last executing test programs: 816.83292ms ago: executing program 3 (id=5138): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000000300)={@val={0x0, 0x800}, @val={0x1}, @mpls={[], @ipv4=@dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @rand_addr, @dev}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0xa, 0x0, 'nS#', 0x0, "214fa1"}}}}}, 0x32) 663.114451ms ago: executing program 1 (id=5143): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000340)={0x400000100002f}) write$uinput_user_dev(r0, &(0x7f0000000800)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, 0x45c) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) ioctl$UI_DEV_CREATE(r0, 0x5501) 607.547127ms ago: executing program 2 (id=5145): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x8, 0x10001, 0x9, 0x1}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000400008500000001000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='fdb_delete\x00', r1}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r2, 0x8937, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"}) 604.391836ms ago: executing program 3 (id=5146): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"]) chdir(&(0x7f0000000280)='./file0\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_serviced\x00', 0x275a, 0x0) ftruncate(r0, 0x800000c179) 575.263104ms ago: executing program 0 (id=5147): r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x0) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x0, @empty}, 0x1c) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="0003"], 0x20) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3d}}}, 0x1c) 518.483155ms ago: executing program 2 (id=5148): r0 = syz_open_dev$radio(&(0x7f0000000140), 0x3, 0x2) io_setup(0x3, &(0x7f0000000180)=0x0) io_submit(r1, 0x1, &(0x7f0000000040)=[&(0x7f00000000c0)={0x0, 0x300, 0x0, 0x5, 0x0, r0, 0x0}]) r2 = syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2) ioctl$VIDIOC_S_CTRL(r2, 0xc008561c, &(0x7f0000000080)={0xf0f041}) 517.023043ms ago: executing program 1 (id=5149): mlockall(0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000480)='auxv\x00') r1 = socket$inet6_icmp(0xa, 0x2, 0x3a) dup3(r1, r0, 0x0) connect$packet(r0, &(0x7f0000000000)={0x2, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x14) 426.137971ms ago: executing program 2 (id=5150): syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff) madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19) 420.893104ms ago: executing program 3 (id=5151): creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) mount$fuseblk(&(0x7f0000002440), &(0x7f0000002480)='./file0\x00', &(0x7f00000024c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) syz_fuse_handle_req(r0, &(0x7f0000004300)="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", 0x2000, 0x0) umount2(&(0x7f0000000340)='./file0\x00', 0xb) 358.441517ms ago: executing program 1 (id=5152): r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0xfef2) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @dev}, 0x10) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x9, &(0x7f0000000040)=0x8001, 0x4) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x9, &(0x7f0000000040), 0x4) 357.72118ms ago: executing program 0 (id=5153): r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301) ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000340)={0xff02, 0x0, 0x0, 0x86fc, 0x0, "5f730000a9003f00"}) ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, 0x0) writev(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000300)="4800000014001d0d09074beafd0d8c560284606080ffe0064e204e20590000a2bc5603ca00000f7f8907000020008d42188fedc22e47ad8f75edc6d100000101ff00", 0x42}], 0x1) ioctl$USBDEVFS_CLEAR_HALT(r0, 0xc0105502, &(0x7f0000000340)={0x1, 0x1}) 299.544776ms ago: executing program 3 (id=5154): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5) ioctl$SG_IO(r1, 0x2285, 0x0) writev(r1, &(0x7f0000000400)=[{&(0x7f0000000080)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}, {&(0x7f0000000040)="aa1d484e2400a0000000f7c08bfcd111fbdf23ea32db0e8f21d5bc27bd8063067a0689fff2a41cfbf0e9d85e44751170", 0x30}], 0x2) 299.317551ms ago: executing program 1 (id=5155): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 295.306655ms ago: executing program 2 (id=5156): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000000440)={@val, @void, @eth={@broadcast, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x452c, 0x0, 0x0, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x0, 0x6558, 0x18, 0x0, @wg=@data}}}}}}, 0xfdef) 250.142279ms ago: executing program 0 (id=5157): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000280)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_DEL_PMKSA(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)={0x3c, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_PMK={0x14, 0xfe, "088d912d0cfca515ad577da22ccd9a84"}, @NL80211_ATTR_SSID={0x4}, @NL80211_ATTR_FILS_CACHE_ID={0x6}]}, 0x3c}}, 0x0) 180.652666ms ago: executing program 0 (id=5158): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r0}, 0x4) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="180200000007000000000000000000008500000027000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000080)='GPL\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 180.452058ms ago: executing program 3 (id=5159): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f00000002c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r1, 0x301, 0x0, 0x0, {0x2b}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}}, 0x0) 127.623904ms ago: executing program 0 (id=5160): syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x0) r0 = syz_io_uring_setup(0x5169, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000)=0x0) syz_io_uring_setup(0x43d4, &(0x7f0000000340), &(0x7f00000002c0)=0x0, &(0x7f0000000140)) syz_io_uring_submit(r2, r1, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54}) io_uring_enter(r0, 0x48e9, 0x0, 0x0, 0x0, 0x0) 127.40046ms ago: executing program 1 (id=5161): r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$binder(&(0x7f0000000000/0x4000)=nil, 0x1fffff, 0x1, 0x11, r0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0xe) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600707, 0x19) 80.391426ms ago: executing program 3 (id=5162): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000dfff000000000000b300000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) r2 = dup(r1) write$UHID_INPUT(r2, &(0x7f0000002080)={0xc, {"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", 0x1000}}, 0x1006) 80.142487ms ago: executing program 1 (id=5163): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000000700)=ANY=[@ANYBLOB="ffffffffffff83d40100000e88a800dd60"], 0x14a) 65.712916ms ago: executing program 2 (id=5164): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8) sendto$inet6(r0, &(0x7f0000000040)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000000)={0x0, 0x0, 0x9}, 0x8) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f00000002c0), 0x8) 1.114759ms ago: executing program 0 (id=5165): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x2000, 0x0) ioctl$TCSETSW2(r1, 0x5425, 0x0) 0s ago: executing program 2 (id=5166): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000008000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b703000000003eff8500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000800)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10) r2 = timerfd_create(0x0, 0x0) timerfd_gettime(r2, &(0x7f0000000080)) kernel console output (not intermixed with test programs): xt=root:sysadm_r:sysadm_t tclass=binder permissive=1 [ 186.386614][T13206] tipc: Started in network mode [ 186.388401][T13206] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711 [ 186.392803][T13206] tipc: Enabled bearer , priority 10 [ 186.412190][ T39] audit: type=1400 audit(1725674385.486:919): avc: denied { mounton } for pid=13204 comm="syz.3.3532" path="/211/file0" dev="ramfs" ino=48141 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1 [ 186.723045][ T1811] usb 7-1: new high-speed USB device number 16 using dummy_hcd [ 186.727235][ T39] audit: type=1400 audit(1725674385.806:920): avc: denied { remount } for pid=13224 comm="syz.0.3549" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 186.859958][ T1150] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 186.903137][ T1811] usb 7-1: Using ep0 maxpacket: 8 [ 186.905608][T11549] tipc: Node number set to 2130706433 [ 186.906940][ T1811] usb 7-1: config index 0 descriptor too short (expected 301, got 45) [ 186.911671][ T1811] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 186.916153][ T1811] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 186.920381][ T1811] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 186.932997][ T1811] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 186.943378][ T1811] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 186.947406][ T1811] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 186.993778][ T1150] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 187.061409][ T66] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 187.071876][ T66] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 187.078586][ T66] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 187.084509][ T66] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 187.088408][ T66] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 187.092555][ T66] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 187.096975][ T1150] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 187.179588][ T1811] usb 7-1: usb_control_msg returned -32 [ 187.182124][ T1811] usbtmc 7-1:16.0: can't read capabilities [ 187.218781][ T1150] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 187.394856][T13230] chnl_net:caif_netlink_parms(): no params data found [ 187.403351][T11549] tipc: Node number set to 4269801488 [ 187.446295][ T39] audit: type=1400 audit(1725674386.526:921): avc: denied { watch watch_reads } for pid=13241 comm="syz.0.3547" path=2F6D656D66643AA39F6EB4645204693502ACCEE1889D5B4038D7CC1F2039497F151D933DB5E75C274CE6D28EBC294A7454447181CF81BAE531F5202864656C6574656429 dev="tmpfs" ino=3096 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 187.484968][ T1150] bridge_slave_1: left allmulticast mode [ 187.487332][ T1150] bridge_slave_1: left promiscuous mode [ 187.490712][ T1150] bridge0: port 2(bridge_slave_1) entered disabled state [ 187.496757][ T1150] bridge0: port 1(bridge_slave_0) entered disabled state [ 187.832578][ T1150] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 187.837740][ T1150] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 187.842590][ T1150] bond0 (unregistering): Released all slaves [ 187.950117][ T1150] tipc: Disabling bearer [ 187.952669][ T1150] tipc: Left network mode [ 187.955395][T13230] bridge0: port 1(bridge_slave_0) entered blocking state [ 187.958061][T13230] bridge0: port 1(bridge_slave_0) entered disabled state [ 187.975559][T13230] bridge_slave_0: entered allmulticast mode [ 187.981329][T13230] bridge_slave_0: entered promiscuous mode [ 187.988832][T13230] bridge0: port 2(bridge_slave_1) entered blocking state [ 187.991287][T13230] bridge0: port 2(bridge_slave_1) entered disabled state [ 187.996923][T13230] bridge_slave_1: entered allmulticast mode [ 187.999917][T13230] bridge_slave_1: entered promiscuous mode [ 188.057856][T13230] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 188.069431][T13230] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 188.085653][ T39] audit: type=1400 audit(1725674387.166:922): avc: denied { execute } for pid=13262 comm="syz.0.3554" name="file0" dev="ramfs" ino=47331 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1 [ 188.171417][T13230] team0: Port device team_slave_0 added [ 188.180057][T13230] team0: Port device team_slave_1 added [ 188.277257][T13230] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 188.279909][T13230] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 188.289095][T13230] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 188.300860][T13272] tipc: Started in network mode [ 188.302550][T13272] tipc: Node identity 7f000001, cluster identity 4711 [ 188.308649][T13272] tipc: Enabled bearer , priority 10 [ 188.314587][T13230] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 188.317555][T13230] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 188.333120][T13230] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 188.346517][ T1150] hsr_slave_0: left promiscuous mode [ 188.348835][ T1150] hsr_slave_1: left promiscuous mode [ 188.351140][ T1150] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 188.353780][ T1150] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 188.356650][ T1150] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 188.359145][ T1150] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 188.385863][ T1150] veth1_macvtap: left promiscuous mode [ 188.388002][ T1150] veth0_macvtap: left promiscuous mode [ 188.390487][ T1150] veth1_vlan: left promiscuous mode [ 188.392577][ T1150] veth0_vlan: left promiscuous mode [ 188.473133][ T58] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 188.673004][ T58] usb 6-1: Using ep0 maxpacket: 8 [ 188.676174][ T58] usb 6-1: config 0 has an invalid interface number: 1 but max is 0 [ 188.682996][ T58] usb 6-1: config 0 has no interface number 0 [ 188.685099][ T58] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 188.688691][ T58] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 188.703011][ T58] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 188.710373][ T58] usb 6-1: config 0 descriptor?? [ 188.728121][ T58] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior1 [ 188.932486][ T58] usb 6-1: USB disconnect, device number 7 [ 188.939676][ T58] iowarrior 6-1:0.1: I/O-Warror #1 now disconnected [ 189.166569][ T5344] Bluetooth: hci5: command tx timeout [ 189.213731][ T1150] team0 (unregistering): Port device team_slave_1 removed [ 189.314899][ T1150] team0 (unregistering): Port device team_slave_0 removed [ 189.433053][ T5381] tipc: Node number set to 2130706433 [ 189.451506][ T5381] usb 7-1: USB disconnect, device number 16 [ 189.518582][T13276] netlink: 203516 bytes leftover after parsing attributes in process `syz.2.3560'. [ 189.521704][T13276] netlink: zone id is out of range [ 189.523770][T13276] netlink: del zone limit has 8 unknown bytes [ 190.264005][T13230] hsr_slave_0: entered promiscuous mode [ 190.271751][T13230] hsr_slave_1: entered promiscuous mode [ 190.277784][T13230] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 190.281080][T13230] Cannot create hsr debugfs directory [ 190.485037][T13303] ax25_connect(): syz.0.3572 uses autobind, please contact jreuter@yaina.de [ 190.776137][T13339] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3586'. [ 190.965004][T13230] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 190.970740][T13230] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 190.976961][T13230] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 190.981196][T13230] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 191.038961][T13230] 8021q: adding VLAN 0 to HW filter on device bond0 [ 191.055553][T13230] 8021q: adding VLAN 0 to HW filter on device team0 [ 191.072720][ T98] bridge0: port 1(bridge_slave_0) entered blocking state [ 191.075601][ T98] bridge0: port 1(bridge_slave_0) entered forwarding state [ 191.079194][T13365] Cannot find set identified by id 0 to match [ 191.085113][ T98] bridge0: port 2(bridge_slave_1) entered blocking state [ 191.088153][ T98] bridge0: port 2(bridge_slave_1) entered forwarding state [ 191.254181][ T5344] Bluetooth: hci5: command tx timeout [ 191.311242][T13230] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 191.355707][T13230] veth0_vlan: entered promiscuous mode [ 191.369875][T13230] veth1_vlan: entered promiscuous mode [ 191.389890][T13230] veth0_macvtap: entered promiscuous mode [ 191.394202][T13230] veth1_macvtap: entered promiscuous mode [ 191.409237][T13230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 191.412732][T13230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.418528][T13230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 191.421975][T13230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.428004][T13230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 191.431435][T13230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.435049][T13230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 191.439760][T13230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.449115][T13230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 191.454573][T13230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.460396][T13230] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 191.481978][T13230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 191.491612][T13230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.496217][T13230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 191.500508][T13230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.505867][T13230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 191.513045][T13230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.516996][T13230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 191.521192][T13230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.527511][T13230] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 191.531822][ T39] kauditd_printk_skb: 7 