last executing test programs: 4m15.839413269s ago: executing program 4 (id=205): r0 = socket(0x25, 0x1, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0) 4m15.581578657s ago: executing program 4 (id=211): openat$mice(0xffffffffffffff9c, &(0x7f0000000100), 0x41) pselect6(0x40, &(0x7f0000003800)={0x3, 0x6, 0x8, 0x1, 0x4, 0x1, 0x5, 0x7}, 0x0, &(0x7f0000003880)={0x9, 0x3, 0xfffffffffffffffe, 0x8, 0xfffffffffffffc00, 0x8000000000000000, 0x7, 0x5}, &(0x7f00000038c0)={0x0, 0x989680}, 0x0) 4m15.223590872s ago: executing program 4 (id=218): munmap(&(0x7f0000002000/0x1000)=nil, 0x1000) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="b4e301eb180000000733ac"], &(0x7f0000001f80)=""/225, 0x26, 0xe1, 0x8, 0x20003}, 0x28) 4m15.025383286s ago: executing program 4 (id=222): r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1f, 0x0) ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f00000005c0)={0x40000000, 0x7, 0xa}) 4m14.759582545s ago: executing program 4 (id=227): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0xe, &(0x7f0000000f40)=ANY=[@ANYBLOB="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", @ANYRES8], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x16, 0x0, 0xffffffffffffffff, 0xffffffffffffffc9}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000100)="06ff03076844babeb89e14f00800", 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 4m14.586048515s ago: executing program 4 (id=228): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x14, 0x26, 0x1, 0x7fffd, 0x1000, {0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x20000051}, 0x4008090) 3m59.17163526s ago: executing program 32 (id=228): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x14, 0x26, 0x1, 0x7fffd, 0x1000, {0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x20000051}, 0x4008090) 2m32.083196409s ago: executing program 2 (id=688): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/comedi4\x00', 0x80183, 0x0) ioctl$COMEDI_UNLOCK(r0, 0x6406) 2m31.385957857s ago: executing program 2 (id=691): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r0, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f0000000980)=ANY=[@ANYBLOB="380000001214010027bd7000fddbdf25080001000200000008001500ad96666008004f000000000008004b0013000f00080003"], 0x38}, 0x1, 0x0, 0x0, 0xc084}, 0x810) 2m31.023534971s ago: executing program 2 (id=696): sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="e80000003f00070100000000fddbdf25027c"], 0xe8}, 0x1, 0x0, 0x0, 0xc880}, 0x0) io_uring_register$IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000200)=[@ioring_restriction_register_op={0x0, 0x1e}], 0x1) 2m30.377416724s ago: executing program 2 (id=698): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="60000000020601010000000000000000000000001c0007800500140007000400080012400005000008000840000000000900020073797a300000002005000100070000000c000300686173683a697000050005000a000000050004"], 0x60}}, 0x8000) 2m28.760555507s ago: executing program 2 (id=704): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000001b00)={0x18, 0x2e, 0x1, 0xf0bd26, 0x25dfdbfc, {0x4}, [@nested={0x4, 0xe}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000) 2m27.122625076s ago: executing program 2 (id=711): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000032c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000e80)={0x14, 0x26, 0x1, 0x70bd25, 0x25dfdbff, {0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0) 2m11.741093564s ago: executing program 33 (id=711): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000032c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000e80)={0x14, 0x26, 0x1, 0x70bd25, 0x25dfdbff, {0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0) 1.127103391s ago: executing program 5 (id=3214): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="3000000040000701feffffff00000000017c0000040042801400018006001700800a000008001800", @ANYRES32=0x0, @ANYBLOB="040002"], 0x30}, 0x1, 0x0, 0x0, 0x48815}, 0xc000) 1.119925127s ago: executing program 3 (id=3215): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=@newlink={0x50, 0x10, 0xff05, 0x0, 0x0, {0x0, 0x0, 0x4a00, 0x0, 0x0, 0x8091}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_XFRM_LINK={0x8, 0x1, 0x1}, @IFLA_XFRM_IF_ID={0x8, 0x2, 0x4}]}}}, @IFLA_ADDRESS={0xa, 0x1, @remote}]}, 0x50}, 0x1, 0x0, 0x0, 0x48044}, 0x0) 970.557679ms ago: executing program 5 (id=3218): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000f80)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}}, 0x0, 0x0, 0x0, 0x0, "8aac4f23c59b321a1738763829f40de6514263b9b0b7023fb22bdc015174daab26ae82d6f820dd0320e82bc93d0f02bbce4b9f19d856884d638b771a2941e8ac694cb91fd1796fd3f40eb831690c6382"}, 0xd8) 935.674288ms ago: executing program 0 (id=3219): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0) fadvise64(r0, 0x18, 0x0, 0x4) 864.692881ms ago: executing program 3 (id=3222): r0 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, &(0x7f0000000040)={0x0, [[0x1, 0x0, 0xfffffffe, 0x0, 0x0, 0x8], [0x2, 0x80000000], [0xf6]], '\x00', [{0x0, 0x1}, {0xfffffffd}, {0xfffffffe}], '\x00', 0x100000, 0x0, 0x0, 0x0, 0x0, 0x2}) 863.453801ms ago: executing program 0 (id=3223): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x13, &(0x7f0000000980)=ANY=[@ANYBLOB="1800000000000000000000004b0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000008000000850000002d0000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000100850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f00000007c0)={r0}, 0xc) 763.118703ms ago: executing program 1 (id=3224): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x20, 0x40, 0x1, 0x7fffc, 0x4, {0x1}, [@nested={0x8, 0xcb, 0x0, 0x1, [@nested={0x4, 0x8}]}, @nested={0x4, 0x1}]}, 0x20}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094) 762.538914ms ago: executing program 5 (id=3225): r0 = syz_open_dev$sndpcmp(&(0x7f0000001540), 0x1, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_FREE(r0, 0x4112, 0x0) 719.459219ms ago: executing program 6 (id=3226): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000001800010000000000000000000a000000000000000000000008000400", @ANYRES32=r0, @ANYBLOB="06001500070000000c0016800800", @ANYRES16], 0x38}}, 0x10) 718.829695ms ago: executing program 3 (id=3227): r0 = socket$caif_stream(0x25, 0x1, 0x2) setsockopt$CAIFSO_LINK_SELECT(r0, 0x116, 0x7f, &(0x7f00000000c0)=0x3, 0x4) 707.194382ms ago: executing program 0 (id=3228): r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000006040), 0x0, 0x0) ioctl$RFKILL_IOCTL_NOINPUT(r0, 0x5201) 620.759603ms ago: executing program 1 (id=3229): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001480)=[{&(0x7f0000000300)="d8000000190081054e81f782db4cb9040a1d080006007c02e8fe55a10a0015000900142603600e1208000f4f1b000401a8001600200005400400027c035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9a941", 0xd8}], 0x1}, 0x0) 563.132941ms ago: executing program 6 (id=3230): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000002e00090026bd7000eeff020003"], 0x14}, 0x1, 0x0, 0x0, 0x42804}, 0x0) 562.904721ms ago: executing program 5 (id=3231): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001200)=@newlink={0x48, 0x10, 0xffffffffffffffff, 0x70bd25, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x50b3a}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x14, 0x7, @mcast2}]}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000080}, 0xc010) 538.20986ms ago: executing program 0 (id=3232): capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000280)={0x0, 0xd, 0x0, 0x5, 0xffffffff, 0xfffffffd}) timerfd_create(0x8, 0x80000) 499.048992ms ago: executing program 3 (id=3233): mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0) mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010842, &(0x7f0000000240)={[{@subsystem='hugetlb'}, {@subsystem='memory'}, {@subsystem='cpuacct'}, {@cpuset_v2_mode}]}) 446.479669ms ago: executing program 6 (id=3234): r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000), 0x41, 0x0) write$nbd(r0, &(0x7f0000000180)=ANY=[@ANYBLOB="0100000000000000008a0559f338be09000000000000000000007400a391793ba70d0000000000000500000000198f5880"], 0x40) 386.546662ms ago: executing program 6 (id=3235): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000700)=@updpolicy={0x13c, 0x19, 0x1, 0x70bd25, 0x1, {{@in6=@loopback, @in=@empty, 0x0, 0x0, 0x20, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x1000, 0x0, 0x9, 0x0, 0x5, 0x0, 0xff}, {0x0, 0x0, 0x6}, 0x200, 0x0, 0x2, 0x0, 0x1}, [@tmpl={0x84, 0x5, [{{@in=@loopback, 0x0, 0x6c}, 0x0, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, {{@in6=@rand_addr=' \x01\x00', 0x4d2, 0x6c}, 0x9, @in6=@loopback, 0x0, 0x0, 0x1, 0x0, 0xc, 0x0, 0x1}]}]}, 0x13c}, 0x1, 0x0, 0x0, 0x41}, 0x4000) 290.237953ms ago: executing program 5 (id=3236): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="14000000190a0102"], 0x14}}, 0x0) 290.11036ms ago: executing program 0 (id=3237): r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0xa0081, 0x0) ioctl$PTP_EXTTS_REQUEST2(r0, 0x40103d0b, &(0x7f0000000180)={0x5, 0x2}) 289.445424ms ago: executing program 1 (id=3238): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e23, @multicast2}}, 0x4149, 0xd}, 0x90) 280.274806ms ago: executing program 3 (id=3239): r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000180)) 179.086596ms ago: executing program 1 (id=3240): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14) 178.964474ms ago: executing program 6 (id=3241): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="600000000206010800000000000000000000000014000780080012400000000305001500000000000500010006000000050005000a00000005000400000000000900020073797a300000000011000300686173683a6970"], 0x60}, 0x1, 0x0, 0x0, 0x4000800}, 0x0) 110.13753ms ago: executing program 0 (id=3242): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, &(0x7f0000003f80)=ANY=[@ANYBLOB="18020000feffffff00000000000000008500000041000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000010400000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xdc0, 0x0, &(0x7f0000000100)="7265524f4c4f3a1a273726df520f", 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 89.453857ms ago: executing program 3 (id=3243): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x3c}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000240)={r0, 0xffffffffffffffff, 0x1f, 0x0, @void}, 0x10) 85.364745ms ago: executing program 1 (id=3244): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f00000000c0)=""/24, &(0x7f0000000340)=0x18) 26.744446ms ago: executing program 5 (id=3245): r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3) recvmmsg(r0, &(0x7f0000005300)=[{{0x0, 0x0, 0x0}, 0x3}], 0x1, 0x162, 0x0) 332.808µs ago: executing program 1 (id=3246): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="3000000040000701feffffff00000000047c0000040042801400018006000600800a000008001c00", @ANYRES32=r0, @ANYBLOB="040008"], 0x30}, 0x1, 0x0, 0x0, 0x4048030}, 0xc000) 0s ago: executing program 6 (id=3247): r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0) write$vga_arbiter(r0, &(0x7f0000000100)=ANY=[@ANYBLOB='decodes m'], 0xf) kernel console output (not intermixed with test programs): ved packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 193.345723][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 193.346133][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 193.346560][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 193.346980][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 193.347390][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 193.347815][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 193.348233][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 193.348512][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 194.453345][ T1324] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.453425][ T1324] ieee802154 phy1 wpan1: encryption failed: -22 [ 198.350368][ C0] net_ratelimit: 13952 callbacks suppressed [ 198.350392][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 198.350811][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 198.351217][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 198.352932][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 198.353343][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 198.353742][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 198.354140][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 198.354539][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 198.354943][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 198.355348][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 198.820771][ T7239] netlink: 52 bytes leftover after parsing attributes in process `syz.1.612'. [ 201.483778][ T7247] wg1: entered promiscuous mode [ 201.483816][ T7247] wg1: entered allmulticast mode [ 201.787908][ T7261] netlink: 20 bytes leftover after parsing attributes in process `syz.5.623'. [ 201.956841][ T36] audit: type=1326 audit(1772068913.794:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7262 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 201.984579][ T36] audit: type=1326 audit(1772068913.794:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7262 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 201.987302][ T36] audit: type=1326 audit(1772068913.824:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7262 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc0231ecece code=0x7ffc0000 [ 202.034774][ T36] audit: type=1326 audit(1772068913.824:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7262 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc02322c2bb code=0x7ffc0000 [ 202.038389][ T36] audit: type=1326 audit(1772068913.874:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7262 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc02322c2bb code=0x7ffc0000 [ 202.098553][ T36] audit: type=1326 audit(1772068913.934:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7262 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc02322c2bb code=0x7ffc0000 [ 202.098609][ T36] audit: type=1326 audit(1772068913.934:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7262 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc02322c2bb code=0x7ffc0000 [ 202.958614][ T36] audit: type=1326 audit(1772068914.794:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7262 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc02322c2bb code=0x7ffc0000 [ 203.020629][ T36] audit: type=1326 audit(1772068914.864:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7262 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc02322c2bb code=0x7ffc0000 [ 203.089614][ T5879] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 203.090439][ T36] audit: type=1326 audit(1772068914.934:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7262 comm="syz.5.624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc02322c2bb code=0x7ffc0000 [ 203.259516][ T5879] usb 6-1: Using ep0 maxpacket: 16 [ 203.277796][ T5879] usb 6-1: config 251 has an invalid interface number: 202 but max is 0 [ 203.277825][ T5879] usb 6-1: config 251 has no interface number 0 [ 203.277873][ T5879] usb 6-1: config 251 interface 202 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0 [ 203.277896][ T5879] usb 6-1: config 251 interface 202 altsetting 1 bulk endpoint 0x1 has invalid maxpacket 0 [ 203.277920][ T5879] usb 6-1: config 251 interface 202 altsetting 1 has an invalid descriptor for endpoint zero, skipping [ 203.277942][ T5879] usb 6-1: config 251 interface 202 altsetting 1 endpoint 0x6 has invalid maxpacket 1024, setting to 64 [ 203.277969][ T5879] usb 6-1: config 251 interface 202 altsetting 1 has an endpoint descriptor with address 0xC1, changing to 0x81 [ 203.277993][ T5879] usb 6-1: config 251 interface 202 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0 [ 203.278016][ T5879] usb 6-1: config 251 interface 202 altsetting 1 bulk endpoint 0x81 has invalid maxpacket 0 [ 203.278040][ T5879] usb 6-1: config 251 interface 202 altsetting 1 has 4 endpoint descriptors, different from the interface descriptor's value: 3 [ 203.278067][ T5879] usb 6-1: config 251 interface 202 has no altsetting 0 [ 203.360201][ C0] net_ratelimit: 14250 callbacks suppressed [ 203.360223][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 203.361066][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 203.361842][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 203.362666][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 