last executing test programs: 3.717818535s ago: executing program 0 (id=2760): r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000002000)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e", @ANYRESDEC=0x0], 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000001a80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) ioctl$FS_IOC_GETVERSION(r1, 0x80015b18, 0x0) 2.576953422s ago: executing program 2 (id=2763): ioctl$TIOCL_SETVESABLANK(0xffffffffffffffff, 0x5450, 0x0) openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$packet(0x11, 0x3, 0x300) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x13) socket$inet6(0xa, 0x0, 0x0) sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0) clock_gettime(0x0, 0x0) eventfd(0x0) r0 = semget$private(0x0, 0x4, 0x0) semop(r0, &(0x7f00000000c0)=[{0x0, 0x5}, {}], 0x2) rt_sigreturn() semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000002240)=[0x7fff]) socket$inet_icmp(0x2, 0x2, 0x1) 2.531888951s ago: executing program 3 (id=2765): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000240)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x0, 0x26, 0x0, "8ddbb51a3cfd954e41e8ccb21f650fa6a867fb9bbcf0feeee4dc036d0675af58b39fa8d54ee8323507a61a95cf134ce8f605671338c7f8838a00bdfba71bc4b828c7de258b6b9ca1fc52bcc83e2a016a"}, 0xd8) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x5e, &(0x7f0000000140)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "000200", 0x28, 0x6, 0x0, @dev, @mcast2, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0xa, 0x1f, 0x0, 0x0, 0x0, {[@md5sig={0x13, 0x12, "fb6b9a90339d1800"}]}}}}}}}}, 0x0) 2.48712308s ago: executing program 3 (id=2766): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000001200)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20) r1 = accept$alg(r0, 0x0, 0x0) write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0x100000530) recvmmsg(r1, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000000c0)=""/66, 0x34000}], 0x1}}], 0x1, 0x0, 0x0) 2.413355436s ago: executing program 2 (id=2768): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)={0x40, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0xfffffffffffffe1b, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x40}}, 0x0) 2.385751531s ago: executing program 2 (id=2769): sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a50000002300000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x61}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) prctl$PR_GET_TSC(0x43, &(0x7f0000000040)) prctl$PR_MCE_KILL(0x43, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='smaps_rollup\x00') preadv(r1, &(0x7f0000000080)=[{&(0x7f0000000000)=""/92, 0x5c}], 0x1, 0x0, 0x0) 2.239070508s ago: executing program 0 (id=2770): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)=@ipv4_newroute={0x24, 0x18, 0x1, 0x0, 0x0, {}, [@RTA_ENCAP_TYPE={0x6}]}, 0x24}}, 0x0) 2.139134034s ago: executing program 0 (id=2771): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, 0x0) dup3(r1, r0, 0x0) r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r2, 0xaf01, 0x0) ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0}) r3 = eventfd2(0x0, 0x0) ioctl$VHOST_SET_VRING_ERR(r2, 0x4008af22, &(0x7f0000000100)={0x0, r3}) ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000140)) ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, &(0x7f0000000140)=""/92}) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r2, 0x4008af60, &(0x7f0000000040)={@my=0x1}) r4 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r4, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10) ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)=""/57, 0x0, &(0x7f0000000500)=""/4096}) ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000000)=0x1) r5 = syz_io_uring_setup(0x2e4d, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000400), &(0x7f0000000280)=0x0) syz_io_uring_setup(0x2fd7, &(0x7f0000000380), &(0x7f0000000040)=0x0, &(0x7f00000005c0)) syz_io_uring_submit(r7, r6, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}) io_uring_enter(r5, 0x41b, 0x0, 0x0, 0x0, 0x0) r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x19, &(0x7f0000000740)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b704000008000000850000009500000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000a000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 1.56379033s ago: executing program 3 (id=2772): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$poke(0x420b, r0, 0x0, 0x0) 1.563217886s ago: executing program 3 (id=2773): r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) close(r0) execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) sendto$inet6(r1, 0x0, 0x0, 0x4c881, &(0x7f0000000540)={0xa, 0x4e24, 0x0, @mcast2}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000000f40)=[{{&(0x7f0000000100)={0xa, 0x0, 0x0, @private0}, 0x1c, 0x0, 0x0, &(0x7f00000004c0)=ANY=[], 0x30}}], 0x1, 0x0) 1.527322964s ago: executing program 3 (id=2774): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000240)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x0, 0x26, 0x0, "8ddbb51a3cfd954e41e8ccb21f650fa6a867fb9bbcf0feeee4dc036d0675af58b39fa8d54ee8323507a61a95cf134ce8f605671338c7f8838a00bdfba71bc4b828c7de258b6b9ca1fc52bcc83e2a016a"}, 0xd8) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x5e, &(0x7f0000000140)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "000200", 0x28, 0x6, 0x0, @dev, @mcast2, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0xa, 0x1f, 0x0, 0x0, 0x0, {[@md5sig={0x13, 0x12, "fb6b9a90339d1800"}]}}}}}}}}, 0x0) 1.472002714s ago: executing program 2 (id=2775): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10) syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}, "00186371ae9b1c03"}}}}}, 0x0) 1.465339573s ago: executing program 3 (id=2776): r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0) r1 = syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x1b96, 0xa, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x5, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}, {{}, [{}]}}}]}}]}}, 0x0) syz_usb_control_io$hid(r1, 0x0, 0x0) syz_usb_control_io(r1, &(0x7f0000000d40)={0x2c, &(0x7f0000000780)=ANY=[@ANYBLOB="00000700000007007673ed26b029a925ac675bd612d8ab87f051a10ee74893f24ccd9ce3e96e268eef4b136865aeac"], 0x0, 0x0, 0x0, 0x0}, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000001c0)={r0, r0, 0x4, r0}, 0x10) ioctl$HIDIOCGRDESC(0xffffffffffffffff, 0x90044802, &(0x7f0000000500)) r3 = syz_open_dev$hidraw(&(0x7f0000000280), 0x0, 0x4a141) r4 = syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x20001) ioctl$HIDIOCGFEATURE(r4, 0xc0404807, &(0x7f00000000c0)={0x7f, "be3e815995830e16a128b578e3af9d546fd61d7a5683da229303c76a2df3948c831ebfb4e3a2c0c336fe8ce02d8dc9d583aebcb8beb9e08613ec0143508bd56f"}) syz_open_dev$hidraw(&(0x7f0000000940), 0x0, 0x0) ioctl$HIDIOCGFEATURE(r3, 0xc0404807, &(0x7f0000000000)={0x0, "1cf250d2528722061e2daedcbbf930dedf4904d8f9e64f62c3d0e156e87ed3dbfac38f0c1faada797532454dd344c00c8a007369f5d86fe64007aa38577e4db7"}) ioctl$HIDIOCGRDESC(r3, 0x90044802, &(0x7f0000000d80)={0x4fa, "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"}) 1.449222506s ago: executing program 2 (id=2778): r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000002000)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e", @ANYRESDEC=0x0], 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000001a80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) ioctl$FS_IOC_GETVERSION(r1, 0x80015b18, 0x0) 1.413875653s ago: executing program 1 (id=2779): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)=@ipv4_newroute={0x24, 0x18, 0x1, 0x0, 0x0, {}, [@RTA_ENCAP_TYPE={0x6}]}, 0x24}}, 0x0) 1.348125325s ago: executing program 1 (id=2780): bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="c0000000190001000000000000000000e0000002000000000000000000000000fc01000000000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000008001f0003"], 0xc0}}, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="b8000000190001000000000000000000e00000020000000000000c0000000000fc0100000000000000000000000000a42ca84723f6c93b000a"], 0xb8}}, 0x0) 1.347782161s ago: executing program 1 (id=2781): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$poke(0x420b, r0, 0x0, 0x0) 1.247531178s ago: executing program 0 (id=2782): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000300)={0x1, 0x0, [{0x1}]}) 1.241040476s ago: executing program 1 (id=2783): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000000280)={@val={0x0, 0x800}, @val={0x1, 0x0, 0x0, 0x0, 0x3d}, @mpls={[], @ipv4=@tcp={{0x6, 0x4, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x2, 0xb, 0x0, 0x500, 0x0, 0x1c, {[@window={0xa, 0x3}, @timestamp={0x5, 0x2}, @generic={0x0, 0x2, "d58838068b91"}]}}}}}}, 0x4e) 1.088762443s ago: executing program 0 (id=2784): sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a50000002300000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x61}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) prctl$PR_GET_TSC(0x43, &(0x7f0000000040)) prctl$PR_MCE_KILL(0x43, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='smaps_rollup\x00') preadv(r1, &(0x7f0000000080)=[{&(0x7f0000000000)=""/92, 0x5c}], 0x1, 0x0, 0x0) 1.046511738s ago: executing program 1 (id=2785): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)={{0x14}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x18, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DATA={0xc, 0x2, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, "c4"}]}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x9}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_DELRULE={0x14}], {0x14}}, 0x98}}, 0x0) 918.358614ms ago: executing program 1 (id=2786): ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0x8040587f, 0x0) r0 = getpid() bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00'}, 0x10) process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r1, &(0x7f0000000a80)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}, 0x1c, &(0x7f0000000b40)=[{&(0x7f00000022c0)='`', 0x1}], 0x1}}, {{&(0x7f00000002c0)={0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00'}, 0x1c, &(0x7f0000000400)=[{&(0x7f0000000300)='7', 0x1}], 0x1}}], 0x2, 0x0) connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c) shutdown(r1, 0x1) socket$inet6(0xa, 0x2, 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0) chdir(&(0x7f0000000280)='./file0\x00') bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000180)=@bloom_filter={0x1e, 0x9, 0x9, 0x3, 0x1001, 0xffffffffffffffff, 0x80000001, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x4, 0x3, 0xb}, 0x48) sendmsg$sock(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x4000) r2 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0) write$FUSE_WRITE(0xffffffffffffffff, &(0x7f0000000080)={0x18}, 0x18) read$FUSE(r2, &(0x7f00000028c0)={0x2020}, 0x2020) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCGPTPEER(r3, 0x4b4b, 0x700000000000000) 163.037671ms ago: executing program 0 (id=2787): write(0xffffffffffffffff, &(0x7f00000002c0)="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", 0x256) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x4000}) capset(&(0x7f0000000000), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 0s ago: executing program 2 (id=2788): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)=@ipv4_newroute={0x24, 0x18, 0x1, 0x0, 0x0, {}, [@RTA_ENCAP_TYPE={0x6}]}, 0x24}}, 0x0) kernel console output (not intermixed with test programs): : Manufacturer: syz [ 172.533205][ T5240] usb 7-1: SerialNumber: syz [ 172.536557][ T5240] usb 7-1: config 0 descriptor?? [ 172.543538][ T5240] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0 [ 172.592999][ T830] rc_core: IR keymap rc-hauppauge not found [ 172.595673][ T830] Registered IR keymap rc-empty [ 172.599765][ T830] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0 [ 172.607795][ T830] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input17 [ 172.696697][ T6801] usb 6-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 172.700371][ T6801] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 172.706193][ T6801] usb 6-1: config 0 descriptor?? [ 172.757468][ T830] usb 5-1: USB disconnect, device number 22 [ 172.795082][ T39] audit: type=1400 audit(1719516104.248:30294): avc: denied { unmount } for pid=6628 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1 [ 172.847468][ C3] usb 7-1: yurex_control_callback - control failed: -71 [ 172.848572][ T25] usb 7-1: USB disconnect, device number 14 [ 172.856179][ T25] yurex 7-1:0.0: USB YUREX #0 now disconnected [ 173.257896][T10109] can: request_module (can-proto-0) failed. [ 173.390043][T10118] netlink: 'syz.3.2026': attribute type 6 has an invalid length. [ 173.460968][T10122] input: syz1 as /devices/virtual/input/input18 [ 173.752443][T10138] netlink: 116 bytes leftover after parsing attributes in process `syz.3.2035'. [ 173.841663][T10146] netlink: 'syz.3.2039': attribute type 6 has an invalid length. [ 174.080578][T10166] netlink: 'syz.3.2048': attribute type 6 has an invalid length. [ 174.883211][ T39] audit: type=1326 audit(1719516106.328:30295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10212 comm="syz.0.2071" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fda07f75b29 code=0x0 [ 174.963081][ T57] usb 7-1: new high-speed USB device number 15 using dummy_hcd [ 175.101836][ T6801] [drm] vendor descriptor length:b9 data:00 00 00 00 00 00 00 00 00 00 00 [ 175.108168][ T6801] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor [ 175.116469][ T6801] [drm:udl_init] *ERROR* Selecting channel failed [ 175.151509][ T6801] [drm] Initialized udl 0.0.1 20120220 for 6-1:0.0 on minor 3 [ 175.161618][ T6801] [drm] Initialized udl on minor 3 [ 175.176759][ T6801] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 175.179956][ T57] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 175.189110][ T57] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 175.195780][ T57] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 175.199801][ T6801] udl 6-1:0.0: [drm] Cannot find any crtc or sizes [ 175.203671][ T57] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 175.205615][ T830] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 175.216835][ T6801] usb 6-1: USB disconnect, device number 15 [ 175.223140][ T57] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 175.227512][ T57] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 175.232229][ T830] udl 6-1:0.0: [drm] Cannot find any crtc or sizes [ 175.237671][ T57] usb 7-1: Manufacturer: syz [ 175.240716][ T57] usb 7-1: config 0 descriptor?? [ 175.405315][ T39] audit: type=1400 audit(1719516106.858:30296): avc: denied { ioctl } for pid=10228 comm="syz.1.2078" path="socket:[31405]" dev="sockfs" ino=31405 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 175.419272][T10237] loop0: detected capacity change from 0 to 7 [ 175.427818][T10237] Dev loop0: unable to read RDB block 7 [ 175.429833][T10237] loop0: AHDI p1 p2 [ 175.432170][T10237] loop0: partition table partially beyond EOD, truncated [ 175.435709][T10237] loop0: p1 start 1852059507 is beyond EOD, truncated [ 175.657034][ T57] appleir 0003:05AC:8243.000C: unknown main item tag 0x0 [ 175.660794][ T57] appleir 0003:05AC:8243.000C: No inputs registered, leaving [ 175.668494][ T57] appleir 0003:05AC:8243.000C: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0 [ 175.753526][T10257] loop0: detected capacity change from 0 to 7 [ 175.759984][T10257] Dev loop0: unable to read RDB block 7 [ 175.761894][T10257] loop0: AHDI p1 p2 [ 175.763940][T10257] loop0: partition table partially beyond EOD, truncated [ 175.766634][T10257] loop0: p1 start 1852059507 is beyond EOD, truncated [ 175.773586][ T4693] Dev loop0: unable to read RDB block 7 [ 175.775718][ T4693] loop0: AHDI p1 p2 [ 175.777231][ T4693] loop0: partition table partially beyond EOD, truncated [ 175.780662][ T4693] loop0: p1 start 1852059507 is beyond EOD, truncated [ 176.290491][T10283] loop0: detected capacity change from 0 to 7 [ 176.300572][T10283] Dev loop0: unable to read RDB block 7 [ 176.302870][T10283] loop0: AHDI p1 p2 [ 176.304829][T10283] loop0: partition table partially beyond EOD, truncated [ 176.308129][T10283] loop0: p1 start 1852059507 is beyond EOD, truncated [ 176.499270][ T25] usb 7-1: USB disconnect, device number 15 [ 176.515467][ T5184] Bluetooth: hci1: command 0x0405 tx timeout [ 177.090120][ T39] audit: type=1400 audit(1719516108.538:30297): avc: denied { ioctl } for pid=10319 comm="syz.2.2117" path="socket:[29502]" dev="sockfs" ino=29502 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1 [ 177.483093][ T39] audit: type=1326 audit(1719516108.938:30298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10329 comm="syz.3.2121" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f402e375b29 