callbacks suppressed [ 191.531832][ T39] audit: type=1400 audit(1725674390.606:930): avc: denied { create } for pid=13395 comm="syz.2.3611" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 191.543023][T13230] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.548813][T13230] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 191.566075][T13230] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 191.569008][T13230] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 191.571955][T13230] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 191.579770][T13230] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 191.657207][ T98] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 191.659993][ T98] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 191.686201][ T98] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 191.689019][ T98] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 192.056884][T13439] loop2: detected capacity change from 0 to 7 [ 192.063058][T13439] Dev loop2: unable to read RDB block 7 [ 192.064964][T13439] loop2: unable to read partition table [ 192.066962][T13439] loop2: partition table beyond EOD, truncated [ 192.069454][T13439] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5) [ 192.403062][T11549] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 192.606492][T11549] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 192.610973][T11549] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 192.621685][T11549] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 192.626150][T11549] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 192.629876][T11549] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 192.636298][T11549] usb 6-1: config 0 descriptor?? [ 192.722272][T13484] snd_dummy snd_dummy.0: control 4:1025:1024:syz1:9 is already present [ 193.056374][T13502] macvtap0: entered promiscuous mode [ 193.058914][T13502] macvtap0: left promiscuous mode [ 193.067841][T11549] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 193.070581][T11549] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 193.073832][T11549] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 193.076578][T11549] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 193.079572][T11549] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 193.083974][T11549] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 193.087713][T11549] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 193.090675][T11549] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 193.093990][T11549] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 193.097063][T11549] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 193.099737][T11549] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 193.102927][T11549] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 193.105953][T11549] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 193.109294][T11549] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 193.112411][T11549] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 193.120024][T11549] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving [ 193.126226][T11549] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 193.323199][ T5344] Bluetooth: hci5: command tx timeout [ 193.339712][ T5380] usb 6-1: USB disconnect, device number 8 [ 194.367143][ T1381] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.491498][T13545] sctp: [Deprecated]: syz.0.3673 (pid 13545) Use of int in max_burst socket option. [ 194.491498][T13545] Use struct sctp_assoc_value instead [ 194.643325][T13552] binder: 13551:13552 ioctl 40046205 0 returned -22 [ 195.415194][ T5344] Bluetooth: hci5: command tx timeout [ 195.565097][ T39] audit: type=1400 audit(1725674394.636:931): avc: denied { bind } for pid=13577 comm="syz.0.3688" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 195.591073][ T39] audit: type=1400 audit(1725674394.666:932): avc: denied { write } for pid=13577 comm="syz.0.3688" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 195.701661][ T1102] Bluetooth: hci5: Frame reassembly failed (-84) [ 195.790315][ T39] audit: type=1326 audit(1725674394.866:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13590 comm="syz.1.3694" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b9897cef9 code=0x7ffc0000 [ 195.803301][ T39] audit: type=1326 audit(1725674394.876:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13590 comm="syz.1.3694" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b9897cef9 code=0x7ffc0000 [ 196.203926][T13617] loop2: detected capacity change from 0 to 7 [ 196.207207][T13617] Dev loop2: unable to read RDB block 7 [ 196.209089][T13617] loop2: unable to read partition table [ 196.211135][T13617] loop2: partition table beyond EOD, truncated [ 196.213352][T13617] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5) [ 196.253617][T13621] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3706'. [ 196.257892][T13621] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3706'. [ 197.723091][ T5344] Bluetooth: hci5: Entering manufacturer mode failed (-110) [ 197.723224][ T66] Bluetooth: hci5: command 0xfc11 tx timeout [ 197.783969][T13640] loop2: detected capacity change from 0 to 7 [ 197.794700][T13642] input: syz1 as /devices/virtual/input/input26 [ 197.797862][T13640] Dev loop2: unable to read RDB block 7 [ 197.802142][T13640] loop2: unable to read partition table [ 197.805878][T13640] loop2: partition table beyond EOD, truncated [ 197.810380][T13640] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5) [ 197.981185][ T1103] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 198.083045][ T1811] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 198.094360][ T1103] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 198.123158][ T10] usb 7-1: new high-speed USB device number 17 using dummy_hcd [ 198.159721][ T1103] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 198.175967][ T5350] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 198.180686][ T5350] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 198.185024][ T5350] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 198.188971][ T5350] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 198.192670][ T5350] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 198.196619][ T5350] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 198.259834][ T1103] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 198.263906][ T1811] usb 5-1: Using ep0 maxpacket: 8 [ 198.268113][ T1811] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 198.271871][ T1811] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 198.275737][ T1811] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 198.279369][ T1811] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 198.284075][ T1811] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 198.287520][ T1811] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 198.305923][ T10] usb 7-1: Using ep0 maxpacket: 8 [ 198.310619][ T10] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 198.314300][ T10] usb 7-1: config 0 has no interface number 0 [ 198.316622][ T10] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 198.321056][ T10] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 198.324531][ T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 198.329563][ T10] usb 7-1: config 0 descriptor?? [ 198.335469][ T10] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 198.427789][T13657] chnl_net:caif_netlink_parms(): no params data found [ 198.432299][ T1103] bridge_slave_1: left allmulticast mode [ 198.434123][ T1103] bridge_slave_1: left promiscuous mode [ 198.435944][ T1103] bridge0: port 2(bridge_slave_1) entered disabled state [ 198.440123][ T1103] bridge_slave_0: left allmulticast mode [ 198.441841][ T1103] bridge_slave_0: left promiscuous mode [ 198.445025][ T1103] bridge0: port 1(bridge_slave_0) entered disabled state [ 198.516067][ T1811] usb 5-1: GET_CAPABILITIES returned 0 [ 198.517752][ T1811] usbtmc 5-1:16.0: can't read capabilities [ 198.553921][ T10] usb 7-1: USB disconnect, device number 17 [ 198.558010][ T10] iowarrior 7-1:0.1: I/O-Warror #0 now disconnected [ 198.724373][T13644] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 198.737959][T13644] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 198.747922][ T1811] usb 5-1: USB disconnect, device number 16 [ 198.803141][ T1103] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 198.813440][ T1103] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 198.820308][ T1103] bond0 (unregistering): Released all slaves [ 198.906753][T13657] bridge0: port 1(bridge_slave_0) entered blocking state [ 198.910202][T13657] bridge0: port 1(bridge_slave_0) entered disabled state [ 198.921590][T13657] bridge_slave_0: entered allmulticast mode [ 198.929570][T13657] bridge_slave_0: entered promiscuous mode [ 198.938191][T13657] bridge0: port 2(bridge_slave_1) entered blocking state [ 198.941219][T13657] bridge0: port 2(bridge_slave_1) entered disabled state [ 198.945496][T13657] bridge_slave_1: entered allmulticast mode [ 198.949362][T13657] bridge_slave_1: entered promiscuous mode [ 199.034493][T13657] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 199.041342][T13657] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 199.096437][T13657] team0: Port device team_slave_0 added [ 199.101567][T13657] team0: Port device team_slave_1 added [ 199.164087][T13657] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 199.166425][T13657] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 199.175936][T13657] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 199.180525][T13657] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 199.182846][T13657] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 199.191941][T13657] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 199.232869][T13657] hsr_slave_0: entered promiscuous mode [ 199.243210][T13657] hsr_slave_1: entered promiscuous mode [ 199.245612][T13657] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 199.249320][T13657] Cannot create hsr debugfs directory [ 199.353783][ T1103] hsr_slave_0: left promiscuous mode [ 199.356151][ T1103] hsr_slave_1: left promiscuous mode [ 199.358509][ T1103] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 199.361055][ T1103] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 199.367127][ T1103] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 199.370416][ T1103] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 199.402576][ T1103] veth1_macvtap: left promiscuous mode [ 199.404618][ T1103] veth0_macvtap: left promiscuous mode [ 199.406565][ T1103] veth1_vlan: left promiscuous mode [ 199.408367][ T1103] veth0_vlan: left promiscuous mode [ 200.260640][ T1103] team0 (unregistering): Port device team_slave_1 removed [ 200.286284][ T5350] Bluetooth: hci5: command tx timeout [ 200.350971][ T1103] team0 (unregistering): Port device team_slave_0 removed [ 201.539133][T13657] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 201.545153][T13657] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 201.565761][T13657] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 201.571018][T13657] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 201.658337][T13657] 8021q: adding VLAN 0 to HW filter on device bond0 [ 201.674830][T13657] 8021q: adding VLAN 0 to HW filter on device team0 [ 201.695393][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state [ 201.698398][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state [ 201.702800][ T1150] bridge0: port 2(bridge_slave_1) entered blocking state [ 201.705863][ T1150] bridge0: port 2(bridge_slave_1) entered forwarding state [ 201.773916][T13728] netlink: 'syz.2.3752': attribute type 4 has an invalid length. [ 201.907206][T13739] libceph: resolve '0' (ret=-3): failed [ 201.925560][T13657] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 201.969134][T13657] veth0_vlan: entered promiscuous mode [ 201.980544][T13657] veth1_vlan: entered promiscuous mode [ 202.018459][T13657] veth0_macvtap: entered promiscuous mode [ 202.028968][T13657] veth1_macvtap: entered promiscuous mode [ 202.044817][T13657] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 202.049124][T13657] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.052486][T13657] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 202.063444][T13657] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.072213][T13657] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 202.076234][T13657] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.079519][T13657] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 202.087443][T13657] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.090707][T13657] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 202.094483][T13657] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.098851][T13657] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 202.105552][T13657] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 202.109088][T13657] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.117240][T13657] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 202.121790][T13657] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.127015][T13657] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 202.131467][T13657] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.135017][T13746] binder: 13745:13746 ioctl 40046205 0 returned -22 [ 202.136071][T13657] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 202.142563][T13657] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.146427][T13657] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 202.150157][T13657] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.156276][T13657] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 202.171001][T13657] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 202.175231][T13657] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 202.178734][T13657] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 202.181732][T13657] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 202.248013][ T98] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 202.250663][ T98] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 202.275840][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 202.278592][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 202.363636][ T5350] Bluetooth: hci5: command tx timeout [ 203.138745][T13796] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3777'. [ 203.145341][T13796] geneve2: entered promiscuous mode [ 203.147304][T13796] geneve2: entered allmulticast mode [ 203.247972][ T7383] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 203.250617][ T7383] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 203.253456][ T7383] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 203.256176][ T7383] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 203.260397][ T7383] hid-generic 0000:0000:0000.000A: hidraw1: HID v0.00 Device [syz0] on syz0 [ 204.117258][T13826] tipc: Started in network mode [ 204.119451][T13826] tipc: Node identity 7f000001, cluster identity 4711 [ 204.123063][T13826] tipc: Enabled bearer , priority 10 [ 204.223082][ T5380] usb 7-1: new high-speed USB device number 18 using dummy_hcd [ 204.336573][T13835] netlink: 'syz.3.3794': attribute type 9 has an invalid length. [ 204.345458][T13835] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.3794'. [ 204.403473][T13835] netlink: 'syz.3.3794': attribute type 9 has an invalid length. [ 204.409433][T13835] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.3794'. [ 204.414887][ T5380] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 204.417871][ T5380] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 204.425632][ T5380] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 204.428660][ T5380] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 204.439452][ T5380] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 204.443073][ T5350] Bluetooth: hci5: command tx timeout [ 204.443519][ T5380] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 204.447825][ T5380] usb 7-1: Product: syz [ 204.449511][ T5380] usb 7-1: Manufacturer: syz [ 204.464825][ T5380] cdc_wdm 7-1:1.0: skipping garbage [ 204.466676][ T5380] cdc_wdm 7-1:1.0: skipping garbage [ 204.469250][ T5380] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device [ 204.471545][ T5380] cdc_wdm 7-1:1.0: Unknown control protocol [ 204.726949][ T831] usb 7-1: USB disconnect, device number 18 [ 204.743047][ T7383] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 204.933048][ T7383] usb 5-1: Using ep0 maxpacket: 8 [ 204.944287][ T7383] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 250, changing to 11 [ 204.948900][ T7383] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1023 [ 204.963032][ T7383] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 8 [ 204.969338][ T7383] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 204.972782][ T7383] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 204.976211][ T7383] usb 5-1: Product: syz [ 204.977983][ T7383] usb 5-1: Manufacturer: syz [ 204.979963][ T7383] usb 5-1: SerialNumber: syz [ 205.211571][ T7383] cdc_ncm 5-1:1.0: bind() failure [ 205.216337][ T7383] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found [ 205.218665][ T7383] cdc_ncm 5-1:1.1: bind() failure [ 205.222283][ T7383] usb 5-1: USB disconnect, device number 17 [ 205.233027][ T5405] tipc: Node number set to 2130706433 [ 205.824753][ T39] audit: type=1400 