last executing test programs: 428.863575ms ago: executing program 2 (id=13101): r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x2) ioctl$SCSI_IOCTL_STOP_UNIT(r0, 0x5319) 428.352391ms ago: executing program 2 (id=13103): r0 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4) ioctl$sock_bt_bnep_BNEPGETCONNLIST(r0, 0x800442d2, &(0x7f0000001a40)={0x1, &(0x7f0000001940)=[{}]}) 350.655959ms ago: executing program 2 (id=13106): r0 = socket$netlink(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000300)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'vlan1\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x80c9}, 0x20000000) 349.054821ms ago: executing program 2 (id=13110): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x38) 264.973924ms ago: executing program 2 (id=13113): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) 264.251317ms ago: executing program 0 (id=13118): r0 = socket(0xa, 0x3, 0x3a) getsockopt$inet6_buf(r0, 0x29, 0xcd, 0x0, 0x0) 213.404481ms ago: executing program 1 (id=13119): r0 = socket(0x1d, 0x2, 0x6) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x6a, 0x2, 0x0, &(0x7f0000000300)) 213.079202ms ago: executing program 0 (id=13121): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001040), 0x4000000000882, 0x0) ioctl$BLKBSZSET(r0, 0x40041271, &(0x7f0000000300)=0x300) 212.523644ms ago: executing program 1 (id=13122): fsopen(&(0x7f0000000040)='exfat\x00', 0x0) syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') 148.76694ms ago: executing program 3 (id=13123): r0 = syz_open_dev$video4linux(&(0x7f0000000040), 0x3, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r0, 0xc040564a, &(0x7f00000001c0)={0x0, 0x0, 0x4001, 0x1c, 0x4, 0x6, 0x6a}) 148.594774ms ago: executing program 0 (id=13124): r0 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r0, 0xc1485544, 0x0) 148.532046ms ago: executing program 3 (id=13125): r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000000180)=[{&(0x7f00000001c0)="170000001500add427323b472545b4562d117fffffff81", 0x17}], 0x1) 148.356686ms ago: executing program 1 (id=13126): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000010c0)=ANY=[@ANYBLOB="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"/1426], &(0x7f0000000340)='GPL\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0xffff0002, 0xf0, 0x0, &(0x7f0000001a40)="2b206d074843b397737ea49da2aa", 0x0, 0xf000, 0x720e, 0x0, 0x0, 0x0, 0x0}, 0x48) 144.572196ms ago: executing program 3 (id=13127): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000040)={0x24, 0x140f, 0x1, 0x70bd29, 0x25dfdbfa, "", [@RDMA_NLDEV_ATTR_CHARDEV_TYPE={0xb, 0x45, 'uverbs\x00'}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x200000c0}, 0x0) 74.052407ms ago: executing program 0 (id=13128): r0 = socket$tipc(0x1e, 0x2, 0x0) getsockopt$TIPC_IMPORTANCE(r0, 0x10f, 0x89, &(0x7f0000002dc0), &(0x7f0000002e00)=0x4) 73.824464ms ago: executing program 3 (id=13129): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x3a, 0x301, 0x70bd25, 0xfffffffc, {0x10}}, 0x14}, 0x1, 0x0, 0x0, 0x448d3}, 0x8000000) 73.726014ms ago: executing program 0 (id=13130): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) fcntl$lock(r0, 0x5, &(0x7f0000000380)={0x2, 0x2, 0x2, 0xa5}) 73.378934ms ago: executing program 1 (id=13131): r0 = openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc0f8565c, &(0x7f0000000100)={0x3, 0x2, 0x4, {0xd, @vbi={0x8, 0x3, 0x8, 0x43564548, [0x1, 0x1], [0x9, 0xc80], 0x13a}}, 0xffff0001}) 69.562602ms ago: executing program 3 (id=13132): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x7, 0x4, 0x8, 0x5}, 0x50) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000040)={r0, 0x0, 0x0}, 0x20) 31.636143ms ago: executing program 0 (id=13133): r0 = socket(0x1e, 0x1, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000000)=@req={0x1000, 0xffffffff, 0xc}, 0x10) 31.361016ms ago: executing program 1 (id=13134): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000140)=0x2f, 0x4) 24.099509ms ago: executing program 2 (id=13135): r0 = socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$netlink(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000580)={0x114, 0x11, 0x1, 0x70bd2c, 0x25dfdbfb, "", [@nested={0x101, 0x8d, 0x0, 0x1, [@generic="51c6b68cf4eb24182ec06972d96b20a47257d673c593752c5a1c9016497a0d2aaaff7dd00c7771e3c0d360527a0b81ec9f7ef771712b5159099b33f27fef45ab9b9ef9723f0fc2356b2cdc4016a9dc84050982fa3d5c3baa6ff13ff96f7e539bfecd746d93ffa6a9186682c1500063e22b0d492e3111b0ade0a29e675f9a6d860fd0dabb8264042aa3d1aa75908a1182406a77ced5aad953f8b6841dad52a4069e01f90a3f168dc658368345d7326a7b29", @generic="d5f964d6c88c3572a61ea76677347b03813ff58c9cf41bb74c68d5c34f42dc4d4cff3be23aaf70c80c28f15cc4069d3ff4259b40fac13074e3fb971525156710ead5b54397733a66d245873f"]}]}, 0x114}], 0x1, 0x0, 0x0, 0x2000081}, 0x20048040) 22.289681ms ago: executing program 3 (id=13136): r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0) 0s ago: executing program 1 (id=13137): r0 = socket(0x40000000015, 0x5, 0x0) connect$unix(r0, &(0x7f0000000380)=@abs={0x0, 0x0, 0x4e24}, 0x6e) 0s ago: executing program 1 (id=13141): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$UHID_INPUT(r0, &(0x7f0000000e00)={0xfc, {"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", 0x1000}}, 0x1006) kernel console output (not intermixed with test programs): te type 21 has an invalid length. [ 238.216707][T21167] netlink: 132 bytes leftover after parsing attributes in process `syz.1.7352'. [ 238.258705][T21170] dlm: Unknown command passed to DLM device : 3 [ 238.258705][T21170] [ 238.313663][T21176] xt_nat: multiple ranges no longer supported [ 238.402151][T21192] netlink: 144 bytes leftover after parsing attributes in process `syz.2.7364'. [ 238.609498][T21223] genirq: Flags mismatch irq 4. 00200000 (pcl816) vs. 00200080 (ttyS0) [ 238.614686][T21224] Cannot find del_set index 1 as target [ 239.022519][T21287] netlink: 188 bytes leftover after parsing attributes in process `syz.1.7408'. [ 239.071057][T21294] syz.1.7412 (21294): /proc/21292/oom_adj is deprecated, please use /proc/21292/oom_score_adj instead. [ 239.208564][T21310] delete_channel: no stack [ 239.352199][T21331] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 239.529752][T21357] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD [ 239.624200][T21365] warn_alloc: 4 callbacks suppressed [ 239.624213][T21365] syz.1.7446: vmalloc error: size 2147483264, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 239.632343][T21365] CPU: 2 UID: 0 PID: 21365 Comm: syz.1.7446 Not tainted syzkaller #0 PREEMPT(full) [ 239.632368][T21365] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 239.632378][T21365] Call Trace: [ 239.632385][T21365] [ 239.632392][T21365] dump_stack_lvl+0x100/0x190 [ 239.632426][T21365] warn_alloc.cold+0x95/0x1c1 [ 239.632458][T21365] ? __pfx_warn_alloc+0x10/0x10 [ 239.632493][T21365] ? __lock_acquire+0x4a5/0x2630 [ 239.632515][T21365] ? lock_acquire+0x1cf/0x380 [ 239.632538][T21365] ? find_held_lock+0x2b/0x80 [ 239.632555][T21365] ? finish_task_switch.isra.0+0x200/0xb80 [ 239.632611][T21365] __vmalloc_node_range_noprof+0x1252/0x1530 [ 239.632639][T21365] ? find_held_lock+0x2b/0x80 [ 239.632657][T21365] ? __might_fault+0xc5/0x140 [ 239.632683][T21365] ? __might_fault+0xc5/0x140 [ 239.632706][T21365] ? compat_do_replace+0x1b1/0x7a0 [ 239.632733][T21365] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 239.632755][T21365] ? compat_copy_ebt_replace_from_user+0x299/0x3b0 [ 239.632777][T21365] ? __pfx_compat_copy_ebt_replace_from_user+0x10/0x10 [ 239.632796][T21365] ? __lock_acquire+0x4a5/0x2630 [ 239.632822][T21365] ? compat_do_replace+0x1b1/0x7a0 [ 239.632841][T21365] __vmalloc_node_noprof+0xad/0xf0 [ 239.632861][T21365] ? compat_do_replace+0x1b1/0x7a0 [ 239.632884][T21365] compat_do_replace+0x1b1/0x7a0 [ 239.632902][T21365] ? lock_acquire+0x1cf/0x380 [ 239.632924][T21365] ? __pfx_compat_do_replace+0x10/0x10 [ 239.632951][T21365] ? rcu_is_watching+0x12/0xc0 [ 239.632993][T21365] ? bpf_lsm_capable+0x9/0x10 [ 239.633017][T21365] ? security_capable+0x80/0x260 [ 239.633042][T21365] do_ebt_set_ctl+0x2f5/0x3f0 [ 239.633068][T21365] ? __pfx_do_ebt_set_ctl+0x10/0x10 [ 239.633102][T21365] ? nf_sockopt_find.isra.0+0x222/0x290 [ 239.633134][T21365] nf_setsockopt+0x8d/0xf0 [ 239.633161][T21365] ip_setsockopt+0xcb/0xf0 [ 239.633190][T21365] raw_setsockopt+0x60/0x1b0 [ 239.633215][T21365] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 239.633242][T21365] do_sock_setsockopt+0xf3/0x1d0 [ 239.633268][T21365] __sys_setsockopt+0x119/0x190 [ 239.633304][T21365] __ia32_sys_setsockopt+0xbc/0x160 [ 239.633334][T21365] ? __do_fast_syscall_32+0x94/0x8c0 [ 239.633355][T21365] ? lockdep_hardirqs_on+0x78/0x100 [ 239.633376][T21365] __do_fast_syscall_32+0xe3/0x8c0 [ 239.633401][T21365] do_fast_syscall_32+0x32/0x70 [ 239.633423][T21365] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 239.633450][T21365] RIP: 0023:0xf7ff6f6c [ 239.633466][T21365] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8 [ 239.633485][T21365] RSP: 002b:00000000f54b650c EFLAGS: 00000292 ORIG_RAX: 000000000000016e [ 239.633507][T21365] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000 [ 239.633521][T21365] RDX: 0000000000000080 RSI: 0000000080001200 RDI: 00000000000000e0 [ 239.633534][T21365] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 239.633546][T21365] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 239.633559][T21365] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 239.633588][T21365] [ 239.633597][T21365] Mem-Info: [ 239.782036][T21365] active_anon:5219 inactive_anon:23 isolated_anon:0 [ 239.782036][T21365] active_file:10471 inactive_file:17710 isolated_file:0 [ 239.782036][T21365] unevictable:1768 dirty:471 writeback:0 [ 239.782036][T21365] slab_reclaimable:6398 slab_unreclaimable:56379 [ 239.782036][T21365] mapped:23018 shmem:2206 pagetables:1087 [ 239.782036][T21365] sec_pagetables:297 bounce:0 [ 239.782036][T21365] kernel_misc_reclaimable:0 [ 239.782036][T21365] free:59042 free_pcp:16731 free_cma:0 [ 239.804831][T21365] Node 0 active_anon:132kB inactive_anon:44kB active_file:0kB inactive_file:20kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:20kB dirty:8kB writeback:0kB shmem:3548kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8460kB pagetables:1484kB sec_pagetables:1100kB all_unreclaimable? yes Balloon:0kB [ 239.819288][T21365] Node 1 active_anon:20744kB inactive_anon:48kB active_file:41884kB inactive_file:70820kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:92052kB dirty:1876kB writeback:0kB shmem:5276kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4428kB pagetables:2964kB sec_pagetables:88kB all_unreclaimable? no Balloon:0kB [ 239.835984][T21365] Node 0 DMA free:2584kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:644kB local_pcp:152kB free_cma:0kB [ 239.848660][T21365] lowmem_reserve[]: 0 285 285 285 285 [ 239.851226][T21365] Node 0 DMA32 free:18344kB boost:2048kB min:15116kB low:18380kB high:21644kB reserved_highatomic:0KB free_highatomic:0KB active_anon:132kB inactive_anon:44kB active_file:0kB inactive_file:20kB unevictable:3536kB writepending:8kB zspages:0kB present:1032196kB managed:292492kB mlocked:0kB bounce:0kB free_pcp:12780kB local_pcp:2584kB free_cma:0kB [ 239.865640][T21365] lowmem_reserve[]: 0 0 0 0 0 [ 239.868283][T21365] Node 1 DMA32 free:215240kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:20644kB inactive_anon:48kB active_file:41884kB inactive_file:70820kB unevictable:3536kB writepending:1876kB zspages:2240kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:54752kB local_pcp:16740kB free_cma:0kB [ 239.883745][T21365] lowmem_reserve[]: 0 0 0 0 0 [ 239.887528][T21365] Node 0 DMA: 124*4kB (UE) 37*8kB (UE) 14*16kB (UE) 19*32kB (UE) 1*64kB (E) 3*128kB (E) 0*256kB 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 2584kB [ 239.893113][T21365] Node 0 DMA32: 464*4kB (UE) 355*8kB (U) 171*16kB (UME) 85*32kB (UE) 40*64kB (UME) 22*128kB (UME) 7*256kB (M) 0*512kB 1*1024kB (U) 0*2048kB 0*4096kB = 18344kB [ 239.900376][T21365] Node 1 DMA32: 4084*4kB (UME) 2727*8kB (UE) 2242*16kB (UME) 86*32kB (UME) 86*64kB (UM) 73*128kB (UM) 60*256kB (UM) 37*512kB (UM) 43*1024kB (UME) 6*2048kB (UM) 8*4096kB (U) = 215016kB [ 239.906143][T21365] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 239.909310][T21365] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 239.912199][T21365] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 239.915280][T21365] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 239.919482][T21365] 31468 total pagecache pages [ 239.921561][T21365] 536 pages in swap cache [ 239.923673][T21365] Free swap = 119708kB [ 239.925866][T21365] Total swap = 124996kB [ 239.927694][T21365] 524155 pages RAM [ 239.929219][T21365] 0 pages HighMem/MovableOnly [ 239.931103][T21365] 210139 pages reserved [ 239.932497][T21365] 0 pages cma reserved [ 240.108924][T21399] xt_connbytes: Forcing CT accounting to be enabled [ 240.156085][ T40] audit: type=1326 audit(231.211:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21402 comm="syz.2.7464" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 240.164813][ T40] audit: type=1326 audit(231.211:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21402 comm="syz.2.7464" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 240.171450][ T40] audit: type=1326 audit(231.211:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21402 comm="syz.2.7464" exe="/syz-executor" sig=0 arch=40000003 syscall=103 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 240.179283][ T40] audit: type=1326 audit(231.230:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21402 comm="syz.2.7464" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 241.173472][T21531] __nla_validate_parse: 5 callbacks suppressed [ 241.173491][T21531] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7525'. [ 242.413506][T21656] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 242.886399][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 242.894820][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 242.911357][T21677] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 242.961315][T21687] dlm: no local IP address has been set [ 242.965594][T21687] dlm: cannot start dlm midcomms -107 [ 242.989902][T21691] netlink: 220 bytes leftover after parsing attributes in process `syz.1.7602'. [ 243.609749][T21753] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7633'. [ 243.647774][T21757] deleting an unspecified loop device is not supported. [ 243.765325][T21773] netlink: 'syz.2.7643': attribute type 10 has an invalid length. [ 243.769415][T21773] netdevsim netdevsim2 netdevsim0: left promiscuous mode [ 243.773884][T21773] netdevsim netdevsim2 netdevsim0: left allmulticast mode [ 243.779728][T21773] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 243.886882][T21789] netlink: 'syz.3.7651': attribute type 16 has an invalid length. [ 243.890140][T21789] netlink: 64138 bytes leftover after parsing attributes in process `syz.3.7651'. [ 244.193210][T21823] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined [ 244.404409][ T59] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 244.476303][T21849] netlink: 196 bytes leftover after parsing attributes in process `syz.3.7681'. [ 244.481515][T21849] netlink: 196 bytes leftover after parsing attributes in process `syz.3.7681'. [ 244.485966][T21849] netlink: 19 bytes leftover after parsing attributes in process `syz.3.7681'. [ 244.548171][T21858] netlink: 'syz.1.7685': attribute type 10 has an invalid length. [ 244.551766][T21858] netdevsim netdevsim1 netdevsim0: left allmulticast mode [ 244.563540][T21858] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 244.576683][ T59] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 244.586491][ T59] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 244.591507][ T59] usb 5-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00 [ 244.595642][ T59] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 244.599582][ T59] usb 5-1: Product: syz [ 244.601865][ T59] usb 5-1: Manufacturer: syz [ 244.604017][ T59] usb 5-1: SerialNumber: syz [ 244.608926][ T59] usb 5-1: config 0 descriptor?? [ 244.621869][T21864] netlink: 'syz.3.7689': attribute type 3 has an invalid length. [ 244.625120][T21864] netlink: 'syz.3.7689': attribute type 1 has an invalid length. [ 244.627615][T21864] netlink: 228 bytes