last executing test programs: 5.197832213s ago: executing program 1 (id=540): openat$vnet(0xffffff9c, &(0x7f0000000040), 0x2, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000000)={0x0, 0xdeff, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="400000000906010200000000000a0000000000000900020073797a31000000000500010007000000180007800c00018008000140ffffffff080009"], 0x40}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084) 5.085598738s ago: executing program 1 (id=541): setsockopt$MRT6_DEL_MFC(0xffffffffffffffff, 0x29, 0xcd, 0x0, 0x0) syz_usb_connect$cdc_ncm(0x4, 0x6e, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000020000002505a1a440000102030109025c0002010000000904000001a3f45747d649f9a30105240000000d240f8100000000000000000006241a0000000905810300000000000904010000020d00000904010102020d0000"], 0x0) r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904010001faf40d00090582"], 0x0) r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) write$char_usb(r1, &(0x7f0000001300)="92", 0x2) syz_open_dev$char_usb(0xc, 0xb4, 0x0) r2 = syz_usb_connect$lan78xx(0x5, 0x0, 0x0, 0x0) syz_usb_ep_write(r0, 0x8, 0xba, &(0x7f0000000380)="33fedece34584fe4f9e89bbbcffb1c32ee8b5869728799463d760f85713ac4493106a2793fc74a205c394e82ffe444cfba899c1eeb842b8ab4c6e925eea68ecce2b678a9f93e34bb6639cb4f458f7aae4756723a8ddf7b099d8ade0ee2b5cab11eb39977ef41216d7f9e0b3bd168942ee9f4432b5bb3488584e87cffba23250960205bb5661c21e99db1034d689fbda780f6c770ad11a60af8debcb2a4ff457cd8766760cb02413f5c149e4f245ecf9945b6175350014d8ff3d3") syz_usb_control_io$rtl8150(r0, &(0x7f0000000080)={0xc, &(0x7f0000000000)={0x0, 0x31, 0x34, {0x34, 0x0, "b8f4c1375444a82657f9638456bcde4934aaeca7f9fed00ed6760a876cb72bf5b08e7b2dc8c397a12c6cd84a0bce33c31f15"}}, &(0x7f0000000340)={0x0, 0x3, 0x1a, @string={0x1a, 0x3, "fde3726a98c05ff0b965f31d73b45578feaaf00335ba9765"}}}, &(0x7f0000000300)={0x18, &(0x7f0000000140)={0x60, 0x7, 0x91, "0ee383bb646823c7ca856b1f3b4e75522003c7f353e09887920e7b1dbf1aad3b7228811323f8e7dc45a0c18493ca65d9a5f6c325060896a08340e96c7dcc3cf8ec452f6923687072cbd454988714c1e677d01542dcf269283f82fc710406fd037a9aa3bfded8c8d8061559994dc5560614039be6cc434e42c6bc9408801b87f5e3146cc5f725e2eed8c71ef2194b6a5725"}, &(0x7f0000000200)={0x0, 0xa, 0x1, 0x2}, &(0x7f0000000240)={0x0, 0x8, 0x1, 0x40}, &(0x7f0000000280)={0xc0, 0x5, 0x4, "433cb2d3"}, &(0x7f0000000040)=ANY=[@ANYBLOB="40dde994f74a8d7d5585fa03bb21c9b8a513"]}) syz_usb_control_io$lan78xx(r2, 0x0, &(0x7f0000001540)={0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 4.671229804s ago: executing program 0 (id=542): r0 = socket$kcm(0x2, 0x200000000000001, 0x106) r1 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00'}) sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x44080) sendmsg$inet(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x2, 0x4001, @loopback}, 0x10, 0x0, 0x4002}, 0x34004000) 4.606018336s ago: executing program 0 (id=543): sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000003a80)=ANY=[@ANYBLOB="883800003f000701feffffff02000000037c00000400f6000c0001800600060088480000643802"], 0x3888}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000) 4.604832279s ago: executing program 0 (id=544): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000100)=ANY=[@ANYBLOB="180000002d00010026bdf000fcdbdf25041a0000040010"], 0x18}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000) r1 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r1, 0x0, 0x0) r2 = io_uring_setup(0x3f2f, &(0x7f0000000180)={0x0, 0x591f, 0x10000, 0x1, 0x21e}) syz_io_uring_setup(0x6cca, &(0x7f0000000300)={0x0, 0xae9b, 0x1, 0x2, 0x241, 0x0, r2}, &(0x7f0000000040), &(0x7f0000000380)) r3 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r4 = socket$nl_rdma(0x10, 0x3, 0x14) ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000740)={'ip6gretap0\x00', &(0x7f0000000700)=@ethtool_rxfh_indir={0x1}}) setsockopt$sock_int(r3, 0x1, 0x8, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=@newtfilter={0x24, 0x2c, 0x200, 0x70bd2d, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xd, 0x2}, {0x6, 0x5d0802a81e57baab}, {0xfff3, 0x9}}}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x0) prlimit64(0x0, 0x0, &(0x7f0000000140)={0xb, 0xffff4f7b}, 0x0) getrlimit(0xc, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r5 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r7, &(0x7f0000000000), 0x0, 0x20004000) sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8002, &(0x7f0000000700)=ANY=[]) close(0x3) r8 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) sendmsg$802154_dgram(r8, 0x0, 0x4040044) 3.559455462s ago: executing program 0 (id=547): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, 0x0, 0x0) r1 = socket$inet6(0xa, 0x80000, 0xfa) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}, 0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) connect$unix(r3, &(0x7f00000005c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, 0x0, 0x0) bind$inet6(r5, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r5, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) io_uring_setup(0x5b42, &(0x7f0000000640)={0x0, 0xfffffffe, 0x800, 0x103fc, 0x159}) r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x6, 0x12, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x6, 0x8d, &(0x7f00000003c0)=""/141, 0x41100, 0x2, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x6, 0x3}, 0x8, 0x10, &(0x7f0000000480)={0x4, 0xa, 0x4, 0x8}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000580)={r6, 0x0, 0x25, 0x18, @void}, 0x10) syz_init_net_socket$ax25(0x3, 0x2, 0x0) sendto$inet6(r1, 0x0, 0xfffffffffffffd2f, 0x0, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast2}, 0x1c) recvfrom(r0, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000000)=0x3, 0x4) syz_emit_ethernet(0x2a, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000008004500001c0000000000119078000000000000000000004e2000089078"], 0x0) 2.510377329s ago: executing program 0 (id=554): r0 = socket$netlink(0x10, 0x3, 0x0) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r2 = socket(0x400000000010, 0x3, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000600)=@newtfilter={0x478, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r4, {0x0, 0x7}, {}, {0xffff, 0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0x448, 0x2, [@TCA_BASIC_POLICE={0x444, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x3, 0x8, 0x9, 0x8, 0x0, {0x9, 0x2, 0x2, 0x7, 0x8000, 0x2}, {0x8, 0x2, 0x7, 0xf0, 0x1}, 0x0, 0x3, 0xfffffff9}}, @TCA_POLICE_RATE={0x404, 0x2, [0x4, 0x8, 0x3, 0x9, 0x4, 0x4, 0x4, 0x2, 0x0, 0x7, 0x16a, 0x6, 0x4, 0x5, 0x7fffffff, 0x6, 0x7b1, 0xb5, 0x3, 0x5, 0x0, 0x1, 0x7, 0x3, 0xe, 0xfff, 0x19, 0x3, 0xf8a3, 0xff, 0x3, 0x8, 0x2c1, 0x8, 0x6, 0xb, 0x639, 0x7, 0x3ff, 0x200, 0x8, 0xe, 0x3, 0xd65, 0x4, 0x2c, 0xb, 0xc10, 0xfb, 0x2, 0xc, 0xff, 0xffff, 0x4, 0x7ff, 0x3, 0x1, 0x8, 0x2, 0xc, 0x3ff, 0xfff, 0xef, 0x662, 0xfff, 0x0, 0x8, 0x1, 0x7ff, 0x77, 0xd0dd, 0x1, 0x10, 0x3, 0x7, 0x2, 0x5, 0x80000000, 0x0, 0xfffffffb, 0x80000000, 0x57d, 0x5, 0x8, 0x1, 0x8, 0x4, 0x6, 0x1, 0x6, 0x3, 0x0, 0xae, 0x7, 0x8001, 0xe, 0xfffffffe, 0x7, 0x3, 0x8, 0x1, 0x8, 0x7fffffff, 0x6, 0x10001, 0x3, 0x10000, 0x0, 0x8, 0x846, 0x1ff, 0x9, 0x3ff, 0xfffffffa, 0x5, 0x400, 0xaa9, 0x81, 0x8001, 0x3, 0x2c18, 0x8, 0x9, 0x9, 0x0, 0x600, 0x4, 0x80000001, 0x800, 0x7, 0x7, 0x2, 0x32, 0x6, 0x7, 0x2, 0x7, 0x8, 0x4, 0x2, 0x40000000, 0x7f, 0x7, 0x4, 0x7, 0x2, 0x5, 0x5d41, 0x1, 0x2a940, 0x0, 0xb, 0x7, 0x200, 0x10001, 0x9, 0x401, 0x6, 0x1, 0x3, 0x8, 0xc, 0x8, 0x9, 0x0, 0x9, 0x4, 0xc, 0x800, 0xfff, 0x8, 0x32e, 0x5, 0x5, 0x2, 0x40, 0x52, 0xfff, 0x6, 0x2, 0x0, 0x7, 0x9, 0x2, 0x1, 0x9, 0x0, 0x80000001, 0x8, 0x0, 0x1, 0x9, 0x1, 0x1576, 0x8001, 0x7, 0x5, 0x1, 0xcdd6, 0x0, 0x74, 0x8000, 0x80000001, 0x6, 0x5b, 0x7, 0x5, 0xccb9, 0x9b, 0xffff8bf5, 0x7, 0x0, 0x8001, 0x9, 0x5, 0x0, 0x4, 0x8, 0x29, 0x665, 0x8, 0x9, 0x7, 0x6, 0x5c, 0x80, 0xffffffff, 0x4, 0xa000, 0x3, 0x7e8, 0x86f070e5, 0x401, 0x6, 0x4, 0x10, 0x2, 0x3, 0x6, 0x1, 0x5, 0x5, 0x1000, 0xd0, 0x5, 0x8, 0x1e70, 0x4, 0xdbc, 0x1, 0x80000000, 0xffffff79, 0xff, 0x4, 0xcca, 0x827]}]}]}}]}, 0x478}, 0x1, 0x0, 0x0, 0x2000c0c1}, 0x800) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) 2.405205126s ago: executing program 0 (id=555): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000)) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_io_uring_setup(0x885, &(0x7f0000000380)={0x0, 0x8936, 0x8002, 0x3, 0xbfdffffc}, &(0x7f00000001c0)=0x0, &(0x7f00000000c0)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r2, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="300000001201000005000000ca04fc00a3fa7183ffae9f8fffed23a2ddd70efec89565232225d1d18c4a97785ffdafd384"], 0x30}, 0x0, 0x400c0, 0x1}) io_uring_enter(r3, 0x47f6, 0x0, 0x2, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_INITMSG(0xffffffffffffffff, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000100)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mq_open(&(0x7f000084dff0)='\xa1sxt\x1a\x00\x00\x00\x00\x00\x00\x00\x01\x88\xbdd', 0x6e93ebbbcc0884f2, 0x100, 0x0) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r6, 0x0, 0xfffffffffffffffd}, 0x18) socket$kcm(0x10, 0x2, 0x0) r7 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000083667d1040206402d14e0102030109021b000100000000090400000190f19c00090584"], 0x0) syz_usb_disconnect(r7) r8 = syz_open_dev$I2C(&(0x7f0000000100), 0x2, 0x1) ioctl$I2C_RDWR(r8, 0x707, &(0x7f0000000180)={&(0x7f0000000140)=[{0x6, 0xc200, 0x0, &(0x7f0000000080)}], 0x1}) getpid() r9 = syz_pidfd_open(0x0, 0x0) r10 = pidfd_getfd(r9, r9, 0x0) setns(r10, 0x66020000) umount2(&(0x7f0000000180)='.\x00', 0xd) 2.233898411s ago: executing program 2 (id=556): ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, 0x0) socket$netlink(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, 0x0, 0x0) syz_open_dev$sndmidi(0x0, 0x2, 0x143102) mkdirat(0xffffffffffffff9c, 0x0, 0x0) mkdir(0x0, 0x0) mkdir(&(0x7f0000000000)='./bus\x00', 0x0) openat$sysfs(0xffffffffffffff9c, 0x0, 0xa00, 0xb) r0 = socket(0x10, 0x3, 0x1000) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000)) timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) setregid(0xffffffffffffffff, r1) 2.233429608s ago: executing program 3 (id=557): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="02000000040000000100000027bf000000050000", @ANYRES32, @ANYBLOB="00000004f8ffff5e"], 0x50) (async) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x2, 0x4, @loopback, 0x7f}, 0x1c) (async) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='dctcp', 0x5) (async, rerun: 32) sendto$inet6(r0, 0x0, 0x0, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0xfffb, @empty, 0x3}, 0x1c) (async, rerun: 32) writev(r0, &(0x7f0000003800)=[{&(0x7f0000000400)=',', 0x1}], 0x1) (async) socket$inet6(0x10, 0x2, 0x4) (async, rerun: 32) r1 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f00000000c0)) syz_genetlink_get_family_id$fou(&(0x7f00000012c0), r1) (async) sendmsg$FOU_CMD_ADD(r1, &(0x7f00000013c0)={&(0x7f0000001280)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001380)={0x0, 0x4c}, 0x1, 0x0, 0x0, 0x20000080}, 0x24004001) (async, rerun: 32) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000480), 0xc0041, 0x0) (async, rerun: 32) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="c0000000190001002abd700000000000e0000002000000000000000000000000ac1414aa000000000000000000000000fffe00004e2300070a00400087000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000004000000000000000000000000000000000000000000000000000000000000005fffffffffffffff0000000000000000eaffffffffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000100000c0015005d0735002db80000a6126b4d58cd4f83bd0dead84bc6507ab464d37d"], 0xc0}}, 0x4800) (async) r3 = socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async, rerun: 32) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (rerun: 32) openat$cgroup_pressure(r4, &(0x7f00000000c0)='memory.pressure\x00', 0x2, 0x0) r5 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2) ioctl$VIDIOC_S_SELECTION(r5, 0xc040565f, &(0x7f0000000940)={0xa, 0x0, 0x2, {0x14, 0x1000, 0x2e04, 0x6}}) (async) r6 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r6, 0xc0045516, &(0x7f00000000c0)=0x81) (async) read(r6, &(0x7f0000000140)=""/94, 0x5e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00'}, 0x10) (async) r7 = socket(0x10, 0x3, 0x0) bind$netlink(r7, &(0x7f0000177ff4)={0x10, 0x0, 0x1}, 0xc) (async) write(r7, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca", 0x25) (async) setsockopt$sock_int(r3, 0x1, 0x9, &(0x7f0000000040)=0x8, 0x4) (async) write(r7, &(0x7f0000000000), 0x0) 2.232890797s ago: executing program 2 (id=558): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000100)={0x0, 'erspan0\x00', {0x1}, 0x26}) read$FUSE(0xffffffffffffffff, &(0x7f0000009780)={0x2020}, 0x2020) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) timer_create(0x0, 0x0, &(0x7f0000bbdffc)) timer_create(0x0, &(0x7f0000000080)={0x0, 0xc, 0x0, @tid=r0}, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x30) mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000a80)='./file0\x00', &(0x7f0000000ac0)='ext2\x00', 0x0, &(0x7f0000000140)='grpquota') 2.232735306s ago: executing program 3 (id=559): ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, 0x0) socket$netlink(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, 0x0, 0x0) syz_open_dev$sndmidi(0x0, 0x2, 0x143102) mkdirat(0xffffffffffffff9c, 0x0, 0x0) mkdir(0x0, 0x0) mkdir(&(0x7f0000000000)='./bus\x00', 0x0) r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0xa00, 0xb) socket(0x10, 0x3, 0x1000) socket$l2tp(0x2, 0x2, 0x73) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r1 = getpgid(0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, 0x0) r2 = epoll_create1(0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0x20000014}) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000080)) sendmsg$nl_crypto(r0, 0x0, 0x20000084) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x23011, r2, 0x478e2000) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x7) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x101000, 0x0) r3 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x3, 0x440902) writev(r3, &(0x7f0000000040)=[{&(0x7f00000002c0)="94", 0x1}, {0x0}], 0x2) accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200), 0x80000) 2.1757631s ago: executing program 3 (id=560): r0 = openat$rtc(0xffffff9c, &(0x7f0000000040), 0x20080, 0x0) ioctl$RTC_VL_READ(r0, 0x80047013, &(0x7f0000000080)) r1 = socket$inet6(0xa, 0x3, 0x8000000003c) connect$inet6(r1, &(0x7f0000000140)={0xa, 0x3, 0x0, @remote, 0x5}, 0x1c) r2 = openat$iommufd(0xffffff9c, &(0x7f00000001c0), 0x2, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000640)='mountinfo\x00') io_submit(0x0, 0x2, &(0x7f00000006c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x6, r3, 0x0, 0x0, 0xbda, 0x0, 0x1, r3}, 0x0]) ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, &(0x7f00000001c0)={0xc, 0x0, 0x0}) ioctl$IOMMU_TEST_OP_ADD_RESERVED(r3, 0x3ba0, &(0x7f00000002c0)={0x48, 0x1, r4, 0x0, 0x7, 0xd}) ioctl$IOMMU_IOAS_COPY$syz(r2, 0x3b83, &(0x7f0000000180)={0x28, 0x10000, 0x0, r4, 0x25bbf6, 0x7fffffffffffffff, 0x5, 0x1c2333}) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x953c, &(0x7f0000000100)=[{&(0x7f0000000000)="2b10", 0xffbd}], 0x1, 0x0, 0x0, 0x2c}, 0x4) socket$inet6(0xa, 0x2, 0x0) ioctl$SIOCGETSGCNT(r3, 0x89e1, &(0x7f0000000780)={@empty, @dev={0xac, 0x14, 0x14, 0x38}}) pselect6(0x40, &(0x7f0000000100), 0x0, &(0x7f0000000240)={0x1f}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000020000000000000000000000850000000f00000085000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x0, 0xe, 0x0, &(0x7f00000002c0)="428280f46aa1d3f08a90b1e2e0dc", 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7) syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102) writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0x1}, {0x0}], 0x2) syz_emit_ethernet(0x0, 0x0, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0) socket$nl_rdma(0x10, 0x3, 0x14) 2.074278035s ago: executing program 1 (id=561): r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x4, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000000)={0x4000006, 0x1, 0x4}) r1 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x141080) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000200)=0x5) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100), 0x80002, 0x0) r3 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65) ioctl$SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f0000000700)=0x31) writev(r3, &(0x7f0000000000)=[{&(0x7f0000000080)='@', 0x1}], 0x1) r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0xe9503, 0x0) r5 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f00000004c0)) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f00000002c0)='syzkaller\x00', 0x5, 0xfd90, &(0x7f0000000300)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f3, 0x10, &(0x7f0000000080), 0xfffffffffffffc79}, 0x48) 1.525885377s ago: executing program 1 (id=562): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mlock(&(0x7f0000fff000/0x1000)=nil, 0x1000) tkill(r1, 0x1a) sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x6) r2 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, 0x0) r3 = add_key$keyring(&(0x7f00000003c0), &(0x7f0000000440)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffff8) keyctl$instantiate(0xc, r2, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x30, r3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x4000000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000100)=0x2) recvmmsg(r5, &(0x7f0000000dc0)=[{{0x0, 0x0, &(0x7f0000000cc0)=[{&(0x7f0000000780)=""/95, 0x5f}, {&(0x7f0000000900)=""/192, 0xc0}, {&(0x7f00000009c0)=""/203, 0xcb}, {&(0x7f0000000ac0)=""/123, 0x7b}, {&(0x7f0000000e00)=""/210, 0xd2}, {&(0x7f0000000380)=""/23, 0x17}, {&(0x7f0000000800)=""/13, 0xd}, {&(0x7f0000000c40)=""/97, 0x61}], 0x8, &(0x7f0000000d00)=""/187, 0xbb}, 0x7}], 0x1, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f0000000040)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f0000000140)='./bus\x00') sendmsg$RDMA_NLDEV_CMD_STAT_SET(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x20, 0x1410, 0x100, 0x70bd2b, 0x25dfdbff, "", [@RDMA_NLDEV_ATTR_STAT_MODE={0x8}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8, 0x15, 0x2}]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x40) rename(&(0x7f0000000400)='./bus\x00', &(0x7f0000000f00)='./file0\x00') r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000640)={0x0, 0xfffffffffffffff8, &(0x7f0000000600)={&(0x7f0000000000)=@newtaction={0x70, 0x30, 0x9, 0x0, 0x0, {}, [{0x5c, 0x1, [@m_skbedit={0x58, 0x1, 0x0, 0x0, {{0xc}, {0x48, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_MARK={0x8, 0xa}, @TCA_SKBEDIT_PTYPE={0x6, 0x4, 0x2}, @TCA_SKBEDIT_PARMS={0x18}]}, {0x4}, {0xc}, {0xc, 0x9, {0x47}}}}]}]}, 0x70}}, 0x0) rmdir(&(0x7f0000000000)='./file0\x00') 1.016036974s ago: executing program 2 (id=563): capset(&(0x7f0000000380)={0x20071026}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7}) r0 = userfaultfd(0x801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1d, 0xf, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000ff0f0000000000000300000018110000", @ANYRES32=r1, @ANYRES8=r1], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @lsm=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x94) (async) pipe2(&(0x7f0000000840)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) close_range(r2, 0xffffffffffffffff, 0x0) (async) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) (async) r4 = socket(0x27, 0x3, 0x9) setsockopt$RDS_CANCEL_SENT_TO(r4, 0x6a, 0x1, 0x0, 0xc) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffe, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}, {0xffff, 0xa}, {0x0, 0x10}}}, 0x24}}, 0x0) (async) r5 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0) ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7902}) ioctl$TUNSETIFINDEX(r5, 0x400454da, 0x0) (async) r6 = syz_open_dev$hidraw(&(0x7f0000000b40), 0x9, 0x4b442) ioctl$HIDIOCGRDESC(r6, 0x401c5820, &(0x7f00000005c0)={0xffa1}) ioctl$UFFDIO_WRITEPROTECT(r0, 0xc018aa06, &(0x7f0000000140)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1}) (async) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x144) (async) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) (async) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}, {@userxattr}]}) r7 = dup(0xffffffffffffffff) (async) r8 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f90724fc60", 0x14}], 0x1}, 0x0) (async) write$FUSE_DIRENTPLUS(r7, 0x0, 0xb0) write$FUSE_DIRENTPLUS(r7, 0x0, 0x10) write$FUSE_DIRENTPLUS(r7, 0x0, 0xa8) (async) write$FUSE_INIT(r7, &(0x7f0000004200)={0x50, 0x0, 0x0, {0x7, 0x21, 0xffffffff, 0xfffffffff12bd390, 0x2, 0x6, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6}}, 0x50) (async) mount$9p_fd(0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="7472616e673d66642c7266646e6f3d92cdcd7e80ca34d0820b0cffd9e5d00d72aa5dfde5effd485fa524f95b027ca29fc33e836adf6a6ae34b8cfffabba2bc99485e62aea3d7ceea6db837895f1ef8c22e68c2", @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r7, @ANYBLOB=',posixacl,\x00']) 1.015796904s ago: executing program 3 (id=564): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = dup(r0) r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) ioctl$SNDCTL_DSP_CHANNELS(r2, 0xc0045006, &(0x7f00000024c0)=0x78) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x3}], 0x1c) sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000180)=[{&(0x7f00000004c0)="99", 0x1}], 0x1}, 0x4048043) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='ip6gretap0\x00', 0x10) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e24, @empty}}, 0x5, 0xfffd, 0xe652, 0x2, 0x15, 0x8, 0xff}, 0x9c) getsockopt$inet_sctp_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f0000000500)={0x0, 0xfffff002, 0x86ec, 0x3eb, 0x7, 0x6, 0xfffe, 0x7, {0x0, @in={{0x2, 0x4e23, @multicast1}}, 0x400, 0xf, 0x8, 0x2, 0x2cc}}, &(0x7f00000000c0)=0xb0) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000100)={0x58, 0x200, 0x5, 0xfff, r3}, &(0x7f0000000140)=0x10) 965.853778ms ago: executing program 2 (id=565): r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x3, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}}, &(0x7f0000000100)='GPL\x00', 0x4, 0xe1, &(0x7f00000008c0)=""/225, 0x0, 0x5}, 0x94) r1 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="4c0000001000030400"/20, @ANYRES16=r1, @ANYRESHEX=r0, @ANYRES16=r1, @ANYRESDEC=r1], 0x4c}, 0x1, 0xba01, 0x0, 0x4004001}, 0x20044890) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x15, 0xb, 0x0, &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = socket$inet_udp(0x2, 0x2, 0x0) r3 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r2, {}, 0xa}}, 0x26) sendmmsg$inet(r3, &(0x7f0000000300)=[{{0x0, 0x0, &(0x7f0000005dc0)=[{&(0x7f00000010c0)="7d5107678bfecb64da14096962db497a0299399ab6101c3b", 0x18}], 0x1}}, {{&(0x7f0000000140)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f00000002c0), 0x1a}}], 0x2, 0x8040) r4 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) getsockopt$llc_int(r4, 0x10c, 0xf, &(0x7f0000000040), &(0x7f0000000080)=0x4) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuset.effective_mems\x00', 0x275a, 0x0) write$binfmt_script(r5, &(0x7f0000000000), 0xfea7) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r5, 0x0) bpf$TOKEN_CREATE(0x24, &(0x7f0000000100), 0x8) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r6 = getpid() sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) getresgid(0x0, &(0x7f0000001e80), 0x0) socket$nl_route(0x10, 0x3, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)='rpc_pipefs\x00', 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) r7 = openat$sndseq(0xffffff9c, 0x0, 0x2) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r7, 0x40a45321, &(0x7f0000000240)={{0x5, 0x2}, 'port0\x00', 0x8, 0x4, 0x3, 0xfffffffe, 0x200, 0x9, 0x7, 0x0, 0x0, 0x2}) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write(r8, &(0x7f0000000340), 0x11000) 965.512509ms ago: executing program 3 (id=566): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe) listen(r0, 0x3) accept4$bt_l2cap(r0, 0x0, 0x0, 0x800) r1 = socket$inet(0x2, 0x2, 0x1) sendmsg$inet(r1, &(0x7f0000000000)={&(0x7f0000000380)={0x8, 0xfbfe, @multicast1}, 0x10, &(0x7f0000000880)=[{&(0x7f0000000080)="08003b117c123a", 0x7}], 0x1}, 0x20008890) syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB="043e130100c900", @ANYBLOB=' '], 0x16) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = getpid() sched_setscheduler(r4, 0x2, &(0x7f0000000040)=0x7) sched_setaffinity(r4, 0x8, &(0x7f0000000040)=0x3) r5 = dup(r2) read$FUSE(r5, &(0x7f00000008c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_LK(r5, &(0x7f0000000100)={0x28, 0x0, r6, {{0xa, 0x3, 0x2, r3}}}, 0x28) write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c) 586.135719ms ago: executing program 1 (id=567): syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='sched\x00') 584.299517ms ago: executing program 1 (id=568): socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) socket$nl_xfrm(0x10, 0x3, 0x6) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) r2 = socket$inet_tcp(0x2, 0x1, 0x0) r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r3, 0x0, 0x1, &(0x7f0000000000), 0x4) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000380)={0xb, {{0x2, 0x0, @multicast2}}}, 0x88) getsockopt$inet_buf(r2, 0x0, 0x29, &(0x7f0000000000)=""/145, &(0x7f0000695ffc)=0x192) ioctl$BLKGETZONESZ(0xffffffffffffffff, 0x80041284, &(0x7f0000000000)=0x2) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001400)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x80000001}, [@call={0x85, 0x0, 0x0, 0x27}, @printk={@lx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x9b}}]}, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x25, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x0, 0xe, 0x0, &(0x7f0000000040)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50) r5 = socket$inet_tcp(0x2, 0x1, 0x0) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000f9ffffff0000000000000000850000002c00000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000001800)={r6, r7, 0x25, 0x0, @val=@kprobe_multi=@addrs={0x1, 0x0, 0x0, 0x0, 0x80000000}}, 0x30) syz_emit_ethernet(0x11dc0, &(0x7f0000001740)=ANY=[], 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x12, 0x7, 0x8, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x50) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8) 83.06085ms ago: executing program 3 (id=569): sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0x40, 0x0) r0 = syz_open_dev$ndb(&(0x7f00000000c0), 0x0, 0x80000) r1 = socket(0x15, 0x5, 0x0) connect$inet6(r1, &(0x7f0000000300)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0x7, &(0x7f0000000280)={0x88, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x2) sched_setscheduler(r2, 0x2, &(0x7f00000001c0)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) r5 = socket(0xf, 0x3, 0x2) write(r5, &(0x7f0000a97ff0)="020baf010200000000067bbc", 0xc) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$dir(0xffffffffffffff9c, 0x0, 0x4000, 0x0) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/timers\x00', 0x0, 0x0) pread64(r6, 0x0, 0x0, 0x55) write$P9_ROPEN(r6, &(0x7f0000000180)={0x18, 0x71, 0x2, {{0x4, 0x0, 0x2}, 0x1}}, 0x18) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="010000000300000004000000ff07"], 0x48) syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000003c0)="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", 0xfffffffffffffd8a, 0x0) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000300), 0xce4, r7}, 0x38) bpf$MAP_UPDATE_BATCH(0x1b, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000600), 0x0, 0x401, r7, 0x0, 0x100000000000000}, 0x38) (fail_nth: 1) mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000004a00)='./file1\x00', &(0x7f0000000080)='udf\x00', 0x2008087, 0x0) ioctl$NBD_CLEAR_SOCK(r0, 0xab04) 82.797515ms ago: executing program 2 (id=570): r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x4, 0x2012, r0, 0x0) ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000000)=0x19) 0s ago: executing program 2 (id=571): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000100)={0x0, 'erspan0\x00', {0x1}, 0x26}) read$FUSE(0xffffffffffffffff, &(0x7f0000009780)={0x2020}, 0x2020) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) timer_create(0x0, 0x0, &(0x7f0000bbdffc)) timer_create(0x0, &(0x7f0000000080)={0x0, 0xc, 0x0, @tid=r0}, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x30) mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000a80)='./file0\x00', &(0x7f0000000ac0)='ext2\x00', 0x0, &(0x7f0000000140)='grpquota') kernel console output (not intermixed with test programs): lename '/devices/virtual/bluetooth/hci0/hci0:201' [ 57.243495][ T5947] CPU: 1 UID: 0 PID: 5947 Comm: kworker/u33:3 Not tainted syzkaller #0 PREEMPT(full) [ 57.243518][ T5947] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 57.243530][ T5947] Workqueue: hci0 hci_rx_work [ 57.243568][ T5947] Call Trace: [ 57.243586][ T5947] [ 57.243593][ T5947] dump_stack_lvl+0x16c/0x1f0 [ 57.243616][ T5947] sysfs_warn_dup+0x7f/0xa0 [ 57.243637][ T5947] sysfs_create_dir_ns+0x24b/0x2b0 [ 57.243659][ T5947] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 57.243679][ T5947] ? find_held_lock+0x2b/0x80 [ 57.243697][ T5947] ? do_raw_spin_unlock+0x172/0x230 [ 57.243726][ T5947] kobject_add_internal+0x2c4/0x9b0 [ 57.243752][ T5947] kobject_add+0x16e/0x240 [ 57.243773][ T5947] ? __pfx_kobject_add+0x10/0x10 [ 57.243792][ T5947] ? do_raw_spin_unlock+0x172/0x230 [ 57.243815][ T5947] ? kobject_put+0xab/0x5a0 [ 57.243841][ T5947] device_add+0x288/0x1aa0 [ 57.243862][ T5947] ? __pfx_dev_set_name+0x10/0x10 [ 57.243885][ T5947] ? __pfx_device_add+0x10/0x10 [ 57.243903][ T5947] ? mgmt_send_event_skb+0x2fb/0x460 [ 57.243926][ T5947] hci_conn_add_sysfs+0x17e/0x230 [ 57.243947][ T5947] le_conn_complete_evt+0x1260/0x2150 [ 57.243971][ T5947] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 57.243987][ T5947] ? hci_event_packet+0x459/0x11c0 [ 57.244078][ T5947] hci_le_conn_complete_evt+0x23c/0x370 [ 57.244156][ T5947] hci_le_meta_evt+0x354/0x5e0 [ 57.244177][ T5947] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 57.244198][ T5947] hci_event_packet+0x685/0x11c0 [ 57.244217][ T5947] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 57.244232][ T5947] ? __pfx_hci_event_packet+0x10/0x10 [ 57.244244][ T5947] ? kcov_remote_start+0x3c9/0x6d0 [ 57.244255][ T5947] ? lockdep_hardirqs_on+0x7c/0x110 [ 57.244272][ T5947] hci_rx_work+0x2c5/0x16b0 [ 57.244285][ T5947] ? rcu_is_watching+0x12/0xc0 [ 57.244298][ T5947] process_one_work+0x9cf/0x1b70 [ 57.244321][ T5947] ? __pfx_process_one_work+0x10/0x10 [ 57.244341][ T5947] ? assign_work+0x1a0/0x250 [ 57.244358][ T5947] worker_thread+0x6c8/0xf10 [ 57.244381][ T5947] ? __pfx_worker_thread+0x10/0x10 [ 57.244397][ T5947] kthread+0x3c2/0x780 [ 57.244412][ T5947] ? __pfx_kthread+0x10/0x10 [ 57.244428][ T5947] ? rcu_is_watching+0x12/0xc0 [ 57.244439][ T5947] ? __pfx_kthread+0x10/0x10 [ 57.244455][ T5947] ret_from_fork+0x675/0x7d0 [ 57.244470][ T5947] ? __pfx_kthread+0x10/0x10 [ 57.244485][ T5947] ret_from_fork_asm+0x1a/0x30 [ 57.244504][ T5947] [ 57.244590][ T5947] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 57.345163][ T5947] Bluetooth: hci0: failed to register connection device [ 57.374835][ T5946] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 57.379222][ T5946] hid-generic 0000:0000:0000.0004: hidraw1: HID v0.00 Device [syz1] on syz0 [ 57.514913][ T6154] Process accounting resumed [ 57.529566][ T10] usb 8-1: USB disconnect, device number 3 [ 57.825238][ T6182] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 57.828005][ T6182] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 57.831179][ T6182] vhci_hcd vhci_hcd.0: Device attached [ 57.843033][ T6182] netlink: 8 bytes leftover after parsing attributes in process `syz.0.31'. [ 57.847967][ T6182] netlink: 8 bytes leftover after parsing attributes in process `syz.0.31'. [ 57.851747][ T6182] netlink: 8 bytes leftover after parsing attributes in process `syz.0.31'. [ 58.084000][ T10] usb 37-1: new low-speed USB device number 2 using vhci_hcd [ 58.371656][ T34] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 58.969609][ T6183] vhci_hcd: connection reset by peer [ 58.972180][ T13] vhci_hcd: stop threads [ 58.974330][ T13] vhci_hcd: release socket [ 58.977385][ T13] vhci_hcd: disconnect device [ 59.033283][ T34] usb 7-1: Using ep0 maxpacket: 8 [ 59.037021][ T34] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 59.042857][ T34] usb 7-1: config 0 has no interface number 0 [ 59.048323][ T34] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 59.051809][ T34] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 59.054659][ T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 59.065680][ T5947] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201' [ 59.069285][ T5947] CPU: 1 UID: 0 PID: 5947 Comm: kworker/u33:3 Not tainted syzkaller #0 PREEMPT(full) [ 59.069308][ T5947] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 59.069319][ T5947] Workqueue: hci1 hci_rx_work [ 59.069341][ T5947] Call Trace: [ 59.069348][ T5947] [ 59.069354][ T5947] dump_stack_lvl+0x16c/0x1f0 [ 59.069376][ T5947] sysfs_warn_dup+0x7f/0xa0 [ 59.069398][ T5947] sysfs_create_dir_ns+0x24b/0x2b0 [ 59.069419][ T5947] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 59.069438][ T5947] ? find_held_lock+0x2b/0x80 [ 59.069458][ T5947] ? do_raw_spin_unlock+0x172/0x230 [ 59.069486][ T5947] kobject_add_internal+0x2c4/0x9b0 [ 59.069511][ T5947] kobject_add+0x16e/0x240 [ 59.069531][ T5947] ? __pfx_kobject_add+0x10/0x10 [ 59.069545][ T5947] ? do_raw_spin_unlock+0x172/0x230 [ 59.069562][ T5947] ? kobject_put+0xab/0x5a0 [ 59.069578][ T5947] device_add+0x288/0x1aa0 [ 59.069592][ T5947] ? __pfx_dev_set_name+0x10/0x10 [ 59.069606][ T5947] ? __pfx_device_add+0x10/0x10 [ 59.069622][ T5947] ? mgmt_send_event_skb+0x2fb/0x460 [ 59.069642][ T5947] hci_conn_add_sysfs+0x17e/0x230 [ 59.069663][ T5947] le_conn_complete_evt+0x1260/0x2150 [ 59.069687][ T5947] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 59.069703][ T5947] ? hci_event_packet+0x459/0x11c0 [ 59.069727][ T5947] hci_le_conn_complete_evt+0x23c/0x370 [ 59.069750][ T5947] hci_le_meta_evt+0x354/0x5e0 [ 59.069768][ T5947] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 59.069789][ T5947] hci_event_packet+0x685/0x11c0 [ 59.069806][ T5947] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 59.069825][ T5947] ? __pfx_hci_event_packet+0x10/0x10 [ 59.069845][ T5947] ? kcov_remote_start+0x3c9/0x6d0 [ 59.069861][ T5947] ? lockdep_hardirqs_on+0x7c/0x110 [ 59.069893][ T5947] hci_rx_work+0x2c5/0x16b0 [ 59.069913][ T5947] ? rcu_is_watching+0x12/0xc0 [ 59.069937][ T5947] process_one_work+0x9cf/0x1b70 [ 59.069972][ T5947] ? __pfx_process_one_work+0x10/0x10 [ 59.070004][ T5947] ? assign_work+0x1a0/0x250 [ 59.070029][ T5947] worker_thread+0x6c8/0xf10 [ 59.070066][ T5947] ? __pfx_worker_thread+0x10/0x10 [ 59.070090][ T5947] kthread+0x3c2/0x780 [ 59.070114][ T5947] ? __pfx_kthread+0x10/0x10 [ 59.070138][ T5947] ? rcu_is_watching+0x12/0xc0 [ 59.070155][ T5947] ? __pfx_kthread+0x10/0x10 [ 59.070180][ T5947] ret_from_fork+0x675/0x7d0 [ 59.070203][ T5947] ? __pfx_kthread+0x10/0x10 [ 59.070226][ T5947] ret_from_fork_asm+0x1a/0x30 [ 59.070255][ T5947] [ 59.070276][ T5947] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 59.070385][ T34] usb 7-1: config 0 descriptor?? [ 59.073868][ T5947] Bluetooth: hci1: failed to register connection device [ 59.091129][ T34] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 59.415295][ T34] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 59.427608][ T34] hid-generic 0000:0000:0000.0005: hidraw1: HID v0.00 Device [syz1] on syz0 [ 59.744600][ T6215] process 'syz.3.38' launched '/dev/fd/14' with NULL argv: empty string added [ 59.798713][ T34] usb 7-1: USB disconnect, device number 4 [ 60.213497][ T5946] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 60.276574][ T1332] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 60.280623][ T1332] hid-generic 0000:0000:0000.0006: hidraw1: HID v0.00 Device [syz1] on syz0 [ 60.307357][ T5943] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201' [ 60.310302][ T5943] CPU: 0 UID: 0 PID: 5943 Comm: kworker/u33:2 Not tainted syzkaller #0 PREEMPT(full) [ 60.310317][ T5943] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 60.310325][ T5943] Workqueue: hci3 hci_rx_work [ 60.310342][ T5943] Call Trace: [ 60.310346][ T5943] [ 60.310351][ T5943] dump_stack_lvl+0x16c/0x1f0 [ 60.310365][ T5943] sysfs_warn_dup+0x7f/0xa0 [ 60.310378][ T5943] sysfs_create_dir_ns+0x24b/0x2b0 [ 60.310392][ T5943] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 60.310406][ T5943] ? find_held_lock+0x2b/0x80 [ 60.310420][ T5943] ? do_raw_spin_unlock+0x172/0x230 [ 60.310439][ T5943] kobject_add_internal+0x2c4/0x9b0 [ 60.310456][ T5943] kobject_add+0x16e/0x240 [ 60.310470][ T5943] ? __pfx_kobject_add+0x10/0x10 [ 60.310485][ T5943] ? do_raw_spin_unlock+0x172/0x230 [ 60.310519][ T5943] ? kobject_put+0xab/0x5a0 [ 60.310538][ T5943] device_add+0x288/0x1aa0 [ 60.310552][ T5943] ? __pfx_dev_set_name+0x10/0x10 [ 60.310568][ T5943] ? __pfx_device_add+0x10/0x10 [ 60.310583][ T5943] ? mgmt_send_event_skb+0x2fb/0x460 [ 60.310599][ T5943] hci_conn_add_sysfs+0x17e/0x230 [ 60.310613][ T5943] le_conn_complete_evt+0x1260/0x2150 [ 60.310628][ T5943] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 60.310638][ T5943] ? hci_event_packet+0x459/0x11c0 [ 60.310652][ T5943] hci_le_conn_complete_evt+0x23c/0x370 [ 60.310666][ T5943] hci_le_meta_evt+0x354/0x5e0 [ 60.310678][ T5943] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 60.310690][ T5943] hci_event_packet+0x685/0x11c0 [ 60.310701][ T5943] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 60.310713][ T5943] ? __pfx_hci_event_packet+0x10/0x10 [ 60.310725][ T5943] ? kcov_remote_start+0x3c9/0x6d0 [ 60.310736][ T5943] ? lockdep_hardirqs_on+0x7c/0x110 [ 60.310751][ T5943] hci_rx_work+0x2c5/0x16b0 [ 60.310763][ T5943] ? rcu_is_watching+0x12/0xc0 [ 60.310776][ T5943] process_one_work+0x9cf/0x1b70 [ 60.310798][ T5943] ? __pfx_process_one_work+0x10/0x10 [ 60.310818][ T5943] ? assign_work+0x1a0/0x250 [ 60.310835][ T5943] worker_thread+0x6c8/0xf10 [ 60.310857][ T5943] ? __pfx_worker_thread+0x10/0x10 [ 60.310873][ T5943] kthread+0x3c2/0x780 [ 60.310888][ T5943] ? __pfx_kthread+0x10/0x10 [ 60.310904][ T5943] ? rcu_is_watching+0x12/0xc0 [ 60.310920][ T5943] ? __pfx_kthread+0x10/0x10 [ 60.310938][ T5943] ret_from_fork+0x675/0x7d0 [ 60.310953][ T5943] ? __pfx_kthread+0x10/0x10 [ 60.310969][ T5943] ret_from_fork_asm+0x1a/0x30 [ 60.310989][ T5943] [ 60.311002][ T5943] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 60.374484][ T5946] usb 5-1: config 0 has no interfaces? [ 60.376550][ T5943] Bluetooth: hci3: failed to register connection device [ 60.377591][ T5946] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 60.400150][ T5946] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 60.404709][ T5946] usb 5-1: config 0 descriptor?? [ 60.641486][ T6236] cgroup: No subsys list or none specified [ 60.645725][ T6236] warning: `syz.1.43' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 60.737773][ T6220] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 60.754992][ T6220] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 60.762188][ T6220] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 60.765253][ T6220] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 60.885887][ T2297] usb 5-1: USB disconnect, device number 4 [ 61.233360][ T34] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 61.394679][ T34] usb 6-1: Using ep0 maxpacket: 8 [ 61.398908][ T34] usb 6-1: config 0 has an invalid interface number: 1 but max is 0 [ 61.402747][ T34] usb 6-1: config 0 has no interface number 0 [ 61.407908][ T34] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 61.411659][ T34] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 61.415020][ T34] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 61.418854][ T34] usb 6-1: config 0 descriptor?? [ 61.426692][ T34] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 61.644810][ T1332] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 61.648232][ T1332] hid-generic 0000:0000:0000.0007: hidraw1: HID v0.00 Device [syz1] on syz0 [ 61.663516][ T5946] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 61.813290][ T5946] usb 5-1: Using ep0 maxpacket: 32 [ 61.817711][ T5946] usb 5-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config [ 61.821571][ T5946] usb 5-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82 [ 61.825362][ T5946] usb 5-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 61.828941][ T5946] usb 