at:
[  470.680085][ T4182]                             lock_acquire+0x179/0x350
[  470.682192][ T4182]                             _raw_read_lock+0x5f/0x70
[  470.684513][ T4182]                             __do_wait+0x105/0x890
[  470.686585][ T4182]                             do_wait+0x21e/0x5a0
[  470.688757][ T4182]                             kernel_wait+0x9f/0x160
[  470.691015][ T4182]                             call_usermodehelper_exec_work+0xf1/0x170
[  470.693580][ T4182]                             process_one_work+0x9cc/0x1b70
[  470.695880][ T4182]                             worker_thread+0x6c8/0xf10
[  470.698692][ T4182]                             kthread+0x3c5/0x780
[  470.701286][ T4182]                             ret_from_fork+0x5d7/0x6f0
[  470.704110][ T4182]                             ret_from_fork_asm+0x1a/0x30
[  470.706943][ T4182]    }
[  470.707866][ T4182]    ... key      at: [<ffffffff8e20c098>] tasklist_lock+0x18/0x40
[  470.710304][ T4182]    ... acquired at:
[  470.711558][ T4182]    _raw_read_lock+0x5f/0x70
[  470.713051][ T4182]    send_sigurg+0xed/0xc80
[  470.714482][ T4182]    sk_send_sigurg+0x76/0x360
[  470.715992][ T4182]    unix_stream_sendmsg+0xeb3/0x11d0
[  470.717817][ T4182]    ____sys_sendmsg+0xa98/0xc70
[  470.719395][ T4182]    ___sys_sendmsg+0x134/0x1d0
[  470.720922][ T4182]    __sys_sendmsg+0x16d/0x220
[  470.722428][ T4182]    __do_fast_syscall_32+0x7c/0x3a0
[  470.724109][ T4182]    do_fast_syscall_32+0x32/0x80
[  470.725688][ T4182]    entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  470.727639][ T4182] 
[  470.728386][ T4182]  -> (&f_owner->lock){....}-{3:3} {
[  470.730079][ T4182]     INITIAL USE at:
[  470.731308][ T4182]                      lock_acquire+0x179/0x350
[  470.733214][ T4182]                      _raw_write_lock_irq+0x36/0x50
[  470.735193][ T4182]                      __f_setown+0x61/0x3c0
[  470.737100][ T4182]                      f_setown+0x122/0x290
[  470.739478][ T4182]                      sock_ioctl+0x467/0x6b0
[  470.741393][ T4182]                      compat_sock_ioctl+0x4e3/0x730
[  470.743476][ T4182]                      __ia32_compat_sys_ioctl+0x242/0x370
[  470.745672][ T4182]                      __do_fast_syscall_32+0x7c/0x3a0
[  470.747822][ T4182]                      do_fast_syscall_32+0x32/0x80
[  470.749860][ T4182]                      entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  470.752502][ T4182]     INITIAL READ USE at:
[  470.753934][ T4182]                           lock_acquire+0x179/0x350
[  470.756029][ T4182]                           _raw_read_lock_irq+0x67/0x80
[  470.758263][ T4182]                           f_getown+0x57/0x300
[  470.760238][ T4182]                           sock_ioctl+0x1f2/0x6b0
[  470.762291][ T4182]                           compat_sock_ioctl+0x4e3/0x730
[  470.764501][ T4182]                           __ia32_compat_sys_ioctl+0x242/0x370
[  470.766856][ T4182]                           __do_fast_syscall_32+0x7c/0x3a0
[  470.769174][ T4182]                           do_fast_syscall_32+0x32/0x80
[  470.771347][ T4182]                           entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  470.773989][ T4182]   }
[  470.774833][ T4182]   ... key      at: [<ffffffff9ade9740>] __key.1+0x0/0x40
[  470.777147][ T4182]   ... acquired at:
[  470.778633][ T4182]    _raw_read_lock_irqsave+0x74/0x90
[  470.780250][ T4182]    send_sigio+0x31/0x3e0
[  470.781587][ T4182]    kill_fasync+0x214/0x510
[  470.783002][ T4182]    lease_break_callback+0x23/0x30
[  470.784623][ T4182]    __break_lease+0x671/0x1810
[  470.786101][ T4182]    do_dentry_open+0x6e1/0x1c10
[  470.787760][ T4182]    vfs_open+0x82/0x3f0
[  470.789124][ T4182]    path_openat+0x1de4/0x2cb0
[  470.790634][ T4182]    do_filp_open+0x20b/0x470
[  470.792135][ T4182]    do_sys_openat2+0x11b/0x1d0
[  470.793668][ T4182]    __ia32_compat_sys_open+0x146/0x1e0
