last executing test programs: 2m8.246344467s ago: executing program 2 (id=754): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x2, 0x7fffffff}]}) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000040)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x88fd537e5e114b6f, 0x12, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x89727a31546dcc47, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 2m8.189124776s ago: executing program 2 (id=755): r0 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r1 = socket$netlink(0x10, 0x3, 0x10) r2 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4) r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0) 2m7.31582643s ago: executing program 2 (id=762): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040)) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x7, 0x1000000000, 0x0, 0x43, 0x2000001, 0x0, 0x2004cb, 0x0, 0xa7c, 0x68ff, 0x5, 0x9, 0x3, 0x0, 0x401], 0xeeee8000, 0x202}) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000001c0)={{0x3000, 0xeeee0000, 0x8, 0x8, 0xb, 0xe6, 0x42, 0xff, 0x0, 0x81, 0x80}, {0x5000, 0xf000, 0x3, 0x0, 0x42, 0x5, 0x7d, 0x6, 0x16, 0x0, 0x2, 0x87}, {0x0, 0xdddd0000, 0xe, 0x5, 0x3, 0x7, 0x0, 0x9, 0x1, 0xa3, 0x5, 0x5}, {0x1, 0xeeef0000, 0x9, 0x6, 0x5, 0x42, 0xb, 0xff, 0x8, 0x7, 0xe, 0x10}, {0xeeee0000, 0xd000, 0xf, 0x3, 0x15, 0x7, 0xab, 0x8, 0x6, 0x9, 0xf7, 0x97}, {0xeeefa000, 0xdddd0000, 0x0, 0xa0, 0xb1, 0x8, 0x1, 0xa0, 0x82, 0x2f, 0x1, 0x7}, {0x3000, 0x3000, 0x4, 0x5, 0x7, 0x5, 0x7, 0x3, 0x8, 0x81, 0x40, 0x70}, {0xd000, 0x4000, 0xa, 0x5, 0xcd, 0x7, 0x0, 0x9, 0x2, 0xc, 0xb0, 0x9}, {0xeeef0000, 0x30}, {0x8000000, 0x7}, 0x80000031, 0x0, 0x0, 0x2024, 0x2, 0x0, 0x100000, [0x6800000000000000, 0x4, 0x3, 0x8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2m7.176584539s ago: executing program 2 (id=766): mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000480)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x12c5008, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x500, 0x40) r1 = open_tree(r0, &(0x7f0000000300)='\x00', 0x89901) move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) r2 = open_tree(r0, &(0x7f0000000100)='\x00', 0x9001) move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) 2m7.125969932s ago: executing program 2 (id=767): timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x2}, &(0x7f0000000000)) timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0) r1 = userfaultfd(0x80001) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000080)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000340)={{&(0x7f0000ffa000/0x4000)=nil, 0x4000}, 0x1}) write$UHID_CREATE2(r0, &(0x7f0000000340)=ANY=[], 0x118) ioctl$UFFDIO_ZEROPAGE(r1, 0xc020aa07, &(0x7f0000000280)={{&(0x7f0000ffc000/0x2000)=nil, 0x2000}}) 2m2.151628033s ago: executing program 2 (id=806): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) connect$unix(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f0000000380)=[@in6={0xa, 0x0, 0x0, @remote, 0x9}], 0x1c) recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x40000102) setsockopt(r1, 0x84, 0x7f, &(0x7f0000000040)="020000000980ffff", 0x8) 2m2.099648913s ago: executing program 32 (id=806): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) connect$unix(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f0000000380)=[@in6={0xa, 0x0, 0x0, @remote, 0x9}], 0x1c) recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x40000102) setsockopt(r1, 0x84, 0x7f, &(0x7f0000000040)="020000000980ffff", 0x8) 50.849956823s ago: executing program 0 (id=1683): timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) write$uinput_user_dev(r1, &(0x7f0000000580)={'syz1\x00', {0x6fc9, 0x7, 0x5, 0x5}, 0x3e, [0x9, 0x3, 0x8, 0x2, 0x5334, 0x400, 0x80000000, 0x5, 0x8, 0x0, 0x6, 0xf5, 0x9, 0x39, 0x747d5a13, 0x8, 0xfffffb9a, 0xfffffffc, 0x4, 0xfffffffb, 0xbeb, 0x3, 0x4, 0xf252, 0x4, 0x800, 0x300000, 0x7, 0xe, 0x4623b, 0x0, 0x0, 0x1ff, 0x8000, 0x3ff, 0x3, 0xd, 0x4, 0xba55, 0x8da8, 0x2, 0x200, 0x8000, 0x8, 0xe, 0x4, 0x2, 0xde, 0x8, 0x9, 0x5, 0x199f, 0x8, 0x2, 0x9, 0x1, 0x4, 0x6, 0x1000, 0x5, 0x40, 0x9, 0x7, 0x1], [0x6, 0x1e, 0x3, 0x8000, 0xfffffffe, 0x3, 0x0, 0x5, 0x4, 0xfffffffc, 0x4, 0x7fff, 0x72c, 0xc32, 0x3, 0x9, 0x10000, 0x400, 0x8001, 0x3, 0x1, 0x297, 0x5, 0x0, 0x981, 0x4, 0x100, 0x3ff, 0x0, 0xfffffffe, 0x1, 0x1000001, 0x10, 0xfffffff9, 0x0, 0x2, 0x1, 0x0, 0x6, 0x8000000, 0x800, 0xffff, 0x6, 0x96, 0xfffffff9, 0x101, 0x0, 0x2, 0x401, 0xc, 0x3, 0x379, 0x9, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x6, 0x200, 0x3], [0x401, 0xc584, 0xffff, 0xcd4, 0x7, 0x20, 0x7, 0x4, 0x8, 0x10, 0x7, 0x9, 0xe8b, 0x5, 0x80000001, 0x7, 0x1, 0x1000, 0x2, 0x10, 0x1, 0xfffffff9, 0xe55, 0x10, 0x80000001, 0x4, 0x1, 0x5, 0x9, 0x2, 0x5, 0x80, 0x9, 0x9, 0x47, 0x2, 0x3, 0x4, 0x7, 0x6d7e, 0x3, 0x8, 0x8001, 0xbf23, 0x6, 0x8, 0x0, 0x0, 0x3ff, 0x3, 0x6, 0x100fffd, 0x2005, 0x7, 0x4, 0xea, 0x9, 0x5, 0x6, 0xd9, 0x0, 0x7d, 0x401, 0x5], [0x108e, 0x7fff, 0x3, 0x3, 0x88, 0x2, 0x6, 0x4, 0x10, 0x2, 0x763, 0xb, 0x402, 0x800, 0x4000004, 0x1000, 0x1, 0x5, 0x3fa6, 0x4, 0x0, 0x5, 0x1e0, 0x4, 0xe47, 0x3, 0x100, 0x4, 0x200, 0x1000, 0x3b, 0x2, 0x5, 0x800, 0xa80a, 0x65f413f9, 0x4, 0x8, 0x8a8, 0x2, 0x3d, 0x7, 0x2, 0x4, 0x4, 0x10, 0x340a, 0x0, 0x7fff, 0xffffffff, 0xfffffff8, 0x401, 0x1, 0x200, 0x7, 0x4edf, 0x0, 0x7, 0xe, 0x2, 0xe, 0xf, 0x133, 0x6]}, 0x45c) ioctl$UI_DEV_CREATE(r1, 0x5501) readv(r1, &(0x7f0000000b80)=[{&(0x7f0000000a00)=""/113, 0x71}], 0x1) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0) 50.670714119s ago: executing program 0 (id=1686): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'rose0\x00', 0x112}) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000000)={'vlan0\x00', 0x400}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'rose0\x00', 0x112}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000080)={'syzkaller0\x00', 0x400}) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'rose0\x00', 0x0}) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r3], 0x20}}, 0x0) 50.510346049s ago: executing program 0 (id=1688): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x16, 0xf, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000086fc000085000000860000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r3, 0x0, 0x10, 0x38, &(0x7f00000006c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000700)=""/8, 0x60ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 49.194155696s ago: executing program 0 (id=1716): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000001000000850000000e000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8e, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000001}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x10) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r2, &(0x7f0000000040)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r2, 0x0) ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f0000000000)={0x14, 0xa7f084dd5657bbb4, 0x14}) sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 49.149463023s ago: executing program 0 (id=1710): mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000080)='./file1\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x220) r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x888000, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) 48.289928441s ago: executing program 0 (id=1726): r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) ioctl$int_in(r0, 0x40000000af01, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000002c0)) r1 = socket$packet(0x11, 0x3, 0x300) r2 = dup(r1) read$FUSE(r2, &(0x7f0000001c00)={0x2020}, 0x2020) r3 = fcntl$dupfd(r0, 0x0, r1) ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/251, 0x0}) ioctl$VHOST_NET_SET_BACKEND(r3, 0x4008af30, &(0x7f0000000080)={0x0, r2}) syz_genetlink_get_family_id$SEG6(&(0x7f0000000140), 0xffffffffffffffff) 32.857422979s ago: executing program 33 (id=1726): r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) ioctl$int_in(r0, 0x40000000af01, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000002c0)) r1 = socket$packet(0x11, 0x3, 0x300) r2 = dup(r1) read$FUSE(r2, &(0x7f0000001c00)={0x2020}, 0x2020) r3 = fcntl$dupfd(r0, 0x0, r1) ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/251, 0x0}) ioctl$VHOST_NET_SET_BACKEND(r3, 0x4008af30, &(0x7f0000000080)={0x0, r2}) syz_genetlink_get_family_id$SEG6(&(0x7f0000000140), 0xffffffffffffffff) 2.996362581s ago: executing program 4 (id=2244): r0 = socket$inet(0x2b, 0x801, 0x0) r1 = io_uring_setup(0x479, &(0x7f0000000ac0)={0x0, 0x3, 0x2, 0x2, 0x4000020}) r2 = socket$alg(0x26, 0x5, 0x0) r3 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) read$msr(r3, &(0x7f0000000400)=""/124, 0x7c) timerfd_gettime(r3, &(0x7f0000000140)) syz_usb_connect(0x1, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="1201000009a65d0860040800dee20102030109021b05000000000009040000f678eaf50009058402"], &(0x7f0000000080)={0x45, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]}) openat$mice(0xffffffffffffff9c, &(0x7f0000000300), 0x0) bind$alg(r2, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts-aes-aesni\x00'}, 0x58) close_range(r1, 0xffffffffffffffff, 0x0) connect$inet(r0, 0x0, 0x0) 2.858531523s ago: executing program 1 (id=2246): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000380)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000180)={0x26, 'rng\x00', 0x0, 0x0, 'stdrng\x00'}, 0x58) r3 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0xb423, 0x0, 0x5, 0x199}, &(0x7f0000000340)=0x0, &(0x7f0000000000)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x3, r2, 0x0, 0x0, 0x0, 0x80800}) io_uring_enter(r3, 0x3516, 0x3e44, 0x8, 0x0, 0x0) 1.952898083s ago: executing program 1 (id=2255): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x1c5ed000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19) r0 = userfaultfd(0x80001) socket$inet_tcp(0x2, 0x1, 0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1}) r1 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000340)={&(0x7f0000000000)=""/59, 0x304000, 0x800, 0x0, 0x3}, 0x20) ioctl$UFFDIO_COPY(r0, 0xc028aa05, &(0x7f0000000100)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000013000/0x4000)=nil, 0x3000, 0x3}) r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0) preadv2(r2, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0xffe00}], 0x2, 0x0, 0x0, 0x0) 1.952639754s ago: executing program 4 (id=2256): sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[], 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000007c0)=ANY=[@ANYBLOB="5800000002060108000000bca3000000000000400500010006000000050005000200000005000400000000000900020073797a31000000000c000780080012400000000211000300686173683a69702c6d61726b"], 0x58}}, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="480000000906010200000000000000000200ffff200007800c00018008000140a2fd4ebc08000a400000000205000300020000000900020073797a31000000000500010007"], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080) 1.902976544s ago: executing program 4 (id=2259): sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x20050800) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) open_tree(0xffffffffffffff9c, 0x0, 0x89800) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cpuacct.usage_sys\x00', 0x26e1, 0x0) close(r0) socket$kcm(0x2, 0x200000000000001, 0x106) socket$nl_rdma(0x10, 0x3, 0x14) socket$kcm(0x2, 0x6, 0x2) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="6801000000010104000000000000000002000000080003400000100e08000740000000002400028014000180"], 0x168}}, 0x4010) sendmsg$inet(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x3406c096) sendmsg$NL802154_CMD_DEL_SEC_KEY(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f00000005c0)={0x80, 0x0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_SEC_KEY={0x48, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_ID={0x24, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0xc, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6}]}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x8e0b}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}]}, @NL802154_KEY_ATTR_ID={0xc, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}]}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "5d7f49126f39fdce9586f24fdf59cfae"}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x20048081}, 0x1) write$cgroup_type(r0, &(0x7f0000000080), 0x11ffffce1) 1.170319252s ago: executing program 3 (id=2272): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/clear_refs\x00', 0x1, 0x0) write$sysctl(r1, &(0x7f0000000140)='4\x00', 0x2) r2 = userfaultfd(0x1) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000180)={0xaa, 0x280}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2}) ioctl$UFFDIO_WRITEPROTECT(r2, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f000040a000/0x800000)=nil, 0x800000}, 0x1}) mbind(&(0x7f0000778000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x7, 0x2) 1.119018843s ago: executing program 3 (id=2273): socketpair$unix(0x1, 0x2, 0x0, &(0x7f000001a000)) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0x40086602, &(0x7f0000000040)={0xfffffffffffffffd, 0x1}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) write$binfmt_register(0xffffffffffffffff, &(0x7f0000000340)={0x3a, 'syz1', 0x3a, 'M', 0x3a, 0x80000001, 0x3a, '\xbb\xbb\xbb\xbb\xbb\xbb', 0x3a, '/dev/kvm\x00', 0x3a, './cgroup.cpu/cpuset.cpus'}, 0x47) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="6c0000001000010400"/20, @ANYBLOB="5d580000000000001c001a8018000a801400070000000000000000000000000000000001140003006970766c616e310000000000000000001c0012800b0001006970766c616e00000c"], 0x6c}, 0x1, 0x0, 0x0, 0x840}, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x207, 0x4) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'bridge0\x00', 0x0}) sendto$packet(r1, &(0x7f00000002c0)="05031c08d3fc1408202b4788031c09102c28", 0xfce0, 0x4, &(0x7f0000000140)={0x11, 0x86dd, r3, 0x1, 0x0, 0x6, @multicast}, 0x14) 1.046014822s ago: executing program 3 (id=2274): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r0, 0x0) shmget$private(0x0, 0x800000, 0x54003f00, &(0x7f0000800000/0x800000)=nil) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, 0x0, 0x0) setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0) socket$kcm(0x10, 0x2, 0x0) sched_setaffinity(0x0, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x48010) setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000000)=0x7f, 0x4) syz_emit_ethernet(0x4a, &(0x7f0000000240)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x25}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0) 1.045630971s ago: executing program 4 (id=2275): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000580)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x57, 0x7fc00100}]}) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000740)={0x0}) r3 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x400, 0x1, 0x40000333}, &(0x7f00000006c0)=0x0, &(0x7f00000001c0)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(r3, 0x847ba, 0x0, 0xe, 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, &(0x7f00000000c0)={r2}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f00000003c0)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000080)={r6, 0x3, r0, 0x5}) 1.034012918s ago: executing program 1 (id=2276): bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001801", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x200000000000002f, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r2}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r0}, 0x10) r3 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', 0x0}) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r4, @ANYBLOB='\b\x00\n\x00', @ANYRESOCT], 0xb4}}, 0x0) 960.146687ms ago: executing program 3 (id=2277): r0 = fsopen(&(0x7f00000005c0)='cramfs\x00', 0x0) creat(&(0x7f00000002c0)='./file0\x00', 0x0) r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0xc402, 0x0) mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000003bc0)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94) write$P9_RVERSION(r2, &(0x7f0000000c40)=ANY=[], 0x13) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r4, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)=[0x5], 0x0, 0x0, 0x1, 0x1}}, 0x3c) creat(&(0x7f0000000040)='./file0\x00', 0x120) mmap$xdp(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000006, 0x12, r1, 0x80000000000000) close_range(r0, 0xffffffffffffffff, 0x0) 919.715606ms ago: executing program 3 (id=2278): sched_setscheduler(0x0, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f0000000040)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r3, 0x0) ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000000000)={0x2, 0xcf4e74310708dfc5, 0xc}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 866.479985ms ago: executing program 1 (id=2279): socket$nl_netfilter(0x10, 0x3, 0xc) openat$rtc(0xffffff9c, &(0x7f0000000000), 0xc0000, 0x0) syz_init_net_socket$ax25(0x3, 0x5, 0xc4) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, 0x0, 0x0) ioctl$sock_netrom_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x0, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bpq0, 0x1, 'syz1\x00', @default, 0x1, 0x0, [@null, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default]}) setsockopt$ax25_SO_BINDTODEVICE(r2, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x10) ioctl$sock_netdev_private(r0, 0x8914, &(0x7f0000000000)) 797.086745ms ago: executing program 1 (id=2281): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002}) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) r2 = dup3(r1, r0, 0x0) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a, 0x4}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x18, 0x0, &(0x7f0000000240)={0x30, 0x30, 0x30}}, 0x1000}], 0x0, 0x0, 0x0}) r4 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) read$FUSE(r4, &(0x7f00000034c0)={0x2020}, 0xcac) 796.376431ms