5-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11 [ 61.836108][ T5946] usb 5-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30 [ 61.838965][ T5946] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 61.841634][ T5946] usb 5-1: Product: syz [ 61.842980][ T5946] usb 5-1: Manufacturer: syz [ 61.844692][ T5946] usb 5-1: SerialNumber: syz [ 61.851894][ C1] imon 5-1:155.0: imon usb_rx_callback_intf0: status(-71) [ 61.857085][ T5946] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:155.0/input/input5 [ 62.073365][ T5946] imon 5-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR [ 62.076020][ T5946] (id 0x00) [ 62.133246][ T5946] rc_core: IR keymap rc-imon-pad not found [ 62.135125][ T5946] Registered IR keymap rc-empty [ 62.136731][ T5946] imon 5-1:155.0: Looks like you're trying to use an IR protocol this device does not support [ 62.139953][ T5946] imon 5-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol [ 62.237452][ T5943] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection [ 62.334651][ T6265] tmpfs: Unknown parameter 'usrquota_inode_hfrdlimit' [ 62.355284][ T5946] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:155.0/rc/rc0 [ 62.359848][ T5946] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:155.0/rc/rc0/input6 [ 62.374052][ T5946] imon 5-1:155.0: iMON device (15c2:ffdc, intf0) on usb<5:5> initialized [ 62.609105][ T5946] usb 5-1: USB disconnect, device number 5 [ 62.773331][ T34] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 62.923382][ T34] usb 7-1: Using ep0 maxpacket: 8 [ 62.926297][ T34] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 62.928790][ T34] usb 7-1: config 0 has no interface number 0 [ 62.930851][ T34] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 62.935400][ T34] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 62.939110][ T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 62.944373][ T34] usb 7-1: config 0 descriptor?? [ 62.950843][ T34] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior1 [ 62.958561][ T34] usb 6-1: USB disconnect, device number 2 [ 63.223294][ T10] vhci_hcd: vhci_device speed not set [ 63.948673][ T6277] can0: slcan on ptm0. [ 64.153296][ T5943] Bluetooth: hci0: command 0x0406 tx timeout [ 64.345072][ T6274] can0 (unregistered): slcan off ptm0. [ 64.934722][ T6310] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 64.967977][ T34] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 64.978254][ T34] hid-generic 0000:0000:0000.0008: hidraw1: HID v0.00 Device [syz1] on syz0 [ 65.088846][ T6319] cgroup: No subsys list or none specified [ 65.141349][ T6317] cgroup: No subsys list or none specified [ 65.353261][ T5943] Bluetooth: hci1: command 0x0406 tx timeout [ 65.576480][ T1022] usb 7-1: USB disconnect, device number 5 [ 65.764810][ T34] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 65.769460][ T34] hid-generic 0000:0000:0000.0009: hidraw1: HID v0.00 Device [syz1] on syz0 [ 66.200779][ T5951] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection [ 66.473309][ T5943] Bluetooth: hci3: command 0x0406 tx timeout [ 66.607298][ T6349] 9pnet_fd: Insufficient options for proto=fd [ 66.661260][ T6348] cgroup: No subsys list or none specified [ 67.315523][ T6360] cgroup: No subsys list or none specified [ 68.335464][ T6380] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 68.337605][ T6380] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 68.340256][ T6380] vhci_hcd vhci_hcd.0: Device attached [ 68.348164][ T6380] __nla_validate_parse: 3 callbacks suppressed [ 68.348224][ T6380] netlink: 8 bytes leftover after parsing attributes in process `syz.3.70'. [ 68.357282][ T6380] netlink: 8 bytes leftover after parsing attributes in process `syz.3.70'. [ 68.361041][ T6380] netlink: 8 bytes leftover after parsing attributes in process `syz.3.70'. [ 68.365394][ T6380] netlink: 8 bytes leftover after parsing attributes in process `syz.3.70'. [ 68.379061][ T1022] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 68.392862][ T1022] hid-generic 0000:0000:0000.000A: hidraw1: HID v0.00 Device [syz1] on syz0 [ 68.581162][ T6386] vhci_hcd: connection closed [ 68.581425][ T13] vhci_hcd: stop threads [ 68.584795][ T13] vhci_hcd: release socket [ 68.585933][ T6389] fido_id[6389]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 68.586918][ T13] vhci_hcd: disconnect device [ 68.703424][ T5946] vhci_hcd: vhci_device speed not set [ 69.446339][ T6398] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.449520][ T6398] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.676217][ T6398] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 69.700957][ T6398] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 69.901210][ T34] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0 [ 69.916312][ T34] hid-generic 0000:0000:0000.000B: hidraw1: HID v0.00 Device [syz1] on syz0 [ 70.069616][ T6418] 9pnet_fd: Insufficient options for proto=fd [ 70.411178][ T12] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 70.416061][ T12] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 70.420305][ T12] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 70.425364][ T12] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 70.878714][ T1417] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.880893][ T1417] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.078171][ T6436] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 71.080379][ T6436] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 71.084069][ T6436] vhci_hcd vhci_hcd.0: Device attached [ 71.088500][ T6436] netlink: 8 bytes leftover after parsing attributes in process `syz.1.82'. [ 71.092097][ T6436] netlink: 8 bytes leftover after parsing attributes in process `syz.1.82'. [ 71.095171][ T6436] netlink: 8 bytes leftover after parsing attributes in process `syz.1.82'. [ 71.098668][ T6436] netlink: 8 bytes leftover after parsing attributes in process `syz.1.82'. [ 71.323291][ T5946] usb 39-1: new low-speed USB device number 3 using vhci_hcd [ 71.642651][ T2297] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 71.664116][ T6437] vhci_hcd: connection reset by peer [ 71.666186][ T62] vhci_hcd: stop threads [ 71.667660][ T62] vhci_hcd: release socket [ 71.669109][ T62] vhci_hcd: disconnect device [ 71.713578][ T10] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 71.793851][ T2297] usb 8-1: Using ep0 maxpacket: 8 [ 71.796908][ T2297] usb 8-1: config 0 has an invalid interface number: 1 but max is 0 [ 71.799377][ T2297] usb 8-1: config 0 has no interface number 0 [ 71.803936][ T2297] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 71.807259][ T2297] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 71.810039][ T2297] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 71.820285][ T2297] usb 8-1: config 0 descriptor?? [ 71.835355][ T2297] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 71.863356][ T10] usb 5-1: Using ep0 maxpacket: 8 [ 71.876469][ T10] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 71.878959][ T10] usb 5-1: config 0 has no interface number 0 [ 71.880882][ T10] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 71.884938][ T10] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 71.889088][ T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 71.894705][ T10] usb 5-1: config 0 descriptor?? [ 71.906605][ T10] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior1 [ 72.279977][ T6031] usb 8-1: USB disconnect, device number 4 [ 74.273354][ T34] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 74.310441][ T6479] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 74.313236][ T6479] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 74.318862][ T6479] vhci_hcd vhci_hcd.0: Device attached [ 74.328693][ T6479] netlink: 8 bytes leftover after parsing attributes in process `syz.3.91'. [ 74.334800][ T6479] netlink: 8 bytes leftover after parsing attributes in process `syz.3.91'. [ 74.339266][ T6479] netlink: 8 bytes leftover after parsing attributes in process `syz.3.91'. [ 74.343964][ T6479] netlink: 8 bytes leftover after parsing attributes in process `syz.3.91'. [ 74.389827][ T6031] usb 5-1: USB disconnect, device number 6 [ 74.423595][ T34] usb 7-1: Using ep0 maxpacket: 8 [ 74.431520][ T34] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 74.443663][ T34] usb 7-1: config 0 has no interface number 0 [ 74.448225][ T34] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 74.474730][ T34] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 74.478672][ T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 74.485914][ T34] usb 7-1: config 0 descriptor?? [ 74.500522][ T34] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 74.603301][ T6002] usb 43-1: new low-speed USB device number 3 using vhci_hcd [ 75.010207][ T6480] vhci_hcd: connection reset by peer [ 75.012025][ T62] vhci_hcd: stop threads [ 75.013366][ T62] vhci_hcd: release socket [ 75.015425][ T62] vhci_hcd: disconnect device [ 75.024735][ T10] usb 7-1: USB disconnect, device number 6 [ 75.565238][ T6496] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 75.568161][ T6496] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 75.573750][ T6496] vhci_hcd vhci_hcd.0: Device attached [ 75.591439][ T6496] netlink: 8 bytes leftover after parsing attributes in process `syz.0.96'. [ 75.596019][ T6502] netlink: 36 bytes leftover after parsing attributes in process `syz.2.99'. [ 75.613795][ T6502] netlink: 36 bytes leftover after parsing attributes in process `syz.2.99'. [ 75.634557][ T6496] netlink: 8 bytes leftover after parsing attributes in process `syz.0.96'. [ 75.648691][ T6496] netlink: 8 bytes leftover after parsing attributes in process `syz.0.96'. [ 75.652728][ T6496] netlink: 8 bytes leftover after parsing attributes in process `syz.0.96'. [ 75.699431][ T5943] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection [ 75.813279][ T34] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 75.833326][ T5315] usb 37-1: new low-speed USB device number 3 using vhci_hcd [ 75.973553][ T34] usb 6-1: Using ep0 maxpacket: 8 [ 76.021694][ T34] usb 6-1: config 0 has an invalid interface number: 1 but max is 0 [ 76.033313][ T34] usb 6-1: config 0 has no interface number 0 [ 76.035774][ T34] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 76.039861][ T34] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 76.042977][ T34] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 76.049782][ T34] usb 6-1: config 0 descriptor?? [ 76.057063][ T34] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 76.171218][ T6497] vhci_hcd: connection reset by peer [ 76.173922][ T46] vhci_hcd: stop threads [ 76.175322][ T46] vhci_hcd: release socket [ 76.177460][ T46] vhci_hcd: disconnect device [ 76.463281][ T5946] vhci_hcd: vhci_device speed not set [ 76.509093][ T10] usb 6-1: USB disconnect, device number 3 [ 76.757224][ T6525] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 76.759900][ T6525] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 76.762487][ T6525] vhci_hcd vhci_hcd.0: Device attached [ 77.303072][ T6536] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6) [ 77.305176][ T6536] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 77.308463][ T6536] vhci_hcd vhci_hcd.0: Device attached [ 77.529626][ T6526] vhci_hcd: connection closed [ 77.530618][ T46] vhci_hcd: stop threads [ 77.534437][ T46] vhci_hcd: release socket [ 77.536352][ T46] vhci_hcd: disconnect device [ 77.553320][ T6492] usb 41-1: new low-speed USB device number 2 using vhci_hcd [ 77.883951][ T6537] vhci_hcd: connection reset by peer [ 77.893009][ T62] vhci_hcd: stop threads [ 77.895047][ T62] vhci_hcd: release socket [ 77.897460][ T62] vhci_hcd: disconnect device [ 78.153304][ T34] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 78.268745][ T6546] fuse: Unknown parameter 'x֚Ƚö¶ÞšÅ.œ§YW(£ªÆv¤ã\“qôÄcÊÚûû㶇#ð2B)Ý—‹ÿWb-ð?Ôùœ¾4¾±ÿ(í×NfM&¹ý¥zâ«À¨z‚Æ*ù' [ 78.313288][ T34] usb 5-1: Using ep0 maxpacket: 8 [ 78.316236][ T34] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 78.319588][ T34] usb 5-1: config 0 has no interface number 0 [ 78.321766][ T34] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 78.326458][ T34] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 78.330030][ T34] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 78.337163][ T34] usb 5-1: config 0 descriptor?? [ 78.348969][ T34] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 78.404469][ T10] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0 [ 78.413556][ T10] hid-generic 0000:0000:0000.000C: hidraw1: HID v0.00 Device [syz1] on syz0 [ 78.867312][ T53] usb 5-1: USB disconnect, device number 7 [ 79.443318][ T53] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 79.687940][ T6583] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5) [ 79.690013][ T6583] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 79.692594][ T6583] vhci_hcd vhci_hcd.0: Device attached [ 79.717461][ T6583] __nla_validate_parse: 8 callbacks suppressed [ 79.717506][ T6583] netlink: 8 bytes leftover after parsing attributes in process `syz.0.117'. [ 79.726578][ T6583] netlink: 8 bytes leftover after parsing attributes in process `syz.0.117'. [ 79.729920][ T6583] netlink: 8 bytes leftover after parsing attributes in process `syz.0.117'. [ 79.733299][ T6583] netlink: 8 bytes leftover after parsing attributes in process `syz.0.117'. [ 79.822060][ T6002] vhci_hcd: vhci_device speed not set [ 79.843449][ T53] usb 8-1: Using ep0 maxpacket: 8 [ 79.847183][ T53] usb 8-1: config 0 has an invalid interface number: 1 but max is 0 [ 79.849682][ T53] usb 8-1: config 0 has no interface number 0 [ 79.851942][ T53] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 79.864718][ T53] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 79.873480][ T53] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 79.886076][ T6582] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6) [ 79.888176][ T6582] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 79.890753][ T6582] vhci_hcd vhci_hcd.0: Device attached [ 79.895797][ T6582] netlink: 8 bytes leftover after parsing attributes in process `syz.2.119'. [ 79.900498][ T6582] netlink: 8 bytes leftover after parsing attributes in process `syz.2.119'. [ 79.904218][ T6582] netlink: 8 bytes leftover after parsing attributes in process `syz.2.119'. [ 79.907711][ T53] usb 8-1: config 0 descriptor?? [ 79.911238][ T6582] netlink: 8 bytes leftover after parsing attributes in process `syz.2.119'. [ 79.931429][ T53] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 80.322429][ T6584] vhci_hcd: connection closed [ 80.322812][ T12] vhci_hcd: stop threads [ 80.326978][ T12] vhci_hcd: release socket [ 80.329094][ T12] vhci_hcd: disconnect device [ 80.348389][ T6586] vhci_hcd: connection closed [ 80.348660][ T62] vhci_hcd: stop threads [ 80.351654][ T62] vhci_hcd: release socket [ 80.353556][ T62] vhci_hcd: disconnect device [ 80.367675][ T10] usb 8-1: USB disconnect, device number 5 [ 80.944083][ T5315] vhci_hcd: vhci_device speed not set [ 81.124392][ T29] cfg80211: failed to load regulatory.db [ 81.145507][ T6602] tipc: Started in network mode [ 81.147508][ T6602] tipc: Node identity 8adba2cd143a, cluster identity 4711 [ 81.149898][ T6602] tipc: Enabled bearer , priority 0 [ 81.171051][ T6602] syzkaller0: MTU too low for tipc bearer [ 81.173306][ T6602] tipc: Disabling bearer [ 81.249568][ T6604] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 81.252184][ T6604] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 81.274923][ T6604] vhci_hcd vhci_hcd.0: Device attached [ 81.380530][ T6614] Illegal XDP return value 4294967274 on prog (id 24) dev N/A, expect packet loss! [ 81.406994][ T6604] netlink: 8 bytes leftover after parsing attributes in process `syz.0.124'. [ 81.417644][ T6604] netlink: 8 bytes leftover after parsing attributes in process `syz.0.124'. [ 81.713302][ T5315] usb 37-1: device descriptor read/64, error -110 [ 81.893755][ T6605] vhci_hcd: connection closed [ 81.893965][ T62] vhci_hcd: stop threads [ 81.896773][ T62] vhci_hcd: release socket [ 81.902567][ T62] vhci_hcd: disconnect device [ 81.970653][ T5315] usb 37-1: new low-speed USB device number 4 using vhci_hcd [ 81.972949][ T5315] usb 37-1: enqueue for inactive port 0 [ 82.058558][ T5315] vhci_hcd: vhci_device speed not set [ 82.233295][ T34] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 82.403276][ T34] usb 7-1: Using ep0 maxpacket: 8 [ 82.420658][ T34] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 82.423409][ T34] usb 7-1: config 0 has no interface number 0 [ 82.425429][ T34] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 82.428948][ T34] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 82.431749][ T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 82.435755][ T34] usb 7-1: config 0 descriptor?? [ 82.442671][ T34] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 82.451881][ T6630] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5) [ 82.453904][ T6630] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 82.459093][ T6630] vhci_hcd vhci_hcd.0: Device attached [ 82.726860][ T6634] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 82.729078][ T6634] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 82.732430][ T6634] vhci_hcd vhci_hcd.0: Device attached [ 82.743289][ T6492] vhci_hcd: vhci_device speed not set [ 82.895273][ T6031] usb 7-1: USB disconnect, device number 7 [ 82.913295][ T29] usb 43-1: new low-speed USB device number 4 using vhci_hcd [ 82.963356][ T6002] usb 39-1: new low-speed USB device number 4 using vhci_hcd [ 83.114963][ T6631] vhci_hcd: connection reset by peer [ 83.116231][ T6635] vhci_hcd: connection reset by peer [ 83.117301][ T62] vhci_hcd: stop threads [ 83.120395][ T62] vhci_hcd: release socket [ 83.121882][ T62] vhci_hcd: disconnect device [ 83.123637][ T62] vhci_hcd: stop threads [ 83.125019][ T62] vhci_hcd: release socket [ 83.126570][ T62] vhci_hcd: disconnect device [ 83.768509][ T6655] affs: No valid root block on device sr0 [ 83.873369][ T34] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 83.904006][ T6662] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 84.025053][ T34] usb 7-1: config 0 has no interfaces? [ 84.026902][ T34] usb 7-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 84.029956][ T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 84.034124][ T34] usb 7-1: config 0 descriptor?? [ 84.240337][ T6649] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 84.243414][ T6649] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 84.248167][ T6649] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 84.252445][ T6649] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 84.273303][ T10] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 84.354943][ T6492] usb 7-1: USB disconnect, device number 8 [ 84.433261][ T10] usb 8-1: Using ep0 maxpacket: 8 [ 84.436237][ T10] usb 8-1: config 0 has an invalid interface number: 1 but max is 0 [ 84.439430][ T10] usb 8-1: config 0 has no interface number 0 [ 84.441707][ T10] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 84.444848][ T10] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 84.447647][ T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 84.451626][ T10] usb 8-1: config 0 descriptor?? [ 84.457396][ T10] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 84.870835][ T6680] netlink: 'syz.0.148': attribute type 4 has an invalid length. [ 84.984295][ T6031] usb 8-1: USB disconnect, device number 6 [ 85.193590][ T6687] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5) [ 85.196396][ T6687] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 85.204766][ T6687] vhci_hcd vhci_hcd.0: Device attached [ 85.257040][ T6687] __nla_validate_parse: 10 callbacks suppressed [ 85.257093][ T6687] netlink: 8 bytes leftover after parsing attributes in process `syz.2.150'. [ 85.272074][ T6687] netlink: 8 bytes leftover after parsing attributes in process `syz.2.150'. [ 85.277809][ T6687] netlink: 8 bytes leftover after parsing attributes in process `syz.2.150'. [ 85.282477][ T6687] netlink: 8 bytes leftover after parsing attributes in process `syz.2.150'. [ 85.513968][ T6492] usb 41-1: new low-speed USB device number 3 using vhci_hcd [ 85.784058][ T6688] vhci_hcd: connection reset by peer [ 85.787552][ T12] vhci_hcd: stop threads [ 85.795253][ T12] vhci_hcd: release socket [ 85.797815][ T12] vhci_hcd: disconnect device [ 85.813416][ T10] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 