code=0x0 [ 177.844713][T10350] syz.1.2129[10350] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 177.844856][T10350] syz.1.2129[10350] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 177.882939][ T830] usb 5-1: new high-speed USB device number 23 using dummy_hcd [ 177.953017][ T25] usb 7-1: new high-speed USB device number 16 using dummy_hcd [ 178.076360][ T830] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 178.090449][ T830] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 178.094585][ T830] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 178.097763][ T830] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 178.105407][ T830] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 178.108636][ T830] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 178.111640][ T830] usb 5-1: Manufacturer: syz [ 178.123977][ T830] usb 5-1: config 0 descriptor?? [ 178.136718][ T25] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 178.140717][ T25] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 178.145242][ T25] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 178.148687][ T25] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 178.155139][ T25] usb 7-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 178.158409][ T25] usb 7-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 178.161667][ T25] usb 7-1: Manufacturer: syz [ 178.165888][ T25] usb 7-1: config 0 descriptor?? [ 178.570852][ T830] appleir 0003:05AC:8243.000D: unknown main item tag 0x0 [ 178.583944][ T830] appleir 0003:05AC:8243.000D: No inputs registered, leaving [ 178.591337][ T25] appleir 0003:05AC:8243.000E: unknown main item tag 0x0 [ 178.595365][ T830] appleir 0003:05AC:8243.000D: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0 [ 178.595426][ T25] appleir 0003:05AC:8243.000E: No inputs registered, leaving [ 178.608003][ T25] appleir 0003:05AC:8243.000E: hiddev1,hidraw2: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0 [ 178.683614][ T5240] usb 8-1: new high-speed USB device number 13 using dummy_hcd [ 178.849332][ T5242] usb 7-1: USB disconnect, device number 16 [ 178.882957][ T5240] usb 8-1: Using ep0 maxpacket: 8 [ 178.888668][ T5240] usb 8-1: config index 0 descriptor too short (expected 301, got 45) [ 178.891960][ T5240] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 178.895905][ T5240] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 178.899913][ T5240] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 178.904386][ T5240] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 178.909845][ T5240] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 178.913153][ T5240] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 179.125385][ T5240] usb 8-1: usb_control_msg returned -32 [ 179.127974][ T5240] usbtmc 8-1:16.0: can't read capabilities [ 179.412760][ T830] usb 5-1: USB disconnect, device number 23 [ 179.657449][T10377] syz.2.2138[10377] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 179.657613][T10377] syz.2.2138[10377] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 179.867113][ T39] audit: type=1326 audit(1719516111.318:30299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10385 comm="syz.1.2142" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1bee575b29 code=0x0 [ 179.889893][T10388] netlink: 168 bytes leftover after parsing attributes in process `syz.2.2143'. [ 179.895388][T10388] netlink: 'syz.2.2143': attribute type 2 has an invalid length. [ 179.898815][T10388] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2143'. [ 180.173287][ T39] audit: type=1400 audit(1719516111.628:30300): avc: denied { read } for pid=10401 comm="syz.2.2148" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1 [ 180.180993][ T39] audit: type=1400 audit(1719516111.628:30301): avc: denied { open } for pid=10401 comm="syz.2.2148" path="/syzkaller.CzJ1oc/627/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1 [ 180.191254][ T39] audit: type=1400 audit(1719516111.628:30302): avc: denied { module_request } for pid=10401 comm="syz.2.2148" kmod="block-major-3699-411183" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 180.287127][T10407] sp0: Synchronizing with TNC [ 181.005700][T10415] kvm: emulating exchange as write [ 181.083397][ T39] audit: type=1400 audit(1719516112.538:30303): avc: denied { connect } for pid=10424 comm="syz.0.2156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 181.384947][T10447] syz.0.2163[10447] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 181.385035][T10447] syz.0.2163[10447] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 181.407176][ T55] usb 8-1: USB disconnect, device number 13 [ 181.491047][T10454] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2166'. [ 181.513091][ T830] usb 6-1: new high-speed USB device number 16 using dummy_hcd [ 181.669612][T10468] syzkaller1: entered promiscuous mode [ 181.672381][T10468] syzkaller1: entered allmulticast mode [ 181.685142][ T39] audit: type=1800 audit(1719516113.138:30304): pid=10470 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.2173" name="file1" dev="sda1" ino=1963 res=0 errno=0 [ 181.694666][ T39] audit: type=1400 audit(1719516113.138:30305): avc: denied { read } for pid=10469 comm="syz.2.2173" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1 [ 181.695420][ T830] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 181.706223][ T39] audit: type=1400 audit(1719516113.138:30306): avc: denied { open } for pid=10469 comm="syz.2.2173" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1 [ 181.724862][ T830] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 181.729448][ T830] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 181.752442][ T830] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 181.757014][ T830] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 181.765551][ T830] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 181.775493][ T830] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 181.780796][ T830] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 181.792514][ T830] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 181.806364][ T830] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 181.811175][ T830] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 181.821159][ T830] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 181.835377][ T830] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 181.842140][ T830] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 181.866559][ T830] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 181.887601][ T830] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 181.891971][ T830] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 181.902430][ T830] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 181.921033][ T830] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 181.925482][ T830] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 181.929119][ T830] usb 6-1: Product: syz [ 181.939161][ T830] usb 6-1: Manufacturer: syz [ 181.941255][ T830] usb 6-1: SerialNumber: syz [ 182.055835][T10483] binder: BINDER_SET_CONTEXT_MGR already set [ 182.058862][T10483] binder: 10482:10483 ioctl 4018620d 20000300 returned -16 [ 182.194554][ T830] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 16 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 182.322419][T10494] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 182.348573][T10494] kvm: pic: non byte read [ 182.354622][T10494] kvm: pic: level sensitive irq not supported [ 182.355275][T10494] kvm: pic: non byte read [ 182.362262][T10494] kvm: pic: level sensitive irq not supported [ 182.363681][T10494] kvm: pic: non byte read [ 182.370058][T10494] kvm: pic: level sensitive irq not supported [ 182.370797][T10494] kvm: pic: non byte read [ 182.403418][ T830] usb 6-1: USB disconnect, device number 16 [ 182.413166][ T830] usblp0: removed [ 182.772960][ T25] usb 8-1: new high-speed USB device number 14 using dummy_hcd [ 182.910759][T10513] syzkaller1: entered promiscuous mode [ 182.913798][T10513] syzkaller1: entered allmulticast mode [ 182.952907][ T25] usb 8-1: Using ep0 maxpacket: 8 [ 182.957126][ T25] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024 [ 182.960993][ T25] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 182.965548][ T25] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 182.969971][ T25] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 182.979737][ T25] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 182.984491][ T25] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 183.140739][T10518] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2192'. [ 183.207684][ T25] usb 8-1: usb_control_msg returned -32 [ 183.211534][ T25] usbtmc 8-1:16.0: can't read capabilities [ 183.215479][T10520] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 183.296628][T10522] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 183.310106][T10522] kvm: pic: non byte read [ 183.315889][T10522] kvm: pic: level sensitive irq not supported [ 183.316439][T10522] kvm: pic: non byte read [ 183.324233][T10522] kvm: pic: level sensitive irq not supported [ 183.324774][T10522] kvm: pic: non byte read [ 183.331393][T10522] kvm: pic: level sensitive irq not supported [ 183.332332][T10522] kvm: pic: non byte read [ 183.586350][T10534] sp0: Synchronizing with TNC [ 183.682933][ T9353] usb 6-1: new high-speed USB device number 17 using dummy_hcd [ 183.863550][ T9353] usb 6-1: too many configurations: 9, using maximum allowed: 8 [ 183.867296][ T9353] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 183.881129][ T9353] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 183.885932][ T9353] usb 6-1: config 0 interface 0 has no altsetting 0 [ 183.896634][ T9353] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 183.905003][ T9353] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 183.921246][ T9353] usb 6-1: config 0 interface 0 has no altsetting 0 [ 183.932409][ T9353] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 183.936554][ T9353] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 183.954067][ T9353] usb 6-1: config 0 interface 0 has no altsetting 0 [ 183.959233][ T9353] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 183.964532][ T9353] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 183.979677][ T9353] usb 6-1: config 0 interface 0 has no altsetting 0 [ 183.985846][ T9353] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 183.989139][ T9353] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 184.004073][ T9353] usb 6-1: config 0 interface 0 has no altsetting 0 [ 184.008563][ T9353] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 184.012534][ T9353] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 184.027532][ T9353] usb 6-1: config 0 interface 0 has no altsetting 0 [ 184.033744][ T9353] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 184.036945][ T9353] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 184.040793][ T9353] usb 6-1: config 0 interface 0 has no altsetting 0 [ 184.064862][ T9353] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 184.068071][ T9353] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 184.072103][ T9353] usb 6-1: config 0 interface 0 has no altsetting 0 [ 184.076861][ T9353] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 184.080464][ T9353] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 184.083824][ T9353] usb 6-1: Product: syz [ 184.085871][ T9353] usb 6-1: Manufacturer: syz [ 184.087824][ T9353] usb 6-1: SerialNumber: syz [ 184.099293][ T9353] usb 6-1: config 0 descriptor?? [ 184.112021][ T9353] yurex 6-1:0.0: USB YUREX device now attached to Yurex #1 [ 184.353361][ C0] usbtmc 8-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71 [ 184.383128][T10516] usbtmc 8-1:16.0: Unable to send data, error -71 [ 184.419106][T10516] usbtmc 8-1:16.0: send_request_dev_dep_msg_in returned -71 [ 184.436481][ T9353] usb 6-1: USB disconnect, device number 17 [ 184.444654][ T9353] yurex 6-1:0.0: USB YUREX #1 now disconnected [ 184.588408][T10552] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 184.607552][T10552] kvm: pic: non byte read [ 184.611188][T10552] kvm: pic: level sensitive irq not supported [ 184.611504][T10552] kvm: pic: non byte read [ 184.618341][T10552] kvm: pic: level sensitive irq not supported [ 184.619816][T10552] kvm: pic: level sensitive irq not supported [ 185.122956][ T5241] usb 7-1: new high-speed USB device number 17 using dummy_hcd [ 185.302936][ T5241] usb 7-1: Using ep0 maxpacket: 8 [ 185.307439][ T5241] usb 7-1: config 179 has an invalid interface number: 65 but max is 0 [ 185.311404][ T5241] usb 7-1: config 179 has no interface number 0 [ 185.314435][ T5241] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 185.319477][ T5241] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 185.325706][ T5241] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 185.330912][ T5241] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 185.336111][ T5241] usb 7-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 185.342075][ T5241] usb 7-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 185.346291][ T5241] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 185.354667][T10560] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 185.518823][ T5241] usb 8-1: USB disconnect, device number 14 [ 185.582679][ T55] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:179.65/input/input19 [ 185.688334][T10569] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 185.772141][ T39] audit: type=1400 audit(1719516117.218:30307): avc: denied { read write } for pid=10572 comm="syz.3.2212" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 185.780911][ T39] audit: type=1400 audit(1719516117.218:30308): avc: denied { open } for pid=10572 comm="syz.3.2212" path="/syzkaller.FNQVU9/423/file0" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 185.794260][ C3] xpad 7-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 185.794270][ T57] usb 7-1: USB disconnect, device number 17 [ 185.797583][ C3] xpad 7-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 185.799568][T10571] syzkaller1: entered promiscuous mode [ 185.799588][T10571] syzkaller1: entered allmulticast mode [ 185.807766][ T57] xpad 7-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 186.140177][T10580] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 186.156334][ T55] usb 8-1: new high-speed USB device number 15 using dummy_hcd [ 186.345433][ T55] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 186.350462][ T55] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 186.355299][ T55] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 186.362516][ T55] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 186.366999][ T55] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 186.371257][ T55] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 186.382972][ T55] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 186.387062][ T55] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 186.391370][ T55] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 186.399022][ T55] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 186.403479][ T55] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 186.407991][ T55] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 186.414876][ T55] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 186.419041][ T55] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 186.424642][ T55] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 186.431995][ T55] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 186.432642][T10586] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 186.437245][ T55] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 186.444140][ T55] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 186.452645][ T55] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 186.456777][ T55] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 186.460378][ T55] usb 8-1: Product: syz [ 186.463555][ T55] usb 8-1: Manufacturer: syz [ 186.465353][ T55] usb 8-1: SerialNumber: syz [ 186.465903][T10586] kvm: pic: level sensitive irq not supported [ 186.513558][ T9353] usb 5-1: new high-speed USB device number 24 using dummy_hcd [ 186.687057][T10593] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 186.692333][ T55] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 15 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 186.693017][ T830] usb 6-1: new high-speed USB device number 18 using dummy_hcd [ 186.717189][ T9353] usb 5-1: config index 0 descriptor too short (expected 23569, got 27) [ 186.721346][ T9353] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 186.727381][ T9353] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 186.731220][ T9353] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 186.735064][ T9353] usb 5-1: Manufacturer: syz [ 186.743706][ T9353] usb 5-1: config 0 descriptor?? [ 186.824896][ T9353] rc_core: IR keymap rc-hauppauge not found [ 186.827339][ T9353] Registered IR keymap rc-empty [ 186.832389][ T9353] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0 [ 186.838055][ T9353] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input20 [ 186.897870][ T9353] usb 8-1: USB disconnect, device number 15 [ 186.912461][ T9353] usblp0: removed [ 186.915071][ T830] usb 6-1: too many configurations: 9, using maximum allowed: 8 [ 186.922001][ T830] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 186.930528][ T830] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 186.935438][ T830] usb 6-1: config 0 interface 0 has no altsetting 0 [ 186.942231][ T830] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 186.946315][ T830] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 186.949642][ T830] usb 6-1: config 0 interface 0 has no altsetting 0 [ 186.953674][ T830] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 186.961954][ T830] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 186.978309][ T830] usb 6-1: config 0 interface 0 has no altsetting 0 [ 186.982114][ T830] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 186.988474][ T830] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 186.997348][ T830] usb 6-1: config 0 interface 0 has no altsetting 0 [ 187.004624][ T6801] usb 5-1: USB disconnect, device number 24 [ 187.004804][ T830] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 187.007546][T10602] syzkaller1: entered promiscuous mode [ 187.009481][ T830] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 187.011435][T10602] syzkaller1: entered allmulticast mode [ 187.017014][ T830] usb 6-1: config 0 interface 0 has no altsetting 0 [ 187.022416][ T830] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 187.025754][ T830] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 187.031150][ T830] usb 6-1: config 0 interface 0 has no altsetting 0 [ 187.038479][ T830] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 187.041996][ T830] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 187.047984][ T830] usb 6-1: config 0 interface 0 has no altsetting 0 [ 187.050910][ T830] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 187.053608][ T830] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 187.057177][ T830] usb 6-1: config 0 interface 0 has no altsetting 0 [ 187.062638][ T830] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 187.066894][ T830] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 187.070005][ T830] usb 6-1: Product: syz [ 187.071590][ T830] usb 6-1: Manufacturer: syz [ 187.073786][ T830] usb 6-1: SerialNumber: syz [ 187.077993][ T830] usb 6-1: config 0 descriptor?? [ 187.086006][ T830] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0 [ 187.418285][T10609] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 187.429699][ C0] usb 6-1: yurex_control_callback - control failed: -71 [ 187.433686][ T6801] usb 6-1: USB disconnect, device number 18 [ 187.442237][ T6801] yurex 6-1:0.0: USB YUREX #0 now disconnected [ 187.512682][ C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 187.723741][T10640] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 187.873112][T10647] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2240'. [ 187.992988][ T5242] usb 8-1: new high-speed USB device number 16 using dummy_hcd [ 188.174821][ T5242] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 188.178275][ T5242] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 188.181714][ T5242] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 188.191873][ T5242] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 188.196236][ T5242] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 188.200268][ T5242] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 188.207195][ T5242] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 188.211131][ T5242] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 188.215550][ T5242] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 188.222532][ T5242] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 188.226846][ T5242] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 188.244868][ T5242] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 188.258248][ T5242] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 188.262289][ T5242] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 188.265849][ T5242] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 188.272055][ T5242] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 188.276024][ T5242] usb 8-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 188.279262][ T5242] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 188.285458][ T5242] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 188.288520][ T5242] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 188.291471][ T5242] usb 8-1: Product: syz [ 188.292934][ T5242] usb 8-1: Manufacturer: syz [ 188.294520][ T5242] usb 8-1: SerialNumber: syz [ 188.416286][ C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 188.515783][ T5242] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 16 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 188.523008][ T6801] usb 6-1: new high-speed USB device number 19 using dummy_hcd [ 188.710683][ T6801] usb 6-1: config index 0 descriptor too short (expected 23569, got 27) [ 188.714058][ T6801] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 188.719656][ T57] usb 8-1: USB disconnect, device number 16 [ 188.719915][ T6801] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 188.724422][ T57] usblp0: removed [ 188.726441][ T6801] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 188.731622][ T6801] usb 6-1: Manufacturer: syz [ 188.736486][ T6801] usb 6-1: config 0 descriptor?? [ 188.803023][ T6801] rc_core: IR keymap rc-hauppauge not found [ 188.805473][ T6801] Registered IR keymap rc-empty [ 188.807764][ T6801] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0 [ 188.814886][ T6801] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input21 [ 188.816309][T10664] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 188.971263][ T6801] usb 6-1: USB disconnect, device number 19 [ 189.213192][ T5241] usb 7-1: new high-speed USB device number 18 using dummy_hcd [ 189.402935][ T5241] usb 7-1: Using ep0 maxpacket: 8 [ 189.406912][ T5241] usb 7-1: config 179 has an invalid interface number: 65 but max is 0 [ 189.410593][ T5241] usb 7-1: config 179 has no interface number 0 [ 189.415166][ T5241] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 189.421764][ T5241] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 189.427828][ T5241] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 189.432742][ T5241] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 189.437694][ T5241] usb 7-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 189.443732][ T5241] usb 7-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 189.447614][ T5241] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 189.453878][T10671] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 189.682577][ T5241] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:179.65/input/input22 [ 189.880885][ T820] usb 7-1: USB disconnect, device number 18 [ 189.880935][ C3] xpad 7-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 189.888099][ T820] xpad 7-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 190.439962][T10692] 9pnet_fd: p9_fd_create_tcp (10692): problem connecting socket to 127.0.0.1 [ 195.101926][T10748] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2278'. [ 195.341453][T10773] EXT4-fs (sda1): re-mounted 5941fea2-f5fa-4b4e-b5ef-9af118b27b95 r/w. Quota mode: none. [ 195.449959][T10789] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 195.455711][ T39] audit: type=1400 audit(1719516126.911:30309): avc: denied { create } for pid=10790 comm="syz.3.2300" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 195.463075][ T39] audit: type=1800 audit(1719516126.911:30310): pid=10791 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.2300" name="file1" dev="sda1" ino=1965 res=0 errno=0 [ 195.472035][ T39] audit: type=1400 audit(1719516126.911:30311): avc: denied { write } for pid=10790 comm="syz.3.2300" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 195.480925][ T39] audit: type=1400 audit(1719516126.911:30312): avc: denied { read } for pid=10790 comm="syz.3.2300" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 195.841086][ T39] audit: type=1400 audit(1719516127.291:30313): avc: denied { append } for pid=10803 comm="syz.0.2303" name="001" dev="devtmpfs" ino=726 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 195.903036][ T820] usb 8-1: new full-speed USB device number 17 using dummy_hcd [ 196.087466][ T820] usb 8-1: config 0 has an invalid interface number: 107 but max is 0 [ 196.092343][ T820] usb 8-1: config 0 has no interface number 0 [ 196.095485][ T820] usb 8-1: config 0 interface 107 altsetting 254 endpoint 0xC has invalid maxpacket 1024, setting to 64 [ 196.100649][ T820] usb 8-1: config 0 interface 107 altsetting 254 has a duplicate endpoint with address 0xC, skipping [ 196.105520][ T820] usb 8-1: config 0 interface 107 altsetting 254 has an invalid descriptor for endpoint zero, skipping [ 196.110622][ T820] usb 8-1: config 0 interface 107 altsetting 254 has an invalid descriptor for endpoint zero, skipping [ 196.115642][ T820] usb 8-1: config 0 interface 107 has no altsetting 0 [ 196.118640][ T820] usb 8-1: New USB device found, idVendor=0403, idProduct=fc0d, bcdDevice=eb.04 [ 196.123487][ T820] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 196.134200][ T820] usb 8-1: config 0 descriptor?? [ 196.355034][T10791] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 196.359618][T10791] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 196.372895][ T820] usb 8-1: string descriptor 0 read error: -71 [ 196.378058][ T820] ftdi_sio 8-1:0.107: FTDI USB Serial Device converter detected [ 196.389647][ T820] ftdi_sio ttyUSB0: unknown device type: 0xeb04 [ 196.406029][ T820] usb 8-1: USB disconnect, device number 17 [ 196.413296][ T820] ftdi_sio 8-1:0.107: device disconnected [ 196.765247][T10832] input: syz0 as /devices/virtual/input/input23 [ 196.861263][T10840] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 196.869407][T10840] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 196.880704][ T39] audit: type=1400 audit(1719516128.330:30314): avc: denied { map } for pid=10845 comm="syz.2.2320" path="/dev/hpet" dev="devtmpfs" ino=632 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 197.017463][T10863] input: syz0 as /devices/virtual/input/input24 [ 197.077308][ T39] audit: type=1800 audit(1719516128.530:30315): pid=10871 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.2330" name="file1" dev="sda1" ino=1967 res=0 errno=0 [ 197.230081][ T39] audit: type=1400 audit(1719516128.680:30316): avc: denied { bind } for pid=10881 comm="syz.3.2335" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 197.242493][ T39] audit: type=1400 audit(1719516128.690:30317): avc: denied { connect } for pid=10881 comm="syz.3.2335" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 197.250037][ T39] audit: type=1326 audit(1719516128.700:30318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10881 comm="syz.3.2335" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f402e375b29 code=0x0 [ 197.333883][ T9353] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 197.522913][ T55] usb 7-1: new full-speed USB device number 19 using dummy_hcd [ 197.522983][ T9353] usb 5-1: Using ep0 maxpacket: 32 [ 197.529870][ T9353] usb 5-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7 [ 197.533405][ T9353] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 197.538196][ T9353] usb 5-1: config 0 descriptor?? [ 197.542768][ T9353] gspca_main: sunplus-2.14.0 probing 041e:400b [ 197.724855][ T55] usb 7-1: config 0 has an invalid interface number: 107 but max is 0 [ 197.728529][ T55] usb 7-1: config 0 has no interface number 0 [ 197.731158][ T55] usb 7-1: config 0 interface 107 altsetting 254 endpoint 0xC has invalid maxpacket 1024, setting to 64 [ 197.735968][ T55] usb 7-1: config 0 interface 107 altsetting 254 has a duplicate endpoint with address 0xC, skipping [ 197.741140][ T55] usb 7-1: config 0 interface 107 altsetting 254 has an invalid descriptor for endpoint zero, skipping [ 197.746025][ T55] usb 7-1: config 0 interface 107 altsetting 254 has an invalid descriptor for endpoint zero, skipping [ 197.750707][ T55] usb 7-1: config 0 interface 107 has no altsetting 0 [ 197.754126][ T55] usb 7-1: New USB device found, idVendor=0403, idProduct=fc0d, bcdDevice=eb.04 [ 197.757851][ T55] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 197.763595][ T55] usb 7-1: config 0 descriptor?? [ 197.809500][T10887] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2331'. [ 197.824416][T10887] batman_adv: batadv1: Adding interface: netdevsim0 [ 197.827366][T10887] batman_adv: batadv1: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 197.839522][T10887] batman_adv: batadv1: Interface activated: netdevsim0 [ 197.866107][ T9353] gspca_sunplus: reg_w_riv err -71 [ 197.868513][ T9353] sunplus 5-1:0.0: probe with driver sunplus failed with error -71 [ 197.884118][ T9353] usb 5-1: USB disconnect, device number 25 [ 197.999315][T10871] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 198.004464][T10871] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 198.036227][ T55] usb 7-1: string descriptor 0 read error: -71 [ 198.040072][ T55] ftdi_sio 7-1:0.107: FTDI USB Serial Device converter detected [ 198.048328][ T55] ftdi_sio ttyUSB0: unknown device type: 0xeb04 [ 198.054781][ T55] usb 7-1: USB disconnect, device number 19 [ 198.060393][ T55] ftdi_sio 7-1:0.107: device disconnected [ 198.443193][ T9353] usb 8-1: new high-speed USB device number 18 using dummy_hcd [ 198.633105][ T9353] usb 8-1: Using ep0 maxpacket: 8 [ 198.654613][ T9353] usb 8-1: config 0 has an invalid interface number: 1 but max is 0 [ 198.663298][ T9353] usb 8-1: config 0 has no interface number 0 [ 198.669419][ T9353] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 198.682061][ T9353] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 198.692169][ T9353] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 198.703127][ T9353] usb 8-1: config 0 descriptor?? [ 198.718794][ T9353] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 198.789098][T10924] IPVS: set_ctl: invalid protocol: 0 172.20.20.187:0 [ 198.912950][ T55] usb 8-1: USB disconnect, device number 18 [ 198.915785][ C3] iowarrior 8-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19 [ 198.921816][ T55] iowarrior 8-1:0.1: I/O-Warror #0 now disconnected [ 198.989937][T10930] raw_sendmsg: syz.1.2356 forgot to set AF_INET. Fix it! [ 199.114036][T10938] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 199.432960][ T9353] usb 5-1: new high-speed USB device number 26 using dummy_hcd [ 199.615605][ T9353] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 199.619997][ T9353] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 199.623928][ T9353] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 199.628271][ T9353] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 199.631191][ T9353] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 199.636327][ T9353] usb 5-1: config 0 descriptor?? [ 199.943113][ T55] usb 8-1: new high-speed USB device number 19 using dummy_hcd [ 200.040395][ T1360] ieee802154 phy1 wpan1: encryption failed: -22 [ 200.056061][ T9353] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 200.062756][ T9353] plantronics 0003:047F:FFFF.000F: unknown main item tag 0x0 [ 200.073019][ T9353] plantronics 0003:047F:FFFF.000F: No inputs registered, leaving [ 200.087945][ T9353] plantronics 0003:047F:FFFF.000F: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 200.132884][ T55] usb 8-1: Using ep0 maxpacket: 8 [ 200.136323][ T55] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024 [ 200.140261][ T55] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 200.144012][ T55] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 200.148292][ T55] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 200.154046][ T55] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 200.157056][ T55] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 200.319082][ T9353] usb 5-1: USB disconnect, device number 26 [ 200.376501][ T55] usb 8-1: usb_control_msg returned -32 [ 200.379233][ T55] usbtmc 8-1:16.0: can't read capabilities [ 200.762991][ T55] usb 7-1: new high-speed USB device number 20 using dummy_hcd [ 200.942921][ T55] usb 7-1: Using ep0 maxpacket: 8 [ 200.946993][ T55] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 200.950074][ T55] usb 7-1: config 0 has no interface number 0 [ 200.952568][ T55] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 200.957887][ T55] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 200.961457][ T55] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 200.967017][ T55] usb 7-1: config 0 descriptor?? [ 200.973016][ T55] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior1 [ 201.005882][ T39] kauditd_printk_skb: 127 callbacks suppressed [ 201.005898][ T39] audit: type=1400 audit(1719516132.449:30446): avc: denied { bind } for pid=10978 comm="syz.0.2376" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 201.132387][ T39] audit: type=1400 audit(1719516132.579:30447): avc: denied { bind } for pid=10982 comm="syz.0.2378" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 201.143106][ T39] audit: type=1400 audit(1719516132.599:30448): avc: denied { setopt } for pid=10982 comm="syz.0.2378" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 201.183348][ T55] usb 7-1: USB disconnect, device number 20 [ 201.194776][ T55] iowarrior 7-1:0.1: I/O-Warror #1 now disconnected [ 202.434463][ T39] audit: type=1800 audit(1719516133.889:30449): pid=11009 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.2389" name="bus" dev="overlay" ino=1973 res=0 errno=0 [ 202.446561][ T39] audit: type=1800 audit(1719516133.899:30450): pid=11009 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.2389" name="bus" dev="overlay" ino=1973 res=0 errno=0 [ 202.700887][ T25] usb 8-1: USB disconnect, device number 19 [ 203.794982][T11059] netlink: 'syz.0.2409': attribute type 1 has an invalid length. [ 203.798582][T11059] netlink: 112860 bytes leftover after parsing attributes in process `syz.0.2409'. [ 203.802783][T11059] netlink: 'syz.0.2409': attribute type 1 has an invalid length. [ 203.852961][ T25] usb 7-1: new high-speed USB device number 21 using dummy_hcd [ 204.038806][ T25] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 204.044039][ T25] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 204.047738][ T25] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 204.054664][ T25] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 204.058665][ T25] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 204.065493][ T25] usb 7-1: config 0 descriptor?? [ 204.191114][ T39] audit: type=1800 audit(1719516135.639:30451): pid=11077 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.2416" name="bus" dev="overlay" ino=1971 res=0 errno=0 [ 204.201390][ T39] audit: type=1800 audit(1719516135.649:30452): pid=11077 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.2416" name="bus" dev="overlay" ino=1971 res=0 errno=0 [ 204.504619][ T25] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 204.507953][ T25] plantronics 0003:047F:FFFF.0010: unknown main item tag 0x0 [ 204.523135][ T25] plantronics 0003:047F:FFFF.0010: No inputs registered, leaving [ 204.529671][ T25] plantronics 0003:047F:FFFF.0010: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 204.556705][T11087] netlink: 'syz.1.2421': attribute type 1 has an invalid length. [ 204.560054][T11087] netlink: 112860 bytes leftover after parsing attributes in process `syz.1.2421'. [ 204.572964][T11087] netlink: 'syz.1.2421': attribute type 1 has an invalid length. [ 204.776857][ T5241] usb 7-1: USB disconnect, device number 21 [ 205.371372][ T39] audit: type=1400 audit(1719516136.819:30453): avc: denied { read } for pid=11112 comm="syz.2.2431" name="nullb0" dev="devtmpfs" ino=691 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 205.382105][ T39] audit: type=1400 audit(1719516136.819:30454): avc: denied { open } for pid=11112 comm="syz.2.2431" path="/dev/nullb0" dev="devtmpfs" ino=691 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 205.394258][ T39] audit: type=1400 audit(1719516136.829:30455): avc: denied { map } for pid=11112 comm="syz.2.2431" path="/dev/nullb0" dev="devtmpfs" ino=691 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 205.462943][ T9353] usb 6-1: new high-speed USB device number 20 using dummy_hcd [ 205.482972][ T830] usb 5-1: new high-speed USB device number 27 using dummy_hcd [ 205.642980][ T9353] usb 6-1: Using ep0 maxpacket: 32 [ 205.650209][ T9353] usb 6-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7 [ 205.655804][ T9353] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 205.660503][ T9353] usb 6-1: config 0 descriptor?? [ 205.663079][ T830] usb 5-1: Using ep0 maxpacket: 8 [ 205.668371][ T830] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 205.673942][ T830] usb 5-1: config 0 has no interface number 0 [ 205.676702][ T830] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 205.683826][ T9353] gspca_main: sunplus-2.14.0 probing 041e:400b [ 205.687884][ T830] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 205.703079][ T830] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 205.711156][ T830] usb 5-1: config 0 descriptor?? [ 205.721815][ T830] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 205.938141][ C0] iowarrior 5-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19 [ 205.943247][T11128] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2429'. [ 205.954940][ T830] usb 5-1: USB disconnect, device number 27 [ 205.972178][ T830] iowarrior 5-1:0.1: I/O-Warror #0 now disconnected [ 205.992328][T11109] batman_adv: batadv1: Adding interface: netdevsim0 [ 205.995714][T11109] batman_adv: batadv1: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 206.006015][T11109] batman_adv: batadv1: Interface activated: netdevsim0 [ 206.021726][ T9353] gspca_sunplus: reg_w_riv err -71 [ 206.024198][ T9353] sunplus 6-1:0.0: probe with driver sunplus failed with error -71 [ 206.033571][ T9353] usb 6-1: USB disconnect, device number 20 [ 206.350770][ T82] nci: nci_extract_activation_params_nfc_dep: unsupported activation_rf_tech_and_mode 0x6 [ 206.585149][T11148] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2320 sclass=netlink_route_socket pid=11148 comm=syz.3.2444 [ 206.831754][T11158] mac80211_hwsim hwsim6 veth0_vlan: renamed from wlan1 (while UP) [ 206.904025][ T39] kauditd_printk_skb: 2 callbacks suppressed [ 206.904042][ T39] audit: type=1800 audit(1719516138.349:30458): pid=11155 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.0.2446" name="bus" dev="sda1" ino=1952 res=0 errno=0 [ 206.967763][ T39] audit: type=1326 audit(1719516138.379:30459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11164 comm="syz.2.2449" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dbf175b29 code=0x7ffc0000 [ 206.981585][ T39] audit: type=1326 audit(1719516138.379:30460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11164 comm="syz.2.2449" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dbf175b29 code=0x7ffc0000 [ 207.002345][ T39] audit: type=1326 audit(1719516138.379:30461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11164 comm="syz.2.2449" exe="/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7f4dbf175b29 code=0x7ffc0000 [ 207.016328][ T39] audit: type=1326 audit(1719516138.379:30462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11164 comm="syz.2.2449" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dbf175b29 code=0x7ffc0000 [ 207.026939][ T39] audit: type=1326 audit(1719516138.379:30463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11164 comm="syz.2.2449" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dbf175b29 code=0x7ffc0000 [ 207.338883][T11185] pic_ioport_write: 2 callbacks suppressed [ 207.338901][T11185] kvm: pic: level sensitive irq not supported [ 207.348793][T11185] picdev_read: 6 callbacks suppressed [ 207.348812][T11185] kvm: pic: non byte read [ 207.356166][T11185] kvm: pic: level sensitive irq not supported [ 207.356482][T11185] kvm: pic: non byte read [ 207.362129][T11185] kvm: pic: level sensitive irq not supported [ 207.362480][T11185] kvm: pic: non byte read [ 207.446782][T11191] mac80211_hwsim hwsim11 veth0_vlan: renamed from wlan1 (while UP) [ 207.465879][ T39] audit: type=1800 audit(1719516138.927:30464): pid=11191 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.3.2460" name="bus" dev="sda1" ino=1968 res=0 errno=0 [ 207.633146][ T39] audit: type=1326 audit(1719516139.087:30465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11206 comm="syz.2.2468" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dbf175b29 code=0x7ffc0000 [ 207.646175][ T39] audit: type=1326 audit(1719516139.097:30466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11206 comm="syz.2.2468" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4dbf175b29 code=0x7ffc0000 [ 207.667066][ T39] audit: type=1326 audit(1719516139.097:30467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11206 comm="syz.2.2468" exe="/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7f4dbf175b29 code=0x7ffc0000 [ 207.827991][T11212] kvm: pic: level sensitive irq not supported [ 207.828706][T11212] kvm: pic: non byte read [ 207.853877][T11212] kvm: pic: level sensitive irq not supported [ 207.854178][T11212] kvm: pic: non byte read [ 207.859837][T11212] kvm: pic: level sensitive irq not supported [ 207.860210][T11212] kvm: pic: non byte read [ 207.900696][ T5184] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 207.910593][ T5184] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 207.912459][ T5184] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 207.914123][ T5184] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 207.916843][ T5184] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 207.940067][ T5184] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 208.020406][T11219] lo speed is unknown, defaulting to 1000 [ 208.160242][T11219] chnl_net:caif_netlink_parms(): no params data found [ 208.348018][ T63] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 208.451378][T11219] bridge0: port 1(bridge_slave_0) entered blocking state [ 208.455420][T11219] bridge0: port 1(bridge_slave_0) entered disabled state [ 208.457950][T11219] bridge_slave_0: entered allmulticast mode [ 208.460777][T11219] bridge_slave_0: entered promiscuous mode [ 208.476322][ T63] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 208.486218][T11243] syzkaller1: entered promiscuous mode [ 208.488161][T11243] syzkaller1: entered allmulticast mode [ 208.493886][T11219] bridge0: port 2(bridge_slave_1) entered blocking state [ 208.496850][T11219] bridge0: port 2(bridge_slave_1) entered disabled state [ 208.499695][T11219] bridge_slave_1: entered allmulticast mode [ 208.504216][T11219] bridge_slave_1: entered promiscuous mode [ 208.608726][T11219] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 208.635575][ T63] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 208.651037][T11219] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 208.754877][ T63] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 208.778097][T11219] team0: Port device team_slave_0 added [ 208.792140][T11219] team0: Port device team_slave_1 added [ 208.819760][T11250] kvm: pic: level sensitive irq not supported [ 208.820176][T11250] kvm: pic: non byte read [ 208.831732][T11250] kvm: pic: level sensitive irq not supported [ 208.832017][T11250] kvm: pic: non byte read [ 208.837524][T11250] kvm: pic: level sensitive irq not supported [ 208.837892][T11250] kvm: pic: non byte read [ 208.879367][T11219] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 208.882682][T11219] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 208.896246][T11219] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 208.904681][T11219] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 208.907912][T11219] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 208.920668][T11219] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 209.077000][T11219] hsr_slave_0: entered promiscuous mode [ 209.080596][T11219] hsr_slave_1: entered promiscuous mode [ 209.293547][ T63] bridge_slave_1: left allmulticast mode [ 209.296884][ T63] bridge_slave_1: left promiscuous mode [ 209.315849][ T63] bridge0: port 2(bridge_slave_1) entered disabled state [ 209.346624][ T63] bridge_slave_0: left allmulticast mode [ 209.353261][ T63] bridge_slave_0: left promiscuous mode [ 209.355503][ T63] bridge0: port 1(bridge_slave_0) entered disabled state [ 209.929926][ T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 209.936217][ T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 209.943836][ T63] bond0 (unregistering): Released all slaves [ 209.951504][ T63] bond1 (unregistering): Released all slaves [ 210.033057][ T5184] Bluetooth: hci4: command tx timeout [ 210.121981][ T63] tipc: Left network mode [ 210.227978][T11289] syzkaller1: entered promiscuous mode [ 210.240833][T11289] syzkaller1: entered allmulticast mode [ 210.251052][T11297] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 210.262186][T11297] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 210.523108][T11311] kvm: pic: level sensitive irq not supported [ 210.523486][T11311] kvm: pic: non byte read [ 210.608386][ T63] hsr_slave_0: left promiscuous mode [ 210.612087][ T63] hsr_slave_1: left promiscuous mode [ 210.616154][ T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 210.619179][ T63] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 210.622413][ T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 210.626796][ T63] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 210.674417][T11320] netlink: 'syz.0.2505': attribute type 2 has an invalid length. [ 210.675091][ T63] veth1_macvtap: left promiscuous mode [ 210.679351][T11320] netlink: 'syz.0.2505': attribute type 1 has an invalid length. [ 210.682301][ T63] veth0_macvtap: left promiscuous mode [ 210.687345][T11320] netlink: 181400 bytes leftover after parsing attributes in process `syz.0.2505'. [ 210.688891][ T63] veth1_vlan: left promiscuous mode [ 210.699624][ T63] veth0_vlan: left promiscuous mode [ 210.828162][T11328] netlink: 'syz.2.2509': attribute type 3 has an invalid length. [ 210.832009][T11328] netlink: 130984 bytes leftover after parsing attributes in process `syz.2.2509'. [ 210.836556][ T830] usb 6-1: new high-speed USB device number 21 using dummy_hcd [ 211.027696][ T830] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 211.035251][ T830] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 211.039177][ T830] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 211.041966][ T830] usb 6-1: SerialNumber: syz [ 211.171574][ T63] team0 (unregistering): Port device virt_wifi0 removed [ 211.930818][ T63] team0 (unregistering): Port device team_slave_1 removed [ 212.071438][ T63] team0 (unregistering): Port device team_slave_0 removed [ 212.087126][T11317] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=3584 sclass=netlink_route_socket pid=11317 comm=syz.1.2504 [ 212.123050][ T5184] Bluetooth: hci4: command tx timeout [ 212.964268][ T830] cdc_ether 6-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.1-1, CDC Ethernet Device, 42:42:42:42:42:42 [ 212.979188][ T830] usb 6-1: USB disconnect, device number 21 [ 212.994133][ T830] cdc_ether 6-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.1-1, CDC Ethernet Device [ 213.138191][T11219] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 213.146434][T11219] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 213.157051][T11219] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 213.166582][T11219] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 213.292315][T11219] 8021q: adding VLAN 0 to HW filter on device bond0 [ 213.310109][T11352] netlink: 'syz.2.2518': attribute type 3 has an invalid length. [ 213.315233][T11352] netlink: 130984 bytes leftover after parsing attributes in process `syz.2.2518'. [ 213.329674][T11219] 8021q: adding VLAN 0 to HW filter on device team0 [ 213.351720][ T830] bridge0: port 1(bridge_slave_0) entered blocking state [ 213.354774][ T830] bridge0: port 1(bridge_slave_0) entered forwarding state [ 213.376742][ T830] bridge0: port 2(bridge_slave_1) entered blocking state [ 213.379875][ T830] bridge0: port 2(bridge_slave_1) entered forwarding state [ 213.565392][T11219] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 213.595056][ T9353] usb 5-1: new high-speed USB device number 28 using dummy_hcd [ 213.611851][T11219] veth0_vlan: entered promiscuous mode [ 213.627717][T11219] veth1_vlan: entered promiscuous mode [ 213.647632][T11384] netlink: 'syz.2.2527': attribute type 3 has an invalid length. [ 213.652613][T11384] netlink: 130984 bytes leftover after parsing attributes in process `syz.2.2527'. [ 213.661119][T11219] veth0_macvtap: entered promiscuous mode [ 213.676270][T11219] veth1_macvtap: entered promiscuous mode [ 213.692154][T11219] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 213.700409][T11219] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 