203.363490][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 203.364416][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 203.365206][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 203.366001][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 203.366991][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 203.370207][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 203.432107][ T5879] usb 6-1: New USB device found, idVendor=0572, idProduct=cb00, bcdDevice=bb.c9 [ 203.432139][ T5879] usb 6-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3 [ 203.432159][ T5879] usb 6-1: Product: syz [ 203.432184][ T5879] usb 6-1: SerialNumber: syz [ 203.857193][ T5879] cxacru 6-1:251.202: usbatm_usb_probe: invalid endpoint 02! [ 203.857647][ T5879] cxacru 6-1:251.202: probe with driver cxacru failed with error -22 [ 204.028525][ T5879] usb 6-1: USB disconnect, device number 2 [ 207.677374][ T7318] netlink: 28 bytes leftover after parsing attributes in process `syz.1.647'. [ 207.677417][ T7318] netlink: 2 bytes leftover after parsing attributes in process `syz.1.647'. [ 207.682090][ T7318] netlink: 28 bytes leftover after parsing attributes in process `syz.1.647'. [ 207.700490][ T7318] netlink: 28 bytes leftover after parsing attributes in process `syz.1.647'. [ 207.700522][ T7318] netlink: 2 bytes leftover after parsing attributes in process `syz.1.647'. [ 207.701372][ T7318] netlink: 28 bytes leftover after parsing attributes in process `syz.1.647'. [ 207.710230][ T7318] netlink: 28 bytes leftover after parsing attributes in process `syz.1.647'. [ 207.710331][ T7318] netlink: 2 bytes leftover after parsing attributes in process `syz.1.647'. [ 207.712741][ T7318] netlink: 28 bytes leftover after parsing attributes in process `syz.1.647'. [ 207.719723][ T7318] netlink: 28 bytes leftover after parsing attributes in process `syz.1.647'. [ 208.371091][ C0] net_ratelimit: 13407 callbacks suppressed [ 208.371113][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 208.371514][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 208.371910][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 208.371987][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:82:3a:f3:ed:64:ea, vlan:0) [ 208.372309][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 208.372317][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 208.372761][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 208.372798][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 208.373154][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 208.373562][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 212.169259][ T7357] tmpfs: Bad value for 'mpol' [ 213.379743][ C0] net_ratelimit: 13699 callbacks suppressed [ 213.379766][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 213.380159][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 213.380578][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 213.380725][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 213.380991][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 213.381079][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 213.381410][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 213.381560][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:82:3a:f3:ed:64:ea, vlan:0) [ 213.381807][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 213.382197][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 214.502254][ T7372] __nla_validate_parse: 20 callbacks suppressed [ 214.502275][ T7372] netlink: 760 bytes leftover after parsing attributes in process `syz.1.669'. [ 215.021491][ T7378] netlink: 24 bytes leftover after parsing attributes in process `syz.2.673'. [ 215.030009][ T7376] netlink: 'syz.5.672': attribute type 2 has an invalid length. [ 215.153519][ T7374] netlink: 28 bytes leftover after parsing attributes in process `syz.3.671'. [ 215.153555][ T7374] netlink: 8 bytes leftover after parsing attributes in process `syz.3.671'. [ 215.396270][ T7376] ‚#{6c!: entered promiscuous mode [ 217.072824][ T5808] Bluetooth: hci2: command 0x0406 tx timeout [ 217.076645][ T5808] Bluetooth: hci4: command 0x0406 tx timeout [ 217.076691][ T5808] Bluetooth: hci3: command 0x0406 tx timeout [ 217.076714][ T5808] Bluetooth: hci1: command 0x0406 tx timeout [ 217.076737][ T5808] Bluetooth: hci0: command 0x0406 tx timeout [ 217.207531][ T7398] netlink: 'syz.1.682': attribute type 1 has an invalid length. [ 217.207554][ T7398] netlink: 2108 bytes leftover after parsing attributes in process `syz.1.682'. [ 218.389823][ C1] net_ratelimit: 13328 callbacks suppressed [ 218.389846][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 218.390226][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 218.390745][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:82:3a:f3:ed:64:ea, vlan:0) [ 218.392230][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:82:3a:f3:ed:64:ea, vlan:0) [ 218.392613][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 218.393215][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 218.394642][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 218.395001][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 218.395478][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:82:3a:f3:ed:64:ea, vlan:0) [ 218.396840][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 218.414245][ T36] kauditd_printk_skb: 26 callbacks suppressed [ 218.414263][ T36] audit: type=1326 audit(1772068930.254:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7404 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 218.414307][ T36] audit: type=1326 audit(1772068930.254:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7404 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 218.414350][ T36] audit: type=1326 audit(1772068930.254:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7404 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 218.414392][ T36] audit: type=1326 audit(1772068930.254:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7404 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 218.664835][ T36] audit: type=1326 audit(1772068930.504:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7404 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 218.706983][ T36] audit: type=1326 audit(1772069441.540:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7404 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 218.707036][ T36] audit: type=1326 audit(1772069441.540:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7404 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 218.707079][ T36] audit: type=1326 audit(1772069441.540:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7404 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 218.707123][ T36] audit: type=1326 audit(1772069441.540:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7404 comm="syz.3.686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 218.990083][ T7412] netlink: 'syz.0.689': attribute type 3 has an invalid length. [ 222.486659][ T7444] netlink: 188 bytes leftover after parsing attributes in process `syz.3.705'. [ 222.486688][ T7444] netlink: 32 bytes leftover after parsing attributes in process `syz.3.705'. [ 222.486703][ T7444] netlink: 16 bytes leftover after parsing attributes in process `syz.3.705'. [ 223.399614][ C0] net_ratelimit: 12917 callbacks suppressed [ 223.399636][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 223.400170][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 223.400589][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 223.400988][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 223.401406][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 223.401804][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 223.402219][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 223.402621][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 223.403108][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 223.403502][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 226.789531][ T5879] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 226.975072][ T5879] usb 2-1: Using ep0 maxpacket: 16 [ 226.993774][ T5879] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 226.993829][ T5879] usb 2-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.40 [ 226.993849][ T5879] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 227.043572][ T5879] usb 2-1: config 0 descriptor?? [ 227.556778][ T5879] uvcvideo 2-1:0.0: Found UVC 0.00 device (10c4:ea90) [ 227.556827][ T5879] uvcvideo 2-1:0.0: No valid video chain found. [ 227.616264][ T5879] usb 2-1: USB disconnect, device number 6 [ 231.281885][ T7511] netlink: 12 bytes leftover after parsing attributes in process `syz.0.736'. [ 232.060143][ T7516] netlink: 272 bytes leftover after parsing attributes in process `syz.1.739'. [ 233.750803][ T7525] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR [ 234.752480][ T7538] net_ratelimit: 12981 callbacks suppressed [ 234.752515][ T7538] openvswitch: netlink: IP tunnel dst address not specified [ 237.212808][ T7562] netlink: 60 bytes leftover after parsing attributes in process `syz.0.760'. [ 237.213284][ T7562] unsupported nlmsg_type 40 [ 242.290989][ T5803] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 242.293428][ T5803] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 242.293827][ T5803] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 242.294941][ T5803] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 242.295675][ T5803] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 242.719636][ T5866] usb 6-1: new full-speed USB device number 3 using dummy_hcd [ 243.000306][ T5866] usb 6-1: unable to get BOS descriptor or descriptor too short [ 243.001159][ T5866] usb 6-1: not running at top speed; connect to a high speed hub [ 243.002683][ T5866] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 243.002736][ T5866] usb 6-1: config 1 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 243.002759][ T5866] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0 [ 243.002782][ T5866] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 243.002804][ T5866] usb 6-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 4 [ 243.101789][ T5866] usb 6-1: New USB device found, idVendor=045e, idProduct=043f, bcdDevice=fc.90 [ 243.101820][ T5866] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 243.101841][ T5866] usb 6-1: Product: syz [ 243.101856][ T5866] usb 6-1: Manufacturer: syz [ 243.101871][ T5866] usb 6-1: SerialNumber: syz [ 243.484179][ T5866] ipaq 6-1:1.0: PocketPC PDA converter detected [ 244.569516][ T5803] Bluetooth: hci6: command tx timeout [ 245.081013][ T5866] usb 6-1: PocketPC PDA converter now attached to ttyUSB0 [ 245.259534][ T5866] usb 6-1: USB disconnect, device number 3 [ 245.317977][ T5866] ipaq ttyUSB0: PocketPC PDA converter now disconnected from ttyUSB0 [ 245.318962][ T5866] ipaq 6-1:1.0: device disconnected [ 245.349221][ T7607] netlink: 28 bytes leftover after parsing attributes in process `syz.3.781'. [ 245.349249][ T7607] netlink: 28 bytes leftover after parsing attributes in process `syz.3.781'. [ 245.349276][ T7607] netlink: 48 bytes leftover after parsing attributes in process `syz.3.781'. [ 246.436655][ T5901] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 246.639432][ T5809] Bluetooth: hci6: command tx timeout [ 246.917852][ T5901] usb 1-1: Using ep0 maxpacket: 8 [ 246.931222][ T5901] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 246.931251][ T5901] usb 1-1: config 179 has no interface number 0 [ 246.931298][ T5901] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 246.931325][ T5901] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 246.931353][ T5901] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 246.931379][ T5901] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 246.931405][ T5901] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 246.931446][ T5901] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 246.931469][ T5901] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 247.089712][ T7614] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 248.669787][ T5809] Bluetooth: hci6: command tx timeout [ 250.217822][ T5901] usb 1-1: USB disconnect, device number 8 [ 250.222800][ C1] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 250.753315][ T5809] Bluetooth: hci6: command tx timeout [ 250.922815][ T5908] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 251.568791][ T7594] chnl_net:caif_netlink_parms(): no params data found [ 251.879652][ T7646] netlink: 'syz.1.798': attribute type 1 has an invalid length. [ 255.875952][ T1324] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.876034][ T1324] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.521348][ T7655] bridge0: port 3(veth0_to_bridge) entered disabled state [ 256.521884][ T7655] bridge0: port 2(bridge_slave_1) entered disabled state [ 256.574309][ T7655] bridge0: port 1(bridge_slave_0) entered disabled state [ 257.038134][ T7695] netlink: 12 bytes leftover after parsing attributes in process `syz.1.819'. [ 257.197700][ T7699] netlink: 'syz.3.821': attribute type 2 has an invalid length. [ 257.233795][ T7655] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 257.245689][ T7655] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 257.951928][ T5809] Bluetooth: hci5: command 0x0406 tx timeout [ 258.388996][ T7699] : entered promiscuous mode [ 258.403857][ T155] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 258.448479][ T155] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 258.448595][ T155] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 258.448633][ T155] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 258.509327][ T7704] netlink: 'syz.5.822': attribute type 21 has an invalid length. [ 258.509353][ T7704] netlink: 128 bytes leftover after parsing attributes in process `syz.5.822'. [ 258.534663][ T7704] netlink: 'syz.5.822': attribute type 5 has an invalid length. [ 258.534685][ T7704] netlink: 'syz.5.822': attribute type 6 has an invalid length. [ 258.534699][ T7704] netlink: 3 bytes leftover after parsing attributes in process `syz.5.822'. [ 258.674932][ T7594] bridge0: port 1(bridge_slave_0) entered blocking state [ 258.679744][ T7594] bridge0: port 1(bridge_slave_0) entered disabled state [ 258.680153][ T7594] bridge_slave_0: entered allmulticast mode [ 258.687506][ T7594] bridge_slave_0: entered promiscuous mode [ 258.743816][ T7594] bridge0: port 2(bridge_slave_1) entered blocking state [ 258.757973][ T7594] bridge0: port 2(bridge_slave_1) entered disabled state [ 258.758230][ T7594] bridge_slave_1: entered allmulticast mode [ 258.781699][ T7594] bridge_slave_1: entered promiscuous mode [ 258.942404][ T7594] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 258.945233][ T7594] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 259.077004][ T7728] netlink: 'syz.3.830': attribute type 1 has an invalid length. [ 259.140569][ T7594] team0: Port device team_slave_0 added [ 259.144206][ T7594] team0: Port device team_slave_1 added [ 259.207901][ T7594] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 259.207917][ T7594] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 259.207953][ T7594] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 259.254227][ T7594] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 259.254244][ T7594] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 259.254268][ T7594] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 259.369599][ T7734] netlink: 'syz.0.837': attribute type 7 has an invalid length. [ 259.369621][ T7734] netlink: 'syz.0.837': attribute type 5 has an invalid length. [ 259.369634][ T7734] netlink: 17 bytes leftover after parsing attributes in process `syz.0.837'. [ 259.667775][ T7594] hsr_slave_0: entered promiscuous mode [ 259.677843][ T7594] hsr_slave_1: entered promiscuous mode [ 259.685464][ T7594] debugfs: 'hsr0' already exists in 'hsr' [ 259.685493][ T7594] Cannot create hsr debugfs directory [ 259.799601][ T5879] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 259.949559][ T5879] usb 2-1: Using ep0 maxpacket: 16 [ 259.955663][ T5879] usb 2-1: config 0 has an invalid interface number: 105 but max is 0 [ 259.955689][ T5879] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 259.955708][ T5879] usb 2-1: config 0 has no interface number 0 [ 259.963296][ T5879] usb 2-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 259.963325][ T5879] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 