audit(1725674404.906:935): avc: denied { unmount } for pid=13657 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 205.942447][T13863] netlink: 'syz.0.3806': attribute type 9 has an invalid length. [ 205.948021][T13863] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.3806'. [ 205.975515][T13863] netlink: 'syz.0.3806': attribute type 9 has an invalid length. [ 205.978142][T13863] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.3806'. [ 206.533026][ T5350] Bluetooth: hci5: command tx timeout [ 207.348811][T13904] netlink: 'syz.0.3826': attribute type 29 has an invalid length. [ 207.354762][T13904] netlink: 'syz.0.3826': attribute type 29 has an invalid length. [ 207.360211][T13904] netlink: 'syz.0.3826': attribute type 29 has an invalid length. [ 207.365535][T13904] netlink: 'syz.0.3826': attribute type 29 has an invalid length. [ 207.417634][T13906] hsr0: entered allmulticast mode [ 207.419971][T13906] hsr_slave_0: entered allmulticast mode [ 207.422180][T13906] hsr_slave_1: entered allmulticast mode [ 207.540761][T13918] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3833'. [ 207.781501][ T39] audit: type=1400 audit(1725674406.856:936): avc: denied { read } for pid=13936 comm="syz.0.3842" path="socket:[52447]" dev="sockfs" ino=52447 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 207.835818][ T39] audit: type=1400 audit(1725674406.916:937): avc: denied { connect } for pid=13936 comm="syz.0.3842" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 208.026216][T13953] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3848'. [ 208.349188][ T39] audit: type=1400 audit(1725674407.426:938): avc: denied { getattr } for pid=13979 comm="syz.2.3860" name="/" dev="9p" ino=36575581 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 208.359377][T13980] Process accounting resumed [ 208.493938][ T39] audit: type=1326 audit(1725674407.576:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13987 comm="syz.0.3864" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3b1f37cef9 code=0x0 [ 208.615323][ T39] audit: type=1400 audit(1725674407.696:940): avc: denied { read } for pid=13991 comm="syz.3.3865" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 208.653952][T13995] netlink: 4096 bytes leftover after parsing attributes in process `syz.3.3866'. [ 208.658049][T13995] openvswitch: netlink: Missing key (keys=400040, expected=200000) [ 208.687457][ T39] audit: type=1400 audit(1725674407.766:941): avc: denied { accept } for pid=13996 comm="syz.2.3867" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 208.753244][ T39] audit: type=1400 audit(1725674407.836:942): avc: denied { setopt } for pid=13996 comm="syz.2.3867" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 208.789238][T14004] Process accounting resumed [ 208.905670][T14009] netlink: 'syz.3.3872': attribute type 29 has an invalid length. [ 208.912154][T14009] netlink: 'syz.3.3872': attribute type 29 has an invalid length. [ 208.923793][T14009] netlink: 'syz.3.3872': attribute type 29 has an invalid length. [ 208.931840][T14009] netlink: 'syz.3.3872': attribute type 29 has an invalid length. [ 209.573177][ T7383] usb 8-1: new high-speed USB device number 10 using dummy_hcd [ 209.596530][ T39] audit: type=1326 audit(1725674408.676:943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14032 comm="syz.0.3883" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3b1f37cef9 code=0x0 [ 209.783036][ T7383] usb 8-1: Using ep0 maxpacket: 32 [ 209.785901][ T7383] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 209.793000][ T7383] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 209.796669][ T7383] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 209.810159][ T7383] usb 8-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22 [ 209.813248][ T7383] usb 8-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131 [ 209.816021][ T7383] usb 8-1: Product: syz [ 209.817416][ T7383] usb 8-1: Manufacturer: syz [ 209.818981][ T7383] usb 8-1: SerialNumber: syz [ 209.822244][T14025] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 209.826707][ T7383] input: appletouch as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:1.0/input/input29 [ 209.838239][ C2] appletouch 8-1:1.0: atp_complete: usb_submit_urb failed with result -1 [ 210.104467][ T7383] usb 8-1: USB disconnect, device number 10 [ 210.119889][ T7383] appletouch 8-1:1.0: input: appletouch disconnected [ 210.891337][ T39] audit: type=1326 audit(1725674409.966:944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14067 comm="syz.3.3898" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 210.904163][ T39] audit: type=1326 audit(1725674409.966:945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14067 comm="syz.3.3898" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 210.914359][ T39] audit: type=1326 audit(1725674409.996:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14067 comm="syz.3.3898" exe="/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 210.925734][ T39] audit: type=1326 audit(1725674409.996:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14067 comm="syz.3.3898" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 210.943141][ T39] audit: type=1326 audit(1725674409.996:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14067 comm="syz.3.3898" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 210.956896][ T39] audit: type=1326 audit(1725674410.006:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14067 comm="syz.3.3898" exe="/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 210.973057][ T39] audit: type=1326 audit(1725674410.006:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14067 comm="syz.3.3898" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 210.992129][ T39] audit: type=1326 audit(1725674410.006:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14067 comm="syz.3.3898" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 211.001096][ T39] audit: type=1326 audit(1725674410.016:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14067 comm="syz.3.3898" exe="/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 211.013747][ T39] audit: type=1326 audit(1725674410.016:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14067 comm="syz.3.3898" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 211.290792][T14088] loop0: detected capacity change from 0 to 7 [ 211.294545][T14088] Dev loop0: unable to read RDB block 7 [ 211.296482][T14088] loop0: AHDI p2 [ 211.297751][T14088] loop0: partition table partially beyond EOD, truncated [ 211.323081][ T5405] usb 8-1: new high-speed USB device number 11 using dummy_hcd [ 211.336775][ T58] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 211.339346][ T58] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 211.344646][ T58] hid-generic 0000:0000:0000.000B: hidraw1: HID v0.00 Device [syz0] on syz1 [ 211.503046][ T5405] usb 8-1: Using ep0 maxpacket: 16 [ 211.513807][ T5405] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 211.517648][ T5405] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 211.522042][ T5405] usb 8-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 211.532984][ T5405] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 211.538970][ T5405] usb 8-1: config 0 descriptor?? [ 213.228031][ T5405] usbhid 8-1:0.0: can't add hid device: -71 [ 213.230137][ T5405] usbhid 8-1:0.0: probe with driver usbhid failed with error -71 [ 213.243751][ T5405] usb 8-1: USB disconnect, device number 11 [ 213.487907][T14156] input: syz0 as /devices/virtual/input/input30 [ 213.780531][T14177] (unnamed net_device) (uninitialized): ARP target 1.0.0.0 is already present [ 213.783228][T14177] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (1) [ 214.203232][ T5344] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 214.208808][ T5344] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 214.212736][ T5344] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 214.216074][ T5344] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 214.218667][ T5344] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 214.221055][ T5344] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 214.296297][T14205] netlink: 'syz.2.3959': attribute type 3 has an invalid length. [ 214.299542][T14205] netlink: 102460 bytes leftover after parsing attributes in process `syz.2.3959'. [ 214.399515][T14200] chnl_net:caif_netlink_parms(): no params data found [ 214.424291][T14212] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4) [ 214.427576][T14212] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 214.445926][T14212] vhci_hcd vhci_hcd.0: Device attached [ 214.493028][T14212] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(6) [ 214.495269][T14212] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 214.497745][T14212] vhci_hcd vhci_hcd.0: Device attached [ 214.505545][T14212] vhci_hcd vhci_hcd.0: pdev(2) rhport(2) sockfd(8) [ 214.507509][T14212] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 214.510100][T14212] vhci_hcd vhci_hcd.0: Device attached [ 214.523219][T14212] vhci_hcd vhci_hcd.0: pdev(2) rhport(3) sockfd(10) [ 214.525273][T14212] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 214.529986][T14212] vhci_hcd vhci_hcd.0: Device attached [ 214.546503][T14222] vhci_hcd: connection closed [ 214.547354][T14213] vhci_hcd: connection closed [ 214.548825][T14220] vhci_hcd: connection closed [ 214.550303][T14217] vhci_hcd: connection closed [ 214.555374][ T46] vhci_hcd: stop threads [ 214.559292][T14200] bridge0: port 1(bridge_slave_0) entered blocking state [ 214.565325][ T46] vhci_hcd: release socket [ 214.567968][T14200] bridge0: port 1(bridge_slave_0) entered disabled state [ 214.572114][T14200] bridge_slave_0: entered allmulticast mode [ 214.574557][ T46] vhci_hcd: disconnect device [ 214.577337][ T46] vhci_hcd: stop threads [ 214.579522][T14200] bridge_slave_0: entered promiscuous mode [ 214.581963][ T46] vhci_hcd: release socket [ 214.588488][T14200] bridge0: port 2(bridge_slave_1) entered blocking state [ 214.590980][ T46] vhci_hcd: disconnect device [ 214.592691][T14200] bridge0: port 2(bridge_slave_1) entered disabled state [ 214.595347][T14200] bridge_slave_1: entered allmulticast mode [ 214.598076][T14200] bridge_slave_1: entered promiscuous mode [ 214.598302][ T46] vhci_hcd: stop threads [ 214.601344][ T46] vhci_hcd: release socket [ 214.602805][ T46] vhci_hcd: disconnect device [ 214.611195][ T46] vhci_hcd: stop threads [ 214.612450][ T46] vhci_hcd: release socket [ 214.617046][ T46] vhci_hcd: disconnect device [ 214.642127][T14200] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 214.649552][T14200] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 214.653169][ T58] vhci_hcd: vhci_device speed not set [ 214.703746][T14200] team0: Port device team_slave_0 added [ 214.708791][T14200] team0: Port device team_slave_1 added [ 214.769595][T14200] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 214.772465][T14200] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 214.783257][T14200] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 214.790233][T14200] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 214.798494][T14200] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 214.809197][T14200] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 214.856252][T14200] hsr_slave_0: entered promiscuous mode [ 214.873165][T14200] hsr_slave_1: entered promiscuous mode [ 214.875976][T14200] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 214.878557][T14200] Cannot create hsr debugfs directory [ 215.071656][T14200] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.197419][T14200] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.249720][T14250] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 215.291773][T14250] CIFS mount error: No usable UNC path provided in device string! [ 215.291773][T14250] [ 215.297234][T14250] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 215.326627][T14200] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.345521][T14254] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 215.498066][T14200] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.649301][T14200] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 215.669599][T14200] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 215.684896][T14200] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 215.710319][T14200] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 215.786279][T14200] 8021q: adding VLAN 0 to HW filter on device bond0 [ 215.801563][T14200] 8021q: adding VLAN 0 to HW filter on device team0 [ 215.819761][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 215.822239][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 215.840214][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 215.842703][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 216.145162][T14200] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 216.282843][T14200] veth0_vlan: entered promiscuous mode [ 216.288847][ T5350] Bluetooth: hci6: command tx timeout [ 216.306843][T14200] veth1_vlan: entered promiscuous mode [ 216.316385][ T39] kauditd_printk_skb: 21 callbacks suppressed [ 216.316399][ T39] audit: type=1400 audit(1725674415.396:975): avc: denied { bind } for pid=14283 comm="syz.2.3984" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 216.328656][T14283] delete_channel: no stack [ 216.360193][T14200] veth0_macvtap: entered promiscuous mode [ 216.367578][T14200] veth1_macvtap: entered promiscuous mode [ 216.412160][T14200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 216.418478][T14200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.421984][T14200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 216.432996][T14200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.436273][T14200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 216.439955][T14200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.443829][T14200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 216.447334][T14200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.450549][T14200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 216.463007][T14200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.470423][T14200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 216.474185][T14200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.478709][T14200] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 216.496754][T14200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 216.500269][T14200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.512995][T14200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 216.516459][T14200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.519704][T14200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 216.523573][T14200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.526874][T14200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 216.530501][T14200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.542989][T14200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 216.546724][T14200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.549967][T14200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 216.553462][T14200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 216.558418][T14200] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 216.569430][T14200] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.583094][T14200] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.586108][T14200] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.588985][T14200] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.718431][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 216.736809][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.758017][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 216.760685][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.850160][T14315] loop0: detected capacity change from 0 to 7 [ 216.852598][T14315] Dev loop0: unable to read RDB block 7 [ 216.871346][T14315] loop0: AHDI p1 p3 [ 216.873692][T14315] loop0: partition table partially beyond EOD, truncated [ 216.876701][T14315] loop0: p1 start 2048 is beyond EOD, truncated [ 216.999241][T14324] netlink: 'syz.0.4000': attribute type 1 has an invalid length. [ 217.001869][T14324] netlink: 9328 bytes leftover after parsing attributes in process `syz.0.4000'. [ 217.013333][T14324] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4000'. [ 217.016317][T14324] netlink: 'syz.0.4000': attribute type 1 has an invalid length. [ 217.097040][ T39] audit: type=1326 audit(1725674416.176:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14333 comm="syz.0.4005" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1f37cef9 code=0x7ffc0000 [ 217.108832][ T39] audit: type=1326 audit(1725674416.176:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14333 comm="syz.0.4005" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1f37cef9 code=0x7ffc0000 [ 217.117205][ T39] audit: type=1326 audit(1725674416.176:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14333 comm="syz.0.4005" exe="/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3b1f37cef9 code=0x7ffc0000 [ 217.232624][T14340] skbuff: bad partial csum: csum=65506/2 headroom=168 headlen=65526 [ 217.272937][ T39] audit: type=1326 audit(1725674416.346:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14333 comm="syz.0.4005" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1f37cef9 code=0x7ffc0000 [ 