[  470.795400][ T4182]    __do_fast_syscall_32+0x7c/0x3a0
[  470.797130][ T4182]    do_fast_syscall_32+0x32/0x80
[  470.798754][ T4182]    entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  470.800784][ T4182] 
[  470.801555][ T4182] -> (&new->fa_lock){....}-{3:3} {
[  470.803176][ T4182]    INITIAL USE at:
[  470.804425][ T4182]                    lock_acquire+0x179/0x350
[  470.806325][ T4182]                    _raw_write_lock_irq+0x36/0x50
[  470.808455][ T4182]                    fasync_remove_entry+0xb2/0x1e0
[  470.810508][ T4182]                    fasync_helper+0xaf/0xd0
[  470.812403][ T4182]                    sock_fasync+0x92/0x140
[  470.814263][ T4182]                    __fput+0x968/0xb70
[  470.816004][ T4182]                    task_work_run+0x14d/0x240
[  470.818024][ T4182]                    exit_to_user_mode_loop+0xeb/0x110
[  470.820165][ T4182]                    __do_fast_syscall_32+0x2ac/0x3a0
[  470.822261][ T4182]                    do_fast_syscall_32+0x32/0x80
[  470.824268][ T4182]                    entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  470.826704][ T4182]    INITIAL READ USE at:
[  470.828130][ T4182]                         lock_acquire+0x179/0x350
[  470.830190][ T4182]                         _raw_read_lock_irqsave+0x74/0x90
[  470.832456][ T4182]                         kill_fasync+0x138/0x510
[  470.834457][ T4182]                         vcs_notifier+0x16c/0x200
[  470.836498][ T4182]                         notifier_call_chain+0xb9/0x410
[  470.838717][ T4182]                         atomic_notifier_call_chain+0x71/0x1c0
[  470.841096][ T4182]                         vcs_scr_updated+0x80/0xb0
[  470.843144][ T4182]                         vcs_write+0xb8f/0xdb0
[  470.845103][ T4182]                         vfs_write+0x29d/0x1150
[  470.847128][ T4182]                         ksys_write+0x12a/0x250
[  470.849281][ T4182]                         __do_fast_syscall_32+0x7c/0x3a0
[  470.851417][ T4182]                         do_fast_syscall_32+0x32/0x80
[  470.853497][ T4182]                         entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  470.856070][ T4182]  }
[  470.856939][ T4182]  ... key      at: [<ffffffff9ade9700>] __key.0+0x0/0x40
[  470.859151][ T4182]  ... acquired at:
[  470.860376][ T4182]    lock_acquire+0x179/0x350
[  470.861862][ T4182]    _raw_read_lock_irqsave+0x74/0x90
[  470.863544][ T4182]    kill_fasync+0x138/0x510
[  470.865009][ T4182]    evdev_pass_values+0x619/0x9b0
[  470.866663][ T4182]    evdev_events+0x1bb/0x390
[  470.868180][ T4182]    input_pass_values+0x6c4/0x890
[  470.869828][ T4182]    input_handle_event+0xf00/0x14d0
[  470.871484][ T4182]    input_inject_event+0x1cd/0x390
[  470.873139][ T4182]    evdev_write+0x2e1/0x440
[  470.874605][ T4182]    vfs_write+0x29d/0x1150
[  470.876062][ T4182]    ksys_write+0x1f8/0x250
[  470.877547][ T4182]    __do_fast_syscall_32+0x7c/0x3a0
[  470.879217][ T4182]    do_fast_syscall_32+0x32/0x80
[  470.880812][ T4182]    entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  470.882840][ T4182] 
[  470.883614][ T4182] 
[  470.883614][ T4182] stack backtrace:
[  470.885456][ T4182] CPU: 3 UID: 0 PID: 4182 Comm: syz.2.14048 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787 #0 PREEMPT(full) 
[  470.885470][ T4182] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  470.885477][ T4182] Call Trace:
[  470.885482][ T4182]  <TASK>
[  470.885486][ T4182]  dump_stack_lvl+0x116/0x1f0
[  470.885502][ T4182]  check_irq_usage+0x7dc/0x920
[  470.885515][ T4182]  ? __pfx___smp_call_single_queue+0x10/0x10
[  470.885526][ T4182]  ? do_raw_spin_lock+0x12c/0x2b0
[  470.885543][ T4182]  ? check_path.constprop.0+0x24/0x50
[  470.885557][ T4182]  ? __lock_acquire+0x1285/0x1c90
[  470.885570][ T4182]  __lock_acquire+0x1285/0x1c90
[  470.885585][ T4182]  lock_acquire+0x179/0x350
[  470.885598][ T4182]  ? kill_fasync+0x138/0x510
[  470.885610][ T4182]  _raw_read_lock_irqsave+0x74/0x90
