last executing test programs: 1m29.13651435s ago: executing program 2 (id=307): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=@ipv6_deladdrlabel={0x38, 0x49, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x6}, [@IFAL_ADDRESS={0x14, 0x1, @private2}, @IFAL_LABEL={0x8, 0x2, 0x4}]}, 0x38}}, 0x0) mkdir(&(0x7f00000004c0)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000180), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f0000000140)='./bus\x00') r1 = creat(&(0x7f0000000000)='./bus\x00', 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r2}, 0x10) lseek(r1, 0x4, 0x0) 1m29.136253035s ago: executing program 2 (id=308): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$IPVS_CMD_GET_DAEMON(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)={0x14, r2, 0x6c04073ee59f7719, 0x0, 0x0, {0x4}}, 0x14}}, 0x0) (fail_nth: 4) 1m28.976472835s ago: executing program 2 (id=309): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) socketpair(0x9, 0x1, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$IPSET_CMD_TYPE(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="240000000d06010300000000000000000000000205000100070000000500010007000000dfdbb0f6996c023767bbd910ec39e3360825390dd40b31b558c645051e0f68d1d480bf1a53cf9b699b30fe1cf39333e4f2c89befe5f5d7591b2c3b3996d9bae993f830d99c1203e3ab9c4ae92b05b420145f711c77502c921756a799efe2dee32b5aa79a2fbc27953cb0ccb9d691eadb52f9bf8c235a270bebf4c4603a908f312bd5a4a88cd1a9ddaf2912e50e5c6370"], 0x24}, 0x1, 0x0, 0x0, 0x44000}, 0x4000) sendmsg$IPCTNL_MSG_CT_NEW(r0, 0x0, 0x80) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x25}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}}, @NFT_MSG_NEWSETELEM={0x20, 0xc, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x10}}, 0x7c}}, 0x0) sendmsg$NFT_BATCH(r1, 0x0, 0x8000) socket(0x10, 0x3, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$unix(0x1, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x4c, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x5c}, @val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x1}]}, 0x4c}, 0x1, 0x0, 0x0, 0x81}, 0x24044894) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r6) socket$inet_sctp(0x2, 0x1, 0x84) ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) socket(0x10, 0x3, 0x0) 1m28.906056157s ago: executing program 2 (id=310): r0 = socket(0x2, 0x3, 0xa) bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x89) setsockopt$inet_int(r0, 0x0, 0x14, 0x0, 0x0) getsockopt$ARPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x63, 0x0, &(0x7f00000000c0)) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000240)=0x45d8, 0x4) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_udp_encap(r1, 0x11, 0x64, &(0x7f0000000180)=0x5, 0x4) r2 = openat$vicodec0(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x0, 0x34324152}}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce) r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000e8000000000040d900008500000023000000850000000f00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r6 = syz_open_dev$radio(&(0x7f0000000000), 0x3, 0x2) ioctl$vim2m_VIDIOC_QBUF(r3, 0xc04c560f, &(0x7f0000000340)=@multiplanar_overlay={0xac66, 0x43335ad05eaf740b, 0x4, 0x2, 0x4, {0x0, 0x2710}, {0x2, 0x8, 0x5, 0x3, 0x4, 0x5, "30aeb506"}, 0x9, 0x3, {&(0x7f00000002c0)=[{0x2, 0x0, {0x1825}, 0xa}, {0xfff, 0x0, {0x1}, 0x29}]}, 0xfffeffff}) r7 = syz_io_uring_setup(0x239, &(0x7f0000000540)={0x0, 0xffffffff, 0x400, 0x0, 0x2000}, &(0x7f0000000080)=0x0, &(0x7f0000000280)=0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) io_uring_enter(r7, 0x2def, 0x0, 0x0, 0x0, 0x0) ioctl$VIDIOC_SUBSCRIBE_EVENT(r6, 0x4020565a, &(0x7f0000000140)={0x3, 0x98f90f, 0x1}) ioctl$VIDIOC_G_EXT_CTRLS(r2, 0xc0185648, &(0x7f0000000080)={0x0, 0x81, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x98f905, 0x8002, '\x00', @p_u16=0x0}}) r10 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0) lseek(r10, 0x6, 0x1) 1m28.018497259s ago: executing program 2 (id=311): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300002095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='percpu_alloc_percpu\x00', r0}, 0x10) bind$bt_hci(0xffffffffffffffff, 0x0, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) syz_io_uring_setup(0x3954, &(0x7f0000000100)={0x0, 0x0, 0x2, 0x0, 0x28b}, 0x0, 0x0) 1m27.116476852s ago: executing program 2 (id=313): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_mreqsrc(r1, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @local}, 0xc) syz_emit_ethernet(0x36, &(0x7f0000001800)=ANY=[@ANYBLOB="aaaaaaaaaaaa50a245d5cde0080045000028000000000002907800000000ffffffff11009078e000000200000000b74bad93b59a16c3"], 0x0) syz_emit_ethernet(0x11, &(0x7f0000000080)=ANY=[@ANYBLOB="0180c200000050a245d5cde00805030af714d82ccbfbb2a053f43a5bd1bbc5e309bd81a920d6e10c20837dddcaf898a8c8af5d0bdc84f197e86faa8355bab45c14d98f7fb4da413e5eab864212ec6d1ca38448c7501585c14d07fd1845b27786f1e49cd85653f7593e5092eabc5f0b39b734fb5fed55e1c8b7360ef5427d124885d19c3188ac22eaaf655afff998c07349125a60322d19"], 0x0) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000140)={'syztnl0\x00', 0x0}) setsockopt$inet_mreqn(r1, 0x0, 0x20, &(0x7f0000000180)={@multicast2, @remote}, 0xc) userfaultfd(0x1) gettid() timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2}, &(0x7f0000bbdffc)) clock_gettime(0x0, &(0x7f0000000000)) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r4) socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r4, 0x9) r5 = socket$inet_mptcp(0x2, 0x1, 0x106) ioctl$KDGKBENT(0xffffffffffffffff, 0x4b46, &(0x7f0000000280)={0x0, 0x9, 0xff}) sendmmsg(r5, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20000000) connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000300)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="090000000000180000000700000014000180059be8603b9154f0944a81604f3c0cec00020001000000080006001d000000"], 0x28}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r7 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) 1m21.194030835s ago: executing program 0 (id=318): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) socketpair(0x9, 0x1, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$IPSET_CMD_TYPE(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="240000000d06010300000000000000000000000205000100070000000500010007000000dfdbb0f6996c023767bbd910ec39e3360825390dd40b31b558c645051e0f68d1d480bf1a53cf9b699b30fe1cf39333e4f2c89befe5f5d7591b2c3b3996d9bae993f830d99c1203e3ab9c4ae92b05b420145f711c77502c921756a799efe2dee32b5aa79a2fbc27953cb0ccb9d691eadb52f9bf8c235a270bebf4c4603a908f312bd5a4a88cd1a9ddaf2912e50e5c6370"], 0x24}, 0x1, 0x0, 0x0, 0x44000}, 0x4000) sendmsg$IPCTNL_MSG_CT_NEW(r0, 0x0, 0x80) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x25}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}}, @NFT_MSG_NEWSETELEM={0x20, 0xc, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x10}}, 0x7c}}, 0x0) sendmsg$NFT_BATCH(r1, 0x0, 0x8000) socket(0x10, 0x3, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$unix(0x1, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x4c, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x5c}, @val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x1}]}, 0x4c}, 0x1, 0x0, 0x0, 0x81}, 0x24044894) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r6) socket$inet_sctp(0x2, 0x1, 0x84) ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) socket(0x10, 0x3, 0x0) 1m21.095564629s ago: executing program 0 (id=319): mkdirat(0xffffffffffffff9c, 0x0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="36000000020000000000000000000000000d00000000000000646f6e745f61707072"], 0x36) 1m21.035971301s ago: executing program 0 (id=320): r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000feffff000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f00000005c0)={0x3, r0}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f00000004c0)='contention_begin\x00', r1}, 0x18) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x7, &(0x7f0000000280)=[0x1], &(0x7f0000000340)=[{0x4, 0x2, 0x6, 0x8}, {0x0, 0x1, 0xb, 0x8}, {0x0, 0x2, 0x9, 0x5}, {0x1, 0x2, 0xf, 0x7}, {0x3, 0x5, 0xe, 0xa}, {0x5, 0x2, 0xf, 0x2}, {0x5, 0x5, 0x3, 0x9}], 0x10, 0xfffffffb, @void, @value}, 0x94) syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00') prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000006900000000000001000000940fa7c7326ae0367600000007070000b28a4533503319"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r2}, 0x18) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x1f2f, 0xc0, 0x0, &(0x7f0000000480)="9f44948721919580684010a405dda2717060ce495279829e885d4ce90c523581d5176139cbff678c665c39a4a355cf7be014c74aab5afc1173fca09b436f7a26cdd634e101abbef0db144b8f2d5abd18ada30460ba731fab3bf7bf7fb419a6769cc6cf4906308db105d0b503ffb7e64f5fc98b0f48b8ad2a4ed10782a8cbce676147e697f36e08fd1a24b93de910fa2faa41a69cfb8d9a760657287681921e332f941874c9b33a489c570917e3b3e82d600d5c1ba4a70373695d4b54e33cfae1", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) bpf$MAP_CREATE(0x0, 0x0, 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x0, 0x0, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0x0, 0xe, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x20000000}, 0xc) r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/netlink\x00') lseek(r7, 0x10401, 0x0) syz_usb_connect$cdc_ecm(0x5, 0x56, &(0x7f0000000800)=ANY=[@ANYBLOB="12010000020000102505a1a4400000000101090244000101000000090400001602020000052406000005240000000d240f01000000000000000000090581030000000000090582f5ffffffffff080503020000000000f2d8c2eaef600316972c06f93980052980bb410281a3181e20850fb75c5807181fdb0bb890b982e7dddf81084907fcddd6b9e857c5206a22dbc1b89f667599a57c28afc74eb3bd75b2f4faae99e386c48a6b9f1280553830c3e3ba56c1dec3269d17447b852957dd6e6d312c1af9cd676eed792adb6dd1d365a4f9031006d2be6efc6d62978ed74d391237684e2399203a50952a148ca255c57816eab78b97b9f155dd213e0308666064d4f80018cdbb7f68a41036aab20da67e938dbeb2677ba9e1f163cafaf74ef400"/299, @ANYRES8=r7, @ANYRESOCT=r6], 0x0) 1m19.355364108s ago: executing program 1 (id=323): socket$nl_route(0x10, 0x3, 0x0) socket(0x10, 0x803, 0x0) getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = dup(r2) ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r3, 0x4068aea3, &(0x7f0000000580)={0xbe, 0x0, 0x1}) ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f00000001c0)=ANY=[@ANYBLOB="01000000050000f5034d564b"]) madvise(&(0x7f0000000000/0x600000)=nil, 0x600707, 0x3) socket$nl_route(0x10, 0x3, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0xa02, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_rdma(0x10, 0x3, 0x14) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="1f02ffff0000000000003b000000", @ANYRES32=r7, @ANYBLOB="21003300d0800000080211000000080211000001505050505050000000000000", @ANYRES8=r5], 0x40}}, 0x0) 1m17.956316142s ago: executing program 0 (id=324): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, 0x930, 0x300000f, 0x12, r1, 0x0) move_pages(0x0, 0x1, &(0x7f0000000000)=[&(0x7f0000ffb000/0x3000)=nil], 0x0, &(0x7f0000000080), 0x2) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4001, 0x0, @loopback}, 0x1c) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_SET_FLAGS(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x18, r3, 0x1, 0xff1f0000, 0x0, {0x2}, [@MPTCP_PM_ATTR_ADDR={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x24000014}, 0x40004) 1m17.95585458s ago: executing program 0 (id=325): dup(0xffffffffffffffff) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) execve(0x0, 0x0, 0x0) openat$binfmt(0xffffff9c, 0x0, 0x41, 0x1ff) socket$xdp(0x2c, 0x3, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="03fe000000000000140012800b0001006d616373656300000400028008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x44}}, 0x0) sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0) eventfd(0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) socket$inet_mptcp(0x2, 0x1, 0x106) openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_emit_ethernet(0x25e, &(0x7f0000000340)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0180f2", 0x228, 0x6, 0x0, @remote, @local, {[@hopopts={0x32, 0x31, '\x00', [@generic={0xf7, 0xee, "b24a4e1a4a4fee327dac39ee27727ff7f1bd8a21851c26e67632ab2ef9361ff948fa0a76604588dd4b3784f82be3401be59400cd28f91782ca3f916e90358c763e2eb653f86e3ad63d3912e93e9725c735e92dd749ae9cde9058cdb0f70e83e8ef9844cb59101584f5f07b3eb906240fb189b54d7b9f010be09fbac2dadbcdba7336c081329ea6ae9f4a8b2d90de604c78c2f2bbe71ad6170eaaa80f033400bfec08af91b319d766120e5161be970bb9ee4420160d3db863d65d869eb668c21869a8846eafc2e5fa8c896738ffeebc04eb2bb887fe1797b297800267be5e6d9dfba508a7700ed35c6c595d5cfcf6"}, @generic={0x8, 0x93, "5e670cae5efb76c8c0622932b761c27cc50c74e44a139fd7f8a510dc2e8b3d37a36862a0a5bf3d350986cbca496eeb0b32fa7c1d67d440d8513b63573ba330171f5bf967b44a40b2e43c4bf98007b88781027c399fcddb8c47a42f2d31635bb9502c4fe2d39372ac5177b7004de0417ca06bea943d66cb60da297ba9d10fee9786d76d276d534a8305cff79f715aac1dc14433"}, @ra={0x5, 0x2, 0x1}]}, @srh={0x5c, 0xe, 0x4, 0x7, 0x1, 0x40, 0x4, [@private2={0xfc, 0x2, '\x00', 0x1}, @private1, @mcast1, @private0, @remote, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @dev={0xfe, 0x80, '\x00', 0x44}]}], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, {[@sack={0x5, 0x2}]}}}}}}}}, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 1m16.442130288s ago: executing program 0 (id=327): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) socketpair(0x9, 0x1, 0x7, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$IPSET_CMD_TYPE(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="240000000d06010300000000000000000000000205000100070000000500010007000000dfdbb0f6996c023767bbd910ec39e3360825390dd40b31b558c645051e0f68d1d480bf1a53cf9b699b30fe1cf39333e4f2c89befe5f5d7591b2c3b3996d9bae993f830d99c1203e3ab9c4ae92b05b420145f711c77502c921756a799efe2dee32b5aa79a2fbc27953cb0ccb9d691eadb52f9bf8c235a270bebf4c4603a908f312bd5a4a88cd1a9ddaf2912e50e5c6370"], 0x24}, 0x1, 0x0, 0x0, 0x44000}, 0x4000) sendmsg$IPCTNL_MSG_CT_NEW(r0, 0x0, 0x80) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x25}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}}, @NFT_MSG_NEWSETELEM={0x20, 0xc, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x10}}, 0x7c}}, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f0000002c40)={0x0, 0x0, &(0x7f0000002c00)={0x0}, 0x1, 0x0, 0x0, 0x44800}, 0x8000) socket(0x10, 0x3, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$unix(0x1, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x4c, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x5c}, @val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x1}]}, 0x4c}, 0x1, 0x0, 0x0, 0x81}, 0x24044894) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r6) socket$inet_sctp(0x2, 0x1, 0x84) ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) socket(0x10, 0x3, 0x0) 1m16.273869051s ago: executing program 1 (id=328): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000400)=ANY=[@ANYBLOB="36000000020000000000000000000000000d00000000000000646f6e745f61707072"], 0x36) 1m16.193079586s ago: executing program 1 (id=329): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x10) getpgrp(0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0b0000001f0000000200000022bf000001000000", @ANYBLOB], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000400), 0x401, r1, 0x0, 0xa002a0}, 0x38) openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0x40, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r3 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) r4 = inotify_init1(0x0) inotify_add_watch(r4, &(0x7f0000000200)='./bus\x00', 0x6000000b) r5 = socket(0x2, 0x2, 0x0) r6 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r7, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0x6, 0x1, 0x0, 0x0, @str='\x15\x00'}]}, 0x1c}}, 0x0) ioctl$TCXONC(0xffffffffffffffff, 0x4b45, 0x3) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$SEG6(&(0x7f00000000c0), r2) mq_open(0x0, 0x2, 0x0, &(0x7f0000000200)={0x8be3, 0x1000, 0x8, 0xf8bc}) ioctl$NBD_SET_SOCK(r3, 0xab00, r5) ioctl$NBD_DO_IT(r6, 0xab03) ioctl$NBD_SET_SIZE_BLOCKS(r3, 0xab07, 0x6) mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000004a00)='./file1\x00', &(0x7f0000000040)='udf\x00', 0x8007, 0x0) 1m15.906092643s ago: executing program 1 (id=330): r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000feffff000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f00000005c0)={0x3, r0}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f00000004c0)='contention_begin\x00', r1}, 0x18) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x200}}]}, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x7, &(0x7f0000000280)=[0x1], &(0x7f0000000340)=[{0x4, 0x2, 0x6, 0x8}, {0x0, 0x1, 0xb, 0x8}, {0x0, 0x2, 0x9, 0x5}, {0x1, 0x2, 0xf, 0x7}, {0x3, 0x5, 0xe, 0xa}, {0x5, 0x2, 0xf, 0x2}, {0x5, 0x5, 0x3, 0x9}], 0x10, 0xfffffffb, @void, @value}, 0x90) syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00') prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000006900000000000001000000940fa7c7326ae0367600000007070000b28a4533503319"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r2}, 0x18) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x1f2f, 0xc0, 0x0, &(0x7f0000000480)="9f44948721919580684010a405dda2717060ce495279829e885d4ce90c523581d5176139cbff678c665c39a4a355cf7be014c74aab5afc1173fca09b436f7a26cdd634e101abbef0db144b8f2d5abd18ada30460ba731fab3bf7bf7fb419a6769cc6cf4906308db105d0b503ffb7e64f5fc98b0f48b8ad2a4ed10782a8cbce676147e697f36e08fd1a24b93de910fa2faa41a69cfb8d9a760657287681921e332f941874c9b33a489c570917e3b3e82d600d5c1ba4a70373695d4b54e33cfae1", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x0, 0x0, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0x0, 0xe, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x20000000}, 0xc) r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/netlink\x00') lseek(r7, 0x10401, 0x0) syz_usb_connect$cdc_ecm(0x5, 0x56, &(0x7f0000000800)=ANY=[@ANYBLOB="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"/299, @ANYRES8=r7, @ANYRESOCT=r6], 0x0) 1m12.702827061s ago: executing program 1 (id=331): r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000feffff000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f00000005c0)={0x3, r0}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f00000004c0)='contention_begin\x00', r1}, 0x18) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x7, &(0x7f0000000280)=[0x1], &(0x7f0000000340)=[{0x4, 0x2, 0x6, 0x8}, {0x0, 0x1, 0xb, 0x8}, {0x0, 0x2, 0x9, 0x5}, {0x1, 0x2, 0xf, 0x7}, {0x3, 0x5, 0xe, 0xa}, {0x5, 0x2, 0xf, 0x2}, {0x5, 0x5, 0x3, 0x9}], 0x10, 0xfffffffb, @void, @value}, 0x94) syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00') prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000006900000000000001000000940fa7c7326ae0367600000007070000b28a4533503319"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r2}, 0x18) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x1f2f, 