last executing test programs: 2m8.560500926s ago: executing program 0 (id=33): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000600)={0x18, 0x0, {0x4, @multicast, 'macvlan1\x00'}}, 0x1e) ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f0000000b80)) recvmsg(r0, &(0x7f0000001180)={0x0, 0x0, 0x0}, 0x20000) 2m8.483704663s ago: executing program 0 (id=36): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=@newtaction={0x50, 0x30, 0x53b, 0x70bd2b, 0x0, {0x9}, [{0x3c, 0x1, [@m_sample={0x38, 0x1, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8, 0x3, 0x2}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0x50}}, 0x0) r0 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000040)={@multicast1, @local, @loopback}, 0xc) getsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000040)=""/185, &(0x7f0000000100)=0xb9) 2m8.467009773s ago: executing program 0 (id=38): sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0) flock(r0, 0x2) 2m8.364272867s ago: executing program 0 (id=40): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000000)=0xfffffffd, 0x4) 2m8.10123599s ago: executing program 0 (id=47): prctl$PR_SET_SECUREBITS(0x1c, 0x2c) setuid(0xee00) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8}) 2m8.100917567s ago: executing program 0 (id=48): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x38, &(0x7f0000000280)=[@in6={0xa, 0x4e21, 0x7ff, @private2, 0xeb2}, @in6={0xa, 0x4e21, 0x7, @local, 0x9}]}, &(0x7f0000000180)=0xc) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000000)={r1, @in={{0x2, 0x0, @empty}}}, 0x90) 1m52.927098404s ago: executing program 32 (id=48): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x38, &(0x7f0000000280)=[@in6={0xa, 0x4e21, 0x7ff, @private2, 0xeb2}, @in6={0xa, 0x4e21, 0x7, @local, 0x9}]}, &(0x7f0000000180)=0xc) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000000)={r1, @in={{0x2, 0x0, @empty}}}, 0x90) 3.581409834s ago: executing program 1 (id=2629): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0xbfa35000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 2.17099245s ago: executing program 1 (id=2652): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_attach_bpf(r1, 0x1, 0x10, &(0x7f0000001280), 0x4) sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001240)=[{&(0x7f0000000300)="a9125771", 0x4}], 0x1}, 0x20000801) recvmsg(r1, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x40002002) 2.068899092s ago: executing program 2 (id=2644): r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000180)=0x7b, 0x4) shutdown(r0, 0x0) recvmmsg(r0, &(0x7f00000066c0), 0xa0d, 0x0, 0x0) 1.893427689s ago: executing program 2 (id=2647): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000240)={{0xffff0104, 0x0, 0xf000, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0xddccb000, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x1}, {0x5002, 0x0, 0x0, 0x8, 0x0, 0x0, 0x81, 0x0, 0x44, 0xe, 0x0, 0x3}, {0x8080000}, {0x11000, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1a}, {0x100000, 0xd000, 0x0, 0x0, 0x0, 0x8f, 0x0, 0x0, 0x0, 0x0, 0x84}, {0xeeee8000, 0x80a0000, 0x9}, {0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0xe, 0x0, 0x2}, {0x6000}, {0x1, 0xfffe}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x900, [0x0, 0x0, 0x10000, 0x3]}) 1.583784447s ago: executing program 2 (id=2649): r0 = getpid() r1 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) prctl$PR_SET_PTRACER(0x59616d61, r0) prctl$PR_SET_PTRACER(0x59616d61, r1) 1.359663265s ago: executing program 3 (id=2653): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x101, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000080)=@x86={0x4, 0xf6, 0x1, 0x0, 0x3, 0x40, 0x72, 0xa, 0xfb, 0x2, 0x7, 0x9, 0x0, 0x6, 0x2, 0x1, 0x8, 0x97, 0xa, '\x00', 0x40, 0x4}) 1.357634805s ago: executing program 4 (id=2665): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000000c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='pagemap\x00') pread64(r1, &(0x7f0000001240)=""/102400, 0x19000, 0x1000000000) 1.243485778s ago: executing program 2 (id=2654): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x0, 0x13580}, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x20010041, 0x3144ad13eabc2514}) io_uring_enter(r1, 0x6b4d, 0x0, 0x0, 0x0, 0x0) 1.213138904s ago: executing program 2 (id=2656): openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x8800, 0x0) r0 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=0x0, &(0x7f0000000000)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22}) io_uring_enter(r0, 0x48e9, 0x0, 0x2, 0x0, 0x0) 1.208408562s ago: executing program 3 (id=2657): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000200)={@dev}, 0x14) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00') preadv(r1, &(0x7f0000000040)=[{&(0x7f00000000c0)=""/66, 0x42}], 0x1, 0x1, 0x0) 1.207151743s ago: executing program 1 (id=2659): r0 = eventfd2(0x1, 0x1) read$eventfd(r0, &(0x7f0000000040), 0x8) io_setup(0x6, &(0x7f0000001380)=0x0) io_submit(r1, 0x3, &(0x7f0000001380)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x1, r0, &(0x7f0000000000)="d9b5ab2e6ec3da50", 0x8, 0x5, 0x0, 0x1, r0}, 0x0, 0x0]) 1.200701805s ago: executing program 4 (id=2660): write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000040)={0xf, {"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", 0x1000}}, 0x1006) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) io_submit(0x0, 0xf000, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000001c0)='m', 0xfffffdfc}]) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) 1.14177829s ago: executing program 3 (id=2663): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0xbfa35000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 1.080936856s ago: executing program 2 (id=2664): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000105509147200ed0000000109022400010000000009040000030300000009210000000122050009058103"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000100)={0x2c, &(0x7f0000000280)=ANY=[@ANYBLOB="200617"], 0x0, 0x0, 0x0, 0x0}, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x3f, 0x0) 1.067419303s ago: executing program 4 (id=2673): r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SNDCTL_SEQ_NRSYNTHS(r1, 0x40045109, &(0x7f0000001280)) 213.604736ms ago: executing program 1 (id=2666): sendmsg$TIPC_CMD_SET_LINK_PRI(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x40) r0 = socket(0x2, 0x80805, 0x0) sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f0000000440)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0) sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000200)=[{&(0x7f0000000100)='a', 0x1}], 0x1f, &(0x7f0000000000)=ANY=[@ANYBLOB="2c0000008400000001000000000000000c"], 0x2c}], 0x1, 0x0) 213.509702ms ago: executing program 3 (id=2667): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10) r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x4, 0x2012, r1, 0x0) 206.390233ms ago: executing program 4 (id=2675): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x14) capset(&(0x7f00000004c0)={0x20080522}, &(0x7f0000000500)={0x0, 0x5, 0xfff, 0x0, 0x0, 0x3cd}) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1) 111.308596ms ago: executing program 1 (id=2668): r0 = socket$l2tp(0x2, 0x2, 0x73) bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10) connect$inet(r0, &(0x7f0000000200)={0x2, 0x4e22, @local}, 0x10) getpeername$l2tp(r0, 0x0, &(0x7f0000000180)) 110.854509ms ago: executing program 3 (id=2669): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 106.305031ms ago: executing program 4 (id=2670): socketpair$unix(0x1, 0x2, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r0) 8.154276ms ago: executing program 4 (id=2671): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002940)={0x1c, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 8.08021ms ago: executing program 3 (id=2672): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x5, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) statx(0xffffffffffffff9c, 0x0, 0x3000, 0x8, &(0x7f00000015c0)) 0s ago: executing program 1 (id=2681): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x14) capset(&(0x7f00000004c0)={0x20080522}, &(0x7f0000000500)={0x0, 0x5, 0xfff, 0x0, 0x0, 0x3cd}) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1) kernel console output (not intermixed with test programs): 5945] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 52.845527][ T5951] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 52.847730][ T5945] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 52.850442][ T5951] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 52.853264][ T5945] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 52.862235][ T5945] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 52.865817][ T5945] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 52.873914][ T5955] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 52.877904][ T63] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 52.880713][ T63] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 52.884480][ T63] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 52.887054][ T63] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 53.042131][ T5942] chnl_net:caif_netlink_parms(): no params data found [ 53.240168][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.243531][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.246566][ T5942] bridge_slave_0: entered allmulticast mode [ 53.250680][ T5942] bridge_slave_0: entered promiscuous mode [ 53.256098][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.261294][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.264111][ T5942] bridge_slave_1: entered allmulticast mode [ 53.267744][ T5942] bridge_slave_1: entered promiscuous mode [ 53.319495][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.325176][ T5954] chnl_net:caif_netlink_parms(): no params data found [ 53.341417][ T5950] chnl_net:caif_netlink_parms(): no params data found [ 53.350904][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.471751][ T5946] chnl_net:caif_netlink_parms(): no params data found [ 53.505436][ T5942] team0: Port device team_slave_0 added [ 53.533969][ T5954] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.536295][ T5954] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.538543][ T5954] bridge_slave_0: entered allmulticast mode [ 53.542714][ T5954] bridge_slave_0: entered promiscuous mode [ 53.547020][ T5942] team0: Port device team_slave_1 added [ 53.570484][ T5954] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.573225][ T5954] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.576017][ T5954] bridge_slave_1: entered allmulticast mode [ 53.579290][ T5954] bridge_slave_1: entered promiscuous mode [ 53.707668][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 53.710577][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 53.718455][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 53.723067][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.725968][ T5950] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.728929][ T5950] bridge_slave_0: entered allmulticast mode [ 53.731739][ T5950] bridge_slave_0: entered promiscuous mode [ 53.740301][ T5954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.744698][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 53.747614][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 53.758832][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 53.766687][ T5950] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.769647][ T5950] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.772091][ T5950] bridge_slave_1: entered allmulticast mode [ 53.774717][ T5950] bridge_slave_1: entered promiscuous mode [ 53.835758][ T5954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 53.894355][ T5946] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.896654][ T5946] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.899083][ T5946] bridge_slave_0: entered allmulticast mode [ 53.901847][ T5946] bridge_slave_0: entered promiscuous mode [ 53.905507][ T5946] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.907734][ T5946] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.910161][ T5946] bridge_slave_1: entered allmulticast mode [ 53.913752][ T5946] bridge_slave_1: entered promiscuous mode [ 53.917713][ T5954] team0: Port device team_slave_0 added [ 53.923336][ T5950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 53.967198][ T5954] team0: Port device team_slave_1 added [ 53.972152][ T5950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.045988][ T5942] hsr_slave_0: entered promiscuous mode [ 54.048526][ T5942] hsr_slave_1: entered promiscuous mode [ 54.053728][ T5946] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.105200][ T5950] team0: Port device team_slave_0 added [ 54.110035][ T5946] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.113736][ T5954] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.115905][ T5954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.126006][ T5954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.130286][ T5954] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.132482][ T5954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.140459][ T5954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.146666][ T5950] team0: Port device team_slave_1 added [ 54.236334][ T5946] team0: Port device team_slave_0 added [ 54.287479][ T5946] team0: Port device team_slave_1 added [ 54.291166][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.294116][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.305358][ T5950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.379239][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.382210][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.392801][ T5950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.412391][ T5954] hsr_slave_0: entered promiscuous mode [ 54.415548][ T5954] hsr_slave_1: entered promiscuous mode [ 54.418583][ T5954] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 54.422602][ T5954] Cannot create hsr debugfs directory [ 54.454629][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.456804][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.466103][ T5946] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.472222][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.474970][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.485101][ T5946] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.649949][ T5950] hsr_slave_0: entered promiscuous mode [ 54.654084][ T5950] hsr_slave_1: entered promiscuous mode [ 54.657072][ T5950] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 54.660880][ T5950] Cannot create hsr debugfs directory [ 54.699360][ T5946] hsr_slave_0: entered promiscuous mode [ 54.702065][ T5946] hsr_slave_1: entered promiscuous mode [ 54.704174][ T5946] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 54.706561][ T5946] Cannot create hsr debugfs directory [ 54.829988][ T5949] Bluetooth: hci0: command tx timeout [ 54.908800][ T5949] Bluetooth: hci1: command tx timeout [ 54.910875][ T63] Bluetooth: hci3: command tx timeout [ 54.918856][ T63] Bluetooth: hci2: command tx timeout [ 54.940308][ T5942] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 54.969821][ T5942] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 54.977232][ T5942] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 54.999798][ T5942] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 55.042823][ T5954] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 55.049646][ T5954] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 55.055633][ T5954] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 55.062490][ T5954] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 55.118301][ T5946] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 55.125644][ T5946] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 55.134298][ T5946] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 55.140823][ T5946] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 55.210713][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.239702][ T5942] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.246041][ T5950] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 55.252702][ T5950] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 55.262227][ T1141] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.265398][ T1141] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.277617][ T5950] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 55.285258][ T5950] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 55.305735][ T61] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.308853][ T61] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.317980][ T5954] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.371242][ T5954] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.383468][ T61] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.386451][ T61] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.405511][ T5946] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.409682][ T1196] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.412037][ T1196] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.444296][ T5946] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.461398][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.464314][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.469106][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.471917][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.512919][ T5950] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.534892][ T5950] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.546623][ T61] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.549660][ T61] bridge0: port 1(bridge_slave_0) entered forwarding state [ 55.567374][ T61] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.570366][ T61] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.587873][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.644559][ T5954] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.655136][ T5942] veth0_vlan: entered promiscuous mode [ 55.666728][ T5942] veth1_vlan: entered promiscuous mode [ 55.693521][ T5954] veth0_vlan: entered promiscuous mode [ 55.699409][ T5942] veth0_macvtap: entered promiscuous mode [ 55.704045][ T5954] veth1_vlan: entered promiscuous mode [ 55.708976][ T5942] veth1_macvtap: entered promiscuous mode [ 55.723035][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 55.727435][ T5946] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.736040][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 55.744210][ T5942] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.747718][ T5942] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.751215][ T5942] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.754563][ T5942] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.777673][ T5954] veth0_macvtap: entered promiscuous mode [ 55.792062][ T5950] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.795315][ T5954] veth1_macvtap: entered promiscuous mode [ 55.808371][ T5946] veth0_vlan: entered promiscuous mode [ 55.829406][ T5946] veth1_vlan: entered promiscuous mode [ 55.833271][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 55.845018][ T81] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.848420][ T81] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.857203][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 55.880057][ T5954] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.882850][ T5954] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.885577][ T5954] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.888289][ T5954] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.898235][ T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 55.901558][ T5950] veth0_vlan: entered promiscuous mode [ 55.904030][ T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 55.911170][ T5950] veth1_vlan: entered promiscuous mode [ 55.917005][ T5946] veth0_macvtap: entered promiscuous mode [ 55.924179][ T5946] veth1_macvtap: entered promiscuous mode [ 55.933228][ T5942] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 55.962114][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 55.975834][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 55.997429][ T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.001681][ T5946] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.005167][ T5946] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.009204][ T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.009594][ T5946] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.015638][ T5946] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.030294][ T5950] veth0_macvtap: entered promiscuous mode [ 56.218474][ T5950] veth1_macvtap: entered promiscuous mode [ 56.229820][ T1196] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.235016][ T1196] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.249558][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 56.255193][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 56.263817][ T5950] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.267021][ T5950] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.271012][ T5950] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.273788][ T5950] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.291705][ T81] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.293935][ T81] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.325955][ T1147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.330689][ T1147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.358332][ T6034] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6'. [ 56.362310][ T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.371710][ T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.392471][ T6034] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6'. [ 56.393524][ T1196] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.397398][ T1196] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.501586][ T6048] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9'. [ 56.507033][ T6048] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9'. [ 56.708362][ T6058] blkio.reset_stats is deprecated [ 56.774063][ T6062] loop6: detected capacity change from 0 to 520093696 [ 56.908763][ T5949] Bluetooth: hci0: command tx timeout [ 56.988977][ T5949] Bluetooth: hci2: command tx timeout [ 56.989409][ T5945] Bluetooth: hci3: command tx timeout [ 56.990795][ T5949] Bluetooth: hci1: command tx timeout [ 56.996116][ T6070] netlink: 4 bytes leftover after parsing attributes in process `syz.0.19'. [ 57.030013][ T55] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 57.036501][ T40] audit: type=1804 audit(1749874659.401:2): pid=6074 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.21" name="/newroot/7/cgroup.controllers" dev="tmpfs" ino=54 res=1 errno=0 [ 57.046827][ T40] audit: type=1800 audit(1749874659.401:3): pid=6074 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.21" name="cgroup.controllers" dev="tmpfs" ino=54 res=0 errno=0 [ 57.054465][ T40] audit: type=1800 audit(1749874659.401:4): pid=6074 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.21" name="cgroup.controllers" dev="tmpfs" ino=54 res=0 errno=0 [ 57.188973][ T55] usb 6-1: Using ep0 maxpacket: 16 [ 57.194327][ T55] usb 6-1: config 0 has no interfaces? [ 57.196725][ T6082] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 57.199655][ T55] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 57.204158][ T55] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 57.207170][ T55] usb 6-1: Product: syz [ 57.219554][ T55] usb 6-1: Manufacturer: syz [ 57.222005][ T55] usb 6-1: SerialNumber: syz [ 57.227491][ T55] usb 6-1: config 0 descriptor?? [ 57.346488][ T6097] capability: warning: `syz.3.32' uses 32-bit capabilities (legacy support in use) [ 57.382388][ T6101] loop4: detected capacity change from 0 to 7 [ 57.385694][ T6101] Dev loop4: unable to read RDB block 7 [ 57.387542][ T6101] loop4: unable to read partition table [ 57.399595][ T6101] loop4: partition table beyond EOD, truncated [ 57.401542][ T6101] loop_reread_partitions: partition scan of loop4 (3Ÿ ¾‚³˜) failed (rc=-5) [ 57.441500][ T1468] usb 6-1: USB disconnect, device number 2 [ 58.629940][ T6185] random: crng reseeded on system resumption [ 58.988926][ T5949] Bluetooth: hci0: command tx timeout [ 59.068794][ T5949] Bluetooth: hci3: command 0x040f tx timeout [ 59.068815][ T5955] Bluetooth: hci2: command tx timeout [ 59.071317][ T5949] Bluetooth: hci1: command tx timeout [ 59.112884][ T6197] mkiss: ax0: crc mode is auto. [ 59.892823][ T6238] input: syz0 as /devices/virtual/input/input7 [ 59.904044][ T6240] Zero length message leads to an empty skb [ 60.501262][ T6277] warning: `syz.3.109' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 61.069172][ T5949] Bluetooth: hci0: command tx timeout [ 61.150078][ T5949] Bluetooth: hci2: command tx timeout [ 61.150377][ T5945] Bluetooth: hci3: command 0x040f tx timeout [ 61.158847][ T5945] Bluetooth: hci1: command tx timeout [ 61.700698][ T6328] process 'syz.2.130' launched './file2' with NULL argv: empty string added [ 63.162130][ T6408] input: syz1 as /devices/virtual/input/input8 [ 63.228849][ T5945] Bluetooth: hci3: command 0x040f tx timeout [ 63.414274][ T6419] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 63.470084][ T6423] random: crng reseeded on system resumption [ 63.763843][ T6429] serio: Serial port ptm0 [ 63.927902][ T6432] random: crng reseeded on system resumption [ 64.415940][ T6450] Driver unsupported XDP return value 0 on prog (id 19) dev N/A, expect packet loss! [ 64.672414][ T6465] serio: Serial port ptm0 [ 64.761551][ T6470] loop9: detected capacity change from 0 to 8 [ 64.765238][ T5953] Dev loop9: unable to read RDB block 8 [ 64.767417][ T5953] loop9: unable to read partition table [ 64.772708][ T5953] loop9: partition table beyond EOD, truncated [ 64.780910][ T6470] Dev loop9: unable to read RDB block 8 [ 64.782781][ T6470] loop9: unable to read partition table [ 64.784618][ T6470] loop9: partition table beyond EOD, truncated [ 64.787224][ T6470] loop_reread_partitions: partition scan of loop9 (þ被xüÿÿÿÿÿÿÿ ) failed (rc=-5) [ 64.817855][ T6472] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 65.061805][ T6486] binder: 6485:6486 ioctl c0306201 80000540 returned -14 [ 65.142992][ T6494] kernel read not supported for file /eth0 (pid: 6494 comm: syz.1.199) [ 65.147062][ T40] audit: type=1800 audit(1749874667.511:5): pid=6494 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.199" name="eth0" dev="mqueue" ino=12441 res=0 errno=0 [ 65.343443][ T6505] netlink: 8 bytes leftover after parsing attributes in process `syz.3.204'. [ 66.771904][ T6575] netlink: 'syz.1.232': attribute type 7 has an invalid length. [ 66.994136][ T6593] netlink: 28 bytes leftover after parsing attributes in process `syz.3.241'. [ 67.011490][ T6595] mkiss: ax0: crc mode is auto. [ 67.908909][ T6119] usb 8-1: new high-speed USB device number 2 using dummy_hcd [ 68.078873][ T6119] usb 8-1: Using ep0 maxpacket: 16 [ 68.086488][ T6119] usb 8-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 68.091642][ T6119] usb 8-1: config 0 interface 0 has no altsetting 0 [ 68.094464][ T6119] usb 8-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00 [ 68.098286][ T6119] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 68.106229][ T6119] usb 8-1: config 0 descriptor?? [ 68.326025][ T6119] usbhid 8-1:0.0: can't add hid device: -71 [ 68.329174][ T6119] usbhid 8-1:0.0: probe with driver usbhid failed with error -71 [ 68.339334][ T6119] usb 8-1: USB disconnect, device number 2 [ 68.900946][ T6658] capability: warning: `syz.2.270' uses deprecated v2 capabilities in a way that may be insecure [ 69.018184][ T6668] input: syz1 as /devices/virtual/input/input9 [ 69.035317][ T6672] Bluetooth: MGMT ver 1.23 [ 69.037346][ T6672] Bluetooth: hci0: load_link_keys: expected 51203 bytes, got 7 bytes [ 69.124705][ T6684] random: crng reseeded on system resumption [ 69.229372][ T5949] Bluetooth: hci3: command 0x040f tx timeout [ 69.422290][ T6702] loop4: detected capacity change from 0 to 524255232 [ 69.504899][ T6706] vlan2: entered promiscuous mode [ 69.506611][ T6706] bridge0: entered promiscuous mode [ 69.509793][ T6706] vlan2: entered allmulticast mode [ 69.512240][ T6706] bridge0: entered allmulticast mode [ 69.540728][ T40] audit: type=1800 audit(1749874671.911:6): pid=6708 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.294" name="dmabuf" dev="dmabuf" ino=1 res=0 errno=0 [ 70.406605][ T6749] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 70.409854][ T6749] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 71.046324][ T6769] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 71.049244][ T6769] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 73.007231][ T840] kernel write not supported for file /input/mouse0 (pid: 840 comm: kworker/0:2) [ 73.220091][ T5949] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 73.225102][ T5949] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 73.229554][ T5949] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 73.234846][ T5949] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 73.242629][ T5949] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 73.412671][ T6825] chnl_net:caif_netlink_parms(): no params data found [ 73.508889][ T24] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 73.509329][ T6825] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.514782][ T6825] bridge0: port 1(bridge_slave_0) entered disabled state [ 73.517176][ T6825] bridge_slave_0: entered allmulticast mode [ 73.521430][ T6825] bridge_slave_0: entered promiscuous mode [ 73.526141][ T6825] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.529396][ T6825] bridge0: port 2(bridge_slave_1) entered disabled state [ 73.532428][ T6825] bridge_slave_1: entered allmulticast mode [ 73.536468][ T6825] bridge_slave_1: entered promiscuous mode [ 73.606790][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 73.617690][ T6825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 73.623258][ T6825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 73.656317][ T6825] team0: Port device team_slave_0 added [ 73.661543][ T6825] team0: Port device team_slave_1 added [ 73.678777][ T24] usb 7-1: Using ep0 maxpacket: 16 [ 73.688820][ T24] usb 7-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 73.694022][ T24] usb 7-1: config 0 interface 0 has no altsetting 0 [ 73.695522][ T6825] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 73.696874][ T24] usb 7-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00 [ 73.701311][ T6825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 73.702868][ T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 73.713803][ T6825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 73.720451][ T24] usb 7-1: config 0 descriptor?? [ 73.735063][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 73.743135][ T6825] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 73.745364][ T6825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 73.753267][ T6825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 73.818434][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 73.827553][ T6825] hsr_slave_0: entered promiscuous mode [ 73.829908][ T6825] hsr_slave_1: entered promiscuous mode [ 73.832054][ T6825] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 73.835223][ T6825] Cannot create hsr debugfs directory [ 73.909279][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 73.988612][ T24] usbhid 7-1:0.0: can't add hid device: -71 [ 73.991308][ T24] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 74.008063][ T24] usb 7-1: USB disconnect, device number 2 [ 74.078825][ T12] bridge_slave_1: left allmulticast mode [ 74.081190][ T12] bridge_slave_1: left promiscuous mode [ 74.084586][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.092451][ T12] bridge_slave_0: left allmulticast mode [ 74.094805][ T12] bridge_slave_0: left promiscuous mode [ 74.097271][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.363111][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 74.367701][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 74.371578][ T12] bond0 (unregistering): Released all slaves [ 74.401391][ T6825] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 74.405572][ T6825] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 74.409893][ T6825] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 74.416310][ T6825] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 74.506936][ T6825] 8021q: adding VLAN 0 to HW filter on device bond0 [ 74.531139][ T6825] 8021q: adding VLAN 0 to HW filter on device team0 [ 74.540283][ T61] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.543309][ T61] bridge0: port 1(bridge_slave_0) entered forwarding state [ 74.615725][ T61] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.618806][ T61] bridge0: port 2(bridge_slave_1) entered forwarding state [ 74.687713][ T6881] netlink: 8 bytes leftover after parsing attributes in process `syz.2.359'. [ 74.706777][ T12] hsr_slave_0: left promiscuous mode [ 74.711980][ T12] hsr_slave_1: left promiscuous mode [ 74.714111][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 74.721014][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 