217.289747][ T39] audit: type=1326 audit(1725674416.356:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14333 comm="syz.0.4005" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1f37cef9 code=0x7ffc0000 [ 217.299126][ T39] audit: type=1326 audit(1725674416.356:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14333 comm="syz.0.4005" exe="/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f3b1f37cef9 code=0x7ffc0000 [ 217.669122][T14370] syzkaller1: entered promiscuous mode [ 217.671543][T14370] syzkaller1: entered allmulticast mode [ 217.946466][ T39] audit: type=1326 audit(1725674417.026:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14333 comm="syz.0.4005" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1f37cef9 code=0x7ffc0000 [ 217.963207][ T39] audit: type=1326 audit(1725674417.026:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14333 comm="syz.0.4005" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1f37cef9 code=0x7ffc0000 [ 218.181482][ C0] vxcan0: j1939_tp_rxtimer: 0xffff88802991ec00: rx timeout, send abort [ 218.186779][ C0] vxcan0: j1939_xtp_rx_abort_one: 0xffff88802991ec00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 218.350060][ T39] audit: type=1400 audit(1725674417.426:984): avc: denied { relabelfrom } for pid=14423 comm="syz.2.4046" name="" dev="pipefs" ino=51985 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 218.363588][ T5350] Bluetooth: hci6: command tx timeout [ 218.985209][T14478] TCP: TCP_TX_DELAY enabled [ 219.118236][T14487] netlink: 'syz.3.4077': attribute type 29 has an invalid length. [ 219.132666][T14487] netlink: 'syz.3.4077': attribute type 29 has an invalid length. [ 219.137013][T14487] netlink: 'syz.3.4077': attribute type 29 has an invalid length. [ 219.147033][T14487] netlink: 'syz.3.4077': attribute type 29 has an invalid length. [ 219.341976][T14512] input: syz0 as /devices/virtual/input/input32 [ 219.633023][ T5380] usb 7-1: new high-speed USB device number 19 using dummy_hcd [ 219.715682][T14540] input: syz0 as /devices/virtual/input/input33 [ 219.813102][ T5380] usb 7-1: Using ep0 maxpacket: 8 [ 219.816642][ T5380] usb 7-1: config index 0 descriptor too short (expected 301, got 45) [ 219.820010][ T5380] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 219.830046][ T5380] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 219.835058][ T5380] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 219.839519][ T5380] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 219.845227][ T5380] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 219.849093][ T5380] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 220.101409][ T5380] usb 7-1: usb_control_msg returned -32 [ 220.104343][ T5380] usbtmc 7-1:16.0: can't read capabilities [ 220.445704][ T5350] Bluetooth: hci6: command tx timeout [ 220.763497][T14570] input: syz0 as /devices/virtual/input/input34 [ 221.073063][ T5399] usb 8-1: new high-speed USB device number 12 using dummy_hcd [ 221.273420][ T5399] usb 8-1: Using ep0 maxpacket: 8 [ 221.277546][ T5399] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024 [ 221.282428][ T5399] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 221.303291][ T5399] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 221.307629][ T5399] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 221.313615][ T5399] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 221.317645][ T5399] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 221.422198][ C1] vxcan0: j1939_tp_rxtimer: 0xffff888029946800: rx timeout, send abort [ 221.426105][ C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff888029946800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 221.553664][ T5399] usb 8-1: usb_control_msg returned -32 [ 221.555663][ T5399] usbtmc 8-1:16.0: can't read capabilities [ 221.789545][T14611] team0: entered promiscuous mode [ 221.791898][T14611] team_slave_0: entered promiscuous mode [ 221.802743][T14610] team0: left promiscuous mode [ 221.809426][T14610] team_slave_0: left promiscuous mode [ 221.991407][T14614] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4134'. [ 222.368255][ T59] usb 7-1: USB disconnect, device number 19 [ 222.533595][ T5350] Bluetooth: hci6: command tx timeout [ 222.667796][T14662] [U] [ 222.669051][T14662] [U] %k+ÀúÃÆæ [ 222.670124][T14662] [U] Xdu,·?ú‹ÿý©åŒø·5‰UÏD›×¨¹ö¼»p‡4ž"Å [ 222.671990][T14662] [U] ¹ÈŠi¾«ÃàŠ¿K46Û…F$ò+çújÖlÊØ[öwÜ’®‹þî·öaEõn9’ž]1†IaÍ+¨†ÁH¨rèv¸%aÈ¡lµQždž.XVõÙÃ]­è|5Ý Hí]I>NÚ}úŠçò(– [ 222.675498][T14662] [U] ¥Ôq [ 222.676409][T14662] [U] K\]hÖ/c -A>Š´!ÁÂVX¨q„5Çäªá‰å>ÑGš«-Êý¸Ô¤ŒÎA÷~“J;ké,Þž‚Rϸ2º³X‰ýècW-_ô ¼õ(.@;sHCußþ2yªT¶L;³ßT*hP^6 ÈvìH‚ºµR(…Ϻë«1ÌEÙÔQ}Œè¿…«ŠÂò@ìUS§yhehŽ&‡÷e?x£Fñ…Äõµ©÷T«$žÄb/þuž€ÁøWÝØ-ø5@›Ðæz¶ƒ\psÞèà28 æÛ‡Â!D=ðK¦g] [ 222.686930][T14662] [U] ¾Ý¶NäÚeàýÛʯMD2à‘Ùêù-CO [ 222.688721][T14662] [U] k]$ C¢‡úÙßNœÈ’óÞhªµ]šÇ6)¨2SÕXÖŠ!ÓÞ³´^‡>=dç¡_ÄÎÁ”c¡)I\HO5WÜz—*T?°€˜}jU¨0%7Î[CE¼óFÔŽ7lV,J!p*|QO$x &EqS´Ö>~í;*žÐ [ 222.692598][T14662] [U] Á˜Á# ®“é„7ó°(OÀ@|.Á/â×8‚ÓeÖÏM;únA¢Aqö\,ïP–æ˜=Þëf:õ–ÜÖÕ'SR.l¶þQ y=­›WÙˆÆ [ 222.696204][T14662] [U] 6–¼{…O+[t”D(žÿ’M'Õ>×C¹ãdÕ©lÔþñêu©gF~Gä“";eÄìpØ£D‰Ûn/Í0(¬0”PscîçÞN´Ä×—"AU`5Õç>ÿ™°cG´¥¤ E)‡7›±ÂÞlœ Í—ˆóý§×éYô GEùÂù‰Ì¤.v~§ [ 222.700811][T14662] [U] [ 222.707510][T14662] [U] [ 222.708610][T14662] [U] [ 222.709455][T14662] [U] [ 222.710402][T14662] [U] [ 222.713079][T14662] [U] [ 222.713964][T14662] [U] [ 222.714993][T14662] [U] [ 222.719343][T14661] [U] [ 223.046019][T14700] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4166'. [ 223.196197][ T39] kauditd_printk_skb: 1 callbacks suppressed [ 223.196207][ T39] audit: type=1400 audit(1725674422.276:986): avc: denied { read } for pid=14709 comm="syz.0.4171" name="/" dev="configfs" ino=3133 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 223.224535][ T39] audit: type=1400 audit(1725674422.276:987): avc: denied { open } for pid=14709 comm="syz.0.4171" path="/1073/file0" dev="configfs" ino=3133 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 223.238446][ T39] audit: type=1400 audit(1725674422.306:988): avc: denied { unmount } for pid=5345 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 223.549400][T14732] netlink: 'syz.0.4180': attribute type 29 has an invalid length. [ 223.557423][T14732] netlink: 'syz.0.4180': attribute type 29 has an invalid length. [ 223.563656][T14732] netlink: 500 bytes leftover after parsing attributes in process `syz.0.4180'. [ 223.577900][T14732] unsupported nla_type 40 [ 223.829057][ T10] usb 8-1: USB disconnect, device number 12 [ 224.459512][T14786] netlink: 4272 bytes leftover after parsing attributes in process `syz.0.4203'. [ 224.462720][T14786] netlink: 'syz.0.4203': attribute type 1 has an invalid length. [ 224.467670][T14786] netlink: 113 bytes leftover after parsing attributes in process `syz.0.4203'. [ 225.043055][ T5380] usb 7-1: new high-speed USB device number 20 using dummy_hcd [ 225.233086][ T5380] usb 7-1: Using ep0 maxpacket: 32 [ 225.237841][ T5380] usb 7-1: config index 0 descriptor too short (expected 29220, got 36) [ 225.241499][ T5380] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 225.244880][ T5380] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 225.248445][ T5380] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 225.251843][ T5380] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 225.262998][ T5380] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 225.267486][ T5380] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 225.270753][ T5380] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 225.283779][ T5380] usb 7-1: config 0 descriptor?? [ 225.506172][ T5380] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 20 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 225.715577][ T5380] usb 7-1: USB disconnect, device number 20 [ 225.720686][ T5380] usblp0: removed [ 226.063056][T11549] usb 8-1: new high-speed USB device number 13 using dummy_hcd [ 226.265132][T11549] usb 8-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 226.283699][T11549] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 226.294164][T11549] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 226.297738][T11549] usb 8-1: SerialNumber: syz [ 226.709049][T14877] sctp: [Deprecated]: syz.2.4243 (pid 14877) Use of struct sctp_assoc_value in delayed_ack socket option. [ 226.709049][T14877] Use struct sctp_sack_info instead [ 226.841976][ T42] tipc: Subscription rejected, illegal request [ 226.955755][T11549] cdc_ether 8-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.3-1, CDC Ethernet Device, 42:42:42:42:42:42 [ 227.278108][ T39] audit: type=1400 audit(1725674426.356:989): avc: denied { setopt } for pid=14931 comm="syz.2.4266" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 227.337660][ T5405] usb 8-1: USB disconnect, device number 13 [ 227.340430][ T5405] cdc_ether 8-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.3-1, CDC Ethernet Device [ 227.369222][T14945] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4272'. [ 227.427358][T14951] IPVS: length: 4096 != 24 [ 228.065669][T14992] pim6reg1: entered promiscuous mode [ 228.068067][T14992] pim6reg1: entered allmulticast mode [ 228.935415][T15022] IPv6: Can't replace route, no match found [ 229.613085][ T7383] usb 8-1: new high-speed USB device number 14 using dummy_hcd [ 229.756425][T15073] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4329'. [ 229.793118][ T7383] usb 8-1: Using ep0 maxpacket: 8 [ 229.817043][ T7383] usb 8-1: config index 0 descriptor too short (expected 301, got 45) [ 229.820484][ T7383] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 229.826084][ T7383] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 229.831291][ T7383] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 229.836893][ T7383] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 229.843227][ T7383] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 229.848066][ T7383] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 230.077988][ T7383] usb 8-1: usb_control_msg returned -32 [ 230.083385][ T7383] usbtmc 8-1:16.0: can't read capabilities [ 230.204010][ T5350] Bluetooth: hci7: Opcode 0x1003 failed: -110 [ 230.204321][ T5344] Bluetooth: hci7: command 0x1003 tx timeout [ 230.334453][T15095] syzkaller1: entered promiscuous mode [ 230.336958][T15095] syzkaller1: entered allmulticast mode [ 230.576174][ T39] audit: type=1400 audit(1725674429.656:990): avc: denied { create } for pid=15101 comm="syz.0.4350" name="control" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 230.624996][ T39] audit: type=1400 audit(1725674429.686:991): avc: denied { remove_name } for pid=15101 comm="syz.0.4350" name="control" dev="9p" ino=36575607 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 230.649600][ T39] audit: type=1400 audit(1725674429.706:992): avc: denied { rmdir } for pid=15101 comm="syz.0.4350" name="control" dev="9p" ino=36575607 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 230.651099][ T5350] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 230.662436][ T5350] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 230.665648][ T5350] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 230.673705][ T5350] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 230.676334][ T5350] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 230.678619][ T5350] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 230.853308][T15104] chnl_net:caif_netlink_parms(): no params data found [ 231.084871][T15126] syz.1.4351: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 231.103056][T15126] CPU: 0 UID: 0 PID: 15126 Comm: syz.1.4351 Not tainted 6.11.0-rc6-syzkaller-00308-gb31c44928842 #0 [ 231.106656][T15126] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 231.110179][T15126] Call Trace: [ 231.111329][T15126] [ 231.112333][T15126] dump_stack_lvl+0x16c/0x1f0 [ 231.113919][T15126] warn_alloc+0x24d/0x3a0 [ 231.115382][T15126] ? __pfx_warn_alloc+0x10/0x10 [ 231.117007][T15126] ? hlock_class+0x4e/0x130 [ 231.118546][T15126] ? stack_depot_save_flags+0x28/0x8f0 [ 231.120365][T15126] ? kasan_save_stack+0x42/0x60 [ 231.122002][T15126] ? kasan_save_stack+0x33/0x60 [ 231.123657][T15126] ? kasan_save_track+0x14/0x30 [ 231.125324][T15126] ? __kasan_kmalloc+0xaa/0xb0 [ 231.127004][T15126] ? xskq_create+0x52/0x1d0 [ 231.128539][T15126] ? xsk_setsockopt+0x757/0xa10 [ 231.130178][T15126] ? __sys_setsockopt+0x1a4/0x270 [ 231.131883][T15126] ? __x64_sys_setsockopt+0xbd/0x160 [ 231.133651][T15126] ? do_syscall_64+0xcd/0x250 [ 231.135241][T15126] __vmalloc_node_range_noprof+0x10a3/0x14e0 [ 231.137244][T15126] ? xskq_create+0xfb/0x1d0 [ 231.138771][T15126] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 231.140850][T15126] ? xskq_create+0xfb/0x1d0 [ 231.142387][T15126] vmalloc_user_noprof+0x6b/0x90 [ 231.144062][T15126] ? xskq_create+0xfb/0x1d0 [ 231.145559][T15126] xskq_create+0xfb/0x1d0 [ 231.146984][T15126] xsk_setsockopt+0x757/0xa10 [ 231.148562][T15126] ? __pfx_xsk_setsockopt+0x10/0x10 [ 231.150310][T15126] ? find_held_lock+0x2d/0x110 [ 231.151902][T15126] ? selinux_socket_setsockopt+0x6a/0x80 [ 231.153771][T15126] ? bpf_lsm_socket_setsockopt+0x9/0x10 [ 231.155634][T15126] ? __pfx_xsk_setsockopt+0x10/0x10 [ 231.157380][T15126] do_sock_setsockopt+0x222/0x480 [ 231.159074][T15126] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 231.160908][T15126] ? __fget_light+0x173/0x210 [ 231.162482][T15126] __sys_setsockopt+0x1a4/0x270 [ 231.164150][T15126] ? __pfx___sys_setsockopt+0x10/0x10 [ 231.165944][T15126] ? xfd_validate_state+0x5d/0x180 [ 231.167685][T15126] __x64_sys_setsockopt+0xbd/0x160 [ 231.169422][T15126] ? do_syscall_64+0x91/0x250 [ 231.170991][T15126] ? lockdep_hardirqs_on+0x7c/0x110 [ 231.172705][T15126] do_syscall_64+0xcd/0x250 [ 231.174186][T15126] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.176156][T15126] RIP: 0033:0x7f603a37cef9 [ 231.177652][T15126] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.184048][T15126] RSP: 002b:00007f603b108038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 231.186835][T15126] RAX: ffffffffffffffda RBX: 00007f603a535f80 RCX: 00007f603a37cef9 [ 231.189478][T15126] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000003 [ 231.192107][T15126] RBP: 00007f603a3ef046 R08: 0000000000000020 R09: 0000000000000000 [ 231.194737][T15126] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000000 [ 231.197349][T15126] R13: 0000000000000000 R14: 00007f603a535f80 R15: 00007ffd20ac5f48 [ 231.199998][T15126] [ 231.209389][T15126] Mem-Info: [ 231.210574][T15126] active_anon:534 inactive_anon:11646 isolated_anon:0 [ 231.210574][T15126] active_file:2735 inactive_file:49781 isolated_file:0 [ 231.210574][T15126] unevictable:1768 dirty:367 writeback:0 [ 231.210574][T15126] slab_reclaimable:6644 slab_unreclaimable:79925 [ 231.210574][T15126] mapped:28591 shmem:2317 pagetables:845 [ 231.210574][T15126] sec_pagetables:314 bounce:0 [ 231.210574][T15126] kernel_misc_reclaimable:0 [ 231.210574][T15126] free:444151 free_pcp:8797 free_cma:0 [ 231.240643][T15126] Node 0 active_anon:2120kB inactive_anon:46584kB active_file:292kB inactive_file:198924kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:111372kB dirty:1464kB writeback:0kB shmem:5732kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11792kB pagetables:3380kB sec_pagetables:1256kB all_unreclaimable? no [ 231.261098][T15126] Node 1 active_anon:16kB inactive_anon:0kB active_file:10648kB inactive_file:200kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:2992kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 231.285960][T15104] bridge0: port 1(bridge_slave_0) entered blocking state [ 231.288489][T15104] bridge0: port 1(bridge_slave_0) entered disabled state [ 231.290967][T15104] bridge_slave_0: entered allmulticast mode [ 231.291294][T15126] Node 0 [ 231.294775][T15104] bridge_slave_0: entered promiscuous mode [ 231.296082][T15126] DMA free:9492kB boost:2048kB min:2388kB low:2472kB high:2556kB reserved_highatomic:0KB active_anon:16kB inactive_anon:4kB active_file:0kB inactive_file:16kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:128kB local_pcp:68kB free_cma:0kB [ 231.299341][T15104] bridge0: port 2(bridge_slave_1) entered blocking state [ 231.309662][T15126] lowmem_reserve[]: 0 1218 0 0 0 [ 231.312770][T15104] bridge0: port 2(bridge_slave_1) entered disabled state [ 231.314268][T15126] Node 0 DMA32 free:158888kB boost:0kB min:27696kB low:34620kB high:41544kB reserved_highatomic:0KB active_anon:2104kB inactive_anon:46580kB active_file:292kB inactive_file:198908kB unevictable:3536kB writepending:1464kB present:2080628kB managed:1275300kB mlocked:0kB bounce:0kB free_pcp:20084kB local_pcp:3100kB free_cma:0kB [ 231.314302][T15126] lowmem_reserve[]: 0 0 0 0 0 [ 231.314328][T15126] Node 1 Normal free:1608040kB boost:0kB min:39540kB low:49424kB high:59308kB reserved_highatomic:0KB active_anon:16kB inactive_anon:0kB active_file:10648kB inactive_file:200kB unevictable:3536kB writepending:4kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:15120kB local_pcp:6188kB free_cma:0kB [ 231.314355][T15126] lowmem_reserve[]: 0 0 0 0 0 [ 231.314375][T15126] Node 0 DMA: 89*4kB [ 231.319232][T15104] bridge_slave_1: entered allmulticast mode [ 231.328803][T15126] (UME) 86*8kB (UME) 76*16kB (UME) 82*32kB (UME) 48*64kB (UME) 12*128kB (UME) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 9492kB [ 231.328927][T15126] Node 0 DMA32: 34*4kB [ 231.331694][T15104] bridge_slave_1: entered promiscuous mode [ 231.360766][T15126] (UME) 288*8kB (UME) 