85.963294][ T10] usb 5-1: Using ep0 maxpacket: 8 [ 85.970089][ T10] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 85.974183][ T10] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 85.977011][ T10] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10 [ 85.981390][ T10] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024 [ 85.994235][ T10] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 86.000738][ T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 86.011329][ T10] hub 5-1:1.0: bad descriptor, ignoring hub [ 86.013366][ T10] hub 5-1:1.0: probe with driver hub failed with error -5 [ 86.016639][ T10] cdc_wdm 5-1:1.0: skipping garbage [ 86.018560][ T10] cdc_wdm 5-1:1.0: skipping garbage [ 86.022444][ T10] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 86.027522][ T10] cdc_wdm 5-1:1.0: Unknown control protocol [ 86.411990][ T6702] 9pnet_fd: Insufficient options for proto=fd [ 86.415147][ T34] usb 5-1: USB disconnect, device number 8 [ 86.415355][ T6702] netlink: 'syz.3.155': attribute type 1 has an invalid length. [ 86.793290][ T1022] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 86.903330][ T5315] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 86.932107][ T6716] input: syz1 as /devices/virtual/input/input7 [ 86.954454][ T1022] usb 8-1: config 0 has no interfaces? [ 86.955963][ T6716] gtp0: entered promiscuous mode [ 86.956305][ T1022] usb 8-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 86.961048][ T1022] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 86.965308][ T1022] usb 8-1: config 0 descriptor?? [ 87.133316][ T5315] usb 6-1: Using ep0 maxpacket: 8 [ 87.137261][ T5315] usb 6-1: config 0 has an invalid interface number: 1 but max is 0 [ 87.140584][ T5315] usb 6-1: config 0 has no interface number 0 [ 87.143109][ T5315] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 87.147237][ T5315] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 87.151136][ T5315] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 87.156411][ T5315] usb 6-1: config 0 descriptor?? [ 87.161786][ T5315] iowarrior 6-1:0.1: no interrupt-in endpoint found [ 87.176063][ T6710] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 87.179900][ T6710] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 87.186436][ T6710] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 87.190241][ T6710] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 87.284931][ T6031] usb 8-1: USB disconnect, device number 7 [ 87.867519][ T40] audit: type=1326 audit(1760073548.792:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 87.878466][ T40] audit: type=1326 audit(1760073548.792:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 87.886738][ T40] audit: type=1326 audit(1760073548.792:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 87.893344][ T40] audit: type=1326 audit(1760073548.792:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 87.900056][ T40] audit: type=1326 audit(1760073548.792:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 87.908030][ T40] audit: type=1326 audit(1760073548.792:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 87.917209][ T40] audit: type=1326 audit(1760073548.792:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 87.925764][ T40] audit: type=1326 audit(1760073548.792:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 87.933155][ T40] audit: type=1326 audit(1760073548.792:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 87.942083][ T40] audit: type=1326 audit(1760073548.792:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000 [ 88.063398][ T6002] vhci_hcd: vhci_device speed not set [ 88.065276][ T29] vhci_hcd: vhci_device speed not set [ 88.206949][ T1022] IPVS: starting estimator thread 0... [ 88.303414][ T6739] IPVS: using max 29 ests per chain, 69600 per kthread [ 89.333328][ T6031] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 89.336758][ T1332] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 89.483302][ T1332] usb 5-1: Using ep0 maxpacket: 32 [ 89.485424][ T6031] usb 7-1: Using ep0 maxpacket: 32 [ 89.489231][ T6031] usb 7-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config [ 89.493697][ T1332] usb 5-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config [ 89.500027][ T6031] usb 7-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30 [ 89.503133][ T6031] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 89.506330][ T1332] usb 5-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30 [ 89.509436][ T1332] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 89.511842][ T1332] usb 5-1: Product: syz [ 89.513440][ T6031] usb 7-1: Product: syz [ 89.514939][ T6031] usb 7-1: Manufacturer: syz [ 89.516583][ T6031] usb 7-1: SerialNumber: syz [ 89.519274][ T1332] usb 5-1: Manufacturer: syz [ 89.520986][ T1332] usb 5-1: SerialNumber: syz [ 89.529593][ T6031] imon:imon_find_endpoints: no valid input (IR) endpoint found [ 89.533497][ T1332] imon:imon_find_endpoints: no valid input (IR) endpoint found [ 89.536501][ T6031] imon 7-1:155.0: unable to initialize intf0, err -19 [ 89.540004][ T1332] imon 5-1:155.0: unable to initialize intf0, err -19 [ 89.542664][ T6031] imon:imon_probe: failed to initialize context! [ 89.545084][ T1332] imon:imon_probe: failed to initialize context! [ 89.547284][ T1332] imon 5-1:155.0: unable to register, err -19 [ 89.550508][ T6031] imon 7-1:155.0: unable to register, err -19 [ 89.676507][ T1332] usb 6-1: USB disconnect, device number 4 [ 89.831417][ T5943] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection [ 89.888646][ T6769] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 90.158380][ T6774] tmpfs: Unknown parameter 'usrquota_inode_hfrdlimit' [ 90.159724][ T6773] tmpfs: Unknown parameter 'usrquota_inode_hfrdlimit' [ 90.623283][ T6492] vhci_hcd: vhci_device speed not set [ 91.036197][ T6781] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 91.038152][ T6781] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 91.040551][ T6781] vhci_hcd vhci_hcd.0: Device attached [ 91.049493][ T6781] netlink: 8 bytes leftover after parsing attributes in process `syz.3.178'. [ 91.054136][ T6781] netlink: 8 bytes leftover after parsing attributes in process `syz.3.178'. [ 91.058661][ T6781] netlink: 8 bytes leftover after parsing attributes in process `syz.3.178'. [ 91.062429][ T6781] netlink: 8 bytes leftover after parsing attributes in process `syz.3.178'. [ 91.334809][ T29] usb 43-1: new low-speed USB device number 5 using vhci_hcd [ 91.535650][ T6782] vhci_hcd: connection reset by peer [ 91.538159][ T62] vhci_hcd: stop threads [ 91.539970][ T62] vhci_hcd: release socket [ 91.541740][ T62] vhci_hcd: disconnect device [ 91.666035][ T6791] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8) [ 91.668577][ T6791] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 91.670989][ T6791] vhci_hcd vhci_hcd.0: Device attached [ 91.677356][ T6791] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check. [ 91.913368][ T1332] usb 39-1: new low-speed USB device number 5 using vhci_hcd [ 92.188125][ T34] usb 5-1: USB disconnect, device number 9 [ 92.236386][ T6063] usb 7-1: USB disconnect, device number 9 [ 92.353289][ T1022] usb 8-1: new high-speed USB device number 8 using dummy_hcd [ 92.459877][ T6792] vhci_hcd: connection reset by peer [ 92.462354][ T46] vhci_hcd: stop threads [ 92.464397][ T46] vhci_hcd: release socket [ 92.466521][ T46] vhci_hcd: disconnect device [ 92.503417][ T1022] usb 8-1: Using ep0 maxpacket: 8 [ 92.507010][ T1022] usb 8-1: config 0 has an invalid interface number: 1 but max is 0 [ 92.510167][ T1022] usb 8-1: config 0 has no interface number 0 [ 92.512656][ T1022] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 92.516918][ T1022] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 92.521072][ T1022] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 92.527144][ T1022] usb 8-1: config 0 descriptor?? [ 92.531965][ T1022] iowarrior 8-1:0.1: no interrupt-in endpoint found [ 93.024317][ T5947] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection [ 93.806392][ T6826] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 93.808642][ T6826] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 93.812519][ T6826] vhci_hcd vhci_hcd.0: Device attached [ 93.824316][ T6826] netlink: 8 bytes leftover after parsing attributes in process `syz.0.189'. [ 93.828418][ T6826] netlink: 8 bytes leftover after parsing attributes in process `syz.0.189'. [ 93.832180][ T6826] netlink: 8 bytes leftover after parsing attributes in process `syz.0.189'. [ 93.835665][ T6826] netlink: 8 bytes leftover after parsing attributes in process `syz.0.189'. [ 94.053246][ T6492] usb 37-1: new low-speed USB device number 5 using vhci_hcd [ 94.133371][ T1331] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 94.283263][ T1331] usb 6-1: Using ep0 maxpacket: 32 [ 94.287131][ T1331] usb 6-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config [ 94.293033][ T1331] usb 6-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30 [ 94.296377][ T1331] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 94.299303][ T1331] usb 6-1: Product: syz [ 94.300577][ T1331] usb 6-1: Manufacturer: syz [ 94.302023][ T1331] usb 6-1: SerialNumber: syz [ 94.308925][ T1331] imon:imon_find_endpoints: no valid input (IR) endpoint found [ 94.311393][ T1331] imon 6-1:155.0: unable to initialize intf0, err -19 [ 94.313692][ T1331] imon:imon_probe: failed to initialize context! [ 94.316171][ T1331] imon 6-1:155.0: unable to register, err -19 [ 94.378322][ T6834] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6) [ 94.380473][ T6834] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 94.384040][ T6834] vhci_hcd vhci_hcd.0: Device attached [ 94.394011][ T6834] netlink: 8 bytes leftover after parsing attributes in process `syz.2.191'. [ 94.397464][ T6834] netlink: 8 bytes leftover after parsing attributes in process `syz.2.191'. [ 94.473218][ T6827] vhci_hcd: connection reset by peer [ 94.483703][ T62] vhci_hcd: stop threads [ 94.486881][ T62] vhci_hcd: release socket [ 94.489235][ T62] vhci_hcd: disconnect device [ 94.623373][ T5315] usb 41-1: new low-speed USB device number 4 using vhci_hcd [ 94.946734][ T6838] tmpfs: Unknown parameter 'usrquota_inode_hfrdlimit' [ 95.021547][ T6835] vhci_hcd: connection reset by peer [ 95.024810][ T46] vhci_hcd: stop threads [ 95.026435][ T46] vhci_hcd: release socket [ 95.027982][ T46] vhci_hcd: disconnect device [ 95.139211][ T1331] usb 8-1: USB disconnect, device number 8 [ 95.991495][ T6859] ======================================================= [ 95.991495][ T6859] WARNING: The mand mount option has been deprecated and [ 95.991495][ T6859] and is ignored by this kernel. Remove the mand [ 95.991495][ T6859] option from the mount to silence this warning. [ 95.991495][ T6859] ======================================================= [ 96.463282][ T29] vhci_hcd: vhci_device speed not set [ 96.969804][ T10] usb 6-1: USB disconnect, device number 5 [ 97.023916][ T1332] vhci_hcd: vhci_device speed not set [ 97.671958][ T6876] syz.0.200 (6876): drop_caches: 2 [ 97.700285][ T6881] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 97.702726][ T6881] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 97.723542][ T6881] vhci_hcd vhci_hcd.0: Device attached [ 97.730647][ T6881] __nla_validate_parse: 2 callbacks suppressed [ 97.730659][ T6881] netlink: 8 bytes leftover after parsing attributes in process `syz.3.201'. [ 97.736485][ T6881] netlink: 8 bytes leftover after parsing attributes in process `syz.3.201'. [ 97.739602][ T6881] netlink: 8 bytes leftover after parsing attributes in process `syz.3.201'. [ 97.742427][ T6881] netlink: 8 bytes leftover after parsing attributes in process `syz.3.201'. [ 97.785219][ T6876] syz.0.200 (6876): drop_caches: 2 [ 97.993248][ T29] usb 43-1: new low-speed USB device number 6 using vhci_hcd [ 98.064163][ T6887] vhci_hcd: connection reset by peer [ 98.066023][ T46] vhci_hcd: stop threads [ 98.067328][ T46] vhci_hcd: release socket [ 98.071996][ T46] vhci_hcd: disconnect device [ 98.681190][ T6912] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4) [ 98.683368][ T6912] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 98.685760][ T6912] vhci_hcd vhci_hcd.0: Device attached [ 98.689270][ T6912] netlink: 8 bytes leftover after parsing attributes in process `syz.2.211'. [ 98.692346][ T6912] netlink: 8 bytes leftover after parsing attributes in process `syz.2.211'. [ 98.695274][ T6912] netlink: 8 bytes leftover after parsing attributes in process `syz.2.211'. [ 98.698468][ T6912] netlink: 8 bytes leftover after parsing attributes in process `syz.2.211'. [ 98.704354][ T6916] vhci_hcd: connection closed [ 98.704979][ T46] vhci_hcd: stop threads [ 98.707921][ T46] vhci_hcd: release socket [ 98.710876][ T46] vhci_hcd: disconnect device [ 99.193287][ T6492] vhci_hcd: vhci_device speed not set [ 99.833779][ T5315] vhci_hcd: vhci_device speed not set [ 100.333940][ T6953] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8) [ 100.337084][ T6953] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 100.340766][ T6953] vhci_hcd vhci_hcd.0: Device attached [ 100.403441][ T6952] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check. [ 100.834607][ T5315] usb 41-1: device descriptor read/64, error -110 [ 100.843667][ T6964] tipc: Started in network mode [ 100.845249][ T6964] tipc: Node identity 7e4f745d81d2, cluster identity 4711 [ 100.847555][ T6964] tipc: Enabled bearer , priority 0 [ 100.850428][ T6964] syzkaller0: entered promiscuous mode [ 100.852219][ T6964] syzkaller0: entered allmulticast mode [ 100.878805][ T6964] tipc: Resetting bearer [ 100.889423][ T6963] tipc: Resetting bearer [ 100.900941][ T6963] tipc: Disabling bearer [ 100.998754][ T6954] vhci_hcd: connection closed [ 101.002962][ T12] vhci_hcd: stop threads [ 101.006151][ T12] vhci_hcd: release socket [ 101.008189][ T12] vhci_hcd: disconnect device [ 101.013544][ T5315] vhci_hcd: vhci_device speed not set [ 101.772360][ T6992] Bluetooth: MGMT ver 1.23 [ 101.775838][ T6992] netlink: 72 bytes leftover after parsing attributes in process `syz.2.235'. [ 102.693842][ T7028] gtp0: left promiscuous mode [ 102.899676][ T7030] FAULT_INJECTION: forcing a failure. [ 102.899676][ T7030] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 102.905517][ T7030] CPU: 2 UID: 0 PID: 7030 Comm: syz.2.246 Not tainted syzkaller #0 PREEMPT(full) [ 102.905532][ T7030] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 102.905543][ T7030] Call Trace: [ 102.905546][ T7030] [ 102.905551][ T7030] dump_stack_lvl+0x16c/0x1f0 [ 102.905567][ T7030] should_fail_ex+0x512/0x640 [ 102.905583][ T7030] _copy_to_user+0x32/0xd0 [ 102.905598][ T7030] simple_read_from_buffer+0xcb/0x170 [ 102.905616][ T7030] proc_fail_nth_read+0x197/0x240 [ 102.905628][ T7030] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 102.905639][ T7030] ? rw_verify_area+0xcf/0x6c0 [ 102.905649][ T7030] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 102.905659][ T7030] vfs_read+0x1e1/0xcf0 [ 102.905673][ T7030] ? __pfx_vfs_read+0x10/0x10 [ 102.905685][ T7030] ? find_held_lock+0x2b/0x80 [ 102.905705][ T7030] ? __fget_files+0x20e/0x3c0 [ 102.905727][ T7030] ksys_read+0x12a/0x250 [ 102.905745][ T7030] ? __pfx_ksys_read+0x10/0x10 [ 102.905765][ T7030] ? rcu_is_watching+0x12/0xc0 [ 102.905800][ T7030] __do_fast_syscall_32+0x7c/0x300 [ 102.905825][ T7030] do_fast_syscall_32+0x32/0x80 [ 102.905846][ T7030] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 102.905865][ T7030] RIP: 0023:0xf70ad579 [ 102.905878][ T7030] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 102.905893][ T7030] RSP: 002b:00000000f549d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 102.905909][ T7030] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f549d620 [ 102.905919][ T7030] RDX: 000000000000000f RSI: 00000000f7445ff4 RDI: 0000000000000000 [ 102.905929][ T7030] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 102.905938][ T7030] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 102.905949][ T7030] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 102.905974][ T7030] [ 103.103313][ T29] vhci_hcd: vhci_device speed not set [ 103.494339][ T7043] netlink: 36 bytes leftover after parsing attributes in process `syz.1.250'. [ 104.266874][ T7032] syz.3.247 (7032) used greatest stack depth: 19912 bytes left [ 104.349408][ T7052] netlink: 8 bytes leftover after parsing attributes in process `syz.2.253'. [ 104.356838][ T7052] xt_CONNSECMARK: invalid mode: 5 [ 104.933341][ T1022] usb 8-1: new high-speed USB device number 9 using dummy_hcd [ 105.083281][ T1022] usb 8-1: Using ep0 maxpacket: 32 [ 105.087041][ T1022] usb 8-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config [ 105.091211][ T1022] usb 8-1: config 155 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 11 [ 105.098147][ T1022] usb 8-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30 [ 105.101533][ T1022] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 105.104679][ T1022] usb 8-1: Product: syz [ 105.106441][ T1022] usb 8-1: Manufacturer: syz [ 105.108389][ T1022] usb 8-1: SerialNumber: syz [ 105.121362][ T1022] imon:imon_find_endpoints: no valid input (IR) endpoint found [ 105.124522][ T1022] imon 8-1:155.0: unable to initialize intf0, err -19 [ 105.127289][ T1022] imon:imon_probe: failed to initialize context! [ 105.129959][ T1022] imon 8-1:155.0: unable to register, err -19 [ 105.757527][ T7084] tmpfs: Unknown parameter 'usrquota_inode_hfrdlimit' [ 106.504972][ T7092] netlink: 160 bytes leftover after parsing attributes in process `syz.0.264'. [ 106.515285][ T7092] netlink: 12 bytes leftover after parsing attributes in process `syz.0.264'. [ 107.550571][ T7114] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 107.689784][ T10] usb 8-1: USB disconnect, device number 9 [ 108.373777][ T40] kauditd_printk_skb: 26 callbacks suppressed [ 108.373789][ T40] audit: type=1804 audit(1760073569.292:38): pid=7133 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.275" name="/newroot/77/bus" dev="tmpfs" ino=462 res=1 errno=0 [ 108.428235][ T7134] netlink: 8 bytes leftover after parsing attributes in process `syz.2.275'. [ 109.090080][ T5943] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection [ 109.173912][ T7147] netlink: 12 bytes leftover after parsing attributes in process `syz.0.271'. [ 109.593323][ T1022] usb 8-1: new high-speed USB device number 10 using dummy_hcd [ 109.636705][ T7158] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6) [ 109.638771][ T7158] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 109.642507][ T7158] vhci_hcd vhci_hcd.0: Device attached [ 109.648297][ T7158] netlink: 8 bytes leftover after parsing attributes in process `syz.2.279'. [ 109.651659][ T7158] netlink: 8 bytes leftover after parsing attributes in process `syz.2.279'. [ 109.654718][ T7158] netlink: 8 bytes leftover after parsing attributes in process `syz.2.279'. [ 109.657625][ T7158] netlink: 8 bytes leftover after parsing attributes in process `syz.2.279'. [ 109.743332][ T1022] usb 8-1: Using ep0 maxpacket: 32 [ 109.746332][ T1022] usb 8-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config [ 109.749547][ T1022] usb 8-1: config 155 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 11 [ 109.755653][ T1022] usb 8-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30 [ 109.758519][ T1022] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 109.760977][ T1022] usb 8-1: Product: syz [ 109.762291][ T1022] usb 8-1: Manufacturer: syz [ 109.763816][ T1022] usb 8-1: SerialNumber: syz [ 109.772502][ T1022] imon:imon_find_endpoints: no valid input (IR) endpoint found [ 109.777228][ T1022] imon 8-1:155.0: unable to initialize intf0, err -19 [ 109.780057][ T1022] imon:imon_probe: failed to initialize context! [ 109.782594][ T1022] imon 8-1:155.0: unable to register, err -19 [ 109.943270][ T29] usb 41-1: new low-speed USB device number 6 using vhci_hcd [ 110.026822][ T7164] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5) [ 110.028879][ T7164] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 110.031598][ T7164] vhci_hcd vhci_hcd.0: Device attached [ 110.158542][ T7159] vhci_hcd: connection reset by peer [ 110.160344][ T13] vhci_hcd: stop threads [ 110.162131][ T13] vhci_hcd: release socket [ 110.164207][ T13] vhci_hcd: disconnect device [ 110.337886][ T5315] usb 38-1: SetAddress Request (2) to port 0 [ 110.340052][ T5315] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd [ 110.424858][ T7172] tmpfs: Unknown parameter 'usrquota_inode_hfrdlimit' [ 110.448330][ T7165] vhci_hcd: connection reset by peer [ 110.451708][ T62] vhci_hcd: stop threads [ 110.453593][ T62] vhci_hcd: release socket [ 110.455601][ T62] vhci_hcd: disconnect device [ 111.240462][ T7181] netlink: 'syz.1.285': attribute type 10 has an invalid length. [ 111.246384][ T7181] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 111.281191][ T7181] 8021q: adding VLAN 0 to HW filter on device bond1 [ 111.310228][ T7181] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 111.320755][ T7181] bond1: (slave macvlan2): Enslaving as a backup interface with an up link [ 111.471608][ T7194] netlink: 4 bytes leftover after parsing attributes in process `syz.1.290'. [ 111.563312][ T6492] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 111.673720][ T7199] tmpfs: Unknown parameter 'hash' [ 111.783253][ T6492] usb 5-1: Using ep0 maxpacket: 8 [ 111.786629][ T6492] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 111.789191][ T6492] usb 5-1: config 0 has no interface number 0 [ 111.791220][ T6492] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 111.794410][ T6492] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 111.797325][ T6492] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 111.802723][ T6492] usb 5-1: config 0 descriptor?? [ 111.805915][ T6492] iowarrior 5-1:0.1: no interrupt-in endpoint found [ 112.428717][ T6492] usb 8-1: USB disconnect, device number 10 [ 112.469583][ T7209] netlink: 'syz.3.294': attribute type 10 has an invalid length. [ 112.475445][ T7209] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 112.490889][ T7209] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode [ 112.557114][ T7211] FAULT_INJECTION: forcing a failure. [ 112.557114][ T7211] name failslab, interval 1, probability 0, space 0, times 1 [ 112.561902][ T7211] CPU: 3 UID: 0 PID: 7211 Comm: syz.3.295 Not tainted syzkaller #0 PREEMPT(full) [ 112.561916][ T7211] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 112.561922][ T7211] Call Trace: [ 112.561926][ T7211] [ 112.561931][ T7211] dump_stack_lvl+0x16c/0x1f0 [ 112.561947][ T7211] should_fail_ex+0x512/0x640 [ 112.561960][ T7211] ? __kmalloc_cache_noprof+0x5f/0x780 [ 112.561979][ T7211] should_failslab+0xc2/0x120 [ 112.561994][ T7211] __kmalloc_cache_noprof+0x72/0x780 [ 112.562010][ T7211] ? copy_mount_options+0x55/0x190 [ 112.562046][ T7211] ? copy_mount_options+0x55/0x190 [ 112.562059][ T7211] ? memdup_user+0x82/0xe0 [ 112.562069][ T7211] copy_mount_options+0x55/0x190 [ 112.562084][ T7211] __ia32_sys_mount+0x1ab/0x310 [ 112.562096][ T7211] ? __pfx___ia32_sys_mount+0x10/0x10 [ 112.562109][ T7211] ? rcu_is_watching+0x12/0xc0 [ 112.562123][ T7211] __do_fast_syscall_32+0x7c/0x300 [ 112.562137][ T7211] do_fast_syscall_32+0x32/0x80 [ 112.562150][ T7211] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 112.562163][ T7211] RIP: 0023:0xf70ed579 [ 112.562171][ T7211] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 112.562181][ T7211] RSP: 002b:00000000f54dd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015 [ 112.562191][ T7211] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800000c0 [ 112.562197][ T7211] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000080000900 [ 112.562203][ T7211] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 112.562208][ T7211] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 112.562214][ T7211] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 112.562227][ T7211] [ 112.710962][ T7218] netlink: 'syz.2.299': attribute type 1 has an invalid length. [ 112.859877][ T7228] netlink: 160 bytes leftover after parsing attributes in process `syz.1.301'. [ 112.864242][ T7228] netlink: 12 bytes leftover after parsing attributes in process `syz.1.301'. [ 113.094487][ T7231] /dev/sr0: Can't open blockdev [ 113.653072][ T7239] netlink: 'syz.3.303': attribute type 3 has an invalid length. [ 113.672730][ T7239] IPVS: Error connecting to the multicast addr [ 113.879885][ T7242] tmpfs: Unknown parameter 'hash' [ 114.336984][ T1332] usb 5-1: USB disconnect, device number 10 [ 114.450977][ T5947] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201' [ 114.454088][ T5947] CPU: 3 UID: 0 PID: 5947 Comm: kworker/u33:3 Not tainted syzkaller #0 PREEMPT(full) [ 114.454103][ T5947] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 114.454111][ T5947] Workqueue: hci2 hci_rx_work [ 114.454128][ T5947] Call Trace: [ 114.454132][ T5947] [ 114.454137][ T5947] dump_stack_lvl+0x16c/0x1f0 [ 114.454152][ T5947] sysfs_warn_dup+0x7f/0xa0 [ 114.454166][ T5947] sysfs_create_dir_ns+0x24b/0x2b0 [ 114.454179][ T5947] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 114.454190][ T5947] ? find_held_lock+0x2b/0x80 [ 114.454205][ T5947] ? do_raw_spin_unlock+0x172/0x230 [ 114.454224][ T5947] kobject_add_internal+0x2c4/0x9b0 [ 114.454243][ T5947] kobject_add+0x16e/0x240 [ 114.454257][ T5947] ? __pfx_kobject_add+0x10/0x10 [ 114.454272][ T5947] ? do_raw_spin_unlock+0x172/0x230 [ 114.454290][ T5947] ? kobject_put+0xab/0x5a0 [ 114.454306][ T5947] device_add+0x288/0x1aa0 [ 114.454320][ T5947] ? __pfx_dev_set_name+0x10/0x10 [ 114.454335][ T5947] ? __pfx_device_add+0x10/0x10 [ 114.454348][ T5947] ? mgmt_send_event_skb+0x2fb/0x460 [ 114.454363][ T5947] hci_conn_add_sysfs+0x17e/0x230 [ 114.454377][ T5947] le_conn_complete_evt+0x1260/0x2150 [ 114.454391][ T5947] ? __pfx_le_conn_complete_evt+0x10/0x10 [ 114.454401][ T5947] ? hci_event_packet+0x459/0x11c0 [ 114.454416][ T5947] hci_le_conn_complete_evt+0x23c/0x370 [ 114.454430][ T5947] hci_le_meta_evt+0x354/0x5e0 [ 114.454442][ T5947] ? __pfx_hci_le_conn_complete_evt+0x10/0x10 [ 114.454455][ T5947] hci_event_packet+0x685/0x11c0 [ 114.454466][ T5947] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 114.454478][ T5947] ? __pfx_hci_event_packet+0x10/0x10 [ 114.454490][ T5947] ? kcov_remote_start+0x3c9/0x6d0 [ 114.454500][ T5947] ? lockdep_hardirqs_on+0x7c/0x110 [ 114.454516][ T5947] hci_rx_work+0x2c5/0x16b0 [ 114.454528][ T5947] ? rcu_is_watching+0x12/0xc0 [ 114.454542][ T5947] process_one_work+0x9cf/0x1b70 [ 114.454564][ T5947] ? __pfx_process_one_work+0x10/0x10 [ 114.454585][ T5947] ? assign_work+0x1a0/0x250 [ 114.454601][ T5947] worker_thread+0x6c8/0xf10 [ 114.454624][ T5947] ? __pfx_worker_thread+0x10/0x10 [ 114.454640][ T5947] kthread+0x3c2/0x780 [ 114.454655][ T5947] ? __pfx_kthread+0x10/0x10 [ 114.454671][ T5947] ? rcu_is_watching+0x12/0xc0 [ 114.454682][ T5947] ? __pfx_kthread+0x10/0x10 [ 114.454697][ T5947] ret_from_fork+0x675/0x7d0 [ 114.454713][ T5947] ? __pfx_kthread+0x10/0x10 [ 114.454735][ T5947] ret_from_fork_asm+0x1a/0x30 [ 114.454754][ T5947] [ 114.454767][ T5947] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory. [ 114.540131][ T5947] Bluetooth: hci2: failed to register connection device [ 115.046687][ T29] vhci_hcd: vhci_device speed not set [ 115.483327][ T7301] xt_CT: You must specify a L4 protocol and not use inversions on it [ 115.663308][ T5315] usb 38-1: device descriptor read/8, error -110 [ 116.093677][ T5315] usb usb38-port1: attempt power cycle [ 116.334145][ T5943] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection [ 116.413339][ T6002] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 116.476106][ T7336] FAULT_INJECTION: forcing a failure. [ 116.476106][ T7336] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 116.481238][ T7336] CPU: 0 UID: 0 PID: 7336 Comm: syz.1.324 Not tainted syzkaller #0 PREEMPT(full) [ 116.481252][ T7336] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 116.481258][ T7336] Call Trace: [ 116.481262][ T7336] [ 116.481266][ T7336] dump_stack_lvl+0x16c/0x1f0 [ 116.481282][ T7336] should_fail_ex+0x512/0x640 [ 116.481298][ T7336] strncpy_from_user+0x3b/0x2e0 [ 116.481312][ T7336] getname_flags.part.0+0x8f/0x550 [ 116.481329][ T7336] getname_flags+0x93/0xf0 [ 116.481339][ T7336] path_setxattrat+0x27a/0x2a0 [ 116.481350][ T7336] ? __pfx_path_setxattrat+0x10/0x10 [ 116.481363][ T7336] ? __pfx_bpf_send_signal_common+0x10/0x10 [ 116.481390][ T7336] ? __might_fault+0xe3/0x190 [ 116.481399][ T7336] ? __might_fault+0x13b/0x190 [ 116.481411][ T7336] ? find_held_lock+0x2b/0x80 [ 116.481423][ T7336] ? syscall_trace_enter+0x1cb/0x240 [ 116.481441][ T7336] __ia32_sys_lsetxattr+0xc7/0x140 [ 116.481452][ T7336] ? syscall_trace_enter+0xee/0x240 [ 116.481468][ T7336] __do_fast_syscall_32+0x7c/0x300 [ 116.481483][ T7336] do_fast_syscall_32+0x32/0x80 [ 116.481495][ T7336] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 116.481508][ T7336] RIP: 0023:0xf701d579 [ 116.481517][ T7336] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 116.481527][ T7336] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 00000000000000e3 [ 116.481537][ T7336] RAX: ffffffffffffffda RBX: 0000000080000180 RCX: 0000000080000040 [ 116.481543][ T7336] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 116.481550][ T7336] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 116.481555][ T7336] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 116.481561][ T7336] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 116.481574][ T7336] [ 116.563243][ T6002] usb 5-1: Using ep0 maxpacket: 8 [ 116.566516][ T6002] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 116.570416][ T6002] usb 5-1: config 0 has no interface number 0 [ 116.573609][ T6002] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 116.583368][ T6002] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 116.586782][ T6002] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.590822][ T6002] usb 5-1: config 0 descriptor?? [ 116.596723][ T6002] iowarrior 5-1:0.1: no interrupt-in endpoint found [ 116.672230][ T5315] usb usb38-port1: unable to enumerate USB device [ 117.258483][ T7356] netlink: 'syz.3.328': attribute type 3 has an invalid length. [ 117.527965][ T10] IPVS: starting estimator thread 0... [ 117.623306][ T7363] IPVS: using max 30 ests per chain, 72000 per kthread [ 118.474312][ T7382] mac80211_hwsim hwsim3 wlan1: left allmulticast mode [ 118.660074][ T7385] FAULT_INJECTION: forcing a failure. [ 118.660074][ T7385] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 118.664516][ T7385] CPU: 2 UID: 0 PID: 7385 Comm: syz.1.336 Not tainted syzkaller #0 PREEMPT(full) [ 118.664530][ T7385] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 118.664536][ T7385] Call Trace: [ 118.664540][ T7385] [ 118.664545][ T7385] dump_stack_lvl+0x16c/0x1f0 [ 118.664561][ T7385] should_fail_ex+0x512/0x640 [ 118.664581][ T7385] _copy_to_user+0x32/0xd0 [ 118.664596][ T7385] simple_read_from_buffer+0xcb/0x170 [ 118.664615][ T7385] proc_fail_nth_read+0x197/0x240 [ 118.664627][ T7385] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 118.664639][ T7385] ? rw_verify_area+0xcf/0x6c0 [ 118.664650][ T7385] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 118.664665][ T7385] vfs_read+0x1e1/0xcf0 [ 118.664685][ T7385] ? __pfx_vfs_read+0x10/0x10 [ 118.664701][ T7385] ? find_held_lock+0x2b/0x80 [ 118.664726][ T7385] ? __fget_files+0x20e/0x3c0 [ 118.664750][ T7385] ksys_read+0x12a/0x250 [ 118.664768][ T7385] ? __pfx_ksys_read+0x10/0x10 [ 118.664786][ T7385] ? fput+0x9b/0xd0 [ 118.664804][ T7385] ? rcu_is_watching+0x12/0xc0 [ 118.664817][ T7385] __do_fast_syscall_32+0x7c/0x300 [ 118.664831][ T7385] do_fast_syscall_32+0x32/0x80 [ 118.664844][ T7385] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 118.664858][ T7385] RIP: 0023:0xf701d579 [ 118.664866][ T7385] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 118.664876][ T7385] RSP: 002b:00000000f540d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 118.664885][ T7385] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f540d620 [ 118.664891][ T7385] RDX: 000000000000000f RSI: 00000000f73b5ff4 RDI: 0000000000000000 [ 118.664897][ T7385] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 118.664903][ T7385] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 118.664908][ T7385] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 118.664921][ T7385] [ 119.001104][ T7405] usb usb5: usbfs: process 7405 (syz.1.337) did not claim interface 0 before use [ 119.013773][ T7405] netlink: 48 bytes leftover after parsing attributes in process `syz.1.337'. [ 119.020613][ T7408] tmpfs: Unknown parameter 'hash' [ 119.177804][ T1332] usb 5-1: USB disconnect, device number 11 [ 119.467656][ T7424] netlink: 4 bytes leftover after parsing attributes in process `syz.3.345'. [ 119.470547][ T7424] bridge_slave_1: left allmulticast mode [ 119.472302][ T7424] bridge_slave_1: left promiscuous mode [ 119.474333][ T7424] bridge0: port 2(bridge_slave_1) entered disabled state [ 119.505153][ T7424] bridge_slave_0: left allmulticast mode [ 119.506985][ T7424] bridge_slave_0: left promiscuous mode [ 119.508848][ T7424] bridge0: port 1(bridge_slave_0) entered disabled state [ 119.925629][ T7429] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 119.927705][ T7429] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 119.930235][ T7429] vhci_hcd vhci_hcd.0: Device attached [ 119.945716][ T7429] netlink: 8 bytes leftover after parsing attributes in process `syz.0.346'. [ 119.949143][ T7429] netlink: 8 bytes leftover after parsing attributes in process `syz.0.346'. [ 119.951987][ T7429] netlink: 8 bytes leftover after parsing attributes in process `syz.0.346'. [ 119.955207][ T7429] netlink: 8 bytes leftover after parsing attributes in process `syz.0.346'. [ 120.168168][ T7430] vhci_hcd: connection closed [ 120.168364][ T46] vhci_hcd: stop threads [ 120.171604][ T46] vhci_hcd: release socket [ 120.173049][ T46] vhci_hcd: disconnect device [ 120.223310][ T5315] vhci_hcd: vhci_device speed not set [ 120.794190][ T5943] Bluetooth: hci2: command 0x0406 tx timeout [ 120.884282][ T5943] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection [ 121.448538][ T7468] netlink: 8 bytes leftover after parsing attributes in process `syz.0.356'. [ 121.452962][ T7468] netlink: 8 bytes leftover after parsing attributes in process `syz.0.356'. [ 121.456584][ T7468] netlink: 8 bytes leftover after parsing attributes in process `syz.0.356'. [ 121.459443][ T7468] netlink: 8 bytes leftover after parsing attributes in process `syz.0.356'. [ 121.496530][ T7467] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 121.498659][ T7467] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 121.501284][ T7467] vhci_hcd vhci_hcd.0: Device attached [ 121.743385][ T5315] usb 37-1: new low-speed USB device number 7 using vhci_hcd [ 122.233915][ T7469] vhci_hcd: connection reset by peer [ 122.243547][ T46] vhci_hcd: stop threads [ 122.245614][ T46] vhci_hcd: release socket [ 122.248621][ T46] vhci_hcd: disconnect device [ 122.464864][ T10] libceph: connect (1)[c::]:6789 error -101 [ 122.471436][ T10] libceph: mon0 (1)[c::]:6789 connect error [ 122.508510][ T7486] ceph: No mds server is up or the cluster is laggy [ 122.530494][ T7493] vxfs: WRONG superblock magic 00000000 at 1 [ 122.537074][ T7493] vxfs: WRONG superblock magic 00000000 at 8 [ 122.539688][ T7493] vxfs: can't find superblock. [ 122.560867][ T7494] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 122.563654][ T7494] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 122.568680][ T7494] vhci_hcd vhci_hcd.0: Device attached [ 122.803446][ T6002] usb 39-1: new low-speed USB device number 6 using vhci_hcd [ 122.817619][ T7495] vhci_hcd: connection reset by peer [ 122.821223][ T62] vhci_hcd: stop threads [ 122.823112][ T62] vhci_hcd: release socket [ 122.825493][ T62] vhci_hcd: disconnect device [ 123.737881][ T7504] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 123.909438][ T7518] bridge_slave_1: left allmulticast mode [ 123.911877][ T7518] bridge_slave_1: left promiscuous mode [ 123.914812][ T7518] bridge0: port 2(bridge_slave_1) entered disabled state [ 124.120231][ T7518] bridge_slave_0: left allmulticast mode [ 124.122601][ T7518] bridge_slave_0: left promiscuous mode [ 124.125797][ T7518] bridge0: port 1(bridge_slave_0) entered disabled state [ 125.415972][ T7546] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 125.418600][ T7546] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 125.421519][ T7546] vhci_hcd vhci_hcd.0: Device attached [ 125.434689][ T7546] __nla_validate_parse: 5 callbacks suppressed [ 125.434700][ T7546] netlink: 8 bytes leftover after parsing attributes in process `syz.0.377'. [ 125.439636][ T7546] netlink: 8 bytes leftover after parsing attributes in process `syz.0.377'. [ 125.442788][ T7546] netlink: 8 bytes leftover after parsing attributes in process `syz.0.377'. [ 125.446178][ T7546] netlink: 8 bytes leftover after parsing attributes in process `syz.0.377'. [ 125.743888][ T7554] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 125.746364][ T7554] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 125.748730][ T7554] vhci_hcd vhci_hcd.0: Device attached [ 125.756585][ T7554] netlink: 8 bytes leftover after parsing attributes in process `syz.3.378'. [ 125.759793][ T7554] netlink: 8 bytes leftover after parsing attributes in process `syz.3.378'. [ 125.762645][ T7554] netlink: 8 bytes leftover after parsing attributes in process `syz.3.378'. [ 125.766856][ T7554] netlink: 8 bytes leftover after parsing attributes in process `syz.3.378'. [ 126.068462][ T7549] vhci_hcd: connection closed [ 126.068767][ T13] vhci_hcd: stop threads [ 126.072588][ T13] vhci_hcd: release socket [ 126.076799][ T13] vhci_hcd: disconnect device [ 126.163309][ T29] usb 43-1: new low-speed USB device number 7 using vhci_hcd [ 126.251034][ T7555] vhci_hcd: connection reset by peer [ 126.254719][ T13] vhci_hcd: stop threads [ 126.256285][ T13] vhci_hcd: release socket [ 126.257994][ T13] vhci_hcd: disconnect device [ 126.343299][ T1332] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 126.503286][ T1332] usb 7-1: Using ep0 maxpacket: 8 [ 126.508821][ T1332] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 126.512286][ T1332] usb 7-1: config 0 has no interface number 0 [ 126.515049][ T1332] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 126.519210][ T1332] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 126.523324][ T1332] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 126.528662][ T1332] usb 7-1: config 0 descriptor?? [ 126.533037][ T1332] iowarrior 7-1:0.1: no interrupt-in endpoint found [ 126.719680][ T7577] comedi comedi1: comedi_config --init_data is deprecated [ 126.863416][ T5315] vhci_hcd: vhci_device speed not set [ 127.093349][ T6492] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 127.244075][ T6492] usb 5-1: too many configurations: 178, using maximum allowed: 8 [ 127.258128][ T6492] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 127.261818][ T6492] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 127.265310][ T6492] usb 5-1: Product: syz [ 127.267150][ T6492] usb 5-1: Manufacturer: syz [ 127.269103][ T6492] usb 5-1: SerialNumber: syz [ 127.276084][ T6492] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 127.300980][ T53] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 127.555266][ T7580] smc: net device ip6tnl0 applied user defined pnetid SYZ2 [ 127.566320][ T10] usb 5-1: USB disconnect, device number 12 [ 127.903523][ T6002] vhci_hcd: vhci_device speed not set [ 128.313386][ T53] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive [ 128.316534][ T53] ath9k_htc: Failed to initialize the device [ 128.319556][ T10] usb 5-1: ath9k_htc: USB layer deinitialized [ 128.885061][ T7606] /dev/sr0: Can't open blockdev [ 129.085692][ T1332] usb 7-1: USB disconnect, device number 10 [ 129.107524][ T7615] FAULT_INJECTION: forcing a failure. [ 129.107524][ T7615] name failslab, interval 1, probability 0, space 0, times 0 [ 129.111591][ T7615] CPU: 1 UID: 0 PID: 7615 Comm: syz.2.399 Not tainted syzkaller #0 PREEMPT(full) [ 129.111605][ T7615] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 129.111612][ T7615] Call Trace: [ 129.111616][ T7615] [ 129.111621][ T7615] dump_stack_lvl+0x16c/0x1f0 [ 129.111638][ T7615] should_fail_ex+0x512/0x640 [ 129.111652][ T7615] ? fs_reclaim_acquire+0xae/0x150 [ 129.111673][ T7615] should_failslab+0xc2/0x120 [ 129.111693][ T7615] __kmalloc_noprof+0xdd/0x880 [ 129.111718][ T7615] ? tomoyo_encode2+0x100/0x3e0 [ 129.111740][ T7615] ? tomoyo_encode2+0x100/0x3e0 [ 129.111757][ T7615] tomoyo_encode2+0x100/0x3e0 [ 129.111776][ T7615] tomoyo_encode+0x29/0x50 [ 129.111793][ T7615] tomoyo_realpath_from_path+0x18f/0x6e0 [ 129.111816][ T7615] tomoyo_path_number_perm+0x245/0x580 [ 129.111840][ T7615] ? tomoyo_path_number_perm+0x237/0x580 [ 129.111867][ T7615] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 129.111910][ T7615] ? find_held_lock+0x2b/0x80 [ 129.111922][ T7615] ? hook_file_ioctl_common+0x145/0x410 [ 129.111942][ T7615] ? __fget_files+0x20e/0x3c0 [ 129.111955][ T7615] security_file_ioctl_compat+0x9b/0x240 [ 129.111974][ T7615] __ia32_compat_sys_ioctl+0xc3/0x370 [ 129.111991][ T7615] __do_fast_syscall_32+0x7c/0x300 [ 129.112005][ T7615] do_fast_syscall_32+0x32/0x80 [ 129.112018][ T7615] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 129.112031][ T7615] RIP: 0023:0xf70ad579 [ 129.112040][ T7615] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 129.112054][ T7615] RSP: 002b:00000000f549d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036 [ 129.112064][ T7615] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000ae01 [ 129.112074][ T7615] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 129.112079][ T7615] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 129.112085][ T7615] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 129.112090][ T7615] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 129.112104][ T7615] [ 129.112115][ T7615] ERROR: Out of memory at tomoyo_realpath_from_path. [ 129.377672][ T7622] [U]  [ 129.379057][ T7622] [U] K{‘ [ 129.380478][ T7622] [U] ät Ž1ÊàŠªFìÇÄfËŠî`GÊJç˜Ügö毹¬¡—þÈoÕñ/ümCç [ 129.384162][ T7622] [U] tžØ–/,~ˆÄœ­‹jõÿÊ}8îÊþ'o1Ü"™7-î‚JQœK—¤Wºïqé5c%"¬H12–¦Y“„‰ž€ÊXÍ`ˆ‚íè¼`+³û(·â¿!