259.963347][ T5879] usb 2-1: Product: syz [ 259.963361][ T5879] usb 2-1: Manufacturer: syz [ 259.963375][ T5879] usb 2-1: SerialNumber: syz [ 260.036932][ T5879] usb 2-1: config 0 descriptor?? [ 260.188898][ T7755] Smack: duplicate mount options [ 260.281441][ T5879] uvcvideo 2-1:0.105: Found UVC 0.00 device syz (046d:08f3) [ 260.281477][ T5879] uvcvideo 2-1:0.105: No valid video chain found. [ 260.474286][ T7594] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 260.500088][ T5957] usb 2-1: USB disconnect, device number 7 [ 260.554403][ T7594] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 260.583254][ T7765] netlink: 'syz.5.851': attribute type 2 has an invalid length. [ 260.630082][ T7594] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 260.667130][ T7594] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 260.688765][ T7770] QAT: failed to copy from user cfg_data. [ 260.964350][ T7594] 8021q: adding VLAN 0 to HW filter on device bond0 [ 261.019582][ T7594] 8021q: adding VLAN 0 to HW filter on device team0 [ 261.043099][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 261.061018][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 261.141222][ T1188] bridge0: port 2(bridge_slave_1) entered blocking state [ 261.141357][ T1188] bridge0: port 2(bridge_slave_1) entered forwarding state [ 261.194049][ T7791] trusted_key: encrypted_key: keylen for the ecryptfs format must be equal to 64 bytes [ 261.293444][ T7793] netlink: 8 bytes leftover after parsing attributes in process `syz.1.862'. [ 261.364104][ T7799] netlink: 68 bytes leftover after parsing attributes in process `syz.3.866'. [ 261.404044][ T7797] netlink: 4 bytes leftover after parsing attributes in process `syz.5.864'. [ 262.169357][ T7594] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 262.593042][ T7855] Device name not specified. [ 262.593042][ T7855] [ 263.072175][ T7873] netlink: 'syz.1.894': attribute type 1 has an invalid length. [ 263.157565][ T7875] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 263.191111][ T7594] veth0_vlan: entered promiscuous mode [ 263.220196][ T7594] veth1_vlan: entered promiscuous mode [ 263.312182][ T7594] veth0_macvtap: entered promiscuous mode [ 263.329743][ T7594] veth1_macvtap: entered promiscuous mode [ 263.338203][ T7881] netlink: 'syz.1.898': attribute type 1 has an invalid length. [ 263.338224][ T7881] netlink: 224 bytes leftover after parsing attributes in process `syz.1.898'. [ 263.430191][ T36] audit: type=1326 audit(1772069486.260:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7886 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84d3c6c629 code=0x7ffc0000 [ 263.430242][ T36] audit: type=1326 audit(1772069486.270:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7886 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84d3c6c629 code=0x7ffc0000 [ 263.464841][ T36] audit: type=1326 audit(1772069486.300:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7886 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84d3c6c629 code=0x7ffc0000 [ 263.465002][ T36] audit: type=1326 audit(1772069486.300:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7886 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84d3c6c629 code=0x7ffc0000 [ 263.465110][ T36] audit: type=1326 audit(1772069486.300:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7886 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=69 compat=0 ip=0x7f84d3c6c629 code=0x7ffc0000 [ 263.465219][ T36] audit: type=1326 audit(1772069486.300:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7886 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84d3c6c629 code=0x7ffc0000 [ 263.492988][ T36] audit: type=1326 audit(1772069486.320:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7886 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f84d3c6c629 code=0x7ffc0000 [ 263.493173][ T36] audit: type=1326 audit(1772069486.320:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7886 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84d3c6c629 code=0x7ffc0000 [ 263.493276][ T36] audit: type=1326 audit(1772069486.330:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7886 comm="syz.0.901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f84d3c6c629 code=0x7ffc0000 [ 263.799659][ T7893] binder: 7892:7893 ioctl 7040 0 returned -22 [ 263.976245][ T7884] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 263.995358][ T7594] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 264.050968][ T7594] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 264.152156][ T67] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.201841][ T67] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.222636][ T67] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.246569][ T67] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 264.358324][ T7912] netlink: 8 bytes leftover after parsing attributes in process `syz.1.913'. [ 264.586855][ T7919] bridge0: port 4(hsr0) entered blocking state [ 264.596248][ T7919] bridge0: port 4(hsr0) entered disabled state [ 264.596485][ T7919] hsr0: entered allmulticast mode [ 264.596503][ T7919] hsr_slave_0: entered allmulticast mode [ 264.596522][ T7919] hsr_slave_1: entered allmulticast mode [ 264.599262][ T7919] hsr0: entered promiscuous mode [ 264.779286][ T1200] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 264.779308][ T1200] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 264.963500][ T155] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 264.963522][ T155] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 265.413802][ T7951] netlink: 'syz.0.931': attribute type 21 has an invalid length. [ 265.413828][ T7951] IPv6: NLM_F_CREATE should be specified when creating new route [ 266.079755][ T7984] netlink: 'syz.6.948': attribute type 10 has an invalid length. [ 266.079780][ T7984] netlink: 228 bytes leftover after parsing attributes in process `syz.6.948'. [ 266.359181][ T5866] IPVS: starting estimator thread 0... [ 266.449738][ T7998] IPVS: using max 8 ests per chain, 19200 per kthread [ 266.590700][ T8007] netlink: 8 bytes leftover after parsing attributes in process `syz.0.960'. [ 266.931197][ T8026] netlink: 68 bytes leftover after parsing attributes in process `syz.6.967'. [ 266.931234][ T8026] netlink: 68 bytes leftover after parsing attributes in process `syz.6.967'. [ 267.026966][ T8030] netlink: 116 bytes leftover after parsing attributes in process `syz.0.970'. [ 267.343232][ T8047] A link change request failed with some changes committed already. Interface veth1_macvtap may have been left with an inconsistent configuration, please check. [ 267.573986][ T36] audit: type=1326 audit(1772069490.410:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8057 comm="syz.1.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488ab8c629 code=0x7ffc0000 [ 267.818050][ T8070] netlink: 72 bytes leftover after parsing attributes in process `syz.1.990'. [ 267.818081][ T8070] netlink: 12 bytes leftover after parsing attributes in process `syz.1.990'. [ 267.818097][ T8070] netlink: 20 bytes leftover after parsing attributes in process `syz.1.990'. [ 267.991631][ T8077] netlink: 'syz.1.994': attribute type 5 has an invalid length. [ 268.292774][ T8095] Driver unsupported XDP return value 0 on prog (id 52) dev N/A, expect packet loss! [ 268.410994][ T5901] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 268.569717][ T5901] usb 2-1: Using ep0 maxpacket: 16 [ 268.576943][ T5901] usb 2-1: config 1 has an invalid interface number: 105 but max is 0 [ 268.576971][ T5901] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 268.576990][ T5901] usb 2-1: config 1 has no interface number 0 [ 268.577034][ T5901] usb 2-1: config 1 interface 105 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 268.577060][ T5901] usb 2-1: config 1 interface 105 has no altsetting 0 [ 268.602725][ T5901] usb 2-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d [ 268.602759][ T5901] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 268.602781][ T5901] usb 2-1: Product: syz [ 268.602796][ T5901] usb 2-1: Manufacturer: syz [ 268.602811][ T5901] usb 2-1: SerialNumber: syz [ 268.767936][ T36] kauditd_printk_skb: 8 callbacks suppressed [ 268.767953][ T36] audit: type=1326 audit(1772069491.600:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8114 comm="syz.5.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 268.767995][ T36] audit: type=1326 audit(1772069491.600:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8114 comm="syz.5.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 268.768049][ T36] audit: type=1326 audit(1772069491.600:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8114 comm="syz.5.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 268.799844][ T36] audit: type=1326 audit(1772069491.630:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8114 comm="syz.5.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=109 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 268.799969][ T36] audit: type=1326 audit(1772069491.630:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8114 comm="syz.5.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 268.800024][ T36] audit: type=1326 audit(1772069491.630:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8114 comm="syz.5.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 268.800132][ T36] audit: type=1326 audit(1772069491.630:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8114 comm="syz.5.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 268.800186][ T36] audit: type=1326 audit(1772069491.630:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8114 comm="syz.5.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 268.800294][ T36] audit: type=1326 audit(1772069491.630:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8114 comm="syz.5.1013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 268.975730][ T5901] aqc111 2-1:1.105: probe with driver aqc111 failed with error -22 [ 269.174529][ T5957] usb 2-1: USB disconnect, device number 8 [ 269.379562][ T10] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 269.539567][ T10] usb 7-1: Using ep0 maxpacket: 8 [ 269.556236][ T10] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 269.556283][ T10] usb 7-1: config 0 interface 0 has no altsetting 0 [ 269.569087][ T10] usb 7-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e [ 269.569171][ T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 269.569232][ T10] usb 7-1: Product: syz [ 269.569274][ T10] usb 7-1: Manufacturer: syz [ 269.569308][ T10] usb 7-1: SerialNumber: syz [ 269.636105][ T10] usb 7-1: config 0 descriptor?? [ 269.657346][ T10] snd_usb_toneport 7-1:0.0: Line 6 TonePort UX2 found [ 269.856097][ T10] snd_usb_toneport 7-1:0.0: set_interface failed [ 269.856425][ T10] snd_usb_toneport 7-1:0.0: Line 6 TonePort UX2 now disconnected [ 269.856630][ T10] snd_usb_toneport 7-1:0.0: probe with driver snd_usb_toneport failed with error -71 [ 269.905172][ T10] usb 7-1: USB disconnect, device number 2 [ 270.021162][ T8141] __nla_validate_parse: 6 callbacks suppressed [ 270.021183][ T8141] netlink: 34 bytes leftover after parsing attributes in process `syz.1.1027'. [ 270.115319][ T1233] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 270.260537][ T1233] usb 4-1: Using ep0 maxpacket: 8 [ 270.262896][ T1233] usb 4-1: config index 0 descriptor too short (expected 1307, got 27) [ 270.262925][ T1233] usb 4-1: config 0 has an invalid interface number: 0 but max is -1 [ 270.262946][ T1233] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 0 [ 270.262997][ T1233] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 270.263025][ T1233] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 270.265508][ T1233] usb 4-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de [ 270.265535][ T1233] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 270.265555][ T1233] usb 4-1: Product: syz [ 270.265569][ T1233] usb 4-1: Manufacturer: syz [ 270.265582][ T1233] usb 4-1: SerialNumber: syz [ 270.351470][ T1233] usb 4-1: config 0 descriptor?? [ 270.399987][ T1233] hub 4-1:0.0: bad descriptor, ignoring hub [ 270.400031][ T1233] hub 4-1:0.0: probe with driver hub failed with error -5 [ 270.405615][ T1233] input: syz syz as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input8 [ 270.627351][ T5901] usb 4-1: USB disconnect, device number 8 [ 270.691422][ T8165] netlink: 'syz.1.1038': attribute type 3 has an invalid length. [ 271.241610][ T8183] bridge1: entered allmulticast mode [ 271.347245][ T8187] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 271.775351][ T36] audit: type=1326 audit(1772069494.610:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8203 comm="syz.5.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 272.339806][ T8236] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1074'. [ 273.155052][ T8271] netlink: 116 bytes leftover after parsing attributes in process `syz.1.1091'. [ 273.469489][ T1233] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 273.582806][ T8297] Option ' ' to dns_resolver key: bad/missing value [ 273.629780][ T1233] usb 7-1: Using ep0 maxpacket: 8 [ 273.647915][ T1233] usb 7-1: config 1 interface 0 has no altsetting 0 [ 273.652002][ T1233] usb 7-1: New USB device found, idVendor=05ac, idProduct=0240, bcdDevice= 0.40 [ 273.652031][ T1233] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 273.652052][ T1233] usb 7-1: Product: syz [ 273.652068][ T1233] usb 7-1: Manufacturer: syz [ 273.652081][ T1233] usb 7-1: SerialNumber: syz [ 273.832390][ T8305] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.832738][ T8305] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.832955][ T8305] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.833216][ T8305] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.833425][ T8305] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.833684][ T8305] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.833889][ T8305] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.834092][ T8305] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.834365][ T8305] batman_adv: batadv0: adding TT local entry 66:ff:f2:fc:ff:ff to non-existent VLAN 815 [ 273.942845][ T1233] input: bcm5974 as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/input/input9 [ 273.957823][ T5147] bcm5974 7-1:1.0: could not read from device [ 274.379001][ T8312] ip6gre1: entered allmulticast mode [ 274.781302][ T8322] netlink: 'syz.0.1114': attribute type 13 has an invalid length. [ 274.877150][ T1233] usb 7-1: USB disconnect, device number 3 [ 275.021992][ T8333] program syz.3.1120 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 275.457867][ T8355] netlink: 'syz.3.1128': attribute type 1 has an invalid length. [ 275.664614][ T8367] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 275.695013][ T8366] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1135'. [ 276.360198][ T8406] IPv6: Can't replace route, no match found [ 276.391526][ T8409] net_ratelimit: 4148 callbacks suppressed [ 276.391542][ T8409] openvswitch: netlink: Missing valid actions attribute. [ 276.391559][ T8409] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 276.572350][ T8418] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 276.659766][ T8424] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1163'. [ 277.218233][ T36] kauditd_printk_skb: 12 callbacks suppressed [ 277.218254][ T36] audit: type=1326 audit(1772069500.050:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8451 comm="syz.3.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 277.218302][ T36] audit: type=1326 audit(1772069500.050:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8451 comm="syz.3.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 277.270857][ T8456] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 277.320870][ T36] audit: type=1326 audit(1772069500.160:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8451 comm="syz.3.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 277.320923][ T36] audit: type=1326 audit(1772069500.160:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8451 comm="syz.3.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 277.320966][ T36] audit: type=1326 audit(1772069500.160:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8451 comm="syz.3.