0xc0, 0x0, &(0x7f0000000480)="9f44948721919580684010a405dda2717060ce495279829e885d4ce90c523581d5176139cbff678c665c39a4a355cf7be014c74aab5afc1173fca09b436f7a26cdd634e101abbef0db144b8f2d5abd18ada30460ba731fab3bf7bf7fb419a6769cc6cf4906308db105d0b503ffb7e64f5fc98b0f48b8ad2a4ed10782a8cbce676147e697f36e08fd1a24b93de910fa2faa41a69cfb8d9a760657287681921e332f941874c9b33a489c570917e3b3e82d600d5c1ba4a70373695d4b54e33cfae1", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) bpf$MAP_CREATE(0x0, 0x0, 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x0, 0x0, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0x0, 0xe, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x20000000}, 0xc) r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/netlink\x00') lseek(r7, 0x10401, 0x0) syz_usb_connect$cdc_ecm(0x5, 0x56, &(0x7f0000000800)=ANY=[@ANYBLOB="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"/299, @ANYRES8=r7, @ANYRESOCT=r6], 0x0) 1m9.643972713s ago: executing program 1 (id=332): r0 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00') getdents(r0, &(0x7f0000000040)=""/37, 0x25) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff) r2 = socket$inet6(0xa, 0x3, 0x8000000003c) setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x32, 0x0, 0x34) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0) unshare(0x68060200) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$sndctrl(&(0x7f0000000200), 0x1, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000380)=@o_path={&(0x7f0000000300)='./file0\x00', 0x0, 0x4018, r2}, 0x14) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r4, 0xc1205531, &(0x7f0000000540)={0x1, 0x6, 0x0, 0x0, '\x00', '\x00', '\x00', 0x0, 0x600, 0x0, 0x0, "b6855a32474ffa64f778ddcf29c94337"}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xffffff5f) socket$nl_route(0x10, 0x3, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[], 0x44}}, 0x0) openat$sndseq(0xffffff9c, &(0x7f0000000340), 0x180) sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839}, 0x24}}, 0x0) r6 = socket$inet_sctp(0x2, 0x5, 0x84) ioctl$IMCTRLREQ(r0, 0x80044945, &(0x7f00000003c0)={0x0, 0x80000000, 0x5, 0xfff}) bind$inet(r6, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) sendto$inet(r6, &(0x7f0000000300), 0x0, 0x0, 0x0, 0x0) sendmsg$inet_sctp(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000280)='\x00', 0x1}], 0x1, &(0x7f00000001c0)=[@sndinfo={0x20, 0x84, 0x2, {0x4, 0x41}}, @sndrcv={0x30, 0x84, 0x1, {0x81, 0x5, 0x0, 0x3, 0x8, 0x2aa0, 0x6, 0x9}}], 0x50, 0x4048800}, 0x10) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000180)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x44, r1, 0x2, 0x70bd27, 0x25dfdbfb, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x6}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000000}, 0x40004) r7 = syz_open_dev$usbmon(&(0x7f0000000000), 0x81, 0x101000) ioctl$AUTOFS_IOC_PROTOVER(r7, 0x9208, 0x0) 15.125639423s ago: executing program 3 (id=342): r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000feffff000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f00000005c0)={0x3, r0}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f00000004c0)='contention_begin\x00', r1}, 0x18) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x200}}]}, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000280)=[0x1], 0x0, 0x10, 0xfffffffb, @void, @value}, 0x94) syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00') prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000006900000000000001000000940fa7c7326ae0367600000007070000b28a4533503319"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r2}, 0x18) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x1f2f, 0xc0, 0x0, &(0x7f0000000480)="9f44948721919580684010a405dda2717060ce495279829e885d4ce90c523581d5176139cbff678c665c39a4a355cf7be014c74aab5afc1173fca09b436f7a26cdd634e101abbef0db144b8f2d5abd18ada30460ba731fab3bf7bf7fb419a6769cc6cf4906308db105d0b503ffb7e64f5fc98b0f48b8ad2a4ed10782a8cbce676147e697f36e08fd1a24b93de910fa2faa41a69cfb8d9a760657287681921e332f941874c9b33a489c570917e3b3e82d600d5c1ba4a70373695d4b54e33cfae1", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) bpf$MAP_CREATE(0x0, 0x0, 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x0, 0x0, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0x0, 0xe, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) r7 = socket$netlink(0x10, 0x3, 0x0) bind$netlink(r7, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x20000000}, 0xc) r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/netlink\x00') lseek(r8, 0x10401, 0x0) syz_usb_connect$cdc_ecm(0x5, 0x56, &(0x7f0000000800)=ANY=[@ANYBLOB="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"/299, @ANYRES8=r8, @ANYRESOCT=r6], 0x0) 12.014135655s ago: executing program 3 (id=343): r0 = socket$inet6(0xa, 0x3, 0xff) sendto$l2tp6(r0, &(0x7f0000000080)="08c943d998c53bb4200100109d437becdb26e9102d6a0b1341ef9c21eb24681bf9d3ac83eeb799c6", 0x28, 0x0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2, 0x9}, 0x20) r1 = socket$inet6(0xa, 0x802, 0x0) setsockopt$inet6_buf(r1, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xc, 0xc, &(0x7f0000000980)=ANY=[@ANYBLOB="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"/2844], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfe6f, @void, @value}, 0x94) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000480)={r3, &(0x7f0000000240)="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", &(0x7f00000014c0)=""/4096}, 0x1c) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000380)="764b9e147583ddd0569ba56a5cfd", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000002940)=[{{0x0, 0x0, 0x0}}], 0x62, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="42d7b853b741a5335ff29e81095edd3076c5de9b49191cd1d715687de5c65970e8e19020ae917293b001dc7a6de5e280e95d5cbf0404f4319ff9d968dc2e2a4368675d1da01eb2ce3620076a36c899d6a3eaf886b328e7b83c8051c801525a2bdd92c94069cb108a3876cfd4c9454c0549a3f5b5047e04abda2609db6447b027b160f5e1c097a0c7b05ae6f3e93ef10ecdcb8b0fbda01cfa4b10414493a7e7f00b2d8406eb318f9c1c8c6ae12c5be9a5895d2307bfbb6575c549171fdb4ba66ed39def83647938f8caee1bf2beeaa49ffa2ea0ee2742811bce8cc48178a68d41f74bf716480210fd9cadbd424b682672b3341c517bfba7"], 0x58}}, 0x40000) 11.902844315s ago: executing program 3 (id=344): r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000feffff000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f00000005c0)={0x3, r0}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f00000004c0)='contention_begin\x00', r1}, 0x18) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x7, &(0x7f0000000280)=[0x1], &(0x7f0000000340)=[{0x4, 0x2, 0x6, 0x8}, {0x0, 0x1, 0xb, 0x8}, {0x0, 0x2, 0x9, 0x5}, {0x1, 0x2, 0xf, 0x7}, {0x3, 0x5, 0xe, 0xa}, {0x5, 0x2, 0xf, 0x2}, {0x5, 0x5, 0x3, 0x9}], 0x10, 0xfffffffb, @void, @value}, 0x94) syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00') prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000006900000000000001000000940fa7c7326ae0367600000007070000b28a4533503319"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r2}, 0x18) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x1f2f, 0xc0, 0x0, &(0x7f0000000480)="9f44948721919580684010a405dda2717060ce495279829e885d4ce90c523581d5176139cbff678c665c39a4a355cf7be014c74aab5afc1173fca09b436f7a26cdd634e101abbef0db144b8f2d5abd18ada30460ba731fab3bf7bf7fb419a6769cc6cf4906308db105d0b503ffb7e64f5fc98b0f48b8ad2a4ed10782a8cbce676147e697f36e08fd1a24b93de910fa2faa41a69cfb8d9a760657287681921e332f941874c9b33a489c570917e3b3e82d600d5c1ba4a70373695d4b54e33cfae1", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2) bpf$MAP_CREATE(0x0, 0x0, 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x0, 0x0, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r7 = socket$netlink(0x10, 0x3, 0x0) bind$netlink(r7, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x20000000}, 0xc) r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/netlink\x00') lseek(r8, 0x10401, 0x0) syz_usb_connect$cdc_ecm(0x5, 0x56, &(0x7f0000000800)=ANY=[@ANYBLOB="12010000020000102505a1a4400000000101090244000101000000090400001602020000052406000005240000000d240f01000000000000000000090581030000000000090582f5ffffffffff080503020000000000f2d8c2eaef600316972c06f93980052980bb410281a3181e20850fb75c5807181fdb0bb890b982e7dddf81084907fcddd6b9e857c5206a22dbc1b89f667599a57c28afc74eb3bd75b2f4faae99e386c48a6b9f1280553830c3e3ba56c1dec3269d17447b852957dd6e6d312c1af9cd676eed792adb6dd1d365a4f9031006d2be6efc6d62978ed74d391237684e2399203a50952a148ca255c57816eab78b97b9f155dd213e0308666064d4f80018cdbb7f68a41036aab20da67e938dbeb2677ba9e1f163cafaf74ef400"/299, @ANYRES8=r8, @ANYRESOCT=r6], 0x0) 8.722270649s ago: executing program 3 (id=345): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x218}}, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_OIF={0x8, 0x5, r6}]}, 0x20}}, 0x0) sendmsg$nl_route(r3, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000000000000008001e0001"], 0x24}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=@ipv6_newroute={0x3c, 0x18, 0x1, 0x0, 0x0, {}, [@RTA_MULTIPATH={0xc, 0x9, {0x8, 0x0, 0x0, r2}}, @RTA_GATEWAY={0x14, 0x5, @dev}]}, 0x3c}, 0x1, 0x2000000}, 0x0) 2.175888047s ago: executing program 3 (id=346): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x10) getpgrp(0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0b0000001f0000000200000022bf000001000000", @ANYBLOB], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000400), 0x401, r1, 0x0, 0xa002a0}, 0x38) openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0x40, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r3 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) inotify_add_watch(0xffffffffffffffff, &(0x7f0000000200)='./bus\x00', 0x6000000b) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) r4 = socket(0x2, 0x2, 0x0) r5 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r6, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0x6, 0x1, 0x0, 0x0, @str='\x15\x00'}]}, 0x1c}}, 0x0) ioctl$TCXONC(0xffffffffffffffff, 0x4b45, 0x3) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$SEG6(&(0x7f00000000c0), r2) mq_open(0x0, 0x2, 0x0, &(0x7f0000000200)={0x8be3, 0x1000, 0x8, 0xf8bc}) ioctl$NBD_SET_SOCK(r3, 0xab00, r4) ioctl$NBD_DO_IT(r5, 0xab03) ioctl$NBD_SET_SIZE_BLOCKS(r3, 0xab07, 0x6) mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000004a00)='./file1\x00', &(0x7f0000000040)='udf\x00', 0x8007, 0x0) 0s ago: executing program 3 (id=347): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0) kernel console output (not intermixed with test programs): im8 wlan0: left promiscuous mode [ 71.345107][ T5962] netlink: 36 bytes leftover after parsing attributes in process `syz.0.132'. [ 71.695215][ T5988] fuse: Bad value for 'fd' [ 71.702200][ T5988] random: crng reseeded on system resumption [ 72.077632][ T30] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 72.206167][ T5384] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 72.226206][ T30] usb 8-1: Using ep0 maxpacket: 16 [ 72.231868][ T30] usb 8-1: config 1 descriptor has 1 excess byte, ignoring [ 72.233734][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 72.237080][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 72.239542][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 72.242182][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 72.244924][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 72.247348][ T30] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 72.252381][ T30] usb 8-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 72.257240][ T30] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 72.259500][ T30] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 72.261698][ T30] usb 8-1: SerialNumber: syz [ 72.269523][ T30] cdc_acm 8-1:1.0: Control and data interfaces are not separated! [ 72.356151][ T5384] usb 5-1: Using ep0 maxpacket: 16 [ 72.359774][ T5384] usb 5-1: config 1 descriptor has 1 excess byte, ignoring [ 72.362280][ T5384] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 72.365423][ T5384] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 72.368583][ T5384] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 72.371865][ T5384] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 72.374698][ T5384] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 72.377228][ T5384] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 72.379652][ T5384] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 72.383847][ T5384] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 72.387247][ T5384] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 72.389969][ T5384] usb 5-1: SerialNumber: syz [ 72.394804][ T5384] cdc_acm 5-1:1.0: Control and data interfaces are not separated! [ 72.804942][ T5999] netlink: 36 bytes leftover after parsing attributes in process `syz.1.145'. [ 72.808803][ T5999] netlink: 4 bytes leftover after parsing attributes in process `syz.1.145'. [ 73.165008][ T6010] overlay: ./file1 is not a directory [ 73.348978][ T6015] netlink: 36 bytes leftover after parsing attributes in process `syz.1.150'. [ 73.352511][ T6015] netlink: 4 bytes leftover after parsing attributes in process `syz.1.150'. [ 73.471080][ T6021] overlay: ./file1 is not a directory [ 73.826722][ T39] audit: type=1326 audit(1728500845.903:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6031 comm="syz.2.155" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f6f579 code=0x0 [ 74.389887][ T6044] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 74.447458][ T30] usb 8-1: USB disconnect, device number 6 [ 74.721907][ T6063] overlay: ./file1 is not a directory [ 74.899951][ T6067] syz.3.162: attempt to access beyond end of device [ 74.899951][ T6067] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0 [ 74.904857][ T6067] syz.3.162: attempt to access beyond end of device [ 74.904857][ T6067] nbd3: rw=0, sector=512, nr_sectors = 2 limit=0 [ 74.910348][ T6067] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 74.913813][ T6067] syz.3.162: attempt to access beyond end of device [ 74.913813][ T6067] nbd3: rw=0, sector=1024, nr_sectors = 2 limit=0 [ 74.924682][ T30] usb 5-1: USB disconnect, device number 6 [ 74.930535][ T6067] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 74.935785][ T6067] syz.3.162: attempt to access beyond end of device [ 74.935785][ T6067] nbd3: rw=0, sector=64, nr_sectors = 4 limit=0 [ 74.941533][ T6067] syz.3.162: attempt to access beyond end of device [ 74.941533][ T6067] nbd3: rw=0, sector=1024, nr_sectors = 4 limit=0 [ 74.944902][ T6067] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 74.947766][ T6067] syz.3.162: attempt to access beyond end of device [ 74.947766][ T6067] nbd3: rw=0, sector=2048, nr_sectors = 4 limit=0 [ 74.949092][ T6063] nbd3: detected capacity change from 0 to 12 [ 74.951829][ T6067] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 74.956451][ T5332] block nbd3: Send control failed (result -89) [ 74.958054][ T5332] block nbd3: Request send failed, requeueing [ 74.959716][ T4781] block nbd3: Receive control failed (result -32) [ 74.959748][ T1214] block nbd3: Dead connection, failed to find a fallback [ 74.963881][ T1214] block nbd3: shutting down sockets [ 74.965333][ T1214] blk_print_req_error: 107 callbacks suppressed [ 74.965341][ T1214] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 74.970134][ T1214] buffer_io_error: 100 callbacks suppressed [ 74.970146][ T1214] Buffer I/O error on dev nbd3, logical block 0, async page read [ 74.977226][ T5332] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 74.979669][ T5332] Buffer I/O error on dev nbd3, logical block 0, async page read [ 74.982073][ T5332] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 74.984380][ T5332] Buffer I/O error on dev nbd3, logical block 0, async page read [ 74.988104][ T6067] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 74.988779][ T5332] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 74.991554][ T6070] netlink: 32 bytes leftover after parsing attributes in process `syz.0.163'. [ 74.993504][ T5332] Buffer I/O error on dev nbd3, logical block 0, async page read [ 74.998938][ T5332] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 75.001236][ T5332] Buffer I/O error on dev nbd3, logical block 0, async page read [ 75.003263][ T6067] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 75.011753][ T6067] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=0, location=0 [ 75.011973][ T5332] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 75.017722][ T5332] Buffer I/O error on dev nbd3, logical block 0, async page read [ 75.022454][ T5332] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 75.022871][ T6067] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 75.030063][ T5332] Buffer I/O error on dev nbd3, logical block 0, async page read [ 75.035459][ T6067] UDF-fs: warning (device nbd3): udf_fill_super: No partition found (1) [ 75.040098][ T5332] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 75.042493][ T5332] Buffer I/O error on dev nbd3, logical block 0, async page read [ 75.044507][ T5332] ldm_validate_partition_table(): Disk read failed. [ 75.046509][ T5332] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 75.049044][ T5332] Buffer I/O error on dev nbd3, logical block 0, async page read [ 75.051290][ T5332] Buffer I/O error on dev nbd3, logical block 0, async page read [ 75.053612][ T5332] Dev nbd3: unable to read RDB block 0 [ 75.055186][ T5332] nbd3: unable to read partition table [ 75.056771][ T5332] nbd3: partition table beyond EOD, truncated [ 75.060302][ T5332] ldm_validate_partition_table(): Disk read failed. [ 75.062345][ T5332] Dev nbd3: unable to read RDB block 0 [ 75.064155][ T5332] nbd3: unable to read partition table [ 75.065648][ T5332] nbd3: partition table beyond EOD, truncated [ 75.202258][ T6078] fuse: Unknown parameter 'u00000000000000000000' [ 75.409696][ T6083] capability: warning: `syz.1.168' uses deprecated v2 capabilities in a way that may be insecure [ 75.661844][ T6087] misc userio: Invalid payload size [ 75.664382][ T6087] 9pnet_fd: Insufficient options for proto=fd [ 75.731071][ T4781] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 75.734149][ T4781] Bluetooth: hci1: SCO packet for unknown connection handle 1039 [ 75.804941][ T6096] netdevsim netdevsim1 : renamed from netdevsim0 (while UP) [ 75.829008][ T979] cfg80211: failed to load regulatory.db [ 76.552134][ T4781] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 76.553892][ T4781] Bluetooth: hci2: SCO packet for unknown connection handle 1039 [ 76.586133][ T5384] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 76.723445][ T6106] fuse: Unknown parameter 'u00000000000000000000' [ 76.756849][ T5384] usb 8-1: Using ep0 maxpacket: 16 [ 76.760645][ T5384] usb 8-1: config 1 descriptor has 1 excess byte, ignoring [ 76.763348][ T5384] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 76.767312][ T5384] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 