last executing test programs: 3.986210204s ago: executing program 0 (id=2404): r0 = openat$fb1(0xffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000380)) 3.985831838s ago: executing program 0 (id=2405): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@bloom_filter={0x1e, 0x1, 0x2, 0x2, 0x1901, 0x1, 0x1adf, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x3, 0x2, 0x3}, 0x48) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0) socket$nl_audit(0x10, 0x3, 0x9) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'\x00', 0x52d35ce30131f272}) ioctl$TUNSETLINK(r1, 0x400454cd, 0x324) r2 = socket$nl_route(0x10, 0x3, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'lo\x00'}) sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, 0x0}, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) r3 = userfaultfd(0x1) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000040)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_WRITEPROTECT(r3, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000800000/0x800000)=nil, 0x802000}, 0x2}) ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000400)={&(0x7f0000b36000/0x12000)=nil, &(0x7f0000841000/0x4000)=nil, 0x12000}) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$UFFDIO_CONTINUE(r4, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f0000800000/0x800000)=nil, 0x800000}, 0x1}) syz_io_uring_setup(0x6866, &(0x7f00000003c0)={0x0, 0x0, 0x2000}, &(0x7f0000000080), &(0x7f0000000140)) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) syz_open_procfs$userns(0x0, &(0x7f00000002c0)) userfaultfd(0x80001) 3.354107925s ago: executing program 3 (id=2415): r0 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000240)={'vcan0\x00', 0x0}) connect$can_bcm(r0, &(0x7f0000000280)={0x1d, r1}, 0x10) sendmsg$can_bcm(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)=ANY=[@ANYBLOB="04000000800800000100001d00000000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYBLOB="000000000100000000000000fc"], 0x80}}, 0x0) 3.194300096s ago: executing program 3 (id=2417): r0 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$netlink(r0, 0x10e, 0x5, 0x0, &(0x7f0000001dc0)) 3.109500398s ago: executing program 3 (id=2418): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) lremovexattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB='c']) 3.038234549s ago: executing program 3 (id=2419): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) socket(0x0, 0x2, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, 0x0, 0x4404c080) socket$nl_route(0x10, 0x3, 0x0) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r4, &(0x7f0000000080)={0x10, 0x0, 0x0, 0xfffffffffffffffd}, 0xc) socket$inet6(0xa, 0x3, 0x1) r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000000)) connect$bt_sco(r5, &(0x7f0000000040), 0x8) shutdown(r5, 0x1) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000140), 0x4) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0) r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) shutdown(r5, 0x1) connect$bt_sco(r6, &(0x7f0000003300)={0x1f, @none}, 0x8) unshare(0x24010780) bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8) socket$inet6_sctp(0xa, 0x1, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_MON_GET(r1, &(0x7f0000000500)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000005c0)={0x0, 0x88}, 0x1, 0x0, 0x0, 0x1}, 0x0) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000940), &(0x7f0000000980)=0x30) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x19, 0x4, 0x4, 0x1, 0x0, 0x1}, 0x48) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000001600)={r7, &(0x7f0000000100)}, 0x20) sendmsg$NL80211_CMD_UPDATE_CONNECT_PARAMS(r0, &(0x7f00000097c0)={&(0x7f0000008b00), 0xc, &(0x7f0000009780)={&(0x7f0000001300)=ANY=[@ANYBLOB="628700c5fb4161fb4f98e023a943e69a6e7b589d79ef8959fb6c3902834e4534b6437b81b3c15d2fd065b4934f7521350f101e661879090373ee8cad16299dc7790814836f3168caea7c048e2b5166c2cfee7c855d3172cf1814f3a0bab000d21b1ce806fbfa9cc2a405fa299454ea7ae9a573623c989b6dee377d2cfff2db02e174a311ef3e5d73386b6d6d07aa40f4a0580802134799fce116d01ede321bb1d84c89dce9bce7296519b906aa79b0939dfd64946355773757ab3fd293a1e1cd631df792", @ANYRES16=r7, @ANYBLOB="00c62bbd7000a269cafddbdf257a000000080003002bb8afbd0de91a9ab6a905b0c58af56f9ab437a65c7fff0ffb4323dd2128e7037e470b76a910882fe0378618bb5933cb74dc47dd5b674c93700fc7d5ced25a23e007b7ef2c6322ce58248280d3223327f61222d0f7e96c0bf3bf3f9062f67373fffd5e4b9b1edd314ea1c5246f8f173f2827c12799a8ba71f4bcb824638c34a313e67d13de381ffe0f6d36122e6c9e1c796647d83f0a99b9558b59db6f202f843371058244b0f423bc8fc61fb8eeef75", @ANYRES32=r2, @ANYBLOB="0cf5528b08630df6940099003b923f0031000000"], 0x28}, 0x1, 0x0, 0x0, 0x40884}, 0x90) 2.67122169s ago: executing program 2 (id=2422): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendmmsg$inet6(r0, &(0x7f0000003c40)=[{{&(0x7f0000000180)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000200)="03", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f00000005c0)="a4", 0x1}], 0x1}}], 0x2, 0x0) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000100), 0x4) 2.656405048s ago: executing program 2 (id=2423): r0 = openat$fb1(0xffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000380)) 2.573415579s ago: executing program 2 (id=2424): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="12010100000000105801000100000000000109022400010000002009040000010300000009210000000122dc0109058903"], 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000fdffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x4, 0x41, 0x0, 0x1, 0x1, 0x80000000, '\x00', 0x0, 0xffffffffffffffff, 0x4002, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f00000006c0), 0xffffffffffffffff) sendmsg$TIPC_NL_MEDIA_SET(r1, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000000)={0x244, r2, 0x1, 0x0, 0x0, {0x9}, [@TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_TYPE={0x8}]}, @TIPC_NLA_LINK={0x114, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0xfc, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_PRIO={0x8}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_MTU={0x8}]}, @TIPC_NLA_LINK_PROP={0x54}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_LINK={0x4}, @TIPC_NLA_MON={0x24, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_REF={0x8}]}, @TIPC_NLA_NODE={0x98, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0xfffffffffffffe0c}, @TIPC_NLA_NODE_KEY={0x3d, 0x4, {'gcm(aes)\x00', 0x15, "5e015a5a1652e4bca65fb72b950488d59fdd5f04da"}}, @TIPC_NLA_NODE_ID={0x44, 0x3, "d87459a29e99a8d4060acaffef1864f7351afd42919581ea788d9bcc93dbc7ff2ab89f0045ae20639d5e6e61896864c470ce8d527a5942350d0f70031ec3ec65"}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_NET={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1, @TIPC_NLA_NET_ADDR={0x8}, @TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_NODEID_W1={0xc}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_REF={0x8}]}]}, 0x244}}, 0x0) r3 = socket(0x10, 0x3, 0x0) syz_usb_control_io(r0, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) lstat(&(0x7f0000000580)='./file0\x00', &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$overlay(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540), 0x1108000, &(0x7f00000007c0)={[{@redirect_dir={'redirect_dir', 0x3d, './file0'}}, {@metacopy_on}, {@upperdir={'upperdir', 0x3d, './file0'}}], [{@seclabel}, {@uid_eq={'uid', 0x3d, r4}}, {@euid_lt={'euid<', 0xffffffffffffffff}}, {@uid_gt={'uid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'root'}}]}) bind$packet(0xffffffffffffffff, &(0x7f0000000600)={0x11, 0xf8, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f0000000300)={'syztnl0\x00', &(0x7f0000000280)={'gretap0\x00', 0x0, 0x10, 0x40, 0x2, 0x9, {{0x11, 0x4, 0x1, 0x6, 0x44, 0x65, 0x0, 0x6, 0x2f, 0x0, @loopback, @empty, {[@ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4}, @rr={0x7, 0x27, 0xe, [@empty, @private=0xa010101, @multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010101, @multicast1, @multicast1, @local, @remote]}]}}}}}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000001500)='kmem_cache_free\x00'}, 0x10) r5 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) timer_create(0xb, &(0x7f0000000200)={0x0, 0x0, 0x1, @thr={0x0, 0x0}}, &(0x7f0000000380)) timer_gettime(0x0, &(0x7f0000000040)) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=@newsa={0x150, 0x10, 0x713, 0x0, 0x0, {{@in=@loopback, @in6=@rand_addr=' \x01\x00', 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee00}, {@in=@loopback, 0x0, 0x32}, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, {}, {}, {}, 0x0, 0x0, 0xa, 0x4}, [@algo_aead={0x60, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0xa0, 0x60, "25cac5216d1c8af0a976902918bf448c5d9f5459"}}]}, 0x150}}, 0x0) sendmsg$inet(r6, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000140)="be38", 0xffe7}], 0x1, &(0x7f0000000080)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @dev}}}, @ip_retopts={{0x14, 0x0, 0x7, {[@rr={0x7, 0x3, 0x8b}, @noop]}}}], 0x38}, 0x0) syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12011003000012002505a8a4f0"], 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0) 2.404054751s ago: executing program 0 (id=2425): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newtaction={0x74, 0x30, 0x1, 0x0, 0x0, {}, [{0x60, 0x1, [@m_mpls={0x5c, 0x1, 0x0, 0x0, {{0x9}, {0x30, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{}, 0x1}}, @TCA_MPLS_PROTO={0x6, 0x4, 0x8848}, @TCA_MPLS_BOS={0x5}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x74}}, 0x0) 2.371425389s ago: executing program 0 (id=2426): openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0) sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000002fc0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000002f00)=ANY=[@ANYBLOB], 0x14}}, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r0}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = getpgrp(0x0) kcmp(r3, r4, 0x0, r2, r2) process_vm_readv(0x0, &(0x7f0000008400)=[{0x0}], 0x1, &(0x7f0000008640)=[{0x0}], 0x1, 0x0) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000140)='memory.oom.group\x00', 0x2, 0x0) syz_init_net_socket$llc(0x1a, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f0000000500)='./bus\x00') lsetxattr$system_posix_acl(0x0, &(0x7f0000000280)='system.posix_acl_default\x00', 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x15, 0x6, &(0x7f00000005c0)=ANY=[@ANYRESHEX], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x51, '\x00', 0x0, 0x1e, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x90) openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0) io_setup(0x1202, &(0x7f00000003c0)=0x0) io_submit(r5, 0x0, 0x0) r6 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000380), 0x0, 0x0, 0xffffffffffffffff) add_key(&(0x7f0000000240)='dns_resolver\x00', &(0x7f0000000080)={'syz', 0x1}, &(0x7f0000000280)="dee7030022cf5c6c7bc31bd2599759fafa9e5e1dbac27b0426fc0299c41fb9b9761a1b44dac894f365ae68edf335abf35ec53d6751467ebd2c187491bcab2c8d34fec505fc8a14622dba33ff9b054eb7e8a5bc4ab2719cb230328931deb95ef3fcafb1ce27743a93f4715976edec860ab49c", 0x72, r6) keyctl$search(0xa, r6, 0x0, 0x0, 0xffffffffffffffff) syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x802) 2.057463034s ago: executing program 3 (id=2429): r0 = socket$unix(0x1, 0x5, 0x0) r1 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00'}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)) ioctl$NBD_SET_SOCK(r1, 0xab00, 0xffffffffffffffff) syz_open_dev$ndb(&(0x7f00000000c0), 0x0, 0x0) ioctl$NBD_DO_IT(0xffffffffffffffff, 0xab03) openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$binder(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x11, 0xffffffffffffffff, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) syz_open_dev$dri(0x0, 0x0, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'crc32-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x7, &(0x7f00000001c0)="fb01ffff", 0x4) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58) r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6}]}) sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r5, 0xc0502103, &(0x7f00000001c0)) rt_sigqueueinfo(0x0, 0xb, &(0x7f00000004c0)={0x1b, 0x2}) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000400)="3f4e55f1", 0x4) sendto$unix(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x4000, 0x0, 0x0) recvfrom(0xffffffffffffffff, &(0x7f00000030c0)=""/4117, 0xffffffffffffffbf, 0x0, 0x0, 0xffffffffffffff54) lseek(0xffffffffffffffff, 0x0, 0x0) 1.819401826s ago: executing program 1 (id=2431): r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) ioctl$SNDCTL_SEQ_TESTMIDI(r0, 0x40045108, &(0x7f0000000200)) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000980), 0x0, 0x0) ioctl$SNDCTL_SEQ_RESET(r1, 0x5100) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) close(r1) 1.664996905s ago: executing program 1 (id=2432): socket$inet6_udp(0xa, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0) r2 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(r1, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f}) ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2) ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2}) ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/85, &(0x7f0000000480)=""/74}) ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]}) ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0}, 0x90) 1.418386418s ago: executing program 0 (id=2433): r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_udp_int(r0, 0x11, 0xb, 0x0, &(0x7f0000000240)) 1.268095429s ago: executing program 0 (id=2434): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@bloom_filter={0x1e, 0x1, 0x2, 0x2, 0x1901, 0x1, 0x1adf, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x3, 0x2, 0x3}, 0x48) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8) bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0) socket$nl_audit(0x10, 0x3, 0x9) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'\x00', 0x52d35ce30131f272}) ioctl$TUNSETLINK(r1, 0x400454cd, 0x324) r2 = socket$nl_route(0x10, 0x3, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'lo\x00'}) sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, 0x0}, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) r3 = userfaultfd(0x1) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000040)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_WRITEPROTECT(r3, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000800000/0x800000)=nil, 0x802000}, 0x2}) ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000400)={&(0x7f0000b36000/0x12000)=nil, &(0x7f0000841000/0x4000)=nil, 0x12000}) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$UFFDIO_CONTINUE(r4, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f0000800000/0x800000)=nil, 0x800000}, 0x1}) syz_io_uring_setup(0x6866, &(0x7f00000003c0)={0x0, 0x0, 0x2000}, &(0x7f0000000080), &(0x7f0000000140)) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) syz_open_procfs$userns(0x0, &(0x7f00000002c0)) userfaultfd(0x80001) 522.382565ms ago: executing program 2 (id=2435): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newtaction={0x74, 0x30, 0x1, 0x0, 0x0, {}, [{0x60, 0x1, [@m_mpls={0x5c, 0x1, 0x0, 0x0, {{0x9}, {0x30, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{}, 0x1}}, @TCA_MPLS_PROTO={0x6, 0x4, 0x8848}, @TCA_MPLS_BOS={0x5}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x74}}, 0x0) 351.379767ms ago: executing program 2 (id=2436): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) lremovexattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB='c']) 306.31865ms ago: executing program 2 (id=2437): r0 = socket$can_j1939(0x1d, 0x2, 0x7) r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'vcan0\x00', 0x0}) socket$alg(0x26, 0x5, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)) openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x4004054) sendmsg$key(0xffffffffffffffff, 0x0, 0x0) r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r5, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r5, &(0x7f0000000040)={0x50, 0x0, r6, {0x7, 0x1f, 0x0, 0x10400}}, 0x50) syz_fuse_handle_req(r5, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_fuse_handle_req(r5, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x31, 0x0, 0x0, 0x0, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0}) r7 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0) syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000006380)="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", 0x2000, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x18}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) writev(r7, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1) close(r5) bind$can_j1939(r0, &(0x7f0000000240)={0x1d, r3}, 0x18) 294.724892ms ago: executing program 1 (id=2438): r0 = openat$fb1(0xffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000380)) 180.63964ms ago: executing program 1 (id=2439): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000001f0900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x34, 