leftover after parsing attributes in process `syz.3.7689'. [ 244.778806][T21883] netlink: 'syz.1.7698': attribute type 12 has an invalid length. [ 244.832439][ T50] usb 5-1: USB disconnect, device number 5 [ 244.900477][T21899] xt_addrtype: ipv6 BLACKHOLE matching not supported [ 245.212819][T21943] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7720'. [ 245.217509][T21943] netdevsim netdevsim1 netdevsim0: entered allmulticast mode [ 245.244386][T21946] kAFS: unable to lookup cell 'mS²jË¡8' [ 245.659778][T22001] netlink: 'syz.1.7748': attribute type 1 has an invalid length. [ 245.920647][T22045] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 246.466318][T22130] netlink: 'syz.1.7811': attribute type 1 has an invalid length. [ 246.609609][ T40] kauditd_printk_skb: 10 callbacks suppressed [ 246.609628][ T40] audit: type=1326 audit(237.256:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22149 comm="syz.3.7821" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 246.628095][ T40] audit: type=1326 audit(237.256:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22149 comm="syz.3.7821" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 246.638574][ T40] audit: type=1326 audit(237.256:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22149 comm="syz.3.7821" exe="/syz-executor" sig=0 arch=40000003 syscall=402 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 246.647322][ T40] audit: type=1326 audit(237.256:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22149 comm="syz.3.7821" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 246.655735][ T40] audit: type=1326 audit(237.256:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22149 comm="syz.3.7821" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 246.672374][T22157] netlink: 'syz.1.7824': attribute type 2 has an invalid length. [ 246.674351][T22158] netlink: 144 bytes leftover after parsing attributes in process `syz.3.7825'. [ 246.986957][T22211] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7852'. [ 247.076033][T22223] openvswitch: netlink: Unexpected mask (mask=20840, allowed=10048) [ 247.173680][T22234] erspan0: entered promiscuous mode [ 247.173707][T22234] erspan0: entered allmulticast mode [ 247.213475][T22239] xt_policy: input policy not valid in POSTROUTING and OUTPUT [ 247.529439][T22278] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 247.541773][T22281] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7885'. [ 247.545422][T22281] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7885'. [ 247.800627][T22317] netlink: 'syz.3.7903': attribute type 1 has an invalid length. [ 247.836628][T22319] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 247.952269][ T40] audit: type=1326 audit(238.501:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22335 comm="syz.3.7913" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 247.961243][ T40] audit: type=1326 audit(238.501:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22335 comm="syz.3.7913" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 247.972567][ T40] audit: type=1326 audit(238.501:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22335 comm="syz.3.7913" exe="/syz-executor" sig=0 arch=40000003 syscall=10 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 247.979708][ T40] audit: type=1326 audit(238.501:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22335 comm="syz.3.7913" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 247.987066][ T40] audit: type=1326 audit(238.501:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22335 comm="syz.3.7913" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 247.997855][T22342] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7915'. [ 248.001761][T22342] netlink: 60 bytes leftover after parsing attributes in process `syz.3.7915'. [ 248.006224][T22342] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7915'. [ 248.010987][T22342] netlink: 60 bytes leftover after parsing attributes in process `syz.3.7915'. [ 248.015380][T22342] netlink: 104 bytes leftover after parsing attributes in process `syz.3.7915'. [ 248.051684][T22347] binder: 22346:22347 unknown command 1078485782 [ 248.054638][T22347] binder: 22346:22347 ioctl c0306201 80001a80 returned -22 [ 248.118762][T22356] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 248.178361][T22363] comedi comedi0: pcl726: I/O port conflict (0x3,16) [ 248.324934][T22383] xt_connbytes: Forcing CT accounting to be enabled [ 250.057532][T22453] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue [ 250.656506][T22540] validate_nla: 1 callbacks suppressed [ 250.656522][T22540] netlink: 'syz.0.8012': attribute type 3 has an invalid length. [ 250.662574][T22540] netlink: 'syz.0.8012': attribute type 1 has an invalid length. [ 250.706558][T22550] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8017'. [ 250.816315][T22548] ip6gretap2: default qdisc (pfifo_fast) fail, fallback to noqueue [ 250.949385][T22566] A link change request failed with some changes committed already. Interface ªªªªªª may have been left with an inconsistent configuration, please check. [ 251.564952][T22654] syz.2.8069: vmalloc error: size 2147483616, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 251.572725][T22654] CPU: 1 UID: 0 PID: 22654 Comm: syz.2.8069 Not tainted syzkaller #0 PREEMPT(full) [ 251.572757][T22654] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 251.572769][T22654] Call Trace: [ 251.572775][T22654] [ 251.572782][T22654] dump_stack_lvl+0x100/0x190 [ 251.572815][T22654] warn_alloc.cold+0x95/0x1c1 [ 251.572849][T22654] ? __pfx_warn_alloc+0x10/0x10 [ 251.572881][T22654] ? is_bpf_text_address+0x8a/0x1a0 [ 251.572909][T22654] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 251.572929][T22654] ? is_bpf_text_address+0x94/0x1a0 [ 251.572958][T22654] ? kernel_text_address+0x8d/0x100 [ 251.573024][T22654] __vmalloc_node_range_noprof+0x1252/0x1530 [ 251.573058][T22654] ? vmalloc_array_noprof+0x43/0x70 [ 251.573079][T22654] ? stack_trace_save+0x8e/0xc0 [ 251.573101][T22654] ? __pfx_stack_trace_save+0x10/0x10 [ 251.573123][T22654] ? stack_depot_save_flags+0x27/0x9d0 [ 251.573146][T22654] ? __lock_acquire+0x4a5/0x2630 [ 251.573171][T22654] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 251.573195][T22654] ? vfree.part.0+0x229/0x9d0 [ 251.573216][T22654] ? kasan_save_stack+0x3f/0x50 [ 251.573233][T22654] ? kasan_save_stack+0x30/0x50 [ 251.573249][T22654] ? kasan_save_track+0x14/0x30 [ 251.573262][T22654] ? kasan_save_free_info+0x3b/0x70 [ 251.573285][T22654] ? __kasan_slab_free+0x5f/0x80 [ 251.573303][T22654] ? kfree+0x1f6/0x6b0 [ 251.573325][T22654] ? vfree.part.0+0x229/0x9d0 [ 251.573346][T22654] ? xt_compat_flush_offsets+0x94/0x170 [ 251.573367][T22654] ? compat_do_replace+0x503/0x7a0 [ 251.573388][T22654] ? do_ebt_set_ctl+0x2f5/0x3f0 [ 251.573408][T22654] ? nf_setsockopt+0x8d/0xf0 [ 251.573428][T22654] ? ip_setsockopt+0xcb/0xf0 [ 251.573449][T22654] ? udp_setsockopt+0x7d/0xd0 [ 251.573471][T22654] ? vmalloc_array_noprof+0x43/0x70 [ 251.573490][T22654] __vmalloc_node_noprof+0xad/0xf0 [ 251.573513][T22654] ? vmalloc_array_noprof+0x43/0x70 [ 251.573536][T22654] __vmalloc_noprof+0xa3/0x120 [ 251.573559][T22654] ? __pfx___vmalloc_noprof+0x10/0x10 [ 251.573592][T22654] vmalloc_array_noprof+0x43/0x70 [ 251.573612][T22654] do_replace_finish+0xe8/0x20d0 [ 251.573629][T22654] ? vfree.part.0+0x229/0x9d0 [ 251.573661][T22654] ? find_held_lock+0x2b/0x80 [ 251.573680][T22654] ? compat_do_replace+0x50d/0x7a0 [ 251.573703][T22654] ? compat_do_replace+0x50d/0x7a0 [ 251.573732][T22654] ? __pfx_do_replace_finish+0x10/0x10 [ 251.573755][T22654] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 251.573775][T22654] ? vfree.part.0+0x22e/0x9d0 [ 251.573798][T22654] ? __pfx___might_resched+0x10/0x10 [ 251.573826][T22654] ? __pfx___might_resched+0x10/0x10 [ 251.573860][T22654] compat_do_replace+0x522/0x7a0 [ 251.573881][T22654] ? __pfx_compat_do_replace+0x10/0x10 [ 251.573906][T22654] ? rcu_is_watching+0x12/0xc0 [ 251.573945][T22654] ? bpf_lsm_capable+0x9/0x10 [ 251.573966][T22654] ? security_capable+0x80/0x260 [ 251.573986][T22654] do_ebt_set_ctl+0x2f5/0x3f0 [ 251.574007][T22654] ? __pfx_do_ebt_set_ctl+0x10/0x10 [ 251.574065][T22654] ? nf_sockopt_find.isra.0+0x222/0x290 [ 251.574094][T22654] nf_setsockopt+0x8d/0xf0 [ 251.574115][T22654] ip_setsockopt+0xcb/0xf0 [ 251.574141][T22654] udp_setsockopt+0x7d/0xd0 [ 251.574160][T22654] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 251.574185][T22654] do_sock_setsockopt+0xf3/0x1d0 [ 251.574212][T22654] __sys_setsockopt+0x119/0x190 [ 251.574239][T22654] __ia32_sys_setsockopt+0xbc/0x160 [ 251.574265][T22654] ? __do_fast_syscall_32+0x94/0x8c0 [ 251.574285][T22654] ? lockdep_hardirqs_on+0x78/0x100 [ 251.574304][T22654] __do_fast_syscall_32+0xe3/0x8c0 [ 251.574327][T22654] do_fast_syscall_32+0x32/0x70 [ 251.574347][T22654] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 251.574367][T22654] RIP: 0023:0xf6fdef6c [ 251.574384][T22654] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8 [ 251.574402][T22654] RSP: 002b:00000000f53cd50c EFLAGS: 00000292 ORIG_RAX: 000000000000016e [ 251.574421][T22654] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000 [ 251.574433][T22654] RDX: 0000000000000080 RSI: 00000000800000c0 RDI: 00000000000000e0 [ 251.574445][T22654] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 251.574456][T22654] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 251.574466][T22654] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 251.574486][T22654] [ 251.574527][T22654] Mem-Info: [ 251.771331][T22654] active_anon:5236 inactive_anon:23 isolated_anon:0 [ 251.771331][T22654] active_file:10471 inactive_file:17394 isolated_file:0 [ 251.771331][T22654] unevictable:1768 dirty:516 writeback:0 [ 251.771331][T22654] slab_reclaimable:6550 slab_unreclaimable:56953 [ 251.771331][T22654] mapped:22968 shmem:2209 pagetables:1281 [ 251.771331][T22654] sec_pagetables:297 bounce:0 [ 251.771331][T22654] kernel_misc_reclaimable:0 [ 251.771331][T22654] free:61427 free_pcp:13676 free_cma:0 [ 251.792608][T22654] Node 0 active_anon:16kB inactive_anon:44kB active_file:0kB inactive_file:20kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:20kB dirty:12kB writeback:0kB shmem:3544kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8448kB pagetables:1484kB sec_pagetables:1100kB all_unreclaimable? yes Balloon:0kB [ 251.807413][T22654] Node 1 active_anon:20928kB inactive_anon:48kB active_file:41884kB inactive_file:69556kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:91952kB dirty:2052kB writeback:0kB shmem:5292kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4440kB pagetables:3740kB sec_pagetables:88kB all_unreclaimable? no Balloon:0kB [ 251.819098][T22654] Node 0 DMA free:2584kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:644kB local_pcp:108kB free_cma:0kB [ 251.834837][T22654] lowmem_reserve[]: 0 285 285 285 285 [ 251.836983][T22654] Node 0 DMA32 free:18344kB boost:2048kB min:15116kB low:18380kB high:21644kB reserved_highatomic:0KB free_highatomic:0KB active_anon:16kB inactive_anon:44kB active_file:0kB inactive_file:20kB unevictable:3536kB writepending:12kB zspages:0kB present:1032196kB managed:292492kB mlocked:0kB bounce:0kB free_pcp:13076kB local_pcp:4024kB free_cma:0kB [ 251.849988][T22654] lowmem_reserve[]: 0 0 0 0 0 [ 251.851719][T22654] Node 1 DMA32 free:224480kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:20828kB inactive_anon:48kB active_file:41884kB inactive_file:69556kB unevictable:3536kB writepending:2052kB zspages:2240kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:41336kB local_pcp:14704kB free_cma:0kB [ 251.862732][T22654] lowmem_reserve[]: 0 0 0 0 0 [ 251.865275][T22654] Node 0 DMA: 124*4kB (UE) 37*8kB (UE) 14*16kB (UE) 19*32kB (UE) 1*64kB (E) 3*128kB (E) 0*256kB 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 2584kB [ 251.871209][T22654] Node 0 DMA32: 464*4kB (UE) 355*8kB (U) 171*16kB (UME) 85*32kB (UE) 40*64kB (UME) 22*128kB (UME) 7*256kB (M) 0*512kB 1*1024kB (U) 0*2048kB 0*4096kB = 18344kB [ 251.878740][T22654] Node 1 DMA32: 5433*4kB (UME) 3619*8kB (UME) 2704*16kB (UME) 314*32kB (UME) 132*64kB (UME) 57*128kB (UME) 55*256kB (UME) 39*512kB (UME) 45*1024kB (UM) 8*2048kB (UM) 2*4096kB (U) = 224444kB [ 251.888575][T22654] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 251.892433][T22654] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 251.898602][T22654] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 251.903398][T22654] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 251.911663][T22654] 30605 total pagecache pages [ 251.913689][T22654] 536 pages in swap cache [ 251.915410][T22654] Free swap = 119708kB [ 251.923920][T22654] Total swap = 124996kB [ 251.925768][T22654] 524155 pages RAM [ 251.927714][T22654] 0 pages HighMem/MovableOnly [ 251.929761][T22654] 210139 pages reserved [ 251.931576][T22654] 0 pages cma reserved [ 252.029281][ T40] audit: type=1326 audit(242.319:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22702 comm="syz.0.8092" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 252.051677][ T40] audit: type=1326 audit(242.319:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22702 comm="syz.0.8092" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 252.065928][ T40] audit: type=1326 audit(242.319:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22702 comm="syz.0.8092" exe="/syz-executor" sig=0 arch=40000003 syscall=77 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 252.074579][ T40] audit: type=1326 audit(242.319:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22702 comm="syz.0.8092" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 252.082765][ T40] audit: type=1326 audit(242.319:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22702 comm="syz.0.8092" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 252.094687][T22709] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 252.159034][T22715] __nla_validate_parse: 6 callbacks suppressed [ 252.159048][T22715] netlink: 140 bytes leftover after parsing attributes in process `syz.3.8097'. [ 252.385596][T22744] tmpfs: Bad value for 'mpol' [ 252.629406][T22778] Process accounting resumed [ 252.775391][T22802] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 252.830137][T22807] openvswitch: netlink: Unexpected mask (mask=40040, allowed=10048) [ 253.065305][T22840] netlink: 452 bytes leftover after parsing attributes in process `syz.3.8158'. [ 253.071085][T22844] comedi comedi0: pcmda12: I/O port conflict (0x8,16) [ 253.080552][T22846] netlink: 766 bytes leftover after parsing attributes in process `syz.2.8161'. [ 253.375385][T22882] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8177'. [ 253.447055][T22891] netlink: 'syz.3.8181': attribute type 2 has an invalid length. [ 253.491620][T22897] netlink: 'syz.1.8186': attribute type 11 has an invalid length. [ 253.494872][T22897] netlink: 199828 bytes leftover after parsing attributes in process `syz.1.8186'. [ 253.693305][T22928] No control pipe specified [ 253.906525][T22956] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8215'. [ 253.912152][T22956] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8215'. [ 254.099143][T22964] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue [ 254.118107][T22974] IPVS: Unknown mcast interface: lo [ 254.193029][T22982] netlink: 'syz.2.8228': attribute type 1 has an invalid length. [ 254.196111][T22982] netlink: 228 bytes leftover after parsing attributes in process `syz.2.8228'. [ 254.226877][T22985] Zero length message leads to an empty skb [ 254.323693][T23000] netlink: 224 bytes leftover after parsing attributes in process `syz.1.8236'. [ 254.325098][T22998] IPVS: Error joining to the multicast group [ 254.369653][T23006] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 254.379741][T23010] Cannot find del_set index 2 as target [ 254.574453][T23034] 8021q: adding VLAN 0 to HW filter on device bond0 [ 254.581057][T23034] 8021q: adding VLAN 0 to HW filter on device team0 [ 254.612555][T23034] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 254.622522][ T6007] lo speed is unknown, defaulting to 1000 [ 254.626455][ T6007] syz0: Port: 1 Link ACTIVE [ 254.981281][T23078] openvswitch: netlink: Multiple metadata blocks provided [ 255.201521][T23100] xt_HMARK: spi-set and port-set can't be combined [ 255.398411][T23120] x_tables: ip6_tables: socket match: used from hooks FORWARD, but only valid from PREROUTING/INPUT [ 255.833345][T23172] dlm: no locking on control device [ 255.906074][T23183] netlink: 56 bytes leftover after parsing attributes in process `syz.2.8328'. [ 255.978443][ T40] audit: type=1326 audit(246.025:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23192 comm="syz.1.8331" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x7ffc0000 [ 255.986815][ T40] audit: type=1326 audit(246.025:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23192 comm="syz.1.8331" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x7ffc0000 [ 255.999586][ T40] audit: type=1326 audit(246.025:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23192 comm="syz.1.8331" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x7ffc0000 [ 256.014847][ T40] audit: type=1326 audit(246.025:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23192 comm="syz.1.8331" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x7ffc0000 [ 256.026900][ T40] audit: type=1326 audit(246.025:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23192 comm="syz.1.8331" exe="/syz-executor" sig=0 arch=40000003 syscall=47 compat=1 ip=0xf7ff6f6c code=0x7ffc0000 [ 256.901205][T23302] netlink: del zone limit has 8 unknown bytes [ 257.028670][T23319] program syz.2.8394 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 257.155768][T23333] vivid-007: disconnect [ 257.158528][T23332] vivid-007: reconnect [ 257.412921][T23355] ./bus: Can't lookup blockdev [ 257.515676][T23363] openvswitch: netlink: Unexpected mask (mask=200440, allowed=10048) [ 257.603927][T23365] netlink: 'syz.0.8416': attribute type 1 has an invalid length. [ 257.607752][T23365] __nla_validate_parse: 4 callbacks suppressed [ 257.607764][T23365] netlink: 224 bytes leftover after parsing attributes in process `syz.0.8416'. [ 257.676569][ T828] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 257.835345][T23395] netlink: 224 bytes leftover after parsing attributes in process `syz.0.8430'. [ 257.841431][ T828] usb 6-1: Using ep0 maxpacket: 32 [ 257.847966][ T828] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11 [ 257.853183][ T828] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87 [ 257.858634][ T828] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 257.858660][ T828] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid wMaxPacketSize 0 [ 257.872762][ T828] usb 6-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68 [ 257.877123][ T828] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 257.881189][ T828] usb 6-1: Product: syz [ 257.882997][ T828] usb 6-1: Manufacturer: syz [ 257.885186][ T828] usb 6-1: SerialNumber: syz [ 257.889588][ T828] usb 6-1: config 0 descriptor?? [ 257.902952][ T828] input: Generic X-Box pad as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input24 [ 258.092741][T23423] netlink: 'syz.3.8444': attribute type 3 has an invalid length. [ 258.102963][T23423] netlink: 'syz.3.8444': attribute type 1 has an invalid length. [ 258.106773][T23423] netlink: 224 bytes leftover after parsing attributes in process `syz.3.8444'. [ 258.109881][T23423] NCSI netlink: No device for ifindex 0 [ 258.184756][ T828] usb 6-1: USB disconnect, device number 8 [ 258.476764][T23465] ip6tnl1: entered promiscuous mode [ 258.480144][T23465] ip6tnl1: entered allmulticast mode [ 258.680402][T23483] netlink: 16 bytes leftover after parsing attributes in process `syz.3.8474'. [ 258.797577][T23495] netlink: 'syz.3.8480': attribute type 1 has an invalid length. [ 258.802529][T23495] netlink: 396 bytes leftover after parsing attributes in process `syz.3.8480'. [ 258.849116][T23501] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks [ 258.876742][T23504] xt_TPROXY: Can be used only with -p tcp or -p udp [ 258.975612][T23516] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8489'. [ 259.148237][T23537] netlink: 24 bytes leftover after parsing attributes in process `syz.1.8500'. [ 259.208085][T23544] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw [ 259.273595][T23555] openvswitch: netlink: VXLAN extension 307 out of range max 1 [ 259.311605][T23557] Bluetooth: hci0: Opcode 0x0c1a failed: -22 [ 259.577012][T23595] netlink: 256 bytes leftover after parsing attributes in process `syz.2.8530'. [ 259.773580][T23622] bond0: entered promiscuous mode [ 259.775292][T23622] bond_slave_0: entered promiscuous mode [ 259.776791][T23623] program syz.1.8543 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 259.777202][T23622] bond_slave_1: entered promiscuous mode [ 259.783710][T23622] bond0: entered allmulticast mode [ 259.786232][T23622] bond_slave_0: entered allmulticast mode [ 259.788789][T23622] bond_slave_1: entered allmulticast mode [ 259.792933][T23622] 8021q: adding VLAN 0 to HW filter on device bond0 [ 259.868390][ T1110] ata1.00: exception Emask 0x0 SAct 0x0 SErr 0x0 action 0x0 [ 259.871984][ T1110] ata1.00: irq_stat 0x40000000 [ 259.874505][ T1110] ata1.00: failed command: ZAC MANAGEMENT OUT [ 259.877263][ T1110] ata1.00: cmd 9f/01:00:00:00:00/00:00:00:00:00/40 tag 14 [ 259.877263][ T1110] res 41/04:00:00:00:00/00:00:00:00:00/40 Emask 0x1 (device error) [ 259.882941][ T1110] ata1.00: status: { DRDY ERR } [ 259.884715][ T1110] ata1.00: error: { ABRT } [ 259.886261][ T1110] ata1.00: device reported invalid CHS sector 0 [ 259.973015][T23645] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8555'. [ 260.019160][T23651] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long [ 260.103251][T23663] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8564'. [ 260.330419][T23688] openvswitch: netlink: VXLAN extension 0 has unexpected len 2 expected 0 [ 260.437776][T23703] exFAT-fs (nbd1): mounting with "discard" option, but the device does not support discard [ 260.446530][T23701] 8021q: adding VLAN 0 to HW filter on device bond0 [ 260.447887][T23703] exFAT-fs (nbd1): unable to read boot sector [ 260.456379][T23703] exFAT-fs (nbd1): failed to read boot sector [ 260.459568][T23703] exFAT-fs (nbd1): failed to recognize exfat type [ 260.555020][T23715] ip6erspan0: entered promiscuous mode [ 260.735819][T23743] comedi comedi2: pcm3724: I/O port conflict (0x8,16) [ 260.822936][ T40] kauditd_printk_skb: 4 callbacks suppressed [ 260.822949][ T40] audit: type=1326 audit(250.554:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23756 comm="syz.1.8607" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x7ffc0000 [ 260.834412][ T40] audit: type=1326 audit(250.554:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23756 comm="syz.1.8607" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x7ffc0000 [ 260.850251][ T40] audit: type=1326 audit(250.554:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23756 comm="syz.1.8607" exe="/syz-executor" sig=0 arch=40000003 syscall=241 compat=1 ip=0xf7ff6f6c code=0x7ffc0000 [ 260.859278][ T40] audit: type=1326 audit(250.563:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23756 comm="syz.1.8607" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x7ffc0000 [ 260.870534][ T40] audit: type=1326 audit(250.563:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23756 comm="syz.1.8607" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x7ffc0000 [ 261.202533][T23803] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 261.520176][T23833] netlink: 'syz.2.8645': attribute type 27 has an invalid length. [ 261.713337][T23855] bond5: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 261.829197][T23860] Unsupported ieee802154 address type: 0 [ 262.606056][T23855] bond5 (unregistering): Released all slaves [ 262.708705][T23874] cgroup: none used incorrectly [ 262.858679][T23891] openvswitch: netlink: Geneve opt len 17 is not a multiple of 4. [ 263.079640][T23923] tmpfs: Bad value for 'mpol' [ 263.216616][T23940] pimreg: entered allmulticast mode [ 263.218741][T23939] __nla_validate_parse: 5 callbacks suppressed [ 263.218754][T23939] netlink: 830 bytes leftover after parsing attributes in process `syz.0.8696'. [ 263.261497][T23944] program syz.1.8700 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 263.354858][T23961] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8708'. [ 263.490595][T23976] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined [ 263.883176][T24022] gfs2: error -5 reading superblock [ 263.992518][T24038] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8746'. [ 264.050363][T24046] netlink: 140 bytes leftover after parsing attributes in process `syz.2.8750'. [ 264.082402][ T40] audit: type=1326 audit(253.605:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24049 comm="syz.3.8752" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 264.093676][ T40] audit: type=1326 audit(253.605:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24049 comm="syz.3.8752" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 264.103880][ T40] audit: type=1326 audit(253.605:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24049 comm="syz.3.8752" exe="/syz-executor" sig=0 arch=40000003 syscall=266 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 264.112611][ T40] audit: type=1326 audit(253.605:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24049 comm="syz.3.8752" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 264.119652][ T40] audit: type=1326 audit(253.605:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24049 comm="syz.3.8752" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 264.378166][T24090] overlayfs: missing 'lowerdir' [ 264.611902][T24122] Sensor A: ================= START STATUS ================= [ 264.615589][T24122] Sensor A: Test Pattern: 75% Colorbar [ 264.617730][T24122] Sensor A: Show Information: All [ 264.619426][T24122] Sensor A: Vertical Flip: false [ 264.621129][T24122] Sensor A: Horizontal Flip: false [ 264.624628][T24122] Sensor A: Brightness: 128 [ 264.626675][T24122] Sensor A: Contrast: 128 [ 264.628597][T24122] Sensor A: Hue: 0 [ 264.630322][T24122] Sensor A: Saturation: 3 [ 264.632429][T24122] Sensor A: ================== END STATUS ================== [ 264.724806][T24138] vivid-000: ================= START STATUS ================= [ 264.728258][T24138] vivid-000: RDS Tx I/O Mode: Controls [ 264.732197][T24138] vivid-000: RDS Program ID: 32904 [ 264.734470][T24138] vivid-000: RDS Program Type: 3 [ 264.736738][T24138] vivid-000: RDS PS Name: VIVID-TX [ 264.738793][T24138] vivid-000: RDS Radio Text: This is a VIVID default Radio Text template text, change at will [ 264.744891][T24138] vivid-000: RDS Stereo: true [ 264.747309][T24138] vivid-000: RDS Artificial Head: false [ 264.749384][T24138] vivid-000: RDS Compressed: false [ 264.752647][T24138] vivid-000: RDS Dynamic PTY: false [ 264.754773][T24138] vivid-000: RDS Traffic Announcement: false [ 264.757246][T24138] vivid-000: RDS Traffic Program: true [ 264.759487][T24138] vivid-000: RDS Music: true [ 264.761722][T24138] vivid-000: ================== END STATUS ================== [ 264.842157][T24151] netlink: 'syz.3.8803': attribute type 7 has an invalid length. [ 264.845209][T24151] netlink: 'syz.3.8803': attribute type 8 has an invalid length. [ 264.846906][T24152] netlink: 'syz.2.8804': attribute type 21 has an invalid length. [ 265.042722][T24177] binfmt_misc: register: failed to install interpreter file ./bus [ 265.183140][T24190] xt_CT: You must specify a L4 protocol and not use inversions on it [ 265.418658][T24220] block device autoloading is deprecated and will be removed. [ 265.471085][T24228] kAFS: Can only specify source 'none' with -o dyn [ 265.480801][ T210] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.484982][T24233] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8841'. [ 265.489612][ T210] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.489653][ T210] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.627206][T24252] netlink: 'syz.3.8850': attribute type 6 has an invalid length. [ 265.769832][T24274] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 265.922263][T24296] tmpfs: Group quota block hardlimit too large. [ 266.047012][T24314] libceph: resolve '0' (ret=-3): failed [ 266.156417][T24323] openvswitch: netlink: Flow key attribute not present in set flow. [ 266.388628][T24353] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8900'. [ 266.442502][T24360] affs: No valid root block on device nbd1 [ 266.466438][ T40] audit: type=1326 audit(255.832:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24362 comm="syz.3.8905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 266.475424][ T40] audit: type=1326 audit(255.832:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24362 comm="syz.3.8905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 266.492926][ T40] audit: type=1326 audit(255.841:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24362 comm="syz.3.8905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 266.535271][ T40] audit: type=1326 audit(255.841:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24362 comm="syz.3.8905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 266.545171][ T40] audit: type=1326 audit(255.841:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24362 comm="syz.3.8905" exe="/syz-executor" sig=0 arch=40000003 syscall=401 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 266.562099][ T40] audit: type=1326 audit(255.841:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24362 comm="syz.3.8905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 266.566885][T24368] syz.2.8906 (24368): drop_caches: 2 [ 266.572579][ T40] audit: type=1326 audit(255.841:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24362 comm="syz.3.8905" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 266.584671][ T40] audit: type=1326 audit(255.841:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24362 comm="syz.3.8905" exe="/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 266.599144][ T40] audit: type=1326 audit(255.841:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24362 comm="syz.3.8905" exe="/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 266.762950][T24403] netlink: 'syz.3.8921': attribute type 12 has an invalid length. [ 266.987986][T24437] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8938'. [ 267.180095][T24463] netlink: 156 bytes leftover after parsing attributes in process `syz.2.8951'. [ 267.184635][T24463] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 267.193074][T24469] random: crng reseeded on system resumption [ 267.254548][T24475] netlink: 72 bytes leftover after parsing attributes in process `syz.3.8957'. [ 267.298127][T24479] TCP: TCP_TX_DELAY enabled [ 267.481777][T24504] syz.0.8971 (24504): drop_caches: 2 [ 267.666574][T24534] openvswitch: netlink: IPv4 tunnel dst address is zero [ 268.166936][T24600] i2c i2c-1: Invalid block write size 34 [ 268.306878][T24620] ip6erspan0: entered allmulticast mode [ 268.450909][T24640] openvswitch: netlink: Missing key (keys=40, expected=80) [ 268.522720][T24651] netlink: 'syz.1.9042': attribute type 29 has an invalid length. [ 268.526059][T24651] netlink: 'syz.1.9042': attribute type 3 has an invalid length. [ 268.529391][T24651] netlink: 76 bytes leftover after parsing attributes in process `syz.1.9042'. [ 268.601838][T24663] program syz.3.9048 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 268.606000][T24662] netlink: 132 bytes leftover after parsing attributes in process `syz.1.9047'. [ 268.628096][T24667] netlink: 'syz.0.9049': attribute type 11 has an invalid length. [ 268.680264][T24675] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9053'. [ 268.964209][T24716] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 268.986752][T24722] xt_recent: hitcount (4294901760) is larger than allowed maximum (65535) [ 269.122489][T24741] 9pnet_fd: p9_fd_create_tcp (24741): problem connecting socket to 127.0.0.1 [ 269.415295][T24774] ata1.00: invalid multi_count 1 ignored [ 269.903180][T24834] No source specified [ 270.050463][T24850] netlink: 132 bytes leftover after parsing attributes in process `syz.1.9140'. [ 270.085370][T24854] SET target dimension over the limit! [ 270.221810][T24868] mkiss: ax0: crc mode is auto. [ 270.402557][ T5957] Bluetooth: hci3: unexpected event for opcode 0x2040 [ 270.506714][T24911] netlink: 'syz.1.9170': attribute type 1 has an invalid length. [ 270.534717][T24904] bond5 (unregistering): Released all slaves [ 270.619279][T24921] openvswitch: netlink: Missing valid actions attribute. [ 270.621748][T24921] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 270.692580][T24928] [U]  [ 270.760280][T24941] xt_NFQUEUE: number of queues (62232) out of range (got 67565) [ 271.282596][T25012] netlink: 'syz.1.9218': attribute type 1 has an invalid length. [ 271.312216][T25014] lo speed is unknown, defaulting to 1000 [ 271.345653][T25020] EXT4-fs (nbd2): unable to read superblock [ 271.717021][T25060] netlink: 'syz.2.9242': attribute type 2 has an invalid length. [ 271.722298][T25060] netlink: 224 bytes leftover after parsing attributes in process `syz.2.9242'. [ 271.742085][T25064] xt_cluster: node mask cannot exceed total number of nodes [ 271.839569][T25076] netlink: 'syz.3.9250': attribute type 20 has an invalid length. [ 271.843411][T25076] IPv6: NLM_F_CREATE should be specified when creating new route [ 271.874848][T25075] netlink: 'syz.2.9249': attribute type 11 has an invalid length. [ 271.893098][T25078] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9256'. [ 272.790067][T25080] bond4 (unregistering): Released all slaves [ 273.005144][T25113] dlm: plock device version mismatch: kernel (1.2.0), user (1.1792.0) [ 273.167154][T25133] lo speed is unknown, defaulting to 1000 [ 273.322295][T25156] netlink: 'syz.0.9290': attribute type 5 has an invalid length. [ 273.431533][T25156] ip6erspan0: entered promiscuous mode [ 273.516306][ T40] audit: type=1326 audit(262.429:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25177 comm="syz.0.9300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 273.518800][T25176] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9299'. [ 273.526857][ T40] audit: type=1326 audit(262.429:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25177 comm="syz.0.9300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 273.528831][T25176] netlink: 224 bytes leftover after parsing attributes in process `syz.1.9299'. [ 273.548510][ T40] audit: type=1326 audit(262.439:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25177 comm="syz.0.9300" exe="/syz-executor" sig=0 arch=40000003 syscall=433 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 273.558789][ T40] audit: type=1326 audit(262.439:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25177 comm="syz.0.9300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 273.576143][ T40] audit: type=1326 audit(262.439:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25177 comm="syz.0.9300" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 273.724574][T25207] bond4: entered allmulticast mode [ 273.727326][T25207] 8021q: adding VLAN 0 to HW filter on device bond4 [ 273.850209][T25225] netlink: 'syz.2.9322': attribute type 1 has an invalid length. [ 273.948442][T25239] cgroup: Need name or subsystem set [ 274.022283][T25249] openvswitch: netlink: nsh attribute has 8 unknown bytes. [ 274.120417][T25267] tmpfs: Bad value for 'mpol' [ 274.198396][T25278] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 274.542382][T25334] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9376'. [ 274.690200][T25357] bond5: Removing last arp target with arp_interval on [ 274.797037][T25373] new mount options do not match the existing superblock, will be ignored [ 274.908968][T25367] infiniband syz1: set down [ 274.912134][T25367] infiniband syz1: added bond_slave_1 [ 274.954839][T25367] RDS/IB: syz1: added [ 274.957830][T25367] smc: adding ib device syz1 with port count 1 [ 274.960697][T25367] smc: ib device syz1 port 1 has no pnetid [ 275.017936][T25398] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9407'. [ 275.032588][T25402] ip6t_srh: unknown srh invflags 7160 [ 275.226706][T25420] netlink: 12 bytes leftover after parsing attributes in process `syz.3.9418'. [ 275.398232][T25438] 9pnet_fd: Insufficient options for proto=fd [ 275.639010][T25470] xt_CT: You must specify a L4 protocol and not use inversions on it [ 275.874261][T25504] openvswitch: netlink: IP tunnel dst address not specified [ 275.951526][T25512] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9462'. [ 275.990371][ T2292] hid-generic 0000:10001:FFFFFFFD.0003: item fetching failed at offset 3/4 [ 275.997829][ T2292] hid-generic 0000:10001:FFFFFFFD.0003: probe with driver hid-generic failed with error -22 [ 276.008566][T25522] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9468'. [ 276.012617][T25522] netlink: 5 bytes leftover after parsing attributes in process `syz.3.9468'. [ 276.076183][T25532] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 276.088454][T25532] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 276.091280][T25532] overlayfs: missing 'lowerdir' [ 276.328009][T25566] netlink: 'syz.3.9490': attribute type 10 has an invalid length. [ 276.331119][T25566] veth0_vlan: left promiscuous mode [ 276.333558][T25566] veth0_vlan: entered promiscuous mode [ 276.340589][T25566] team0: Device veth0_vlan failed to register rx_handler [ 276.580678][T25594] binder: 25593:25594 ioctl c018620c 80000380 returned -22 [ 276.766562][T25622] random: crng reseeded on system resumption [ 276.851996][T25632] No such timeout policy "syz1" [ 276.942995][T25645] netlink: 'syz.1.9530': attribute type 1 has an invalid length. [ 276.947139][T25645] netlink: 396 bytes leftover after parsing attributes in process `syz.1.9530'. [ 277.023820][ T210] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 20001 - 0 [ 277.028938][ T210] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 20001 - 0 [ 277.033622][ T210] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 20001 - 0 [ 277.038314][ T210] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 20001 - 0 [ 277.082350][ T2292] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 277.253658][ T2292] usb 7-1: Using ep0 maxpacket: 32 [ 277.257729][ T2292] usb 7-1: config 0 has an invalid interface number: 119 but max is 0 [ 277.261316][ T2292] usb 7-1: config 0 has no interface number 0 [ 277.264570][ T2292] usb 7-1: config 0 interface 119 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 277.269126][ T2292] usb 7-1: config 0 interface 119 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83 [ 277.275031][ T2292] usb 7-1: config 0 interface 119 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 27 [ 277.278420][ T2292] usb 7-1: config 0 interface 119 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 277.286698][ T2292] usb 7-1: New USB device found, idVendor=05ac, idProduct=0292, bcdDevice=88.73 [ 277.290103][ T2292] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 277.293014][T25687] raw_sendmsg: syz.0.9550 forgot to set AF_INET. Fix it! [ 277.304417][ T2292] usb 7-1: Product: syz [ 277.306304][ T2292] usb 7-1: Manufacturer: syz [ 277.308831][ T2292] usb 7-1: SerialNumber: syz [ 277.317733][ T2292] usb 7-1: config 0 descriptor?? [ 277.320538][T25628] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 277.330986][ T2292] input: bcm5974 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.119/input/input25 [ 277.345001][ T5335] usb 7-1: BOGUS urb xfer, pipe 1 != type 3 [ 277.415663][T25700] netlink: 'syz.0.9556': attribute type 12 has an invalid length. [ 277.607093][ T1330] usb 7-1: USB disconnect, device number 6 [ 277.631926][T25722] netlink: 'syz.0.9567': attribute type 21 has an invalid length. [ 277.635234][T25722] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9567'. [ 277.641784][T25722] netlink: 158 bytes leftover after parsing attributes in process `syz.0.9567'. [ 278.045333][T25762] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 278.565368][T25827] tmpfs: Bad value for 'mpol' [ 278.640460][T25842] netlink: 36 bytes leftover after parsing attributes in process `syz.3.9625'. [ 279.068230][ T40] audit: type=1326 audit(267.623:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25899 comm="syz.2.9653" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 279.082653][T25902] netlink: 'syz.0.9654': attribute type 2 has an invalid length. [ 279.088582][ T40] audit: type=1326 audit(267.623:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25899 comm="syz.2.9653" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 279.098653][ T40] audit: type=1326 audit(267.632:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25899 comm="syz.2.9653" exe="/syz-executor" sig=0 arch=40000003 syscall=447 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 279.120168][ T40] audit: type=1326 audit(267.632:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25899 comm="syz.2.9653" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 279.130700][ T40] audit: type=1326 audit(267.632:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25899 comm="syz.2.9653" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fdef6c code=0x7ffc0000 [ 279.380031][ T2292] usb 5-1: new full-speed USB device number 6 using dummy_hcd [ 279.555154][ T2292] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0 [ 279.575226][ T2292] usb 5-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 279.578933][ T2292] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 279.579329][T25956] comedi comedi0: Minor 3 specified more than once! [ 279.581937][ T2292] usb 5-1: Product: syz [ 279.581951][ T2292] usb 5-1: Manufacturer: syz [ 279.581959][ T2292] usb 5-1: SerialNumber: syz [ 279.592610][ T2292] usb 5-1: config 0 descriptor?? [ 279.598790][ T2292] hub 5-1:0.0: bad descriptor, ignoring hub [ 279.601374][ T2292] hub 5-1:0.0: probe with driver hub failed with error -5 [ 279.608093][ T2292] input: syz syz as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input26 [ 279.765192][T25972] netlink: 'syz.1.9688': attribute type 21 has an invalid length. [ 280.572867][T26053] __nla_validate_parse: 10 callbacks suppressed [ 280.572883][T26053] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9727'. [ 280.845876][ T59] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 280.848796][T26083] xt_cgroup: path and classid specified [ 281.029041][ T59] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 281.032430][ T59] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 281.035723][ T59] usb 6-1: Product: syz [ 281.038523][ T59] usb 6-1: Manufacturer: syz [ 281.040780][ T59] usb 6-1: SerialNumber: syz [ 281.063824][ T59] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 281.097418][ T7990] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 281.227466][T26129] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9765'. [ 281.247293][T26131] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined [ 281.527750][T26160] binder: 26158:26160 ioctl c018620c 80000040 returned -1 [ 281.543281][ T10] usb 6-1: USB disconnect, device number 9 [ 281.573470][T26165] ksmbd: Daemon and kernel module version mismatch. ksmbd: 124, kernel module: 1. User-space ksmbd should terminate. [ 281.712113][T26183] netlink: 'syz.2.9791': attribute type 2 has an invalid length. [ 281.835021][T26201] netlink: 'syz.3.9805': attribute type 1 has an invalid length. [ 282.023450][T26217] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9809'. [ 282.113523][T26225] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 282.115659][T26225] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 282.118536][T26225] vhci_hcd vhci_hcd.0: Device attached [ 282.126420][T26226] vhci_hcd: unknown pdu 1 [ 282.129508][ T61] vhci_hcd vhci_hcd.2: stop threads [ 282.133041][ T61] vhci_hcd vhci_hcd.2: release socket [ 282.135439][ T61] vhci_hcd vhci_hcd.2: disconnect device [ 282.260442][T26244] ALSA: mixer_oss: invalid OSS volume '' [ 282.262718][T26244] ALSA: mixer_oss: invalid OSS volume 'ÊÒ±BËÂì;T`¿@$™¿¾E÷ócXÆMYdŸè,' [ 282.276882][T26244] ALSA: mixer_oss: invalid OSS volume 'b«Ž@hé#' [ 282.279368][T26244] ALSA: mixer_oss: invalid OSS volume '•‘h4¿–ÐX¬„S4v=0_>¤&äÏ' [ 282.283096][T26244] ALSA: mixer_oss: invalid OSS volume '|œ/"tj' [ 282.286559][T26244] ALSA: mixer_oss: invalid OSS volume '-z5²Šc^÷Jƒå6$̹' [ 282.290380][T26244] ALSA: mixer_oss: invalid OSS volume '0ÉóT„®°yòÝäî¬ó‰´ª‡—‚j–P&†³aït' [ 282.294169][T26244] ALSA: mixer_oss: invalid OSS volume '÷|á¥ó~‚\' [ 282.297318][T26244] ALSA: mixer_oss: invalid OSS volume '­É@ô^3bÉœ‘}˜ÔG$º#\Ä("/øoúLÛ' [ 282.300997][T26244] ALSA: mixer_oss: invalid OSS volume 'I ‹È:•þàâ' [ 282.303752][T26244] ALSA: mixer_oss: invalid OSS volume '%^Óvƒªhc¾GJPÿÃÐöø¬rª('â¯Q=' [ 282.307514][T26244] ALSA: mixer_oss: invalid OSS volume ' ‰Gjä;4÷ÊÃŒðÙÆzÜ3¸W´Ò¼0ÙF=%¾' [ 282.312114][T26244] ALSA: mixer_oss: invalid OSS volume ';4— å‚«4òfhÊ߇G¥ŽIב°Q÷5o“J' [ 282.314775][T26244] ALSA: mixer_oss: invalid OSS volume 'WöŒ’ló]Y1Õ-¬ž¾ÙJ<´¶³ªAÆ>ƒïo' [ 282.435978][ T7990] usb 6-1: Service connection timeout for: 256 [ 282.438673][ T7990] ath9k_htc 6-1:1.0: ath9k_htc: Unable to initialize HTC services [ 282.442664][ T7990] ath9k_htc: Failed to initialize the device [ 282.445572][ T10] usb 6-1: ath9k_htc: USB layer deinitialized [ 282.713109][T26288] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 282.750580][ T40] audit: type=1326 audit(271.076:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26292 comm="syz.0.9846" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 282.760511][ T40] audit: type=1326 audit(271.076:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26292 comm="syz.0.9846" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 282.770657][ T40] audit: type=1326 audit(271.076:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26292 comm="syz.0.9846" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 282.781202][T26299] siw: device registration error -23 [ 282.784799][ T40] audit: type=1326 audit(271.076:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26292 comm="syz.0.9846" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 282.797130][ T40] audit: type=1326 audit(271.076:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26292 comm="syz.0.9846" exe="/syz-executor" sig=0 arch=40000003 syscall=400 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 282.942706][T26323] netlink: 180 bytes leftover after parsing attributes in process `syz.1.9861'. [ 283.155409][T26356] ubi0: attaching mtd0 [ 283.159963][T26356] ubi0: scanning is finished [ 283.162124][T26356] ubi0: empty MTD device detected [ 283.214449][T26361] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined [ 283.246504][T26365] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9881'. [ 283.295977][T26372] netlink: 'syz.3.9885': attribute type 1 has an invalid length. [ 283.419327][T26356] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 283.422638][T26356] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3774 bytes [ 283.426163][T26356] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 283.429021][T26356] ubi0: VID header offset: 258 (aligned 258), data offset: 322 [ 283.439828][T26356] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 283.442253][T26356] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 21 [ 283.446049][T26356] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1788985069 [ 283.451587][T26356] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 283.457915][T26388] ubi0: background thread "ubi_bgt0d" started, PID 26388 [ 283.614201][T26404] netlink: 36 bytes leftover after parsing attributes in process `syz.0.9899'. [ 283.733199][ T1330] usb 5-1: USB disconnect, device number 6 [ 284.184663][T26470] netlink: 400 bytes leftover after parsing attributes in process `syz.2.9932'. [ 284.235033][T26476] netlink: 260 bytes leftover after parsing attributes in process `syz.2.9935'. [ 284.414646][T26483] veth3: entered promiscuous mode [ 284.416451][T26483] veth3: entered allmulticast mode [ 284.594706][ T6007] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 284.765656][ T6007] usb 7-1: Using ep0 maxpacket: 8 [ 284.769131][ T6007] usb 7-1: config 0 has an invalid interface number: 1 but max is 0 [ 284.772060][ T6007] usb 7-1: config 0 has no interface number 0 [ 284.774173][ T6007] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 284.778226][ T6007] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 284.781412][ T6007] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 284.784493][ T6007] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 284.789213][ T6007] usb 7-1: config 0 descriptor?? [ 284.811504][ T6007] iowarrior 7-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 285.001444][T26497] Process accounting paused [ 285.009646][T26487] iowarrior 