76.771021][ T5384] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 76.774796][ T5384] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 76.779978][ T5384] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 76.783488][ T5384] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 76.786946][ T5384] usb 8-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 76.792928][ T5384] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 76.798856][ T5384] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 76.801717][ T5384] usb 8-1: SerialNumber: syz [ 76.823920][ T5384] cdc_acm 8-1:1.0: Control and data interfaces are not separated! [ 77.906127][ T5384] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 77.950126][ T6117] capability: warning: `syz.0.178' uses 32-bit capabilities (legacy support in use) [ 78.087116][ T5384] usb 7-1: Using ep0 maxpacket: 16 [ 78.092082][ T5384] usb 7-1: config 1 descriptor has 1 excess byte, ignoring [ 78.094038][ T5384] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 78.097088][ T5384] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 78.099794][ T5384] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 78.102570][ T5384] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 78.105378][ T5384] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 78.108849][ T5384] usb 7-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 78.111343][ T5384] usb 7-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 78.115460][ T5384] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 78.117929][ T5384] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 78.120064][ T5384] usb 7-1: SerialNumber: syz [ 78.123006][ T5384] cdc_acm 7-1:1.0: Control and data interfaces are not separated! [ 78.296201][ T979] usb 6-1: new full-speed USB device number 8 using dummy_hcd [ 78.461642][ T979] usb 6-1: config 0 has an invalid interface number: 118 but max is 0 [ 78.464529][ T979] usb 6-1: config 0 has no interface number 0 [ 78.468702][ T979] usb 6-1: New USB device found, idVendor=0856, idProduct=ac33, bcdDevice= 0.f8 [ 78.471828][ T979] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 78.474505][ T979] usb 6-1: Product: syz [ 78.475961][ T979] usb 6-1: Manufacturer: syz [ 78.479099][ T979] usb 6-1: SerialNumber: syz [ 78.483446][ T979] usb 6-1: config 0 descriptor?? [ 78.486831][ T979] ftdi_sio 6-1:0.118: FTDI USB Serial Device converter detected [ 78.491605][ T979] usb 6-1: Detected SIO [ 78.496755][ T979] usb 6-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 78.698636][ T5404] usb 6-1: USB disconnect, device number 8 [ 78.709277][ T5404] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 78.713263][ T5404] ftdi_sio 6-1:0.118: device disconnected [ 79.032099][ T6131] overlay: ./file1 is not a directory [ 79.122171][ T5384] usb 8-1: USB disconnect, device number 7 [ 79.179247][ T5353] Bluetooth: hci0: SCO packet for unknown connection handle 0 [ 79.179887][ T5353] Bluetooth: hci0: SCO packet for unknown connection handle 1039 [ 79.196573][ T6131] syz.0.183: attempt to access beyond end of device [ 79.196573][ T6131] nbd0: rw=0, sector=64, nr_sectors = 2 limit=0 [ 79.202154][ T6131] syz.0.183: attempt to access beyond end of device [ 79.202154][ T6131] nbd0: rw=0, sector=512, nr_sectors = 2 limit=0 [ 79.205439][ T6131] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256 [ 79.208954][ T6131] syz.0.183: attempt to access beyond end of device [ 79.208954][ T6131] nbd0: rw=0, sector=1024, nr_sectors = 2 limit=0 [ 79.212360][ T6131] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512 [ 79.216534][ T6131] syz.0.183: attempt to access beyond end of device [ 79.216534][ T6131] nbd0: rw=0, sector=64, nr_sectors = 4 limit=0 [ 79.220138][ T6131] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256 [ 79.222734][ T6131] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512 [ 79.225719][ T6131] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256 [ 79.230693][ T6131] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512 [ 79.233163][ T6131] UDF-fs: warning (device nbd0): udf_fill_super: No partition found (1) [ 79.287283][ T6133] nbd0: detected capacity change from 0 to 12 [ 79.297125][ T5332] block nbd0: Send control failed (result -89) [ 79.299298][ T6138] netlink: 36 bytes leftover after parsing attributes in process `syz.1.185'. [ 79.299564][ T5332] block nbd0: Request send failed, requeueing [ 79.302844][ T6138] netlink: 4 bytes leftover after parsing attributes in process `syz.1.185'. [ 79.305751][ T4781] block nbd0: Receive control failed (result -32) [ 79.305860][ T55] block nbd0: Dead connection, failed to find a fallback [ 79.305878][ T55] block nbd0: shutting down sockets [ 79.308397][ T5332] ldm_validate_partition_table(): Disk read failed. [ 79.315859][ T5332] Dev nbd0: unable to read RDB block 0 [ 79.318465][ T5332] nbd0: unable to read partition table [ 79.320345][ T5332] nbd0: partition table beyond EOD, truncated [ 79.327788][ T5332] ldm_validate_partition_table(): Disk read failed. [ 79.330054][ T5332] Dev nbd0: unable to read RDB block 0 [ 79.332022][ T5332] nbd0: unable to read partition table [ 79.333680][ T5332] nbd0: partition table beyond EOD, truncated [ 79.423176][ T6149] FAULT_INJECTION: forcing a failure. [ 79.423176][ T6149] name failslab, interval 1, probability 0, space 0, times 0 [ 79.426565][ T6149] CPU: 2 UID: 0 PID: 6149 Comm: syz.0.188 Not tainted 6.12.0-rc2-syzkaller-00058-g75b607fab38d #0 [ 79.429214][ T6149] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 79.431983][ T6149] Call Trace: [ 79.432876][ T6149] [ 79.433653][ T6149] dump_stack_lvl+0x16c/0x1f0 [ 79.434897][ T6149] should_fail_ex+0x497/0x5b0 [ 79.436148][ T6149] ? __pfx___lock_acquire+0x10/0x10 [ 79.437519][ T6149] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 79.439044][ T6149] should_failslab+0xc2/0x120 [ 79.440291][ T6149] __kmalloc_cache_noprof+0x6b/0x310 [ 79.441673][ T6149] ? nsim_fib_event_nb+0x1b6/0xec0 [ 79.443016][ T6149] ? lock_acquire.part.0+0x11b/0x380 [ 79.444422][ T6149] nsim_fib_event_nb+0x1b6/0xec0 [ 79.445735][ T6149] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 79.447210][ T6149] ? rcu_is_watching+0x12/0xc0 [ 79.448460][ T6149] notifier_call_chain+0xb9/0x410 [ 79.449756][ T6149] ? __pfx_nsim_fib_event_nb+0x10/0x10 [ 79.451190][ T6149] atomic_notifier_call_chain+0x71/0x1c0 [ 79.452658][ T6149] call_fib_notifiers+0x33/0x70 [ 79.453949][ T6149] fib6_add+0x25ec/0x4b50 [ 79.455126][ T6149] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 79.456588][ T6149] ? __pfx_fib6_add+0x10/0x10 [ 79.457790][ T6149] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 79.459164][ T6149] ? lock_acquire+0x2f/0xb0 [ 79.460349][ T6149] ? ip6_route_add+0x7b/0x1c0 [ 79.461559][ T6149] ? ip6_route_add+0x8d/0x1c0 [ 79.462782][ T6149] ip6_route_add+0x8d/0x1c0 [ 79.464025][ T6149] inet6_rtm_newroute+0x164/0x170 [ 79.465707][ T6149] ? __pfx_inet6_rtm_newroute+0x10/0x10 [ 79.467260][ T6149] ? __pfx_inet6_rtm_newroute+0x10/0x10 [ 79.468696][ T6149] rtnetlink_rcv_msg+0x3c7/0xea0 [ 79.469955][ T6149] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 79.471362][ T6149] ? __pfx___dev_queue_xmit+0x10/0x10 [ 79.472720][ T6149] netlink_rcv_skb+0x165/0x410 [ 79.473936][ T6149] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 79.475364][ T6149] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 79.476738][ T6149] ? netlink_deliver_tap+0x1ae/0xcf0 [ 79.478086][ T6149] netlink_unicast+0x53c/0x7f0 [ 79.479327][ T6149] ? __pfx_netlink_unicast+0x10/0x10 [ 79.480773][ T6149] ? __phys_addr_symbol+0x30/0x80 [ 79.482133][ T6149] ? __check_object_size+0x4a1/0x710 [ 79.483501][ T6149] netlink_sendmsg+0x8b8/0xd70 [ 79.484726][ T6149] ? __pfx_netlink_sendmsg+0x10/0x10 [ 79.486080][ T6149] ? lock_acquire+0x2f/0xb0 [ 79.487287][ T6149] ____sys_sendmsg+0x9ae/0xb40 [ 79.488561][ T6149] ? __pfx_____sys_sendmsg+0x10/0x10 [ 79.489942][ T6149] ? get_compat_msghdr+0x11b/0x170 [ 79.491275][ T6149] ? __pfx___lock_acquire+0x10/0x10 [ 79.492649][ T6149] ___sys_sendmsg+0x135/0x1e0 [ 79.493886][ T6149] ? __pfx____sys_sendmsg+0x10/0x10 [ 79.495257][ T6149] ? lock_acquire+0x2f/0xb0 [ 79.496463][ T6149] ? __fget_files+0x40/0x3f0 [ 79.497659][ T6149] ? fdget+0x176/0x210 [ 79.498726][ T6149] __sys_sendmsg+0x117/0x1f0 [ 79.499946][ T6149] ? __pfx___sys_sendmsg+0x10/0x10 [ 79.501277][ T6149] ? __fget_files+0x244/0x3f0 [ 79.502614][ T6149] __do_fast_syscall_32+0x73/0x120 [ 79.504151][ T6149] do_fast_syscall_32+0x32/0x80 [ 79.505421][ T6149] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 79.507312][ T6149] RIP: 0023:0xf7f66579 [ 79.508404][ T6149] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 79.513636][ T6149] RSP: 002b:00000000f56e656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 79.515821][ T6149] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200002c0 [ 79.517866][ T6149] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 79.520316][ T6149] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 79.522354][ T6149] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 79.524398][ T6149] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 79.526422][ T6149] [ 80.443917][ T63] usb 7-1: USB disconnect, device number 5 [ 93.073480][ T6169] fuse: Unknown parameter 'rootde' [ 93.351617][ T6177] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode [ 93.353625][ T6177] macsec0: entered allmulticast mode [ 93.355050][ T6177] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode [ 93.362380][ T6177] mac80211_hwsim hwsim2 wlan0: left allmulticast mode [ 93.364289][ T6177] mac80211_hwsim hwsim2 wlan0: left promiscuous mode [ 94.213218][ T6190] sp0: Synchronizing with TNC [ 94.418427][ T6190] veth0_vlan: left promiscuous mode [ 94.421227][ T6190] veth0_vlan: entered promiscuous mode [ 94.648946][ T6190] sp0: Synchronizing with TNC [ 94.716150][ T5384] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 94.877363][ T6168] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 94.892384][ T5384] usb 5-1: Using ep0 maxpacket: 16 [ 94.895759][ T5384] usb 5-1: config 1 descriptor has 1 excess byte, ignoring [ 94.898350][ T5384] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 94.901661][ T5384] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 94.905345][ T5384] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 94.909206][ T5384] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 94.909213][ T4781] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 94.912958][ T5384] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 94.916486][ T4781] Bluetooth: hci1: SCO packet for unknown connection handle 1039 [ 94.919118][ T5384] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 94.925070][ T5384] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 94.930369][ T5384] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 94.933404][ T5384] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 94.936164][ T5384] usb 5-1: SerialNumber: syz [ 94.941526][ T5384] cdc_acm 5-1:1.0: Control and data interfaces are not separated! [ 95.696210][ T5384] usb 8-1: new high-speed USB device number 8 using dummy_hcd [ 95.846145][ T5384] usb 8-1: Using ep0 maxpacket: 16 [ 95.849856][ T5384] usb 8-1: config 1 descriptor has 1 excess byte, ignoring [ 95.852491][ T5384] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 95.855604][ T5384] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 95.859161][ T5384] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 95.863207][ T5384] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 95.867305][ T5384] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 95.870367][ T5384] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 95.873672][ T5384] usb 8-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 95.879573][ T5384] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 95.882792][ T5384] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 95.885565][ T5384] usb 8-1: SerialNumber: syz [ 95.891235][ T5384] cdc_acm 8-1:1.0: Control and data interfaces are not separated! [ 97.214477][ T5384] usb 5-1: USB disconnect, device number 7 [ 97.220286][ T6217] fuse: Unknown parameter 'rootde' [ 97.384069][ T6226] overlay: ./file1 is not a directory [ 97.479365][ T6229] netlink: 'syz.1.208': attribute type 39 has an invalid length. [ 98.233589][ T5380] usb 8-1: USB disconnect, device number 8 [ 98.325574][ T6241] overlay: ./file1 is not a directory [ 98.408874][ T6247] overlay: ./file1 is not a directory [ 98.469188][ T6249] bio_check_eod: 5 callbacks suppressed [ 98.469198][ T6249] syz.3.210: attempt to access beyond end of device [ 98.469198][ T6249] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0 [ 98.474486][ T6249] syz.3.210: attempt to access beyond end of device [ 98.474486][ T6249] nbd3: rw=0, sector=512, nr_sectors = 2 limit=0 [ 98.481126][ T6249] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 98.483775][ T6249] syz.3.210: attempt to access beyond end of device [ 98.483775][ T6249] nbd3: rw=0, sector=1024, nr_sectors = 2 limit=0 [ 98.487482][ T6249] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 98.490288][ T6249] syz.3.210: attempt to access beyond end of device [ 98.490288][ T6249] nbd3: rw=0, sector=64, nr_sectors = 4 limit=0 [ 98.493628][ T6249] syz.3.210: attempt to access beyond end of device [ 98.493628][ T6249] nbd3: rw=0, sector=1024, nr_sectors = 4 limit=0 [ 98.496225][ T5353] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 98.497212][ T6249] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 98.501943][ T6249] syz.3.210: attempt to access beyond end of device [ 98.501943][ T6249] nbd3: rw=0, sector=2048, nr_sectors = 4 limit=0 [ 98.502552][ T5353] Bluetooth: hci1: SCO packet for unknown connection handle 1039 [ 98.505304][ T6249] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 98.505552][ T6249] syz.3.210: attempt to access beyond end of device [ 98.505552][ T6249] nbd3: rw=0, sector=64, nr_sectors = 8 limit=0 [ 98.514365][ T6249] syz.3.210: attempt to access beyond end of device [ 98.514365][ T6249] nbd3: rw=0, sector=2048, nr_sectors = 8 limit=0 [ 98.518841][ T6248] nbd3: detected capacity change from 0 to 12 [ 98.519360][ T6249] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 98.521342][ T6252] syz.0.211: attempt to access beyond end of device [ 98.521342][ T6252] nbd0: rw=0, sector=64, nr_sectors = 2 limit=0 [ 98.524370][ T6249] block nbd3: Send control failed (result -89) [ 98.527962][ T6249] block nbd3: Request send failed, requeueing [ 98.529032][ T6252] syz.0.211: attempt to access beyond end of device [ 98.529032][ T6252] nbd0: rw=0, sector=512, nr_sectors = 2 limit=0 [ 98.530565][ T4781] block nbd3: Receive control failed (result -32) [ 98.533248][ T6252] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256 [ 98.534584][ T55] block nbd3: Dead connection, failed to find a fallback [ 98.537158][ T6252] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512 [ 98.539075][ T55] block nbd3: shutting down sockets [ 98.542897][ T55] blk_print_req_error: 61 callbacks suppressed [ 98.542905][ T55] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 98.542927][ T6252] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256 [ 98.544605][ T6249] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=0, location=0 [ 98.545412][ T6249] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 98.546333][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 98.546362][ T6239] buffer_io_error: 60 callbacks suppressed [ 98.546370][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 98.546463][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 98.546485][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 98.546564][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 98.546585][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 98.546661][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 98.546682][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 98.546758][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 98.546780][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 98.546872][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 98.546893][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 98.546978][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 98.546999][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 98.547078][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 98.547148][ T6252] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512 [ 98.547367][ T6252] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256 [ 98.547416][ T6252] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512 [ 98.547426][ T6252] UDF-fs: warning (device nbd0): udf_fill_super: No partition found (1) [ 98.549659][ T6249] UDF-fs: warning (device nbd3): udf_fill_super: No partition found (1) [ 98.552540][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 98.559474][ T6246] block nbd0: shutting down sockets [ 98.561743][ T6239] ldm_validate_partition_table(): Disk read failed. [ 98.637875][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 98.641219][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 98.644257][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 98.648483][ T6239] Dev nbd3: unable to read RDB block 0 [ 98.650626][ T6239] nbd3: unable to read partition table [ 98.652633][ T6239] nbd3: partition table beyond EOD, truncated [ 98.663395][ T6239] ldm_validate_partition_table(): Disk read failed. [ 98.666297][ T6239] Dev nbd3: unable to read RDB block 0 [ 98.669195][ T6239] nbd3: unable to read partition table [ 98.671411][ T6239] nbd3: partition table beyond EOD, truncated [ 99.366140][ T30] usb 8-1: new high-speed USB device number 9 using dummy_hcd [ 99.526129][ T30] usb 8-1: Using ep0 maxpacket: 16 [ 99.530436][ T30] usb 8-1: config 1 descriptor has 1 excess byte, ignoring [ 99.532837][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 99.536421][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 99.539605][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 99.543182][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 99.546924][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 99.550118][ T30] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 99.553393][ T30] usb 8-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 99.558993][ T30] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 99.561928][ T30] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 99.564547][ T30] usb 8-1: SerialNumber: syz [ 99.569961][ T30] cdc_acm 8-1:1.0: Control and data interfaces are not separated! [ 100.956137][ T979] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 101.116137][ T979] usb 7-1: Using ep0 maxpacket: 16 [ 101.118820][ T979] usb 7-1: config 1 descriptor has 1 excess byte, ignoring [ 101.120782][ T979] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 101.123497][ T979] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 