0x4, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8}, @NFTA_IMMEDIATE_DATA={0x10, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8}]}]}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x88}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)={{0x14}, [@NFT_MSG_DELCHAIN={0x2c, 0x5, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}], {0x14}}, 0x54}}, 0x0) 62.947393ms ago: executing program 1 (id=2440): r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) ioctl$SNDCTL_SEQ_TESTMIDI(r0, 0x40045108, &(0x7f0000000200)) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000980), 0x0, 0x0) ioctl$SNDCTL_SEQ_RESET(r1, 0x5100) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) close(r1) 11.147387ms ago: executing program 1 (id=2441): madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) r0 = userfaultfd(0x1) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, 0x0) r3 = io_uring_setup(0x4d63, &(0x7f0000000080)) io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) getpid() openat$vimc1(0xffffff9c, 0x0, 0x2, 0x0) openat$vnet(0xffffff9c, 0x0, 0x2, 0x0) ioctl$UFFDIO_COPY(r0, 0xc028aa05, &(0x7f0000000080)={&(0x7f0000c15000/0x1000)=nil, &(0x7f0000508000/0x4000)=nil, 0x1000}) 0s ago: executing program 3 (id=2442): openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0) sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000002fc0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000002f00)=ANY=[@ANYBLOB], 0x14}}, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r0}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpid() process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = getpgrp(0x0) kcmp(r3, r4, 0x0, r2, r2) process_vm_readv(0x0, &(0x7f0000008400)=[{0x0}], 0x1, &(0x7f0000008640)=[{0x0}], 0x1, 0x0) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000140)='memory.oom.group\x00', 0x2, 0x0) syz_init_net_socket$llc(0x1a, 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f0000000500)='./bus\x00') lsetxattr$system_posix_acl(0x0, &(0x7f0000000280)='system.posix_acl_default\x00', 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x15, 0x6, &(0x7f00000005c0)=ANY=[@ANYRESHEX], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x51, '\x00', 0x0, 0x1e, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x90) openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0) io_setup(0x1202, &(0x7f00000003c0)=0x0) io_submit(r5, 0x0, 0x0) r6 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000380), 0x0, 0x0, 0xffffffffffffffff) add_key(&(0x7f0000000240)='dns_resolver\x00', &(0x7f0000000080)={'syz', 0x1}, &(0x7f0000000280)="dee7030022cf5c6c7bc31bd2599759fafa9e5e1dbac27b0426fc0299c41fb9b9761a1b44dac894f365ae68edf335abf35ec53d6751467ebd2c187491bcab2c8d34fec505fc8a14622dba33ff9b054eb7e8a5bc4ab2719cb230328931deb95ef3fcafb1ce27743a93f4715976edec860ab49c", 0x72, r6) keyctl$search(0xa, r6, 0x0, 0x0, 0xffffffffffffffff) syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x802) kernel console output (not intermixed with test programs): nged: olddecodes=none,decodes=io+mem:owns=io+mem [ 218.650336][ T5377] usb usb18-port1: attempt power cycle [ 219.055910][ T5339] Bluetooth: hci4: unexpected event for opcode 0x0c46 [ 219.253162][ T9503] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5) [ 219.256608][ T9503] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 219.262535][ T9503] vhci_hcd vhci_hcd.0: Device attached [ 219.288819][ T5339] Bluetooth: Unknown BR/EDR signaling command 0x0c [ 219.291992][ T5339] Bluetooth: Wrong link type (-22) [ 219.292908][ T9498] input: syz0 as /devices/virtual/input/input17 [ 219.295016][ T5339] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 219.299407][ T5339] Bluetooth: Wrong link type (-22) [ 219.301897][ T5339] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 219.305276][ T5339] Bluetooth: Wrong link type (-22) [ 219.308114][ T5339] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 219.311823][ T5339] Bluetooth: Wrong link type (-22) [ 219.314957][ T5339] Bluetooth: Unknown BR/EDR signaling command 0x11 [ 219.317978][ T5339] Bluetooth: Wrong link type (-22) [ 219.321333][ T9503] netlink: 80 bytes leftover after parsing attributes in process `syz.0.1450'. [ 219.378253][ T5377] usb usb18-port1: unable to enumerate USB device [ 219.697888][ T5377] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 219.916170][ T5377] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 219.919554][ T5377] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 219.922639][ T5377] usb 5-1: Product: syz [ 219.924851][ T1417] usb 6-1: USB disconnect, device number 18 [ 219.928680][ T5377] usb 5-1: Manufacturer: syz [ 219.928697][ T5377] usb 5-1: SerialNumber: syz [ 219.935981][ T5377] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 219.940638][ T1417] ldusb 6-1:0.0: LD USB Device #0 now disconnected [ 219.970912][ T5377] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 220.208611][ T5376] usb 5-1: USB disconnect, device number 10 [ 220.434587][ T9504] vhci_hcd: connection closed [ 220.436198][ T1102] vhci_hcd: stop threads [ 220.439783][ T1102] vhci_hcd: release socket [ 220.441732][ T1102] vhci_hcd: disconnect device [ 220.464395][ T9524] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 220.481553][ T9524] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 221.098504][ T5377] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive [ 221.101641][ T5377] ath9k_htc: Failed to initialize the device [ 221.135998][ T5376] usb 5-1: ath9k_htc: USB layer deinitialized [ 221.268826][ T39] audit: type=1326 audit(1722228498.412:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9533 comm="syz.1.1460" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x0 [ 221.389207][ T9539] fuse: Bad value for 'rootmode' [ 221.440337][ T8] vhci_hcd: vhci_device speed not set [ 221.950965][ T5339] Bluetooth: hci4: unexpected event for opcode 0x0c46 [ 222.140084][ T5339] Bluetooth: Unknown BR/EDR signaling command 0x0c [ 222.142373][ T9568] input: syz0 as /devices/virtual/input/input18 [ 222.146021][ T5339] Bluetooth: Wrong link type (-22) [ 222.151903][ T5339] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 222.155071][ T5339] Bluetooth: Wrong link type (-22) [ 222.157184][ T5339] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 222.160242][ T5339] Bluetooth: Wrong link type (-22) [ 222.162561][ T5339] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 222.165454][ T5339] Bluetooth: Wrong link type (-22) [ 222.167849][ T5339] Bluetooth: Unknown BR/EDR signaling command 0x11 [ 222.171258][ T5339] Bluetooth: Wrong link type (-22) [ 222.235679][ T9543] Process accounting resumed [ 222.369449][ T9578] netlink: 148 bytes leftover after parsing attributes in process `syz.3.1477'. [ 222.391747][ T9578] netlink: 'syz.3.1477': attribute type 2 has an invalid length. [ 222.395529][ T9578] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1477'. [ 223.325567][ T9610] netlink: 148 bytes leftover after parsing attributes in process `syz.2.1490'. [ 223.329935][ T9610] netlink: 'syz.2.1490': attribute type 2 has an invalid length. [ 223.335741][ T9610] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1490'. [ 223.622361][ T5339] Bluetooth: Unknown BR/EDR signaling command 0x0c [ 223.625410][ T5339] Bluetooth: Wrong link type (-22) [ 223.627829][ T5339] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 223.630848][ T5339] Bluetooth: Wrong link type (-22) [ 223.634477][ T5339] Bluetooth: Unknown BR/EDR signaling command 0x0d [ 223.637412][ T5339] Bluetooth: Wrong link type (-22) [ 223.640551][ T5339] Bluetooth: Unknown BR/EDR signaling command 0x0f [ 223.643518][ T5339] Bluetooth: Wrong link type (-22) [ 223.645848][ T5339] Bluetooth: Unknown BR/EDR signaling command 0x11 [ 223.648749][ T5339] Bluetooth: Wrong link type (-22) [ 223.651348][ T5339] Bluetooth: hci0: link tx timeout [ 223.655466][ T5339] Bluetooth: hci0: killing stalled connection 11:aa:aa:aa:aa:aa [ 223.715973][ T9620] input: syz0 as /devices/virtual/input/input19 [ 224.825732][ T39] audit: type=1326 audit(1722228501.742:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9655 comm="syz.0.1504" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf743e579 code=0x0 [ 225.476331][ T9673] Mount JFS Failure: -22 [ 225.710029][ T9678] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1507'. [ 225.802081][ T5336] Bluetooth: hci0: command 0x0406 tx timeout [ 227.385470][ T9715] netlink: 'syz.3.1519': attribute type 33 has an invalid length. [ 227.388912][ T9715] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1519'. [ 227.509173][ T9717] bridge0: port 2(bridge_slave_1) entered blocking state [ 227.512926][ T9717] bridge0: port 2(bridge_slave_1) entered forwarding state [ 227.516758][ T9717] bridge0: port 1(bridge_slave_0) entered blocking state [ 227.520457][ T9717] bridge0: port 1(bridge_slave_0) entered forwarding state [ 227.526103][ T9717] bridge0: left promiscuous mode [ 227.559108][ T9720] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1521'. [ 227.567780][ T9720] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1521'. [ 227.582774][ T9720] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1521'. [ 227.586592][ T9720] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1521'. [ 227.618931][ T9722] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 227.888560][ T5336] Bluetooth: hci7: Ignoring connect complete event for invalid link type [ 228.808217][ T9744] serio: Serial port ttynull [ 229.253208][ T9759] netlink: 'syz.3.1534': attribute type 33 has an invalid length. [ 229.259636][ T9759] __nla_validate_parse: 1 callbacks suppressed [ 229.259652][ T9759] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1534'. [ 229.765141][ T9768] fuse: Unknown parameter 'us1rN^er_id' [ 230.003895][ T5336] Bluetooth: hci7: command 0x0405 tx timeout [ 230.217321][ T5376] usb 7-1: new high-speed USB device number 13 using dummy_hcd [ 230.488334][ T5376] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 230.492826][ T5376] usb 7-1: New USB device found, idVendor=7de0, idProduct=676e, bcdDevice=77.db [ 230.501122][ T5376] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 230.511563][ T5376] usb 7-1: config 0 descriptor?? [ 230.515967][ T5376] rndis_host 7-1:0.0: skipping garbage [ 230.518628][ T5376] usb 7-1: bad CDC descriptors [ 231.395285][ T9815] netlink: 'syz.3.1556': attribute type 7 has an invalid length. [ 231.399884][ T9815] netlink: 'syz.3.1556': attribute type 8 has an invalid length. [ 231.725375][ T9822] program syz.3.1559 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 231.750580][ T9822] netlink: 'syz.3.1559': attribute type 10 has an invalid length. [ 232.085060][ T57] usb 7-1: USB disconnect, device number 13 [ 232.372461][ T9831] ieee802154 phy0 wpan0: encryption failed: -22 [ 232.780549][ T9833] usb usb8: usbfs: process 9833 (syz.0.1562) did not claim interface 0 before use [ 233.170187][ T9841] serio: Serial port ttynull [ 233.503914][ T5336] Bluetooth: hci7: command 0x0405 tx timeout [ 233.620524][ T9857] mmap: syz.0.1570 (9857) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 233.757251][ T5339] Bluetooth: hci0: Ignoring connect complete event for invalid link type [ 233.881241][ T9878] netlink: 'syz.2.1577': attribute type 33 has an invalid length. [ 233.884784][ T9878] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1577'. [ 234.251297][ T9898] program syz.3.1586 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 234.263917][ T9898] netlink: 'syz.3.1586': attribute type 10 has an invalid length. [ 234.281464][ T9886] usb usb8: usbfs: process 9886 (syz.0.1580) did not claim interface 0 before use [ 234.447266][ T9909] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1588'. [ 234.501056][ T9913] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1590'. [ 234.509554][ T9913] netlink: 'syz.2.1590': attribute type 4 has an invalid length. [ 234.512955][ T9913] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.1590'. [ 234.798979][ T9932] netlink: 'syz.1.1597': attribute type 33 has an invalid length. [ 234.801815][ T9932] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1597'. [ 235.243504][ T9953] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1600'. [ 235.259845][ T9953] netlink: 'syz.0.1600': attribute type 4 has an invalid length. [ 235.262789][ T9953] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.1600'. [ 235.827548][T10002] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 236.044663][T10011] binder: 10007:10011 ioctl c0306201 0 returned -14 [ 236.383399][T10025] program syz.0.1619 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 236.406259][T10025] netlink: 'syz.0.1619': attribute type 10 has an invalid length. [ 236.475830][T10025] batman_adv: batadv0: Adding interface: team0 [ 236.491724][T10025] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 236.541476][T10025] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 236.705647][T10036] ieee802154 phy0 wpan0: encryption failed: -22 [ 236.927775][T10040] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1620'. [ 237.009142][T10043] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 237.406277][T10057] batman_adv: batadv0: Adding interface: ipvlan0 [ 237.409099][T10057] batman_adv: batadv0: The MTU of interface ipvlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 237.418927][T10057] batman_adv: batadv0: Not using interface ipvlan0 (retrying later): interface not active [ 237.510721][T10065] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap2 [ 237.776139][ T5380] usb 7-1: new high-speed USB device number 14 using dummy_hcd [ 237.982149][ T5380] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 237.987570][ T5380] usb 7-1: New USB device found, idVendor=7de0, idProduct=676e, bcdDevice=77.db [ 238.000765][ T5380] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 238.006375][ T5380] usb 7-1: config 0 descriptor?? [ 238.022408][ T5380] rndis_host 7-1:0.0: skipping garbage [ 238.024689][ T5380] usb 7-1: bad CDC descriptors [ 238.545665][ T5339] Bluetooth: hci4: command 0x0406 tx timeout [ 238.620939][ T1106] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 238.624064][ T1106] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 239.218225][T10103] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap2 [ 239.328062][T10109] ieee802154 phy0 wpan0: encryption failed: -22 [ 239.454455][ T1106] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 239.459147][ T1106] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 239.548427][T10117] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1648'. [ 239.587686][ T35] usb 7-1: USB disconnect, device number 14 [ 240.256000][ T5336] Bluetooth: hci5: command 0x0406 tx timeout [ 240.352032][ T39] audit: type=1400 audit(1722228516.259:96): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=10143 comm="syz.1.1658" [ 240.472506][T10150] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1661'. [ 240.476418][T10150] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1661'. [ 240.533733][ T39] audit: type=1326 audit(1722228516.427:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.3.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f62579 code=0x7ffc0000 [ 240.543349][ T39] audit: type=1326 audit(1722228516.427:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.3.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f62579 code=0x7ffc0000 [ 240.554928][ T39] audit: type=1326 audit(1722228516.446:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.3.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=97 compat=1 ip=0xf7f62579 code=0x7ffc0000 [ 240.568854][ T39] audit: type=1326 audit(1722228516.446:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.3.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f62579 code=0x7ffc0000 [ 240.588779][ T39] audit: type=1326 audit(1722228516.446:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.3.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f62579 code=0x7ffc0000 [ 240.606702][ T39] audit: type=1326 audit(1722228516.455:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.3.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f62579 code=0x7ffc0000 [ 240.621912][ T39] audit: type=1326 audit(1722228516.455:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.3.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f62579 code=0x7ffc0000 [ 240.637952][ T39] audit: type=1326 audit(1722228516.474:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.3.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f62579 code=0x7ffc0000 [ 240.658364][ T39] audit: type=1326 audit(1722228516.474:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.3.