last executing test programs: 1.957965515s ago: executing program 0 (id=672): mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x9, 0x15031, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x80001) mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000100)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5}) mlock2(&(0x7f0000549000/0x1000)=nil, 0x1000, 0x0) 1.833695555s ago: executing program 0 (id=675): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x9, 0xcc, 0x1, 0x4, 0x2, 0x1, 0x81, 0xff, 0x5, 0x0, 0xe, 0x9, 0xa, 0x2, 0xd, 0x5}}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x2, 0x7, 0x0, 0x180, 0x7, 0x0, 0xf1, 0x0, 0x8000000000000, 0x4, 0x0, 0x9, 0x0, 0x0, 0x0, 0xbd9], 0x1, 0x3c4210}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1.69066054s ago: executing program 0 (id=678): r0 = syz_usb_connect(0x0, 0x2d, &(0x7f00000012c0)=ANY=[@ANYBLOB="120100001ddf8208c00712152230000000010902"], 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_XEN_HVM_CONFIG(r2, 0x4038ae7a, &(0x7f0000000100)={0x0, 0x4b564d01, 0x0, 0x0}) syz_usb_disconnect(r0) r3 = io_uring_setup(0x79bb, &(0x7f0000000000)={0x0, 0x27d, 0x40}) close_range(r3, 0xffffffffffffffff, 0x0) 1.163287908s ago: executing program 3 (id=689): r0 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0xc0}, &(0x7f00000002c0)=0x0, &(0x7f0000000640)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32, @ANYBLOB="0000000000000000b705000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2f, 0x8, 0x0, 0x4}]}, 0x10) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc}) io_uring_enter(r0, 0x47bc, 0x20, 0x0, 0x0, 0x0) 1.136636867s ago: executing program 3 (id=690): mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1, 0x5d032, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x801) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000100)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5}) r1 = userfaultfd(0x801) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000100)) ioctl$UFFDIO_CONTINUE(r1, 0xc020aa07, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}}) 1.078111871s ago: executing program 3 (id=691): socket$alg(0x26, 0x5, 0x0) socket$inet6_mptcp(0xa, 0x1, 0x106) socket$unix(0x1, 0x3, 0x0) r0 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79af, 0x3180, 0x8000, 0x40024e}, &(0x7f0000000340)=0x0, &(0x7f0000000040)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x40, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, {0x20}, 0x1}) io_uring_enter(r0, 0x627, 0x4c1, 0x43, 0x0, 0x0) 896.19311ms ago: executing program 1 (id=694): sched_setaffinity(0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) bpf$ITER_CREATE(0xb, 0x0, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@ipv4_newrule={0x30, 0x20, 0x301, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x801c}, [@FRA_GENERIC_POLICY=@FRA_OIFNAME={0x14, 0x11, 'bond0\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000850) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8923, &(0x7f0000000040)={'bond0\x00', 0x1001}) 886.222799ms ago: executing program 1 (id=695): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x18) futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0) futex(&(0x7f000000cffc), 0x3, 0x801, 0x0, &(0x7f0000000040), 0xfffffffc) mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0) mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil) munlock(&(0x7f00007fe000/0x800000)=nil, 0x800000) socketpair$nbd(0x1, 0x1, 0x0, 0x0) 537.467716ms ago: executing program 2 (id=696): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00'}) r1 = io_uring_setup(0x2f00, &(0x7f000000c480)={0x0, 0xe8e2, 0x400, 0x20001, 0x3}) io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f0000000540)=[{0x0}], 0x1) r2 = io_uring_setup(0x7625, &(0x7f0000000600)={0x0, 0x1e28, 0x0, 0x0, 0x28b, 0x0, r1}) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)}, 0x0) io_uring_register$IORING_REGISTER_FILES(r2, 0x1e, &(0x7f0000000000)=[r1], 0x1) 471.576214ms ago: executing program 2 (id=697): bind$inet6(0xffffffffffffffff, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r0) mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) r1 = gettid() r2 = syz_open_procfs(r1, &(0x7f0000000040)='timerslack_ns\x00') write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x0, 0x2, 0x600}}, 0x30) 467.728742ms ago: executing program 2 (id=698): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r2, &(0x7f0000847fff)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0xfffffffc, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c) shutdown(r2, 0x1) 327.237344ms ago: executing program 2 (id=699): r0 = socket$unix(0x1, 0x1, 0x0) bind$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) listen(r0, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) connect$unix(r1, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) setsockopt$sock_int(r0, 0x1, 0x22, &(0x7f0000000200)=0x9, 0x4) accept4(r0, 0x0, 0x0, 0x0) 248.167335ms ago: executing program 2 (id=700): setresuid(0x0, 0xee01, 0x0) r0 = syz_io_uring_setup(0x16a1, &(0x7f0000000480)={0x0, 0xbc05, 0x0, 0x4, 0x113}, &(0x7f00000002c0)=0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2f, 0x8, 0x0, 0x4}]}, 0x10) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc}) io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0) 215.920327ms ago: executing program 3 (id=701): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x1, 0xf000, 0x1000, &(0x7f0000f9b000/0x1000)=nil}) r3 = dup(r2) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000000c0)=0xffff) 209.784806ms ago: executing program 0 (id=702): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r1 = fanotify_init(0x200, 0x0) fanotify_mark(r1, 0x1, 0x40000032, r0, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000e40), 0x40080, 0x0) ioctl$TIOCPKT(r2, 0x5420, &(0x7f00000000c0)=0x1) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "fe94b89fc43c3328eae0cae1f5eba329e6f216"}) splice(r2, 0x0, r0, 0x0, 0x7ffff000, 0x1) 128.764873ms ago: executing program 1 (id=703): bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x32600) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94) getsockopt(r1, 0x400000000000003a, 0x1, 0x0, &(0x7f0000000000)) 127.961941ms ago: executing program 0 (id=704): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0x0, 0xdddd1000, 0x10, 0x0, 0x8, 0x2, 0x0, 0x2, 0x0, 0x8, 0x9, 0x10}, {0xffff1000, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x4}, {0x2000, 0x0, 0x0, 0x0, 0x7, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfc}, {0x3000, 0xd000, 0xe, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x4}, {0xeeee0000, 0x3000, 0x9, 0x0, 0xff, 0x4, 0x0, 0xe, 0x0, 0x3c}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x10, 0x80}, {0xdddd1000, 0x0, 0xa, 0x6, 0x0, 0x0, 0x2}, {0x8080000, 0x3000, 0x4, 0x0, 0x0, 0x1, 0x10, 0xa, 0x26}, {0x80ac000}, {0xdddd1000}, 0xddf8ffdb, 0x0, 0x0, 0xf0, 0x8, 0xdd00, 0x0, [0xe, 0x0, 0x1]}) msgsnd(0xffffffffffffffff, &(0x7f0000000000)={0x3}, 0x4, 0x0) ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f00000000c0)) 122.441449ms ago: executing program 1 (id=705): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) capset(&(0x7f00000002c0)={0x20080522}, &(0x7f0000000300)) write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x21, 0x0, 0x1120081, 0x1, 0x0, 0xfffffffd}}, 0x50) lchown(&(0x7f00000006c0)='./file0\x00', 0x0, 0xee01) 94.322555ms ago: executing program 3 (id=706): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff"], 0x7c}}, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0) r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) connect$netrom(r1, &(0x7f0000000380)={{0x6, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x40002}, [@default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast]}, 0x48) r2 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) connect$netrom(r2, &(0x7f0000000300)={{0x6, @rose, 0xfffffffc}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48) close_range(r0, 0xffffffffffffffff, 0x0) 60.43611ms ago: executing program 1 (id=707): mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x64) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f0000000140)='./bus\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x181942, 0x0) readv(r0, &(0x7f00000002c0)=[{&(0x7f0000000040)=""/29, 0x1d}], 0x1) 55.715825ms ago: executing program 3 (id=708): r0 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x20000}}, {{0xa, 0x0, 0x40000, @dev={0xfe, 0x80, '\x00', 0x26}}}}, 0x108) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="2c00000010008100000000000080000000000000", @ANYRES32=0x0, @ANYBLOB="0a043cbf", @ANYRES32, @ANYBLOB="0a001b"], 0x2c}], 0x1}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x10000000, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe}}, [@TCA_INGRESS_BLOCK={0x8}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x0) 18.682596ms ago: executing program 2 (id=709): r0 = syz_io_uring_setup(0x83f, &(0x7f00000000c0)={0x0, 0xadfa, 0x100, 0x3, 0x8002ab}, &(0x7f0000000140)=0x0, &(0x7f0000000280)=0x0) mknod(&(0x7f0000000000)='./file0\x00', 0x8001420, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0xd5) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x21b, 