74.725141][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 74.727544][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 74.741409][ T6883] netlink: 4 bytes leftover after parsing attributes in process `syz.2.360'. [ 74.745897][ T12] veth1_macvtap: left promiscuous mode [ 74.746699][ T6883] netlink: 8 bytes leftover after parsing attributes in process `syz.2.360'. [ 74.747931][ T12] veth0_macvtap: left promiscuous mode [ 74.753181][ T12] veth1_vlan: left promiscuous mode [ 74.755008][ T12] veth0_vlan: left promiscuous mode [ 74.920394][ T6892] cifs: Unknown parameter 'mode' [ 74.959069][ T40] audit: type=1326 audit(1749874677.321:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6893 comm="syz.3.365" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 74.966192][ T40] audit: type=1326 audit(1749874677.321:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6893 comm="syz.3.365" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 74.976324][ T40] audit: type=1326 audit(1749874677.331:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6893 comm="syz.3.365" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 74.984976][ T40] audit: type=1326 audit(1749874677.331:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6893 comm="syz.3.365" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 75.000044][ T40] audit: type=1326 audit(1749874677.331:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6893 comm="syz.3.365" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 75.006950][ T40] audit: type=1326 audit(1749874677.341:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6893 comm="syz.3.365" exe="/syz-executor" sig=0 arch=40000003 syscall=39 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 75.017637][ T40] audit: type=1326 audit(1749874677.341:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6893 comm="syz.3.365" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 75.031104][ T40] audit: type=1326 audit(1749874677.341:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6893 comm="syz.3.365" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 75.042177][ T40] audit: type=1326 audit(1749874677.341:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6893 comm="syz.3.365" exe="/syz-executor" sig=0 arch=40000003 syscall=232 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 75.051617][ T40] audit: type=1326 audit(1749874677.341:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6893 comm="syz.3.365" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 75.319334][ T5949] Bluetooth: hci2: command tx timeout [ 75.456968][ T12] team0 (unregistering): Port device team_slave_1 removed [ 75.517692][ T12] team0 (unregistering): Port device team_slave_0 removed [ 75.895794][ T6921] cifs: Unknown parameter 'mode' [ 76.034189][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.037052][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 76.214579][ T6825] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 76.429952][ T6825] veth0_vlan: entered promiscuous mode [ 76.437148][ T6825] veth1_vlan: entered promiscuous mode [ 76.473495][ T6825] veth0_macvtap: entered promiscuous mode [ 76.478120][ T6825] veth1_macvtap: entered promiscuous mode [ 76.487106][ T6825] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 76.500087][ T6825] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 76.505315][ T6825] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.508007][ T6825] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.512552][ T6825] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.515228][ T6825] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.565593][ T1143] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.568209][ T1143] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.621380][ T1143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.624644][ T1143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.093910][ T6987] netlink: 4 bytes leftover after parsing attributes in process `syz.1.387'. [ 77.193162][ T6997] autofs: Bad value for 'fd' [ 77.389894][ T5949] Bluetooth: hci2: command tx timeout [ 77.831452][ T7060] netlink: 48 bytes leftover after parsing attributes in process `syz.1.415'. [ 77.973800][ T7077] netlink: 340 bytes leftover after parsing attributes in process `syz.3.421'. [ 78.641096][ T53] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 78.789574][ T53] usb 8-1: too many configurations: 9, using maximum allowed: 8 [ 78.794031][ T53] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 78.797995][ T53] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 78.802854][ T53] usb 8-1: config 0 interface 0 has no altsetting 0 [ 78.806760][ T53] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 78.812323][ T53] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 78.816754][ T53] usb 8-1: config 0 interface 0 has no altsetting 0 [ 78.821921][ T53] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 78.825723][ T53] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 78.831108][ T53] usb 8-1: config 0 interface 0 has no altsetting 0 [ 78.835333][ T53] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 78.839552][ T53] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 78.844352][ T53] usb 8-1: config 0 interface 0 has no altsetting 0 [ 78.848200][ T53] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 78.852644][ T53] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 78.857037][ T53] usb 8-1: config 0 interface 0 has no altsetting 0 [ 78.861213][ T53] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 78.865189][ T53] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 78.869876][ T53] usb 8-1: config 0 interface 0 has no altsetting 0 [ 78.873649][ T53] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 78.877395][ T53] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 78.882812][ T53] usb 8-1: config 0 interface 0 has no altsetting 0 [ 78.886742][ T53] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 78.890797][ T53] usb 8-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 78.895313][ T53] usb 8-1: config 0 interface 0 has no altsetting 0 [ 78.900509][ T53] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 78.904293][ T53] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 78.907784][ T53] usb 8-1: Product: syz [ 78.910090][ T53] usb 8-1: Manufacturer: syz [ 78.912183][ T53] usb 8-1: SerialNumber: syz [ 78.917218][ T53] usb 8-1: config 0 descriptor?? [ 78.932095][ T53] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0 [ 79.335619][ T7137] netlink: 8 bytes leftover after parsing attributes in process `syz.4.443'. [ 79.449384][ T7142] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.445'. [ 79.480324][ T5949] Bluetooth: hci2: command tx timeout [ 79.545743][ T7144] team0: Device gtp0 is of different type [ 79.855279][ T7158] netlink: 4 bytes leftover after parsing attributes in process `syz.1.453'. [ 79.955715][ T7162] Invalid ELF header magic: != ELF [ 79.991133][ T7165] hugetlbfs: syz.1.463 (7165): Using mlock ulimits for SHM_HUGETLB is obsolete [ 80.774109][ T7197] mmap: syz.4.470 (7197) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 80.830466][ T7203] ======================================================= [ 80.830466][ T7203] WARNING: The mand mount option has been deprecated and [ 80.830466][ T7203] and is ignored by this kernel. Remove the mand [ 80.830466][ T7203] option from the mount to silence this warning. [ 80.830466][ T7203] ======================================================= [ 80.915301][ T7209] syz.4.476: attempt to access beyond end of device [ 80.915301][ T7209] nbd4: rw=0, sector=64, nr_sectors = 1 limit=0 [ 80.921885][ T7209] syz.4.476: attempt to access beyond end of device [ 80.921885][ T7209] nbd4: rw=0, sector=256, nr_sectors = 1 limit=0 [ 80.926192][ T7209] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256 [ 80.930298][ T7209] syz.4.476: attempt to access beyond end of device [ 80.930298][ T7209] nbd4: rw=0, sector=512, nr_sectors = 1 limit=0 [ 80.935589][ T7209] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512 [ 80.940736][ T7209] syz.4.476: attempt to access beyond end of device [ 80.940736][ T7209] nbd4: rw=0, sector=64, nr_sectors = 2 limit=0 [ 80.947012][ T7209] syz.4.476: attempt to access beyond end of device [ 80.947012][ T7209] nbd4: rw=0, sector=512, nr_sectors = 2 limit=0 [ 80.953627][ T7209] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256 [ 80.957842][ T7209] syz.4.476: attempt to access beyond end of device [ 80.957842][ T7209] nbd4: rw=0, sector=1024, nr_sectors = 2 limit=0 [ 80.964565][ T7209] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512 [ 80.968517][ T7209] syz.4.476: attempt to access beyond end of device [ 80.968517][ T7209] nbd4: rw=0, sector=64, nr_sectors = 4 limit=0 [ 80.973330][ T7209] syz.4.476: attempt to access beyond end of device [ 80.973330][ T7209] nbd4: rw=0, sector=1024, nr_sectors = 4 limit=0 [ 80.977939][ T7209] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256 [ 80.981121][ T7209] syz.4.476: attempt to access beyond end of device [ 80.981121][ T7209] nbd4: rw=0, sector=2048, nr_sectors = 4 limit=0 [ 80.985478][ T7209] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512 [ 80.990334][ T7209] syz.4.476: attempt to access beyond end of device [ 80.990334][ T7209] nbd4: rw=0, sector=64, nr_sectors = 8 limit=0 [ 80.995064][ T7209] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256 [ 80.998585][ T7209] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512 [ 81.002464][ T7209] UDF-fs: warning (device nbd4): udf_fill_super: No partition found (1) [ 81.158821][ C1] usb 8-1: yurex_control_callback - control failed: -2 [ 81.179269][ T24] usb 8-1: USB disconnect, device number 3 [ 81.200993][ T24] yurex 8-1:0.0: USB YUREX #0 now disconnected [ 81.448024][ T7252] loop6: detected capacity change from 0 to 520093696 [ 81.501918][ T7256] sp0: Synchronizing with TNC [ 81.504905][ T7258] Attempt to restore checkpoint with obsolete wellknown handles [ 81.550571][ T5949] Bluetooth: hci2: command tx timeout [ 81.552584][ T7260] kernel profiling enabled (shift: 9) [ 81.622855][ T7266] random: crng reseeded on system resumption [ 81.670057][ T53] hid-generic 0000:7FFFFFFF:0000.0002: unknown main item tag 0x0 [ 81.674860][ T53] hid-generic 0000:7FFFFFFF:0000.0002: unknown main item tag 0x0 [ 81.678118][ T53] hid-generic 0000:7FFFFFFF:0000.0002: unknown main item tag 0x0 [ 81.690992][ T53] hid-generic 0000:7FFFFFFF:0000.0002: hidraw1: HID v0.00 Device [syz0] on syz1 [ 81.747708][ T7277] fido_id[7277]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 81.792172][ T7282] loop6: detected capacity change from 0 to 520093696 [ 81.819456][ T7284] ªªªªªª†³?ÂHº: renamed from lo (while UP) [ 82.060996][ T7303] usb 1-1: USB disconnect, device number 2 [ 82.235767][ T7316] kvm_intel: kvm [7315]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0xffffffffffffffff [ 82.254305][ T7318] loop6: detected capacity change from 0 to 520093696 [ 82.395866][ T40] kauditd_printk_skb: 4 callbacks suppressed [ 82.395876][ T40] audit: type=1326 audit(1749874684.761:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7327 comm="syz.2.537" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f15579 code=0x0 [ 82.421634][ T9] kernel read not supported for file /dsp1 (pid: 9 comm: kworker/0:0) [ 82.563269][ T7339] netlink: 'syz.1.532': attribute type 11 has an invalid length. [ 82.659198][ T24] usb 9-1: new high-speed USB device number 2 using dummy_hcd [ 82.745208][ T7352] loop6: detected capacity change from 0 to 520093696 [ 82.808728][ T24] usb 9-1: Using ep0 maxpacket: 16 [ 82.811590][ T24] usb 9-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 82.814846][ T24] usb 9-1: config 0 interface 0 has no altsetting 0 [ 82.816811][ T24] usb 9-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00 [ 82.831008][ T24] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 82.837734][ T24] usb 9-1: config 0 descriptor?? [ 83.084363][ T24] usbhid 9-1:0.0: can't add hid device: -71 [ 83.087793][ T24] usbhid 9-1:0.0: probe with driver usbhid failed with error -71 [ 83.099111][ T24] usb 9-1: USB disconnect, device number 2 [ 83.249991][ T7374] loop9: detected capacity change from 0 to 7 [ 83.253017][ T7374] Buffer I/O error on dev loop9, logical block 0, async page read [ 83.256047][ T7374] Buffer I/O error on dev loop9, logical block 0, async page read [ 83.260589][ T7374] Buffer I/O error on dev loop9, logical block 0, async page read [ 83.263670][ T7374] Buffer I/O error on dev loop9, logical block 0, async page read [ 83.267543][ T7374] Buffer I/O error on dev loop9, logical block 0, async page read [ 83.271234][ T7374] Buffer I/O error on dev loop9, logical block 0, async page read [ 83.273794][ T7374] Buffer I/O error on dev loop9, logical block 0, async page read [ 83.276410][ T7374] ldm_validate_partition_table(): Disk read failed. [ 83.278549][ T7374] Buffer I/O error on dev loop9, logical block 0, async page read [ 83.281989][ T7374] Buffer I/O error on dev loop9, logical block 0, async page read [ 83.284489][ T7374] Buffer I/O error on dev loop9, logical block 0, async page read [ 83.287057][ T7374] Dev loop9: unable to read RDB block 0 [ 83.289013][ T7374] loop9: unable to read partition table [ 83.290861][ T7374] loop9: partition table beyond EOD, truncated [ 83.297260][ T7374] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ â·û [ 83.297260][ T7374] ) failed (rc=-5) [ 83.385046][ T7384] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256 [ 83.388197][ T7384] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512 [ 83.392418][ T7384] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256 [ 83.396740][ T7384] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512 [ 83.402238][ T7384] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256 [ 83.405801][ T7384] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512 [ 83.410215][ T7384] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256 [ 83.413259][ T7384] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512 [ 83.416273][ T7384] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1) [ 83.722382][ T7403] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3) [ 83.725183][ T7403] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 83.734286][ T7403] vhci_hcd vhci_hcd.0: Device attached [ 83.741292][ T7403] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(5) [ 83.743555][ T7403] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 83.747083][ T7403] vhci_hcd vhci_hcd.0: Device attached [ 83.756775][ T7403] vhci_hcd vhci_hcd.0: pdev(4) rhport(2) sockfd(7) [ 83.759231][ T7403] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 83.762444][ T7403] vhci_hcd vhci_hcd.0: Device attached [ 83.766634][ T7403] vhci_hcd vhci_hcd.0: pdev(4) rhport(3) sockfd(9) [ 83.769191][ T7403] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 83.772168][ T7403] vhci_hcd vhci_hcd.0: Device attached [ 83.781375][ T7412] vhci_hcd: connection closed [ 83.783105][ T7406] vhci_hcd: connection closed [ 83.783133][ T7409] vhci_hcd: connection closed [ 83.784211][ T1196] vhci_hcd: stop threads [ 83.784577][ T1196] vhci_hcd: release socket [ 83.784598][ T1196] vhci_hcd: disconnect device [ 83.785888][ T1196] vhci_hcd: stop threads [ 83.793290][ T1196] vhci_hcd: release socket [ 83.794672][ T1196] vhci_hcd: disconnect device [ 83.796792][ T1196] vhci_hcd: stop threads [ 83.798596][ T1196] vhci_hcd: release socket [ 83.800796][ T1196] vhci_hcd: disconnect device [ 83.803432][ T7415] vhci_hcd: connection closed [ 83.803637][ T1196] vhci_hcd: stop threads [ 83.810162][ T1196] vhci_hcd: release socket [ 83.812079][ T1196] vhci_hcd: disconnect device [ 83.921650][ T7423] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256 [ 83.926532][ T7423] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512 [ 83.931526][ T7423] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256 [ 83.935558][ T7423] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512 [ 83.940309][ T7423] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256 [ 83.944615][ T7423] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512 [ 83.949275][ T7423] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256 [ 83.953383][ T7423] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512 [ 83.957211][ T7423] UDF-fs: warning (device nbd1): udf_fill_super: No partition found (1) [ 84.023741][ T7427] sp0: Synchronizing with TNC [ 84.442499][ T7454] kvm_intel: kvm [7453]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0xffffffffffffffff [ 84.518855][ T9] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 84.614982][ T7461] input: syz0 as /devices/virtual/input/input10 [ 84.681243][ T9] usb 6-1: Using ep0 maxpacket: 16 [ 84.685221][ T9] usb 6-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 84.690249][ T9] usb 6-1: config 0 interface 0 has no altsetting 0 [ 84.693042][ T9] usb 6-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00 [ 84.696919][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 84.709250][ T9] usb 6-1: config 0 descriptor?? [ 84.933249][ T7475] Bluetooth: hci4: Frame reassembly failed (-84) [ 84.937216][ T46] Bluetooth: hci4: Frame reassembly failed (-84) [ 84.974957][ T9] usbhid 6-1:0.0: can't add hid device: -71 [ 84.977720][ T9] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 84.991287][ T9] usb 6-1: USB disconnect, device number 3 [ 85.607538][ T7479] kvm_intel: kvm [7478]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0xffffffffffffffff [ 86.142724][ T7507] loop9: detected capacity change from 0 to 7 [ 86.146143][ T6959] ldm_validate_partition_table(): Disk read failed. [ 86.149168][ T6959] Dev loop9: unable to read RDB block 0 [ 86.151486][ T6959] loop9: unable to read partition table [ 86.153821][ T6959] loop9: partition table beyond EOD, truncated [ 86.157836][ T7507] ldm_validate_partition_table(): Disk read failed. [ 86.162377][ T7507] Dev loop9: unable to read RDB block 0 [ 86.164716][ T7507] loop9: unable to read partition table [ 86.166982][ T7507] loop9: partition table beyond EOD, truncated [ 86.169773][ T7507] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ â·û [ 86.169773][ T7507] ) failed (rc=-5) [ 86.271972][ T838] cfg80211: failed to load regulatory.db [ 86.288745][ T5970] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 86.438771][ T5970] usb 6-1: Using ep0 maxpacket: 16 [ 86.442736][ T5970] usb 6-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 86.446079][ T5970] usb 6-1: config 0 interface 0 has no altsetting 0 [ 86.448164][ T5970] usb 6-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00 [ 86.451066][ T5970] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 86.454696][ T5970] usb 6-1: config 0 descriptor?? [ 86.704254][ T5970] usbhid 6-1:0.0: can't add hid device: -71 [ 86.706203][ T5970] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 86.713925][ T5970] usb 6-1: USB disconnect, device number 4 [ 86.989016][ T5945] Bluetooth: hci4: command 0x1003 tx timeout [ 86.989046][ T5949] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 87.055758][ T7525] team0: Device gtp0 is of different type [ 87.108577][ T7531] loop9: detected capacity change from 0 to 7 [ 87.113609][ T6959] ldm_validate_partition_table(): Disk read failed. [ 87.116712][ T6959] Dev loop9: unable to read RDB block 0 [ 87.120442][ T6959] loop9: unable to read partition table [ 87.123151][ T6959] loop9: partition table beyond EOD, truncated [ 87.131639][ T7531] ldm_validate_partition_table(): Disk read failed. [ 87.134818][ T7531] Dev loop9: unable to read RDB block 0 [ 87.137386][ T7531] loop9: unable to read partition table [ 87.141312][ T7531] loop9: partition table beyond EOD, truncated [ 87.166991][ T7531] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ â·û [ 87.166991][ T7531] ) failed (rc=-5) [ 87.305833][ T7543] input: syz1 as /devices/virtual/input/input11 [ 87.721074][ T7569] macvlan2: entered promiscuous mode [ 87.828838][ T53] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 87.988804][ T53] usb 8-1: Using ep0 maxpacket: 16 [ 87.993607][ T53] usb 8-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 87.997032][ T53] usb 8-1: config 0 interface 0 has no altsetting 0 [ 88.003097][ T53] usb 8-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00 [ 88.005937][ T53] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 88.013972][ T53] usb 8-1: config 0 descriptor?? [ 88.149656][ T7591] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 88.151763][ T7591] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 88.156628][ T7591] vhci_hcd vhci_hcd.0: Device attached [ 88.165117][ T7591] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(5) [ 88.167192][ T7591] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 88.178131][ T7591] vhci_hcd vhci_hcd.0: Device attached [ 88.184024][ T7591] vhci_hcd vhci_hcd.0: pdev(1) rhport(2) sockfd(7) [ 88.186197][ T7591] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 88.188763][ T7591] vhci_hcd vhci_hcd.0: Device attached [ 88.199755][ T7591] vhci_hcd vhci_hcd.0: pdev(1) rhport(3) sockfd(9) [ 88.202288][ T7591] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 88.204778][ T7591] vhci_hcd vhci_hcd.0: Device attached [ 88.207765][ T7598] vhci_hcd: connection closed [ 88.207999][ T1196] vhci_hcd: stop threads [ 88.209149][ T7596] vhci_hcd: connection closed [ 88.210153][ T1196] vhci_hcd: release socket [ 88.211423][ T7592] vhci_hcd: connection closed [ 88.212722][ T7594] vhci_hcd: connection closed [ 88.215812][ T1196] vhci_hcd: disconnect device [ 88.259116][ T1196] vhci_hcd: stop threads [ 88.260933][ T1196] vhci_hcd: release socket [ 88.262485][ T1196] vhci_hcd: disconnect device [ 88.266000][ T1196] vhci_hcd: stop threads [ 88.267424][ T1196] vhci_hcd: release socket [ 88.273182][ T1196] vhci_hcd: disconnect device [ 88.275053][ T1196] vhci_hcd: stop threads [ 88.276560][ T1196] vhci_hcd: release socket [ 88.278909][ T1196] vhci_hcd: disconnect device [ 88.299711][ T53] usbhid 8-1:0.0: can't add hid device: -71 [ 88.301562][ T53] usbhid 8-1:0.0: probe with driver usbhid failed with error -71 [ 88.306221][ T53] usb 8-1: USB disconnect, device number 4 [ 88.357556][ T6119] vhci_hcd: vhci_device speed not set [ 90.894612][ T7736] input: syz0 as /devices/virtual/input/input12 [ 91.007007][ T7746] bridge0: entered promiscuous mode [ 91.017366][ T7746] macvlan2: entered promiscuous mode [ 91.371108][ T7784] vxcan0: tx address claim with dest, not broadcast [ 92.233114][ T7832] netlink: 'syz.2.714': attribute type 13 has an invalid length. [ 92.237084][ T7832] netlink: 24859 bytes leftover after parsing attributes in process `syz.2.714'. [ 92.521695][ T7861] random: crng reseeded on system resumption [ 92.837693][ T7870] syz.3.731 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 93.019346][ T7911] sp0: Synchronizing with TNC [ 93.392975][ T7946] dlm: no local IP address has been set [ 93.394990][ T7946] dlm: cannot start dlm midcomms -107 [ 93.530063][ T7955] serio: Serial port ptm0 [ 93.533149][ T7957] netlink: 'syz.2.772': attribute type 4 has an invalid length. [ 93.538907][ T53] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 93.688901][ T53] usb 8-1: Using ep0 maxpacket: 8 [ 93.692876][ T53] usb 8-1: config 0 has no interfaces? [ 93.693080][ T7975] netlink: 12 bytes leftover after parsing attributes in process `syz.4.778'. [ 93.697488][ T53] usb 8-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee [ 93.702309][ T53] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 93.705615][ T53] usb 8-1: Product: syz [ 93.712418][ T53] usb 8-1: Manufacturer: syz [ 93.714535][ T53] usb 8-1: SerialNumber: syz [ 93.722433][ T53] usb 8-1: config 0 descriptor?? [ 93.772568][ T7981] netlink: 4 bytes leftover after parsing attributes in process `syz.2.781'. [ 93.913361][ T7992] netlink: 28 bytes leftover after parsing attributes in process `syz.4.786'. [ 93.930935][ T53] usb 8-1: USB disconnect, device number 5 [ 95.178757][ T55] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 95.219750][ T8076] syz.1.823 (8076): /proc/8075/oom_adj is deprecated, please use /proc/8075/oom_score_adj instead. [ 95.338756][ T55] usb 9-1: Using ep0 maxpacket: 32 [ 95.342066][ T55] usb 9-1: config 8 has an invalid interface number: 197 but max is 0 [ 95.345249][ T55] usb 9-1: config 8 has no interface number 0 [ 95.347436][ T55] usb 9-1: config 8 interface 197 has no altsetting 0 [ 95.360907][ T55] usb 9-1: New USB device found, idVendor=1b3d, idProduct=9303, bcdDevice=3e.5a [ 95.363929][ T55] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 95.366461][ T55] usb 9-1: Product: syz [ 95.367789][ T55] usb 9-1: Manufacturer: syz [ 95.369541][ T55] usb 9-1: SerialNumber: syz [ 95.371761][ T8089] A link change request failed with some changes committed already. Interface wg2 may have been left with an inconsistent configuration, please check. [ 95.554363][ T8096] netlink: 4 bytes leftover after parsing attributes in process `syz.3.832'. [ 95.560714][ T8096] team_slave_0: entered promiscuous mode [ 95.562671][ T8096] team_slave_1: entered promiscuous mode [ 95.583170][ T55] ftdi_sio 9-1:8.197: FTDI USB Serial Device converter detected [ 95.587075][ T55] ftdi_sio ttyUSB0: unknown device type: 0x3e5a [ 95.597671][ T55] usb 9-1: USB disconnect, device number 3 [ 95.601148][ T55] ftdi_sio 9-1:8.197: device disconnected [ 96.438790][ T5949] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 96.611611][ T5949] block nbd0: Receive control failed (result -32) [ 96.612310][ T8127] netlink: 20 bytes leftover after parsing attributes in process `syz.4.847'. [ 96.637680][ T40] audit: type=1326 audit(1749874699.001:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8130 comm="syz.3.849" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70ae579 code=0x0 [ 97.175943][ T40] audit: type=1326 audit(1749874699.541:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8173 comm="syz.2.869" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 97.183064][ T40] audit: type=1326 audit(1749874699.541:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8173 comm="syz.2.869" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 97.190095][ T40] audit: type=1326 audit(1749874699.541:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8173 comm="syz.2.869" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 97.197058][ T40] audit: type=1326 audit(1749874699.541:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8173 comm="syz.2.869" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 97.204628][ T40] audit: type=1326 audit(1749874699.541:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8173 comm="syz.2.869" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 97.211911][ T40] audit: type=1326 audit(1749874699.541:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8173 comm="syz.2.869" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7f15579 code=0x7ffc0000 [ 97.218482][ T40] audit: type=1326 audit(1749874699.541:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8173 comm="syz.2.869" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f15598 code=0x7ffc0000 [ 97.225485][ T40] audit: type=1326 audit(1749874699.541:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8173 comm="syz.2.869" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f15598 code=0x7ffc0000 [ 97.232288][ T40] audit: type=1326 audit(1749874699.541:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8173 comm="syz.2.869" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f15598 code=0x7ffc0000 [ 97.372648][ T8182] vxcan1: tx address claim with dest, not broadcast [ 97.950831][ T8236] @: renamed from vlan0 (while UP) [ 98.988107][ T8265] netlink: 4 bytes leftover after parsing attributes in process `syz.2.911'. [ 99.045743][ T8267] vxcan1: entered allmulticast mode [ 99.053691][ T8267] pim6reg: entered allmulticast mode [ 99.389758][ T8302] netlink: 12 bytes leftover after parsing attributes in process `syz.4.929'. [ 100.375814][ T8373] libceph: resolve '0' (ret=-3): failed [ 100.751803][ T8407] netlink: 24 bytes leftover after parsing attributes in process `syz.3.978'. [ 100.755734][ T8407] bond_slave_0: entered allmulticast mode [ 100.760744][ T8404] syz.2.976 (8404) used greatest stack depth: 19704 bytes left [ 100.982401][ T8428] GUP no longer grows the stack in syz.3.988 (8428): 80004000-80005000 (80001000) [ 100.985803][ T8428] CPU: 1 UID: 0 PID: 8428 Comm: syz.3.988 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) [ 100.985829][ T8428] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 100.985841][ T8428] Call Trace: [ 100.985849][ T8428] [ 100.985856][ T8428] dump_stack_lvl+0x16c/0x1f0 [ 100.985907][ T8428] gup_vma_lookup+0x1d2/0x220 [ 100.985931][ T8428] __get_user_pages+0x271/0x3b80 [ 100.985962][ T8428] ? process_vm_rw_core.constprop.0+0x1d8/0x9a0 [ 100.985992][ T8428] ? kasan_save_stack+0x42/0x60 [ 100.986019][ T8428] ? __pfx___get_user_pages+0x10/0x10 [ 100.986040][ T8428] ? register_lock_class+0x41/0x4c0 [ 100.986063][ T8428] ? __ia32_sys_process_vm_writev+0xdf/0x1b0 [ 100.986092][ T8428] ? __do_fast_syscall_32+0x7c/0x3a0 [ 100.986118][ T8428] __gup_longterm_locked+0x20d/0x1850 [ 100.986140][ T8428] ? __lock_acquire+0xb8a/0x1c90 [ 100.986168][ T8428] ? __pfx___gup_longterm_locked+0x10/0x10 [ 100.986202][ T8428] pin_user_pages_remote+0xed/0x140 [ 100.986225][ T8428] ? __pfx_pin_user_pages_remote+0x10/0x10 [ 100.986244][ T8428] ? mm_access+0x22d/0x2e0 [ 100.986276][ T8428] process_vm_rw_core.constprop.0+0x41b/0x9a0 [ 100.986310][ T8428] ? rcu_is_watching+0x12/0xc0 [ 100.986334][ T8428] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 100.986371][ T8428] ? iovec_from_user+0xbb/0x140 [ 100.986417][ T8428] ? iovec_from_user+0xbb/0x140 [ 100.986451][ T8428] process_vm_rw+0x216/0x2c0 [ 100.986481][ T8428] ? __pfx_process_vm_rw+0x10/0x10 [ 100.986521][ T8428] ? __pfx___mm_populate+0x10/0x10 [ 100.986573][ T8428] ? xfd_validate_state+0x61/0x180 [ 100.986599][ T8428] __ia32_sys_process_vm_writev+0xdf/0x1b0 [ 100.986630][ T8428] ? lockdep_hardirqs_on+0x7c/0x110 [ 100.986656][ T8428] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 100.986685][ T8428] __do_fast_syscall_32+0x7c/0x3a0 [ 100.986705][ T8428] do_fast_syscall_32+0x32/0x80 [ 100.986722][ T8428] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 100.986744][ T8428] RIP: 0023:0xf70ae579 [ 100.986759][ T8428] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 100.986776][ T8428] RSP: 002b:00000000f509e55c EFLAGS: 00000296 ORIG_RAX: 000000000000015c [ 100.986793][ T8428] RAX: ffffffffffffffda RBX: 0000000000000251 RCX: 0000000080c22000 [ 100.986804][ T8428] RDX: 000000000000002b RSI: 0000000080c22fa0 RDI: 0000000000000001 [ 100.986815][ T8428] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 100.986841][ T8428] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 100.986851][ T8428] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 100.986878][ T8428] [ 101.118098][ T8432] syz_tun: entered allmulticast mode [ 101.122561][ T8430] syz_tun: left allmulticast mode [ 101.155571][ T8434] IPv6: NLM_F_CREATE should be specified when creating new route [ 101.159512][ T8434] netlink: 'syz.3.991': attribute type 8 has an invalid length. [ 101.704561][ T8458] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1002'. [ 101.708061][ T8458] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1002'. [ 101.771529][ T8462] input: syz0 as /devices/virtual/input/input13 [ 101.830678][ T8464] netem: incorrect ge model size [ 101.833171][ T8464] netem: change failed [ 101.968781][ T839] usb 7-1: new low-speed USB device number 3 using dummy_hcd [ 102.123383][ T839] usb 7-1: unable to get BOS descriptor or descriptor too short [ 102.128121][ T839] usb 7-1: unable to read config index 0 descriptor/start: -71 [ 102.133244][ T839] usb 7-1: can't read configurations, error -71 [ 103.162646][ T8505] netlink: 39 bytes leftover after parsing attributes in process `syz.1.1023'. [ 103.166214][ T8505] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1023'. [ 103.453483][ T8521] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1031'. [ 103.476675][ T6119] kernel read not supported for file /dsp (pid: 6119 comm: kworker/1:5) [ 103.677562][ T8549] netlink: 'syz.2.1045': attribute type 12 has an invalid length. [ 103.737564][ T8556] loop2: detected capacity change from 0 to 7 [ 103.746210][ T6959] Dev loop2: unable to read RDB block 7 [ 103.748019][ T6959] loop2: unable to read partition table [ 103.750740][ T6959] loop2: partition table beyond EOD, truncated [ 103.761362][ T8556] Dev loop2: unable to read RDB block 7 [ 103.763275][ T8556] loop2: unable to read partition table [ 103.765249][ T8556] loop2: partition table beyond EOD, truncated [ 103.767652][ T8556] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5) [ 103.913468][ T8569] ip6gretap0: entered promiscuous mode [ 103.938904][ T8573] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1056'. [ 104.522505][ T8601] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1068'. [ 104.604822][ T8609] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1072'. [ 104.688379][ T8616] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1074'. [ 105.031293][ T8645] syz.2.1087 uses obsolete (PF_INET,SOCK_PACKET) [ 105.126487][ T8657] input: syz0 as /devices/virtual/input/input14 [ 105.144190][ T8661] 8021q: VLANs not supported on gre0 [ 105.542698][ T40] kauditd_printk_skb: 26 callbacks suppressed [ 105.542715][ T40] audit: type=1800 audit(1749874707.911:58): pid=8699 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1113" name="file0" dev="9p" ino=35913824 res=0 errno=0 [ 106.150796][ T8748] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1136'. [ 106.189889][ T8752] loop6: detected capacity change from 0 to 63 [ 106.194933][ T6959] buffer_io_error: 75 callbacks suppressed [ 106.194943][ T6959] Buffer I/O error on dev loop6, logical block 0, async page read [ 106.207881][ T6959] Buffer I/O error on dev loop6, logical block 0, async page read [ 106.210749][ T6959] Buffer I/O error on dev loop6, logical block 0, async page read [ 106.213453][ T6959] Buffer I/O error on dev loop6, logical block 0, async page read [ 106.216161][ T6959] Buffer I/O error on dev loop6, logical block 0, async page read [ 106.220762][ T6959] Buffer I/O error on dev loop6, logical block 0, async page read [ 106.223568][ T6959] Buffer I/O error on dev loop6, logical block 3, async page read [ 106.627698][ T8776] input: syz0 as /devices/virtual/input/input15 [ 107.014597][ T8809] vxcan0: tx address claim with dest, not broadcast [ 107.040256][ T8811] input: syz0 as /devices/virtual/input/input16 [ 107.231738][ T8829] Bluetooth: received HCILL_WAKE_UP_IND in state 2 [ 107.246241][ T8832] netlink: 292 bytes leftover after parsing attributes in process `syz.1.1176'. [ 107.452035][ T8847] bridge: RTM_NEWNEIGH with invalid state 0x8 [ 107.614223][ T8852] block nbd1: Unsupported socket: shutdown callout must be supported. [ 108.618635][ T8916] netlink: 'syz.4.1221': attribute type 4 has an invalid length. [ 108.708804][ T8924] random: crng reseeded on system resumption [ 108.730880][ T8926] dlm: no local IP address has been set [ 108.733362][ T8926] dlm: cannot start dlm midcomms -107 [ 109.309037][ T5945] Bluetooth: hci4: command 0x1003 tx timeout [ 109.309242][ T5949] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 109.362117][ T8940] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1225'. [ 109.534572][ T8953] random: crng reseeded on system resumption [ 110.029437][ T8990] block nbd1: server does not support multiple connections per device. [ 110.035341][ T8990] block nbd1: shutting down sockets [ 110.108949][ T6025] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 110.272914][ T6025] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 110.277159][ T6025] usb 7-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 110.281030][ T6025] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 110.288515][ T6025] usb 7-1: config 0 descriptor?? [ 110.497439][ T6025] usbhid 7-1:0.0: can't add hid device: -71 [ 110.499470][ T6025] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 110.505408][ T6025] usb 7-1: USB disconnect, device number 5 [ 111.088358][ T9041] sp0: Synchronizing with TNC [ 111.321133][ T9056] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1276'. [ 111.353954][ T9060] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1278'. [ 111.371003][ T9062] A link change request failed with some changes committed already. Interface wg2 may have been left with an inconsistent configuration, please check. [ 111.849779][ T53] usb 9-1: new high-speed USB device number 4 using dummy_hcd [ 111.998769][ T53] usb 9-1: Using ep0 maxpacket: 8 [ 112.058609][ T53] usb 9-1: config 0 has no interfaces? [ 112.070689][ T53] usb 9-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee [ 112.074570][ T53] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 112.077899][ T53] usb 9-1: Product: syz [ 112.081307][ T53] usb 9-1: Manufacturer: syz [ 112.083307][ T53] usb 9-1: SerialNumber: syz [ 112.093347][ T53] usb 9-1: config 0 descriptor?? [ 112.283598][ T9108] sp0: Synchronizing with TNC [ 112.309991][ T53] usb 9-1: USB disconnect, device number 4 [ 112.698801][ T838] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 112.868737][ T838] usb 6-1: Using ep0 maxpacket: 32 [ 112.874356][ T838] usb 6-1: config 8 has an invalid interface number: 197 but max is 0 [ 112.877516][ T838] usb 6-1: config 8 has no interface number 0 [ 112.881357][ T838] usb 6-1: config 8 interface 197 has no altsetting 0 [ 112.890943][ T838] usb 6-1: New USB device found, idVendor=1b3d, idProduct=9303, bcdDevice=3e.5a [ 112.894493][ T838] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 112.897621][ T838] usb 6-1: Product: syz [ 112.902084][ T838] usb 6-1: Manufacturer: syz [ 112.903916][ T838] usb 6-1: SerialNumber: syz [ 113.126209][ T838] ftdi_sio 6-1:8.197: FTDI USB Serial Device converter detected [ 113.130537][ T838] ftdi_sio ttyUSB0: unknown device type: 0x3e5a [ 113.135364][ T838] usb 6-1: USB disconnect, device number 5 [ 113.140509][ T838] ftdi_sio 6-1:8.197: device disconnected [ 113.885266][ T9178] sp0: Synchronizing with TNC [ 115.158863][ T5949] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 115.264892][ T9229] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1359'. [ 115.518862][ T839] usb 9-1: new high-speed USB device number 5 using dummy_hcd [ 115.678786][ T839] usb 9-1: Using ep0 maxpacket: 16 [ 115.683222][ T839] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 46, changing to 9 [ 115.698829][ T839] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26247, setting to 1024 [ 115.702555][ T839] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 115.707595][ T839] usb 9-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 115.718777][ T839] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 115.725377][ T839] usb 9-1: config 0 descriptor?? [ 115.739316][ T9231] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 115.958305][ T839] usbhid 9-1:0.0: can't add hid device: -71 [ 115.964805][ T839] usbhid 9-1:0.0: probe with driver usbhid failed with error -71 [ 115.976406][ T839] usb 9-1: USB disconnect, device number 5 [ 116.419066][ T9278] syz_tun: entered allmulticast mode [ 116.421684][ T9277] syz_tun: left allmulticast mode [ 116.427958][ T9280] IPv6: NLM_F_CREATE should be specified when creating new route [ 116.435078][ T9280] netlink: 'syz.2.1381': attribute type 8 has an invalid length. [ 118.335404][ T9365] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1419'. [ 118.348994][ T9365] netem: change failed [ 118.875302][ T9395] netlink: 'syz.2.1434': attribute type 1 has an invalid length. [ 119.263523][ T9410] loop6: detected capacity change from 0 to 4194304 [ 119.425998][ T9419] team0: Device lo is loopback device. Loopback devices can't be added as a team port [ 119.434825][ T9419] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 120.391362][ T9458] overlayfs: workdir and upperdir must be separate subtrees [ 120.476171][ T9462] netlink: 39 bytes leftover after parsing attributes in process `syz.3.1464'. [ 120.480513][ T9462] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1464'. [ 120.983459][ T9498] Bluetooth: received HCILL_WAKE_UP_IND in state 2 [ 122.222005][ T9539] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1500'. [ 122.372002][ T9543] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1502'. [ 122.537885][ T9551] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1507'. [ 122.970287][ T9579] tipc: Started in network mode [ 122.972007][ T9579] tipc: Node identity ac14140f, cluster identity 4711 [ 122.975177][ T9579] tipc: New replicast peer: 255.255.255.255 [ 122.977365][ T9579] tipc: Enabled bearer , priority 10 [ 122.981058][ T9579] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1524'. [ 122.984394][ T9579] tipc: Disabling bearer [ 122.998769][ T5949] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 122.998787][ T5945] Bluetooth: hci4: command 0x1003 tx timeout [ 123.010792][ T9581] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1519'. [ 123.130324][ T9589] 8021q: VLANs not supported on gre0 [ 123.313788][ T6854] kernel write not supported for file /bluetooth/6lowpan_control (pid: 6854 comm: kworker/2:4) [ 123.457245][ T9627] 9p: Unknown access argument `: -22 [ 123.476586][ T9626] Bluetooth: received HCILL_WAKE_UP_IND in state 2 [ 123.482827][ T12] Bluetooth: hci4: Frame reassembly failed (-84) [ 124.248925][ T40] audit: type=1326 audit(1750137126.617:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9652 comm="syz.3.1556" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 124.257517][ T40] audit: type=1326 audit(1750137126.617:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9652 comm="syz.3.1556" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 124.269849][ T40] audit: type=1326 audit(1750137126.617:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9652 comm="syz.3.1556" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ae5a7 code=0x7ffc0000 [ 124.278272][ T40] audit: type=1326 audit(1750137126.617:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9652 comm="syz.3.1556" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 124.298861][ T40] audit: type=1326 audit(1750137126.617:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9652 comm="syz.3.1556" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 124.307310][ T40] audit: type=1326 audit(1750137126.617:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9652 comm="syz.3.1556" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ae5a7 code=0x7ffc0000 [ 124.315566][ T40] audit: type=1326 audit(1750137126.617:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9652 comm="syz.3.1556" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 124.328918][ T40] audit: type=1326 audit(1750137126.617:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9652 comm="syz.3.1556" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ae5a7 code=0x7ffc0000 [ 124.338261][ T40] audit: type=1326 audit(1750137126.617:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9652 comm="syz.3.1556" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 124.346738][ T40] audit: type=1326 audit(1750137126.617:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9652 comm="syz.3.1556" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ae5a7 code=0x7ffc0000 [ 124.400322][ T5970] kernel write not supported for file [eventfd] (pid: 5970 comm: kworker/3:3) [ 125.054079][ T9710] sg_write: data in/out 489/14 bytes for SCSI command 0x3-- guessing data in; [ 125.054079][ T9710] program syz.4.1580 not setting count and/or reply_len properly [ 125.325220][ T9729] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1589'. [ 125.548831][ T5949] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 125.551877][ T5945] Bluetooth: hci4: command 0x1003 tx timeout [ 125.687658][ T9751] input: syz0 as /devices/virtual/input/input19 [ 126.063435][ T9776] Bluetooth: received HCILL_WAKE_UP_IND in state 2 [ 126.893177][ T9842] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1643'. [ 127.878797][ T55] kernel read not supported for file /audio1 (pid: 55 comm: kworker/3:1) [ 128.108783][ T5945] Bluetooth: hci4: command 0x1003 tx timeout [ 128.111038][ T5949] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 128.474293][ T9929] netlink: 'syz.3.1683': attribute type 1 has an invalid length. [ 128.496609][ T9926] syz.1.1678: page allocation failure: order:10, mode:0x40cc0(GFP_KERNEL|__GFP_COMP), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 128.501156][ T9926] CPU: 1 UID: 0 PID: 9926 Comm: syz.1.1678 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) [ 128.501175][ T9926] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 128.501182][ T9926] Call Trace: [ 128.501187][ T9926] [ 128.501192][ T9926] dump_stack_lvl+0x16c/0x1f0 [ 128.501216][ T9926] warn_alloc+0x248/0x3a0 [ 128.501236][ T9926] ? __pfx_warn_alloc+0x10/0x10 [ 128.501252][ T9926] ? psi_memstall_leave+0x1e6/0x2d0 [ 128.501268][ T9926] ? __alloc_pages_direct_compact+0x466/0x580 [ 128.501287][ T9926] ? __pfx___alloc_pages_direct_compact+0x10/0x10 [ 128.501304][ T9926] ? psi_memstall_leave+0x1e1/0x2d0 [ 128.501317][ T9926] ? psi_memstall_leave+0x1e6/0x2d0 [ 128.501333][ T9926] __alloc_frozen_pages_noprof+0xea2/0x23f0 [ 128.501357][ T9926] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 128.501389][ T9926] ? find_held_lock+0x2b/0x80 [ 128.501404][ T9926] ? __lock_acquire+0xb8a/0x1c90 [ 128.501423][ T9926] ? rds_info_getsockopt+0x377/0x4f0 [ 128.501435][ T9926] __alloc_pages_noprof+0xb/0x1b0 [ 128.501452][ T9926] ___kmalloc_large_node+0x84/0x1e0 [ 128.501469][ T9926] ? rds_info_getsockopt+0x377/0x4f0 [ 128.501480][ T9926] __kmalloc_large_node_noprof+0x1c/0x70 [ 128.501493][ T9926] ? __might_fault+0xe3/0x190 [ 128.501511][ T9926] __kmalloc_noprof.cold+0xc/0x61 [ 128.501531][ T9926] rds_info_getsockopt+0x377/0x4f0 [ 128.501544][ T9926] ? __pfx_rds_info_getsockopt+0x10/0x10 [ 128.501556][ T9926] ? find_held_lock+0x2b/0x80 [ 128.501567][ T9926] ? __might_fault+0x13b/0x190 [ 128.501587][ T9926] rds_getsockopt+0x173/0x2d0 [ 128.501602][ T9926] ? __pfx_rds_getsockopt+0x10/0x10 [ 128.501619][ T9926] do_sock_getsockopt+0x3fc/0x800 [ 128.501634][ T9926] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 128.501647][ T9926] ? __fget_files+0x204/0x3c0 [ 128.501670][ T9926] __sys_getsockopt+0x123/0x1b0 [ 128.501690][ T9926] __ia32_sys_getsockopt+0xbc/0x160 [ 128.501707][ T9926] ? lockdep_hardirqs_on+0x7c/0x110 [ 128.501724][ T9926] ? syscall_enter_from_user_mode_prepare+0x68/0xe0 [ 128.501745][ T9926] __do_fast_syscall_32+0x7c/0x3a0 [ 128.501758][ T9926] do_fast_syscall_32+0x32/0x80 [ 128.501769][ T9926] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 128.501783][ T9926] RIP: 0023:0xf7f96579 [ 128.501793][ T9926] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 128.501804][ T9926] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 000000000000016d [ 128.501815][ T9926] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000114 [ 128.501822][ T9926] RDX: 0000000000002716 RSI: 0000000000000000 RDI: 0000000080000000 [ 128.501829][ T9926] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 128.501835][ T9926] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 128.501857][ T9926] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 128.501872][ T9926] [ 128.501943][ T9926] Mem-Info: [ 128.597098][ T9926] active_anon:5349 inactive_anon:1694 isolated_anon:0 [ 128.597098][ T9926] active_file:2022 inactive_file:17202 isolated_file:0 [ 128.597098][ T9926] unevictable:1768 dirty:219 writeback:0 [ 128.597098][ T9926] slab_reclaimable:7840 slab_unreclaimable:56694 [ 128.597098][ T9926] mapped:23690 shmem:2430 pagetables:1437 [ 128.597098][ T9926] sec_pagetables:305 bounce:0 [ 128.597098][ T9926] kernel_misc_reclaimable:0 [ 128.597098][ T9926] free:86932 free_pcp:598 free_cma:0 [ 128.612544][ T9926] Node 0 active_anon:2204kB inactive_anon:0kB active_file:0kB inactive_file:12372kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:7192kB dirty:0kB writeback:0kB shmem:3892kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8140kB pagetables:1592kB sec_pagetables:1112kB all_unreclaimable? yes Balloon:0kB [ 128.626301][ T9926] Node 1 active_anon:19344kB inactive_anon:6776kB active_file:8088kB inactive_file:56436kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:87668kB dirty:876kB writeback:0kB shmem:5828kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:5044kB pagetables:4156kB sec_pagetables:108kB all_unreclaimable? no Balloon:0kB [ 128.646877][ T9926] Node 0 DMA free:2440kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 128.660292][ T9926] lowmem_reserve[]: 0 289 289 289 289 [ 128.662625][ T9926] Node 0 DMA32 free:44932kB boost:18432kB min:31648kB low:34952kB high:38256kB reserved_highatomic:2048KB free_highatomic:188KB active_anon:2128kB inactive_anon:0kB active_file:0kB inactive_file:12372kB unevictable:3536kB writepending:0kB present:1032196kB managed:296396kB mlocked:0kB bounce:0kB free_pcp:1876kB local_pcp:1328kB free_cma:0kB [ 128.674302][ T9926] lowmem_reserve[]: 0 0 0 0 0 [ 128.676268][ T9926] Node 1 DMA32 free:300176kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:2048KB free_highatomic:504KB active_anon:19344kB inactive_anon:6776kB active_file:8088kB inactive_file:56436kB unevictable:3536kB writepending:876kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:976kB local_pcp:140kB free_cma:0kB [ 128.689012][ T9926] lowmem_reserve[]: 0 0 0 0 0 [ 128.690956][ T9926] Node 0 DMA: 41*4kB (U) 15*8kB (UE) 9*16kB (UE) 7*32kB (UE) 0*64kB 0*128kB 1*256kB (E) 1*512kB (E) 1*1024kB (E) 0*2048kB 0*4096kB = 2444kB [ 128.696723][ T9926] Node 0 DMA32: 943*4kB (UMEH) 452*8kB (UMEH) 196*16kB (UME) 373*32kB (UME) 138*64kB (UME) 44*128kB (UME) 14*256kB (UME) 2*512kB (UM) 3*1024kB (M) 0*2048kB 0*4096kB = 44604kB [ 128.703784][ T9926] Node 1 DMA32: 2645*4kB (UMEH) 1566*8kB (UMEH) 1028*16kB (UMEH) 917*32kB (UMEH) 526*64kB (UMEH) 283*128kB (UME) 179*256kB (UME) 96*512kB (UM) 37*1024kB (UM) 14*2048kB (UM) 0*4096kB = 300324kB [ 128.711403][ T9926] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 128.715074][ T9926] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 128.718806][ T9926] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 128.722533][ T9926] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 128.726317][ T9926] 21675 total pagecache pages [ 128.728281][ T9926] 0 pages in swap cache [ 128.730009][ T9926] Free swap = 124984kB [ 128.732233][ T9926] Total swap = 124996kB [ 128.734034][ T9926] 524155 pages RAM [ 128.735646][ T9926] 0 pages HighMem/MovableOnly [ 128.737576][ T9926] 209149 pages reserved [ 128.739640][ T9926] 0 pages cma reserved [ 128.781505][ T9938] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1688'. [ 128.892320][ T9951] block nbd1: Unsupported socket: shutdown callout must be supported. [ 129.416981][ T40] kauditd_printk_skb: 48 callbacks suppressed [ 129.416996][ T40] audit: type=1800 audit(1750137131.787:117): pid=9956 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1695" name="file0" dev="9p" ino=35913824 res=0 errno=0 [ 129.721876][ T9960] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1699'. [ 130.482969][ T9993] hub 1-0:1.0: USB hub found [ 130.484716][ T9993] hub 1-0:1.0: 6 ports detected [ 130.658749][ T53] usb 1-1: new high-speed USB device number 3 using ehci-pci [ 130.843623][ T53] usb 1-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 130.846392][ T53] usb 1-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 130.849099][ T53] usb 1-1: Product: QEMU USB Tablet [ 130.850859][ T53] usb 1-1: Manufacturer: QEMU [ 130.852389][ T53] usb 1-1: SerialNumber: 28754-0000:00:1d.7-1 [ 130.874077][ T53] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb1/1-1/1-1:1.0/0003:0627:0001.0003/input/input20 [ 130.949159][ T53] hid-generic 0003:0627:0001.0003: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 131.158317][T10028] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1728'. [ 131.163062][T10028] ipvlan1: vlans aren't supported yet for dev_uc|mc_add() [ 131.679504][ T6028] kernel read not supported for file /dsp1 (pid: 6028 comm: kworker/0:4) [ 132.072745][ T40] audit: type=1326 audit(1750137134.447:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10105 comm="syz.1.