(éûéz'àtXln»I®gÅj– °üÝ­·på~÷7í!‘Õò"ø¨Î ¾ª(È5ˆObü¤‡ÍƒJÖ [ 129.390748][ T7622] [U] ±k\&—}6£6œXîHX ¥ôµ„Ìþ.`¸a“$Û40|϶¿9°øÞ¨„¯À ÏU‚ò4ôä®VbzÃð}ÌwÔM”TºŽíQŸýΦr’ 4”ÿ [ 129.395262][ T7622] [U] ".h6øÞ"Ökã‡[›‰¤ŒJá4çØIn¨™[Z(•„C|Të]z{â3Ÿc=»¨xîôžë…î4ßw‰)\T‘XJøSH{q;ì¹¢…ötÔÇ+‹¦÷gíèÿ®d„.Ë‚³>yž÷éwUh„fN—ŽÇhl]SÔ2ŠÇÙ\g%ŠO¼&z)µðš'¨pul‚_<㠢ذ‰ò®Ôå`Ò±TÔÁþœÐËþ;_ô"(‘u{7jœ¿2X ‘/€'ÝÙcÑÌõIº©ÀÏH¿cÕ³žV¦=‘AiÇ%w¼Esž RšŸjŠîœƒÚ”gÂ÷rÁ¹í¡hI˜¢œaïì6-úDúV¨á i"øånæ¨ þÚAsc~4Áª¹8cø*­OO5/ÿœJš~º§¡w—vK+¬®‰Œ3èÇY)Ž¹M°¸æv¶Ìyqæ½€DTr¯Otpem%f×ÊejÍA5æÔT_-X~ ^aaÛ‚ò˜½qÖå [ 129.417589][ T7622] [U] +w‰G?]£Ó'a: »Ú)Õïó™“' B>t¢ ¡f/™÷<'èUÓ'–¼h§ié.+]eŸ.½-É¿ÿ¿Ò%÷è>2`¶^Uÿ8F.Š6¤Å3ÓØ+ËA¾Â««„°g3ÓpÂó6:^0Àtéèv÷'Eõt¼€ûâYC‰n¾þrÏ©ÞnèPj× ;æZ†êôñû‘8!¯È\ù…¸AØÊ–2Á£$ðµ™Â­wi.Íç#ŠÈ/Bai¼Ä`ðá4j’ôdîy@Óz„ügW÷5Ë¿BÄ µÙœ Nóy"vI2ûÌ [ 129.425308][ T7622] [U] ôT¦_K5¸t¬YJÐþÎ9ðÕcÊ$brŸLúNul ¶ü9wÈýÍ|žGå"ʃÆ%Çú¶êCªØ°¶ºqîÙ ŸÇ3‹Æq¯ôN^HP*½Ü$ µ.Î7yÓ±œ2³ [ 129.429583][ T7622] [U] ½?©ÿ hüä*ÙÁ”Î3í7Üé¾^#Q"0~‡ ‚ð(éoïX LŒb£,'vîÓ=‹ÝëCÌS«…’G‚S¶Þ0•Ö‚‹Ù`˜›žÙ‡Ÿ†=1(÷î¾™÷p#ò2DO*Ƀ [ 129.434395][ T7622] [U] ©s¹“gžµ²¶“˜GuÐÔd-{¸™â|&“®ŸŸñ2µ›LÞc_©œ!`¨ÍozÖ¥¢B¶³%>êrñ¶öwï‡ýŽSsÂH"£yA4£O.šYÙÛä„RTÔ¶ŒBÚ[+/<>—¡{q¢Ú×_²ÕLX8ÊU„ÇØî{ðZ³íø)ÿÒ7?ËrR;ÿcßr hײڣỨè1Å>)©Măâ‰Ït§²Ú(ìÇaÏ„}9·Ú¥ãJ*MÑœ¥Ä¡«'L¹£q ìDWŸòø¸=ؽ|q¬ ÏÆ™W;5æÙŽª!ñdB¸x`é§ö/÷ÂE`ƦM¢Xîâ"ä\ [ 129.467935][ T7622] [U] {;Ž õ¥ÂÙ˜_ˆo2«Ñ)îo®›.2ÐW2겨ðyùÃãx_ HPϱœSªD­¦ø:]‚{Ë©ÔÝæè½ [ 129.471258][ T7622] [U] I,Ç>Çó¤ îÙ51ñ÷^1òN4¯oǶþ'0ý?Ö’iÙ9w.ï_.¶WŠa¼ŠVˆ±`)ÑZ¬ïæc6GiÓ¹²a»¬XL[¢›½¡Fü*ÀñO‰W)+‡Ç'\nÆ[K@ÑëÄü2çǬ–®¡p"^`Á‰í øß [ 129.476502][ T7622] [U] 22½“Æ©Ðû©x?0;3u± [ 129.478041][ T7622] [U] ÞœÕæósObx 8”Wˆ4á‘(ð~/§¿íKÇUžãÔ–oQËe+·G®-yµgY_•>v¢ÜÈë—3.hÁÓ™]Í„²2‘”)™DË, ‘Ä þD~×d©£¡+Ãw; A\˜FPÉþȘ|$ºø)KØI³éÐÉ¿kñYT^RÍüù癵“ËA=±#–Üœ ÝíßËae©tå1·Îݯ4K¯.e"RÚS|ðŸÀsÖ’Á:•ù>p ™…rÐ"z‰ú­ûúé#P!˜KY"›}ÃÆF¿N84ü³ƒÅhÞ±£o•Èsߙ̫%DlwÙmæ²Ç [ 129.487684][ T7622] [U] [ª['xn€'²÷ á¿Ü,mr¦«/žšœâ1D=!DŽx91Bùwç»R—lf…ƒÆKì¤Zõê# `ì‘ lØ›§Ëœ»×b~åmÒÔÖ [ 129.491015][ T7622] [U] ™LÖ>ñd+ˆd¯§—®Ì"5Žêh3<ª¨ÅiR=F^”fnõóÜÀ‰¿û­vÛ÷œDÁOIOÚ:Uö>ÖYâ [ 129.493915][ T7622] [U] 'B—6vý20³ä·çž¥·×Œï"t8Ñ{9ÆFW]ôÊäì© [ 129.496032][ T7622] [U] ù72þ‰ïÂÃuþC6™îüÔÏ„I]8cª£tÛ¨QSkYÞîIÒÀâ¹ ¿|V'ÛTV/ùÅg•$[â 9kh`ú"ü‘úõ}€ñ[^=ˆú0á]½ã%ÆÌ‚T“Šž¹ØFì_vö4C¸òÅ [ 129.502289][ T7622] [U] ¹ ec [ 129.503396][ T7622] [U] —”|‚Êì<äî:^ü3$7nK~Ø-™@÷¦?Ÿ–/mtl·Û¾©Iˆwè¬@g~tØ{êÜPß+Æ$ªjp|µ ŽçIÛRiópmð õ·YÓ ú”8ìtÉÐÞVžÙÿÆë,îlâ,Õ [ 129.507622][ T7622] [U] ˆKÌúÛõ‰)0ÄÄÝ~ü³ÊªÁiP'ífóòœzÚÞr¬™ÿ @BÓ]Â5ÝÊ{­©Ê¼ô'à8åÆ¥F‡¹UTqUdÇ©¤K;7íª0c[„ãy–¼ÈYC¦¶»Ø°mª™Lò8’T…ÍšÎ5³ýýrx™¶ðWí x¤²óoQhVi'8œ¥Î…Lµ [ 129.512436][ T7622] [U] [ 129.513352][ T7622] [U] [ 129.514260][ T7622] [U] [ 129.515397][ T7622] [U] [ 129.516298][ T7622] [U] [ 129.517183][ T7622] [U] [ 129.518098][ T7622] [U] [ 129.519156][ T7622] [U] [ 129.520135][ T7622] [U] [ 129.521028][ T7622] [U] [ 129.521930][ T7622] [U] [ 129.523082][ T7622] [U] [ 129.524282][ T7622] [U] [ 129.525465][ T7622] [U] [ 129.526627][ T7622] [U] [ 129.527714][ T7622] [U] [ 129.528667][ T7622] [U] [ 129.529548][ T7622] [U] [ 129.530466][ T7622] [U] [ 129.531347][ T7622] [U] [ 129.532304][ T7622] [U] [ 129.533239][ T7622] [U] [ 129.534155][ T7622] [U] [ 129.535030][ T7622] [U] [ 129.536064][ T7622] [U] [ 129.536951][ T7622] [U] [ 129.537851][ T7622] [U] [ 129.538850][ T7622] [U] [ 129.539780][ T7622] [U] [ 129.540699][ T7622] [U] [ 129.541585][ T7622] [U] [ 129.542503][ T7622] [U] [ 129.543541][ T7622] [U] [ 129.544437][ T7622] [U] [ 129.545320][ T7622] [U] [ 129.546215][ T7622] [U] [ 129.547161][ T7622] [U] [ 129.548045][ T7622] [U] [ 129.548958][ T7622] [U] [ 129.549844][ T7622] [U] [ 129.550826][ T7622] [U] [ 129.551735][ T7622] [U] [ 129.552633][ T7622] [U] [ 129.553738][ T7622] [U] [ 129.555132][ T7622] [U] [ 129.556321][ T7622] [U] [ 129.557416][ T7622] [U] [ 129.558380][ T7622] [U] [ 129.559700][ T7622] [U] [ 129.560727][ T7622] [U] [ 129.561609][ T7622] [U] [ 129.562533][ T7622] [U] [ 129.563626][ T7622] [U] [ 129.564526][ T7622] [U] [ 129.565404][ T7622] [U] [ 129.566305][ T7622] [U] [ 129.567258][ T7622] [U] [ 129.568138][ T7622] [U] [ 129.569056][ T7622] [U] [ 129.569954][ T7622] [U] [ 129.570945][ T7622] [U] [ 129.571834][ T7622] [U] [ 129.572782][ T7622] [U] [ 129.573706][ T7622] [U] [ 129.574747][ T7622] [U] [ 129.575633][ T7622] [U] [ 129.576525][ T7622] [U] [ 129.577427][ T7622] [U] [ 129.578437][ T7622] [U] [ 129.579324][ T7622] [U] [ 129.580201][ T7622] [U] [ 129.581103][ T7622] [U] [ 129.582071][ T7622] [U] [ 129.582982][ T7622] [U] [ 129.583900][ T7622] [U] [ 129.584779][ T7622] [U] [ 129.585783][ T7622] [U] [ 129.586673][ T7622] [U] [ 129.587553][ T7622] [U] [ 129.588494][ T7622] [U] [ 129.589454][ T7622] [U] [ 129.590373][ T7622] [U] [ 129.591257][ T7622] [U] [ 129.592138][ T7622] [U] [ 129.593093][ T7622] [U] [ 129.594048][ T7622] [U] [ 129.594937][ T7622] [U] [ 129.595837][ T7622] [U] [ 129.596985][ T7622] [U] [ 129.597914][ T7622] [U] [ 129.598972][ T7622] [U] [ 129.599953][ T7622] [U] [ 129.600946][ T7622] [U] [ 129.601894][ T7622] [U] [ 129.602816][ T7622] [U] [ 129.603752][ T7622] [U] [ 129.604819][ T7622] [U] [ 129.605706][ T7622] [U] [ 129.606596][ T7622] [U] [ 129.607483][ T7622] [U] [ 129.608509][ T7622] [U] [ 129.609568][ T7622] [U] [ 129.610496][ T7622] [U] [ 129.611384][ T7622] [U] [ 129.612362][ T7622] [U] [ 129.613261][ T7622] [U] [ 129.614202][ T7622] [U] [ 129.615088][ T7622] [U] [ 129.616108][ T7622] [U] [ 129.616997][ T7622] [U] [ 129.618034][ T7622] [U] [ 129.618993][ T7622] [U] [ 129.619973][ T7622] [U] [ 129.620874][ T7622] [U] [ 129.621759][ T7622] [U] [ 129.622682][ T7622] [U] [ 129.623694][ T7622] [U] [ 129.624608][ T7622] [U] [ 129.625486][ T7622] [U] [ 129.626380][ T7622] [U] [ 129.627323][ T7622] [U] [ 129.628203][ T7622] [U] [ 129.629122][ T7622] [U] [ 129.630021][ T7622] [U] [ 129.630968][ T7622] [U] [ 129.631857][ T7622] [U] [ 129.632780][ T7622] [U] [ 129.633671][ T7622] [U] [ 129.634710][ T7622] [U] [ 129.635585][ T7622] [U] [ 129.636462][ T7622] [U] [ 129.637353][ T7622] [U] [ 129.638368][ T7622] [U] [ 129.639377][ T7622] [U] [ 129.640288][ T7622] [U] [ 129.641409][ T7622] [U] [ 129.642680][ T7622] [U] [ 129.643827][ T7622] [U] [ 129.644930][ T7622] [U] [ 129.646109][ T7622] [U] [ 129.647447][ T7622] [U] [ 129.648620][ T7622] [U] [ 129.649800][ T7622] [U] [ 129.651017][ T7622] [U] [ 129.652100][ T7622] [U] [ 129.653084][ T7622] [U] [ 129.654011][ T7622] [U] [ 129.655077][ T7622] [U] [ 129.656147][ T7622] [U] [ 129.657268][ T7622] [U] [ 129.658178][ T7622] [U] [ 129.659147][ T7622] [U] [ 129.660056][ T7622] [U] [ 129.661064][ T7622] [U] [ 129.661982][ T7622] [U] [ 129.662863][ T7622] [U] [ 129.663780][ T7622] [U] [ 129.664816][ T7622] [U] [ 129.665713][ T7622] [U] [ 129.666639][ T7622] [U] [ 129.667539][ T7622] [U] [ 129.668587][ T7622] [U] [ 129.669713][ T7622] [U] [ 129.670644][ T7622] [U] [ 129.671554][ T7622] [U] [ 129.672521][ T7622] [U] [ 129.673445][ T7622] [U] [ 129.674371][ T7622] [U] [ 129.675304][ T7622] [U] [ 129.676317][ T7622] [U] [ 129.677238][ T7622] [U] [ 129.678148][ T7622] [U] [ 129.679094][ T7622] [U] [ 129.680063][ T7622] [U] [ 129.680976][ T7622] [U] [ 129.681828][ T7622] [U] [ 129.682714][ T7622] [U] [ 129.683799][ T7622] [U] [ 129.684739][ T7622] [U] [ 129.685692][ T7622] [U] [ 129.686624][ T7622] [U] [ 129.687625][ T7622] [U] [ 129.688580][ T7622] [U] [ 129.689653][ T7622] [U] [ 129.690567][ T7622] [U] [ 129.691514][ T7622] [U] [ 129.692397][ T7622] [U] [ 129.693292][ T7622] [U] [ 129.694178][ T7622] [U] [ 129.695196][ T7622] [U] [ 129.696077][ T7622] [U] [ 129.696955][ T7622] [U] [ 129.697847][ T7622] [U] [ 129.698861][ T7622] [U] [ 129.699736][ T7622] [U] [ 129.700546][ T7622] [U] [ 129.701327][ T7622] [U] [ 129.702208][ T7622] [U] [ 129.703059][ T7622] [U] [ 129.703950][ T7622] [U] [ 129.704845][ T7622] [U] [ 129.705887][ T7622] [U] [ 129.706774][ T7622] [U] [ 129.707657][ T7622] [U] [ 129.708625][ T7622] [U] [ 129.709976][ T7622] [U] [ 129.711100][ T7622] [U] [ 129.712072][ T7622] [U] [ 129.712972][ T7622] [U] [ 129.714044][ T7622] [U] [ 129.714951][ T7622] [U] [ 129.715847][ T7622] [U] [ 129.716724][ T7622] [U] [ 129.717684][ T7622] [U] [ 129.718668][ T7622] [U] [ 129.719787][ T7622] [U] [ 129.720797][ T7622] [U] [ 129.721790][ T7622] [U] [ 129.722691][ T7622] [U] [ 129.723583][ T7622] [U] [ 129.724468][ T7622] [U] [ 129.725563][ T7622] [U] [ 129.726466][ T7622] [U] [ 129.727406][ T7622] [U] [ 129.728294][ T7622] [U] [ 129.729250][ T7622] [U] [ 129.730194][ T7622] [U] [ 129.731099][ T7622] [U] [ 129.731984][ T7622] [U] [ 129.732919][ T7622] [U] [ 129.733813][ T7622] [U] [ 129.734709][ T7622] [U] [ 129.735618][ T7622] [U] [ 129.736624][ T7622] [U] [ 129.737525][ T7622] [U] [ 129.738470][ T7622] [U] [ 129.739418][ T7622] [U] [ 129.740351][ T7622] [U] [ 129.741249][ T7622] [U] [ 129.742214][ T7622] [U] [ 129.743100][ T7622] [U] [ 129.744101][ T7622] [U] [ 129.744981][ T7622] [U] [ 129.745903][ T7622] [U] [ 129.746784][ T7622] [U] [ 129.747715][ T7622] [U] [ 129.748650][ T7622] [U] [ 129.749530][ T7622] [U] [ 129.750452][ T7622] [U] [ 129.751398][ T7622] [U] [ 129.752295][ T7622] [U] [ 129.753230][ T7622] [U] [ 129.754401][ T7622] [U] [ 129.755757][ T7622] [U] [ 129.756948][ T7622] [U] [ 129.758150][ T7622] [U] [ 129.759331][ T7622] [U] [ 129.760672][ T7622] [U] [ 129.761854][ T7622] [U] [ 129.763059][ T7622] [U] [ 129.764260][ T7622] [U] [ 129.765624][ T7622] [U] [ 129.766820][ T7622] [U] [ 129.768010][ T7622] [U] [ 129.769197][ T7622] [U] [ 129.770544][ T7622] [U] [ 129.771722][ T7622] [U] [ 129.772900][ T7622] [U] [ 129.774118][ T7622] [U] [ 129.775482][ T7622] [U] [ 129.776679][ T7622] [U] [ 129.777758][ T7622] [U] [ 129.778686][ T7622] [U] [ 129.779567][ T7622] [U] [ 129.780513][ T7622] [U] [ 129.781395][ T7622] [U] [ 129.782288][ T7622] [U] [ 129.783178][ T7622] [U] [ 129.784174][ T7622] [U] [ 129.785067][ T7622] [U] [ 129.785949][ T7622] [U] [ 129.786825][ T7622] [U] [ 129.787792][ T7622] [U] [ 129.788743][ T7622] [U] [ 129.789811][ T7622] [U] [ 129.790725][ T7622] [U] [ 129.791752][ T7622] [U] [ 129.792634][ T7622] [U] [ 129.793525][ T7622] [U] [ 129.794496][ T7622] [U] [ 129.795497][ T7622] [U] [ 129.796377][ T7622] [U] [ 129.797274][ T7622] [U] [ 129.798171][ T7622] [U] [ 129.799360][ T7622] [U] [ 129.800511][ T7622] [U] [ 129.801665][ T7622] [U] [ 129.802870][ T7622] [U] [ 129.803287][ T1022] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 129.804231][ T7622] [U] [ 129.807925][ T7622] [U] [ 129.808990][ T7622] [U] [ 129.810200][ T7622] [U] [ 129.811443][ T7622] [U] [ 129.812560][ T7622] [U] [ 129.813505][ T7622] [U] [ 129.814407][ T7622] [U] [ 129.815400][ T7622] [U] [ 129.816290][ T7622] [U] [ 129.817171][ T7622] [U] [ 129.818051][ T7622] [U] [ 129.819062][ T7622] [U] [ 129.819942][ T7622] [U] [ 129.820915][ T7622] [U] [ 129.821823][ T7622] [U] [ 129.822980][ T7622] [U] [ 129.823881][ T7622] [U] [ 129.824774][ T7622] [U] [ 129.825679][ T7622] [U] [ 129.826774][ T7622] [U] [ 129.827696][ T7622] [U] [ 129.828671][ T7622] [U] [ 129.829774][ T7622] [U] [ 129.830809][ T7622] [U] [ 129.831608][ T7622] [U] [ 129.832491][ T7622] [U] [ 129.833418][ T7622] [U] [ 129.834528][ T7622] [U] [ 129.835468][ T7622] [U] [ 129.836378][ T7622] [U] [ 129.837272][ T7622] [U] [ 129.838315][ T7622] [U] [ 129.839251][ T7622] [U] [ 129.840185][ T7622] [U] [ 129.841111][ T7622] [U] [ 129.842093][ T7622] [U] [ 129.842997][ T7622] [U] [ 129.843903][ T7622] [U] [ 129.844816][ T7622] [U] [ 129.845887][ T7622] [U] [ 129.846917][ T7622] [U] [ 129.848095][ T7622] [U] [ 129.849264][ T7622] [U] [ 129.850339][ T7622] [U] [ 129.851331][ T7622] [U] [ 129.852270][ T7622] [U] [ 129.853144][ T7622] [U] [ 129.854163][ T7622] [U] [ 129.855044][ T7622] [U] [ 129.855921][ T7622] [U] [ 129.856798][ T7622] [U] [ 129.857750][ T7622] [U] [ 129.858766][ T7622] [U] [ 129.859669][ T7622] [U] [ 129.860576][ T7622] [U] [ 129.861522][ T7622] [U] [ 129.862421][ T7622] [U] [ 129.863313][ T7622] [U] [ 129.864189][ T7622] [U] [ 129.865172][ T7622] [U] [ 129.866063][ T7622] [U] [ 129.866943][ T7622] [U] [ 129.867824][ T7622] [U] [ 129.868922][ T7622] [U] [ 129.869809][ T7622] [U] [ 129.870748][ T7622] [U] [ 129.871629][ T7622] [U] [ 129.872564][ T7622] [U] [ 129.873460][ T7622] [U] [ 129.874348][ T7622] [U] [ 129.875226][ T7622] [U] [ 129.876277][ T7622] [U] [ 129.877155][ T7622] [U] [ 129.878041][ T7622] [U] [ 129.878960][ T7622] [U] [ 129.879793][ T7622] [U] [ 129.880856][ T7622] [U] [ 129.882047][ T7622] [U] [ 129.883183][ T7622] [U] [ 129.884160][ T7622] [U] [ 129.884997][ T7622] [U] [ 129.885895][ T7622] [U] [ 129.886776][ T7622] [U] [ 129.887735][ T7622] [U] [ 129.888734][ T7622] [U] [ 129.889725][ T7622] [U] [ 129.890685][ T7622] [U] [ 129.891635][ T7622] [U] [ 129.892553][ T7622] [U] [ 129.893452][ T7622] [U] [ 129.894295][ T7622] [U] [ 129.895278][ T7622] [U] [ 129.896156][ T7622] [U] [ 129.897038][ T7622] [U] [ 129.897941][ T7622] [U] [ 129.899101][ T7622] [U] [ 129.900158][ T7622] [U] [ 129.901375][ T7622] [U] [ 129.902590][ T7622] [U] [ 129.903964][ T7622] [U] [ 129.905150][ T7622] [U] [ 129.906376][ T7622] [U] [ 129.907563][ T7622] [U] [ 129.908742][ T7622] [U] [ 129.910128][ T7622] [U] [ 129.911193][ T7622] [U] [ 129.912072][ T7622] [U] [ 129.912962][ T7622] [U] [ 129.913998][ T7622] [U] [ 129.914882][ T7622] [U] [ 129.916007][ T7622] [U] [ 129.917185][ T7622] [U] [ 129.918555][ T7622] [U] [ 129.919423][ T7622] [U] [ 129.920280][ T7622] [U] [ 129.921182][ T7622] [U] [ 129.922134][ T7622] [U] [ 129.923023][ T7622] [U] [ 129.923912][ T7622] [U] [ 129.924876][ T7622] [U] [ 129.925920][ T7622] [U] [ 129.926819][ T7622] [U] [ 129.927710][ T7622] [U] [ 129.928709][ T7622] [U] [ 129.929967][ T7622] [U] [ 129.931124][ T7622] [U] [ 129.932307][ T7622] [U] [ 129.933499][ T7622] [U] [ 129.934890][ T7622] [U] [ 129.936085][ T7622] [U] [ 129.937285][ T7622] [U] [ 129.938474][ T7622] [U] [ 129.939767][ T7622] [U] [ 129.940942][ T7622] [U] [ 129.942130][ T7622] [U] [ 129.943341][ T7622] [U] [ 129.945524][ T7622] [U] [ 129.946718][ T7622] [U] [ 129.947973][ T7622] [U] [ 129.949161][ T7622] [U] [ 129.950448][ T7622] [U] [ 129.951628][ T7622] [U] [ 129.952811][ T7622] [U] [ 129.954035][ T7622] [U] [ 129.956265][ T1022] usb 5-1: device descriptor read/64, error -71 [ 129.959735][ T7622] [U] [ 129.960927][ T7622] [U] [ 129.962118][ T7622] [U] [ 129.963374][ T7622] [U] [ 129.965147][ T7622] [U] [ 129.966364][ T7622] [U] [ 129.967553][ T7622] [U] [ 129.968742][ T7622] [U] [ 129.970063][ T7622] [U] [ 129.971257][ T7622] [U] [ 129.972445][ T7622] [U] [ 129.973643][ T7622] [U] [ 129.975638][ T7622] [U] [ 129.976863][ T7622] [U] [ 129.978058][ T7622] [U] [ 129.979228][ T7622] [U] [ 129.980509][ T7622] [U] [ 129.981675][ T7622] [U] [ 129.982881][ T7622] [U] [ 129.984097][ T7622] [U] [ 129.986933][ T7622] [U] [ 129.988127][ T7622] [U] [ 129.989285][ T7622] [U] [ 129.990521][ T7622] [U] [ 129.991783][ T7622] [U] [ 129.992961][ T7622] [U] [ 129.994378][ T7622] [U] [ 129.995532][ T7622] [U] [ 129.998014][ T7622] [U] [ 129.998909][ T7622] [U] [ 129.999789][ T7622] [U] [ 130.000800][ T7622] [U] [ 130.002031][ T7622] [U] [ 130.002941][ T7633] tmpfs: Unknown parameter 'hash' [ 130.003285][ T7622] [U] [ 130.003315][ T7622] [U] [ 130.003342][ T7622] [U] [ 130.010206][ T7622] [U] [ 130.011399][ T7622] [U] [ 130.012588][ T7622] [U] [ 130.013770][ T7622] [U] [ 130.015318][ T7622] [U] [ 130.016523][ T7622] [U] [ 130.017771][ T7622] [U] [ 130.018947][ T7622] [U] [ 130.020332][ T7622] [U] [ 130.021536][ T7622] [U] [ 130.022721][ T7622] [U] [ 130.023885][ T7622] [U] [ 130.025353][ T7622] [U] [ 130.026565][ T7622] [U] [ 130.027724][ T7622] [U] [ 130.028911][ T7622] [U] [ 130.030243][ T7622] [U] [ 130.031392][ T7622] [U] [ 130.032538][ T7622] [U] [ 130.033687][ T7622] [U] [ 130.035786][ T7622] [U] [ 130.036974][ T7622] [U] [ 130.038150][ T7622] [U] [ 130.039294][ T7622] [U] [ 130.040782][ T7622] [U] [ 130.041970][ T7622] [U] [ 130.043122][ T7622] [U] [ 130.044259][ T7622] [U] [ 130.045621][ T7622] [U] [ 130.046798][ T7622] [U] [ 130.047971][ T7622] [U] [ 130.049126][ T7622] [U] [ 130.050492][ T7622] [U] [ 130.051643][ T7622] [U] [ 130.052782][ T7622] [U] [ 130.053937][ T7622] [U] [ 130.055589][ T7622] [U] [ 130.056766][ T7622] [U] [ 130.057926][ T7622] [U] [ 130.058997][ T7622] [U] [ 130.060268][ T7622] [U] [ 130.061424][ T7622] [U] [ 130.062606][ T7622] [U] [ 130.063761][ T7622] [U] [ 130.065198][ T7622] [U] [ 130.066369][ T7622] [U] [ 130.067537][ T7622] [U] [ 130.068724][ T7622] [U] [ 130.070130][ T7622] [U] [ 130.071336][ T7622] [U] [ 130.072521][ T7622] [U] [ 130.073711][ T7622] [U] [ 130.074920][ T7622] [U] [ 130.076500][ T7622] [U] [ 130.077728][ T7622] [U] [ 130.078930][ T7622] [U] [ 130.080130][ T7622] [U] [ 130.081514][ T7622] [U] [ 130.082767][ T7622] [U] [ 130.083962][ T7622] [U] [ 130.085151][ T7622] [U] [ 130.086634][ T7622] [U] [ 130.087847][ T7622] [U] [ 130.089039][ T7622] [U] [ 130.090239][ T7622] [U] [ 130.091622][ T7622] [U] [ 130.092808][ T7622] [U] [ 130.094017][ T7622] [U] [ 130.095175][ T7622] [U] [ 130.096789][ T7622] [U] [ 130.098006][ T7622] [U] [ 130.099165][ T7622] [U] [ 130.100354][ T7622] [U] [ 130.101763][ T7622] [U] [ 130.102886][ T7622] [U] [ 130.103828][ T7622] [U] [ 130.104714][ T7622] [U] [ 130.105745][ T7622] [U] [ 130.106654][ T7622] [U] [ 130.107546][ T7622] [U] [ 130.108608][ T7622] [U] [ 130.110032][ T7622] [U] [ 130.111239][ T7622] [U] [ 130.112375][ T7622] [U] [ 130.113351][ T7622] [U] [ 130.114796][ T7622] [U] [ 130.115697][ T7622] [U] [ 130.116594][ T7622] [U] [ 130.117489][ T7622] [U] [ 130.118862][ T7622] [U] [ 130.119752][ T7622] [U] [ 130.120615][ T7622] [U] [ 130.121490][ T7622] [U] [ 130.122506][ T7622] [U] [ 130.123394][ T7622] [U] [ 130.124262][ T7622] [U] [ 130.125395][ T7622] [U] [ 130.127226][ T7622] [U] [ 130.128366][ T7622] [U] [ 130.129452][ T7622] [U] [ 130.130579][ T7622] [U] [ 130.131581][ T7622] [U] [ 130.132820][ T7622] [U] [ 130.133724][ T7622] [U] [ 130.134563][ T7622] [U] [ 130.140858][ T7622] [U] [ 130.142065][ T7622] [U] [ 130.143266][ T7622] [U] [ 130.144471][ T7622] [U] [ 130.145765][ T7622] [U] [ 130.213301][ T1022] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 130.353294][ T1022] usb 5-1: device descriptor read/64, error -71 [ 130.473595][ T1022] usb usb5-port1: attempt power cycle [ 130.813376][ T1022] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 130.843913][ T1022] usb 5-1: device descriptor read/8, error -71 [ 131.093411][ T1022] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 131.107078][ T7648] capability: warning: `syz.3.408' uses deprecated v2 capabilities in a way that may be insecure [ 131.124572][ T1022] usb 5-1: device descriptor read/8, error -71 [ 131.243501][ T1022] usb usb5-port1: unable to enumerate USB device [ 131.266471][ T29] vhci_hcd: vhci_device speed not set [ 131.644445][ T7671] overlay: Bad value for 'redirect_dir' [ 132.050173][ T7674] nftables ruleset with unbound chain [ 132.052088][ T7674] nvme_fabrics: unknown parameter or missing value 'V' in ctrl creation request [ 132.228426][ T7680] netlink: 228 bytes leftover after parsing attributes in process `syz.3.420'. [ 132.317344][ T1417] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.319835][ T1417] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.540483][ T7697] netlink: 20 bytes leftover after parsing attributes in process `syz.0.427'. [ 133.683635][ T7720] random: crng reseeded on system resumption [ 134.175426][ T7726] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 134.175459][ T7726] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 134.175511][ T7726] vhci_hcd vhci_hcd.0: Device attached [ 134.180481][ T7726] netlink: 8 bytes leftover after parsing attributes in process `syz.0.432'. [ 134.181712][ T7726] netlink: 8 bytes leftover after parsing attributes in process `syz.0.432'. [ 134.188684][ T7726] netlink: 8 bytes leftover after parsing attributes in process `syz.0.432'. [ 134.189166][ T7726] netlink: 8 bytes leftover after parsing attributes in process `syz.0.432'. [ 134.496490][ T7732] FAULT_INJECTION: forcing a failure. [ 134.496490][ T7732] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 134.496535][ T7732] CPU: 3 UID: 0 PID: 7732 Comm: syz.1.434 Not tainted syzkaller #0 PREEMPT(full) [ 134.496549][ T7732] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 134.496555][ T7732] Call Trace: [ 134.496559][ T7732] [ 134.496563][ T7732] dump_stack_lvl+0x16c/0x1f0 [ 134.496579][ T7732] should_fail_ex+0x512/0x640 [ 134.496595][ T7732] copy_fpstate_to_sigframe+0x854/0xaf0 [ 134.496612][ T7732] ? __pfx_copy_fpstate_to_sigframe+0x10/0x10 [ 134.496625][ T7732] ? posixtimer_deliver_signal+0x105/0x6b0 [ 134.496646][ T7732] ? posixtimer_deliver_signal+0x1c7/0x6b0 [ 134.496662][ T7732] ? x86_task_fpu+0x5f/0x90 [ 134.496675][ T7732] get_sigframe+0x4a8/0x9c0 [ 134.496689][ T7732] ? __pfx_get_sigframe+0x10/0x10 [ 134.496702][ T7732] ? _raw_spin_unlock_irq+0x23/0x50 [ 134.496713][ T7732] ? siginfo_layout+0x177/0x290 [ 134.496726][ T7732] ia32_setup_rt_frame+0xe3/0xb30 [ 134.496745][ T7732] ? __pfx_ia32_setup_rt_frame+0x10/0x10 [ 134.496765][ T7732] arch_do_signal_or_restart+0x471/0x790 [ 134.496778][ T7732] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 134.496795][ T7732] ? __pfx_do_readv+0x10/0x10 [ 134.496808][ T7732] exit_to_user_mode_loop+0x85/0x130 [ 134.496825][ T7732] do_int80_emulation+0x31d/0x3e0 [ 134.496839][ T7732] asm_int80_emulation+0x1a/0x20 [ 134.496849][ T7732] RIP: 0023:0xf701d577 [ 134.496858][ T7732] Code: 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 [ 134.496873][ T7732] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000091 [ 134.496886][ T7732] RAX: 0000000000000091 RBX: 0000000000000003 RCX: 0000000080001340 [ 134.496895][ T7732] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000 [ 134.496904][ T7732] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 134.496911][ T7732] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 134.496917][ T7732] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 134.496930][ T7732] [ 134.546758][ T7736] fuse: Bad value for 'rootmode' [ 134.553359][ T5947] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection [ 134.573314][ T29] usb 37-1: new low-speed USB device number 8 using vhci_hcd [ 134.576084][ T7736] bond2 (unregistering): Released all slaves [ 134.693961][ T7727] vhci_hcd: connection reset by peer [ 134.695621][ T92] vhci_hcd: stop threads [ 134.699040][ T92] vhci_hcd: release socket [ 134.699115][ T92] vhci_hcd: disconnect device [ 135.787036][ T7766] input: syz1 as /devices/virtual/input/input10 [ 135.974973][ T7772] 9pnet_fd: Insufficient options for proto=fd [ 136.164544][ T7774] netlink: 4 bytes leftover after parsing attributes in process `syz.0.445'. [ 136.164559][ T7774] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 136.165234][ T7774] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 136.574751][ T7778] block nbd3: Device being setup by another task [ 136.687417][ T7779] overlayfs: failed to resolve './file0': -2 [ 137.147779][ T7790] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 137.149845][ T7790] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 137.188064][ T7790] vhci_hcd vhci_hcd.0: Device attached [ 137.204916][ T7794] tmpfs: Unknown parameter 'hash' [ 137.598084][ T7789] netlink: 8 bytes leftover after parsing attributes in process `syz.0.449'. [ 137.612626][ T7789] netlink: 8 bytes leftover after parsing attributes in process `syz.0.449'. [ 137.616597][ T7789] netlink: 8 bytes leftover after parsing attributes in process `syz.0.449'. [ 137.619368][ T7789] netlink: 8 bytes leftover after parsing attributes in process `syz.0.449'. [ 137.635893][ T7776] block nbd3: shutting down sockets [ 137.768830][ T7791] vhci_hcd: connection closed [ 137.769102][ T92] vhci_hcd: stop threads [ 137.774006][ T92] vhci_hcd: release socket [ 137.777381][ T92] vhci_hcd: disconnect device [ 138.836393][ T7815] lo speed is unknown, defaulting to 1000 [ 138.838345][ T7815] lo speed is unknown, defaulting to 1000 [ 138.841193][ T7815] lo speed is unknown, defaulting to 1000 [ 138.845254][ T7815] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 138.851077][ T7815] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 138.865036][ T7815] lo speed is unknown, defaulting to 1000 [ 138.867774][ T7815] lo speed is unknown, defaulting to 1000 [ 138.870182][ T7815] lo speed is unknown, defaulting to 1000 [ 138.872576][ T7815] lo speed is unknown, defaulting to 1000 [ 139.024145][ T7822] netlink: 8 bytes leftover after parsing attributes in process `syz.1.457'. [ 139.027935][ T7822] FAULT_INJECTION: forcing a failure. [ 139.027935][ T7822] name failslab, interval 1, probability 0, space 0, times 0 [ 139.031959][ T7822] CPU: 3 UID: 0 PID: 7822 Comm: syz.1.457 Not tainted syzkaller #0 PREEMPT(full) [ 139.031973][ T7822] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 139.031979][ T7822] Call Trace: [ 139.031983][ T7822] [ 139.031988][ T7822] dump_stack_lvl+0x16c/0x1f0 [ 139.032005][ T7822] should_fail_ex+0x512/0x640 [ 139.032018][ T7822] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 139.032031][ T7822] should_failslab+0xc2/0x120 [ 139.032046][ T7822] kmem_cache_alloc_node_noprof+0x78/0x770 [ 139.032056][ T7822] ? __alloc_skb+0x2b2/0x380 [ 139.032072][ T7822] ? __alloc_skb+0x2b2/0x380 [ 139.032081][ T7822] ? __pfx_netlink_insert+0x10/0x10 [ 139.032093][ T7822] __alloc_skb+0x2b2/0x380 [ 139.032103][ T7822] ? __pfx___alloc_skb+0x10/0x10 [ 139.032115][ T7822] ? netlink_autobind.isra.0+0x158/0x370 [ 139.032131][ T7822] netlink_alloc_large_skb+0x69/0x140 [ 139.032145][ T7822] netlink_sendmsg+0x698/0xdd0 [ 139.032160][ T7822] ? __pfx_netlink_sendmsg+0x10/0x10 [ 139.032175][ T7822] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 139.032192][ T7822] ____sys_sendmsg+0xa98/0xc70 [ 139.032206][ T7822] ? btrfs_uuid_tree_add+0x2b4/0xbe0 [ 139.032221][ T7822] ? __pfx_____sys_sendmsg+0x10/0x10 [ 139.032235][ T7822] ? get_compat_msghdr+0x11a/0x170 [ 139.032258][ T7822] ___sys_sendmsg+0x134/0x1d0 [ 139.032271][ T7822] ? __pfx____sys_sendmsg+0x10/0x10 [ 139.032289][ T7822] ? find_held_lock+0x2b/0x80 [ 139.032309][ T7822] __sys_sendmsg+0x16d/0x220 [ 139.032322][ T7822] ? __pfx___sys_sendmsg+0x10/0x10 [ 139.032340][ T7822] ? rcu_is_watching+0x12/0xc0 [ 139.032353][ T7822] __do_fast_syscall_32+0x7c/0x300 [ 139.032367][ T7822] do_fast_syscall_32+0x32/0x80 [ 139.032380][ T7822] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 139.032392][ T7822] RIP: 0023:0xf701d579 [ 139.032401][ T7822] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 139.032411][ T7822] RSP: 002b:00000000f540d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 139.032421][ T7822] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000200 [ 139.032427][ T7822] RDX: 0000000004000004 RSI: 0000000000000000 RDI: 0000000000000000 [ 139.032434][ T7822] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 139.032440][ T7822] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 139.032445][ T7822] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 139.032458][ T7822] [ 139.703345][ T29] vhci_hcd: vhci_device speed not set [ 139.726529][ T7836] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 139.728547][ T7836] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 139.731021][ T7836] vhci_hcd vhci_hcd.0: Device attached [ 139.740234][ T7836] netlink: 8 bytes leftover after parsing attributes in process `syz.1.458'. [ 139.743725][ T7836] netlink: 8 bytes leftover after parsing attributes in process `syz.1.458'. [ 139.746843][ T7836] netlink: 8 bytes leftover after parsing attributes in process `syz.1.458'. [ 139.749953][ T7836] netlink: 8 bytes leftover after parsing attributes in process `syz.1.458'. [ 139.993424][ T6002] usb 39-1: new low-speed USB device number 7 using vhci_hcd [ 140.189424][ T7837] vhci_hcd: connection reset by peer [ 140.192314][ T12] vhci_hcd: stop threads [ 140.194339][ T12] vhci_hcd: release socket [ 140.196223][ T12] vhci_hcd: disconnect device [ 140.264604][ T7846] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 140.267678][ T7846] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 140.270920][ T7846] vhci_hcd vhci_hcd.0: Device attached [ 140.297257][ T7846] netlink: 8 bytes leftover after parsing attributes in process `syz.0.460'. [ 140.313610][ T7851] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6) [ 140.316221][ T7851] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 140.319651][ T7851] vhci_hcd vhci_hcd.0: Device attached [ 140.651340][ T5315] usb 41-1: new low-speed USB device number 7 using vhci_hcd [ 140.723945][ T29] usb 37-1: device descriptor read/64, error -110 [ 140.741713][ T7847] vhci_hcd: connection closed [ 140.741972][ T13] vhci_hcd: stop threads [ 140.745983][ T13] vhci_hcd: release socket [ 140.747651][ T13] vhci_hcd: disconnect device [ 140.904934][ T29] vhci_hcd: vhci_device speed not set [ 140.941444][ T7852] vhci_hcd: connection reset by peer [ 140.944645][ T13] vhci_hcd: stop threads [ 140.946550][ T13] vhci_hcd: release socket [ 140.948518][ T13] vhci_hcd: disconnect device [ 142.474234][ T7902] FAULT_INJECTION: forcing a failure. [ 142.474234][ T7902] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 142.479674][ T7902] CPU: 1 UID: 0 PID: 7902 Comm: syz.3.479 Not tainted syzkaller #0 PREEMPT(full) [ 142.479697][ T7902] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 142.479707][ T7902] Call Trace: [ 142.479713][ T7902] [ 142.479721][ T7902] dump_stack_lvl+0x16c/0x1f0 [ 142.479745][ T7902] should_fail_ex+0x512/0x640 [ 142.479771][ T7902] _copy_from_iter+0x29f/0x1720 [ 142.479799][ T7902] ? __pfx__copy_from_iter+0x10/0x10 [ 142.479821][ T7902] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 142.479855][ T7902] copy_page_from_iter+0xde/0x180 [ 142.479880][ T7902] tun_build_skb.constprop.0+0x2e8/0x1510 [ 142.479915][ T7902] ? __pfx_tun_build_skb.constprop.0+0x10/0x10 [ 142.479946][ T7902] ? __lock_acquire+0x62e/0x1ce0 [ 142.479987][ T7902] tun_get_user+0x149c/0x3cc0 [ 142.480023][ T7902] ? __pfx_tun_get_user+0x10/0x10 [ 142.480049][ T7902] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 142.480080][ T7902] ? find_held_lock+0x2b/0x80 [ 142.480099][ T7902] ? tun_get+0x191/0x370 [ 142.480127][ T7902] tun_chr_write_iter+0xdc/0x210 [ 142.480153][ T7902] vfs_write+0x7d3/0x11d0 [ 142.480173][ T7902] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 142.480205][ T7902] ? __pfx_vfs_write+0x10/0x10 [ 142.480220][ T7902] ? find_held_lock+0x2b/0x80 [ 142.480254][ T7902] ksys_write+0x12a/0x250 [ 142.480272][ T7902] ? __pfx_ksys_write+0x10/0x10 [ 142.480293][ T7902] ? rcu_is_watching+0x12/0xc0 [ 142.480316][ T7902] __do_fast_syscall_32+0x7c/0x300 [ 142.480339][ T7902] do_fast_syscall_32+0x32/0x80 [ 142.480360][ T7902] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 142.480382][ T7902] RIP: 0023:0xf70ed579 [ 142.480395][ T7902] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 142.480411][ T7902] RSP: 002b:00000000f54dd520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 142.480428][ T7902] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 00000000800003c0 [ 142.480439][ T7902] RDX: 00000000000000be RSI: 00000000f7485ff4 RDI: 0000000000000000 [ 142.480449][ T7902] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 142.480459][ T7902] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 142.480468][ T7902] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 142.480493][ T7902] [ 142.924223][ T7920] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 142.926476][ T7920] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 142.929761][ T7920] vhci_hcd vhci_hcd.0: Device attached [ 142.937296][ T7920] __nla_validate_parse: 8 callbacks suppressed [ 142.937331][ T7920] netlink: 8 bytes leftover after parsing attributes in process `syz.1.483'. [ 142.947299][ T7920] netlink: 8 bytes leftover after parsing attributes in process `syz.1.483'. [ 142.962671][ T7920] netlink: 8 bytes leftover after parsing attributes in process `syz.1.483'. [ 142.966435][ T7920] netlink: 8 bytes leftover after parsing attributes in process `syz.1.483'. [ 143.491635][ T7921] vhci_hcd: connection closed [ 143.491985][ T13] vhci_hcd: stop threads [ 143.495606][ T13] vhci_hcd: release socket [ 143.501625][ T13] vhci_hcd: disconnect device [ 143.631993][ T40] audit: type=1800 audit(1760073604.552:39): pid=7928 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.486" name="bus" dev="tmpfs" ino=715 res=0 errno=0 [ 143.976677][ T7934] tmpfs: Unknown parameter 'hash' [ 144.065510][ T7940] netlink: 'syz.0.491': attribute type 1 has an invalid length. [ 144.271407][ T7940] capability: warning: `syz.0.491' uses 32-bit capabilities (legacy support in use) [ 144.563363][ T1022] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 144.713298][ T1022] usb 6-1: Using ep0 maxpacket: 8 [ 144.717323][ T1022] usb 6-1: config 0 has an invalid interface number: 1 but max is 0 [ 144.720718][ T1022] usb 6-1: config 0 has no interface number 0 [ 144.723249][ T1022] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 144.726438][ T1022] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 144.729254][ T1022] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 144.791231][ T1022] usb 6-1: config 0 descriptor?? [ 144.795795][ T1022] iowarrior 6-1:0.1: no interrupt-in endpoint found [ 145.243287][ T6002] vhci_hcd: vhci_device speed not set [ 145.281354][ T7961] netlink: 'syz.2.497': attribute type 10 has an invalid length. [ 145.286234][ T7961] 8021q: adding VLAN 0 to HW filter on device bond0 [ 145.289067][ T7961] team0: Port device bond0 added [ 145.298569][ T7961] netlink: 4 bytes leftover after parsing attributes in process `syz.2.497'. [ 145.352313][ T7961] team0 (unregistering): Port device team_slave_0 removed [ 145.355548][ T7961] team0 (unregistering): Port device team_slave_1 removed [ 145.360613][ T7961] team0 (unregistering): Port device bond0 removed [ 145.596221][ T7970] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 145.743479][ T5315] vhci_hcd: vhci_device speed not set [ 145.953394][ T7983] block nbd3: Device being setup by another task [ 145.960115][ T7980] block nbd3: shutting down sockets [ 146.067609][ T7992] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 147.113774][ T8033] tmpfs: Unknown parameter 'hash' [ 147.174271][ T8037] tmpfs: Unknown parameter 'hash' [ 147.326906][ T5315] usb 6-1: USB disconnect, device number 6 [ 148.144608][ T8045] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 148.147303][ T8045] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 148.173350][ T8045] vhci_hcd vhci_hcd.0: Device attached [ 148.201855][ T8045] netlink: 8 bytes leftover after parsing attributes in process `syz.1.515'. [ 148.232467][ T8045] netlink: 8 bytes leftover after parsing attributes in process `syz.1.515'. [ 148.242218][ T8045] netlink: 8 bytes leftover after parsing attributes in process `syz.1.515'. [ 148.252111][ T8045] netlink: 8 bytes leftover after parsing attributes in process `syz.1.515'. [ 148.393416][ T8052] block nbd3: Device being setup by another task [ 148.414136][ T8048] block nbd3: shutting down sockets [ 148.433328][ T10] usb 39-1: new low-speed USB device number 8 using vhci_hcd [ 148.461776][ T8054] random: crng reseeded on system resumption [ 148.727376][ T8046] vhci_hcd: connection reset by peer [ 148.729766][ T13] vhci_hcd: stop threads [ 148.732641][ T13] vhci_hcd: release socket [ 148.736894][ T13] vhci_hcd: disconnect device [ 148.829957][ T8062] EXT4-fs (nbd2): unable to read superblock [ 148.842203][ T40] audit: type=1326 audit(1760073609.762:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8057 comm="syz.2.518" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000 [ 148.883463][ T40] audit: type=1326 audit(1760073609.762:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8057 comm="syz.2.518" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000 [ 148.900450][ T8068] new mount options do not match the existing superblock, will be ignored [ 148.901321][ T40] audit: type=1326 audit(1760073609.762:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8057 comm="syz.2.518" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf70ad579 code=0x7ffc0000 [ 148.907788][ T8068] cgroup: option or name mismatch, new: 0x4 "", old: 0x0 "" [ 148.967116][ T40] audit: type=1326 audit(1760073609.892:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8057 comm="syz.2.518" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000 [ 149.005702][ T8062] lo speed is unknown, defaulting to 1000 [ 149.023251][ T40] audit: type=1326 audit(1760073609.892:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8057 comm="syz.2.518" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000 [ 149.031421][ T40] audit: type=1326 audit(1760073609.912:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8057 comm="syz.2.518" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf70ad579 code=0x7ffc0000 [ 149.040212][ T40] audit: type=1326 audit(1760073609.912:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8057 comm="syz.2.518" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000 [ 149.048987][ T40] audit: type=1326 audit(1760073609.912:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8057 comm="syz.2.518" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000 [ 149.059502][ T40] audit: type=1326 audit(1760073609.912:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8057 comm="syz.2.518" exe="/syz-executor" sig=0 arch=40000003 syscall=310 compat=1 ip=0xf70ad579 code=0x7ffc0000 [ 149.072831][ T40] audit: type=1326 audit(1760073609.992:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8057 comm="syz.2.518" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ad579 code=0x7ffc0000 [ 149.334423][ T8068] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 150.817913][ T8093] random: crng reseeded on system resumption [ 150.922736][ T8101] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 151.412446][ T8108] tmpfs: Unknown parameter 'hash' [ 151.524474][ T8110] input: syz0 as /devices/virtual/input/input11 [ 151.644855][ T8111] block nbd0: shutting down sockets [ 151.677556][ T8117] tmpfs: Unknown parameter 'hash' [ 153.172771][ T8146] netdevsim netdevsim3: Direct firmware load for @ failed with error -2 [ 153.176326][ T8146] netdevsim netdevsim3: Falling back to sysfs fallback for: @ [ 153.443341][ T1332] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 153.603373][ T10] vhci_hcd: vhci_device speed not set [ 153.623273][ T1332] usb 6-1: Using ep0 maxpacket: 8 [ 153.627063][ T1332] usb 6-1: config 0 has an invalid interface number: 1 but max is 0 [ 153.650669][ T1332] usb 6-1: config 0 has no interface number 0 [ 153.652711][ T1332] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 153.656446][ T1332] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 153.659336][ T1332] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 153.663823][ T1332] usb 6-1: config 0 descriptor?? [ 153.667306][ T1332] iowarrior 6-1:0.1: no interrupt-in endpoint found [ 153.790227][ T8159] tmpfs: Unknown parameter 'hash' [ 154.976944][ T8180] Cannot find add_set index 0 as target [ 155.243954][ T5947] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection [ 156.210623][ T10] usb 6-1: USB disconnect, device number 7 [ 156.300383][ T8224] EXT4-fs (nbd2): unable to read superblock [ 156.474287][ T5315] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 156.623821][ T5315] usb 5-1: Using ep0 maxpacket: 16 [ 156.639743][ T5315] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 156.675225][ T5315] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 156.695245][ T5315] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 156.711905][ T5315] usb 5-1: Product: syz [ 156.722920][ T5315] usb 5-1: Manufacturer: syz [ 156.732147][ T5315] usb 5-1: SerialNumber: syz [ 156.769777][ T5315] usb 5-1: config 0 descriptor?? [ 156.906748][ T5315] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 156.910230][ T5315] em28xx 5-1:0.0: DVB interface 0 found: bulk [ 157.019863][ T8230] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 157.043557][ T5315] em28xx 5-1:0.0: unknown em28xx chip ID (0) [ 157.109854][ T5315] em28xx 5-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 157.112788][ T5315] em28xx 5-1:0.0: board has no eeprom [ 157.173344][ T5315] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94) [ 157.175786][ T5315] em28xx 5-1:0.0: dvb set to bulk mode. [ 157.177765][ T29] em28xx 5-1:0.0: Binding DVB extension [ 157.184994][ T5315] usb 5-1: USB disconnect, device number 17 [ 157.193502][ T5315] em28xx 5-1:0.0: Disconnecting em28xx [ 157.219098][ T29] em28xx 5-1:0.0: Registering input extension [ 157.222631][ T5315] em28xx 5-1:0.0: Closing input extension [ 157.248794][ T5315] em28xx 5-1:0.0: Freeing device [ 157.391820][ T5943] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection [ 158.495176][ T8260] EXT4-fs (nbd2): unable to read superblock [ 158.613502][ T8261] FAULT_INJECTION: forcing a failure. [ 158.613502][ T8261] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 158.614611][ T8261] [ 158.614617][ T8261] ====================================================== [ 158.614620][ T8261] WARNING: possible circular locking dependency detected [ 158.614624][ T8261] syzkaller #0 Not tainted [ 158.614629][ T8261] ------------------------------------------------------ [ 158.614632][ T8261] syz.3.569/8261 is trying to acquire lock: [ 158.614637][ T8261] ffffffff8e2d1540 (console_owner){-.