213.705879][T11219] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 213.710902][T11219] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 213.715079][T11219] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 213.719164][T11219] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 213.725939][T11219] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 213.735833][T11219] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 213.741392][T11219] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 213.746699][T11219] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 213.750600][T11219] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 213.755149][T11219] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 213.759301][T11219] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 213.764673][T11219] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 213.769752][T11387] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 213.778069][T11219] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 213.781854][T11219] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 213.782511][T11387] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 213.792684][T11219] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 213.793672][ T9353] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 213.796801][T11219] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 213.813698][ T9353] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 213.817442][ T9353] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 213.822574][ T9353] usb 5-1: SerialNumber: syz [ 213.905422][ T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 213.910342][ T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 213.956419][ T40] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 213.960842][ T40] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 214.192984][ T5184] Bluetooth: hci4: command tx timeout [ 214.443376][ T65] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 214.448926][ T65] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 214.453441][ T65] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 214.459629][ T65] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 214.463384][ T65] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 214.466942][ T65] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 214.490059][ T9353] cdc_ether 5-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.0-1, CDC Ethernet Device, 42:42:42:42:42:42 [ 214.508633][T11420] netlink: 'syz.1.2541': attribute type 12 has an invalid length. [ 214.518471][T11417] lo speed is unknown, defaulting to 1000 [ 214.702557][T11417] chnl_net:caif_netlink_parms(): no params data found [ 214.794208][T11441] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 214.809309][T11441] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 214.844593][T11417] bridge0: port 1(bridge_slave_0) entered blocking state [ 214.848030][T11417] bridge0: port 1(bridge_slave_0) entered disabled state [ 214.851042][T11417] bridge_slave_0: entered allmulticast mode [ 214.855115][T11417] bridge_slave_0: entered promiscuous mode [ 214.884137][T11417] bridge0: port 2(bridge_slave_1) entered blocking state [ 214.892384][T11354] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=3584 sclass=netlink_route_socket pid=11354 comm=syz.0.2519 [ 214.905454][T11417] bridge0: port 2(bridge_slave_1) entered disabled state [ 214.913957][T11417] bridge_slave_1: entered allmulticast mode [ 214.918965][T11417] bridge_slave_1: entered promiscuous mode [ 214.934712][ T6801] usb 5-1: USB disconnect, device number 28 [ 214.944324][ T6801] cdc_ether 5-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.0-1, CDC Ethernet Device [ 214.948763][ T830] usb 6-1: new full-speed USB device number 22 using dummy_hcd [ 215.116520][T11417] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 215.126987][T11417] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 215.159421][ T830] usb 6-1: config 0 interface 0 altsetting 44 endpoint 0x83 has an invalid bInterval 0, changing to 4 [ 215.165768][ T830] usb 6-1: config 0 interface 0 altsetting 44 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 215.172914][ T830] usb 6-1: config 0 interface 0 has no altsetting 0 [ 215.179067][ T830] usb 6-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 215.183380][ T830] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 215.186954][ T830] usb 6-1: Product: syz [ 215.188652][ T830] usb 6-1: Manufacturer: syz [ 215.190792][ T830] usb 6-1: SerialNumber: syz [ 215.199553][ T830] usb 6-1: config 0 descriptor?? [ 215.206187][ T830] input: syz syz as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input25 [ 215.239877][T11417] team0: Port device team_slave_0 added [ 215.254269][T11417] team0: Port device team_slave_1 added [ 215.322069][T11417] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 215.325261][T11417] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 215.338830][T11417] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 215.346418][T11417] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 215.350417][T11417] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 215.362003][T11417] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 215.409948][ T6801] usb 6-1: USB disconnect, device number 22 [ 215.462616][T11417] hsr_slave_0: entered promiscuous mode [ 215.466753][T11417] hsr_slave_1: entered promiscuous mode [ 215.470126][T11417] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 215.474441][T11417] Cannot create hsr debugfs directory [ 215.520080][T11454] netlink: 'syz.0.2551': attribute type 12 has an invalid length. [ 215.714400][T11417] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.946208][T11476] netlink: 'syz.1.2560': attribute type 12 has an invalid length. [ 216.175648][T11496] netlink: 'syz.2.2570': attribute type 12 has an invalid length. [ 216.183218][ T6801] usb 5-1: new high-speed USB device number 29 using dummy_hcd [ 216.216904][T11500] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2572'. [ 216.364709][ T6801] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 216.383649][ T6801] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 216.388234][ T6801] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 216.391521][ T6801] usb 5-1: SerialNumber: syz [ 216.412910][T11514] netlink: 'syz.1.2579': attribute type 12 has an invalid length. [ 216.523508][ T5184] Bluetooth: hci0: command tx timeout [ 216.712638][T11530] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2587'. [ 216.822520][T11545] netlink: 'syz.1.2591': attribute type 1 has an invalid length. [ 216.871370][T11545] 8021q: adding VLAN 0 to HW filter on device batadv2 [ 216.877770][T11545] bond1: (slave batadv2): Enslaving as a backup interface with an up link [ 216.892682][T11545] bond1 (unregistering): (slave batadv2): Releasing backup interface [ 216.907324][T11545] bond1 (unregistering): Released all slaves [ 217.070446][ T6801] cdc_ether 5-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.0-1, CDC Ethernet Device, 42:42:42:42:42:42 [ 217.087099][ T55] usb 7-1: new high-speed USB device number 22 using dummy_hcd [ 217.274745][ T55] usb 7-1: Using ep0 maxpacket: 8 [ 217.284366][ T55] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 217.289189][ T55] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 217.294563][ T55] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 217.299180][ T55] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 217.304829][ T55] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 217.308332][ T55] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 217.476814][T11474] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=3584 sclass=netlink_route_socket pid=11474 comm=syz.0.2559 [ 217.501358][ T9353] usb 5-1: USB disconnect, device number 29 [ 217.510974][ T9353] cdc_ether 5-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.0-1, CDC Ethernet Device [ 217.524767][ T55] usb 7-1: GET_CAPABILITIES returned 0 [ 217.527170][ T55] usbtmc 7-1:16.0: can't read capabilities [ 217.596695][T11574] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11574 comm=syz.1.2599 [ 217.602391][T11574] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2599'. [ 217.728016][T11582] netlink: 'syz.1.2601': attribute type 1 has an invalid length. [ 217.735172][ T55] usb 7-1: USB disconnect, device number 22 [ 217.779928][T11582] 8021q: adding VLAN 0 to HW filter on device batadv3 [ 217.785790][T11582] bond1: (slave batadv3): Enslaving as a backup interface with an up link [ 217.812569][T11582] bond1 (unregistering): (slave batadv3): Releasing backup interface [ 217.820290][T11582] bond1 (unregistering): Released all slaves [ 217.938860][T11591] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.2602'. [ 218.232993][ T6801] usb 6-1: new high-speed USB device number 23 using dummy_hcd [ 218.284316][T11602] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11602 comm=syz.2.2607 [ 218.293389][T11602] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2607'. [ 218.411208][T11606] netlink: 'syz.2.2609': attribute type 1 has an invalid length. [ 218.415707][ T6801] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 218.419207][ T6801] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 218.424043][ T6801] usb 6-1: config 0 descriptor?? [ 218.428999][ T6801] cp210x 6-1:0.0: cp210x converter detected [ 218.451944][T11606] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 218.458802][T11606] bond1: (slave batadv1): Enslaving as a backup interface with an up link [ 218.478766][T11606] bond1 (unregistering): (slave batadv1): Releasing backup interface [ 218.488809][T11606] bond1 (unregistering): Released all slaves [ 218.594991][ T5184] Bluetooth: hci0: command tx timeout [ 218.835366][T11591] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 218.841066][T11591] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 218.903098][ T830] usb 7-1: new full-speed USB device number 23 using dummy_hcd [ 219.085256][ T830] usb 7-1: config 0 interface 0 altsetting 44 endpoint 0x83 has an invalid bInterval 0, changing to 4 [ 219.089846][ T830] usb 7-1: config 0 interface 0 altsetting 44 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 219.096142][ T830] usb 7-1: config 0 interface 0 has no altsetting 0 [ 219.104697][ T830] usb 7-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 219.111282][T11614] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 219.117443][ T830] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 219.122091][T11614] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 219.125791][ T830] usb 7-1: Product: syz [ 219.127745][ T830] usb 7-1: Manufacturer: syz [ 219.129907][ T830] usb 7-1: SerialNumber: syz [ 219.136339][ T6801] cp210x 6-1:0.0: failed to get vendor val 0x3711 size 2: -71 [ 219.139857][ T6801] cp210x 6-1:0.0: GPIO initialisation failed: -71 [ 219.145213][ T830] usb 7-1: config 0 descriptor?? [ 219.154925][ T6801] usb 6-1: cp210x converter now attached to ttyUSB0 [ 219.159897][ T830] input: syz syz as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input26 [ 219.164655][ T6801] usb 6-1: USB disconnect, device number 23 [ 219.181398][ T6801] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 219.189406][ T6801] cp210x 6-1:0.0: device disconnected [ 219.313569][ T9353] usb 5-1: new high-speed USB device number 30 using dummy_hcd [ 219.368504][ T830] usb 7-1: USB disconnect, device number 23 [ 219.505777][ T9353] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 219.519741][ T9353] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 219.523607][ T9353] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 219.527286][ T9353] usb 5-1: SerialNumber: syz [ 219.545098][T11417] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 219.634567][T11417] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 219.719562][T11417] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 219.794901][ T39] kauditd_printk_skb: 14 callbacks suppressed [ 219.794919][ T39] audit: type=1400 audit(1719516151.257:30482): avc: denied { open } for pid=11615 comm="syz.1.2612" path="/dev/ptyq6" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1 [ 219.811007][ T39] audit: type=1400 audit(1719516151.257:30483): avc: denied { ioctl } for pid=11615 comm="syz.1.2612" path="/dev/ptyq6" dev="devtmpfs" ino=135 ioctlcmd=0x5431 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1 [ 219.824529][ T63] bridge_slave_1: left allmulticast mode [ 219.827519][ T63] bridge_slave_1: left promiscuous mode [ 219.830209][ T63] bridge0: port 2(bridge_slave_1) entered disabled state [ 219.838325][ T63] bridge_slave_0: left allmulticast mode [ 219.840394][ T63] bridge_slave_0: left promiscuous mode [ 219.849067][ T63] bridge0: port 1(bridge_slave_0) entered disabled state [ 219.932432][ T39] audit: type=1400 audit(1719516151.387:30484): avc: denied { mount } for pid=11619 comm="syz.2.2613" name="/" dev="afs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 220.012866][ T39] audit: type=1326 audit(1719516151.467:30485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11622 comm="syz.2.2614" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4dbf175b29 code=0x0 [ 220.295191][ T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 220.302035][ T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 220.308892][ T63] bond0 (unregistering): Released all slaves [ 220.332127][ T9353] cdc_ether 5-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.0-1, CDC Ethernet Device, 42:42:42:42:42:42 [ 220.419989][T11417] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 220.425383][T11417] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 220.430033][T11417] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 220.435211][T11417] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 220.535616][T11417] 8021q: adding VLAN 0 to HW filter on device bond0 [ 220.549124][T11417] 8021q: adding VLAN 0 to HW filter on device team0 [ 220.556462][ T829] bridge0: port 1(bridge_slave_0) entered blocking state [ 220.558957][ T829] bridge0: port 1(bridge_slave_0) entered forwarding state [ 220.579092][T11611] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=3584 sclass=netlink_route_socket pid=11611 comm=syz.0.2611 [ 220.592460][ T829] bridge0: port 2(bridge_slave_1) entered blocking state [ 220.595838][ T9353] usb 5-1: USB disconnect, device number 30 [ 220.597110][ T9353] cdc_ether 5-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.0-1, CDC Ethernet Device [ 220.598487][ T829] bridge0: port 2(bridge_slave_1) entered forwarding state [ 220.673069][ T5184] Bluetooth: hci0: command tx timeout [ 220.702726][T11636] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11636 comm=syz.1.2616 [ 220.710630][T11636] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2616'. [ 220.776992][ T63] hsr_slave_0: left promiscuous mode [ 220.781223][ T63] hsr_slave_1: left promiscuous mode [ 220.792016][ T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 220.795299][ T63] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 220.799434][ T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 220.802365][ T63] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 220.839694][ T63] veth1_macvtap: left promiscuous mode [ 220.842298][ T63] veth0_macvtap: left promiscuous mode [ 220.854012][ T63] veth1_vlan: left promiscuous mode [ 220.856619][ T63] veth0_vlan: left promiscuous mode [ 221.058624][ T6801] usb 6-1: new high-speed USB device number 24 using dummy_hcd [ 221.233060][ T6801] usb 6-1: Using ep0 maxpacket: 8 [ 221.237700][ T6801] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 221.243323][ T6801] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 221.247747][ T6801] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024 [ 221.252567][ T6801] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 221.256861][ T6801] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 221.262607][ T6801] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 221.267089][ T6801] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 221.479237][ T6801] usb 6-1: GET_CAPABILITIES returned 0 [ 221.481685][ T6801] usbtmc 6-1:16.0: can't read capabilities [ 221.682281][ T6801] usb 6-1: USB disconnect, device number 24 [ 222.078118][ T63] team0 (unregistering): Port device team_slave_1 removed [ 222.209639][ T63] team0 (unregistering): Port device team_slave_0 removed [ 222.503302][ T6801] usb 6-1: new full-speed USB device number 25 using dummy_hcd [ 222.711249][ T6801] usb 6-1: config 0 interface 0 altsetting 44 endpoint 0x83 has an invalid bInterval 0, changing to 4 [ 222.715488][ T6801] usb 6-1: config 0 interface 0 altsetting 44 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 222.720136][ T6801] usb 