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96579 code=0x7ffc0000 [ 132.081684][ T40] audit: type=1326 audit(1750137134.447:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10105 comm="syz.1.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96579 code=0x7ffc0000 [ 132.092592][ T40] audit: type=1326 audit(1750137134.447:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10105 comm="syz.1.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f96579 code=0x7ffc0000 [ 132.101353][ T40] audit: type=1326 audit(1750137134.447:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10105 comm="syz.1.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96579 code=0x7ffc0000 [ 132.112708][ T40] audit: type=1326 audit(1750137134.447:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10105 comm="syz.1.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96579 code=0x7ffc0000 [ 132.124414][ T40] audit: type=1326 audit(1750137134.457:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10105 comm="syz.1.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7f96579 code=0x7ffc0000 [ 132.135179][ T40] audit: type=1326 audit(1750137134.467:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10105 comm="syz.1.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f96579 code=0x7ffc0000 [ 132.144058][ T40] audit: type=1326 audit(1750137134.467:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10105 comm="syz.1.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f965a7 code=0x7ffc0000 [ 132.153025][ T40] audit: type=1326 audit(1750137134.467:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10105 comm="syz.1.1766" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f96579 code=0x7ffc0000 [ 132.194102][T10111] netem: incorrect gi model size [ 132.196687][T10111] netem: change failed [ 132.525897][T10123] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1772'. [ 132.797338][T10138] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1779'. [ 132.802290][T10138] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1779'. [ 133.122243][T10166] netlink: 'syz.3.1792': attribute type 3 has an invalid length. [ 133.125555][T10166] netlink: 'syz.3.1792': attribute type 1 has an invalid length. [ 133.129400][T10166] netlink: 193500 bytes leftover after parsing attributes in process `syz.3.1792'. [ 133.237336][T10175] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 133.240837][T10175] IPv6: NLM_F_CREATE should be set when creating new route [ 133.243824][T10175] IPv6: NLM_F_CREATE should be set when creating new route [ 133.485291][T10196] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1807'. [ 133.583501][T10208] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 133.589551][T10208] bridge0: port 2(bridge_slave_1) entered disabled state [ 133.593805][T10208] bridge0: port 1(bridge_slave_0) entered disabled state [ 133.806259][T10224] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1820'. [ 134.052442][T10247] dummy0: entered promiscuous mode [ 134.056069][T10246] dummy0: left promiscuous mode [ 134.118758][ T9] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 134.289918][ T9] usb 6-1: Using ep0 maxpacket: 16 [ 134.293761][ T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 134.298102][ T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 134.303631][ T9] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 134.308610][ T9] usb 6-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 134.314523][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 134.319538][ T9] usb 6-1: config 0 descriptor?? [ 134.419031][ T6028] usb 9-1: new high-speed USB device number 6 using dummy_hcd [ 134.578804][ T6028] usb 9-1: Using ep0 maxpacket: 8 [ 134.582143][ T6028] usb 9-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1023 [ 134.585467][ T6028] usb 9-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32 [ 134.590487][ T6028] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 134.593781][ T6028] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 134.596952][ T6028] usb 9-1: Product: syz [ 134.598576][ T6028] usb 9-1: Manufacturer: syz [ 134.600280][ T6028] usb 9-1: SerialNumber: syz [ 134.655973][T10285] bridge0: port 1(bridge_slave_0) entered disabled state [ 134.665144][T10285] bridge0: port 2(bridge_slave_1) entered disabled state [ 134.691098][T10286] netlink: 'syz.2.1847': attribute type 16 has an invalid length. [ 134.694188][T10286] netlink: 'syz.2.1847': attribute type 17 has an invalid length. [ 134.715415][T10286] bridge0: port 1(bridge_slave_0) entered blocking state [ 134.718529][T10286] bridge0: port 1(bridge_slave_0) entered forwarding state [ 134.723499][T10286] bridge0: port 2(bridge_slave_1) entered blocking state [ 134.726548][T10286] bridge0: port 2(bridge_slave_1) entered forwarding state [ 134.736608][ T9] shield 0003:0955:7214.0004: unknown main item tag 0x0 [ 134.739137][ T9] shield 0003:0955:7214.0004: unknown main item tag 0x0 [ 134.744101][ T9] shield 0003:0955:7214.0004: unknown main item tag 0x0 [ 134.746414][ T9] shield 0003:0955:7214.0004: unknown main item tag 0x0 [ 134.749294][ T9] shield 0003:0955:7214.0004: unknown main item tag 0x0 [ 134.753815][ T9] input: HID 0955:7214 Haptics as /devices/virtual/input/input22 [ 134.776551][ T9] shield 0003:0955:7214.0004: Registered Thunderstrike controller [ 134.779805][ T9] shield 0003:0955:7214.0004: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.1-1/input0 [ 134.813425][ T6028] cdc_ncm 9-1:1.0: bind() failure [ 134.817182][ T6028] cdc_ncm 9-1:1.1: CDC Union missing and no IAD found [ 134.820446][ T6028] cdc_ncm 9-1:1.1: bind() failure [ 134.823536][ T6028] usb 9-1: USB disconnect, device number 6 [ 134.935769][T10230] random: crng reseeded on system resumption [ 134.955356][ T9] shield 0003:0955:7214.0004: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 134.955371][ T55] usb 6-1: USB disconnect, device number 6 [ 134.967165][ T9] shield 0003:0955:7214.0004: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 134.971864][ T9] shield 0003:0955:7214.0004: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 134.976381][ T9] shield 0003:0955:7214.0004: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 135.471850][T10313] A link change request failed with some changes committed already. Interface wg2 may have been left with an inconsistent configuration, please check. [ 137.069018][ T6854] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 137.218820][ T6854] usb 6-1: Using ep0 maxpacket: 8 [ 137.222712][ T6854] usb 6-1: config 0 has no interfaces? [ 137.226952][ T6854] usb 6-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee [ 137.231478][ T6854] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 137.235050][ T6854] usb 6-1: Product: syz [ 137.236746][ T6854] usb 6-1: Manufacturer: syz [ 137.238789][ T6854] usb 6-1: SerialNumber: syz [ 137.245446][ T6854] usb 6-1: config 0 descriptor?? [ 137.454114][ T6854] usb 6-1: USB disconnect, device number 7 [ 137.471342][ T1421] ieee802154 phy0 wpan0: encryption failed: -22 [ 137.473934][ T1421] ieee802154 phy1 wpan1: encryption failed: -22 [ 137.995194][ T40] kauditd_printk_skb: 131 callbacks suppressed [ 137.995210][ T40] audit: type=1326 audit(1750137140.367:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10379 comm="syz.1.1891" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96579 code=0x7ffc0000 [ 138.015947][ T40] audit: type=1326 audit(1750137140.367:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10379 comm="syz.1.1891" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96579 code=0x7ffc0000 [ 138.027427][ T40] audit: type=1326 audit(1750137140.367:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10379 comm="syz.1.1891" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f96579 code=0x7ffc0000 [ 138.037312][ T40] audit: type=1326 audit(1750137140.367:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10379 comm="syz.1.1891" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96579 code=0x7ffc0000 [ 138.047065][ T40] audit: type=1326 audit(1750137140.367:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10379 comm="syz.1.1891" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f96579 code=0x7ffc0000 [ 138.056625][ T40] audit: type=1326 audit(1750137140.367:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10379 comm="syz.1.1891" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7f96579 code=0x7ffc0000 [ 138.066170][ T40] audit: type=1326 audit(1750137140.387:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10379 comm="syz.1.1891" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f96598 code=0x7ffc0000 [ 138.079650][ T40] audit: type=1326 audit(1750137140.387:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10379 comm="syz.1.1891" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f96598 code=0x7ffc0000 [ 138.091171][ T40] audit: type=1326 audit(1750137140.387:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10379 comm="syz.1.1891" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f96598 code=0x7ffc0000 [ 138.102303][ T40] audit: type=1326 audit(1750137140.387:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10379 comm="syz.1.1891" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f96598 code=0x7ffc0000 [ 138.619400][T10429] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1914'. [ 138.718809][T10439] @: renamed from vlan0 (while UP) [ 138.894399][T10453] libceph: resolve '0' (ret=-3): failed [ 139.058913][T10458] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1927'. [ 139.063611][T10458] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1927'. [ 139.330049][T10487] input: syz0 as /devices/virtual/input/input23 [ 139.384051][T10492] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1943'. [ 139.388036][T10492] bond_slave_0: entered allmulticast mode [ 139.427639][T10494] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1952'. [ 140.877961][ T5970] kernel read not supported for file /dsp (pid: 5970 comm: kworker/3:3) [ 142.017051][T10547] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1965'. [ 142.305787][T10563] netlink: 'syz.2.1974': attribute type 2 has an invalid length. [ 142.374296][ T9] kernel write not supported for file /uhid (pid: 9 comm: kworker/0:0) [ 142.435021][T10567] Bluetooth: hci4: Frame reassembly failed (-84) [ 142.438360][ T46] Bluetooth: hci4: Frame reassembly failed (-84) [ 142.444252][ T46] Bluetooth: hci4: Frame reassembly failed (-84) [ 142.447977][ T1143] Bluetooth: hci4: Frame reassembly failed (-84) [ 142.950339][ T5945] block nbd1: Receive control failed (result -32) [ 144.508982][ T5949] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 144.509295][ T5955] Bluetooth: hci4: command 0x1003 tx timeout [ 145.185878][T10609] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1994'. [ 145.228764][ T5945] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 145.229034][ T5955] Bluetooth: hci5: command 0x1003 tx timeout [ 145.880267][T10631] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2005'. [ 146.157217][T10638] Bluetooth: hci4: Frame reassembly failed (-84) [ 146.292441][ T5955] block nbd2: Receive control failed (result -32) [ 148.188914][ T5955] Bluetooth: hci4: command 0x1003 tx timeout [ 148.188935][ T5945] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 148.249244][ T40] kauditd_printk_skb: 810 callbacks suppressed [ 148.249255][ T40] audit: type=1326 audit(1750137150.627:1078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10652 comm="syz.4.2013" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000 [ 148.258808][ T40] audit: type=1326 audit(1750137150.627:1079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10652 comm="syz.4.2013" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000 [ 148.288707][ T40] audit: type=1326 audit(1750137150.637:1080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10652 comm="syz.4.2013" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7fa8579 code=0x7ffc0000 [ 148.295318][ T40] audit: type=1326 audit(1750137150.637:1081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10652 comm="syz.4.2013" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000 [ 148.301881][ T40] audit: type=1326 audit(1750137150.637:1082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10652 comm="syz.4.2013" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000 [ 148.308259][ T40] audit: type=1326 audit(1750137150.637:1083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10652 comm="syz.4.2013" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7fa8579 code=0x7ffc0000 [ 148.328800][ T40] audit: type=1326 audit(1750137150.637:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10652 comm="syz.4.2013" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa8598 code=0x7ffc0000 [ 148.335315][ T40] audit: type=1326 audit(1750137150.637:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10652 comm="syz.4.2013" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa8598 code=0x7ffc0000 [ 148.356563][ T40] audit: type=1326 audit(1750137150.637:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10652 comm="syz.4.2013" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa8598 code=0x7ffc0000 [ 148.368101][ T40] audit: type=1326 audit(1750137150.637:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10652 comm="syz.4.2013" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa8598 code=0x7ffc0000 [ 148.881708][T10681] libceph: resolve '0' (ret=-3): failed [ 149.541127][T10728] syz_tun: entered allmulticast mode [ 149.544104][T10727] syz_tun: left allmulticast mode [ 149.702248][T10746] IPv6: NLM_F_CREATE should be specified when creating new route [ 149.705195][T10746] netlink: 'syz.4.2055': attribute type 8 has an invalid length. [ 150.690877][T10754] block nbd3: server does not support multiple connections per device. [ 150.693512][T10754] block nbd3: shutting down sockets [ 151.286289][T10783] netem: incorrect ge model size [ 151.288082][T10783] netem: change failed [ 152.138769][ T55] usb 9-1: new high-speed USB device number 7 using dummy_hcd [ 152.289982][ T55] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 152.293588][ T55] usb 9-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 152.296839][ T55] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 152.300625][ T55] usb 9-1: config 0 descriptor?? [ 152.511656][ T55] usbhid 9-1:0.0: can't add hid device: -71 [ 152.513603][ T55] usbhid 9-1:0.0: probe with driver usbhid failed with error -71 [ 152.516840][ T55] usb 9-1: USB disconnect, device number 7 [ 153.119249][T10830] vxcan1: tx address claim with dest, not broadcast [ 153.542082][T10861] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2104'. [ 153.545841][T10861] bond_slave_0: entered allmulticast mode [ 154.368718][ T53] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 154.518744][ T53] usb 7-1: Using ep0 maxpacket: 16 [ 154.529545][ T53] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 46, changing to 9 [ 154.532911][ T53] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26247, setting to 1024 [ 154.536353][ T53] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 154.540432][ T53] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 154.543256][ T53] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 154.546859][ T53] usb 7-1: config 0 descriptor?? [ 154.549591][T10890] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 154.757375][ T53] usbhid 7-1:0.0: can't add hid device: -71 [ 154.759569][ T53] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 154.765723][ T53] usb 7-1: USB disconnect, device number 6 [ 154.844135][T10909] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2126'. [ 154.847025][T10909] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2126'. [ 154.953669][T10916] netem: incorrect ge model size [ 154.955338][T10916] netem: change failed [ 154.959514][T10918] input: syz0 as /devices/virtual/input/input24 [ 155.094552][T10931] netlink: 'syz.3.2144': attribute type 1 has an invalid length. [ 155.346325][ T40] kauditd_printk_skb: 5374 callbacks suppressed [ 155.346342][ T40] audit: type=1800 audit(1750137157.717:6462): pid=10937 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2147" name="file0" dev="9p" ino=35913824 res=0 errno=0 [ 155.370808][T10943] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2139'. [ 155.382204][T10945] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2137'. [ 155.387218][T10945] netem: change failed [ 155.924923][ T55] kernel read not supported for file /dsp (pid: 55 comm: kworker/3:1) [ 156.252980][T10977] team0: Device ªªªªªª†³?