0x109880, 0x12345}) io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) 7.285203ms ago: executing program 0 (id=710): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x2}) readv(r1, &(0x7f00000001c0)=[{&(0x7f0000001400)=""/227, 0x10}], 0x4) r2 = socket$kcm(0x2, 0xa, 0x2) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r0, 0x8983, &(0x7f0000000040)={0x0, 'syzkaller1\x00', {0x4}, 0x1}) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', @link_local}) 0s ago: executing program 1 (id=717): unshare(0x6a040000) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18) socket$netlink(0x10, 0x3, 0x0) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x4, 0x3032, 0xffffffffffffffff, 0x0) unshare(0xe000000) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:14957' (ED25519) to the list of known hosts. [ 41.776803][ T5872] cgroup: Unknown subsys name 'net' [ 41.915226][ T5872] cgroup: Unknown subsys name 'cpuset' [ 41.919205][ T5872] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 42.742711][ T5872] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 45.871605][ T5945] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 45.882552][ T5952] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 45.885166][ T5952] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 45.887686][ T5952] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 45.888983][ T5947] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 45.890503][ T5952] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 45.892974][ T5947] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 45.894908][ T5952] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 45.896858][ T5947] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 45.899420][ T5952] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 45.901352][ T5947] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 45.903556][ T5952] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 45.906254][ T5947] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 45.908528][ T5955] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 45.910390][ T5954] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 45.915722][ T5954] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 45.918596][ T5954] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 45.920088][ T5945] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 45.921053][ T5954] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 45.923635][ T5945] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 46.138450][ T5941] chnl_net:caif_netlink_parms(): no params data found [ 46.193018][ T5940] chnl_net:caif_netlink_parms(): no params data found [ 46.202501][ T5948] chnl_net:caif_netlink_parms(): no params data found [ 46.296636][ T5941] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.299300][ T5941] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.301733][ T5941] bridge_slave_0: entered allmulticast mode [ 46.304478][ T5941] bridge_slave_0: entered promiscuous mode [ 46.353668][ T5941] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.355891][ T5941] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.358092][ T5941] bridge_slave_1: entered allmulticast mode [ 46.360647][ T5941] bridge_slave_1: entered promiscuous mode [ 46.449187][ T5948] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.451855][ T5948] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.455216][ T5948] bridge_slave_0: entered allmulticast mode [ 46.457927][ T5948] bridge_slave_0: entered promiscuous mode [ 46.462840][ T5940] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.465034][ T5940] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.467310][ T5940] bridge_slave_0: entered allmulticast mode [ 46.469853][ T5940] bridge_slave_0: entered promiscuous mode [ 46.487609][ T5948] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.490107][ T5948] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.492322][ T5948] bridge_slave_1: entered allmulticast mode [ 46.495297][ T5948] bridge_slave_1: entered promiscuous mode [ 46.510331][ T5940] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.512580][ T5940] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.515111][ T5940] bridge_slave_1: entered allmulticast mode [ 46.517727][ T5940] bridge_slave_1: entered promiscuous mode [ 46.521524][ T5941] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.528180][ T5941] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.546190][ T5948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.560996][ T5951] chnl_net:caif_netlink_parms(): no params data found [ 46.580065][ T5948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.601105][ T5940] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 46.608802][ T5940] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.677202][ T5941] team0: Port device team_slave_0 added [ 46.694963][ T5948] team0: Port device team_slave_0 added [ 46.711978][ T5940] team0: Port device team_slave_0 added [ 46.716683][ T5941] team0: Port device team_slave_1 added [ 46.719495][ T5948] team0: Port device team_slave_1 added [ 46.726634][ T5940] team0: Port device team_slave_1 added [ 46.814418][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.816618][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.824784][ T5941] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.829922][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.832106][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.840220][ T5948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.864285][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.866467][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.874561][ T5940] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.878370][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.880499][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.888550][ T5941] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.892226][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.895171][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.902995][ T5948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.918342][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.920492][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.929486][ T5940] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.973352][ T5951] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.975628][ T5951] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.977908][ T5951] bridge_slave_0: entered allmulticast mode [ 46.980856][ T5951] bridge_slave_0: entered promiscuous mode [ 46.984610][ T5951] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.986943][ T5951] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.989261][ T5951] bridge_slave_1: entered allmulticast mode [ 46.991860][ T5951] bridge_slave_1: entered promiscuous mode [ 47.049497][ T5941] hsr_slave_0: entered promiscuous mode [ 47.054699][ T5941] hsr_slave_1: entered promiscuous mode [ 47.100483][ T5948] hsr_slave_0: entered promiscuous mode [ 47.102922][ T5948] hsr_slave_1: entered promiscuous mode [ 47.105016][ T5948] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 47.107623][ T5948] Cannot create hsr debugfs directory [ 47.142563][ T5940] hsr_slave_0: entered promiscuous mode [ 47.145513][ T5940] hsr_slave_1: entered promiscuous mode [ 47.147621][ T5940] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 47.150484][ T5940] Cannot create hsr debugfs directory [ 47.181322][ T5951] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.186482][ T5951] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.287970][ T5951] team0: Port device team_slave_0 added [ 47.315801][ T5951] team0: Port device team_slave_1 added [ 47.395247][ T5951] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.397448][ T5951] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.405455][ T5951] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.412547][ T5951] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 47.415793][ T5951] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.424631][ T5951] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 47.538754][ T5951] hsr_slave_0: entered promiscuous mode [ 47.540957][ T5951] hsr_slave_1: entered promiscuous mode [ 47.543184][ T5951] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 47.545520][ T5951] Cannot create hsr debugfs directory [ 47.596201][ T5940] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 47.604218][ T5940] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 47.618471][ T5940] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 47.625219][ T5940] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 47.663481][ T5941] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 47.670876][ T5941] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 47.675090][ T5941] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 47.679869][ T5941] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 47.742920][ T5948] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 47.749988][ T5948] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 47.756001][ T5948] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 47.762562][ T5948] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 47.814790][ T5951] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 47.821493][ T5940] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.832029][ T5951] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 47.836762][ T5951] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 47.840678][ T5951] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 47.854852][ T5941] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.882204][ T5940] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.887722][ T5941] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.895766][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.898077][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.905267][ T5948] 8021q: adding VLAN 0 to HW filter on device bond0 [ 47.911952][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.914222][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.926596][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.929511][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.933930][ T5949] Bluetooth: hci0: command tx timeout [ 47.933944][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.934476][ T5293] Bluetooth: hci3: command tx timeout [ 47.934600][ T5293] Bluetooth: hci1: command tx timeout [ 47.934661][ T5293] Bluetooth: hci2: command tx timeout [ 47.942794][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.968307][ T5948] 8021q: adding VLAN 0 to HW filter on device team0 [ 47.989765][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.991998][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.997380][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.999637][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.042339][ T5948] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 48.046516][ T5948] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 48.062419][ T5951] 8021q: adding VLAN 0 to HW filter on device bond0 [ 48.079836][ T5951] 8021q: adding VLAN 0 to HW filter on device team0 [ 48.087478][ T97] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.089964][ T97] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.096084][ T1139] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.098343][ T1139] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.119236][ T5941] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.138649][ T5940] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.165873][ T5948] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.176915][ T5941] veth0_vlan: entered promiscuous mode [ 48.189094][ T5941] veth1_vlan: entered promiscuous mode [ 48.205541][ T5940] veth0_vlan: entered promiscuous mode [ 48.214011][ T5941] veth0_macvtap: entered promiscuous mode [ 48.223159][ T5948] veth0_vlan: entered promiscuous mode [ 48.225391][ T5941] veth1_macvtap: entered promiscuous mode [ 48.235094][ T5940] veth1_vlan: entered promiscuous mode [ 48.247886][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.250815][ T5948] veth1_vlan: entered promiscuous mode [ 48.264612][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.269518][ T5951] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 48.274822][ T5941] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.277596][ T5941] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.280241][ T5941] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.283554][ T5941] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.292660][ T5940] veth0_macvtap: entered promiscuous mode [ 48.302210][ T5940] veth1_macvtap: entered promiscuous mode [ 48.319350][ T5948] veth0_macvtap: entered promiscuous mode [ 48.328258][ T5948] veth1_macvtap: entered promiscuous mode [ 48.337946][ T5940] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.341185][ T5940] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.345236][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.347661][ T5951] veth0_vlan: entered promiscuous mode [ 48.360471][ T5940] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.364204][ T5940] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.367970][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.371463][ T5951] veth1_vlan: entered promiscuous mode [ 48.371641][ T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.376047][ T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.378740][ T5940] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.381444][ T5940] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.384798][ T5940] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.387435][ T5940] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.396889][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.401154][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.405391][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.409693][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.414745][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.419622][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.423050][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.426194][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.429391][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.433855][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.446030][ T1159] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.448856][ T1159] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.454381][ T5948] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.457157][ T5948] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.460051][ T5948] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.463077][ T5948] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.493364][ T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.495836][ T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.501444][ T5951] veth0_macvtap: entered promiscuous mode [ 48.504531][ T5941] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 48.522329][ T5951] veth1_macvtap: entered promiscuous mode [ 48.545461][ T97] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.545838][ T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.548776][ T97] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.550815][ T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.566738][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.571270][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.575855][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.579088][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.582085][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 48.586447][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.591885][ T5951] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 48.605995][ T1139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.606188][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.608454][ T1139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.617697][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.621887][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.626467][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.629616][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 48.633922][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 48.638325][ T5951] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 48.647160][ T5951] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.650695][ T5951] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.654992][ T5951] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.657952][ T5951] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.727965][ T97] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.730593][ T97] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 48.759621][ T1139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 48.762105][ T1139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 49.612337][ T6071] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 49.679295][ T6077] netlink: 'syz.3.31': attribute type 1 has an invalid length. [ 49.974252][ T6094] netlink: 36 bytes leftover after parsing attributes in process `syz.2.38'. [ 50.012869][ T5949] Bluetooth: hci0: command tx timeout [ 50.013103][ T5945] Bluetooth: hci2: command tx timeout [ 50.014644][ T5949] Bluetooth: hci1: command tx timeout [ 50.016323][ T5945] Bluetooth: hci3: command tx timeout [ 50.128020][ T6101] syz.2.41 uses obsolete (PF_INET,SOCK_PACKET) [ 50.718050][ T5985] libceph: connect (1)[c::]:6789 error -101 [ 50.720419][ T5985] libceph: mon0 (1)[c::]:6789 connect error [ 50.983494][ T58] libceph: connect (1)[c::]:6789 error -101 [ 50.985636][ T58] libceph: mon0 (1)[c::]:6789 connect error [ 51.152725][ T6168] netlink: 208 bytes leftover after parsing attributes in process `syz.0.36'. [ 51.459442][ T6194] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 51.463872][ T6190] Zero length message leads to an empty skb [ 51.525451][ T58] libceph: connect (1)[c::]:6789 error -101 [ 51.530005][ T58] libceph: mon0 (1)[c::]:6789 connect error [ 51.542325][ T6136] ceph: No mds server is up or the cluster is laggy [ 51.765545][ T6224] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 51.812722][ T6234] capability: warning: `syz.3.87' uses 32-bit capabilities (legacy support in use) [ 51.871670][ T6241] 9pnet: p9_errstr2errno: server reported unknown error ./file0/../file0/../file0 [ 52.078454][ T6256] trusted_key: syz.2.97 sent an empty control message without MSG_MORE. [ 52.092710][ T5945] Bluetooth: hci3: command tx timeout [ 52.103650][ T5293] Bluetooth: hci2: command tx timeout [ 52.105436][ T5293] Bluetooth: hci0: command tx timeout [ 52.107179][ T5945] Bluetooth: hci1: command tx timeout [ 53.423116][ T6333] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 54.182772][ T5945] Bluetooth: hci1: command tx timeout [ 54.185053][ T5945] Bluetooth: hci0: command tx timeout [ 54.186307][ T5293] Bluetooth: hci3: command tx timeout [ 54.186359][ T5949] Bluetooth: hci2: command tx timeout [ 54.253488][ T6352] ptrace attach of ""[6353] was attempted by "/syz-executor exec"[6352] [ 54.506131][ T6379] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 54.574393][ T6379] netlink: 4 bytes leftover after parsing attributes in process `syz.2.147'. [ 54.577086][ T6379] bridge_slave_1: left allmulticast mode [ 54.579152][ T6379] bridge_slave_1: left promiscuous mode [ 54.581764][ T6379] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.592432][ T6379] bridge_slave_0: left allmulticast mode [ 54.595315][ T6379] bridge_slave_0: left promiscuous mode [ 54.597213][ T6379] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.759935][ T6394] ======================================================= [ 54.759935][ T6394] WARNING: The mand mount option has been deprecated and [ 54.759935][ T6394] and is ignored by this kernel. Remove the mand [ 54.759935][ T6394] option from the mount to silence this warning. [ 54.759935][ T6394] ======================================================= [ 55.047920][ T6410] netlink: 35 bytes leftover after parsing attributes in process `syz.1.161'. [ 55.255974][ T5293] block nbd3: Receive control failed (result -107) [ 55.307717][ T6418] block nbd3: shutting down sockets [ 55.393929][ T6440] Bluetooth: MGMT ver 1.23 [ 55.804645][ T6461] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 55.821356][ T6463] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 55.836474][ T6458] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.182' sets config #0 [ 56.016937][ T6476] atomic_op ffff888025f09198 conn xmit_atomic 0000000000000000 [ 56.029352][ T6478] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 56.042379][ T6478] evm: overlay not supported [ 56.067900][ T6480] 9pnet_virtio: no channels available for device syz [ 56.188779][ T40] audit: type=1326 audit(1746877191.611:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6486 comm="syz.0.196" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x0 [ 56.632760][ T6292] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 56.800292][ T6292] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 56.804550][ T6292] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 56.807875][ T6292] usb 8-1: Product: syz [ 56.809605][ T6292] usb 8-1: Manufacturer: syz [ 56.811555][ T6292] usb 8-1: SerialNumber: syz [ 56.822106][ T6292] usb 8-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 56.845049][ T834] usb 8-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 57.052669][ T5852] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 57.086220][ T6292] usb 8-1: USB disconnect, device number 2 [ 57.236410][ T5852] usb 7-1: Using ep0 maxpacket: 8 [ 57.243030][ T5852] usb 7-1: config 0 has no interfaces? [ 57.245400][ T5852] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 57.249237][ T5852] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 57.258227][ T5852] usb 7-1: config 0 descriptor?? [ 57.472943][ T5985] usb 7-1: USB disconnect, device number 2 [ 57.932695][ T834] ath9k_htc 8-1:1.0: ath9k_htc: Target is unresponsive [ 57.936936][ T834] ath9k_htc: Failed to initialize the device [ 57.940145][ T6292] usb 8-1: ath9k_htc: USB layer deinitialized [ 58.282780][ T24] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 58.440669][ T24] usb 7-1: unable to get BOS descriptor or descriptor too short [ 58.443998][ T24] usb 7-1: no configurations [ 58.445728][ T24] usb 7-1: can't read configurations, error -22 [ 58.779359][ T6594] netlink: 88 bytes leftover after parsing attributes in process `syz.0.235'. [ 58.782253][ T6594] netlink: 8 bytes leftover after parsing attributes in process `syz.0.235'. [ 58.954628][ T40] audit: type=1326 audit(1746877194.381:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6607 comm="syz.0.242" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x0 [ 59.005001][ T835] libceph: connect (1)[c::]:6789 error -101 [ 59.007067][ T835] libceph: mon0 (1)[c::]:6789 connect error [ 59.136353][ T6610] ceph: No mds server is up or the cluster is laggy [ 59.355994][ T6627] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5) [ 59.357954][ T6627] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 59.362922][ T6627] vhci_hcd vhci_hcd.0: Device attached [ 59.367899][ T6628] vhci_hcd: unknown pdu 1 [ 59.376473][ T13] vhci_hcd: stop threads [ 59.378296][ T13] vhci_hcd: release socket [ 59.380165][ T13] vhci_hcd: disconnect device [ 59.392948][ T6633] netlink: 'syz.2.248': attribute type 1 has an invalid length. [ 59.408473][ T6633] 8021q: adding VLAN 0 to HW filter on device bond1 [ 59.432422][ T6633] bond1: (slave ip6gretap1): making interface the new active one [ 59.435340][ T6633] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 59.438041][ T6633] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 59.441424][ T6633] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link [ 59.459494][ T1139] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 59.482700][ T5986] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 59.496983][ T6636] overlayfs: invalid redirect ((null)) [ 59.772788][ T29] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 59.802134][ T6653] process 'syz.2.257' launched './file0' with NULL argv: empty string added [ 60.047927][ T6672] netlink: 64 bytes leftover after parsing attributes in process `syz.1.264'. [ 60.051319][ T6672] netlink: 52 bytes leftover after parsing attributes in process `syz.1.264'. [ 60.055882][ T6672] unsupported nlmsg_type 40 [ 60.129992][ T6686] syz_tun: entered allmulticast mode [ 60.137378][ T6683] syz_tun: left allmulticast mode [ 60.252852][ T12] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 60.533452][ T64] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 60.632703][ T833] usb 6-1: new full-speed USB device number 2 using dummy_hcd [ 60.804388][ T833] usb 6-1: config 1 interface 0 has no altsetting 0 [ 60.808910][ T833] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 60.812495][ T833] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 60.815307][ T833] usb 6-1: Product: syz [ 60.816950][ T833] usb 6-1: Manufacturer: syz [ 60.818741][ T833] usb 6-1: SerialNumber: syz [ 61.149454][ T6720] netlink: 2004 bytes leftover after parsing attributes in process `syz.0.287'. [ 61.210714][ T6724] usb usb8: usbfs: process 6724 (syz.3.288) did not claim interface 11 before use [ 61.294429][ T46] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 61.297141][ T46] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 61.359923][ T834] IPVS: starting estimator thread 0... [ 61.372747][ T24] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 61.446854][ T833] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8 [ 61.454506][ T6736] IPVS: using max 44 ests per chain, 105600 per kthread [ 62.388432][ T6764] usb usb1: usbfs: process 6764 (syz.0.306) did not claim interface 0 before use [ 62.427656][ T6769] netlink: 4 bytes leftover after parsing attributes in process `syz.3.307'. [ 62.581417][ T6773] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 62.587266][ T6773] overlayfs: failed to clone lowerpath [ 62.863590][ T6785] syzkaller0: entered promiscuous mode [ 62.865948][ T6785] syzkaller0: entered allmulticast mode [ 62.998969][ T40] audit: type=1326 audit(2000000003.290:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6788 comm="syz.0.316" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 63.006003][ T40] audit: type=1326 audit(2000000003.290:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6788 comm="syz.0.316" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 63.012518][ T40] audit: type=1326 audit(2000000003.290:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6788 comm="syz.0.316" exe="/syz-executor" sig=0 arch=40000003 syscall=448 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 63.020114][ T40] audit: type=1326 audit(2000000003.290:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6788 comm="syz.0.316" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 63.029584][ T40] audit: type=1326 audit(2000000003.290:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6788 comm="syz.0.316" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7ffc0000 [ 63.255730][ T6801] input: syz0 as /devices/virtual/input/input5 [ 63.343545][ T1139] Bluetooth: hci4: Frame reassembly failed (-84) [ 63.414176][ T834] usb 6-1: USB disconnect, device number 2 [ 63.439299][ T834] usblp0: removed [ 63.965784][ T834] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 64.114298][ T834] usb 7-1: config 0 has no interfaces? [ 64.116877][ T834] usb 7-1: New USB device found, idVendor=0711, idProduct=0200, bcdDevice= d.7b [ 64.120982][ T834] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 64.132139][ T834] usb 7-1: config 0 descriptor?? [ 64.198764][ T6875] netlink: 'syz.1.352': attribute type 1 has an invalid length. [ 64.201144][ T6875] netlink: 'syz.1.352': attribute type 4 has an invalid length. [ 64.201153][ T6875] netlink: 15334 bytes leftover after parsing attributes in process `syz.1.352'. [ 64.232344][ T6877] Illegal XDP return value 4294967274 on prog (id 47) dev syz_tun, expect packet loss! [ 64.357939][ T834] usb 7-1: USB disconnect, device number 5 [ 65.023534][ T1159] ip6_tnl_xmit_ctl: 3 callbacks suppressed [ 65.023551][ T1159] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 65.322406][ T6929] Invalid ELF header magic: != ELF [ 65.372811][ C2] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 65.372920][ T5293] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 65.373103][ T5954] Bluetooth: hci4: command 0x1003 tx timeout [ 65.709994][ T6962] netlink: 68 bytes leftover after parsing attributes in process `syz.1.393'. [ 65.807627][ T6967] netlink: 'syz.0.395': attribute type 5 has an invalid length. [ 65.810683][ T6967] netlink: 4 bytes leftover after parsing attributes in process `syz.0.395'. [ 65.811955][ T6968] loop2: detected capacity change from 0 to 7 [ 65.820926][ T5958] Dev loop2: unable to read RDB block 7 [ 65.825146][ T5958] loop2: unable to read partition table [ 65.827909][ T5958] loop2: partition table beyond EOD, truncated [ 65.839770][ T6968] Dev loop2: unable to read RDB block 7 [ 65.841779][ T6968] loop2: unable to read partition table [ 65.844429][ T6968] loop2: partition table beyond EOD, truncated [ 65.847124][ T6968] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5) [ 66.175606][ T13] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 66.183967][ T40] audit: type=1326 audit(2000000006.479:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6976 comm="syz.0.401" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f88579 code=0x7fc00000 [ 66.494118][ T7027] binder: 7026:7027 ioctl c018620c 80000700 returned -1 [ 66.501943][ T7029] netlink: 'syz.1.422': attribute type 10 has an invalid length. [ 66.528216][ T7029] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 66.534148][ T7031] syz.3.423 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 66.668024][ T7041] "syz.1.427" (7041) uses obsolete ecb(arc4) skcipher [ 66.741087][ T40] audit: type=1326 audit(2000000007.029:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6976 comm="syz.0.401" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f88579 code=0x7fc00000 [ 67.292767][ T1159] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 67.801720][ T7111] 9pnet: p9_errstr2errno: server reported unknown error ./file0/../file0/../file0 [ 68.330845][ T7143] netlink: 8 bytes leftover after parsing attributes in process `syz.1.466'. [ 68.449257][ T1159] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 68.603741][ T7168] cgroup: fork rejected by pids controller in /syz2 [ 69.114772][ T46] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.184393][ T46] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.265522][ T46] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.306062][ T5954] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 69.308934][ T5954] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 69.313163][ T5954] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 69.317875][ T5954] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 69.321059][ T5954] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 69.348815][ T46] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.470731][ T7180] chnl_net:caif_netlink_parms(): no params data found [ 69.563105][ T1159] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 69.625318][ T7199] netlink: 4 bytes leftover after parsing attributes in process `syz.3.489'. [ 69.645939][ T46] bond1 (unregistering): (slave ip6gretap1): Releasing active interface [ 69.778966][ T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 69.783480][ T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 69.787023][ T46] bond0 (unregistering): Released all slaves [ 69.851946][ T46] bond1 (unregistering): Released all slaves [ 69.882873][ T7180] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.885271][ T7180] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.887818][ T7180] bridge_slave_0: entered allmulticast mode [ 69.891913][ T7180] bridge_slave_0: entered promiscuous mode [ 69.898876][ T7180] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.901994][ T7180] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.905385][ T7180] bridge_slave_1: entered allmulticast mode [ 69.909523][ T7180] bridge_slave_1: entered promiscuous mode [ 69.976509][ T7200] syzkaller0: entered promiscuous mode [ 69.978933][ T7200] syzkaller0: entered allmulticast mode [ 70.064350][ T40] audit: type=1326 audit(2000000010.359:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7208 comm="syz.3.492" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f46598 code=0x7ffc0000 [ 70.076205][ T40] audit: type=1326 audit(2000000010.359:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7208 comm="syz.3.492" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f46598 code=0x7ffc0000 [ 70.084905][ T40] audit: type=1326 audit(2000000010.359:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7208 comm="syz.3.492" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f46598 code=0x7ffc0000 [ 70.094211][ T40] audit: type=1326 audit(2000000010.359:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7208 comm="syz.3.492" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46579 code=0x7ffc0000 [ 70.102036][ T40] audit: type=1326 audit(2000000010.359:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7208 comm="syz.3.492" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f46598 code=0x7ffc0000 [ 70.110290][ T40] audit: type=1326 audit(2000000010.359:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7208 comm="syz.3.492" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46579 code=0x7ffc0000 [ 70.119136][ T40] audit: type=1326 audit(2000000010.359:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7208 comm="syz.3.492" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f46598 code=0x7ffc0000 [ 70.128344][ T40] audit: type=1326 audit(2000000010.359:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7208 comm="syz.3.492" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46579 code=0x7ffc0000 [ 70.136931][ T40] audit: type=1326 audit(2000000010.359:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7208 comm="syz.3.492" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f46598 code=0x7ffc0000 [ 70.144576][ T40] audit: type=1326 audit(2000000010.359:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7208 comm="syz.3.492" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46579 code=0x7ffc0000 [ 70.452738][ T835] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 70.612761][ T835] usb 8-1: Using ep0 maxpacket: 8 [ 70.616005][ T835] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 70.619994][ T835] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 70.624519][ T835] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 70.627606][ T835] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 70.631701][ T835] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 70.635161][ T835] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 70.820442][ T1417] ieee802154 phy0 wpan0: encryption failed: -22 [ 70.824044][ T1417] ieee802154 phy1 wpan1: encryption failed: -22 [ 70.849242][ T835] usb 8-1: GET_CAPABILITIES returned 0 [ 70.851068][ T835] usbtmc 8-1:16.0: can't read capabilities [ 71.065767][ T833] usb 8-1: USB disconnect, device number 3 [ 71.095949][ T7180] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 71.101822][ T7180] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.159780][ T7180] team0: Port device team_slave_0 added [ 71.171743][ T7180] team0: Port device team_slave_1 added [ 71.218306][ T46] hsr_slave_0: left promiscuous mode [ 71.220592][ T46] hsr_slave_1: left promiscuous mode [ 71.223408][ T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 71.225782][ T46] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 71.229520][ T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 71.231949][ T46] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 71.250605][ T46] veth1_macvtap: left promiscuous mode [ 71.254135][ T46] veth0_macvtap: left promiscuous mode [ 71.255993][ T46] veth1_vlan: left promiscuous mode [ 71.257770][ T46] veth0_vlan: left promiscuous mode [ 71.373037][ T5954] Bluetooth: hci0: command tx timeout [ 71.392795][ T6292] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 71.566431][ T6292] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 71.570517][ T6292] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 71.573578][ T6292] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 71.578894][ T6292] usb 5-1: config 0 descriptor?? [ 71.798223][ T6292] usbhid 