ago: executing program 4 (id=2282): write$binfmt_register(0xffffffffffffffff, &(0x7f0000000180)={0x3a, 'syz0', 0x3a, 'E', 0x3a, 0x10000, 0x3a, 'background_gc=sync', 0x3a, 'heap', 0x3a, './file0'}, 0x3d) syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x403}}]}) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) connect$inet6(r0, &(0x7f0000000080), 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4) sendmsg$IPVS_CMD_GET_CONFIG(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x4000) sendmsg$TEAM_CMD_OPTIONS_GET(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000002c40)=ANY=[], 0x40c}, 0x1, 0x0, 0x0, 0x90}, 0x8000) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000140)=@ccm_128={{0x303}, "00000000006cfd00", "5ed80046587a88845e371336dad9ecbd", "868e5b1b", "4c5293d719408a98"}, 0x28) syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r1) 743.996586ms ago: executing program 1 (id=2283): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) shutdown(r0, 0x1) fsmount(0xffffffffffffffff, 0x0, 0x1) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000900)={&(0x7f00000000c0)='mmap_lock_acquire_returned\x00', r3, 0x0, 0x1}, 0x18) move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0) 415.482184ms ago: executing program 5 (id=2287): syz_init_net_socket$netrom(0x6, 0x5, 0x0) socket$pppoe(0x18, 0x1, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) openat$ipvs(0xffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0) socket$rxrpc(0x21, 0x2, 0x2) r0 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x101121) r1 = dup(r0) write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) r2 = syz_io_uring_setup(0x1c54, &(0x7f0000000300)={0x0, 0xf334, 0x10000, 0x2, 0x3f, 0x0, r1}, &(0x7f00000004c0)=0x0, &(0x7f00000001c0)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x90}}) io_uring_enter(r2, 0x2def, 0x4000, 0x0, 0x0, 0x0) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x800000000000002, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0xfffffffffffffff4, 0xfffffffffffffffd, 0x400000009, 0x40000, 0x0, 0x7fffffff}, 0x0, 0x0) 359.952894ms ago: executing program 5 (id=2288): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x400000000010, 0x3, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newqdisc={0x38, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r4, {0xfff3}, {0xffff, 0xffff}, {0x2, 0x1}}, [@qdisc_kind_options=@q_skbprio={{0xc}, {0x8, 0x2, 0x7}}]}, 0x38}, 0x1, 0x0, 0x0, 0x400dc}, 0x4000080) r5 = socket(0x400000000010, 0x3, 0x0) r6 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r5, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd28, 0xfffff000, {0x0, 0x0, 0x0, r7, {0xf000, 0xffff}, {}, {0x7}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_CLASSID={0x8, 0x1, {0x0, 0xfff1}}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x20000800) 219.405961ms ago: executing program 5 (id=2289): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='setgroups\x00') r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0) write$dsp(r1, &(0x7f0000000200)="bd4c", 0x2) r2 = syz_open_dev$sndctrl(&(0x7f0000000180), 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$wireguard(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="88010000", @ANYRES16=r4, @ANYBLOB="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"], 0x188}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r2, 0x40045532, &(0x7f0000000140)) r5 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65) ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r5, 0xc0684113, &(0x7f0000000380)={0x1, 0x5, 0x0, 0x1003, 0x0, 0x80000000, 0xffffffed, 0xf, 0x0, 0x40000, 0x2, 0x1}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 219.048042ms ago: executing program 4 (id=2290): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, 0x0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x9) r3 = dup(r2) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, 0x0) r4 = open(&(0x7f0000000040)='./file1\x00', 0x1850c2, 0x14c) ftruncate(r4, 0x200004) sendfile(r3, r4, 0x0, 0x80001d00c0d1) 218.848807ms ago: executing program 5 (id=2291): syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2002, 0x0) r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86"], 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000000"]) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x2, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x205, 0x6, 0x0, 0x0, 0x10003, 0x41, 0x400200cc0, 0xffd, 0x4, 0x0, 0x7, 0x0, 0x2, 0x0, 0x6a, 0x8d], 0xeeee8000, 0x19c1}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 140.290183ms ago: executing program 5 (id=2292): r0 = socket(0x28, 0x5, 0x0) bind$vsock_stream(r0, &(0x7f0000000040), 0x10) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x1138000, 0x800, 0x3, 0x1}, 0x20) syz_clone(0x80040000, 0x0, 0x0, 0x0, 0x0, 0x0) listen(r0, 0x0) r1 = socket(0x28, 0x5, 0x0) connect$vsock_stream(r1, &(0x7f0000000080), 0x10) sendmmsg(0xffffffffffffffff, &(0x7f00000030c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x9200000000000000) setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000180)={0x1, 0x5}, 0x8) sendmmsg(r1, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x24008094) 98.161001ms ago: executing program 5 (id=2293): socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0) socket$inet6(0xa, 0x1, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="020300090a0000000000000004000000030006000000000002000000ac1414000000000000000000020001000000000000000002fffffffb030005000000000002"], 0x50}}, 0x0) 0s ago: executing program 3 (id=2294): mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0) mount$tmpfs(0x0, &(0x7f0000000180)='./file1/file4\x00', 0x0, 0x0, 0x0) r0 = landlock_create_ruleset(&(0x7f00000002c0)={0x7f6e}, 0x18, 0x0) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, &(0x7f0000000000)={0x210a}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', 0x0}) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_NEW_STATION(r4, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000000)={0x44, r2, 0xb97534d5fe9704cf, 0x0, 0x25dfdc01, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_STA_AID={0x6, 0x10, 0x580}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0x1}]}, 0x44}, 0x1, 0x0, 0x0, 0xc0}, 0x0) landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(0xffffffffffffffff, 0x1, &(0x7f0000000340)={0x2000}, 0x0) landlock_restrict_self(0xffffffffffffffff, 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000580)='./file1/file4/file6\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file1/file4/file7/file6\x00', 0x0) kernel console output (not intermixed with test programs): 55.995844][ T1189] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.999979][ T5939] veth0_macvtap: entered promiscuous mode [ 56.006476][ T5939] veth1_macvtap: entered promiscuous mode [ 56.013798][ T1189] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.016999][ T1189] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.022266][ T5938] veth0_vlan: entered promiscuous mode [ 56.030307][ T1189] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.052904][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.053624][ T5938] veth1_vlan: entered promiscuous mode [ 56.055582][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.065217][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 56.080281][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 56.109829][ T1189] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.114300][ T1189] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.124236][ T1189] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.127934][ T1189] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.132367][ T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.136102][ T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.160244][ T5938] veth0_macvtap: entered promiscuous mode [ 56.172125][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.173637][ T5938] veth1_macvtap: entered promiscuous mode [ 56.175868][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.189932][ T5934] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 56.214858][ T1146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.217882][ T1146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.226291][ T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.227735][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 56.229310][ T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.261725][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 56.280117][ T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.287978][ T1146] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.298193][ T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.298991][ T1146] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.323120][ T1146] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.326936][ T1146] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.431666][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.447697][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.483164][ T1189] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.488433][ T1189] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.764315][ T5940] Bluetooth: hci0: command tx timeout [ 56.764345][ T5301] Bluetooth: hci1: command tx timeout [ 56.766040][ T5940] Bluetooth: hci2: command tx timeout [ 56.766064][ T5940] Bluetooth: hci3: command tx timeout [ 56.771134][ T6054] netlink: 24 bytes leftover after parsing attributes in process `syz.3.14'. [ 56.862529][ T6062] netlink: 240 bytes leftover after parsing attributes in process `syz.0.10'. [ 56.862935][ T6061] netlink: 24 bytes leftover after parsing attributes in process `syz.2.17'. [ 56.924118][ T6068] netlink: 24 bytes leftover after parsing attributes in process `syz.2.19'. [ 57.040457][ T6076] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.21'. [ 57.047026][ T6070] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.21'. à[ 57.136852][ T6086] netlink: 4 bytes leftover after parsing attributes in process `syz.3.26'. [ 57.138120][ T6084] evm: overlay not supported [ 57.140556][ T6086] netlink: 12 bytes leftover after parsing attributes in process `syz.3.26'. [ 57.640193][ T6103] ebtables: wrong size: *len 264, entries_size 144, replsz 144 [ 57.862766][ T6119] netlink: 'syz.2.38': attribute type 5 has an invalid length. [ 57.944447][ T6126] netlink: 'syz.2.41': attribute type 1 has an invalid length. [ 57.949214][ T6128] process 'syz.3.40' launched '/dev/fd/3' with NULL argv: empty string added [ 58.127797][ T6139] netlink: 4 bytes leftover after parsing attributes in process `syz.3.46'. [ 58.144512][ T6140] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 58.158382][ T6139] netlink: 12 bytes leftover after parsing attributes in process `syz.3.46'. [ 58.662054][ T6181] Driver unsupported XDP return value 0 on prog (id 16) dev N/A, expect packet loss! [ 58.843602][ T5940] Bluetooth: hci1: command tx timeout [ 58.843640][ T5951] Bluetooth: hci2: command tx timeout [ 58.845381][ T5940] Bluetooth: hci0: command tx timeout [ 58.853664][ T5940] Bluetooth: hci3: command tx timeout [ 59.183429][ T6022] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 59.346429][ T6022] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 59.351500][ T6022] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 59.356461][ T6022] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 59.360566][ T6022] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 59.366351][ T6022] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 59.369572][ T6022] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 59.375850][ T6022] usb 7-1: config 0 descriptor?? [ 59.798237][ T6022] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0 [ 59.808032][ T6140] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 59.887630][ T6140] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 60.031255][ T6140] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 60.168606][ T95] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.179219][ T95] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.190390][ T1146] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.201814][ T1146] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.610838][ T6145] usb 7-1: USB disconnect, device number 2 [ 60.883582][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 60.886941][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 60.923432][ T5940] Bluetooth: hci2: command tx timeout [ 60.923998][ T5301] Bluetooth: hci1: command tx timeout [ 60.933886][ T5940] Bluetooth: hci0: command tx timeout [ 60.934267][ T5301] Bluetooth: hci3: command tx timeout [ 61.013542][ T53] usb 5-1: new full-speed USB device number 2 using dummy_hcd [ 61.165754][ T53] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 61.169002][ T53] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 130, using maximum allowed: 30 [ 61.172549][ T53] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 130 [ 61.183479][ T53] usb 5-1: New USB device found, idVendor=046d, idProduct=c294, bcdDevice= 0.00 [ 61.186334][ T53] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 61.189921][ T53] usb 5-1: config 0 descriptor?? [ 61.194811][ T53] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 61.199931][ T40] audit: type=1800 audit(1762265086.920:2): pid=6233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.65" name="bus" dev="tmpfs" ino=2 res=0 errno=0 [ 61.205747][ T6233] mmap: syz.2.65 (6233) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 61.213159][ T40] audit: type=1800 audit(1762265086.930:3): pid=6233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.65" name="bus" dev="tmpfs" ino=2 res=0 errno=0 [ 61.399190][ T6221] loop6: detected capacity change from 0 to 7 [ 61.407055][ T6221] loop6: [POWERTEC] p1 p2 [ 61.409917][ T6221] loop6: p1 size 4294901760 extends beyond EOD, truncated [ 61.414276][ T6221] loop6: p2 size 1680801792 extends beyond EOD, truncated [ 61.426238][ T53] usb 5-1: USB disconnect, device number 2 [ 61.460854][ T5935] udevd[5935]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory [ 61.462141][ T6243] udevd[6243]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory [ 61.745452][ T6247] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 62.168455][ T6262] __nla_validate_parse: 2 callbacks suppressed [ 62.168470][ T6262] netlink: 8 bytes leftover after parsing attributes in process `syz.0.75'. [ 62.428134][ T40] audit: type=1800 audit(1762265088.150:4): pid=6271 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.77" name="/" dev="fuse" ino=1 res=0 errno=0 [ 62.723479][ T6282] nbd0: detected capacity change from 0 to 127 [ 62.728786][ T6287] netlink: 64 bytes leftover after parsing attributes in process `syz.0.82'. [ 62.733426][ T5301] block nbd0: Receive control failed (result -104) [ 62.780592][ T6294] netlink: 12 bytes leftover after parsing attributes in process `syz.0.86'. [ 63.042413][ T6308] netlink: 2048 bytes leftover after parsing attributes in process `syz.2.90'. [ 63.046394][ T6308] netlink: 4 bytes leftover after parsing attributes in process `syz.2.90'. [ 63.470557][ T6324] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 63.475144][ T6324] block device autoloading is deprecated and will be removed. [ 63.528203][ T6329] netlink: 24 bytes leftover after parsing attributes in process `syz.0.98'. [ 63.686220][ T6338] netlink: 'syz.1.103': attribute type 1 has an invalid length. [ 63.898707][ T6350] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 64.305471][ T40] audit: type=1800 audit(1762265090.030:5): pid=6364 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.114" name=6E73BF12E10BC845E0807291376B6A9C4CCE5A99F85125232DD3D213E8DCE1FDDEEFF2A7D2AB97C26527FC108503 dev="overlay" ino=10991 res=0 errno=0 [ 64.351424][ T6366] netlink: 20 bytes leftover after parsing attributes in process `syz.1.115'. [ 64.590697][ T6377] netlink: 4 bytes leftover after parsing attributes in process `syz.0.117'. [ 64.596662][ T6377] netlink: 12 bytes leftover after parsing attributes in process `syz.0.117'. [ 65.692836][ T6423] Zero length message leads to an empty skb [ 65.747020][ T6427] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 65.754875][ T6427] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 66.044677][ T1261] block nbd0: Connection timed out, retrying (0/1 alive) [ 66.047247][ T1261] block nbd0: Connection timed out, retrying (0/1 alive) [ 66.049589][ T1261] block nbd0: Connection timed out, retrying (0/1 alive) [ 66.052599][ T1261] block nbd0: Connection timed out, retrying (0/1 alive) [ 66.055265][ T1261] block nbd0: Dead connection, failed to find a fallback [ 66.057908][ T1261] block nbd0: shutting down sockets [ 66.059694][ T1261] I/O error, dev nbd0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 66.062969][ T1261] Buffer I/O error on dev nbd0, logical block 3, async page read [ 66.066058][ T1261] I/O error, dev nbd0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 66.068861][ T1261] Buffer I/O error on dev nbd0, logical block 2, async page read [ 66.071394][ T1261] I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 66.074693][ T1261] Buffer I/O error on dev nbd0, logical block 1, async page read [ 66.077508][ T1261] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 66.080906][ T1261] Buffer I/O error on dev nbd0, logical block 0, async page read [ 66.084831][ T5935] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 66.087963][ T5935] Buffer I/O error on dev nbd0, logical block 0, async page read [ 66.091230][ T5935] I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 66.095233][ T5935] Buffer I/O error on dev nbd0, logical block 1, async page read [ 66.098206][ T5935] I/O error, dev nbd0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 66.101185][ T5935] Buffer I/O error on dev nbd0, logical block 2, async