ÂHº is loopback device. Loopback devices can't be added as a team port [ 156.257408][T10977] A link change request failed with some changes committed already. Interface ªªªªªª†³?ÂHº may have been left with an inconsistent configuration, please check. [ 156.291434][T10979] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2158'. [ 156.482056][T10981] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2168'. [ 157.100487][T10996] block nbd3: server does not support multiple connections per device. [ 157.103162][T10996] block nbd3: shutting down sockets [ 157.334391][T11016] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2172'. [ 157.549089][T11023] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2183'. [ 157.720996][T11036] loop6: detected capacity change from 0 to 4194304 [ 158.199326][T11050] block nbd3: server does not support multiple connections per device. [ 158.202758][T11050] block nbd3: shutting down sockets [ 158.424711][T11066] overlayfs: workdir and upperdir must be separate subtrees [ 159.020777][ T839] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 159.180897][ T839] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 159.185383][ T839] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 159.189341][ T839] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 159.195686][ T839] usb 6-1: config 0 descriptor?? [ 159.415783][ T839] usbhid 6-1:0.0: can't add hid device: -71 [ 159.418379][ T839] usbhid 6-1:0.0: probe with driver usbhid failed with error -71 [ 159.427039][ T839] usb 6-1: USB disconnect, device number 8 [ 160.837290][T11173] netlink: 'syz.4.2236': attribute type 1 has an invalid length. [ 163.057542][T11188] team0: Device lo is loopback device. Loopback devices can't be added as a team port [ 163.064620][T11188] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 163.239419][T11195] loop6: detected capacity change from 0 to 4194304 [ 167.039814][T11236] loop6: detected capacity change from 0 to 4194304 [ 167.079149][T11238] overlayfs: workdir and upperdir must be separate subtrees [ 167.651623][T11285] bridge_slave_0: left allmulticast mode [ 167.653572][T11285] bridge0: port 1(bridge_slave_0) entered disabled state [ 167.660066][T11285] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 167.742783][T11294] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2293'. [ 168.706450][T11325] netlink: 'syz.2.2308': attribute type 6 has an invalid length. [ 169.024158][T11350] tipc: Started in network mode [ 169.025838][T11350] tipc: Node identity ac14140f, cluster identity 4711 [ 169.028226][T11350] tipc: New replicast peer: 255.255.255.255 [ 169.030699][T11350] tipc: Enabled bearer , priority 10 [ 169.034122][T11350] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2318'. [ 169.037838][T11350] tipc: Disabling bearer [ 169.581140][ T29] kernel write not supported for file /bluetooth/6lowpan_control (pid: 29 comm: kworker/1:0) [ 169.656847][T11406] netlink: 'syz.3.2346': attribute type 8 has an invalid length. [ 169.785488][T11415] vivid-004: disconnect [ 169.791804][T11414] 9p: Unknown access argument `: -22 [ 169.794987][T11411] vivid-004: reconnect [ 169.933172][ T5945] Bluetooth: hci3: unexpected event for opcode 0x2036 [ 170.084589][ T40] audit: type=1326 audit(1750399572.449:6463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11435 comm="syz.3.2358" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 170.110643][ T40] audit: type=1326 audit(1750399572.449:6464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11435 comm="syz.3.2358" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 170.117836][ T40] audit: type=1326 audit(1750399572.469:6465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11435 comm="syz.3.2358" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 170.158762][ T40] audit: type=1326 audit(1750399572.469:6466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11435 comm="syz.3.2358" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 170.166789][ T40] audit: type=1326 audit(1750399572.469:6467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11435 comm="syz.3.2358" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 170.178754][ T40] audit: type=1326 audit(1750399572.469:6468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11435 comm="syz.3.2358" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 170.186208][ T40] audit: type=1326 audit(1750399572.469:6469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11435 comm="syz.3.2358" exe="/syz-executor" sig=0 arch=40000003 syscall=133 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 170.218740][ T40] audit: type=1326 audit(1750399572.469:6470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11435 comm="syz.3.2358" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 171.463957][ T5970] kernel write not supported for file [eventfd] (pid: 5970 comm: kworker/3:3) [ 171.642991][T11505] Falling back ldisc for ptm0. [ 171.734956][T11513] TCP: TCP_TX_DELAY enabled [ 172.820168][T11555] binder: 11554:11555 ioctl c00c620f 80000040 returned -22 [ 172.946588][T11563] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2418'. [ 172.948315][ T40] audit: type=1326 audit(1750399575.309:6471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.4.2392" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fa8579 code=0x7ffc0000 [ 172.966315][ T40] audit: type=1326 audit(1750399575.309:6472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.4.2392" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fa85a7 code=0x7ffc0000 [ 173.055577][T11565] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2419'. [ 173.062941][T11565] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2419'. [ 173.168805][ T5970] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 173.329921][ T5970] usb 7-1: unable to get BOS descriptor or descriptor too short [ 173.336449][ T5970] usb 7-1: unable to read config index 0 descriptor/start: -71 [ 173.339805][ T5970] usb 7-1: can't read configurations, error -71 [ 174.477838][T11649] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2466'. [ 174.568750][ T10] usb 9-1: new high-speed USB device number 8 using dummy_hcd [ 174.728959][ T10] usb 9-1: Using ep0 maxpacket: 8 [ 174.732791][ T10] usb 9-1: config index 0 descriptor too short (expected 301, got 45) [ 174.735375][ T10] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 174.738365][ T10] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 174.748720][ T10] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 174.751789][ T10] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 174.755769][ T10] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 174.758616][ T10] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 174.981167][ T10] usb 9-1: GET_CAPABILITIES returned 0 [ 174.983455][ T10] usbtmc 9-1:16.0: can't read capabilities [ 175.151054][T11694] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2480'. [ 175.182624][ T53] usb 9-1: USB disconnect, device number 8 [ 175.290853][ T40] kauditd_printk_skb: 1026 callbacks suppressed [ 175.290865][ T40] audit: type=1800 audit(1750399577.659:7499): pid=11705 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2485" name="SYSV00000000" dev="tmpfs" ino=1 res=0 errno=0 [ 175.392252][ T5955] Bluetooth: hci1: command 0x0406 tx timeout [ 175.502334][T11713] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 176.189766][ T1021] kernel read not supported for file /audio1 (pid: 1021 comm: kworker/1:2) [ 176.281100][T11752] netlink: 'syz.2.2508': attribute type 1 has an invalid length. [ 176.514325][T11766] usb 1-1: USB disconnect, device number 3 [ 176.564575][T11766] hub 1-0:1.0: USB hub found [ 176.566205][T11766] hub 1-0:1.0: 6 ports detected [ 176.759976][ T1021] usb 1-1: new high-speed USB device number 4 using ehci-pci [ 176.970399][ T1021] usb 1-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 176.973270][ T1021] usb 1-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 176.975808][ T1021] usb 1-1: Product: QEMU USB Tablet [ 176.977516][ T1021] usb 1-1: Manufacturer: QEMU [ 176.979161][ T1021] usb 1-1: SerialNumber: 28754-0000:00:1d.7-1 [ 177.001804][ T1021] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb1/1-1/1-1:1.0/0003:0627:0001.0005/input/input27 [ 177.089916][ T1021] hid-generic 0003:0627:0001.0005: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 177.378817][ T5970] kernel read not supported for file /dsp1 (pid: 5970 comm: kworker/3:3) [ 177.452316][T11825] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2541'. [ 177.460468][T11825] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2541'. [ 177.602287][ T40] audit: type=1800 audit(1750399579.969:7500): pid=11835 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2547" name="bus" dev="tmpfs" ino=3442 res=0 errno=0 [ 177.784413][T11851] dummy0: entered promiscuous mode [ 177.786706][T11849] dummy0: left promiscuous mode [ 178.169802][ T40] audit: type=1326 audit(1750399580.529:7501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11874 comm="syz.3.2564" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 178.176906][ T40] audit: type=1326 audit(1750399580.529:7502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11874 comm="syz.3.2564" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 178.186648][ T40] audit: type=1326 audit(1750399580.539:7503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11874 comm="syz.3.2564" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 178.195945][ T40] audit: type=1326 audit(1750399580.539:7504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11874 comm="syz.3.2564" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 178.202833][ T40] audit: type=1326 audit(1750399580.539:7505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11874 comm="syz.3.2564" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 178.209764][ T40] audit: type=1326 audit(1750399580.539:7506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11874 comm="syz.3.2564" exe="/syz-executor" sig=0 arch=40000003 syscall=369 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 178.217146][ T40] audit: type=1326 audit(1750399580.539:7507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11874 comm="syz.3.2564" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 178.224034][ T40] audit: type=1326 audit(1750399580.539:7508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11874 comm="syz.3.2564" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000 [ 178.241919][T11877] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.245400][T11877] bridge0: port 2(bridge_slave_1) entered disabled state [ 178.295515][T11877] netlink: 'syz.4.2565': attribute type 16 has an invalid length. [ 178.299000][T11877] netlink: 'syz.4.2565': attribute type 17 has an invalid length. [ 178.318980][T11877] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.322106][T11877] bridge0: port 1(bridge_slave_0) entered forwarding state [ 178.326981][T11877] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.330101][T11877] bridge0: port 2(bridge_slave_1) entered forwarding state [ 179.174311][T11912] bio_check_eod: 26 callbacks suppressed [ 179.174323][T11912] syz.1.2590: attempt to access beyond end of device [ 179.174323][T11912] loop3: rw=0, sector=64, nr_sectors = 2 limit=0 [ 179.181720][T11912] isofs_fill_super: bread failed, dev=loop3, iso_blknum=16, block=32 [ 179.468971][T11927] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2588'. [ 180.031852][T11933] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2600'. [ 180.040828][T11933] ipvlan1: vlans aren't supported yet for dev_uc|mc_add() [ 180.582960][T11972] usb 1-1: USB disconnect, device number 4 [ 180.642772][T11972] hub 1-0:1.0: USB hub found [ 180.644419][T11972] hub 1-0:1.0: 6 ports detected [ 180.808729][ T5970] usb 1-1: new high-speed USB device number 5 using ehci-pci [ 180.995163][ T5970] usb 1-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 181.009335][ T5970] usb 1-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 181.012524][ T5970] usb 1-1: Product: QEMU USB Tablet [ 181.014628][ T5970] usb 1-1: Manufacturer: QEMU [ 181.016507][ T5970] usb 1-1: SerialNumber: 28754-0000:00:1d.7-1 [ 181.056420][ T5970] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb1/1-1/1-1:1.0/0003:0627:0001.0006/input/input29 [ 181.137411][ T5970] hid-generic 0003:0627:0001.0006: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 182.330466][T12009] usb 1-1: USB disconnect, device number 5 [ 182.351868][T12013] netlink: 'syz.4.2636': attribute type 3 has an invalid length. [ 182.354308][T12013] netlink: 'syz.4.2636': attribute type 1 has an invalid length. [ 182.356709][T12013] netlink: 193500 bytes leftover after parsing attributes in process `syz.4.2636'. [ 182.367767][T12009] hub 1-0:1.0: USB hub found [ 182.369648][T12009] hub 1-0:1.0: 6 ports detected [ 182.548821][ T29] usb 1-1: new high-speed USB device number 6 using ehci-pci [ 182.731076][ T29] usb 1-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00 [ 182.733914][ T29] usb 1-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10 [ 182.736927][ T29] usb 1-1: Product: QEMU USB Tablet [ 182.738600][ T29] usb 1-1: Manufacturer: QEMU [ 182.748872][ T29] usb 1-1: SerialNumber: 28754-0000:00:1d.7-1 [ 182.766267][ T29] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb1/1-1/1-1:1.0/0003:0627:0001.0007/input/input30 [ 182.830273][ T29] hid-generic 0003:0627:0001.0007: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0 [ 183.011285][T12042] netlink: 'syz.2.2641': attribute type 3 has an invalid length. [ 183.018729][T12042] netlink: 'syz.2.2641': attribute type 1 has an invalid length. [ 183.021470][T12042] netlink: 193500 bytes leftover after parsing attributes in process `syz.2.2641'. [ 183.864310][T12054] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 183.871949][T12054] bridge0: port 2(bridge_slave_1) entered disabled state [ 183.874472][T12054] bridge0: port 1(bridge_slave_0) entered disabled state [ 185.130919][ T5970] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 185.291315][ T5970] usb 7-1: Using ep0 maxpacket: 16 [ 185.294813][ T5970] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 185.298286][ T5970] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 185.303631][ T5970] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 185.310907][ T5970] usb 