5-1:0.0: can't add hid device: -71 [ 71.801982][ T6292] usbhid 5-1:0.0: probe with driver usbhid failed with error -71 [ 71.807684][ T6292] usb 5-1: USB disconnect, device number 2 [ 71.840188][ T46] team0 (unregistering): Port device team_slave_1 removed [ 71.902159][ T46] team0 (unregistering): Port device team_slave_0 removed [ 72.246045][ T835] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 72.401490][ T7180] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 72.404589][ T7180] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 72.414915][ T835] usb 5-1: Using ep0 maxpacket: 32 [ 72.417168][ T7180] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 72.422224][ T835] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 72.429962][ T835] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40 [ 72.434023][ T835] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 72.439791][ T835] usb 5-1: config 0 descriptor?? [ 72.449288][ T835] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 72.454641][ T835] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 72.462488][ T7180] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 72.467565][ T7180] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 72.478430][ T7180] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 72.558212][ T7180] hsr_slave_0: entered promiscuous mode [ 72.561359][ T7180] hsr_slave_1: entered promiscuous mode [ 72.564653][ T7180] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 72.567848][ T7180] Cannot create hsr debugfs directory [ 72.650818][ T7256] warning: `syz.3.504' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 72.678037][ C3] ldusb 5-1:0.0: Ring buffer overflow, 8 bytes dropped [ 72.784523][ T46] IPVS: stop unused estimator thread 0... [ 73.012112][ C0] ldusb 5-1:0.0: Ring buffer overflow, 8 bytes dropped [ 73.092695][ T6292] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 73.208014][ T7180] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 73.229100][ T7180] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 73.235239][ T7180] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 73.241099][ T7180] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 73.255542][ T6292] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 73.260262][ T6292] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 73.264496][ T6292] usb 8-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00 [ 73.268300][ T6292] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 73.273669][ T6292] usb 8-1: config 0 descriptor?? [ 73.305438][ T7180] 8021q: adding VLAN 0 to HW filter on device bond0 [ 73.325284][ T7180] 8021q: adding VLAN 0 to HW filter on device team0 [ 73.343482][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.346609][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 73.350956][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.353529][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.453061][ T5954] Bluetooth: hci0: command tx timeout [ 73.540408][ T7180] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.579640][ T7180] veth0_vlan: entered promiscuous mode [ 73.589595][ T7180] veth1_vlan: entered promiscuous mode [ 73.609249][ T7180] veth0_macvtap: entered promiscuous mode [ 73.614808][ T7180] veth1_macvtap: entered promiscuous mode [ 73.626436][ T7180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.630628][ T7180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.636005][ T7180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.640323][ T7180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.645211][ T7180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.648925][ T7180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.653840][ T7180] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.660901][ T7180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.664767][ T7180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.667915][ T7180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.671637][ T7180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.675248][ T7180] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.679625][ T7180] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.685041][ T7180] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.691240][ T6292] cm6533_jd 0003:0D8C:0022.0002: unknown main item tag 0x0 [ 73.694013][ T7180] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.694055][ T7180] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.694075][ T7180] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.694095][ T7180] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.709044][ T6292] cm6533_jd 0003:0D8C:0022.0002: unknown main item tag 0x0 [ 73.717428][ T6292] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/0003:0D8C:0022.0002/input/input6 [ 73.755795][ T6292] cm6533_jd 0003:0D8C:0022.0002: input,hiddev1,hidraw1: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.3-1/input0 [ 73.776390][ T1139] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.782087][ T1139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.796684][ T1139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.803577][ T1139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.891966][ T34] usb 8-1: USB disconnect, device number 4 [ 74.159188][ T34] usb 5-1: USB disconnect, device number 3 [ 74.163514][ T34] ldusb 5-1:0.0: LD USB Device #0 now disconnected [ 74.219983][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.224532][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.227793][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.230970][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.234372][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.237557][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.240786][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.244305][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.247366][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.250407][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.254033][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.256584][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.259075][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.261540][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.264045][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.266474][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.269712][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.273035][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.275456][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.277970][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.280482][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.283042][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.285636][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.288713][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.291357][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.294087][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.296461][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.298875][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.301306][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.303968][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.306400][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.308817][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.311205][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.313768][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.316291][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.318784][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.321195][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.323691][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.326797][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.329270][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.331729][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.334677][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.337073][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 74.344037][ T6292] hid-generic 0000:007F:FFFFFFFE.0003: hidraw1: HID v0.00 Device [syz1] on syz0 [ 74.413352][ T7343] fido_id[7343]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 74.912949][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 74.923170][ T7389] Bluetooth: MGMT ver 1.23 [ 75.043528][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 75.052852][ T5954] Bluetooth: hci2: command tx timeout [ 75.252951][ T7414] Bluetooth: hci0: invalid len left 7, exp >= 107 [ 75.442116][ T7429] netlink: 4 bytes leftover after parsing attributes in process `syz.0.551'. [ 75.533551][ T5954] Bluetooth: hci0: command tx timeout [ 76.307148][ T7444] loop2: detected capacity change from 0 to 7 [ 76.311079][ T5958] Dev loop2: unable to read RDB block 7 [ 76.315415][ T5958] loop2: unable to read partition table [ 76.317321][ T5958] loop2: partition table beyond EOD, truncated [ 76.324642][ T7444] Dev loop2: unable to read RDB block 7 [ 76.327029][ T7444] loop2: unable to read partition table [ 76.329192][ T7444] loop2: partition table beyond EOD, truncated [ 76.331711][ T7444] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5) [ 