page read [ 66.103875][ T5935] I/O error, dev nbd0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 66.106913][ T5935] Buffer I/O error on dev nbd0, logical block 3, async page read [ 66.109601][ T5935] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 66.112553][ T5935] Buffer I/O error on dev nbd0, logical block 0, async page read [ 66.115530][ T5935] I/O error, dev nbd0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 66.118440][ T5935] Buffer I/O error on dev nbd0, logical block 1, async page read [ 66.122271][ T5935] ldm_validate_partition_table(): Disk read failed. [ 66.125744][ T5935] Dev nbd0: unable to read RDB block 0 [ 66.128569][ T5935] nbd0: unable to read partition table [ 66.136757][ T5935] ldm_validate_partition_table(): Disk read failed. [ 66.139857][ T5935] Dev nbd0: unable to read RDB block 0 [ 66.143190][ T5935] nbd0: unable to read partition table [ 66.257922][ T6440] tipc: Started in network mode [ 66.259633][ T6440] tipc: Node identity 4, cluster identity 4711 [ 66.261941][ T6440] tipc: Node number set to 4 [ 67.678980][ T6494] syz.2.161 uses obsolete (PF_INET,SOCK_PACKET) [ 67.963530][ T5978] usb 8-1: new full-speed USB device number 2 using dummy_hcd [ 68.093477][ T5978] usb 8-1: device descriptor read/64, error -71 [ 68.343524][ T5978] usb 8-1: new full-speed USB device number 3 using dummy_hcd [ 68.473415][ T5978] usb 8-1: device descriptor read/64, error -71 [ 68.583879][ T5978] usb usb8-port1: attempt power cycle [ 68.934291][ T5978] usb 8-1: new full-speed USB device number 4 using dummy_hcd [ 68.953896][ T5978] usb 8-1: device descriptor read/8, error -71 [ 69.213458][ T5978] usb 8-1: new full-speed USB device number 5 using dummy_hcd [ 69.240861][ T5978] usb 8-1: device descriptor read/8, error -71 [ 69.344492][ T5978] usb usb8-port1: unable to enumerate USB device [ 69.376434][ T24] IPVS: starting estimator thread 0... [ 69.483670][ T6530] IPVS: using max 43 ests per chain, 103200 per kthread [ 69.516510][ T6536] netlink: 4 bytes leftover after parsing attributes in process `syz.1.178'. [ 70.828097][ T6577] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 70.828569][ T40] audit: type=1800 audit(1762265096.550:6): pid=6581 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.196" name="file1" dev="overlay" ino=351 res=0 errno=0 [ 71.133544][ T9] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 71.283617][ T9] usb 8-1: Using ep0 maxpacket: 32 [ 71.301240][ T9] usb 8-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config [ 71.305417][ T9] usb 8-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82 [ 71.310636][ T9] usb 8-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 71.310828][ T40] audit: type=1326 audit(1762265097.030:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6605 comm="syz.0.206" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 71.315768][ T9] usb 8-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11 [ 71.324887][ T40] audit: type=1326 audit(1762265097.040:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6605 comm="syz.0.206" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 71.324931][ T40] audit: type=1326 audit(1762265097.040:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6605 comm="syz.0.206" exe="/syz-executor" sig=0 arch=40000003 syscall=168 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 71.327415][ T40] audit: type=1326 audit(1762265097.050:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6605 comm="syz.0.206" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 71.336667][ T9] usb 8-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30 [ 71.341136][ T40] audit: type=1326 audit(1762265097.050:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6605 comm="syz.0.206" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 71.362112][ T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 71.372114][ T9] usb 8-1: Product: syz [ 71.373670][ T9] usb 8-1: Manufacturer: syz [ 71.375285][ T9] usb 8-1: SerialNumber: syz [ 71.377868][ T40] audit: type=1326 audit(1762265097.050:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6605 comm="syz.0.206" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 71.389660][ T40] audit: type=1326 audit(1762265097.050:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6605 comm="syz.0.206" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 71.395463][ C0] imon 8-1:155.0: imon usb_rx_callback_intf0: status(-71) [ 71.399029][ T40] audit: type=1326 audit(1762265097.050:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6605 comm="syz.0.206" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 71.411677][ T40] audit: type=1326 audit(1762265097.050:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6605 comm="syz.0.206" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 71.412228][ T9] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:155.0/input/input6 [ 71.613629][ T9] imon 8-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR [ 71.617475][ T9] (id 0x00) [ 71.663511][ T9] rc_core: IR keymap rc-imon-pad not found [ 71.666027][ T9] Registered IR keymap rc-empty [ 71.668100][ T9] imon 8-1:155.0: Looks like you're trying to use an IR protocol this device does not support [ 71.672173][ T9] imon 8-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol [ 71.766076][ T6627] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 71.768265][ T6627] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 71.771520][ T6627] vhci_hcd vhci_hcd.0: Device attached [ 71.814806][ T9] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:155.0/rc/rc0 [ 71.820796][ T9] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:155.0/rc/rc0/input7 [ 71.829657][ T9] imon 8-1:155.0: iMON device (15c2:ffdc, intf0) on usb<8:6> initialized [ 71.865198][ T6628] vhci_hcd: connection closed [ 71.866285][ T61] vhci_hcd: stop threads [ 71.871384][ T61] vhci_hcd: release socket [ 71.873610][ T61] vhci_hcd: disconnect device [ 72.004703][ T6587] imon:vfd_write: invalid payload size [ 72.009711][ T9] usb 8-1: USB disconnect, device number 6 [ 72.548646][ T6634] ======================================================= [ 72.548646][ T6634] WARNING: The mand mount option has been deprecated and [ 72.548646][ T6634] and is ignored by this kernel. Remove the mand [ 72.548646][ T6634] option from the mount to silence this warning. [ 72.548646][ T6634] ======================================================= [ 72.573893][ T6634] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 73.163820][ T6674] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 73.489670][ T6691] netlink: 12 bytes leftover after parsing attributes in process `syz.2.237'. [ 73.573771][ T6694] kvm: faulting far call emulation tainted memory [ 73.748479][ T6711] netlink: 8 bytes leftover after parsing attributes in process `syz.0.246'. [ 73.841218][ T6715] syzkaller1: entered promiscuous mode [ 73.844314][ T6715] syzkaller1: entered allmulticast mode [ 73.895527][ T6720] tipc: Failed to remove unknown binding: 66,1,1/4:3053309660/3053309662 [ 73.899429][ T6720] tipc: Failed to remove unknown binding: 66,1,1/4:3053309660/3053309662 [ 73.902470][ T6720] tipc: Failed to remove unknown binding: 66,1,1/4:3053309660/3053309662 [ 74.117108][ T6738] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 74.703553][ T6777] netlink: 12 bytes leftover after parsing attributes in process `syz.3.272'. [ 74.847085][ T6792] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 74.852632][ T6792] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 74.858181][ T6792] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 74.870568][ T6792] overlayfs: d_ino too big (62, ino=9223372036854776163, xinobits=2) [ 74.988633][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 75.121144][ T6806] Bluetooth: MGMT ver 1.23 [ 75.259895][ T6811] netlink: 'syz.0.294': attribute type 1 has an invalid length. [ 75.336234][ T6811] veth5: entered promiscuous mode [ 75.340574][ T6811] bond1: (slave veth5): Enslaving as a backup interface with a down link [ 76.058815][ T1420] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.061281][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 76.296532][ T6865] syzkaller1: entered promiscuous mode [ 76.298546][ T6865] syzkaller1: entered allmulticast mode [ 77.155495][ T40] kauditd_printk_skb: 38 callbacks suppressed [ 77.155505][ T40] audit: type=1326 audit(1762265102.880:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6901 comm="syz.1.323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 77.173600][ T40] audit: type=1326 audit(1762265102.880:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6901 comm="syz.1.323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 77.180844][ T40] audit: type=1326 audit(1762265102.880:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6901 comm="syz.1.323" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 77.191917][ T40] audit: type=1326 audit(1762265102.880:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6901 comm="syz.1.323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 77.200195][ T40] audit: type=1326 audit(1762265102.880:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6901 comm="syz.1.323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 77.223389][ T40] audit: type=1326 audit(1762265102.880:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6901 comm="syz.1.323" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 77.230031][ T40] audit: type=1326 audit(1762265102.880:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6901 comm="syz.1.323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 77.239090][ T40] audit: type=1326 audit(1762265102.880:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6901 comm="syz.1.323" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 77.247930][ T40] audit: type=1326 audit(1762265102.880:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6901 comm="syz.1.323" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 77.255670][ T40] audit: type=1326 audit(1762265102.880:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6901 comm="syz.1.323" exe="/syz-executor" sig=0 arch=40000003 syscall=7 compat=1 ip=0x80000006 code=0x7ffc0000 [ 77.911533][ T6931] netlink: 'syz.0.334': attribute type 4 has an invalid length. [ 78.561612][ T6950] VFS: Warning: syz.1.342 using old stat() call. Recompile your binary. [ 79.224047][ T6975] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 79.263427][ T6022] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 79.429112][ T6022] usb 7-1: config 0 has no interfaces? [ 79.431433][ T6022] usb 7-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b [ 79.443755][ T6022] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 79.455317][ T6022] usb 7-1: config 0 descriptor?? [ 79.462958][ T6989] netlink: 12 bytes leftover after parsing attributes in process `syz.0.357'. [ 79.679588][ T6022] usb 7-1: USB disconnect, device number 3 [ 80.464488][ T7022] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 80.733507][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 83.116731][ T40] kauditd_printk_skb: 3 callbacks suppressed [ 83.116742][ T40] audit: type=1326 audit(1762265108.840:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7076 comm="syz.3.390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 83.125280][ T40] audit: type=1326 audit(1762265108.840:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7076 comm="syz.3.390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 83.132803][ T40] audit: type=1326 audit(1762265108.840:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7076 comm="syz.3.390" exe="/syz-executor" sig=0 arch=40000003 syscall=174 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 83.139686][ T40] audit: type=1326 audit(1762265108.840:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7076 comm="syz.3.390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 83.148229][ T40] audit: type=1326 audit(1762265108.840:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7076 comm="syz.3.390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 83.155587][ T40] audit: type=1326 audit(1762265108.840:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7076 comm="syz.3.390" exe="/syz-executor" sig=0 arch=40000003 syscall=168 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 83.161572][ T40] audit: type=1326 audit(1762265108.850:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7076 comm="syz.3.390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 83.168835][ T40] audit: type=1326 audit(1762265108.850:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7076 comm="syz.3.390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 83.175171][ T40] audit: type=1326 audit(1762265108.850:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7076 comm="syz.3.390" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 83.181077][ T40] audit: type=1326 audit(1762265108.850:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7076 comm="syz.3.390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 83.192249][ T7080] netlink: 'syz.3.391': attribute type 1 has an invalid length. [ 83.926296][ T7106] netlink: 8 bytes leftover after parsing attributes in process `syz.0.403'. [ 84.443775][ T9] usb 5-1: new low-speed USB device number 3 using dummy_hcd [ 84.606785][ T9] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 84.610141][ T9] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 84.612935][ T9] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8 [ 84.617433][ T9] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 84.620841][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 84.627126][ T7124] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 84.631123][ T9] hub 5-1:1.0: bad descriptor, ignoring hub [ 84.633707][ T9] hub 5-1:1.0: probe with driver hub failed with error -5 [ 84.637028][ T9] cdc_wdm 5-1:1.0: skipping garbage [ 84.639201][ T9] cdc_wdm 5-1:1.0: skipping garbage [ 84.644628][ T9] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 84.646636][ T9] cdc_wdm 5-1:1.0: Unknown control protocol [ 84.916416][ C1] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 84.918672][ C1] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 85.046087][ C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 85.048201][ C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 85.050911][ C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 85.053022][ C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 85.055349][ C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 85.057377][ C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 85.059898][ C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 85.062399][ C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 85.065107][ C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 85.067085][ C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 85.069416][ C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 85.071503][ C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 85.073668][ C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 85.075652][ C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 85.077741][ C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 85.079724][ C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 85.081916][ C2] cdc_wdm 5-1:1.0: nonzero urb status received: -71 [ 85.084005][ C2] cdc_wdm 5-1:1.0: wdm_int_callback - 0 bytes [ 86.286469][ T841] cfg80211: failed to load regulatory.db [ 86.750579][ T7161] netlink: 36 bytes leftover after parsing attributes in process `syz.2.429'. [ 86.761315][ T7161] netlink: 36 bytes leftover after parsing attributes in process `syz.2.429'. [ 87.119517][ T7179] syz.3.437 (7179) used greatest stack depth: 19528 bytes left [ 87.179149][ T5943] usb 5-1: USB disconnect, device number 3 [ 87.492593][ T7209] netlink: 24 bytes leftover after parsing attributes in process `syz.0.447'. [ 87.496714][ T7209] netlink: 'syz.0.447': attribute type 1 has an invalid length. [ 87.499425][ T7209] netlink: 'syz.0.447': attribute type 2 has an invalid length. [ 87.502622][ T7209] netlink: 16 bytes leftover after parsing attributes in process `syz.0.447'. [ 87.643348][ T7221] netlink: 4 bytes leftover after parsing attributes in process `syz.1.446'. [ 88.728906][ T7254] netlink: 8 bytes leftover after parsing attributes in process `syz.2.457'. [ 89.716927][ T7296] loop5: detected capacity change from 0 to 7 [ 89.865548][ T7296] Dev loop5: unable to read RDB block 7 [ 89.867849][ T7296] loop5: unable to read partition table [ 89.870554][ T7296] loop5: partition table beyond EOD, truncated [ 89.873399][ T7296] loop_reread_partitions: partition scan of loop5 (úù) failed (rc=-5) [ 90.266260][ T24] kernel read not supported for file inotify (pid: 24 comm: kworker/2:0) [ 90.590709][ T7354] VFS: Lookup of 'file0' in fuse fuse would have caused loop [ 90.673667][ T7363] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 90.674251][ T40] kauditd_printk_skb: 43 callbacks suppressed [ 90.674259][ T40] audit: type=1326 audit(1762265116.400:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7364 comm="syz.3.499" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 90.693492][ T40] audit: type=1326 audit(1762265116.420:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7364 comm="syz.3.499" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 90.700137][ T40] audit: type=1326 audit(1762265116.420:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7364 comm="syz.3.499" exe="/syz-executor" sig=0 arch=40000003 syscall=174 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 90.714942][ T40] audit: type=1326 audit(1762265116.420:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7364 comm="syz.3.499" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 90.722152][ T40] audit: type=1326 