[  470.885625][ T4182]  ? kill_fasync+0x138/0x510
[  470.885635][ T4182]  kill_fasync+0x138/0x510
[  470.885645][ T4182]  evdev_pass_values+0x619/0x9b0
[  470.885660][ T4182]  evdev_events+0x1bb/0x390
[  470.885674][ T4182]  input_pass_values+0x6c4/0x890
[  470.885689][ T4182]  input_handle_event+0xf00/0x14d0
[  470.885703][ T4182]  ? _copy_from_user+0x59/0xd0
[  470.885720][ T4182]  input_inject_event+0x1cd/0x390
[  470.885735][ T4182]  evdev_write+0x2e1/0x440
[  470.885749][ T4182]  ? __pfx_evdev_write+0x10/0x10
[  470.885763][ T4182]  ? bpf_lsm_file_permission+0x9/0x10
[  470.885774][ T4182]  ? security_file_permission+0x71/0x210
[  470.885788][ T4182]  ? rw_verify_area+0xcf/0x680
[  470.885800][ T4182]  ? __pfx_evdev_write+0x10/0x10
[  470.885813][ T4182]  vfs_write+0x29d/0x1150
[  470.885828][ T4182]  ? __pfx_vfs_write+0x10/0x10
[  470.885841][ T4182]  ? find_held_lock+0x2b/0x80
[  470.885851][ T4182]  ? __fget_files+0x204/0x3c0
[  470.885865][ T4182]  ? __fget_files+0x20e/0x3c0
[  470.885880][ T4182]  ksys_write+0x1f8/0x250
[  470.885893][ T4182]  ? __pfx_ksys_write+0x10/0x10
[  470.885908][ T4182]  ? rcu_is_watching+0x12/0xc0
[  470.885919][ T4182]  __do_fast_syscall_32+0x7c/0x3a0
[  470.885932][ T4182]  do_fast_syscall_32+0x32/0x80
[  470.885942][ T4182]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  470.885955][ T4182] RIP: 0023:0xf70fe579
[  470.885964][ T4182] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  470.885974][ T4182] RSP: 002b:00000000f50ee55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  470.885984][ T4182] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[  470.885990][ T4182] RDX: 0000000000002250 RSI: 0000000000000000 RDI: 0000000000000000
[  470.885996][ T4182] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  470.886002][ T4182] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  470.886008][ T4182] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  470.886018][ T4182]  </TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  471.391241][   T13] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.406454][   T24] usbhid 12-1:0.0: can't add hid device: -71
[  471.408414][   T24] usbhid 12-1:0.0: probe with driver usbhid failed with error -71
[  471.411329][   T24] usb 12-1: USB disconnect, device number 18
[  471.470770][   T13] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.547460][   T13] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.607146][   T13] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.687727][   T13] bridge_slave_1: left allmulticast mode
[  471.689993][   T13] bridge_slave_1: left promiscuous mode
[  471.692464][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  471.696753][   T13] bridge_slave_0: left allmulticast mode
[  471.699040][   T13] bridge_slave_0: left promiscuous mode
[  471.701485][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  471.821160][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  471.825265][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  471.828577][   T13] bond0 (unregistering): Released all slaves
[  472.120801][   T13] hsr_slave_0: left promiscuous mode
[  472.123551][   T13] hsr_slave_1: left promiscuous mode
[  472.126417][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  472.129538][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  472.133069][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  472.136314][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  472.140764][   T13] veth1_macvtap: left promiscuous mode
[  472.142510][   T13] veth0_macvtap: left promiscuous mode
[  472.144270][   T13] veth1_vlan: left promiscuous mode
[  472.146070][   T13] veth0_vlan: left promiscuous mode
[  472.348771][   T13] team0 (unregistering): Port device team_slave_1 removed
[  472.394459][   T13] team0 (unregistering): Port device team_slave_0 removed
[  472.844472][   T13] IPVS: stop unused estimator thread 0...