76.495736][ T7451] netlink: 156 bytes leftover after parsing attributes in process `syz.1.561'. [ 76.995066][ T7454] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 76.997957][ T7454] overlayfs: failed to set xattr on upper [ 76.999759][ T7454] overlayfs: ...falling back to redirect_dir=nofollow. [ 77.001986][ T7454] overlayfs: ...falling back to uuid=null. [ 77.004140][ T7454] overlayfs: maximum fs stacking depth exceeded [ 77.509377][ T7456] netlink: 'syz.2.563': attribute type 12 has an invalid length. [ 77.514801][ T7456] netlink: 'syz.2.563': attribute type 29 has an invalid length. [ 77.517941][ T7456] netlink: 148 bytes leftover after parsing attributes in process `syz.2.563'. [ 77.529494][ T7456] netlink: 'syz.2.563': attribute type 1 has an invalid length. [ 77.533263][ T7456] netlink: 'syz.2.563': attribute type 2 has an invalid length. [ 77.536386][ T7456] netlink: 39 bytes leftover after parsing attributes in process `syz.2.563'. [ 77.623046][ T5954] Bluetooth: hci0: command tx timeout [ 77.962986][ T7492] netlink: 8 bytes leftover after parsing attributes in process `syz.1.576'. [ 78.173770][ T7514] netlink: 'syz.1.587': attribute type 1 has an invalid length. [ 78.507919][ T58] kernel read not supported for file /mdstat (pid: 58 comm: kworker/2:1) [ 78.777945][ T7559] overlayfs: failed to decode file handle (len=12, type=251, flags=0, err=-22) [ 79.148597][ T7585] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 79.226590][ T7592] netlink: 'syz.2.618': attribute type 1 has an invalid length. [ 79.942929][ T6292] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 80.095077][ T6292] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 80.098735][ T6292] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 80.102502][ T6292] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 80.105742][ T6292] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 80.109945][ T6292] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 80.116584][ T6292] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 80.120358][ T6292] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 80.124110][ T6292] usb 8-1: Product: syz [ 80.125904][ T6292] usb 8-1: Manufacturer: syz [ 80.133023][ T6292] cdc_wdm 8-1:1.0: skipping garbage [ 80.135281][ T6292] cdc_wdm 8-1:1.0: skipping garbage [ 80.139133][ T6292] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device [ 80.141681][ T6292] cdc_wdm 8-1:1.0: Unknown control protocol [ 80.192062][ T7629] netlink: 'syz.1.632': attribute type 1 has an invalid length. [ 80.223901][ T7629] 8021q: adding VLAN 0 to HW filter on device bond1 [ 80.252301][ T7629] bond1: (slave gretap1): making interface the new active one [ 80.256268][ T7629] bond1: (slave gretap1): Enslaving as an active interface with an up link [ 80.401593][ C0] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 80.401663][ T6292] usb 8-1: USB disconnect, device number 5 [ 80.403799][ C0] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 80.407520][ C0] cdc_wdm 8-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19 [ 80.585096][ T7651] tipc: Started in network mode [ 80.587447][ T7651] tipc: Node identity 6, cluster identity 4711 [ 80.590152][ T7651] tipc: Node number set to 6 [ 81.056728][ T10] cfg80211: failed to load regulatory.db [ 81.102760][ T57] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 81.262758][ T57] usb 6-1: Using ep0 maxpacket: 32 [ 81.267943][ T57] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 81.274968][ T57] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 81.278303][ T57] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 81.282998][ T57] usb 6-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00 [ 81.286087][ T57] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 81.290507][ T57] usb 6-1: config 0 descriptor?? [ 81.501293][ T7702] ip6erspan0: entered allmulticast mode [ 81.647243][ T7716] input: syz0 as /devices/virtual/input/input7 [ 81.737620][ T57] input: HID 0458:5011 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:0458:5011.0004/input/input8 [ 81.889694][ T57] input: HID 0458:5011 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:0458:5011.0004/input/input9 [ 81.936494][ T7672] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 81.939373][ T7672] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 81.952840][ T57] kye 0003:0458:5011.0004: input,hiddev0,hidraw1: USB HID v0.00 Mouse [HID 0458:5011] on usb-dummy_hcd.1-1/input0 [ 81.953609][ T7754] netlink: 24 bytes leftover after parsing attributes in process `syz.3.680'. [ 82.006428][ T10] usb 6-1: USB disconnect, device number 3 [ 82.042776][ T835] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 82.142850][ T1332] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 82.202770][ T835] usb 7-1: Using ep0 maxpacket: 8 [ 82.207321][ T835] usb 7-1: config 0 has no interfaces? [ 82.209112][ T835] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 82.211973][ T835] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 82.217049][ T835] usb 7-1: config 0 descriptor?? [ 82.254823][ T7780] policy can only be matched on NF_INET_PRE_ROUTING [ 82.254834][ T7780] unable to load match [ 82.315598][ T1332] usb 5-1: Using ep0 maxpacket: 8 [ 82.318449][ T1332] usb 5-1: config 0 has no interfaces? [ 82.320209][ T1332] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 82.323112][ T1332] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 82.327190][ T1332] usb 5-1: config 0 descriptor?? [ 82.505591][ T10] usb 7-1: USB disconnect, device number 6 [ 82.540060][ T7796] 9pnet: p9_errstr2errno: server reported unknown error lèGù,Ó-‡¬k¢š¾šÆQïF‚5œÍê [ 82.546950][ T6292] usb 5-1: USB disconnect, device number 4 [ 82.675951][ T7800] : renamed from bond0 (while UP) [ 83.551276][ T7831] netlink: 'syz.3.708': attribute type 27 has an invalid length. [ 83.598335][ T7831] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.600920][ T7831] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.659002][ T7831] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 83.666019][ T7831] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 83.720539][ T7831] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.724474][ T7831] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.727499][ T7831] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.732858][ T7831] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.769590][ T7831] ip6erspan0: left allmulticast mode [ 83.772805][ T5986] Bluetooth: hci1: Opcode 0x0c1a failed: -110 [ 83.774866][ T5986] Bluetooth: hci1: Error when powering off device on rfkill (-110) [ 83.782661][ C0] ------------[ cut here ]------------ [ 83.785366][ C0] workqueue: cannot queue hci_cmd_timeout on wq hci1 [ 83.788224][ C0] WARNING: CPU: 0 PID: 0 at kernel/workqueue.c:2257 __queue_work+0xc9c/0x10f0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 83.791940][ C0] Modules linked in: [ 83.794521][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 83.799654][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 83.803172][ C0] RIP: 0010:__queue_work+0xc9c/0x10f0 [ 83.804885][ C0] Code: 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 28 04 00 00 48 8b 75 18 4c 89 f2 48 c7 c7 60 e1 8b 8b e8 55 4f f7 ff 90 <0f> 0b 90 90 e9 96 f7 ff ff e8 46 6e 37 00 90 0f 0b 90 e9 1b f6 ff [ 83.811756][ C0] RSP: 0018:ffffc90000007be8 EFLAGS: 00010082 [ 83.813882][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817a7f78 [ 83.816357][ C0] RDX: ffffffff8e097740 RSI: ffffffff817a7f85 RDI: 0000000000000001 [ 83.819290][ C0] RBP: ffff88804f600930 R08: 0000000000000001 R09: 0000000000000000 [ 83.821766][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 1ffff92000000f8f [ 83.824240][ C0] R13: 0000000080000101 R14: ffff88802997d978 R15: 0000000000000001 [ 83.826818][ C0] FS: 0000000000000000(0000) GS:ffff8880977ec000(0000) knlGS:0000000000000000 [ 83.830180][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 83.832705][ C0] CR2: 00000000f4fafda4 CR3: 000000006787f000 CR4: 0000000000352ef0 [ 83.835361][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 83.838160][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 83.840850][ C0] Call Trace: [ 83.841931][ C0] [ 83.842856][ C0] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 83.844683][ C0] call_timer_fn+0x197/0x620 [ 83.846142][ C0] ? __pfx_call_timer_fn+0x10/0x10 [ 83.847760][ C0] ? __run_timers+0x559/0x960 [ 83.849481][ C0] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 83.851828][ C0] __run_timers+0x569/0x960 [ 83.853796][ C0] ? __pfx___run_timers+0x10/0x10 [ 83.855934][ C0] run_timer_base+0x114/0x190 [ 83.857946][ C0] ? __pfx_run_timer_base+0x10/0x10 [ 83.860089][ C0] ? rcu_is_watching+0x12/0xc0 [ 83.862196][ C0] run_timer_softirq+0x1a/0x40 [ 83.864200][ C0] handle_softirqs+0x216/0x8e0 [ 83.866139][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 83.868329][ C0] __irq_exit_rcu+0x109/0x170 [ 83.870262][ C0] irq_exit_rcu+0x9/0x30 [ 83.872070][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 83.874493][ C0] [ 83.875634][ C0] [ 83.876934][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 83.879393][ C0] RIP: 0010:pv_native_safe_halt+0xf/0x20 [ 