audit(1762265116.420:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7364 comm="syz.3.499" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 90.728976][ T40] audit: type=1326 audit(1762265116.420:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7364 comm="syz.3.499" exe="/syz-executor" sig=0 arch=40000003 syscall=168 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 90.736614][ T40] audit: type=1326 audit(1762265116.440:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7364 comm="syz.3.499" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 90.745025][ T40] audit: type=1326 audit(1762265116.440:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7364 comm="syz.3.499" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 90.751835][ T40] audit: type=1326 audit(1762265116.440:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7364 comm="syz.3.499" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 90.758874][ T40] audit: type=1326 audit(1762265116.440:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7364 comm="syz.3.499" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 90.809999][ T7373] kvm: emulating exchange as write [ 91.133622][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 91.143259][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 91.149518][ T7398] input: syz0 as /devices/virtual/input/input8 [ 91.244147][ T7402] netlink: 4 bytes leftover after parsing attributes in process `syz.2.513'. [ 91.249543][ T7402] netlink: 12 bytes leftover after parsing attributes in process `syz.2.513'. [ 91.276988][ T4759] usb 6-1: new low-speed USB device number 2 using dummy_hcd [ 91.434991][ T4759] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 91.438285][ T4759] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 91.441155][ T4759] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8 [ 91.445387][ T4759] usb 6-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 91.448295][ T4759] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 91.455284][ T7390] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 91.462678][ T4759] hub 6-1:1.0: bad descriptor, ignoring hub [ 91.465178][ T4759] hub 6-1:1.0: probe with driver hub failed with error -5 [ 91.467784][ T4759] cdc_wdm 6-1:1.0: skipping garbage [ 91.469525][ T4759] cdc_wdm 6-1:1.0: skipping garbage [ 91.471982][ T4759] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device [ 91.474385][ T4759] cdc_wdm 6-1:1.0: Unknown control protocol [ 91.590759][ T7411] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 91.865915][ C2] wdm_int_callback: 11970 callbacks suppressed [ 91.865938][ C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 91.871336][ C2] wdm_int_callback: 11970 callbacks suppressed [ 91.871347][ C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 91.875473][ C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 91.877568][ C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 91.879733][ C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 91.881980][ C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 91.884351][ C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 91.886454][ C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 91.888592][ C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 91.890685][ C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 91.893244][ C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 91.896554][ C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 91.899367][ C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 91.902780][ C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 91.913228][ C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 91.916053][ C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 91.922401][ C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 91.925209][ C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 91.927258][ T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!! [ 91.930346][ C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 91.932135][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 91.933090][ C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 91.941163][ T7425] netlink: 28 bytes leftover after parsing attributes in process `syz.0.523'. [ 91.947322][ T7425] netlink: 28 bytes leftover after parsing attributes in process `syz.0.523'. [ 91.954465][ T7425] netlink: 28 bytes leftover after parsing attributes in process `syz.0.523'. [ 91.958395][ T7425] netlink: 28 bytes leftover after parsing attributes in process `syz.0.523'. [ 91.970067][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 92.838441][ T7467] netlink: 8 bytes leftover after parsing attributes in process `syz.2.540'. [ 93.216038][ T5301] Bluetooth: Unknown BR/EDR signaling command 0x10 [ 93.218814][ T5301] Bluetooth: Wrong link type (-22) [ 93.493500][ T9] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 93.644607][ T9] usb 7-1: Using ep0 maxpacket: 32 [ 93.648825][ T9] usb 7-1: config index 0 descriptor too short (expected 29220, got 36) [ 93.651972][ T9] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 93.655767][ T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 93.660009][ T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 93.664032][ T9] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 93.667980][ T9] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 93.674728][ T9] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 93.677625][ T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 93.681347][ T9] usb 7-1: config 0 descriptor?? [ 93.889227][ T9] usblp 7-1:0.0: usblp1: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 93.903430][ T9] usb 7-1: USB disconnect, device number 4 [ 93.916702][ T9] usblp1: removed [ 93.988665][ C2] cdc_wdm 6-1:1.0: wdm_int_callback - usb_submit_urb failed with result -1 [ 94.013766][ T4759] usb 6-1: USB disconnect, device number 2 [ 94.226744][ T7500] tipc: Enabled bearer , priority 0 [ 94.286576][ T7500] syzkaller0: entered promiscuous mode [ 94.288888][ T7500] syzkaller0: entered allmulticast mode [ 94.291213][ T7500] tipc: Resetting bearer [ 94.323038][ T7499] tipc: Resetting bearer [ 94.416003][ T9] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 94.573474][ T9] usb 7-1: Using ep0 maxpacket: 32 [ 94.580590][ T9] usb 7-1: config index 0 descriptor too short (expected 29220, got 36) [ 94.583866][ T9] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 94.587479][ T9] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 94.591190][ T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 94.595164][ T9] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 94.599156][ T9] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 94.605359][ T9] usb 7-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 94.609084][ T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 94.616063][ T9] usb 7-1: config 0 descriptor?? [ 94.832740][ T9] usblp 7-1:0.0: usblp0: USB Bidirectional printer dev 5 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 95.160011][ T7499] tipc: Disabling bearer [ 95.182743][ T7503] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 95.185044][ T7503] Bluetooth: hci0: Error when powering off device on rfkill (-4) [ 95.192880][ T7503] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 95.195135][ T7503] Bluetooth: hci2: Error when powering off device on rfkill (-4) [ 95.200206][ T7503] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 95.202728][ T7503] Bluetooth: hci1: Error when powering off device on rfkill (-4) [ 95.210712][ T7503] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 95.213281][ T7503] Bluetooth: hci3: Error when powering off device on rfkill (-4) [ 95.273841][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 95.383157][ T5978] usb 7-1: USB disconnect, device number 5 [ 95.402540][ T5978] usblp0: removed [ 95.973376][ T5943] usb 8-1: new low-speed USB device number 7 using dummy_hcd [ 96.113106][ T40] kauditd_printk_skb: 67 callbacks suppressed [ 96.113123][ T40] audit: type=1326 audit(1762265121.830:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7576 comm="syz.1.569" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 96.139184][ T40] audit: type=1326 audit(1762265121.830:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7576 comm="syz.1.569" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 96.148817][ T40] audit: type=1326 audit(1762265121.840:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7576 comm="syz.1.569" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 96.158256][ T40] audit: type=1326 audit(1762265121.840:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7576 comm="syz.1.569" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 96.163276][ T5943] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 96.168040][ T40] audit: type=1326 audit(1762265121.840:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7576 comm="syz.1.569" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 96.170926][ T5943] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 96.183048][ T40] audit: type=1326 audit(1762265121.840:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7576 comm="syz.1.569" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 96.183088][ T40] audit: type=1326 audit(1762265121.840:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7576 comm="syz.1.569" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 96.183125][ T40] audit: type=1326 audit(1762265121.840:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7576 comm="syz.1.569" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 96.183170][ T40] audit: type=1326 audit(1762265121.840:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7576 comm="syz.1.569" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 96.183206][ T40] audit: type=1326 audit(1762265121.840:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7576 comm="syz.1.569" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 96.221514][ T5943] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8 [ 96.225194][ T5943] usb 8-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 96.228725][ T5943] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 96.234274][ T7543] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 96.238108][ T5943] hub 8-1:1.0: bad descriptor, ignoring hub [ 96.240098][ T5943] hub 8-1:1.0: probe with driver hub failed with error -5 [ 96.243168][ T5943] cdc_wdm 8-1:1.0: skipping garbage [ 96.245860][ T5943] cdc_wdm 8-1:1.0: skipping garbage [ 96.248225][ T5943] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device [ 96.250184][ T5943] cdc_wdm 8-1:1.0: Unknown control protocol [ 96.320158][ T7586] netlink: 'syz.0.571': attribute type 12 has an invalid length. [ 96.371015][ T7590] netlink: 8 bytes leftover after parsing attributes in process `syz.0.573'. [ 96.873378][ C3] wdm_int_callback: 11582 callbacks suppressed [ 96.873400][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 96.877393][ C3] wdm_int_callback: 11582 callbacks suppressed [ 96.877406][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 96.881485][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 96.883923][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 96.886476][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 96.888864][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 96.890835][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 96.893446][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 96.895948][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 96.898163][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 96.900410][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 96.902871][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 96.905410][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 96.907283][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 96.909707][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 96.911805][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 96.913880][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 96.916290][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 96.918207][ C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71 [ 96.920525][ C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes [ 97.543381][ T6021] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 98.582576][ T7640] netlink: 24 bytes leftover after parsing attributes in process `syz.2.591'. [ 98.673939][ T4759] usb 8-1: USB disconnect, device number 7 [ 98.705751][ T7643] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3821099475 (7642198950 ns) > initial count (2842047336 ns). Using initial count to start timer. [ 98.725551][ T7643] kvm: pic: non byte read [ 98.730653][ T7643] kvm: pic: single mode not supported [ 98.731137][ T7643] kvm: pic: non byte read [ 98.740476][ T7643] kvm: pic: single mode not supported [ 98.740906][ T7643] kvm: pic: non byte read [ 98.748404][ T7643] kvm: pic: non byte read [ 98.752678][ T7643] kvm: pic: non byte read [ 98.757193][ T7643] kvm: pic: non byte read [ 98.761676][ T7643] kvm: pic: non byte read [ 98.766137][ T7643] kvm: pic: non byte read [ 98.770434][ T7643] kvm: pic: non byte read [ 98.838858][ T7654] netlink: 91 bytes leftover after parsing attributes in process `syz.2.595'. [ 99.703475][ T10] usb 7-1: new low-speed USB device number 6 using dummy_hcd [ 99.855318][ T10] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 99.858690][ T10] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 99.861645][ T10] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 8 [ 99.865460][ T10] usb 7-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 99.868537][ T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 99.873264][ T7683] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 99.880140][ T10] hub 7-1:1.0: bad descriptor, ignoring hub [ 99.882661][ T10] hub 7-1:1.0: probe with driver hub failed with error -5 [ 99.885567][ T10] cdc_wdm 7-1:1.0: skipping garbage [ 99.887438][ T10] cdc_wdm 7-1:1.0: skipping garbage [ 99.889807][ T10] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device [ 99.891731][ T10] cdc_wdm 7-1:1.0: Unknown control protocol [ 99.958411][ T7694] trusted_key: syz.0.610 sent an empty control message without MSG_MORE. [ 100.096586][ T7700] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2898581692 (23188653536 ns) > initial count (6059612160 ns). Using initial count to start timer. [ 101.716888][ T7746] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 101.883366][ C3] wdm_int_callback: 17312 callbacks suppressed [ 101.883389][ C3] cdc_wdm 7-1:1.0: nonzero urb status received: -71 [ 101.889711][ C3] wdm_int_callback: 17312 callbacks suppressed [ 101.889730][ C3] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes [ 101.895197][ C3] cdc_wdm 7-1:1.0: nonzero urb status received: -71 [ 101.898051][ C3] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes [ 101.900834][ C3] cdc_wdm 7-1:1.0: nonzero urb status received: -71 [ 101.903676][ C3] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes [ 101.906568][ C3] cdc_wdm 7-1:1.0: nonzero urb status received: -71 [ 101.909334][ C3] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes [ 101.913526][ C3] cdc_wdm 7-1:1.0: nonzero urb status received: -71 [ 101.916348][ C3] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes [ 101.919172][ C3] cdc_wdm 7-1:1.0: nonzero urb status received: -71 [ 101.921970][ C3] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes [ 101.925617][ C3] cdc_wdm 7-1:1.0: nonzero urb status received: -71 [ 101.928427][ C3] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes [ 101.931243][ C3] cdc_wdm 7-1:1.0: nonzero urb status received: -71 [ 101.934057][ C3] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes [ 101.936890][ C3] cdc_wdm 7-1:1.0: nonzero urb status received: -71 [ 101.939740][ C3] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes [ 101.943549][ C3] cdc_wdm 7-1:1.0: nonzero urb status received: -71 [ 101.946449][ C3] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes [ 102.053410][ T40] kauditd_printk_skb: 8 callbacks suppressed [ 102.053426][ T40] audit: type=1804 audit(1762265127.740:215): pid=7756 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.633" name="file0" dev="hugetlbfs" ino=21710 res=1 errno=0 [ 102.434527][ T5978] usb 7-1: USB disconnect, device number 6 [ 102.821908][ T10] libceph: connect (1)[c::]:6789 error -101 [ 102.826520][ T10] libceph: mon0 (1)[c::]:6789 connect error [ 102.831035][ T10] libceph: connect (1)[c::]:6789 error -101 [ 102.833208][ T10] libceph: mon0 (1)[c::]:6789 connect error [ 102.862848][ T7773] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 102.902348][ T7769] ceph: No mds server is up or the cluster is laggy [ 103.198933][ T7782] warning: `syz.0.650' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 103.738869][ T7794] netlink: 40 bytes leftover after parsing attributes in process `syz.0.646'. [ 104.837460][ T7837] netlink: 12 bytes leftover after parsing attributes in process `syz.2.663'. [ 104.870162][ T7837] macvlan2: entered promiscuous mode [ 104.872018][ T7837] macvlan2: entered allmulticast mode [ 104.875302][ T7837] bond1: (slave macvlan2): Opening slave failed [ 105.132927][ T7842] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.137050][ T7842] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.204358][ T7842] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 105.211048][ T7842] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 105.341805][ T1189] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.346051][ T1189] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.351193][ T1189] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 105.355225][ T1189] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.558520][ T7880] VFS: Warning: syz.2.677 using old stat() call. Recompile your binary. [ 106.946637][ T5978] libceph: connect (1)[c::]:6789 error -101 [ 106.948800][ T5978] libceph: mon0 (1)[c::]:6789 connect error [ 107.044505][ T7897] ceph: No mds server is up or the cluster is laggy [ 107.191014][ T7909] VFS: Warning: syz.1.687 using old stat() call. Recompile your binary. [ 107.483511][ T5978] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 107.654939][ T5978] usb 6-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 107.657962][ T5978] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 107.662000][ T5978] usb 6-1: config 0 descriptor?? [ 108.061562][ T40] audit: type=1326 audit(1762265133.780:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7917 comm="syz.3.694" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7fc00000 [ 108.072070][ T7911] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 108.076742][ T7911] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 108.286487][ T5978] usb 6-1: Cannot set MAC address [ 108.289096][ T5978] MOSCHIP usb-ethernet driver 6-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71 [ 108.303389][ T5978] usb 6-1: USB disconnect, device number 4 [ 108.738874][ T40] audit: type=1326 audit(1762265134.460:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7917 comm="syz.3.694" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f21579 code=0x7fc00000 [ 109.055963][ T7952] VFS: Warning: syz.0.706 using old stat() call. Recompile your binary. [ 109.754653][ T7963] netlink: 12 bytes leftover after parsing attributes in process `syz.3.709'. [ 109.973848][ T7983] bridge0: port 2(bridge_slave_1) entered disabled state [ 109.977068][ T7983] bridge0: port 1(bridge_slave_0) entered disabled state [ 110.036998][ T7983] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 110.043271][ T7983] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 110.087770][ T12] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.090779][ T12] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.094242][ T12] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.096996][ T12] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.150806][ T40] audit: type=1326 audit(1762265135.870:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.721" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 110.158316][ T40] audit: type=1326 audit(1762265135.870:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.721" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 110.165265][ T40] audit: type=1326 audit(1762265135.890:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.721" exe="/syz-executor" sig=0 arch=40000003 syscall=168 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 110.172444][ T40] audit: type=1326 audit(1762265135.890:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.721" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 110.179051][ T40] audit: type=1326 audit(1762265135.890:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.721" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 110.187184][ T40] audit: type=1326 audit(1762265135.890:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.721" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 110.193960][ T40] audit: type=1326 audit(1762265135.890:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.721" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 110.200603][ T40] audit: type=1326 audit(1762265135.890:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7994 comm="syz.3.721" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 110.825045][ T8028] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 110.829670][ T8028] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 113.445501][ T841] libceph: connect (1)[c::]:6789 error -101 [ 113.448181][ T841] libceph: mon0 (1)[c::]:6789 connect error [ 113.543384][ T8078] ceph: No mds server is up or the cluster is laggy [ 114.053147][ T8086] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 114.108145][ T8090] netlink: 4 bytes leftover after parsing attributes in process `syz.1.758'. [ 114.113711][ T8090] netlink: 4 bytes leftover after parsing attributes in process `syz.1.758'. [ 114.117617][ T8090] netlink: 4 bytes leftover after parsing attributes in process `syz.1.758'. [ 114.121697][ T8090] netlink: 4 bytes leftover after parsing attributes in process `syz.1.758'. [ 114.156366][ T8086] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 114.236057][ T8086] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 114.316608][ T8086] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 114.417560][ T12] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.428022][ T12] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.438068][ T12] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.447884][ T12] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.733743][ T4759] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 114.885122][ T4759] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 114.891220][ T4759] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41 [ 114.895283][ T4759] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11 [ 114.898038][ T4759] usb 5-1: Product: syz [ 114.899406][ T4759] usb 5-1: Manufacturer: syz [ 114.901025][ T4759] usb 5-1: SerialNumber: syz [ 115.125568][ T4759] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 4 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 116.845312][ C2] usblp0: nonzero write bulk status received: -71 [ 116.846254][ T841] usb 5-1: USB disconnect, device number 4 [ 116.851764][ T841] usblp0: removed [ 116.945772][ T8152] comedi comedi3: comedi_test: 6 microvolt, 2047 microsecond waveform attached [ 117.002364][ T40] kauditd_printk_skb: 13 callbacks suppressed [ 117.002379][ T40] audit: type=1326 audit(1762265142.720:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8153 comm="syz.1.786" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 117.011408][ T40] audit: type=1326 audit(1762265142.720:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8153 comm="syz.1.786" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 117.018490][ T40] audit: type=1326 audit(1762265142.720:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8153 comm="syz.1.786" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 117.026056][ T40] audit: type=1326 audit(1762265142.720:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8153 comm="syz.1.786" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 117.034056][ T40] audit: type=1326 audit(1762265142.720:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8153 comm="syz.1.786" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 117.040899][ T40] audit: type=1326 audit(1762265142.720:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8153 comm="syz.1.786" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 117.047709][ T40] audit: type=1326 audit(1762265142.730:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8153 comm="syz.1.786" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 117.054636][ T40] audit: type=1326 audit(1762265142.730:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8153 comm="syz.1.786" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 117.061538][ T40] audit: type=1326 audit(1762265142.730:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8153 comm="syz.1.786" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 117.070515][ T40] audit: type=1326 audit(1762265142.730:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8153 comm="syz.1.786" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 119.178628][ T8198] binder: 8196:8198 ioctl c0306201 80000640 returned -22 [ 119.647971][ T1189] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.718410][ T8214] netlink: 2048 bytes leftover after parsing attributes in process `syz.0.807'. [ 119.721436][ T8214] netlink: 4 bytes leftover after parsing attributes in process `syz.0.807'. [ 119.762154][ T1189] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.830560][ T1189] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.879331][ T5940] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 119.882794][ T5940] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 119.886338][ T5940] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 119.889978][ T5940] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 119.892617][ T5940] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 119.899527][ T5301] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 119.903921][ T5301] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 119.906965][ T5301] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 119.907930][ T1189] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.910020][ T5301] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 119.916468][ T5301] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 120.039796][ T1189] bridge_slave_1: left allmulticast mode [ 120.041573][ T1189] bridge_slave_1: left promiscuous mode [ 120.044992][ T1189] bridge0: port 2(bridge_slave_1) entered disabled state [ 120.049477][ T1189] bridge_slave_0: left allmulticast mode [ 120.051131][ T1189] bridge_slave_0: left promiscuous mode [ 120.052804][ T1189] bridge0: port 1(bridge_slave_0) entered disabled state [ 120.386391][ T1189] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 120.391451][ T1189] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 120.395969][ T1189] bond0 (unregistering): Released all slaves [ 120.402323][ T1189] bond1 (unregistering): Released all slaves [ 120.409426][ T8217] chnl_net:caif_netlink_parms(): no params data found [ 120.484050][ T8217] bridge0: port 1(bridge_slave_0) entered blocking state [ 120.486794][ T8217] bridge0: port 1(bridge_slave_0) entered disabled state [ 120.489170][ T8217] bridge_slave_0: entered allmulticast mode [ 120.491879][ T8217] bridge_slave_0: entered promiscuous mode [ 120.496498][ T8217] bridge0: port 2(bridge_slave_1) entered blocking state [ 120.498809][ T8217] bridge0: port 2(bridge_slave_1) entered disabled state [ 120.501234][ T8217] bridge_slave_1: entered allmulticast mode [ 120.503939][ T8217] bridge_slave_1: entered promiscuous mode [ 120.570763][ T8217] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 120.575570][ T8217] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 120.609140][ T8217] team0: Port device team_slave_0 added [ 120.612423][ T8217] team0: Port device team_slave_1 added [ 120.678798][ T8217] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 120.681776][ T8217] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 120.693648][ T8217] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 120.702709][ T8217] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 120.705745][ T8217] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 120.717070][ T8217] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 120.732807][ T1189] hsr_slave_0: left promiscuous mode [ 120.736005][ T1189] hsr_slave_1: left promiscuous mode [ 120.738868][ T1189] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 120.741975][ T1189] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 120.746254][ T1189] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 120.749112][ T1189] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 120.771006][ T1189] veth1_macvtap: left promiscuous mode [ 120.772938][ T1189] veth0_macvtap: left promiscuous mode [ 120.774808][ T1189] veth1_vlan: left promiscuous mode [ 120.776521][ T1189] veth0_vlan: left promiscuous mode [ 121.376967][ T1189] team0 (unregistering): Port device team_slave_1 removed [ 121.432149][ T1189] team0 (unregistering): Port device team_slave_0 removed [ 121.862649][ T8217] hsr_slave_0: entered promiscuous mode [ 121.865102][ T8217] hsr_slave_1: entered promiscuous mode [ 121.867168][ T8217] debugfs: 'hsr0' already exists in 'hsr' [ 121.869027][ T8217] Cannot create hsr debugfs directory [ 121.965495][ T5301] Bluetooth: hci2: command tx timeout [ 122.034220][ T8217] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 122.046295][ T8217] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 122.055327][ T8217] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 122.061907][ T8217] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 122.136166][ T8217] 8021q: adding VLAN 0 to HW filter on device bond0 [ 122.149325][ T8217] 8021q: adding VLAN 0 to HW filter on device team0 [ 122.156406][ T46] bridge0: port 1(bridge_slave_0) entered blocking state [ 122.158686][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state [ 122.166896][ T61] bridge0: port 2(bridge_slave_1) entered blocking state [ 122.169653][ T61] bridge0: port 2(bridge_slave_1) entered forwarding state [ 122.322279][ T8217] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 122.463464][ T8217] veth0_vlan: entered promiscuous mode [ 122.471143][ T8217] veth1_vlan: entered promiscuous mode [ 122.491189][ T8217] veth0_macvtap: entered promiscuous mode [ 122.497456][ T8217] veth1_macvtap: entered promiscuous mode [ 122.507166][ T8217] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 122.511449][ T8217] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 122.522356][ T61] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.526905][ T61] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.531338][ T61] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.535551][ T61] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.574867][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.578230][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.592466][ T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.596344][ T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 123.901222][ T40] kauditd_printk_skb: 8 callbacks suppressed [ 123.901232][ T40] audit: type=1326 audit(1762265149.620:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8326 comm="syz.3.832" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x0 [ 123.933177][ T8328] sctp: [Deprecated]: syz.1.831 (pid 8328) Use of struct sctp_assoc_value in delayed_ack socket option. [ 123.933177][ T8328] Use struct sctp_sack_info instead [ 123.973649][ T5978] usb 9-1: new high-speed USB device number 2 using dummy_hcd [ 124.043559][ T5301] Bluetooth: hci2: command tx timeout [ 124.133417][ T5978] usb 9-1: Using ep0 maxpacket: 16 [ 124.137034][ T5978] usb 9-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 124.140237][ T5978] usb 9-1: config 1 has no interface number 1 [ 124.142364][ T5978] usb 9-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 124.147965][ T5978] usb 9-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 124.153144][ T5978] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 124.155990][ T5978] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 124.158456][ T5978] usb 9-1: Product: syz [ 124.159788][ T5978] usb 9-1: Manufacturer: syz [ 124.161317][ T5978] usb 9-1: SerialNumber: syz [ 124.381595][ T5978] usb 9-1: 2:1 : no UAC_FORMAT_TYPE desc [ 124.397623][ T5978] usb 9-1: USB disconnect, device number 2 [ 124.411183][ T6954] udevd[6954]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb9/9-1/9-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 124.755973][ T8334] lo: entered allmulticast mode [ 124.758102][ T8334] tunl0: entered allmulticast mode [ 124.759948][ T8334] gre0: entered allmulticast mode [ 124.761850][ T8334] gretap0: entered allmulticast mode [ 124.765152][ T8334] erspan0: entered allmulticast mode [ 124.767089][ T8334] ip_vti0: entered allmulticast mode [ 124.769346][ T8334] ip6_vti0: entered allmulticast mode [ 124.771732][ T8334] sit0: entered allmulticast mode [ 124.774129][ T8334] ip6tnl0: entered allmulticast mode [ 124.776435][ T8334] ip6gre0: entered allmulticast mode [ 124.778780][ T8334] syz_tun: entered allmulticast mode [ 124.781091][ T8334] ip6gretap0: entered allmulticast mode [ 124.783007][ T8334] bridge0: entered allmulticast mode [ 124.784913][ T8334] bond0: entered allmulticast mode [ 124.787204][ T8334] bond_slave_0: entered allmulticast mode [ 124.789484][ T8334] bond_slave_1: entered allmulticast mode [ 124.791559][ T8334] team0: entered allmulticast mode [ 124.793415][ T8334] team_slave_0: entered allmulticast mode [ 124.795180][ T8334] team_slave_1: entered allmulticast mode [ 124.797382][ T8334] dummy0: entered allmulticast mode [ 124.800384][ T8334] nlmon0: entered allmulticast mode [ 124.802932][ T8334] caif0: entered allmulticast mode [ 124.805189][ T8334] batadv0: entered allmulticast mode [ 124.807138][ T8334] vxcan0: entered allmulticast mode [ 124.809339][ T8334] vxcan1: entered allmulticast mode [ 124.811671][ T8334] veth0: entered allmulticast mode [ 124.814242][ T8334] veth1: entered allmulticast mode [ 124.816670][ T8334] wg0: entered allmulticast mode [ 124.818931][ T8334] wg1: entered allmulticast mode [ 124.821388][ T8334] wg2: entered allmulticast mode [ 124.823838][ T8334] veth0_to_bridge: entered allmulticast mode [ 124.826386][ T8334] veth1_to_bridge: entered allmulticast mode [ 124.829366][ T8334] veth0_to_bond: entered allmulticast mode [ 124.832141][ T8334] veth1_to_bond: entered allmulticast mode [ 124.835896][ T8334] veth0_to_team: entered allmulticast mode [ 124.838821][ T8334] veth1_to_team: entered allmulticast mode [ 124.841758][ T8334] veth0_to_batadv: entered allmulticast mode [ 124.845245][ T8334] batadv_slave_0: entered allmulticast mode [ 124.848040][ T8334] veth1_to_batadv: entered allmulticast mode [ 124.850720][ T8334] batadv_slave_1: entered allmulticast mode [ 124.852948][ T8334] xfrm0: entered allmulticast mode [ 124.854837][ T8334] veth0_to_hsr: entered allmulticast mode [ 124.856812][ T8334] hsr_slave_0: entered allmulticast mode [ 124.859246][ T8334] veth1_to_hsr: entered allmulticast mode [ 124.861286][ T8334] hsr_slave_1: entered allmulticast mode [ 124.863552][ T8334] hsr0: entered allmulticast mode [ 124.866179][ T8334] veth1_virt_wifi: entered allmulticast mode [ 124.868534][ T8334] veth0_virt_wifi: entered allmulticast mode [ 124.870723][ T8334] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 124.873260][ T8334] veth1_vlan: entered allmulticast mode [ 124.875842][ T8334] veth0_vlan: entered allmulticast mode [ 124.877856][ T8334] vlan0: entered allmulticast mode [ 124.880001][ T8334] vlan1: entered allmulticast mode [ 124.881840][ T8334] macvlan0: entered allmulticast mode [ 124.883890][ T8334] macvlan1: entered allmulticast mode [ 124.885811][ T8334] ipvlan0: entered allmulticast mode [ 124.887715][ T8334] ipvlan1: entered allmulticast mode [ 124.889566][ T8334] veth1_macvtap: entered allmulticast mode [ 124.891593][ T8334] veth0_macvtap: entered allmulticast mode [ 124.893848][ T8334] macvtap0: entered allmulticast mode [ 124.896691][ T8334] macsec0: entered allmulticast mode [ 124.898768][ T8334] geneve0: entered allmulticast mode [ 124.901385][ T8334] geneve1: entered allmulticast mode [ 124.904053][ T8334] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode [ 124.906595][ T8334] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode [ 124.909548][ T8334] netdevsim netdevsim1 eth0: entered allmulticast mode [ 124.911993][ T8334] netdevsim netdevsim1 eth1: entered allmulticast mode [ 124.914588][ T8334] netdevsim netdevsim1 eth2: entered allmulticast mode [ 124.917057][ T8334] netdevsim netdevsim1 eth3: entered allmulticast mode [ 124.922311][ T8334] syzkaller0: entered allmulticast mode [ 124.924752][ T8341] syzkaller0: entered promiscuous mode [ 125.383233][ T8372] netlink: 'syz.1.847': attribute type 1 has an invalid length. [ 125.403544][ T8372] 8021q: adding VLAN 0 to HW filter on device bond1 [ 125.426579][ T8372] dummy0: left allmulticast mode [ 125.434307][ T8372] bond1: (slave dummy0): making interface the new active one [ 125.439553][ T8372] bond1: (slave dummy0): Enslaving as an active interface with an up link [ 126.123463][ T5301] Bluetooth: hci2: command tx timeout [ 126.923833][ T10] usb 8-1: new high-speed USB device number 8 using dummy_hcd [ 127.073481][ T10] usb 8-1: Using ep0 maxpacket: 32 [ 127.077724][ T10] usb 8-1: config 0 has no interfaces? [ 127.083026][ T10] usb 8-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb [ 127.087612][ T10] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 127.090986][ T10] usb 8-1: Product: syz [ 127.092579][ T10] usb 8-1: Manufacturer: syz [ 127.094176][ T10] usb 8-1: SerialNumber: syz [ 127.097446][ T10] usb 8-1: config 0 descriptor?? [ 127.307824][ T4759] usb 8-1: USB disconnect, device number 8 [ 128.203400][ T5301] Bluetooth: hci2: command tx timeout [ 128.482290][ T8490] netlink: 12 bytes leftover after parsing attributes in process `syz.3.886'. [ 129.473415][ T10] usb 5-1: new low-speed USB device number 5 using dummy_hcd [ 129.644719][ T10] usb 5-1: config 0 has an invalid interface number: 1 but max is 0 [ 129.648171][ T10] usb 5-1: config 0 has no interface number 0 [ 129.650281][ T10] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10 [ 129.654887][ T10] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8 [ 129.658769][ T10] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 129.662186][ T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 129.669862][ T10] usb 5-1: config 0 descriptor?? [ 129.672110][ T8513] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 129.676923][ T8526] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 129.677050][ T10] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 129.934931][ T24] usb 5-1: USB disconnect, device number 5 [ 129.934975][ C0] iowarrior 5-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19 [ 130.263470][ T10] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 130.423405][ T10] usb 9-1: Using ep0 maxpacket: 8 [ 130.426479][ T10] usb 9-1: config index 0 descriptor too short (expected 301, got 45) [ 130.429282][ T10] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 130.432910][ T10] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 130.436312][ T10] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 130.440526][ T10] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 130.441191][ T8544] netlink: 4 bytes leftover after parsing attributes in process `syz.1.905'. [ 130.445406][ T10] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 130.445421][ T10] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 130.465791][ T8544] netlink: 4 bytes leftover after parsing attributes in process `syz.1.905'. [ 130.661989][ T10] usb 9-1: GET_CAPABILITIES returned 0 [ 130.664250][ T10] usbtmc 9-1:16.0: can't read capabilities [ 130.731192][ T8561] syzkaller0: entered promiscuous mode [ 130.733769][ T8561] syzkaller0: entered allmulticast mode [ 130.919686][ T10] usb 9-1: USB disconnect, device number 3 [ 131.117325][ T8576] tipc: Enabled bearer , priority 0 [ 131.120501][ T8576] syzkaller0: MTU too low for tipc bearer [ 131.122390][ T8576] tipc: Disabling bearer [ 131.516986][ T8588] orangefs_devreq_open: device cannot be opened in blocking mode [ 131.887411][ T8614] netlink: 'syz.1.933': attribute type 10 has an invalid length. [ 131.890066][ T8614] mac80211_hwsim hwsim3 wlan1: left allmulticast mode [ 131.993195][ T40] audit: type=1326 audit(1762265157.710:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8620 comm="syz.1.935" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 132.002881][ T40] audit: type=1326 audit(1762265157.710:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8620 comm="syz.1.935" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 132.012391][ T40] audit: type=1326 audit(1762265157.720:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8620 comm="syz.1.935" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 132.021294][ T40] audit: type=1326 audit(1762265157.720:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8620 comm="syz.1.935" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 132.032235][ T40] audit: type=1326 audit(1762265157.720:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8620 comm="syz.1.935" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 132.040310][ T40] audit: type=1326 audit(1762265157.720:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8620 comm="syz.1.935" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 132.048040][ T40] audit: type=1326 audit(1762265157.720:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8620 comm="syz.1.935" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 132.056299][ T40] audit: type=1326 audit(1762265157.720:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8620 comm="syz.1.935" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 132.063961][ T40] audit: type=1326 audit(1762265157.720:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8620 comm="syz.1.935" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 132.070914][ T40] audit: type=1326 audit(1762265157.720:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8620 comm="syz.1.935" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d579 code=0x7ffc0000 [ 132.283468][ T5978] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 132.433397][ T5978] usb 6-1: Using ep0 maxpacket: 32 [ 132.436518][ T5978] usb 6-1: config 0 has no interfaces? [ 132.439862][ T5978] usb 6-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb [ 132.442777][ T5978] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 132.445523][ T5978] usb 6-1: Product: syz [ 132.446853][ T5978] usb 6-1: Manufacturer: syz [ 132.448651][ T5978] usb 6-1: SerialNumber: syz [ 132.451440][ T5978] usb 6-1: config 0 descriptor?? [ 132.661028][ T5978] usb 6-1: USB disconnect, device number 5 [ 133.212295][ T8661] ipvlan2: entered allmulticast mode [ 133.413426][ T5978] usb 8-1: new full-speed USB device number 9 using dummy_hcd [ 133.575354][ T5978] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10 [ 133.580111][ T5978] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64 [ 133.585748][ T5978] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 133.589872][ T5978] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 133.597347][ T8659] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 133.600936][ T8659] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 133.608704][ T5978] usb 8-1: Quirk or no altset; falling back to MIDI 1.0 [ 133.724942][ T8679] gtp0: entered promiscuous mode [ 133.792749][ T8687] netlink: 4 bytes leftover after parsing attributes in process `syz.1.959'. [ 133.818926][ T5978] usb 8-1: USB disconnect, device number 9 [ 133.898128][ T8695] netlink: 2028 bytes leftover after parsing attributes in process `syz.1.960'. [ 133.901486][ T8695] netlink: 20 bytes leftover after parsing attributes in process `syz.1.960'. [ 134.182269][ T8713] netlink: 'syz.4.964': attribute type 1 has an invalid length. [ 134.198185][ T8713] 8021q: adding VLAN 0 to HW filter on device bond1 [ 134.210571][ T8713] bond1: (slave dummy0): making interface the new active one [ 134.213677][ T8713] bond1: (slave dummy0): Enslaving as an active interface with an up link [ 134.803416][ T841] usb 8-1: new high-speed USB device number 10 using dummy_hcd [ 134.944220][ T8749] syzkaller0: entered promiscuous mode [ 134.946084][ T8749] syzkaller0: entered allmulticast mode [ 134.956099][ T841] usb 8-1: Using ep0 maxpacket: 8 [ 134.961178][ T841] usb 8-1: config index 0 descriptor too short (expected 301, got 45) [ 134.965179][ T841] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 134.969207][ T841] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 134.973556][ T841] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 134.977704][ T841] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 134.983096][ T841] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 134.988579][ T841] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 135.011257][ T8754] netlink: 8 bytes leftover after parsing attributes in process `syz.1.977'. [ 135.213274][ T841] usb 8-1: GET_CAPABILITIES returned 0 [ 135.216030][ T841] usbtmc 8-1:16.0: can't read capabilities [ 135.471993][ T4759] usb 8-1: USB disconnect, device number 10 [ 136.244673][ T8797] netlink: 60 bytes leftover after parsing attributes in process `syz.3.991'. [ 136.388166][ T8807] netlink: 8 bytes leftover after parsing attributes in process `syz.3.996'. [ 137.124634][ T40] kauditd_printk_skb: 12 callbacks suppressed [ 137.124644][ T40] audit: type=1800 audit(1762265162.850:280): pid=8827 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1004" name="bus" dev="overlay" ino=1316 res=0 errno=0 [ 137.180669][ T40] audit: type=1326 audit(1762265162.900:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.3.1005" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 137.189359][ T40] audit: type=1326 audit(1762265162.900:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.3.1005" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 137.198341][ T40] audit: type=1326 audit(1762265162.900:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.3.1005" exe="/syz-executor" sig=0 arch=40000003 syscall=174 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 137.208350][ T40] audit: type=1326 audit(1762265162.900:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.3.1005" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 137.217629][ T40] audit: type=1326 audit(1762265162.900:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.3.1005" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 137.226755][ T40] audit: type=1326 audit(1762265162.900:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.3.1005" exe="/syz-executor" sig=0 arch=40000003 syscall=168 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 137.233860][ T40] audit: type=1326 audit(1762265162.910:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.3.1005" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 137.240493][ T40] audit: type=1326 audit(1762265162.910:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.3.1005" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 137.247402][ T40] audit: type=1326 audit(1762265162.910:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.3.1005" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f21579 code=0x7ffc0000 [ 137.487230][ T1420] ieee802154 phy0 wpan0: encryption failed: -22 [ 137.489337][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 137.833064][ T8852] ptrace attach of "/syz-executor exec"[5938] was attempted by ""[8852] [ 138.469000][ T8892] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 138.471896][ T8892] overlayfs: failed to set xattr on upper [ 138.475421][ T8892] overlayfs: ...falling back to redirect_dir=nofollow. [ 138.478259][ T8892] overlayfs: ...falling back to index=off. [ 138.480839][ T8892] overlayfs: ...falling back to uuid=null. [ 138.490815][ T8892] overlayfs: overlay with incompat feature 'volatile' cannot be mounted [ 138.524081][ T8896] capability: warning: `syz.3.1027' uses deprecated v2 capabilities in a way that may be insecure [ 138.664455][ T8902] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 139.053870][ T8917] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1036'. [ 139.918174][ T8952] tipc: Enabled bearer , priority 0 [ 139.923641][ T8952] syzkaller0: MTU too low for tipc bearer [ 139.926029][ T8952] tipc: Disabling bearer [ 140.200676][ T8962] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1054'. [ 140.835248][ T8998] fuse: Bad value for 'fd' [ 142.049138][ T9057] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1092'. [ 142.244997][ T841] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 142.299446][ T9076] : renamed from dummy0 [ 142.405875][ T841] usb 6-1: config index 0 descriptor too short (expected 23569, got 27) [ 142.410284][ T841] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 142.420641][ T841] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 142.425680][ T841] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 142.428923][ T841] usb 6-1: Manufacturer: syz [ 142.433591][ T841] usb 6-1: config 0 descriptor?? [ 142.484383][ T841] rc_core: IR keymap rc-hauppauge not found [ 142.486375][ T841] Registered IR keymap rc-empty [ 142.489174][ T841] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0 [ 142.498136][ T841] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input9 [ 142.548242][ T9097] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1108'. [ 142.561929][ T9097] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1108'. [ 142.643636][ T5943] usb 6-1: USB disconnect, device number 6 [ 142.677591][ T9105] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1113'. [ 142.782640][ T9113] netlink: 'syz.3.1116': attribute type 4 has an invalid length. [ 142.788793][ T9113] netlink: 'syz.3.1116': attribute type 4 has an invalid length. [ 143.255289][ T40] kauditd_printk_skb: 71 callbacks suppressed [ 143.255306][ T40] audit: type=1800 audit(1762265168.980:361): pid=9091 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1105" name="/" dev="fuse" ino=9 res=0 errno=0 [ 143.320076][ T40] audit: type=1326 audit(1762265169.040:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9135 comm="syz.0.1125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 143.337330][ T40] audit: type=1326 audit(1762265169.040:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9135 comm="syz.0.1125" exe="/syz-executor" sig=0 arch=40000003 syscall=174 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 143.367859][ T40] audit: type=1326 audit(1762265169.040:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9135 comm="syz.0.1125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 143.393371][ T40] audit: type=1326 audit(1762265169.040:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9135 comm="syz.0.1125" exe="/syz-executor" sig=0 arch=40000003 syscall=168 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 143.411656][ T40] audit: type=1326 audit(1762265169.060:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9135 comm="syz.0.1125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 143.421762][ T40] audit: type=1326 audit(1762265169.060:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9135 comm="syz.0.1125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 143.434274][ T40] audit: type=1326 audit(1762265169.060:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9135 comm="syz.0.1125" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 143.441083][ T40] audit: type=1326 audit(1762265169.060:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9135 comm="syz.0.1125" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 143.448545][ T40] audit: type=1326 audit(1762265169.060:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9135 comm="syz.0.1125" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fc5579 code=0x7ffc0000 [ 143.453465][ T9139] orangefs_devreq_write_iter: total:1: must be at least:8240: [ 144.008200][ T9172] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4269643866 (273257207424 ns) > initial count (189102574080 ns). Using initial count to start timer. [ 144.022853][ T9172] kvm: pic: non byte read [ 144.027676][ T9172] kvm: pic: level sensitive irq not supported [ 144.028149][ T9172] kvm: pic: non byte read [ 144.034338][ T9172] kvm: pic: single mode not supported [ 144.034351][ T9172] kvm: pic: level sensitive irq not supported [ 144.036805][ T9172] kvm: pic: non byte read [ 144.042154][ T9172] kvm: pic: level sensitive irq not supported [ 144.042462][ T9172] kvm: pic: non byte read [ 144.049560][ T9172] kvm: pic: non byte read [ 144.052762][ T9172] kvm: pic: single mode not supported [ 144.053151][ T9172] kvm: pic: non byte read [ 144.058640][ T9172] kvm: pic: non byte read [ 144.062110][ T9172] kvm: pic: non byte read [ 144.065498][ T9172] kvm: pic: non byte read [ 144.165874][ T9178] binder: 9176:9178 ioctl c0306201 80000080 returned -14 [ 144.808313][ T9202] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1149'. [ 