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 278.101375][ T8496] bond0: entered promiscuous mode [ 278.101398][ T8496] bond_slave_0: entered promiscuous mode [ 278.101628][ T8496] bond_slave_1: entered promiscuous mode [ 278.170600][ T8501] kAFS: Can only specify source 'none' with -o dyn [ 278.204651][ T8505] netlink: 'syz.3.1200': attribute type 3 has an invalid length. [ 278.204675][ T8505] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1200'. [ 278.390614][ T8511] [U] vÔ3¸Âfù¾"SçÁ/Éê4:ÃXTz“W¡t‘’lWµ«= [ 278.390751][ T8511] [U] J"—e:ÀÆ" [ 278.504909][ T8517] netlink: 'syz.0.1208': attribute type 21 has an invalid length. [ 279.003026][ T8546] ipvlan0: entered promiscuous mode [ 279.003066][ T8546] ipvlan0: entered allmulticast mode [ 279.003079][ T8546] veth0_vlan: entered allmulticast mode [ 280.045972][ T8606] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1251'. [ 280.247501][ T36] audit: type=1326 audit(1772069503.080:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8614 comm="syz.5.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 280.279513][ T36] audit: type=1326 audit(1772069503.080:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8614 comm="syz.5.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 280.280553][ T36] audit: type=1326 audit(1772069503.120:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8614 comm="syz.5.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 280.280856][ T36] audit: type=1326 audit(1772069503.120:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8614 comm="syz.5.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 280.281129][ T36] audit: type=1326 audit(1772069503.120:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8614 comm="syz.5.1256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 280.281447][ T8618] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1258'. [ 280.281480][ T8618] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1258'. [ 281.148201][ T8665] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1281'. [ 281.323007][ T8677] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1283'. [ 281.716579][ T8695] openvswitch: netlink: Key type 51 is out of range max 32 [ 281.759972][ T8701] netlink: 'syz.3.1294': attribute type 8 has an invalid length. [ 281.769609][ T8693] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 281.816358][ T8693] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 282.259896][ T8720] netlink: 260 bytes leftover after parsing attributes in process `syz.0.1304'. [ 282.521713][ T8735] syz.1.1313 (8735): drop_caches: 0 [ 283.003496][ T8759] 9p: Unknown Cache mode or invalid value fs [ 283.020700][ T1233] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 283.099506][ T5987] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 283.189508][ T1233] usb 7-1: Using ep0 maxpacket: 32 [ 283.195340][ T1233] usb 7-1: config 0 has an invalid interface number: 244 but max is 0 [ 283.195369][ T1233] usb 7-1: config 0 has no interface number 0 [ 283.195433][ T1233] usb 7-1: config 0 interface 244 altsetting 2 endpoint 0x2 has invalid maxpacket 512, setting to 64 [ 283.195461][ T1233] usb 7-1: config 0 interface 244 has no altsetting 0 [ 283.237638][ T1233] usb 7-1: New USB device found, idVendor=0e41, idProduct=4750, bcdDevice=26.9c [ 283.237669][ T1233] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 283.237691][ T1233] usb 7-1: Product: syz [ 283.237705][ T1233] usb 7-1: Manufacturer: syz [ 283.237720][ T1233] usb 7-1: SerialNumber: syz [ 283.289026][ T5987] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 283.289052][ T5987] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 283.289069][ T5987] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 283.289099][ T5987] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 283.289116][ T5987] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 283.342148][ T1233] usb 7-1: config 0 descriptor?? [ 283.372136][ T5987] usb 2-1: config 0 descriptor?? [ 283.372625][ T1233] snd_usb_toneport 7-1:0.244: Line 6 GuitarPort found [ 283.424573][ T5987] usbhid 2-1:0.0: fixing wrong optional hid class descriptors count [ 283.462509][ T36] kauditd_printk_skb: 4 callbacks suppressed [ 283.462529][ T36] audit: type=1326 audit(1772069506.300:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8771 comm="syz.5.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 283.465676][ T36] audit: type=1326 audit(1772069506.300:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8771 comm="syz.5.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 283.557207][ T36] audit: type=1326 audit(1772069506.390:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8771 comm="syz.5.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 283.558046][ T36] audit: type=1326 audit(1772069506.390:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8771 comm="syz.5.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=189 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 283.558160][ T36] audit: type=1326 audit(1772069506.390:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8771 comm="syz.5.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 283.580060][ T36] audit: type=1326 audit(1772069506.390:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8771 comm="syz.5.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 283.587988][ T36] audit: type=1326 audit(1772069506.420:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8771 comm="syz.5.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 283.604007][ T36] audit: type=1326 audit(1772069506.420:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8771 comm="syz.5.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 283.604115][ T36] audit: type=1326 audit(1772069506.440:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8771 comm="syz.5.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 283.604308][ T1233] snd_usb_toneport 7-1:0.244: cannot get proper max packet size [ 283.604606][ T1233] snd_usb_toneport 7-1:0.244: Line 6 GuitarPort now disconnected [ 283.606514][ T1233] snd_usb_toneport 7-1:0.244: probe with driver snd_usb_toneport failed with error -22 [ 283.765289][ T1233] usb 7-1: USB disconnect, device number 4 [ 283.801107][ T5987] usbhid 2-1:0.0: can't add hid device: -71 [ 283.801227][ T5987] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 283.889998][ T5987] usb 2-1: USB disconnect, device number 9 [ 284.167566][ T8791] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1342'. [ 284.167593][ T8791] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1342'. [ 284.167610][ T8791] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1342'. [ 284.278809][ T36] audit: type=1326 audit(1772069507.110:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8795 comm="syz.5.1343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 284.341232][ T8800] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1345'. [ 285.075232][ T8839] fuse: Bad value for 'fd' [ 285.436814][ T8854] bond2: option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 285.483864][ T8854] bond2 (unregistering): Released all slaves [ 286.009545][ T10] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 286.161825][ T10] usb 4-1: config 3 has an invalid interface number: 84 but max is 0 [ 286.161858][ T10] usb 4-1: config 3 has no interface number 0 [ 286.161892][ T10] usb 4-1: config 3 interface 84 has no altsetting 0 [ 286.164964][ T10] usb 4-1: New USB device found, idVendor=1ba6, idProduct=0001, bcdDevice=10.6b [ 286.164992][ T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 286.165013][ T10] usb 4-1: Product: syz [ 286.165028][ T10] usb 4-1: Manufacturer: syz [ 286.165043][ T10] usb 4-1: SerialNumber: syz [ 286.499262][ T10] as10x_usb: device has been detected [ 286.502401][ T10] dvbdev: DVB: registering new adapter (Abilis Systems DVB-Titan) [ 286.560183][ T10] usb 4-1: DVB: registering adapter 1 frontend 0 (Abilis Systems DVB-Titan)... [ 286.566183][ T8900] netlink: 1 bytes leftover after parsing attributes in process `syz.5.1393'. [ 286.608632][ T10] as10x_usb: error during firmware upload part1 [ 286.609252][ T10] Registered device Abilis Systems DVB-Titan [ 286.639064][ T10] usb 4-1: USB disconnect, device number 9 [ 286.732327][ T10] Unregistered device Abilis Systems DVB-Titan [ 286.740991][ T10] as10x_usb: device has been disconnected [ 287.063763][ T8918] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1401'. [ 287.063813][ T8918] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1401'. [ 287.209834][ T8924] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1403'. [ 287.292905][ T8928] vti0: entered promiscuous mode [ 287.292933][ T8928] vti0: entered allmulticast mode [ 287.728680][ T8953] netlink: 'syz.6.1415': attribute type 1 has an invalid length. [ 287.728706][ T8953] netlink: 2096 bytes leftover after parsing attributes in process `syz.6.1415'. [ 287.728734][ T8953] netlink: 5 bytes leftover after parsing attributes in process `syz.6.1415'. [ 287.939615][ T8960] netlink: 'syz.3.1420': attribute type 33 has an invalid length. [ 287.939642][ T8960] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1420'. [ 288.099013][ T8971] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1426'. [ 288.099054][ T8971] netlink: 56 bytes leftover after parsing attributes in process `syz.6.1426'. [ 288.796414][ T9010] sctp: [Deprecated]: syz.3.1445 (pid 9010) Use of struct sctp_assoc_value in delayed_ack socket option. [ 288.796414][ T9010] Use struct sctp_sack_info instead [ 288.819868][ T9011] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1444'. [ 288.849656][ T5987] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 288.999478][ T5987] usb 1-1: Using ep0 maxpacket: 16 [ 289.005937][ T5987] usb 1-1: New USB device found, idVendor=0483, idProduct=1234, bcdDevice=ff.76 [ 289.005969][ T5987] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 289.005990][ T5987] usb 1-1: Product: syz [ 289.006005][ T5987] usb 1-1: Manufacturer: syz [ 289.006020][ T5987] usb 1-1: SerialNumber: syz [ 289.060523][ T5987] usb 1-1: config 0 descriptor?? [ 289.318274][ T5987] usb 1-1: ignoring: not an USB2CAN converter [ 289.354773][ T9031] deleting an unspecified loop device is not supported. [ 289.532644][ T5957] usb 1-1: USB disconnect, device number 9 [ 290.511570][ T9078] netlink: 'syz.6.1478': attribute type 10 has an invalid length. [ 290.511614][ T9078] netdevsim netdevsim6 netdevsim0: entered promiscuous mode [ 290.649624][ T5879] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 290.809559][ T5879] usb 4-1: Using ep0 maxpacket: 32 [ 290.811581][ T5879] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 290.811607][ T5879] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 290.811702][ T5879] usb 4-1: config 1 interface 2 altsetting 0 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 290.811730][ T5879] usb 4-1: Duplicate descriptor for config 1 interface 2 altsetting 0, skipping [ 290.814320][ T5879] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 290.814345][ T5879] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 290.814364][ T5879] usb 4-1: Product: syz [ 290.814376][ T5879] usb 4-1: Manufacturer: syz [ 290.814389][ T5879] usb 4-1: SerialNumber: syz [ 291.254762][ T5879] usb 4-1: USB disconnect, device number 10 [ 291.412500][ T8756] udevd[8756]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 291.677777][ T9126] overlayfs: unescaped trailing colons in lowerdir mount option. [ 291.898279][ T9140] netlink: 'syz.1.1505': attribute type 2 has an invalid length. [ 292.095679][ T9150] netlink: 'syz.3.1513': attribute type 27 has an invalid length. [ 292.095767][ T9150] C: renamed from team_slave_0 (while UP) [ 292.149512][ T5957] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 292.333373][ T5957] usb 6-1: config 220 has an invalid interface number: 76 but max is 2 [ 292.333405][ T5957] usb 6-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 292.333425][ T5957] usb 6-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 292.333445][ T5957] usb 6-1: config 220 has no interface number 2 [ 292.333516][ T5957] usb 6-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 292.333545][ T5957] usb 6-1: config 220 interface 0 has no altsetting 0 [ 292.333564][ T5957] usb 6-1: config 220 interface 76 has no altsetting 0 [ 292.333583][ T5957] usb 6-1: config 220 interface 1 has no altsetting 0 [ 292.336287][ T5957] usb 6-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 292.336316][ T5957] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 292.336338][ T5957] usb 6-1: Product: syz [ 292.336353][ T5957] usb 6-1: Manufacturer: syz [ 292.336369][ T5957] usb 6-1: SerialNumber: syz [ 292.703770][ T5957] usb 6-1: selecting invalid altsetting 0 [ 292.718958][ T5957] uvcvideo 6-1:220.0: Found UVC 7.01 device syz (8086:0b07) [ 292.719004][ T5957] uvcvideo 6-1:220.0: No valid video chain found. [ 292.783315][ T5957] usb 6-1: selecting invalid altsetting 0 [ 292.783357][ T5957] usbtest 6-1:220.1: probe with driver usbtest failed with error -22 [ 292.810852][ T5957] usb 6-1: USB disconnect, device number 4 [ 292.934970][ T9180] __nla_validate_parse: 3 callbacks suppressed [ 292.934991][ T9180] netlink: 56 bytes leftover after parsing attributes in process `syz.6.1528'. [ 292.959702][ T9182] netlink: 'syz.3.1531': attribute type 30 has an invalid length. [ 293.041909][ T9182] bond1: option arp_missed_max: invalid value (0) [ 293.041934][ T9182] bond1: option arp_missed_max: allowed values 1 - 255 [ 293.085471][ T9182] bond1 (unregistering): Released all slaves [ 293.596771][ T5803] Bluetooth: hci2: SCO packet for unknown connection handle 0 [ 293.646961][ T9218] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1547'. [ 293.710996][ T9219] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1546'. [ 294.140473][ T9241] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1558'. [ 294.513758][ T9255] netlink: 'syz.0.1565': attribute type 16 has an invalid length. [ 294.513784][ T9255] netlink: 64138 bytes leftover after parsing attributes in process `syz.0.1565'. [ 294.610067][ T9259] program syz.5.1567 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 295.054114][ T9284] netlink: 'syz.0.1579': attribute type 10 has an invalid length. [ 295.054140][ T9284] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1579'. [ 295.059217][ T9284] batman_adv: batadv0: Adding interface: virt_wifi0 [ 295.059236][ T9284] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 295.059272][ T9284] batman_adv: batadv0: Interface activated: virt_wifi0 [ 295.374167][ T9299] netlink: 'syz.0.1585': attribute type 3 has an invalid length. [ 295.374192][ T9299] netlink: 'syz.0.1585': attribute type 1 has an invalid length. [ 295.379058][ T9301] binder: 9300:9301 ioctl c0306201 200000000540 returned -22 [ 295.495510][ T9306] IPVS: sync thread started: state = MASTER, mcast_ifn = sit0, syncid = 4, id = 0 [ 295.718575][ T9320] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1596'. [ 295.776591][ T9320] gtp0: entered promiscuous mode [ 295.776619][ T9320] gtp0: entered allmulticast mode [ 295.853103][ T9325] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1598'. [ 295.853136][ T9325] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1598'. [ 296.350829][ T5803] Bluetooth: hci2: command 0x0406 tx timeout [ 296.915953][ T9381] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1626'. [ 297.819515][ T5879] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 297.978837][ T5879] usb 6-1: Using ep0 maxpacket: 8 [ 297.988167][ T5879] usb 6-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b [ 297.988200][ T5879] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 298.061543][ T5879] pvrusb2: Hardware description: Terratec Grabster AV400 [ 298.061558][ T5879] pvrusb2: ********** [ 298.061564][ T5879] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental. [ 298.061575][ T5879] pvrusb2: Important functionality might not be entirely working. [ 298.061582][ T5879] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver. [ 298.061590][ T5879] pvrusb2: ********** [ 298.147408][ T9442] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1654'. [ 298.272723][ T2372] pvrusb2: Invalid write control endpoint [ 298.312660][ T5879] usb 6-1: USB disconnect, device number 5 [ 298.511567][ T2372] pvrusb2: Invalid write control endpoint [ 298.511586][ T2372] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work. [ 298.511597][ T2372] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device. [ 298.511607][ T2372] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups. [ 298.511618][ T2372] pvrusb2: Device