224*16kB (ME) 160*32kB (ME) 246*64kB (UME) 209*128kB (UME) 147*256kB (UME) 38*512kB (UME) 13*1024kB (UM) 9*2048kB (UM) 4*4096kB (M) = 158856kB [ 231.373811][T15126] Node 1 Normal: 167*4kB (UME) 160*8kB (UME) 139*16kB (UM) 129*32kB (UME) 126*64kB (UME) 93*128kB (UME) 65*256kB (UME) 25*512kB (UME) 14*1024kB (UME) 12*2048kB (UME) 369*4096kB (UM) = 1608044kB [ 231.381806][T15126] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 231.386327][T15126] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 231.389475][T15126] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 231.392777][T15126] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 231.396398][T15126] 54834 total pagecache pages [ 231.398066][T15126] 1 pages in swap cache [ 231.399594][T15126] Free swap = 66568kB [ 231.401209][T15126] Total swap = 124996kB [ 231.407500][T15126] 1048443 pages RAM [ 231.409252][T15126] 0 pages HighMem/MovableOnly [ 231.411525][T15126] 280297 pages reserved [ 231.414062][T15126] 0 pages cma reserved [ 231.416964][T15104] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 231.426777][T15104] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 231.512483][T15104] team0: Port device team_slave_0 added [ 231.525652][T15104] team0: Port device team_slave_1 added [ 231.563029][ T5381] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 231.598071][T15104] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 231.600825][T15104] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 231.613306][T15104] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 231.619594][T15104] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 231.622285][T15104] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 231.631826][T15104] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 231.733200][T15104] hsr_slave_0: entered promiscuous mode [ 231.735616][ T39] audit: type=1400 audit(1725674430.816:993): avc: denied { ioctl } for pid=15135 comm="syz.1.4356" path="socket:[57056]" dev="sockfs" ino=57056 ioctlcmd=0x8b19 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 231.741187][T15104] hsr_slave_1: entered promiscuous mode [ 231.751746][T15104] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 231.754925][ T5381] usb 5-1: Using ep0 maxpacket: 32 [ 231.757321][T15104] Cannot create hsr debugfs directory [ 231.760283][ T5381] usb 5-1: config index 0 descriptor too short (expected 29220, got 36) [ 231.763203][ T5381] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 231.766072][ T5381] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 231.769102][ T5381] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 231.772448][ T5381] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 231.776549][ T5381] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 231.780866][ T5381] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 231.793035][ T5381] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 231.816492][ T5381] usb 5-1: config 0 descriptor?? [ 231.967910][T15104] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.054628][ T5381] usblp 5-1:0.0: usblp1: USB Bidirectional printer dev 18 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 232.088383][T15104] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.175696][T15104] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.243243][ T39] audit: type=1400 audit(1725674431.316:994): avc: denied { sqpoll } for pid=15143 comm="syz.1.4360" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 232.256159][ T59] usb 5-1: USB disconnect, device number 18 [ 232.262618][ T59] usblp1: removed [ 232.277249][T15104] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.356865][ T5380] usb 8-1: USB disconnect, device number 14 [ 232.486922][T15104] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 232.496409][T15104] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 232.513834][T15104] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 232.520969][T15104] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 232.600962][T15104] 8021q: adding VLAN 0 to HW filter on device bond0 [ 232.626918][T15104] 8021q: adding VLAN 0 to HW filter on device team0 [ 232.637100][ T1103] bridge0: port 1(bridge_slave_0) entered blocking state [ 232.639929][ T1103] bridge0: port 1(bridge_slave_0) entered forwarding state [ 232.650337][ T1150] bridge0: port 2(bridge_slave_1) entered blocking state [ 232.652743][ T1150] bridge0: port 2(bridge_slave_1) entered forwarding state [ 232.777129][ T5344] Bluetooth: hci4: command tx timeout [ 232.873245][ T5380] usb 8-1: new high-speed USB device number 15 using dummy_hcd [ 232.891579][T15104] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 232.955462][T15104] veth0_vlan: entered promiscuous mode [ 232.974502][T15104] veth1_vlan: entered promiscuous mode [ 233.010765][T15104] veth0_macvtap: entered promiscuous mode [ 233.017725][T15104] veth1_macvtap: entered promiscuous mode [ 233.034885][T15104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.038931][T15104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.043179][T15104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.047646][T15104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.051913][T15104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.054812][ T5380] usb 8-1: Using ep0 maxpacket: 16 [ 233.063106][T15104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.063111][ T5380] usb 8-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6 [ 233.067321][T15104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.070830][ T5380] usb 8-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 233.070851][ T5380] usb 8-1: Product: syz [ 233.070865][ T5380] usb 8-1: Manufacturer: syz [ 233.070879][ T5380] usb 8-1: SerialNumber: syz [ 233.076527][T15104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.090920][ T5380] usb 8-1: config 0 descriptor?? [ 233.096715][T15104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.101179][T15104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.106343][T15104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.110839][T15104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.117510][T15104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 233.122599][T15104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.128849][T15104] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 233.147764][T15104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.151857][T15104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.155573][T15104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.159790][T15104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.165375][T15104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.168980][T15104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.172192][T15104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.188787][T15104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.193286][T15104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.200328][T15104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.205201][T15104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.210150][T15104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.217035][T15104] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 233.221110][T15104] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 233.226849][T15104] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 233.244414][T15104] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.247491][T15104] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.250542][T15104] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.254112][T15104] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.329015][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 233.331620][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 233.365062][ T831] usb 8-1: USB disconnect, device number 15 [ 233.399916][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 233.402933][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 233.863944][ T39] audit: type=1400 audit(1725674432.946:995): avc: denied { setopt } for pid=15175 comm="syz.0.4371" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 234.843104][ T5344] Bluetooth: hci4: command tx timeout [ 235.020592][T15221] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4390'. [ 235.783255][ T39] audit: type=1326 audit(1725674434.856:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15246 comm="syz.1.4402" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f603a37cef9 code=0x7ffc0000 [ 235.790975][ T39] audit: type=1326 audit(1725674434.856:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15246 comm="syz.1.4402" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f603a37cef9 code=0x7ffc0000 [ 235.810354][ T39] audit: type=1326 audit(1725674434.856:998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15246 comm="syz.1.4402" exe="/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f603a37cef9 code=0x7ffc0000 [ 235.818254][ T39] audit: type=1326 audit(1725674434.856:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15246 comm="syz.1.4402" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f603a37cef9 code=0x7ffc0000 [ 235.833009][ T39] audit: type=1326 audit(1725674434.856:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15246 comm="syz.1.4402" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f603a37cef9 code=0x7ffc0000 [ 235.853019][ T39] audit: type=1326 audit(1725674434.856:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15246 comm="syz.1.4402" exe="/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f603a37cef9 code=0x7ffc0000 [ 235.863054][ T39] audit: type=1326 audit(1725674434.856:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15246 comm="syz.1.4402" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f603a37cef9 code=0x7ffc0000 [ 235.872451][ T39] audit: type=1326 audit(1725674434.866:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15246 comm="syz.1.4402" exe="/syz-executor" sig=0 arch=c000003e syscall=265 compat=0 ip=0x7f603a37cef9 code=0x7ffc0000 [ 235.882268][ T39] audit: type=1326 audit(1725674434.866:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15246 comm="syz.1.4402" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f603a37cef9 code=0x7ffc0000 [ 235.893105][ T39] audit: type=1326 audit(1725674434.866:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15246 comm="syz.1.4402" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f603a37cef9 code=0x7ffc0000 [ 236.257673][ T5405] kernel write not supported for file /input/mouse0 (pid: 5405 comm: kworker/2:5) [ 236.924571][ T5344] Bluetooth: hci4: command tx timeout [ 237.067280][T15283] netlink: 'syz.1.4418': attribute type 2 has an invalid length. [ 237.070735][T15283] netlink: 'syz.1.4418': attribute type 8 has an invalid length. [ 237.077990][T15283] netlink: 'syz.1.4418': attribute type 1 has an invalid length. [ 237.080946][T15283] netlink: 96 bytes leftover after parsing attributes in process `syz.1.4418'. [ 237.239906][T15292] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 237.762311][T15314] netlink: zone id is out of range [ 237.773142][T15314] netlink: zone id is out of range [ 237.775623][T15314] netlink: zone id is out of range [ 237.793229][T15314] netlink: set zone limit has 4 unknown bytes [ 238.414754][T15332] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 238.833101][ T831] usb 8-1: new high-speed USB device number 16 using dummy_hcd [ 239.004473][ T5344] Bluetooth: hci4: command tx timeout [ 239.023411][ T831] usb 8-1: Using ep0 maxpacket: 16 [ 239.027696][ T831] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 239.043129][ T831] usb 8-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00 [ 239.047350][ T831] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 239.053018][ T831] usb 8-1: config 0 descriptor?? [ 239.064743][ T831] input: bcm5974 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input35 [ 239.386729][ T4819] bcm5974 8-1:0.0: could not read from device [ 239.394177][ T4819] bcm5974 8-1:0.0: could not read from device [ 239.396311][ T831] usb 8-1: USB disconnect, device number 16 [ 239.403535][ T4819] bcm5974 8-1:0.0: could not read from device [ 240.059654][T15399] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4470'. [ 240.533733][ T5381] usb 7-1: new high-speed USB device number 21 using dummy_hcd [ 240.724005][ T5381] usb 7-1: Using ep0 maxpacket: 8 [ 240.735598][ T5381] usb 7-1: config 0 has no interfaces? [ 240.739454][ T5381] usb 7-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00 [ 240.743646][ T5381] usb 7-1: New USB device strings: Mfr=8, Product=0, SerialNumber=0 [ 240.747193][ T5381] usb 7-1: Manufacturer: syz [ 240.751532][ T5381] usb 7-1: config 0 descriptor?? [ 240.992462][ T5381] usb 7-1: USB disconnect, device number 21 [ 241.939644][T15468] nbd: must specify a device to reconfigure [ 242.726408][T15516] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4517'. [ 242.905085][ T39] kauditd_printk_skb: 2 callbacks suppressed [ 242.905095][ T39] audit: type=1400 audit(1725674441.986:1008): avc: denied { mounton } for pid=15528 comm="syz.3.4520" path="/151/file0" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=dir permissive=1 [ 242.994936][ T58] kernel write not supported for file [eventfd] (pid: 58 comm: kworker/1:1) [ 243.038358][ T39] audit: type=1326 audit(1725674442.116:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15538 comm="syz.1.4524" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f603a37cef9 code=0x0 [ 243.633095][T15561] bond0: option ad_select: unable to set because the bond device is up [ 243.752075][ T39] audit: type=1326 audit(1725674442.826:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15565 comm="syz.3.4533" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 243.760526][ T39] audit: type=1326 audit(1725674442.826:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15565 comm="syz.3.4533" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 243.778146][ T39] audit: type=1326 audit(1725674442.836:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15565 comm="syz.3.4533" exe="/syz-executor" sig=0 arch=c000003e syscall=256 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 243.791059][ T39] audit: type=1326 audit(1725674442.846:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15565 comm="syz.3.4533" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 244.013136][ T59] usb 7-1: new high-speed USB device number 22 using dummy_hcd [ 244.197163][ T59] usb 7-1: Using ep0 maxpacket: 8 [ 244.205473][ T59] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 244.208751][ T59] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 244.211998][ T59] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 244.223101][ T59] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 244.227472][ T59] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 244.230524][ T59] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 244.263028][T15596] input: syz0 as /devices/virtual/input/input36 [ 244.396423][T15610] loop2: detected capacity change from 0 to 7 [ 244.403056][T15610] Dev loop2: unable to read RDB block 7 [ 244.405068][T15610] loop2: AHDI p1 [ 244.406398][T15610] loop2: partition table partially beyond EOD, truncated [ 244.412113][ T39] audit: type=1400 audit(1725674443.486:1014): avc: denied { watch } for pid=15611 comm="syz.3.4550" path="/162" dev="tmpfs" ino=842 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 244.422449][ T39] audit: type=1400 audit(1725674443.496:1015): avc: denied { watch_sb } for pid=15611 comm="syz.3.4550" path="/162" dev="tmpfs" ino=842 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 244.450394][ T59] usb 7-1: GET_CAPABILITIES returned 0 [ 244.452295][ T59] usbtmc 7-1:16.0: can't read capabilities [ 244.483337][ T39] audit: type=1400 audit(1725674443.566:1016): avc: denied { read } for pid=15617 comm="syz.1.4551" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1 [ 244.513388][ T39] audit: type=1400 audit(1725674443.566:1017): avc: denied { open } for pid=15617 comm="syz.1.4551" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1 [ 244.557882][T15624] vxcan1: entered allmulticast mode [ 244.658573][T15632] block nbd1: shutting down sockets [ 244.659273][ T59] usb 7-1: USB disconnect, device number 22 [ 245.882203][T15678] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4573'. [ 246.166812][T15711] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4575'. [ 246.213124][ T58] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 246.229369][T15711] bridge0: left allmulticast mode [ 246.323624][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 246.413175][ T58] usb 6-1: Using ep0 maxpacket: 8 [ 246.418571][ T58] usb 6-1: config 0 has no interfaces? [ 246.428989][ T58] usb 6-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00 [ 246.450046][ T58] usb 6-1: New USB device strings: Mfr=8, Product=0, SerialNumber=0 [ 246.457877][ T58] usb 6-1: Manufacturer: syz [ 246.465731][ T58] usb 6-1: config 0 descriptor?? [ 246.748160][ T10] usb 6-1: USB disconnect, device number 9 [ 248.393286][T11549] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 248.493217][ T10] usb 8-1: new high-speed USB device number 17 using dummy_hcd [ 248.585145][T11549] usb 6-1: config index 0 descriptor too short (expected 45, got 36) [ 248.588726][T11549] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 248.603108][T11549] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 