101.125965][ T979] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 101.129042][ T979] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 101.132056][ T979] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 101.134530][ T979] usb 7-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 101.137285][ T979] usb 7-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 101.141585][ T979] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 101.143902][ T979] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 101.145937][ T979] usb 7-1: SerialNumber: syz [ 101.152127][ T979] cdc_acm 7-1:1.0: Control and data interfaces are not separated! [ 101.572646][ T6282] sp0: Synchronizing with TNC [ 101.717676][ T6282] veth0_vlan: left promiscuous mode [ 101.719580][ T6282] veth0_vlan: entered promiscuous mode [ 101.776324][ T979] usb 8-1: USB disconnect, device number 9 [ 101.788707][ T6282] sp0: Synchronizing with TNC [ 102.468048][ T6290] overlay: ./file1 is not a directory [ 102.477607][ T6294] fuse: Unknown parameter 'grouÿ' [ 102.517705][ T6298] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode [ 102.520035][ T6298] macsec0: entered allmulticast mode [ 102.521461][ T6298] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode [ 102.536575][ T6298] mac80211_hwsim hwsim2 wlan0: left allmulticast mode [ 102.539522][ T6298] mac80211_hwsim hwsim2 wlan0: left promiscuous mode [ 102.749278][ T6304] netlink: 36 bytes leftover after parsing attributes in process `syz.1.229'. [ 102.751775][ T6308] netlink: 4 bytes leftover after parsing attributes in process `syz.1.229'. [ 102.972125][ T5384] usb 8-1: new high-speed USB device number 10 using dummy_hcd [ 103.126154][ T5384] usb 8-1: Using ep0 maxpacket: 16 [ 103.129157][ T5384] usb 8-1: config 1 descriptor has 1 excess byte, ignoring [ 103.131040][ T5384] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 103.133815][ T5384] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 103.136391][ T5384] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 103.139250][ T5384] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 103.142110][ T5384] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 103.144685][ T5384] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 103.147407][ T5384] usb 8-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 103.151817][ T5384] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 103.154337][ T5384] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 103.156792][ T5384] usb 8-1: SerialNumber: syz [ 103.168929][ T5384] cdc_acm 8-1:1.0: Control and data interfaces are not separated! [ 103.437496][ T5384] usb 7-1: USB disconnect, device number 6 [ 104.344091][ T6341] netlink: 36 bytes leftover after parsing attributes in process `syz.0.239'. [ 104.347183][ T6341] netlink: 4 bytes leftover after parsing attributes in process `syz.0.239'. [ 104.356835][ T5384] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 104.506293][ T5384] usb 6-1: Using ep0 maxpacket: 16 [ 104.509101][ T5384] usb 6-1: config 1 descriptor has 1 excess byte, ignoring [ 104.511026][ T5384] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 104.513863][ T5384] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 104.516497][ T5384] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 104.519378][ T5384] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 104.522284][ T5384] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 104.524781][ T5384] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 104.527378][ T5384] usb 6-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 104.531577][ T5384] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 104.533965][ T5384] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 104.536294][ T5384] usb 6-1: SerialNumber: syz [ 104.539813][ T5384] cdc_acm 6-1:1.0: Control and data interfaces are not separated! [ 104.696164][ T8] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 104.857362][ T8] usb 5-1: config index 0 descriptor too short (expected 2322, got 18) [ 104.859523][ T8] usb 5-1: config 0 has an invalid interface number: 0 but max is -1 [ 104.861683][ T8] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 0 [ 104.864081][ T8] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e [ 104.866550][ T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 104.869547][ T8] usb 5-1: config 0 descriptor?? [ 105.260408][ T6358] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 105.263886][ T6358] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 105.462041][ T5384] usb 8-1: USB disconnect, device number 10 [ 105.826256][ T30] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 105.916792][ T8] ath6kl: Failed to submit usb control message: -110 [ 105.918588][ T8] ath6kl: unable to send the bmi data to the device: -110 [ 105.920443][ T8] ath6kl: Unable to send get target info: -110 [ 105.923187][ T8] ath6kl: Failed to init ath6kl core: -110 [ 105.932418][ T8] ath6kl_usb 5-1:0.0: probe with driver ath6kl_usb failed with error -110 [ 106.056325][ T30] usb 7-1: Using ep0 maxpacket: 16 [ 106.059984][ T30] usb 7-1: config 1 descriptor has 1 excess byte, ignoring [ 106.061945][ T30] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 106.064749][ T30] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 106.067346][ T30] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 106.070215][ T30] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 106.073693][ T30] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 106.076676][ T30] usb 7-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 106.079227][ T30] usb 7-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 106.083396][ T30] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 106.085736][ T30] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 106.087923][ T30] usb 7-1: SerialNumber: syz [ 106.091180][ T30] cdc_acm 7-1:1.0: Control and data interfaces are not separated! [ 106.396215][ T979] usb 8-1: new high-speed USB device number 11 using dummy_hcd [ 106.558821][ T979] usb 8-1: Using ep0 maxpacket: 16 [ 106.561530][ T979] usb 8-1: config 1 descriptor has 1 excess byte, ignoring [ 106.563525][ T979] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 106.566569][ T979] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 106.570013][ T979] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 106.573865][ T979] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 106.578781][ T979] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 106.581345][ T979] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 106.584670][ T979] usb 8-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 106.589288][ T979] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 106.591676][ T979] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 106.593678][ T979] usb 8-1: SerialNumber: syz [ 106.599343][ T979] cdc_acm 8-1:1.0: Control and data interfaces are not separated! [ 106.930724][ T5386] usb 6-1: USB disconnect, device number 9 [ 106.955496][ T6374] fuse: Bad value for 'fd' [ 107.476559][ T5380] usb 5-1: USB disconnect, device number 8 [ 107.656829][ T6388] FAULT_INJECTION: forcing a failure. [ 107.656829][ T6388] name failslab, interval 1, probability 0, space 0, times 0 [ 107.660094][ T6388] CPU: 1 UID: 0 PID: 6388 Comm: syz.1.252 Not tainted 6.12.0-rc2-syzkaller-00058-g75b607fab38d #0 [ 107.662802][ T6388] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 107.665580][ T6388] Call Trace: [ 107.666459][ T6388] [ 107.667271][ T6388] dump_stack_lvl+0x16c/0x1f0 [ 107.668502][ T6388] should_fail_ex+0x497/0x5b0 [ 107.669682][ T6388] ? fs_reclaim_acquire+0xae/0x160 [ 107.670958][ T6388] should_failslab+0xc2/0x120 [ 107.672197][ T6388] __kmalloc_cache_noprof+0x6b/0x310 [ 107.673572][ T6388] ? afs_get_tree+0x3ae/0x14c0 [ 107.674799][ T6388] afs_get_tree+0x3ae/0x14c0 [ 107.675922][ T6388] ? security_capable+0x7e/0x260 [ 107.677206][ T6388] vfs_get_tree+0x8f/0x380 [ 107.678367][ T6388] path_mount+0x6e1/0x1f10 [ 107.679525][ T6388] ? kmem_cache_free+0x152/0x4b0 [ 107.680791][ T6388] ? __pfx_path_mount+0x10/0x10 [ 107.682073][ T6388] ? putname+0x12e/0x170 [ 107.683194][ T6388] __ia32_sys_mount+0x292/0x310 [ 107.684468][ T6388] ? __pfx___ia32_sys_mount+0x10/0x10 [ 107.685875][ T6388] __do_fast_syscall_32+0x73/0x120 [ 107.687270][ T6388] do_fast_syscall_32+0x32/0x80 [ 107.688623][ T6388] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 107.690278][ T6388] RIP: 0023:0xf746e579 [ 107.691351][ T6388] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 107.696463][ T6388] RSP: 002b:00000000f575656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015 [ 107.698637][ T6388] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000020000080 [ 107.700690][ T6388] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 0000000020000400 [ 107.702742][ T6388] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 107.704783][ T6388] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 107.706853][ T6388] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 107.708901][ T6388] [ 107.735960][ T6393] netlink: 8 bytes leftover after parsing attributes in process `syz.1.254'. [ 107.738417][ T6393] netlink: 24 bytes leftover after parsing attributes in process `syz.1.254'. [ 107.741962][ T6393] netlink: 12 bytes leftover after parsing attributes in process `syz.1.254'. [ 108.036183][ T979] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 108.206140][ T979] usb 5-1: Using ep0 maxpacket: 16 [ 108.213686][ T979] usb 5-1: config 0 has no interfaces? [ 108.215868][ T979] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 108.219415][ T979] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 108.223144][ T979] usb 5-1: config 0 descriptor?? [ 108.390538][ T8] usb 7-1: USB disconnect, device number 7 [ 108.415523][ T6402] fuse: Bad value for 'fd' [ 108.457379][ T6405] __find_get_block_slow() failed. block=144115188075855872, b_blocknr=0, b_state=0x00106019, b_size=4096, device sda1 blocksize: 4096 [ 108.462034][ T6405] grow_buffers: requested out-of-range block 144115188075855872 for device sda1 [ 108.464865][ T6405] EXT4-fs warning (device sda1): ext4_resize_fs:2019: can't read last block, resize aborted [ 108.592006][ T6409] FAULT_INJECTION: forcing a failure. [ 108.592006][ T6409] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 108.595620][ T6409] CPU: 3 UID: 0 PID: 6409 Comm: syz.2.258 Not tainted 6.12.0-rc2-syzkaller-00058-g75b607fab38d #0 [ 108.598327][ T6409] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 108.601165][ T6409] Call Trace: [ 108.602038][ T6409] [ 108.602809][ T6409] dump_stack_lvl+0x16c/0x1f0 [ 108.604045][ T6409] should_fail_ex+0x497/0x5b0 [ 108.605269][ T6409] _copy_from_iter+0x48b/0x13e0 [ 108.606529][ T6409] ? __pfx__copy_from_iter+0x10/0x10 [ 108.607936][ T6409] ? __virt_addr_valid+0x1a4/0x590 [ 108.609318][ T6409] ? __virt_addr_valid+0x5e/0x590 [ 108.610662][ T6409] ? __phys_addr_symbol+0x30/0x80 [ 108.611996][ T6409] ? __check_object_size+0x488/0x710 [ 108.613372][ T6409] tipc_msg_build+0x9f0/0x10d0 [ 108.614633][ T6409] ? __pfx_tipc_msg_build+0x10/0x10 [ 108.616005][ T6409] ? tipc_nametbl_lookup_mcast_nodes+0x214/0x370 [ 108.617656][ T6409] tipc_sendmcast+0x79e/0xba0 [ 108.618899][ T6409] ? hlock_class+0x4e/0x130 [ 108.620097][ T6409] ? __pfx_tipc_sendmcast+0x10/0x10 [ 108.621490][ T6409] ? mark_lock+0xb5/0xc60 [ 108.622618][ T6409] ? hlock_class+0x4e/0x130 [ 108.623814][ T6409] ? mark_lock+0xb5/0xc60 [ 108.624948][ T6409] ? mark_lock+0xb5/0xc60 [ 108.626080][ T6409] ? __pfx_mark_lock+0x10/0x10 [ 108.627363][ T6409] ? __pfx_woken_wake_function+0x10/0x10 [ 108.628823][ T6409] ? hlock_class+0x4e/0x130 [ 108.630010][ T6409] ? __lock_acquire+0x163e/0x3ce0 [ 108.631358][ T6409] __tipc_sendmsg+0x134c/0x1970 [ 108.632636][ T6409] ? __pfx___tipc_sendmsg+0x10/0x10 [ 108.633989][ T6409] ? __pfx_mark_lock+0x10/0x10 [ 108.635248][ T6409] ? lock_acquire.part.0+0x11b/0x380 [ 108.636633][ T6409] ? find_held_lock+0x2d/0x110 [ 108.637899][ T6409] ? mark_held_locks+0x9f/0xe0 [ 108.639204][ T6409] ? tipc_sendmsg+0x41/0x70 [ 108.640402][ T6409] ? __local_bh_enable_ip+0xa4/0x120 [ 108.642088][ T6409] tipc_sendmsg+0x4f/0x70 [ 108.643265][ T6409] ____sys_sendmsg+0x9ae/0xb40 [ 108.644532][ T6409] ? __pfx_____sys_sendmsg+0x10/0x10 [ 108.645924][ T6409] ? get_compat_msghdr+0x11b/0x170 [ 108.647422][ T6409] ? __pfx___lock_acquire+0x10/0x10 [ 108.648784][ T6409] ___sys_sendmsg+0x135/0x1e0 [ 108.650028][ T6409] ? __pfx____sys_sendmsg+0x10/0x10 [ 108.651547][ T6409] ? lock_acquire+0x2f/0xb0 [ 108.652750][ T6409] ? __fget_files+0x40/0x3f0 [ 108.653962][ T6409] ? fdget+0x176/0x210 [ 108.655029][ T6409] __sys_sendmmsg+0x2a5/0x450 [ 108.656311][ T6409] ? __pfx___sys_sendmmsg+0x10/0x10 [ 108.657781][ T6409] ? vfs_write+0x14d/0x1140 [ 108.658975][ T6409] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 108.660578][ T6409] ? fput+0x30/0x390 [ 108.661679][ T6409] ? ksys_write+0x1ad/0x260 [ 108.662934][ T6409] ? __pfx_ksys_write+0x10/0x10 [ 108.664216][ T6409] __ia32_compat_sys_sendmmsg+0x9d/0x100 [ 108.665671][ T6409] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 108.667509][ T6409] __do_fast_syscall_32+0x73/0x120 [ 108.668840][ T6409] do_fast_syscall_32+0x32/0x80 [ 108.670109][ T6409] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 108.671756][ T6409] RIP: 0023:0xf7f6f579 [ 108.672759][ T6409] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 108.677843][ T6409] RSP: 002b:00000000f56d556c EFLAGS: 00000296 ORIG_RAX: 0000000000000159 [ 108.680010][ T6409] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020006740 [ 108.682092][ T6409] RDX: 0000000000000300 RSI: 0000000000000000 RDI: 0000000000000000 [ 108.684209][ T6409] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 108.686240][ T6409] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 108.688376][ T6409] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 108.690411][ T6409] [ 108.938432][ T979] usb 8-1: USB disconnect, device number 11 [ 109.340491][ T6420] block nbd3: shutting down sockets [ 109.488065][ T6426] FAULT_INJECTION: forcing a failure. [ 109.488065][ T6426] name failslab, interval 1, probability 0, space 0, times 0 [ 109.492601][ T6426] CPU: 2 UID: 0 PID: 6426 Comm: syz.3.263 Not tainted 6.12.0-rc2-syzkaller-00058-g75b607fab38d #0 [ 109.495314][ T6426] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 109.497845][ T6426] Call Trace: [ 109.498826][ T6426] [ 109.499757][ T6426] dump_stack_lvl+0x16c/0x1f0 [ 109.501200][ T6426] should_fail_ex+0x497/0x5b0 [ 109.502615][ T6426] should_failslab+0xc2/0x120 [ 109.504047][ T6426] __kmalloc_cache_noprof+0x6b/0x310 [ 109.505611][ T6426] ? __ipv6_dev_ac_inc+0x363/0xc90 [ 109.507077][ T6426] __ipv6_dev_ac_inc+0x363/0xc90 [ 109.508424][ T6426] ipv6_sock_ac_join+0x59c/0x800 [ 109.509929][ T6426] ? __local_bh_enable_ip+0xa4/0x120 [ 109.511543][ T6426] do_ipv6_setsockopt+0x386e/0x4800 [ 109.513088][ T6426] ? __pfx_do_ipv6_setsockopt+0x10/0x10 [ 109.514624][ T6426] ? __pfx___lock_acquire+0x10/0x10 [ 109.515888][ T6426] ? hlock_class+0x4e/0x130 [ 109.516990][ T6426] ? __pfx___might_resched+0x10/0x10 [ 109.518244][ T6426] ? __pfx___lock_acquire+0x10/0x10 [ 109.519770][ T6426] ? aa_sk_perm+0x2f5/0xb20 [ 109.520985][ T6426] ? ipv6_setsockopt+0xcb/0x170 [ 109.522149][ T6426] ipv6_setsockopt+0xcb/0x170 [ 109.523276][ T6426] tcp_setsockopt+0xa4/0x100 [ 109.524368][ T6426] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 109.525758][ T6426] do_sock_setsockopt+0x222/0x480 [ 109.526975][ T6426] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 109.528309][ T6426] ? fdget+0x176/0x210 [ 109.529282][ T6426] __sys_setsockopt+0x1a4/0x270 [ 109.530444][ T6426] ? __pfx___sys_setsockopt+0x10/0x10 [ 109.531732][ T6426] ? fput+0x30/0x390 [ 109.532672][ T6426] ? ksys_write+0x1ad/0x260 [ 109.533761][ T6426] ? __pfx_ksys_write+0x10/0x10 [ 109.534924][ T6426] __ia32_sys_setsockopt+0xbc/0x160 [ 109.536173][ T6426] ? lockdep_hardirqs_on+0x7c/0x110 [ 109.537433][ T6426] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 109.538986][ T6426] __do_fast_syscall_32+0x73/0x120 [ 109.540217][ T6426] do_fast_syscall_32+0x32/0x80 [ 109.541381][ T6426] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 109.542875][ T6426] RIP: 0023:0xf745e579 [ 109.543815][ T6426] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 109.548194][ T6426] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 000000000000016e [ 109.550061][ T6426] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000029 [ 109.552177][ T6426] RDX: 000000000000001b RSI: 00000000200000c0 RDI: 0000000000000020 [ 109.554796][ T6426] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 109.557129][ T6426] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 109.559163][ T6426] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 109.560981][ T6426] [ 110.056231][ T979] usb 8-1: new high-speed USB device number 12 using dummy_hcd [ 110.216134][ T979] usb 8-1: Using ep0 maxpacket: 16 [ 110.227551][ T979] usb 8-1: config 1 descriptor has 1 excess byte, ignoring [ 110.229421][ T979] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 110.232421][ T979] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 110.235129][ T979] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 110.265822][ T979] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 110.286195][ T979] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 110.296244][ T979] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 110.306172][ T979] usb 8-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 110.321141][ T979] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 110.323524][ T979] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 110.325908][ T979] usb 8-1: SerialNumber: syz [ 110.334064][ T979] cdc_acm 8-1:1.0: Control and data interfaces are not separated! [ 110.390643][ T6439] FAULT_INJECTION: forcing a failure. [ 110.390643][ T6439] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 110.394422][ T6439] CPU: 1 UID: 0 PID: 6439 Comm: syz.2.267 Not tainted 6.12.0-rc2-syzkaller-00058-g75b607fab38d #0 [ 110.397826][ T6439] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 110.401250][ T6439] Call Trace: [ 110.402122][ T6439] [ 110.402915][ T6439] dump_stack_lvl+0x16c/0x1f0 [ 110.404139][ T6439] should_fail_ex+0x497/0x5b0 [ 110.405350][ T6439] _copy_from_user+0x30/0xf0 [ 110.406537][ T6439] get_compat_msghdr+0xa8/0x170 [ 110.407814][ T6439] ? __pfx_get_compat_msghdr+0x10/0x10 [ 110.409211][ T6439] ? find_held_lock+0x2d/0x110 [ 110.410431][ T6439] ___sys_recvmsg+0x193/0x1a0 [ 110.411820][ T6439] ? __pfx____sys_recvmsg+0x10/0x10 [ 110.413561][ T6439] ? lock_acquire+0x2f/0xb0 [ 110.415123][ T6439] ? __fget_files+0x40/0x3f0 [ 110.416692][ T6439] ? __pfx___might_resched+0x10/0x10 [ 110.418277][ T6439] ? fdget+0x176/0x210 [ 110.419468][ T6439] do_recvmmsg+0x51a/0x750 [ 110.420831][ T6439] ? __pfx_do_recvmmsg+0x10/0x10 [ 