144.846901][ T9202] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1149'. [ 145.140128][ T9211] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1154'. [ 145.145498][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 145.147931][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.150942][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.153717][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.156333][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.159004][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.161918][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.164630][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.167277][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.170069][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.172828][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.175417][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.178095][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.180853][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.183514][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.186143][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.188767][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.191359][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.194042][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.196634][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.199219][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.201823][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.204539][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.207143][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.209839][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.212498][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.215222][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.217800][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.220489][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.223075][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.225819][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.228433][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.231640][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.235043][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.238522][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.241962][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.245657][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.249167][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.252745][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.256388][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.259851][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.263427][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.266900][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.270479][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.274185][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.277595][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.281179][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.284709][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.287932][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.291437][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.295077][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.298365][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.301471][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.304112][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.306736][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.309315][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.312597][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.315681][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.318389][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.321016][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.323665][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.326224][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.328837][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.331510][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.334249][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.336870][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.339509][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.342580][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.345253][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.347740][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.350439][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.353071][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.355745][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.358328][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.361347][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.364222][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.367743][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.371124][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.374740][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.378189][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.381783][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.385357][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.388817][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.392120][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.395734][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.399310][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.402886][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.406589][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.410082][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.413662][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.417408][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.420864][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.424650][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.427510][ T9213] tmpfs: Bad value for 'mpol' [ 145.428111][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.428191][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.436894][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.440360][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.443910][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.447406][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.451314][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.455536][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.459576][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.463184][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.466150][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.468781][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.471330][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.473899][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.476465][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.479133][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.481716][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.484419][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.487062][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.489777][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.492374][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.495133][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.497657][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.500333][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 145.502852][ C0] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 145.739435][ T9231] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1162'. [ 145.749217][ T9235] netlink: 'syz.1.1161': attribute type 1 has an invalid length. [ 145.753155][ T9235] netlink: 16150 bytes leftover after parsing attributes in process `syz.1.1161'. [ 145.932832][ T9240] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1164'. [ 146.102072][ T9249] overlayfs: failed to clone upperpath [ 146.973980][ T9260] syz.4.1172 (9260): drop_caches: 2 [ 147.693475][ T842] usb 9-1: new full-speed USB device number 4 using dummy_hcd [ 147.875708][ T842] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 147.879346][ T842] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 147.883096][ T842] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 64 [ 147.888049][ T842] usb 9-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 147.891622][ T842] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 147.896698][ T9278] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 147.900052][ T842] hub 9-1:1.0: bad descriptor, ignoring hub [ 147.903148][ T842] hub 9-1:1.0: probe with driver hub failed with error -5 [ 147.906132][ T842] cdc_wdm 9-1:1.0: skipping garbage [ 147.907814][ T842] cdc_wdm 9-1:1.0: skipping garbage [ 147.910349][ T842] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device [ 147.912588][ T842] cdc_wdm 9-1:1.0: Unknown control protocol [ 148.828722][ T9278] usb 9-1: reset full-speed USB device number 4 using dummy_hcd [ 148.990366][ T9278] usb 9-1: device firmware changed [ 148.996757][ T842] usb 9-1: USB disconnect, device number 4 [ 148.998698][ T9278] cdc_wdm 9-1:1.0: Error autopm - -16 [ 149.133518][ T842] usb 9-1: new full-speed USB device number 5 using dummy_hcd [ 149.285856][ T842] usb 9-1: config 1 has an invalid descriptor of length 80, skipping remainder of the config [ 149.289230][ T842] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 149.292028][ T842] usb 9-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 149.296454][ T842] usb 9-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 149.299478][ T842] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 149.303792][ T9302] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 149.310470][ T842] hub 9-1:1.0: bad descriptor, ignoring hub [ 149.312783][ T842] hub 9-1:1.0: probe with driver hub failed with error -5 [ 149.332317][ T842] cdc_wdm 9-1:1.0: skipping garbage [ 149.334401][ T842] cdc_wdm 9-1:1.0: skipping garbage [ 149.336065][ T842] cdc_wdm 9-1:1.0: probe with driver cdc_wdm failed with error -22 [ 149.633524][ T842] usb 9-1: USB disconnect, device number 5 [ 149.770964][ T9356] ref_ctr going negative. vaddr: 0x80ffc002, curr val: -29824, delta: 1 [ 149.773383][ T40] kauditd_printk_skb: 13 callbacks suppressed [ 149.773394][ T40] audit: type=1804 audit(1762265175.490:384): pid=9356 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1207" name="file0" dev="tmpfs" ino=1745 res=1 errno=0 [ 149.774972][ T9356] ref_ctr increment failed for inode: 0x6d1 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff8880283860c0 [ 149.887162][ T40] audit: type=1800 audit(1762265175.610:385): pid=9362 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1209" name="nullb0" dev="tmpfs" ino=1756 res=0 errno=0 [ 149.940965][ T9364] gtp0: entered promiscuous mode [ 150.108707][ T9373] netlink: 'syz.0.1212': attribute type 4 has an invalid length. [ 150.210499][ T9380] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1216'. [ 150.695782][ T9392] binder: 9391:9392 unknown command 0 [ 150.697537][ T9392] binder: 9391:9392 ioctl c0306201 80000080 returned -22 [ 150.995430][ T9404] netlink: 'syz.3.1224': attribute type 1 has an invalid length. [ 151.015959][ T9404] 8021q: adding VLAN 0 to HW filter on device bond1 [ 151.172096][ T9418] overlayfs: failed to clone upperpath [ 151.480241][ T9436] netlink: 'syz.0.1236': attribute type 1 has an invalid length. [ 151.495270][ T9436] 8021q: adding VLAN 0 to HW filter on device bond2 [ 151.513763][ T9436] bond2: (slave dummy0): making interface the new active one [ 151.516928][ T9436] bond2: (slave dummy0): Enslaving as an active interface with an up link [ 151.574453][ T9440] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1238'. [ 151.578495][ T9440] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1238'. [ 151.581693][ T9440] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1238'. [ 151.585367][ T9440] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1238'. [ 151.588891][ T9440] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1238'. [ 152.033754][ T9453] overlayfs: failed to clone upperpath [ 152.675198][ T10] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 152.855794][ T10] usb 6-1: Using ep0 maxpacket: 8 [ 152.859017][ T10] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 152.862606][ T10] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 152.866216][ T10] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 152.869447][ T10] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 152.874754][ T10] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 152.878604][ T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 153.090797][ T10] usb 6-1: GET_CAPABILITIES returned 0 [ 153.092742][ T10] usbtmc 6-1:16.0: can't read capabilities [ 153.340844][ T842] usb 6-1: USB disconnect, device number 7 [ 153.513409][ T9495] overlayfs: failed to clone upperpath [ 153.573096][ T9497] bridge0: port 2(bridge_slave_1) entered disabled state [ 153.576776][ T9497] bridge0: port 1(bridge_slave_0) entered disabled state [ 153.581593][ T9497] bridge0: entered allmulticast mode [ 153.590556][ T9497] bridge_slave_1: left allmulticast mode [ 153.593202][ T9497] bridge_slave_1: left promiscuous mode [ 153.598918][ T9497] bridge0: port 2(bridge_slave_1) entered disabled state [ 153.607872][ T9497] bridge_slave_0: left allmulticast mode [ 153.609812][ T9497] bridge_slave_0: left promiscuous mode [ 153.611761][ T9497] bridge0: port 1(bridge_slave_0) entered disabled state [ 153.810586][ T9503] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1260'. [ 153.940313][ T9511] netlink: 'syz.4.1262': attribute type 1 has an invalid length. [ 153.955438][ T9511] 8021q: adding VLAN 0 to HW filter on device bond2 [ 154.002687][ T9511] bond2: (slave veth3): Enslaving as an active interface with a down link [ 154.041803][ T9511] bond1: (slave dummy0): Releasing active interface [ 154.047504][ T9511] bond2: (slave dummy0): making interface the new active one [ 154.050669][ T9511] dummy0: entered promiscuous mode [ 154.052577][ T9511] bond2: (slave dummy0): Enslaving as an active interface with an up link [ 154.066319][ T9511] netlink: 'syz.4.1262': attribute type 10 has an invalid length. [ 154.068864][ T9511] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1262'. [ 154.072734][ T9511] bond2: (slave dummy0): Releasing active interface [ 154.236340][ T9531] bridge0: port 3(syz_tun) entered blocking state [ 154.238545][ T9531] bridge0: port 3(syz_tun) entered disabled state [ 154.241082][ T9531] syz_tun: entered allmulticast mode [ 154.245534][ T9531] syz_tun: entered promiscuous mode [ 154.247541][ T9531] bridge0: port 3(syz_tun) entered blocking state [ 154.250297][ T9531] bridge0: port 3(syz_tun) entered forwarding state [ 154.400517][ T9544] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.1276'. [ 154.663423][ T10] usb 5-1: new full-speed USB device number 6 using dummy_hcd [ 154.815263][ T10] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10 [ 154.818817][ T10] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64 [ 154.822303][ T10] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 154.825781][ T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 154.831796][ T9546] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 154.834454][ T9546] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 154.839663][ T10] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 154.869710][ T9556] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 154.878528][ T9556] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 154.988481][ T1189] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.992902][ T1189] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.997691][ T1189] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 155.001330][ T1189] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 155.045584][ T5943] usb 5-1: USB disconnect, device number 6 [ 155.982842][ T9568] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 156.119566][ T9582] overlayfs: failed to clone upperpath [ 157.597177][ T40] audit: type=1326 audit(1762265183.320:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9618 comm="syz.4.1303" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 157.606152][ T40] audit: type=1326 audit(1762265183.320:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9618 comm="syz.4.1303" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 157.613218][ T40] audit: type=1326 audit(1762265183.320:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9618 comm="syz.4.1303" exe="/syz-executor" sig=0 arch=40000003 syscall=174 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 157.622299][ T40] audit: type=1326 audit(1762265183.320:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9618 comm="syz.4.1303" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 157.630678][ T40] audit: type=1326 audit(1762265183.320:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9618 comm="syz.4.1303" exe="/syz-executor" sig=0 arch=40000003 syscall=168 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 157.643380][ T40] audit: type=1326 audit(1762265183.330:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9618 comm="syz.4.1303" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 157.651967][ T40] audit: type=1326 audit(1762265183.330:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9618 comm="syz.4.1303" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 157.660655][ T40] audit: type=1326 audit(1762265183.340:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9618 comm="syz.4.1303" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 157.671505][ T40] audit: type=1326 audit(1762265183.340:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9618 comm="syz.4.1303" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 