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=331 compat=1 ip=0xf7f62579 code=0x7ffc0000 [ 240.950992][ T8] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 241.065959][ T5336] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 241.070503][ T5336] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 241.073767][ T5336] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 241.077521][ T5336] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 241.081321][ T5336] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 241.084550][ T5336] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 241.166611][ T8] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 241.170297][ T8] usb 5-1: New USB device found, idVendor=7de0, idProduct=676e, bcdDevice=77.db [ 241.173280][ T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 241.185377][ T8] usb 5-1: config 0 descriptor?? [ 241.203083][ T8] rndis_host 5-1:0.0: skipping garbage [ 241.205428][ T8] usb 5-1: bad CDC descriptors [ 241.308650][T10166] chnl_net:caif_netlink_parms(): no params data found [ 241.416786][ T1106] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 241.534821][ T1106] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 241.592315][T10166] bridge0: port 1(bridge_slave_0) entered blocking state [ 241.594802][T10166] bridge0: port 1(bridge_slave_0) entered disabled state [ 241.597562][T10166] bridge_slave_0: entered allmulticast mode [ 241.601693][T10166] bridge_slave_0: entered promiscuous mode [ 241.606833][T10166] bridge0: port 2(bridge_slave_1) entered blocking state [ 241.609717][T10166] bridge0: port 2(bridge_slave_1) entered disabled state [ 241.612241][T10166] bridge_slave_1: entered allmulticast mode [ 241.615490][T10166] bridge_slave_1: entered promiscuous mode [ 241.712005][ T1106] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 241.788549][T10166] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 241.793649][T10166] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 241.804551][ T982] IPVS: starting estimator thread 0... [ 241.894442][ T1106] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 241.903704][T10179] IPVS: using max 23 ests per chain, 55200 per kthread [ 241.916782][T10166] team0: Port device team_slave_0 added [ 241.925374][T10166] team0: Port device team_slave_1 added [ 241.932639][ T4768] Bluetooth: hci0: unexpected event for opcode 0x0404 [ 241.991254][T10166] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 241.993689][T10166] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 242.004289][T10166] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 242.018718][T10166] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 242.022852][T10166] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 242.034964][T10166] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 242.144607][T10166] hsr_slave_0: entered promiscuous mode [ 242.150554][T10166] hsr_slave_1: entered promiscuous mode [ 242.153407][T10166] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 242.157129][T10166] Cannot create hsr debugfs directory [ 242.369827][ T1106] bridge_slave_1: left allmulticast mode [ 242.372132][ T1106] bridge_slave_1: left promiscuous mode [ 242.374391][ T1106] bridge0: port 2(bridge_slave_1) entered disabled state [ 242.380158][ T1106] bridge_slave_0: left allmulticast mode [ 242.382529][ T1106] bridge_slave_0: left promiscuous mode [ 242.389660][ T1106] bridge0: port 1(bridge_slave_0) entered disabled state [ 242.746864][ T1106] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 242.754014][ T5377] usb 5-1: USB disconnect, device number 11 [ 242.756921][ T1106] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 242.772143][ T1106] bond0 (unregistering): Released all slaves [ 242.780141][ T1106] bond1 (unregistering): Released all slaves [ 242.798627][ T1106] bond2 (unregistering): Released all slaves [ 242.811216][T10195] syzkaller0: entered promiscuous mode [ 242.813659][T10195] syzkaller0: entered allmulticast mode [ 243.189579][ T4768] Bluetooth: hci5: unexpected event for opcode 0x0404 [ 243.249242][ T4768] Bluetooth: hci4: command tx timeout [ 243.393211][T10216] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1682'. [ 243.557025][ T1106] hsr_slave_0: left promiscuous mode [ 243.561551][ T1106] hsr_slave_1: left promiscuous mode [ 243.564709][ T1106] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 243.567861][ T1106] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 243.572232][ T1106] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 243.575333][ T1106] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 243.620065][ T1106] veth0_macvtap: left promiscuous mode [ 243.622990][ T1106] veth1_vlan: left promiscuous mode [ 243.625765][ T1106] veth0_vlan: left promiscuous mode [ 244.456332][ T1106] team0 (unregistering): Port device team_slave_1 removed [ 244.540822][ T1106] team0 (unregistering): Port device team_slave_0 removed [ 245.364606][T10166] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 245.385177][T10166] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 245.392214][T10166] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 245.399186][T10166] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 245.469122][T10240] netlink: 'syz.1.1689': attribute type 33 has an invalid length. [ 245.475239][ T4768] Bluetooth: hci4: command tx timeout [ 245.475953][T10240] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1689'. [ 245.559957][T10166] 8021q: adding VLAN 0 to HW filter on device bond0 [ 245.584524][T10166] 8021q: adding VLAN 0 to HW filter on device team0 [ 245.604899][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 245.608089][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 245.613463][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 245.616643][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 245.818363][T10166] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 245.821525][T10248] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1691'. [ 245.825322][T10248] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1691'. [ 245.882003][T10166] veth0_vlan: entered promiscuous mode [ 245.892401][T10166] veth1_vlan: entered promiscuous mode [ 245.920921][T10166] veth0_macvtap: entered promiscuous mode [ 245.927775][T10166] veth1_macvtap: entered promiscuous mode [ 245.939919][T10166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 245.946187][T10166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 245.951020][T10166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 245.955873][T10166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 245.960012][T10166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 245.964339][T10166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 245.968671][T10166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 245.972901][T10166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 245.978198][T10166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 245.982536][T10166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 245.986865][T10166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 245.991214][T10166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 245.997789][T10166] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 246.008252][T10166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 246.012809][T10166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 246.016949][T10166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 246.022354][T10166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 246.026347][T10166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 246.030526][T10166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 246.034326][T10166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 246.038778][T10166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 246.043214][T10166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 246.049330][T10166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 246.053624][T10166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 246.058049][T10166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 246.064298][T10166] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 246.073786][T10166] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 246.077504][T10166] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 246.081165][T10166] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 246.086448][T10166] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 246.174414][ T1106] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 246.177653][ T1106] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 246.233405][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 246.237478][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 246.250038][ T4768] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 246.255548][ T4768] Bluetooth: hci0: Injecting HCI hardware error event [ 246.260479][ T4768] Bluetooth: hci0: hardware error 0x00 [ 246.280642][ T39] kauditd_printk_skb: 137 callbacks suppressed [ 246.280656][ T39] audit: type=1326 audit(1722228521.806:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10257 comm="syz.0.1697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x7ffc0000 [ 246.293556][ T39] audit: type=1326 audit(1722228521.815:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10257 comm="syz.0.1697" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf743e579 code=0x7ffc0000 [ 246.304130][ T39] audit: type=1326 audit(1722228521.815:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10257 comm="syz.0.1697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x7ffc0000 [ 246.319098][ T39] audit: type=1326 audit(1722228521.815:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10257 comm="syz.0.1697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x7ffc0000 [ 246.346381][ T39] audit: type=1326 audit(1722228521.815:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10257 comm="syz.0.1697" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf743e579 code=0x7ffc0000 [ 246.356741][ T39] audit: type=1326 audit(1722228521.815:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10257 comm="syz.0.1697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x7ffc0000 [ 246.381634][ T39] audit: type=1326 audit(1722228521.815:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10257 comm="syz.0.1697" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf743e579 code=0x7ffc0000 [ 246.390930][ T39] audit: type=1326 audit(1722228521.815:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10257 comm="syz.0.1697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x7ffc0000 [ 246.406624][ T39] audit: type=1326 audit(1722228521.815:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10257 comm="syz.0.1697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x7ffc0000 [ 246.418224][ T39] audit: type=1326 audit(1722228521.815:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10257 comm="syz.0.1697" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf743e579 code=0x7ffc0000 [ 246.559017][T10268] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1699'. [ 246.562901][T10268] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1699'. [ 247.092843][T10289] A link change request failed with some changes committed already. Interface batadv_slave_1 may have been left with an inconsistent configuration, please check. [ 247.403763][T10296] netlink: 'syz.0.1704': attribute type 33 has an invalid length. [ 247.407564][T10296] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1704'. [ 247.526582][ T5336] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0 [ 247.530621][ T5336] Bluetooth: hci5: Injecting HCI hardware error event [ 247.535392][ T5336] Bluetooth: hci5: hardware error 0x00 [ 247.696815][ T5339] Bluetooth: hci4: command tx timeout [ 248.477090][ T4768] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 249.588681][ T982] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 249.760009][ T5336] Bluetooth: hci5: Opcode 0x0c03 failed: -110 [ 249.795576][ T982] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 249.800079][ T982] usb 5-1: New USB device found, idVendor=7de0, idProduct=676e, bcdDevice=77.db [ 249.808511][ T982] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 249.816005][ T982] usb 5-1: config 0 descriptor?? [ 249.820743][ T982] rndis_host 5-1:0.0: skipping garbage [ 249.823298][ T982] usb 5-1: bad CDC descriptors [ 249.926091][ T5336] Bluetooth: hci4: command tx timeout [ 250.690673][ T4768] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 250.695775][ T4768] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 250.701733][ T4768] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 250.708202][ T4768] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 250.712483][ T4768] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 250.716015][ T4768] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 250.892890][T10362] chnl_net:caif_netlink_parms(): no params data found [ 251.017379][T10362] bridge0: port 1(bridge_slave_0) entered blocking state [ 251.020600][T10362] bridge0: port 1(bridge_slave_0) entered disabled state [ 251.025629][T10362] bridge_slave_0: entered allmulticast mode [ 251.029519][T10362] bridge_slave_0: entered promiscuous mode [ 251.036277][T10362] bridge0: port 2(bridge_slave_1) entered blocking state [ 251.039435][T10362] bridge0: port 2(bridge_slave_1) entered disabled state [ 251.042660][T10362] bridge_slave_1: entered allmulticast mode [ 251.047126][T10362] bridge_slave_1: entered promiscuous mode [ 251.115698][T10362] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 251.126307][T10362] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 251.199980][T10362] team0: Port device team_slave_0 added [ 251.208521][T10362] team0: Port device team_slave_1 added [ 251.262274][T10362] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 251.265249][T10362] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 251.276073][T10362] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 251.281191][T10362] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 251.284251][T10362] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 251.294642][T10362] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 251.378296][ T5376] usb 5-1: USB disconnect, device number 12 [ 251.393990][T10362] hsr_slave_0: entered promiscuous mode [ 251.401784][T10362] hsr_slave_1: entered promiscuous mode [ 251.405761][T10362] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 251.409635][T10362] Cannot create hsr debugfs directory [ 251.610199][T10362] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 251.734144][T10362] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 251.846649][T10362] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 251.930659][T10362] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 252.082386][T10362] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 252.096360][T10362] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 252.102956][T10362] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 252.110808][T10362] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 252.231705][T10362] 8021q: adding VLAN 0 to HW filter on device bond0 [ 252.249077][T10362] 8021q: adding VLAN 0 to HW filter on device team0 [ 252.279756][ T57] bridge0: port 1(bridge_slave_0) entered blocking state [ 252.282901][ T57] bridge0: port 1(bridge_slave_0) entered forwarding state [ 252.292361][ T57] bridge0: port 2(bridge_slave_1) entered blocking state [ 252.295463][ T57] bridge0: port 2(bridge_slave_1) entered forwarding state [ 252.521085][T10362] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 252.558181][T10362] veth0_vlan: entered promiscuous mode [ 252.568149][T10362] veth1_vlan: entered promiscuous mode [ 252.604664][T10362] veth0_macvtap: entered promiscuous mode [ 252.610884][T10362] veth1_macvtap: entered promiscuous mode [ 252.635260][T10362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 252.640705][T10362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.644908][T10362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 252.649339][T10362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.653321][T10362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 252.657710][T10362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.661728][T10362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 252.665997][T10362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.670595][T10362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 252.674870][T10362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.679243][T10362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 252.683549][T10362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.687537][T10362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 252.692207][T10362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.704658][T10362] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 252.716078][T10362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 252.720480][T10362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.725570][T10362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 252.729910][T10362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.735621][T10362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 252.739982][T10362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.744599][T10362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 252.748921][T10362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.752984][T10362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 