7-1:0.1: Error -90 while submitting URB [ 285.015919][ T6007] usb 7-1: USB disconnect, device number 7 [ 285.255595][T26521] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9957'. [ 285.286866][ T40] kauditd_printk_skb: 4 callbacks suppressed [ 285.286879][ T40] audit: type=1326 audit(273.444:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26522 comm="syz.0.9958" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 285.299589][ T40] audit: type=1326 audit(273.444:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26522 comm="syz.0.9958" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 285.307219][ T40] audit: type=1326 audit(273.453:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26522 comm="syz.0.9958" exe="/syz-executor" sig=0 arch=40000003 syscall=62 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 285.314712][ T40] audit: type=1326 audit(273.453:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26522 comm="syz.0.9958" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 285.326262][ T40] audit: type=1326 audit(273.453:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26522 comm="syz.0.9958" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 285.355826][T26528] netlink: 'syz.0.9960': attribute type 8 has an invalid length. [ 285.403201][T26533] netlink: 'syz.0.9963': attribute type 10 has an invalid length. [ 285.486663][T26540] netlink: 'syz.0.9966': attribute type 21 has an invalid length. [ 285.558697][T26547] bridge4: the hash_elasticity option has been deprecated and is always 16 [ 285.561596][T26547] bridge4: entered promiscuous mode [ 285.563613][T26547] bridge4: entered allmulticast mode [ 286.074632][T26605] erofs (device nbd3): cannot find valid erofs superblock [ 286.092995][T26608] AppArmor: change_hat: Invalid input 'x' [ 286.124825][T26611] netlink: 'syz.0.10002': attribute type 4 has an invalid length. [ 286.173003][T26616] netlink: 'syz.3.10004': attribute type 1 has an invalid length. [ 286.211533][T26619] netlink: 'syz.0.10006': attribute type 1 has an invalid length. [ 286.300162][T26629] netlink: 16 bytes leftover after parsing attributes in process `syz.3.10011'. [ 286.411316][ T2292] usb 7-1: new full-speed USB device number 8 using dummy_hcd [ 286.466577][T26633] veth5: entered promiscuous mode [ 286.468536][T26633] veth5: entered allmulticast mode [ 286.585837][ T2292] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0 [ 286.592281][ T2292] usb 7-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 286.595943][ T2292] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 286.599076][ T2292] usb 7-1: Product: syz [ 286.600625][ T2292] usb 7-1: Manufacturer: syz [ 286.602958][ T2292] usb 7-1: SerialNumber: syz [ 286.611528][ T2292] usb 7-1: config 0 descriptor?? [ 286.618053][ T2292] hub 7-1:0.0: bad descriptor, ignoring hub [ 286.621253][ T2292] hub 7-1:0.0: probe with driver hub failed with error -5 [ 286.627320][ T2292] input: syz syz as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/input/input28 [ 286.657108][T26651] tmpfs: Bad value for 'nr_inodes' [ 286.759440][T26659] netlink: 16 bytes leftover after parsing attributes in process `syz.3.10026'. [ 286.802170][T26661] gtp0: entered promiscuous mode [ 286.804148][T26661] gtp0: entered allmulticast mode [ 286.866350][T26670] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10032'. [ 286.955239][T26683] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.10037'. [ 286.987623][T26687] netlink: 'syz.0.10039': attribute type 4 has an invalid length. [ 287.035881][T26694] SET target dimension over the limit! [ 287.051890][ T40] audit: type=1400 audit(275.091:171): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name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bridge0: entered allmulticast mode [ 287.147328][T26705] SET target dimension over the limit! [ 287.333975][T26725] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10058'. [ 287.518452][T26745] sctp: [Deprecated]: syz.1.10068 (pid 26745) Use of int in maxseg socket option. [ 287.518452][T26745] Use struct sctp_assoc_value instead [ 287.695722][T26755] veth5: entered promiscuous mode [ 287.697439][T26755] veth5: entered allmulticast mode [ 287.756620][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 287.766327][T26767] program syz.3.10079 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 287.771157][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 287.775497][T26769] netlink: 20 bytes leftover after parsing attributes in process `syz.2.10081'. [ 287.779656][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 287.783068][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 287.860558][T26783] random: crng reseeded on system resumption [ 288.101457][T26816] lo speed is unknown, defaulting to 1000 [ 288.423759][T26851] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10121'. [ 288.451261][T26855] netlink: 'syz.3.10122': attribute type 10 has an invalid length. [ 288.451293][T26855] netlink: 40 bytes leftover after parsing attributes in process `syz.3.10122'. [ 288.526651][T26863] netlink: 20 bytes leftover after parsing attributes in process `syz.0.10126'. [ 288.526728][T26863] IPv6: Can't replace route, no match found [ 288.776440][T26889] No source specified [ 289.082814][T26929] openvswitch: netlink: Unexpected mask (mask=1040, allowed=10048) [ 289.227420][T26947] netlink: 'syz.3.10168': attribute type 64 has an invalid length. [ 289.231167][T26947] netlink: 5 bytes leftover after parsing attributes in process `syz.3.10168'. [ 289.443841][T26973] sctp: [Deprecated]: syz.1.10179 (pid 26973) Use of int in max_burst socket option deprecated. [ 289.443841][T26973] Use struct sctp_assoc_value instead [ 289.572750][T26991] netlink: 'syz.1.10189': attribute type 11 has an invalid length. [ 289.979645][T27051] netlink: 'syz.1.10218': attribute type 2 has an invalid length. [ 289.983302][T27051] netlink: 'syz.1.10218': attribute type 1 has an invalid length. [ 289.992105][T27054] netlink: 'syz.2.10220': attribute type 1 has an invalid length. [ 290.027428][T27057] netlink: 'syz.1.10221': attribute type 11 has an invalid length. [ 290.271041][ T40] audit: type=1326 audit(278.113:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27084 comm="syz.3.10234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ff00000 [ 290.279608][ T40] audit: type=1326 audit(278.113:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27084 comm="syz.3.10234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ff00000 [ 290.289163][ T40] audit: type=1326 audit(278.113:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27084 comm="syz.3.10234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ff00000 [ 290.296433][ T40] audit: type=1326 audit(278.113:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27084 comm="syz.3.10234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ff00000 [ 290.632303][ T40] kauditd_printk_skb: 3219 callbacks suppressed [ 290.632320][ T40] audit: type=1326 audit(278.441:3395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27084 comm="syz.3.10234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ff00000 [ 290.645144][ T40] audit: type=1326 audit(278.450:3396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27084 comm="syz.3.10234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ff00000 [ 290.652367][ T40] audit: type=1326 audit(278.450:3397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27084 comm="syz.3.10234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ff00000 [ 290.667732][ T40] audit: type=1326 audit(278.450:3398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27084 comm="syz.3.10234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ff00000 [ 290.674472][ T40] audit: type=1326 audit(278.469:3399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27084 comm="syz.3.10234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ff00000 [ 290.682265][ T40] audit: type=1326 audit(278.469:3400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27084 comm="syz.3.10234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ff00000 [ 290.691940][ T40] audit: type=1326 audit(278.469:3401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27084 comm="syz.3.10234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ff00000 [ 290.699855][ T40] audit: type=1326 audit(278.469:3402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27084 comm="syz.3.10234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ff00000 [ 290.706745][ T40] audit: type=1326 audit(278.469:3403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27084 comm="syz.3.10234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ff00000 [ 290.713571][ T40] audit: type=1326 audit(278.469:3404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27084 comm="syz.3.10234" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ff00000 [ 290.744296][ T1330] usb 7-1: USB disconnect, device number 8 [ 290.837825][T27110] netlink: zone id is out of range [ 290.839922][T27110] netlink: zone id is out of range [ 290.901794][T27115] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 291.297727][T27153] nfs: Unknown parameter 'ntext' [ 291.809505][T27212] xt_NFQUEUE: number of total queues is 0 [ 291.813995][T27213] IPv6: NLM_F_CREATE should be specified when creating new route [ 291.918002][T27223] lo speed is unknown, defaulting to 1000 [ 292.051979][T27235] hfs: unable to load iocharset "io#harset" [ 292.279262][T27257] __nla_validate_parse: 5 callbacks suppressed [ 292.279282][T27257] netlink: 12 bytes leftover after parsing attributes in process `syz.2.10320'. [ 292.541257][T27279] lo speed is unknown, defaulting to 1000 [ 292.846332][T27303] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10340'. [ 292.850863][T27303] netlink: 12 bytes leftover after parsing attributes in process `syz.0.10340'. [ 293.058696][T27320] XFS (nbd1): SB validate failed with error -5. [ 293.357352][T27351] netlink: 4 bytes leftover after parsing attributes in process `syz.0.10362'. [ 293.636053][T27386] trusted_key: encrypted_key: keylen for the ecryptfs format must be equal to 64 bytes [ 293.717046][T27396] openvswitch: netlink: Multiple metadata blocks provided [ 293.742795][T27399] netdevsim netdevsim0: Direct firmware load for . [ 293.742795][T27399] failed with error -2 [ 293.747385][T27399] netdevsim netdevsim0: Falling back to sysfs fallback for: . [ 293.747385][T27399] [ 293.797454][T27406] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined [ 293.970485][T27431] netlink: 'syz.2.10399': attribute type 3 has an invalid length. [ 293.975044][T27431] netlink: 'syz.2.10399': attribute type 3 has an invalid length. [ 294.095109][T27446] netlink: 'syz.1.10407': attribute type 7 has an invalid length. [ 294.307252][T27474] openvswitch: netlink: Message has 1 unknown bytes. [ 294.425784][ T5960] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 294.430009][T27486] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10426'. [ 294.587853][ T5960] usb 6-1: config index 0 descriptor too short (expected 39, got 27) [ 294.591641][ T5960] usb 6-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 294.595957][ T5960] usb 6-1: config 0 interface 0 has no altsetting 0 [ 294.600491][ T5960] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 294.604535][ T5960] usb 6-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 294.608488][ T5960] usb 6-1: Product: syz [ 294.610533][ T5960] usb 6-1: Manufacturer: syz [ 294.612731][ T5960] usb 6-1: SerialNumber: syz [ 294.616905][ T5960] usb 6-1: config 0 descriptor?? [ 294.624097][ T5960] hub 6-1:0.0: bad descriptor, ignoring hub [ 294.626511][ T5960] hub 6-1:0.0: probe with driver hub failed with error -5 [ 294.632822][ T5960] usb 6-1: selecting invalid altsetting 0 [ 294.949622][ T1330] usb 6-1: USB disconnect, device number 10 [ 295.332330][T27578] BTRFS info: 'norecovery' is for compatibility only, recommended to use 'rescue=nologreplay' [ 295.427610][T27589] netlink: 'syz.3.10475': attribute type 74 has an invalid length. [ 295.461281][T27593] netlink: 24 bytes leftover after parsing attributes in process `syz.0.10477'. [ 295.467248][T27593] netlink: 24 bytes leftover after parsing attributes in process `syz.0.10477'. [ 295.559718][T27607] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10483'. [ 295.780642][T27638] bond6: Unable to set peer notification delay as MII monitoring is disabled [ 295.816481][T27638] bond6 (unregistering): Released all slaves [ 295.848527][T27647] netlink: 'syz.0.10503': attribute type 4 has an invalid length. [ 295.926871][T27657] netlink: 32 bytes leftover after parsing attributes in process `syz.2.10508'. [ 295.992753][T27668] netlink: 132 bytes leftover after parsing attributes in process `syz.3.10513'. [ 296.245871][T27689] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 296.446213][T27721] ipt_REJECT: TCP_RESET invalid for non-tcp [ 296.610466][T27747] netlink: 'syz.1.10553': attribute type 2 has an invalid length. [ 296.610495][T27747] netlink: 'syz.1.10553': attribute type 1 has an invalid length. [ 298.266684][T27912] netlink: 'syz.0.10635': attribute type 15 has an invalid length. [ 298.269228][T27912] netlink: 'syz.0.10635': attribute type 30 has an invalid length. [ 298.295436][T27916] __nla_validate_parse: 2 callbacks suppressed [ 298.295456][T27916] netlink: 56 bytes leftover after parsing attributes in process `syz.1.10637'. [ 298.308942][T27920] netlink: 'syz.2.10638': attribute type 1 has an invalid length. [ 298.311472][T27920] netlink: 96 bytes leftover after parsing attributes in process `syz.2.10638'. [ 298.314418][T27920] netlink: 658 bytes leftover after parsing attributes in process `syz.2.10638'. [ 298.317684][T27920] netlink: 1 bytes leftover after parsing attributes in process `syz.2.10638'. [ 298.460217][T27944] dlm: no locking on control device [ 298.517228][T27957] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10657'. [ 298.522506][T27957] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10657'. [ 298.580870][T27967] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10662'. [ 298.590222][T27970] xt_CONNSECMARK: invalid mode: 5 [ 298.879848][T27999] infiniband syz2: set down [ 298.883699][T27999] infiniband syz2: added ipvlan0 [ 298.885807][T28011] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10684'. [ 298.921475][T27999] RDS/IB: syz2: added [ 298.923171][T27999] smc: adding ib device syz2 with port count 1 [ 298.925920][T27999] smc: ib device syz2 port 1 has no pnetid [ 298.945982][T28022] netlink: 96 bytes leftover after parsing attributes in process `syz.3.10688'. [ 298.949422][T28022] netlink: 96 bytes leftover after parsing attributes in process `syz.3.10688'. [ 299.066513][T28032] PM: Enabling pm_trace changes system date and time during resume. [ 299.066513][T28032] PM: Correct system time has to be restored manually after resume. [ 299.178138][T28044] Cannot find del_set index 4 as target [ 299.420865][T28074] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 299.470564][T28074] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 299.512970][T28074] batman_adv: batadv0: Removing interface: macvlan1 [ 299.558487][T28088] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined [ 299.951998][T28140] openvswitch: netlink: Missing key (keys=40, expected=10000000) [ 300.152288][T28171] can0: slcan on ttyS3. [ 300.290527][T28189] netlink: 'syz.1.10768': attribute type 11 has an invalid length. [ 300.365317][T28200] NILFS (nullb0): couldn't find nilfs on the device [ 300.634293][ T59] usb 5-1: new low-speed USB device number 7 using dummy_hcd [ 300.818621][ T59] usb 5-1: config index 0 descriptor too short (expected 1307, got 27) [ 300.821574][ T59] usb 5-1: config 0 has an invalid interface number: 0 but max is -1 [ 300.824635][ T59] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 0 [ 300.833019][ T59] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30 [ 300.837738][ T59] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt [ 300.841508][ T59] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 300.845588][ T59] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246 [ 300.855734][ T59] usb 5-1: string descriptor 0 read error: -22 [ 300.858093][ T59] usb 5-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de [ 300.869360][ T59] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 300.876625][ T59] usb 5-1: config 0 descriptor?? [ 300.888386][ T59] hub 5-1:0.0: bad descriptor, ignoring hub [ 300.891828][ T59] hub 5-1:0.0: probe with driver hub failed with error -5 [ 300.908718][ T59] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input31 [ 300.984863][T28277] netlink: 'syz.1.10805': attribute type 3 has an invalid length. [ 301.037069][T28283] tmpfs: User quota inode hardlimit too large. [ 301.181392][ T50] usb 5-1: USB disconnect, device number 7 [ 301.312591][T28307] 9pnet_fd: p9_fd_create_unix (28307): problem connecting socket: ./file0/file0: -2 [ 301.403290][T28317] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 302.002856][T28353] netlink: 'syz.1.10841': attribute type 10 has an invalid length. [ 302.005609][T28353] hsr0: entered promiscuous mode [ 302.007502][T28353] bond0: (slave hsr0): The slave device specified does not support setting the MAC address [ 302.011393][T28353] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 302.017466][T28353] bond0: (slave hsr0): Error -22 calling dev_set_mtu [ 302.090829][T28364] sctp: [Deprecated]: syz.2.10848 (pid 28364) Use of struct sctp_assoc_value in delayed_ack socket option. [ 302.090829][T28364] Use struct sctp_sack_info instead [ 302.188297][T28379] openvswitch: netlink: Unexpected mask (mask=2020040, allowed=2010048) [ 302.343800][T28402] kAFS: unable to lookup cell '(,c¾Ì' [ 302.394727][T28411] SET target dimension over the limit! [ 302.398330][T28413] netlink: 'syz.0.10870': attribute type 1 has an invalid length. [ 302.547564][T28436] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 302.791299][T28463] netlink: 'syz.2.10896': attribute type 6 has an invalid length. [ 303.490132][T28557] openvswitch: netlink: IP tunnel dst address not specified [ 303.615812][T28576] sock: sock_set_timeout: `syz.1.10953' (pid 28576) tries to set negative timeout [ 304.162866][T28641] xt_TPROXY: Can be used only with -p tcp or -p udp [ 304.217557][T28649] __nla_validate_parse: 9 callbacks suppressed [ 304.217575][T28649] netlink: 752 bytes leftover after parsing attributes in process `syz.3.10987'. [ 304.220161][T28644] xt_CT: No such helper "snmp" [ 304.263208][T28651] netlink: 'syz.2.10988': attribute type 8 has an invalid length. [ 304.267136][T28655] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 304.392159][T28671] random: crng reseeded on system resumption [ 304.422477][T28674] netlink: 'syz.2.10998': attribute type 29 has an invalid length. [ 304.473780][T28682] ip6t_REJECT: ECHOREPLY is not supported [ 304.508398][T28686] netlink: 'syz.0.11005': attribute type 3 has an invalid length. [ 304.728044][T28717] overlayfs: empty lowerdir [ 304.733305][T28721] netlink: 'syz.3.11022': attribute type 1 has an invalid length. [ 304.801167][T28730] kAFS: unparsable volume name [ 305.022255][T28760] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 305.026040][T28760] block device autoloading is deprecated and will be removed. [ 305.084061][T28770] netlink: 12 bytes leftover after parsing attributes in process `syz.2.11046'. [ 305.096565][T28774] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11049'. [ 305.143162][T28780] ceph: No source [ 305.161866][T28785] ipt_REJECT: TCP_RESET invalid for non-tcp [ 305.227535][T28796] netlink: 'syz.2.11059': attribute type 16 has an invalid length. [ 305.231839][T28796] netlink: 156 bytes leftover after parsing attributes in process `syz.2.11059'. [ 305.324982][T28813] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11069'. [ 305.415854][T28830] ALSA: mixer_oss: invalid OSS volume '' [ 305.696475][T28861] netlink: 12 bytes leftover after parsing attributes in process `syz.0.11092'. [ 306.173825][T28907] netlink: 16 bytes leftover after parsing attributes in process `syz.0.11115'. [ 306.349698][T28923] netlink: 5 bytes leftover after parsing attributes in process `syz.3.11123'. [ 306.356820][T28923] 0ªî{X¹¦: renamed from gretap0 (while UP) [ 306.395724][T28923] 0ªî{X¹¦: entered allmulticast mode [ 306.398655][T28923] A link change request failed with some changes committed already. Interface 30ªî{X¹¦ may have been left with an inconsistent configuration, please check. [ 306.688189][T28956] netlink: 64 bytes leftover after parsing attributes in process `syz.1.11139'. [ 306.692062][T28957] openvswitch: netlink: nsh attr 247 is out of range max 3 [ 306.893757][T28991] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 306.969136][T29005] F2FS-fs (nbd1): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 306.973393][T29005] F2FS-fs (nbd1): Can't find valid F2FS filesystem in 1th superblock [ 306.976951][T29005] F2FS-fs (nbd1): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 306.980030][T29005] F2FS-fs (nbd1): Can't find valid F2FS filesystem in 2th superblock [ 307.029707][T29011] netlink: 40 bytes leftover after parsing attributes in process `syz.3.11165'. [ 307.055495][T29014] tc_dump_action: action bad kind [ 307.645906][T29114] netlink: 'syz.3.11215': attribute type 1 has an invalid length. [ 307.839773][T29103] bridge5: entered promiscuous mode [ 307.842001][T29103] bridge5: entered allmulticast mode [ 308.379206][T29211] netlink: 'syz.0.11264': attribute type 64 has an invalid length. [ 308.383671][T29211] A link change request failed with some changes committed already. Interface ªªªªªª may have been left with an inconsistent configuration, please check. [ 308.577110][T29236] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 308.629798][T29243] netlink: 'syz.0.11279': attribute type 4 has an invalid length. [ 308.738240][T29260] binder: 29259:29260 ioctl c0306201 80000180 returned -14 [ 308.957034][T29300] netlink: 'syz.2.11306': attribute type 32 has an invalid length. [ 308.964336][T29300] netlink: 'syz.2.11306': attribute type 32 has an invalid length. [ 309.114921][T29325] 9pnet_fd: p9_fd_create_tcp (29325): problem connecting socket to 127.0.0.1 [ 309.489933][T29383] autofs4:pid:29383:validate_dev_ioctl: path string terminator missing for cmd(0xc0189379) [ 309.608868][T29407] openvswitch: netlink: IP tunnel dst address not specified [ 309.613436][T29409] random: crng reseeded on system resumption [ 309.785315][T29425] __nla_validate_parse: 7 callbacks suppressed [ 309.785329][T29425] netlink: 4 bytes leftover after parsing attributes in process `syz.2.11369'. [ 310.077675][T29467] rdma_rxe: rxe_newlink: failed to add vcan0 [ 310.143476][T29480] openvswitch: netlink: IP tunnel dst address not specified [ 310.149892][ T40] kauditd_printk_skb: 19599 callbacks suppressed [ 310.149915][ T40] audit: type=1326 audit(296.708:23004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29479 comm="syz.1.11396" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x7ffc0000 [ 310.179221][ T40] audit: type=1326 audit(296.708:23005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29479 comm="syz.1.11396" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x7ffc0000 [ 310.187712][ T40] audit: type=1326 audit(296.708:23006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29479 comm="syz.1.11396" exe="/syz-executor" sig=0 arch=40000003 syscall=286 compat=1 ip=0xf7ff6f6c code=0x7ffc0000 [ 310.194721][ T40] audit: type=1326 audit(296.708:23007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29479 comm="syz.1.11396" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x7ffc0000 [ 310.205853][ T40] audit: type=1326 audit(296.708:23008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29479 comm="syz.1.11396" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x7ffc0000 [ 310.320232][T29505] netlink: 88 bytes leftover after parsing attributes in process `syz.3.11409'. [ 310.759367][T29583] misc userio: Invalid payload size [ 310.826274][T29595] netlink: 16 bytes leftover after parsing attributes in process `syz.2.11454'. [ 310.868770][T29604] random: crng reseeded on system resumption [ 310.897822][T29609] openvswitch: netlink: Tunnel attr 148 out of range max 16 [ 310.944569][T29620] overlayfs: conflicting options: nfs_export=on,metacopy=on [ 311.098380][T29610] can0 (unregistered): slcan off ttyS3. [ 311.113225][T29644] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11473'. [ 311.148124][T29610] sp0: Synchronizing with TNC [ 311.337260][T29672] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 311.548939][T29708] netlink: 'syz.0.11501': attribute type 8 has an invalid length. [ 311.835277][T29758] netlink: 44 bytes leftover after parsing attributes in process `syz.3.11525'. [ 311.838745][T29758] netlink: 44 bytes leftover after parsing attributes in process `syz.3.11525'. [ 311.943610][T29770] netlink: 'syz.3.11530': attribute type 1 has an invalid length. [ 312.048829][T29788] random: crng reseeded on system resumption [ 312.178054][T29806] openvswitch: netlink: VXLAN extension message has 1 unknown bytes. [ 312.487535][T29840] wg2: entered promiscuous mode [ 312.489811][T29840] wg2: entered allmulticast mode [ 312.627534][T29861] xt_SECMARK: mode already set to 1 cannot mix with rules for mode 0 [ 312.643428][T29865] kAFS: unable to lookup cell '/,' [ 312.695087][T29872] new mount options do not match the existing superblock, will be ignored [ 313.107482][ T46] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 6081 - 0 [ 313.112642][ T46] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 6081 - 0 [ 313.118780][ T46] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 6081 - 0 [ 313.122552][ T46] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 6081 - 0 [ 313.148211][T29940] netlink: 'syz.1.11608': attribute type 1 has an invalid length. [ 313.151325][T29940] netlink: 'syz.1.11608': attribute type 1 has an invalid length. [ 313.240337][T29950] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11613'. [ 313.244056][T29950] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11613'. [ 313.249555][T29952] netdevsim netdevsim2 netdevsim2: entered allmulticast mode [ 313.303760][T29958] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11617'. [ 313.350797][T29965] netlink: 4 bytes leftover after parsing attributes in process `syz.2.11620'. [ 313.755242][T30013] netlink: 'syz.1.11645': attribute type 3 has an invalid length. [ 313.882345][T30030] overlayfs: unescaped trailing colons in lowerdir mount option. [ 314.845469][T30138] QAT: Stopping all acceleration devices. [ 315.307479][T30157] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 315.395477][T30166] bridge0: entered promiscuous mode [ 315.429314][T30171] xt_CT: You must specify a L4 protocol and not use inversions on it [ 315.544696][ T40] audit: type=1326 audit(301.761:23009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30187 comm="syz.3.11722" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 315.558447][ T40] audit: type=1326 audit(301.761:23010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30187 comm="syz.3.11722" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 315.569694][ T40] audit: type=1326 audit(301.770:23011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30187 comm="syz.3.11722" exe="/syz-executor" sig=0 arch=40000003 syscall=195 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 315.579175][ T40] audit: type=1326 audit(301.770:23012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30187 comm="syz.3.11722" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 315.588707][ T40] audit: type=1326 audit(301.770:23013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30187 comm="syz.3.11722" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f14f6c code=0x7ffc0000 [ 315.605128][T30194] netlink: 'syz.3.11724': attribute type 4 has an invalid length. [ 315.610913][T30194] __nla_validate_parse: 3 callbacks suppressed [ 315.610927][T30194] netlink: 152 bytes leftover after parsing attributes in process `syz.3.11724'. [ 315.616622][T30194] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 315.652354][T30128] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 315.655253][T30128] Bluetooth: hci3: Error when powering off device on rfkill (-4) [ 315.762067][T30215] No source specified [ 315.796844][T30220] netlink: 4 bytes leftover after parsing attributes in process `syz.2.11735'. [ 316.131638][T30270] netlink: 'syz.0.11751': attribute type 1 has an invalid length. [ 316.134307][T30270] netlink: 2096 bytes leftover after parsing attributes in process `syz.0.11751'. [ 316.137300][T30270] netlink: 5 bytes leftover after parsing attributes in process `syz.0.11751'. [ 316.187576][T30274] netlink: 'syz.0.11753': attribute type 1 has an invalid length. [ 316.403817][T30306] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 316.556506][ T40] audit: type=1400 audit(302.687:23014): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=30321 comm="syz.1.11771" [ 316.574371][T30325] netlink: 12 bytes leftover after parsing attributes in process `syz.3.11772'. [ 316.729330][T30347] openvswitch: netlink: Actions may not be safe on all matching packets [ 316.817005][T30363] netlink: 88 bytes leftover after parsing attributes in process `syz.0.11789'. [ 316.906366][T30379] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.11794'. [ 316.971999][T30389] comedi comedi0: aio_aio12_8: I/O port conflict (0xb,32) [ 317.000483][T30396] netlink: 'syz.0.11801': attribute type 33 has an invalid length. [ 317.003122][T30396] netlink: 152 bytes leftover after parsing attributes in process `syz.0.11801'. [ 317.020452][T30394] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11800'. [ 317.138323][T30400] Process accounting resumed [ 317.467866][T30462] dlm: no locking on control device [ 317.553724][T30476] xt_hashlimit: invalid rate [ 317.606162][T30485] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized [ 317.785550][T30510] netlink: 4 bytes leftover after parsing attributes in process `syz.0.11853'. [ 318.590783][T30613] openvswitch: netlink: nsh attr 0 has unexpected len 1 expected 0 [ 318.651063][T30619] CIFS mount error: No usable UNC path provided in device string! [ 318.651063][T30619] [ 318.654968][T30619] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 318.725202][T30628] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING [ 319.136136][T30679] netlink: 'syz.2.11936': attribute type 2 has an invalid length. [ 319.137755][ T40] audit: type=1326 audit(305.121:23015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30678 comm="syz.0.11935" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f66f6c code=0x0 [ 319.306905][T30702] SET target dimension over the limit! [ 319.377268][T30712] tmpfs: Bad value for 'mpol' [ 319.401515][T30714] netlink: 'syz.3.11952': attribute type 29 has an invalid length. [ 319.778981][T30764] netlink: 'syz.3.11976': attribute type 16 has an invalid length. [ 319.782078][T30764] netlink: 'syz.3.11976': attribute type 17 has an invalid length. [ 319.785848][T30764] 0ªî{X¹¦: left allmulticast mode [ 319.789409][T30764] syz_tun: left promiscuous mode [ 319.792400][T30764] bond0: left promiscuous mode [ 319.794138][T30764] bond_slave_0: left promiscuous mode [ 319.796410][T30764] bond_slave_1: left promiscuous mode [ 319.798467][T30764] bond0: left allmulticast mode [ 319.800514][T30764] bond_slave_0: left allmulticast mode [ 319.802393][T30764] bond_slave_1: left allmulticast mode [ 319.807018][T30764] 8021q: adding VLAN 0 to HW filter on device team0 [ 319.837378][T30764] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 319.882457][T30770] bond6 (unregistering): Released all slaves [ 320.351994][T30805] bond5 (unregistering): Released all slaves [ 320.532335][T30830] sctp: [Deprecated]: syz.0.12008 (pid 30830) Use of int in max_burst socket option deprecated. [ 320.532335][T30830] Use struct sctp_assoc_value instead [ 320.782411][T30858] netlink: zone id is out of range [ 320.784598][T30858] netlink: zone id is out of range [ 320.786799][T30858] netlink: zone id is out of range [ 320.797018][T30858] netlink: zone id is out of range [ 320.800698][T30858] netlink: zone id is out of range [ 320.802817][T30858] netlink: zone id is out of range [ 320.803454][ T40] audit: type=1400 audit(306.683:23016): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=30859 comm="syz.0.12024" [ 320.804928][T30858] netlink: zone id is out of range [ 320.804940][T30858] netlink: zone id is out of range [ 320.804947][T30858] netlink: zone id is out of range [ 320.804954][T30858] netlink: zone id is out of range [ 321.177277][T30910] /dev/sg0: Can't lookup blockdev [ 321.571838][ T2292] lo speed is unknown, defaulting to 1000 [ 321.578959][ T2292] syz0: Port: 1 Link DOWN [ 321.653781][T30940] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=io+mem:owns=io+mem [ 321.768833][T30954] xt_TCPMSS: Only works on TCP SYN packets [ 322.020660][T30996] __nla_validate_parse: 7 callbacks suppressed [ 322.020675][T30996] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12091'. [ 322.026913][T31001] xt_TPROXY: Can be used only with -p tcp or -p udp [ 322.088769][T31011] netlink: 'syz.3.12098': attribute type 1 has an invalid length. [ 322.093825][T31011] netlink: 224 bytes leftover after parsing attributes in process `syz.3.12098'. [ 322.246098][T31033] program syz.0.12109 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 322.277693][T31039] cgroup: name respecified [ 322.764004][T31104] xt_TCPMSS: Only works on TCP SYN packets [ 322.901024][T31124] netlink: 20 bytes leftover after parsing attributes in process `syz.2.12154'. [ 322.905394][T31124] netlink: 20 bytes leftover after parsing attributes in process `syz.2.12154'. [ 323.092617][T31144] kAFS: unable to lookup cell '.' [ 323.119124][T31128] /dev/sr0: Can't open blockdev [ 323.171180][ T6007] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 323.331628][ T6007] usb 5-1: Using ep0 maxpacket: 32 [ 323.335697][ T6007] usb 5-1: config 0 has an invalid interface number: 119 but max is 0 [ 323.342185][ T6007] usb 5-1: config 0 has no interface number 0 [ 323.342966][T31132] /dev/sr0: Can't open blockdev [ 323.344225][ T6007] usb 5-1: config 0 interface 119 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 323.349806][ T6007] usb 5-1: config 0 interface 119 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83 [ 323.354308][ T6007] usb 5-1: config 0 interface 119 altsetting 0 endpoint 0x83 has invalid maxpacket 30768, setting to 1024 [ 323.358245][ T6007] usb 5-1: config 0 interface 119 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024 [ 323.361396][ T6007] usb 5-1: config 0 interface 119 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 323.368187][ T6007] usb 5-1: New USB device found, idVendor=05ac, idProduct=0292, bcdDevice=88.73 [ 323.371613][ T6007] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 323.377035][ T6007] usb 5-1: Product: syz [ 323.378496][ T6007] usb 5-1: Manufacturer: syz [ 323.380141][ T6007] usb 5-1: SerialNumber: syz [ 323.383601][ T6007] usb 5-1: config 0 descriptor?? [ 323.386496][T31122] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 323.394569][ T6007] input: bcm5974 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.119/input/input35 [ 323.403659][T31157] netlink: 'syz.3.12170': attribute type 10 has an invalid length. [ 323.406748][T31157] netlink: 228 bytes leftover after parsing attributes in process `syz.3.12170'. [ 323.546345][ C0] bcm5974 5-1:0.119: trackpad urb failed: -1 [ 323.632225][ T59] usb 5-1: USB disconnect, device number 8 [ 323.632382][ C1] bcm5974 5-1:0.119: trackpad urb failed: -19 [ 323.775833][T31199] veth5: entered promiscuous mode [ 323.778224][T31199] veth5: entered allmulticast mode [ 323.901825][T31217] netlink: 228 bytes leftover after parsing attributes in process `syz.1.12200'. [ 323.967765][T31227] No such timeout policy "syz1" [ 324.096170][T31247] /dev/sg0: Can't lookup blockdev [ 324.141839][T31252] overlayfs: conflicting options: userxattr,metacopy=on [ 324.265194][T31265] dvmrp0: entered allmulticast mode [ 324.358563][T31283] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6 [ 324.364723][T31286] nft_compat: unsupported protocol 0 [ 324.388959][ T40] audit: type=1800 audit(310.033:23017): pid=31280 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.1.12231" name="/newroot/3147/file0" dev="tmpfs" ino=15822 res=0 errno=0 [ 324.842666][T31339] netlink: 520 bytes leftover after parsing attributes in process `syz.1.12255'. [ 324.941144][T31353] netlink: 'syz.3.12259': attribute type 1 has an invalid length. [ 324.944613][T31353] netlink: 240 bytes leftover after parsing attributes in process `syz.3.12259'. [ 325.112870][T31379] sctp: [Deprecated]: syz.2.12273 (pid 31379) Use of int in maxseg socket option. [ 325.112870][T31379] Use struct sctp_assoc_value instead [ 325.225482][T31395] netlink: 'syz.2.12280': attribute type 21 has an invalid length. [ 325.228879][T31395] netlink: 128 bytes leftover after parsing attributes in process `syz.2.12280'. [ 325.233811][T31395] netlink: 'syz.2.12280': attribute type 4 has an invalid length. [ 325.284141][T31402] netlink: 'syz.2.12284': attribute type 1 has an invalid length. [ 325.385419][T31416] netlink: 'syz.2.12292': attribute type 1 has an invalid length. [ 325.388796][T31416] netlink: 224 bytes leftover after parsing attributes in process `syz.2.12292'. [ 325.392039][T31416] NCSI netlink: No device for ifindex 0 [ 325.440117][T31422] x_tables: duplicate underflow at hook 2 [ 325.617806][T31450] PM: Enabling pm_trace changes system date and time during resume. [ 325.617806][T31450] PM: Correct system time has to be restored manually after resume. [ 325.635990][T31454] trusted_key: encrypted_key: master key parameter is missing [ 325.653615][T31458] random: crng reseeded on system resumption [ 325.871152][T31485] libceph: resolve '400' (ret=-3): failed [ 325.885606][T31465] /dev/sr0: Can't open blockdev [ 325.928049][T31490] netlink: 'syz.2.12327': attribute type 1 has an invalid length. [ 325.931722][T31490] netlink: 'syz.2.12327': attribute type 3 has an invalid length. [ 325.977035][T31497] unsupported nla_type 16384 [ 326.089373][T31471] /dev/sr0: Can't open blockdev [ 326.502863][T31556] delete_channel: no stack [ 326.738708][T31585] netlink: 'syz.3.12373': attribute type 1 has an invalid length. [ 326.767549][T31589] vim2m vim2m.0: Fourcc format (0x47524247) invalid. [ 326.792551][T31592] netlink: 'syz.0.12377': attribute type 33 has an invalid length. [ 326.807621][T31595] exfat: Deprecated parameter 'debug' [ 326.809975][T31595] exFAT-fs (loop2): unable to read boot sector [ 326.812518][T31595] exFAT-fs (loop2): failed to read boot sector [ 326.817288][T31595] exFAT-fs (loop2): failed to recognize exfat type [ 327.640491][T31691] netlink: 'syz.0.12422': attribute type 6 has an invalid length. [ 327.810893][T31705] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 327.813815][T31705] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 327.820002][T31705] vhci_hcd vhci_hcd.0: Device attached [ 327.826032][T31706] vhci_hcd: connection closed [ 327.830543][ T12] vhci_hcd vhci_hcd.1: stop threads [ 327.834929][ T12] vhci_hcd vhci_hcd.1: release socket [ 327.837333][ T12] vhci_hcd vhci_hcd.1: disconnect device [ 327.926318][T31714] net_ratelimit: 7 callbacks suppressed [ 327.929531][T31714] A link change request failed with some changes committed already. Interface veth1_to_batadv may have been left with an inconsistent configuration, please check. [ 328.257049][T31750] usb usb1: usbfs: process 31750 (syz.3.12454) did not claim interface 0 before use [ 330.076302][T31834] __nla_validate_parse: 7 callbacks suppressed [ 330.076325][T31834] netlink: 132 bytes leftover after parsing attributes in process `syz.0.12495'. [ 330.091169][T31839] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 330.147021][T31847] netlink: 32 bytes leftover after parsing attributes in process `syz.2.12502'. [ 330.325674][T31871] dlm: non-version read from control device 0 [ 330.344178][T31873] validate_nla: 3 callbacks suppressed [ 330.344195][T31873] netlink: 'syz.2.12515': attribute type 32 has an invalid length. [ 330.349977][T31873] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12515'. [ 330.376875][T31873] bond7: Setting coupled_control to off (0) [ 330.435307][T31889] netlink: 20 bytes leftover after parsing attributes in process `syz.2.12523'. [ 330.569154][T31908] overlay: Bad value for 'workdir' [ 330.751886][T31934] ata3.00: invalid multi_count 16 ignored [ 330.980638][T31944] syz.3.12550: page allocation failure: order:1, mode:0xcc1(GFP_KERNEL|GFP_DMA), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 330.986797][T31944] CPU: 3 UID: 0 PID: 31944 Comm: syz.3.12550 Tainted: G L syzkaller #0 PREEMPT(full) [ 330.986826][T31944] Tainted: [L]=SOFTLOCKUP [ 330.986832][T31944] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 330.986843][T31944] Call Trace: [ 330.986850][T31944] [ 330.986858][T31944] dump_stack_lvl+0x100/0x190 [ 330.986888][T31944] warn_alloc.cold+0x95/0x1c1 [ 330.986920][T31944] ? __pfx_warn_alloc+0x10/0x10 [ 330.986947][T31944] ? __mutex_unlock_slowpath+0x15c/0x790 [ 330.986973][T31944] ? __alloc_frozen_pages_noprof+0xd68/0x2ba0 [ 330.987010][T31944] __alloc_frozen_pages_noprof+0xf36/0x2ba0 [ 330.987054][T31944] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 330.987084][T31944] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 330.987113][T31944] ? lockdep_hardirqs_on+0x78/0x100 [ 330.987133][T31944] ? stack_depot_save_flags+0x479/0x9d0 [ 330.987164][T31944] ? comedi_isadma_alloc+0x10c/0x6e0 [ 330.987187][T31944] ? kasan_save_stack+0x3f/0x50 [ 330.987202][T31944] ? kasan_save_stack+0x30/0x50 [ 330.987222][T31944] ? kasan_save_track+0x14/0x30 [ 330.987235][T31944] ? __kasan_kmalloc+0xaa/0xb0 [ 330.987255][T31944] ? __do_fast_syscall_32+0xe3/0x8c0 [ 330.987273][T31944] ? do_fast_syscall_32+0x32/0x70 [ 330.987290][T31944] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 330.987320][T31944] __alloc_pages_noprof+0xb/0x1b0 [ 330.987347][T31944] __dma_direct_alloc_pages.isra.0+0x47c/0x8f0 [ 330.987374][T31944] ? __pfx___dma_direct_alloc_pages.isra.0+0x10/0x10 [ 330.987399][T31944] ? dma_alloc_from_dev_coherent+0x2e0/0x570 [ 330.987424][T31944] dma_direct_alloc+0x8f/0x590 [ 330.987446][T31944] dma_alloc_attrs+0x185/0x2b0 [ 330.987477][T31944] ? __pfx_dma_alloc_attrs+0x10/0x10 [ 330.987503][T31944] ? dma_direct_supported+0xca/0x220 [ 330.987528][T31944] comedi_isadma_alloc+0x3dc/0x6e0 [ 330.987557][T31944] ? __pfx_comedi_isadma_alloc+0x10/0x10 [ 330.987583][T31944] ? request_threaded_irq+0x27b/0x3e0 [ 330.987613][T31944] pcl812_attach+0x18c6/0x22d0 [ 330.987638][T31944] comedi_device_attach+0x3d2/0x660 [ 330.987664][T31944] do_devconfig_ioctl+0x1b3/0x6d0 [ 330.987686][T31944] ? comedi_unlocked_ioctl+0x180/0x3310 [ 330.987713][T31944] ? __pfx_do_devconfig_ioctl+0x10/0x10 [ 330.987750][T31944] ? tomoyo_path_number_perm+0x46d/0x580 [ 330.987773][T31944] ? kasan_save_stack+0x3f/0x50 [ 330.987789][T31944] ? kasan_save_stack+0x30/0x50 [ 330.987805][T31944] ? kasan_save_track+0x14/0x30 [ 330.987849][T31944] ? kasan_save_free_info+0x3b/0x70 [ 330.987880][T31944] comedi_unlocked_ioctl+0x860/0x3310 [ 330.987914][T31944] ? __pfx_comedi_unlocked_ioctl+0x10/0x10 [ 330.987955][T31944] ? tomoyo_path_number_perm+0x46d/0x580 [ 330.987980][T31944] ? kasan_quarantine_put+0x104/0x240 [ 330.988009][T31944] ? lockdep_hardirqs_on+0x78/0x100 [ 330.988029][T31944] ? find_held_lock+0x2b/0x80 [ 330.988047][T31944] ? tomoyo_path_number_perm+0x28f/0x580 [ 330.988068][T31944] ? tomoyo_path_number_perm+0x28f/0x580 [ 330.988096][T31944] ? tomoyo_path_number_perm+0x188/0x580 [ 330.988124][T31944] comedi_compat_ioctl+0x438/0xe20 [ 330.988152][T31944] ? __pfx_comedi_compat_ioctl+0x10/0x10 [ 330.988179][T31944] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 330.988200][T31944] ? do_vfs_ioctl+0x226/0x13e0 [ 330.988228][T31944] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 330.988261][T31944] ? find_held_lock+0x2b/0x80 [ 330.988279][T31944] ? hook_file_ioctl_common+0x146/0x410 [ 330.988309][T31944] ? __fget_files+0x21f/0x3d0 [ 330.988333][T31944] ? __pfx_comedi_compat_ioctl+0x10/0x10 [ 330.988359][T31944] __ia32_compat_sys_ioctl+0x2cf/0x360 [ 330.988389][T31944] __do_fast_syscall_32+0xe3/0x8c0 [ 330.988411][T31944] do_fast_syscall_32+0x32/0x70 [ 330.988431][T31944] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 330.988454][T31944] RIP: 0023:0xf7f14f6c [ 330.988475][T31944] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8 [ 330.988492][T31944] RSP: 002b:00000000f53d650c EFLAGS: 00000292 ORIG_RAX: 0000000000000036 [ 330.988512][T31944] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040946400 [ 330.988524][T31944] RDX: 0000000080000580 RSI: 0000000000000000 RDI: 0000000000000000 [ 330.988535][T31944] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 330.988545][T31944] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 330.988556][T31944] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 330.988583][T31944] [ 330.988590][T31944] Mem-Info: [ 331.163735][T31944] active_anon:1395 inactive_anon:1539 isolated_anon:0 [ 331.163735][T31944] active_file:6795 inactive_file:8743 isolated_file:0 [ 331.163735][T31944] unevictable:1768 dirty:381 writeback:0 [ 331.163735][T31944] slab_reclaimable:6787 slab_unreclaimable:66200 [ 331.163735][T31944] mapped:23207 shmem:1866 pagetables:1476 [ 331.163735][T31944] sec_pagetables:303 bounce:0 [ 331.163735][T31944] kernel_misc_reclaimable:0 [ 331.163735][T31944] free:76007 free_pcp:0 free_cma:0 [ 331.187631][T31944] Node 0 active_anon:136kB inactive_anon:136kB active_file:0kB inactive_file:976kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:20kB dirty:8kB writeback:0kB shmem:3540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8592kB pagetables:2820kB sec_pagetables:1100kB all_unreclaimable? yes Balloon:0kB [ 331.197968][T31944] Node 0 DMA free:2816kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 331.209446][T31944] lowmem_reserve[]: 0 285 285 285 285 [ 331.211513][T31944] Node 0 DMA: 144*4kB (U) 36*8kB (U) 16*16kB (U) 17*32kB (U) 4*64kB (U) 3*128kB (U) 0*256kB 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 2816kB [ 331.216160][T31944] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 331.220282][T31944] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 331.223870][T31944] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 331.227404][T31944] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 331.231438][T31944] 17863 total pagecache pages [ 331.233115][T31944] 465 pages in swap cache [ 331.234505][T31944] Free swap = 108640kB [ 331.235835][T31944] Total swap = 124996kB [ 331.237241][T31944] 524155 pages RAM [ 331.238620][T31944] 0 pages HighMem/MovableOnly [ 331.239217][T31987] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12570'. [ 331.249846][T31944] 210139 pages reserved [ 331.251582][T31944] 0 pages cma reserved [ 331.312610][T31994] i2c i2c-1: Invalid block write size 34 [ 331.618406][T32012] netlink: 28 bytes leftover after parsing attributes in process `syz.1.12582'. [ 331.622748][T32012] netlink: 196 bytes leftover after parsing attributes in process `syz.1.12582'. [ 331.627034][T32012] netlink: 28 bytes leftover after parsing attributes in process `syz.1.12582'. [ 331.630854][T32020] netlink: 'syz.2.12586': attribute type 1 has an invalid length. [ 331.630931][T32012] netlink: 196 bytes leftover after parsing attributes in process `syz.1.12582'. [ 331.633714][T32020] netlink: 216 bytes leftover after parsing attributes in process `syz.2.12586'. [ 331.638863][ T13] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 331.655925][ T13] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 331.671999][ T13] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 331.675495][ T13] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 331.736689][T32030] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22 [ 331.742233][T32030] netdevsim netdevsim3: Direct firmware load for . failed with error -22 [ 331.745818][T32030] netdevsim netdevsim3: Falling back to sysfs fallback for: . [ 332.104279][ T40] audit: type=1326 audit(2000000006.793:23018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32071 comm="syz.0.12610" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 332.114401][ T40] audit: type=1326 audit(2000000006.793:23019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32071 comm="syz.0.12610" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 332.125367][ T40] audit: type=1326 audit(2000000006.812:23020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32071 comm="syz.0.12610" exe="/syz-executor" sig=0 arch=40000003 syscall=57 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 332.135540][ T40] audit: type=1326 audit(2000000006.812:23021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32071 comm="syz.0.12610" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 