248.607838][T11549] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 248.613441][T11549] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 248.617187][T11549] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 248.624652][T11549] usb 6-1: config 0 descriptor?? [ 248.627801][T15830] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 248.675482][ T10] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 248.679549][ T10] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 248.690179][ T10] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 248.695171][ T10] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 248.700182][ T10] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 248.709372][ T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 248.724118][ T10] usb 8-1: config 0 descriptor?? [ 248.727016][T15836] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 249.060825][T11549] plantronics 0003:047F:FFFF.000C: unknown main item tag 0xd [ 249.067330][T11549] plantronics 0003:047F:FFFF.000C: No inputs registered, leaving [ 249.077168][T11549] plantronics 0003:047F:FFFF.000C: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 249.163092][ T10] plantronics 0003:047F:FFFF.000D: unknown main item tag 0xd [ 249.167542][ T10] plantronics 0003:047F:FFFF.000D: No inputs registered, leaving [ 249.176971][ T10] plantronics 0003:047F:FFFF.000D: hiddev1,hidraw2: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 249.338137][T11549] usb 6-1: USB disconnect, device number 10 [ 249.376068][ T10] usb 8-1: USB disconnect, device number 17 [ 250.142630][T15906] netlink: 172 bytes leftover after parsing attributes in process `syz.2.4621'. [ 250.196815][T15908] Invalid ELF section header overflow [ 250.280857][T15914] unknown channel width for channel at 909000KHz? [ 250.495601][T15928] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4631'. [ 250.498744][T15928] openvswitch: netlink: Multiple metadata blocks provided [ 250.799333][T15955] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4644'. [ 250.816731][ T39] kauditd_printk_skb: 6 callbacks suppressed [ 250.816741][ T39] audit: type=1400 audit(1725674449.886:1024): avc: denied { recv } for pid=5319 comm="syz-executor" saddr=127.0.0.1 src=59470 daddr=127.0.0.1 dest=30000 netif=lo scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1 [ 250.838911][ T39] audit: type=1400 audit(1725674449.896:1025): avc: denied { recv } for pid=5319 comm="syz-executor" saddr=127.0.0.1 src=30000 daddr=127.0.0.1 dest=59470 netif=lo scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1 [ 251.094648][ T39] audit: type=1400 audit(1725674450.176:1026): avc: denied { read } for pid=15974 comm="syz.0.4651" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 251.339173][ T46] Bluetooth: hci7: Frame reassembly failed (-84) [ 251.361636][T15991] Bluetooth: hci7: Frame reassembly failed (-84) [ 251.380598][T15995] netlink: 172 bytes leftover after parsing attributes in process `syz.1.4656'. [ 252.633107][ T1811] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 252.833046][ T1811] usb 5-1: Using ep0 maxpacket: 8 [ 252.835995][ T1811] usb 5-1: config 0 has no interfaces? [ 252.838637][ T1811] usb 5-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00 [ 252.841638][ T1811] usb 5-1: New USB device strings: Mfr=8, Product=0, SerialNumber=0 [ 252.844634][ T1811] usb 5-1: Manufacturer: syz [ 252.853499][ T1811] usb 5-1: config 0 descriptor?? [ 253.118429][ T58] usb 5-1: USB disconnect, device number 19 [ 253.403688][ T5350] Bluetooth: hci7: command 0xfc11 tx timeout [ 253.407233][ T5344] Bluetooth: hci7: Entering manufacturer mode failed (-110) [ 253.631067][ T39] audit: type=1400 audit(1725674452.706:1027): avc: denied { getopt } for pid=16128 comm="syz.1.4686" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 254.083559][T16161] PF_CAN: dropped non conform CAN skbuff: dev type 65534, len 64 [ 254.895480][T16240] syzkaller1: entered promiscuous mode [ 254.897784][T16240] syzkaller1: entered allmulticast mode [ 255.029154][T16257] ALSA: seq fatal error: cannot create timer (-22) [ 255.214654][T16274] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 255.225485][T16268] kvm: kvm [16267]: vcpu1, guest rIP: 0xfff0 Unhandled RDMSR(0x40000005) [ 255.406459][ T39] audit: type=1326 audit(1725674454.486:1028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16285 comm="syz.1.4743" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f603a37cef9 code=0x7ffc0000 [ 255.426116][ T39] audit: type=1326 audit(1725674454.486:1029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16285 comm="syz.1.4743" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f603a37cef9 code=0x7ffc0000 [ 255.447154][ T39] audit: type=1326 audit(1725674454.486:1030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16285 comm="syz.1.4743" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f603a37cef9 code=0x7ffc0000 [ 255.458000][ T39] audit: type=1326 audit(1725674454.486:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16285 comm="syz.1.4743" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f603a37cef9 code=0x7ffc0000 [ 255.468604][ T39] audit: type=1326 audit(1725674454.486:1032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16285 comm="syz.1.4743" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f603a37cef9 code=0x7ffc0000 [ 255.480576][T16290] dccp_v6_rcv: dropped packet with invalid checksum [ 255.481417][ T39] audit: type=1326 audit(1725674454.486:1033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16285 comm="syz.1.4743" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f603a37cef9 code=0x7ffc0000 [ 255.813647][ T1381] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.069663][T16337] loop2: detected capacity change from 0 to 7 [ 256.077079][T16335] input: syz0 as /devices/virtual/input/input39 [ 256.091020][T16337] loop2: [CUMANA/ADFS] p1 [ADFS] p1 [ 256.093455][T16337] loop2: partition table partially beyond EOD, truncated [ 256.103157][T16337] loop2: p1 size 6333 extends beyond EOD, truncated [ 256.105833][T16330] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 256.562796][T16386] syzkaller1: entered promiscuous mode [ 256.565228][T16386] syzkaller1: entered allmulticast mode [ 256.723162][ T10] usb 8-1: new high-speed USB device number 18 using dummy_hcd [ 256.910811][ T10] usb 8-1: New USB device found, idVendor=1bcf, idProduct=0b40, bcdDevice=80.b1 [ 256.914937][ T10] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 256.918159][ T10] usb 8-1: Product: syz [ 256.919749][ T10] usb 8-1: Manufacturer: syz [ 256.921791][ T10] usb 8-1: SerialNumber: syz [ 256.938316][ T10] usb 8-1: config 0 descriptor?? [ 256.946620][ T10] usb 8-1: Found UVC 0.00 device syz (1bcf:0b40) [ 256.949346][ T10] usb 8-1: Forcing UVC version to 1.0a [ 256.951559][ T10] usb 8-1: No valid video chain found. [ 257.183786][ T7383] usb 8-1: USB disconnect, device number 18 [ 257.584690][T16450] loop2: detected capacity change from 0 to 7 [ 257.589131][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 257.593360][T16450] loop2: [CUMANA/ADFS] p1 [ADFS] p1 [ 257.598894][T16450] loop2: partition table partially beyond EOD, truncated [ 257.613244][T16450] loop2: p1 size 6333 extends beyond EOD, truncated [ 257.832150][ T39] kauditd_printk_skb: 5 callbacks suppressed [ 257.835767][ T39] audit: type=1326 audit(1725674456.906:1039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16464 comm="syz.3.4801" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 257.853072][ T39] audit: type=1326 audit(1725674456.906:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16464 comm="syz.3.4801" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 257.873119][ T39] audit: type=1326 audit(1725674456.906:1041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16464 comm="syz.3.4801" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 257.884828][ T39] audit: type=1326 audit(1725674456.906:1042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16464 comm="syz.3.4801" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 257.900273][ T39] audit: type=1326 audit(1725674456.906:1043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16464 comm="syz.3.4801" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 257.920457][ T39] audit: type=1326 audit(1725674456.916:1044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16464 comm="syz.3.4801" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 257.943029][ T39] audit: type=1326 audit(1725674456.916:1045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16464 comm="syz.3.4801" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 257.952163][ T39] audit: type=1326 audit(1725674456.916:1046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16464 comm="syz.3.4801" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 257.972702][ T39] audit: type=1326 audit(1725674456.916:1047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16464 comm="syz.3.4801" exe="/syz-executor" sig=0 arch=c000003e syscall=306 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 257.981331][ T39] audit: type=1326 audit(1725674456.916:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16464 comm="syz.3.4801" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fedc077cef9 code=0x7ffc0000 [ 258.313890][ T1811] usb 7-1: new high-speed USB device number 23 using dummy_hcd [ 258.514368][ T1811] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 258.519189][ T1811] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 258.524397][ T1811] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 258.530221][ T1811] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 258.536226][ T1811] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 258.551362][ T1811] usb 7-1: config 0 descriptor?? [ 258.881544][T16516] loop2: detected capacity change from 0 to 7 [ 258.884760][T16516] loop2: [CUMANA/ADFS] p1 [ADFS] p1 [ 258.886911][T16516] loop2: partition table partially beyond EOD, truncated [ 258.889645][T16516] loop2: p1 size 6333 extends beyond EOD, truncated [ 258.988446][ T1811] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0 [ 258.991010][ T1811] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0 [ 259.003008][ T1811] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0 [ 259.005525][ T1811] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0 [ 259.008021][ T1811] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0 [ 259.010513][ T1811] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0 [ 259.013872][ T1811] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0 [ 259.016415][ T1811] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0 [ 259.018916][ T1811] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0 [ 259.021660][ T1811] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0 [ 259.033066][ T1811] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0 [ 259.035500][ T1811] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0 [ 259.037930][ T1811] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0 [ 259.040420][ T1811] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0 [ 259.042934][ T1811] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0 [ 259.055899][ T1811] plantronics 0003:047F:FFFF.000E: No inputs registered, leaving [ 259.060267][ T1811] plantronics 0003:047F:FFFF.000E: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 259.254379][ T5399] usb 7-1: USB disconnect, device number 23 [ 260.180547][T16580] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4832'. [ 260.405014][T16547] syz.1.4821 (16547) used greatest stack depth: 19152 bytes left [ 260.481265][T16589] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4838'. [ 260.835132][T16619] sp0: Synchronizing with TNC [ 261.210983][T16634] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 261.213519][T16634] IPv6: NLM_F_CREATE should be set when creating new route [ 261.215962][T16634] IPv6: NLM_F_CREATE should be set when creating new route [ 261.239544][T16634] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 261.324964][T16636] netlink: 412 bytes leftover after parsing attributes in process `syz.0.4856'. [ 261.480754][T16658] nbd: device at index 0 is going down [ 261.603327][T11549] usb 8-1: new high-speed USB device number 19 using dummy_hcd [ 261.607879][T16663] trusted_key: syz.2.4860 sent an empty control message without MSG_MORE. [ 261.794269][T11549] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 261.797935][T11549] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 261.801841][T11549] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 261.823287][T11549] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 261.826369][T11549] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 261.843429][T11549] usb 8-1: config 0 descriptor?? [ 261.854324][T16645] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 261.942995][T16692] netlink: 'syz.0.4868': attribute type 4 has an invalid length. [ 262.204093][ T58] usb 7-1: new high-speed USB device number 24 using dummy_hcd [ 262.214139][ T66] Bluetooth: hci4: command 0x0405 tx timeout [ 262.306340][T11549] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 262.309035][T11549] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 262.313111][T11549] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 262.318010][T11549] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 262.323037][T11549] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 262.328570][T11549] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 262.334346][T11549] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 262.339955][T11549] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 262.345642][T11549] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 262.351135][T11549] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 262.357425][T11549] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 262.363028][T11549] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 262.368369][T11549] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 262.373775][T11549] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 262.379254][T11549] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 262.387539][T11549] plantronics 0003:047F:FFFF.000F: No inputs registered, leaving [ 262.399903][ T58] usb 7-1: New USB device found, idVendor=1bcf, idProduct=0b40, bcdDevice=80.b1 [ 262.403987][T11549] plantronics 0003:047F:FFFF.000F: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 262.408815][ T58] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 262.412997][ T58] usb 7-1: Product: syz [ 262.425578][ T58] usb 7-1: Manufacturer: syz [ 262.432811][ T58] usb 7-1: SerialNumber: syz [ 262.443367][ T58] usb 7-1: config 0 descriptor?? [ 262.446620][ T58] usb 7-1: Found UVC 0.00 device syz (1bcf:0b40) [ 262.448752][ T58] usb 7-1: Forcing UVC version to 1.0a [ 262.450594][ T58] usb 7-1: No valid video chain found. [ 262.615862][ T5399] usb 8-1: USB disconnect, device number 19 [ 262.676036][ T4319] usb 7-1: USB disconnect, device number 24 [ 263.173113][ T5344] Bluetooth: hci3: command 0x0c1a tx timeout [ 263.173138][ T5350] Bluetooth: hci3: Opcode 0x1407 failed: -110 [ 263.196336][T16754] netlink: 'syz.3.4879': attribute type 4 has an invalid length. [ 263.270851][T16756] syzkaller1: entered promiscuous mode [ 263.273696][T16756] syzkaller1: entered allmulticast mode [ 263.484629][T16777] syzkaller1: entered promiscuous mode [ 263.486515][T16777] syzkaller1: entered allmulticast mode [ 263.496869][ T39] kauditd_printk_skb: 2 callbacks suppressed [ 263.496879][ T39] audit: type=1400 audit(1725674718.573:1051): avc: denied { egress } for pid=34 comm="ksoftirqd/3" saddr=fe80::1c daddr=ff02::2 netif=wpan1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1 [ 263.513136][ T39] audit: type=1400 audit(1725674718.573:1052): avc: denied { sendto } for pid=34 comm="ksoftirqd/3" saddr=fe80::1c daddr=ff02::2 netif=wpan1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1 [ 264.098938][ T10] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 264.283773][ T5350] Bluetooth: hci4: command 0x0405 tx timeout [ 264.294993][ T10] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 264.298736][ T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 264.302554][ T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 264.306510][ T10] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 264.310681][ T10] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 264.315895][ T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 264.320087][T16823] netlink: 52 bytes leftover after parsing attributes in process `syz.3.4900'. [ 264.323964][ T10] usb 6-1: config 0 descriptor?? [ 264.474194][T16794] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 264.756194][ T10] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 264.759192][ T10] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 264.761859][ T10] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 264.770012][ T10] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 264.773760][ T10] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 264.776828][ T10] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 264.779873][ T10] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 264.782921][ T10] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 264.803056][ T10] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 264.805552][ T10] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 264.807987][ T10] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 264.810389][ T10] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 264.812844][ T10] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 264.820240][ T10] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 264.822735][ T10] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 264.826203][ T10] plantronics 0003:047F:FFFF.0010: No inputs registered, leaving [ 264.832572][ T10] plantronics 0003:047F:FFFF.0010: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 264.838113][T16874] netlink: 'syz.0.4917': attribute type 1 has an invalid length. [ 264.843163][T16874] netlink: 9344 bytes leftover after parsing attributes in process `syz.0.4917'. [ 264.847429][T16874] netlink: 'syz.0.4917': attribute type 1 has an invalid length. [ 264.873099][T16882] nbd: device at index 3 is going down [ 265.044179][ T10] usb 6-1: USB disconnect, device number 11 [ 265.105139][T16914] sp0: Synchronizing with TNC [ 265.133949][T16913] syzkaller1: entered promiscuous mode [ 265.136430][T16913] syzkaller1: entered allmulticast mode [ 265.333878][T16939] nbd: device at index 2 is going down [ 265.454670][T16952] sp0: Synchronizing with TNC [ 266.123076][ T1811] usb 7-1: new high-speed USB device number 25 using dummy_hcd [ 266.305062][ T1811] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 266.310272][ T1811] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 266.317441][ T1811] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 266.322877][ T1811] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 266.328133][ T1811] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 266.331691][ T1811] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 266.337523][ T1811] usb 7-1: config 0 descriptor?? [ 266.383121][ T39] audit: type=1400 audit(1725674721.453:1053): avc: denied { accept } for pid=17037 comm="syz.3.4958" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 266.547967][ T39] audit: type=1326 audit(1725674721.623:1054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16991 comm="syz.0.4945" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1f37cef9 code=0x7fc00000 [ 266.775195][ T1811] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 266.778539][ T1811] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 266.781782][ T1811] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 266.785348][ T1811] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 266.788651][ T1811] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 266.791936][ T1811] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 266.795336][ T1811] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 266.798641][ T1811] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 266.801916][ T1811] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 266.805328][ T1811] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 266.808598][ T1811] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 266.812461][ T1811] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 266.815818][ T1811] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 266.819097][ T1811] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 266.822296][ T1811] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 266.829908][ T1811] plantronics 0003:047F:FFFF.0011: No inputs registered, leaving [ 266.841521][ T1811] plantronics 0003:047F:FFFF.0011: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 267.048147][ T1811] usb 7-1: USB disconnect, device number 25 [ 267.693445][ T39] audit: type=1326 audit(1725674722.773:1055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17072 comm="syz.3.4965" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fedc077cef9 code=0x0 [ 268.151369][T17117] netlink: 32 bytes leftover after parsing attributes in process `syz.2.4980'. [ 268.168435][ T39] audit: type=1326 audit(1725674723.243:1056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17118 comm="syz.0.4981" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1f37cef9 code=0x7ffc0000 [ 268.183021][ T39] audit: type=1326 audit(1725674723.243:1057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17118 comm="syz.0.4981" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1f37cef9 code=0x7ffc0000 [ 268.197353][ T39] audit: type=1326 audit(1725674723.243:1058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17118 comm="syz.0.4981" exe="/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f3b1f37cef9 code=0x7ffc0000 [ 268.209914][ T39] audit: type=1326 audit(1725674723.243:1059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17118 comm="syz.0.4981" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1f37cef9 code=0x7ffc0000 [ 268.220518][ T39] audit: type=1326 audit(1725674723.243:1060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17118 comm="syz.0.4981" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1f37cef9 code=0x7ffc0000 [ 268.320646][T17129] netlink: 'syz.2.4986': attribute type 1 has an invalid length. [ 268.324165][T17129] netlink: 9372 bytes leftover after parsing attributes in process `syz.2.4986'. [ 268.328032][T17129] netlink: 'syz.2.4986': attribute type 1 has an invalid length. [ 268.384415][ T4319] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 268.400115][T17131] ebt_among: src integrity fail: 300 [ 268.584580][ T4319] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 268.589689][ T4319] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 268.603004][ T4319] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 268.608427][ T4319] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 268.618024][ T4319] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 268.622503][ T4319] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 268.633780][ T4319] usb 6-1: config 0 descriptor?? [ 268.637142][T17112] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 268.762757][T17156] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4996'. [ 268.861589][T17163] No buffer was provided with the request [ 269.014490][T17169] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 269.025899][T17173] input: syz1 as /devices/virtual/input/input40 [ 269.056921][ T39] kauditd_printk_skb: 9 callbacks suppressed [ 269.056931][ T39] audit: type=1400 audit(1725674724.133:1070): avc: denied { setopt } for pid=17177 comm="syz.0.5006" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 269.077625][ T39] audit: type=1400 audit(1725674724.133:1071): avc: denied { bind } for pid=17176 comm="syz.2.5005" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 269.107983][T17183] binder: 17182:17183 ioctl c0306201 20000000 returned -14 [ 269.146838][ T4319] plantronics 0003:047F:FFFF.0012: unknown main item tag 0xd [ 269.151534][ T4319] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0 [ 269.154582][ T4319] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0 [ 269.157840][ T4319] plantronics 0003:047F:FFFF.0012: No inputs registered, leaving [ 269.171243][ T4319] plantronics 0003:047F:FFFF.0012: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 269.187155][ T39] audit: type=1400 audit(1725674724.263:1072): avc: denied { getopt } for pid=17190 comm="syz.0.5011" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 269.453011][ T39] audit: type=1400 audit(1725674724.523:1073): avc: denied { create } for pid=17222 comm="syz.2.5018" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 269.469328][ T39] audit: type=1400 audit(1725674724.543:1074): avc: denied { listen } for pid=17209 comm="syz.0.5016" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 269.478691][ T39] audit: type=1400 audit(1725674724.553:1075): avc: denied { accept } for pid=17209 comm="syz.0.5016" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 269.874222][T17240] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5025'. [ 270.805553][T17302] input: syz1 as /devices/virtual/input/input41 [ 271.091191][ T39] audit: type=1400 audit(1725674726.163:1076): avc: denied { mounton } for pid=17322 comm="syz.1.5052" path="/267/file0" dev="tmpfs" ino=1400 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 271.105402][T17323] syz.1.5052: attempt to access beyond end of device [ 271.105402][T17323] nbd1: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 271.110324][T17323] SQUASHFS error: Failed to read block 0x0: -5 [ 271.112755][T17323] unable to read squashfs_super_block [ 271.210307][T17273] Bluetooth: Found 0 CAPI controller(s) on device 10:aa:aa:aa:aa:aa [ 271.313890][ T4319] usb 6-1: USB disconnect, device number 12 [ 271.559028][T17357] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 271.568903][T17357] overlayfs: maximum fs stacking depth exceeded [ 271.712313][T17309] orangefs_mount: mount request failed with -4 [ 272.024520][T17394] sctp: [Deprecated]: syz.1.5081 (pid 17394) Use of struct sctp_assoc_value in delayed_ack socket option. [ 272.024520][T17394] Use struct sctp_sack_info instead [ 272.475278][ T39] audit: type=1400 audit(1725674727.553:1077): avc: denied { write } for pid=17436 comm="syz.3.5098" path="socket:[65405]" dev="sockfs" ino=65405 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1 [ 273.086170][T17484] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5116'. [ 273.096001][T17486] team0: Device tunl0 is of different type [ 273.366785][T17500] sp0: Synchronizing with TNC [ 274.729115][T17518] orangefs_mount: mount request failed with -4 [ 274.763045][T17552] syz.0.5141[17552] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 274.763137][T17552] syz.0.5141[17552] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 274.767961][T17551] input input42: cannot allocate more than FF_MAX_EFFECTS effects [ 274.848183][T17561] input: syz1 as /devices/virtual/input/input43 [ 274.915868][T17572] vivid-000: disconnect [ 274.922404][T17570] vivid-000: reconnect [ 275.135983][T17584] usb usb8: usbfs: process 17584 (syz.0.5153) did not claim interface 0 before use [ 275.327765][ T39] audit: type=1400 audit(1725674730.403:1078): avc: denied { map } for pid=17602 comm="syz.1.5161" path="/dev/zero" dev="devtmpfs" ino=6 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1 [ 275.443849][ C0] [ 275.443858][ C0] ======================================================== [ 275.443864][ C0] WARNING: possible irq lock inversion dependency detected [ 275.443871][ C0] 6.11.0-rc6-syzkaller-00308-gb31c44928842 #0 Not tainted [ 275.443881][ C0] -------------------------------------------------------- [ 275.443886][ C0] syz.3.5162/17607 just changed the state of lock: [ 275.443896][ C0] ffff88802b731230 (&dev->event_lock#2){..-.}-{2:2}, at: input_inject_event+0xa4/0x370 [ 275.443942][ C0] but this lock took another, SOFTIRQ-READ-unsafe lock in the past: [ 275.443949][ C0] (tasklist_lock){.+.+}-{2:2} [ 275.443964][ C0] [ 275.443964][ C0] [ 275.443964][ C0] and interrupts could create inverse lock ordering between them. [ 275.443964][ C0] [ 275.443970][ C0] [ 275.443970][ C0] other info that might help us debug this: [ 275.443975][ C0] Chain exists of: [ 275.443975][ C0] &dev->event_lock#2 --> &client->buffer_lock --> tasklist_lock [ 275.443975][ C0] [ 275.444002][ C0] Possible interrupt unsafe locking scenario: [ 275.444002][ C0] [ 275.444007][ C0] CPU0 CPU1 [ 275.444011][ C0] ---- ---- [ 275.444015][ C0] lock(tasklist_lock); [ 275.444024][ C0] local_irq_disable(); [ 275.444029][ C0] lock(&dev->event_lock#2); [ 275.444043][ C0] lock(&client->buffer_lock); [ 275.444054][ C0] [ 275.444057][ C0] lock(&dev->event_lock#2); [ 275.444070][ C0] [ 275.444070][ C0] *** DEADLOCK *** [ 275.444070][ C0] [ 275.444073][ C0] 6 locks held by syz.3.5162/17607: [ 275.444082][ C0] #0: ffff88804e3400a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 275.444120][ C0] #1: ffff88804e340130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write.constprop.0+0x293/0x9b0 [ 275.444159][ C0] #2: ffff88804e3402e8 (&tty->termios_rwsem){++++}-{3:3}, at: n_tty_write+0x1c7/0x1150 [ 275.444201][ C0] #3: ffffc90006355380 (&ldata->output_lock){+.+.}-{3:3}, at: n_tty_write+0x53d/0x1150 [ 275.444243][ C0] #4: ffffffff8dda7ba0 (console_lock){+.+.}-{0:0}, at: do_con_write+0x154/0x7bb0 [ 275.444282][ C0] #5: ffffffff8ddb9fe0 (rcu_read_lock){....}-{1:2}, at: led_trigger_event+0x6c/0x270 [ 275.444326][ C0] [ 275.444326][ C0] the shortest dependencies between 2nd lock and 1st lock: [ 275.444347][ C0] -> (tasklist_lock){.+.+}-{2:2} { [ 275.444367][ C0] HARDIRQ-ON-R at: [ 275.444376][ C0] lock_acquire+0x1b1/0x560 [ 275.444399][ C0] _raw_read_lock+0x5f/0x70 [ 275.444419][ C0] __do_wait+0x105/0x890 [ 275.444440][ C0] do_wait+0x219/0x570 [ 275.444461][ C0] kernel_wait+0xa0/0x160 [ 275.444482][ C0] call_usermodehelper_exec_work+0xf1/0x170 [ 275.444500][ C0] process_one_work+0x9c5/0x1b40 [ 275.444523][ C0] worker_thread+0x6c8/0xed0 [ 275.444547][ C0] kthread+0x2c1/0x3a0 [ 275.444563][ C0] ret_from_fork+0x45/0x80 [ 275.444587][ C0] ret_from_fork_asm+0x1a/0x30 [ 275.444610][ C0] SOFTIRQ-ON-R at: [ 275.444618][ C0] lock_acquire+0x1b1/0x560 [ 275.444640][ C0] _raw_read_lock+0x5f/0x70 [ 275.444658][ C0] __do_wait+0x105/0x890 [ 275.444678][ C0] do_wait+0x219/0x570 [ 275.444698][ C0] kernel_wait+0xa0/0x160 [ 275.444719][ C0] call_usermodehelper_exec_work+0xf1/0x170 [ 275.444735][ C0] process_one_work+0x9c5/0x1b40 [ 275.444758][ C0] worker_thread+0x6c8/0xed0 [ 275.444780][ C0] kthread+0x2c1/0x3a0 [ 275.444797][ C0] ret_from_fork+0x45/0x80 [ 275.444821][ C0] ret_from_fork_asm+0x1a/0x30 [ 275.444844][ C0] INITIAL USE at: [ 275.444854][ C0] lock_acquire+0x1b1/0x560 [ 275.444878][ C0] _raw_write_lock_irq+0x36/0x50 [ 275.444897][ C0] copy_process+0x4420/0x8de0 [ 275.444917][ C0] kernel_clone+0xfd/0x960 [ 275.444935][ C0] user_mode_thread+0xb4/0xf0 [ 275.444954][ C0] rest_init+0x23/0x2b0 [ 275.444969][ C0] start_kernel+0x3df/0x4c0 [ 275.444993][ C0] x86_64_start_reservations+0x18/0x30 [ 275.445017][ C0] x86_64_start_kernel+0xb2/0xc0 [ 275.445041][ C0] common_startup_64+0x13e/0x148 [ 275.445058][ C0] INITIAL READ USE at: [ 275.445068][ C0] lock_acquire+0x1b1/0x560 [ 275.445089][ C0] _raw_read_lock+0x5f/0x70 [ 275.445108][ C0] __do_wait+0x105/0x890 [ 275.445129][ C0] do_wait+0x219/0x570 [ 275.445149][ C0] kernel_wait+0xa0/0x160 [ 275.445171][ C0] call_usermodehelper_exec_work+0xf1/0x170 [ 275.445188][ C0] process_one_work+0x9c5/0x1b40 [ 275.445213][ C0] worker_thread+0x6c8/0xed0 [ 275.445236][ C0] kthread+0x2c1/0x3a0 [ 275.445254][ C0] ret_from_fork+0x45/0x80 [ 275.445273][ C0] ret_from_fork_asm+0x1a/0x30 [ 275.445293][ C0] } [ 275.445303][ C0] ... key at: [] tasklist_lock+0x18/0x40 [ 275.445327][ C0] ... acquired at: [ 275.445332][ C0] _raw_read_lock+0x5f/0x70 [ 275.445349][ C0] send_sigurg+0xb0/0xc30 [ 275.445372][ C0] sk_send_sigurg+0x7a/0x370 [ 275.445394][ C0] unix_stream_sendmsg+0xe37/0x10f0 [ 275.445420][ C0] ____sys_sendmsg+0xab5/0xc90 [ 275.445437][ C0] ___sys_sendmsg+0x135/0x1e0 [ 275.445460][ C0] __sys_sendmmsg+0x1a1/0x450 [ 275.445482][ C0] __x64_sys_sendmmsg+0x9c/0x100 [ 275.445507][ C0] do_syscall_64+0xcd/0x250 [ 275.445531][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.445549][ C0] [ 275.445552][ C0] -> (&f->f_owner.lock){...-}-{2:2} { [ 275.445577][ C0] IN-SOFTIRQ-R at: [ 275.445586][ C0] lock_acquire+0x1b1/0x560 [ 275.445608][ C0] _raw_read_lock_irqsave+0x46/0x90 [ 275.445629][ C0] send_sigurg+0x22/0xc30 [ 275.445651][ C0] sk_send_sigurg+0x7a/0x370 [ 275.445670][ C0] tcp_urg+0x343/0xb80 [ 275.445693][ C0] tcp_rcv_established+0x8a6/0x21c0 [ 275.445710][ C0] tcp_v6_do_rcv+0x83c/0x16e0 [ 275.445758][ C0] tcp_v6_rcv+0x30b3/0x3fd0 [ 275.445773][ C0] ip6_protocol_deliver_rcu+0x180/0x1510 [ 275.445797][ C0] ip6_input_finish+0x14f/0x2f0 [ 275.445819][ C0] ip6_input+0xa1/0xd0 [ 275.445841][ C0] ipv6_rcv+0x265/0x680 [ 275.445863][ C0] __netif_receive_skb_one_core+0x12e/0x1e0 [ 275.445885][ C0] __netif_receive_skb+0x1d/0x160 [ 275.445905][ C0] process_backlog+0x443/0x15f0 [ 275.445926][ C0] __napi_poll.constprop.0+0xb7/0x550 [ 275.445947][ C0] net_rx_action+0xa92/0x1010 [ 275.445968][ C0] handle_softirqs+0x216/0x8f0 [ 275.445986][ C0] do_softirq+0xb2/0xf0 [ 275.446004][ C0] __local_bh_enable_ip+0x100/0x120 [ 275.446022][ C0] sk_stream_wait_memory+0x65e/0x10e0 [ 275.446044][ C0] tcp_sendmsg_locked+0xa7c/0x3550 [ 275.446061][ C0] tcp_sendmsg+0x2e/0x50 [ 275.446078][ C0] inet6_sendmsg+0xb9/0x140 [ 275.446096][ C0] __sys_sendto+0x371/0x4e0 [ 275.446115][ C0] __x64_sys_sendto+0xe0/0x1c0 [ 275.446136][ C0] do_syscall_64+0xcd/0x250 [ 275.446159][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.446177][ C0] INITIAL USE at: [ 275.446187][ C0] lock_acquire+0x1b1/0x560 [ 275.446210][ C0] _raw_write_lock_irq+0x36/0x50 [ 275.446231][ C0] f_modown+0x2a/0x380 [ 275.446247][ C0] generic_setlease+0xefc/0x1310 [ 275.446264][ C0] kernel_setlease+0x10c/0x140 [ 275.446279][ C0] vfs_setlease+0x25e/0x2e0 [ 275.446379][ C0] fcntl_setlease+0x3ee/0x5a0 [ 275.446403][ C0] do_fcntl+0xd78/0x1380 [ 275.446421][ C0] __x64_sys_fcntl+0x174/0x200 [ 275.446444][ C0] do_syscall_64+0xcd/0x250 [ 275.446466][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.446483][ C0] INITIAL READ USE at: [ 275.446494][ C0] lock_acquire+0x1b1/0x560 [ 275.446517][ C0] _raw_read_lock_irqsave+0x74/0x90 [ 275.446538][ C0] send_sigurg+0x22/0xc30 [ 275.446557][ C0] sk_send_sigurg+0x7a/0x370 [ 275.446578][ C0] tcp_urg+0x343/0xb80 [ 275.446600][ C0] tcp_rcv_established+0x8a6/0x21c0 [ 275.446613][ C0] tcp_v6_do_rcv+0x83c/0x16e0 [ 275.446631][ C0] __release_sock+0x14c/0x400 [ 275.446652][ C0] release_sock+0x5a/0x220 [ 275.446673][ C0] tcp_sendmsg+0x38/0x50 [ 275.446689][ C0] inet6_sendmsg+0xb9/0x140 [ 275.446704][ C0] ____sys_sendmsg+0x692/0xc90 [ 275.446720][ C0] ___sys_sendmsg+0x135/0x1e0 [ 275.446742][ C0] __sys_sendmmsg+0x1a1/0x450 [ 275.446766][ C0] __x64_sys_sendmmsg+0x9c/0x100 [ 275.446790][ C0] do_syscall_64+0xcd/0x250 [ 275.446812][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.446828][ C0] } [ 275.446832][ C0] ... key at: [] __key.2+0x0/0x40 [ 275.446860][ C0] ... acquired at: [ 275.446865][ C0] _raw_read_lock_irqsave+0x74/0x90 [ 275.446883][ C0] send_sigio+0x28/0x3c0 [ 275.446901][ C0] kill_fasync+0x1f6/0x4f0 [ 275.446920][ C0] mousedev_write+0x617/0x830 [ 275.446942][ C0] vfs_writev+0x6ec/0xde0 [ 275.446956][ C0] do_writev+0x287/0x370 [ 275.446969][ C0] do_syscall_64+0xcd/0x250 [ 275.446990][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.447004][ C0] [ 275.447007][ C0] -> (&new->fa_lock){....