6-1: config 0 interface 0 has no altsetting 0 [ 222.726327][ T6801] usb 6-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 222.729744][ T6801] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 222.733247][ T6801] usb 6-1: Product: syz [ 222.734700][ T6801] usb 6-1: Manufacturer: syz [ 222.736390][ T6801] usb 6-1: SerialNumber: syz [ 222.746921][ T6801] usb 6-1: config 0 descriptor?? [ 222.752172][ T6801] input: syz syz as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input27 [ 222.753026][ T5184] Bluetooth: hci0: command tx timeout [ 222.976172][ T6801] usb 6-1: USB disconnect, device number 25 [ 223.039601][T11646] bond0: entered promiscuous mode [ 223.041522][T11646] bond_slave_0: entered promiscuous mode [ 223.043761][T11646] bond_slave_1: entered promiscuous mode [ 223.046600][T11646] bond0: left promiscuous mode [ 223.048626][T11646] bond_slave_0: left promiscuous mode [ 223.051094][T11646] bond_slave_1: left promiscuous mode [ 223.055721][T11648] tipc: Enabled bearer , priority 0 [ 223.058552][T11650] netlink: 'syz.0.2620': attribute type 2 has an invalid length. [ 223.062303][T11650] A link change request failed with some changes committed already. Interface macvlan0 may have been left with an inconsistent configuration, please check. [ 223.240197][T11417] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 223.281958][T11417] veth0_vlan: entered promiscuous mode [ 223.293682][T11417] veth1_vlan: entered promiscuous mode [ 223.331293][T11417] veth0_macvtap: entered promiscuous mode [ 223.336333][T11417] veth1_macvtap: entered promiscuous mode [ 223.347777][T11417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 223.351619][T11417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.354866][T11417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 223.358609][T11417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.363866][T11417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 223.368077][T11417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.373032][T11417] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 223.380468][T11417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 223.386397][T11417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.389799][T11417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 223.393627][T11417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.397187][T11417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 223.401387][T11417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 223.407579][T11417] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 223.417166][T11417] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 223.420859][T11417] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 223.424997][T11417] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 223.428720][T11417] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 223.492312][ T1096] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 223.498383][ T1096] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 223.538718][ T1102] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 223.542125][ T1102] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 223.654295][ T6801] usb 5-1: new high-speed USB device number 31 using dummy_hcd [ 223.857889][ T6801] usb 5-1: Using ep0 maxpacket: 8 [ 223.863161][ T6801] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024 [ 223.868710][ T6801] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 223.873179][ T6801] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 223.877134][T11684] bond0: entered promiscuous mode [ 223.877364][ T6801] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 223.879620][T11684] bond_slave_0: entered promiscuous mode [ 223.888294][T11684] bond_slave_1: entered promiscuous mode [ 223.888317][ T6801] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 223.894872][ T830] usb 6-1: new high-speed USB device number 26 using dummy_hcd [ 223.899097][ T6801] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 224.054735][T11685] tipc: Failed to obtain node identity [ 224.056782][T11685] tipc: Enabling of bearer rejected, failed to enable media [ 224.082946][ T830] usb 6-1: Using ep0 maxpacket: 8 [ 224.087425][ T830] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 224.091013][ T830] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 224.096172][ T830] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024 [ 224.100805][ T830] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 224.107570][ T830] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 224.112493][ T830] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 224.119695][ T830] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 224.125363][ T6801] usb 5-1: usb_control_msg returned -32 [ 224.129272][ T6801] usbtmc 5-1:16.0: can't read capabilities [ 224.205645][ T39] audit: type=1800 audit(1719516155.667:30486): pid=11689 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.2.2633" name="bus" dev="sda1" ino=1968 res=0 errno=0 [ 224.349351][ T830] usb 6-1: GET_CAPABILITIES returned 0 [ 224.351389][ T830] usbtmc 6-1:16.0: can't read capabilities [ 224.477404][ C0] usbtmc 5-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71 [ 224.481070][ C0] usbtmc 5-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71 [ 224.485062][T11690] usbtmc 5-1:16.0: Unable to send data, error -71 [ 224.554038][ T830] usb 6-1: USB disconnect, device number 26 [ 224.707243][T11683] bond0: left promiscuous mode [ 224.708985][T11683] bond_slave_0: left promiscuous mode [ 224.711190][T11683] bond_slave_1: left promiscuous mode [ 225.012989][ T25] usb 8-1: new full-speed USB device number 20 using dummy_hcd [ 225.194590][ T25] usb 8-1: config 0 interface 0 altsetting 44 endpoint 0x83 has an invalid bInterval 0, changing to 4 [ 225.198662][ T25] usb 8-1: config 0 interface 0 altsetting 44 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 225.205155][ T25] usb 8-1: config 0 interface 0 has no altsetting 0 [ 225.210062][ T25] usb 8-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 225.214632][ T25] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 225.217894][ T25] usb 8-1: Product: syz [ 225.219748][ T25] usb 8-1: Manufacturer: syz [ 225.221939][ T39] audit: type=1326 audit(1719516156.677:30487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11707 comm="syz.2.2642" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4dbf175b29 code=0x0 [ 225.231538][ T25] usb 8-1: SerialNumber: syz [ 225.236054][ T25] usb 8-1: config 0 descriptor?? [ 225.243775][ T25] input: syz syz as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/input/input28 [ 225.273514][ T4693] udevd[4693]: worker [10820] terminated by signal 33 (Unknown signal 33) [ 225.276271][ T4693] udevd[4693]: worker [10820] failed while handling '/devices/platform/dummy_hcd.3/usb8/8-1' [ 225.455877][ T5240] usb 8-1: USB disconnect, device number 20 [ 226.071609][T11716] binder: 11714:11716 ioctl c0306201 0 returned -14 [ 226.100389][T11720] TCP: Unexpected MD5 Hash found for [fe80::].0->[ff02::1].20002 [FSRP.] [ 226.272989][ T5240] usb 8-1: new high-speed USB device number 21 using dummy_hcd [ 226.401906][ T830] usb 5-1: USB disconnect, device number 31 [ 226.466829][ T5240] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 226.471718][ T5240] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0xFF has invalid wMaxPacketSize 0 [ 226.476122][ T5240] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 226.481894][ T5240] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 226.487995][ T5240] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 226.493812][ T5240] usb 8-1: config 0 descriptor?? [ 226.713001][ T5242] usb 7-1: new high-speed USB device number 24 using dummy_hcd [ 226.894506][ T5242] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 226.898664][ T5242] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 226.902887][ T5242] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 226.908132][ T5242] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 226.912274][ T5242] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 226.915628][ T5240] plantronics 0003:047F:FFFF.0011: unknown main item tag 0x0 [ 226.919114][ T5240] plantronics 0003:047F:FFFF.0011: No inputs registered, leaving [ 226.920637][ T5242] usb 7-1: config 0 descriptor?? [ 226.926275][ T5240] plantronics 0003:047F:FFFF.0011: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 227.014230][ T39] audit: type=1326 audit(1719516158.477:30488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11742 comm="syz.1.2654" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1bee575b29 code=0x0 [ 227.189809][ T820] usb 8-1: USB disconnect, device number 21 [ 227.343674][ T5242] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0 [ 227.347177][ T5242] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x0 [ 227.351198][ T5242] plantronics 0003:047F:FFFF.0012: No inputs registered, leaving [ 227.360452][ T5242] plantronics 0003:047F:FFFF.0012: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 227.398868][T11749] bond0: entered promiscuous mode [ 227.401371][T11749] bond_slave_0: entered promiscuous mode [ 227.405690][T11749] bond_slave_1: entered promiscuous mode [ 227.607781][T11750] tipc: Enabled bearer , priority 0 [ 227.967632][T11760] usb 7-1: language id specifier not provided by device, defaulting to English [ 227.990974][T11765] netlink: 'syz.3.2662': attribute type 21 has an invalid length. [ 227.995415][T11765] IPv6: NLM_F_CREATE should be specified when creating new route [ 228.153111][ T830] usb 6-1: new high-speed USB device number 27 using dummy_hcd [ 228.228885][T11748] bond0: left promiscuous mode [ 228.231074][T11748] bond_slave_0: left promiscuous mode [ 228.234081][T11748] bond_slave_1: left promiscuous mode [ 228.362980][ T830] usb 6-1: Using ep0 maxpacket: 8 [ 228.367385][ T830] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024 [ 228.372579][ T830] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 228.380528][ T830] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 228.384818][ T830] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 228.390654][ T830] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 228.410908][ T830] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 228.634156][ T830] usb 6-1: usb_control_msg returned -32 [ 228.637018][ T830] usbtmc 6-1:16.0: can't read capabilities [ 228.848718][ T39] audit: type=1326 audit(1719516160.307:30489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11782 comm="syz.0.2668" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fda07f75b29 code=0x0 [ 229.233016][ T55] usb 8-1: new high-speed USB device number 22 using dummy_hcd [ 229.433035][ T55] usb 8-1: Using ep0 maxpacket: 32 [ 229.437571][ T55] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 229.442288][ T55] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 229.446720][ T55] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 7 [ 229.451337][ T55] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 229.455609][ T55] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 229.462112][ T55] usb 8-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00 [ 229.466296][ T55] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 229.471352][ T55] usb 8-1: config 0 descriptor?? [ 229.618353][T11796] bond0: entered promiscuous mode [ 229.620712][T11796] bond_slave_0: entered promiscuous mode [ 229.624784][T11796] bond_slave_1: entered promiscuous mode [ 229.831106][T11799] tipc: Enabling of bearer rejected, already enabled [ 229.859199][ T5240] usb 7-1: USB disconnect, device number 24 [ 229.882565][ T55] ntrig 0003:1B96:000A.0013: hidraw1: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.3-1/input0 [ 230.166013][ T55] usb 8-1: USB disconnect, device number 22 [ 230.380703][ T39] audit: type=1400 audit(1719516161.837:30490): avc: denied { read write } for pid=11810 comm="syz.0.2679" name="uhid" dev="devtmpfs" ino=1111 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 230.391153][ T39] audit: type=1400 audit(1719516161.837:30491): avc: denied { open } for pid=11810 comm="syz.0.2679" path="/dev/uhid" dev="devtmpfs" ino=1111 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 230.398966][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.407092][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.410548][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.414059][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.417616][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.420993][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.425626][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.429091][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.432499][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.435968][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.439731][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.443236][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.448618][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.452089][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.452167][T11795] bond0: left promiscuous mode [ 230.455527][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.455551][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.455570][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.455588][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.455608][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.455627][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.455645][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.455663][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.455682][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.455701][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.455720][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.455740][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.455760][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.455780][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.458227][T11795] bond_slave_0: left promiscuous mode [ 230.461409][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.464729][T11795] bond_slave_1: left promiscuous mode [ 230.468088][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.520571][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.524076][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.527539][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.530988][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.534637][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.539117][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.547573][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.551445][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.555233][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.558840][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.562338][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.565893][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.576447][ T6801] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0 [ 230.587704][ T6801] hid-generic 0000:0000:0000.0014: hidraw1: HID v0.00 Device [syz0] on syz0 [ 230.682946][ T39] audit: type=1326 audit(1719516162.137:30492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11821 comm="syz.0.2683" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fda07f75b29 code=0x0 [ 230.883012][ T820] usb 7-1: new high-speed USB device number 25 using dummy_hcd [ 230.887643][ T6801] usb 6-1: USB disconnect, device number 27 [ 231.035759][T11837] bond0: entered promiscuous mode [ 231.038227][T11837] bond_slave_0: entered promiscuous mode [ 231.041003][T11837] bond_slave_1: entered promiscuous mode [ 231.089610][ T820] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 231.097956][ T820] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 231.103971][ T820] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 231.108229][ T820] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 231.113894][ T820] usb 7-1: config 0 descriptor?? [ 231.191834][T11843] tipc: Enabled bearer , priority 0 [ 231.372953][ T9353] usb 8-1: new high-speed USB device number 23 using dummy_hcd [ 231.525355][ T820] plantronics 0003:047F:FFFF.0015: unknown main item tag 0x0 [ 231.529126][ T820] plantronics 0003:047F:FFFF.0015: No inputs registered, leaving [ 231.543090][ T820] plantronics 0003:047F:FFFF.0015: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 231.553285][ T9353] usb 8-1: Using ep0 maxpacket: 32 [ 231.560336][ T9353] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 231.567493][ T9353] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 231.572089][ T9353] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 7 [ 231.579771][ T9353] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 