83.881809][ C0] Code: 26 65 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d 43 a9 20 00 fb f4 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 [ 83.889762][ C0] RSP: 0018:ffffffff8e007e10 EFLAGS: 00000282 [ 83.892326][ C0] RAX: 00000000000f574b RBX: 0000000000000000 RCX: ffffffff8b6943e9 [ 83.895662][ C0] RDX: 0000000000000000 RSI: ffffffff8dbdb841 RDI: ffffffff8bf46d20 [ 83.898915][ C0] RBP: fffffbfff1c12ee8 R08: 0000000000000001 R09: ffffed10056465bd [ 83.901425][ C0] R10: ffff88802b232deb R11: 0000000000000000 R12: 0000000000000000 [ 83.903887][ C0] R13: ffffffff8e097740 R14: ffffffff90851010 R15: 0000000000000000 [ 83.906388][ C0] ? ct_kernel_exit+0x139/0x190 [ 83.907971][ C0] default_idle+0x13/0x20 [ 83.909526][ C0] default_idle_call+0x6d/0xb0 [ 83.911147][ C0] do_idle+0x391/0x510 [ 83.912826][ C0] ? __pfx_do_idle+0x10/0x10 [ 83.914542][ C0] ? trace_sched_exit_tp+0x31/0x130 [ 83.916196][ C0] cpu_startup_entry+0x4f/0x60 [ 83.917677][ C0] rest_init+0x16b/0x2b0 [ 83.919420][ C0] ? acpi_subsystem_init+0x133/0x180 [ 83.921659][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 83.924063][ C0] start_kernel+0x3e9/0x4d0 [ 83.925990][ C0] x86_64_start_reservations+0x18/0x30 [ 83.928265][ C0] x86_64_start_kernel+0xb0/0xc0 [ 83.930409][ C0] common_startup_64+0x13e/0x148 [ 83.932526][ C0] [ 83.933872][ C0] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 83.936946][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.15.0-rc5-syzkaller-00207-g1a33418a69cc #0 PREEMPT(full) [ 83.941774][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 83.945844][ C0] Call Trace: [ 83.947246][ C0] [ 83.948494][ C0] dump_stack_lvl+0x3d/0x1f0 [ 83.950508][ C0] panic+0x71c/0x800 [ 83.952216][ C0] ? __pfx_panic+0x10/0x10 [ 83.954131][ C0] ? show_trace_log_lvl+0x29b/0x3e0 [ 83.956256][ C0] ? check_panic_on_warn+0x1f/0xb0 [ 83.958461][ C0] ? __queue_work+0xc9c/0x10f0 [ 83.960502][ C0] check_panic_on_warn+0xab/0xb0 [ 83.962615][ C0] __warn+0xf6/0x3c0 [ 83.964340][ C0] ? __queue_work+0xc9c/0x10f0 [ 83.966411][ C0] report_bug+0x3c3/0x580 [ 83.968334][ C0] ? __queue_work+0xc9c/0x10f0 [ 83.970422][ C0] handle_bug+0x184/0x210 [ 83.972312][ C0] exc_invalid_op+0x17/0x50 [ 83.974279][ C0] asm_exc_invalid_op+0x1a/0x20 [ 83.976312][ C0] RIP: 0010:__queue_work+0xc9c/0x10f0 [ 83.978529][ C0] Code: 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 28 04 00 00 48 8b 75 18 4c 89 f2 48 c7 c7 60 e1 8b 8b e8 55 4f f7 ff 90 <0f> 0b 90 90 e9 96 f7 ff ff e8 46 6e 37 00 90 0f 0b 90 e9 1b f6 ff [ 83.986327][ C0] RSP: 0018:ffffc90000007be8 EFLAGS: 00010082 [ 83.988832][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817a7f78 [ 83.992005][ C0] RDX: ffffffff8e097740 RSI: ffffffff817a7f85 RDI: 0000000000000001 [ 83.995354][ C0] RBP: ffff88804f600930 R08: 0000000000000001 R09: 0000000000000000 [ 83.998693][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 1ffff92000000f8f [ 84.001913][ C0] R13: 0000000080000101 R14: ffff88802997d978 R15: 0000000000000001 [ 84.005137][ C0] ? __warn_printk+0x198/0x350 [ 84.006703][ C0] ? __warn_printk+0x1a5/0x350 [ 84.008141][ C0] ? __queue_work+0xc9b/0x10f0 [ 84.009539][ C0] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 84.011207][ C0] call_timer_fn+0x197/0x620 [ 84.012566][ C0] ? __pfx_call_timer_fn+0x10/0x10 [ 84.014043][ C0] ? __run_timers+0x559/0x960 [ 84.015393][ C0] ? __pfx_delayed_work_timer_fn+0x10/0x10 [ 84.017060][ C0] __run_timers+0x569/0x960 [ 84.018400][ C0] ? __pfx___run_timers+0x10/0x10 [ 84.019839][ C0] run_timer_base+0x114/0x190 [ 84.021184][ C0] ? __pfx_run_timer_base+0x10/0x10 [ 84.022907][ C0] ? rcu_is_watching+0x12/0xc0 [ 84.024659][ C0] run_timer_softirq+0x1a/0x40 [ 84.026184][ C0] handle_softirqs+0x216/0x8e0 [ 84.027663][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 84.029573][ C0] __irq_exit_rcu+0x109/0x170 [ 84.031191][ C0] irq_exit_rcu+0x9/0x30 [ 84.032562][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 84.034417][ C0] [ 84.035499][ C0] [ 84.036519][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 84.038605][ C0] RIP: 0010:pv_native_safe_halt+0xf/0x20 [ 84.040399][ C0] Code: 26 65 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d 43 a9 20 00 fb f4 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 [ 84.045829][ C0] RSP: 0018:ffffffff8e007e10 EFLAGS: 00000282 [ 84.047573][ C0] RAX: 00000000000f574b RBX: 0000000000000000 RCX: ffffffff8b6943e9 [ 84.049833][ C0] RDX: 0000000000000000 RSI: ffffffff8dbdb841 RDI: ffffffff8bf46d20 [ 84.052061][ C0] RBP: fffffbfff1c12ee8 R08: 0000000000000001 R09: ffffed10056465bd [ 84.054346][ C0] R10: ffff88802b232deb R11: 0000000000000000 R12: 0000000000000000 [ 84.056712][ C0] R13: ffffffff8e097740 R14: ffffffff90851010 R15: 0000000000000000 [ 84.059448][ C0] ? ct_kernel_exit+0x139/0x190 [ 84.061075][ C0] default_idle+0x13/0x20 [ 84.062580][ C0] default_idle_call+0x6d/0xb0 [ 84.064282][ C0] do_idle+0x391/0x510 [ 84.065776][ C0] ? __pfx_do_idle+0x10/0x10 [ 84.067397][ C0] ? trace_sched_exit_tp+0x31/0x130 [ 84.069193][ C0] cpu_startup_entry+0x4f/0x60 [ 84.070936][ C0] rest_init+0x16b/0x2b0 [ 84.072456][ C0] ? acpi_subsystem_init+0x133/0x180 [ 84.074217][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 84.076160][ C0] start_kernel+0x3e9/0x4d0 [ 84.077674][ C0] x86_64_start_reservations+0x18/0x30 [ 84.079402][ C0] x86_64_start_kernel+0xb0/0xc0 [ 84.081169][ C0] common_startup_64+0x13e/0x148 [ 84.082995][ C0] [ 84.084727][ C0] Kernel Offset: disabled [ 84.086059][ C0] Rebooting in 86400 seconds.. VM DIAGNOSIS: 11:40:19 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000069 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff854c18b5 RDI=ffffffff9addfbc0 RBP=ffffffff9addfb80 RSP=ffffc90000007540 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=0000000000000069 R14=ffffffff9addfb80 R15=ffffffff854c1850 RIP=ffffffff854c18df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880977ec000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f4fafda4 CR3=000000006787f000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000000000000 RBX=ffff88802b33b100 RCX=ffffffff81aeb3de RDX=ffff88801dabc880 RSI=ffffffff81aeb3b8 RDI=0000000000000005 RBP=ffffc9000044fd10 RSP=ffffc9000044fc40 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=fffffbfff1c7944e R12=1ffff92000089f8c R13=0000000000000002 R14=0000000000000001 R15=ffffed1005667621 RIP=ffffffff81aeb3c4 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8880978ec000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007f24c17fee9c CR3=00000000220be000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000097 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000001 Opmask01=0000000000000001 Opmask02=0000000000000006 Opmask03=0000000000000000 Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffce0b46ebb 00007ffce0b46ebb ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffce0b473c0 0000003000000018 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffce0b473c0 0000003000000018 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c696d6166203220 65707974205d3020 2c315b207465736e 75203a316d697300 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6663676166203220 6570737420573020 2631512074657364 7520303167637300 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65776f70206e6568 7720726f72724520 3a31696368203a68 746f6f7465756c42 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 307475706e692f31 2d312e6463685f79 6d6d75642d627375 206e6f205d313130 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 353a383534302044 49485b206573756f 4d2030302e307620 4449482042535520 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a31776172646968 2c30766564646968 2c7475706e69203a 343030302e313130 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 353a383534303a33 3030302065796b20 5d3735542020205b 5d3034383235392e ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65746e656d676172 66206562206c6c69 7720656361667265 746e692073696874 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 EAX=f69d2890 EBX=ffffffff ECX=ffffffff EDX=89f8605c ESI=89f85f1d EDI=ffffffff EBP=f69d2788 ESP=ffc5e670 EIP=f70a7a54 EFL=00000286 [--S--P-] CPL=3 II=0 A20=1 SMM=0 HLT=0 ES =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0023 00000000 ffffffff 00c0fb00 DPL=3 CS32 [-RA] SS =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] DS =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 00000000 ffffffff 00c00000 GS =0063 583ff440 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 00000000 ffffffff 00c00000 TR =0040 00091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000002f50eff8 CR3=00000000254ad000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000001 RBX=ffffffffffffffe7 RCX=ffffffff81fd0e52 RDX=fffffbfff1c02cc4 RSI=0000000000000008 RDI=ffffffff8e016618 RBP=ffffffff93a53bc3 RSP=ffffc900011cf2a8 R8 =0000000000000001 R9 =fffffbfff1c02cc3 R10=ffffffff8e01661f R11=0000000000000000 R12=0000000000000003 R13=0000000000000018 R14=ffff88807ffd7258 R15=ffffffff93a53bc0 RIP=ffffffff81fd0e5a RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097aec000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f7f66e40 CR3=0000000026c22000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000