being rendered inoperable [ 298.558294][ T2372] cx25840 1-0044: Unable to detect h/w, assuming cx23887 [ 298.558367][ T2372] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a) [ 298.593568][ T2372] pvrusb2: Attached sub-driver cx25840 [ 298.593589][ T2372] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it. [ 298.593611][ T2372] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover. [ 299.536135][ T9505] netlink: 'syz.6.1685': attribute type 11 has an invalid length. [ 299.573435][ T9509] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1688'. [ 299.899647][ T9522] 8021q: adding VLAN 0 to HW filter on device bond2 [ 299.981705][ T36] kauditd_printk_skb: 8 callbacks suppressed [ 299.981725][ T36] audit: type=1326 audit(1772069778.822:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9526 comm="syz.1.1696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488ab8c629 code=0x7ffc0000 [ 299.982317][ T36] audit: type=1326 audit(1772069778.822:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9526 comm="syz.1.1696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488ab8c629 code=0x7ffc0000 [ 300.059012][ T36] audit: type=1326 audit(1772069778.892:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9526 comm="syz.1.1696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7f488ab8c629 code=0x7ffc0000 [ 300.060827][ T36] audit: type=1326 audit(1772069778.892:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9526 comm="syz.1.1696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488ab8c629 code=0x7ffc0000 [ 300.062024][ T36] audit: type=1326 audit(1772069778.902:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9526 comm="syz.1.1696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488ab8c629 code=0x7ffc0000 [ 300.366696][ T9533] bond1: Removing last arp target with arp_interval on [ 300.419913][ T9541] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1703'. [ 300.589372][ T9549] ipvlan0: entered promiscuous mode [ 300.589408][ T9549] ipvlan0: entered allmulticast mode [ 300.589422][ T9549] veth0_vlan: entered allmulticast mode [ 300.799815][ T9560] netlink: 260 bytes leftover after parsing attributes in process `syz.6.1710'. [ 300.799853][ T9560] ksmbd: Unknown IPC event: 12, ignore. [ 301.027942][ T9572] vim2m vim2m.0: Fourcc format (0x47524247) invalid. [ 301.425543][ T9586] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1726'. [ 302.139936][ T5879] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 302.289891][ T5879] usb 2-1: Using ep0 maxpacket: 16 [ 302.298204][ T5879] usb 2-1: config 166 has an invalid interface number: 177 but max is 1 [ 302.298236][ T5879] usb 2-1: config 166 has an invalid interface number: 34 but max is 1 [ 302.298258][ T5879] usb 2-1: config 166 has an invalid descriptor of length 0, skipping remainder of the config [ 302.298279][ T5879] usb 2-1: config 166 has no interface number 0 [ 302.298297][ T5879] usb 2-1: config 166 has no interface number 1 [ 302.298354][ T5879] usb 2-1: config 166 interface 177 altsetting 4 has an invalid descriptor for endpoint zero, skipping [ 302.298377][ T5879] usb 2-1: config 166 interface 177 altsetting 4 has an invalid descriptor for endpoint zero, skipping [ 302.298414][ T5879] usb 2-1: config 166 interface 34 altsetting 1 has a duplicate endpoint with address 0x9, skipping [ 302.298439][ T5879] usb 2-1: config 166 interface 34 altsetting 1 endpoint 0x2 has invalid wMaxPacketSize 0 [ 302.298462][ T5879] usb 2-1: config 166 interface 34 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 0 [ 302.298487][ T5879] usb 2-1: config 166 interface 34 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 4 [ 302.298515][ T5879] usb 2-1: config 166 interface 177 has no altsetting 0 [ 302.298534][ T5879] usb 2-1: config 166 interface 34 has no altsetting 0 [ 302.428979][ T5879] usb 2-1: New USB device found, idVendor=0bda, idProduct=0138, bcdDevice=30.12 [ 302.429011][ T5879] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 302.429032][ T5879] usb 2-1: Product: syz [ 302.429046][ T5879] usb 2-1: Manufacturer: syz [ 302.429061][ T5879] usb 2-1: SerialNumber: syz [ 302.676396][ T5879] ums-realtek 2-1:166.177: USB Mass Storage device detected [ 302.847059][ T5879] ums-realtek 2-1:166.34: USB Mass Storage device detected [ 303.100557][ T5879] uvcvideo 2-1:166.34: Found UVC 0.00 device syz (0bda:0138) [ 303.100594][ T5879] uvcvideo 2-1:166.34: No valid video chain found. [ 303.143393][ T5879] usb 2-1: USB disconnect, device number 10 [ 303.942628][ T9714] ieee802154 phy1 wpan1: encryption failed: -22 [ 303.972638][ T9716] kAFS: unable to lookup cell '(' [ 304.633266][ T9748] bridge0: port 1(bridge_slave_0) entered forwarding state [ 304.664838][ T36] audit: type=1326 audit(1772069783.501:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9752 comm="syz.5.1783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 304.685632][ T36] audit: type=1326 audit(1772069783.521:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9752 comm="syz.5.1783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=91 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 304.685781][ T36] audit: type=1326 audit(1772069783.521:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9752 comm="syz.5.1783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 304.685908][ T36] audit: type=1326 audit(1772069783.521:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9752 comm="syz.5.1783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 305.530601][ T5957] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 305.682134][ T5957] usb 4-1: Using ep0 maxpacket: 8 [ 305.684479][ T5957] usb 4-1: config 0 interface 0 has no altsetting 0 [ 305.687453][ T5957] usb 4-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e [ 305.687484][ T5957] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 305.687506][ T5957] usb 4-1: Product: syz [ 305.687521][ T5957] usb 4-1: Manufacturer: syz [ 305.687537][ T5957] usb 4-1: SerialNumber: syz [ 305.757431][ T5957] usb 4-1: config 0 descriptor?? [ 305.797577][ T5957] snd_usb_toneport 4-1:0.0: Line 6 TonePort UX2 found [ 305.976287][ T5957] snd_usb_toneport 4-1:0.0: Line 6 TonePort UX2 now disconnected [ 305.979266][ T5957] snd_usb_toneport 4-1:0.0: probe with driver snd_usb_toneport failed with error -22 [ 306.180643][ T5879] usb 4-1: USB disconnect, device number 11 [ 307.126356][ T9874] capability: warning: `syz.3.1842' uses deprecated v2 capabilities in a way that may be insecure [ 307.245201][ T9881] netlink: 'syz.6.1847': attribute type 1 has an invalid length. [ 307.561046][ T9899] mmap: syz.1.1856 (9899): VmData 37502976 exceed data ulimit 1587. Update limits or use boot option ignore_rlimit_data. [ 307.608126][ T9900] netlink: 'syz.0.1855': attribute type 2 has an invalid length. [ 308.535984][ T9956] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1881'. [ 309.061051][ T9984] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1897'. [ 309.341173][ T9997] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long [ 310.080882][ T5987] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 310.123438][T10034] ======================================================= [ 310.123438][T10034] WARNING: The mand mount option has been deprecated and [ 310.123438][T10034] and is ignored by this kernel. Remove the mand [ 310.123438][T10034] option from the mount to silence this warning. [ 310.123438][T10034] ======================================================= [ 310.180832][ T5901] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 310.241027][ T5987] usb 2-1: Using ep0 maxpacket: 32 [ 310.243289][ T5987] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xC4, changing to 0x84 [ 310.243321][ T5987] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 310.245645][ T5987] usb 2-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=51.16 [ 310.245677][ T5987] usb 2-1: New USB device strings: Mfr=154, Product=2, SerialNumber=3 [ 310.245693][ T5987] usb 2-1: Product: syz [ 310.245704][ T5987] usb 2-1: Manufacturer: syz [ 310.245715][ T5987] usb 2-1: SerialNumber: syz [ 310.332173][ T5901] usb 4-1: Using ep0 maxpacket: 16 [ 310.338188][ T5901] usb 4-1: config 0 has an invalid interface number: 126 but max is 0 [ 310.338219][ T5901] usb 4-1: config 0 has an invalid descriptor of length 48, skipping remainder of the config [ 310.338239][ T5901] usb 4-1: config 0 has no interface number 0 [ 310.338285][ T5901] usb 4-1: config 0 interface 126 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87 [ 310.338313][ T5901] usb 4-1: config 0 interface 126 altsetting 0 endpoint 0x87 has invalid maxpacket 34328, setting to 1024 [ 310.338342][ T5901] usb 4-1: config 0 interface 126 altsetting 0 endpoint 0xA has invalid maxpacket 512, setting to 64 [ 310.338369][ T5901] usb 4-1: config 0 interface 126 altsetting 0 endpoint 0x4 has invalid maxpacket 26159, setting to 1024 [ 310.338397][ T5901] usb 4-1: config 0 interface 126 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 1024 [ 310.338422][ T5901] usb 4-1: config 0 interface 126 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 4 [ 310.338464][ T5901] usb 4-1: New USB device found, idVendor=0763, idProduct=1015, bcdDevice=56.88 [ 310.338487][ T5901] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 310.411834][ T5987] usb 2-1: config 0 descriptor?? [ 310.487502][ T5901] usb 4-1: config 0 descriptor?? [ 310.500434][T10024] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 310.503908][T10024] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 310.542707][ T5901] usb 4-1: Quirk or no altset; falling back to MIDI 1.0 [ 310.604948][ T5987] usb 2-1: Warning: ath10k USB support is incomplete, don't expect anything to work! [ 310.735733][ T1188] usb 2-1: Failed to submit usb control message: -71 [ 310.735773][ T1188] usb 2-1: unable to send the bmi data to the device: -71 [ 310.735793][ T1188] usb 2-1: unable to get target info from device [ 310.735809][ T1188] usb 2-1: could not get target info (-71) [ 310.736135][ T1188] usb 2-1: could not probe fw (-71) [ 310.788353][ T5987] usb 2-1: USB disconnect, device number 11 [ 310.911038][ T1233] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 311.072406][ T1233] usb 1-1: Using ep0 maxpacket: 32 [ 311.082715][ T1233] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 311.097601][ T1233] usb 1-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=33.f9 [ 311.097634][ T1233] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 311.097654][ T1233] usb 1-1: Product: syz [ 311.097676][ T1233] usb 1-1: Manufacturer: syz [ 311.097690][ T1233] usb 1-1: SerialNumber: syz [ 311.197956][ T5901] usb 4-1: USB disconnect, device number 12 [ 311.199547][ T1233] usb 1-1: config 0 descriptor?? [ 311.446500][ T5865] usb 1-1: USB disconnect, device number 10 [ 312.084577][T10084] Zero length message leads to an empty skb [ 312.461257][T10102] IPv6: NLM_F_CREATE should be specified when creating new route [ 312.675686][T10112] A link change request failed with some changes committed already. Interface veth1_to_bond may have been left with an inconsistent configuration, please check. [ 312.784211][T10118] cgroup: subsys name conflicts with all [ 313.474631][T10144] netlink: 'syz.0.1969': attribute type 1 has an invalid length. [ 313.474656][T10144] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1969'. [ 313.737252][ T36] audit: type=1326 audit(1772069792.570:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10155 comm="syz.1.1974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488ab8c629 code=0x7ffc0000 [ 313.737306][ T36] audit: type=1326 audit(1772069792.570:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10155 comm="syz.1.1974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488ab8c629 code=0x7ffc0000 [ 313.794173][ T36] audit: type=1326 audit(1772069792.630:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10155 comm="syz.1.1974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488ab8c629 code=0x7ffc0000 [ 313.808256][ T36] audit: type=1326 audit(1772069792.630:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10155 comm="syz.1.1974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488ab8c629 code=0x7ffc0000 [ 313.808392][ T36] audit: type=1326 audit(1772069792.630:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10155 comm="syz.1.1974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f488ab8c629 code=0x7ffc0000 [ 313.808535][ T36] audit: type=1326 audit(1772069792.630:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10155 comm="syz.1.1974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488ab8c629 code=0x7ffc0000 [ 313.808655][ T36] audit: type=1326 audit(1772069792.630:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10155 comm="syz.1.1974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488ab8c629 code=0x7ffc0000 [ 313.808764][ T36] audit: type=1326 audit(1772069792.630:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10155 comm="syz.1.1974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f488ab8c629 code=0x7ffc0000 [ 313.808866][ T36] audit: type=1326 audit(1772069792.630:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10155 comm="syz.1.1974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f488ab8c629 code=0x7ffc0000 [ 314.035160][T10166] netlink: 'syz.0.1978': attribute type 10 has an invalid length. [ 314.581016][T10189] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1990'. [ 314.611440][T10191] delete_channel: no stack [ 314.780236][T10200] cgroup: Unexpected value for 'nofavordynmods' [ 314.836301][T10202] Scaler: ================= START STATUS ================= [ 314.836320][T10202] Scaler: ================== END STATUS ================== [ 315.024453][T10210] netlink: 'syz.5.2001': attribute type 10 has an invalid length. [ 315.044503][T10210] team0: Device xfrm0 is of different type [ 315.303146][T10220] netlink: 'syz.0.2007': attribute type 21 has an invalid length. [ 315.352828][T10227] trusted_key: encrypted_key: keylen parameter is missing [ 315.810205][T10247] libceph: resolve '0.' (ret=-3): failed [ 315.952193][T10253] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2021'. [ 315.952222][T10253] netlink: 'syz.5.2021': attribute type 1 has an invalid length. [ 315.952237][T10253] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2021'. [ 315.952252][T10253] netlink: 252 bytes leftover after parsing attributes in process `syz.5.2021'. [ 315.952267][T10253] netlink: 'syz.5.2021': attribute type 1 has an invalid length. [ 315.952282][T10253] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2021'. [ 316.070217][ T36] audit: type=1326 audit(1772069794.900:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10257 comm="syz.6.2025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 316.211668][ T5866] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 316.377404][ T5866] usb 2-1: Using ep0 maxpacket: 16 [ 316.380308][ T5866] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 316.380335][ T5866] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 316.396680][ T5866] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 316.396773][ T5866] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 316.396827][ T5866] usb 2-1: Product: syz [ 316.396876][ T5866] usb 2-1: Manufacturer: syz [ 316.396916][ T5866] usb 2-1: SerialNumber: syz [ 316.421678][ T5865] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 316.571895][ T5865] usb 1-1: Using ep0 maxpacket: 32 [ 316.577537][ T5865] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 316.577594][ T5865] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 316.577676][ T5865] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4 [ 316.581323][ T5865] usb 1-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=25.11 [ 316.581354][ T5865] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=7 [ 316.581428][ T5865] usb 1-1: Product: syz [ 316.581444][ T5865] usb 1-1: Manufacturer: syz [ 316.581459][ T5865] usb 1-1: SerialNumber: syz [ 316.762637][ T5865] usb 1-1: config 0 descriptor?? [ 316.779874][ T5866] usb 2-1: 0:2 : does not exist [ 316.822332][ T5865] usb 1-1: no audio or video endpoints found [ 316.878318][T10276] kAFS: No cell specified [ 316.995622][ T5957] usb 1-1: USB disconnect, device number 11 [ 317.073716][ T5866] usb 2-1: USB disconnect, device number 12 [ 317.183089][T10265] udevd[10265]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 317.320933][ T1324] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.956392][T10311] bond2: option arp_interval: invalid value (18446744073709518848) [ 317.956422][T10311] bond2: option arp_interval: allowed values 0 - 2147483647 [ 318.020578][T10311] bond2 (unregistering): Released all slaves [ 318.338611][T10335] QAT: Device 3 not found [ 318.791941][ T5957] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 318.827479][T10362] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 318.954177][ T5957] usb 7-1: config 17 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 318.954215][ T5957] usb 7-1: config 17 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 318.954243][ T5957] usb 7-1: config 17 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 318.954288][ T5957] usb 7-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 318.954311][ T5957] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 319.023003][T10348] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 319.384321][T10387] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 319.442865][ T5957] aiptek 7-1:17.0: Aiptek using 400 ms programming speed [ 319.474812][ T5957] input: Aiptek as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:17.0/input/input11 [ 319.601697][ C0] aiptek 7-1:17.0: aiptek_irq - usb_submit_urb failed with result -19 [ 319.601772][ T5957] usb 7-1: USB disconnect, device number 5 [ 319.658578][T10393] comedi comedi4: bad chanlist[0]=0xfffffffe chan=65534 range length=2 [ 319.808662][T10400] openvswitch: netlink: Actions may not be safe on all matching packets [ 320.168700][T10413] openvswitch: netlink: Missing key (keys=2020040, expected=100) [ 320.196860][ T5957] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 320.352292][ T5957] usb 2-1: Using ep0 maxpacket: 16 [ 320.354987][ T5957] usb 2-1: config index 0 descriptor too short (expected 65, got 36) [ 320.355042][ T5957] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 320.355069][ T5957] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 320.355096][ T5957] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 320.355119][ T5957] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 320.355162][ T5957] usb 2-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00 [ 320.355185][ T5957] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 320.444613][ T5957] usb 2-1: config 0 descriptor?? [ 320.486370][ T5957] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input12 [ 320.490135][ T5147] pxrc 2-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 320.593192][ T5147] pxrc 2-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 320.667779][ T5865] usb 2-1: USB disconnect, device number 13 [ 321.688864][T10481] bridge1: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 321.841407][T10493] netlink: 'syz.1.2135': attribute type 1 has an invalid length. [ 322.223359][T10513] netlink: 140 bytes leftover after parsing attributes in process `syz.6.2145'. [ 322.280036][ T36] kauditd_printk_skb: 7 callbacks suppressed [ 322.280057][ T36] audit: type=1326 audit(1772069801.109:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10515 comm="syz.3.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 322.281373][ T36] audit: type=1326 audit(1772069801.109:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10515 comm="syz.3.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 322.352447][ T36] audit: type=1326 audit(1772069801.189:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10515 comm="syz.3.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 322.352602][ T36] audit: type=1326 audit(1772069801.189:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10515 comm="syz.3.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 322.352947][ T36] audit: type=1326 audit(1772069801.189:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10515 comm="syz.3.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 322.352995][ T36] audit: type=1326 audit(1772069801.189:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10515 comm="syz.3.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 322.353253][ T36] audit: type=1326 audit(1772069801.189:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10515 comm="syz.3.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 322.353450][ T36] audit: type=1326 audit(1772069801.189:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10515 comm="syz.3.2149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 322.410309][ T5803] Bluetooth: hci5: Unable to find connection for big 0x00 [ 322.513269][T10518] bridge2: the hash_elasticity option has been deprecated and is always 16 [ 322.538116][T10518] bridge2: entered promiscuous mode [ 322.538144][T10518] bridge2: entered allmulticast mode [ 322.902748][T10541] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2159'. [ 323.290206][ T36] audit: type=1326 audit(1772069802.119:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10561 comm="syz.3.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 323.291410][ T36] audit: type=1326 audit(1772069802.119:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10561 comm="syz.3.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa654d8c629 code=0x7ffc0000 [ 323.850225][T10577] netlink: 'syz.6.2177': attribute type 32 has an invalid length. [ 324.090173][T10588] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2183'. [ 324.407594][T10604] comedi comedi0: comedi_config --init_data is deprecated [ 324.570938][T10617] openvswitch: netlink: nsh attr 0 has unexpected len 1 expected 0 [ 324.808105][T10631] IPVS: sync thread started: state = BACKUP, mcast_ifn = bond0, syncid = 8, id = 0 [ 324.902712][ T10] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 325.062696][ T10] usb 2-1: Using ep0 maxpacket: 16 [ 325.063672][ T10] usb 2-1: too many configurations: 17, using maximum allowed: 8 [ 325.111010][ T10] usb 2-1: string descriptor 0 read error: -71 [ 325.111170][ T10] usb 2-1: New USB device found, idVendor=04e8, idProduct=a101, bcdDevice= 4.48 [ 325.111196][ T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 325.145351][ T10] r8152-cfgselector 2-1: Unknown version 0x0000 [ 325.145381][ T10] r8152-cfgselector 2-1: rejected 8 configurations due to insufficient available bus power [ 325.145402][ T10] r8152-cfgselector 2-1: no configuration chosen from 8 choices [ 325.151302][ T10] r8152-cfgselector 2-1: USB disconnect, device number 14 [ 325.482869][ T5866] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 325.487500][T10663] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 325.489628][T10664] netlink: 180 bytes leftover after parsing attributes in process `syz.0.2217'. [ 325.649062][ T5866] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 325.649095][ T5866] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0 [ 325.649122][ T5866] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 325.649146][ T5866] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0 [ 325.699944][ T5866] usb 4-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00 [ 325.699978][ T5866] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 325.700000][ T5866] usb 4-1: Product: syz [ 325.700016][ T5866] usb 4-1: Manufacturer: syz [ 325.700043][ T5866] usb 4-1: SerialNumber: syz [ 325.760686][ T5866] usb 4-1: config 0 descriptor?? [ 325.793085][ T5866] ums-isd200 4-1:0.0: USB Mass Storage device detected [ 325.935473][T10681] netlink: 128 bytes leftover after parsing attributes in process `syz.0.2225'. [ 326.065014][ T5866] ums-isd200 4-1:0.0: probe with driver ums-isd200 failed with error -22 [ 326.181978][ T10] usb 4-1: USB disconnect, device number 13 [ 326.194615][T10693] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2229'. [ 327.031144][T10741] netlink: 'syz.5.2253': attribute type 2 has an invalid length. [ 327.767020][T10779] netlink: 268 bytes leftover after parsing attributes in process `syz.6.2274'. [ 328.194971][T10805] netlink: 'syz.1.2288': attribute type 13 has an invalid length. [ 328.389228][T10815] netlink: 'syz.0.2291': attribute type 1 has an invalid length. [ 328.847330][T10837] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2304'. [ 328.847364][T10837] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2304'. [ 328.889675][T10838] delete_channel: no stack [ 329.252415][T10849] netlink: 'syz.6.2309': attribute type 49 has an invalid length. [ 330.293357][ T5957] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 330.468882][ T5957] usb 7-1: config index 0 descriptor too short (expected 23569, got 27) [ 330.468964][ T5957] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 330.468992][ T5957] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 330.469020][ T5957] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59378, setting to 1024 [ 330.470379][ T5957] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 330.470409][ T5957] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 330.470430][ T5957] usb 7-1: Manufacturer: syz [ 330.561797][ T5957] usb 7-1: config 0 descriptor?? [ 330.562697][T10893] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 330.587680][ T5957] igorplugusb 7-1:0.0: endpoint incorrect [ 330.633483][T10919] netlink: 'syz.0.2343': attribute type 21 has an invalid length. [ 330.825070][ T5866] usb 7-1: USB disconnect, device number 6 [ 331.251456][T10949] bond1: option packets_per_slave: mode dependency failed, not supported in mode broadcast(3) [ 331.297800][T10949] bond1 (unregistering): Released all slaves [ 332.153661][T11000] netlink: 8752 bytes leftover after parsing attributes in process `syz.6.2383'. [ 332.438620][T11018] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2392'. [ 332.474742][T11020] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2391'. [ 332.623593][ T5957] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 332.738161][T11034] openvswitch: netlink: VXLAN extension message has 1 unknown bytes. [ 332.775935][ T5957] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 332.775963][ T5957] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 332.776015][ T5957] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 332.779084][ T5957] usb 1-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5 [ 332.779114][ T5957] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 332.779142][ T5957] usb 1-1: Product: syz [ 332.779157][ T5957] usb 1-1: Manufacturer: syz [ 332.779172][ T5957] usb 1-1: SerialNumber: syz [ 332.858921][ T5957] usb 1-1: config 0 descriptor?? [ 333.090795][ T5957] uvcvideo 1-1:0.0: Found UVC 34.00 device syz (8086:0b5b) [ 333.090835][ T5957] uvcvideo 1-1:0.0: No valid video chain found. [ 333.125739][ T5957] usb 1-1: USB disconnect, device number 12 [ 333.169306][T10895] udevd[10895]: setting mode of /dev/bus/usb/001/012 to 020664 failed: No such file or directory [ 333.169499][T10895] udevd[10895]: setting owner of /dev/bus/usb/001/012 to uid=0, gid=0 failed: No such file or directory [ 333.233159][ T36] kauditd_printk_skb: 3 callbacks suppressed [ 333.233180][ T36] audit: type=1326 audit(1772069812.068:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11042 comm="syz.6.2404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 333.252622][ T36] audit: type=1326 audit(1772069812.088:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11042 comm="syz.6.2404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 333.289595][T11047] syz.6.2404 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 333.289924][ T36] audit: type=1326 audit(1772069812.118:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11042 comm="syz.6.2404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 333.289975][ T36] audit: type=1326 audit(1772069812.128:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11042 comm="syz.6.2404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 333.290006][ T36] audit: type=1326 audit(1772069812.128:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11042 comm="syz.6.2404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 333.290036][ T36] audit: type=1326 audit(1772069812.128:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11042 comm="syz.6.2404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 333.290893][ T36] audit: type=1326 audit(1772069812.128:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11042 comm="syz.6.2404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 333.322889][ T36] audit: type=1326 audit(1772069812.158:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11042 comm="syz.6.2404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 333.367268][ T36] audit: type=1326 audit(1772069812.208:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11042 comm="syz.6.2404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 333.860090][T11061] 9p: Unknown access argument 18446744073709551615: -34 [ 333.935913][T11069] netlink: 'syz.1.2416': attribute type 10 has an invalid length. [ 333.935930][T11069] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2416'. [ 333.935957][T11069] dummy0: entered promiscuous mode [ 333.936582][T11069] bridge0: port 3(dummy0) entered blocking state [ 333.936672][T11069] bridge0: port 3(dummy0) entered disabled state [ 333.936794][T11069] dummy0: entered allmulticast mode [ 333.939380][T11069] bridge0: port 3(dummy0) entered blocking state [ 333.939481][T11069] bridge0: port 3(dummy0) entered forwarding state [ 334.164727][T11072] netlink: 84 bytes leftover after parsing attributes in process `syz.0.2417'. [ 334.164748][T11072] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2417'. [ 334.417465][T11089] libceph: resolve '400' (ret=-3): failed [ 334.506557][T11092] IPv6: NLM_F_CREATE should be specified when creating new route [ 334.752211][ T36] audit: type=1326 audit(1772069813.588:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11107 comm="syz.0.2436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84d3c6c629 code=0x7ffc0000 [ 335.321703][T11144] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2453'. [ 335.596136][T11156] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 335.858350][T11170] netlink: 'syz.3.2466': attribute type 1 has an invalid length. [ 336.097792][T11182] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 336.744472][ T5901] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 336.904605][ T5901] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 336.904673][ T5901] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18 [ 336.907484][ T5901] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 336.907516][ T5901] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 336.907539][ T5901] usb 1-1: SerialNumber: syz [ 337.170185][T11232] overlayfs: missing 'lowerdir' [ 337.216882][ T5901] usb 1-1: bad CDC descriptors [ 337.252773][ T5901] usb 1-1: USB disconnect, device number 13 [ 337.530809][T11250] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2503'. [ 337.620667][T11253] sg_write: data in/out 455289/136 bytes for SCSI command 0xc7-- guessing data in; [ 337.620667][T11253] program syz.5.2506 not setting count and/or reply_len properly [ 338.484395][ T5865] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 338.649506][ T5865] usb 1-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config [ 338.649565][ T5865] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 338.649594][ T5865] usb 1-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 338.649639][ T5865] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 338.649662][ T5865] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 338.734029][ T5865] usb 1-1: Quirk or no altset; falling back to MIDI 1.0 [ 338.743278][ T5865] usb 1-1: invalid MIDI out EP 0 [ 339.089196][T11298] geneve3: entered promiscuous mode [ 339.101180][ T7251] netdevsim netdevsim6 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 339.101254][ T7251] netdevsim netdevsim6 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 339.101293][ T7251] netdevsim netdevsim6 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 339.101331][ T7251] netdevsim netdevsim6 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 339.171757][ T5865] snd-usb-audio 1-1:27.0: probe with driver snd-usb-audio failed with error -22 [ 339.198395][ T5865] usb 1-1: USB disconnect, device number 14 [ 339.297230][T11308] syz.6.2534 (11308): drop_caches: 0 [ 339.552683][T11320] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 339.582678][T11324] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2540'. [ 340.941099][T11397] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2578'. [ 