110.422496][ T6439] ? __pfx_lock_release+0x10/0x10 [ 110.423855][ T6439] ? vfs_write+0x14d/0x1140 [ 110.425084][ T6439] ? __fget_files+0x244/0x3f0 [ 110.426486][ T6439] __sys_recvmmsg+0x21e/0x280 [ 110.427978][ T6439] ? __pfx___sys_recvmmsg+0x10/0x10 [ 110.429284][ T6439] ? __pfx_ksys_write+0x10/0x10 [ 110.430560][ T6439] __ia32_compat_sys_recvmmsg_time32+0xc4/0x160 [ 110.432189][ T6439] ? lockdep_hardirqs_on+0x7c/0x110 [ 110.433546][ T6439] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 110.435548][ T6439] __do_fast_syscall_32+0x73/0x120 [ 110.437262][ T6439] do_fast_syscall_32+0x32/0x80 [ 110.438881][ T6439] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 110.440696][ T6439] RIP: 0023:0xf7f6f579 [ 110.441891][ T6439] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 110.446876][ T6439] RSP: 002b:00000000f56f656c EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 110.449003][ T6439] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000d80 [ 110.451025][ T6439] RDX: 000000000000036f RSI: 0000000000020102 RDI: 0000000000000000 [ 110.453082][ T6439] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 110.455146][ T6439] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 110.457201][ T6439] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 110.459192][ T6439] [ 110.652260][ T6451] bio_check_eod: 7 callbacks suppressed [ 110.652278][ T6451] syz.2.269: attempt to access beyond end of device [ 110.652278][ T6451] nbd2: rw=0, sector=64, nr_sectors = 2 limit=0 [ 110.659231][ T6451] syz.2.269: attempt to access beyond end of device [ 110.659231][ T6451] nbd2: rw=0, sector=512, nr_sectors = 2 limit=0 [ 110.662402][ T6451] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256 [ 110.664978][ T6451] syz.2.269: attempt to access beyond end of device [ 110.664978][ T6451] nbd2: rw=0, sector=1024, nr_sectors = 2 limit=0 [ 110.668355][ T6451] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512 [ 110.670864][ T6451] syz.2.269: attempt to access beyond end of device [ 110.670864][ T6451] nbd2: rw=0, sector=64, nr_sectors = 4 limit=0 [ 110.674146][ T6451] syz.2.269: attempt to access beyond end of device [ 110.674146][ T6451] nbd2: rw=0, sector=1024, nr_sectors = 4 limit=0 [ 110.677521][ T6451] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256 [ 110.679950][ T6451] syz.2.269: attempt to access beyond end of device [ 110.679950][ T6451] nbd2: rw=0, sector=2048, nr_sectors = 4 limit=0 [ 110.683264][ T6451] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512 [ 110.685902][ T6451] syz.2.269: attempt to access beyond end of device [ 110.685902][ T6451] nbd2: rw=0, sector=64, nr_sectors = 8 limit=0 [ 110.689692][ T6451] syz.2.269: attempt to access beyond end of device [ 110.689692][ T6451] nbd2: rw=0, sector=2048, nr_sectors = 8 limit=0 [ 110.692874][ T6451] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256 [ 110.695336][ T6451] syz.2.269: attempt to access beyond end of device [ 110.695336][ T6451] nbd2: rw=0, sector=4096, nr_sectors = 8 limit=0 [ 110.699167][ T6451] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512 [ 110.701597][ T6451] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1) [ 110.756515][ T6450] nbd2: detected capacity change from 0 to 12 [ 110.766659][ T6239] block nbd2: Send control failed (result -89) [ 110.768462][ T6239] block nbd2: Request send failed, requeueing [ 110.771039][ T4781] block nbd2: Receive control failed (result -32) [ 110.774164][ T55] block nbd2: Dead connection, failed to find a fallback [ 110.776001][ T55] block nbd2: shutting down sockets [ 110.777661][ T55] blk_print_req_error: 26 callbacks suppressed [ 110.777697][ T55] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 110.781732][ T55] buffer_io_error: 25 callbacks suppressed [ 110.781739][ T55] Buffer I/O error on dev nbd2, logical block 0, async page read [ 110.787116][ T6239] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 110.789566][ T6239] Buffer I/O error on dev nbd2, logical block 0, async page read [ 110.792231][ T6239] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 110.794665][ T6239] Buffer I/O error on dev nbd2, logical block 0, async page read [ 110.797350][ T6239] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 110.799715][ T6239] Buffer I/O error on dev nbd2, logical block 0, async page read [ 110.802134][ T6239] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 110.804515][ T6239] Buffer I/O error on dev nbd2, logical block 0, async page read [ 110.806899][ T6239] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 110.809568][ T6239] Buffer I/O error on dev nbd2, logical block 0, async page read [ 110.812019][ T6239] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 110.814410][ T6239] Buffer I/O error on dev nbd2, logical block 0, async page read [ 110.817326][ T6239] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 110.820915][ T6239] Buffer I/O error on dev nbd2, logical block 0, async page read [ 110.823180][ T6239] ldm_validate_partition_table(): Disk read failed. [ 110.825122][ T6239] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 110.827713][ T6239] Buffer I/O error on dev nbd2, logical block 0, async page read [ 110.830076][ T6239] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 110.832514][ T6239] Buffer I/O error on dev nbd2, logical block 0, async page read [ 110.834752][ T6239] Dev nbd2: unable to read RDB block 0 [ 110.836410][ T6239] nbd2: unable to read partition table [ 110.837913][ T6239] nbd2: partition table beyond EOD, truncated [ 110.840799][ T6239] ldm_validate_partition_table(): Disk read failed. [ 110.842697][ T6239] Dev nbd2: unable to read RDB block 0 [ 110.844224][ T6239] nbd2: unable to read partition table [ 110.845684][ T6239] nbd2: partition table beyond EOD, truncated [ 110.863985][ T39] audit: type=1326 audit(1728500882.943:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f6f579 code=0x7ffc0000 [ 110.869626][ T39] audit: type=1326 audit(1728500882.943:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f6f579 code=0x7ffc0000 [ 110.875001][ T39] audit: type=1326 audit(1728500882.953:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.271" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f6f579 code=0x7ffc0000 [ 110.880471][ T39] audit: type=1326 audit(1728500882.953:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f6f579 code=0x7ffc0000 [ 110.885825][ T39] audit: type=1326 audit(1728500882.953:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f6f579 code=0x7ffc0000 [ 110.891561][ T39] audit: type=1326 audit(1728500882.953:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.271" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f6f579 code=0x7ffc0000 [ 110.892921][ T5380] usb 5-1: USB disconnect, device number 9 [ 110.898700][ T39] audit: type=1326 audit(1728500882.953:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f6f579 code=0x7ffc0000 [ 110.904136][ T39] audit: type=1326 audit(1728500882.953:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.271" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f6f579 code=0x7ffc0000 [ 110.910165][ T39] audit: type=1326 audit(1728500882.953:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f6f579 code=0x7ffc0000 [ 110.915889][ T39] audit: type=1326 audit(1728500882.953:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.271" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f6f579 code=0x7ffc0000 [ 110.956179][ T979] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 111.106343][ T5386] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 111.126258][ T979] usb 6-1: Using ep0 maxpacket: 16 [ 111.133831][ T979] usb 6-1: config 1 descriptor has 1 excess byte, ignoring [ 111.136184][ T979] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 111.138948][ T979] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 111.141453][ T979] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 111.144308][ T979] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 111.147379][ T979] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 111.149830][ T979] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 111.152315][ T979] usb 6-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 111.157679][ T979] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 111.160063][ T979] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 111.162327][ T979] usb 6-1: SerialNumber: syz [ 111.177552][ T979] cdc_acm 6-1:1.0: Control and data interfaces are not separated! [ 111.256209][ T5386] usb 7-1: Using ep0 maxpacket: 8 [ 111.262308][ T5386] usb 7-1: config index 0 descriptor too short (expected 301, got 45) [ 111.264926][ T5386] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 111.267670][ T5386] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 111.270369][ T5386] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 111.273001][ T5386] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 111.276741][ T5386] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 111.279083][ T5386] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 111.495132][ T5386] usb 7-1: GET_CAPABILITIES returned 0 [ 111.497396][ T5386] usbtmc 7-1:16.0: can't read capabilities [ 111.702251][ T6454] netlink: 48 bytes leftover after parsing attributes in process `syz.2.271'. [ 111.727021][ T8] usb 7-1: USB disconnect, device number 8 [ 111.836787][ T6460] netlink: 36 bytes leftover after parsing attributes in process `syz.0.273'. [ 111.840585][ T6460] netlink: 4 bytes leftover after parsing attributes in process `syz.0.273'. [ 112.620699][ T979] usb 8-1: USB disconnect, device number 12 [ 112.916798][ T6485] nbd2: detected capacity change from 0 to 12 [ 112.920167][ T6239] block nbd2: Send control failed (result -89) [ 112.921852][ T6239] block nbd2: Request send failed, requeueing [ 112.923567][ T4781] block nbd2: Receive control failed (result -32) [ 112.925399][ T26] block nbd2: Dead connection, failed to find a fallback [ 112.928188][ T26] block nbd2: shutting down sockets [ 112.933071][ T6239] ldm_validate_partition_table(): Disk read failed. [ 112.935184][ T6239] Dev nbd2: unable to read RDB block 0 [ 112.938529][ T6239] nbd2: unable to read partition table [ 112.940104][ T6239] nbd2: partition table beyond EOD, truncated [ 112.942353][ T6485] ldm_validate_partition_table(): Disk read failed. [ 112.944811][ T6485] Dev nbd2: unable to read RDB block 0 [ 112.947286][ T6485] nbd2: unable to read partition table [ 112.949245][ T6485] nbd2: partition table beyond EOD, truncated [ 112.951526][ T6485] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256 [ 112.954740][ T6485] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=5, location=5 [ 112.958896][ T6485] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=4, location=4 [ 112.962186][ T6485] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=3, location=3 [ 112.969948][ T6239] ldm_validate_partition_table(): Disk read failed. [ 112.973271][ T6239] Dev nbd2: unable to read RDB block 0 [ 112.975917][ T6239] nbd2: unable to read partition table [ 112.976258][ T6485] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512 [ 112.986700][ T6239] nbd2: partition table beyond EOD, truncated [ 112.994583][ T6485] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256 [ 113.001457][ T6485] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=2, location=2 [ 113.004563][ T6485] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=1, location=1 [ 113.017797][ T6485] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=0, location=0 [ 113.020238][ T6485] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512 [ 113.023928][ T6485] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256 [ 113.027263][ T6485] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=0, location=0 [ 113.029699][ T6485] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512 [ 113.032069][ T6485] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1) [ 113.096291][ T5552] usb 8-1: new high-speed USB device number 13 using dummy_hcd [ 113.248206][ T5552] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 113.251130][ T5552] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 113.253861][ T5552] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 113.256811][ T5552] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 113.260310][ T5552] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 113.262587][ T5552] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 113.265396][ T5552] usb 8-1: config 0 descriptor?? [ 113.267534][ T6484] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 113.313990][ T6496] FAULT_INJECTION: forcing a failure. [ 113.313990][ T6496] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 113.318158][ T6496] CPU: 1 UID: 0 PID: 6496 Comm: syz.2.283 Not tainted 6.12.0-rc2-syzkaller-00058-g75b607fab38d #0 [ 113.321158][ T6496] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 113.324217][ T6496] Call Trace: [ 113.325192][ T6496] [ 113.325994][ T6496] dump_stack_lvl+0x16c/0x1f0 [ 113.327407][ T6496] should_fail_ex+0x497/0x5b0 [ 113.328767][ T6496] _copy_to_user+0x30/0xc0 [ 113.329945][ T6496] simple_read_from_buffer+0xd0/0x160 [ 113.331742][ T6496] proc_fail_nth_read+0x198/0x270 [ 113.333025][ T6496] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 113.334838][ T6496] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 113.336699][ T6496] vfs_read+0x1ce/0xbd0 [ 113.338106][ T6496] ? __fget_files+0x23a/0x3f0 [ 113.339698][ T6496] ? fdget_pos+0x24c/0x360 [ 113.341203][ T6496] ? __pfx_lock_release+0x10/0x10 [ 113.342896][ T6496] ? trace_lock_acquire+0x14a/0x1d0 [ 113.344315][ T6496] ? __pfx_vfs_read+0x10/0x10 [ 113.345550][ T6496] ? __pfx___mutex_lock+0x10/0x10 [ 113.347227][ T6496] ? __fget_files+0x244/0x3f0 [ 113.348413][ T6496] ksys_read+0x12f/0x260 [ 113.349490][ T6496] ? __pfx_ksys_read+0x10/0x10 [ 113.350827][ T6496] __do_fast_syscall_32+0x73/0x120 [ 113.352358][ T6496] do_fast_syscall_32+0x32/0x80 [ 113.353722][ T6496] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 113.355308][ T6496] RIP: 0023:0xf7f6f579 [ 113.356529][ T6496] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 113.361982][ T6496] RSP: 002b:00000000f56b45a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 113.364773][ T6496] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000f56b4620 [ 113.367194][ T6496] RDX: 000000000000000f RSI: 00000000f73fbff4 RDI: 0000000000000000 [ 113.369480][ T6496] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 113.371842][ T6496] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 113.373816][ T6496] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 113.375786][ T6496] [ 113.559339][ T6500] netlink: 36 bytes leftover after parsing attributes in process `syz.2.285'. [ 113.560569][ T979] usb 6-1: USB disconnect, device number 10 [ 113.562639][ T6500] netlink: 4 bytes leftover after parsing attributes in process `syz.2.285'. [ 114.017734][ T30] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 114.022174][ T5552] usbhid 8-1:0.0: can't add hid device: -71 [ 114.023782][ T5552] usbhid 8-1:0.0: probe with driver usbhid failed with error -71 [ 114.026961][ T5552] usb 8-1: USB disconnect, device number 13 [ 114.177684][ T30] usb 6-1: Using ep0 maxpacket: 16 [ 114.180401][ T30] usb 6-1: config 1 descriptor has 1 excess byte, ignoring [ 114.182319][ T30] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 114.185260][ T30] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 114.187855][ T30] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 114.190771][ T30] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 114.193648][ T30] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 114.197744][ T30] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 114.200233][ T30] usb 6-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 114.204360][ T30] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 114.206803][ T30] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 114.208937][ T30] usb 6-1: SerialNumber: syz [ 114.212924][ T30] cdc_acm 6-1:1.0: Control and data interfaces are not separated! [ 114.274063][ T6527] syz.0.290: attempt to access beyond end of device [ 114.274063][ T6527] nbd0: rw=0, sector=64, nr_sectors = 2 limit=0 [ 114.277554][ T6527] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256 [ 114.279982][ T6527] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512 [ 114.282601][ T6527] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256 [ 114.285037][ T6527] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512 [ 114.288111][ T6527] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256 [ 114.290511][ T6527] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512 [ 114.292973][ T6527] UDF-fs: warning (device nbd0): udf_fill_super: No partition found (1) [ 114.356796][ T6526] nbd0: detected capacity change from 0 to 12 [ 114.360265][ T6239] block nbd0: Send control failed (result -89) [ 114.362403][ T6239] block nbd0: Request send failed, requeueing [ 114.364483][ T4781] block nbd0: Receive control failed (result -32) [ 114.364530][ T1214] block nbd0: Dead connection, failed to find a fallback [ 114.368933][ T1214] block nbd0: shutting down sockets [ 114.372106][ T6239] ldm_validate_partition_table(): Disk read failed. [ 114.374862][ T6239] Dev nbd0: unable to read RDB block 0 [ 114.377282][ T6239] nbd0: unable to read partition table [ 114.379367][ T6239] nbd0: partition table beyond EOD, truncated [ 114.397322][ T6239] ldm_validate_partition_table(): Disk read failed. [ 114.399236][ T6239] Dev nbd0: unable to read RDB block 0 [ 114.400778][ T6239] nbd0: unable to read partition table [ 114.402191][ T6239] nbd0: partition table beyond EOD, truncated [ 114.936337][ T30] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 115.126367][ T30] usb 5-1: Using ep0 maxpacket: 16 [ 115.146276][ T30] usb 5-1: config 1 descriptor has 1 excess byte, ignoring [ 115.154799][ T30] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 115.158874][ T30] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 115.161655][ T30] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 115.164486][ T30] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 115.167489][ T30] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 115.169999][ T30] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 115.172482][ T30] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 115.176545][ T30] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 115.178974][ T30] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 115.181032][ T30] usb 5-1: SerialNumber: syz [ 115.188208][ T30] cdc_acm 5-1:1.0: Control and data interfaces are not separated! [ 115.519577][ T6559] netlink: 7 bytes leftover after parsing attributes in process `syz.3.299'. [ 115.531798][ T6559] FAULT_INJECTION: forcing a failure. [ 115.531798][ T6559] name failslab, interval 1, probability 0, space 0, times 0 [ 115.540219][ T6559] CPU: 2 UID: 0 PID: 6559 Comm: syz.3.299 Not tainted 6.12.0-rc2-syzkaller-00058-g75b607fab38d #0 [ 115.543025][ T6559] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 115.545825][ T6559] Call Trace: [ 115.546752][ T6559] [ 115.547554][ T6559] dump_stack_lvl+0x16c/0x1f0 [ 115.548814][ T6559] should_fail_ex+0x497/0x5b0 [ 115.550068][ T6559] should_failslab+0xc2/0x120 [ 115.551324][ T6559] kmem_cache_alloc_noprof+0x6e/0x2f0 [ 115.552736][ T6559] ? skb_clone+0x190/0x3f0 [ 115.553910][ T6559] skb_clone+0x190/0x3f0 [ 115.555033][ T6559] netlink_deliver_tap+0xb26/0xcf0 [ 115.556378][ T6559] netlink_unicast+0x6b4/0x7f0 [ 115.557836][ T6559] ? __pfx_netlink_unicast+0x10/0x10 [ 115.559239][ T6559] netlink_ack+0x6a5/0xb20 [ 115.560407][ T6559] netlink_rcv_skb+0x327/0x410 [ 115.561634][ T6559] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 115.563058][ T6559] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 115.564442][ T6559] ? __pfx_aa_get_newest_label+0x10/0x10 [ 115.565914][ T6559] ? bpf_lsm_capable+0x9/0x10 [ 115.567176][ T6559] ? security_capable+0x7e/0x260 [ 115.568477][ T6559] ? ns_capable+0xd7/0x110 [ 115.569646][ T6559] nfnetlink_rcv+0x1b4/0x430 [ 115.570865][ T6559] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 115.572217][ T6559] ? netlink_deliver_tap+0x1ae/0xcf0 [ 115.573606][ T6559] netlink_unicast+0x53c/0x7f0 [ 115.574872][ T6559] ? __pfx_netlink_unicast+0x10/0x10 [ 115.576268][ T6559] ? __phys_addr_symbol+0x30/0x80 [ 115.577590][ T6559] ? __check_object_size+0x488/0x710 [ 115.578971][ T6559] netlink_sendmsg+0x8b8/0xd70 [ 115.580234][ T6559] ? __pfx_netlink_sendmsg+0x10/0x10 [ 115.581613][ T6559] ? lock_acquire+0x2f/0xb0 [ 115.582813][ T6559] ____sys_sendmsg+0x9ae/0xb40 [ 115.584092][ T6559] ? __pfx_____sys_sendmsg+0x10/0x10 [ 115.585480][ T6559] ? get_compat_msghdr+0x11b/0x170 [ 115.586850][ T6559] ? __pfx___lock_acquire+0x10/0x10 [ 115.588231][ T6559] ___sys_sendmsg+0x135/0x1e0 [ 115.589476][ T6559] ? __pfx____sys_sendmsg+0x10/0x10 [ 115.590865][ T6559] ? lock_acquire+0x2f/0xb0 [ 115.592069][ T6559] ? __fget_files+0x40/0x3f0 [ 115.593216][ T6559] ? fdget+0x176/0x210 [ 115.594290][ T6559] __sys_sendmsg+0x117/0x1f0 [ 115.595517][ T6559] ? __pfx___sys_sendmsg+0x10/0x10 [ 115.596756][ T6559] ? __fget_files+0x244/0x3f0 [ 115.598002][ T6559] __do_fast_syscall_32+0x73/0x120 [ 115.599317][ T6559] do_fast_syscall_32+0x32/0x80 [ 115.600565][ T6559] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 115.602230][ T6559] RIP: 0023:0xf745e579 [ 115.603318][ T6559] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 115.608337][ T6559] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 115.610496][ T6559] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100 [ 115.612552][ T6559] RDX: 0000000000040000 RSI: 0000000000000000 RDI: 0000000000000000 [ 115.614586][ T6559] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 115.616645][ T6559] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 115.618691][ T6559] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 115.620649][ T6559] [ 115.652619][ T6564] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 115.680428][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x6 [ 115.682526][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.684494][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.701346][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.703313][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.705945][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.708781][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.711153][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.713074][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.715034][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.717123][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.719060][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.720965][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.722866][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.724879][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.727516][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.729437][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.731350][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.733243][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.735470][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.737474][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.739489][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.741451][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.743382][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.745411][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.747819][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.750089][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.752021][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.753929][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.755955][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.757931][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.759860][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.761988][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.763931][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.765975][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.768029][ T5799] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 115.773523][ T5799] hid-generic 0000:0000:0000.0002: hidraw1: HID v0.00 Device [syz0] on syz0 [ 115.811367][ T6571] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode [ 115.813365][ T6571] macsec0: entered allmulticast mode [ 115.814749][ T6571] mac80211_hwsim hwsim8 wlan0: entered allmulticast mode [ 115.832161][ T6571] mac80211_hwsim hwsim8 wlan0: left allmulticast mode [ 115.834054][ T6571] mac80211_hwsim hwsim8 wlan0: left promiscuous mode [ 115.850943][ T6572] bio_check_eod: 8 callbacks suppressed [ 115.850955][ T6572] syz.3.303: attempt to access beyond end of device [ 115.850955][ T6572] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0 [ 115.855878][ T6572] syz.3.303: attempt to access beyond end of device [ 115.855878][ T6572] nbd3: rw=0, sector=512, nr_sectors = 2 limit=0 [ 115.859872][ T6572] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 115.862490][ T6572] syz.3.303: attempt to access beyond end of device [ 115.862490][ T6572] nbd3: rw=0, sector=1024, nr_sectors = 2 limit=0 [ 115.880086][ T6572] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 115.883015][ T6572] syz.3.303: attempt to access beyond end of device [ 115.883015][ T6572] nbd3: rw=0, sector=64, nr_sectors = 4 limit=0 [ 115.887236][ T6572] syz.3.303: attempt to access beyond end of device [ 115.887236][ T6572] nbd3: rw=0, sector=1024, nr_sectors = 4 limit=0 [ 115.890761][ T6572] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 115.893270][ T6572] syz.3.303: attempt to access beyond end of device [ 115.893270][ T6572] nbd3: rw=0, sector=2048, nr_sectors = 4 limit=0 [ 115.897585][ T6572] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 115.900765][ T6572] syz.3.303: attempt to access beyond end of device [ 115.900765][ T6572] nbd3: rw=0, sector=64, nr_sectors = 8 limit=0 [ 115.904159][ T6572] syz.3.303: attempt to access beyond end of device [ 115.904159][ T6572] nbd3: rw=0, sector=2048, nr_sectors = 8 limit=0 [ 115.908028][ T6572] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 115.910542][ T6572] syz.3.303: attempt to access beyond end of device [ 115.910542][ T6572] nbd3: rw=0, sector=4096, nr_sectors = 8 limit=0 [ 115.913839][ T6572] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 115.918330][ T6572] UDF-fs: warning (device nbd3): udf_fill_super: No partition found (1) [ 116.046876][ T6569] nbd3: detected capacity change from 0 to 12 [ 116.055266][ T6239] block nbd3: Send control failed (result -89) [ 116.057029][ T6239] block nbd3: Request send failed, requeueing [ 116.059355][ T4781] block nbd3: Receive control failed (result -32) [ 116.059387][ T55] block nbd3: Dead connection, failed to find a fallback [ 116.062974][ T55] block nbd3: shutting down sockets [ 116.064367][ T55] blk_print_req_error: 177 callbacks suppressed [ 116.064375][ T55] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 116.068631][ T55] buffer_io_error: 170 callbacks suppressed [ 116.068637][ T55] Buffer I/O error on dev nbd3, logical block 0, async page read [ 116.074609][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 116.079103][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 116.081200][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 116.083716][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 116.085779][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 116.088317][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 116.090398][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 116.092751][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 116.095377][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 116.097823][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 116.099902][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 116.102262][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 116.104344][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 116.106857][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 116.108930][ T6239] ldm_validate_partition_table(): Disk read failed. [ 116.110697][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 116.113072][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 116.115144][ T6239] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 116.117583][ T6239] Buffer I/O error on dev nbd3, logical block 0, async page read [ 116.119707][ T6239] Dev nbd3: unable to read RDB block 0 [ 116.121252][ T6239] nbd3: unable to read partition table [ 116.122775][ T6239] nbd3: partition table beyond EOD, truncated [ 116.126162][ T6239] ldm_validate_partition_table(): Disk read failed. [ 116.128269][ T6239] Dev nbd3: unable to read RDB block 0 [ 116.129881][ T6239] nbd3: unable to read partition table [ 116.131480][ T6239] nbd3: partition table beyond EOD, truncated [ 117.160000][ T6585] FAULT_INJECTION: forcing a failure. [ 117.160000][ T6585] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 117.163692][ T6585] CPU: 2 UID: 0 PID: 6585 Comm: syz.2.308 Not tainted 6.12.0-rc2-syzkaller-00058-g75b607fab38d #0 [ 117.166584][ T6585] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 117.169478][ T6585] Call Trace: [ 117.170547][ T6585] [ 117.171635][ T6585] dump_stack_lvl+0x16c/0x1f0 [ 117.173342][ T6585] should_fail_ex+0x497/0x5b0 [ 117.175065][ T6585] _copy_from_iter+0x29b/0x13e0 [ 117.176825][ T6585] ? __pfx__copy_from_iter+0x10/0x10 [ 117.178741][ T6585] ? __virt_addr_valid+0x1a4/0x590 [ 117.180589][ T6585] ? __virt_addr_valid+0x5e/0x590 [ 117.182423][ T6585] ? __phys_addr_symbol+0x30/0x80 [ 117.184014][ T6585] ? __check_object_size+0x488/0x710 [ 117.185429][ T6585] netlink_sendmsg+0x813/0xd70 [ 117.186738][ T6585] ? __pfx_netlink_sendmsg+0x10/0x10 [ 117.188188][ T6585] ? lock_acquire+0x2f/0xb0 [ 117.189456][ T6585] ____sys_sendmsg+0x9ae/0xb40 [ 117.190778][ T6585] ? __pfx_____sys_sendmsg+0x10/0x10 [ 117.192219][ T6585] ? get_compat_msghdr+0x11b/0x170 [ 117.193618][ T6585] ? __pfx___lock_acquire+0x10/0x10 [ 117.195022][ T6585] ___sys_sendmsg+0x135/0x1e0 [ 117.196297][ T6585] ? __pfx____sys_sendmsg+0x10/0x10 [ 117.197719][ T6585] ? lock_acquire+0x2f/0xb0 [ 117.199106][ T6585] ? __fget_files+0x40/0x3f0 [ 117.200448][ T6585] ? fdget+0x176/0x210 [ 117.201614][ T6585] __sys_sendmsg+0x117/0x1f0 [ 117.202880][ T6585] ? __pfx___sys_sendmsg+0x10/0x10 [ 117.204263][ T6585] ? bpf_trace_run2+0x2a6/0x590 [ 117.205566][ T6585] ? rcu_is_watching+0x12/0xc0 [ 117.206878][ T6585] __do_fast_syscall_32+0x73/0x120 [ 117.208293][ T6585] do_fast_syscall_32+0x32/0x80 [ 117.209616][ T6585] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 117.211749][ T6585] RIP: 0023:0xf7f6f579 [ 117.212890][ T6585] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 117.217947][ T6585] RSP: 002b:00000000f56f656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 117.220197][ T6585] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200002c0 [ 117.222329][ T6585] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 117.224423][ T6585] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 117.226576][ T6585] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 117.229091][ T6585] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 117.231498][ T6585] [ 117.379286][ T6591] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 118.338957][ T6598] EXT4-fs warning (device sda1): ext4_group_extend:1862: can't shrink FS - resize aborted [ 123.215660][ T6658] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode [ 123.217792][ T6658] macsec0: entered allmulticast mode [ 123.219207][ T6658] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode [ 123.228713][ T6658] mac80211_hwsim hwsim2 wlan0: left allmulticast mode [ 123.230635][ T6658] mac80211_hwsim hwsim2 wlan0: left promiscuous mode [ 124.375168][ T6670] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 124.512522][ T6670] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 126.487418][ T5353] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 126.490388][ T5353] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 126.492687][ T5353] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 126.496411][ T5353] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 126.498428][ T5353] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 126.500376][ T5353] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 126.597045][ T6687] chnl_net:caif_netlink_parms(): no params data found [ 126.880535][ T6687] bridge0: port 1(bridge_slave_0) entered blocking state [ 126.882585][ T6687] bridge0: port 1(bridge_slave_0) entered disabled state [ 126.884915][ T6687] bridge_slave_0: entered allmulticast mode [ 126.887787][ T6687] bridge_slave_0: entered promiscuous mode [ 126.890533][ T6687] bridge0: port 2(bridge_slave_1) entered blocking state [ 126.893029][ T6687] bridge0: port 2(bridge_slave_1) entered disabled state [ 126.899673][ T6687] bridge_slave_1: entered allmulticast mode [ 126.904636][ T6687] bridge_slave_1: entered promiscuous mode [ 126.998469][ T6687] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 127.001967][ T6687] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 127.113315][ T6687] team0: Port device team_slave_0 added [ 127.115967][ T6687] team0: Port device team_slave_1 added [ 127.166549][ T6687] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 127.168430][ T6687] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 127.175044][ T6687] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 127.180268][ T6687] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 127.182101][ T6687] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 127.196963][ T6687] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 127.259280][ T6687] hsr_slave_0: entered promiscuous mode [ 127.266653][ T6687] hsr_slave_1: entered promiscuous mode [ 127.272036][ T6687] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 127.274014][ T6687] Cannot create hsr debugfs directory [ 127.447908][ T6687] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 127.532225][ T6687] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 127.640663][ T6687] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 127.757537][ T6700] netlink: 44 bytes leftover after parsing attributes in process `syz.1.323'. [ 127.807294][ T6687] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 127.933151][ T6687] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 127.948491][ T6687] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 127.967010][ T6687] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 127.979109][ T6687] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 128.183203][ T6687] 8021q: adding VLAN 0 to HW filter on device bond0 [ 128.202058][ T6687] 8021q: adding VLAN 0 to HW filter on device team0 [ 128.220040][ T6619] bridge0: port 1(bridge_slave_0) entered blocking state [ 128.221918][ T6619] bridge0: port 1(bridge_slave_0) entered forwarding state [ 128.224399][ T6619] bridge0: port 2(bridge_slave_1) entered blocking state [ 128.226283][ T6619] bridge0: port 2(bridge_slave_1) entered forwarding state [ 128.556236][ T5353] Bluetooth: hci4: command tx timeout [ 128.625124][ T6706] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode [ 128.629608][ T6706] macsec0: entered allmulticast mode [ 128.631473][ T6706] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode [ 128.656126][ T6706] mac80211_hwsim hwsim2 wlan0: left allmulticast mode [ 128.659131][ T6706] mac80211_hwsim hwsim2 wlan0: left promiscuous mode [ 128.729421][ T6687] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 128.877458][ T6687] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 128.891015][ T6687] veth0_vlan: entered promiscuous mode [ 128.894926][ T6687] veth1_vlan: entered promiscuous mode [ 128.902826][ T6687] veth0_macvtap: entered promiscuous mode [ 128.906290][ T6687] veth1_macvtap: entered promiscuous mode [ 128.912286][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 128.915020][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 128.917586][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 128.920283][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 128.922809][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 128.925514][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 128.928102][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 128.930794][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 128.935901][ T6687] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 128.938796][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 128.941537][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 128.944082][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 128.946752][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 128.949271][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 128.951896][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 128.954420][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 128.957198][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 128.963384][ T6687] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 128.966526][ T6687] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.968834][ T6687] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.971111][ T6687] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.973362][ T6687] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 129.636781][ T4781] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 129.641587][ T4781] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 129.643979][ T4781] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 129.646934][ T4781] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 