231.584848][ T9353] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 231.590979][ T9353] usb 8-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00 [ 231.595293][ T9353] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 231.601367][ T9353] usb 8-1: config 0 descriptor?? [ 231.796830][ T5240] usb 7-1: USB disconnect, device number 25 [ 231.803270][ T6801] usb 5-1: new high-speed USB device number 32 using dummy_hcd [ 231.868704][T11835] bond0: left promiscuous mode [ 231.871001][T11835] bond_slave_0: left promiscuous mode [ 231.875552][T11835] bond_slave_1: left promiscuous mode [ 231.954174][ T5184] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 231.957342][ T5184] Bluetooth: hci0: Injecting HCI hardware error event [ 231.961192][ T5184] Bluetooth: hci0: hardware error 0x00 [ 232.013049][ T6801] usb 5-1: Using ep0 maxpacket: 8 [ 232.018240][ T6801] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024 [ 232.030048][ T6801] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 232.035524][ T9353] ntrig 0003:1B96:000A.0016: hidraw1: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.3-1/input0 [ 232.040658][ T6801] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 232.045447][ T6801] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 232.051414][ T6801] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 232.058235][ T6801] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 232.290561][ T6801] usb 5-1: usb_control_msg returned -32 [ 232.292890][ T6801] usbtmc 5-1:16.0: can't read capabilities [ 232.309760][ T9353] usb 8-1: USB disconnect, device number 23 [ 232.642727][ C0] usbtmc 5-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71 [ 232.645885][ C0] usbtmc 5-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71 [ 232.650576][T11857] usbtmc 5-1:16.0: Unable to send data, error -71 [ 232.926646][ T39] audit: type=1326 audit(1719516164.387:30493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11868 comm="syz.2.2702" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4dbf175b29 code=0x0 [ 233.103145][ T9353] usb 8-1: new high-speed USB device number 24 using dummy_hcd [ 233.233162][ T6801] usb 6-1: new high-speed USB device number 28 using dummy_hcd [ 233.295369][ T9353] usb 8-1: config 17 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 233.299907][ T9353] usb 8-1: config 17 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024 [ 233.304057][ T9353] usb 8-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 233.307355][ T9353] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 233.312092][T11861] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 233.416868][ T6801] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 233.421762][ T6801] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 233.426997][ T6801] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 233.431183][ T6801] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 233.438168][ T6801] usb 6-1: config 0 descriptor?? [ 233.869060][ T6801] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0 [ 233.873781][ T6801] plantronics 0003:047F:FFFF.0017: No inputs registered, leaving [ 233.881564][ T6801] plantronics 0003:047F:FFFF.0017: hiddev1,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 234.033186][ T5184] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 234.073620][ T6801] usb 6-1: USB disconnect, device number 28 [ 234.146212][ T9353] aiptek 8-1:17.0: Aiptek using 400 ms programming speed [ 234.152579][ T9353] input: Aiptek as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:17.0/input/input36 [ 234.174908][ T9353] usb 8-1: USB disconnect, device number 24 [ 234.177964][ C0] aiptek 8-1:17.0: aiptek_irq - usb_submit_urb failed with result -19 [ 234.554162][ T9353] usb 5-1: USB disconnect, device number 32 [ 234.796423][T11895] IPVS: Error connecting to the multicast addr [ 234.881250][T11899] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2715'. [ 234.901439][T11899] bridge0: port 2(bridge_slave_1) entered disabled state [ 234.907622][T11899] bridge0: port 1(bridge_slave_0) entered disabled state [ 234.925963][T11899] bridge0: port 2(bridge_slave_1) entered blocking state [ 234.930971][T11899] bridge0: port 2(bridge_slave_1) entered forwarding state [ 234.936187][T11899] bridge0: port 1(bridge_slave_0) entered blocking state [ 234.939440][T11899] bridge0: port 1(bridge_slave_0) entered forwarding state [ 234.954769][T11899] team0: Port device bridge0 added [ 234.993031][ T9353] usb 5-1: new high-speed USB device number 33 using dummy_hcd [ 235.193013][ T9353] usb 5-1: Using ep0 maxpacket: 32 [ 235.197512][ T9353] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 235.202148][ T9353] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 235.206591][ T9353] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 7 [ 235.210816][ T9353] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 235.214165][ T9353] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 235.218591][ T9353] usb 5-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00 [ 235.222398][ T9353] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 235.228139][ T9353] usb 5-1: config 0 descriptor?? [ 235.283093][ T25] usb 8-1: new high-speed USB device number 25 using dummy_hcd [ 235.333089][ T5240] usb 7-1: new high-speed USB device number 26 using dummy_hcd [ 235.463291][ T25] usb 8-1: Using ep0 maxpacket: 8 [ 235.467334][ T25] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024 [ 235.472056][ T25] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 235.476892][ T25] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 235.481155][ T25] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 235.487033][ T25] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 235.491052][ T25] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 235.537243][ T5240] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 235.542208][ T5240] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 235.548290][ T5240] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 235.552426][ T5240] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 235.559649][ T5240] usb 7-1: config 0 descriptor?? [ 235.658207][ T9353] ntrig 0003:1B96:000A.0018: hidraw1: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.0-1/input0 [ 235.721508][ T25] usb 8-1: usb_control_msg returned -32 [ 235.724470][ T25] usbtmc 8-1:16.0: can't read capabilities [ 235.823010][ T818] usb 6-1: new high-speed USB device number 29 using dummy_hcd [ 235.952735][ T9353] usb 5-1: USB disconnect, device number 33 [ 235.980065][ T5240] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0 [ 235.984852][ T5240] plantronics 0003:047F:FFFF.0019: No inputs registered, leaving [ 235.994534][ T5240] plantronics 0003:047F:FFFF.0019: hiddev1,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 236.015353][ T818] usb 6-1: config 17 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 236.020805][ T818] usb 6-1: config 17 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024 [ 236.028592][ T818] usb 6-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 236.032391][ T818] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 236.040812][T11908] raw-gadget.3 gadget.1: fail, usb_ep_enable returned -22 [ 236.075858][ C2] usbtmc 8-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71 [ 236.080039][ C2] usbtmc 8-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71 [ 236.085432][T11910] usbtmc 8-1:16.0: Unable to send data, error -71 [ 236.182440][ T5240] usb 7-1: USB disconnect, device number 26 [ 236.561421][T11916] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2722'. [ 236.605566][T11918] IPVS: Unknown mcast interface: vcan0 [ 236.681843][ T5184] Bluetooth: hci1: unexpected event for opcode 0x2028 [ 236.887392][ T818] aiptek 6-1:17.0: Aiptek using 400 ms programming speed [ 236.898462][ T818] input: Aiptek as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:17.0/input/input40 [ 236.930176][ T818] usb 6-1: USB disconnect, device number 29 [ 236.930238][ C0] aiptek 6-1:17.0: aiptek_irq - usb_submit_urb failed with result -19 [ 237.622474][T11936] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2731'. [ 237.660402][T11938] usb usb9: usbfs: interface 0 claimed by hub while 'syz.2.2732' sets config #0 [ 237.694002][T11940] IPVS: Unknown mcast interface: vcan0 [ 237.755482][ T818] usb 6-1: new high-speed USB device number 30 using dummy_hcd [ 237.943017][ T818] usb 6-1: Using ep0 maxpacket: 32 [ 237.947564][ T818] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 237.962931][ T818] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 237.967458][ T818] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 7 [ 237.972120][ T818] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 237.989597][ T818] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 237.999758][ T818] usb 6-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00 [ 238.009874][ T818] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 238.017878][ T818] usb 6-1: config 0 descriptor?? [ 238.021437][ T828] usb 8-1: USB disconnect, device number 25 [ 238.093063][ T5240] usb 7-1: new high-speed USB device number 27 using dummy_hcd [ 238.272904][ T5240] usb 7-1: Using ep0 maxpacket: 8 [ 238.276804][ T5240] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 238.280085][ T5240] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 238.286784][ T5240] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024 [ 238.291761][ T5240] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 238.300770][ T5240] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 238.309303][ T5240] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 238.318647][ T5240] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 238.464842][ T818] ntrig 0003:1B96:000A.001A: hidraw1: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.1-1/input0 [ 238.541241][ T5240] usb 7-1: GET_CAPABILITIES returned 0 [ 238.543991][ T5240] usbtmc 7-1:16.0: can't read capabilities [ 238.735305][ T818] usb 6-1: USB disconnect, device number 30 [ 238.745618][ T828] usb 7-1: USB disconnect, device number 27 [ 238.756016][T11966] TCP: Unexpected MD5 Hash found for [fe80::].0->[ff02::1].20002 [FSRP.] [ 238.892957][T11973] binder: 11972:11973 ioctl c0306201 0 returned -14 [ 239.293075][ T5240] usb 8-1: new high-speed USB device number 26 using dummy_hcd [ 239.482934][ T5240] usb 8-1: Using ep0 maxpacket: 8 [ 239.487472][ T5240] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024 [ 239.492693][ T5240] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 239.497001][ T5240] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 239.500981][ T5240] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 239.506945][ T5240] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 239.510162][ T5240] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 239.563027][ T25] usb 7-1: new high-speed USB device number 28 using dummy_hcd [ 239.727577][ T5240] usb 8-1: usb_control_msg returned -32 [ 239.729896][ T5240] usbtmc 8-1:16.0: can't read capabilities [ 239.753687][ T25] usb 7-1: config 17 interface 0 altsetting 0 endpoint 0xFF has an invalid bInterval 0, changing to 7 [ 239.758969][ T25] usb 7-1: config 17 interface 0 altsetting 0 endpoint 0xFF has invalid maxpacket 59391, setting to 1024 [ 239.764389][ T25] usb 7-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 239.768408][ T25] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 239.773332][T11991] IPVS: Unknown mcast interface: vcan0 [ 239.773996][T11986] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 239.936999][T11998] TCP: Unexpected MD5 Hash found for [fe80::].0->[ff02::1].20002 [FSRP.] [ 240.081169][ C2] usbtmc 8-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71 [ 240.085536][ C2] usbtmc 8-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71 [ 240.089926][T12002] usbtmc 8-1:16.0: Unable to send data, error -71 [ 240.295887][T12007] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2758'. [ 240.615118][ T25] aiptek 7-1:17.0: Aiptek using 400 ms programming speed [ 240.620415][ T25] input: Aiptek as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:17.0/input/input41 [ 240.633820][ T818] usb 6-1: new high-speed USB device number 31 using dummy_hcd [ 240.643205][ T25] usb 7-1: USB disconnect, device number 28 [ 240.643269][ C2] aiptek 7-1:17.0: aiptek_irq - usb_submit_urb failed with result -19 [ 240.812953][ T818] usb 6-1: Using ep0 maxpacket: 32 [ 240.820875][ T818] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 240.833114][ T818] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 240.838304][ T818] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 7 [ 240.851127][ T818] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 240.862637][ T818] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 240.872966][ T818] usb 6-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00 [ 240.877234][ T818] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 240.893198][ T818] usb 6-1: config 0 descriptor?? [ 241.164707][T12013] binder: 12012:12013 ioctl c0306201 0 returned -14 [ 241.193208][ T6801] usb 5-1: new high-speed USB device number 34 using dummy_hcd [ 241.324472][ T818] ntrig 0003:1B96:000A.001B: hidraw1: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.1-1/input0 [ 241.392906][ T6801] usb 5-1: Using ep0 maxpacket: 8 [ 241.398066][ T6801] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 241.403045][ T6801] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 241.407578][ T6801] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024 [ 241.412608][ T6801] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 241.419543][ T6801] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 241.425480][ T6801] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 241.429194][ T6801] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 241.627399][ T818] usb 6-1: USB disconnect, device number 31 [ 241.666546][ T6801] usb 5-1: GET_CAPABILITIES returned 0 [ 241.669152][ T6801] usbtmc 5-1:16.0: can't read capabilities [ 241.871416][ T818] usb 5-1: USB disconnect, device number 34 [ 242.046143][ T5240] usb 8-1: USB disconnect, device number 26 [ 242.076647][T12021] IPVS: Error connecting to the multicast addr [ 242.113596][T12027] TCP: Unexpected MD5 Hash found for [fe80::].0->[ff02::1].20002 [FSRP.] [ 242.222094][T12036] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2768'. [ 242.496938][T12043] binder: 12042:12043 ioctl c0306201 0 returned -14 [ 243.127231][T12054] TCP: Unexpected MD5 Hash found for [fe80::].0->[ff02::1].20002 [FSRP.] [ 243.432996][ T25] usb 8-1: new high-speed USB device number 27 using dummy_hcd [ 243.453181][ T5241] usb 7-1: new high-speed USB device number 29 using dummy_hcd [ 243.613020][ T25] usb 8-1: Using ep0 maxpacket: 32 [ 243.617568][ T25] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 243.621887][ T25] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 243.625951][ T25] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 7 [ 243.630803][ T25] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 243.633066][ T5241] usb 7-1: Using ep0 maxpacket: 8 [ 243.635357][ T25] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 243.639102][ T5241] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 243.643338][ T25] usb 8-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00 [ 243.647793][ T5241] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 243.651747][ T25] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 243.655766][ T5241] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024 [ 243.662366][ T25] usb 8-1: config 0 descriptor?? [ 243.664838][ T5241] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 243.671538][ T5241] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 243.677564][ T5241] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 243.682098][ T5241] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 243.818843][ T39] audit: type=1800 audit(1719516175.277:30494): pid=12082 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz.1.2786" name="bus" dev="sda1" ino=1969 res=0 errno=0 [ 243.909144][ T5241] usb 7-1: GET_CAPABILITIES returned 0 [ 243.911487][ T5241] usbtmc 7-1:16.0: can't read capabilities [ 244.094299][ T25] ntrig 0003:1B96:000A.001C: hidraw1: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.3-1/input0 [ 244.114797][ T5241] usb 7-1: USB disconnect, device number 29 [ 244.390140][ T25] usb 8-1: USB disconnect, device number 27 [ 244.682847][ C2] ================================================================== [ 244.686555][ C2] BUG: KASAN: stack-out-of-bounds in profile_pc+0x186/0x1a0 [ 244.689851][ C2] Read of size 8 at addr ffffc90003f9fba0 by task syz-executor/11417 [ 244.695012][ C2] [ 