341.370461][T11421] openvswitch: netlink: Missing valid actions attribute. [ 341.370495][T11421] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 341.541298][T11429] overlayfs: missing 'workdir' [ 341.783603][T11443] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2595'. [ 342.173610][T11463] syz.5.2604 uses obsolete (PF_INET,SOCK_PACKET) [ 342.276118][ T5957] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 342.444798][ T5957] usb 4-1: Using ep0 maxpacket: 8 [ 342.460700][ T5957] usb 4-1: config index 0 descriptor too short (expected 301, got 45) [ 342.460775][ T5957] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 342.460799][ T5957] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 342.460824][ T5957] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 342.460849][ T5957] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 342.460892][ T5957] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 342.460916][ T5957] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 342.944942][ T5901] usb 4-1: USB disconnect, device number 14 [ 343.198809][T11503] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2621'. [ 343.198836][T11503] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2621'. [ 343.475844][T11514] openvswitch: netlink: Unexpected mask (mask=1040, allowed=10048) [ 343.889856][T11536] netlink: 92 bytes leftover after parsing attributes in process `syz.3.2635'. [ 344.330205][T11555] netlink: 'syz.6.2643': attribute type 61 has an invalid length. [ 345.174156][T11600] netlink: 'syz.5.2665': attribute type 10 has an invalid length. [ 345.750504][T11633] netlink: 276 bytes leftover after parsing attributes in process `syz.1.2678'. [ 345.919653][T11636] 9p: Could not find request transport: f01777777777777777777777 [ 346.114521][T11652] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2690'. [ 346.228300][ T5957] usb 2-1: new full-speed USB device number 15 using dummy_hcd [ 346.311865][T11662] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2694'. [ 346.392601][ T5957] usb 2-1: not running at top speed; connect to a high speed hub [ 346.393795][ T5957] usb 2-1: config 7 has an invalid interface number: 95 but max is 0 [ 346.393821][ T5957] usb 2-1: config 7 has no interface number 0 [ 346.393854][ T5957] usb 2-1: config 7 interface 95 has no altsetting 0 [ 346.399864][ T5957] usb 2-1: New USB device found, idVendor=07ca, idProduct=a868, bcdDevice=16.18 [ 346.399943][ T5957] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 346.400007][ T5957] usb 2-1: Product: syz [ 346.400042][ T5957] usb 2-1: Manufacturer: syz [ 346.400085][ T5957] usb 2-1: SerialNumber: syz [ 346.586674][T11671] kAFS: unable to lookup cell 'syz0' [ 346.699408][ T5957] dvb-usb: found a 'AVerMedia AVerTVHD Volar (A868R)' in warm state. [ 346.699470][ T5957] cxusb: set interface failed [ 346.700085][ T5957] dvb-usb: bulk message failed: -22 (1/0) [ 346.744690][ T5957] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 346.809271][ T5957] dvb-usb: AVerMedia AVerTVHD Volar (A868R) error while loading driver (-19) [ 346.809624][ T5957] dvb_usb_cxusb 2-1:7.95: probe with driver dvb_usb_cxusb failed with error -22 [ 346.841751][ T5957] usb 2-1: USB disconnect, device number 15 [ 346.853056][T11684] Lens A: ================= START STATUS ================= [ 346.853151][T11684] Lens A: Focus, Absolute: 0 [ 346.853196][T11684] Lens A: ================== END STATUS ================== [ 346.925320][ T5908] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 347.078496][ T5908] usb 4-1: config 171 has an invalid interface number: 109 but max is 0 [ 347.078527][ T5908] usb 4-1: config 171 has an invalid descriptor of length 0, skipping remainder of the config [ 347.078549][ T5908] usb 4-1: config 171 has no interface number 0 [ 347.078596][ T5908] usb 4-1: config 171 interface 109 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 1023 [ 347.078623][ T5908] usb 4-1: config 171 interface 109 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 12 [ 347.081003][ T5908] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=fd.2e [ 347.081032][ T5908] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 347.081053][ T5908] usb 4-1: Product: syz [ 347.081068][ T5908] usb 4-1: Manufacturer: syz [ 347.081083][ T5908] usb 4-1: SerialNumber: syz [ 347.167993][T11676] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 347.372354][ T5908] ath6kl: Failed to submit usb control message: -71 [ 347.372401][ T5908] ath6kl: unable to send the bmi data to the device: -71 [ 347.372414][ T5908] ath6kl: Unable to send get target info: -71 [ 347.405668][ T5908] ath6kl: Failed to init ath6kl core: -71 [ 347.407083][ T5908] ath6kl_usb 4-1:171.109: probe with driver ath6kl_usb failed with error -71 [ 347.468303][ T5908] usb 4-1: USB disconnect, device number 15 [ 347.618512][T11711] netlink: 'syz.0.2717': attribute type 2 has an invalid length. [ 347.749596][T11718] netlink: 'syz.0.2721': attribute type 9 has an invalid length. [ 347.929441][T11726] openvswitch: netlink: Message has 12 unknown bytes. [ 347.929477][T11726] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 348.347105][T11748] siw: device registration error -23 [ 348.712215][T11768] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2744'. [ 349.274957][T11797] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2758'. [ 349.274997][T11797] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2758'. [ 349.440557][T11803] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2761'. [ 349.440586][T11803] netlink: 'syz.0.2761': attribute type 1 has an invalid length. [ 349.582698][T11810] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2764'. [ 349.607770][T11813] netlink: 'syz.0.2765': attribute type 3 has an invalid length. [ 349.607793][T11813] netlink: 3 bytes leftover after parsing attributes in process `syz.0.2765'. [ 350.034755][T11837] netlink: 212408 bytes leftover after parsing attributes in process `syz.5.2776'. [ 350.178486][T11845] IPv6: NLM_F_CREATE should be specified when creating new route [ 350.225689][ T5957] usb 7-1: new full-speed USB device number 7 using dummy_hcd [ 350.380131][ T5957] usb 7-1: config 0 has an invalid interface number: 37 but max is 1 [ 350.380161][ T5957] usb 7-1: config 0 has an invalid interface number: 255 but max is 1 [ 350.380184][ T5957] usb 7-1: config 0 has no interface number 0 [ 350.380201][ T5957] usb 7-1: config 0 has no interface number 1 [ 350.380245][ T5957] usb 7-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30 [ 350.380328][ T5957] usb 7-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255 [ 350.380358][ T5957] usb 7-1: config 0 interface 255 has no altsetting 0 [ 350.382980][ T5957] usb 7-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=20.a3 [ 350.383009][ T5957] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 350.383030][ T5957] usb 7-1: Product: syz [ 350.383045][ T5957] usb 7-1: Manufacturer: syz [ 350.383060][ T5957] usb 7-1: SerialNumber: syz [ 350.477737][ T5957] usb 7-1: config 0 descriptor?? [ 350.527712][ T5957] usb 7-1: selecting invalid altsetting 0 [ 350.527738][ T5957] usb 7-1: Could not set interface, error -22 [ 350.699837][ T5901] usb 7-1: USB disconnect, device number 7 [ 350.767924][T11870] __nla_validate_parse: 2 callbacks suppressed [ 350.767944][T11870] netlink: 180 bytes leftover after parsing attributes in process `syz.5.2794'. [ 351.162392][T11892] overlayfs: conflicting options: userxattr,metacopy=on [ 351.405968][T11904] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2810'. [ 351.998752][T11940] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2827'. [ 352.094196][T11940] bond2: up delay (10) is not a multiple of miimon (7), value rounded to 7 ms [ 352.132738][T11940] bond2 (unregistering): Released all slaves [ 352.309200][T11939] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 352.463382][ T5957] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 352.645132][ T5957] usb 7-1: config 220 has too many interfaces: 184, using maximum allowed: 32 [ 352.645164][ T5957] usb 7-1: config 220 has 1 interface, different from the descriptor's value: 184 [ 352.645217][ T5957] usb 7-1: New USB device found, idVendor=0c45, idProduct=8008, bcdDevice=e1.85 [ 352.645241][ T5957] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 352.722612][ T5957] gspca_main: sn9c2028-2.14.0 probing 0c45:8008 [ 353.056428][T11985] netlink: 'syz.1.2849': attribute type 2 has an invalid length. [ 353.056452][T11985] netlink: 'syz.1.2849': attribute type 8 has an invalid length. [ 353.056466][T11985] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2849'. [ 353.105274][ T5957] gspca_sn9c2028: read1 error -71 [ 353.106292][ T5957] gspca_sn9c2028: read1 error -71 [ 353.106399][ T5957] sn9c2028 7-1:220.0: probe with driver sn9c2028 failed with error -71 [ 353.144068][ T5957] usb 7-1: USB disconnect, device number 8 [ 353.504896][T12007] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 354.739592][T12078] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 354.856306][ T5866] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 355.006547][ T5866] usb 6-1: Using ep0 maxpacket: 32 [ 355.009379][ T5866] usb 6-1: unable to get BOS descriptor or descriptor too short [ 355.010909][ T5866] usb 6-1: config 5 has an invalid interface number: 136 but max is 2 [ 355.010936][ T5866] usb 6-1: config 5 has an invalid interface number: 145 but max is 2 [ 355.010958][ T5866] usb 6-1: config 5 has an invalid interface number: 60 but max is 2 [ 355.010977][ T5866] usb 6-1: config 5 has no interface number 0 [ 355.010993][ T5866] usb 6-1: config 5 has no interface number 1 [ 355.011010][ T5866] usb 6-1: config 5 has no interface number 2 [ 355.011067][ T5866] usb 6-1: config 5 interface 136 has no altsetting 0 [ 355.011086][ T5866] usb 6-1: config 5 interface 145 has no altsetting 0 [ 355.011105][ T5866] usb 6-1: config 5 interface 60 has no altsetting 0 [ 355.076429][ T5866] usb 6-1: New USB device found, idVendor=05c6, idProduct=920c, bcdDevice=c9.62 [ 355.076460][ T5866] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 355.076489][ T5866] usb 6-1: Product: syz [ 355.076505][ T5866] usb 6-1: Manufacturer: syz [ 355.076519][ T5866] usb 6-1: SerialNumber: syz [ 355.242567][T12097] netlink: 'syz.3.2902': attribute type 1 has an invalid length. [ 355.242590][T12097] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2902'. [ 355.419282][ T5866] usb 6-1: selecting invalid altsetting 0 [ 355.419307][ T5866] usb 6-1: Could not set interface, error -22 [ 355.451138][ T5866] usb 6-1: USB disconnect, device number 6 [ 356.091635][T12131] !: renamed from dummy0 [ 356.362376][T12133] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 356.927963][T12171] netlink: 'syz.5.2933': attribute type 21 has an invalid length. [ 356.928080][T12171] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2933'. [ 357.148579][ T5908] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 357.296686][ T5908] usb 7-1: Using ep0 maxpacket: 8 [ 357.298902][ T5908] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 357.298930][ T5908] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 357.301312][ T5908] usb 7-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52 [ 357.301342][ T5908] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 357.301364][ T5908] usb 7-1: Product: syz [ 357.301379][ T5908] usb 7-1: Manufacturer: syz [ 357.301394][ T5908] usb 7-1: SerialNumber: syz [ 357.373242][ T5908] usb 7-1: config 0 descriptor?? [ 357.830372][ T5901] usb 7-1: USB disconnect, device number 9 [ 358.261512][T12244] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 358.262535][T12244] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 359.150174][T12289] netlink: 596 bytes leftover after parsing attributes in process `syz.5.2991'. [ 359.579440][T12308] ipvlan0: left promiscuous mode [ 359.579476][T12308] ipvlan0: left allmulticast mode [ 359.579490][T12308] veth0_vlan: left allmulticast mode [ 359.604203][ T36] kauditd_printk_skb: 8 callbacks suppressed [ 359.604223][ T36] audit: type=1326 audit(1772069838.435:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12310 comm="syz.5.3002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 359.607731][ T36] audit: type=1326 audit(1772069838.435:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12310 comm="syz.5.3002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 359.625466][ T36] audit: type=1326 audit(1772069838.455:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12310 comm="syz.5.3002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 359.625552][ T36] audit: type=1326 audit(1772069838.455:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12310 comm="syz.5.3002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 359.625600][ T36] audit: type=1326 audit(1772069838.455:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12310 comm="syz.5.3002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 359.625717][ T36] audit: type=1326 audit(1772069838.455:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12310 comm="syz.5.3002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 359.625842][ T36] audit: type=1326 audit(1772069838.455:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12310 comm="syz.5.3002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 359.625957][ T36] audit: type=1326 audit(1772069838.455:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12310 comm="syz.5.3002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 359.626139][ T36] audit: type=1326 audit(1772069838.455:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12310 comm="syz.5.3002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fc02322c629 code=0x7ffc0000 [ 359.979101][T12317] netlink: 'syz.0.3006': attribute type 21 has an invalid length. [ 360.179960][T12326] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3007'. [ 360.180002][T12326] netlink: 36 bytes leftover after parsing attributes in process `syz.1.3007'. [ 361.175794][T12382] netlink: 'syz.5.3035': attribute type 1 has an invalid length. [ 361.248814][T12386] netlink: 'syz.5.3038': attribute type 30 has an invalid length. [ 361.707057][ T5866] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 361.857299][ T5866] usb 7-1: Using ep0 maxpacket: 8 [ 361.860344][ T5866] usb 7-1: config 6 has an invalid interface number: 51 but max is 1 [ 361.860373][ T5866] usb 7-1: config 6 has no interface number 1 [ 361.860420][ T5866] usb 7-1: config 6 interface 0 has no altsetting 0 [ 361.860440][ T5866] usb 7-1: config 6 interface 51 has no altsetting 0 [ 361.865448][ T5866] usb 7-1: New USB device found, idVendor=04e2, idProduct=1420, bcdDevice=30.ad [ 361.865480][ T5866] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 361.865501][ T5866] usb 7-1: Product: syz [ 361.865516][ T5866] usb 7-1: Manufacturer: syz [ 361.865531][ T5866] usb 7-1: SerialNumber: syz [ 362.239716][ T5866] xr_serial 7-1:6.51: xr_serial converter detected [ 362.242007][ T155] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 362.245016][ T5866] xr_serial ttyUSB0: Failed to set reg 0x60: -71 [ 362.245090][ T5866] xr_serial ttyUSB0: probe with driver xr_serial failed with error -71 [ 362.297125][ T5866] usb 7-1: USB disconnect, device number 10 [ 362.322547][ T5866] xr_serial 7-1:6.0: device disconnected [ 362.421264][T12436] netlink: 'syz.1.3062': attribute type 6 has an invalid length. [ 362.801978][ T9681] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 20001 - 0 [ 362.802200][ T9681] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 20001 - 0 [ 362.802242][ T9681] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 20001 - 0 [ 362.802280][ T9681] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 20001 - 0 [ 362.887177][ T5796] usb 2-1: new full-speed USB device number 16 using dummy_hcd [ 363.066597][ T5796] usb 2-1: config 0 has an invalid interface number: 41 but max is 0 [ 363.066628][ T5796] usb 2-1: config 0 has no interface number 0 [ 363.066678][ T5796] usb 2-1: config 0 interface 41 has no altsetting 0 [ 363.090345][ T5796] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a [ 363.090380][ T5796] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 363.090396][ T5796] usb 2-1: Product: syz [ 363.090406][ T5796] usb 2-1: Manufacturer: syz [ 363.090417][ T5796] usb 2-1: SerialNumber: syz [ 363.096335][ T5796] usb 2-1: config 0 descriptor?? [ 363.627970][ T5796] CoreChips 