252.759158][T10362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.763277][T10362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 252.767659][T10362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.771650][T10362] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 252.776391][T10362] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 252.782670][T10362] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 252.791773][T10362] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.795670][T10362] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.799706][T10362] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.803522][T10362] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.898446][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 252.901950][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 252.917845][ T5336] Bluetooth: hci0: command tx timeout [ 252.955543][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 252.960226][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 253.739963][T10418] netlink: 'syz.0.1743': attribute type 13 has an invalid length. [ 255.026570][T10451] befs: (nullb0): No write support. Marking filesystem read-only [ 255.034416][T10451] befs: (nullb0): invalid magic header [ 255.139204][ T5336] Bluetooth: hci0: command tx timeout [ 256.501685][T10475] befs: (nullb0): No write support. Marking filesystem read-only [ 256.512909][T10475] befs: (nullb0): invalid magic header [ 257.094036][T10500] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1777'. [ 257.361901][ T5336] Bluetooth: hci0: command tx timeout [ 257.363828][ T57] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 257.574641][ T57] usb 5-1: Using ep0 maxpacket: 16 [ 257.586314][ T57] usb 5-1: config 1 has an invalid descriptor of length 115, skipping remainder of the config [ 257.591439][ T57] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 257.595343][ T57] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 257.620359][ T57] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 257.625193][ T57] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 257.628905][ T57] usb 5-1: Product: syz [ 257.630876][ T57] usb 5-1: Manufacturer: syz [ 257.633240][ T57] usb 5-1: SerialNumber: syz [ 257.652238][ T57] usb 5-1: selecting invalid altsetting 1 [ 257.867574][T10488] netlink: 'syz.0.1775': attribute type 10 has an invalid length. [ 257.872551][T10488] netlink: 'syz.0.1775': attribute type 10 has an invalid length. [ 257.875845][T10488] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1775'. [ 257.879304][T10488] team0: entered promiscuous mode [ 257.881337][T10488] team_slave_0: entered promiscuous mode [ 257.883867][T10488] team_slave_1: entered promiscuous mode [ 257.887230][T10488] 8021q: adding VLAN 0 to HW filter on device team0 [ 257.890523][T10488] batman_adv: batadv0: Interface activated: team0 [ 257.893444][T10488] batman_adv: batadv0: Interface deactivated: team0 [ 257.896553][T10488] batman_adv: batadv0: Removing interface: team0 [ 257.900663][T10488] bridge0: port 3(team0) entered blocking state [ 257.903412][T10488] bridge0: port 3(team0) entered disabled state [ 257.906476][T10488] team0: entered allmulticast mode [ 257.908769][T10488] team_slave_0: entered allmulticast mode [ 257.911166][T10488] team_slave_1: entered allmulticast mode [ 257.927380][ T57] cdc_ncm 5-1:1.0: bind() failure [ 257.932203][ T57] usb 5-1: USB disconnect, device number 13 [ 257.981028][ T56] usb 6-1: new high-speed USB device number 19 using dummy_hcd [ 258.195820][ T56] usb 6-1: too many configurations: 65, using maximum allowed: 8 [ 258.209081][ T56] usb 6-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d [ 258.213363][ T56] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 258.447162][ T4768] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 258.456593][ T4768] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 258.460893][ T4768] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 258.466675][ T4768] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 258.471538][ T4768] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 258.472245][T10514] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 258.476057][ T4768] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 258.482772][T10514] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 258.508340][ T56] usb 6-1: string descriptor 0 read error: -71 [ 258.510972][ T56] usb 6-1: Found UVC 0.00 device (046d:08c1) [ 258.513393][ T56] usb 6-1: No valid video chain found. [ 258.524688][ T56] usb 6-1: USB disconnect, device number 19 [ 258.653463][T10521] chnl_net:caif_netlink_parms(): no params data found [ 258.707948][T10531] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1786'. [ 258.720652][T10534] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1787'. [ 258.807282][T10521] bridge0: port 1(bridge_slave_0) entered blocking state [ 258.810847][T10521] bridge0: port 1(bridge_slave_0) entered disabled state [ 258.814010][T10521] bridge_slave_0: entered allmulticast mode [ 258.820548][T10521] bridge_slave_0: entered promiscuous mode [ 258.828525][T10521] bridge0: port 2(bridge_slave_1) entered blocking state [ 258.831552][T10521] bridge0: port 2(bridge_slave_1) entered disabled state [ 258.835004][T10521] bridge_slave_1: entered allmulticast mode [ 258.842424][T10521] bridge_slave_1: entered promiscuous mode [ 258.913958][T10521] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 258.928935][T10521] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 258.948876][ T39] kauditd_printk_skb: 108 callbacks suppressed [ 258.948891][ T39] audit: type=1326 audit(1722228533.657:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10537 comm="syz.3.1788" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f62579 code=0x0 [ 259.003333][T10521] team0: Port device team_slave_0 added [ 259.009781][T10521] team0: Port device team_slave_1 added [ 259.069014][T10521] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 259.081938][T10521] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 259.101674][T10521] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 259.109042][T10521] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 259.112557][T10521] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 259.130667][T10521] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 259.233497][T10521] hsr_slave_0: entered promiscuous mode [ 259.243346][T10521] hsr_slave_1: entered promiscuous mode [ 259.251403][T10521] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 259.255329][T10521] Cannot create hsr debugfs directory [ 259.449988][T10521] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 259.554891][T10521] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 259.595140][ T4768] Bluetooth: hci0: command tx timeout [ 259.650552][T10521] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 259.733323][T10521] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 259.755680][ T56] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 259.895020][T10521] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 259.900363][T10521] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 259.905178][T10521] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 259.909653][T10521] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 259.926605][ T8403] usb 6-1: new high-speed USB device number 20 using dummy_hcd [ 259.947885][ T56] usb 5-1: Using ep0 maxpacket: 16 [ 259.953152][ T56] usb 5-1: config 1 has an invalid descriptor of length 115, skipping remainder of the config [ 259.969261][ T56] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 259.973303][ T56] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 259.987175][ T56] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 259.998143][ T56] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 260.001136][ T56] usb 5-1: Product: syz [ 260.002694][ T56] usb 5-1: Manufacturer: syz [ 260.004532][ T56] usb 5-1: SerialNumber: syz [ 260.009635][T10521] 8021q: adding VLAN 0 to HW filter on device bond0 [ 260.020465][ T56] usb 5-1: selecting invalid altsetting 1 [ 260.028085][T10521] 8021q: adding VLAN 0 to HW filter on device team0 [ 260.039721][ T57] bridge0: port 1(bridge_slave_0) entered blocking state [ 260.042085][ T57] bridge0: port 1(bridge_slave_0) entered forwarding state [ 260.078448][ T57] bridge0: port 2(bridge_slave_1) entered blocking state [ 260.081591][ T57] bridge0: port 2(bridge_slave_1) entered forwarding state [ 260.120151][ T8403] usb 6-1: too many configurations: 65, using maximum allowed: 8 [ 260.141444][ T8403] usb 6-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d [ 260.145000][ T8403] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 260.280485][T10550] netlink: 'syz.0.1792': attribute type 10 has an invalid length. [ 260.290862][T10550] bridge0: port 3(team0) entered disabled state [ 260.295870][T10550] team0: left allmulticast mode [ 260.298047][T10550] team_slave_0: left allmulticast mode [ 260.302650][T10550] team_slave_1: left allmulticast mode [ 260.305115][T10550] team0: left promiscuous mode [ 260.307234][T10550] team_slave_0: left promiscuous mode [ 260.309614][T10550] team_slave_1: left promiscuous mode [ 260.313743][T10550] bridge0: port 3(team0) entered disabled state [ 260.320953][T10550] batman_adv: batadv0: Adding interface: team0 [ 260.326495][T10550] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 260.339453][T10550] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 260.351866][T10557] netlink: 'syz.0.1792': attribute type 10 has an invalid length. [ 260.355646][T10557] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1792'. [ 260.363078][T10557] team0: entered promiscuous mode [ 260.365879][T10557] team_slave_0: entered promiscuous mode [ 260.368901][T10557] team_slave_1: entered promiscuous mode [ 260.374156][T10557] 8021q: adding VLAN 0 to HW filter on device team0 [ 260.379044][T10557] batman_adv: batadv0: Interface activated: team0 [ 260.381990][T10557] batman_adv: batadv0: Interface deactivated: team0 [ 260.385150][T10557] batman_adv: batadv0: Removing interface: team0 [ 260.392999][T10557] bridge0: port 3(team0) entered blocking state [ 260.396159][T10557] bridge0: port 3(team0) entered disabled state [ 260.402057][T10557] team0: entered allmulticast mode [ 260.404484][T10557] team_slave_0: entered allmulticast mode [ 260.406970][T10557] team_slave_1: entered allmulticast mode [ 260.419337][T10521] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 260.448550][T10569] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 260.463074][T10569] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 260.479782][T10592] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1807'. [ 260.489402][T10521] veth0_vlan: entered promiscuous mode [ 260.499639][T10521] veth1_vlan: entered promiscuous mode [ 260.509489][ T8403] usb 6-1: string descriptor 0 read error: -71 [ 260.512691][ T8403] usb 6-1: Found UVC 0.00 device (046d:08c1) [ 260.524887][T10521] veth0_macvtap: entered promiscuous mode [ 260.525223][ T8403] usb 6-1: No valid video chain found. [ 260.529965][ T56] cdc_ncm 5-1:1.0: bind() failure [ 260.532284][T10521] veth1_macvtap: entered promiscuous mode [ 260.535829][ T8403] usb 6-1: USB disconnect, device number 20 [ 260.539958][ T56] usb 5-1: USB disconnect, device number 14 [ 260.547279][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 260.551646][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.555202][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 260.560038][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.564205][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 260.584574][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.589020][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 260.593491][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.597309][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 260.602030][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.605750][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 260.610212][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.614767][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 260.618876][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.622721][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 260.626731][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.634950][T10521] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 260.646291][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 260.650234][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.654783][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 260.658847][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.662631][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 260.668092][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.671776][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 260.676120][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.680802][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 260.685013][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.690341][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 260.694390][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.700402][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 260.704453][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.707476][ T4768] Bluetooth: hci6: command tx timeout [ 260.708503][T10521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 260.715577][T10521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 260.721654][T10521] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 260.729990][T10521] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 260.733009][T10521] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 260.736010][T10521] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 260.739686][T10521] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 260.782742][T10594] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1808'. [ 260.790862][ T1104] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 260.799699][ T1104] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 260.820660][ T1101] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 260.823927][ T1101] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 261.132007][T10616] overlayfs: maximum fs stacking depth exceeded [ 261.275690][T10628] input: syz0 as /devices/virtual/input/input21 [ 261.638286][ T5376] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 261.848895][ T5376] usb 5-1: too many configurations: 65, using maximum allowed: 8 [ 261.868511][ T5376] usb 5-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d [ 261.872827][ T5376] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 261.895593][ T8] usb 6-1: new high-speed USB device number 21 using dummy_hcd [ 261.963272][T10644] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1825'. [ 262.106532][ T8] usb 6-1: Using ep0 maxpacket: 16 [ 262.112051][ T8] usb 6-1: config 1 has an invalid descriptor of length 115, skipping remainder of the config [ 262.116483][ T8] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 262.121491][T10631] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 262.125090][T10631] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 262.127592][ T8] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 262.136686][ T8] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 262.150082][ T8] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 262.153524][ T8] usb 6-1: Product: syz [ 262.155241][ T8] usb 6-1: Manufacturer: syz [ 262.157115][ T8] usb 6-1: SerialNumber: syz [ 262.160220][ T5376] usb 5-1: string descriptor 0 read error: -71 [ 262.163315][ T5376] usb 5-1: Found UVC 0.00 device (046d:08c1) [ 262.166339][ T5376] usb 5-1: No valid video chain found. [ 262.172022][ T8] usb 6-1: selecting invalid altsetting 1 [ 262.174202][ T5376] usb 5-1: USB disconnect, device number 15 [ 262.306294][T10656] overlayfs: maximum fs stacking depth exceeded [ 262.411401][T10633] netlink: 'syz.1.1823': attribute type 10 has an invalid length. [ 262.425349][T10633] batman_adv: batadv0: Adding interface: team0 [ 262.429504][T10633] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 262.441969][T10633] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 262.468491][T10633] netlink: 'syz.1.1823': attribute type 10 has an invalid length. [ 262.473740][T10633] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1823'. [ 262.477911][T10633] team0: entered promiscuous mode [ 262.480092][T10633] team_slave_0: entered promiscuous mode [ 262.483145][T10633] team_slave_1: entered promiscuous mode [ 262.488133][T10633] 8021q: adding VLAN 0 to HW filter on device team0 [ 262.491056][T10633] batman_adv: batadv0: Interface activated: team0 [ 262.495211][T10633] batman_adv: batadv0: Interface deactivated: team0 [ 262.497764][T10633] batman_adv: batadv0: Removing interface: team0 [ 262.501576][T10633] bridge0: port 3(team0) entered blocking state [ 262.506688][T10633] bridge0: port 3(team0) entered disabled state [ 262.509933][T10633] team0: entered allmulticast mode [ 262.512525][T10633] team_slave_0: entered allmulticast