-.}-{0:0}, at: console_lock_spinning_enable+0x61/0x80 [ 158.614663][ T8261] [ 158.614663][ T8261] but task is already holding lock: [ 158.614666][ T8261] ffff88802b23a4d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 158.614686][ T8261] [ 158.614686][ T8261] which lock already depends on the new lock. [ 158.614686][ T8261] [ 158.614689][ T8261] [ 158.614689][ T8261] the existing dependency chain (in reverse order) is: [ 158.614692][ T8261] [ 158.614692][ T8261] -> #4 (&rq->__lock){-.-.}-{2:2}: [ 158.614704][ T8261] _raw_spin_lock_nested+0x31/0x40 [ 158.614715][ T8261] raw_spin_rq_lock_nested+0x29/0x130 [ 158.614724][ T8261] task_rq_lock+0xcf/0x490 [ 158.614732][ T8261] cgroup_move_task+0x81/0x2a0 [ 158.614743][ T8261] css_set_move_task+0x288/0x5f0 [ 158.614756][ T8261] cgroup_post_fork+0x201/0x9d0 [ 158.614765][ T8261] copy_process+0x602d/0x76a0 [ 158.614776][ T8261] kernel_clone+0xfc/0x930 [ 158.614787][ T8261] user_mode_thread+0xc8/0x110 [ 158.614798][ T8261] rest_init+0x23/0x2b0 [ 158.614811][ T8261] start_kernel+0x3f3/0x4e0 [ 158.614827][ T8261] x86_64_start_reservations+0x18/0x30 [ 158.614836][ T8261] x86_64_start_kernel+0x130/0x190 [ 158.614844][ T8261] common_startup_64+0x13e/0x148 [ 158.614854][ T8261] [ 158.614854][ T8261] -> #3 (&p->pi_lock){-.-.}-{2:2}: [ 158.614865][ T8261] _raw_spin_lock_irqsave+0x3a/0x60 [ 158.614874][ T8261] try_to_wake_up+0xb7/0x1870 [ 158.614886][ T8261] __wake_up_common+0x135/0x1f0 [ 158.614898][ T8261] __wake_up+0x31/0x60 [ 158.614908][ T8261] tty_port_default_wakeup+0x47/0x60 [ 158.614924][ T8261] serial8250_tx_chars+0x68e/0x860 [ 158.614934][ T8261] serial8250_handle_irq+0x761/0xcb0 [ 158.614943][ T8261] serial8250_default_handle_irq+0x9e/0x270 [ 158.614953][ T8261] serial8250_interrupt+0xf5/0x1d0 [ 158.614963][ T8261] __handle_irq_event_percpu+0x236/0x920 [ 158.614973][ T8261] handle_irq_event+0xab/0x1e0 [ 158.614982][ T8261] handle_edge_irq+0x3ca/0x9e0 [ 158.614990][ T8261] __common_interrupt+0xcd/0x2f0 [ 158.615002][ T8261] common_interrupt+0xba/0xe0 [ 158.615016][ T8261] asm_common_interrupt+0x26/0x40 [ 158.615025][ T8261] pv_native_safe_halt+0xf/0x20 [ 158.615042][ T8261] default_idle+0x13/0x20 [ 158.615054][ T8261] default_idle_call+0x6c/0xb0 [ 158.615066][ T8261] do_idle+0x38d/0x500 [ 158.615074][ T8261] cpu_startup_entry+0x4f/0x60 [ 158.615083][ T8261] start_secondary+0x21d/0x2b0 [ 158.615096][ T8261] common_startup_64+0x13e/0x148 [ 158.615105][ T8261] [ 158.615105][ T8261] -> #2 (&tty->write_wait){-...}-{3:3}: [ 158.615117][ T8261] _raw_spin_lock_irqsave+0x3a/0x60 [ 158.615125][ T8261] __wake_up+0x1c/0x60 [ 158.615135][ T8261] tty_port_default_wakeup+0x47/0x60 [ 158.615150][ T8261] serial8250_tx_chars+0x68e/0x860 [ 158.615158][ T8261] __start_tx+0x3df/0x490 [ 158.615166][ T8261] serial8250_start_tx+0x368/0x530 [ 158.615174][ T8261] __uart_start+0x295/0x500 [ 158.615185][ T8261] uart_write+0x218/0xb30 [ 158.615199][ T8261] n_tty_write+0x41b/0x11e0 [ 158.615208][ T8261] file_tty_write.constprop.0+0x500/0x9b0 [ 158.615223][ T8261] redirected_tty_write+0xd4/0x150 [ 158.615237][ T8261] vfs_write+0x7d3/0x11d0 [ 158.615246][ T8261] ksys_write+0x12a/0x250 [ 158.615255][ T8261] do_syscall_64+0xcd/0xfa0 [ 158.615266][ T8261] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 158.615275][ T8261] [ 158.615275][ T8261] -> #1 (&port_lock_key){-.-.}-{3:3}: [ 158.615287][ T8261] _raw_spin_lock_irqsave+0x3a/0x60 [ 158.615295][ T8261] serial8250_console_write+0x181/0x1890 [ 158.615306][ T8261] console_flush_all+0x801/0xc60 [ 158.615314][ T8261] console_unlock+0xd8/0x210 [ 158.615322][ T8261] vprintk_emit+0x3d7/0x680 [ 158.615331][ T8261] _printk+0xc7/0x100 [ 158.615343][ T8261] register_console+0xc2d/0x11b0 [ 158.615353][ T8261] univ8250_console_init+0x5f/0x90 [ 158.615363][ T8261] console_init+0x14f/0x680 [ 158.615372][ T8261] start_kernel+0x29f/0x4e0 [ 158.615386][ T8261] x86_64_start_reservations+0x18/0x30 [ 158.615394][ T8261] x86_64_start_kernel+0x130/0x190 [ 158.615402][ T8261] common_startup_64+0x13e/0x148 [ 158.615411][ T8261] [ 158.615411][ T8261] -> #0 (console_owner){-.-.}-{0:0}: [ 158.615423][ T8261] __lock_acquire+0x12a6/0x1ce0 [ 158.615435][ T8261] lock_acquire+0x179/0x350 [ 158.615447][ T8261] console_lock_spinning_enable+0x72/0x80 [ 158.615456][ T8261] console_flush_all+0x7aa/0xc60 [ 158.615464][ T8261] console_unlock+0xd8/0x210 [ 158.615472][ T8261] vprintk_emit+0x3d7/0x680 [ 158.615481][ T8261] _printk+0xc7/0x100 [ 158.615493][ T8261] should_fail_ex+0x4e7/0x640 [ 158.615504][ T8261] strncpy_from_user+0x3b/0x2e0 [ 158.615514][ T8261] strncpy_from_user_nofault+0x7f/0x180 [ 158.615524][ T8261] bpf_bprintf_prepare+0xe90/0x13f0 [ 158.615536][ T8261] bpf_trace_printk+0xda/0x190 [ 158.615550][ T8261] bpf_prog_930ede9872f2967c+0x3e/0x44 [ 158.615558][ T8261] bpf_trace_run2+0x239/0x590 [ 158.615572][ T8261] __bpf_trace_contention_begin+0xc9/0x110 [ 158.615585][ T8261] trace_contention_begin.constprop.0+0xde/0x160 [ 158.615600][ T8261] __pv_queued_spin_lock_slowpath+0x109/0xcf0 [ 158.615612][ T8261] do_raw_spin_lock+0x20e/0x2b0 [ 158.615626][ T8261] raw_spin_rq_lock_nested+0x7e/0x130 [ 158.615635][ T8261] __schedule+0x307/0x5de0 [ 158.615643][ T8261] schedule+0xe7/0x3a0 [ 158.615651][ T8261] exit_to_user_mode_loop+0x6b/0x130 [ 158.615665][ T8261] __do_fast_syscall_32+0x240/0x300 [ 158.615677][ T8261] do_fast_syscall_32+0x32/0x80 [ 158.615688][ T8261] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 158.615700][ T8261] [ 158.615700][ T8261] other info that might help us debug this: [ 158.615700][ T8261] [ 158.615702][ T8261] Chain exists of: [ 158.615702][ T8261] console_owner --> &p->pi_lock --> &rq->__lock [ 158.615702][ T8261] [ 158.615715][ T8261] Possible unsafe locking scenario: [ 158.615715][ T8261] [ 158.615718][ T8261] CPU0 CPU1 [ 158.615720][ T8261] ---- ---- [ 158.615723][ T8261] lock(&rq->__lock); [ 158.615728][ T8261] lock(&p->pi_lock); [ 158.615734][ T8261] lock(&rq->__lock); [ 158.615740][ T8261] lock(console_owner); [ 158.615745][ T8261] [ 158.615745][ T8261] *** DEADLOCK *** [ 158.615745][ T8261] [ 158.615747][ T8261] 4 locks held by syz.3.569/8261: [ 158.615753][ T8261] #0: ffff88802b23a4d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 158.615774][ T8261] #1: ffffffff8e3c4320 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run2+0x1bc/0x590 [ 158.615800][ T8261] #2: ffffffff8e3b1980 (console_lock){+.+.}-{0:0}, at: _printk+0xc7/0x100 [ 158.615825][ T8261] #3: ffffffff8e3b19f0 (console_srcu){....}-{0:0}, at: console_flush_all+0x158/0xc60 [ 158.615845][ T8261] [ 158.615845][ T8261] stack backtrace: [ 158.615850][ T8261] CPU: 1 UID: 0 PID: 8261 Comm: syz.3.569 Not tainted syzkaller #0 PREEMPT(full) [ 158.615861][ T8261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 158.615867][ T8261] Call Trace: [ 158.615870][ T8261] [ 158.615874][ T8261] dump_stack_lvl+0x116/0x1f0 [ 158.615886][ T8261] print_circular_bug+0x275/0x350 [ 158.615899][ T8261] check_noncircular+0x14c/0x170 [ 158.615914][ T8261] __lock_acquire+0x12a6/0x1ce0 [ 158.615929][ T8261] lock_acquire+0x179/0x350 [ 158.615942][ T8261] ? console_lock_spinning_enable+0x61/0x80 [ 158.615952][ T8261] ? console_lock_spinning_enable+0x4a/0x80 [ 158.615963][ T8261] console_lock_spinning_enable+0x72/0x80 [ 158.615972][ T8261] ? console_lock_spinning_enable+0x61/0x80 [ 158.615981][ T8261] console_flush_all+0x7aa/0xc60 [ 158.615992][ T8261] ? __pfx_console_flush_all+0x10/0x10 [ 158.616003][ T8261] ? is_printk_cpu_sync_owner+0x32/0x40 [ 158.616015][ T8261] console_unlock+0xd8/0x210 [ 158.616024][ T8261] ? __pfx_console_unlock+0x10/0x10 [ 158.616034][ T8261] ? do_raw_spin_unlock+0x160/0x230 [ 158.616053][ T8261] ? _printk+0xc7/0x100 [ 158.616066][ T8261] ? __down_trylock_console_sem+0xb0/0x140 [ 158.616081][ T8261] vprintk_emit+0x3d7/0x680 [ 158.616092][ T8261] ? __pfx_vprintk_emit+0x10/0x10 [ 158.616102][ T8261] ? rb_read_data_buffer.constprop.0+0x18c/0x430 [ 158.616117][ T8261] _printk+0xc7/0x100 [ 158.616130][ T8261] ? __pfx__printk+0x10/0x10 [ 158.616144][ T8261] ? strncpy_from_user+0x1d5/0x2e0 [ 158.616154][ T8261] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 158.616171][ T8261] ? __pfx____ratelimit+0x10/0x10 [ 158.616180][ T8261] ? pt_regs_offset+0x63/0x90 [ 158.616190][ T8261] should_fail_ex+0x4e7/0x640 [ 158.616201][ T8261] ? __rb_reserve_next.constprop.0+0x723/0x16c0 [ 158.616215][ T8261] strncpy_from_user+0x3b/0x2e0 [ 158.616226][ T8261] strncpy_from_user_nofault+0x7f/0x180 [ 158.616237][ T8261] bpf_bprintf_prepare+0xe90/0x13f0 [ 158.616251][ T8261] ? __pfx_bpf_bprintf_prepare+0x10/0x10 [ 158.616265][ T8261] ? bpf_trace_run2+0x3e1/0x590 [ 158.616280][ T8261] bpf_trace_printk+0xda/0x190 [ 158.616295][ T8261] ? __pfx_bpf_trace_printk+0x10/0x10 [ 158.616310][ T8261] ? bpf_trace_run2+0x3e1/0x590 [ 158.616328][ T8261] bpf_prog_930ede9872f2967c+0x3e/0x44 [ 158.616336][ T8261] bpf_trace_run2+0x239/0x590 [ 158.616351][ T8261] ? __pfx_bpf_trace_run2+0x10/0x10 [ 158.616368][ T8261] ? __lock_acquire+0xb97/0x1ce0 [ 158.616382][ T8261] __bpf_trace_contention_begin+0xc9/0x110 [ 158.616396][ T8261] ? __pfx___bpf_trace_contention_begin+0x10/0x10 [ 158.616410][ T8261] ? __pfx__kstrtoull+0x10/0x10 [ 158.616428][ T8261] trace_contention_begin.constprop.0+0xde/0x160 [ 158.616444][ T8261] __pv_queued_spin_lock_slowpath+0x109/0xcf0 [ 158.616457][ T8261] ? __lock_acquire+0xb97/0x1ce0 [ 158.616470][ T8261] ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10 [ 158.616485][ T8261] do_raw_spin_lock+0x20e/0x2b0 [ 158.616500][ T8261] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 158.616515][ T8261] ? rcu_qs+0x2b/0xe0 [ 158.616524][ T8261] ? rcu_note_context_switch+0x192/0x1e00 [ 158.616536][ T8261] raw_spin_rq_lock_nested+0x7e/0x130 [ 158.616546][ T8261] ? schedule+0xe7/0x3a0 [ 158.616554][ T8261] __schedule+0x307/0x5de0 [ 158.616564][ T8261] ? ksys_write+0x190/0x250 [ 158.616576][ T8261] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 158.616589][ T8261] ? __pfx___schedule+0x10/0x10 [ 158.616598][ T8261] ? __fget_files+0x20e/0x3c0 [ 158.616609][ T8261] ? fput+0x9b/0xd0 [ 158.616622][ T8261] ? ksys_write+0x1ac/0x250 [ 158.616633][ T8261] schedule+0xe7/0x3a0 [ 158.616642][ T8261] exit_to_user_mode_loop+0x6b/0x130 [ 158.616657][ T8261] __do_fast_syscall_32+0x240/0x300 [ 158.616670][ T8261] do_fast_syscall_32+0x32/0x80 [ 158.616682][ T8261] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 158.616694][ T8261] RIP: 0023:0xf70ed579 [ 158.616702][ T8261] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 158.616712][ T8261] RSP: 002b:00000000f549b590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 158.616720][ T8261] RAX: 0000000000000001 RBX: 000000000000000b RCX: 00000000f549b610 [ 158.616726][ T8261] RDX: 0000000000000001 RSI: 00000000f7485ff4 RDI: 0000000000000000 [ 158.616732][ T8261] RBP: 00000000f74b50b0 R08: 0000000000000000 R09: 0000000000000000 [ 158.616738][ T8261] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 158.616744][ T8261] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 158.616752][ T8261] [ 159.010459][ T8261] CPU: 1 UID: 0 PID: 8261 Comm: syz.3.569 Not tainted syzkaller #0 PREEMPT(full) [ 159.010482][ T8261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 159.010493][ T8261] Call Trace: [ 159.010501][ T8261] [ 159.010509][ T8261] dump_stack_lvl+0x116/0x1f0 [ 159.010533][ T8261] should_fail_ex+0x512/0x640 [ 159.010554][ T8261] ? __rb_reserve_next.constprop.0+0x723/0x16c0 [ 159.010579][ T8261] strncpy_from_user+0x3b/0x2e0 [ 159.010599][ T8261] strncpy_from_user_nofault+0x7f/0x180 [ 159.010620][ T8261] bpf_bprintf_prepare+0xe90/0x13f0 [ 159.010643][ T8261] ? __pfx_bpf_bprintf_prepare+0x10/0x10 [ 159.010668][ T8261] ? bpf_trace_run2+0x3e1/0x590 [ 159.010693][ T8261] bpf_trace_printk+0xda/0x190 [ 159.010717][ T8261] ? __pfx_bpf_trace_printk+0x10/0x10 [ 159.010744][ T8261] ? bpf_trace_run2+0x3e1/0x590 [ 159.010773][ T8261] bpf_prog_930ede9872f2967c+0x3e/0x44 [ 159.010787][ T8261] bpf_trace_run2+0x239/0x590 [ 159.010814][ T8261] ? __pfx_bpf_trace_run2+0x10/0x10 [ 159.010842][ T8261] ? __lock_acquire+0xb97/0x1ce0 [ 159.010865][ T8261] __bpf_trace_contention_begin+0xc9/0x110 [ 159.010889][ T8261] ? __pfx___bpf_trace_contention_begin+0x10/0x10 [ 159.010913][ T8261] ? __pfx__kstrtoull+0x10/0x10 [ 159.010943][ T8261] trace_contention_begin.constprop.0+0xde/0x160 [ 159.010970][ T8261] __pv_queued_spin_lock_slowpath+0x109/0xcf0 [ 159.010997][ T8261] ? __lock_acquire+0xb97/0x1ce0 [ 159.011018][ T8261] ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10 [ 159.011040][ T8261] do_raw_spin_lock+0x20e/0x2b0 [ 159.011061][ T8261] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 159.011081][ T8261] ? rcu_qs+0x2b/0xe0 [ 159.011095][ T8261] ? rcu_note_context_switch+0x192/0x1e00 [ 159.011113][ T8261] raw_spin_rq_lock_nested+0x7e/0x130 [ 159.011129][ T8261] ? schedule+0xe7/0x3a0 [ 159.011144][ T8261] __schedule+0x307/0x5de0 [ 159.011159][ T8261] ? ksys_write+0x190/0x250 [ 159.011180][ T8261] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 159.011200][ T8261] ? __pfx___schedule+0x10/0x10 [ 159.011215][ T8261] ? __fget_files+0x20e/0x3c0 [ 159.011231][ T8261] ? fput+0x9b/0xd0 [ 159.011249][ T8261] ? ksys_write+0x1ac/0x250 [ 159.011266][ T8261] schedule+0xe7/0x3a0 [ 159.011280][ T8261] exit_to_user_mode_loop+0x6b/0x130 [ 159.011304][ T8261] __do_fast_syscall_32+0x240/0x300 [ 159.011325][ T8261] do_fast_syscall_32+0x32/0x80 [ 159.011343][ T8261] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 159.011363][ T8261] RIP: 0023:0xf70ed579 [ 159.011376][ T8261] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 159.011390][ T8261] RSP: 002b:00000000f549b590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004 [ 159.011406][ T8261] RAX: 0000000000000001 RBX: 000000000000000b RCX: 00000000f549b610 [ 159.011415][ T8261] RDX: 0000000000000001 RSI: 00000000f7485ff4 RDI: 0000000000000000 [ 159.011425][ T8261] RBP: 00000000f74b50b0 R08: 0000000000000000 R09: 0000000000000000 [ 159.011434][ T8261] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 159.011443][ T8261] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 159.011456][ T8261] VM DIAGNOSIS: 05:20:19 Registers: info registers vcpu 0 CPU#0 RAX=0000000080000004 RBX=0000000000000014 RCX=ffffffff81be4fc6 RDX=ffff888027fb8000 RSI=0000000000000b18 RDI=0000000000000004 RBP=0000000000000b18 RSP=ffffc900263bef30 R8 =0000000000000004 R9 =0000000000000b18 R10=0000000000000e38 R11=0000000000000000 R12=0000000000000e38 R13=00000024f05d4b4a R14=ffffc900263befd8 R15=ffff88801b48eb14 RIP=ffffffff81bbce1c RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880977e6000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=000000006fa7b000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000080000001 Opmask01=0000000000000001 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=00000000ffffffef Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ba1e77f12a74ec20 494eea8c80a08afd ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1b66f73842cea88d 548b2b046c46d354 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 935750e6e004ad37 9bdf9ee0f1c59289 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c3d33774b560a9e 4baae5ea795389bf ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001100 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 610ca39e6113692c fa000000fc000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d9d338e8611da782 00005141612e274e ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2631f104b6fcf8f4 df9fa98e8a000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 98000000cd000000 6127c38cce000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6389ac8d657a98f4 165af849227519af ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5fb23839e089fd5a c9c209463fdda8da ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 006e6f697463656e 6e6f6320676e6974 7369786520726f66 206574656c706d00 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0064656374636564 6465632067646374 7363726520726566 2065746566706700 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f6e6f697463656e 6e6f435f49434820 676e69726f6e6749 203a31696368203a ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3030303063666637 78303d65646f6320 3937356461303766 78303d706920313d ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7461706d6f632030 34323d6c6c616373 7973203330303030 3030343d68637261 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20303d6769732022 726f747563657865 2d7a79732f223d65 786520223831352e ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 322e7a7973223d6d 6d6f632037353038 3d6469702064656e 69666e6f636e753d ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 cbdfeddd099cdc96 23b13d1a41cb93b5 99e7f9fccd525e54 59f16b1cbfc9d0e9 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000054 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff852cb9d5 RDI=ffffffff9adece80 RBP=ffffffff9adece40 RSP=ffffc90027747208 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d R12=0000000000000000 R13=0000000000000054 R14=ffffffff9adece40 R15=ffffffff852cb970 RIP=ffffffff852cb9ff RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880978e6000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=0000000050020000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000000080000 RBX=0000000000000000 RCX=ffffc9000d783000 RDX=0000000000080000 RSI=ffffffff84dbc8d2 RDI=0000000000000007 RBP=0000000000000200 RSP=ffffc90027317220 R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000200 R11=0000000000000000 R12=0000000000000000 R13=ffff88802b4317a0 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff81001280 RFL=00040046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff8880979e6000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=00000000520a7000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=dffffc0000000000 RBX=ffff88801c2e6200 RCX=1ffffffff1c89550 RDX=dffffc0000000000 RSI=ffffffff81c03627 RDI=ffffffff8e44aa80 RBP=ffffc900270ff330 RSP=ffffc900270ff270 R8 =0000000000000002 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000 R12=0000000000000002 R13=0000000000000010 R14=0000000000000010 R15=ffffffff8e44aa60 RIP=ffffffff81c03663 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097ae6000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000000000000 CR3=0000000050020000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000