7-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 185.314887][ T5970] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 185.324044][ T5970] usb 7-1: config 0 descriptor?? [ 185.628908][ T5955] Bluetooth: hci3: command 0x040f tx timeout [ 185.736294][ T5970] shield 0003:0955:7214.0008: unknown main item tag 0x0 [ 185.738601][ T5970] shield 0003:0955:7214.0008: unknown main item tag 0x0 [ 185.748758][ T5970] shield 0003:0955:7214.0008: unknown main item tag 0x0 [ 185.750929][ T5970] shield 0003:0955:7214.0008: unknown main item tag 0x0 [ 185.753088][ T5970] shield 0003:0955:7214.0008: unknown main item tag 0x0 [ 185.756355][ T5970] input: HID 0955:7214 Haptics as /devices/virtual/input/input31 [ 185.758809][T12096] Falling back ldisc for ptm0. [ 185.773979][ T5970] shield 0003:0955:7214.0008: Registered Thunderstrike controller [ 185.776799][ T5970] shield 0003:0955:7214.0008: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.2-1/input0 [ 185.809613][ T40] kauditd_printk_skb: 14 callbacks suppressed [ 185.809625][ T40] audit: type=1326 audit(1750399588.179:7523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12102 comm="syz.4.2670" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000 [ 185.829176][ T40] audit: type=1326 audit(1750399588.179:7524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12102 comm="syz.4.2670" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000 [ 185.835833][ T40] audit: type=1326 audit(1750399588.189:7525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12102 comm="syz.4.2670" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fa8579 code=0x7ffc0000 [ 185.847833][ T40] audit: type=1326 audit(1750399588.189:7526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12102 comm="syz.4.2670" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fa8579 code=0x7ffc0000 [ 185.854842][ T40] audit: type=1326 audit(1750399588.189:7527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12102 comm="syz.4.2670" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000 [ 185.870632][ T40] audit: type=1326 audit(1750399588.189:7528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12102 comm="syz.4.2670" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000 [ 185.877952][ T40] audit: type=1326 audit(1750399588.189:7529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12102 comm="syz.4.2670" exe="/syz-executor" sig=0 arch=40000003 syscall=133 compat=1 ip=0xf7fa8579 code=0x7ffc0000 [ 185.886330][ T40] audit: type=1326 audit(1750399588.189:7530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12102 comm="syz.4.2670" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000 [ 185.894030][ T40] audit: type=1326 audit(1750399588.189:7531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12102 comm="syz.4.2670" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x7ffc0000 [ 185.935203][T12091] random: crng reseeded on system resumption [ 185.943620][ T5970] shield 0003:0955:7214.0008: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 185.947740][ T6087] usb 7-1: USB disconnect, device number 9 [ 185.952946][ T5970] shield 0003:0955:7214.0008: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO [ 185.956340][ T5970] shield 0003:0955:7214.0008: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV [ 185.959978][T12110] Falling back ldisc for ptm0. [ 185.961597][ T6087] ------------[ cut here ]------------ [ 185.963427][ T6087] workqueue: work disable count underflowed [ 185.965309][ T6087] WARNING: CPU: 3 PID: 6087 at kernel/workqueue.c:4328 enable_work+0x2f8/0x340 [ 185.968096][ T6087] Modules linked in: [ 185.969612][ T6087] CPU: 3 UID: 0 PID: 6087 Comm: kworker/3:5 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) [ 185.975034][ T6087] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 185.978349][ T6087] Workqueue: usb_hub_wq hub_event [ 185.979963][ T6087] RIP: 0010:enable_work+0x2f8/0x340 [ 185.981595][ T6087] Code: 89 ee e8 1b 03 38 00 45 84 ed 0f 85 29 fe ff ff e8 2d 08 38 00 c6 05 0a ff 0c 0f 01 90 48 c7 c7 80 fe ab 8b e8 d9 1f f7 ff 90 <0f> 0b 90 90 e9 06 fe ff ff 48 89 ef e8 a7 e0 9d 00 e9 aa fe ff ff [ 185.987474][ T6087] RSP: 0018:ffffc9000467f3c0 EFLAGS: 00010086 [ 185.989369][ T6087] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817aa1c8 [ 185.991845][ T6087] RDX: ffff888023d3a440 RSI: ffffffff817aa1d5 RDI: 0000000000000001 [ 185.994303][ T6087] RBP: ffff8880256f5730 R08: 0000000000000001 R09: 0000000000000000 [ 185.996829][ T6087] R10: 0000000000000000 R11: 0000000000000001 R12: 1ffff920008cfe79 [ 185.999336][ T6087] R13: 0000000000000000 R14: ffff8880256f5728 R15: ffffffff8fe69ae0 [ 186.001884][ T6087] FS: 0000000000000000(0000) GS:ffff888097861000(0000) knlGS:0000000000000000 [ 186.004656][ T6087] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 186.006724][ T6087] CR2: 000000002f609ffc CR3: 000000004b6e7000 CR4: 0000000000352ef0 [ 186.009238][ T6087] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 186.011737][ T6087] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 186.014971][ T6087] Call Trace: [ 186.014979][ T6087] [ 186.014986][ T6087] ? __pfx_enable_work+0x10/0x10 [ 186.018743][ T6087] ? __thermal_zone_cdev_unbind+0x6c/0x6a0 [ 186.020652][ T6087] __cancel_work_sync+0xe7/0x130 [ 186.022192][ T6087] thermal_zone_device_unregister+0x239/0x450 [ 186.022208][ T6087] ? __pfx_shield_remove+0x10/0x10 [ 186.026046][ T6087] power_supply_unregister+0x10a/0x150 [ 186.027745][ T6087] shield_remove+0x75/0x130 [ 186.029473][ T6087] ? __pfx_shield_remove+0x10/0x10 [ 186.029491][ T6087] hid_device_remove+0xce/0x260 [ 186.029507][ T6087] ? __pfx_hid_device_remove+0x10/0x10 [ 186.029523][ T6087] device_remove+0xcb/0x170 [ 186.029540][ T6087] device_release_driver_internal+0x44b/0x620 [ 186.029562][ T6087] bus_remove_device+0x22f/0x420 [ 186.029579][ T6087] device_del+0x396/0x9f0 [ 186.029597][ T6087] ? __pfx_device_del+0x10/0x10 [ 186.029613][ T6087] ? do_raw_spin_lock+0x12c/0x2b0 [ 186.029630][ T6087] ? find_held_lock+0x2b/0x80 [ 186.029643][ T6087] hid_destroy_device+0x19c/0x240 [ 186.029659][ T6087] usbhid_disconnect+0xa0/0xe0 [ 186.029670][ T6087] usb_unbind_interface+0x1da/0x9a0 [ 186.029689][ T6087] ? kernfs_remove_by_name_ns+0xbe/0x110 [ 186.029701][ T6087] ? __pfx_usb_unbind_interface+0x10/0x10 [ 186.029717][ T6087] device_remove+0x122/0x170 [ 186.029733][ T6087] device_release_driver_internal+0x44b/0x620 [ 186.029753][ T6087] bus_remove_device+0x22f/0x420 [ 186.029770][ T6087] device_del+0x396/0x9f0 [ 186.029788][ T6087] ? __pfx_device_del+0x10/0x10 [ 186.029803][ T6087] ? kobject_put+0x210/0x5a0 [ 186.029818][ T6087] usb_disable_device+0x355/0x7d0 [ 186.029836][ T6087] usb_disconnect+0x2e1/0x920 [ 186.029857][ T6087] hub_event+0x1c57/0x4fa0 [ 186.029881][ T6087] ? __lock_acquire+0xb8a/0x1c90 [ 186.029897][ T6087] ? __pfx_hub_event+0x10/0x10 [ 186.029910][ T6087] ? assoc_array_gc+0x240/0x15b0 [ 186.029920][ T6087] ? finish_task_switch.isra.0+0x221/0xc10 [ 186.029938][ T6087] ? rcu_is_watching+0x12/0xc0 [ 186.029952][ T6087] process_one_work+0x9cf/0x1b70 [ 186.029974][ T6087] ? __pfx_process_one_work+0x10/0x10 [ 186.029995][ T6087] ? assign_work+0x1a0/0x250 [ 186.030011][ T6087] worker_thread+0x6c8/0xf10 [ 186.030032][ T6087] ? __kthread_parkme+0x19e/0x250 [ 186.030046][ T6087] ? __pfx_worker_thread+0x10/0x10 [ 186.030063][ T6087] kthread+0x3c2/0x780 [ 186.030078][ T6087] ? __pfx_kthread+0x10/0x10 [ 186.030094][ T6087] ? rcu_is_watching+0x12/0xc0 [ 186.030105][ T6087] ? __pfx_kthread+0x10/0x10 [ 186.030121][ T6087] ret_from_fork+0x5d4/0x6f0 [ 186.030136][ T6087] ? __pfx_kthread+0x10/0x10 [ 186.030151][ T6087] ret_from_fork_asm+0x1a/0x30 [ 186.030170][ T6087] [ 186.030176][ T6087] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 186.030184][ T6087] CPU: 3 UID: 0 PID: 6087 Comm: kworker/3:5 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(full) [ 186.030199][ T6087] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 186.030208][ T6087] Workqueue: usb_hub_wq hub_event [ 186.030222][ T6087] Call Trace: [ 186.030226][ T6087] [ 186.030230][ T6087] dump_stack_lvl+0x3d/0x1f0 [ 186.030248][ T6087] panic+0x71c/0x800 [ 186.030263][ T6087] ? __pfx_panic+0x10/0x10 [ 186.030279][ T6087] ? show_trace_log_lvl+0x29b/0x3e0 [ 186.030298][ T6087] ? check_panic_on_warn+0x1f/0xb0 [ 186.030314][ T6087] ? enable_work+0x2f8/0x340 [ 186.030331][ T6087] check_panic_on_warn+0xab/0xb0 [ 186.030347][ T6087] __warn+0xf6/0x3c0 [ 186.030361][ T6087] ? __pfx_vprintk_emit+0x10/0x10 [ 186.030373][ T6087] ? enable_work+0x2f8/0x340 [ 186.030411][ T6087] report_bug+0x3c3/0x580 [ 186.030434][ T6087] ? enable_work+0x2f8/0x340 [ 186.030452][ T6087] handle_bug+0x184/0x210 [ 186.030463][ T6087] exc_invalid_op+0x17/0x50 [ 186.030475][ T6087] asm_exc_invalid_op+0x1a/0x20 [ 186.030486][ T6087] RIP: 0010:enable_work+0x2f8/0x340 [ 186.030504][ T6087] Code: 89 ee e8 1b 03 38 00 45 84 ed 0f 85 29 fe ff ff e8 2d 08 38 00 c6 05 0a ff 0c 0f 01 90 48 c7 c7 80 fe ab 8b e8 d9 1f f7 ff 90 <0f> 0b 90 90 e9 06 fe ff ff 48 89 ef e8 a7 e0 9d 00 e9 aa fe ff ff [ 186.030515][ T6087] RSP: 0018:ffffc9000467f3c0 EFLAGS: 00010086 [ 186.030524][ T6087] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817aa1c8 [ 186.030531][ T6087] RDX: ffff888023d3a440 RSI: ffffffff817aa1d5 RDI: 0000000000000001 [ 186.030538][ T6087] RBP: ffff8880256f5730 R08: 0000000000000001 R09: 0000000000000000 [ 186.030545][ T6087] R10: 0000000000000000 R11: 0000000000000001 R12: 1ffff920008cfe79 [ 186.030552][ T6087] R13: 0000000000000000 R14: ffff8880256f5728 R15: ffffffff8fe69ae0 [ 186.030563][ T6087] ? __warn_printk+0x198/0x350 [ 186.030577][ T6087] ? __warn_printk+0x1a5/0x350 [ 186.030594][ T6087] ? __pfx_enable_work+0x10/0x10 [ 186.030613][ T6087] ? __thermal_zone_cdev_unbind+0x6c/0x6a0 [ 186.030627][ T6087] __cancel_work_sync+0xe7/0x130 [ 186.030638][ T6087] thermal_zone_device_unregister+0x239/0x450 [ 186.030651][ T6087] ? __pfx_shield_remove+0x10/0x10 [ 186.030668][ T6087] power_supply_unregister+0x10a/0x150 [ 186.030680][ T6087] shield_remove+0x75/0x130 [ 186.030696][ T6087] ? __pfx_shield_remove+0x10/0x10 [ 186.030712][ T6087] hid_device_remove+0xce/0x260 [ 186.030727][ T6087] ? __pfx_hid_device_remove+0x10/0x10 [ 186.030743][ T6087] device_remove+0xcb/0x170 [ 186.030758][ T6087] device_release_driver_internal+0x44b/0x620 [ 186.030779][ T6087] bus_remove_device+0x22f/0x420 [ 186.030796][ T6087] device_del+0x396/0x9f0 [ 186.030813][ T6087] ? __pfx_device_del+0x10/0x10 [ 186.030829][ T6087] ? do_raw_spin_lock+0x12c/0x2b0 [ 186.030851][ T6087] ? find_held_lock+0x2b/0x80 [ 186.030864][ T6087] hid_destroy_device+0x19c/0x240 [ 186.030879][ T6087] usbhid_disconnect+0xa0/0xe0 [ 186.030890][ T6087] usb_unbind_interface+0x1da/0x9a0 [ 186.030908][ T6087] ? kernfs_remove_by_name_ns+0xbe/0x110 [ 186.030918][ T6087] ? __pfx_usb_unbind_interface+0x10/0x10 [ 186.030935][ T6087] device_remove+0x122/0x170 [ 186.030951][ T6087] device_release_driver_internal+0x44b/0x620 [ 186.030971][ T6087] bus_remove_device+0x22f/0x420 [ 186.030988][ T6087] device_del+0x396/0x9f0 [ 186.031005][ T6087] ? __pfx_device_del+0x10/0x10 [ 186.031021][ T6087] ? kobject_put+0x210/0x5a0 [ 186.031035][ T6087] usb_disable_device+0x355/0x7d0 [ 186.031052][ T6087] usb_disconnect+0x2e1/0x920 [ 186.031069][ T6087] hub_event+0x1c57/0x4fa0 [ 186.031093][ T6087] ? __lock_acquire+0xb8a/0x1c90 [ 186.031108][ T6087] ? __pfx_hub_event+0x10/0x10 [ 186.031121][ T6087] ? assoc_array_gc+0x240/0x15b0 [ 186.031131][ T6087] ? finish_task_switch.isra.0+0x221/0xc10 [ 186.031148][ T6087] ? rcu_is_watching+0x12/0xc0 [ 186.031160][ T6087] process_one_work+0x9cf/0x1b70 [ 186.031182][ T6087] ? __pfx_process_one_work+0x10/0x10 [ 186.031203][ T6087] ? assign_work+0x1a0/0x250 [ 186.031219][ T6087] worker_thread+0x6c8/0xf10 [ 186.031240][ T6087] ? __kthread_parkme+0x19e/0x250 [ 186.031254][ T6087] ? __pfx_worker_thread+0x10/0x10 [ 186.031271][ T6087] kthread+0x3c2/0x780 [ 186.031286][ T6087] ? __pfx_kthread+0x10/0x10 [ 186.031302][ T6087] ? rcu_is_watching+0x12/0xc0 [ 186.031313][ T6087] ? __pfx_kthread+0x10/0x10 [ 186.031329][ T6087] ret_from_fork+0x5d4/0x6f0 [ 186.031343][ T6087] ? __pfx_kthread+0x10/0x10 [ 186.031359][ T6087] ret_from_fork_asm+0x1a/0x30 [ 186.031376][ T6087] [ 186.032467][ T6087] Kernel Offset: disabled VM DIAGNOSIS: 04:19:48 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000007 RBX=00007fa7acaa7407 RCX=1ffffffff214fcf0 RDX=0000000000000000 RSI=ffffffff812c4cd8 RDI=0000000000000007 RBP=ffffc900000071a0 RSP=ffffc90000007118 R8 =0000000000000007 R9 =ffffffffff600000 R10=00007fa7acaa7000 R11=0000000000000001 R12=ffffffff81a708a0 R13=ffffc90000007218 R14=0000000000000000 R15=ffff888027a48000 RIP=ffffffff8184c0eb RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fa7ad183300 ffffffff 00c00000 GS =0000 ffff888097561000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000570c54c0 CR3=0000000050c98000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d1ddffffffff848c d1d3ffffffff848c d1c9ffffffff848c d1bfffffffff848c ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d3fcffffffff848c d3f2ffffffff848c d37dffffffff848c d1f3ffffffff848c ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d41effffffff848c d414ffffffff848c d40affffffff848c d403ffffffff848c ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 df85ffffffff848c df7bffffffff848c df71ffffffff848c df67ffffffff848c ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 df5dffffffff848c df53ffffffff848c df49ffffffff848c df42ffffffff848c ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 df38ffffffff848c d603ffffffff848c d5edffffffff848c d457ffffffff848c ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 d446ffffffff848c d43cffffffff848c d432ffffffff848c d428ffffffff848c ZMM24=78c852c278c852c2 78c852c278c852c2 78c852c278c852c2 78c852c278c852c2 78c852c278c852c2 78c852c278c852c2 78c852c278c852c2 78c852c278c852c2 ZMM25=eebb1e70eebb1e70 eebb1e70eebb1e70 eebb1e70eebb1e70 eebb1e70eebb1e70 eebb1e70eebb1e70 eebb1e70eebb1e70 eebb1e70eebb1e70 eebb1e70eebb1e70 ZMM26=69dd821b69dd821b 69dd821b69dd821b 69dd821b69dd821b 69dd821b69dd821b 69dd821b69dd821b 69dd821b69dd821b 69dd821b69dd821b 69dd821b69dd821b ZMM27=e539e8e7e539e8e7 e539e8e7e539e8e7 e539e8e7e539e8e7 e539e8e7e539e8e7 e539e8e7e539e8e7 e539e8e7e539e8e7 e539e8e7e539e8e7 e539e8e7e539e8e7 ZMM28=000000b0000000af 000000ae000000ad 000000ac000000ab 000000aa000000a9 000000a8000000a7 000000a6000000a5 000000a4000000a3 000000a2000000a1 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=7716000077160000 7716000077160000 7716000077160000 7716000077160000 7716000077160000 7716000077160000 7716000077160000 7716000077160000 info registers vcpu 1 CPU#1 EAX=ffffffff EBX=f73a2ff4 ECX=00000000 EDX=ffffffd4 ESI=00000000 EDI=00000000 EBP=00000000 ESP=f5036550 EIP=f70649d3 EFL=00000286 [--S--P-] CPL=3 II=0 A20=1 SMM=0 HLT=0 ES =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0023 00000000 ffffffff 00c0fb00 DPL=3 CS32 [-RA] SS =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] DS =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 00000000 ffffffff 00c00000 GS =0063 f5036b40 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 00000000 ffffffff 00c00000 TR =0040 0004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000570c54c0 CR3=000000004c1a5000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 2 CPU#2 EAX=ffffffff EBX=f7432ff4 ECX=00000000 EDX=ffffffd4 ESI=00000000 EDI=00000000 EBP=00000000 ESP=f50c6550 EIP=f70f49d3 EFL=00000286 [--S--P-] CPL=3 II=0 A20=1 SMM=0 HLT=0 ES =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0023 00000000 ffffffff 00c0fb00 DPL=3 CS32 [-RA] SS =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] DS =002b 00000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 00000000 ffffffff 00c00000 GS =0063 f50c6b40 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 00000000 ffffffff 00c00000 TR =0040 00091000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000002f505ffc CR3=0000000069b1e000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052 ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 3 CPU#3 RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff85580e15 RDI=ffffffff9b06da80 RBP=ffffffff9b06da40 RSP=ffffc9000467ed30 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001 R12=0000000000000000 R13=0000000000000030 R14=ffffffff9b06da40 R15=ffffffff85580db0 RIP=ffffffff85580e3f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff888097861000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=000000002f609ffc CR3=000000004b6e7000 CR4=00352ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000 Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000 ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000