mode [ 262.515143][T10633] team_slave_1: entered allmulticast mode [ 262.520251][T10633] bridge0: port 3(team0) entered blocking state [ 262.523399][T10633] bridge0: port 3(team0) entered forwarding state [ 262.546975][ T8] cdc_ncm 6-1:1.0: bind() failure [ 262.551767][ T8] usb 6-1: USB disconnect, device number 21 [ 262.836881][T10674] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1835'. [ 263.121135][T10677] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1836'. [ 263.439320][T10694] overlayfs: maximum fs stacking depth exceeded [ 263.497450][T10701] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4) [ 263.500720][T10701] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 263.504119][T10701] vhci_hcd vhci_hcd.0: Device attached [ 263.613150][T10702] vhci_hcd: unknown pdu 1 [ 263.619510][ T1140] vhci_hcd: stop threads [ 263.621288][ T1140] vhci_hcd: release socket [ 263.623183][ T1140] vhci_hcd: disconnect device [ 264.119418][ T1101] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 264.685172][ T5336] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 264.691445][ T5336] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 264.700828][ T5336] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 264.705973][ T5336] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 264.710084][ T5336] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 264.720480][ T5336] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 264.811000][ T1376] ieee802154 phy0 wpan0: encryption failed: -22 [ 264.813471][ T1376] ieee802154 phy1 wpan1: encryption failed: -22 [ 265.094399][T10722] chnl_net:caif_netlink_parms(): no params data found [ 265.306495][T10722] bridge0: port 1(bridge_slave_0) entered blocking state [ 265.309753][T10722] bridge0: port 1(bridge_slave_0) entered disabled state [ 265.312973][T10722] bridge_slave_0: entered allmulticast mode [ 265.327567][T10722] bridge_slave_0: entered promiscuous mode [ 265.333637][T10722] bridge0: port 2(bridge_slave_1) entered blocking state [ 265.339336][T10722] bridge0: port 2(bridge_slave_1) entered disabled state [ 265.342119][T10722] bridge_slave_1: entered allmulticast mode [ 265.345957][T10722] bridge_slave_1: entered promiscuous mode [ 265.462577][T10722] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 265.482544][T10722] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 265.575000][T10722] team0: Port device team_slave_0 added [ 265.579625][T10722] team0: Port device team_slave_1 added [ 265.642253][T10722] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 265.645190][T10722] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 265.663252][T10722] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 265.673723][T10722] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 265.676809][T10722] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 265.688777][T10722] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 265.813209][T10746] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4) [ 265.816078][T10746] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 265.821300][T10746] vhci_hcd vhci_hcd.0: Device attached [ 265.861597][T10722] hsr_slave_0: entered promiscuous mode [ 265.870989][T10722] hsr_slave_1: entered promiscuous mode [ 265.891849][T10722] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 265.894808][T10722] Cannot create hsr debugfs directory [ 266.006427][T10747] vhci_hcd: unknown pdu 1 [ 266.021467][ T1106] vhci_hcd: stop threads [ 266.026771][ T1106] vhci_hcd: release socket [ 266.031184][ T1106] vhci_hcd: disconnect device [ 266.940802][ T4768] Bluetooth: hci6: command tx timeout [ 266.961263][ T1101] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 267.033741][ T1101] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 267.128338][ T1101] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 267.174924][ T8403] usb 6-1: new high-speed USB device number 22 using dummy_hcd [ 267.343814][ T1101] bridge_slave_1: left allmulticast mode [ 267.346535][ T1101] bridge_slave_1: left promiscuous mode [ 267.349195][ T1101] bridge0: port 2(bridge_slave_1) entered disabled state [ 267.356897][ T1101] bridge_slave_0: left allmulticast mode [ 267.359348][ T1101] bridge_slave_0: left promiscuous mode [ 267.361617][ T1101] bridge0: port 1(bridge_slave_0) entered disabled state [ 267.380633][ T8403] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 267.388091][ T8403] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 267.398066][ T8403] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 267.405508][ T8403] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 267.414827][ T8403] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 267.418035][ T8403] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 267.422116][ T8403] usb 6-1: config 0 descriptor?? [ 267.424333][T10784] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 267.842828][ T1101] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 267.852110][ T1101] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 267.859525][ T1101] bond0 (unregistering): Released all slaves [ 267.866667][ T8403] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 267.870756][ T8403] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 267.874500][ T8403] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 267.877905][ T8403] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 267.882933][ T8403] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 267.889282][ T8403] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 267.895335][ T8403] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 267.898534][ T8403] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 267.902392][ T8403] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 267.904949][ T8403] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 267.907438][ T8403] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 267.910333][ T8403] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 267.915708][ T8403] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 267.918834][ T8403] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 267.921503][ T8403] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0 [ 267.926591][ T8403] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving [ 267.943000][ T8403] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 268.168391][ T8403] usb 6-1: USB disconnect, device number 22 [ 268.252450][ T1101] hsr_slave_0: left promiscuous mode [ 268.255328][ T1101] hsr_slave_1: left promiscuous mode [ 268.257812][ T1101] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 268.260336][ T1101] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 268.263249][ T1101] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 268.266568][ T1101] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 268.314289][ T1101] veth1_macvtap: left promiscuous mode [ 268.316339][ T1101] veth0_macvtap: left promiscuous mode [ 268.318746][ T1101] veth1_vlan: left promiscuous mode [ 268.321036][ T1101] veth0_vlan: left promiscuous mode [ 269.163218][ T4768] Bluetooth: hci6: command tx timeout [ 269.332251][ T1101] team0 (unregistering): Port device team_slave_1 removed [ 269.438021][ T1101] team0 (unregistering): Port device team_slave_0 removed [ 270.389748][T10722] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 270.400682][T10722] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 270.413401][T10722] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 270.421811][T10722] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 270.560272][T10722] 8021q: adding VLAN 0 to HW filter on device bond0 [ 270.575896][T10722] 8021q: adding VLAN 0 to HW filter on device team0 [ 270.590045][T10241] bridge0: port 1(bridge_slave_0) entered blocking state [ 270.593217][T10241] bridge0: port 1(bridge_slave_0) entered forwarding state [ 270.618617][T10241] bridge0: port 2(bridge_slave_1) entered blocking state [ 270.621512][T10241] bridge0: port 2(bridge_slave_1) entered forwarding state [ 270.654162][T10837] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4) [ 270.656969][T10837] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 270.660716][T10837] vhci_hcd vhci_hcd.0: Device attached [ 270.799171][ T5376] usb 6-1: new high-speed USB device number 23 using dummy_hcd [ 270.802663][T10838] vhci_hcd: unknown pdu 1 [ 270.805970][ T64] vhci_hcd: stop threads [ 270.809689][ T64] vhci_hcd: release socket [ 270.811780][ T64] vhci_hcd: disconnect device [ 270.927717][T10722] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 270.985608][T10722] veth0_vlan: entered promiscuous mode [ 271.002184][ T5376] usb 6-1: Using ep0 maxpacket: 16 [ 271.006369][T10722] veth1_vlan: entered promiscuous mode [ 271.012222][ T5376] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 271.017080][ T5376] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 271.031688][ T5376] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 271.035550][ T5376] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 271.049422][T10722] veth0_macvtap: entered promiscuous mode [ 271.054022][ T5376] usb 6-1: config 0 descriptor?? [ 271.059247][T10722] veth1_macvtap: entered promiscuous mode [ 271.082906][T10722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 271.089763][T10722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 271.094062][T10722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 271.098483][T10722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 271.102358][T10722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 271.106313][T10722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 271.110409][T10722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 271.115094][T10722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 271.119567][T10722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 271.124279][T10722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 271.128725][T10722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 271.133798][T10722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 271.137776][T10722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 271.141849][T10722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 271.145342][T10722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 271.149187][T10722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 271.157722][T10722] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 271.171161][T10722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 271.182674][T10722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 271.189371][T10722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 271.193924][T10722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 271.200046][T10722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 271.204673][T10722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 271.208986][T10722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 271.213645][T10722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 271.218115][T10722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 271.222726][T10722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 271.227292][T10722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 271.232213][T10722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 271.238426][T10722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 271.243049][T10722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 271.247019][T10722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 271.251091][T10722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 271.259538][T10722] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 271.295273][T10722] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 271.299449][T10722] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 271.304769][T10722] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 271.310313][T10722] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 271.398444][ T4768] Bluetooth: hci6: command tx timeout [ 271.484192][ T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 271.487522][ T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 271.505493][T10832] raw-gadget.0 gadget.1: fail, usb_ep_set_halt returned -11 [ 271.510380][ T5376] usbhid 6-1:0.0: can't add hid device: -71 [ 271.513119][ T5376] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 271.538778][ T5376] usb 6-1: USB disconnect, device number 23 [ 271.560221][ T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 271.564449][ T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 271.595935][T10849] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 271.600398][T10849] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 271.605086][T10849] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 271.608825][T10849] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 271.614278][T10849] vxlan0: entered promiscuous mode [ 271.616580][T10849] vxlan0: entered allmulticast mode [ 271.713969][ T4768] Bluetooth: hci7: SCO packet for unknown connection handle 0 [ 272.124491][ T5382] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 272.187369][T10864] netlink: 'syz.1.1901': attribute type 5 has an invalid length. [ 272.192239][T10864] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1901'. [ 272.356386][ T5382] usb 5-1: Using ep0 maxpacket: 32 [ 272.364732][ T5382] usb 5-1: New USB device found, idVendor=0424, idProduct=9907, bcdDevice= 3.2c [ 272.368100][ T5382] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 272.375793][ T5382] usb 5-1: Product: syz [ 272.377573][ T5382] usb 5-1: Manufacturer: syz [ 272.379544][ T5382] usb 5-1: SerialNumber: syz [ 272.392486][ T5382] usb 5-1: config 0 descriptor?? [ 272.396065][ T5382] smsc95xx v2.0.0 [ 272.397300][ T5382] smsc95xx 5-1:0.0 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 272.413548][ T5382] smsc95xx 5-1:0.0: probe with driver smsc95xx failed with error -22 [ 272.667049][ T5380] usb 5-1: USB disconnect, device number 16 [ 273.502971][T10877] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1907'. [ 273.610507][ T4768] Bluetooth: hci6: command tx timeout [ 273.852844][T10892] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 273.855903][T10892] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 273.859314][T10892] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 273.862535][T10892] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 273.867801][T10892] vxlan0: entered promiscuous mode [ 273.870130][T10892] vxlan0: entered allmulticast mode [ 274.064645][T10902] No control pipe specified [ 274.724793][ T4768] Bluetooth: hci7: unexpected event for opcode 0x202f [ 274.855581][T10933] pimreg: entered allmulticast mode [ 275.204168][ T1417] usb 7-1: new high-speed USB device number 15 using dummy_hcd [ 275.417318][ T1417] usb 7-1: Using ep0 maxpacket: 16 [ 275.422451][ T1417] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 275.427137][ T1417] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 275.433307][ T1417] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 275.436848][ T1417] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 275.443501][ T1417] usb 7-1: config 0 descriptor?? [ 275.950268][T10926] raw-gadget.0 gadget.2: fail, usb_ep_set_halt returned -11 [ 275.965695][ T1417] usbhid 7-1:0.0: can't add hid device: -71 [ 275.968364][ T1417] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 275.972809][ T1417] usb 7-1: USB disconnect, device number 15 [ 276.048008][ T30] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 276.264860][T10959] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 276.274398][ T30] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 276.279320][ T30] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 276.294395][ T30] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 276.301894][ T30] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 276.308493][ T30] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 276.312404][ T30] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 276.317715][ T30] usb 5-1: config 0 descriptor?? [ 276.320610][T10949] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 276.821835][ T30] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 276.825155][ T30] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 276.839205][ T30] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 276.842310][ T30] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 276.845484][ T30] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 276.848814][ T30] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 276.865222][ T30] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 276.868414][ T30] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 276.879421][ T30] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 276.882994][ T30] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 276.886143][ T30] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 276.891591][ T30] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 276.902450][ T30] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 276.907083][ T30] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 276.909912][ T30] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0 [ 276.915678][ T30] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving [ 276.924276][ T30] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 277.139964][ T5376] usb 5-1: USB disconnect, device number 17 [ 277.227840][T10986] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 277.255831][T10988] hfsplus: unable to find HFS+ superblock [ 277.310947][T10992] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1953'. [ 277.804603][ T5376] usb 6-1: new high-speed USB device number 24 using dummy_hcd [ 278.004336][ T5376] usb 6-1: Using ep0 maxpacket: 16 [ 278.013745][ T5376] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 278.018928][ T5376] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 278.023448][ T5376] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 278.027575][ T5376] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 278.031973][ T5376] usb 6-1: config 0 descriptor?? [ 278.489314][T10990] raw-gadget.1 gadget.1: fail, usb_ep_set_halt returned -11 [ 278.495748][ T5376] usbhid 6-1:0.0: can't add hid device: -71 [ 278.499219][ T5376] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 278.510144][ T5376] usb 6-1: USB disconnect, device number 24 [ 278.698817][ T39] audit: type=1326 audit(1722228552.132:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11010 comm="syz.2.