2-1:0.41 (unnamed net_device) (uninitialized): set LINK LED failed : -71 [ 363.628237][ T5796] CoreChips 2-1:0.41: probe with driver CoreChips failed with error -71 [ 363.674043][ T5796] usb 2-1: USB disconnect, device number 16 [ 363.702220][T12491] openvswitch: netlink: Duplicate key (type 21). [ 363.857046][T12500] netlink: 'syz.3.3093': attribute type 1 has an invalid length. [ 363.997706][ T10] usb 6-1: new full-speed USB device number 7 using dummy_hcd [ 364.157622][ T10] usb 6-1: config 0 has an invalid interface number: 35 but max is 0 [ 364.157655][ T10] usb 6-1: config 0 has no interface number 0 [ 364.157704][ T10] usb 6-1: config 0 interface 35 altsetting 0 endpoint 0xE has an invalid bInterval 0, changing to 10 [ 364.157732][ T10] usb 6-1: config 0 interface 35 altsetting 0 endpoint 0xE has invalid wMaxPacketSize 0 [ 364.165582][ T10] usb 6-1: New USB device found, idVendor=07d0, idProduct=4101, bcdDevice=ec.5c [ 364.165625][ T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 364.165647][ T10] usb 6-1: Product: syz [ 364.165662][ T10] usb 6-1: Manufacturer: syz [ 364.165677][ T10] usb 6-1: SerialNumber: syz [ 364.217474][T12516] openvswitch: netlink: IP tunnel TTL not specified. [ 364.271743][ T10] usb 6-1: config 0 descriptor?? [ 364.288362][ T10] cypress_m8 6-1:0.35: Nokia CA-42 V2 Adapter converter detected [ 364.505010][ T10] usb 6-1: Nokia CA-42 V2 Adapter converter now attached to ttyUSB0 [ 364.587552][T12528] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3108'. [ 364.691755][ T5865] usb 6-1: USB disconnect, device number 7 [ 364.750385][ T5865] nokiaca42v2 ttyUSB0: Nokia CA-42 V2 Adapter converter now disconnected from ttyUSB0 [ 364.751220][ T5865] cypress_m8 6-1:0.35: device disconnected [ 365.124164][T12554] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3121'. [ 365.477595][ T5803] Bluetooth: hci6: command 0x0406 tx timeout [ 365.531664][T12574] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3130'. [ 365.558957][T12570] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3129'. [ 365.969607][T12596] netlink: 'syz.3.3141': attribute type 9 has an invalid length. [ 365.969634][T12596] netlink: 'syz.3.3141': attribute type 6 has an invalid length. [ 366.144649][T12604] netlink: 56 bytes leftover after parsing attributes in process `syz.3.3145'. [ 366.318098][T12612] tmpfs: Bad value for 'mpol' [ 366.629247][ T5796] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 366.785809][ T5796] usb 4-1: config index 0 descriptor too short (expected 23569, got 27) [ 366.785895][ T5796] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 366.787958][ T5796] usb 4-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 366.787988][ T5796] usb 4-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 366.788009][ T5796] usb 4-1: Manufacturer: syz [ 366.841706][ T5796] usb 4-1: config 0 descriptor?? [ 366.911698][T12629] netlink: 'syz.6.3156': attribute type 1 has an invalid length. [ 366.937631][ T5796] rc_core: IR keymap rc-hauppauge not found [ 366.937653][ T5796] Registered IR keymap rc-empty [ 366.961148][ T5796] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0 [ 366.980676][ T5796] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input18 [ 367.108031][ C0] igorplugusb 4-1:0.0: Error: urb status = -32 [ 367.110036][ T5901] usb 4-1: USB disconnect, device number 16 [ 367.321210][T12645] netlink: 'syz.6.3164': attribute type 11 has an invalid length. [ 367.321235][T12645] netlink: 148 bytes leftover after parsing attributes in process `syz.6.3164'. [ 367.533413][T12656] tmpfs: Bad value for 'mpol' [ 368.454977][ T36] audit: type=1326 audit(1772069847.284:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12706 comm="syz.6.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 368.455041][ T36] audit: type=1326 audit(1772069847.284:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12706 comm="syz.6.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 368.478585][ T36] audit: type=1326 audit(1772069847.284:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12706 comm="syz.6.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 368.479943][ T36] audit: type=1326 audit(1772069847.314:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12706 comm="syz.6.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 368.480050][ T36] audit: type=1326 audit(1772069847.314:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12706 comm="syz.6.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 368.485824][ T36] audit: type=1326 audit(1772069847.314:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12706 comm="syz.6.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 368.485981][ T36] audit: type=1326 audit(1772069847.314:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12706 comm="syz.6.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 368.486984][ T36] audit: type=1326 audit(1772069847.314:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12706 comm="syz.6.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 368.500955][ T36] audit: type=1326 audit(1772069847.314:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12706 comm="syz.6.3196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f4cf13cc629 code=0x7ffc0000 [ 369.113849][T12735] netlink: 'syz.5.3211': attribute type 1 has an invalid length. [ 369.311052][T12746] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 369.792956][T12777] netlink: 'syz.1.3229': attribute type 21 has an invalid length. [ 369.874926][T12780] ip6gre1: entered promiscuous mode [ 369.874956][T12780] ip6gre1: entered allmulticast mode [ 369.991164][T12787] new mount options do not match the existing superblock, will be ignored [ 370.438546][ T37] INFO: task syz.2.711:7458 blocked for more than 143 seconds. [ 370.438581][ T37] Tainted: G L syzkaller #0 [ 370.438594][ T37] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 370.438605][ T37] task:syz.2.711 state:D stack:27048 pid:7458 tgid:7457 ppid:5791 task_flags:0x400040 flags:0x00080002 [ 370.438680][ T37] Call Trace: [ 370.438693][ T37] [ 370.438708][ T37] __schedule+0x14fb/0x52c0 [ 370.438755][ T37] ? __lock_acquire+0x6b5/0x2cf0 [ 370.438782][ T37] ? __pfx_sched_clock_cpu+0x10/0x10 [ 370.438823][ T37] ? __pfx___schedule+0x10/0x10 [ 370.438868][ T37] rt_mutex_schedule+0x76/0xf0 [ 370.438894][ T37] rt_mutex_slowlock_block+0x508/0x680 [ 370.438930][ T37] ? rt_mutex_slowlock_block+0x2e9/0x680 [ 370.438956][ T37] rt_mutex_slowlock+0x2dc/0x7b0 [ 370.438981][ T37] ? rt_mutex_slowlock+0x1fd/0x7b0 [ 370.439006][ T37] ? __pfx_rt_mutex_slowlock+0x10/0x10 [ 370.439057][ T37] ? nfsd_nl_threads_get_doit+0x1c0/0x790 [ 370.439088][ T37] ? nfsd_nl_threads_get_doit+0x1c0/0x790 [ 370.439110][ T37] mutex_lock_nested+0x168/0x1d0 [ 370.439138][ T37] nfsd_nl_threads_get_doit+0x1c0/0x790 [ 370.439172][ T37] ? __pfx_nfsd_nl_threads_get_doit+0x10/0x10 [ 370.439202][ T37] ? __local_bh_enable+0x1e1/0x2f0 [ 370.439242][ T37] genl_family_rcv_msg_doit+0x22a/0x330 [ 370.439275][ T37] ? __asan_memcpy+0x40/0x70 [ 370.439306][ T37] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 370.439350][ T37] ? __dev_queue_xmit+0x27d/0x39e0 [ 370.439392][ T37] genl_rcv_msg+0x61c/0x7a0 [ 370.439430][ T37] ? __pfx_genl_rcv_msg+0x10/0x10 [ 370.439458][ T37] ? __pfx_nfsd_nl_threads_get_doit+0x10/0x10 [ 370.439487][ T37] ? __pfx_ref_tracker_free+0x10/0x10 [ 370.439508][ T37] ? __skb_clone+0x63/0x7a0 [ 370.439544][ T37] netlink_rcv_skb+0x232/0x4b0 [ 370.439568][ T37] ? __pfx_genl_rcv_msg+0x10/0x10 [ 370.439601][ T37] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 370.439641][ T37] ? netlink_deliver_tap+0x2e/0x1b0 [ 370.439665][ T37] ? netlink_deliver_tap+0x2e/0x1b0 [ 370.439701][ T37] genl_rcv+0x28/0x40 [ 370.439728][ T37] netlink_unicast+0x831/0x9f0 [ 370.439773][ T37] ? __pfx_netlink_unicast+0x10/0x10 [ 370.439811][ T37] ? netlink_sendmsg+0x650/0xb40 [ 370.439833][ T37] ? skb_put+0x11b/0x210 [ 370.439866][ T37] netlink_sendmsg+0x813/0xb40 [ 370.439902][ T37] ? __pfx_netlink_sendmsg+0x10/0x10 [ 370.439936][ T37] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 370.439972][ T37] ____sys_sendmsg+0xa4e/0xac0 [ 370.440002][ T37] ? futex_unqueue+0x211/0x240 [ 370.440051][ T37] ? __pfx_____sys_sendmsg+0x10/0x10 [ 370.440092][ T37] ? import_iovec+0x73/0xa0 [ 370.440122][ T37] ___sys_sendmsg+0x2a5/0x360 [ 370.440160][ T37] ? __pfx____sys_sendmsg+0x10/0x10 [ 370.440199][ T37] ? futex_wait+0x29a/0x380 [ 370.440256][ T37] ? __fget_files+0x2a/0x420 [ 370.440281][ T37] ? __fget_files+0x3a6/0x420 [ 370.440319][ T37] __x64_sys_sendmsg+0x1c3/0x2a0 [ 370.440353][ T37] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 370.440394][ T37] ? rcu_is_watching+0x15/0xb0 [ 370.440434][ T37] do_syscall_64+0x14d/0xf80 [ 370.440465][ T37] ? trace_irq_disable+0x3b/0x150 [ 370.440490][ T37] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 370.440515][ T37] ? clear_bhb_loop+0x40/0x90 [ 370.440544][ T37] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 370.440568][ T37] RIP: 0033:0x7ff69f9cc629 [ 370.440595][ T37] RSP: 002b:00007ff69dc26028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 370.440618][ T37] RAX: ffffffffffffffda RBX: 00007ff69fc45fa0 RCX: 00007ff69f9cc629 [ 370.440635][ T37] RDX: 0000000000000000 RSI: 00002000000032c0 RDI: 0000000000000003 [ 370.440651][ T37] RBP: 00007ff69fa62b39 R08: 0000000000000000 R09: 0000000000000000 [ 370.440666][ T37] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 370.440680][ T37] R13: 00007ff69fc46038 R14: 00007ff69fc45fa0 R15: 00007ffefefe39a8 [ 370.440717][ T37] [ 370.440751][ T37] [ 370.440751][ T37] Showing all locks held in the system: [ 370.440764][ T37] 1 lock held by khungtaskd/37: [ 370.440776][ T37] #0: ffffffff8ddcd780 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180 [ 370.440859][ T37] 2 locks held by getty/5548: [ 370.440872][ T37] #0: ffff8880319c50a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 370.440924][ T37] #1: ffffc90003e8b2e0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x462/0x13c0 [ 370.440991][ T37] 2 locks held by syz.4.228/6392: [ 370.441003][ T37] #0: ffffffff8f1c8020 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 370.441064][ T37] #1: ffffffff8e0e6e38 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0x13e/0x1690 [ 370.441119][ T37] 2 locks held by syz.2.711/7458: [ 370.441130][ T37] #0: ffffffff8f1c8020 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 370.441185][ T37] #1: ffffffff8e0e6e38 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_threads_get_doit+0x1c0/0x790 [ 370.441238][ T37] 1 lock held by syz.0.3242/12802: [ 370.441252][ T37] 2 locks held by syz.3.3243/12805: [ 370.441263][ T37] 1 lock held by syz.5.3245/12810: [ 370.441275][ T37] 5 locks held by syz.1.3246/12807: [ 370.441288][ T37] 5 locks held by syz.6.3247/12812: [ 370.441300][ T37] [ 370.441305][ T37] ============================================= [ 370.441305][ T37] [ 370.441383][ T37] NMI backtrace for cpu 1 [ 370.441413][ T37] CPU: 1 UID: 0 PID: 37 Comm: khungtaskd Tainted: G L syzkaller #0 PREEMPT_{RT,(full)} [ 370.441459][ T37] Tainted: [L]=SOFTLOCKUP [ 370.441473][ T37] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 370.441492][ T37] Call Trace: [ 370.441504][ T37] [ 370.441521][ T37] dump_stack_lvl+0xe8/0x150 [ 370.441584][ T37] nmi_cpu_backtrace+0x274/0x2d0 [ 370.441627][ T37] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 370.441690][ T37] nmi_trigger_cpumask_backtrace+0x17a/0x300 [ 370.441742][ T37] sys_info+0x135/0x170 [ 370.441797][ T37] watchdog+0xfd9/0x1030 [ 370.441830][ T37] ? watchdog+0x21a/0x1030 [ 370.441864][ T37] kthread+0x388/0x470 [ 370.441888][ T37] ? __pfx_watchdog+0x10/0x10 [ 370.441913][ T37] ? __pfx_kthread+0x10/0x10 [ 370.441938][ T37] ret_from_fork+0x51e/0xb90 [ 370.441972][ T37] ? __pfx_ret_from_fork+0x10/0x10 [ 370.442002][ T37] ? __switch_to+0xc7d/0x1450 [ 370.442034][ T37] ? __pfx_kthread+0x10/0x10 [ 370.442065][ T37] ret_from_fork_asm+0x1a/0x30 [ 370.442105][ T37] [ 370.442112][ T37] Sending NMI from CPU 1 to CPUs 0: [ 370.442144][ C0] NMI backtrace for cpu 0 [ 370.442161][ C0] CPU: 0 UID: 0 PID: 12802 Comm: syz.0.3242 Tainted: G L syzkaller #0 PREEMPT_{RT,(full)} [ 370.442187][ C0] Tainted: [L]=SOFTLOCKUP [ 370.442194][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 370.442205][ C0] RIP: 0010:lock_is_held_type+0x97/0x150 [ 370.442231][ C0] Code: eb 48 81 c3 78 0b 00 00 45 31 ff 49 83 ff 31 73 24 48 89 df 4c 89 f6 e8 f7 01 00 00 85 c0 75 2a 49 ff c7 49 63 85 70 0b 00 00 <48> 83 c3 28 49 39 c7 7c d8 eb 11 48 c7 c7 f0 ae c9 8d 4c 89 fe e8 [ 370.442248][ C0] RSP: 0018:ffffc9000fdc7868 EFLAGS: 00000002 [ 370.442264][ C0] RAX: 0000000000000004 RBX: ffff88805f5b6638 RCX: 0000000000000046 [ 370.442276][ C0] RDX: 0000000000000002 RSI: ffffffff8ddcd840 RDI: ffff88805f5b6638 [ 370.442289][ C0] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000 [ 370.442301][ C0] R10: dffffc0000000000 R11: ffffed100beb6b59 R12: 0000000000000246 [ 370.442314][ C0] R13: ffff88805f5b5ac0 R14: ffffffff8ddcd840 R15: 0000000000000001 [ 370.442327][ C0] FS: 00007f84d1ebe6c0(0000) GS:ffff888126343000(0000) knlGS:0000000000000000 [ 370.442343][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 370.442356][ C0] CR2: 00007f4cf147e9d3 CR3: 000000002a904000 CR4: 00000000003526f0 [ 370.442373][ C0] Call Trace: [ 370.442380][ C0] [ 370.442388][ C0] rcu_read_lock_sched_held+0x33/0x70 [ 370.442413][ C0] ? bpf_get_current_ancestor_cgroup_id+0x22/0x3f0 [ 370.442437][ C0] bpf_get_current_ancestor_cgroup_id+0x108/0x3f0 [ 370.442460][ C0] ? bpf_test_run+0x1d1/0x830 [ 370.442477][ C0] bpf_prog_a2a56fb513aa3d87+0x49/0x4f [ 370.442494][ C0] bpf_test_run+0x313/0x830 [ 370.442521][ C0] ? __pfx_bpf_test_run+0x10/0x10 [ 370.442549][ C0] ? _copy_from_user+0x94/0xb0 [ 370.442570][ C0] ? bpf_test_init+0x113/0x150 [ 370.442586][ C0] ? xdp_convert_md_to_buff+0x5b/0x330 [ 370.442606][ C0] bpf_prog_test_run_xdp+0x7f1/0x1160 [ 370.442632][ C0] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 370.442653][ C0] ? __fget_files+0x2a/0x420 [ 370.442676][ C0] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 370.442695][ C0] bpf_prog_test_run+0x2cd/0x340 [ 370.442721][ C0] __sys_bpf+0x643/0x950 [ 370.442743][ C0] ? __pfx___sys_bpf+0x10/0x10 [ 370.442762][ C0] ? rt_mutex_slowunlock+0x4a7/0x8b0 [ 370.442792][ C0] ? rcu_is_watching+0x15/0xb0 [ 370.442821][ C0] __x64_sys_bpf+0x7c/0x90 [ 370.442840][ C0] do_syscall_64+0x14d/0xf80 [ 370.442863][ C0] ? trace_irq_disable+0x3b/0x150 [ 370.442883][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 370.442901][ C0] ? clear_bhb_loop+0x40/0x90 [ 370.442922][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 370.442941][ C0] RIP: 0033:0x7f84d3c6c629 [ 370.442955][ C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 370.442972][ C0] RSP: 002b:00007f84d1ebe028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 370.442990][ C0] RAX: ffffffffffffffda RBX: 00007f84d3ee5fa0 RCX: 00007f84d3c6c629 [ 370.443003][ C0] RDX: 0000000000000050 RSI: 0000200000000600 RDI: 000000000000000a [ 370.443015][ C0] RBP: 00007f84d3d02b39 R08: 0000000000000000 R09: 0000000000000000 [ 370.443026][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 370.443037][ C0] R13: 00007f84d3ee6038 R14: 00007f84d3ee5fa0 R15: 00007fffde524bd8 [ 370.443061][ C0] [ 370.443221][ T37] Kernel panic - not syncing: hung_task: blocked tasks [ 370.443241][ T37] CPU: 1 UID: 0 PID: 37 Comm: khungtaskd Tainted: G L syzkaller #0 PREEMPT_{RT,(full)} [ 370.443270][ T37] Tainted: [L]=SOFTLOCKUP [ 370.443278][ T37] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 370.443290][ T37] Call Trace: [ 370.443298][ T37] [ 370.443307][ T37] vpanic+0x56c/0xa60 [ 370.443344][ T37] ? __pfx___schedule+0x10/0x10 [ 370.443371][ T37] ? __pfx_vpanic+0x10/0x10 [ 370.443413][ T37] panic+0xc5/0xd0 [ 370.443444][ T37] ? __pfx_panic+0x10/0x10 [ 370.443481][ T37] ? preempt_schedule_thunk+0x16/0x30 [ 370.443514][ T37] ? nmi_trigger_cpumask_backtrace+0x2bb/0x300 [ 370.443543][ T37] watchdog+0x1023/0x1030 [ 370.443574][ T37] ? watchdog+0x21a/0x1030 [ 370.443611][ T37] kthread+0x388/0x470 [ 370.443635][ T37] ? __pfx_watchdog+0x10/0x10 [ 370.443660][ T37] ? __pfx_kthread+0x10/0x10 [ 370.443685][ T37] ret_from_fork+0x51e/0xb90 [ 370.443720][ T37] ? __pfx_ret_from_fork+0x10/0x10 [ 370.443750][ T37] ? __switch_to+0xc7d/0x1450 [ 370.443780][ T37] ? __pfx_kthread+0x10/0x10 [ 370.443806][ T37] ret_from_fork_asm+0x1a/0x30 [ 370.443845][ T37] [ 370.444464][ T37] Kernel Offset: disabled