244.696572][ C2] CPU: 2 PID: 11417 Comm: syz-executor Not tainted 6.10.0-rc5-syzkaller-00155-g66e55ff12e73 #0 SYZFAIL: failed to recv rpc fd=3 want=4 sent=0 n=0 (errno 9: Bad file descriptor) [ 244.701201][ C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 244.706068][ C2] Call Trace: [ 244.707714][ C2] [ 244.709081][ C2] dump_stack_lvl+0x116/0x1f0 [ 244.711208][ C2] print_report+0xc3/0x620 [ 244.713161][ C2] ? __virt_addr_valid+0x5e/0x580 [ 244.715359][ C2] kasan_report+0xd9/0x110 [ 244.717256][ C2] ? profile_pc+0x186/0x1a0 [ 244.719116][ C2] ? profile_pc+0x186/0x1a0 [ 244.720983][ C2] ? queued_read_lock_slowpath+0x131/0x2b1 [ 244.723460][ C2] profile_pc+0x186/0x1a0 [ 244.725328][ C2] profile_tick+0xd3/0x140 [ 244.727226][ C2] tick_nohz_handler+0x380/0x530 [ 244.729311][ C2] ? __pfx_tick_nohz_handler+0x10/0x10 [ 244.731590][ C2] __hrtimer_run_queues+0x657/0xcc0 [ 244.733805][ C2] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 244.736423][ C2] ? ktime_get_update_offsets_now+0x201/0x310 [ 244.739002][ C2] hrtimer_interrupt+0x31b/0x800 [ 244.741181][ C2] __sysvec_apic_timer_interrupt+0x10f/0x450 [ 244.743491][ C2] sysvec_apic_timer_interrupt+0x90/0xb0 [ 244.745634][ C2] [ 244.746777][ C2] [ 244.747918][ C2] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 244.750251][ C2] RIP: 0010:queued_read_lock_slowpath+0x131/0x2b1 [ 244.752667][ C2] Code: 85 45 01 00 00 8b 03 84 c0 74 36 48 b8 00 00 00 00 00 fc ff df 49 89 de 48 89 dd 49 c1 ee 03 83 e5 07 49 01 c6 83 c5 03 f3 90 <41> 0f b6 06 40 38 c5 7c 08 84 c0 0f 85 1f 01 00 00 8b 03 84 c0 75 [ 244.760826][ C2] RSP: 0018:ffffc90003f9fb98 EFLAGS: 00000286 [ 244.763518][ C2] RAX: 00000000000002ff RBX: ffffffff8d80a080 RCX: ffffffff8aeb316b [ 244.766936][ C2] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff8d80a080 [ 244.770410][ C2] RBP: 0000000000000003 R08: 0000000000000001 R09: fffffbfff1b01410 [ 244.773831][ C2] R10: ffffffff8d80a083 R11: 0000000000000000 R12: 1ffff920007f3f74 [ 244.777270][ C2] R13: ffffffff8d80a084 R14: fffffbfff1b01410 R15: ffffffff81519b09 [ 244.780712][ C2] ? do_wait+0x1e9/0x570 [ 244.782559][ C2] ? queued_read_lock_slowpath+0xdb/0x2b1 [ 244.784926][ C2] ? queued_read_lock_slowpath+0xdb/0x2b1 [ 244.787448][ C2] ? __pfx_queued_read_lock_slowpath+0x10/0x10 [ 244.790018][ C2] __do_wait+0x105/0x890 [ 244.791751][ C2] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 244.794147][ C2] ? do_wait+0x1e9/0x570 [ 244.795985][ C2] do_wait+0x219/0x570 [ 244.797804][ C2] kernel_wait4+0x16c/0x280 [ 244.799955][ C2] ? __pfx_kernel_wait4+0x10/0x10 [ 244.802253][ C2] ? __pfx_child_wait_callback+0x10/0x10 [ 244.804907][ C2] ? __pfx_hrtimer_nanosleep+0x10/0x10 [ 244.807434][ C2] ? __might_fault+0xe3/0x190 [ 244.809523][ C2] __do_sys_wait4+0x15f/0x170 [ 244.811609][ C2] ? __pfx___do_sys_wait4+0x10/0x10 [ 244.813956][ C2] ? __pfx_get_timespec64+0x10/0x10 [ 244.816263][ C2] do_syscall_64+0xcd/0x250 [ 244.818313][ C2] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.820952][ C2] RIP: 0033:0x7f659976be57 [ 244.822887][ C2] Code: 89 7c 24 10 48 89 4c 24 18 e8 85 14 03 00 4c 8b 54 24 18 8b 54 24 14 41 89 c0 48 8b 74 24 08 8b 7c 24 10 b8 3d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 89 44 24 10 e8 d5 14 03 00 8b 44 [ 244.831116][ C2] RSP: 002b:00007ffd943c7840 EFLAGS: 00000293 ORIG_RAX: 000000000000003d [ 244.834707][ C2] RAX: ffffffffffffffda RBX: 000000000000005c RCX: 00007f659976be57 [ 244.838267][ C2] RDX: 0000000040000001 RSI: 00007ffd943c78bc RDI: 00000000ffffffff [ 244.841721][ C2] RBP: 00007ffd943c78bc R08: 0000000000000000 R09: 00007f659a592080 [ 244.845114][ C2] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 244.848564][ C2] R13: 000000000003b9f5 R14: 000000000003b52c R15: 00007ffd943c7920 [ 244.852053][ C2] [ 244.853464][ C2] [ 244.854521][ C2] The buggy address belongs to stack of task syz-executor/11417 [ 244.857772][ C2] and is located at offset 0 in frame: [ 244.860105][ C2] queued_read_lock_slowpath+0x0/0x2b1 [ 244.862483][ C2] [ 244.863516][ C2] This frame has 1 object: [ 244.865446][ C2] [32, 36) 'val' [ 244.865456][ C2] [ 244.868012][ C2] The buggy address belongs to the virtual mapping at [ 244.868012][ C2] [ffffc90003f98000, ffffc90003fa1000) created by: [ 244.868012][ C2] kernel_clone+0xfd/0x980 [ 244.875531][ C2] [ 244.876599][ C2] The buggy address belongs to the physical page: [ 244.879373][ C2] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4a156 [ 244.883184][ C2] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 244.886320][ C2] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 244.889983][ C2] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 244.893551][ C2] page dumped because: kasan: bad access detected [ 244.896308][ C2] page_owner tracks the page as allocated [ 244.898744][ C2] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x102dc2(GFP_HIGHUSER|__GFP_NOWARN|__GFP_ZERO), pid 11414, tgid 11414 (syz-executor), ts 214426914528, free_ts 214289613211 [ 244.906483][ C2] post_alloc_hook+0x2d1/0x350 [ 244.908702][ C2] get_page_from_freelist+0x1353/0x2e50 [ 244.911247][ C2] __alloc_pages_noprof+0x22b/0x2460 [ 244.913601][ C2] alloc_pages_mpol_noprof+0x275/0x610 [ 244.915914][ C2] __vmalloc_node_range_noprof+0xa6a/0x1520 [ 244.918465][ C2] copy_process+0x2f38/0x8f10 [ 244.920512][ C2] kernel_clone+0xfd/0x980 [ 244.922478][ C2] __do_sys_clone+0xba/0x100 [ 244.924522][ C2] do_syscall_64+0xcd/0x250 [ 244.926495][ C2] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.928832][ C2] page last free pid 11219 tgid 11219 stack trace: [ 244.931936][ C2] free_unref_page+0x64a/0xe40 [ 244.934033][ C2] vfree+0x181/0x7a0 [ 244.935651][ C2] kcov_put+0x2a/0x40 [ 244.937191][ C2] kcov_close+0x10/0x20 [ 244.938856][ C2] __fput+0x408/0xbb0 [ 244.940604][ C2] task_work_run+0x14e/0x250 [ 244.942610][ C2] do_exit+0xa9b/0x2ba0 [ 244.944426][ C2] do_group_exit+0xd3/0x2a0 [ 244.946301][ C2] get_signal+0x2616/0x2710 [ 244.947977][ C2] arch_do_signal_or_restart+0x90/0x7e0 [ 244.950212][ C2] syscall_exit_to_user_mode+0x14a/0x2a0 [ 244.952483][ C2] do_syscall_64+0xda/0x250 [ 244.954048][ C2] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.956097][ C2] [ 244.957110][ C2] Memory state around the buggy address: [ 244.959514][ C2] ffffc90003f9fa80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 244.962934][ C2] ffffc90003f9fb00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 244.966520][ C2] >ffffc90003f9fb80: 00 00 00 00 f1 f1 f1 f1 04 f3 f3 f3 00 00 00 00 [ 244.969336][ C2] ^ [ 244.971744][ C2] ffffc90003f9fc00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 244.975299][ C2] ffffc90003f9fc80: 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1 00 00 00 [ 244.978920][ C2] ================================================================== [ 244.982638][ C2] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 244.985809][ C2] CPU: 2 PID: 11417 Comm: syz-executor Not tainted 6.10.0-rc5-syzkaller-00155-g66e55ff12e73 #0 [ 244.990098][ C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 244.995482][ C2] Call Trace: [ 244.997127][ C2] [ 244.998453][ C2] dump_stack_lvl+0x3d/0x1f0 [ 245.000514][ C2] panic+0x6f5/0x7a0 [ 245.002267][ C2] ? __pfx_panic+0x10/0x10 [ 245.004176][ C2] ? rcu_is_watching+0x12/0xc0 [ 245.006209][ C2] ? __pfx_lock_release+0x10/0x10 [ 245.008323][ C2] ? check_panic_on_warn+0x1f/0xb0 [ 245.010470][ C2] check_panic_on_warn+0xab/0xb0 [ 245.012694][ C2] end_report+0x117/0x180 [ 245.014865][ C2] kasan_report+0xe9/0x110 [ 245.016902][ C2] ? profile_pc+0x186/0x1a0 [ 245.018902][ C2] ? profile_pc+0x186/0x1a0 [ 245.020837][ C2] ? queued_read_lock_slowpath+0x131/0x2b1 [ 245.023388][ C2] profile_pc+0x186/0x1a0 [ 245.025237][ C2] profile_tick+0xd3/0x140 [ 245.027126][ C2] tick_nohz_handler+0x380/0x530 [ 245.029357][ C2] ? __pfx_tick_nohz_handler+0x10/0x10 [ 245.031716][ C2] __hrtimer_run_queues+0x657/0xcc0 [ 245.033998][ C2] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 245.036756][ C2] ? ktime_get_update_offsets_now+0x201/0x310 [ 245.039578][ C2] hrtimer_interrupt+0x31b/0x800 [ 245.041818][ C2] __sysvec_apic_timer_interrupt+0x10f/0x450 [ 245.044480][ C2] sysvec_apic_timer_interrupt+0x90/0xb0 [ 245.046876][ C2] [ 245.048148][ C2] [ 245.049393][ C2] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 245.051863][ C2] RIP: 0010:queued_read_lock_slowpath+0x131/0x2b1 [ 245.054260][ C2] Code: 85 45 01 00 00 8b 03 84 c0 74 36 48 b8 00 00 00 00 00 fc ff df 49 89 de 48 89 dd 49 c1 ee 03 83 e5 07 49 01 c6 83 c5 03 f3 90 <41> 0f b6 06 40 38 c5 7c 08 84 c0 0f 85 1f 01 00 00 8b 03 84 c0 75 [ 245.061861][ C2] RSP: 0018:ffffc90003f9fb98 EFLAGS: 00000286 [ 245.064536][ C2] RAX: 00000000000002ff RBX: ffffffff8d80a080 RCX: ffffffff8aeb316b [ 245.067744][ C2] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffffff8d80a080 [ 245.071069][ C2] RBP: 0000000000000003 R08: 0000000000000001 R09: fffffbfff1b01410 [ 245.074249][ C2] R10: ffffffff8d80a083 R11: 0000000000000000 R12: 1ffff920007f3f74 [ 245.077574][ C2] R13: ffffffff8d80a084 R14: fffffbfff1b01410 R15: ffffffff81519b09 [ 245.080863][ C2] ? do_wait+0x1e9/0x570 [ 245.082391][ C2] ? queued_read_lock_slowpath+0xdb/0x2b1 [ 245.084317][ C2] ? queued_read_lock_slowpath+0xdb/0x2b1 [ 245.086795][ C2] ? __pfx_queued_read_lock_slowpath+0x10/0x10 [ 245.089427][ C2] __do_wait+0x105/0x890 [ 245.090956][ C2] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 245.092899][ C2] ? do_wait+0x1e9/0x570 [ 245.094351][ C2] do_wait+0x219/0x570 [ 245.095852][ C2] kernel_wait4+0x16c/0x280 [ 245.097901][ C2] ? __pfx_kernel_wait4+0x10/0x10 [ 245.100103][ C2] ? __pfx_child_wait_callback+0x10/0x10 [ 245.102393][ C2] ? __pfx_hrtimer_nanosleep+0x10/0x10 [ 245.104200][ C2] ? __might_fault+0xe3/0x190 [ 245.106117][ C2] __do_sys_wait4+0x15f/0x170 [ 245.108113][ C2] ? __pfx___do_sys_wait4+0x10/0x10 [ 245.110334][ C2] ? __pfx_get_timespec64+0x10/0x10 [ 245.112577][ C2] do_syscall_64+0xcd/0x250 [ 245.114574][ C2] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 245.116660][ C2] RIP: 0033:0x7f659976be57 [ 245.118198][ C2] Code: 89 7c 24 10 48 89 4c 24 18 e8 85 14 03 00 4c 8b 54 24 18 8b 54 24 14 41 89 c0 48 8b 74 24 08 8b 7c 24 10 b8 3d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 89 44 24 10 e8 d5 14 03 00 8b 44 [ 245.125872][ C2] RSP: 002b:00007ffd943c7840 EFLAGS: 00000293 ORIG_RAX: 000000000000003d [ 245.129524][ C2] RAX: ffffffffffffffda RBX: 000000000000005c RCX: 00007f659976be57 [ 245.133075][ C2] RDX: 0000000040000001 RSI: 00007ffd943c78bc RDI: 00000000ffffffff [ 245.136467][ C2] RBP: 00007ffd943c78bc R08: 0000000000000000 R09: 00007f659a592080 [ 245.140005][ C2] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 245.143872][ C2] R13: 000000000003b9f5 R14: 000000000003b52c R15: 00007ffd943c7920 [ 245.147087][ C2] [ 246.240334][ C2] Shutting down cpus with NMI [ 246.243127][ C2] Kernel Offset: disabled [ 246.244936][ C2] Rebooting in 86400 seconds.. VM DIAGNOSIS: 19:22:56 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000003 RBX=0000000000039680 RCX=00000000fffff880 RDX=0000000000000000 RSI=ffffffff8b8ff880 RDI=ffffffff8b8ff8c0 RBP=ffff88801f47f200 RSP=ffffc900032d7968 R8 =0000000000000000 R9 =fffffbfff284d27a R10=ffffffff942693d7 R11=0000000000000002 R12=0000000000000000 R13=ffff88806b039680 R14=0000000000000000 R15=ffff88806b0396d8 RIP=ffffffff8ae77073 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] FS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] GS =0000 ffff88806b000000 ffffffff 00c09300 DPL=0 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=000000003eeb8000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000001000 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc697ea200 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1bee5e4256 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1bee5e4263 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1bee5e425d ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1bee5e4271 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1bee5e42f7 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1bee5e43d5 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000000 RBX=ffffffff8ffbc898 RCX=0000000000000000 RDX=ffffffff8ffbc898 RSI=ffffffff813ccbda RDI=0000000000000006 RBP=ffffffff8ffbc898 RSP=ffffc90003277090 R8 =0000000000000006 R9 =ffffffff81d2a9de R10=ffffffff81d2a923 R11=0000000000000001 R12=ffffffff81d2a9de R13=ffffffff81d2a923 R14=dffffc0000000000 R15=ffffffff8ffbc898 RIP=ffffffff813ccc04 RFL=00000a02 [-O-----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806b100000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007fbee45e0134 CR3=000000000d97a000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000005010404 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=000000003c0f0000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbee74d46a3 00007fbee74d46a3 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc47e40f00 0000003000000010 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555564d0cad4 0000555564d0cad0 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555564d03688 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555564d09476 0000555564d091c0 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555564d079c4 0000555564d079c0 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555564d53630 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbee7407598 0000002000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2070616d6d007025 20746f67202c7025 20746e6177005647 4553474953000a29 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0555444848005500 05514a4205095500 05514b4452005647 4553474953000a0c ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 030010000ed00300 10000ec003021000 0eb00302f8100002 90031404840016f4 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 010010000e800401 0000000806060134 840008000ee00300 10000ed003001000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0ec0030210000eb0 0302f81000029003 1404840016f40300 020016f203000200 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 16f00300080016e8 0300080016e00302 040016dc03220400 16d80328080016d0 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0300307a797301ff fffffffffffffff5 0816c00302040016 bc0312040016b803 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 eefc0b08000cbf33 2e2e31fc11041214 bfefefefeff2bf33 322e272b20222e2b ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf c924bfbfbfbfbfbf bfbfdf2422bfbf33 322e272b20222e2b ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020 info registers vcpu 2 CPU#2 RAX=000000000000007a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84fd4545 RDI=ffffffff94ddb3e0 RBP=ffffffff94ddb3a0 RSP=ffffc90000858868 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6633303030396552 R12=0000000000000000 R13=000000000000007a R14=ffffffff84fd44e0 R15=0000000000000000 RIP=ffffffff84fd456f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c01300 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c01300 FS =0000 000055556d296500 ffffffff 00c00000 GS =0000 ffff88806b200000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000020000380 CR3=000000003b40c000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd943c7870 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f65997e4256 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f65997e4263 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f65997e425d ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f65997e4271 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f65997e42f7 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f65997e43d5 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000050 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000000 RBX=0000000000000003 RCX=1ffffffff284e463 RDX=ffff888025004880 RSI=ffffffff813c3524 RDI=ffffffff8b8ff900 RBP=ffffffff8d80a084 RSP=ffffc90003557a48 R8 =0000000000000001 R9 =fffffbfff284d25a R10=ffffffff942692d7 R11=0000000000000000 R12=0000000000000003 R13=0000000000000003 R14=ffff88806b33fa40 R15=fffffbfff1b01410 RIP=ffffffff813c3526 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000555580fea500 ffffffff 00c00000 GS =0000 ffff88806b300000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000001b2db16ff8 CR3=0000000026810000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000001000 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe65726300 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4dbf1e4256 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4dbf1e4263 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4dbf1e425d ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4dbf1e4271 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4dbf1e42f7 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4dbf1e43d5 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000