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd7579 code=0x7ffc0000 [ 278.708383][ T39] audit: type=1326 audit(1722228552.132:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11010 comm="syz.2.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd7579 code=0x7ffc0000 [ 278.741106][ T39] audit: type=1326 audit(1722228552.141:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11010 comm="syz.2.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=42 compat=1 ip=0xf7fd7579 code=0x7ffc0000 [ 278.751810][ T39] audit: type=1326 audit(1722228552.141:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11010 comm="syz.2.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd7579 code=0x7ffc0000 [ 278.763534][ T39] audit: type=1326 audit(1722228552.141:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11010 comm="syz.2.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fd7579 code=0x7ffc0000 [ 278.772995][ T39] audit: type=1326 audit(1722228552.141:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11010 comm="syz.2.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fd7579 code=0x7ffc0000 [ 278.781458][ T39] audit: type=1326 audit(1722228552.141:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11010 comm="syz.2.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd7579 code=0x7ffc0000 [ 278.789382][ T39] audit: type=1326 audit(1722228552.141:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11010 comm="syz.2.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=305 compat=1 ip=0xf7fd7579 code=0x7ffc0000 [ 278.797543][ T39] audit: type=1326 audit(1722228552.141:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11010 comm="syz.2.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd7579 code=0x7ffc0000 [ 278.806387][ T39] audit: type=1326 audit(1722228552.141:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11010 comm="syz.2.1960" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd7579 code=0x7ffc0000 [ 278.808060][T11013] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 278.870356][T11017] hfsplus: unable to find HFS+ superblock [ 279.007166][T11025] input: syz0 as /devices/virtual/input/input25 [ 279.020389][ T1417] kernel read not supported for file /uinput (pid: 1417 comm: kworker/2:2) [ 279.081310][T11028] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1967'. [ 279.492839][T11046] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 279.569496][T11048] hfsplus: unable to find HFS+ superblock [ 279.757645][T11053] input: syz0 as /devices/virtual/input/input26 [ 279.777581][ T58] kernel read not supported for file /uinput (pid: 58 comm: kworker/3:1) [ 279.860007][T11055] netlink: 'syz.3.1977': attribute type 3 has an invalid length. [ 279.863164][T11055] netlink: 'syz.3.1977': attribute type 1 has an invalid length. [ 279.866481][T11055] netlink: 181400 bytes leftover after parsing attributes in process `syz.3.1977'. [ 280.200100][T11062] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1979'. [ 280.496295][T11077] hfsplus: unable to find HFS+ superblock [ 280.604354][T11082] netlink: 'syz.2.1986': attribute type 3 has an invalid length. [ 280.608017][T11082] netlink: 'syz.2.1986': attribute type 1 has an invalid length. [ 280.618647][T11082] netlink: 181400 bytes leftover after parsing attributes in process `syz.2.1986'. [ 281.028936][T11097] input: syz0 as /devices/virtual/input/input27 [ 281.048044][ T5382] kernel read not supported for file /uinput (pid: 5382 comm: kworker/2:4) [ 281.324732][T11107] netlink: 'syz.2.1996': attribute type 3 has an invalid length. [ 281.328081][T11107] netlink: 'syz.2.1996': attribute type 1 has an invalid length. [ 281.333310][T11107] netlink: 181400 bytes leftover after parsing attributes in process `syz.2.1996'. [ 281.944860][T11133] pimreg: entered allmulticast mode [ 282.788886][T11146] netlink: 'syz.0.2008': attribute type 3 has an invalid length. [ 282.802194][T11146] netlink: 'syz.0.2008': attribute type 1 has an invalid length. [ 282.806490][T11146] netlink: 181400 bytes leftover after parsing attributes in process `syz.0.2008'. [ 282.963491][T11156] program syz.0.2013 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 283.269000][T11181] netlink: 'syz.0.2022': attribute type 2 has an invalid length. [ 283.277417][T11181] netlink: 'syz.0.2022': attribute type 1 has an invalid length. [ 283.572190][T11188] netlink: 220 bytes leftover after parsing attributes in process `syz.3.2017'. [ 283.585670][T11188] netlink: 220 bytes leftover after parsing attributes in process `syz.3.2017'. [ 283.599495][T11191] pimreg: entered allmulticast mode [ 284.348332][T11210] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 284.752887][ T5336] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 284.759428][ T5336] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 284.769804][ T5336] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 284.777347][ T5336] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 284.781559][ T5336] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 284.784383][ T5336] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 284.965974][T11222] chnl_net:caif_netlink_parms(): no params data found [ 285.144985][T11222] bridge0: port 1(bridge_slave_0) entered blocking state [ 285.145073][T11222] bridge0: port 1(bridge_slave_0) entered disabled state [ 285.145161][T11222] bridge_slave_0: entered allmulticast mode [ 285.146427][T11222] bridge_slave_0: entered promiscuous mode [ 285.148440][T11222] bridge0: port 2(bridge_slave_1) entered blocking state [ 285.148495][T11222] bridge0: port 2(bridge_slave_1) entered disabled state [ 285.148571][T11222] bridge_slave_1: entered allmulticast mode [ 285.149594][T11222] bridge_slave_1: entered promiscuous mode [ 285.247337][T11222] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 285.250133][T11222] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 285.379017][T11222] team0: Port device team_slave_0 added [ 285.382261][T11222] team0: Port device team_slave_1 added [ 285.399331][T11236] validate_nla: 1 callbacks suppressed [ 285.399344][T11236] netlink: 'syz.2.2037': attribute type 2 has an invalid length. [ 285.399391][T11236] netlink: 'syz.2.2037': attribute type 1 has an invalid length. [ 285.399476][T11236] netlink: 'syz.2.2037': attribute type 1 has an invalid length. [ 285.456111][T11222] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 285.456137][T11222] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 285.456157][T11222] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 285.460828][T11222] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 285.460838][T11222] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 285.460850][T11222] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 285.571144][T11222] hsr_slave_0: entered promiscuous mode [ 285.572190][T11222] hsr_slave_1: entered promiscuous mode [ 285.572753][T11222] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 285.572825][T11222] Cannot create hsr debugfs directory [ 285.909312][T11253] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 286.057386][T11222] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 286.227980][ T4768] Bluetooth: unknown link type 32 [ 286.230342][ T4768] Bluetooth: hci6: connection err: -111 [ 286.231421][T11222] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 286.334066][T11264] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2048'. [ 286.542955][T11222] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 286.671965][T11222] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 286.779017][T11279] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 286.814756][T11273] netlink: 220 bytes leftover after parsing attributes in process `syz.0.2050'. [ 286.817900][T11273] netlink: 220 bytes leftover after parsing attributes in process `syz.0.2050'. [ 286.839205][ T39] kauditd_printk_skb: 324 callbacks suppressed [ 286.839221][ T39] audit: type=1326 audit(1722228559.746:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11280 comm="syz.1.2055" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 286.860704][ T39] audit: type=1326 audit(1722228559.746:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11280 comm="syz.1.2055" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 286.869579][ T39] audit: type=1326 audit(1722228559.746:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11280 comm="syz.1.2055" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 286.878841][ T39] audit: type=1326 audit(1722228559.746:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11280 comm="syz.1.2055" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 286.887333][ T39] audit: type=1326 audit(1722228559.755:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11280 comm="syz.1.2055" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 286.894700][ T39] audit: type=1326 audit(1722228559.755:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11280 comm="syz.1.2055" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 286.902816][ T39] audit: type=1326 audit(1722228559.755:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11280 comm="syz.1.2055" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 286.912108][ T39] audit: type=1326 audit(1722228559.755:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11280 comm="syz.1.2055" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 286.921976][ T39] audit: type=1326 audit(1722228559.755:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11280 comm="syz.1.2055" exe="/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 286.931832][ T39] audit: type=1326 audit(1722228559.774:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11280 comm="syz.1.2055" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x7ffc0000 [ 286.953063][ T4768] Bluetooth: hci5: command tx timeout [ 286.957204][T11222] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 286.959738][T11281] netlink: 596 bytes leftover after parsing attributes in process `syz.1.2055'. [ 286.978202][T11222] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 286.997155][T11222] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 287.009359][T11222] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 287.168927][T11222] 8021q: adding VLAN 0 to HW filter on device bond0 [ 287.197028][T11222] 8021q: adding VLAN 0 to HW filter on device team0 [ 287.240142][T11222] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 287.244697][T11222] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 287.253533][ T5380] bridge0: port 1(bridge_slave_0) entered blocking state [ 287.256604][ T5380] bridge0: port 1(bridge_slave_0) entered forwarding state [ 287.262113][ T5380] bridge0: port 2(bridge_slave_1) entered blocking state [ 287.265810][ T5380] bridge0: port 2(bridge_slave_1) entered forwarding state [ 287.555802][T11222] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 287.612373][T11222] veth0_vlan: entered promiscuous mode [ 287.632437][T11222] veth1_vlan: entered promiscuous mode [ 287.663392][T11222] veth0_macvtap: entered promiscuous mode [ 287.674708][T11222] veth1_macvtap: entered promiscuous mode [ 287.692850][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 287.699364][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.709200][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 287.714164][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.718460][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 287.724744][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.733007][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 287.749292][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.755226][T11303] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 287.755494][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 287.767399][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.771667][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 287.776268][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.781146][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 287.785635][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.789660][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 287.793556][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.797810][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 287.802119][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.811177][T11222] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 287.821213][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 287.825898][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.831672][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 287.837867][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.843423][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 287.847896][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.852768][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 287.857360][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.863101][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 287.867623][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.873654][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 287.878177][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.884303][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 287.888865][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.893599][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 287.898125][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.902378][T11222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 287.907556][T11222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.913744][T11222] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 287.924890][T11222] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 287.929373][T11222] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 287.933243][T11222] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 287.937635][T11222] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 288.019894][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 288.023524][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 288.071991][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 288.076181][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 288.087211][ T1417] usb 6-1: new high-speed USB device number 25 using dummy_hcd [ 288.302268][ T1417] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 288.302298][ T1417] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 288.302340][ T1417] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 288.302361][ T1417] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 288.309047][ T1417] usb 6-1: config 0 descriptor?? [ 288.686774][T11327] netlink: 'syz.3.2072': attribute type 2 has an invalid length. [ 288.686815][T11327] netlink: 'syz.3.2072': attribute type 1 has an invalid length. [ 288.686841][T11327] netlink: 'syz.3.2072': attribute type 1 has an invalid length. [ 288.694443][T11325] can0: slcan on ptm1. [ 288.745415][ T1417] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 288.745461][ T1417] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0 [ 288.746027][ T1417] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving [ 288.753001][ T1417] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 288.834657][T11324] can0 (unregistered): slcan off ptm1. [ 288.896409][T11334] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2075'. [ 288.996775][ T9] libceph: connect (1)[c::]:6789 error -101 [ 288.999322][ T9] libceph: mon0 (1)[c::]:6789 connect error [ 289.052003][ T8403] usb 6-1: USB disconnect, device number 25 [ 289.176258][ T4768] Bluetooth: hci5: command tx timeout [ 289.276392][ T4768] Bluetooth: unknown link type 32 [ 289.278838][ T4768] Bluetooth: hci5: connection err: -111 [ 289.285548][ T9] libceph: connect (1)[c::]:6789 error -101 [ 289.287883][ T9] libceph: mon0 (1)[c::]:6789 connect error [ 289.350519][T11354] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2080'. [ 289.818312][T11337] ceph: No mds server is up or the cluster is laggy [ 289.828747][ T5376] libceph: connect (1)[c::]:6789 error -101 [ 289.830983][ T5376] libceph: mon0 (1)[c::]:6789 connect error [ 290.929347][ T8403] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 291.135894][ T8403] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 291.135973][ T8403] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 291.136010][ T8403] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 291.136029][ T8403] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 291.143421][ T8403] usb 5-1: config 0 descriptor?? [ 291.399768][ T4768] Bluetooth: hci5: command tx timeout [ 291.687566][ T8403] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 291.695469][ T8403] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0 [ 291.702294][ T8403] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving [ 291.711840][ T8403] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 291.993928][ T5382] usb 5-1: USB disconnect, device number 18 [ 292.946840][T11408] input: syz0 as /devices/virtual/input/input30 [ 293.623480][ T4768] Bluetooth: hci5: command tx timeout [ 294.025612][T11428] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2106'. [ 294.030025][T11431] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 294.479465][T11446] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2114'. [ 294.523991][ T982] IPVS: starting estimator thread 0... [ 294.538642][T11446] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 294.628435][T11447] IPVS: using max 37 ests per chain, 88800 per kthread [ 294.845925][T11453] input: syz0 as /devices/virtual/input/input31 [ 295.107545][T11446] syz.0.2114 (11446) used greatest stack depth: 20000 bytes left [ 296.003831][T11466] netlink: 220 bytes leftover after parsing attributes in process `syz.0.2117'. [ 296.043432][T11466] netlink: 220 bytes leftover after parsing attributes in process `syz.0.2117'. [ 296.288733][T11469] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 296.688024][ T4768] Bluetooth: unknown link type 32 [ 296.690236][ T4768] Bluetooth: hci0: connection err: -111 [ 296.777816][T11485] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2122'. [ 297.325327][T11495] input: syz0 as /devices/virtual/input/input32 [ 297.942487][ T56] usb 7-1: new high-speed USB device number 16 using dummy_hcd [ 298.102510][T11505] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2131'. [ 298.125832][T11505] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 298.148482][ T56] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 298.153174][ T56] usb 7-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00 [ 298.160363][ T56] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 298.167215][ T56] usb 7-1: config 0 descriptor?? [ 298.172819][ T56] usbhid 7-1:0.0: couldn't find an input interrupt endpoint [ 298.523713][ T982] usb 7-1: USB disconnect, device number 16 [ 299.267024][ T39] kauditd_printk_skb: 92 callbacks suppressed [ 299.267041][ T39] audit: type=1326 audit(1722228571.367:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11519 comm="syz.2.2136" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd7579 code=0x0 [ 300.582970][ T58] usb 7-1: new high-speed USB device number 17 using dummy_hcd [ 300.788001][ T58] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 300.793399][ T58] usb 7-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00 [ 300.797348][ T58] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 300.801365][ T58] usb 7-1: config 0 descriptor?? [ 300.806923][ T58] usbhid 7-1:0.0: couldn't find an input interrupt endpoint [ 301.008806][T11565] input: syz0 as /devices/virtual/input/input33 [ 301.105410][ T58] usb 7-1: USB disconnect, device number 17 [ 303.844460][T11601] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2165'. [ 303.848623][T11601] netlink: 'syz.2.2165': attribute type 6 has an invalid length. [ 304.219165][T11626] team_slave_0: entered promiscuous mode [ 304.222725][T11626] team_slave_1: entered promiscuous mode [ 304.322101][T11625] team_slave_0: left promiscuous mode [ 304.324617][T11625] team_slave_1: left promiscuous mode [ 304.606470][ T39] audit: type=1326 audit(1722228576.365:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11649 comm="syz.1.2187" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x0 [ 304.817165][T11662] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 304.821460][T11662] netlink: 'syz.2.2192': attribute type 8 has an invalid length. [ 305.167470][T11685] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 305.299738][T11681] overlayfs: workdir and upperdir must be separate subtrees [ 305.347806][T11689] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 305.366084][T11689] netlink: 'syz.2.2203': attribute type 8 has an invalid length. [ 305.532963][T11694] openvswitch: netlink: EtherType 200 is less than min 600 [ 305.643731][T11694] ip6gretap0 speed is unknown, defaulting to 1000 [ 305.647289][T11694] ip6gretap0 speed is unknown, defaulting to 1000 [ 305.663962][T11694] ip6gretap0 speed is unknown, defaulting to 1000 [ 305.691516][T11694] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 305.733969][T11694] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 305.802333][T11694] ip6gretap0 speed is unknown, defaulting to 1000 [ 305.804805][T11694] ip6gretap0 speed is unknown, defaulting to 1000 [ 305.814003][T11694] ip6gretap0 speed is unknown, defaulting to 1000 [ 305.817656][T11694] ip6gretap0 speed is unknown, defaulting to 1000 [ 305.821799][T11694] ip6gretap0 speed is unknown, defaulting to 1000 [ 305.823578][T11694] ip6gretap0 speed is unknown, defaulting to 1000 [ 305.825490][T11694] ip6gretap0 speed is unknown, defaulting to 1000 [ 305.840539][T11694] ip6gretap0 speed is unknown, defaulting to 1000 [ 305.851375][T11694] ip6gretap0 speed is unknown, defaulting to 1000 [ 305.855638][T11694] ip6gretap0 speed is unknown, defaulting to 1000 [ 306.071536][T11707] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 306.199330][ T39] audit: type=1326 audit(1722228577.862:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11708 comm="syz.2.2211" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd7579 code=0x0 [ 306.200686][T11713] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 306.203226][T11713] netlink: 'syz.1.2213': attribute type 8 has an invalid length. [ 306.333291][ T39] audit: type=1326 audit(1722228577.984:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11715 comm="syz.1.2214" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf746e579 code=0x0 [ 306.438299][T11725] openvswitch: netlink: EtherType 200 is less than min 600 [ 306.475108][T11725] siw: device registration error -23 [ 306.660947][T11735] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 306.668074][T11735] netlink: 'syz.3.2223': attribute type 8 has an invalid length. [ 306.725262][T11738] tipc: Started in network mode [ 306.727145][T11738] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 306.731936][T11738] tipc: New replicast peer: fe80:0000:0000:ffff:ffe2:0000:0000:00bb [ 306.735442][T11738] tipc: Enabled bearer , priority 10 [ 307.311972][T11752] openvswitch: netlink: EtherType 200 is less than min 600 [ 307.532721][T11754] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2230'. [ 307.565122][T11756] syz.2.2231: attempt to access beyond end of device [ 307.565122][T11756] loop2: rw=0, sector=64, nr_sectors = 2 limit=0 [ 307.571425][T11756] isofs_fill_super: bread failed, dev=loop2, iso_blknum=16, block=32 [ 307.799152][ T4792] tipc: Node number set to 1 [ 307.970873][ T39] audit: type=1326 audit(1722228579.508:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11766 comm="syz.0.2237" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x0 [ 308.748273][T11782] openvswitch: netlink: EtherType 200 is less than min 600 [ 308.770121][T11782] siw: device registration error -23 [ 308.773004][T11783] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2238'. [ 309.662268][T11791] syz.2.2242: attempt to access beyond end of device [ 309.662268][T11791] loop2: rw=0, sector=64, nr_sectors = 2 limit=0 [ 309.668467][T11791] isofs_fill_super: bread failed, dev=loop2, iso_blknum=16, block=32 [ 309.763528][T11796] tipc: Enabling of bearer rejected, already enabled [ 310.065593][ T8403] usb 6-1: new high-speed USB device number 26 using dummy_hcd [ 310.270815][ T8403] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 310.274576][ T8403] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 310.280351][ T8403] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 310.284317][ T8403] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 310.289801][ T8403] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 310.294213][ T8403] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 310.297900][ T8403] usb 6-1: Product: syz [ 310.299677][ T8403] usb 6-1: Manufacturer: syz [ 310.314043][ T8403] cdc_wdm 6-1:1.0: skipping garbage [ 310.316360][ T8403] cdc_wdm 6-1:1.0: skipping garbage [ 310.319858][ T8403] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device [ 310.323455][ T8403] cdc_wdm 6-1:1.0: Unknown control protocol [ 310.609595][ T832] usb 6-1: USB disconnect, device number 26 [ 310.704517][T11829] syz.2.2253: attempt to access beyond end of device [ 310.704517][T11829] loop2: rw=0, sector=64, nr_sectors = 2 limit=0 [ 310.712548][T11829] isofs_fill_super: bread failed, dev=loop2, iso_blknum=16, block=32 [ 312.589424][T11840] ip6gretap0 speed is unknown, defaulting to 1000 [ 312.974284][ T39] audit: type=1326 audit(1722228584.204:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11846 comm="syz.0.2258" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x0 [ 313.334987][T11869] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2266'. [ 313.372429][T11869] ip6gretap0 speed is unknown, defaulting to 1000 [ 313.481804][T11869] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2266'. [ 314.032904][T11879] ip6gretap0 speed is unknown, defaulting to 1000 [ 314.071989][T11880] fuse: Bad value for 'group_id' [ 314.074279][T11880] fuse: Bad value for 'group_id' [ 315.009434][T11887] overlayfs: workdir and upperdir must be separate subtrees [ 316.462253][ T39] audit: type=1326 audit(1722228587.459:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11913 comm="syz.0.2279" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x0 [ 317.213928][T11936] fuse: Bad value for 'group_id' [ 317.215909][T11936] fuse: Bad value for 'group_id' [ 318.083511][ T5336] Bluetooth: hci5: command 0x0405 tx timeout [ 318.998566][T11959] : renamed from vlan0 (while UP) [ 319.037744][T11959] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2295'. [ 320.319132][ T5336] Bluetooth: hci5: command 0x0405 tx timeout [ 320.369467][T12006] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2307'. [ 320.839187][T12016] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2314'. [ 320.847982][ T5336] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 320.860575][ T5336] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 320.865265][ T5336] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 320.869603][ T5336] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 320.875094][ T5336] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 320.898116][ T5336] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 320.932355][T12020] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2316'. [ 320.943017][T12020] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2316'. [ 320.946429][T12020] netlink: 'syz.1.2316': attribute type 3 has an invalid length. [ 320.955873][T12015] ip6gretap0 speed is unknown, defaulting to 1000 [ 321.160601][T12015] chnl_net:caif_netlink_parms(): no params data found [ 321.833116][T12015] bridge0: port 1(bridge_slave_0) entered blocking state [ 321.836265][T12015] bridge0: port 1(bridge_slave_0) entered disabled state [ 321.839432][T12015] bridge_slave_0: entered allmulticast mode [ 321.843483][T12015] bridge_slave_0: entered promiscuous mode [ 321.852884][T12015] bridge0: port 2(bridge_slave_1) entered blocking state [ 321.856088][T12015] bridge0: port 2(bridge_slave_1) entered disabled state [ 321.862471][T12015] bridge_slave_1: entered allmulticast mode [ 321.868504][T12015] bridge_slave_1: entered promiscuous mode [ 321.956240][T12015] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 321.971357][T12015] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 322.065140][T12015] team0: Port device team_slave_0 added [ 322.080742][T12015] team0: Port device team_slave_1 added [ 322.173118][T12015] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 322.175593][T12015] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 322.199381][T12015] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 322.257534][T12015] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 322.260443][T12015] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 322.270541][T12015] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 322.418179][T12015] hsr_slave_0: entered promiscuous mode [ 322.436791][T12015] hsr_slave_1: entered promiscuous mode [ 322.441477][T12015] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 322.445022][T12015] Cannot create hsr debugfs directory [ 322.803289][T12015] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 322.869398][T12065] ip6gretap0 speed is unknown, defaulting to 1000 [ 322.911671][T12015] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 322.992923][T12073] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2326'. [ 323.089462][T12015] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 323.129829][ T4768] Bluetooth: hci8: command tx timeout [ 323.190398][T12072] fuse: Bad value for 'group_id' [ 323.192684][T12072] fuse: Bad value for 'group_id' [ 323.210927][T12015] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 323.598311][T12015] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 323.617668][T12015] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 323.639860][T12015] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 323.658577][T12015] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 323.949116][T12015] 8021q: adding VLAN 0 to HW filter on device bond0 [ 323.979618][T12015] 8021q: adding VLAN 0 to HW filter on device team0 [ 323.987963][ T1417] bridge0: port 1(bridge_slave_0) entered blocking state [ 323.990629][ T1417] bridge0: port 1(bridge_slave_0) entered forwarding state [ 324.003819][ T1417] bridge0: port 2(bridge_slave_1) entered blocking state [ 324.006586][ T1417] bridge0: port 2(bridge_slave_1) entered forwarding state [ 324.080310][T12015] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 324.295236][T12015] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 324.373342][T12015] veth0_vlan: entered promiscuous mode [ 324.383531][T12015] veth1_vlan: entered promiscuous mode [ 324.428815][T12015] veth0_macvtap: entered promiscuous mode [ 324.438655][T12015] veth1_macvtap: entered promiscuous mode [ 324.457104][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 324.460864][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.466060][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 324.469995][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.474233][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 324.480837][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.488572][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 324.493236][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.498109][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 324.504051][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.508348][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 324.529897][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.534600][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 324.557448][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.562296][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 324.566655][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.583368][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 324.587423][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.590989][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 324.605202][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.611507][T12015] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 324.629035][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 324.633139][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.656719][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 324.669322][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.673448][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 324.700250][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.704458][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 324.708270][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.713002][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 324.722454][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.726594][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 324.732267][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.742108][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 324.746929][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.751108][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 324.765090][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.769084][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 324.775983][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.779670][T12015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 324.786996][T12015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 324.805854][T12015] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 324.818192][T12015] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 324.827461][T12015] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 324.830906][T12015] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 324.834541][T12015] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 325.021677][ T1101] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 325.032414][ T1101] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 325.084220][ T1164] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 325.087614][ T1164] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 325.354711][ T4768] Bluetooth: hci8: command tx timeout [ 325.362559][ T4768] Bluetooth: min 2 > max 0 [ 325.742547][T12113] libceph: resolve '. [ 325.742547][T12113] #)|.fǝa2sow?'