332.145717][ T40] audit: type=1326 audit(2000000006.812:23022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32071 comm="syz.0.12610" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 332.160851][T32074] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 332.292288][T32086] netlink: 'syz.0.12617': attribute type 3 has an invalid length. [ 333.342138][T32219] ipt_rpfilter: unknown options [ 333.886300][T32303] efs: cannot read volume header [ 334.125999][T32336] openvswitch: netlink: Key 27 has unexpected len 4 expected 40 [ 334.133203][T32339] netlink: 'syz.1.12742': attribute type 5 has an invalid length. [ 334.140864][T32339] geneve6: entered promiscuous mode [ 334.142661][T32339] geneve6: entered allmulticast mode [ 334.159984][ T46] netdevsim netdevsim1 netdevsim0: set [1, 2] type 2 family 0 port 256 - 0 [ 334.162923][ T46] netdevsim netdevsim1 netdevsim1: set [1, 2] type 2 family 0 port 256 - 0 [ 334.165736][ T46] netdevsim netdevsim1 netdevsim2: set [1, 2] type 2 family 0 port 256 - 0 [ 334.188614][ T46] netdevsim netdevsim1 netdevsim3: set [1, 2] type 2 family 0 port 256 - 0 [ 334.226973][T32351] openvswitch: netlink: Invalid VLAN frame [ 334.631095][T32414] 9p: Unknown access argument 18446744073709551615: -34 [ 335.536545][T32426] __nla_validate_parse: 8 callbacks suppressed [ 335.536560][T32426] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12785'. [ 335.560684][T32430] dvmrp9: entered allmulticast mode [ 335.727357][T32458] netdevsim netdevsim2 : renamed from netdevsim0 [ 335.730167][ T40] audit: type=1326 audit(2000000010.200:23023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32456 comm="syz.1.12801" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x50000 [ 335.739423][ T40] audit: type=1326 audit(2000000010.200:23024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32456 comm="syz.1.12801" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x50000 [ 335.754764][ T40] audit: type=1326 audit(2000000010.200:23025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32456 comm="syz.1.12801" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x50000 [ 335.765720][ T40] audit: type=1326 audit(2000000010.200:23026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32456 comm="syz.1.12801" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x50000 [ 335.775175][ T40] audit: type=1326 audit(2000000010.200:23027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32456 comm="syz.1.12801" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6f6c code=0x50000 [ 335.841961][T32473] vlan0: entered promiscuous mode [ 335.842258][T32472] Cannot find add_set index 3 as target [ 335.877158][T32477] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 335.879676][T32477] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 335.886134][T32477] vhci_hcd vhci_hcd.0: Device attached [ 335.891889][T32478] vhci_hcd: unknown pdu 2 [ 335.895667][ T1140] vhci_hcd vhci_hcd.1: stop threads [ 335.898905][ T1140] vhci_hcd vhci_hcd.1: release socket [ 335.901789][ T1140] vhci_hcd vhci_hcd.1: disconnect device [ 336.198918][T32519] nbd: couldn't find device at index -2145452028 [ 336.282212][T32527] bond8: option primary: mode dependency failed, not supported in mode broadcast(3) [ 336.337460][T32527] bond8 (unregistering): Released all slaves [ 336.451428][T32544] nfs: Deprecated parameter 'nointr' [ 336.532210][T32552] netdevsim netdevsim0 netdevsim0: left promiscuous mode [ 336.664096][T32572] netlink: 7 bytes leftover after parsing attributes in process `syz.1.12852'. [ 336.728917][T32572] netlink: 7 bytes leftover after parsing attributes in process `syz.1.12852'. [ 336.832538][T32596] program syz.2.12864 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 336.939037][T32614] netlink: 4 bytes leftover after parsing attributes in process `syz.1.12873'. [ 336.963992][T32617] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12874'. [ 337.092916][T32638] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12884'. [ 337.209374][T32655] netlink: 2 bytes leftover after parsing attributes in process `syz.0.12891'. [ 337.271143][T32661] netlink: 'syz.1.12896': attribute type 3 has an invalid length. [ 337.775238][T32740] openvswitch: netlink: IP tunnel TTL not specified. [ 337.883084][T32756] netlink: 44 bytes leftover after parsing attributes in process `syz.0.12941'. [ 338.041953][ T307] netlink: 4 bytes leftover after parsing attributes in process `syz.1.12953'. [ 338.085609][ T312] fuseblk: block size(63231) > page size(4096) not supported by filesystem [ 338.090521][ T316] netlink: 60 bytes leftover after parsing attributes in process `syz.2.12955'. [ 338.440341][ T368] netlink: 'syz.0.12982': attribute type 10 has an invalid length. [ 338.444789][ T368] dummy0: entered promiscuous mode [ 338.446614][ T368] dummy0: entered allmulticast mode [ 338.448606][ T368] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 338.756165][ T412] netlink: 'syz.3.13004': attribute type 21 has an invalid length. [ 338.826525][ T412] netlink: 'syz.3.13004': attribute type 5 has an invalid length. [ 339.042926][ T446] netlink: 'syz.1.13021': attribute type 1 has an invalid length. [ 339.087248][ T450] netlink: 'syz.0.13022': attribute type 29 has an invalid length. [ 339.093273][ T452] libceph: resolve '96.' (ret=-3): failed [ 339.173540][ T464] netlink: 'syz.2.13029': attribute type 2 has an invalid length. [ 339.177516][ T464] netlink: 'syz.2.13029': attribute type 1 has an invalid length. [ 339.233887][ T469] 8021q: adding VLAN 0 to HW filter on device bond7 [ 339.422519][ T40] kauditd_printk_skb: 306 callbacks suppressed [ 339.422533][ T40] audit: type=1326 audit(2000000013.643:23334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=505 comm="syz.0.13049" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 339.432783][ T40] audit: type=1326 audit(2000000013.643:23335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=505 comm="syz.0.13049" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 339.442186][ T40] audit: type=1326 audit(2000000013.643:23336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=505 comm="syz.0.13049" exe="/syz-executor" sig=0 arch=40000003 syscall=163 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 339.457051][ T40] audit: type=1326 audit(2000000013.653:23337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=505 comm="syz.0.13049" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 339.464733][ T40] audit: type=1326 audit(2000000013.653:23338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=505 comm="syz.0.13049" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66f6c code=0x7ffc0000 [ 339.597966][ T531] netlink: 'syz.2.13062': attribute type 3 has an invalid length. [ 339.765988][ T553] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 339.876615][ T560] netlink: 'syz.2.13074': attribute type 1 has an invalid length. [ 340.103470][ T588] binder: 587:588 ioctl c0306201 80000640 returned -22 [ 340.298202][ T612] sd 0:0:0:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x24 ascq=0x0 [ 340.368121][ T623] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only [ 340.804147][ T692] openvswitch: netlink: Unexpected mask (mask=840, allowed=10048) [ 340.810286][ T694] ================================================================== [ 340.810300][ T694] BUG: KASAN: vmalloc-out-of-bounds in sys_fillrect+0x174a/0x1910 [ 340.810327][ T694] Write of size 8 at addr ffffc90004921000 by task syz.1.13141/694 [ 340.810340][ T694] [ 340.810348][ T694] CPU: 3 UID: 0 PID: 694 Comm: syz.1.13141 Tainted: G L syzkaller #0 PREEMPT(full) [ 340.810367][ T694] Tainted: [L]=SOFTLOCKUP [ 340.810373][ T694] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 340.810381][ T694] Call Trace: [ 340.810385][ T694] [ 340.810390][ T694] dump_stack_lvl+0x100/0x190 [ 340.810410][ T694] print_report+0x156/0x4c9 [ 340.810427][ T694] ? _raw_spin_lock_irqsave+0x52/0x60 [ 340.810448][ T694] ? __virt_addr_valid+0x81/0x620 [ 340.810465][ T694] ? sys_fillrect+0x174a/0x1910 [ 340.810482][ T694] kasan_report+0xdf/0x1e0 [ 340.810495][ T694] ? sys_fillrect+0x174a/0x1910 [ 340.810516][ T694] sys_fillrect+0x174a/0x1910 [ 340.810537][ T694] drm_fbdev_shmem_defio_fillrect+0x22/0x140 [ 340.810552][ T694] bit_clear+0x17d/0x220 [ 340.810566][ T694] ? __pfx_bit_clear+0x10/0x10 [ 340.810579][ T694] ? fb_get_color_depth+0x120/0x250 [ 340.810593][ T694] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 340.810606][ T694] __fbcon_clear+0x633/0x760 [ 340.810619][ T694] ? __pfx_bit_clear+0x10/0x10 [ 340.810635][ T694] fbcon_scroll+0x48b/0x650 [ 340.810651][ T694] con_scroll+0x464/0x690 [ 340.810669][ T694] do_con_write+0x6883/0x8540 [ 340.810684][ T694] ? __pfx_do_con_write+0x10/0x10 [ 340.810695][ T694] ? n_tty_write+0x64b/0x12d0 [ 340.810710][ T694] con_write+0x23/0xb0 [ 340.810720][ T694] n_tty_write+0x44f/0x12d0 [ 340.810735][ T694] ? __pfx_n_tty_write+0x10/0x10 [ 340.810747][ T694] ? trace_kmalloc+0x101/0x130 [ 340.810759][ T694] ? __pfx_woken_wake_function+0x10/0x10 [ 340.810777][ T694] ? rcu_is_watching+0x12/0xc0 [ 340.810795][ T694] ? file_tty_write.isra.0+0x694/0x890 [ 340.810811][ T694] ? kfree+0x2ec/0x6b0 [ 340.810825][ T694] ? __pfx_n_tty_write+0x10/0x10 [ 340.810838][ T694] file_tty_write.isra.0+0x4d2/0x890 [ 340.810857][ T694] vfs_write+0x6ac/0x1070 [ 340.810868][ T694] ? __pfx_tty_write+0x10/0x10 [ 340.810885][ T694] ? __pfx_vfs_write+0x10/0x10 [ 340.810895][ T694] ? find_held_lock+0x2b/0x80 [ 340.810910][ T694] ksys_write+0x12a/0x250 [ 340.810920][ T694] ? __pfx_ksys_write+0x10/0x10 [ 340.810932][ T694] __do_fast_syscall_32+0xe3/0x8c0 [ 340.810945][ T694] do_fast_syscall_32+0x32/0x70 [ 340.810957][ T694] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 340.810972][ T694] RIP: 0023:0xf7ff6f6c [ 340.810981][ T694] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8 [ 340.810994][ T694] RSP: 002b:00000000f54b650c EFLAGS: 00000292 ORIG_RAX: 0000000000000004 [ 340.811005][ T694] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000e00 [ 340.811012][ T694] RDX: 0000000000001006 RSI: 0000000000000000 RDI: 0000000000000000 [ 340.811019][ T694] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 340.811025][ T694] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 340.811031][ T694] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 340.811041][ T694] [ 340.811045][ T694] [ 340.811048][ T694] The buggy address belongs to a vmalloc virtual mapping [ 340.811058][ T694] Memory state around the buggy address: [ 340.811064][ T694] ffffc90004920f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 340.811072][ T694] ffffc90004920f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 340.811079][ T694] >ffffc90004921000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 340.811085][ T694] ^ [ 340.811090][ T694] ffffc90004921080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 340.811098][ T694] ffffc90004921100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 [ 340.811104][ T694] ================================================================== [ 340.811112][ T694] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 340.811122][ T694] CPU: 3 UID: 0 PID: 694 Comm: syz.1.13141 Tainted: G L syzkaller #0 PREEMPT(full) [ 340.811141][ T694] Tainted: [L]=SOFTLOCKUP [ 340.811147][ T694] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 340.811154][ T694] Call Trace: [ 340.811157][ T694] [ 340.811161][ T694] dump_stack_lvl+0x100/0x190 [ 340.811178][ T694] vpanic+0x552/0x970 [ 340.811227][ T694] ? __pfx_vpanic+0x10/0x10 [ 340.811287][ T694] ? __pfx_vprintk_emit+0x10/0x10 [ 340.811305][ T694] ? sys_fillrect+0x174a/0x1910 [ 340.811327][ T694] panic+0xd1/0xe0 [ 340.811338][ T694] ? __pfx_panic+0x10/0x10 [ 340.811351][ T694] ? sys_fillrect+0x174a/0x1910 [ 340.811369][ T694] check_panic_on_warn.cold+0x19/0x34 [ 340.811381][ T694] end_report.part.0+0x3a/0x90 [ 340.811398][ T694] kasan_report.cold+0xe/0x18 [ 340.811416][ T694] ? sys_fillrect+0x174a/0x1910 [ 340.811437][ T694] sys_fillrect+0x174a/0x1910 [ 340.811458][ T694] drm_fbdev_shmem_defio_fillrect+0x22/0x140 [ 340.811472][ T694] bit_clear+0x17d/0x220 [ 340.811486][ T694] ? __pfx_bit_clear+0x10/0x10 [ 340.811500][ T694] ? fb_get_color_depth+0x120/0x250 [ 340.811513][ T694] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 340.811526][ T694] __fbcon_clear+0x633/0x760 [ 340.811539][ T694] ? __pfx_bit_clear+0x10/0x10 [ 340.811556][ T694] fbcon_scroll+0x48b/0x650 [ 340.811571][ T694] con_scroll+0x464/0x690 [ 340.811590][ T694] do_con_write+0x6883/0x8540 [ 340.811604][ T694] ? __pfx_do_con_write+0x10/0x10 [ 340.811615][ T694] ? n_tty_write+0x64b/0x12d0 [ 340.811630][ T694] con_write+0x23/0xb0 [ 340.811639][ T694] n_tty_write+0x44f/0x12d0 [ 340.811655][ T694] ? __pfx_n_tty_write+0x10/0x10 [ 340.811667][ T694] ? trace_kmalloc+0x101/0x130 [ 340.811680][ T694] ? __pfx_woken_wake_function+0x10/0x10 [ 340.811698][ T694] ? rcu_is_watching+0x12/0xc0 [ 340.811715][ T694] ? file_tty_write.isra.0+0x694/0x890 [ 340.811732][ T694] ? kfree+0x2ec/0x6b0 [ 340.811746][ T694] ? __pfx_n_tty_write+0x10/0x10 [ 340.811759][ T694] file_tty_write.isra.0+0x4d2/0x890 [ 340.811828][ T694] vfs_write+0x6ac/0x1070 [ 340.811842][ T694] ? __pfx_tty_write+0x10/0x10 [ 340.811862][ T694] ? __pfx_vfs_write+0x10/0x10 [ 340.811874][ T694] ? find_held_lock+0x2b/0x80 [ 340.811891][ T694] ksys_write+0x12a/0x250 [ 340.811903][ T694] ? __pfx_ksys_write+0x10/0x10 [ 340.811917][ T694] __do_fast_syscall_32+0xe3/0x8c0 [ 340.811933][ T694] do_fast_syscall_32+0x32/0x70 [ 340.811948][ T694] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 340.811962][ T694] RIP: 0023:0xf7ff6f6c [ 340.811971][ T694] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 58 b8 [ 340.811983][ T694] RSP: 002b:00000000f54b650c EFLAGS: 00000292 ORIG_RAX: 0000000000000004 [ 340.811995][ T694] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000e00 [ 340.812036][ T694] RDX: 0000000000001006 RSI: 0000000000000000 RDI: 0000000000000000 [ 340.812044][ T694] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 340.812052][ T694] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000 [ 340.812060][ T694] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 340.812073][ T694] [ 340.812946][ T694] Kernel Offset: disabled VM DIAGNOSIS: 08:32:43 Registers: info registers vcpu 0 CPU#0 RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81ad67a3 RDX=ffffffff8e4975c0 RSI=ffffffff81ad67eb RDI=ffffffff9412ffa0 RBP=0000000000000000 RSP=ffffc90000007fd0 R8 =0000000000000001 R9 =fffffbfff2825ff4 R10=ffffffff9412ffa7 R11=0000000000000001 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff81ad67ec RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097143000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000080001000 CR3=000000004b775000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81ad67a3 RDX=ffff888050f78000 RSI=ffffffff81ad67eb RDI=ffffffff9412ffa0 RBP=0000000000000000 RSP=ffffc90000590fd0 R8 =0000000000000001 R9 =fffffbfff2825ff4 R10=ffffffff9412ffa7 R11=0000000000000001 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff81ad67ec RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097243000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000000c36be4f CR3=000000000e598000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff81ad67a3 RDX=ffff888022e3a4c0 RSI=ffffffff81ad67eb RDI=ffffffff9412ffa0 RBP=0000000000000000 RSP=ffffc90000538fd0 R8 =0000000000000001 R9 =fffffbfff2825ff4 R10=ffffffff9412ffa7 R11=0000000000000001 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff81ad67ec RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097343000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f73a32f0 CR3=0000000055c73000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000004ffffffe3 00000190000000c8 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000033 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85781095 RDI=ffffffff9b495680 RBP=ffffffff9b495640 RSP=ffffc9000e96f0e8 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=312e7a7973205043 R12=0000000000000000 R13=0000000000000033 R14=0000000000000010 R15=ffffffff85781030 RIP=ffffffff857810bf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff888097443000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000f72dc082 CR3=0000000053bb4000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000