157.678963][ T40] audit: type=1326 audit(1762265183.340:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9618 comm="syz.4.1303" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7ffc0000 [ 157.769474][ T9631] netlink: 'syz.1.1305': attribute type 4 has an invalid length. [ 157.848989][ T9636] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 158.440654][ T9644] loop2: detected capacity change from 0 to 7 [ 158.447387][ T9644] Dev loop2: unable to read RDB block 7 [ 158.449183][ T9644] loop2: unable to read partition table [ 158.451050][ T9644] loop2: partition table beyond EOD, truncated [ 158.460275][ T9644] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5) [ 159.950717][ T9698] bridge0: entered allmulticast mode [ 159.953456][ T9702] bridge_slave_1: left allmulticast mode [ 159.955454][ T9702] bridge_slave_1: left promiscuous mode [ 159.957564][ T9702] bridge0: port 2(bridge_slave_1) entered disabled state [ 159.961119][ T9702] bridge_slave_0: left allmulticast mode [ 159.962958][ T9702] bridge_slave_0: left promiscuous mode [ 159.965115][ T9702] bridge0: port 1(bridge_slave_0) entered disabled state [ 162.235922][ T9758] netlink: 'syz.4.1351': attribute type 4 has an invalid length. [ 162.487329][ T9761] bridge0: port 3(syz_tun) entered blocking state [ 162.489681][ T9761] bridge0: port 3(syz_tun) entered disabled state [ 162.492587][ T9761] syz_tun: entered promiscuous mode [ 162.798849][ T9774] lo speed is unknown, defaulting to 1000 [ 162.805019][ T9774] lo speed is unknown, defaulting to 1000 [ 162.808751][ T9774] lo speed is unknown, defaulting to 1000 [ 162.997170][ T9774] infiniband syz2: set down [ 163.004737][ T9774] infiniband syz2: added lo [ 163.005575][ T842] lo speed is unknown, defaulting to 1000 [ 163.036957][ T9774] RDS/IB: syz2: added [ 163.039305][ T9774] smc: adding ib device syz2 with port count 1 [ 163.042982][ T9774] smc: ib device syz2 port 1 has no pnetid [ 163.048980][ T10] lo speed is unknown, defaulting to 1000 [ 163.051829][ T9774] lo speed is unknown, defaulting to 1000 [ 163.214703][ T9774] lo speed is unknown, defaulting to 1000 [ 163.324147][ T9774] lo speed is unknown, defaulting to 1000 [ 163.433608][ T9774] lo speed is unknown, defaulting to 1000 [ 164.112274][ T9832] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1379'. [ 164.538936][ T9848] tipc: Enabling of bearer rejected, failed to enable media [ 165.124731][ T9889] tipc: Started in network mode [ 165.126277][ T9889] tipc: Node identity f24c605c590b, cluster identity 4711 [ 165.128655][ T9889] tipc: Enabled bearer , priority 0 [ 165.136607][ T9889] syzkaller0: MTU too low for tipc bearer [ 165.139035][ T9889] tipc: Disabling bearer [ 165.612920][ T9922] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1408'. [ 165.630942][ T9922] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1408'. [ 165.697174][ T9927] netfs: Couldn't get user pages (rc=-14) [ 165.765761][ T9932] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1409'. [ 166.287140][ T9955] overlayfs: failed to clone upperpath [ 166.310185][ T9958] tipc: Started in network mode [ 166.312275][ T9958] tipc: Node identity 1e5653ad96a8, cluster identity 4711 [ 166.315540][ T9958] tipc: Enabled bearer , priority 0 [ 166.322100][ T9958] syzkaller0: MTU too low for tipc bearer [ 166.324751][ T9958] tipc: Disabling bearer [ 166.429672][ T9961] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1421'. [ 166.549183][ T9971] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1422'. [ 166.903776][ T9974] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 167.532293][T10021] [ 168.152933][T10066] netlink: 'syz.0.1452': attribute type 4 has an invalid length. [ 168.157485][T10066] netlink: 'syz.0.1452': attribute type 4 has an invalid length. [ 169.024369][T10112] binder: 10111:10112 unknown command 0 [ 169.026187][T10112] binder: 10111:10112 ioctl c0306201 80000080 returned -22 [ 169.030244][T10112] binder: 10111:10112 ioctl c0306201 800003c0 returned -14 [ 169.128501][T10120] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1468'. [ 169.133459][T10120] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1468'. [ 169.224450][ T40] kauditd_printk_skb: 38 callbacks suppressed [ 169.224488][ T40] audit: type=1800 audit(1762265194.940:434): pid=10130 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1473" name="bus" dev="overlay" ino=1781 res=0 errno=0 [ 169.332966][T10140] 8021q: adding VLAN 0 to HW filter on device bond0 [ 169.335764][T10140] 8021q: adding VLAN 0 to HW filter on device team0 [ 169.342476][T10140] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 169.384352][ T10] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 169.659373][T10154] rdma_rxe: rxe_newlink: failed to add lo [ 169.886453][T10166] 9pnet_fd: Insufficient options for proto=fd [ 169.900909][ T46] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 169.907261][T10164] tipc: Enabled bearer , priority 0 [ 169.910814][T10163] tipc: Resetting bearer [ 170.807005][ T1328] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 170.945060][ T1328] tipc: Node number set to 2873581660 [ 171.178826][T10163] tipc: Disabling bearer [ 171.191343][ T95] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 171.194410][ T95] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 171.316223][T10198] rdma_rxe: rxe_newlink: failed to add lo [ 171.538062][ T1328] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 171.823849][T10238] rdma_rxe: rxe_newlink: failed to add lo [ 171.958306][T10246] tipc: Enabling of bearer rejected, failed to enable media [ 172.043198][T10251] netlink: 2172 bytes leftover after parsing attributes in process `syz.4.1506'. [ 172.792918][T10293] netlink: 'syz.3.1521': attribute type 4 has an invalid length. [ 172.803078][T10293] netlink: 'syz.3.1521': attribute type 4 has an invalid length. [ 173.009593][T10306] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1525'. [ 173.239260][T10313] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1535'. [ 173.274265][ T841] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 173.319199][T10317] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1528'. [ 173.325195][T10317] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1528'. [ 173.391200][T10318] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1528'. [ 173.427080][ T841] usb 6-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 173.430096][ T841] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 173.432787][ T841] usb 6-1: Product: syz [ 173.434635][ T841] usb 6-1: Manufacturer: syz [ 173.436494][ T841] usb 6-1: SerialNumber: syz [ 173.440403][ T841] usb 6-1: config 0 descriptor?? [ 173.444973][ T841] ch341 6-1:0.0: ch341-uart converter detected [ 173.653401][ T841] usb 6-1: failed to receive control message: -71 [ 173.656119][ T841] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71 [ 173.660926][ T841] usb 6-1: USB disconnect, device number 8 [ 173.665397][ T841] ch341 6-1:0.0: device disconnected [ 174.046822][T10340] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1537'. [ 174.556776][T10355] binder: BINDER_SET_CONTEXT_MGR already set [ 174.559300][T10355] binder: 10354:10355 ioctl 4018620d 80000040 returned -16 [ 175.173754][ C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 181.169310][T10436] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 181.307461][T10436] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 181.381881][T10436] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 181.471599][T10436] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 181.585394][ T1146] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.599430][ T1146] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.608773][T10455] overlayfs: failed to clone upperpath [ 181.613740][ T1146] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.654603][ T46] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.693240][T10459] overlayfs: failed to clone lowerpath [ 181.700183][T10459] overlayfs: failed to clone upperpath [ 182.658171][T10515] overlayfs: failed to clone upperpath [ 182.923573][ C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 183.942313][T10553] tipc: Enabled bearer , priority 0 [ 183.947128][T10552] tipc: Resetting bearer [ 184.033497][ T53] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 184.204280][ T53] usb 5-1: Using ep0 maxpacket: 16 [ 184.207120][ T53] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 184.212938][ T53] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 184.216713][ T53] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 184.221114][ T53] usb 5-1: Product: syz [ 184.222929][ T53] usb 5-1: Manufacturer: syz [ 184.226682][ T53] usb 5-1: SerialNumber: syz [ 184.229951][ T53] usb 5-1: config 0 descriptor?? [ 184.239191][ T53] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 184.242995][ T53] em28xx 5-1:0.0: DVB interface 0 found: bulk [ 184.853093][ T53] em28xx 5-1:0.0: unknown em28xx chip ID (0) [ 185.188005][T10552] tipc: Disabling bearer [ 185.264444][ T53] em28xx 5-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 185.270698][ T53] em28xx 5-1:0.0: board has no eeprom [ 241.838820][T12327] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 241.841951][T12327] CPU: 1 UID: 0 PID: 12327 Comm: syz.3.2294 Not tainted syzkaller #0 PREEMPT(full) [ 241.847703][T12327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 241.852104][T12327] Call Trace: [ 241.853515][T12327] [ 241.854744][T12327] dump_stack_lvl+0x3d/0x1f0 [ 241.856636][T12327] vpanic+0x640/0x6f0 [ 241.858287][T12327] ? rate_control_rate_init+0x5c0/0x720 [ 241.860533][T12327] panic+0xca/0xd0 [ 241.862159][T12327] ? __pfx_panic+0x10/0x10 [ 241.864099][T12327] check_panic_on_warn+0xab/0xb0 [ 241.866220][T12327] __warn+0xf6/0x3c0 [ 241.867922][T12327] ? rate_control_rate_init+0x5c0/0x720 [ 241.870257][T12327] report_bug+0x3c3/0x580 [ 241.872112][T12327] ? rate_control_rate_init+0x5c0/0x720 [ 241.874452][T12327] handle_bug+0x184/0x210 [ 241.876338][T12327] exc_invalid_op+0x17/0x50 [ 241.878287][T12327] asm_exc_invalid_op+0x1a/0x20 [ 241.880252][T12327] RIP: 0010:rate_control_rate_init+0x5c0/0x720 [ 241.882554][T12327] Code: 48 8d 35 00 00 00 00 e8 fe 0c c5 f6 e8 29 37 cf f6 e9 25 fe ff ff e8 ff 1b e9 f6 90 0f 0b 90 e9 17 fe ff ff e8 f1 1b e9 f6 90 <0f> 0b 90 eb b1 e8 e6 1b e9 f6 e8 81 02 ce f6 31 ff 89 c3 89 c6 e8 [ 241.890420][T12327] RSP: 0018:ffffc9000cf9f1f8 EFLAGS: 00010287 [ 241.892922][T12327] RAX: 00000000000006ee RBX: ffff888026500000 RCX: ffffc90007af1000 [ 241.896306][T12327] RDX: 0000000000080000 RSI: ffffffff8ad3515f RDI: 0000000000000005 [ 241.899702][T12327] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000 [ 241.903118][T12327] R10: 0000000000000001 R11: 0000000000000001 R12: ffff888069d4a220 [ 241.906412][T12327] R13: ffff8880689d8e80 R14: ffff888023214000 R15: 0000000000000000 [ 241.909804][T12327] ? rate_control_rate_init+0x5bf/0x720 [ 241.912171][T12327] ? rate_control_rate_init+0x5bf/0x720 [ 241.914529][T12327] rate_control_rate_init_all_links+0x76/0x1e0 [ 241.917145][T12327] sta_apply_auth_flags.constprop.0+0x4bb/0x510 [ 241.919839][T12327] sta_apply_parameters+0xca8/0x1930 [ 241.922072][T12327] ieee80211_add_station+0x3fa/0x6c0 [ 241.924324][T12327] nl80211_new_station+0x1502/0x1c90 [ 241.926547][T12327] ? __pfx_nl80211_new_station+0x10/0x10 [ 241.928996][T12327] ? nl80211_pre_doit+0x1b0/0xb10 [ 241.931000][T12327] genl_family_rcv_msg_doit+0x209/0x2f0 [ 241.933333][T12327] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 241.935903][T12327] ? bpf_lsm_capable+0x9/0x10 [ 241.937891][T12327] ? security_capable+0x7e/0x260 [ 241.939978][T12327] ? ns_capable+0xd7/0x110 [ 241.941867][T12327] genl_rcv_msg+0x55c/0x800 [ 241.943806][T12327] ? __pfx_genl_rcv_msg+0x10/0x10 [ 241.945945][T12327] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 241.948264][T12327] ? __pfx_nl80211_new_station+0x10/0x10 [ 241.950687][T12327] ? __pfx_nl80211_post_doit+0x10/0x10 [ 241.953030][T12327] ? __lock_acquire+0x622/0x1c90 [ 241.955120][T12327] netlink_rcv_skb+0x158/0x420 [ 241.957286][T12327] ? __pfx_genl_rcv_msg+0x10/0x10 [ 241.959492][T12327] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 241.961771][T12327] ? netlink_deliver_tap+0x1ae/0xd30 [ 241.964021][T12327] genl_rcv+0x28/0x40 [ 241.965659][T12327] netlink_unicast+0x5aa/0x870 [ 241.967613][T12327] ? __pfx_netlink_unicast+0x10/0x10 [ 241.969732][T12327] netlink_sendmsg+0x8c8/0xdd0 [ 241.971768][T12327] ? __pfx_netlink_sendmsg+0x10/0x10 [ 241.974031][T12327] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 241.976634][T12327] ____sys_sendmsg+0xa98/0xc70 [ 241.978616][T12327] ? __pfx_____sys_sendmsg+0x10/0x10 [ 241.980863][T12327] ? get_compat_msghdr+0x11a/0x170 [ 241.983082][T12327] ? __pfx_futex_wake_mark+0x10/0x10 [ 241.985344][T12327] ___sys_sendmsg+0x134/0x1d0 [ 241.987264][T12327] ? __pfx____sys_sendmsg+0x10/0x10 [ 241.989481][T12327] ? find_held_lock+0x2b/0x80 [ 241.991494][T12327] __sys_sendmsg+0x16d/0x220 [ 241.993497][T12327] ? __pfx___sys_sendmsg+0x10/0x10 [ 241.995559][T12327] ? __ia32_sys_futex_time32+0x1d9/0x460 [ 241.997916][T12327] ? rcu_is_watching+0x12/0xc0 [ 242.000063][T12327] __do_fast_syscall_32+0x7c/0x300 [ 242.002285][T12327] do_fast_syscall_32+0x32/0x80 [ 242.004310][T12327] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 242.006817][T12327] RIP: 0023:0xf7f21579 [ 242.008586][T12327] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 242.015452][T12327] RSP: 002b:00000000f541655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172 [ 242.018136][T12327] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080001080 [ 242.020885][T12327] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 242.023318][T12327] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 242.025814][T12327] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 242.028395][T12327] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 242.031364][T12327] [ 242.033493][T12327] Kernel Offset: disabled [ 242.035102][T12327] Rebooting in 86400 seconds.. VM DIAGNOSIS: 14:07:47 Registers: info registers vcpu 0 CPU#0 RAX=ffffed1001be11a7 RBX=ffffed1001be11a8 RCX=ffffffff84aa8c80 RDX=ffffed1001be11a8 RSI=0000000000000004 RDI=ffff88800df08d3c RBP=ffffed1001be11a7 RSP=ffffc900033070d8 R8 =0000000000000001 R9 =ffffed1001be11a7 R10=ffff88800df08d3f R11=0000000000000001 R12=ffff88800df08d3c R13=0000000000000004 R14=0000000000000d34 R15=0000000000000d38 RIP=ffffffff8223fdf9 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f3c04238300 ffffffff 00c00000 GS =0000 ffff888097810000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000557d6dd08000 CR3=0000000049582000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 0000003800000012 0004000000080024 002800000030003c ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000022 0000002c00000000 0000000000000000 0000000000000017 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000500000004 000000070000000a 0000000400000000 00000000000008fe ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 848c080003800201 00000008060a0156 be0008000cb00800 5ec0800201000002 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0806080158f201dc 08000e8002010000 000806060104b002 b8c808000e880300 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 02000e8403000400 0e80030808880205 0808800005088002 0008000408000208 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00080171f00fffff ffff020408000008 000208007c08000a 014cd41600000238 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0004000bc0030010 000bb00340a08008 000ba8030008000b a0030fffffffff02 ZMM25=d1406566d1406566 d1406566d1406566 d1406566d1406566 d1406566d1406566 d1406566d1406566 d1406566d1406566 d1406566d1406566 d1406566d1406566 ZMM26=f0e9c241f0e9c241 f0e9c241f0e9c241 f0e9c241f0e9c241 f0e9c241f0e9c241 f0e9c241f0e9c241 f0e9c241f0e9c241 f0e9c241f0e9c241 f0e9c241f0e9c241 ZMM27=8ebae7b48ebae7b4 8ebae7b48ebae7b4 8ebae7b48ebae7b4 8ebae7b48ebae7b4 8ebae7b48ebae7b4 8ebae7b48ebae7b4 8ebae7b48ebae7b4 8ebae7b48ebae7b4 ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=ef100000ef100000 ef100000ef100000 ef100000ef100000 ef100000ef100000 ef100000ef100000 ef100000ef100000 ef100000ef100000 ef100000ef100000 info registers vcpu 1 CPU#1 RAX=0000000000000043 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85267f35 RDI=ffffffff9adc2de0 RBP=ffffffff9adc2da0 RSP=ffffc9000cf9ea38 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001 R12=0000000000000000 R13=0000000000000043 R14=ffffffff9adc2da0 R15=ffffffff85267ed0 RIP=ffffffff85267f5f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097910000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000f7371ae4 CR3=0000000050beb000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=00000000002ee89d RBX=0000000000000002 RCX=ffffffff8b5d42a9 RDX=ffffed1005686656 RSI=ffffffff8da27d51 RDI=ffffffff8bf075c0 RBP=ffffed1003b5a920 RSP=ffffc9000047fde8 R8 =0000000000000001 R9 =ffffed1005686655 R10=ffff88802b4332ab R11=0000000000000001 R12=0000000000000002 R13=ffff88801dad4900 R14=ffffffff908239d0 R15=0000000000000000 RIP=ffffffff8b5d2d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097a10000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000000080093018 CR3=000000004ed6b000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000080000001 RBX=0000000000000003 RCX=ffffc9000d510001 RDX=ffffc9000d50f058 RSI=ffffffff8bf07540 RDI=ffffffff8bf07580 RBP=0000000000000001 RSP=ffffc9000d50ec50 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=00000000000115e5 R12=ffffc9000d50ed50 R13=ffffc9000d50ed00 R14=ffffc9000d50f050 R15=ffffc9000d50ed34 RIP=ffffffff8b5d4a4d RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097b10000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00000000800d3018 CR3=000000004ed6b000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000