%ЏKAqfCzeSb3L)HyoǤYMhE$ [ 325.742547][T12113] ' (ret=-3): failed [ 325.926030][T12113] autofs: Bad value for 'fd' [ 325.975483][T12118] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2344'. [ 326.488464][T12128] Falling back ldisc for ptm0. [ 326.760796][T12129] overlayfs: workdir and upperdir must be separate subtrees [ 327.576803][ T4768] Bluetooth: hci7: command 0x0405 tx timeout [ 327.578764][ T4768] Bluetooth: hci8: command tx timeout [ 328.606023][T12156] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2357'. [ 329.176972][T12164] trusted_key: encrypted_key: insufficient parameters specified [ 329.198901][T12164] netlink: 'syz.3.2359': attribute type 21 has an invalid length. [ 329.376425][T12173] Falling back ldisc for ptm0. [ 329.614030][T12180] libceph: resolve '. [ 329.614030][T12180] #)|.fǝa2sow?'%ЏKAqfCzeSb3L)HyoǤYMhE$ [ 329.614030][T12180] ' (ret=-3): failed [ 329.811260][ T5336] Bluetooth: hci8: command tx timeout [ 330.007599][T12180] autofs: Bad value for 'fd' [ 330.208347][T12181] fuse: Bad value for 'group_id' [ 330.208398][T12181] fuse: Bad value for 'group_id' [ 330.494013][ T1376] ieee802154 phy0 wpan0: encryption failed: -22 [ 330.496235][ T1376] ieee802154 phy1 wpan1: encryption failed: -22 [ 331.196403][T12203] Falling back ldisc for ptm0. [ 331.726570][T12213] trusted_key: encrypted_key: insufficient parameters specified [ 331.740787][T12213] netlink: 'syz.2.2375': attribute type 21 has an invalid length. [ 332.708237][ T4768] Bluetooth: hci7: command 0x0405 tx timeout [ 333.414864][T12256] netlink: 'syz.1.2392': attribute type 3 has an invalid length. [ 333.418563][T12256] netlink: 666 bytes leftover after parsing attributes in process `syz.1.2392'. [ 333.499567][T12257] libceph: resolve '. [ 333.499567][T12257] #)|.fǝa2sow?'%ЏKAqfCzeSb3L)HyoǤYMhE$ [ 333.499567][T12257] ' (ret=-3): failed [ 333.928813][T12257] autofs: Bad value for 'fd' [ 335.133536][T12265] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2395'. [ 337.594251][ T4768] Bluetooth: hci8: command 0x0405 tx timeout [ 337.615240][ T832] usb 7-1: new high-speed USB device number 18 using dummy_hcd [ 337.708473][T12345] overlayfs: workdir and upperdir must be separate subtrees [ 337.832514][ T832] usb 7-1: Using ep0 maxpacket: 16 [ 337.836944][ T832] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 7 [ 337.850319][ T832] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 337.853651][ T832] usb 7-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00 [ 337.857219][ T832] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 337.862096][ T832] usb 7-1: config 0 descriptor?? [ 338.033715][ T39] audit: type=1326 audit(1722228607.636:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12348 comm="syz.3.2429" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f96579 code=0x0 [ 338.149447][T12336] netlink: 264 bytes leftover after parsing attributes in process `syz.2.2424'. [ 338.463425][T12362] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2424'. [ 338.516865][T12336] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 338.522560][T12336] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 338.547318][ T832] hid (null): unknown global tag 0xe [ 338.556706][ T832] hid (null): bogus close delimiter [ 338.559010][ T832] hid (null): unknown global tag 0xd [ 338.569006][ T832] hid-generic 0003:0158:0100.000A: unknown main item tag 0x1 [ 338.571993][ T832] hid-generic 0003:0158:0100.000A: unexpected long global item [ 338.586644][ T832] hid-generic 0003:0158:0100.000A: probe with driver hid-generic failed with error -22 [ 338.791450][ T5382] usb 7-1: USB disconnect, device number 18 [ 339.807115][ T4768] Bluetooth: hci8: command 0x0405 tx timeout [ 340.401607][T12396] overlayfs: workdir and upperdir must be separate subtrees [ 340.748882][T12367] ------------[ cut here ]------------ [ 340.752499][T12367] WARNING: CPU: 1 PID: 12367 at mm/page_table_check.c:207 __page_table_check_ptes_set+0x2fa/0x3e0 [ 340.757134][T12367] Modules linked in: [ 340.759137][T12367] CPU: 1 UID: 0 PID: 12367 Comm: syz.0.2434 Not tainted 6.11.0-rc1-syzkaller #0 [ 340.764300][T12367] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 340.769002][T12367] RIP: 0010:__page_table_check_ptes_set+0x2fa/0x3e0 [ 340.771957][T12367] Code: e9 91 fe ff ff e8 46 48 97 ff 48 8b 2c 24 31 ff 83 e5 02 48 89 ee e8 65 43 97 ff 48 85 ed 0f 84 85 00 00 00 e8 27 48 97 ff 90 <0f> 0b 90 e9 e9 fd ff ff e8 19 48 97 ff eb 69 cc cc cc e8 0f 48 97 [ 340.778850][T12367] RSP: 0018:ffffc9000418fa28 EFLAGS: 00010293 [ 340.781395][T12367] RAX: 0000000000000000 RBX: ffff888066557000 RCX: ffffffff81f3ddfb [ 340.784795][T12367] RDX: ffff88801dcda440 RSI: ffffffff81f3de09 RDI: 0000000000000007 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 340.787547][T12367] RBP: 0000000000000002 R08: 0000000000000007 R09: 0000000000000000 [ 340.790097][T12367] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000001 [ 340.793433][T12367] R13: ffff88801d92a600 R14: 0000000000000001 R15: 1ffff92000831f47 [ 340.796831][T12367] FS: 0000000000000000(0000) GS:ffff88802c100000(0063) knlGS:0000000057d9d440 [ 340.800756][T12367] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 340.803769][T12367] CR2: 0000000020028000 CR3: 0000000062c14000 CR4: 0000000000352ef0 [ 340.807316][T12367] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 340.810832][T12367] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 340.814501][T12367] Call Trace: [ 340.816016][T12367] [ 340.817469][T12367] ? show_regs+0x8c/0xa0 [ 340.819364][T12367] ? __warn+0xe5/0x3c0 [ 340.822156][T12367] ? __page_table_check_ptes_set+0x2fa/0x3e0 [ 340.825475][T12367] ? report_bug+0x3c0/0x580 [ 340.827660][T12367] ? handle_bug+0x3d/0x70 [ 340.829672][T12367] ? exc_invalid_op+0x17/0x50 [ 340.831875][T12367] ? asm_exc_invalid_op+0x1a/0x20 [ 340.834332][T12367] ? __page_table_check_ptes_set+0x2eb/0x3e0 [ 340.837007][T12367] ? __page_table_check_ptes_set+0x2f9/0x3e0 [ 340.839768][T12367] ? __page_table_check_ptes_set+0x2fa/0x3e0 [ 340.842438][T12367] ? __page_table_check_ptes_set+0x2f9/0x3e0 [ 340.845136][T12367] ? find_held_lock+0x2d/0x110 [ 340.847299][T12367] ? __pfx___page_table_check_ptes_set+0x10/0x10 [ 340.850031][T12367] ? rcu_read_unlock+0x17/0x60 [ 340.852007][T12367] set_ptes.constprop.0+0x193/0x1d0 [ 340.854089][T12367] ? __pfx_set_ptes.constprop.0+0x10/0x10 [ 340.856447][T12367] do_swap_page+0x1214/0x3dc0 [ 340.858337][T12367] ? __pfx_do_swap_page+0x10/0x10 [ 340.860305][T12367] ? pte_offset_map_nolock+0xfe/0x1c0 [ 340.862646][T12367] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 340.865279][T12367] __handle_mm_fault+0x146b/0x5360 [ 340.867496][T12367] ? __pfx_mt_find+0x10/0x10 [ 340.869542][T12367] ? rwsem_read_trylock+0x6d/0x250 [ 340.871849][T12367] ? __pfx___handle_mm_fault+0x10/0x10 [ 340.874273][T12367] ? find_vma+0xc0/0x140 [ 340.876217][T12367] ? __pfx_find_vma+0x10/0x10 [ 340.878235][T12367] handle_mm_fault+0x44e/0x7b0 [ 340.880282][T12367] ? __pkru_allows_pkey+0x52/0xb0 [ 340.882464][T12367] do_user_addr_fault+0x7a3/0x13f0 [ 340.884671][T12367] exc_page_fault+0x5c/0xc0 [ 340.886664][T12367] asm_exc_page_fault+0x26/0x30 [ 340.888769][T12367] RIP: 0023:0xf729f7f1 [ 340.890557][T12367] Code: 00 00 74 02 a4 49 50 89 c8 c1 e9 02 83 e0 03 f3 a5 89 c1 f3 a4 58 89 c7 89 d6 8b 44 24 04 c3 d1 e9 73 01 a4 d1 e9 73 02 66 a5 a5 eb e8 66 90 66 90 66 90 66 90 66 90 90 8b 44 24 0c 39 44 24 [ 340.898889][T12367] RSP: 002b:00000000ffbb3c9c EFLAGS: 00010202 [ 340.901570][T12367] RAX: 0000000000000000 RBX: 00000000f742bff4 RCX: 0000000000000002 [ 340.905002][T12367] RDX: 0000000000000008 RSI: 00000000f6d603ae RDI: 00000000200002c0 [ 340.908659][T12367] RBP: 00000000ffbb3f28 R08: 0000000000000000 R09: 0000000000000000 [ 340.912108][T12367] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 340.915574][T12367] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 340.919109][T12367] [ 340.920692][T12367] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 340.923788][T12367] CPU: 1 UID: 0 PID: 12367 Comm: syz.0.2434 Not tainted 6.11.0-rc1-syzkaller #0 [ 340.927628][T12367] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 340.932224][T12367] Call Trace: [ 340.933659][T12367] [ 340.934956][T12367] dump_stack_lvl+0x3d/0x1f0 [ 340.936985][T12367] panic+0x6f5/0x7a0 [ 340.938628][T12367] ? __pfx_panic+0x10/0x10 [ 340.940533][T12367] ? show_trace_log_lvl+0x363/0x500 [ 340.942905][T12367] ? check_panic_on_warn+0x1f/0xb0 [ 340.945086][T12367] ? __page_table_check_ptes_set+0x2fa/0x3e0 [ 340.947663][T12367] check_panic_on_warn+0xab/0xb0 [ 340.950506][T12367] __warn+0xf1/0x3c0 [ 340.952232][T12367] ? __page_table_check_ptes_set+0x2fa/0x3e0 [ 340.954857][T12367] report_bug+0x3c0/0x580 [ 340.956727][T12367] handle_bug+0x3d/0x70 [ 340.958557][T12367] exc_invalid_op+0x17/0x50 [ 340.960559][T12367] asm_exc_invalid_op+0x1a/0x20 [ 340.962668][T12367] RIP: 0010:__page_table_check_ptes_set+0x2fa/0x3e0 [ 340.965271][T12367] Code: e9 91 fe ff ff e8 46 48 97 ff 48 8b 2c 24 31 ff 83 e5 02 48 89 ee e8 65 43 97 ff 48 85 ed 0f 84 85 00 00 00 e8 27 48 97 ff 90 <0f> 0b 90 e9 e9 fd ff ff e8 19 48 97 ff eb 69 cc cc cc e8 0f 48 97 [ 340.973218][T12367] RSP: 0018:ffffc9000418fa28 EFLAGS: 00010293 [ 340.975740][T12367] RAX: 0000000000000000 RBX: ffff888066557000 RCX: ffffffff81f3ddfb [ 340.979137][T12367] RDX: ffff88801dcda440 RSI: ffffffff81f3de09 RDI: 0000000000000007 [ 340.982420][T12367] RBP: 0000000000000002 R08: 0000000000000007 R09: 0000000000000000 [ 340.985776][T12367] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000001 [ 340.989050][T12367] R13: ffff88801d92a600 R14: 0000000000000001 R15: 1ffff92000831f47 [ 340.992138][T12367] ? __page_table_check_ptes_set+0x2eb/0x3e0 [ 340.994567][T12367] ? __page_table_check_ptes_set+0x2f9/0x3e0 [ 340.997191][T12367] ? __page_table_check_ptes_set+0x2f9/0x3e0 [ 340.999985][T12367] ? find_held_lock+0x2d/0x110 [ 341.002155][T12367] ? __pfx___page_table_check_ptes_set+0x10/0x10 [ 341.004952][T12367] ? rcu_read_unlock+0x17/0x60 [ 341.007123][T12367] set_ptes.constprop.0+0x193/0x1d0 [ 341.009379][T12367] ? __pfx_set_ptes.constprop.0+0x10/0x10 [ 341.011658][T12367] do_swap_page+0x1214/0x3dc0 [ 341.013436][T12367] ? __pfx_do_swap_page+0x10/0x10 [ 341.015584][T12367] ? pte_offset_map_nolock+0xfe/0x1c0 [ 341.017870][T12367] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 341.020354][T12367] __handle_mm_fault+0x146b/0x5360 [ 341.022595][T12367] ? __pfx_mt_find+0x10/0x10 [ 341.024657][T12367] ? rwsem_read_trylock+0x6d/0x250 [ 341.026869][T12367] ? __pfx___handle_mm_fault+0x10/0x10 [ 341.029222][T12367] ? find_vma+0xc0/0x140 [ 341.031072][T12367] ? __pfx_find_vma+0x10/0x10 [ 341.033160][T12367] handle_mm_fault+0x44e/0x7b0 [ 341.035313][T12367] ? __pkru_allows_pkey+0x52/0xb0 [ 341.037577][T12367] do_user_addr_fault+0x7a3/0x13f0 [ 341.039815][T12367] exc_page_fault+0x5c/0xc0 [ 341.041888][T12367] asm_exc_page_fault+0x26/0x30 [ 341.044094][T12367] RIP: 0023:0xf729f7f1 [ 341.045919][T12367] Code: 00 00 74 02 a4 49 50 89 c8 c1 e9 02 83 e0 03 f3 a5 89 c1 f3 a4 58 89 c7 89 d6 8b 44 24 04 c3 d1 e9 73 01 a4 d1 e9 73 02 66 a5 a5 eb e8 66 90 66 90 66 90 66 90 66 90 90 8b 44 24 0c 39 44 24 [ 341.054093][T12367] RSP: 002b:00000000ffbb3c9c EFLAGS: 00010202 [ 341.056581][T12367] RAX: 0000000000000000 RBX: 00000000f742bff4 RCX: 0000000000000002 [ 341.060008][T12367] RDX: 0000000000000008 RSI: 00000000f6d603ae RDI: 00000000200002c0 [ 341.063489][T12367] RBP: 00000000ffbb3f28 R08: 0000000000000000 R09: 0000000000000000 [ 341.066996][T12367] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 341.070321][T12367] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 341.073840][T12367] [ 341.075786][T12367] Kernel Offset: disabled [ 341.077725][T12367] Rebooting in 86400 seconds.. VM DIAGNOSIS: 04:50:24 Registers: info registers vcpu 0 CPU#0 RAX=0000000000617b0b RBX=0000000000000000 RCX=ffffffff8b05ea19 RDX=0000000000000000 RSI=ffffffff8b4ccfc0 RDI=ffffffff8bb04ba0 RBP=fffffbfff1b52af8 RSP=ffffffff8da07e20 R8 =0000000000000001 R9 =ffffed1005806fe1 R10=ffff88802c037f0b R11=0000000000000000 R12=0000000000000000 R13=ffffffff8da957c0 R14=ffffffff9010fe98 R15=0000000000000000 RIP=ffffffff8b05fe0f RFL=00000242 [---Z---] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802c000000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000031ff9ff8 CR3=0000000062c14000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000050 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84fa27d5 RDI=ffffffff951173c0 RBP=ffffffff95117380 RSP=ffffc9000418f400 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000050 R14=ffffffff84fa2770 R15=0000000000000000 RIP=ffffffff84fa27ff RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802c100000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020028000 CR3=0000000062c14000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000008000000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000000004 RBX=0000000000000001 RCX=ffffffff84890180 RDX=ffff88801fe42440 RSI=ffffffff8489019a RDI=0000000000000007 RBP=ffff88801ae5602c RSP=ffffc9000470f4a0 R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000001 R11=ffff88801ae5602d R12=0000000000000001 R13=ffff88801ae5602d R14=ffff888067e47028 R15=ffff888067e47028 RIP=ffffffff818b2630 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fc0874ebd00 ffffffff 00c00000 GS =0000 ffff88802c200000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000055709bd1b000 CR3=00000000212a4000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 ZMM21=96dba76996dba769 96dba76996dba769 96dba76996dba769 96dba76996dba769 96dba76996dba769 96dba76996dba769 96dba76996dba769 96dba76996dba769 ZMM22=eeebe32feeebe32f eeebe32feeebe32f eeebe32feeebe32f eeebe32feeebe32f eeebe32feeebe32f eeebe32feeebe32f eeebe32feeebe32f eeebe32feeebe32f ZMM23=c41c86b8c41c86b8 c41c86b8c41c86b8 c41c86b8c41c86b8 c41c86b8c41c86b8 c41c86b8c41c86b8 c41c86b8c41c86b8 c41c86b8c41c86b8 c41c86b8c41c86b8 ZMM24=a9dd1eb5a9dd1eb5 a9dd1eb5a9dd1eb5 a9dd1eb5a9dd1eb5 a9dd1eb5a9dd1eb5 a9dd1eb5a9dd1eb5 a9dd1eb5a9dd1eb5 a9dd1eb5a9dd1eb5 a9dd1eb5a9dd1eb5 ZMM25=3e1080583e108058 3e1080583e108058 3e1080583e108058 3e1080583e108058 3e1080583e108058 3e1080583e108058 3e1080583e108058 3e1080583e108058 ZMM26=b5c548ddb5c548dd b5c548ddb5c548dd b5c548ddb5c548dd b5c548ddb5c548dd b5c548ddb5c548dd b5c548ddb5c548dd b5c548ddb5c548dd b5c548ddb5c548dd ZMM27=285c9c3f285c9c3f 285c9c3f285c9c3f 285c9c3f285c9c3f 285c9c3f285c9c3f 285c9c3f285c9c3f 285c9c3f285c9c3f 285c9c3f285c9c3f 285c9c3f285c9c3f ZMM28=000000200000001f 0000001e0000001d 0000001c0000001b 0000001a00000019 0000001800000017 0000001600000015 0000001400000013 0000001200000011 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=1b1300001b130000 1b1300001b130000 1b1300001b130000 1b1300001b130000 1b1300001b130000 1b1300001b130000 1b1300001b130000 1b1300001b130000 info registers vcpu 3 CPU#3 RAX=00000000002aa249 RBX=0000000000000003 RCX=ffffffff8b05ea19 RDX=0000000000000000 RSI=ffffffff8b4ccfc0 RDI=ffffffff8bb04ba0 RBP=ffffed1002d6b488 RSP=ffffc90000497e08 R8 =0000000000000001 R9 =ffffed1005866fe1 R10=ffff88802c337f0b R11=0000000000000000 R12=0000000000000003 R13=ffff888016b5a440 R14=ffffffff9010fe98 R15=0000000000000000 RIP=ffffffff8b05fe0f RFL=00000242 [---Z---] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802c300000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000032accff8 CR3=000000005ca22000 CR4=00352ef0 DR0=0000000000000000 DR1=00000000872c9164 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000