}-{2:2} { [ 275.447029][ C0] INITIAL USE at: [ 275.447037][ C0] lock_acquire+0x1b1/0x560 [ 275.447059][ C0] _raw_write_lock_irq+0x36/0x50 [ 275.447079][ C0] fasync_remove_entry+0xb9/0x1f0 [ 275.447101][ C0] fasync_helper+0xaf/0xd0 [ 275.447122][ C0] lease_modify+0x215/0x4d0 [ 275.447138][ C0] locks_remove_file+0x29f/0x5a0 [ 275.447157][ C0] __fput+0x34e/0xbb0 [ 275.447176][ C0] task_work_run+0x14e/0x250 [ 275.447199][ C0] syscall_exit_to_user_mode+0x27b/0x2a0 [ 275.447222][ C0] do_syscall_64+0xda/0x250 [ 275.447363][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.447384][ C0] INITIAL READ USE at: [ 275.447394][ C0] lock_acquire+0x1b1/0x560 [ 275.447417][ C0] _raw_read_lock_irqsave+0x74/0x90 [ 275.447438][ C0] kill_fasync+0x138/0x4f0 [ 275.447459][ C0] mousedev_write+0x617/0x830 [ 275.447482][ C0] vfs_writev+0x6ec/0xde0 [ 275.447497][ C0] do_writev+0x287/0x370 [ 275.447512][ C0] do_syscall_64+0xcd/0x250 [ 275.447535][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.447551][ C0] } [ 275.447556][ C0] ... key at: [] __key.0+0x0/0x40 [ 275.447573][ C0] ... acquired at: [ 275.447578][ C0] _raw_read_lock_irqsave+0x74/0x90 [ 275.447599][ C0] kill_fasync+0x138/0x4f0 [ 275.447619][ C0] evdev_pass_values+0x619/0x9b0 [ 275.447633][ C0] evdev_events+0x1bb/0x390 [ 275.447648][ C0] input_pass_values+0x777/0x8e0 [ 275.447663][ C0] input_handle_event+0xf0b/0x14d0 [ 275.447679][ C0] input_inject_event+0x1bb/0x370 [ 275.447694][ C0] evdev_write+0x450/0x750 [ 275.447709][ C0] vfs_write+0x29a/0x1140 [ 275.447724][ C0] ksys_write+0x1f8/0x260 [ 275.447739][ C0] do_syscall_64+0xcd/0x250 [ 275.447761][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.447776][ C0] [ 275.447779][ C0] -> (&client->buffer_lock){....}-{2:2} { [ 275.447801][ C0] INITIAL USE at: [ 275.447809][ C0] lock_acquire+0x1b1/0x560 [ 275.447832][ C0] _raw_spin_lock+0x2e/0x40 [ 275.447850][ C0] evdev_pass_values+0x10e/0x9b0 [ 275.447866][ C0] evdev_events+0x1bb/0x390 [ 275.447881][ C0] input_pass_values+0x777/0x8e0 [ 275.447895][ C0] input_handle_event+0xf0b/0x14d0 [ 275.447912][ C0] input_inject_event+0x1bb/0x370 [ 275.447928][ C0] evdev_write+0x450/0x750 [ 275.447945][ C0] vfs_write+0x29a/0x1140 [ 275.447960][ C0] ksys_write+0x1f8/0x260 [ 275.447977][ C0] do_syscall_64+0xcd/0x250 [ 275.447999][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.448016][ C0] } [ 275.448020][ C0] ... key at: [] __key.1+0x0/0x40 [ 275.448037][ C0] ... acquired at: [ 275.448042][ C0] _raw_spin_lock+0x2e/0x40 [ 275.448060][ C0] evdev_pass_values+0x10e/0x9b0 [ 275.448073][ C0] evdev_events+0x1bb/0x390 [ 275.448088][ C0] input_pass_values+0x777/0x8e0 [ 275.448103][ C0] input_handle_event+0xf0b/0x14d0 [ 275.448118][ C0] input_inject_event+0x1bb/0x370 [ 275.448131][ C0] evdev_write+0x450/0x750 [ 275.448145][ C0] vfs_write+0x29a/0x1140 [ 275.448159][ C0] ksys_write+0x1f8/0x260 [ 275.448198][ C0] do_syscall_64+0xcd/0x250 [ 275.448223][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.448240][ C0] [ 275.448244][ C0] -> (&dev->event_lock#2){..-.}-{2:2} { [ 275.448275][ C0] IN-SOFTIRQ-W at: [ 275.448285][ C0] lock_acquire+0x1b1/0x560 [ 275.448316][ C0] _raw_spin_lock_irqsave+0x3a/0x60 [ 275.448338][ C0] input_inject_event+0xa4/0x370 [ 275.448356][ C0] led_set_brightness+0x211/0x290 [ 275.448382][ C0] led_trigger_event+0xda/0x270 [ 275.448400][ C0] kbd_bh+0x21b/0x300 [ 275.448421][ C0] tasklet_action_common.constprop.0+0x24c/0x3e0 [ 275.448443][ C0] handle_softirqs+0x216/0x8f0 [ 275.448461][ C0] irq_exit_rcu+0xbb/0x120 [ 275.448479][ C0] sysvec_apic_timer_interrupt+0x95/0xb0 [ 275.448500][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 275.448520][ C0] _raw_spin_unlock_irqrestore+0x31/0x80 [ 275.448542][ C0] do_con_write+0x3e8e/0x7bb0 [ 275.448563][ C0] con_write+0x23/0xb0 [ 275.448583][ C0] n_tty_write+0x423/0x1150 [ 275.448605][ C0] file_tty_write.constprop.0+0x518/0x9b0 [ 275.448625][ C0] vfs_write+0x6b6/0x1140 [ 275.448643][ C0] ksys_write+0x12f/0x260 [ 275.448662][ C0] do_syscall_64+0xcd/0x250 [ 275.448686][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.448704][ C0] INITIAL USE at: [ 275.448713][ C0] lock_acquire+0x1b1/0x560 [ 275.448737][ C0] _raw_spin_lock_irqsave+0x3a/0x60 [ 275.448759][ C0] input_inject_event+0xa4/0x370 [ 275.448777][ C0] led_set_brightness+0x211/0x290 [ 275.448802][ C0] kbd_led_trigger_activate+0xcb/0x110 [ 275.448823][ C0] led_trigger_set+0x59a/0xc60 [ 275.448841][ C0] led_trigger_set_default+0x1bd/0x2a0 [ 275.448861][ C0] led_classdev_register_ext+0x78c/0x9e0 [ 275.448878][ C0] input_leds_connect+0x54a/0x8e0 [ 275.448903][ C0] input_attach_handler.isra.0+0x181/0x260 [ 275.448920][ C0] input_register_device+0xa8e/0x1140 [ 275.448938][ C0] atkbd_connect+0x5e2/0xa20 [ 275.448958][ C0] serio_driver_probe+0x74/0xa0 [ 275.448984][ C0] really_probe+0x23e/0xa90 [ 275.449007][ C0] __driver_probe_device+0x1de/0x440 [ 275.449029][ C0] driver_probe_device+0x4c/0x1b0 [ 275.449051][ C0] __driver_attach+0x283/0x580 [ 275.449072][ C0] bus_for_each_dev+0x13c/0x1d0 [ 275.449090][ C0] serio_handle_event+0x2bb/0xa90 [ 275.449106][ C0] process_one_work+0x9c5/0x1b40 [ 275.449131][ C0] worker_thread+0x6c8/0xed0 [ 275.449156][ C0] kthread+0x2c1/0x3a0 [ 275.449174][ C0] ret_from_fork+0x45/0x80 [ 275.449198][ C0] ret_from_fork_asm+0x1a/0x30 [ 275.449222][ C0] } [ 275.449227][ C0] ... key at: [] __key.7+0x0/0x40 [ 275.449255][ C0] ... acquired at: [ 275.449261][ C0] __lock_acquire+0x11d7/0x3cb0 [ 275.449284][ C0] lock_acquire+0x1b1/0x560 [ 275.449306][ C0] _raw_spin_lock_irqsave+0x3a/0x60 [ 275.449333][ C0] input_inject_event+0xa4/0x370 [ 275.449351][ C0] led_set_brightness+0x211/0x290 [ 275.449375][ C0] led_trigger_event+0xda/0x270 [ 275.449393][ C0] kbd_bh+0x21b/0x300 [ 275.449412][ C0] tasklet_action_common.constprop.0+0x24c/0x3e0 [ 275.449433][ C0] handle_softirqs+0x216/0x8f0 [ 275.449450][ C0] irq_exit_rcu+0xbb/0x120 [ 275.449467][ C0] sysvec_apic_timer_interrupt+0x95/0xb0 [ 275.449489][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 275.449508][ C0] _raw_spin_unlock_irqrestore+0x31/0x80 [ 275.449530][ C0] do_con_write+0x3e8e/0x7bb0 [ 275.449550][ C0] con_write+0x23/0xb0 [ 275.449569][ C0] n_tty_write+0x423/0x1150 [ 275.449590][ C0] file_tty_write.constprop.0+0x518/0x9b0 [ 275.449610][ C0] vfs_write+0x6b6/0x1140 [ 275.449626][ C0] ksys_write+0x12f/0x260 [ 275.449643][ C0] do_syscall_64+0xcd/0x250 [ 275.449665][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.449683][ C0] [ 275.449686][ C0] [ 275.449686][ C0] stack backtrace: [ 275.449693][ C0] CPU: 0 UID: 0 PID: 17607 Comm: syz.3.5162 Not tainted 6.11.0-rc6-syzkaller-00308-gb31c44928842 #0 [ 275.449737][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 275.449749][ C0] Call Trace: [ 275.449756][ C0] [ 275.449764][ C0] dump_stack_lvl+0x116/0x1f0 [ 275.449787][ C0] print_irq_inversion_bug.part.0+0x3e9/0x5a0 [ 275.449815][ C0] ? __pfx_print_irq_inversion_bug.part.0+0x10/0x10 [ 275.449841][ C0] ? __pfx_usage_skip+0x10/0x10 [ 275.449860][ C0] ? __pfx_usage_match+0x10/0x10 [ 275.449885][ C0] mark_lock+0x574/0xc60 [ 275.449911][ C0] ? __pfx_mark_lock+0x10/0x10 [ 275.449935][ C0] ? __pfx_lock_release+0x10/0x10 [ 275.449961][ C0] ? hlock_class+0x4e/0x130 [ 275.449982][ C0] ? mark_lock+0xb5/0xc60 [ 275.450009][ C0] ? __pfx_mark_lock+0x10/0x10 [ 275.450033][ C0] ? __pfx_mark_lock+0x10/0x10 [ 275.450060][ C0] __lock_acquire+0x11d7/0x3cb0 [ 275.450092][ C0] ? hlock_class+0x4e/0x130 [ 275.450113][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 275.450143][ C0] lock_acquire+0x1b1/0x560 [ 275.450168][ C0] ? input_inject_event+0xa4/0x370 [ 275.450189][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 275.450217][ C0] ? lock_acquire+0x1b1/0x560 [ 275.450248][ C0] _raw_spin_lock_irqsave+0x3a/0x60 [ 275.450271][ C0] ? input_inject_event+0xa4/0x370 [ 275.450291][ C0] input_inject_event+0xa4/0x370 [ 275.450317][ C0] ? __pfx_input_leds_brightness_set+0x10/0x10 [ 275.450344][ C0] led_set_brightness+0x211/0x290 [ 275.450372][ C0] led_trigger_event+0xda/0x270 [ 275.450393][ C0] kbd_bh+0x21b/0x300 [ 275.450413][ C0] tasklet_action_common.constprop.0+0x24c/0x3e0 [ 275.450436][ C0] handle_softirqs+0x216/0x8f0 [ 275.450457][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 275.450480][ C0] irq_exit_rcu+0xbb/0x120 [ 275.450499][ C0] sysvec_apic_timer_interrupt+0x95/0xb0 [ 275.450523][ C0] [ 275.450529][ C0] [ 275.450535][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 275.450556][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x31/0x80 [ 275.450582][ C0] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 96 12 50 f6 48 89 df e8 ae 8f 50 f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 01 00 00 00 e8 d5 02 42 f6 65 8b 05 56 2d ea 74 85 c0 74 16 5b [ 275.450597][ C0] RSP: 0018:ffffc90024f17958 EFLAGS: 00000246 [ 275.450612][ C0] RAX: 0000000000000002 RBX: ffffffff8e9ca1a0 RCX: 1ffffffff2d249ed [ 275.450624][ C0] RDX: 0000000000000000 RSI: ffffffff8b4cd740 RDI: ffffffff8bb0fb40 [ 275.450636][ C0] RBP: 0000000000000246 R08: 0000000000000001 R09: fffffbfff2d248e0 [ 275.450648][ C0] R10: ffffffff96924707 R11: ffff88806a628a40 R12: dffffc0000000000 [ 275.450661][ C0] R13: 0000000000000000 R14: 000000000000009b R15: ffff88801acb1000 [ 275.450682][ C0] do_con_write+0x3e8e/0x7bb0 [ 275.450713][ C0] ? __pfx_do_con_write+0x10/0x10 [ 275.450733][ C0] ? __pfx___mutex_lock+0x10/0x10 [ 275.450766][ C0] con_write+0x23/0xb0 [ 275.450785][ C0] n_tty_write+0x423/0x1150 [ 275.450814][ C0] ? __pfx_n_tty_write+0x10/0x10 [ 275.450839][ C0] ? __pfx_woken_wake_function+0x10/0x10 [ 275.450859][ C0] ? __virt_addr_valid+0x5e/0x590 [ 275.450879][ C0] ? __phys_addr_symbol+0x30/0x80 [ 275.450898][ C0] ? __check_object_size+0x497/0x720 [ 275.450921][ C0] ? __pfx_n_tty_write+0x10/0x10 [ 275.450945][ C0] file_tty_write.constprop.0+0x518/0x9b0 [ 275.450968][ C0] vfs_write+0x6b6/0x1140 [ 275.450986][ C0] ? __pfx_tty_write+0x10/0x10 [ 275.451007][ C0] ? __pfx_vfs_write+0x10/0x10 [ 275.451025][ C0] ? do_futex+0x123/0x350 [ 275.451052][ C0] ? __fget_files+0x256/0x400 [ 275.451073][ C0] ? __fget_light+0x173/0x210 [ 275.451093][ C0] ksys_write+0x12f/0x260 [ 275.451112][ C0] ? __pfx_ksys_write+0x10/0x10 [ 275.451137][ C0] do_syscall_64+0xcd/0x250 [ 275.451164][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.451183][ C0] RIP: 0033:0x7fedc077cef9 [ 275.451197][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 275.451214][ C0] RSP: 002b:00007fedc15e9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 275.451232][ C0] RAX: ffffffffffffffda RBX: 00007fedc0935f80 RCX: 00007fedc077cef9 [ 275.451244][ C0] RDX: 0000000000001006 RSI: 0000000020002080 RDI: 0000000000000006 [ 275.451256][ C0] RBP: 00007fedc07ef046 R08: 0000000000000000 R09: 0000000000000000 [ 275.451267][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 275.451279][ C0] R13: 0000000000000000 R14: 00007fedc0935f80 R15: 00007fffed0fc278 [ 275.451299][ C0] VM DIAGNOSIS: 01:56:58 Registers: info registers vcpu 0 CPU#0 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85030a45 RDI=ffffffff9a5b4f60 RBP=ffffffff9a5b4f20 RSP=ffffc90024f17670 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e31312e36 R12=0000000000000000 R13=000000000000002d R14=ffffffff850309e0 R15=0000000000000000 RIP=ffffffff85030a6f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fedc15e96c0 ffffffff 00c00000 GS =0000 ffff88806a600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f3f0a8c5f98 CR3=0000000026da4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f09befe6a ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f09befe77 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f09befe71 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f09befe85 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f09beff0b ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f09beffe9 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f09cff488 00007f3f09cff480 00007f3f09cff478 00007f3f09cff450 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f0a86d100 00007f3f09cff440 00007f3f09cff458 00007f3f09cff4a0 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f09cff498 00007f3f09cff490 00007f3f09cff488 00007f3f09cff480 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000001 RBX=ffff8880278583c0 RCX=ffffffff816a3d93 RDX=dffffc0000000000 RSI=0000000000000004 RDI=0000000000000001 RBP=ffff88805a380000 RSP=ffffc90005e37bf0 R8 =0000000000000000 R9 =ffffed1004f0b078 R10=ffff8880278583c3 R11=0000000000000000 R12=0000000000000000 R13=ffffed1004f0b082 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff815bb080 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fa92dbf96c0 ffffffff 00c00000 GS =0000 ffff88806a700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000001b3170eff8 CR3=0000000023fe8000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000c0fffc00 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555859cfa8a 00005555859cf9e0 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555859c24a8 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555859d26b8 00005555859d2650 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd8d8a0ab0 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff042df003000800 2de8030008002de0 030008002dd80300 08002dd00303ffff ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a1000060202a800 08002e9803000800 2e900303ffffffff 042e800303ffffff ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 655f73797301ffff ffffffffffffeb08 0580030580040f80 0302a010002c8004 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0004044fc2201000 0f80042210000601 01f4010000020806 0f9003007265746e ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0102800401000004 080604014fc60010 0000100004044fc2 2010000f80042210 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00060101f4010000 0208060f90030072 65746e655f737973 01ffffffffffffff ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffeb080580030580 040f800302a01000 2c80040a10000602 02a80008002e9803 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0008002e900303ff ffffff042e800303 ffffffff042df003 0008002de8030008 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=dffffc0000000000 RBX=ffff888028a023c0 RCX=ffffffff816a3a0d RDX=1ffff11005140479 RSI=0000000000000004 RDI=ffffc900033e7bb8 RBP=1ffff9200067cf73 RSP=ffffc900033e7b90 R8 =0000000000000001 R9 =fffff5200067cf77 R10=0000000000000003 R11=0000000000000000 R12=ffff888028a023c8 R13=ffff888028a023d0 R14=0000000000000002 R15=0000000000000000 RIP=ffffffff816a3a3d RFL=00000a02 [-O-----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 00007f8b983ff6c0 ffffffff 00c00000 GS =0000 ffff88806a800000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000055556848a808 CR3=0000000025592000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000004000 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff1fa814c0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3b1f3efe6a ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3b1f3efe77 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3b1f3efe71 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3b1f3efe85 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3b1f3eff0b ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3b1f3effe9 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=1ffff11003e91e8a RBX=ffff88801f48f450 RCX=ffffffff89378599 RDX=ffff88801f480000 RSI=ffffffff893785a7 RDI=0000000000000004 RBP=dffffc0000000000 RSP=ffffc90025d17b98 R8 =0000000000000004 R9 =0000000000001e8a R10=0000000000010000 R11=0000000000000000 R12=ffffc90025d17c38 R13=0000000000001e8a R14=0000000000000001 R15=0000000000000000 RIP=ffffffff893785c0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806a900000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000055558eaeb808 CR3=000000005555e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000001000000 Opmask01=0000000001000003 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd3f592dc0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f09befe6a ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f09befe77 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f09befe71 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f09befe85 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f09beff0b ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f3f09beffe9 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000cf0 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 0000000000000cf0 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000