[  472.898266][   T13] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  472.939898][   T13] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  472.998627][   T13] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  473.036895][   T13] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  473.102270][   T13] netdevsim netdevsim6 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  473.105748][   T13] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  473.147319][   T13] netdevsim netdevsim6 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  473.151384][   T13] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  473.216812][   T13] netdevsim netdevsim6 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  473.220113][   T13] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  473.298435][   T13] netdevsim netdevsim6 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  473.302472][   T13] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  473.643020][   T13] bond0 (unregistering): Released all slaves
[  473.845597][   T13] bond0 (unregistering): left promiscuous mode
[  473.855749][   T13] bond0 (unregistering): Released all slaves
[  473.956623][   T13] tipc: Left network mode
[  473.962058][   T13] tipc: Left network mode
[  474.145720][   T13] mac80211_hwsim hwsim20 wlan0 (unregistering): left allmulticast mode
[  474.220330][   T13] hsr_slave_0: left promiscuous mode
[  474.222401][   T13] hsr_slave_1: left promiscuous mode
[  474.227771][   T13] hsr_slave_0: left promiscuous mode
[  474.230203][   T13] hsr_slave_1: left promiscuous mode
[  474.246733][   T13] veth1_macvtap: left promiscuous mode
[  474.249128][   T13] veth0_macvtap: left promiscuous mode
[  474.251463][   T13] veth1_vlan: left promiscuous mode
[  474.253711][   T13] veth0_vlan: left promiscuous mode
[  474.257423][   T13] macsec0: left allmulticast mode
[  474.259797][   T13] veth1_macvtap: left allmulticast mode
[  474.262120][   T13] veth1_macvtap: left promiscuous mode
[  474.264329][   T13] veth1_vlan: left allmulticast mode
[  474.268576][   T13] veth1_vlan: left promiscuous mode
[  474.271127][   T13] veth0_vlan: left promiscuous mode
[  476.413571][   T13] IPVS: stop unused estimator thread 0...
[  476.416466][   T13] IPVS: stop unused estimator thread 0...

VM DIAGNOSIS:
12:53:20  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000002 RBX=0000000000000000 RCX=ffffffff8204723c RDX=ffff888075ea2440
RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000000014 RSP=ffffc90006ae7b08
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000010529
R12=ffff888075ea2440 R13=0000000000000000 R14=0000000000210008 R15=ffff88807258a280
RIP=ffffffff81bb8252 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809755f000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f71c3800 CR3=000000005b373000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffed1009f04648 RBX=ffffed1009f04649 RCX=ffffffff81984fed RDX=0000000000000001
RSI=0000000000000004 RDI=ffff88804f823240 RBP=ffffed1009f04648 RSP=ffffc90000590d48
R8 =0000000000000001 R9 =ffffed1009f04648 R10=ffff88804f823243 R11=ffffc90000590ff8
R12=ffff88804f823248 R13=ffff88804f823250 R14=ffff88804f823318 R15=ffffffff81aaaf40
RIP=ffffffff8221607f RFL=00000086 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809765f000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080098000 CR3=000000005629f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000006000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000029274c RBX=0000000000000002 RCX=ffffffff8b7c4be9 RDX=ffffed1005686646
RSI=ffffffff8c1562e0 RDI=ffffffff81918571 RBP=ffffed1003bdb910 RSP=ffffc9000047fdf8
R8 =0000000000000000 R9 =ffffed1005686645 R10=ffff88802b43322b R11=0000000000000001
R12=0000000000000002 R13=ffff88801dedc880 R14=ffffffff90a83250 R15=0000000000000000
RIP=ffffffff8b7c374f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809775f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000558b79178f40 CR3=000000004e39f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000006000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85580c55 RDI=ffffffff9b06da00 RBP=ffffffff9b06d9c0 RSP=ffffc90006bbf300
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9b06d9c0 R15=ffffffff85580bf0
RIP=ffffffff85580c7f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88809785f000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000031f1bff8 CR3=0000000068194000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffff00
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000