129.649960][ T4781] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 129.651984][ T4781] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 130.019757][ T6719] fuse: Bad value for 'fd' [ 130.626190][ T4781] Bluetooth: hci4: command tx timeout [ 131.826376][ T4781] Bluetooth: hci5: command tx timeout [ 132.147165][ T1376] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.148803][ T1376] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.707521][ T4781] Bluetooth: hci4: command tx timeout [ 133.906187][ T4781] Bluetooth: hci5: command tx timeout [ 134.786162][ T4781] Bluetooth: hci4: command tx timeout [ 135.746075][ C0] sched: DL replenish lagged too much [ 135.986276][ T4781] Bluetooth: hci5: command tx timeout [ 138.066397][ T4781] Bluetooth: hci5: command tx timeout [ 141.122163][ T5353] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 141.125838][ T5353] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 141.130429][ T5353] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 141.133786][ T5353] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 141.137342][ T5353] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 141.140795][ T5353] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 143.186372][ T4781] Bluetooth: hci0: command tx timeout [ 145.266137][ T4781] Bluetooth: hci0: command tx timeout [ 147.346274][ T4781] Bluetooth: hci0: command tx timeout [ 147.749620][ T5353] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 147.755661][ T5353] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 147.761371][ T5353] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 147.764307][ T5353] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 147.766562][ T5353] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 147.768540][ T5353] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 149.427814][ T5353] Bluetooth: hci0: command tx timeout [ 149.836197][ T5353] Bluetooth: hci1: command tx timeout [ 151.916109][ T5353] Bluetooth: hci1: command tx timeout [ 153.986223][ T5353] Bluetooth: hci1: command tx timeout [ 154.727477][ T1298] usb 6-1: USB disconnect, device number 11 [ 154.864748][ T6603] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 154.870548][ T6603] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 156.066220][ T5353] Bluetooth: hci1: command tx timeout [ 157.197966][ T8] usb 5-1: USB disconnect, device number 10 [ 157.298715][ T6734] netlink: 4 bytes leftover after parsing attributes in process `syz.1.332'. [ 157.472103][ T1100] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 157.474905][ T1100] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 157.477317][ T6619] bridge_slave_1: left allmulticast mode [ 157.479104][ T6619] bridge_slave_1: left promiscuous mode [ 157.481294][ T6619] bridge0: port 2(bridge_slave_1) entered disabled state [ 157.491839][ T6619] bridge_slave_0: left allmulticast mode [ 157.493348][ T6619] bridge_slave_0: left promiscuous mode [ 157.494875][ T6619] bridge0: port 1(bridge_slave_0) entered disabled state [ 158.045823][ T6619] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 158.060558][ T6619] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 158.067956][ T6619] bond0 (unregistering): Released all slaves [ 158.533080][ T6713] chnl_net:caif_netlink_parms(): no params data found [ 158.619791][ T6737] chnl_net:caif_netlink_parms(): no params data found [ 158.626933][ T6743] chnl_net:caif_netlink_parms(): no params data found [ 158.738640][ T6713] bridge0: port 1(bridge_slave_0) entered blocking state [ 158.741752][ T6713] bridge0: port 1(bridge_slave_0) entered disabled state [ 158.745975][ T6713] bridge_slave_0: entered allmulticast mode [ 158.749490][ T6713] bridge_slave_0: entered promiscuous mode [ 158.767770][ T6713] bridge0: port 2(bridge_slave_1) entered blocking state [ 158.769982][ T6713] bridge0: port 2(bridge_slave_1) entered disabled state [ 158.772087][ T6713] bridge_slave_1: entered allmulticast mode [ 158.774618][ T6713] bridge_slave_1: entered promiscuous mode [ 159.365297][ T6713] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 159.399894][ T6737] bridge0: port 1(bridge_slave_0) entered blocking state [ 159.401752][ T6737] bridge0: port 1(bridge_slave_0) entered disabled state [ 159.403608][ T6737] bridge_slave_0: entered allmulticast mode [ 159.408621][ T6737] bridge_slave_0: entered promiscuous mode [ 159.411709][ T6713] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 159.429391][ T6743] bridge0: port 1(bridge_slave_0) entered blocking state [ 159.431256][ T6743] bridge0: port 1(bridge_slave_0) entered disabled state [ 159.433017][ T6743] bridge_slave_0: entered allmulticast mode [ 159.435434][ T6743] bridge_slave_0: entered promiscuous mode [ 159.439852][ T6737] bridge0: port 2(bridge_slave_1) entered blocking state [ 159.441606][ T6737] bridge0: port 2(bridge_slave_1) entered disabled state [ 159.443376][ T6737] bridge_slave_1: entered allmulticast mode [ 159.447715][ T6737] bridge_slave_1: entered promiscuous mode [ 159.461726][ T6743] bridge0: port 2(bridge_slave_1) entered blocking state [ 159.463461][ T6743] bridge0: port 2(bridge_slave_1) entered disabled state [ 159.465246][ T6743] bridge_slave_1: entered allmulticast mode [ 159.469399][ T6743] bridge_slave_1: entered promiscuous mode [ 159.562378][ T6713] team0: Port device team_slave_0 added [ 159.565918][ T6743] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 159.572003][ T6743] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 159.576593][ T6737] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 159.579788][ T6713] team0: Port device team_slave_1 added [ 159.596004][ T6737] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 159.690788][ T6713] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 159.692601][ T6713] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 159.701314][ T6713] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 159.710168][ T6743] team0: Port device team_slave_0 added [ 159.735207][ T6713] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 159.738438][ T6713] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 159.744826][ T6713] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 159.754306][ T6743] team0: Port device team_slave_1 added [ 159.768404][ T6737] team0: Port device team_slave_0 added [ 159.772034][ T6737] team0: Port device team_slave_1 added [ 159.826828][ T4781] Bluetooth: hci2: command 0x0406 tx timeout [ 159.932542][ T6713] hsr_slave_0: entered promiscuous mode [ 159.944676][ T6713] hsr_slave_1: entered promiscuous mode [ 159.957881][ T6713] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 159.959872][ T6713] Cannot create hsr debugfs directory [ 159.961565][ T6743] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 159.963382][ T6743] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 159.973570][ T6743] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 159.978310][ T6743] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 159.980059][ T6743] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 159.990112][ T6743] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 160.037786][ T6737] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 160.039641][ T6737] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 160.047652][ T6737] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 160.067979][ T6737] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 160.069824][ T6737] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 160.077617][ T6737] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 160.528314][ T6743] hsr_slave_0: entered promiscuous mode [ 160.534333][ T6743] hsr_slave_1: entered promiscuous mode [ 160.538641][ T6743] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 160.541199][ T6743] Cannot create hsr debugfs directory [ 160.557465][ T6737] hsr_slave_0: entered promiscuous mode [ 160.577619][ T6737] hsr_slave_1: entered promiscuous mode [ 160.589740][ T6737] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 160.591690][ T6737] Cannot create hsr debugfs directory [ 163.472888][ T6776] netlink: 44 bytes leftover after parsing attributes in process `syz.3.335'. [ 163.844859][ T6713] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 163.988727][ T6713] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.805708][ T6782] syz.3.336: attempt to access beyond end of device [ 164.805708][ T6782] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0 [ 164.809128][ T6782] syz.3.336: attempt to access beyond end of device [ 164.809128][ T6782] nbd3: rw=0, sector=512, nr_sectors = 2 limit=0 [ 164.812360][ T6782] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 164.828234][ T6782] syz.3.336: attempt to access beyond end of device [ 164.828234][ T6782] nbd3: rw=0, sector=1024, nr_sectors = 2 limit=0 [ 164.831581][ T6782] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 164.834209][ T6782] syz.3.336: attempt to access beyond end of device [ 164.834209][ T6782] nbd3: rw=0, sector=64, nr_sectors = 4 limit=0 [ 164.839115][ T6782] syz.3.336: attempt to access beyond end of device [ 164.839115][ T6782] nbd3: rw=0, sector=1024, nr_sectors = 4 limit=0 [ 164.842410][ T6782] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 164.857061][ T6782] syz.3.336: attempt to access beyond end of device [ 164.857061][ T6782] nbd3: rw=0, sector=2048, nr_sectors = 4 limit=0 [ 164.860410][ T6782] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 164.866467][ T6782] syz.3.336: attempt to access beyond end of device [ 164.866467][ T6782] nbd3: rw=0, sector=64, nr_sectors = 8 limit=0 [ 164.877030][ T6781] nbd3: detected capacity change from 0 to 12 [ 164.878933][ T6782] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 164.886811][ T6782] block nbd3: Send control failed (result -89) [ 164.888511][ T6782] block nbd3: Request send failed, requeueing [ 164.890275][ T5353] block nbd3: Receive control failed (result -32) [ 164.893187][ T26] block nbd3: Dead connection, failed to find a fallback [ 164.895076][ T26] block nbd3: shutting down sockets [ 164.896497][ T26] blk_print_req_error: 25 callbacks suppressed [ 164.896504][ T26] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 164.901274][ T6782] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=0, location=0 [ 164.907040][ T6782] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 164.909515][ T6782] UDF-fs: warning (device nbd3): udf_fill_super: No partition found (1) [ 165.030664][ T6747] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 165.032944][ T6747] buffer_io_error: 25 callbacks suppressed [ 165.032951][ T6747] Buffer I/O error on dev nbd3, logical block 0, async page read [ 165.040943][ T6747] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 165.045445][ T6747] Buffer I/O error on dev nbd3, logical block 0, async page read [ 165.050997][ T6747] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 165.055532][ T6747] Buffer I/O error on dev nbd3, logical block 0, async page read [ 165.059766][ T6747] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 165.064259][ T6747] Buffer I/O error on dev nbd3, logical block 0, async page read [ 165.069196][ T6747] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 165.074766][ T6747] Buffer I/O error on dev nbd3, logical block 0, async page read [ 165.080595][ T6747] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 165.085126][ T6747] Buffer I/O error on dev nbd3, logical block 0, async page read [ 165.089465][ T6747] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 165.095091][ T6747] Buffer I/O error on dev nbd3, logical block 0, async page read [ 165.099370][ T6747] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 165.105055][ T6747] Buffer I/O error on dev nbd3, logical block 0, async page read [ 165.109474][ T6747] ldm_validate_partition_table(): Disk read failed. [ 165.113469][ T6747] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 165.118039][ T6747] Buffer I/O error on dev nbd3, logical block 0, async page read [ 165.122374][ T6747] Buffer I/O error on dev nbd3, logical block 0, async page read [ 165.128425][ T6747] Dev nbd3: unable to read RDB block 0 [ 165.131173][ T6747] nbd3: unable to read partition table [ 165.134916][ T6747] nbd3: partition table beyond EOD, truncated [ 165.142261][ T6747] ldm_validate_partition_table(): Disk read failed. [ 165.144161][ T6747] Dev nbd3: unable to read RDB block 0 [ 165.145693][ T6747] nbd3: unable to read partition table [ 165.156141][ T6747] nbd3: partition table beyond EOD, truncated [ 165.808454][ T30] usb 8-1: new high-speed USB device number 14 using dummy_hcd [ 165.979475][ T30] usb 8-1: Using ep0 maxpacket: 16 [ 165.984488][ T30] usb 8-1: config 1 descriptor has 1 excess byte, ignoring [ 165.987839][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 165.990617][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 165.993112][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 165.996008][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 166.002943][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 166.005443][ T30] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 166.008414][ T30] usb 8-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 166.012542][ T30] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 166.014885][ T30] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 166.020814][ T30] usb 8-1: SerialNumber: syz [ 166.027396][ T30] cdc_acm 8-1:1.0: Control and data interfaces are not separated! [ 168.319323][ T30] usb 8-1: USB disconnect, device number 14 [ 168.461041][ T5353] Bluetooth: hci4: SCO packet for unknown connection handle 0 [ 168.461869][ T5353] Bluetooth: hci4: SCO packet for unknown connection handle 1039 [ 175.775383][ T6713] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.246239][ T30] usb 8-1: new high-speed USB device number 15 using dummy_hcd [ 177.406156][ T30] usb 8-1: Using ep0 maxpacket: 16 [ 177.413034][ T30] usb 8-1: config 1 descriptor has 1 excess byte, ignoring [ 177.415380][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 177.424499][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 177.429501][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 177.433179][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 177.439610][ T30] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 177.442139][ T30] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 177.444567][ T30] usb 8-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 177.449590][ T30] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 177.452019][ T30] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 177.454073][ T30] usb 8-1: SerialNumber: syz [ 177.460257][ T30] cdc_acm 8-1:1.0: Control and data interfaces are not separated! [ 179.408341][ T6713] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 181.287280][ T5380] usb 8-1: USB disconnect, device number 15 [ 183.471917][ T6743] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 183.505778][ T6801] netlink: 36 bytes leftover after parsing attributes in process `syz.3.341'. [ 183.511805][ T6802] netlink: 4 bytes leftover after parsing attributes in process `syz.3.341'. [ 185.321871][ T6619] hsr_slave_0: left promiscuous mode [ 185.344012][ T6619] hsr_slave_1: left promiscuous mode [ 185.359051][ T6619] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 185.361041][ T6619] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 185.372800][ T6619] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 185.375394][ T6619] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 186.070055][ T6619] team0 (unregistering): Port device team_slave_1 removed [ 186.190112][ T6619] team0 (unregistering): Port device team_slave_0 removed [ 189.946552][ T4781] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 189.949776][ T4781] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 189.952107][ T4781] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 189.954475][ T4781] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 189.959337][ T4781] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 189.961498][ T4781] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 190.622967][ T6743] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 190.740924][ T6743] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 191.836206][ T979] usb 8-1: new high-speed USB device number 16 using dummy_hcd [ 191.986159][ T979] usb 8-1: Using ep0 maxpacket: 16 [ 191.993375][ T979] usb 8-1: config 1 descriptor has 1 excess byte, ignoring [ 191.995262][ T979] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 191.996215][ T5353] Bluetooth: hci2: command tx timeout [ 192.003391][ T979] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 192.005880][ T979] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 255, changing to 7 [ 192.009958][ T979] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 59391, setting to 1024 [ 192.013889][ T979] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 192.023654][ T979] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 192.027899][ T979] usb 8-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 192.032554][ T979] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 192.034837][ T979] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 192.038025][ T979] usb 8-1: SerialNumber: syz [ 192.045063][ T979] cdc_acm 8-1:1.0: Control and data interfaces are not separated! [ 193.588307][ T1376] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.589892][ T1376] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.076127][ T5353] Bluetooth: hci2: command tx timeout [ 195.900944][ T5404] usb 8-1: USB disconnect, device number 16 [ 196.146333][ T5353] Bluetooth: hci2: command tx timeout [ 198.226259][ T5353] Bluetooth: hci2: command tx timeout [ 201.470082][ T4781] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 201.473800][ T4781] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 201.476038][ T4781] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 201.479852][ T4781] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 201.481923][ T4781] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 201.483901][ T4781] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 203.506486][ T5353] Bluetooth: hci3: command tx timeout [ 203.773107][ T6743] netdevsim netdevsim1  (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 204.019102][ T6826] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 204.021427][ T6826] IPv6: NLM_F_CREATE should be set when creating new route [ 204.288567][ T6836] syz.3.346: attempt to access beyond end of device [ 204.288567][ T6836] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0 [ 204.292541][ T6836] syz.3.346: attempt to access beyond end of device [ 204.292541][ T6836] nbd3: rw=0, sector=512, nr_sectors = 2 limit=0 [ 204.295805][ T6836] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 204.316105][ T6833] nbd3: detected capacity change from 0 to 12 [ 204.319650][ T6836] block nbd3: Send control failed (result -89) [ 204.321173][ T6836] block nbd3: Request send failed, requeueing [ 204.322883][ T5353] block nbd3: Receive control failed (result -32) [ 204.322891][ T26] block nbd3: Dead connection, failed to find a fallback [ 204.322902][ T26] block nbd3: shutting down sockets [ 204.327908][ T26] blk_print_req_error: 26 callbacks suppressed [ 204.327916][ T26] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 204.331909][ T6831] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 204.334183][ T6831] buffer_io_error: 25 callbacks suppressed [ 204.334193][ T6831] Buffer I/O error on dev nbd3, logical block 0, async page read [ 204.339049][ T6836] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=0, location=0 [ 204.341737][ T6831] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 204.344120][ T6831] Buffer I/O error on dev nbd3, logical block 1, async page read [ 204.356737][ T6831] I/O error, dev nbd3, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 204.359893][ T6831] Buffer I/O error on dev nbd3, logical block 2, async page read [ 204.361949][ T6831] I/O error, dev nbd3, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 204.364893][ T6831] Buffer I/O error on dev nbd3, logical block 3, async page read [ 204.372020][ T6836] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 204.374395][ T6836] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=1, location=1 [ 204.384606][ T6836] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 204.396836][ T6831] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 204.399163][ T6831] Buffer I/O error on dev nbd3, logical block 0, async page read [ 204.401679][ T6831] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 204.403988][ T6831] Buffer I/O error on dev nbd3, logical block 1, async page read [ 204.406009][ T6831] I/O error, dev nbd3, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 204.434934][ T6831] Buffer I/O error on dev nbd3, logical block 2, async page read [ 204.440750][ T6831] I/O error, dev nbd3, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 204.443504][ T6831] Buffer I/O error on dev nbd3, logical block 3, async page read [ 204.464144][ T6743] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 204.472625][ T6836] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 204.475270][ T6836] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=2, location=2 [ 204.478516][ T6831] Buffer I/O error on dev nbd3, logical block 0, async page read [ 204.481774][ T6831] Buffer I/O error on dev nbd3, logical block 1, async page read [ 204.484125][ T6831] ldm_validate_partition_table(): Disk read failed. [ 204.486156][ T6836] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=1, location=1 [ 204.488608][ T6836] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=0, location=0 [ 204.491968][ T6836] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 204.494731][ T6836] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256 [ 204.501491][ T6831] Dev nbd3: unable to read RDB block 0 [ 204.503014][ T6831] nbd3: unable to read partition table [ 204.504683][ T6831] nbd3: partition table beyond EOD, truncated [ 204.508221][ T6831] ldm_validate_partition_table(): Disk read failed. [ 204.510112][ T6831] Dev nbd3: unable to read RDB block 0 [ 204.511632][ T6831] nbd3: unable to read partition table [ 204.513155][ T6831] nbd3: partition table beyond EOD, truncated [ 204.520511][ T6743] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 204.522825][ T6836] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=0, location=0 [ 204.525252][ T6836] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512 [ 204.531757][ T6836] UDF-fs: warning (device nbd3): udf_fill_super: No partition found (1) [ 204.552988][ T6737] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 204.575228][ T6743] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 204.589120][ T6807] chnl_net:caif_netlink_parms(): no params data found [ 204.592232][ T6743] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 205.301712][ T6737] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 205.492211][ T6737] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 205.524535][ T6828] chnl_net:caif_netlink_parms(): no params data found [ 205.571878][ T6807] bridge0: port 1(bridge_slave_0) entered blocking state [ 205.573854][ T6807] bridge0: port 1(bridge_slave_0) entered disabled state [ 205.576566][ T6807] bridge_slave_0: entered allmulticast mode [ 205.578678][ T6807] bridge_slave_0: entered promiscuous mode [ 205.586243][ T5353] Bluetooth: hci3: command tx timeout [ 205.731835][ T6807] bridge0: port 2(bridge_slave_1) entered blocking state [ 205.734369][ T6807] bridge0: port 2(bridge_slave_1) entered disabled state [ 205.741729][ T6807] bridge_slave_1: entered allmulticast mode [ 205.744000][ T6807] bridge_slave_1: entered promiscuous mode [ 206.207127][ T6737] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 206.255487][ T6743] 8021q: adding VLAN 0 to HW filter on device bond0 [ 206.312660][ T6807] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 206.340703][ T6848] netlink: 'syz.3.347': attribute type 39 has an invalid length. [ 207.271618][ T6807] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 207.281652][ T6828] bridge0: port 1(bridge_slave_0) entered blocking state [ 207.283991][ T6828] bridge0: port 1(bridge_slave_0) entered disabled state [ 207.291982][ T6828] bridge_slave_0: entered allmulticast mode [ 207.294775][ T6828] bridge_slave_0: entered promiscuous mode [ 207.364846][ T6848] ------------[ cut here ]------------ [ 207.367301][ T6848] WARNING: CPU: 1 PID: 6848 at kernel/kthread.c:525 __kthread_bind_mask+0x35/0xc0 [ 207.370182][ T6848] Modules linked in: [ 207.371387][ T6848] CPU: 1 UID: 0 PID: 6848 Comm: syz.3.347 Not tainted 6.12.0-rc2-syzkaller-00058-g75b607fab38d #0 [ 207.375293][ T6848] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 207.378103][ T6848] RIP: 0010:__kthread_bind_mask+0x35/0xc0 [ 207.379632][ T6848] Code: 48 89 fb e8 6d 29 34 00 89 ee 48 89 df e8 33 42 04 00 31 ff 48 89 c5 48 89 c6 e8 c6 2b 34 00 48 85 ed 75 14 e8 4c 29 34 00 90 <0f> 0b 90 5b 5d 41 5c 41 5d e9 3d 29 34 00 e8 38 29 34 00 4c 8d ab [ 207.384643][ T6848] RSP: 0018:ffffc90003237450 EFLAGS: 00010246 [ 207.386339][ T6848] RAX: 0000000000040000 RBX: ffff8880252cc880 RCX: ffffc90028118000 [ 207.388414][ T6848] RDX: 0000000000040000 RSI: ffffffff81588f74 RDI: 0000000000000007 [ 207.390506][ T6848] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000 [ 207.392582][ T6848] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff8b4b48c8 [ 207.394673][ T6848] R13: 0000000000000001 R14: ffff88804a3c0cc0 R15: ffff8880460b14e0 [ 207.396806][ T6848] FS: 0000000000000000(0000) GS:ffff88802b500000(0063) knlGS:00000000f5746b40 [ 207.399156][ T6848] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 207.400900][ T6848] CR2: 00000000f72818e0 CR3: 0000000059456000 CR4: 0000000000352ef0 [ 207.403004][ T6848] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 207.405082][ T6848] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 207.407217][ T6848] Call Trace: [ 207.408104][ T6848] [ 207.408892][ T6848] ? __warn+0xea/0x3d0 [ 207.409951][ T6848] ? __kthread_bind_mask+0x35/0xc0 [ 207.411309][ T6848] ? report_bug+0x3c0/0x580 [ 207.412513][ T6848] ? handle_bug+0x54/0xa0 [ 207.413652][ T6848] ? exc_invalid_op+0x17/0x50 [ 207.414904][ T6848] ? asm_exc_invalid_op+0x1a/0x20 [ 207.416319][ T6848] ? __kthread_bind_mask+0x34/0xc0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 207.417834][ T6848] ? __kthread_bind_mask+0x35/0xc0 [ 207.419255][ T6848] kthread_unpark+0x147/0x1a0 [ 207.420506][ T6848] kthread_stop+0x177/0x660 [ 207.421704][ T6848] destroy_workqueue+0x154/0xaa0 [ 207.423098][ T6848] wg_destruct+0x24d/0x3d0 [ 207.424278][ T6848] ? __pfx_wg_destruct+0x10/0x10 [ 207.425588][ T6848] netdev_run_todo+0x760/0x12d0 [ 207.427064][ T6848] ? __pfx_netdev_run_todo+0x10/0x10 [ 207.428461][ T6848] ? __pfx___mutex_lock+0x10/0x10 [ 207.429786][ T6848] ? rtnetlink_rcv_msg+0x35a/0xea0 [ 207.431365][ T6848] ? __pfx_rtnl_dellink+0x10/0x10 [ 207.432686][ T6848] rtnetlink_rcv_msg+0x3d7/0xea0 [ 207.434059][ T6848] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 207.435563][ T6848] ? __pfx___dev_queue_xmit+0x10/0x10 [ 207.437018][ T6848] netlink_rcv_skb+0x165/0x410 [ 207.438294][ T6848] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 207.439731][ T6848] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 207.441118][ T6848] ? netlink_deliver_tap+0x1ae/0xcf0 [ 207.442512][ T6848] netlink_unicast+0x53c/0x7f0 [ 207.443774][ T6848] ? __pfx_netlink_unicast+0x10/0x10 [ 207.445167][ T6848] ? __phys_addr_symbol+0x30/0x80 [ 207.446566][ T6848] ? __check_object_size+0x488/0x710 [ 207.447969][ T6848] netlink_sendmsg+0x8b8/0xd70 [ 207.449240][ T6848] ? __pfx_netlink_sendmsg+0x10/0x10 [ 207.450645][ T6848] ? lock_acquire+0x2f/0xb0 [ 207.451845][ T6848] ____sys_sendmsg+0x9ae/0xb40 [ 207.453103][ T6848] ? __pfx_____sys_sendmsg+0x10/0x10 [ 207.454492][ T6848] ? get_compat_msghdr+0x11b/0x170 [ 207.455842][ T6848] ? __pfx___lock_acquire+0x10/0x10 [ 207.457285][ T6848] ___sys_sendmsg+0x135/0x1e0 [ 207.458537][ T6848] ? __pfx____sys_sendmsg+0x10/0x10 [ 207.459908][ T6848] ? lock_acquire+0x2f/0xb0 [ 207.461108][ T6848] ? __fget_files+0x40/0x3f0 [ 207.462460][ T6848] ? fdget+0x176/0x210 [ 207.463841][ T6848] __sys_sendmsg+0x117/0x1f0 [ 207.465411][ T6848] ? __pfx___sys_sendmsg+0x10/0x10 [ 207.467243][ T6848] ? __ia32_sys_futex_time32+0x1da/0x460 [ 207.469104][ T6848] __do_fast_syscall_32+0x73/0x120 [ 207.470874][ T6848] do_fast_syscall_32+0x32/0x80 [ 207.472538][ T6848] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 207.474694][ T6848] RIP: 0023:0xf7fc1579 [ 207.476157][ T6848] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 207.482645][ T6848] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 207.485466][ T6848] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000 [ 207.488212][ T6848] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 207.490881][ T6848] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 207.493562][ T6848] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 207.496284][ T6848] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 207.498958][ T6848] [ 207.500017][ T6848] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 207.502474][ T6848] CPU: 1 UID: 0 PID: 6848 Comm: syz.3.347 Not tainted 6.12.0-rc2-syzkaller-00058-g75b607fab38d #0 [ 207.505907][ T6848] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 207.508690][ T6848] Call Trace: [ 207.509569][ T6848] [ 207.510364][ T6848] dump_stack_lvl+0x3d/0x1f0 [ 207.511662][ T6848] panic+0x71d/0x800 [ 207.512704][ T6848] ? __pfx_panic+0x10/0x10 [ 207.513884][ T6848] ? show_trace_log_lvl+0x29d/0x3d0 [ 207.515272][ T6848] ? __kthread_bind_mask+0x35/0xc0 [ 207.516618][ T6848] check_panic_on_warn+0xab/0xb0 [ 207.517926][ T6848] __warn+0xf6/0x3d0 [ 207.518981][ T6848] ? __kthread_bind_mask+0x35/0xc0 [ 207.520331][ T6848] report_bug+0x3c0/0x580 [ 207.521476][ T6848] handle_bug+0x54/0xa0 [ 207.522591][ T6848] exc_invalid_op+0x17/0x50 [ 207.523791][ T6848] asm_exc_invalid_op+0x1a/0x20 [ 207.525059][ T6848] RIP: 0010:__kthread_bind_mask+0x35/0xc0 [ 207.526541][ T6848] Code: 48 89 fb e8 6d 29 34 00 89 ee 48 89 df e8 33 42 04 00 31 ff 48 89 c5 48 89 c6 e8 c6 2b 34 00 48 85 ed 75 14 e8 4c 29 34 00 90 <0f> 0b 90 5b 5d 41 5c 41 5d e9 3d 29 34 00 e8 38 29 34 00 4c 8d ab [ 207.532566][ T6848] RSP: 0018:ffffc90003237450 EFLAGS: 00010246 [ 207.534618][ T6848] RAX: 0000000000040000 RBX: ffff8880252cc880 RCX: ffffc90028118000 [ 207.537387][ T6848] RDX: 0000000000040000 RSI: ffffffff81588f74 RDI: 0000000000000007 [ 207.540085][ T6848] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000 [ 207.542765][ T6848] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff8b4b48c8 [ 207.545434][ T6848] R13: 0000000000000001 R14: ffff88804a3c0cc0 R15: ffff8880460b14e0 [ 207.548118][ T6848] ? __kthread_bind_mask+0x34/0xc0 [ 207.549858][ T6848] kthread_unpark+0x147/0x1a0 [ 207.551467][ T6848] kthread_stop+0x177/0x660 [ 207.553011][ T6848] destroy_workqueue+0x154/0xaa0 [ 207.554846][ T6848] wg_destruct+0x24d/0x3d0 [ 207.556368][ T6848] ? __pfx_wg_destruct+0x10/0x10 [ 207.558055][ T6848] netdev_run_todo+0x760/0x12d0 [ 207.559732][ T6848] ? __pfx_netdev_run_todo+0x10/0x10 [ 207.561535][ T6848] ? __pfx___mutex_lock+0x10/0x10 [ 207.563282][ T6848] ? rtnetlink_rcv_msg+0x35a/0xea0 [ 207.565027][ T6848] ? __pfx_rtnl_dellink+0x10/0x10 [ 207.566757][ T6848] rtnetlink_rcv_msg+0x3d7/0xea0 [ 207.568440][ T6848] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 207.570304][ T6848] ? __pfx___dev_queue_xmit+0x10/0x10 [ 207.572128][ T6848] netlink_rcv_skb+0x165/0x410 [ 207.573754][ T6848] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 207.575605][ T6848] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 207.577412][ T6848] ? netlink_deliver_tap+0x1ae/0xcf0 [ 207.579100][ T6848] netlink_unicast+0x53c/0x7f0 [ 207.580371][ T6848] ? __pfx_netlink_unicast+0x10/0x10 [ 207.581750][ T6848] ? __phys_addr_symbol+0x30/0x80 [ 207.583082][ T6848] ? __check_object_size+0x488/0x710 [ 207.584467][ T6848] netlink_sendmsg+0x8b8/0xd70 [ 207.585726][ T6848] ? __pfx_netlink_sendmsg+0x10/0x10 [ 207.587131][ T6848] ? lock_acquire+0x2f/0xb0 [ 207.588332][ T6848] ____sys_sendmsg+0x9ae/0xb40 [ 207.589585][ T6848] ? __pfx_____sys_sendmsg+0x10/0x10 [ 207.590964][ T6848] ? get_compat_msghdr+0x11b/0x170 [ 207.592302][ T6848] ? __pfx___lock_acquire+0x10/0x10 [ 207.593658][ T6848] ___sys_sendmsg+0x135/0x1e0 [ 207.594901][ T6848] ? __pfx____sys_sendmsg+0x10/0x10 [ 207.596267][ T6848] ? lock_acquire+0x2f/0xb0 [ 207.597462][ T6848] ? __fget_files+0x40/0x3f0 [ 207.598692][ T6848] ? fdget+0x176/0x210 [ 207.599759][ T6848] __sys_sendmsg+0x117/0x1f0 [ 207.600977][ T6848] ? __pfx___sys_sendmsg+0x10/0x10 [ 207.602335][ T6848] ? __ia32_sys_futex_time32+0x1da/0x460 [ 207.603820][ T6848] __do_fast_syscall_32+0x73/0x120 [ 207.605271][ T6848] do_fast_syscall_32+0x32/0x80 [ 207.606580][ T6848] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 207.608231][ T6848] RIP: 0023:0xf7fc1579 [ 207.609304][ T6848] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 207.614273][ T6848] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 207.616440][ T6848] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000 [ 207.618506][ T6848] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 207.620554][ T6848] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 207.622611][ T6848] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 207.624661][ T6848] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 207.626731][ T6848] [ 207.627954][ T6848] Kernel Offset: disabled [ 207.629161][ T6848] Rebooting in 86400 seconds.. VM DIAGNOSIS: 19:09:39 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000000 RBX=ffff88806e534140 RCX=ffffffff88ec76c7 RDX=ffff88801b760000 RSI=ffffffff88ec773e RDI=0000000000000001 RBP=0000000000000014 RSP=ffffc90000426bb8 R8 =0000000000000001 R9 =0000000000000088 R10=0000000000000006 R11=0000000000000000 R12=0000000000000006 R13=1ffff92000084d79 R14=ffff88804f0a2a00 R15=dffffc0000000000 RIP=ffffffff818cb8cc RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b400000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f72a9510 CR3=000000000db7c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 47b3f685deba0c6d 82c49448d11bee23 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7b6aca33b96e43a3 f5307bc64be1e801 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 49e6832d864743fa 12f84063f7a253c5 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 aa86ae79fc0a3dac 203654351545d1e7 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 0000000000000060 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000020 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 15bea967dae921b4 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4ff109aa00000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a3a613a7512ee94e 51cdd9b2168965ae ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000517a1208 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 458cce7aec65fb07 b418c8044bfb8f20 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 706cbcbb89f1b735 9e16453ff9afcbf3 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff850374c5 RDI=ffffffff9a63a220 RBP=ffffffff9a63a1e0 RSP=ffffc90003236db8 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=000000000000002e R14=ffffffff85037460 R15=0000000000000000 RIP=ffffffff850374ef RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f72818e0 CR3=0000000059456000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffff00 00000000ffffff00 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000001 RBX=ffffed1003f0ca6b RCX=ffffffff8169f9ab RDX=fffffbfff2d3158b RSI=0000000000000008 RDI=ffffffff9698ac50 RBP=00000000000000a5 RSP=ffffc9000132f4a8 R8 =0000000000000000 R9 =fffffbfff2d3158a R10=ffffffff9698ac57 R11=0000000000000002 R12=dffffc0000000000 R13=0000000000000000 R14=0000000000000004 R15=ffff88801f864880 RIP=ffffffff8169f8c2 RFL=00000047 [---Z-PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f73f5004 CR3=000000004d426000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000020210058 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffff0f0e0d0c ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=ffffffff90ba8d6c RBX=ffffffff9035eeec RCX=dffffc0000000000 RDX=1ffffffff206bddd RSI=0000000000000000 RDI=ffffffff9035eee4 RBP=ffffffff9035eee4 RSP=ffffc900005c6f38 R8 =ffffffff90ba8dc0 R9 =ffffffff90ba960a R10=ffffc900005c6fe8 R11=000000000000edd2 R12=ffffffff9035eef8 R13=ffffffff81edd270 R14=ffffffff9035eee4 R15=ffffffff9035eee4 RIP=ffffffff813cf340 RFL=00000a07 [-O---PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f743f118 CR3=000000000db7c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7ec01b36f5fc1f2a 395ec49199d47435 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 12564688e94c9ff6 2ad35ecd1583ca2f ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 24b79d782dd9a50c 900c4ccf88fcd05a ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6114df78bb53433e dce37bc9ee519308 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 0000000000000060 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000020 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a6dfce8040affef 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7896d11900000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 92aeef6c42e994ac 26987b635280d703 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000059e736ef ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c1ceaba344385461 6a7803edf0dda3ae ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e883ea05dbaa145d 5eee64396e079349 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000